manualshive.com logo in svg

Interlogix GE-DS-242-PoE, User Manual

The Interlogix GE-DS-242-PoE is a high-quality PoE (Power over Ethernet) switch designed for seamless integration with your security system. Ensure optimal performance by downloading the free User Manual from manualshive.com to learn about setup, troubleshooting, and maintenance procedures. Get your manual today for a hassle-free experience.

Share
Download
background image

 

Chapter 4: Console Management 

GE-DS-242-PoE Managed Ethernet Switch User Manual 

115 

802.1X Configuration 

802.1x is an IEEE authentication specification which prevents the client from 
accessing a wireless access point or wired switch until it provides authority, like 
the user name and password that are verified by an authentication server (such 
as RADIUS server). 

Understanding IEEE 802.1X Port-Based Authentication 

The IEEE 802.1X standard defines a client-server-based access control and 
authentication protocol that restricts unauthorized clients from connecting to a 
LAN through publicly accessible ports. The authentication server authenticates 
each client connected to a switch port before making available any services 
offered by the switch or the LAN.  

Until the client is authenticated, 802.1X access control allows only Extensible 
Authentication Protocol over LAN (EAPOL) traffic through the port to which the 
client is connected. After authentication is successful, normal traffic can pass 
through the port. 

This section includes this conceptual information: 

 Device 

Roles 

  Authentication Initiation and Message Exchange 

  Ports in Authorized and Unauthorized States 

 Device 

Roles 

With 802.1X port-based authentication, the devices in the network have specific 
roles as shown below. 

Figure 4-63: 802.1x device role 

 

 

 

Summary of Contents for GE-DS-242-PoE

Page 1: ...P N 1069174 REV B ISS 13NOV14 GE DS 242 PoE Managed Ethernet Switch User Manual...

Page 2: ...Security B V Kelvinstraat 7 6003 DH Weert Netherlands Certification N4131 FCC compliance This equipment has been tested and found to comply with the limits for a Class A digital device pursuant to pa...

Page 3: ...ess Overview 22 Web Management 23 SNMP Based Network Management 25 Administration Console 25 Protocols 27 Management Architecture 28 Chapter 4 Web Based Management 29 About Web based Management 29 Sys...

Page 4: ...tion 157 MAC limit 162 Port Mirroring Configuration 163 Quality of Service 164 MAC Address Configuration 167 STP RSTP Commands 170 SNMP 175 IGMP 179 802 1x Protocol 181 Access Control List 185 Binding...

Page 5: ...Form Factor Pluggable interface The GE DS 242 PoE has a high performance switch architecture that is capable of providing non blocking switch fabric and wire speed throughput as high as 8 8Gbps Its tw...

Page 6: ...peed Switching The Interlogix GE DS 242 PoE Managed Switch offers 24 Ethernet ports with 2 Gigabit TP SFP combo ports Port 25 26 The type 24 Fast Ethernet ports of GE DS 242 PoE are 10 100Base TX copp...

Page 7: ...oping 802 1X Authentication RADIUS Access Control List SNMP and 4 RMON groups How to Use this Manual This User Manual is structured as follows Section Section Content INTRODUCTION Product description...

Page 8: ...EEE 802 3ab IEEE 802 3z Gigabit Ethernet standard o High performance Store and Forward architecture broadcast storm control runt CRC filtering eliminates erroneous packets to optimize the network band...

Page 9: ...groups Security o Layer 2 3 4 Access Control List ACL o IEEE 802 1x Port Based Authentication o MAC address Filtering and MAC address Binding o IP address security management to prevent unauthorized i...

Page 10: ...ces powered o Support PoE Power up to 15 4 watts for each PoE ports o Auto detect powered device PD o Circuit protection prevent power interference between ports o Remote power feeding up to 100m o Po...

Page 11: ...ytes Address Table 8K entries Share Data Buffer 512Kbytes Flash 4Mbytes DRAM 16Mbytes Maximum Frame Size 9K Bytes Flow Control Back pressure for Half Duplex IEEE 802 3x Pause Frame for Full Duplex LED...

Page 12: ...d Spanning Tree Link Aggregation Static Port Trunk IEEE 802 3ad LACP Link Aggregation Control Protocol Supports 13 groups of 8 Port trunk support Quality of Service Traffic classification based on Por...

Page 13: ...IEEE 802 3z Gigabit SX LX IEEE 802 3ab Gigabit 1000Base T IEEE 802 3x Flow Control and Back pressure IEEE 802 1d Spanning tree protocol IEEE 802 1w Rapid spanning tree protocol IEEE 802 1p Class of s...

Page 14: ...Chapter 1 Introduction 10 GE DS 242 PoE Managed Ethernet Switch User Manual...

Page 15: ...ion of the Managed Switch on the desktop or rack mount For easier management and control of the Managed Switch familiarize yourself with its display indicators and ports Front panel illustrations in t...

Page 16: ...25 Port 26 1000Base SX LX mini GBIC slot SFP Small Form Factor Pluggable transceiver module from 550 meters Multi mode fiber up to 10 30 50 70 120 kilometers Single mode fiber Console Port The consol...

Page 17: ...ed Switch Until the PWR LED goes out Resets the Managed Switch to Factory Default configuration The Managed Switch will then reboot and load the default settings as below Default Password admin Defaul...

Page 18: ...rfaces LED Color Function LNK ACT 1000 Green Lit indicates the port is operating at 1000Mbps Off indicates the port is operating at 10Mbps or 100Mbps Blink indicates the Switch is actively sending or...

Page 19: ...ent data loss or downtime 2 In some areas installing a surge suppression device may also help protect your Managed Switch from being damaged by unregulated power surges or current to either the Switch...

Page 20: ...onnect one end of a standard network cable to the 10 100 1000 RJ 45 ports on the front of the Managed Switch B Connect the other end of the cable to the network devices printer servers workstations ro...

Page 21: ...ach side of the Managed Switch Use the supplied screws attached to the package Figure 2 5 shows how to attach brackets to one side of the Managed Switch Figure 2 5 Attaching rack mount brackets to the...

Page 22: ...ot swappable You can insert and remove a transceiver to and from any SFP port without powering down the Managed Switch as shown in Figure 2 7 Figure 2 7 Plugging in the SFP transceiver Approved Interl...

Page 23: ...iber cable one side must be male duplex LC connector type Connect the fiber cable 1 Attach the duplex LC connector on the network cable into the SFP transceiver 2 Connect the other end of the cable to...

Page 24: ...er Manual Figure 2 8 Pulling out the SFP transceiver CAUTION Never pull out the module without pulling the handle or the push bolts on the module Pulling out the module with too much force could damag...

Page 25: ...anagement applications and the communication and management protocols that deliver data between your management device work station or personal computer and the system It also contains information abo...

Page 26: ...in Serial Port connection Above PC with COM Port DB 9 RS 232 or USB to RS 232 converter NOTE We recommended Internet Explore 6 0 or above to access the Managed Switch Management Access Overview The Ma...

Page 27: ...t based Telnet functionality and HyperTerminal built into Windows 95 98 NT 2000 ME XP operating systems Secure Must be near switch or use dial up connection Not convenient for remote users Modem conne...

Page 28: ...Chapter 3 Switch Management 24 GE DS 242 PoE Managed Ethernet Switch User Manual Figure 3 1 Web management setup Figure 3 2 Web main screen of Managed Switch...

Page 29: ...it can read and write to the MIBs However if it only knows the get community string it can only read MIBs The default gets and sets community strings for the Managed Switch are public Figure 3 3 SNMP...

Page 30: ...erminal or a PC equipped with a terminal emulation program such as HyperTerminal to the Managed Switch console serial port When using this management method a straight DB9 RS 232 cable is required to...

Page 31: ...al Terminal Protocols Telnet A virtual terminal protocol is a software program such as Telnet that allows you to establish a management session from a Macintosh a PC or a UNIX workstation Because Teln...

Page 32: ...ffering a connectionless mode service Management Architecture All of the management application modules use the same Messaging Application Programming Interface MAPI By unifying management methods wit...

Page 33: ...E6 0 or later version does not allow Java Applets to open sockets The user has to explicitly modify the browser setting to enable Java Applets to use network ports The Managed Switch can be configured...

Page 34: ...Browser and JAVA runtime environment Plug in It is recommended to use Internet Explorer 6 0 or above to access the GE DS 242 PoE Managed Switch Figure 4 1 Web management setup Logging on to the Switch...

Page 35: ...ult User name admin Default Password admin Figure 4 2 Login screen 1 After entering the username and password the main screen appears as Figure 4 3 Figure 4 3 Web main page 2 The Switch Menu on the le...

Page 36: ...A changed IP address take effect immediately after click on the Save button you need to use the new IP address to access the Web interface For security reason please change and memorize the new passwo...

Page 37: ...the image of a port opens the Port Statistics page The port states are illustrated as follows State Disabled Down Link RJ 45 Ports SFP Ports PoE Ports Main Menu Using the onboard web agent you can def...

Page 38: ...his section has the following items System Information Provides basic system description including contact information IP Configuration Sets the IP address for management access SNMP Configuration Con...

Page 39: ...nd MAC address The screen in Figure 4 6 appears Figure 4 6 Basic System Information screenshot This page includes the following fields OBJECT DESCRIPTION MODEL NAME Displays the system name of the Man...

Page 40: ...in the switch s address table The value is a multiple of 6 Default is 300 seconds Broadcast Storm Filter Mode To configure broadcast storm control enable it and set the upper threshold for individual...

Page 41: ...Direct Map Default mode is CRC Hash 802 1x protocol Enable disable 802 1x protocol Apply button Press the button to complete the configuration IP Configuration The Managed Switch is a network device w...

Page 42: ...includes the IP Address Subnet Mask and Gateway The Configured column is used to view or change the IP configuration Fill up the IP Address Subnet Mask and Gateway for the device The screen in Figure...

Page 43: ...f DHCP client function is disabled the user has to assign the subnet mask in this column field Gateway Assign the network gateway for the switch If DHCP client function is disabled the user has to ass...

Page 44: ...nd abundant disk space At least one NMS must be present in each managed environment SNMP Agents Agents are software modules that reside in network elements They collect and store management informatio...

Page 45: ...group that devices and management stations running SNMP belong to It helps define where information is sent The community name is used to identify the group A SNMP device or agent may belong to more t...

Page 46: ...cal location of this node e g telephone closet 3rd floor The allowed string length is 0 to 255 and the allowed content is the ASCII characters from 32 to 126 System Contact The textual identification...

Page 47: ...ty strings that you defined before on the Managed Switch Trap Managers A trap manager is a management station that receives the trap messages generated by the switch If no trap manager is defined no t...

Page 48: ...o the Managed Switch Figure 4 13 Firmware Upgrade interface This page includes the following fields OBJECT DESCRIPTION TFTP Server IP Address Type in your TFTP server IP Firmware File Name Type in the...

Page 49: ...le The Firmware upgrade process takes several minutes Please wait a while and then manually refresh the webpage Configuration Backup TFTP Restore Configuration You can restore a previous backup config...

Page 50: ...toring TFTP Backup Configuration You can back up the current configuration from flash ROM to the TFTP server for the purpose of recovering the configuration later It helps you to avoid wasting time on...

Page 51: ...ment GE DS 242 PoE Managed Ethernet Switch User Manual 47 Factory Default Reset Switch to default configuration Click the reset button to restore all configurations to the default value Figure 4 17 Fa...

Page 52: ...Web Based Management 48 GE DS 242 PoE Managed Ethernet Switch User Manual System Reboot Reboot the Switch with a software reset Click the reboot button to reboot the system Figure 4 18 System Reboot...

Page 53: ...to the speed and duplex mode are negotiated automatically When you set it as Force you have to set the speed and duplex mode manually Speed It is available for selecting when the Negotiation column is...

Page 54: ...range is 0 8000 The unit is 128K 0 disable rate control 1 8000 valid rate value Security A port in security mode will be locked without permission of address learning Only the incoming packets with S...

Page 55: ...isplays current port configurations and operating status it is a ports configurations summary table Via the summary table you can learn the status of each port at a glance like Port Link Up Link Down...

Page 56: ...TION Port The port number Link The status of linking Up or Down State Set by Port Control When the state is disabled the port will not transmit or receive any packet Tx Good Packet The counts of trans...

Page 57: ...et The counts of multicast packet Port Sniffer The Port Sniffer mirroring is a method for monitor traffic in switched networks Traffic through a port can be monitored by one specific port That is traf...

Page 58: ...t Analysis port to LAN analyzer or netxray Monitored Port The port you want to monitor The monitor port traffic will be copied to Analysis port You can select one monitor ports in the switch User can...

Page 59: ...gically a VLAN can be equated to a broadcast domain because broadcast packets are forwarded to only members of the VLAN on which the broadcast was initiated NOTE 1 No matter what basis is used to uniq...

Page 60: ...s in packet headers The tagging feature allows VLAN to span multiple 802 1Q compliant switches through a single physical connection and allows Spanning Tree to be enabled on all ports and work normall...

Page 61: ...e Cyclic Redundancy Check CRC must be recalculated Adding an IEEE802 1Q Tag Dest Addr Src Addr Length E type Data Old CRC Dest Addr Src Addr E type Tag Length E type Data New CRC Priority CFI VLAN ID...

Page 62: ...nected to a tag aware device the packet should be tagged Default VLANs The Switch initially configures one VLAN VID 1 called default The factory default setting assigns all ports on the Switch to the...

Page 63: ...nsole Management GE DS 242 PoE Managed Ethernet Switch User Manual 59 The Managed Switch supports Port based and 802 1Q Tagged based VLAN in web management page In the default configuration VLAN suppo...

Page 64: ...tag from packet headers to maintain compatibility with devices that are tag unaware Port Based VLAN Packets can go among only members of the same VLAN group Note all unselected ports are treated as b...

Page 65: ...oup See Figure 4 26 appears 4 Type a name and Group ID for the new VLAN the available range is 2 4094 5 From the Available ports box select ports to add to the Managed Switch and click Add 6 Click App...

Page 66: ...N group ID and available range is 2 4094 Port Indicate port 1 to port 26 Add Defines the interface as a Port Based member of a VLAN Member Remove Forbidden ports are not included in the VLAN NOTE All...

Page 67: ...eeping the VLAN information intact The VLAN information in the tag can then be used by other 802 1Q compliant devices on the network to make packet forwarding decisions Untagged Ports with untagging e...

Page 68: ...e 1 Click the hyperlink VLAN Static VLAN to enter the VLAN configuration interface 2 Select 802 1Q in the VLAN Operation Mode to enable the 802 1Q VLAN function 3 Click Add to create a new VLAN group...

Page 69: ...ernet Switch User Manual 65 Figure 4 28 VLAN Group Configuration interface 5 Select specific port as member port The screen in Figure 4 29 appears Figure 4 29 802 1Q VLAN Setting Web Page screen This...

Page 70: ...t 7 Please press Back for return to VLAN configuration screen to add other VLAN group the screen in Figure 4 28 appears 8 If there are many groups that over the limit of one page you can click Next to...

Page 71: ...Chapter 4 Console Management GE DS 242 PoE Managed Ethernet Switch User Manual 67 Figure 4 30 802 1Q Ingress filter interface...

Page 72: ...set one VLAN ID the range is 1 255 default VLAN ID is 1 The VLAN ID must as same as the VLAN ID that the port belong to VLAN group or the untagged traffic will be dropped Ingress Filtering 1 Ingress f...

Page 73: ...ight easily overlap and traffic passing through the infrastructure might be mixed Assigning a unique range of VLAN IDs to each customer would restrict customer configurations require intensive process...

Page 74: ...is way the MAC table requirements are reduced Q in Q Port Setting The QinQ VLAN QinQ Port Setting screen in Figure 4 31 appears Figure 4 31 Q in Q Port Setting interface This page includes the followi...

Page 75: ...ame service provider network might overlap and traffic of customers through the infrastructure might be mixed Assigning a unique range of VLAN IDs to each customer would restrict customer configuratio...

Page 76: ...ons STP Spanning Tree Protocol IEEE 802 1D RSTP Rapid Spanning Tree Protocol IEEE 802 1w The IEEE 802 1D Spanning Tree Protocol and IEEE 802 1W Rapid Spanning Tree Protocol allow for the blocking of l...

Page 77: ...the following information The unique identifier of the switch that the transmitting switch currently believes is the root switch The path cost to the root from the transmitting port The port identifie...

Page 78: ...s Ports must wait for new network topology information to propagate throughout the network before starting to forward packets They must also wait for the packet lifetime to expire for BPDU packets tha...

Page 79: ...Console Management GE DS 242 PoE Managed Ethernet Switch User Manual 75 From listening to learning or to disabled From learning to forwarding or to disabled From forwarding to disabled From disabled t...

Page 80: ...p If properly configured each port stabilizes to the forwarding or blocking state No packets except BPDUs are forwarded from or received by STP enabled ports until the forwarding state is enabled for...

Page 81: ...g elected as the root bridge 32768 Hello Time The length of time between broadcasts of the hello message by the switch 2 seconds Maximum Age Timer Measures the age of a received BPDU for a port and en...

Page 82: ...t to switch C and switch C will broadcast it to back to switch A and so on The broadcast packet will be passed indefinitely in a loop potentially causing a network failure In this example STP breaks t...

Page 83: ...Console Management GE DS 242 PoE Managed Ethernet Switch User Manual 79 Figure 4 34 Before Applying the STA Rules In this example only the default STP values are used Figure 4 35 After Applying the S...

Page 84: ...undant link between switch B and C is deliberately chosen as a 100 Mbps Fast Ethernet link default port cost 19 Gigabit ports could be used but the port cost should be increased from the default to en...

Page 85: ...ts without receiving Spanning tree Protocol configuration messages before attempting a reconfiguration Enter a value between 6 through 40 Hello Time 1 10 The time that controls the switch to send out...

Page 86: ...e identifier of the root bridge It is made up from the bridge priority and the base MAC address of the bridge Root Path Cost For the Root Bridge this is zero For all other Bridges it is the sum of the...

Page 87: ...e of priority must be the multiple of 16 Admin P2P The rapid state transitions possible within RSTP are dependent upon whether the port concerned can only be connected to exactly another bridge i e it...

Page 88: ...et to 65 535 By default the system automatically detects the speed and duplex mode used on each port and configures the path cost according to the values shown below Table 4 1 Recommended STP Path Cos...

Page 89: ...ns for exchanging information between Partner Systems on a link to allow their Link Aggregation Control instances to reach agreement on the identity of the Link Aggregation Group to which the link bel...

Page 90: ...k group LACP Enabled the trunk group is using LACP A port which joins an LACP trunk group has to make an agreement with its member ports first Disabled the trunk group is a static trunk group The adva...

Page 91: ...he two switches Aggregator Information When you setup the LACP aggregator you will see relational information here LACP disabled Having set up the aggregator setting with LACP disabled you will see th...

Page 92: ...l see the trunking group information between two switches on the tab of Aggregator Information Switch 1 configuration 1 Set System Priority of the trunk group The default is 1 2 Select a trunk group I...

Page 93: ...ull down the drop down menu bar 8 Enable LACP 9 Include the member ports by clicking the Add button after selecting the port number and the column field of Work Ports changes automatically Figure 4 44...

Page 94: ...Chapter 4 Web Based Management 90 GE DS 242 PoE Managed Ethernet Switch User Manual Figure 4 45 Switch 1 Aggregator Information...

Page 95: ...ncel the checkbox beside the state label When you remove the tick mark of the port and click the Apply button the port state activity will change to Passive Figure 4 46 State Activity of Switch 1 This...

Page 96: ...2 PoE Managed Ethernet Switch User Manual Figure 4 47 State Activity of Switch 2 NOTE A link having two passive LACP nodes will not perform dynamic LACP trunk because both ports are waiting for an LAC...

Page 97: ...with the corresponding SMAC address have been seen after a configurable age time Dynamic MAC Table Entries in the MAC Table are shown on this page The Dynamic MAC Table contains up to 8192 entries and...

Page 98: ...learn a device s MAC address when the disconnected or powered off device is active on the network again Via this interface you can add modify delete a static MAC address Add the Static MAC Address You...

Page 99: ...s the switch can easily filter the pre configured MAC address and increase the security You can add and delete filtering MAC address Figure 4 50 MAC Filtering interface This page includes the followin...

Page 100: ...issions need to inform nearby routers that they will become members of a multicast group The Internet Group Management Protocol IGMP is used to communicate this information IGMP is also used to period...

Page 101: ...Chapter 4 Console Management GE DS 242 PoE Managed Ethernet Switch User Manual 97 Figure 4 51 Multicast Service Figure 4 52 Multicast flooding...

Page 102: ...rs to join or leave at any time IGMP provides the method for members and multicast routers to communicate when joining or leaving a multicast group IGMP version 1 is defined in RFC 1112 It has a fixed...

Page 103: ...p A host will never send a report when it wants to leave a group for version 1 A host will send a leave report when it wants to leave a group for version 2 Multicast routers send IGMP queries to the a...

Page 104: ...of querying the LAN for group members It then propagates the service requests on to any upstream multicast switch router to ensure that it will continue to receive the multicast service NOTE Multicas...

Page 105: ...P Querier Enable or disable the IGMP query function The IGMP query information will be displayed in IGMP status section NOTE Fast Leave The Managed Switch can be configured to immediately delete a mem...

Page 106: ...Assigning priorities to traffic for example to set higher priorities to time critical or business critical applications Applying security policy through traffic filtering Provide predictable throughpu...

Page 107: ...e Address VLAN TAG Ethernet Type Data FCS 6 bytes 6 bytes 4 bytes 2 bytes 46 1517 bytes 4 bytes Set up the COS priority level With the drop down selection item of Priority Type above being selected as...

Page 108: ...example 8 Highest 4 SecHigh 2 SecLow 1 Lowest means that the switch sends 8 highest priority packets before sending 4 second high priority packet before sending 2 second low priority packet before se...

Page 109: ...ice Code Point DSCP to 3 bit priority mapping The Type of Service TOS octet in the IPv4 header is divided into three parts Precedence 3 bits TOS 4 bits and MBZ 1 bit The Precedence bits indicate the i...

Page 110: ...N TAG Optional Ethernet Type 0800 Data FCS 6 bytes 6 bytes 4 bytes 2 bytes 2 bytes 46 1517 bytes 4 bytes The DSCP is six bits wide allowing coding for up to 64 different forwarding behaviors The DSCP...

Page 111: ...alues of the IP DSCP header field within the incoming packet 0 63 Priority Specify which 802 1p priority to map the corresponding IP DSCP The value is 0 7 TOS DSCP Port Configuration Set up IP TOS DSC...

Page 112: ...te access rights to a given object depending on certain aspects of the process that is making the request principally the process s user identifier Access Control List ACL is a mechanism that implemen...

Page 113: ...following fields IPv4 ACL OBJECT DESCRIPTION DEFAULT VALUE Group ID 1 247 max 247 ACL group Action Permit Deny Permit Permit packet cross switch Deny Drop packet Permit VLAN Any VID Any Any VLAN id VI...

Page 114: ...ange from 0 to 255 Any IP Fragment Set this field if Packet Type is IPv4 else ignore Uncheck Check Uncheck Not check IP fragment field Check Check IP fragment field Uncheck L4 Protocol Set this field...

Page 115: ...CT DESCRIPTION DEFAULT VALUE Group ID 1 247 max 247 ACL group Action Permit Deny Permit Permit packet cross switch Deny Drop packet Permit VLAN Any VID Any Any VLAN ID VID 1 4094 A certain VLAN ID Any...

Page 116: ...lect Binding OBJECT DESCRIPTION DEFAULT VALUE Group ID 1 247 max 247 ACL group Action Permit Deny Permit Permit packet cross switch Deny Drop packet Permit VLAN Any VID Any Any Vlan id VID 1 4094 A ce...

Page 117: ...ress table should be blocked MAC Limit Configuration The Layer 2 MAC Limit function can be per port configured for security management purposes When the port is in MAC Limit mode the port will be lock...

Page 118: ...imit Port Status This table displays current MAC Limit status of each port Figure 4 62 MAC Limit MAC Limit Port Status This page includes the following fields OBJECT DESCRIPTION Port Number Indicate p...

Page 119: ...onnecting to a LAN through publicly accessible ports The authentication server authenticates each client connected to a switch port before making available any services offered by the switch or the LA...

Page 120: ...the client and the authentication server requesting identity information from the client verifying that information with the authentication server and relaying a response to the client The switch inc...

Page 121: ...that the client has been successfully authenticated When the client supplies its identity the switch begins its role as the intermediary passing EAP frames between the client and the authentication s...

Page 122: ...the port state changes to authorized and all frames from the authenticated client are allowed through the port If the authentication fails the port remains in the unauthorized state but authentication...

Page 123: ...s function Figure 4 66 802 1x System Configuration interface This page includes the following fields OBJECT DESCRIPTION IEEE 802 1x Protocol Enable or disable 802 1x protocol Radius Server IP Assign t...

Page 124: ...E 802 1x Protocol Enable or disable 802 1x protocol 4 12 3 802 1x Port Configuration In this page you can select the specific port and configure the authorization state The state provides No Authoriza...

Page 125: ...121 OBJECT DESCRIPTION Authorize The specified port is set to the Authorized or Unauthorized state in accordance with the outcome of an authentication exchange between the Supplicant and the authentic...

Page 126: ...the port waits for retransmit next EAPOL PDU during an authentication session Default value is 30 seconds Supplicant Timeout Set the period of time the switch waits for a supplicant response to an EA...

Page 127: ...N Access Points Museum Sightseeing Airport Hotel Campus Factory Warehouse can install the Access Point any where with no hesitation 10 12 watts IP Surveillance Enterprise Museum Campus Hospital Bank c...

Page 128: ...user defined priorities The power budget is managed according to the following user definable parameters maximum available power ports priority maximum allowable power per port The Over Temperature Pr...

Page 129: ...e of PoE Switch PoE Function Can enable or disable the PoE function Priority Set port priority for the POE power management It can choose the port priority value is Critical High Low High priority is...

Page 130: ...t the PSE the PD may opt to provide a signature for Class 1 to 3 The PD is classified based on power The classification of the PD is the maximum power that the PD will draw across all input voltages a...

Page 131: ...Chapter 4 Console Management GE DS 242 PoE Managed Ethernet Switch User Manual 127...

Page 132: ......

Page 133: ...ou can connect the console port directly through PC without the need of Null Modem To get more information about how to connect to the console interface of GE DS 242 PoE with HyperTerminal please refe...

Page 134: ...al Figure 5 1 GE DS 242 PoE Console Login screen NOTE For security reasons please change and memorize the new username and password after this first setup Username Max 6 Min 1 characters Password Max...

Page 135: ...r the Switch please use the procedures as follows Show the current IP address 1 On Switch prompt enter configure 2 On Switch config prompt enter show ip 3 The screen displays the current IP address Su...

Page 136: ...itch through the new IP address NOTE If you are not familiar with console command or the related parameter enter help anytime in console to get the help description You can change these settings if de...

Page 137: ...of those available at the privileged level Use this mode to Perform basic tests Display system information Privileged EXEC Enter the enable command while in User EXEC mode switch Enter disable to exit...

Page 138: ...Chapter 5 Console Management 134 GE DS 242 PoE Managed Ethernet Switch User Manual...

Page 139: ...Ethernet Switch User Manual 135 Chapter 6 Command Line Interface Operation Notice To enter the configuration mode you need to be in the privileged mode and then types in the command configure Switch c...

Page 140: ...rsor forward one word Backspace Delete the character before the cursor Del Delete the character at the cursor The following generic function keys provide functions in all of the menus Command Help You...

Page 141: ...ist specifies the ports to be turn on or off If not entered all ports are turn on or off port nego Description Set port negotiation Syntax port nego force auto nway force port list Parameters port lis...

Page 142: ...les flow control in half duplex mode port list specifies the ports to be set If not entered all ports are set port rate Description Set port effective ingress or egress rate Syntax port rate ingress e...

Page 143: ...port list specifies the ports to be set If not entered all ports are set show port status Description Show port status including port State Link Trunking VLAN Negotiation Speed Duplex Flow control Ra...

Page 144: ...ow port statistics including TxGoodPkt TxBadPkt RxGoodPkt RxBadPkt TxAbort Collision and DropPkt Parameters port id specifies the port to be shown Switch config show port statistics Port 1 Information...

Page 145: ...formation More show port protection Description Show protected port information Switch config show port protection Port Protected Group 1 off 1 2 off 1 3 off 1 4 off 1 5 off 1 6 off 1 7 off 1 8 off 1...

Page 146: ...Chapter 6 Command Line Interface 142 GE DS 242 PoE Managed Ethernet Switch User Manual 21 off 1 22 off 1 25 off 1 26 off 1 Trk1 off 1...

Page 147: ...the switch can balance the traffic among the remaining links NOTE The 10 100 Mbps port cannot be trunked with gigabit port port 25 26 All ports in the same trunk group will be treated as a single port...

Page 148: ...ort list specifies the ports to be set active port list specifies the ports to be set to LACP active no trunk Description Delete an existing trunk group Syntax no trunk trunk id Parameters trunk id sp...

Page 149: ...n Show LACP information Switch config show lacp status LACP is enabled LACP system priority 32768 show lacp agg Description Show LACP aggregator information Syntax show lacp agg trunk id Parameters tr...

Page 150: ...d its associated port You must define the outgoing ports allowed for each port when you use port based VLANs In port based VLANs the packets received from one port can only be sent to the ports which...

Page 151: ...perate a logical VLAN group among switches The GE DS 242 PoE supports both Port based VLAN and Tag based 802 1Q VLAN modes The default configuration is tag based 802 1Q VLAN In the 802 1Q VLAN initial...

Page 152: ...le below configures the switch to drop the packets not belonging to the same VLAN group and forward the packets not containing VLAN tags show vlan mode Description Display the current VLAN mode vlan m...

Page 153: ...not entered all members set to untagged e g switch config vlan add 1 vlan1 cpu port 1 4 This VLAN entry has four members from port1 to port4 and all members are untagged no vlan Description Delete VLA...

Page 154: ...tagged Port2 Untagged Port3 Untagged Port4 Untagged Port5 Untagged Port6 Untagged Port7 Untagged Port8 Untagged Port9 Untagged Port10 Untagged Port11 Untagged Port12 Untagged Port13 Untagged Port14 Un...

Page 155: ...witch User Manual 151 show vlan static Description Show static VLAN entry information show vlan pvid Description Show port default VLAN id Syntax show vlan pvid LIST Parameters LIST specifies the port...

Page 156: ...ch User Manual Switch config show vlan pvid Port PVID Port1 1 Port2 1 Port3 1 Port4 1 Port5 1 Port6 1 Port7 1 Port8 1 Port9 1 Port10 1 Port11 1 Port12 1 Port13 1 Port14 1 Port15 1 Port16 1 Port17 1 Po...

Page 157: ...cifies the non members packet will be forwarded or not If set enable forward only packets with VID matching this port s configured VID enable disable specifies the untagged frame will be dropped or no...

Page 158: ...Forward Port5 Drop Forward Port6 Drop Forward Port7 Drop Forward Port8 Drop Forward Port9 Drop Forward Port10 Drop Forward Port11 Drop Forward Port12 Drop Forward Port13 Drop Forward Port14 Drop Forwa...

Page 159: ...e MAC address age out mac age time 6 1572858 Parameters 6 1572858 specifies the MAC address age out time Must be divisible by 6 Type the number of seconds that an inactive MAC address remains in the s...

Page 160: ...P multicast IP multicast packets filter Broadcast Packets Broadcast Packets filter Syntax broadcast select unicast multicast control packet ip multicast broadcast Collision Retry Description Collision...

Page 161: ...me name str Parameters name str specifies the switch name If you would like to have spaces within the name use quotes around the name no hostname Reset the switch name to factory default setting no pa...

Page 162: ...Description Set the default gateway IP address Syntax ip default gateway ip addr show ip Description Show IP address subnet mask and the default gateway show info Description Shows basic information...

Page 163: ...dhcp client it can get ip from dhcp server NOTE If you set this command the switch will reboot show dhcp Description Show dhcp enable disable Reboot switch boot Description Reboot warm start the switc...

Page 164: ...o be downloaded from the TFTP server Restore Configure File copy tftp running config flash Description Retrieve configuration from the TFTP server If the remote file is the text file of CLI commands u...

Page 165: ...iption Send configuration to the TFTP server If you want to save the configuration in a text file of CLI commands use the keywordrunning config If you want to save the configuration flash image instea...

Page 166: ...ntil it is aged out When an opening is available the switch stored the first new MAC address it sees in that opening All packets from MAC addresses not in the MAC address table should be blocked User...

Page 167: ...y the direction of the traffic that you want to monitor After properly configured packets with the specified direction from the monitored ports are forwarded to the monitoring port NOTE The default Po...

Page 168: ...ording to the settings of 802 1p Priority and Static Port Ingress Priority When the received packet is an 802 1p tagged packet the switch will put the packet into a queue according to the 802 1p Prior...

Page 169: ...QoS level 0 7 priority level can map to highest second high second low lowest queue qos priority Description Set 802 1p priority Syntax qos priority first come first service all high before low weigh...

Page 170: ...rations QoS mode weighted round robin Highest weight 8 Second High weight 4 Second Low weight 2 Lowest weight 1 802 1p priority 0 7 Lowest Lowest SecLow SecLow SecHigh SecHigh Highest Highest Per Port...

Page 171: ...supplied the last parameter must be port list Otherwise it must be port id Syntax mac address table static mac addr vlan id port id port list no mac address table static mac addr Description Delete st...

Page 172: ...ing with 01 00 5E is supplied the last parameter must be port list Otherwise it must be port id Syntax smac address table static mac addr vlan id port id port list show smac address table Description...

Page 173: ...Chapter 6 Command Line Interface GE DS 242 PoE Managed Ethernet Switch User Manual 169 show filter Description Display filter MAC address table...

Page 174: ...delay 4 30 Parameters 4 30 specifies the forward delay in seconds Default value is 15 NOTE The parameters must enforce the following relationships 2 hello time 1 maximum age 2 forward delay 1 spanning...

Page 175: ...ce the following relationships 2 hello time 1 maximum age 2 forward delay 1 spanning tree priority Description Set spanning tree bridge priority Syntax spanning tree priority 0 61440 Parameters 0 6144...

Page 176: ...specifies the ports to be set Null means all ports show spanning tree Description Show spanning tree information show spanning tree port Description Show spanning tree per port information Syntax sho...

Page 177: ...tocol RSTP 802 1w no spanning tree port mcheck Description Force the port to transmit RST BPDUs No format means not force the port to transmit RST BPDUs Syntax no spanning tree port mcheck port list P...

Page 178: ...point to point connection Syntax spanning tree port point to point mac auto true false port list Parameters auto specifies point to point link auto connection true specifies point to point link true f...

Page 179: ...Protocol SNMP can be management with the switch System Options Snmp no snmp Description Enable or disable SNMP Show snmp status Description Show the enable or disable status of SNMP Snmp system name D...

Page 180: ...tem location location str Parameters location str specifies the location string e g snmp system location office Snmp system contact Description Set agent system contact string Syntax snmp system conta...

Page 181: ...fo only read all only read write all community str Parameters community str specifies the community string e g snmp community read all only public no snmp community Description Delete SNMP community s...

Page 182: ...s ip addr specifies the IP address community str specifies the community string 1 65535 specifies the trap receiver port number e g snmp trap 192 168 200 1 public no snmp trap Description Remove trap...

Page 183: ...cription Enable disable IGMP snooping Syntax no igmp igmp fastleave Description Enable disable IGMP snooping fast leave If enable switch will fast delete member who send leave report else wait one sec...

Page 184: ...iption Show IGMP snooping information Syntax show igmp status router groups table Parameters status specifies IGMP snooping status and statistics information router specifies IGMP snooping router s IP...

Page 185: ...us server IP port number and accounting port number Syntax radius server host ip addr 1024 65535 1024 65535 Parameters ip addr specifies server s IP address The first 1024 65535 specifies the server p...

Page 186: ...adius server information including radius server IP port number accounting port number shared key NAS identifier dot1x timeout quiet period Description Set 802 1x quiet period default 60 seconds Synta...

Page 187: ...iption Set radius server timeout default 30 seconds Syntax dot1x timeout radius server 1 300 Parameters 1 300 specifies the radius server timeout in seconds dot1x max req Description Set 802 1x maximu...

Page 188: ...er timeout maximum requests and re auth period dot1x port Description Set 802 1x per port information Syntax dot1x port fu fa au no port list Parameters fu specifies forced unauthorized fa specifies f...

Page 189: ...itch can be used to block packets by maintaining a table of packet fragments indexed by source and destination IP address protocol and so on Ipv4 ACL commands no acl Description Delete ACL group Synta...

Page 190: ...on Syntax show acl 1 220 Parameters 1 220 specifies the group id null means all valid groups e g Switch config show acl 1 Group Id 1 Switch config show acl 1 Group Id 1 Action Permit Rules Vlan ID Any...

Page 191: ...eans don t care A B C D specifies the Source IP address 0 0 0 0 means don t care A B C D specifies the Mask 0 0 0 0 means don t care 255 255 255 255 means compare all A B C D specifies the Destination...

Page 192: ...osvoip specifies the action do qos voip packet adjustment 0 4094 specifies the VLAN id 0 means don t care 0 1F specifies the port ID value 0 1F specifies the port ID mask 0 FF specifies the protocol v...

Page 193: ...1 220 permit deny 0 4094 nonipv4 0 65535 Parameters add edit specifies the operation 1 220 specifies the group id permit deny specifies the action permit permit packet cross switch deny drop packet 0...

Page 194: ...network We can set specific IP address MAC address VLAN id and port id to bind and device can cross switch if all conditions match SIP SMAC binding commands bind Description Enable binding function no...

Page 195: ...220 A B C D E F 0 4094 A B C D 1 26 Parameters 1 220 specifies the group id A B C D specifies the MAC address 0 4094 specifies the VLAN id 0 means don t care A B C D specifies the Source IP address 0...

Page 196: ...ystem PoE power limit mode information poe enable Enabling or disabling the port POE injects function poe priority Set port priority for the power supply management poe maximum power Enabling or disab...

Page 197: ...ority Power Limit W Current Consumption W Current mA Device Class Port1 Enable on Low 15 4 13 4 279 0 Example 2 Switch config show poe status Port Admin Oper Priority Power Limit W Current Consumption...

Page 198: ...change automatically by detected PoE unit temperature Disable Disable PoE power budget change automatically NOTE PoE temperature protection working in Priority mode or Total Limit mode only Configure...

Page 199: ...g show poe Maximum Available Power System Operation Status PoE Power Consumption Usage Threshold PoE Power limit mode 190Watts on 55 watts 21 Port Priority Switch config no poe limit mode Switch confi...

Page 200: ...ort list Parameters port list specifies the ports to be set If not entered all ports are set Example Switch config poe enable 1 Switch config show poe status 1 Port Admin Oper Priority Power Limit W C...

Page 201: ...Low port list Parameters Critical High Low Critical Indicates that operating the powered device is high High Indicates that operating the powered device has medium priority Low Indicates that operatin...

Page 202: ...de is set to Total Limit Command Level Global Configuration Syntax poe maximum power 1 15 4 port list no poe mximum power port list Parameters 1 15 4 port list specifies the ports to be set If not ent...

Page 203: ...g When one packet comes from some port of the Ethernet Switching it will also check the destination address besides the source address learning The Ethernet Switching will lookup the address table for...

Page 204: ...earning function of the Ethernet switching the source address and corresponding port number of each incoming and outgoing packet are stored in a routing table This information is subsequently used to...

Page 205: ...uctivity It minimizes wires that must be used to install the network for offering lower cost and less power failures IEEE802 3af also called Data Terminal equipment DTE power via Media dependent inter...

Page 206: ...e pairs of standard CAT 5 cabling How Power is Transferred Through the Cable A standard CAT5 Ethernet cable has four twisted pairs but only two of these are used for 10BASE T and 100BASE T The specifi...

Page 207: ...os You re planning to install the latest VoIP Phone system to minimize cabling building costs when your company moves into new offices next month The company staff has been clamoring for a wireless ac...

Page 208: ...y choose to perform classification to estimate the amount of power to be consumed by this PD After a time controlled start up the PSE begins supplying the 48 VDC level to the PD till it is physically...

Page 209: ...full 15 4 watts should be provided 1 3 indicate various required power levels and 4 is reserved for future use PDs that do not support classification are assigned to class 0 Special care must be emplo...

Page 210: ...disconnected there is a danger that it will be replaced by a non PoE ready device while power is still on Imagine disconnecting a powered IP phone utilizing 48 VDC then inadvertently plugging the powe...

Page 211: ...signal in addition to the 48 VDC operating voltage The returned AC signal amplitude is monitored by the PSE at the port terminals During normal operation the PD s relatively low impedance lowers the...

Page 212: ...Chapter 8 Power Over Ethernet Overview 208 GE DS 242 PoE Managed Ethernet Switch User Manual...

Page 213: ...hernet Switch Some stations cannot talk to other stations located on the other port Solution Check the VLAN settings trunk settings or port enabled disabled status Performance is bad Solution Check th...

Page 214: ...C power cord not inserted or faulty 2 Check that the AC power cord is inserted correctly 3 Replace the power cord If the cord is inserted correctly check that the AC power source is working by connect...

Page 215: ...1000Mbps 1000Base T Contact MDI MDI X 1 BI_DA BI_DB 2 BI_DA BI_DB 3 BI_DB BI_DA 4 BI_DC BI_DD 5 BI_DC BI_DD 6 BI_DB BI_DA 7 BI_DD BI_DC 8 BI_DD BI_DC Implicit implementation of the crossover function...

Page 216: ...ing table and diagram show the standard RJ 45 receptacle connector and their pin assignments RJ 45 Connector pin assignment Contact MDI Media Dependant Interface MDI X Media Dependant Interface Cross...

Page 217: ...8 Brown 1 White Orange 2 Orange 3 White Green 4 Blue 5 White Blue 6 Green 7 White Brown 8 Brown Crossover Cable SIDE 1 SIDE2 SIDE 1 1 1 2 2 3 3 4 4 5 5 6 6 7 7 8 8 SIDE 2 1 White Orange 2 Orange 3 Whi...

Page 218: ......

Reviews:

No comments

Related manuals for GE-DS-242-PoE

Barracuda Networks Network Quick Start Manual preview
Network
Brand: Barracuda Networks Pages: 2
Danfoss TFX Installation And Operation Manual preview
TFX
Brand: Danfoss Pages: 61
TP-Link VIGI NVR1008 Quick Installation Manual preview
VIGI NVR1008
Brand: TP-Link Pages: 2
VCS VideoJet 100 Manual preview
VideoJet 100
Brand: VCS Pages: 118
Zonet ZSR4134WS User Manual preview
ZSR4134WS
Brand: Zonet Pages: 53
TP-Link TL-SG2424P User Manual preview
TL-SG2424P
Brand: TP-Link Pages: 176
AMX NXA-ENET8POE Installation Manual preview
NXA-ENET8POE
Brand: AMX Pages: 2
X-Micro IEEE 802.11b User Manual preview
IEEE 802.11b
Brand: X-Micro Pages: 49
Airlink101 AR325W Quick Installation Manual preview
AR325W
Brand: Airlink101 Pages: 13
IMC Networks iMcV-FiberLinX Operation Manual preview
iMcV-FiberLinX
Brand: IMC Networks Pages: 36
Perle IOLAN MDC User Manual preview
IOLAN MDC
Brand: Perle Pages: 491
Teldat G1N Installation Manual preview
G1N
Brand: Teldat Pages: 23
Ubiquiti EdgeRouter X Quick Start Manual preview
EdgeRouter X
Brand: Ubiquiti Pages: 20
Hi-flying HF-LPB User Manual preview
HF-LPB
Brand: Hi-flying Pages: 59
TRENDnet TEW-WLC100P User Manual preview
TEW-WLC100P
Brand: TRENDnet Pages: 57
Sharedband Power Router 2 Configuration Manual preview
Power Router 2
Brand: Sharedband Pages: 3
Transition Networks N-FXE-xxx-01 User Manual preview
N-FXE-xxx-01
Brand: Transition Networks Pages: 5
Gigamon GigaVUE H TA100-CXP Hardware Installation Manual preview
GigaVUE H TA100-CXP
Brand: Gigamon Pages: 115

Brands by name

Popular brands

Load more brands