manualshive.com logo in svg

EtherWAN EX72129A, User Manual

The EtherWAN EX72129A is a high-quality networking device designed for optimal performance. Easily set up and configure your device with the comprehensive User Manual available for free download at manualshive.com. Ensure smooth operation with step-by-step instructions and troubleshooting tips provided in the manual.

Share
Download
background image

 

194 

EtherWAN Managed Switch Users Guide 

ACL (ACCESS CONTROL LIST) 

This section applies only to specific models of EtherWAN Switches. 

The settings in the ACL feature of the EtherWAN switch can be used to control which 
packets are allowed to enter the switch (Packet Filtering), as well as to control the amount of 
bandwidth that can be allocated for those packets (Bandwidth Policing). 

General Overview  

The ACL feature on the EtherWAN Managed Switch filters packets through access control 
lists. Any combination of 4 different types of access control lists (called Access Lists) can be 
used for this purpose. These four different types of access control lists are explained below:  

IP Access List:  

This Access List can b

e used to filter IP packets based on the packet’s source IP 

address only. 

IP Access List (Extended):  

This Access List can be used to filter IP packets based on the packet’s source and 
destination IP addresses, as well as the packet’s source and destination transport 
layer protocol port numbers. 

MAC Access List:  

This Access List can be used to filter Ethernet packets based on the packet’s source 
and destination Ethernet addresse

s as well as the packet’s Ethernet payload protocol 

number (EtherType). 

Layer 4: 

This Access List, if it is used by itself, can only be used to classify IP packets based 
only on the IP packet’s source and destination transport layer protocol port numbers. 
Use this Access List in conjunction with another type of Access List mentioned 
above, if you wish to filter any packet from entry to the switch that did not match the 
classification rules from this Access Lists, otherwise all packets that did not match 
the classification rules of this Access List will also be allowed entry into the switch. 

Note:

 You can use any combination of the above four types of Access Lists to 

filter packets through the ACL feature, the switch will apply these Access Lists in the 
order that they were configured. Since Access List filters allow packets through, there 
must be at least one catch all deny rule that can deny all types of packets from entry 
to the switch in the very last Access List, This will ensure that only packets specified 
in the access list will be allowed. 

Summary of Contents for EX72129A

Page 1: ...1 EtherWAN Managed Switch Users Guide User s Guide FastFind Links Unpacking and Installation Computer Setup Setting the initial IP address EtherWAN Managed Switch V1 94 2 1...

Page 2: ...r for resulting damage in connection with the information provided in this manual Registered Trademarks The following words and phrases are registered Trademarks of EtherWAN Systems Inc EtherOS Ethern...

Page 3: ...Setup 20 Management Methods and Protocols 20 Default IP 21 Login Process and Default Credentials 21 Setting the initial IP address 22 Simple IP Addressing 22 CLI Command Usage 23 Navigating the CLI H...

Page 4: ...ling HTTP and or HTTPS 41 Save Configuration Page 43 Save Configuration 43 Load Configuration 43 Backup Configuration 43 Restore Default 44 Auto Save 44 Save Configuration Page using the CLI 45 Saving...

Page 5: ...Status 71 Rate Control 72 RMON Statistics 73 Per Port VLAN Activities 74 Port Security 75 Port Configuration Examples Using CLI Commands 76 Setting the Port Description 76 Enable or Disable a Port 76...

Page 6: ...g 97 PoE Port Setting 98 PoE Scheduling 100 Switch Configuration Examples Using CLI Commands 102 Setting the Aging Time Value 102 Enabling Port Isolation 102 Enabling Block Multicast 103 Setting Storm...

Page 7: ...Bridge Backup Root Bridge 132 Setting the MAX Age Forward Delay and Hello Timer 134 RSTP Port Setting Page 136 Spanning Tree Port Roles 136 Path Cost Port Priority 137 Point to Point Link 139 Edge Por...

Page 8: ...Connecting two Ring Networks together 164 Advanced Setting 165 Advanced Bridge Configuration 165 Advanced Per Port Configuration 166 Configuring Spanning Tree Advanced Settings using CLI commands 167...

Page 9: ...List 194 General Overview 194 Configuring ACL 195 ACL Policy Map 197 IP Access List 198 IP Access List Extended 199 Mac Access List 201 Layer 4 203 Bandwidth Limiting 204 Applying a Policy Map to a P...

Page 10: ...ver 235 Enabling 802 1X on a Port 237 LLDP 239 LLDP General Settings 240 Enable Disable LLDP 240 Holdtime Multiplier 240 Global TLV Setting 241 LLDP Ports Settings 243 Enabling LLDP transmission for a...

Page 11: ...ands 270 Network Time Protocol 278 Enabling NTP 278 Setting the NTP Server IP Address 278 Setting the Timezone 278 Setting the Polling Period 278 Manually Syncing Time 279 Daylight Savings Time Weekda...

Page 12: ...gger Enable 68 Figure 21 Port Configuration 70 Figure 22 Port Status 71 Figure 23 Rate Control 72 Figure 24 RMON Page 73 Figure 25 Port VLAN Activities 74 Figure 26 Port Security 75 Figure 27 Bridging...

Page 13: ...ion 152 Figure 62 VLAN Instance ID 152 Figure 63 Setting the MSTI Regional Root Bridge 153 Figure 64 Port Cost Priority 155 Figure 65 Port Instance Configuration 156 Figure 66 Port Instance Adding Por...

Page 14: ...Name V1 V2c 225 Figure 106 Add User 226 Figure 107 SNMP v3 Settings 227 Figure 108 User name Access Mode 227 Figure 109 Auth Password 228 Figure 110 Privacy PassPhrase 228 Figure 111 Delete User 229...

Page 15: ...r Mode Forwarding 268 Figure 133 Current Multicast Groups 269 Figure 134 NTP Settings 279 Figure 135 Daylight Savings Weekday Mode 280 Figure 136 Daylight Savings Date Mode 281 Figure 137 GMRP Global...

Page 16: ...revision changes to this document Revision Document Version Date Description B Version 1 12 3 2014 Updated for Firmware version 1 94 2 Changes in this Revision Updated Setting the initial IP address S...

Page 17: ...opriate precautions such as not opening or touching hazardous areas of the equipment could result in injury or death Typographic Conventions This guide also uses the following typographic conventions...

Page 18: ...you will find the items listed below Please inspect the contents and report any apparent damage or missing items immediately to your authorized reseller This Managed Switch Product CD Quick Installati...

Page 19: ...Ethernet cable of at least Category 5 rating is required to connect your computer to the switch The cable can be configured as straight through or crossover TFTP Server Software Trivial file transfer...

Page 20: ...esults as described in that section The methods available to manage the EtherWAN Managed Switch include SSH Secure Shell CLI that is accessible over TCP IP networks which and is generally regarded as...

Page 21: ...10 with a subnet mask of 255 255 0 0 Login Process and Default Credentials Once a compatible IP address has been assigned to the management computer the user is ready to log in to the switch To log in...

Page 22: ...ing See Add an IP to the Management VLAN on page 179 Simple IP Addressing A new IP address can now be assigned to the switch From the System Information screen go to the left hand navigation menu 1 Cl...

Page 23: ...g the CLI Hierarchy The CLI is organized into a hierarchy of levels Each level has a group of commands for a specific purpose For example to configure a setting for the VLAN server one would navigate...

Page 24: ...EtherWAN Managed Switch to General configuration mode run the following commands from the CLI 1 enable 2 configure terminal Example switch_a enable switch_a configure terminal switch_a config MSTP Co...

Page 25: ...le 1 configures 100mb port 1 switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if Example 2 configures VLAN ID 9 switch_a enable switch_a configure terminal swi...

Page 26: ...enabled on the switch the Firmware version can be found using MIB II in the sysDesc property System Time o System time can be change using NTP MAC Address o The hardware MAC address of the Management...

Page 27: ...27 EtherWAN Managed Switch Users Guide Figure 3 System Information...

Page 28: ...Password see Figure 4 3 Use your mouse to place the cursor in the System Name text box 4 Replace the existing name with the name you want to assign to the switch 5 Click on the Update Setting button...

Page 29: ...tname switch_a enable switch_a configure terminal switch_a config hostname switch_a switch_a config q switch_a Usage Example 2 Removing a Hostname switch_a enable switch_a configure terminal switch_a...

Page 30: ...tting can be used when using a Static IP address To enable the default gateway 1 Use the dropdown box to enable the default gateway 2 Type in the default gateway in the Default Gateway text box 3 Clic...

Page 31: ...31 EtherWAN Managed Switch Users Guide Figure 5 IP Address...

Page 32: ...e most commonly used Network Prefixes are 8 Known as Class A Also known in dotted decimal as 255 0 0 0 16 Known as Class B Also known in dotted decimal as 255 255 0 0 24 Known as Class C Also known in...

Page 33: ...D no ip default gateway Usage Example 1 Setting the Gateway switch_a enable switch_a configure terminal switch_a config ip default gateway 169 254 0 1 switch_a config q switch_a write memory Building...

Page 34: ...no ip dns Usage Example switch_a enable switch_a configure terminal switch_a config ip dns 169 254 0 253 switch_a config q switch_a write memory Building configuration OK switch_a q switch_a Usage Exa...

Page 35: ...get ip dhcp enable switch_a config if q switch_a config q switch_a write memory Building configuration OK switch_a q switch_a Enable Disable Static IP on a VLAN To set the IP address use the following...

Page 36: ...able DHCP Client on VLAN2 switch_a enable switch_a configure terminal switch_a config interface vlan1 2 switch_a config if no ip address 169 254 1 11 switch_a config if q switch_a config q switch_a wr...

Page 37: ...ger function As a safety precaution the configuration is not saved by default Rebooting the EtherWAN Managed Switch will restore the Web Console To save the configuration connect using the new IP addr...

Page 38: ...d devices such as a computer and the EtherWAN Managed Switch SSH is disabled by default on the V1 94 2 EtherWAN Managed Switch To enable or disable SSH 1 Click the Enable or Disable radio button in th...

Page 39: ...le 1 Enabling Telnet switch_a enable switch_a configure terminal switch_a config ip telnet switch_a config q switch_a write memory Building configuration OK switch_a q switch_a Usage Example 2 Disabli...

Page 40: ...erminal switch_a config ip ssh switch_a config q switch_a write memory Building configuration OK switch_a q switch_a Usage Example 2 Disabling SSH switch_a enable switch_a configure terminal switch_a...

Page 41: ...server no ip http server no ip http secure server Usage Example 1 Enabling HTTP switch_a enable switch_a configure terminal switch_a config ip http server switch_a config q switch_a write memory Buil...

Page 42: ...itch_a config ip http secure server switch_a config q switch_a write memory Building configuration OK switch_a q switch_a Usage Example 4 Disabling HTTPS switch_a enable switch_a configure terminal sw...

Page 43: ...s achieved using a TFTP server To load a configuration 1 Enter the IP address of your TFTP server in the TFTP Server text box 2 Enter the name of the configuration file in the FILE text box 3 Click on...

Page 44: ...o flash If the saved configuration is the same as the running configuration then a save is not made The Auto Save interval is used to determine how often the running configuration is checked for chang...

Page 45: ...onfiguration Mode CLI Command Syntax write memory Usage Example 1 Saving a Configuration switch_a enable switch_a write memory Building configuration OK switch_a q switch_a Restore Default Settings To...

Page 46: ...Example Loading a Configuration switch_a enable switch_a install config file 169 254 1 100 file_name txt switch_a q switch_a Save Configuration to a TFTP Server To Save a Configuration to a TFTP serv...

Page 47: ...ntax service auto config enable no service auto config enable service auto config interval number Usage Example 1 Enabling Auto Save and setting the interval switch_a enable switch_a service auto conf...

Page 48: ...1 Copy the firmware file to the correct directory for your TFTP server The correct directory depends on your TFTP server settings 2 Enter the filename of the firmware in the Filename text box 3 Enter...

Page 49: ...LI Command Usage CLI Command Mode Privileged Exec Mode CLI Command Syntax install image tftpserver_ipaddress filename Usage Example switch_a enable switch_a install image 169 254 1 100 flash tgz switc...

Page 50: ...essage Reboot using the CLI For more information on CLI command usage see CLI Command Usage CLI Command Mode Privileged Exec Mode CLI Command Syntax reload Usage Example switch_a enable switch_a reloa...

Page 51: ...s privileges to the switch There are two modes that can be used Single User or Multi User Changing the User Mode To set the user mode see Figure 9 1 Select Single User or Multi User in the dropdown bo...

Page 52: ...user in the User Name text box 3 Enter a Password for the new user in the Password text box 4 Re enter the Password in the Confirm Password text box 5 Select a Privilege Level from the dropdown list n...

Page 53: ...r from the dropdown list next to the User Account row heading see Figure 11 2 Change the password and or access level following the steps in Creating a New User 3 To delete an existing user select the...

Page 54: ...onfiguration page allows specific configuration and or administration levels to be assigned or removed from the Technician and Operator user roles Note For each function an operator s privilege cannot...

Page 55: ...55 EtherWAN Managed Switch Users Guide Figure 13 User Privilege Page...

Page 56: ...ig line console 0 switch_a config line login local Switching Single Multi User mode need to reboot the switch to take effect switch_a config line q switch_a config q switch_a Single User Mode To enabl...

Page 57: ...o specify that the password should be displayed in encrypted form in the configuration file Usage Example switch_a enable switch_a configure terminal switch_a config username user1 privilege operator...

Page 58: ...ng Loopback Detect Static MAC Entry Port Mirroring Link State Tracking Port Trunking LACP Trunking Global Configuration RSTP Port Setting MSTP Prties MSTP Instance Setting MSTP Port Setting Ring Setti...

Page 59: ...s Guide Usage Example switch_a enable switch_a configure terminal switch_a config multiuser access IP Address tech read write oper read only switch_a config multiuser access System Log tech show oper...

Page 60: ...ation To navigate to the Utilization page 1 Click on the next to Diagnostics 2 Click on Utilization The Utilization page shows see Figure 14 CPU Utilization Current and Max Utilization Memory Utilizat...

Page 61: ...The System Log shows the data and time of port links going up or down see Figure 15 Figure 15 System Log System log using CLI command For more information on CLI command usage see CLI Command Usage CL...

Page 62: ...led as well as management of a list of Syslog servers to report to see Figure 16 To configure the Remote Logging on the EtherWAN Managed Switch 1 Click on the Enable or Disable radio button under Remo...

Page 63: ...63 EtherWAN Managed Switch Users Guide Figure 16 Remote Logging Page...

Page 64: ...log enable switch_a q switch_a Usage Example 2 Disable Remote Logging switch_a enable switch_a no remote log enable switch_a q switch_a Add Delete a Remote Logging Host CLI Command Mode General Confi...

Page 65: ...are stored in the Switches ARP Table This is useful for System Administrators for troubleshooting purposes The information shown is IP Address of the listed device Hardware Address For Ethernet device...

Page 66: ...ation on CLI command usage see CLI Command Usage CLI Command Mode General Configuration Mode CLI Command Syntax show arp table Usage Example switch_a enable switch_a show arp table IP address HW type...

Page 67: ...outes The Route Table contains information about the topology of the network around it Figure 18 Route Table Route Table Using CLI Commands For more information on CLI command usage see CLI Command Us...

Page 68: ...ting page allows users to define Ethernet port Link down and Power failure alarms for triggering an alarm using the relay on the switch To configure an Ethernet port or Power input 1 Select an Etherne...

Page 69: ...without loss of data or clarity The Configuration page shows see Figure 21 Port Number fe n for 100mb ports and ge n for Gigabit ports Link Status Operational State of the Port s Link Read Only Port...

Page 70: ...ill have the same options For example 100Mb fiber ports will typically be limited to a single option of 100M FD 100Mbps and Full Duplex while running 1Gb UTP ports will have six options for speed dupl...

Page 71: ...e user intends to do is read the values of the port settings not modify the port settings The Port Status page shows see Figure 22 Port Number fe n for 100mb ports and ge n for Gigabit ports Link Stat...

Page 72: ...the Egress text box controls the rate of data leaving the port Note Entries will be rounded down to the nearest acceptable rate value If the value entered is below the lowest acceptable value then the...

Page 73: ...he EtherWAN Managed Switch 1 Click on the link to the port at the top of the RMON Statistics page To clear the RMON statistics for a particular port on the EtherWAN Managed Switch 1 Click on the link...

Page 74: ...to see what devices are connected to a particular port and the vlan associated with that device and port To clear the MAC addresses for a particular port on the EtherWAN Managed Switch see Figure 25 1...

Page 75: ...ource MAC addresses of the network devices To Add a MAC Address to a port 1 Select the Enable or Disable from the Mode column for the port you want to configure 2 Enter the MAC Address of the device y...

Page 76: ...Usage Example switch_a enable switch_a configure terminal switch_a config int fe1 switch_a config if description A_Port_Description switch_a config q switch_a config q switch_a Enable or Disable a Po...

Page 77: ...I Command Syntax bandwidth 1 10000000000 bits usable units k m g Usage Example switch_a enable switch_a configure terminal switch_a config int fe1 switch_a config if bandwidth 100m switch_a config q s...

Page 78: ...y Port Status To display the port status for a port use the CLI commands below CLI Command Mode Privileged Exec Mode CLI Command Syntax show interface ifname Usage Example switch_a enable switch_a sho...

Page 79: ...port s VLAN activities use the CLI commands below CLI Command Mode Privileged Exec Mode CLI Command Syntax show bridge interface interface name Usage Example switch_a enable switch_a show bridge inte...

Page 80: ...Command Syntax port security allowed address value in hex format Ex 00aa 0062 c609 Usage Example switch_a enable switch_a configure terminal switch_a config int fe1 switch_a config if port security al...

Page 81: ...received When the destination node receives the flooded traffic it sends an acknowledgment packet back to the switch allowing the switch to learn the MAC address of the node and to add the address to...

Page 82: ...lood the LAN creating excessive traffic and degrading network performance The traffic storm control feature prevents LAN ports from being disrupted by a broadcast or multicast traffic storm on physica...

Page 83: ...own box 3 Click on the Update Setting button 4 Repeat as necessary for all ports that are to be isolated Block Multicast The Block Multicast setting is a per port value Block Multicast is a straight f...

Page 84: ...84 EtherWAN Managed Switch Users Guide Figure 27 Bridging...

Page 85: ...opback Detect Loopback Detection Global To globally enable the Loopback Detect feature of the EtherWAN Managed Switch see Figure 28 1 Click on the Loopback Detect drop down box 2 Select Enable from th...

Page 86: ...g Interval To change the polling interval of the Loopback Detect function see Figure 28 1 Enter a value in the text box next to Interval Valid values range from 1 to 65535 seconds 2 Click on the Updat...

Page 87: ...o enable Loopback Detection for a particular port or ports on the EtherWAN Managed Switch see Figure 29 1 Select the value Enable from the Mode drop down list for a port on the Loopback Detect page 2...

Page 88: ...a number between 2 and 65535 seconds The Default value is 10 seconds 3 Set the Storm Detect errdisable recovery time to value between 0 and 65535 seconds The Default is 0 disabled This value determin...

Page 89: ...89 EtherWAN Managed Switch Users Guide 6 Set the number of packets per second to a value between 0 and 1000000 packets The default is 0 not limited Figure 31 Storm Detect Per Port...

Page 90: ...e offered under the Static MAC Entry menu To navigate to the Static MAC Entry menu 1 Click on the next to Switching 2 Click on Static MAC Entry Adding a Static MAC Address to a Port To add a static MA...

Page 91: ...tatic MAC Entry Discard Table To add a MAC address to the Static MAC Entry Discard table see Figure 34 1 Enter a MAC address in the form 0000 1234 abdc in the Add MAC Address text box of the Static MA...

Page 92: ...tic MAC Entry Discard Table To remove a MAC address from the Static MAC Entry Discard table see Figure 35 1 From the drop down box underneath Delete MAC Address select the MAC address to be deleted 2...

Page 93: ...cular port without disrupting normal network operations on the port that is being mirrored To navigate to the Port Mirroring menu 1 Click on the next to Switching 2 Click on Port Mirroring To configur...

Page 94: ...oring To disable port mirroring for a port or ports on the EtherWAN Managed Switch see Figure 37 1 Under the Current Settings section the current port mirroring configuration should be displayed 2 Cli...

Page 95: ...the secondary interface To navigate to the Link State Tracking menu 1 Click on the next to Switching 2 Click on Link State Tracking Enable Disable Link State Tracking To enable Link State Tracking for...

Page 96: ...96 EtherWAN Managed Switch Users Guide 2 Select if the port is upstream or downstream from the Up Down Stream drop down box 3 Click on Update Setting Figure 39 Link State Tracking Port Settings...

Page 97: ...o Switching 2 Click on PoE PoE System Setting The PoE Page provides access to PoE System Setting information and configuration The information provided is See Figure 40 1 Main Supply Voltage 2 System...

Page 98: ...ation column The default is checked Enabled This is a per port setting see Figure 41 7 Fixed Power Limit Provides a fixed Wattage to the attached PoE PD device This setting is only enabled after the P...

Page 99: ...99 EtherWAN Managed Switch Users Guide Figure 41 PoE Port Setting...

Page 100: ...t to Scheduling on the PoE settings page see PoE Port Setting To navigate to the PoE Scheduling page 1 Click on the next to Switching 2 Click on PoE Scheduling Each PoE port on the switch can be sched...

Page 101: ...101 EtherWAN Managed Switch Users Guide Figure 43 PoE Power Scheduling...

Page 102: ...ridge 1 ageing time time in ms Usage Example switch_a enable switch_a configure terminal switch_a config bridge 1 ageing time 300 switch_a config q switch_a Enabling Port Isolation To enable Port Isol...

Page 103: ...switch_a config switchport block multicast switch_a config q switch_a config q switch_a Setting Storm Control To set the value for the Broadcast and or DLF Multicast Storm Control value of a port on...

Page 104: ...use the CLI commands below CLI Command Mode General Configuration Mode CLI Command Syntax bridge 1 loopback detect action err disable none Usage Example switch_a enable switch_a configure terminal sw...

Page 105: ...ple switch_a enable switch_a configure terminal switch_a config bridge 1 loopback detect interval 5 switch_a config q switch_a Enabling Loopback Detect Port To enable Loopback Detection on a port on t...

Page 106: ...al switch_a config bridge 1 storm detect errdisable switch_a config q switch_a Usage Example Disabling storm detect switch_a enable switch_a configure terminal switch_a config no bridge 1 storm detect...

Page 107: ...e Enable this port s storm detect by detect number of broadcast or broadcast plus multicast packets per second Unit is packets per second Set to 0 to disable this feature To set the storm detect packe...

Page 108: ...ntax storm detect utilization 0 100 Default 0 Disabled Usage Example switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if storm detect utilization 80 switch_a c...

Page 109: ...ollowing CLI commands CLI Command Mode Interface Mode CLI Command Syntax no storm detect port enable Usage Example switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a co...

Page 110: ...able switch_a configure terminal switch_a config bridge 1 address 00e0 abcd 1245 forward fe1 vlan 1 switch_a config q switch_a Adding a MAC Address for Static MAC Entry Discarding To add a MAC address...

Page 111: ..._a enable switch_a configure terminal switch_a interface ge1 switch_a config mirror interface fe1 direction both switch_a config q switch_a config q switch_a Enabling a Link State Tracking Group To en...

Page 112: ...tream Usage Example switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if link state group 4 downstream switch_a config if q switch_a config q switch_a Setting P...

Page 113: ...heduling Enable Scheduling schedule time Sets schedule time to power PoE ports schedule time hour Schedule time hour enable To enable or disable PoE on a port use the following CLI commands CLI Comman...

Page 114: ...ch_a config if poe fixed power limit 7 5 switch_a config if q switch_a config q switch_a power classification This setting tells the switch to negotiate with the attached PoE device to determine the W...

Page 115: ...enable or disable the power down alarm use the following CLI commands CLI Command Mode Interface Configuration Mode CLI Command Syntax poe power down alarm enable no poe power down alarm enable Usage...

Page 116: ...rity medium switch_a config if q switch_a config q switch_a PoE Scheduling PoE Scheduling allows PoE ports to have their power up time scheduled by hour of the day and day of the week scheduling To en...

Page 117: ...be defined using a dash ex 1 23 To disable PoE scheduling on a port use the no poe enable command Usage Example 1 switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a co...

Page 118: ...ace Configuration Mode CLI Command Syntax poe schedule time day hour Day 0 Sunday to 6 Saturday Hour 1 to 23 To disable PoE scheduling on a port use the no poe enable command Usage Example switch_a en...

Page 119: ...more Ethernet links to form a virtual link equivalent in bandwidth to the sum of its individual links For example if one had four 100Mbps Ethernet links composing a single static channel the overall b...

Page 120: ...configuration mistake could go undetected and cause undesirable network behavior Port Trunking To navigate to the Port Trunking menu 1 Click on the next to Trunking 2 Click on Port Trunking There are...

Page 121: ...nk consisting of 100Mbps ports 3 Click on the checkbox for each desired port in a particular trunk 4 Click on the Submit button To create a static trunk consisting of 1000Mbps ports see Figure 45 3 In...

Page 122: ...122 EtherWAN Managed Switch Users Guide Figure 45 Port Trunking Version 2...

Page 123: ...trunk 2 Select LACP from the Trunk Type dropdown box for this port 3 Enter an admin key for this port in the Admin Key textbox 100Mbps ports admin keys must be 1 and 1Gbps ports must be 3 4 Select th...

Page 124: ...124 EtherWAN Managed Switch Users Guide Figure 46 LACP Trunking Version 1...

Page 125: ...ox for this port 3 Enter an admin key for this port in the Admin Key textbox 100Mbps ports admin keys must be between 1 6 and 1Gbps ports must be between 7 8 4 Select the LACP Mode to either Active or...

Page 126: ...126 EtherWAN Managed Switch Users Guide Figure 47 LACP Trunking Version 2...

Page 127: ...mple switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config static channel group 1 switch_a config q switch_a config q switch_a Adding an Interface to a LACP Trunk T...

Page 128: ...nfigure terminal switch_a config interface fe1 switch_a config lacp port priority 1 switch_a config q switch_a config q switch_a Setting the LACP Timeout To set the timeout for an interface attached t...

Page 129: ...Rapid Spanning Tree protocol RSTP The RSTP protocol is the new enhanced version of the original STP protocol It uses an enhanced negotiation mechanism to directly synchronize any topology changes betw...

Page 130: ...see The Root Bridge Backup Root Bridge o Default is 32768 Range is 0 to 61440 Hello Time This tells how often a BPDU Bridge Protocol Data Unit is sent see Bridge Protocol Data Units Default is 2 secon...

Page 131: ...131 EtherWAN Managed Switch Users Guide Figure 48 STP Ring Global Configuration...

Page 132: ...s are the same will be used to determine the Root and Backup Root Bridge See below Figure 49 Bridge ID Bridge ID is a concatenation of 3 values a 4 bit Bridge Priority most significant a 12 bit Syste...

Page 133: ...133 EtherWAN Managed Switch Users Guide Figure 50 Bridge ID Display...

Page 134: ...nt limit on how far the Spanning Tree protocol packet can propagate throughout the network topology therefore it must be configured with a value that is greater than the network diameter Relationship...

Page 135: ...135 EtherWAN Managed Switch Users Guide Figure 51 Max Age Hello Timer Forward Delay...

Page 136: ...the next to STP Ring 2 Click on RSTP Port Setting Spanning Tree Port Roles In a stable RSTP topology each port on a switch can function in any one of 4 different Spanning Tree port roles These Spanni...

Page 137: ...By default each port on a Spanning Tree switch will be assigned a Port Priority of 128 according to the IEEE standard This Port Priority is part of the Port ID which is a concatenation of 2 values Por...

Page 138: ...w 2 Enter the proper value under the Priority Granularity 16 a The Port Priority range is between 0 and 240 in multiples of 16 3 Enter the proper value under the Admin Path Cost text entry box a The P...

Page 139: ...STP protocol To manually force a port to be a Shared Port or a Point to Point Link 1 Choose the correct port from the drop down list under Port and choose Enable or Disable under Point to Point Link s...

Page 140: ...down 1 switch_a config bridge 1 protocol rstp vlan bridge switch_a config q switch_a Bridge Priority Max Age Forward Delay and Hello Time To configure the Bridge Priority Max Age Forward Delay and Hel...

Page 141: ...lly Setting a Port to be a Shared or Point to Point Link To manually force a port to be a shared link or Point to point link use the below CLI commands CLI Command Mode Interface Configuration Mode CL...

Page 142: ...eport no spanning tree spanning tree edgeport Usage Example 1 Enabling edge port on port 1 switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if spanning tree ed...

Page 143: ...cing among the switches Between Regions the MSTP runs a single instance of Spanning Tree similar to and is backward compatible with the RSTP protocol Global Configuration Page Enabling the MSTP Protoc...

Page 144: ...144 EtherWAN Managed Switch Users Guide Figure 55 Enabling MSTP...

Page 145: ...t System ID less significant and the 48 bit MAC address of the local switch least significant see below Figure 56 Bridge ID Setting Bridge Priority To set the Bridge Priority 1 Enter the Bridge Priori...

Page 146: ...146 EtherWAN Managed Switch Users Guide Figure 57 Bridge ID Display...

Page 147: ...MAX Age Forward Delay and Hello Timer Navigate to the STP Ring Global Configuration page 1 Click on the next to STP Ring 2 Click on Global Configuration Relationship between Max Age Forward Delay and...

Page 148: ...below Two of the parameters can be configured directly the third parameter Configuration Digest will be automatically calculated by the switch based on the VLAN to MSTI Multiple Spanning Tree Instanc...

Page 149: ...e MSTP Region see below 1 Enter the Region Name of the Region that the switch will belong to in the Region Name text entry box 2 Enter the Revision Level value for the corresponding Region in the Revi...

Page 150: ...de of a MSTP Region therefore it must be configured with a value that is greater than the network diameter of the IST MSTI topology The Max Hops parameters should be configured correctly on the CIST R...

Page 151: ...the VLAN Instance Configuration button see Figure 61 2 Choose the VLAN that you want to map to a MSTI instance from the VLAN ID drop down box see Figure 62 3 Enter the Instance ID that you want the V...

Page 152: ...STP Instance Setting To load balance switches within a MSTP Region set different switches within the MSTP Region to be the Root Bridge for different MSTI instances A Root Bridge in a particular MSTI i...

Page 153: ...Instance ID drop down list for which the switch will be a MSTI Regional Root Bridge 2 Enter the desired value in the Bridge Priority text box 3 Click on the Update Setting button The valid values for...

Page 154: ...locking port between two switches Modify the Port Cost adjusts the location of the blocking port in a MSTP loop To modify the Port Priority and the Path Cost of the ports on a MSTP switch for the MSTI...

Page 155: ...155 EtherWAN Managed Switch Users Guide Figure 64 Port Cost Priority...

Page 156: ...I port membership for the MSTI instance that the VLAN maps to To reconfigure the MSTI instance port membership 1 Click on the Port Instance Configuration button see Figure 65 2 Choose the correct MSTI...

Page 157: ...Usage Enabling Spanning Tree for MSTP To enable the Spanning Tree function on a switch use the below CLI commands CLI Command Mode General Configuration Mode CLI Command Syntax no bridge shutdown 1 br...

Page 158: ...idge 1 hello time 1 10 Usage Example switch_a enable switch_a configure terminal switch_a config bridge 1 priority 4096 switch_a config bridge 1 max age 20 switch_a config bridge 1 forward time 15 swi...

Page 159: ...terminal switch_a config spanning tree mst configuration switch_a config mst bridge 1 region R1 switch_a config mst bridge 1 revision 0 switch_a config mst q switch_a config q switch_a Creating an MST...

Page 160: ...rity 0 switch_a config q switch_a Modifying CIST Port Priority and Port Path Cost To modify the CIST Port Priority and CIST Port Path Cost on a switch use the below CLI commands CLI Command Mode Inter...

Page 161: ...config if bridge group 1 instance 1 path cost 20000 switch_a config if bridge group 1 instance 1 priority 128 switch_a config if q switch_a config q switch_a Adding a Port to an MSTI Instance To add...

Page 162: ...15 milliseconds Flexibility for Network Deployment Coexistence with STP RSTP and MSTP Ring Coupling Smaller rings coupled together to increase network efficiency Implementing a Simple Ring 1 Change th...

Page 163: ...163 EtherWAN Managed Switch Users Guide Figure 67 Ring Settings...

Page 164: ...s is called Ring coupling and uses two additional Ethernet ports on the switch To setup Ring coupling see Figure 68 1 Change the Ring coupling state to Enable 2 Click on the Update Setting button next...

Page 165: ...onfiguration When the BPDU Guard feature is set for a bridge all portfast enabled ports of the bridge that have bpdu guard set to default shut down the port on receiving a BPDU In this case the BPDU i...

Page 166: ...ling this for Edge ports ports connecting to an end device as opposed to another switch protect the BPDU Guard Configuration When set to Default the port will default to the Advanced Bridge Configurat...

Page 167: ...fast bpdu guard Usage Example switch_a enable switch_a configure terminal switch_a config bridge 1 spanning tree portfast bpdu guard switch_a config q switch_a Enabling BPDU Guard on a Port To enable...

Page 168: ...tch_a enable switch_a configure terminal switch_a config bridge 1 spanning tree errdisable timeout enable switch_a config bridge 1 spanning tree errdisable timeout interval 300 switch_a config q switc...

Page 169: ...ter it travels to another switch This is done by tagging inserting information inside a packet a packet with the VLAN ID that the packet belongs to when the packet exits the switch The VLAN associatio...

Page 170: ...configure a port to be a member for a single VLAN or multiple VLANs By default all the ports on the switch are all members of a single VLAN VLAN 1 below is an example on how to configure two groups o...

Page 171: ...ore can communicate with all ports that are in any of the VLANs that they share membership with Figure 73 Port Based VLAN Example 2 To add or remove ports from a specific VLAN 1 Select or deselect the...

Page 172: ...a single VLAN switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if switchport portbase add vlan 1 switch_a config if q switch_a config q switch_a Usage Example...

Page 173: ...a port is configured to be an Access Port then this port can only be a member of a single VLAN based on the Access Port s PVID VLAN setting and this port s outgoing packets cannot be modified to conta...

Page 174: ...LAN Mode Setting page 1 Click on the next to VLAN 2 Click on VLAN Mode Setting To enable 802 1Q Tagged Based VLAN on the switch 1 Select Tag based VLAN from the dropdown box see below 2 Click on the S...

Page 175: ...Add VLAN button see Figure 75 Figure 75 Add VLAN 2 Enter the VLAN ID 3 Enter the VLAN Name 4 Select Attach or Detach for the CPU Port a Attaching the CPU to a VLAN is typically done on the Management...

Page 176: ...vlan database switch_a config vlan vlan 100 bridge 1 name Management state enable switch_a config vlan vlan 200 bridge 1 name Accounting state enable switch_a config vlan vlan 300 bridge 1 name Sales...

Page 177: ...100 switch_a config if no ip address switch_a config if q switch_a config q switch_a Configuring an Access Port To configure an Access Port use the following CLI commands CLI Command Mode Interface C...

Page 178: ...CLI Command Syntax switchport trunk allowed vlan add 100 200 300 CLI Command Syntax switchport trunk native vlan 1 Usage Example switch_a enable switch_a configure terminal switch_a config interface...

Page 179: ...ck on the Submit button see below 3 Save the configuration see the Save Configuration Page Figure 77 Management VLAN IP Address To delete an IP from a VLAN the default VLAN for an example 1 Delete the...

Page 180: ...rview for port type details 2 Enter the PVID VLAN for each port see below 3 Enter the Priority Level optional 4 Click on the Update Setting button 5 Save the configuration see the Save Configuration P...

Page 181: ...ure 79 VLAN Links 2 Check the check box next to the port number that should be the egress member port for this VLAN 3 Click on the Submit button see Figure 80 Note If an egress member port for a VLAN...

Page 182: ...If any of the egress member ports are Hybrid ports you must also configure the Tag action on this port see Figure 81 4 Select the correct Tag option in the drop down list under Tag or Untag for this p...

Page 183: ...ferentiate traffic Although this technique is commonly referred to as IEEE 802 1p there is no standard or amendment by that name published by the IEEE Rather the technique is incorporated into the IEE...

Page 184: ...ion 2 Choose CoS and or DSCP next to the Trust option 3 Select the desired option next to Policy a Strict Priority Queue0 3 Packets must be emptied from the queues in order Starting with queue 3 and e...

Page 185: ...the Weight Round Robin section 5 Click on the Submit button 6 Save the configuration see the Save Configuration Page Note Weighted Round Robin There are four text fields one for each queue 0 3 A numbe...

Page 186: ...on For more information on CLI command usage see CLI Command Usage Enabling Disabling QoS To get to the CLI level to configure QoS CLI Command Mode Interface Configuration Mode CLI Command Syntax mls...

Page 187: ...e QoS Trust switch_a enable switch_a configure terminal switch_a config no mls qos trust switch_a config q switch_a Configuring the Egress Expedite Queue CLI Command Mode General Configuration Mode CL...

Page 188: ...ity switch_a enable switch_a configure terminal switch_a config no priority queue out switch_a config q switch_a Usage Example The following example specifies the bandwidth ratios of the four transmit...

Page 189: ...expressed as the three bit PCP field in the 802 1Q header discussed previously The values shown above are the default values with the higher VLAN priorities corresponding to the higher priority queue...

Page 190: ...eral Configuration Mode CLI Command Syntax wrr queue cos map QUEUE_ID COS_VALUE Queue ID Range is 0 3 COS_VALUE CoS values Up to 8 values separated by spaces Usage Example The following example shows...

Page 191: ...any more DSCP priorities to choose from and they are all assigned to the lowest priority queue 0 For each DSCP priority the user can change the value of the queue to between 0 and 3 See Figure 3 for m...

Page 192: ...Mode CLI Command Syntax mls qos map dscp queue dscp_value to queue_ID dscp_value Up to 8 values separated by spaces Range is 0 63 queue_ID Range is 0 3 Usage Example The following example shows mappi...

Page 193: ...Priority to an Interface CLI Command Mode Interface Configuration Mode CLI Command Syntax user priority 0 7 Usage Example The following example shows mapping DSCP values 0 to 3 to queue 1 on the swit...

Page 194: ...mbers MAC Access List This Access List can be used to filter Ethernet packets based on the packet s source and destination Ethernet addresses as well as the packet s Ethernet payload protocol number E...

Page 195: ...2 Next you will need to create and configure an ACL Class Map 3 Associate the previously created ACL Access Lists to this ACL Class Map 4 Next create and configure an ACL Policy Map 5 Associate all th...

Page 196: ...196 EtherWAN Managed Switch Users Guide Figure 85 Enabling QoS...

Page 197: ...be creating a new ACL Access List which is necessary to create an ACL Class Map From the information listed below you will find the configuration steps necessary for all of the four available ACL Acce...

Page 198: ...ed from the drop down list next to Access List 4 To give the new IP access list an ID enter a number in the range from 1 99 or from 1300 1999 into the text entry box next to the Create option drop dow...

Page 199: ...packet from entry to the switch that did not match any of the previous rules from all the previous access control lists otherwise these additional IP packets will also be allowed entry into the switc...

Page 200: ...om the Destination Wildcard Bits column 10 Next click on the Add button 11 You can also filter the IP packet using the packet s source and destination Transport Layer protocol port numbers in addition...

Page 201: ...ccess List If you want to create a new MAC Access List insure that the Create option is selected from the drop down list next to Access List 3 To give this particular MAC Access List an ID enter a num...

Page 202: ...source and destination Ethernet addresses Just enter the EtherType number of the Ethernet packet into the text entry box under the Ether type column 11 Next you can also enter a comparison mask for th...

Page 203: ...xt entry box next to TCP UDP Port No 1 65535 4 After you have finished configuring just one ACL Access List from the previous step you must now create a name for the new ACL Class Map that will be ass...

Page 204: ...eing allowed under this new ACL Class can also be limited To do this enter the bandwidth amount that you want to allocate for the traffic in the text entry box under Police Rate 1 1000000Kbps see Figu...

Page 205: ...s Guide Figure 92 Police Rate 3 Next please enter a name in the text entry box next to Policy Map Name for the new ACL Policy Map that you are currently creating and click on the submit button see Fig...

Page 206: ...w the instructions below 1 Select the correct ACL Policy Map from the drop down list next to Policy Map see Figure 94 2 Next check the boxes below Attach Class Map to Policy Map next to all the ports...

Page 207: ...ports by deselecting the check boxes below Attach Class Map to Policy Map for the ports you would like to remove the policy map 3 Click on the Attach button Figure 95 Modifying a Policy Map Adding a...

Page 208: ...New ACL Class to an Existing Policy Map Adding an Existing ACL Class to an Existing Policy Map If you would like to add an existing ACL Class to this ACL Policy Map see Figure 97 1 Select the correct...

Page 209: ...Name 3 You can confirm that the ACL Class has been added correctly to this Policy Map by checking the dropdown list under Class Name If you see the newly added ACL Class in the list above the dash li...

Page 210: ...t under Class Name see Figure 99 2 Next click on the Remove button under Attach Class Map to Policy Map Figure 99 Removing an ACL Class 3 You can confirm that the ACL Class has been removed from this...

Page 211: ...ns below 1 Select the correct ACL Policy Map that you want to remove entirely from the drop down list next to Policy Map see Figure 101 2 Next detach the Policy Map from all the ports by deselecting a...

Page 212: ...212 EtherWAN Managed Switch Users Guide Figure 101 Removing a Policy Map...

Page 213: ...reate option is selected from the drop down list next to Policy Map see Figure 102 3 Next select the correct ACL Class from the drop down list under Class Name and then wait for the GUI to update itse...

Page 214: ...e see CLI Command Usage Enabling QoS To enable the ACL feature on the EtherWAN switch by enabling the QoS feature on the switch just follow the steps below CLI Command Mode General Configuration Mode...

Page 215: ...nfig q switch_a Creating an Extended IP Access List To create a new Extended IP Access List to allow or deny an source IP address range and destination IP address range pair access to the switch use t...

Page 216: ...mac access list 2000 2699 deny source MAC address source bit mask destination MAC address destination bit mask encapsulation format 1 Ethernet II 2 SNAP 4 802 3 8 LLC ether type EtherType EtherType b...

Page 217: ...r any packet that did not match the classification rules from this Access List Note The bandwidth policing capabilities of the ACL Class cannot be configured here it can only be configured during the...

Page 218: ...ting Standard Extended IP Access List or MAC Access List to the ACL Class Map by referencing its Access list ID Note The bandwidth policing capabilities of the ACL Class cannot be configured here it c...

Page 219: ...Mode General Configuration Mode Policy Map Configuration Mode Policy Map Class Configuration Mode CLI Command Syntax policy map ACL Policy Name class ACL Class Name police 1 1000000 1 20000 exceed act...

Page 220: ...x interface Interface Name service policy input ACL Policy Name Usage Example switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if service policy input IP_Polic...

Page 221: ...the below CLI commands to delete an existing ACL Policy CLI Command Mode General Configuration Mode CLI Command Syntax no policy map ACL Policy Name Usage Example switch_a enable switch_a configure te...

Page 222: ...NMP Status 2 Enter a short description up to 256 characters into the text entry box next to Description for the purpose of switch identification 3 Enter a name into the text entry box next to Location...

Page 223: ...rts of the switch 10 Set the interval between the MAC notification traps that you want the switch to send by entering the interval in number of seconds from 1 to 65535 into the text entry box next to...

Page 224: ...224 EtherWAN Managed Switch Users Guide Figure 104 SNMP General Settings...

Page 225: ...me into the text entry box next to Get Community Name This will allow the NMS to poll status information from the switch read only 2 Enter the SNMP community name into the text entry box next to Set C...

Page 226: ...uthentication or data encryption will be used b SNMPv3 Auth MD5 User authentication will be required using the MD5 hashing algorithm but no data encryption will be used c SNMPv3 Auth SHA User authenti...

Page 227: ...SNMP v3 Settings 3 Next enter the desired username in the text entry box next to User Name 4 Next please select the desired access authorization for the user from the drop down list next to Access Mo...

Page 228: ...inside this text entry box See Figure 109 Figure 109 Auth Password 6 Next if both authentication and privacy are required for this user and you have chosen both an authentication and privacy protocol...

Page 229: ...P SNMP v3 you should see a list of previously configured users Next click on the Delete User button See below Figure 111 Delete User 2 Next select the user that you wish to delete from the drop down l...

Page 230: ...ore information on CLI command usage and typographic conventions please click here CLI Command Mode General Configuration Mode CLI Command Syntax snmp server enable snmp server description 1 256 chara...

Page 231: ...ver trap community 4 1 256 characters snmp server trap community 5 1 256 characters snmp server trap ipaddress 1 IP Address snmp server trap ipaddress 2 IP Address snmp server trap ipaddress 3 IP Addr...

Page 232: ...dress 2 169 254 1 100 switch_a config snmp server trap ipaddress 3 169 254 1 100 switch_a config snmp server trap ipaddress 4 169 254 1 100 switch_a config snmp server trap ipaddress 5 169 254 1 100 s...

Page 233: ...et private switch_a config q switch_a Adding SNMP v3 Users To add SNMP v3 Users to the switch and maximize the security for the SNMP feature you must use the following CLI commands CLI Command Mode Ge...

Page 234: ...switch will request authentication credentials from the Supplicant in the end device that has just connected to the port After the switch receives the proper authentication credentials from the Suppli...

Page 235: ...gure 114 3 Enter the password for RADIUS server in the text entry box next to Secret Key 4 Optionally the UDP port number for the RADIUS server if it is different from the standard default 1812 can be...

Page 236: ...se to configure the maximum number of times that the switch can attempt to retransmit a message to the RADIUS server To do this please enter a number from 1 to 100 into the text entry box next to Retr...

Page 237: ...desired port from the drop down list next to Interface to have the 802 1X feature applied to that port 2 Next make sure Enabled is selected from the drop down list next to Authentication State this w...

Page 238: ...tion 5 After you have enabled periodic re authentication you must also configure the time period interval for the re authentication of the end station To do this enter the number of seconds 1 42949672...

Page 239: ...as well as learn the same information from the devices connected to it LLDP advertises this information over Logical Link Layer Control frames and the information received from other agents in IEEE d...

Page 240: ...aintain the information in its MIB To compute the TTL value the system multiplies the LLDP transmit TX interval by the holdtime multiplier For example if the LLDP transmit TX interval is 30 and the ho...

Page 241: ...em Capabilities Management Address Port VLAN ID MAC PHY Configuration Status Port And Protocol VLAN ID VLAN Name Protocol Identity Power Via MDI Link Aggregation Maximum Frame Size To enable specific...

Page 242: ...242 EtherWAN Managed Switch Users Guide Figure 117 LLDP Global Settings...

Page 243: ...able from the Drop Down box under the Transmit field for each port for which the transmission of LLDP information should be enabled 2 Click on the Submit button Enabling LLDP Reception for a specific...

Page 244: ...244 EtherWAN Managed Switch Users Guide Figure 118 LLDP Ports Settings...

Page 245: ...enabled devices is displayed in a tabular format The columns displayed are Port The local switch port to which the remote device is connected Chassis ID The MAC address of the remote device Port ID Th...

Page 246: ...The information collected on this page includes Port switch port number TX Total Total LLDP packets sent RX Total Total LLDP packets received Discards Number of LLDP packets discarded Errors LLDP erro...

Page 247: ...he EtherWAN Managed Switch use the CLI commands below CLI Command Mode General Configuration Mode CLI Command Syntax lldp enable no lldp enable Usage Example Enabling LLDP switch_a enable switch_a con...

Page 248: ...Usage Example switch_a enable switch_a configure terminal switch_a config lldp holdtime multiplier 4 switch_a config q switch_a LLDP Transmit Interval To modify LLDP Transmit Interval use the CLI com...

Page 249: ...scription sys name System Name TLV sys descr System Description TLV sys cap System Capabilities mgmt addrs Management Address port vlan id Port VLAN ID mac phy MAC PHY Configuration Status port and pr...

Page 250: ...ch_a configure terminal switch_a interface fe1 switch_a config lldp tx pkt switch_a config q switch_a config q switch_a Enabling LLDP Receive on a Port To enable LLDP Receive for a port use the CLI co...

Page 251: ...e fe1 switch_a config lldp notification switch_a config q switch_a config q switch_a Enabling Transmission of the Management IP To enable the transmission of the management IP address through a port u...

Page 252: ...the CLI commands below CLI Command Mode Interface Configuration Mode CLI Command Syntax lldp tlv select TLV ID see TLV Parameters on page 249 Usage Example switch_a enable switch_a configure terminal...

Page 253: ...n IEEE 802 1Q GVRP is a protocol used to dynamically create VLANs on a switch Any IEEE 802 1Q compliant switch must implement this protocol To navigate to the Other Protocols GVRP page see Figure 121...

Page 254: ...PVID have been configured for all the ports of the switch All the member Trunk ports for all the user VLANs have been configured The GVRP protocol has been globally enabled and GVRP is locally enabled...

Page 255: ...own list next to GVRP 2 Choose the Enable option from the drop down list next to Dynamic VLAN Creation 3 Click on the Update Setting button Figure 122 GVRP Configuration Distribution Switch To enable...

Page 256: ...RP column 2 For all the Trunk Ports under the Per Port Setting include LAG section choose the Active or Normal option from the drop down list under the GVRP Applicant column o Active Use this option i...

Page 257: ...dge 1 Usage Example switch_a enable switch_a configure terminal switch_a config set gvrp enable bridge 1 switch_a config set gvrp disable bridge 1 switch_a config q switch_a To enable the dynamic VLAN...

Page 258: ...ich means that the GVRP protocol will not send out any PDUs from a port if the port is being blocked by STP When you enable the GVRP Applicant to run in Active mode on a port the GVRP protocol will co...

Page 259: ...port by issuing the following CLI commands CLI Command Mode General Configuration Mode CLI Command Syntax set gvrp registration normal port id set gvrp registration forbidden port id Usage Example swi...

Page 260: ...Forced Forwarding Port setting based on the following rule When there is no Querier Port a port that receives IGMP queries present all unknown multicast packets will be forwarded to the port specifie...

Page 261: ...MP Snooping page 1 Click on the next to Other Protocols 2 Click on IGMP Snooping To put the IGMP Snooping feature in the correct Mode follow the steps below Choose the appropriate choice from the drop...

Page 262: ...rsion to be run on this VLAN This setting must match the IGMP version being used by the IGMP querier and the IGMP client on the network 3 Choosing the appropriate choice Enable or Disable from the dro...

Page 263: ...le in the dropdown list next to Report Suppression Note if the switch is not in Passive mode then this feature will have no effect Note If you are using IGMP version 1 or 2 the Query Interval and the...

Page 264: ...time interval in seconds between any two queries that the switch scents on to the network It is recommended that you use the default setting of 125 seconds that are according to the IGMP standard 2 I...

Page 265: ...rt section of the IGMP Snooping configuration page to control how the switch will forward these unknown multicast packets under different IGMP Snooping modes of the switch see Figure 129 Disabled Mode...

Page 266: ...ds unknown multicast packets when the switch is in IGMP Passive mode follow the steps below No IGMP Querier port present 1 Under the Passive Mode Forwarding Port section select the PassiveForwardMode...

Page 267: ...o have the unknown multicast packets forwarded to 3 Click on the Update Setting button Note The settings according to the ForceForwardMode will always be in effect both with and without the presence o...

Page 268: ...ive Mode Forwarding Port section select the ForceForwardMode radio button 2 Select the checkbox under the ports that you would like to have the unknown multicast packets forwarded to 3 Click on the Up...

Page 269: ...each port as well as the location of the IGMP Querier port see Figure 133 All the registered multicast Groups will be listed in the Group Address column The port where each registered Group ID was re...

Page 270: ...igmp snooping Usage Example switch_a enable switch_a configure terminal switch_a config no ip igmp snooping switch_a config q switch_a To put the IGMP Snooping feature in Passive Mode use the CLI com...

Page 271: ...ch_a enable switch_a configure terminal switch_a config ip igmp snooping enable switch_a config ip igmp snooping querier switch_a config q switch_a To set the IGMP version per VLAN use the following C...

Page 272: ...ge Example Disabling the IGMP fast leave feature switch_a enable switch_a configure terminal switch_a config interface vlan1 1 switch_a config if no ip igmp snooping fast leave switch_a config q switc...

Page 273: ...LI Command Mode VLAN Interface Configuration Mode CLI Command Syntax ip igmp query interval 10 18000 ip igmp query max response time 1 240 Usage Example Configuring the IGMP query interval parameter s...

Page 274: ...ame Usage Example Flood all unknown multicast packets switch_a enable switch_a configure terminal switch_a config ip igmp snooping passive forward all switch_a config q switch_a Usage Example Drop all...

Page 275: ...orward ifname ifname ifname Usage Example Flood all unknown multicast packets switch_a enable switch_a configure terminal switch_a config ip igmp snooping passive forward all switch_a config q switch_...

Page 276: ...orward ifname ifname ifname Usage Example Flood all unknown multicast packets switch_a enable switch_a configure terminal switch_a config ip igmp snooping force forward all switch_a config q switch_a...

Page 277: ...fname Usage Example Flood all unknown multicast packets switch_a enable switch_a configure terminal switch_a config ip igmp snooping force forward all switch_a config q switch_a Usage Example Drop all...

Page 278: ...client follow the steps below see Figure 134 1 Choose Enable from the dropdown list next to NTP Status 2 Click on the Update Setting button Setting the NTP Server IP Address To provide a time source f...

Page 279: ...ings Time using the weekday mode follow the steps below 1 Select the option Weekday from the Daylight Saving Mode dropdown box 2 Enter the value for the time offset in the Time Set Offset textbox 3 En...

Page 280: ...e Daylight Saving Mode dropdown box 2 Enter the value for the time offset in the Time Set Offset textbox 3 Enter the name of the Daylight Saving Timezone 4 In the Date section select the month and ent...

Page 281: ...281 EtherWAN Managed Switch Users Guide Figure 136 Daylight Savings Date Mode...

Page 282: ...tch_a To set the NTP server on the EtherWAN Managed Switch use the CLI commands below CLI Command Mode General Configuration Mode CLI Command Syntax ntp server IP Address or Host Name of NTP Server Us...

Page 283: ...Usage Example switch_a enable switch_a configure terminal switch_a config ntp sync time switch_a config q switch_a To set the current time zone for the EtherWAN Managed Switch use the CLI commands be...

Page 284: ...switch_a configure terminal switch_a config clock summer time CDT weekday 2 Sun March 2 0 1 Sun November 2 0 60 switch_a config q switch_a To set the Daylight Savings Time settings using date mode fo...

Page 285: ...al switch To navigate to the Other Protocols GMRP page 1 Click on the next to Other Protocols 2 Click on GMRP General Overview The ports on the EtherWAN switch can be configured with the GMRP feature...

Page 286: ...be registered to this port so the switch will be forwarding all the multicast packets that belong to these groups to this port and this port will also be propagating all the registered multicast grou...

Page 287: ...the ports that are connected to multicast clients You can also further configure each GMRP enabled port with the particular application modes described in the below configuration To allow a port to d...

Page 288: ...the drop down list under the GMRP Forward All column Click on the Update Setting button If you do not wish to transmit any multicast packets on a port based on the received GMRP multicast group regist...

Page 289: ...each port that you wish to apply this application select the Enable option from the drop down list under the GMRP Forward All column Click on the Update Setting button If you do not want a port to pa...

Page 290: ...1 Usage Example switch_a enable switch_a configure terminal switch_a config set gmrp enable bridge 1 switch_a config set gmrp disable bridge 1 switch_a config q switch_a To enable GMRP locally on a p...

Page 291: ...figure terminal switch_a config set gmrp registration normal fe1 switch_a config set gmrp registration fixed fe1 switch_a config set gmrp registration forbidden fe1 switch_a config q switch_a By defau...

Page 292: ...es default gateway and DNS servers which will allow the switch to use the dynamic configuration function of the DHCP protocol to provide any TCP IP device that is a DHCP client to dynamically obtain a...

Page 293: ...d End IP 3 Enter the Subnet Mask in the text box next to Subnet Mask 4 Enter the IP address for the DHCP Client default router in the text entry box next to Gateway 5 Enter the IP addresses for the DH...

Page 294: ...has been allocated to which DHCP clients 1 Click on the DHCP Binding Table link see Figure 139 2 Click on the DHCP General Setting link to get back to the previous DHCP configuration Web GUI page see...

Page 295: ...gure terminal switch_a config dhcp server range 169 254 0 100 169 254 0 107 switch_a config dhcp server subnet mask 255 255 255 0 switch_a config dhcp server gateway 169 254 0 1 switch_a config dhcp s...

Page 296: ...sses has been allocated CLI Command Mode enable CLI Command Syntax show dhcp server binding Usage Example switch_a enable switch_a show dhcp server binding Mac Address IP Address Expires in a4 ba db d...

Page 297: ...akes no express warranties except as may be stated in its written agreement with and for its customers EtherWAN shall not be held liable to anyone for any indirect special or consequential damages due...

Reviews:

No comments

Related manuals for EX72129A

D-Link DUB-1340 Datasheet preview
DUB-1340
Brand: D-Link Pages: 2
D-Link DKVM-4U Specifications preview
DKVM-4U
Brand: D-Link Pages: 2
D-Link DKVM-16 - KVM Switch Manual preview
DKVM-16 - KVM Switch
Brand: D-Link Pages: 24
D-Link Dis-200G Series Web Ui Reference Manual preview
Dis-200G Series
Brand: D-Link Pages: 161
D-Link Dis-200G Series Quick Installation Manual preview
Dis-200G Series
Brand: D-Link Pages: 16
D-Link Dis-200G Series Hw Installation Manual preview
Dis-200G Series
Brand: D-Link Pages: 47
D-Link DGS-3130-30PS Quick Installation Manual preview
DGS-3130-30PS
Brand: D-Link Pages: 25
D-Link DGS-3100 SERIES Hardware Installation Manual preview
DGS-3100 SERIES
Brand: D-Link Pages: 54
D-Link DGS-3100 SERIES Cli Manual preview
DGS-3100 SERIES
Brand: D-Link Pages: 220
D-Link DGS-3000-28SC Quick Installation Manual preview
DGS-3000-28SC
Brand: D-Link Pages: 24
D-Link DGS-1248T - Switch Manual preview
DGS-1248T - Switch
Brand: D-Link Pages: 52
D-Link DGS-1216T - Switch Getting Started Manual preview
DGS-1216T - Switch
Brand: D-Link Pages: 42
D-Link DGS-1216T - Switch Quick Installation Guid preview
DGS-1216T - Switch
Brand: D-Link Pages: 10
D-Link DGS-1010MP Installation Manual preview
DGS-1010MP
Brand: D-Link Pages: 8
D-Link DES-3350SR Command Line Interface Reference Manual preview
DES-3350SR
Brand: D-Link Pages: 379
D-Link DES-3326SR Manual preview
DES-3326SR
Brand: D-Link Pages: 240
D-Link DES-3350SR User Manual preview
DES-3350SR
Brand: D-Link Pages: 188
D-Link DES-3326S - Switch - Stackable User Manual preview
DES-3326S - Switch - Stackable
Brand: D-Link Pages: 349

Brands by name

Popular brands

Load more brands