manualshive.com logo in svg

Lancom GS-1224, Manual, Page: 41 / 66

Share
Download
Lancom GS-1224 Manual Download Page 41

LANCOM GS

-

1224

쮿

 Chapter 4: Operation of Web- based Management

40

EN

Configuration

The 802.1X Server Configuration is used to configure the global parameters
for RADIUS authentication in 802.1X port security application.

Parameter:

쮿

Mode:
Enable or disable 802.1X function.

쮿

RADIUS IP:
RADIUS server IP address for authentication.

Default: 0.0.0.0

쮿

RADIUS UDP Port:
The port number to communicate with RADIUS server for the authentica-
tion service. The valid value ranges 1-65535.

Default port number is 1812.

쮿

RADIUS Secret:
The secret key between authentication server and authenticator. It is a
string with the length 1 - 15 characters. The character string may contain
upper case, lower case and 0-9. It is character sense. It is not allowed to
put a blank between any two characters.

Default: None

쮿

Admin State:
This is used to set the operation mode of authorization. There are three
type of operation mode supported: Force Unauthorized, Force Authorized,
Auto.

Force Unauthorized:
The controlled port is forced to hold in the 

unauthorized state

, no

matter which EAP negotiation between authenticator and supplicant
takes place.

Multihost

Auto

Failure

Port Unauthorized

Multihost

ForceUnauthorized

Don’t Care

Port Unauthorized

Multihost

ForceAuthorized

Don’t Care

Port Authorized

Summary of Contents for GS-1224

Page 1: ...c o n n e c t i n g y o u r b u s i n e s s...

Page 2: ...LANCOM GS 1224...

Page 3: ...ed trademarks of Microsoft Corp The LANCOM Systems logo LCOS and the name LANCOM are registered trademarks of LANCOM Systems GmbH All other names or descriptions used may be trademarks or registered t...

Page 4: ...several members of our staff from a variety of departments in order to ensure you the best possible support when using your LANCOM product Should you find any errors or if you would like to suggest i...

Page 5: ...reface 4 EN Information symbols Very important instructions Failure to observe these may result in damage Important instruction that should be observed Additional information that may be helpful but i...

Page 6: ...and buttons on the LANCOM GS 1224 11 2 3 2 Connectors on rear of the LANCOM GS 1224 12 2 4 Mounting and connecting up the LANCOM Switch 12 2 5 Software installation 13 2 5 1 Starting the software setu...

Page 7: ...ration 44 4 2 11 QoS Quality of Service Configuration 45 4 2 12 Filter 48 4 2 13 Rate Limit 49 4 2 14 Storm Control 50 4 2 15 SNMP 51 4 3 Monitoring 53 4 3 1 Detailed Statistics 53 4 3 2 LACP Status 5...

Page 8: ...Gigabit and Fast Ethernet specifications The 1000 Mbps SFP Fiber transceiver are Gigabit Ethernet ports that fully complies with all IEEE 802 3z and 1000Base SX LX standards The Single Fiber WDM BiDi...

Page 9: ...493 Interface Group MIB RFC2863 IGMP Snooping Support IGMP version 2 RFC 2236 The function IGMP snooping is used to establish the multicast groups to forward the multicast packet to the member ports a...

Page 10: ...ned Default configuration which can be restored to overwrite the current configuration Types of QoS 802 1p Priority and DiffServ DSCP Priority Rapid Spanning Tree 802 1w RSTP 802 1x port security on a...

Page 11: ...e missing please take up immediate contact to your dealer or to the address on the delivery note supplied with your device 2 2 System requirements Computers that connect to a LANCOM must meet the foll...

Page 12: ...rk connection can be established to the connected device 10 100 1000 Mbps LED Constant green when the 1000 Mbps mode is active Constant orange when the 100 Mbps mode is active Off when the 10 Mbps is...

Page 13: ...ild up LAN connection Connect the network devices to the ports of the LANCOM Switch by means of a suitable twisted pair cable TP cable The connectors automatically detect the avalable data transfer sp...

Page 14: ...tion if you use your LANCOM Switch exclusively with computers running operating systems other than Windows 2 5 1 Starting the software setup Place the product CD into your drive The setup program will...

Page 15: ...start the Web based configuration of a LANCOM Switch With LANmonitor you can use a Windows computer to monitor all of your LANCOM devices This program displays all important status infor mation for a...

Page 16: ...uctions for configuring the device with WEBconfig are avai lable in the chapter Web based configuration There are two ways of starting the configuration by browser If you know the device s IP address...

Page 17: ...tellation Networks with DHCP server In its factory settings the LANCOM Switch is set for auto DHCP mode meaning that it searches for a DHCP server to assign it an IP address subnet mask and gateway ad...

Page 18: ...rtant infor mation on the ports 3 3 1 Ethernet port status LANmonitor displays the current status of all of the device s Ethernet ports This includes monitoring of the state as configured by the admin...

Page 19: ...he default values of the managed switch are listed in the table below Web Smart Switch supports a simplified user management function which allows only one administrator to configure the switch at one...

Page 20: ...ts for the optional SFP modules show a demonstration of the module if it is installed Ports without installed SFP modules show covered plates On the left side the main menu tree for web is listed in t...

Page 21: ...r QoS Filter Rate Limit Storm Control and SNMP 4 2 1 System Configuration In the system configuration you can define the basic parameter for the confi guration and the operation of the device The swit...

Page 22: ...s of the DHCP server Lease Time Left Show the lease time left of DHCP client Device Name Set a special name for this switch Up to 16 characters are allowed in this parameter Any alphanumeric character...

Page 23: ...e ID of the management VLAN Password Set a password for this switch Up to 16 characters are allowed in this parameter Any alphanumeric character is acceptable Default admin Inactivity Timeout secs Set...

Page 24: ...of up to 9600 bytes Default disable Power Saving Mode This function supports Power Saving to deactivate automatically the power supply for the ports with inactive links Select Enable Disable Default e...

Page 25: ...e port It drops the packet if too much to handle Default Disable Flow Control status To display the Flow control status 4 2 3 VLAN Mode Configuration The switch supports Tag based VLAN 802 1q and Port...

Page 26: ...iption This switch supports up to maximal 24 port based VLANs As soon as the VLAN mode is set on port based the display auto matically changes to the configuration of the port based VLAN groups Tag ba...

Page 27: ...can select the ports on which the doubled VLAN tags should be used After confirmation of the tag based VLAN mode the display auto matically changes to the configuration of the tag based VLAN groups Me...

Page 28: ...groups if needed 4 2 4 VLAN Group Configuration Shows the information of VLAN Groups and allows administrators to maintain them by modifying and deleting each VLAN group The display differs depending...

Page 29: ...port based or tag based VLAN Modify Click on Modify to edit the selected VLAN Delete Click on Delete to remove the selected VLAN VLAN group configuration Parameter ID VLAN ID ID of the VLAN group 1 t...

Page 30: ...apter 4 Operation of Web based Management 29 EN VLAN Port Configuration In tag based mode you can define further settings for each port Please click the Port Config button in the list of tag based VLA...

Page 31: ...untagged If double tags are detected the outer tag will be removed This option is generally used if end devices are connected to the port Trunk Packets on this port are forwarded using the current ta...

Page 32: ...ation is used to configure the set tings of Link Aggregation You can bundle more than one port by same speed full duplex and the same MAC to be a single logical port thus the logical port aggregates t...

Page 33: ...oup 1 are selected and the settings are stored with Apply 4 2 6 LACP Smart Web Switch supports Link Aggregation Control Protocol LACP LACP is a standard network protocol IEEE 802 3ad which dynamically...

Page 34: ...lt 32768 Hello Time Hello Time is the time interval in which the switch tells the following devices in the spanning tree with a hello packet that it is still active If for example the LANCOM Switch is...

Page 35: ...he check box beside the port x to enable RSTP protocol then press Apply Edge An Edge Port is a port connected to a device that knows nothing about STP or RSTP Usually the connected device is an end st...

Page 36: ...ccount name for authentication and waits for gaining authorization before sending or receiving any packets from a 802 1x enabled port Before the devices or end stations can access the network resource...

Page 37: ...ort will unconditionally pass the packets with PAE group MAC address which has the value of 01 80 c2 00 00 03 and will not be forwarded by MAC bridge at any time Authentication server A device provide...

Page 38: ...access the services on device B and C first it must exchange the authentication message with the authenticator on the port it connected via EAPOL packet The authenticator transfers the supplicant s c...

Page 39: ...ticator The authenticator will embed the user ID into Radius Access Request command and send it to the authentication server for confirming its identity After receiving the Radius Access Request the...

Page 40: ...type of authentication supported in the switch In this mode for the devices connected to this port once a supplicant is authorized the devices connected to this port can access the network resource t...

Page 41: ...tween authentication server and authenticator It is a string with the length 1 15 characters The character string may contain upper case lower case and 0 9 It is character sense It is not allowed to p...

Page 42: ...authenticate Using this function all devices connected to this port will have to re authenticate with username and password when the reauthentication period expires Re authenticate All Re authenticat...

Page 43: ...how of 802 1X statistics the screen include Authenticator counters backend Authenticator counters dot1x MIB counters and Other statistics Parameters You can enable or disable Reauthentication function...

Page 44: ...not be zero Default 3600 seconds EAP timeout 1 255 s A timeout condition in the exchange between the authenticator and the supplicant The valid range 1 255 Default 30 seconds 4 2 9 IGMP Snooping IGMP...

Page 45: ...in the network and learns if necessary the membership of certain multicast groups Default enable IGMP Querying Enabled If this function is enabled the switch can distribute IGMP requests in the netwo...

Page 46: ...on Layer 3 of network framework QoS Configuration While setting QoS function please select QoS Mode in drop down menu at first Then you can use 802 1p Priority and DSCP Priority functions In this func...

Page 47: ...In Default Priority 0 is mapping to Queue normal Priority 1 is mapping to Queue low Priority 2 is mapping to Queue low Priority 3 is mapping to Queue normal Prio rity 4 is mapping to Queue medium Prio...

Page 48: ...All High Priority The QoS setting would apply to all ports on the switch if one of the following values is selected All Low Priority All Normal Priority All Medium Priority or All High Priority Port N...

Page 49: ...low all IP Address login to this switch and manage it Static Just allow the IP Address which set by administrator to login to this switch and manage it DHCP Allow the IP Address get from DHCP server c...

Page 50: ...field Pause frames are also generated if flow control is enabled The format of the packet limits to unicast broadcast and multicast Valid values are multiples 0 to 31 of the traffic rate unit The res...

Page 51: ...ameter ICMP Rate Enables the ICMP Storm capability The setting range is 1k 1024k per second If the amount of ICMP packets reachs this value ICMP packets will be dropped Default No Limit Learn Frames R...

Page 52: ...the Management Information Base MIB described in the form of Structure Management Information SMI The SNMP agent is running on the switch to response the request issued by the SNMP manager Basically...

Page 53: ...with different community name via the SNMP protocol If they both have the same community name they can talk to each other Community name is user definable with a maximum length of 15 charac ters and...

Page 54: ...ve functions contained in the monitoring function Detailed Stati stics LACP Status RSTP Status IGMP Status and Ping Status 4 3 1 Detailed Statistics Displays the detailed counting number of each port...

Page 55: ...counting number of the packet received RX Octets Total received bytes Rx High Priority Packets Number of Rx packets classified as high priority Rx Low Priority Packets Number of Rx packets classified...

Page 56: ...Packets Number of Tx packets classified as low priority Tx Broadcast Shows the counting number of the transmitted broadcast packet Tx Multicast Show the counting number of the transmitted multicast pa...

Page 57: ...ets transmitted Tx 512 1023 Bytes Number of 512 1023 byte frames in good and bad packets transmitted Tx 1024 Bytes Number of 1024 max_length byte frames in good and bad packets trans mitted Rx CRC Ali...

Page 58: ...Status The LACP Status window shows LACP information and status for all ports at the same time Within the IEEE specification the Link Aggregation Control Pro tocol LACP provides a method to control th...

Page 59: ...and bridge ID of the switch which stands for the MAC address of this switch Hello Time Shows the current hello time of the root bridge Max Age Shows the current root bridge maximum age time Forward D...

Page 60: ...t for a given multicast group the switch adds the host s port number to the multicast list for that group When the switch hears an IGMP Leave it removes the host s port from the table entry IGMP Statu...

Page 61: ...network It shows the leaves number 4 3 5 Ping Status To set up target IP address for ping function and display ping status Ping test function is a tool for detecting if the target device is alive or n...

Page 62: ...r you set the parame ters Ping Results Target IP address Shows the active target IP address Status Shows the result of the ping status Received replies Shows the received replies number of times Reque...

Page 63: ...hen Factory Default function is perfor med If you want to restore all configurations including the IP address setting to the factory default please press the RESET button on the front panel lon ger th...

Page 64: ...sibilities to log out or be logged out Auto Logout If Auto Logout is ON and no action no key stroke is done for the time in minutes you set up in the Auto Logout Timer the switch will log you out auto...

Page 65: ...DA SA and DA SA MAC based trunking with automatic failover Multicasting Supports IGMP snooping Spanning Tree Protokoll STP Rapid STP 802 1d 1w Interfaces Ethernet ports 20 ports 10 100 1000 Mbps ethe...

Page 66: ...that the devices of the type described in this documentation are in agreement with the basic requirements and other relevant regulations of the 1995 5 EC directive The CE declarations of conformity f...

Reviews:

No comments