Korenix JetNet 5020G Series User Manual Download Page 88

Page: 88 / 156

4.6

Private VLAN

The private VLAN helps to resolve the primary VLAN ID shortage, client ports’ isolation and

network security issues. The Private VLAN provides primary and secondary VLAN within a

single switch.

Primary VLAN:

The uplink port is usually the primary VLAN. A primary VLAN contains

promiscuous ports that can communicate with lower Secondary VLANs.

Secondary VLAN:

The client ports are usually defined within secondary VLAN. The

secondary VLAN includes Isolated VLAN and Community VLAN. The client ports can be

isolated VLANs or can be grouped in the same Community VLAN. The ports within the

same community VLAN can communicate with each other. However, the isolated VLAN

ports can Not.

The figure shows the typical Private VLAN network. The SCADA/Public Server or NMS

workstation is usually located in primary VLAN. The clients PCs or Rings are located within

Secondary.

Private VLAN (PVLAN) Configuration group enables you to Configure PVLAN, PVLAN Port

and see the PVLAN Information.
Following commands are included in this group:

4.6.1 PVLAN Configuration

4.6.2 PVLAN Port Configuration

4.6.3 PVLAN Informtion

4.6.4 CLI Commands of the PVLAN

4.6.1

PVLAN Configuration

PVLAN Configuration allows you to assign Private VLAN type. After created VLAN in VLAN

Configuraiton page, the available VLAN ID will display here. Choose the Private VLAN

types for each VLAN you want configure.

None:

The VLAN is Not included in Private VLAN.

Primary:

The VLAN is the Primary VLAN. The member ports can communicate with

secondary ports.

Isolated:

The VLAN is the Isolated VLAN. The member ports of the VLAN are isolated.

Summary of Contents for JetNet 5020G Series

Page 1: ...1 Korenix JetNet 5020G Series Industrial Managed Ethernet Switch User Manual Manual v1 0 Firmware v1 0 Feb 2016 www korenix com...

Page 2: ...5020G Series Industrial Managed Ethernet Switch UserManual Copyright Notice Copyright 2006 2016 Korenix Technology Co Ltd All rights reserved Reproduction in any form or by any means without permissi...

Page 3: ...equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instruction manual may cause harmful interference to radio communications Operatio...

Page 4: ...11 Safety Warning 12 3 Preparation for Management 13 3 1 Preparation for Serial Console 13 3 2 Preparation for Web Interface 14 3 3 Preparation for Telnet Console 16 4 Feature Configuration 19 4 1 Co...

Page 5: ...1 5 3 Specification 147 5 4 Revision History 151 5 5 About Korenix 151...

Page 6: ...0G 16 4G Managed Ethernet Switch 16 4 Combo with SFP 4 100FX SFP 4 1000FX SFP Note 100FX means support 100Mbps SFP fiber transceiver and 1000FX means support 1000Mbps SFP fiber transceiver 100FX 1000F...

Page 7: ...SNMP V1 V2c V3 RMON and KorenixView Discovering and Management Advanced Security supports IP Port Security 802 1x and Access Control List Event Notification by E mail SNMP Trap Syslog and 2 Relay Outp...

Page 8: ...Green On PWR2 Power 2 Power Ready Green On SYS System System Ready Green On SYS System System on Booting Upgrade Green Blinking DI Digital Input Digital Input Red On DO Digital Output Relay activated...

Page 9: ...based RS232 Console Port System and Port LEDs Hardware Reset Fast Gigabit Ethernet Port and Gigabit SFP Combo Port interfaces Grounding DI DI and Power1 2 have been designed on the bottom side Figure...

Page 10: ...connector 3 Plug the connector into the switch Power port 4 Power on the power supply 5 VDE tested screwdriver is suggested for higer safety concern Note 2 Suitable DC electrical wire is ranging from...

Page 11: ...hub or workstation without changing straight through or crossover cables Note that crossover cables simply cross connect the transmit lines at each end to the received lines at the opposite end Strai...

Page 12: ...n SFP fiber transceiver fist Cross connect the transmit channel at each end to the receive channel at the opposite end as illustrated in the figure below The SPF cage is 2x1 design check the direction...

Page 13: ...If you lost the cable please contact with your sales or follow the pin assignment to buy a new one The Pin assignment spec is listed in the appendix 2 9 DIN Rail Mounting Installation The DIN Rail cl...

Page 14: ...ck 1 First insert the upper end of DIN Rail clip into the back of DIN Rail track from its upper side 2 Lightly push the bottom of DIN Rail clip into the track 3 Check if DIN Rail clip is tightly attac...

Page 15: ...all the wall mounting plate onto the rear panel of the switch The screw positions are identical to the ones of DIN Rail clip 3 Makes sure that all the screws are tightened well 4 Use the hook holes at...

Page 16: ...warning test is provided in user manual Below is the information For tilslutning af de ovrige ledere se medfolgende installationsvejledning Laite on liitettava suojamaadoitus koskettimilla varustettuu...

Page 17: ...ce 3 3 Preparation for Telnet console 3 1 Preparation for Serial Console In JetNet 5020G package Korenix attached one RS 232 RJ 45 to DB 9 console cable Please attach RS 232 DB 9 connector to your PC...

Page 18: ...NIC is operational and that your operating system supports TCP IP protocol 2 Wire DC power to the switch and connect your switch to your computer 3 Make sure that the switch default IP address is 192...

Page 19: ...ut you should re login and key in correct user name and password again 3 2 2 Secured Web Interface Korenix web management page also provides secured management HTTPs login All the configuration comman...

Page 20: ...cmd And then press Enter 2 Type the Telnet 192 168 10 1 or the IP address of the switch And then press Enter 3 3 2 SSH Secure Shell Korenix JetNet 5020G also support SSH console You can remotely conn...

Page 21: ...ient PuTTY In the Session configuration enter the Host Name IP Address of your JetNet 5020G and Port number default 22 Choose the SSH protocol Then click on Open to start the SSH session console 2 Aft...

Page 22: ...e the following is refer to JetNet 5010G 4 Type the Login Name and its Password The default Login Name and Password are admin admin 5 All the commands you see in SSH are the same as the CLI commands y...

Page 23: ...ou just need to know the device s IP address Then you can remotely connect to its embedded HTML web pages or Telnet console The Web management page is developed by JAVA It allows you to use a standard...

Page 24: ...e terminal to enter next mode and exit to leave to listing the command list Switch enable Turn on privileged mode command exit Exit current mode and down to previous mode list Print command list ping...

Page 25: ...ry administrator Administrator account setting clock Configure time of day clock default Set a command to its defaults dot1x 802 1x port based authentication for the switch end End current mode and ch...

Page 26: ...tch config if acceptable Configure 802 1Q acceptable frame types of a port auto negotiation Enable auto negotiation state of a given port description Interface specific description dot1x IEEE 802 1x a...

Page 27: ...lobal configuration command Switch Global configuration In global configuration mode you can configure all the features that the system provides you Enter Type configure terminal in privileged EXEC mo...

Page 28: ...the unfinished command Ctrl S To lock the screen of the terminal You can t input any command Ctrl Q To unlock the screen which is locked by Ctrl S Ctrl Z To exit configuration mode Alert message when...

Page 29: ...m name Location Contact and view system information Figure 4 2 1 1 Web UI of the Switch Setting System Name You can assign a name to the device The available character string length is 64 After you co...

Page 30: ...ttings Otherwise the settings you made will be lost when the switch is powered off 4 2 2 Admin Password You can change the user name and the password here to enhance security Figure 4 2 2 1 Web UI of...

Page 31: ...If DHCP Client function is enabled you don t need to assign the subnet mask The default Subnet Mask is 255 255 255 0 Note In the CLI we use the enabled bit of the subnet mask to represent the number d...

Page 32: ...matically and user also can click the icon Reload to refresh the table 4 2 4 Time Setting Time Setting source allow user to set the time manually or through NTP server Network Time Protocol NTP is use...

Page 33: ...antic Time Canada 16 GMT 04 00 Caracas La Paz 17 GMT 04 00 Santiago 18 GMT 03 00 NewFoundland 19 GMT 03 00 Brasilia 20 GMT 03 00 Buenos Aires Georgetown 21 GMT 03 00 Greenland 22 GMT 02 00 Mid Atlanti...

Page 34: ...i Kamchatka Marshall Is 74 GMT 13 00 Nuku alofa Click the check box to enable the Daylight Saving Function as the setting of start and end week or disable it Daylight Saving Start and Daylight Saving...

Page 35: ...click on Apply to apply your configuration 4 2 6 DHCP Server You can select to Enable or Disable DHCP Server function JetNet 5020G will assign a new IP address to link partners DHCP Server configurat...

Page 36: ...d IP Address Port Based DHCP Server configuration JetNet 5020G also supports port based DHCP server function It allows user assign specified IP address to specified port that DHCP client presented and...

Page 37: ...or users to backup restore the configuration file the Local File mode and TFTP Server mode Local File mode In this mode the switch acts as the file server Users can browse the target folder and then t...

Page 38: ...ype the IP address of TFTP Server IP Then click on Backup Restore Note point to the wrong file can cause the entire configuration missed Technical Tip Default Configuration File The switch provides th...

Page 39: ...the file server Users can browse the target folder and then type the file name to backup the configuration Users also can browse the target folder and select the existed configuration file to restore...

Page 40: ...the incorrect firmware Though we have the protection we still ask you not trying to install the incorrect firmware to JetNet 5020G Unexpected events may occurr and cause damage to the system Figure 4...

Page 41: ...the command Click on OK to close the screen Then please go to Reboot page to reboot the switch Click on OK The system will then auto reboot the device Note If you already configured the IP of your dev...

Page 42: ...the Web GUI doesn t re login well please manually type the IP Address and login the system again 4 2 11 CLI Commands for Basic Setting Feature Command Line Switch Setting System Name Switch config hos...

Page 43: ...ministrator administrator Administrator account setting Switch config administrator admin 8888 Change administrator account password ok Note For JetNet 5020G only password can be changed but administr...

Page 44: ...nmp server community public ro snmp server community private rw dot1x radius server ip 192 168 10 100 key radius key 1812 1813 IPv6 Address Prefix Switch config interface vlan1 Switch config if ipv6 a...

Page 45: ...ter dhcp Switch config dhcp default router DHCP Default Router end Exit current mode and down to previous enable mode exit Exit current mode and down to previous mode ip IP protocol lease DHCP Lease T...

Page 46: ...elay information policy replace DHCP Relay IP Helper Address Switch config dhcp ip dhcp helper address A B C D Switch config dhcp ip dhcp helper address 192 168 10 200 Reset DHCP Settings Switch confi...

Page 47: ...uration Switch copy tftp 192 168 10 33 default conf startup config Show Startup Configuration Switch show startup config Show Running Configuration Switch show running config Firmware Upgrade Firmware...

Page 48: ...g Before the port setting please check the port allocation of JetNet 5020G which is printed on the front panel Follow the port ID to configure JetNet 5020G There are 16 Fast Ethernet ports and 4 Giga...

Page 49: ...o Negotiation mode and the speed is determined by SFP module In Flow Control column in order to enable flow control Symmetric must be both applied on local and remote devices coorespondingly If Disabl...

Page 50: ...current detected of DDM SFP transceiver Tx Power dBm The specification and current transmit power of DDM SFP transceiver Rx Power dBm The specification and current received power of DDM SFP transceive...

Page 51: ...s Rule listed here include Broadcast DLF Destination Lookup Failure and Multicast The limit range is from 0 to the maximum available speed of the port For example the Fast Ethernet port allows 0 100 0...

Page 52: ...dstMAC srcIP dstIP and it s combination src mac load distribution is based on the source MAC address dst mac load distribution is based on the destination MAC address src dst mac load distribution is...

Page 53: ...ports of LACP group which are not connected to correct LACP member ports will be displayed in the Individual column Link Down When LACP is enabled member ports of LACP group which are not linked up wi...

Page 54: ...ddm Digital diagnostic and monitoring eject Eject SFP scan Scan SFP Note Administrative Status Port state of the port Operating status Current status of the port Duplex Duplex mode of the port Speed...

Page 55: ...Disabled Storm control for Port 3 Broadcast packets Disabled Destination Lookup Failure packets Disabled Multicast packets Disabled Storm control for Port 4 Broadcast packets Disabled Destination Look...

Page 56: ...fication system priority LACP system priority SWITCH show lacp port setting LACP Port Setting Port Priority Timeout 1 32768 Long 2 32768 Long 3 32768 Long Switch show lacp internal LACP group 1 intern...

Page 57: ...red as the ring port of a ring each ring has its own Ring ID and the Ring ID will be added to the watchdog packet to monitor the ring status This is Patterned MultiRing Technology The Ring ports can b...

Page 58: ...switch has more than one way to communicate with a node It will then select the best path primary and block the other path s It will also keep track of the blocked path s in case the primary path fai...

Page 59: ...perate different vendors RSTP aware switches together The maximum volume of the RSTP domain is 23 configure the MAX Age lower than 23 is recommended Hello Time 1 10 Enter a value from 1 to 10 seconds...

Page 60: ...ted administratively Auto means to auto select P2P or Share mode P2P means P2P is enabled the 2 ends work in full duplex mode While Share is enabled it means P2P is disabled the 2 ends may connect thr...

Page 61: ...VLAN members from being segmented from the rest of the group as sometimes occurs with IEEE 802 1D STP While using MSTP there are some new concepts of network architecture A switch may belong to diffe...

Page 62: ...bridges and LAN segments with a single Common and Internal Spanning Tree CIST The CIST is formed as a result of the running spanning tree algorithm between switches that support the STP RSTP MSTP pro...

Page 63: ...switches within the Region should have the same Region and Revision leve Region Name The name for the Region Maximum length 32 characters Revision The revision for the Region Range 0 65535 Default 0 O...

Page 64: ...onfiguration you added Click on Apply to apply the setting You can Remove the instance or Reload the configuration display in this page 4 4 5 MSTP Port Configuration This page allows configure the Por...

Page 65: ...dministratively Auto means to auto select P2P or Share mode P2P means P2P is enabled the 2 ends work in Full duplex mode While Share is enabled it means P2P is disabled the 2 ends may connect through...

Page 66: ...ch to connect with a core managed switch easily and conveniently With RDH technology you can also couple several Rapid Super Rings or RSTP cloud together which is also known as Auto Ring Coupling Trun...

Page 67: ...nment you should have 2 Ring Ports No matter this switch is Ring Master or not when configuring RSR 2 ports should be selected to be Ring Ports For Ring Master one of the ring ports will become the fo...

Page 68: ...to foreign network Member is the node except the Border node in the Super Chain Edge Port Edge Port is one of ring ports of Border node It is used to connect to foreign network MultiRing The MultiRin...

Page 69: ...s field shows which is blocked port of RM Role Transition Count This means how many times this switch has changed its Role from nonRM to RM or from RM to nonRM Role state Transition Count This number...

Page 70: ...panning tree prtotcol 802 1d mst the multiple spanning tree protocol 802 1s Bridge Priority Switch config spanning tree priority 0 61440 valid range is 0 to 61440 in multiple of 4096 Switch config spa...

Page 71: ...1 Switch config mst instance 1 15 target instance number Switch config mst instance 1 vlan VLANMAP target vlan number ex 10 or range ex 1 10 Switch config mst instance 1 vlan 2 Display Current MST Co...

Page 72: ...de should be rst the timings can be configured in global settings listed in above Global Information Active Information Switch show spanning tree active Spanning Tree Enabled Protocol MSTP Root Addres...

Page 73: ...tree mst configuration Current MST configuration MSTP is Running Name 69orenixnix Revision 65535 Instance Vlans Mapped 0 1 4 4094 1 2 2 Config HMAC MD5 Digest 0xB41829F9030A054FB74EF7A8587FF58D Displ...

Page 74: ...nated Forwarding 200000 128 1 2 2 Designated Forwarding 200000 128 1 3 Multiple Super Ring Create or configure a Ring Switch config multiple super ring 1 Ring 1 created Switch config multiple super ri...

Page 75: ...erface name ex fastethernet1 or gi8 Switch config multiple super ring rapid dual homing port fa3 fa5 6 set Rapid Dual Homing port success Switch config multiple super ring rapid dual homing extension...

Page 76: ...h Configure ERPS Switch config erps enable Start the Multiple Super Ring for the switch disable Stop the Multiple Super Ring for the switch version the protocol version node role The node role of ERPS...

Page 77: ...73 wtr timer WTR Wait to restore Timer guard timer Guard Timer...

Page 78: ...across different switches see Figure 1 IEEE 802 1Q tag based VLAN makes use of VLAN control information stored in a VLAN header attached to IEEE 802 3 packet frames This tag contains a VLAN Identifie...

Page 79: ...AN port parameters to specific port These parameters include PVID Accept Frame Type and Ingress Filtering Figure 4 5 2 Web UI of VLAN configuration PVID The abbreviation of the Port VLAN ID Enter port...

Page 80: ...always tagged This is configured in Static VLAN Configuration table Please refer to the VLAN Configuration chapter in below For example the VID of S VLAN Tunnel Uplink is 10 the VID of C VLAN Tunnel...

Page 81: ...N Name for new VLAN here VLAN ID is used by the switch to identify different VLANs Valid VLAN ID is between 1 and 4094 1 is the default VLAN VLAN Name is a reference for network administrator to ident...

Page 82: ...ed here Figure 4 5 2 3 Static VLAN Configuration table You can see that new VLAN 3 is created VLAN name is test Egress rules of the ports are not configured now Figure 4 5 2 4 Configure Egress rule of...

Page 83: ...ired on a per Port per GARP Participant basis Leave Timer Control the time to release the GVRP reservation after received the GVRP Leave BPDU An instance of the timer is required for each state machin...

Page 84: ...02 1Q tunnel mode Switch config if switchport dot1q tunnel mode access Set the interface as an access port of IEEE 802 1Q tunnel mode uplink Set the interface as an uplink port of IEEE 802 1Q tunnel m...

Page 85: ...n 2 interface vlan1 ip address 192 168 10 8 24 no shutdown QinQ Information 802 1Q Tunnel Switch show dot1q tunnel Port Mode Ethertype 1 normal 0x8100 2 normal 0x8100 3 normal 0x8100 4 normal 0x8100 5...

Page 86: ...the description IP address of the VLAN Switch config interface vlan 2 Switch config if Switch config if ip address 192 168 10 18 24 Switch config if no ip address 192 168 10 8 24 Delete the IP addres...

Page 87: ...join timer 10 10000 the timer values Switch config if garp join timer 20 Garp join timer value is set to 20 centiseconds on port 1 Management VLAN Management VLAN Switch config int vlan 1 Go to manage...

Page 88: ...ure shows the typical Private VLAN network The SCADA Public Server or NMS workstation is usually located in primary VLAN The clients PCs or Rings are located within Secondary Private VLAN PVLAN Config...

Page 89: ...here Primary VLAN After the Primary VLAN Type is assigned in Private VLAN Configuration page the secondary VLAN can associate to the Primary VLAN ID Select the Primary VLAN ID here Note Before configu...

Page 90: ...er port of VLAN 2 is promiscuous port VLAN 3 Isolated The Host port can be mapped to VLAN 3 VLAN 4 Community The Host port can be mapped to VLAN 4 VLAN 5 Community The Host port can be mapped to VLAN...

Page 91: ...nd End current mode and change to enable mode exit Exit current mode and down to previous mode list Print command list name Assign a name to vlan no no private vlan Configure a private VLAN Private VL...

Page 92: ...lan host Private VLAN Port Configuration PVLAN Port Type Host Association primary to secondary The command is only available for host port Switch config interface gi9 Switch config if switchport mode...

Page 93: ...an 2 private vlan primary vlan 3 private vlan isolated vlan 4 private vlan community vlan 5 private vlan community interface fastethernet7 switchport access vlan add 2 5 switchport trunk native vlan 5...

Page 94: ...rt with regard to setting priorities The Managed Switch s QOS supports 8 physical queues weighted fair queuing WRR and Strict Priority scheme which follows 802 1p COS tag and IPv4 TOS DiffServ informa...

Page 95: ...ping Choose the Queue value of each port the port then has its default priority The Queue 7 is the highest port based queue 0 is the lowest queue The traffic injected to the port follows the queue lev...

Page 96: ...rity Mapping This page allows you to modify DSCP values to Priority mapping table The system provides 0 63 DSCP priority levels Each DSCP level can be assigned into 8 different physical queue from low...

Page 97: ...lasses of service Port Setting CoS Default Port Priority Switch config interface fa1 Switch config if qos priority 0 7 Assign a priority queue Switch config if qos priority 3 The priority queue is set...

Page 98: ...ping is set ok Map CoS 5 to Queue 2 Switch config qos cos map 5 2 The CoS to queue mapping is set ok Map CoS 6 to Queue 3 Switch config qos cos map 6 3 The CoS to queue mapping is set ok Map CoS 7 to...

Page 99: ...95 1 1 1 1 1 1 1 2 2 2 2 2 2 2 2 2 3 3 3 3 3 3 3 3 3 4 4 4 4 4 4 4 4 4 5 5 5 5 5 5 5 5 6 6 5 6 6 6 6 6 6 7 7 7 7 6 7 7 7 7...

Page 100: ...p Report A message sent by a host to the querier to indicate that the host wants to be or is a member of a given group indicated in the report message Leave Group A message sent by a host to the queri...

Page 101: ...lly the uplink port of the switch Send to All Ports The unknown multicast will be flooded to all ports of the same VLAN even they are not the IGMP member ports of the groups Discard The unknown multic...

Page 102: ...er Query Maximum Response Time The span querier detect to confirm there are no more directly connected group members on a LAN Once you finish configuring the settings click on Apply to apply your conf...

Page 103: ...r configuration 4 8 4 GMRP To enable the GMRP configuration the Global GMRP Configuration should be enabled first And all the port interfaces should enable GMRP learning as well Then the switch exchan...

Page 104: ...snoopin IGMP snooping is disabled globally ok Disable IGMP Snoopi g VLAN Switch config no ip igmp snooping vlan 3 IGMP snooping is disabled on VLAN 3 Display IGMP Snooping Setting Switch sh ip igmp in...

Page 105: ...tch config ip igmp snooping source only learning vlan VLANLIST allowed VLAN list all all VLAN Switch config ip igmp snooping source only learning vlan 1 IGMP Snooping Source Only Learning is enabled o...

Page 106: ...NMP 4 9 1 SNMP Configuration This page allows users to configure SNMP V1 V2c Community The community string can be viewed as the password because SNMP V1 V2c doesn t request you to enter password befo...

Page 107: ...e user can select either MD5 Message Digest algorithm 5 or SHA Secure Hash Algorithm MD5 is a widely used cryptographic hash function with a 128 bit hash value SHA Secure Hash Algorithm hash functions...

Page 108: ...p version V1 or V2c After configuration you can see the change of the SNMP pre defined standard traps and Korenix pre defined traps The pre defined traps can be found in Korenix private MIB 4 9 4 CLI...

Page 109: ...s the SNMP version SNMP Trap Server IP with version 2 and community Switch config snmp server host 192 168 10 33 version 2 private SNMP trap host add OK Disable SNMP Trap Switch config no snmp server...

Page 110: ...the MAC address flexibility Another one is IP Filter It includes the IP security known in other JetNet series IP Standard access list and advanced IP based access lists ACE is short of Access Control...

Page 111: ...Type the MAC address you want configure the format is AABB CCDD EEFF Example Source to Destination is 0012 7700 0000 to 0012 7700 0002 Source Destination Wildcard This command allows user to define si...

Page 112: ...ly your configuration IP Filter Type ID Name when select IP Filter The ID for IP access list is listed as below of the field You can also type ACL name in this field it goes to IP Extended mode settin...

Page 113: ...and ICMP type and code Click Edit to configure the IP Filter Rules Filter ID Name The ID or the name for this IP Filter entry Action Permit to permit traffic from specified sources Deny to deny traffi...

Page 114: ...ce address with these high order bits Protocol Select a protocol you want associate with the filter The field includes IP TCP UDP or ICMP type Destination Port TCP UDP port of the Destination Port fie...

Page 115: ...apability to filter traffic attach based on the packets lost 4 10 2 IEEE 802 1x 4 10 2 1 802 1X configuration IEEE 802 1X is an IEEE standard for port based network access control which provides authe...

Page 116: ...n Radius Server IP The IP address of Radius server Shared Key The password for the communication between switch and Radius Server Server Port UDP port of Radius server Accounting Port Port for packets...

Page 117: ...Reauthentication If enable this field switch will ask client to re authenticate The default time interval is 3600 seconds Max Request the maximum times that the switch allow client request Guest VLAN...

Page 118: ...efault Selected to reset the configurable 802 1x parameters of selected port to the default values 4 10 2 3 802 1X Port Status Here user can observe the port status for Port control status Authorize S...

Page 119: ...ss list extended 100 Switch config ext acl deny Specify packets to reject permit Specify packets to forward end End current mode and down to previous mode exit Exit current mode and down to previous m...

Page 120: ...eq Given_Port_Number Egress_Interface ICMP Rule Permit Deny icmp Source_IP wildcard Dest_IP wildcard ICMP_Message_Type ICMP_Message_Code Egress_Interface Add MAC Switch config mac address table stati...

Page 121: ...y server ip 192 168 10 250 key 5678 Port number NOT given default 1812 RADIUS Accounting Port number NOT given default 1813 Secondary RADIUS Server IP 192 168 10 250 Secondary RADIUS Server Key 5678 S...

Page 122: ...oth adminControlledDirections Both Switch show dot1x radius RADIUS Server IP 192 168 10 100 RADIUS Server Key radius key RADIUS Server Port 1812 RADIUS Accounting Port 1813 Secondary RADIUS Server IP...

Page 123: ...own Ring Failure specified IP address ping failure DI State change or perform a period of on off Each Fault Relay could be trigger by multiple events Note Select the event type and the corresponding c...

Page 124: ...eriod time is for target device system booting During the period the switch system will not ping target device until Hold Time is timeout If pinging failure which could mean the remote device does not...

Page 125: ...Selection Event Types can be divided into two basic groups System Events and Port Events System Events are related to the overall function of the switch whereas Port Events related to the activity of...

Page 126: ...onfiguring the settings click on Apply to apply your configuration 4 11 3 SysLog Configuration System Log is useful to provide system administrator locally or remotely monitor switch events history Th...

Page 127: ...P Address Enter the IP address of the email Server Authentication Click on check box to enable password User Name Enter email Account name Max 40 characters Password Enter the password of the email ac...

Page 128: ...Switch config relay 1 ping 192 168 10 33 cr reset reset a device Switch config relay 1 ping 192 168 10 33 reset 1 65535 reset time Switch config relay 1 ping 192 168 10 33 reset 60 0 65535 hold time...

Page 129: ...8 10 33 Both Switch config log syslog local Switch config log syslog remote 192 168 10 33 Disable Switch config no log syslog local SMTP Configuration SMTP Enable Switch config smtp server enable emai...

Page 130: ...126 Server 192 168 10 100 Account admin example com Authentication Enabled Username admin Password admin SMTP Email Alert Receipt Receipt 1 admin example com Receipt 2 Receipt 3 Receipt 4...

Page 131: ...ime is 300 seconds The Aging Time can be modified in this page Static Unicast MAC Address In some applications users may need to type in the static Unicast MAC address to its MAC address table In this...

Page 132: ...Note If you see many Bad Abort or Collision counts increased that may mean your network cable is not connected well the network performance of the port is poor etc Please check your network cable Net...

Page 133: ...able Port Mirror Source Port This is also known as Monitor Port These are the ports you want to monitor The traffic of all source monitor ports will be copied to destination analysis ports You can cho...

Page 134: ...LDP supported the NMS can easier maintain the topology map display port ID port description system description VLAN ID Once the link failure the topology change events can be updated to the NMS as wel...

Page 135: ...vides Ping Utility for users to ping remote device and check whether the device is alive or not Type Target IP address of the target device and click on Start to start the ping After few seconds you c...

Page 136: ...Ethernet Switch Korenix JetNet 5428G implements the Modbus TCP registers into the latest firmware The registers include the System information firmware information IP address interfaces status port i...

Page 137: ...28 words SNMP system contact string 0x01A0 32 words SNMP system OID string 0x01C0 2 words System uptime unsigned long 0x01C2 to 0x01FF 60 words Reserved address space 0x0200 2 words hardware version 0...

Page 138: ...e 0xA8 Word 1 Hi byte 0x0A Word 1 Lo byte 0x01 0x0302 2 words Subnet Mask 0x0304 2 words Default Gateway 0x0306 2 words DNS Server 0x0308 to 0x3FF 248 words Reserved address space IPv6 or others 0x040...

Page 139: ...n 0xFFFF unavailable 0x0414 to 0x041F 12 words Reserved address space 0x0420 1 word RDY 0x0000 Off 0x0001 On 0x0421 1 word RM 0x0000 Off 0x0001 On 0x0422 1 word RF 0x0000 Off 0x0001 On 0x0423 1 word R...

Page 140: ...0x0104 auto 2500 0x0105 auto 10000 0x0100 auto 0xFFFF unavailable 0x1280 to 0x129F 1 word Flow Control 0x0000 off 0x0001 on 0xFFFF unavailable 0x12A0 to 0x12BF 1 word Default Port VLAN ID 0x0001 0xFF...

Page 141: ...t CoS Value for untagged packets 0x13A0 to 0x13BF 1 word MDIX 0x0000 disable 0x0001 enable 0x0002 auto 0xFFFF unavailable 0x13C0 to 0x13DF 1 word Medium mode 0x0000 copper 0x0001 fiber 0x0002 none 0xF...

Page 142: ...ower 0x1920 to 0x1FFF 1760 words Reserved address space Inbound packet information 0x2000 to 0x203F 2 words Good Octets 0x2040 to 0x207F 2 words Bad Octets 0x2080 to 0x20BF 2 words Unicast 0x20C0 to 0...

Page 143: ...ddress space Outbound packet information 0x2500 to 0x253F 2 words Good Octets 0x2540 to 0x257F 2 words Unicast 0x2580 to 0x25BF 2 words Broadcast 0x25C0 to 0x25FF 2 words Multicast 0x2600 to 0x263F 2...

Page 144: ...tch config mac address table aging time 350 mac address table aging time set ok Note 350 is the new ageing timeout value Add Static Unicast MAC address Switch config mac address table static 0012 7701...

Page 145: ...ging timeout time Switch show mac address table aging time the mac address table aging time is 300 sec Port Statistics Port Statistics Switch show rmon statistics fa4 select interface Interface fastet...

Page 146: ...un LLDP is enabled Change LLDP timer Switch config lldp holdtime 10 255 Valid range is 10 255 Switch config lldp timer 5 254 Valid range is 5 254 Ping Ping IP Switch ping 192 168 10 33 PING 192 168 10...

Page 147: ...he example of managed Switch Different model has its own front panel display JetNet 5020G front panel Feature On Link UP Off Link Down Other Power 1 PWR1 Green Black Power 2 PWR2 Green Black System SY...

Page 148: ...the switch without clicking on Save Configuration will cause loss of new settings After selecting Save Configuration click on Save to Flash to save your new configuration Command Lines Feature Comman...

Page 149: ...ction will be logged out if you don t input any command after 30 seconds The Logout command allows you to manually logout the web connection Click on Yes to logout No to go back the configuration page...

Page 150: ...ansceivers may result in poor network performance or can t meet up claimed distance or operation temperature 5 2 Korenix Private MIB Korenix provides many standard MIBs for users to configure or monit...

Page 151: ...6Gbps Non Blocking Switching Fabric System Throughput 16 6 Mega packet per second 64Bytes packet length CPU Performance 600Mhz MIPS CPU with 10 Seconds Hardware Based Watchdog Timer System Memory 128M...

Page 152: ...ntries 3 VLAN modes Trunk Hybrid and Link access Private VLAN Direct Client ports in isolated community VLAN to promiscuous port in primary VLAN IEEE 802 1 QinQ Double Tag for Private VLAN Access Clas...

Page 153: ...ANs and also supports multiple RSTP deployed in a VLAN or multiple VLANs ITU T G 8032 ERPS Support ITU T G 8032 ERPS V1 single ring topology and ERPS v2 multiple rings with ladder topology Loop Protec...

Page 154: ...with Aluminum Ingress Protection IP 30 Dimension HxWxD mm 160 H x 108 W x 127 D without DIN Rail Clip 160 H x 108 W x 136 D with DIN Rail Clip Environmental Operating Temperature 40 C 75 C Operating...

Page 155: ...opment ability with competitive production cost and with quality service and support Global Sales Strategy Korenix s global sales strategy focuses on establishing and developing trustworthy relationsh...

Page 156: ...152 Business service sales korenix com Customer service koreCARE korenix com...

Search results

Summary of Contents for JetNet 5020G Series

Reviews:

Related manuals for JetNet 5020G Series

Brands by name

Popular brands

Korenix JetNet 5020G Series, User Manual

Search results

Summary of Contents for JetNet 5020G Series

Reviews:

Related manuals for JetNet 5020G Series

Brands by name

Popular brands