manualshive.com logo in svg

Lancom GS-1224, Manual

The Lancom GS-1224 is a high-performance network switch designed for small to medium businesses. With 24 ports, this switch offers reliable and secure connectivity. For detailed setup and configuration instructions, you can download the free user manual from manualshive.com. Ensure smooth operation with the help of the manual.

Share
Download
background image

LANCOM GS

-

1224

쮿

 Chapter 4: Operation of Web- based Management

38

EN

The following figure shows the procedure of 802.1x authentication. There are
steps for the login based on 802.1x port access control management. The pro-
tocol used in the right side is EAPOL and the left side is EAP.

At the initial stage, the supplicant A is unauthenticated and a port on
switch acting as an authenticator is in unauthorized state. So the access
is blocked in this stage. 

Initiating a session. Either authenticator or supplicant can initiate the
message exchange. If supplicant initiates the process, it sends EAPOL-
start packet to the authenticator PAE and authenticator will immediately
respond EAP-Request/Identity packet.

The authenticator always periodically sends EAP-Request/Identity to the
supplicant for requesting the identity it wants to be authenticated.

If the authenticator doesn’t send EAP-Request/Identity, the supplicant will
initiate EAPOL-Start the process by sending to the authenticator.

And next, the Supplicant replies an EAP-Response/Identity to the authen-
ticator. The authenticator will embed the user ID into Radius-Access-
Request command and send it to the authentication server for confirming
its identity. 

After receiving the Radius-Access-Request, the authentication server
sends Radius-Access-Challenge to the supplicant for asking for inputting
user password via the authenticator PAE. 

The supplicant will convert user password into the credential information,
perhaps, in MD5 format and replies an EAP-Response with this credential
information as well as the specified authentication algorithm (MD5 or
OTP) to Authentication server via the authenticator PAE. As per the value
of the type field in message PDU, the authentication server knows which
algorithm should be applied to authenticate the credential information,
EAP-MD5 (Message Digest 5) or EAP-OTP (One Time Password) or other
else algorithm.

If user ID and password is correct, the authentication server will send a
Radius-Access-Accept to the authenticator. If not correct, the authentica-
tion server will send a Radius-Access-Reject.

When the authenticator PAE receives a Radius-Access-Accept, it will send
an EAP-Success to the supplicant. At this time, the supplicant is authori-
zed and the port connected to the supplicant and under 802.1x control is

Summary of Contents for GS-1224

Page 1: ...c o n n e c t i n g y o u r b u s i n e s s...

Page 2: ...LANCOM GS 1224...

Page 3: ...ed trademarks of Microsoft Corp The LANCOM Systems logo LCOS and the name LANCOM are registered trademarks of LANCOM Systems GmbH All other names or descriptions used may be trademarks or registered t...

Page 4: ...several members of our staff from a variety of departments in order to ensure you the best possible support when using your LANCOM product Should you find any errors or if you would like to suggest i...

Page 5: ...reface 4 EN Information symbols Very important instructions Failure to observe these may result in damage Important instruction that should be observed Additional information that may be helpful but i...

Page 6: ...and buttons on the LANCOM GS 1224 11 2 3 2 Connectors on rear of the LANCOM GS 1224 12 2 4 Mounting and connecting up the LANCOM Switch 12 2 5 Software installation 13 2 5 1 Starting the software setu...

Page 7: ...ration 44 4 2 11 QoS Quality of Service Configuration 45 4 2 12 Filter 48 4 2 13 Rate Limit 49 4 2 14 Storm Control 50 4 2 15 SNMP 51 4 3 Monitoring 53 4 3 1 Detailed Statistics 53 4 3 2 LACP Status 5...

Page 8: ...Gigabit and Fast Ethernet specifications The 1000 Mbps SFP Fiber transceiver are Gigabit Ethernet ports that fully complies with all IEEE 802 3z and 1000Base SX LX standards The Single Fiber WDM BiDi...

Page 9: ...493 Interface Group MIB RFC2863 IGMP Snooping Support IGMP version 2 RFC 2236 The function IGMP snooping is used to establish the multicast groups to forward the multicast packet to the member ports a...

Page 10: ...ned Default configuration which can be restored to overwrite the current configuration Types of QoS 802 1p Priority and DiffServ DSCP Priority Rapid Spanning Tree 802 1w RSTP 802 1x port security on a...

Page 11: ...e missing please take up immediate contact to your dealer or to the address on the delivery note supplied with your device 2 2 System requirements Computers that connect to a LANCOM must meet the foll...

Page 12: ...rk connection can be established to the connected device 10 100 1000 Mbps LED Constant green when the 1000 Mbps mode is active Constant orange when the 100 Mbps mode is active Off when the 10 Mbps is...

Page 13: ...ild up LAN connection Connect the network devices to the ports of the LANCOM Switch by means of a suitable twisted pair cable TP cable The connectors automatically detect the avalable data transfer sp...

Page 14: ...tion if you use your LANCOM Switch exclusively with computers running operating systems other than Windows 2 5 1 Starting the software setup Place the product CD into your drive The setup program will...

Page 15: ...start the Web based configuration of a LANCOM Switch With LANmonitor you can use a Windows computer to monitor all of your LANCOM devices This program displays all important status infor mation for a...

Page 16: ...uctions for configuring the device with WEBconfig are avai lable in the chapter Web based configuration There are two ways of starting the configuration by browser If you know the device s IP address...

Page 17: ...tellation Networks with DHCP server In its factory settings the LANCOM Switch is set for auto DHCP mode meaning that it searches for a DHCP server to assign it an IP address subnet mask and gateway ad...

Page 18: ...rtant infor mation on the ports 3 3 1 Ethernet port status LANmonitor displays the current status of all of the device s Ethernet ports This includes monitoring of the state as configured by the admin...

Page 19: ...he default values of the managed switch are listed in the table below Web Smart Switch supports a simplified user management function which allows only one administrator to configure the switch at one...

Page 20: ...ts for the optional SFP modules show a demonstration of the module if it is installed Ports without installed SFP modules show covered plates On the left side the main menu tree for web is listed in t...

Page 21: ...r QoS Filter Rate Limit Storm Control and SNMP 4 2 1 System Configuration In the system configuration you can define the basic parameter for the confi guration and the operation of the device The swit...

Page 22: ...s of the DHCP server Lease Time Left Show the lease time left of DHCP client Device Name Set a special name for this switch Up to 16 characters are allowed in this parameter Any alphanumeric character...

Page 23: ...e ID of the management VLAN Password Set a password for this switch Up to 16 characters are allowed in this parameter Any alphanumeric character is acceptable Default admin Inactivity Timeout secs Set...

Page 24: ...of up to 9600 bytes Default disable Power Saving Mode This function supports Power Saving to deactivate automatically the power supply for the ports with inactive links Select Enable Disable Default e...

Page 25: ...e port It drops the packet if too much to handle Default Disable Flow Control status To display the Flow control status 4 2 3 VLAN Mode Configuration The switch supports Tag based VLAN 802 1q and Port...

Page 26: ...iption This switch supports up to maximal 24 port based VLANs As soon as the VLAN mode is set on port based the display auto matically changes to the configuration of the port based VLAN groups Tag ba...

Page 27: ...can select the ports on which the doubled VLAN tags should be used After confirmation of the tag based VLAN mode the display auto matically changes to the configuration of the tag based VLAN groups Me...

Page 28: ...groups if needed 4 2 4 VLAN Group Configuration Shows the information of VLAN Groups and allows administrators to maintain them by modifying and deleting each VLAN group The display differs depending...

Page 29: ...port based or tag based VLAN Modify Click on Modify to edit the selected VLAN Delete Click on Delete to remove the selected VLAN VLAN group configuration Parameter ID VLAN ID ID of the VLAN group 1 t...

Page 30: ...apter 4 Operation of Web based Management 29 EN VLAN Port Configuration In tag based mode you can define further settings for each port Please click the Port Config button in the list of tag based VLA...

Page 31: ...untagged If double tags are detected the outer tag will be removed This option is generally used if end devices are connected to the port Trunk Packets on this port are forwarded using the current ta...

Page 32: ...ation is used to configure the set tings of Link Aggregation You can bundle more than one port by same speed full duplex and the same MAC to be a single logical port thus the logical port aggregates t...

Page 33: ...oup 1 are selected and the settings are stored with Apply 4 2 6 LACP Smart Web Switch supports Link Aggregation Control Protocol LACP LACP is a standard network protocol IEEE 802 3ad which dynamically...

Page 34: ...lt 32768 Hello Time Hello Time is the time interval in which the switch tells the following devices in the spanning tree with a hello packet that it is still active If for example the LANCOM Switch is...

Page 35: ...he check box beside the port x to enable RSTP protocol then press Apply Edge An Edge Port is a port connected to a device that knows nothing about STP or RSTP Usually the connected device is an end st...

Page 36: ...ccount name for authentication and waits for gaining authorization before sending or receiving any packets from a 802 1x enabled port Before the devices or end stations can access the network resource...

Page 37: ...ort will unconditionally pass the packets with PAE group MAC address which has the value of 01 80 c2 00 00 03 and will not be forwarded by MAC bridge at any time Authentication server A device provide...

Page 38: ...access the services on device B and C first it must exchange the authentication message with the authenticator on the port it connected via EAPOL packet The authenticator transfers the supplicant s c...

Page 39: ...ticator The authenticator will embed the user ID into Radius Access Request command and send it to the authentication server for confirming its identity After receiving the Radius Access Request the...

Page 40: ...type of authentication supported in the switch In this mode for the devices connected to this port once a supplicant is authorized the devices connected to this port can access the network resource t...

Page 41: ...tween authentication server and authenticator It is a string with the length 1 15 characters The character string may contain upper case lower case and 0 9 It is character sense It is not allowed to p...

Page 42: ...authenticate Using this function all devices connected to this port will have to re authenticate with username and password when the reauthentication period expires Re authenticate All Re authenticat...

Page 43: ...how of 802 1X statistics the screen include Authenticator counters backend Authenticator counters dot1x MIB counters and Other statistics Parameters You can enable or disable Reauthentication function...

Page 44: ...not be zero Default 3600 seconds EAP timeout 1 255 s A timeout condition in the exchange between the authenticator and the supplicant The valid range 1 255 Default 30 seconds 4 2 9 IGMP Snooping IGMP...

Page 45: ...in the network and learns if necessary the membership of certain multicast groups Default enable IGMP Querying Enabled If this function is enabled the switch can distribute IGMP requests in the netwo...

Page 46: ...on Layer 3 of network framework QoS Configuration While setting QoS function please select QoS Mode in drop down menu at first Then you can use 802 1p Priority and DSCP Priority functions In this func...

Page 47: ...In Default Priority 0 is mapping to Queue normal Priority 1 is mapping to Queue low Priority 2 is mapping to Queue low Priority 3 is mapping to Queue normal Prio rity 4 is mapping to Queue medium Prio...

Page 48: ...All High Priority The QoS setting would apply to all ports on the switch if one of the following values is selected All Low Priority All Normal Priority All Medium Priority or All High Priority Port N...

Page 49: ...low all IP Address login to this switch and manage it Static Just allow the IP Address which set by administrator to login to this switch and manage it DHCP Allow the IP Address get from DHCP server c...

Page 50: ...field Pause frames are also generated if flow control is enabled The format of the packet limits to unicast broadcast and multicast Valid values are multiples 0 to 31 of the traffic rate unit The res...

Page 51: ...ameter ICMP Rate Enables the ICMP Storm capability The setting range is 1k 1024k per second If the amount of ICMP packets reachs this value ICMP packets will be dropped Default No Limit Learn Frames R...

Page 52: ...the Management Information Base MIB described in the form of Structure Management Information SMI The SNMP agent is running on the switch to response the request issued by the SNMP manager Basically...

Page 53: ...with different community name via the SNMP protocol If they both have the same community name they can talk to each other Community name is user definable with a maximum length of 15 charac ters and...

Page 54: ...ve functions contained in the monitoring function Detailed Stati stics LACP Status RSTP Status IGMP Status and Ping Status 4 3 1 Detailed Statistics Displays the detailed counting number of each port...

Page 55: ...counting number of the packet received RX Octets Total received bytes Rx High Priority Packets Number of Rx packets classified as high priority Rx Low Priority Packets Number of Rx packets classified...

Page 56: ...Packets Number of Tx packets classified as low priority Tx Broadcast Shows the counting number of the transmitted broadcast packet Tx Multicast Show the counting number of the transmitted multicast pa...

Page 57: ...ets transmitted Tx 512 1023 Bytes Number of 512 1023 byte frames in good and bad packets transmitted Tx 1024 Bytes Number of 1024 max_length byte frames in good and bad packets trans mitted Rx CRC Ali...

Page 58: ...Status The LACP Status window shows LACP information and status for all ports at the same time Within the IEEE specification the Link Aggregation Control Pro tocol LACP provides a method to control th...

Page 59: ...and bridge ID of the switch which stands for the MAC address of this switch Hello Time Shows the current hello time of the root bridge Max Age Shows the current root bridge maximum age time Forward D...

Page 60: ...t for a given multicast group the switch adds the host s port number to the multicast list for that group When the switch hears an IGMP Leave it removes the host s port from the table entry IGMP Statu...

Page 61: ...network It shows the leaves number 4 3 5 Ping Status To set up target IP address for ping function and display ping status Ping test function is a tool for detecting if the target device is alive or n...

Page 62: ...r you set the parame ters Ping Results Target IP address Shows the active target IP address Status Shows the result of the ping status Received replies Shows the received replies number of times Reque...

Page 63: ...hen Factory Default function is perfor med If you want to restore all configurations including the IP address setting to the factory default please press the RESET button on the front panel lon ger th...

Page 64: ...sibilities to log out or be logged out Auto Logout If Auto Logout is ON and no action no key stroke is done for the time in minutes you set up in the Auto Logout Timer the switch will log you out auto...

Page 65: ...DA SA and DA SA MAC based trunking with automatic failover Multicasting Supports IGMP snooping Spanning Tree Protokoll STP Rapid STP 802 1d 1w Interfaces Ethernet ports 20 ports 10 100 1000 Mbps ethe...

Page 66: ...that the devices of the type described in this documentation are in agreement with the basic requirements and other relevant regulations of the 1995 5 EC directive The CE declarations of conformity f...

Reviews:

No comments

Related manuals for GS-1224

3Com EtherLink 3C509B Quick Manual preview
EtherLink 3C509B
Brand: 3Com Pages: 8
Cabletron Systems SmartSwitch Router User'S Reference Manual preview
SmartSwitch Router
Brand: Cabletron Systems Pages: 338
Paradyne Hotwire 5446 Notice preview
Hotwire 5446
Brand: Paradyne Pages: 2
Paradyne Hotwire 6381 Installation Instructions Manual preview
Hotwire 6381
Brand: Paradyne Pages: 20
Paradyne Hotwire 6381 Upgrade Instructions preview
Hotwire 6381
Brand: Paradyne Pages: 2
Zhone Hotwire 6381 Quick Installation Instructions preview
Hotwire 6381
Brand: Zhone Pages: 2
Paradyne COMSPHERE 6800 Series Multiplexer Management And Configuration Manual preview
COMSPHERE 6800 Series
Brand: Paradyne Pages: 155
Paradyne COMSPHERE 6800 Series Communications Products Support Configuration Manual preview
COMSPHERE 6800 Series
Brand: Paradyne Pages: 44
Patton electronics 3087 Quick Start Manual preview
3087
Brand: Patton electronics Pages: 12
Idis DR-6308P Quick Manual preview
DR-6308P
Brand: Idis Pages: 20
Ubiquiti UniFi LED ULED-AT Quick Start Manual preview
UniFi LED ULED-AT
Brand: Ubiquiti Pages: 16
Perle IOLAN MDC User Manual preview
IOLAN MDC
Brand: Perle Pages: 491
ENKHO 154699.01 Original Instructions Manual preview
154699.01
Brand: ENKHO Pages: 48
Paradyne Hotwire 5620 RTU Installation Instructions Manual preview
Hotwire 5620 RTU
Brand: Paradyne Pages: 20
ZyXEL Communications P-660R-F1 series User Manual preview
P-660R-F1 series
Brand: ZyXEL Communications Pages: 268
Axtrinet APG200 User Manual preview
APG200
Brand: Axtrinet Pages: 49
Cabletron Systems TRMIM-10R Installation Manual preview
TRMIM-10R
Brand: Cabletron Systems Pages: 54
Hitachi KNX001 Installation And Operation Manual preview
KNX001
Brand: Hitachi Pages: 14

Brands by name

Popular brands

Load more brands