manualshive.com logo in svg

Enterasys 2E25x, User Manual

Get your Enterasys 2E25x Product User Manual for free download at manualshive.com. Unlock the full potential of your device with this comprehensive manual, guiding you through setup, features, and troubleshooting. Maximize your product knowledge and enhance your user experience with this essential manual. Download now for free!

Share
Download
background image

RADIUS Configuration Screen

Accessing Local Management

3-19

Auth Port 
(Modifiable)

Enter the number of the Authorization UDP Port for the Primary and 
Secondary server.

Acct Port 
(Modifiable)

Enter the number of the Accounting UDP Port for the Primary and 
Secondary server.

Timeout
(Modifiable)

Enter the maximum time in seconds to establish contact with the 
Radius Server before timing out.

Retries
(Modifiable)

Enter the maximum number of attempts (1…N) to contact the Radius 
Server before timing out.

Last Resort 
Action/Local
(Selectable)

Accept, Challenge, and Reject, which do the following:

ACCEPT: Allows local access (via COM port) at the super-user 
level with no further attempt at authentication.

CHALLENGE: Reverts to local module (legacy) passwords.

REJECT: Does not allow local access.

For more details, refer to 

Section 3.7.1

.

To set local and remote servers, refer to 

Section 3.7.2

.

Last Resort 
Action/Remote
(Toggle)

Accept, Challenge, and Reject, which do the following:

ACCEPT: Allows remote access (via Telnet or WebWiew) at the 
super-user level with no further attempt at authentication.

CHALLENGE: Reverts to local module (legacy) passwords.

REJECT: Does not allow remote access.

For more details, refer to 

Section 3.7.1

.

To set local and remote servers, refer to 

Section 3.7.2

.

Radius Client 
(Toggle)

Enable or disable client status.

Table 3-4

Radius Configuration Screen Field Descriptions (Continued)

Use this field…

To…

Summary of Contents for 2E25x

Page 1: ...SmartSwitch 2200 Series Standalone Switches 2E25x and 2H25x Local Management User s Guide 9033069 01 ...

Page 2: ......

Page 3: ...N IF ENTERASYS NETWORKS AND ITS LICENSORS HAVE BEEN ADVISED OF KNOWN OR SHOULD HAVE KNOWN THE POSSIBILITY OF SUCH DAMAGES Enterasys Networks Inc 35 Industrial Way Rochester NH 03866 5005 Enterasys Networks Inc is a subsidiary of Cabletron Systems Inc 2001 by Enterasys Networks Inc All Rights Reserved Printed in the United States of America Order Number 9033069 01 February 2001 LANVIEW is a registe...

Page 4: ...merce which prohibit export or diversion of certain technical products to certain countries unless a license to export the product is obtained from the U S Government or an exception from obtaining such license may be relied upon by the exporting party If the Program is exported from the United States pursuant to the License Exception CIV under the U S Export Administration Regulations You agree t...

Page 5: ...umentation and media ENTERASYS DISCLAIMS ALL WARRANTIES OTHER THAN THOSE SUPPLIED TO YOU BY ENTERASYS IN WRITING EITHER EXPRESS OR IMPLIED INCLUDING BUT NOT LIMITED TO IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE WITH RESPECT TO THE PROGRAM THE ACCOMPANYING WRITTEN MATERIALS AND ANY ACCOMPANYING HARDWARE 7 NO LIABILITY FOR CONSEQUENTIAL DAMAGES IN NO EVENT SHALL ENTER...

Page 6: ......

Page 7: ...nts 1 4 1 5 Local Management Keyboard Conventions 1 7 1 6 Getting Help 1 8 2 LOCAL MANAGEMENT REQUIREMENTS 2 1 Management Terminal Setup 2 1 2 1 1 Console Cable Connection 2 2 2 1 2 Management Terminal Setup Parameters 2 3 2 2 Telnet Connections 2 4 2 3 Monitoring an Uninterruptible Power Supply 2 4 3 ACCESSING LOCAL MANAGEMENT 3 1 Navigating Local Management Screens 3 2 3 1 1 Selecting Local Mana...

Page 8: ...ntering a New Screen Refresh Time 4 13 4 2 8 Setting the Screen Lockout Time 4 13 4 2 9 Setting the Operational Mode 4 14 4 2 10 Configuring the COM Port 4 15 4 2 10 1 Changing the COM Port Application 4 17 4 2 11 Clearing NVRAM 4 17 4 2 12 Enabling Disabling IP Fragmentation 4 18 4 3 SNMP Configuration Menu Screen 4 19 4 4 SNMP Community Names Configuration Screen 4 21 4 4 1 Establishing Communit...

Page 9: ... Configuration Screen 6 4 6 2 1 Setting the STA 6 7 6 2 2 Setting the Age Time Field 6 7 6 2 3 Setting Enabling or Disabling the Port Status 6 7 6 3 802 1 Priority Configuration Menu Screen 6 8 6 4 Port Priority Configuration Screen 6 10 6 4 1 Setting Switch Port Priority Port by Port 6 12 6 4 2 Setting Switch Port Priority on All Ports 6 12 6 5 Advanced Port Priority Configuration Screen 6 13 6 5...

Page 10: ...hanging the Forwarding Mode 7 11 7 3 8 Paging Through the VLAN List 7 11 7 4 Port Assignment Configuration Screen 7 11 7 4 1 Changing the Port Mode 7 13 7 4 2 Assigning a VLAN ID 7 14 7 4 3 Paging Through the Port List 7 14 7 5 Port Filtering Configuration Screen 7 15 7 5 1 Displaying VLAN IDs Associated with a Port 7 16 7 5 2 Selecting the Type of Filtering for a Port 7 17 7 6 VLAN Forwarding Con...

Page 11: ... Menu Screen 10 2 10 2 Switch Statistics Screen 10 4 10 3 Interface Statistics Screen 10 6 10 3 1 Displaying Interface Statistics 10 8 10 4 RMON Statistics Screen 10 9 10 4 1 Displaying RMON Statistics 10 12 11 NETWORK TOOLS SCREENS 11 1 Network Tools 11 1 11 2 Built in Commands 11 4 11 3 Example 7 Dynamic Egress and Aging Time 11 24 11 4 Example 8 Using Dynamic Egress to Control Traffic 11 25 11 ...

Page 12: ...e 1 Single Switch Operation 12 21 12 12 1 Solving the Problem 12 22 12 12 2 Frame Handling 12 23 12 13 Example 2 VLANs Across Multiple Switches 12 24 12 13 1 Solving the Problem 12 26 12 13 2 Frame Handling 12 28 12 14 Example 3 1D Trunk Connection to 802 1Q VLAN Network 12 31 12 14 1 Solving the Problem 12 33 12 14 2 Frame Handling 12 34 12 15 Example 4 Isolating Network Traffic According to Prot...

Page 13: ...L GARP A 1 GARP Switch Operation A 1 A 1 1 GARP VLAN Registration Protocol GVRP A 1 A 1 2 GARP Multicast Registration Protocol GMRP A 3 B ABOUT IGMP B 1 IGMP Overview B 1 B 2 Supported Features and Functions B 2 B 3 Detecting Multicast Routers B 3 INDEX ...

Page 14: ...14 4 6 COM Port Warning 4 16 4 7 Clear NVRAM Warning 4 18 4 8 SNMP Configuration Menu Screen 4 19 4 9 SNMP Community Names Configuration Screen 4 21 4 10 SNMP Traps Configuration Screen 4 24 4 11 Access Control List Screen 4 27 4 12 System Resources Information Screen 4 30 4 13 Flash Download Configuration Screen 4 33 5 1 Port Configuration Menu Screen 5 2 5 2 Ethernet Interface Configuration Scre...

Page 15: ... 9 4 10 1 Device Statistics Menu Screen 10 2 10 2 Switch Statistics Screen 10 4 10 3 Interface Statistics Screen 10 6 10 4 RMON Statistics Screen 10 9 11 1 Network Tools Help Screen 11 2 11 2 Example 7 Dynamic Egress Application 11 25 12 1 Example of a VLAN 12 2 12 2 View from Inside the Switch 12 8 12 3 Switch Management with Only Default VLAN 12 11 12 4 Switch Management with VLANs 12 12 12 5 80...

Page 16: ...itch 1 Forwards to 1D Trunk 12 36 12 22 Example 4 Isolating Traffic According to Protocol 12 38 12 23 Example 5 Filtering Traffic According to a Classification 12 42 12 24 Example 6 Securing Traffic to One Subnet 12 43 12 25 Example 7 Dynamic Egress Application 12 45 12 26 Locking Ports According to Classification Rule 12 46 A 1 Example of VLAN Propagation via GVRP A 2 ...

Page 17: ...2 Ethernet Interface Configuration Screen Field Descriptions 5 4 5 3 Ethernet Port Configuration Screen Field Descriptions 5 8 5 4 Redirect Configuration Menu Screen Menu Item Descriptions 5 13 5 5 Port Redirect Configuration Screen Field Descriptions 5 15 5 6 VLAN Redirect Configuration Screen Field Descriptions 5 19 5 7 Broadcast Suppression Configuration Screen Field Descriptions 5 23 6 1 802 1...

Page 18: ... Precedence 7 29 7 9 Protocol Port Configuration Screen Field Descriptions 7 35 8 1 GARP Configuration Menu Screen Menu Item Descriptions 8 3 8 2 GARP Configuration Screen Field Descriptions 8 5 8 3 GMRP Configuration Screen Field Descriptions 8 9 9 1 Layer 3 Extensions Menu Screen Menu Item Descriptions 9 2 9 2 IGMP VLAN Configuration Screen Field Descriptions 9 5 10 1 Device Statistics Menu Scre...

Page 19: ...agement fields and menus Use Local Management screens to perform management operations Establish and manage Virtual Local Area Networks VLANs STRUCTURE OF THIS GUIDE The guide is organized as follows Chapter 1 Introduction provides an overview of the tasks that may be accomplished using Local Management LM and an introduction to LM screen navigation in band and out of band network management scree...

Page 20: ...ion Menu Screens introduces and describes how to use the screens to create VLANs select the mode of operation for each port filter frames according to VLAN establish VLAN forwarding lists route frames according to VLAN ID and display the current ports and port types associated with a VLAN and protocol VLAN classification and classification rules are also discussed Chapter 8 GARP Configuration Menu...

Page 21: ...device Ethernet Technology Guide Cabling Guide SmartTrunk User s Guide WAN Series Local Management User s Guide Documents associated with the optional HSIM and VHSIM interface modules and the manuals listed above can be obtained from the World Wide Web in Adobe Acrobat Portable Document Format PDF at the following site http www enterasys com support manuals DOCUMENT CONVENTIONS The guide uses the ...

Page 22: ...od in numerals signals the decimal point indicator e g 1 75 equals one and three fourths Or periods used in numerals signal the decimal point in Dotted Decimal Notation DDN e g 000 000 000 000 in an IP address x A lowercase italic x indicates the generic use of a letter e g xxx indicates any combination of three alphabetic characters n A lowercase italic n indicates the generic use of a number e g...

Page 23: ... Download a new firmware image Upload or download a configuration file to or from a TFTP server Designate which Network Management Workstations receive SNMP traps from the device View switch interface and RMON statistics Assign ports to operate in the standard or full duplex mode Configure ports to perform load sharing using SmartTrunking Refer to the SmartTrunk User s Guide for details Control th...

Page 24: ... Provide additional security by configuring a physical port to lock on an attached device according to a classification rule so that no other device can be used on that port There are three ways to access Local Management Locally using a VT type terminal connected to the COM port Remotely using a VT type terminal connected through a modem In band through a Telnet connection 1 1 1 The Management Ag...

Page 25: ...arrow key The Local Management screen cursor only moves to fields that can be selected or used for input This means that the cursor jumps over display fields and empty lines on the Local Management screen The Local Management screen cursor provides wrap around operation This means that a cursor located at the edge of a screen when moved in the direction of that edge wraps around to the outermost s...

Page 26: ...eneral Configuration 25042_14w BOOTPROM Revision XX XX XX MAC Address IP Address Subnet Mask Default Gateway TFTP Gateway IP Addr Device Date Device Time Screen Refresh Time Screen Lockout Time Clear NVRAM NO Device Uptime XX D XX H XX M IP Fragmentation ENABLED Operational Mode 802 1Q SWITCHING 25042_14w Event Message Field Display Field Input Fields Selection Field Command Fields Display Fields ...

Page 27: ... model of the device Display Fields Display fields cannot be edited These fields may display information that never changes or information that may change as a result of Local Management operations user selections or network monitoring information In the screens shown in this guide the characters in the display fields are in plain type not bold In the field description the field is identified as b...

Page 28: ...n a selection field In the screens shown in this guide the selections display within brackets and are in bold type In the field description the field is identified as being either selectable when there are more than two possible values or toggle when there are only two possible values Command Fields Command fields located at the bottom of Local Management screens are used to exit Local Management ...

Page 29: ...scape from a Local Management screen without saving changes For example Press ESC twice means the ESC key must be pressed quickly two times SPACE Bar BACKSPACE Key These keys cycle through selections in some Local Management fields Use the SPACE bar to cycle forward through selections and use the BACKSPACE key to cycle backward through selections Arrow Keys These are navigation keys Use the UP ARR...

Page 30: ...roducts in the network A description of your network environment layout cable type etc Network load and frame size at the time of trouble if known The device history i e have you returned the device before is this a recurring problem etc Any previous Return Material Authorization RMA numbers World Wide Web http www enterasys com Phone 603 332 9400 Internet mail support enterasys com FTP ftp ftp en...

Page 31: ...w to make a connection from the COM port to an American Power Conversion APC Uninterruptible Power Supply UPS device This type of connection enables the SmartSwitch device to monitor the power status in case of a power loss 2 1 MANAGEMENT TERMINAL SETUP Use one of the following systems to access Local Management A PC or compatible device running a VT series emulation software package A Digital Equ...

Page 32: ...RJ45 to DB9 adapter supplied in the kit 3 Connect the RJ45 to DB9 adapter to the communications port on the PC Figure 2 1 Management Terminal Connection NOTE If using a modem between the VT compatible device and the COM port of the SmartSwitch device use the appropriate connector included in the console cable kit Refer to the modem manufacturer s information for proper operation and setup of the m...

Page 33: ...nderline Cursor Style General Setup Menu Mode ID number Cursor Keys Power Supply VT100 7 Bit Controls VT100ID Normal Cursor Keys UPSS DEC Supplemental Communications Setup Menu Transmit Receive XOFF Bits Parity Stop Bit Local Echo Port Transmit Auto Answerback 2400 4800 9600 19200 Receive Transmit XOFF at 64 8 bits No Parity 1 Stop Bit No Local Echo DEC 423 Data Leads Only Limited Transmit No Auto...

Page 34: ...2 8 2 3 MONITORING AN UNINTERRUPTIBLE POWER SUPPLY If the SmartSwitch device is connected to an American Power Conversion APC Uninterruptible Power Supply UPS device for protection against the loss of power a connection from the SmartSwitch device COM port to the UPS can be made to monitor the UPS power status To use the COM port for this purpose it must be reconfigured to support the UPS connecti...

Page 35: ...r Supply UPS Connection RJ45 COM Port RJ45 to DB9 UPS Adapter UPS Device DB9 Port UTP Cable with RJ45 Connectors 30691_03 LED MODE RX TX DPX SPD 1 2 3 4 5 6 7 8 9 10 15 16 21 22 23 24 11 12 19 20 17 18 13 14 2H252 25R COM PWR CPU RESET 2X 4X 6X 8X 10X 12X 14X 16X 18X 20X 22X 24X FAST ETHERNET WORKGROUP SWITCH ...

Page 36: ......

Page 37: ... items to gain access to other screens for configuring the switch obtaining operating statistics and obtaining access to network tools Section 3 3 Accessing the Device Menu screen and its menu items to gain access to the Local Management screens including the security screens Section 3 5 Security methods Section 3 5 Accessing the Passwords Section 3 6 and Radius Configuration Section 3 7 screens T...

Page 38: ...EEE 802 1Q port based VLANs SECURE FAST VLAN SecureFast switching The switch operational mode is set in the General Configuration screen Section 4 2 Depending on the Operational Mode set for the device the hierarchy of the Local Management screens differs as shown in Figure 3 1 and Figure 3 2 Refer to the appropriate figure that relates to the Operational Mode set for the device to see the applica...

Page 39: ...ng Configuration VLAN Forwarding Configuration VLAN Classification Configuration Protocol Port Configuration Protocol Port Configuration GARP Configuration Menu GARP Configuration GMRP Configuration Rate Limiting Configuration Ethernet Interface Configuration Ethernet Port Configuration HSIM VHSIM Configuration Redirect Configuration Menu Port Redirect Configuration VLAN Redirect Configuration Sma...

Page 40: ... LM using the EXIT screen command proceed as follows 1 Use the arrow keys to highlight the EXIT command at the bottom of the Local Management screen 2 Press ENTER The Local Management Password screen displays and the session ends Interface Statistics RMON Statistics DeviceStatistics Menu Network Tools Device Configuration Menu Password Device Menu General Configuration SNMP Configuration Menu SNMP...

Page 41: ...f a particular Local Management screen has more than one screen to display its information the NEXT and PREVIOUS commands are used to navigate between its screens To go to the next or previous display of a screen proceed as follows 1 Highlight the applicable NEXT or PREVIOUS command at the bottom of the screen 2 Press ENTER The screen displays 3 1 4 Using the CLEAR COUNTERS Command The CLEAR COUNT...

Page 42: ... or change passwords refer to Section 4 4 How to Access 1 Turn on the terminal Press ENTER this may take up to four times because the COM port of the SmartSwitch device auto senses the baud rate of the terminal until the Local Management Password screen displays Figure 3 3 shows the Password screen Screen Example Figure 3 3 Local Management Password Screen xxxxx xx LOCAL MANAGEMENT Enterasys Syste...

Page 43: ...t capabilities depends on the degree of access accorded that community name Refer to Section 4 4 If an invalid password is entered the terminal beeps and the cursor returns to the beginning of the password entry field Entering a valid password causes the associated access level to display at the bottom of the screen and the Device Menu screen to display If no activity occurs for a preset period of...

Page 44: ...w to Access Enter a valid password in the Local Management Password screen as described in Section 3 2 and press ENTER The Device Menu screen Figure 3 4 displays Screen Example Figure 3 4 Device Menu Screen NOTE If the terminal is idle for several minutes the Local Management Password screen redisplays and the session ends This idle time can be changed in the General Configuration screen described...

Page 45: ...er 10 NETWORK TOOLS The Network Tools function resides on the switch and consists of that commands that allow you to access and manage the SmartSwitch device and also Telnet to other devices Chapter 11 explains how to use the Network Tools utility SECURITY Provides access to the Passwords and the Radius Configuration screens The Passwords screen allows you to set a login password for the device ac...

Page 46: ...nd a description of how to set the switch access policy using the Radius Configuration screen refer to Section 3 4 1 and Section 3 7 3 4 1 Host Access Control Authentication HACA To use HACA the embedded Radius Client on the switch must be configured to communicate with the Radius Server and the Radius Server must be configured with the password information The Enterasys implementation uses Funk S...

Page 47: ...turn different access levels Only one password is allowed per access level This enables the Radius Server to track the users accessing the switch host and how long they used the host application All radius values except the server IPs and shared secrets are assigned reasonable default values when radius is installed on a new switch The defaults are as follows Client disabled Timeout 20 seconds Ret...

Page 48: ...o return to the user name prompt If the Radius Client is unable to receive a response from the Radius Server because the Radius Server is down or inaccessible the Radius Client will time out to a default value of 20 seconds If the server returns an access accept response the user successfully authenticated it must also return a Radius FilterID attribute containing an ASCII string with the followin...

Page 49: ... or WebView the switch will continue to deny access until communication with the Radius Server is operational again Optionally if the switch has been configured to allow remote access the switch can be configured to use the Local Management Module password in the event of a Radius failure 3 5 SECURITY MENU SCREEN Screen Navigation Paths Password Device Menu Security When to Use To access the Passw...

Page 50: ...escriptions Menu Item Screen Function PASSWORDS Used to set the Locally Administered Passwords super user read write and read only to access the device according to an access policy For details refer to Section 3 6 RADIUS CONFIGURATION Used to configure the Radius Client Parameters on the switch primary server and secondary server For details refer to Section 3 7 PASSWORDS RADIUS CONFIGURATION 355...

Page 51: ...anagement access super user read write and read only via serial console or telnet connection This screen is also used to disable the function of hardware switch 8 to prevent the clearing of the login passwords How to Access Use the arrow keys to highlight the PASSWORDS menu item on the Security Menu screen and press ENTER The Module Login Passwords screen Figure 3 6 displays Screen Example Figure ...

Page 52: ...anagement and excludes access to security protected fields of read write or super user authorization read write This password allows read and write access to Local Management excluding security protected fields for super user access only super user This password permits read write access to Local Management and allows the user to change all modifiable parameters including community names IP addres...

Page 53: ...en to Use To configure the Radius client in the switch to restrict access to the management functions of the Local Management screens by way of the COM port or network TELNET connection This screen allows you to set the necessary parameters to centralize the Authentication Authorization and Accounting of the network resources For information about Radius Client and how it functions refer to Sectio...

Page 54: ...guration Screen Field Descriptions Use this field To IP Modifiable Enter the IP address in decimal dot format of the primary and secondary servers being configured for the RADIUS function Secret Modifiable Enter a secret string of characters or the primary and secondary server 16 characters are recommended as per RFC 2865 The maximum is 32 characters Primary Server IP 172 29 80 90 Secret Auth Port...

Page 55: ...local access via COM port at the super user level with no further attempt at authentication CHALLENGE Reverts to local module legacy passwords REJECT Does not allow local access For more details refer to Section 3 7 1 To set local and remote servers refer to Section 3 7 2 Last Resort Action Remote Toggle Accept Challenge and Reject which do the following ACCEPT Allows remote access via Telnet or W...

Page 56: ...e RADIUS function 2 Highlight the Auth Port field and enter the number of the Authorization UDP Port for the Primary and Secondary server 3 Highlight the Acct Port field and enter the number of the Accounting UDP Port for the Primary and Secondary server 4 Highlight the Secret field and enter a secret string of characters or the primary and secondary server 16 characters are recommended as per RFC...

Page 57: ...Menu screen Section 4 3 SNMP Community Names Configuration screen Section 4 4 SNMP Traps Configuration screen Section 4 5 Access Control List screen Section 4 6 System Resources Information screen Section 4 7 FLASH Download Configuration screen Section 4 8 Port Configuration Menu screen Chapter 5 802 1 Configuration Menu screen Chapter 6 Layer 3 Extensions Menu Chapter 9 Screen Navigation Path Pas...

Page 58: ... SNMP traps configure switch parameters and configure the SmartSwitch device ports How to Access Use the arrow keys to highlight the DEVICE CONFIGURATION MENU item on the Device Menu screen and press ENTER The Device Configuration Menu screen Figure 4 1 displays Screen Example Figure 4 1 Device Configuration Menu Screen GENERAL CONFIGURATION SNMP CONFIGURATION MENU SYSTEM RESOURCES INFORMATION FLA...

Page 59: ...ce and the unused portion of each memory and displays the current CPU switch utilization and the peak switch utilization For details refer to Section 4 7 FLASH DOWNLOAD CONFIGURATION Used to force the SmartSwitch device to download a new image file from a TFTP server to its FLASH memory For details refer to Section 4 8 PORT CONFIGURATION MENU Used to select the screens for configuring the SmartSwi...

Page 60: ...ow to Access Use the arrow keys to highlight the GENERAL CONFIGURATION menu item on the Device Configuration Menu screen and press ENTER The General Configuration screen Figure 4 2 displays LAYER 3 EXTENSIONS MENU Provides access to the IGMP VLAN Configuration screen to configure ports and VLANs to operate according to the Internet Group Management Protocol IGMP For details refer to Chapter 9 NOTE...

Page 61: ...The IP address can also be set through Runtime IP Address Discovery Runtime IP Address Discovery enables the SmartSwitch device to automatically accept an IP address from a Boot Strap Protocol BootP server on the network without requiring a user to enter an IP address through Local Management 30691_08 MAC Address IP Address Subnet Mask Default Gateway TFTP Gateway IP Addr Device Date Device Time S...

Page 62: ...Switch device To set the TFTP Gateway IP address refer to Section 4 2 4 Device Date Modifiable Enter a new device date To enter a new date refer to Section 4 2 5 Device Time Modifiable Enter a device new time To enter a new time refer to Section 4 2 6 Screen Refresh Time Modifiable Enter a new device time This setting determines how frequently in seconds information is updated on the screen To ent...

Page 63: ... 2 9 Com Toggle Enable or disable the COM port The selection toggles between ENABLED and DISABLED The default is ENABLED For details about setting up the COM port refer to Section 4 2 10 Application Toggle Set the application that the COM port will support The field toggles between LM Local Management and UPS Uninterruptible Power Supply The default is LM The UPS setting allows the COM port to be ...

Page 64: ...row keys to highlight the SAVE command then press ENTER The warning screen shown in Figure 4 3 displays IP Fragmentation Toggle Enable or disable IP Fragmentation The default setting for this field is ENABLED If the SmartSwitch device is to be bridged to an FDDI ring using an HSIM F6 IP Fragmentation should be enabled If IP Fragmentation is disabled all FDDI frames that exceed the maximum Ethernet...

Page 65: ... subnet mask from its default perform the following steps 1 Use the arrow keys to highlight the Subnet Mask field 2 Enter the subnet mask into this field using Dotted Decimal Notation DDN format For example 255 255 0 0 3 Press ENTER If the subnet mask is valid the cursor returns to the beginning of the Subnet Mask field If the entry is not valid the screen displays the message INVALID SUBNET MASK ...

Page 66: ...h device a default gateway must be specified When an SNMP Trap is generated the SmartSwitch device sends out an ARP request to the default gateway which responds with its MAC address The SmartSwitch device then sends the trap using the IP address from the Trap Table and the MAC address of the default gateway To set the default gateway perform the following steps 1 Use the arrow keys to highlight t...

Page 67: ...address of the TFTP gateway using the DDN format For example nnn nnn nnn nnn 3 Press ENTER If the TFTP gateway IP address entered is a valid format the cursor returns to the beginning of the TFTP Gateway IP Address field If the entry is not valid the screen displays INVALID TFTP GATEWAY IP ADDRESS OR FORMAT ENTERED Local Management does not alter the current value but it does refresh the TFTP Gate...

Page 68: ...g steps 1 Use the arrow keys to highlight the Device Time field 2 Enter the time in this 24 hour format HH MM SS 3 Press ENTER to set the system clock to the time in the input field 4 Use the arrow keys to highlight the SAVE command at the bottom of the screen and press ENTER If the time entered is a valid format the message displays SAVED OK at the top of the screen If the entry is not valid Loca...

Page 69: ... the entry is not valid Local Management does not alter the current setting but it does refresh the Screen Refresh Time field with the previous value 4 2 8 Setting the Screen Lockout Time The screen lockout time can be set from 1 to 30 minutes with a default of 15 minutes To set a new lockout time perform the following steps 1 Use the arrow keys to highlight the Screen Lockout Time field 2 Enter a...

Page 70: ...nal mode 802 1Q SWITCHING or SECURE FAST VLAN 3 Use the arrow keys to highlight the SAVE command then press ENTER The warning shown in Figure 4 5 displays Figure 4 5 Configuration Warning Operational Mode NOTE If the device is to be configured to operate as a SecureFast switch the device must be assigned an IP address WARNING 30691_10 YOU HAVE ELECTED TO SAVE ONE OR MORE CONFIGURATION ITEMS THAT R...

Page 71: ...t documentation set to configure the SmartSwitch device for this type of operation CAUTION Before altering the COM port settings ensure that the SmartSwitch device is set with a valid IP address Refer to Section 4 2 1 Read this entire COM port configuration section before changing the settings of the COM port CAUTION Do NOT disable or alter the settings of the COM port while operating the current ...

Page 72: ...he port was DISABLED use the arrow keys to highlight SAVE at the bottom of the screen then press ENTER CAUTION If the COM port is reconfigured without a valid IP address set on the SmartSwitch device the message shown in Figure 4 6 displays Do not continue unless the outcome of the action is fully understood NOTE Exiting without saving causes the message NOT SAVED PRESS SAVE TO KEEP CHANGES to app...

Page 73: ...entered parameters such as the IP address and Community Names from NVRAM To clear NVRAM proceed as follows 1 Use the arrow keys to highlight the Clear NVRAM field 2 Use the SPACE bar to toggle the field to YES Table 4 3 COM Port Application Settings Setting Application LM Local Management Session UPS APC Power Supply SNMP Proxy CAUTION When the COM port is configured to perform the UPS application...

Page 74: ... as follows 1 Use the arrow keys to highlight the IP Fragmentation field 2 Press the SPACE bar to choose either ENABLED or DISABLED 3 Use the arrow keys to highlight the SAVE command 4 Press ENTER The message SAVED OK displays CAUTION If the SmartSwitch device is being bridged to an FDDI ring for example via an optional HSIM F6 IP Fragmentation should be enabled If it is disabled all FDDI frames t...

Page 75: ...fy SNMP community names set SNMP traps and establish an access control list to provide additional switch security How to Access Use the arrow keys to highlight the SNMP CONFIGURATION MENU item on the DEVICE CONFIGURATION MENU screen and press ENTER The SNMP Configuration Menu screen Figure 4 8 displays Screen Example Figure 4 8 SNMP Configuration Menu Screen SNMP COMMUNITY NAMES CONFIGURATION SNMP...

Page 76: ...nity names used as access passwords for device management operation Access is limited based on the password level of the user For details refer to Section 4 4 SNMP TRAPS CONFIGURATION Provides display and configuration access to the table of IP addresses used for trap destinations and associated community names For details refer to Section 4 5 ACCESS CONTROL LIST Enables the system administrator t...

Page 77: ...zation read only read write and super user How to Access Use the arrow keys to highlight the SNMP COMMUNITY NAMES CONFIGURATION menu item on the SNMP Configuration Menu screen and press ENTER The SNMP Community Names Configuration screen Figure 4 9 displays Screen Example Figure 4 9 SNMP Community Names Configuration Screen NOTE Super user access gives the user full management privileges allows ex...

Page 78: ... Only Indicate the access accorded each community name The available access levels are as follows read only This community name gives the user read only access to the SmartSwitch device MIB objects and excludes access to security protected fields of read write or super user authorization read write This community name gives the user read write access to the SmartSwitch device MIB objects excluding...

Page 79: ...evel 2 Enter the password in the field maximum 31 characters 3 Press ENTER 4 Repeat steps 1 through 3 to modify the other community names 5 Use the arrow keys to highlight the SAVE command at the bottom of the screen and press ENTER The message SAVED OK displays The community names are saved to memory and their access modes implemented NOTE Any community name assigned in the SNMP Community Names C...

Page 80: ... users of status changes How to Access Use the arrow keys to highlight the SNMP TRAPS CONFIGURATION menu item on the SNMP Configuration Menu screen and press ENTER The SNMP Traps Configuration screen Figure 4 10 displays Screen Example Figure 4 10 SNMP Traps Configuration Screen 30691_16 Trap Community Name public public public public public public public public RETURN SAVE Trap Destination 0 0 0 ...

Page 81: ...Name field Enter the community name 5 Press ENTER 6 Use the arrow keys to highlight the Enable Traps field Press the SPACE bar to choose either YES send alarms from the SmartSwitch device to the workstation or NO prevent alarms from being sent Table 4 6 SNMP Traps Configuration Screen Field Descriptions Use this field To Trap Destination Modifiable Display enter the IP address of the workstation t...

Page 82: ...ty by limiting access to the SmartSwitch device to a maximum of 16 IP addresses To manage an ACL enabled SmartSwitch device the management station must be a member of the ACL and authenticated according to traditional SNMP rules When the ACL is disabled host access is not restricted How to Access Use the arrow keys to highlight the ACCESS CONTROL LIST menu item on the SNMP Configuration Menu scree...

Page 83: ...ens 4 27 Screen Example Figure 4 11 Access Control List Screen 30691_17 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 Access Control Lists ENABLED IP Addresses RETURN SAVE EXIT ...

Page 84: ...limited access applies to all IP access including but not limited to SLIP PPP connections Telnet Ping SNMP and HTTP When locally connected to the COM port of the host SmartSwitch device ACL does not restrict access to local management ACL cannot be enabled unless a valid IP address is listed When ACL is disabled host access is not restricted to the devices with an IP address in the Access Control ...

Page 85: ...6 Press ENTER 7 Use the arrow keys to highlight the SAVE command and press ENTER The message SAVED OK displays on the screen The designated devices associated with the IP addresses in the ACL will now be the only ones to have remote access to Local Management Access to Local Management using the COM port is not affected 4 6 2 Enable Disable ACL To only enable or disable ACL proceed as follows 1 Us...

Page 86: ...t memory is available How to Access Use the arrow keys to highlight the SYSTEM RESOURCES INFORMATION menu item on the Device Configuration Menu screen and press ENTER The System Resources Information screen Figure 4 12 displays Screen Example Figure 4 12 System Resources Information Screen 30691_18 Flash Memory Installed 4 MB DRAM Installed 16 MB NVRAM Installed XX KB Available XXXXX Bytes Availab...

Page 87: ...rocessor is used in the SmartSwitch device Flash Memory Installed Read Only See the amount of FLASH memory that is installed in the SmartSwitch device and how much is currently available DRAM Installed Read Only See the amount of DRAM installed in the SmartSwitch device and how much of it is currently available NVRAM Installed Read Only See the amount of NVRAM that is installed in the SmartSwitch ...

Page 88: ... copied from one SmartSwitch device to another via the TFTP server according to the rules described in this section The configuration file can also be stored on the TFTP server to prevent loosing the configuration values while performing maintenance on the SmartSwitch device After the maintenance is completed the configuration values can be downloaded to the same SmartSwitch device NOTE To force a...

Page 89: ... Flash Download Configuration screen Figure 4 13 displays Screen Example Figure 4 13 Flash Download Configuration Screen Download Method Reboot After Download TFTP Gateway IP Addr Download Server IP Download File Name Last Image Server IP Last Image File Name Transfer Status 30691_19 RUNTIME YES nnn nnn nnn nnn nnn nnn nnn nnn tftpboot SS2200 fls nnn nnn nnn nnn tftpboot SS2200 fls Download Succes...

Page 90: ...TP server This allows the replacement of the image file currently stored in the SmartSwitch device Section 4 8 1 describes how to download using Runtime DOWNLOAD CONFIG Used to download a configuration file from a TFTP server to a SmartSwitch device The configuration file must be one that was uploaded to the TFTP server from a SmartSwitch device of the same model with the same optional hardware an...

Page 91: ...e setting defaults to YES and cannot be changed In UPLOAD CONFIG the setting defaults to NO and cannot be changed TFTP Gateway IP Addr Modifiable Enter the IP address of the TFTP gateway server defined on the General Configuration screen in Section 4 2 4 Download Server IP Modifiable Select the IP address of the TFTP server to be used for the download or upload Download File Name Modifiable Select...

Page 92: ...teway IP Addr field on the General Configuration screen 5 Use the arrow keys to highlight the Download Server IP field 6 Enter the IP address of the TFTP server using the DDN format For example nnn nnn nnn nnn 7 Use the arrow keys to highlight the Download File Name field 8 Enter the complete pathway and file name of the image stored on the download server For example tftpboot SS2200 fls 9 Use the...

Page 93: ...the Download Server IP field 6 Enter the IP address of the TFTP server using the DDN format For example nnn nnn nnn nnn 7 Use the arrow keys to highlight the Download File Name field 8 Enter the complete pathway and file name of the image stored on the download server 9 Use the arrow keys to highlight EXECUTE at the bottom of the screen and press ENTER The message DOWNLOADING CONFIGURATION REBOOT ...

Page 94: ...ow keys to highlight the Download Server IP field 6 Enter the IP address of the target TFTP server using the DDN format For example nnn nnn nnn nnn 7 Use the arrow keys to highlight the Download File Name field 8 Enter the complete pathway and file name of the configuration file in the SmartSwitch device 9 Use the arrow keys to highlight EXECUTE at the bottom of the screen and press ENTER The mess...

Page 95: ...ct Configuration screen Section 5 7 SmartTrunk Configuration screen Screens are described in the SmartTrunk User s Guide Broadcast Suppression Configuration screen Section 5 8 Screen Navigation Path Password Device menu Device Configuration Menu Port Configuration Menu 5 1 PORT CONFIGURATION MENU SCREEN When to Use To select screens to perform port configuration tasks on the SmartSwitch device NOT...

Page 96: ...onal description of each menu item Table 5 1 Port Configuration Menu Screen Menu Item Descriptions Menu Item Screen Function ETHERNET INTERFACE CONFIGURATION Used to display the link status and current operating mode of each Ethernet port and provide access to the Ethernet Port Configuration screen which allows the configuration of the SmartSwitch device Ethernet ports For details refer to Section...

Page 97: ... HSIM or VHSIM setup screen depending on the one installed in the device The screens for optional non Ethernet HSIMs and VHSIMs are described in their respective user s guides For details refer to Section 5 4 REDIRECT CONFIGURATION MENU When the operational mode is set for 802 1Q SWITCHING this menu item provides access to the Port Redirect Configuration and VLAN Redirect Configuration screens For...

Page 98: ...face number Port Read Only See the number of the physical port on the interface For the front panel ports on the SmartSwitch device this will always be 1 30691_21 RETURN EXIT NEXT Intf 1 2 3 4 5 6 7 8 9 10 11 12 Port 1 1 1 1 1 1 1 1 1 1 1 1 PortType FE 100TX FE 100TX FE 100TX FE 100TX FE 100TX FE 100TX FE 100TX FE 100TX FE 100TX FE 100TX FE 100TX FE 100TX Link No Link No Link No Link No Link Link ...

Page 99: ...ysical connection to another device Speed Read Only See the current operational speed in Mbps 10 100 or 1000 If the port has not completed its auto negotiation NA displays Duplex Read Only See the current duplex setting as follows Half the port is operating in half duplex mode Full the port is operating in full duplex mode NA the port has not completed its auto negotiation Config Read Only See whe...

Page 100: ...ff or NA NA Not Applicable is displayed when the port does not support flow control Detailed explanations of the other selections are in Section 5 3 under the Full Duplex Flow Control description HDX FC Read Only See the current half duplex flow control setting Half duplex flow control also known as back pressure is a collision based flow control mechanism used in half duplex configurations The po...

Page 101: ...done on this screen How to Access Use the arrow keys to highlight the desired Ethernet port on the Ethernet Interface Configuration screen and press ENTER The Ethernet Port Configuration screen Figure 5 3 displays for the desired port Screen Example Figure 5 3 Ethernet Port Configuration Screen 30691_22 RETURN EXIT SAVE Interface 25 Physical Port 1 Default Speed 100 Default Duplex Full Auto Negoti...

Page 102: ...a Default Speed refer to Section 5 3 1 Default Duplex Toggle Choose the Default Duplex mode Half for half duplex or Full for full duplex If Auto Negotiation is disabled for the port then the port defaults to operate in the setting displayed To choose the Default Duplex refer to Section 5 3 1 Auto Negotiation State Toggle Establish whether Auto Negotiation is Enabled or Disabled for the specific po...

Page 103: ...10 Mbps operation 10Base TFD 10 Mbps full duplex operation 100Base TX 100 Mbps operation 100Base TXFD 100 Mbps full duplex operation 1000Base X 1000Base SX 1000Base LX Gigabit Ethernet 1000Base T 1000 Base T Gigabit Ethernet 1000Base XFD 1000Base SX 1000Base LX Full Duplex Gigabit Ethernet 1000Base TFD 1000Base T Full Duplex Gigabit Ethernet FDX PAUSE Symmetric PAUSE operation for 10 100 Mbps Ethe...

Page 104: ...using the port to ignore received PAUSE frames and prevent the port from transmitting PAUSE frames at any speed connection Auto Negotiate when supported the maximum flow control capabilities of the port are reflected in the PAUSE bits of the Auto Negotiation registers The ports flow control operational state is determined by the results of Auto Negotiation This option is not displayed if Auto Nego...

Page 105: ...gotiate to the highest speed possible Under some circumstances the Network Administrator may want the port to advertise only some of the available modes and not operate in other modes To set the advertised ability proceed as follows 1 Use the arrow keys to highlight the Advertised Ability field 2 Use the SPACE bar to select the desired mode 3 Use the arrow keys to move to the Enabled Disabled fiel...

Page 106: ...nfiguration and VLAN Redirect Configuration screens Any combination up to 128 of port and or VLAN redirect instances can be configured from these screens NOTE The HSIM VHSIM Configuration menu item can only be selected when a non Ethernet HSIM or VHSIM is installed in the SmartSwitch device When selected the applicable setup screen for that interface displays This only applies to HSIMs and VHSIMs ...

Page 107: ...tional description of each menu item Table 5 4 Redirect Configuration Menu Screen Menu Item Descriptions Menu Item Screen Function PORT REDIRECT CONFIGURATION Used to redirect traffic from a source switch port to a destination switch port For details refer to Section 5 6 VLAN REDIRECT CONFIGURATION Used to configure the device to direct traffic from a VLAN to a particular switch port The VLAN Redi...

Page 108: ...s traffic to be sent to a particular port where with the use of an analyzer or RMON probe all current traffic from the source port can be examined How to Access Use the arrow keys to highlight the PORT REDIRECT CONFIGURATION menu item on the Redirect Configuration Menu screen and press ENTER The Port Redirect Configuration screen Figure 5 5 displays NOTE If the device is operating in the SecureFas...

Page 109: ... source port Frame Format Read Only See the current frame format setting NORMAL TAGGED or UNTAGGED The default is NORMAL NORMAL Frames are redirected in the format that they were received or transmitted on the source port TAGGED Frames are transmitted on the destination port with a VLAN tag inserted according to the frame classification UNTAGGED Frames are transmitted on the destination port witho...

Page 110: ...ved or transmitted on the source port regardless of the frame format setting Source Port n Selectable Select the port n that is to be changed to a source port If a port is currently being redirected it will not display as a selectable port For details refer to Section 5 6 1 Destination Port n Selectable Select the port n that is to be changed to a destination port If a port is currently being redi...

Page 111: ...o select either the ADD or DEL delete option Press ENTER This adds or deletes the selections for the Source Port Destination Port Frame Format and Redirect Errors made in steps 1 through 8 and also updates the screen 11 Use the arrow keys to highlight SAVE at the bottom of the screen Press ENTER The message SAVED OK displays This saves the new settings and updates the Source Port and Destination P...

Page 112: ... useful for troubleshooting purposes as it allows traffic associated with a particular VLAN to be sent to a particular port where with the use of an analyzer or RMON probe all current traffic from the source VLAN can be examined How to Access Use the arrow keys to highlight the VLAN REDIRECT CONFIGURATION menu item on the Redirect Configuration Menu screen and press ENTER The VLAN Redirect Configu...

Page 113: ... To Source VLAN Read Only See the VLAN ID of the VLANs that are currently set as source VLANs Destination Port Read Only See which ports are currently set as destination ports Multiple VLANs may be assigned to a destination port 30691_25 Source VLAN 1 3 6 Destination Port 2 4 9 Redirect Errors UNSUPPORTED UNSUPPORTED UNSUPPORTED Frame Format RECEIVED TAGGED UNTAGGED Redirect Errors Unsupported SAV...

Page 114: ...dless of the format of the received frame Redirect Errors Unsupported Source VLAN n Modifiable Enter the VLAN ID of the VLAN that is to be changed to a source VLAN If a VLAN is currently being redirected it will not display as a selectable VLAN For details refer to Section 5 7 1 Destination Port n Selectable Select the port number that is to be changed to a destination port If a port is currently ...

Page 115: ... ENTER This adds or deletes the selections for the Source VLAN Destination Port and Frame Format made in steps 1 through 6 and also updates the screen 9 Use the arrow keys to highlight SAVE at the bottom of the screen Press ENTER The message SAVED OK displays This saves the new settings and updates the Source Port and Destination Port read only fields TIP If more than 1 port is being redirected re...

Page 116: ...CURE FAST VLAN This screen can only be used when the device is configured to operate as an 802 1Q switch Section 4 2 9 describes how to set the operational mode Broadcast frames received above the threshold setting are dropped 30691_26 PORT 1 2 3 4 5 6 7 8 9 10 11 12 Time Since Peak 999 23 59 999 23 59 999 23 59 999 23 59 999 23 59 999 23 59 999 23 59 999 23 59 999 23 59 999 23 59 999 23 59 999 23...

Page 117: ...splays Table 5 7 Broadcast Suppression Configuration Screen Field Descriptions Use this field To PORT Read Only Identify the number of the port Total RX Read Only See the total number of broadcast frames received Peak Rate Read Only See the highest number of broadcast frames received in a one second interval Time Since Peak Read Only See the time since peak rate was achieved Threshold Modifiable S...

Page 118: ...Peak field to YES or NO proceed as follows 1 Use the arrow keys to highlight the Reset Peak field for the selected port 2 Press the SPACE bar to select YES or NO 3 Use the arrow keys to highlight the SAVE command at the bottom of the screen 4 Press ENTER The message SAVED OK displays and the Time Since Peak field is also reset ...

Page 119: ...Section 6 4 Advanced Port Priority Configuration screen Section 6 5 Transmit Queues Configuration screen Section 6 6 Priority Classification Configuration screen Section 6 7 Protocol Port Configuration screen Section 6 8 selected from the Priority Classification Configuration screen GARP Configuration Menu screens Chapter 8 Rate Limiting Configuration Section 6 10 Screen Navigation Path Password D...

Page 120: ...N MENU item on the Device Configuration Menu screen and press ENTER The 802 1 Configuration Menu screen Figure 6 1 displays Screen Example Figure 6 1 802 1 Configuration Menu Screen NOTE The 802 1 Configuration Menu screen is not available if the operational mode of the device is set to SECURE FAST VLAN This screen can only be used when the SmartSwitch device is configured to operate as an 802 1Q ...

Page 121: ...artSwitch device has been configured to operate as an IEEE 802 1Q switch as described in Section 4 2 9 802 1 PRIORITY CONFIGURATION MENU Used to select the Port Priority Configuration Advanced Port Priority Configuration Transmit Queues Configuration or Priority Classification Configuration screen For details refer to Section 6 3 GARP CONFIGURATION MENU Used to select the GARP Configuration or GMR...

Page 122: ...H CONFIGURATION menu item on the 802 1 Configuration Menu screen and press ENTER The Switch Configuration screen Figure 6 2 displays showing ports 1 through 8 NOTE The Switch Configuration screen is not available if the operational mode of the device is set to SECURE FAST VLAN This screen can only be used when the device is configured to operate as an 802 1Q switch NOTE Ports numbers 1 through 24 ...

Page 123: ...ATM ports that will display on this screen Type of STA Toggle Set the method Spanning Tree Algorithm that switches use to decide which SmartSwitch device is the controlling Root switch Valid selection is IEEE DEC and None To set the STA refer to Section 6 2 1 25042 18 Port 1 2 3 4 5 6 7 8 State learning listening forwarding learning listening blocking listening listening RETURN SAVE MAC Address 00...

Page 124: ...affic is received or forwarded while the interface is disabled listening The SmartSwitch device is not adding information to the Transparent Database The SmartSwitch device is monitoring the Bridge Protocol Data Unit BPDU traffic while preparing to move from the learning to the forwarding state learning The SmartSwitch device is learning the addresses on this interface The SmartSwitch device enter...

Page 125: ...The message SAVED OK displays 6 2 2 Setting the Age Time Field To set the Age Time proceed as follows 1 Use the arrow keys to highlight the Age Time field 2 Type in the desired Age Time in increments of 10 The available Age Time range is 10 to 1 000 000 seconds with the default value being 300 seconds 3 Use the arrow keys to highlight the SAVE command at the bottom of the screen 4 Press ENTER The ...

Page 126: ...he Advanced Port Priority Configuration screen or set up each port to allocate a percentage of its transmission capacity to a priority for each transmit queue Mapping the frame protocol types to transmit priorities for each front panel port Each port may be added or deleted from a priority selected in the Protocol Priority Configuration screen How to Access Use the arrow keys to highlight the 802 ...

Page 127: ...o map priorities to transmit queues for each port This screen is also used to change priority on a port by port basis and to reprioritize frames received in one priority so they can be transmitted at a different priority For details refer to Section 6 5 TRANSMIT QUEUES CONFIGURATION Used to set each port individually or all ports simultaneously to either transmit frames according to the priority t...

Page 128: ...Access Use the arrow keys to highlight the PORT PRIORITY CONFIGURATION menu item on the 802 1 Priority Configuration Menu screen and press ENTER The Port Priority Configuration screen Figure 6 4 displays PRIORITY CLASSIFICATION CONFIGURATION Used to assign transmit priorities to protocol types of received frames and to access the Protocol Port Configuration screen to add or delete transmitting por...

Page 129: ...d in their tag header A priority of 0 through 7 with 0 being the lowest priority and 7 the highest can be selected for each port All ports are set to the default value of 0 when the SmartSwitch device is initialized NOTE Frames with priority indicated in their tag header are transmitted out ports only if the associated VLAN is specified to transmit frames with a tagged frame format To set the tran...

Page 130: ...o set the port priority on all ports proceed as follows 1 Use the arrow keys to highlight the Set All Switch Port s Priority field 2 Press the SPACE bar to select a priority from 0 through 7 0 is the lowest priority 3 Use the arrow keys to highlight the SAVE command at the bottom of the screen 4 Press ENTER The message SAVED OK displays and the setting is saved Set All Switch Port s Priority Selec...

Page 131: ...re any frames contained in TX queues 2 through 0 Priority Regeneration is used to classify different types of traffic by reprioritizing received frames to a different transmit priority within the device For example the frames associated with a particular type of traffic that have a received RX transmit priority or a port default priority of 3 could be changed to have a transmit priority of 5 out o...

Page 132: ...Priority Configuration Menu screen and press ENTER The Advanced Port Priority Configuration screen Figure 6 5 displays Screen Example Figure 6 5 Advanced Port Priority Configuration Screen 25043 88w RETURN SAVE EXIT Priority 0 1 2 3 4 5 6 7 TX Queue 1 0 0 1 2 2 3 3 TX Priority 0 1 2 3 4 5 6 7 Port xxx Default Priority 7 Priority Queue Mapping RX Priority 0 1 2 3 4 5 6 7 Priority Regeneration ...

Page 133: ...Only See the list of the eight priorities 0 through 7 TX Queue Selectable Enable the frames with a certain priority to be mapped to transmit according to one of four TX queues 0 through 3 with 0 being the lowest transmit level Refer to the following table for the TX Queue default values according to frame priority To set the TX Mapping Queues refer to Section 6 5 1 RX Priority Read Only See the ei...

Page 134: ... the appropriate output port For example all frames with an RX priority of 3 could be regenerated with a TX priority of 5 The new value would also be inserted in the VLAN tag if the frame is tagged as outbound The priority is used to determine the correct queue as defined in the Priority Queue Mapping The default values for the TX Priority settings are listed in the following table according to RX...

Page 135: ...splays and the setting is saved 6 5 2 Setting the TX Regeneration Priorities To set the TX priority for frames with a particular RX priority proceed as follows 1 Use the arrow keys to highlight the Port field 2 Type in the number of the port to which the TX priority setting will be applied 3 Use the arrow keys to highlight the Default Priority field at the bottom of the screen The screen refreshes...

Page 136: ...entage of the port transmission capacity allocated for each transmit queue In the STRICT 802 1 mode frames are transmitted strictly according to the priorities set in the Advanced Priority Configuration screen In this mode all frames with a transmit queue of Q3 are transmitted first followed by those with transmit queues of Q2 then Q1 and finally Q0 In the WEIGHTED mode a percentage weighted value...

Page 137: ... Configuration screen Figure 6 6 displays Screen Example Figure 6 6 Transmit Queues Configuration Screen WEIGHTED Q0 Q1 Q2 Q3 0 25 38 31 94 Must add up to 100 30691_45 Current Queueing Mode Weights These fields display only when the Current Queueing Mode is set to WEIGHTED The Must add up to 100 message displays as long as the total percentage is not 100 as shown RETURN SAVE SET ALL PORTS RETURN P...

Page 138: ...e Current Queueing Mode is set to STRICT 802 1 The weights selected must equal 100 or the values cannot be saved Default weight distribution is 25 per transmission queue Selectable percent weight values per priority transmit queue Q0 through Q3 are as follows 00 06 12 19 25 31 38 44 50 56 62 69 75 81 88 94 100 To set the weight per priority refer to Section 6 6 1 Port Selectable Step to the port t...

Page 139: ...l be transmitted out the port according to the percent of transmit capacity allocated for each transmit queue The default percentages are 25 for each transmit queue Q0 through Q3 To set the priority transmit queue fields go to step 5 5 Use the arrow keys to highlight the Q0 field 6 Use the SPACE bar to step to the appropriate percent value for the priority transmit queue Q0 Q0 is the lowest priori...

Page 140: ...unction refer to Section 6 7 2 Write over an existing TOS value When a frame is received that already contains an 802 1Q frame tag frame classification is not implemented Instead the frame is processed by the SmartSwitch device according to the information contained in the 802 1Q frame tag How to Access Use the arrow keys to highlight the PRIORITY CLASSIFICATION CONFIGURATION menu item on the 802 ...

Page 141: ...ion used in the Protocol Port Configuration screen For details refer to Section 6 7 3 Classification top of screen Selectable See the classification associated with the priority in the PID column and may be selected to call up the Protocol Port Configuration screen Description top of screen Selectable See a brief description of the classification 30793_97w RETURN EXIT Description ADD IP 123 123 03...

Page 142: ...nsmitted also depends on the Classification Precedence Rules discussed in Section 6 7 1 These rules come into effect when there are multiple classifications configured in the SmartSwitch device For details on how to use the Priority Classification Configuration screen to select the classification rule refer to Section 6 7 4 ADD bottom of screen Toggle Add the current Classification Rule PID and Cl...

Page 143: ...indicates a user entry Table 6 8 Classification List Classification Subclassification and Options Custom or Mask Value Ethernet II Type Ethernet II Type IPX DOD IP ARP RARP AppleTalk Banyan Vines DECNET CUSTOM Type Value 0x0000 802 3 SAP New IP TOS NO CHANGE TOS PID CUSTOM Same Same Same Same Same For more information about IP TOS refer to Section 6 7 4 SSAP DSAP 803 2 IP TOS Value 0x00 Range 0 25...

Page 144: ...TOS PID CUSTOM Same Same Same Same Same IP Protocol Type TCP TOS Value 0x00 Range 0 255 UDP ICMP IGMP OSPF CUSTOM Protocol Type 000 IPX COS IPX Class Of Service 000 IPX Packet Type IPX Packet Type Hello or SAP RIP Echo Packet Error Packet Netware 386 SAP Seq Pkt Protocol Netware 286 CUSTOM IPX Packet Type 00 Table 6 8 Classification List Continued Classification Subclassification and Options Custo...

Page 145: ... 000 Dest IP Address New IP TOS NO CHANGE TOS PID CUSTOM IP Address 000 000 000 000 TOS Value 0x00 Range 0 255 Mask 000 000 000 000 Bil IP Address New IP TOS NO CHANGE TOS PID CUSTOM IP Address 000 000 000 000 TOS Value 0x00 Range 0 255 Mask 000 000 000 000 Src IPX Network IPX Network Num 0x00000000 Table 6 8 Classification List Continued Classification Subclassification and Options Custom or Mask...

Page 146: ...e Same Same Same Same Same IP UDP Port FTP Data TOS Value 0x00 Range 0 255 FTP BOOTP Server BOOTP Client RIP Telnet TFTP HTTP DNS SMTP POP3 IMAP2 IMAP3 NETBIOS Name Serv NETBIOS Datagram NETBIOS Sess Serv CUSTOM UDP Port Number 00000 Dest UDP Port Same selections as for Src UDP Port IP UDP Port Same selection as for Src UDP Port Classification UDP Port Number 00000 Table 6 8 Classification List Co...

Page 147: ...me Same Same Same Same Same Same Same Same Same Same TCP Port FTP Data TOS Value 0x00 Range 0 255 FTP BOOTP Server BOOTP Client RIP Telnet TFTP HTTP DNS SMTP POP3 IMAP2 IMAP3 NETBIOS Name Serv NETBIOS Datagram NETBIOS Sess Serv CUSTOM TCP Port Number 00000 Dest TCP Port Same selections as for Src TCP Port TCP Port Same selection as for Src TCP Port Classification TCP Port Number 00000 Table 6 8 Cl...

Page 148: ...X WAN CUSTOM IPX Socket Type 00000 Dest IPX Socket IPX Socket Same selection as for Src IPX Socket Classification IPX Socket Type 00000 Bil IPX Socket IPX Socket Same selection as for Src IPX Socket Classification IPX Socket Type 00000 Src MAC Address MAC Address 00 00 00 00 00 00 Dest MAC Address MAC Address 00 00 00 00 00 00 Bil MAC Address MAC Address 00 00 00 00 00 00 Table 6 8 Classification ...

Page 149: ...TOS NO CHANGE TOS PID CUSTOM Start 00000 TOS Value 0x00 Range 0 255 End 00000 Dest UDP Range New IP TOS NO CHANGE TOS PID CUSTOM Start 00000 TOS Value 0x00 Range 0 255 End 00000 Bil UDP Range New IP TOS NO CHANGE TOS PID CUSTOM Start 00000 TOS Value 0x00 Range 0 255 End 00000 Table 6 8 Classification List Continued Classification Subclassification and Options Custom or Mask Value ...

Page 150: ...e 0x00 Range 0 255 End 00000 Bil TCP Port New IP TOS NO CHANGE TOS PID CUSTOM Start 00000 TOS Value 0x00 Range 0 255 End 00000 1 Any fragmented IP frame received is Classified to the priority identification PID and forwarded out the ports configured in the Protocol Port Configuration screen 2 Any fragmented IP frame received is Classified to the priority identification PID and forwarded out the po...

Page 151: ...of an explicitly defined address Best Match indicates a match of an entire subnet or range of addresses within a subnet Table 6 9 Classification Precedence Classification Type Precedence Level Layer 2 Source MAC Address Best Match 1a Destination MAC Address Best Match 1b EtherType 6 SAP 6 Layer 3 IP TOS 5a IP Type 5b IPX COS 5a IPX Type 5b Source IP Address Exact Match 2a Source IP Address Best Ma...

Page 152: ...mber 2a Destination IPX Network Number 2b IP Fragments 3 Layer 4 UDP Port Source 4a UDP Port Destination 4b TCP Source Port 4a TCP Destination Port 4b IPX Socket Source 4a IPX Socket Destination 4b UDP Source Port 4a UDP Source Port Range 4b Table 6 9 Classification Precedence Continued Classification Type Precedence Level ...

Page 153: ...ecedence level 4a are assigned to priority 3 In this example a frame that is received with a TOS value of AA and a TCP port number of 80 will be assigned to priority 3 This is because the TCP port number classifications take precedence over IP TOS classifications The key thing to remember is that the switch module will classify frames based on one of the classification options Layer 4 Continued UD...

Page 154: ...rt a user defined 8 bit value into the layer 3 TOS field Write over an existing TOS value This is useful when the Network Administrator wants to enforce a specific priority policy in the network 6 7 3 Displaying the Current PID Classification Assignments To see which ports are set to a particular PID Classification Classification Rule the Protocol Port Configuration screen must be displayed To acc...

Page 155: ...he SPACE bar to step to the appropriate protocol In some cases there is only one selection and a value needs to be entered This is indicated by bold zeros Table 6 8 lists the possible selections associated with each subclassification examples IPX AppleTalk NetBIOS Banyan Vines 000 000 000 000 0x00000000 etc 7 In some cases a selection in the subclassification field requires a value to be entered i...

Page 156: ...KED command field 5 Press ENTER The marked line items are deleted and the DEL MARKED command is changed back to DEL ALL 6 8 PROTOCOL PORT CONFIGURATION SCREEN When to Use To display the ports associated with the line item Classification Rule selected in the Priority Classification Configuration screen described in Section 6 7 Each port can be changed so it will or will not transmit frames accordin...

Page 157: ... DOD IP was selected in the Priority Classification Configuration screen to access the Protocol Port Configuration screen All ports with YES in the Classify columns would be those ports associated with PID 1 with an Ether II Type Classification This causes Ether II Type frames received by those ports to be transmitted with a priority value of 1 and according to the Classification Precedence Rules ...

Page 158: ...See the number of each port Classify Toggle See which ports are set to the PID Classification indicated in the Classification Rule field see Figure 6 9 The Classify field toggles between YES and NO which determines whether or not the associated port is set to the Classification Rule NOTE As each Classify field is highlighted the Event Message Line not shown at the top of the screen indicates the p...

Page 159: ...ze network traffic using classification rules In this example illustrated in Figure 6 10 the ABC Company wants to prioritize traffic to their SAP server and Mail server so that the SAP Server has the highest priority and the Mail Server the lowest priority Figure 6 10 Prioritizing Network Traffic According to Classification Rule 6 9 1 Solving the Problem In this example switches S1 and S2 have alr...

Page 160: ...2 Assign all ports on the SmartSwitch device to use this classification setting 3 To set the Mail Server IP 123 123 30 7 to the lowest priority 0 the following settings will be made using the Priority Classification Configuration screen PID 0 Classification Bil IP Address IP Address 123 123 30 7 Data Mask 255 255 255 255 4 Assign all ports on the SmartSwitch device to use this classification setti...

Page 161: ... list of priorities The list of priorities can include one some or all of the eight 802 1p priority levels The combined rate of all traffic entering and exiting the port with the priorities configured to that port is not allowed to exceed the programmed limit If the rate exceeds the programmed limit frames are dropped until the rate falls below the limit For more information about the application ...

Page 162: ...onfiguration for a port needs to be changed delete the line containing the incorrect configuration and then enter a new configuration with the correct settings Priority List top of screen Read Only See the priorities associated with each port entry 30695_105 Port 1 1 1 1 5 5 10 Max Traffic Rate 500 kbps 500 kbps 500 kbps 500 kbps 500 kbps 500 kbps 1000 kbps Direction Inbound Outbound Inbound Outbo...

Page 163: ...t feature status ENABLED or DISABLED and can be toggled between ENABLED and DISABLED When ENABLED is highlighted pressing ENTER disables the screen function and the field changes to DISABLED DISABLED is the default value NOTE This field must be enabled for the Rate Limiting feature to function Port Number Modifiable or Port Type bottom of screen Selectable Enter the number of the port to be config...

Page 164: ...r rate limit rules entries may be set per port two for Inbound and two for Outbound or any combination of the four Inbound or Outbound Inbound refers to traffic being received by the SmartSwitch device and Outbound refers to traffic leaving the SmartSwitch device Inbound configures the rate limit to drop frames when the traffic rate kbps received by the switch port exceeds the setting in the MAX R...

Page 165: ...CE bar to select either all 100Mbps enet or all 1Gbps enet Max Rate kbps bottom of screen Modifiable Enter the maximum transmission rate for this entry The maximum transmission rate includes all frames associated with the priorities selected in the Priority List field The minimum setting is 100 100 kbps For details on configuring a port refer to Section 6 10 1 ADD bottom of screen Command Add the ...

Page 166: ... field and press ENTER The new entry displays in the screen 10 Repeat steps 1 through 9 of this procedure to configure additional ports 11 If Inbound or Outbound rate limiting entries are to be configured on other ports on the device repeat steps 1 through 10 to configure each port Any combination of Inbound and Outbound entries may be configured per port with a limit of two for Inbound and two fo...

Page 167: ...are marked use the arrow keys to highlight the DEL MARKED command field 5 Press ENTER The marked line items are deleted and the DEL MARKED command is changed back to DEL ALL 6 10 3 More About Rate Limiting Rate Limiting enables Service Providers in Multi Dwelling Unit MDU and similar environments to offer varied bandwidth to customers using low cost Ethernet connections Another solution for the en...

Page 168: ...ched to each SmartSwitch 6000 chassis through 100 Mbps Ethernet ports If each user attempted to transfer data out of the wiring closet at the maximum possible rate there could be up to 10 Gbps 100 users x 100 Mbps of traffic attempting to leave the chassis over a single gigabit link In this situation much of the traffic will be arbitrarily dropped Now assume that the system administrator wants to ...

Page 169: ... 7 6 VLAN Classification Configuration screen Section 7 7 Protocol Port Configuration Section 7 8 selected from the VLAN Classification Configuration screen Screen Navigation Path Password Device Menu Device Configuration Menu 802 1 Configuration Menu 802 1Q VLAN Configuration Menu NOTE It is strongly recommended to read Chapter 12 to obtain an understanding of VLANs and the associated terminology...

Page 170: ...ssential to a good VLAN implementation Before attempting to configure a single switch for VLAN operation consider the following How many VLANs will be required What stations will belong to them What ports are connected to those stations What ports will be configured as GARP aware ports It is also helpful to sketch out a diagram of your VLAN strategy The examples provided in Chapter 12 are useful f...

Page 171: ... be configured on a network at the switched port of the SmartSwitch device or SmartSwitch chassis Also some or all of the ports on the switch can be configured as GVRP ports which enable frames received with a particular VLAN ID and protocol to be transmitted on a limited number of ports This keeps the traffic associated with a particular VLAN and protocol to be isolated from the other parts of th...

Page 172: ...ENU item on the 802 1 Configuration Menu screen and press ENTER The 802 1Q VLAN Configuration Menu screen Figure 7 2 displays Screen Example Figure 7 2 802 1Q VLAN Configuration Menu Screen DEVICE VLAN CONFIGURATION 30691 85 RETURN PORT ASSIGNMENT CONFIGURATION VLAN FORWARDING CONFIGURATION EXIT PORT FILTERING CONFIGURATION VLAN CLASSIFICATION CONFIGURATION ...

Page 173: ...he operational mode of a port Refer to Section 7 4 for additional information PORT FILTERING CONFIGURATION Used to set the switch to filter out inbound frames to prevent them from being forwarded by the switch out a particular port This screen also lists the VLANs whose frames are eligible to be transmitted out that port Refer to Section 7 5 for additional information VLAN FORWARDING CONFIGURATION...

Page 174: ...play up to eight VLANs simultaneously How to Access Use the arrow keys to highlight the DEVICE VLAN CONFIGURATION menu item on the 802 1Q VLAN Configuration Menu screen and press ENTER The Device VLAN Configuration screen Figure 7 3 displays Screen Example Figure 7 3 Device VLAN Configuration Screen 25993 05w RETURN EXIT Forward Default VLAN Out All Ports NO VLAN ID 1 FID 1 VLAN Name DEFAULT VLAN ...

Page 175: ...gned to the VLAN IDs If a name has not been assigned to a VLAN the VLAN Name field displays Not Defined VLAN Name top of screen Read Only See the exiting VLANs and the associated VLAN IDs FIDs and if they are enabled or disabled Admin Status Toggle Set the current state of the associated VLAN This field toggles between Enabled and Disabled An enabled VLAN is operational and a disabled VLAN is not ...

Page 176: ...LAN and is not required for VLAN operation 7 Use the arrow keys to highlight the ADD DEL field 8 Press the SPACE bar to select ADD for a defined VLAN Press ENTER The new VLAN will be added to the VLAN list The message VLAN ADDED displays in the Event Message Line in the upper left hand corner of the screen The VLAN will not be saved to the switch until the configuration is saved 9 Use the arrow ke...

Page 177: ...n the upper left hand corner of the screen displays VLAN UPDATED where represents the entered ID number 5 Use the arrow keys to highlight the SAVE command at the bottom of the screen Press ENTER The message SAVED OK displays 7 3 3 Renaming a VLAN To change the name of an existing VLAN proceed as follows 1 Enter the VLAN ID The VLAN Name field will automatically update to display the VLAN s current...

Page 178: ...ottom of the screen Press ENTER The message SAVED OK displays 7 3 5 Enabling VLANs To enable a VLAN proceed as follows 1 Use the arrow keys to highlight the Admin Status field of the selected VLAN 2 Press the SPACE bar to toggle the field to display Enabled 3 Use the arrow keys to highlight the SAVE command at the bottom of the screen 4 Press ENTER The message SAVED OK displays 7 3 6 Disabling VLA...

Page 179: ...Through the VLAN List To display additional VLANs that do not display in the current VLAN List as shown on the screen use the NEXT or PREVIOUS commands located at the bottom of the screen as follows 1 To display the next screen use the arrow keys to highlight NEXT Press ENTER to view the entries on the next screen 2 To display the previous screen use the arrow keys to highlight PREVIOUS Press ENTE...

Page 180: ...1Q TRUNK or 1D TRUNK The default is HYBRID VLAN ID Selectable Select the ID number of the VLAN that is associated with the current port Port VLAN ID This is the VLAN ID into which any untagged frame will be classified The default PVID is 0001 25992 06w RETURN EXIT Port 1 2 3 4 5 6 7 8 9 10 11 12 Port Mode 1D TRUNK 1Q TRUNK HYBRID HYBRID HYBRID HYBRID HYBRID HYBRID HYBRID HYBRID HYBRID HYBRID VLAN ...

Page 181: ...e Port VLAN List for the port includes all VLANs 1D TRUNK This mode sets the port for transmitting to a legacy 802 1D switch fabric In this mode all incoming frames are classified into the default VLAN and all frames are transmitted untagged The switch expects to receive only untagged frames through the 1D Trunk port This mode also updates the Port VLAN List and makes the port eligible to transmit...

Page 182: ...he bottom of the screen 4 Press ENTER The message SAVED OK displays 7 4 3 Paging Through the Port List To display additional ports that do not display in the current screen use the NEXT or PREVIOUS commands at the bottom of the screen as follows 1 To display the next screen use the arrow keys to highlight NEXT Press ENTER to view the entries on the next screen 2 To display the previous screen use ...

Page 183: ...Filter out of all incoming untagged frames so they will not be transmitted out another port How to Access Use the arrow keys to highlight the PORT FILTERING CONFIGURATION menu item on the 802 1Q VLAN Configuration Menu screen and press ENTER The Port Filtering Configuration screen Figure 7 5 displays Screen Example Figure 7 5 Port Filtering Configuration Screen 25992 07w RETURN EXIT Filter Using V...

Page 184: ...figured to have their frames transmitted out of the port selected in the Port field VLAN Name Read Only See the names of the VLANs associated with the VLAN ID If a VLAN does not have a name Not Defined is displayed Port Selectable Step to the port number of the interface being configured including the selection of ALL ports Filter Using VLAN Lists Toggle Filter out drop frames that are classified ...

Page 185: ...llows 1 Use the arrow keys to highlight the Port field 2 Use the SPACE bar or BACKSPACE key to step through the available port selections 3 Use the arrow keys to highlight the Filter Using VLAN Lists field 4 Use the SPACE bar or BACKSPACE key to toggle between YES and NO When set to YES the switch will drop all incoming frames that are classified with a VLAN tag of a VLAN that does not appear on t...

Page 186: ...02 1Q VLAN Configuration Menu screen and press ENTER The VLAN Forwarding Configuration screen Figure 7 6 displays Screen Example Figure 7 6 VLAN Forwarding Configuration Screen 25992 08w RETURN EXIT VLAN Name xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx ATM PVC VCI 1 VPI 23 Current VLAN Ports Port 15 Port 17 Port 20 Port 23 Port 24 Port 25 Port 35 Port 30 Frame Format Untagged Untagged Untagged Untagged Unta...

Page 187: ...Type Read Only See the MIB2 interface description for the selected switch port Frame Format Read Only See the frame format Tagged or Untagged for the frames of the selected VLAN that the port will transmit VLAN ID Selectable Select the identification of the VLAN under examination This screen displays the list of ports currently configured to transmit frames for the VLAN ID in this field VLAN Name ...

Page 188: ...e ports on the module with the SPACE bar or BACKSPACE key 3 Use the arrow keys to highlight the ADD DELETE field Press the SPACE bar to select ADD or DELETE Press ENTER The Forwarding List entry will be added to the list of current VLANs once the configuration is saved 4 Use the arrow keys to highlight the SAVE command at the bottom of the screen 5 Press ENTER The message SAVED OK displays The por...

Page 189: ...splays 7 7 VLAN CLASSIFICATION CONFIGURATION SCREEN When to Use To perform the following Display the VLAN ID VID Protocol Classification and Description of each classification of the current entries Assign VLANs according to Classification rules Add delete a VID and associated classification entry Access the Protocol Port Configuration screen When a frame is received that already contains an 802 1...

Page 190: ...d Descriptions Use this field To VID top of screen Selectable See the VLAN Identifications VIDs currently associated with a protocol classification To see which ports are assigned to a VID Classification or to add remove a port from a VID Classification use the Protocol Port Configuration screen For details refer to Section 7 7 2 3135_97w RETURN Classification Rule EXIT Description ADD IP 123 123 ...

Page 191: ...time of this printing the selections available in each field are listed in Table 7 7 NOTE Besides the VID selected the order in which a frame is transmitted also depends on the Classification Precedence Rules discussed in Section 7 7 1 These rules come into effect when there are multiple classifications configured in the SmartSwitch device For details on how to use the VLAN Classification Configur...

Page 192: ...es a user entry Table 7 7 Classification List Classification Subclassification and Options Custom or Mask Value Src MAC Address MAC Address 00 00 00 00 00 00 Dest MAC Address MAC Address 00 00 00 00 00 00 Bil MAC Address MAC Address 00 00 00 00 00 00 IP Fragments1 Ethernet II Type Ethernet II Type IPX DOD IP ARP RARP AppleTalk Banyan Vines DECNET CUSTOM Type Value 0x0000 802 3 SAP SSAP DSAP 803 2 ...

Page 193: ... Type Hello or SAP RIP Echo Packet Error Packet Netware 386 SAP Seq Pkt Protocol Netware 286 CUSTOM IPX Packet Type 00 Src IP Address IP Address 000 000 000 000 Mask 000 000 000 000 Dest IP Address IP Address 000 000 000 000 Mask 000 000 000 000 Bil IP Address IP Address 000 000 000 000 Mask 000 000 000 000 Src IPX Network IPX Network Num 0x00000000 Table 7 7 Classification List Continued Classifi...

Page 194: ...ent RIP Telnet TFTP HTTP DNS SMTP POP3 IMAP2 IMAP3 NETBIOS Name Serv NETBIOS Datagram NETBIOS Sess Serv CUSTOM UDP Port Number 00000 Dest UDP Port IP UDP Port Same selection as for Src UDP Port Classification UDP Port Number 00000 Bil UDP Port IP UDP Port Same selection as for Src UDP Port Classification UDP Port Number 00000 Table 7 7 Classification List Continued Classification Subclassification...

Page 195: ...P2 IMAP3 NETBIOS Name Serv NETBIOS Datagram NETBIOS Sess Serv CUSTOM TCP Port Number 00000 Dest TCP Port TCP Port Same selection as for Src TCP Port Classification TCP Port Number 00000 Bil TCP Port TCP Port Same selection as for Src TCP Port Classification TCP Port Number 00000 Table 7 7 Classification List Continued Classification Subclassification and Options Custom or Mask Value ...

Page 196: ...gnostics NLSP IPX WAN CUSTOM IPX Socket Type 00000 Dest IPX Socket IPX Socket Same selection as for Src IPX Socket Classification IPX Socket Type 00000 Bil IPX Socket IPX Socket Same selection as for Src IPX Socket Classification IPX Socket Type 00000 1 Any fragmented IP frame received is Classified to the priority identification PID and forwarded out the ports configured in the Protocol Port Conf...

Page 197: ...ce is 6 Exact Match indicates a match of an explicitly defined address Best Match indicates a match of an entire subnet or range of addresses within a subnet Table 7 8 Classification Precedence Classification Type Precedence Level Layer 2 Source MAC Address Best Match 1a Destination MAC Address Best Match 1b EtherType 6 SAP 6 Layer 3 IP TOS 5a IP Type 5b IPX COS 5a IPX Type 5b Source IP Address Ex...

Page 198: ...rce IPX Network Number 2a Destination IPX Network Number 2b IP Fragments 3 Layer 4 UDP Port Source 4a UDP Port Destination 4b TCP Source Port 4a TCP Destination Port 4b IPX Socket Source 4a IPX Socket Destination 4b UDP Source Port 4a UDP Source Port Range 4b UDP Dest Port 4c UDP Dest Port Range 4d Table 7 8 Classification Precedence Continued Classification Type Precedence Level ...

Page 199: ... the SmartSwitch devices will classify frames based on one of the classification options 7 7 2 Displaying the Current Classification Rule Assignments To see which ports are set to a particular Classification Rule the Protocol Port Configuration screen must be displayed To access the Protocol Port Configuration proceed as follows 1 Use the arrow keys to highlight the line with the Classification Ru...

Page 200: ... SPACE bar to step to the appropriate protocol In some cases there is only one selection and a value needs to be entered This is indicated by bold zeros Table 7 7 lists the possible selections associated with each subclassification examples IPX AppleTalk NetBIOS Banyan Vines 000 000 000 000 0x00000000 etc 7 In some cases a selection in the subclassification field requires a value to be entered in ...

Page 201: ...o highlight the line with the Classification Rule to be deleted 2 Press the M key and an asterisk appears next to the highlighted line to mark it The DEL ALL command is changed to DEL MARKED 3 If more than one Classification Rule is to be deleted repeat steps 1 and 2 to mark each line 4 After the lines are marked use the arrow keys to highlight the DEL MARKED command field 5 Press ENTER The marked...

Page 202: ... being associated with the Classification Rule Add ports to the VLAN Forwarding List of the SmartSwitch device How to Access Use the arrow keys to highlight the line item of interest on the VLAN Classification Configuration screen and press ENTER The Protocol Port Configuration screen Figure 7 8 displays NOTE The ports can only be added to the VLAN Forwarding List of an existing VLAN If the VLAN d...

Page 203: ...tion screen All ports with YES in the Classify columns indicate that they are associated with VID 1 and the Ether II Type Classification This causes the received VLAN 1 Ether II Type frames that are received to be transmitted out all ports with the YES setting except for the port receiving the frame This will cause Ether II Type of type 0 0800 DOD IP frames to be transmitted out all ports set to Y...

Page 204: ...d NOTE As each Classify field is highlighted the Event Message Line not shown at the top of the screen indicates the port type For example Fast Ethernet Front Panel and Gigabit Ethernet VHSIM If a port cannot be configured NO will be displayed without brackets SET ALL PORTS Toggle Set all ports to the VLAN and Classification shown in the Classification Rule field The SET ALL PORTS field toggles be...

Page 205: ...the SPACE bar to toggle the SET ALL PORTS field to YES or NO and press ENTER YES will set all the ports to the VID Classification shown in the Classification Rule field NO will remove all ports from the Classification Rule 3 Use the arrow keys to highlight the SAVE command at the bottom of the screen 4 Press ENTER The message SAVED OK displays and the setting is saved Assigning VID Classification ...

Page 206: ......

Page 207: ...ation Protocol GVRP and GARP Multicast Registration Protocol GMRP on the switch and set each port to operate as a GVRP and or GMRP aware port GMRP Configuration screen Section 8 3 which is used to select individual ports or all of the ports and apply one of four modes of operation according to or regardless of the multicast address registration For more information about GARP refer to Appendix A S...

Page 208: ...artSwitch module is operating in the 802 1Q SWITCHING mode The mode selection is a Local Management operation that is accessible through the General Configuration screen How to Access Use the arrow keys to highlight the GARP CONFIGURATION MENU item on the 802 1 Configuration Menu screen and press ENTER The GARP Configuration Menu screen Figure 8 1 displays Screen Example Figure 8 1 GARP Configurat...

Page 209: ...s a GVRP or GMRP aware port so it can send receive frames from other GVRP or GMRP aware devices GVRP and GMRP enable the switch to dynamically create VLANs and Multicast Registration across a switched network For more information about GVRP and GMRP refer to Appendix A For details about the screen refer to Section 8 2 GMRP CONFIGURATION Used to select individual ports or all of the ports and apply...

Page 210: ...to highlight the GARP CONFIGURATION menu item on the GARP Configuration Menu screen and press ENTER The GARP Configuration screen Figure 8 2 displays Screen Example Figure 8 2 GARP Configuration Screen 25041 33w RETURN EXIT Port 1 3 5 7 9 11 13 15 17 19 Set All Ports GMRP Enable All SAVE Port 2 4 6 8 10 12 14 16 18 20 NEXT GMRP y y y y y y y y y y GMRP y y y y y y y y y y GVRP y y y y y y y y y y ...

Page 211: ... Protocol field near the bottom of the screen is set to Enable The GMRP field setting toggles between Y yes and N no The default is Y To set the port refer to Section 8 2 1 GVRP Toggle Set one port to operate as a GVRP aware port NOTE Only ports set as hybrid ports may be configured as GVRP ports To set a port to the hybrid mode of operation refer to Section 7 4 The setting is only valid if the GV...

Page 212: ...both GMRP and GVRP To set all ports refer to Section 8 2 1 GMRP Protocol Toggle Enable or disable the GMRP Protocol on the switch When set to Enable all port settings are valid for GMRP enabling those ports to send receive frames to other GMRP aware switches Disable makes the port settings invalid The default setting is Disable To enable or disable the protocol refer to Section 8 2 2 GVRP Protocol...

Page 213: ...2 Setting All Ports on the Switch All ports on the switch can be set at one time to one mode of operation using the Set All Ports field To select the mode of operation using the Set All Ports field proceed as follows 1 Use the arrow keys to highlight the Set All Ports field 2 Press the SPACE bar to select one of the following GMRP Enable All GMRP Disable All GVRP Enable All GVRP Disable All Enable...

Page 214: ... 12 Mode Use GMRP Filter Unreg Use GMRP Filter Unreg Use GMRP Filter Unreg Use GMRP Filter Unreg Use GMRP Filter Unreg Use GMRP Filter Unreg Use GMRP Filter Unreg Use GMRP Filter Unreg Use GMRP Filter Unreg Use GMRP Filter Unreg Use GMRP Filter Unreg Use GMRP Filter Unreg Set All Ports Forward All Groups SAVE Port 13 14 15 16 17 18 19 20 21 22 23 24 Mode Use GMRP Filter Unreg Use GMRP Filter Unreg...

Page 215: ...displays and all modes selected are saved Table 8 3 GMRP Configuration Screen Field Descriptions Use this field To Port Read Only See the number of the front panel interfaces Mode Selectable Select one of the following four modes of operation Use GMRP Filter Unreg Do not forward frames out this port that have an unregistered multicast address Forward All Groups Regardless of multicast address regi...

Page 216: ...o operate in one mode proceed as follows 1 Use the arrow keys to highlight the Set All Ports field 2 Press the SPACE bar to select one of the following modes of operation Use GMRP Filter Unreg Forward All Groups Filter All Groups Use GMRP Forward Unreg 3 Press ENTER 4 Use the arrow keys to highlight the SAVE command at the bottom of the screen 5 Press ENTER The message SAVED OK displays and all po...

Page 217: ...xtensions Menu 9 1 LAYER 3 EXTENSIONS MENU SCREEN When to Use To access the IGMP VLAN Configuration screen How to Access Use the arrow keys to highlight the LAYER 3 EXTENSIONS MENU item on the Device Configuration Menu screen and press ENTER The Layer 3 Extensions Menu screen Figure 9 1 displays NOTE The Layer 3 Extensions Menu screen is not available when the device is in SecureFast mode Section ...

Page 218: ...or a functional description of each menu item at this time there is only one menu item Table 9 1 Layer 3 Extensions Menu Screen Menu Item Descriptions Menu Item Screen Function IGMP VLAN CONFIGURATION Used to enable or disable IGMP Internet Group Management Protocol on selected VLANs For details refer to Section 9 2 2504_103w IGMP VLAN CONFIGURATION RETURN EXIT ...

Page 219: ...tion from the IGMP packets is used to send the multicast stream only to the end stations that request it IGMP is enabled or disabled by VLAN not port by port The following multicast routing protocols are transparently supported and are used only to detect the location of routers See the Release Notes for any changes or additions to this list DVMRP Distance Vector Multicast Routing Protocol RFC 107...

Page 220: ...ays Screen Example Figure 9 2 IGMP VLAN Configuration Screen Field Descriptions Table 9 2 describes each field of the IGMP VLAN Configuration screen 25041_104w Configuration IGMP Version 2 Query Interval 120 Query Response Time 10 Interface Robustness 2 Last Member Query Interval 1 Statistics Querier Address xxx xxx xxx xxx Querier Uptime 0 D 10 H 16 M Querier Expire Time 219 S VLAN ID XXX IGMP St...

Page 221: ...ossible entries is 1 to 300 seconds An entry outside of the range will cause the error message PERMISSIBLE RANGE 1 300 to display in the Event Message field The field will initially display an asterisk if the VLAN ID is set to ALL then it will be modifiable Query Response Time Modifiable Enter the maximum query response time advertised in IGMPv2 general queries on this VLAN This value is used in c...

Page 222: ... ALL Querier Expire Time Read Only See the number of seconds remaining before the Other Querier Present Timer expires If the local system current device displayed is the querier the value of this object is zero The field will initially display an asterisk if the VLAN ID is set to ALL VLAN ID Selectable See the Identifying number of the VLANs available to be modified The information under Configura...

Page 223: ...ED to set the default for new VLANs 6 Use the arrow keys to highlight the IGMP Version field Then use the SPACE bar to select the proper IGMP version for the VLAN shown in the VLAN ID field If ALL was chosen as the VLAN ID this version change will affect all VLANs seen by the device IGMP State Selectable See the current state of the VLAN indicated in the VLAN ID field which can be modified Use the...

Page 224: ...bustness and Last Member Query Interval Enter the desired numbers in each field If ALL was chosen as the VLAN ID this version change will affect all VLANs seen by the device 8 Use the arrow keys to highlight the SAVE command and press the ENTER key to save the information in all the fields that were changed The screen can now be exited To set up a VLAN refer to Chapter 7 ...

Page 225: ...en Section 10 2 Interface Statistics screen Section 10 3 RMON Statistics screen Section 10 4 The HSIM VHSIM Statistics screen may be selected in the Device Statistics Menu screen when an HSIM or VHSIM is installed in the SmartSwitch device However for a description of the screen and how to use it refer to the user s guide for the installed HSIM or VHSIM Screen Navigation Path Password Device Menu ...

Page 226: ... Figure 10 1 Device Statistics Menu Screen NOTE The SWITCH STATISTICS menu item on the Device Statistics Menu screen does not display if the operational mode of the device is set to SECURE FAST VLAN This screen can only be used when the device is configured to operate as an 802 1Q switch Section 4 2 9 describes how to set the operational mode The HSIM VHSIM Statistics menu item does not display fo...

Page 227: ...ICS Provides the MIB II statistics for each switched interface on an interface by interface basis For details refer to Section 10 3 RMON STATISTICS Displays all the statistics gathered by the embedded RMON agent built into the SmartSwitch device For details refer to Section 10 4 HSIM VHSIM STATISTICS Displays the statistics screen when an optional Fast Ethernet or Gigabit Ethernet HSIM or VHSIM is...

Page 228: ... Figure 10 2 Switch Statistics Screen NOTE The Switch Statistics screen is not available if the operational mode of the device is set to SECURE FAST VLAN This screen can only be used when the device is configured to operate as an 802 1Q switch Section 4 2 9 describes how to set the operational mode 25041 26w RETURN Port 1 2 3 4 5 6 7 8 9 10 11 12 13 Frames Rcvd 100 100 100 100 100 100 100 100 100 ...

Page 229: ...nly See the number of frames received by the interface since the last power up or reset Frames Txmtd Read Only See the number of frames transmitted by the interface since the last power up or reset Frames Fltrd Read Only See the number of frames filtered by the interface since the last power up or reset Frames Frwded Read Only See the number of frames forwarded by the interface since the last powe...

Page 230: ...s Refer to Table 10 3 for a functional description of each screen field NOTE Enterasys Networks HSIMs that support FDDI or WAN gather their own statistics and may be viewed via the Local Management screens of the applicable HSIM Refer to your HSIM documentation for information on how to access these screens 25042_64w RETURN Interface nn InOctets InUnicast InNonUnicast InDiscards InErrors InUnknown...

Page 231: ...ee the total number of inbound frames that were discarded even though the frames contained no errors This field may increment because the device was receiving frames during initialization and was not ready to forward them or the switch was being overutilized InErrors Read Only See the total number of inbound frames that have been discarded because they contained errors This field represents the to...

Page 232: ...face that is currently being displayed Last Change Read Only See the last time that the interface was reset Admin Status Read Only See the current status of the interface If this field displays Testing no frames may be passed on this interface Oper Status Read Only See the current status of the interface If this field displays Testing no frames may be passed on this interface MTU Read Only See the...

Page 233: ... 10 4 RMON Statistics Screen NOTE The RMON Statistics screen provides statistics for all front panel Ethernet Interfaces and any Ethernet HSIM VHSIM installed in the SmartSwitch device 25041_65w RETURN RMON Index X Data Source ifIndex 1 Drop Events Collisions Broadcast Pkts Multicast Pkts CRC Align Errors Undersized Pkts Oversized Pkts Fragments Jabbers 0 0 0 0 0 0 0 0 0 Index nn CLEAR COUNTERS EX...

Page 234: ...he screen was displaying RMON statistics for Port 4 the name displayed would be IfIndex 4 Owner Read Only See the name of the entity that configured this entry Status Read Only See the current operating status of the displayed interface This field displays valid or invalid Drop Events Read Only See the total number of times that the RMON agent was forced to discard frames due to the lack of availa...

Page 235: ...s Read Only See the number of received frames that are not the minimum number of bytes in length or received frames that had a bad or missing Frame Check Sequence FCS were less than 64 bytes in length excluding framing bits but including FCS bytes and have an invalid CRC NOTE It is normal for the Fragments field to increment Fragments are a normal result of collisions in a half duplex network Jabb...

Page 236: ...g FCS bytes 256 511 Octets Read Only See the total number of frames including bad frames received that were between 256 and 511 bytes in length excluding framing bits but including FCS bytes 512 1023 Octets Read Only See the total number of frames including bad frames received that were between 512 and 1023 bytes in length excluding framing bits but including FCS bytes 1024 1518 Octets Read Only S...

Page 237: ...and manage network devices using the Network Tools command set How to Access To access the Network Tools screen use the arrow keys to highlight the NETWORK TOOLS menu item in the Device Menu screen and press ENTER The Network Tools Help screen Figure 11 1 displays TIP Type help at the prompt to list all the commands that are available for the device in the current operational mode A command used i...

Page 238: ...pt adding any desired or required extensions and pressing ENTER 352801_01 help arp netstat show SPECIAL done quit or exit Exit from the Network Tools For help with a specific command type help command Commands Available to the User Built in Commands Welcome to Network Tools traceroute defroute ping reset bridge lg_frame_admin soft_reset telnet link_trap cdp loopback_detect arp_learn atm_stp_state ...

Page 239: ...al Commands Allow the user to exit from Network Tools The commands are done quit or exit The commands are presented in the following format NOTE The conventions used in describing the commands in Network Tools are as follows Arguments enclosed by are required Arguments enclosed by are optional In the following command examples the information entered by the user is shown in bold font To abort the ...

Page 240: ...e device is connected to the device s network address or IP address the device s physical address or MAC address and the media type of connection to the device Media types display as numbers which stand for the following states 1 Other 2 Invalid entry cannot ping device timed out etc 3 Dynamic route entry 4 Static route entry not subject to change You must specify the arp command with one of the O...

Page 241: ...0e 03 1d 3c 3 dynamic arp d 1 122 144 52 68 arp s 1 22 44 2 3 00 00 0e 1d 3c arp f bridge Description Allows the bridge interface to be enabled or disabled at the user s request either one at a time or all at once Specifying a single interface number will affect the bridging status of that interface while specifying ALL will affect every interface Syntax bridge ENABLE DISABLE IFNUM ALL Options Non...

Page 242: ... Example defroute Default route is 147 152 42 32 on interface 2 defroute 2 147 152 42 32 Default route is 147 152 42 32 on interface 2 defroute delete Default route is not currently set netstat Description The netstat command provides a display of general network statistics for the managed device The netstat command must be used with one of the following two display options Syntax netstat option O...

Page 243: ...0000000 up up 0x00 0x00 0x1d 0x07 0x50 0x10 4 ethernet csmacd 1514 10000000 up up 0x00 0x00 0x1d 0x07 0x50 0x11 netstat r Destination Next hop Interface Default Route DirectConnection 1 134 141 0 0 DirectConnection 2 134 141 0 0 DirectConnection 3 ping Description Generates an outbound ping request to check the status alive not alive of a device at a specified IP address Syntax ping IP address Opt...

Page 244: ... be terminated upon execution of this command Syntax reset Options None Example reset RESET Are you SURE Y show Description Displays information concerning various components of the device Protocols currently supported are IP IPX DECnet and AppleTalk Components of those protocols that are currently supported are ARP caches route tables FIB tables server tables and interface tables The number of va...

Page 245: ...40 1 4 3 dynamic 08 00 20 0e d8 31 123 456 40 30 Number of valid entries 2 traceroute Description Generates a TRACEROUTE request to a specified IP address and provides a display of all next hop routers in the path to the device If the device is not reached the command displays all next hop routers to the point of failure Syntax traceroute IP address Options None Example traceroute 122 144 11 52 ne...

Page 246: ...mmand Syntax soft_reset Options None Example soft_reset RESET Are you SURE Y telnet Description Allows the user to communicate with another host that supports Telnet connections using the Telnet protocol The user must specify the remote host using its IP address The IP address field is mandatory If no Port number is specified telnet will attempt to contact the host at the default port Syntax telne...

Page 247: ... enable disable or find their status their current condition is displayed Syntax link_trap enable disable status PORT all Options None Example link_trap status LINK TRAP STATUS Port 1 is ENABLED Port 2 is DISABLED Port 3 is ENABLED Port 4 is ENABLED link_trap disable 2 Link traps have been DISABLED on port 2 link_trap disable all Link traps have been DISABLED on all ports 1 24 link_trap status 3 L...

Page 248: ...oopback_detect command allows the user to enable disable or check the current state of loopback detection on Ethernet front panel ports The user must specify the state as enable disable or status The state field is mandatory Syntax loopback_detect enable disable Options enable Enables loopback detection on Ethernet front panel ports disable Disables loopback detection on Ethernet front panel ports...

Page 249: ... the ARP cache entry for a given IP Address if the source address SA in the entry does not match that of any received IP Packet limited Causes the ARP entry to change only by ARP request and ARP response packets Other IP packets will be ignored status Displays the current status information about ARP Cache Example arp_learn status Current ARP Cache Learn status NORMAL arp_learn limited Setting ARP...

Page 250: ...stp_state status Atm Stp is Enabled atm_stp_state disable atm_stp_state enable gigabit_port_mode Description Used to configure the Gigabit Ethernet ports The user may configure the ports or see the current status of the gigabit configuration Changing the mode will cause a reset and loss of all data in NVRAM with the exception of the IP Address and Subnet IP Address NOTE This field is displayed onl...

Page 251: ...When the link on a VRRP Port goes down or up the database is purged Then a notification is sent out to all LAN emulation clients LECs connected to the local HSIM VHSIM to clear their LEARP cache Clearing the databases causes the removal of old information and forces the 2H252 25R devices to establish new virtual connections based on the new router paths NOTE This command is valid only when an HSIM...

Page 252: ...disable this application Example vrrpPort get VRRP Port is set to 0 vrrpPort set 1 VRRP Port is set to 1 stpStandby Description Allows the user to control the behavior of the Spanning Tree Protocol STP during link state change The user may enable disable or see the status of the stpStandby The enable command causes the STP to go through the standby states for the port that received a valid link Th...

Page 253: ...ch spanning tree ports on the physical ports are enabled This command does not apply to virtual interfaces such as ATM To enable disable or view the status of ATM ports use the atm_stp_state command Syntax stpPort status stpPort enable port stpPort disable port Options status displays a list of the physical ports that are enabled enable port enables a specific port disable port disables a specific...

Page 254: ...1 Enabling STP on Port 2 stpPort disable 2 Disabling STP from Port 2 lg_frame_admin Description Enables the changing of large frame support on a per port basis This enables the user to determine if large frames can be forwarded out a particular port Syntax lg_frame_admin set LARGE FRAG_IF_POSS SMALL AUTO PORT ALL_BPLANE ALL_FDDI lg_frame_admin status port stpPort Continued ...

Page 255: ... will be transmitted out the port as a large frame SMALL Sets the port so that frames will be transmitted as either fragmented if possible or dropped if they cannot be fragmented AUTO Same as SMALL PORT Enables the mib II port number to change the settings ALL_BPLANE Causes all the backplane ports to have the same setting ALL_FDDI Causes all FDDI HSIMs to have the same setting NOTE Only backplane ...

Page 256: ...Switch device is not currently in STP blocking or listening on that port After a VLAN has been added to the dynamic Port VLAN List the entry is subject to time out age out if the port does not receive another frame for that VLAN within the aging time The dynamic egress aging time is equal to the Spanning Tree ageing time default is 300 seconds NOTE Devices that do not source frames regularly such ...

Page 257: ... used when the client has been properly configured and enabled When the Radius Client is not enabled the legacy password authentication will run as before For more about Radius Client refer to Section 3 4 1 Syntax radius radius status radius enable disable radius prim_ip server ip radius sec_ip server ip radius timeout n radius retry n radius clear radius prim_auth_port n radius sec_auth_port n ra...

Page 258: ...nt settings radius prim_auth_port n Shows sets the primary Radius server s UDP authentication port radius sec_auth_port n Shows sets the secondary Radius server s UDP authentication port radius prim_acct_port n Shows sets the primary Radius server s UDP accounting port radius sec_acct_port n Shows sets the secondary Radius server s UDP accounting port radius last_resort local remote accept reject ...

Page 259: ...de appears as asterisks on the screen Example radius client RADIUS Configuration Cli Command Format radius status shows Radius status clear clears all entries timeout server timeout seconds last_resort local remote accept reject challenge retry number of retry attempts enable enables radius client disable disables radius client prim_secret sets primary secret prim_ip primary server IP prim_auth_po...

Page 260: ...f after 300 seconds another IP frame is not received on Port 1 by any station the Red VLAN is removed from the dynamic Port VLAN List for Port 1 When Port 1 receives another frame the Red VLAN is added again to the dynamic Port VLAN List of Port 1 and the process continues Example Continued NOTE The following shows examples of when three seven and 32 characters are entered as the secret code 16 to...

Page 261: ...h AppleTalk frames However all users are to have access to a web server connected to Port 7 Figure 11 2 Example 7 Dynamic Egress Application Solving the Problem In this example Switch 1 S1 has already been configured with a default VLAN 0001 associated with FID 0001 as the PVID on all ports The following additional steps are required to configure the switch to solve this problem 1 Define a new VLA...

Page 262: ...nd VLAN 2 is added to the Port VLAN List of that port The Port VLAN List contains a list of all VLANs whose frames can be transmitted out that port In this example the AppleTalk traffic is routed only to AppleTalk users Ports 1 2 5 and 6 while IP traffic is allowed to be seen by IP users Ports 3 4 and 7 and by IP AppleTalk users Ports 1 2 5 and 6 11 5 SPECIAL COMMANDS done quit or exit Description...

Page 263: ...ion 12 8 Summary of VLAN Local Management Section 12 9 Quick VLAN Walkthrough Section 12 10 setting up a VLAN using Local Management Examples Section 12 11 showing how VLAN aware switches can be configured based on a given problem 12 1 DEFINING VLANs A Virtual Local Area Network is a group of devices that function as a single Local Area Network segment broadcast domain The devices that make up a p...

Page 264: ...ations connected to switched ports do not sacrifice the performance of the dedicated switched link to participate in the VLAN As a VLAN is not a physical location but a membership the network switches determine VLAN membership by associating a VLAN with a particular port or frame type Figure 12 1 shows a simple example of a port based VLAN Two buildings house the Sales and Finance departments of a...

Page 265: ...itch B that are members of the Sales VLAN 12 2 TYPES OF VLANs There are a number of different strategies for creating Virtual Local Area Networks each with their own approaches to defining a station s membership in a particular VLAN 12 2 1 802 1Q VLANs An 802 1Q VLAN switch determines the VLAN membership of a data frame by its Tag Header described later in this chapter If the frame received is not...

Page 266: ...rs of one FID cannot communicate with the members of another FID To set up a VLAN all the network switch devices that are assigned to the VLAN must support the IEEE 802 1Q specification for VLANs Before you attempt to implement a VLAN strategy ensure that the switches under consideration support the IEEE 802 1Q specification 12 4 VLAN TERMS To fully understand the operation and configuration of po...

Page 267: ...all eligible VLANs whose frames can be forwarded out one specific port and the frame format tagged or untagged of transmissions for that port The Port VLAN List specifies what VLANs are associated with a single port for frame transmission purposes Filtering Database A database structure within the switch that keeps track of the associations between MAC addresses VLANs and interface port numbers Th...

Page 268: ...ffic 12 5 1 Description The 802 1Q VLAN operation is slightly different than the operation of traditional switched networking systems These differences are due to the importance of keeping track of each frame and its VLAN association as it passes from switch to switch or from port to port within a switch 12 5 2 VLAN Components Before describing the operation of an 802 1Q VLAN it is important to un...

Page 269: ...ent by associating a VLAN ID with each port on the switch Optionally frames can be classified according to layer 2 3 4 information contained in the frame At the same time the Administrator configures the trunk ports that need to consider themselves members of every VLAN The configuration of trunk ports is very important in multiswitch VLAN configurations where a frame s VLAN membership needs to be...

Page 270: ...his concept the examples that follow view the switch operations from inside the switch Figure 12 2 depicts the inside of a switch with six ports numbered one through six The switch has been configured to associate VLAN A and B with FID 2 VLAN C and D with FID 3 and VLAN E with FID 4 Port 6 has been classified as a 1Q Trunk Port This classification establishes that all VLANs are members of the Port...

Page 271: ... been through a VLAN aware switch or originated from a station capable of specifying a VLAN membership If a switch receives a frame containing a tag the switch will classify the frame in regard to its tag rather than the PVID for its port The switch will now make a forwarding decision on the frame as described in Section 12 7 2 Forwarding Decisions 12 7 2 Forwarding Decisions The type of frame und...

Page 272: ...orwarding decision by comparing the destination MAC address to its filtering database In this case the MAC address is looked up in the filtering database FID 3 which is associated with VLAN C and VLAN D The switch recognizes the destination MAC address of the frame as being located out Port 4 Having made the forwarding decision the switch now examines the Port VLAN List of Port 4 to determine if i...

Page 273: ...red for multiple VLANs it may be desirable to configure a management only VLAN This allows a management station connected to the management VLAN to manage all ports on the switch and make management secure by preventing management via ports assigned to other VLANs NOTE The switch s virtual Host Data Port like any other port has configurable VLAN membership For manageability of the device to be mai...

Page 274: ...r to make the VLAN secure In this example the FID is 3 and no other VLAN should be assigned to this FID This keeps the new VLAN from sharing its filtering database with other VLANs in the switch For details on defining a VLAN refer to Section 7 3 1 2 Use the Port Assignment Configuration screen for the following a Assign the VLAN ID 2 of the new Management VLAN to a port In this example it is port...

Page 275: ...cess would be repeated on every switch that is connected in the network to ensure that each switch has a secure Management VLAN for switch management If the switch was connected to another switch via port 7 which was set as a 1Q Trunk port then the management station connected to the Management VLAN port of either switch could manage both switches No matter how many switches are connected a manage...

Page 276: ...ut each screen and how to use them refer to Chapter 7 12 9 1 Preparing for VLAN Configuration A little forethought and planning is essential to a good VLAN implementation Before attempting to configure a single switch for VLAN operation consider the following How many VLANs will be required What stations will belong to them What ports are connected to those stations What ports will be configured a...

Page 277: ...hlight the VLAN ID field Assign a number to a new VLAN by typing the number 2 in the VLAN ID field 4 Use the arrow keys to highlight the FID field In this example we will assign the new VLAN to FID 2 by typing the number 2 in the FID field 5 Use the arrow keys to highlight the VLAN Name field Type TEST VLAN in the VLAN Name field Press ENTER 6 Use the arrow keys to highlight the ADD DEL field 7 Pr...

Page 278: ...s ENTER The Port Assignment Configuration screen displays 10 Use the arrow keys to highlight the VLAN ID field for the module and port combination you wish to change NOTE For the purposes of this walkthrough port 3 will be configured NOTE As this port will connect to a single workstation and is not to be used for switch to switch communications it is not necessary to change the PORT MODE from the ...

Page 279: ...one port as a 1Q Trunk port for a connection to another VLAN aware switch This 1Q Trunk port will carry traffic from all VLANs allowing VLAN frames to maintain their VLAN ID across multiple switches 13 Use the arrow keys to highlight the Port Mode field for port 10 Use the SPACE bar or BACKSPACE key to step sequentially through the possible settings of the port until 1Q TRUNK is displayed NOTE For...

Page 280: ...nk connection are set up we can proceed to activate the TEST VLAN 15 On the 802 1Q VLAN Main Menu screen use the arrow keys to highlight the DEVICE VLAN CONFIGURATION menu item Press ENTER The Device VLAN Configuration screen Figure 12 9 displays 4046_82 RETURN EXIT Port 1 2 3 4 5 6 7 8 9 10 11 12 Port Mode HYBRID HYBRID HYBRID HYBRID HYBRID HYBRID HYBRID HYBRID HYBRID 1Q TRUNK HYBRID HYBRID VLAN ...

Page 281: ...of the screen 19 Press ENTER The message SAVED OK displays The switch activates the new VLAN and the Admin Status field for VLAN ID 2 changes from Disabled to Enabled as shown in Figure 12 10 Figure 12 10 TEST VLAN Enabled 4046_83 RETURN EXIT Forward Default VLAN Out All Ports NO VLAN ID 1 2 FID 1 2 VLAN Name DEFAULT VLAN TEST VLAN Admin Status Enabled Disabled VLAN ID 1 FID 2 VLAN Name DEFAULT VL...

Page 282: ...ed by the port As a default neither function is activated In the following last stage of this walkthrough we will show how to display the Port VLAN List of port 10 and set the port to filter out all untagged frames that it receives 20 On the 802 1Q VLAN Main Menu screen use the arrow keys to highlight the PORT FILTERING CONFIGURATION menu item Press ENTER The Port Filtering Configuration screen di...

Page 283: ...dures and screens used to configure a VLAN aware switch are covered in Chapter 7 Also provided in the discussion of each example is a description of how the frames transmitted from one user would traverse the network to its target device 12 12 EXAMPLE 1 SINGLE SWITCH OPERATION This first example looks at the configuration of a single Ethernet switch for VLAN operation In this example two groups of...

Page 284: ... based on VLAN membership alone the switch is set so the Red VLAN is a member of FID 2 and the Blue VLAN is a member of FID 3 from the Device VLAN Configuration screen 2 The Administrator uses the Device VLAN Configuration screen to define the two VLANs for this switch the Red VLAN with a VLAN ID of 002 and the Blue VLAN with a VLAN ID of 003 3 The Administrator brings up the Port Assignment Confi...

Page 285: ...ort 1 to its Source Address Table in FID 2 In this fashion it learns that station R1 is located out Port 1 3 Once the frame is classified its destination MAC address is examined The switch discovers that the frame is a broadcast and treats it as it would any other unknown destination MAC address The switch forwards the frame out all ports in the Red VLAN s Forwarding List except for the one that r...

Page 286: ...MPLE 2 VLANs ACROSS MULTIPLE SWITCHES This second example investigates the steps that must be taken to set up VLANs across multiple 802 1Q VLAN switches This includes the configuration and operation of 1Q Trunks between 802 1Q VLAN switches As shown in Figure 12 14 two companies Redco and Blue Industries share floors 2 and 4 in a building where the network infrastructure is supplied by the buildin...

Page 287: ...28 NO 5 NO 13 NO 21 NO 29 NO 6 NO 14 NO 22 NO 30 NO 7 NO 15 NO 23 NO 31 NO 8 NO 16 NO 24 NO 32 NO SET ALL PORTS NO SET PORTS TO VLAN FORWARDING NO Classification Rule Field NEXT Figure 12 14 Example 2 VLANs Across Multiple Switches Floor 1 Floor 2 Floor 3 Floor 4 1 Bridge 1 Bridge 2 Bridge 3 Bridge 4 Redco Redco Blue Industries Red VLAN Red VLAN Red VLAN Red VLAN Blue VLAN Blue VLAN Blue VLAN Blue...

Page 288: ...communicate with each other 2 Ports 1 and 3 are assigned to the Port VLAN ID PVID as follows using the Port Assignment Configuration screen Port 1 VLAN ID 2 for the Red VLAN Port 3 VLAN ID 3 for the Blue VLAN This causes the switch to classify all untagged frames received as belonging to the VLAN specified by each port PVID and to replace the previous PVID information in the port VLAN List with th...

Page 289: ...ows using the Port Assignment screen Port 1 VLAN ID 3 for the Blue VLAN Port 3 VLAN ID 2 for the Red VLAN These settings change the configuration of the switch so that Port 1 is part of Blue VLAN Port 3 is part of Red VLAN and both are set as frame type of untagged 3 Port 2 is configured as a 1Q Trunk port as follows using the Port Assignment Configuration screen Port 2 Port Mode 1Q Trunk Port 2 i...

Page 290: ...es 2 Switch 4 receives the frame from Bridge 1 and immediately classifies it as belonging to the Red VLAN After the frame is classified Switch 4 checks the Destination Address and upon discovering that it is a Broadcast Destination Address forwards the frame out all ports in the Red VLAN Forwarding List excluding Port 1 which received the frame In this example it is only Port 4 Switch 4 updates it...

Page 291: ...ort In this case the Port Mode setting for Port 4 is 802 1Q Trunk and the VLAN Frame format for that VLAN is tagged Figure 12 16 Transmitting to Switch 4 Floor 2 30691_71 Floor 3 Floor 4 Bridge 1 Bridge 2 Bridge 3 Bridge 4 Redco Redco Blue Industries Blue Industries Red VLAN Red VLAN Red VLAN Red VLAN Blue VLAN Blue VLAN Blue VLAN Blue VLAN User A File Server 4 2 1 2 3 4 1 2 3 ...

Page 292: ... The File Server responds with a unicast frame to User A All switches between the File Server and User A have an entry in their respective Source Address Tables identifying which port to use for forwarding the frame to User A MAC address Y in FID 3 All switches update their Source Address Tables for the File Server s MAC address Z as the frame is forwarded through the switch fabric to User A The 8...

Page 293: ...802 1Q VLAN switches In this example a merger has taken place between the companies in the previous example Redco and Blue Industries The two companies have become divisions within a single corporation Green Incorporated As illustrated in Figure 12 18 a third group of stations the Green Incorporated staff is added to the facility Also the Green Incorporated Network Administrators want to add a Mai...

Page 294: ...tion to 802 1Q VLAN Network Floor 1 Floor 2 Floor 3 Floor 4 1 Bridge 1 Bridge 2 Bridge 3 Bridge 4 Red VLAN Red VLAN Red VLAN Red VLAN Blue VLAN Blue VLAN Blue VLAN Blue VLAN 22631_17 User 802 1D Legacy Bridge 802 1Q VLAN Aware Switch File Server User B Server 2 4 2 3 4 1 2 3 1 1 2 3 Mail Server Green VLAN Green VLAN 4 Green Incorporated ...

Page 295: ...raffic received from the mail server via Switch 2 and Switch 1 to be received and classified to the Default VLAN of Switch 4 Switch 2 Switch 2 is set as follows 1 The Forward Default VLAN Out All Ports is set to YES using the Device VLAN Configuration screen This adds the Default VLAN to the Port VLAN List of every switch port and all VLANs become members of FID 1 2 The port mode of Port 4 is set ...

Page 296: ...l Server to send receive mail traffic to from all VLAN users on the network backbone 12 14 2Frame Handling The following describes how when User B attempts to contact the Mail Server on Switch 1 the frames are classified on Switch 4 and traverse the network 1 User B sends a broadcast frame in an attempt to contact the Mail Server The frame enters Bridge 1 and being a broadcast is forwarded to all ...

Page 297: ...e ports Ports 3 and 4 Switch 2 simultaneously updates its Source Address Table for FID 1 to reflect the location of User B Port 2 The frame forwarded out Port 3 has its VLAN Tag stripped before transmission and it is passed to Bridge 4 as a normal broadcast frame The frame that is transmitted out Port 4 the 1Q Trunk retains its VLAN tag Figure 12 20 Switch 2 Forwards to 1Q Trunk Floor 4 1 Bridge 1...

Page 298: ...ple Switch 1 classifies the unicast frame as belonging to the Default VLAN the only membership for the 1D Trunk port in this example Switch 1 checks the Filtering Database for the MAC address of User B User B s MAC address is located and Port 2 is identified as User B s location The frame is then checked for eligibility and frame format for Port 2 Since Port 2 is a 1Q Trunk port it is eligible to ...

Page 299: ...thout a VLAN Tag 8 Bridge 1 receives the frame and recognizes User B s MAC address The frame is forwarded to the correct port and the bridge s Source Address Table is updated with an entry for the Mail Server s MAC address User B receives the Mail Server s response Any further unicast traffic between the Mail Server and User B will be handled in the same fashion by the switches in the network 12 1...

Page 300: ... 2 Floor 3 Floor 4 1 Bridge 1 Bridge 2 Bridge 3 Red VLAN Red VLAN Blue VLAN Blue VLAN Blue VLAN Blue VLAN 25992_18 User 802 1D Legacy Bridge 802 1Q VLAN Aware Switch User B Server 2 4 3 4 1 1 2 3 Mail Server Green VLAN Green VLAN Bridge 4 Red VLAN Red VLAN File Server 2 Gray VLAN Gray VLAN 1 2 3 4 Printer Publications 3 1 2 3 4 5 1 3 4 5 7 8 2 6 Y Yellow VLAN ellow VLAN Green Inc ...

Page 301: ...to the AppleTalk VLAN Gray The same ports will also be configured to classify all other protocol frames into a second VLAN Yellow Port 1 will be assigned to the Yellow VLAN to handle the traffic between Switch 3 and 5 Switch 3 Switch 3 is set as follows 1 One VLAN is added to the list of VLANs in the Device VLAN Configuration screen In this example Switch 3 is set as follows VLAN ID 5 FID 5 with a...

Page 302: ...teps 4 and 5 from being transmitted out Port 1 to Switch 3 and the network backbone Port VLAN IDs are assigned to all switch ports using the Port Assignment screen as follows Port 1 VLAN ID 5 for the Yellow VLAN Port 2 VLAN ID 5 for the Yellow VLAN Port 3 VLAN ID 5 for the Yellow VLAN Port 4 VLAN ID 5 for the Yellow VLAN Port 5 VLAN ID 5 for the Yellow VLAN Port 6 VLAN ID 5 for the Yellow VLAN Por...

Page 303: ... Forwarding Configuration screen to assign Port 1 to the Yellow VLAN and set the frame type to tagged With this configuration the frames transmitted on Port 1 are tagged as being from the Yellow VLAN If a frame associated with any protocol other than AppleTalk for example for the mail server is received on any of the Ports 2 through 8 the frame would be part of the Yellow VLAN and transmitted out ...

Page 304: ...oadcasts from flooding the users terminals connected to S1 and S2 a new VLAN will be added to each switch but not assigned to any ports creating a Null VLAN Then each switch will be configured with a Layer 4 classification rule that will classify each RIP broadcast frame received on Port 25 of each switch to the Null VLAN Since the Null VLAN is not associated with any ports the frame will be dropp...

Page 305: ...r used by RIP 12 17 EXAMPLE 6 SECURING SENSITIVE INFORMATION ACCORDING TO SUBNET The ABC Company wants to confine the sensitive information being transmitted by their Finance Department to its users only In this example illustrated in Figure 12 24 the users in the Finance Department are members of the Finance VLAN and are also on subnet 28 as shown in bold type Figure 12 24 Example 6 Securing Traf...

Page 306: ...0 Classification Bil IP Address IP Address 123 123 28 0 Data Mask 255 255 255 0 As a result of this setting any frame with a source or destination IP address of 123 123 28 0 255 will be classified to the Finance VLAN 20 and will remain within subnet 28 Any frame from another network or subnet will not be allowed access to subnet 28 because of the datamask 255 255 255 0 12 18 EXAMPLE 7 USING DYNAMI...

Page 307: ... 2 VID 2 using the VLAN Classification Configuration screen This rule is assigned to all ports 3 Enable the dynamic egress control on VLAN 2 using the Network Tools command dynamic_egress enable 2 With the above configuration an AppleTalk frame received on any port will be classified into VLAN 2 the AppleTalk VLAN and the Port VLAN List of that port is updated to include VLAN 2 For instance if por...

Page 308: ...vidual MAC address to a port on the SmartSwitch device This would typically be done to ensure that only a particular device can gain access to the network from a specific port Traffic received by the switch from any MAC address other than the one assigned to the locked port will be discarded In this example illustrated in Figure 12 26 Switch S1 will be configured to lock ports 1 and 2 to the sourc...

Page 309: ...pt that S1 will only allow frames with the MAC address 00 00 00 00 00 0B frames to be forwarded out the desired ports and discard all other frames received on Port 2 that are not MAC address 00 00 00 00 00 0B frames This is accomplished using the Device VLAN Configuration screen to create one VLAN which will be named Red VLAN in this example the VLAN CLassification Configuration screen to create t...

Page 310: ... to be dropped because all ports have been deleted from the VLAN forwarding list of the Default VLAN 4 To create two source src MAC address classification rules and apply them to the Red VLAN VID 2 the following settings are entered using the VLAN Classification Configuration screen For the Red VLAN and Port 1 VID 2 Classification src MAC Address Subclassification MAC Address 00 00 00 00 00 0A ADD...

Page 311: ...s Subclassification MAC Address 00 00 00 00 00 0B ADD the rule It will display in the top half of the VLAN CLassification Configuration screen On the Protocol Port Configuration screen the following settings are entered Port 2 YES to assign the classification rule to Port 2 SET PORTS TO VLAN FORWARDING YES to add the VLAN and classification rule to the Port VLAN List of Port 2 ...

Page 312: ......

Page 313: ...e process of the forwarding decision and tagging frames is the same as for 802 1Q as described in Chapter 12 However the GVRP protocol frames will not have a tag even when transmitted out a 1Q Trunk Port The purpose of GVRP is to dynamically create VLANs across a switched network When a VLAN is declared the information is transmitted out GVRP configured ports on the switch in a GARP formatted fram...

Page 314: ...e A 1 Example of VLAN Propagation via GVRP Configuring a VLAN on an 802 1Q switch creates a static GVRP entry The entry will always remain registered and will not time out However dynamic entries will time out and their registrations are removed from the member list if the end station A is removed This ensures that if switches are disconnected or if end stations are removed the registered informat...

Page 315: ...nder control of GMRP which is propagated in VLAN context More Detail on Received GMRP Frames The device is capable of supporting multiple filter databases and each VLAN is assigned to a database When GMRP frames are received they may contain a tag or be untagged If the GMRP frame is untagged the multicast addresses listed in the GMRP frame are added to the Port VLAN List of the receiving port For ...

Page 316: ......

Page 317: ...frame and a filter is created to send the stream of data only to those end stations that will receive it IGMP queries are sent periodically from routers An end station that will receive a multicast stream will send a query response back to the router If the router does not receive any response from the end station it stops forwarding the multicast streams to that station IGMP messages use an IP pr...

Page 318: ... will run with GMRP however the IGMP does have higher priority then GMRP The switch does not act as the querier A router is required for IGMP on the switch to function The switch will snoop on all incoming multicast addresses to detect query responses as well as queries Query responses are sent to the multicast address detected in the stream from the host requesting to receive queries The frame is...

Page 319: ...ng protocols have a destination address of 01 00 5E DVMRP and PIM version 1 run over IGMP If the IGMP frame type is not a REPORET QUERY OR LEAVE then the frame is assumed to be one of these PIM version 2 is IP protocol type 0x67 OSPF is IP protocol type 0x59 To detect that the frame is a multicast OSPF MOSPF the OSPF data must be looked at The data starts after the IP header Byte 31 options needs ...

Page 320: ......

Page 321: ...rt VLAN Lists 7 37 B Broadcast Suppression Configuration screen 5 22 peak rate 5 23 port 5 23 reset peak 5 23 threshold 5 23 time since peak 5 23 total RX 5 23 Built in Commands use of 11 3 C Classification Rule filtering traffic according to 12 42 CLEAR COUNTERS command how to use 3 5 COM port 4 15 Command field 1 6 Command set 11 3 Configuration 12 7 Confining Network Traffic According to Priori...

Page 322: ...s 12 21 F FID See Filtering Database ID Fields command 1 6 display 1 5 event message 1 5 input 1 6 selection 1 6 types 1 5 Filtering Database 12 5 Filtering Database ID 12 4 Filtering Network Traffic According to a Layer 4 Classification Rule 12 42 Flash Download Configuration screen 4 32 download file name 4 35 download method 4 34 download server IP 4 35 download status 4 35 last image file name...

Page 323: ... 3 4 Host Access Control Authentication HACA how to use 3 10 Host data port 12 11 12 13 HSIM VHSIM Configuration screen 5 12 Hybrid 7 13 I IGMP detecting multicast routers when using B 3 features and functions supported B 2 overview of B 1 IGMP VLAN Configuration screen 9 6 Default for new VLANS 9 7 IGMP State 9 7 IGMP Version 9 5 Interface Robustness 9 5 Querier Address 9 6 Querier Expire Time 9 ...

Page 324: ...ANs 12 11 Module Login Password screen Access Policy 3 16 Password 3 16 Switch 8 3 16 Moving the cursor 1 3 N Port Redirect Configuration screen destination port 5 16 source port 5 16 VLAN Redirect Configuration screen destination port 5 20 source VLAN 5 20 Navigating screens 3 2 Network management in band 1 2 out of band 1 2 Network Tools built in commands 11 3 arp 11 4 arp_learn 11 13 11 14 brid...

Page 325: ...5 15 frame format read only 5 15 5 20 frame format selectable 5 16 redirect errors 5 16 5 20 redirect errors toggle 5 16 source port 5 15 status 5 16 Port Security setup example 12 46 Port VLAN list 12 5 PREVIOUS command how to use 3 5 Priority and VLAN isolating network according to 6 41 Priority Classification Configuration screen 6 22 ADD 6 24 classification 6 24 classification top of screen 6 ...

Page 326: ...ollisions 10 10 CRC align errors 10 11 data source 10 10 drop events 10 10 fragments 10 11 index 10 12 jabbers 10 11 multicasts 10 11 oversized packets 10 11 oversized pkts 10 11 owner 10 10 RMON index 10 10 status 10 10 total octets 10 11 total packets 10 11 undersized packets 10 11 S Screen fields command fields 1 6 display fields 1 5 event message field 1 5 input fields 1 6 selection fields 1 6...

Page 327: ...18 VLAN Redirect Configuration screen 5 18 SecureFast VLAN setting operational mode for 4 14 SecureFast VLAN mode hierarchy of 3 4 Security Ports setup example 12 46 Selection field 1 6 Set a port to operate in GMRP or GVRP how to 8 7 Set all ports to operate in GMRP or GVRP how to 8 7 Set Ports to VLAN Forwarding 7 37 Set the GMRP Mode on all ports how to 8 10 Set the GMRP Mode Port by Port how t...

Page 328: ... Trap table configuration 4 25 Traps enable 4 25 TX priorities regeneration off 6 17 U Uninterruptible Power Supply COM configuration for 2 4 connection of 2 4 Untagged frame 12 5 12 9 V VLAN assigning ports 12 7 components 12 6 configuration 12 7 configuration of 6 3 default VLAN 12 5 defining 12 7 definition 12 1 to 12 4 Local Management for 6 3 operation 12 8 terms 12 4 types 12 3 VLAN Classifi...

Page 329: ...g 7 14 VLAN Local Management 7 2 12 14 VLAN name 12 4 VLAN Redirect Configuration screen destination port 5 19 frame format selectable 5 20 redirect errors 5 20 source VLAN 5 19 status 5 20 W Weighted Queueing Mode setting of 6 21 ...

Page 330: ......

Reviews:

No comments

Related manuals for 2E25x

D-Link DHP-541 Datasheet preview
DHP-541
Brand: D-Link Pages: 4
D-Link DFE-550TX Datasheet preview
DFE-550TX
Brand: D-Link Pages: 2
IBM BNT Installation Manual preview
BNT
Brand: IBM Pages: 88
Valcom V-2972 User Manual preview
V-2972
Brand: Valcom Pages: 2
ADDER GEMAV2GEM Installation And Use Manual preview
GEMAV2GEM
Brand: ADDER Pages: 46
Aruba Instant On 1930 24G 4SFP/SFP+l Installation And Getting Started Manual preview
Instant On 1930 24G 4SFP/SFP+l
Brand: Aruba Pages: 48
Gefen 2X2 VGA SWITCHER User Manual preview
2X2 VGA SWITCHER
Brand: Gefen Pages: 12
Barox PC-IA100 Series User Manual preview
PC-IA100 Series
Brand: Barox Pages: 7
ALFAtron ALF-MUH88TP-N Manual preview
ALF-MUH88TP-N
Brand: ALFAtron Pages: 68
Shinybow USA SB-8804LCM Instruction Manual preview
SB-8804LCM
Brand: Shinybow USA Pages: 16
Labgear HDS3K User Manual preview
HDS3K
Brand: Labgear Pages: 8
HighSecLabs K304 Quick Start Manual preview
K304
Brand: HighSecLabs Pages: 2
TLS Electronics 875300 User Manual preview
875300
Brand: TLS Electronics Pages: 12
Digital China Networks DCRS-5200 Series Specifications preview
DCRS-5200 Series
Brand: Digital China Networks Pages: 4
Novus NVS-3208SP-EH User Manual preview
NVS-3208SP-EH
Brand: Novus Pages: 16
MaxTech FHX-1200 User Manual preview
FHX-1200
Brand: MaxTech Pages: 10
Hitachi MS-1WL Specifications preview
MS-1WL
Brand: Hitachi Pages: 3
Hitachi CH-AP04MSSX Installation Manual preview
CH-AP04MSSX
Brand: Hitachi Pages: 40

Brands by name

Popular brands

Load more brands