manualshive.com logo in svg

Lancom GS-2310P, User Manual

The Lancom GS-2310P is a high-performance network switch, ideal for small to mid-sized businesses. Featuring advanced functionality and Power over Ethernet support, this product ensures seamless connectivity. Enhance your networking experience by accessing our comprehensive and user-friendly instruction manual. Download for free from manualshive.com and optimize your network setup effortlessly.

Share
Download
background image

Ready: The Port Security service is in use by at least one user module, and is awaiting frames from unknown MAC
addresses to arrive.

Limit Reached: The Port Security service is enabled by at least the Limit Control user module, and that module has
indicated that the limit is reached and no more MAC addresses should be taken in.

Shutdown: The Port Security service is enabled by at least the Limit Control user module, and that module has indicated
that the limit is exceeded. No MAC addresses can be learned on the port until it is administratively re-opened on the
Limit Control configuration Web-page.

MAC Count (Current, Limit):

The two columns indicate the number of currently learned MAC addresses (forwarding as well as blocked) and the
maximum number of MAC addresses that can be learned on the port, respectively.

If no user modules are enabled on the port, the Current column will show a dash (-).

If the Limit Control user module is not enabled on the port, the Limit column will show a dash (-).

Indicates the number of currently learned MAC addresses (forwarding as well as blocked) on the port. If no user modules
are enabled on the port, a dash (-) will be shown.

Auto-refresh:

Activate the auto-refresh to refresh the information automatically.

Refresh

Refresh the Port Security Switch Status information manually.

5.7.3 Port Status

This section shows the MAC addresses secured by the Port Security module. Port Security is a module with no direct
configuration. Configuration comes indirectly from other modules - the user modules. When a user module has enabled
port security on a port, the port is set-up for software-based learning. In this mode, frames from unknown MAC addresses
are passed on to the port security module, which in turn asks all user modules whether to allow this new MAC address
to forward or block it. For a MAC address to be set in the forwarding state, all enabled user modules must unanimously
agree on allowing the MAC address to forward. If only one chooses to block it, it will be blocked until that user module
decides otherwise.

Web Interface

To show the Port Security Switch Status in the web interface:

1. Specify the Port you want to monitor.

2. Check “Auto-refresh”.

Figure 5-7.3: The Port Security Port Status

Parameter description:

MAC Address & VLAN ID:

The MAC address and VLAN ID that is seen on this port. If no MAC addresses are learned, a single row stating "No MAC
addresses attached" is displayed.

State:

Indicates whether the corresponding MAC address is blocked or forwarding. In the blocked state, it will not be allowed
to transmit or receive traffic.

190

LANCOM GS-2310P/GS-2326(P) User Manual

5 Security

Summary of Contents for GS-2310P

Page 1: ...connecting your business LANCOM GS 2310P GS 2326 P User Manual...

Page 2: ...s 21 3 2 2 Rate Limiters 22 3 2 3 Access Control List 23 3 2 4 ACL Status 26 3 3 Aggregation 28 3 3 1 Static Trunk 28 3 3 2 LACP 30 3 4 Spanning Tree 33 3 4 1 Bridge Settings 34 3 4 2 MSTI Mapping 35...

Page 3: ...e 76 3 9 1 Configuration 76 3 9 2 Dynamic MAC Table 78 3 10 VLAN 80 3 10 1 VLAN Membership 80 3 10 2 Ports 81 3 10 3 Switch Status 85 3 10 4 Port Status 86 3 10 5 Private VLANs 87 3 10 6 MAC based VLA...

Page 4: ...tion 128 3 17 2 Status 129 3 18 Single IP 130 3 18 1 Configuration 130 3 18 2 Information 131 3 19 Easy Port 131 3 20 Mirroring 133 3 21 Trap Event Severity 134 3 22 SMTP Configuration 135 3 23 UPnP 1...

Page 5: ...n 166 5 3 2 Statistics 167 5 4 DHCP Relay 168 5 4 1 Configuration 168 5 4 2 Statistics 169 5 5 NAS 171 5 5 1 Configuration 171 5 5 2 Switch Status 178 5 5 3 Port Status 178 5 6 AAA 181 5 6 1 Configura...

Page 6: ...User 200 6 4 Export Import 200 6 4 1 Export Config 200 6 4 2 Import Config 201 6 5 Diagnostics 202 6 5 1 Ping 202 6 5 2 Ping6 203 6 5 3 VeriPHY GS 2326 P only 204 A Glossary of Web based Management 20...

Page 7: ...ications protect your sensitive information and optimize your network bandwidth to deliver information and applications more effectively It provides the ideal combination of affordability and capabili...

Page 8: ...the password is admin When logging in for the first time please use the default username and password and then click the Login button The login process now is completed In the login menu you have to...

Page 9: ...series is set to DHCP by default If you do not have a DHCP server to provide an IP address to the switch the default IP is 172 23 56 250 9 LANCOM GS 2310P GS 2326 P User Manual 2 Operation of Web bas...

Page 10: ...he RJ45 ports on the switch support automatic MDI MDI X pin out configuration so you can use standard straight through twisted pair cables to connect to any other network device PCs servers switches r...

Page 11: ...ponding to each port will light green 1000 Mbps or amber 100 Mbps to indicate that the connection is valid NETWORK WIRING CONNECTIONS Today the patch down block is an integral part of many of the newe...

Page 12: ...s only available when there is no link on the corresponding SFP port 3 1 1 Configuration This chapter describes how to view the current port configuration and how to configure ports to non default set...

Page 13: ...ent Rx column indicates whether pause frames on the port are obeyed and the Current Tx column indicates whether pause frames on the port are transmitted The Rx and Tx settings are determined by the re...

Page 14: ...identity It provides user the option to enter an alphanumeric string describing the full name and or additional information eg the usage of the port Web Interface To enter a Port Description in the we...

Page 15: ...w Parameter description Port The logical port for the settings contained in the same row Packets The number of received and transmitted packets per port Bytes The number of received and transmitted by...

Page 16: ...to refresh the information then you need to activate Auto refresh 4 Click Refresh to refresh the port detailed statistics or click Clear to clear all information Figure 3 1 4 The Detailed Port Statist...

Page 17: ...r alignment errors Rx Undersize The number of short 1 frames received with valid CRC Rx Oversize The number of long 2 frames received with valid CRC Rx Fragments The number of short 1 frames received...

Page 18: ...manually 3 1 6 EEE EEE is a power saving option that reduces the power usage when there is very low traffic utilization or no traffic EEE works by powering down circuits when there is no traffic When...

Page 19: ...itch port number of the logical EEE port EEE Enabled Controls if EEE is enabled for this switch port EEE Urgent Queues Queues set will activate transmission of frames as soon as any data is available...

Page 20: ...ndor OUI Display the Manufacturer s OUI code which is assigned by IEEE Vendor Name Display the company name of the module manufacturer Vendor P N Display the product name of the naming by module manuf...

Page 21: ...unless the frame matches a specific ACE Web Interface To configure the ACL Ports in the web interface 1 Click Configuration ACL then Ports 2 To scroll the specific parameter value to select the correc...

Page 22: ...bled Port shut down is disabled The default value is Disabled Counter Counts the number of frames that match this ACE Buttons Save Click to save changes Reset Click to undo any changes made locally an...

Page 23: ...he conditions in an ACL one by one A packet will be accepted as soon as it matches a permit rule or dropped as soon as it matches a deny rule If no rules match the frame is accepted Other actions can...

Page 24: ...relevant criteria to be matched for this rule and set the actions to take when a rule is matched such as Rate Limiter Port Copy Logging and Shutdown Figure 3 2 3 The ACL Rate Limiter Configuration Pa...

Page 25: ...d Logging Indicates the logging operation of the ACE Possible values are Enabled Frames matching the ACE are stored in the System Log Disabled Frames matching the ACE are not logged Please note that t...

Page 26: ...you can enter a specific destination MAC address The legal format is xx xx xx xx xx xx or xx xx xx xx xx xx or xxxxxxxxxxxx x is a hexadecimal digit A frame that hits this ACE matches this DMAC value...

Page 27: ...ames matching the ACE may be forwarded and learned Deny Frames matching the ACE are dropped Rate Limiter Indicates the rate limiter number of the ACE The allowed range is 1 to 16 When Disabled is disp...

Page 28: ...s means you can apply your current Ethernet equipment s to build the bandwidth aggregation 3 3 1 1 Static Trunk Ports using Static Trunk as their trunk method can choose their unique Static GroupID to...

Page 29: ...use of the TCP UDP Port Number or uncheck to disable By default TCP UDP Port Number is enabled Aggregation Group Configuration Locality Indicates the aggregation group type This field is only valid fo...

Page 30: ...up with only one or less than one ready member ports is not a real trunked group Web Interface To configure the Trunk Aggregation LACP parameters in the web interface 1 Click Configuration Aggregation...

Page 31: ...face To display the LACP System status in the web interface 1 Click Configuration Aggregation LACP System Status 2 If you want to auto refresh the information then you need to activate Auto refresh 3...

Page 32: ...ile its LACP status is disabled Key The key assigned to this port Only ports with the same key can aggregate together Aggr ID The Aggregation ID assigned to this aggregation group IDs 1 and 2 are GLAG...

Page 33: ...in your network to ensure that only one route exists between any two stations on the network and provide backup links which automatically take over when a primary link goes down STP STP uses a distri...

Page 34: ...ters in the blank field in Basic Settings 3 Activate to enable or disable the parameters and enter available value of parameters in the blank field in Advanced settings 4 Click Apply to save the setti...

Page 35: ...is also cleared by a system reboot Port Error Recovery Timeout The time to pass before a port in the error disabled state can be enabled Valid values are between 30 and 86400 seconds 24 hours Buttons...

Page 36: ...ust be separated with comma and or space A VLAN can only be mapped to one MSTI An unused MSTI should just be left empty I e not having any VLANs Buttons Save Click to save changes Reset Click to undo...

Page 37: ...tifier Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values 3 4 4 CIST Ports When you implement a Spanning Tree protocol on the switch...

Page 38: ...aving operEdge true than for other ports The value of this flag is based on AdminEdge and AutoEdge fields This flag is displayed as Edge in Monitor Spanning Tree STP Detailed Bridge Status AdminEdge C...

Page 39: ...or forced either true or false Transition to the forwarding state is faster for point to point LANs than for shared media Buttons Save Click to save changes Reset Click to undo any changes made locall...

Page 40: ...control priority of ports having identical port cost See above Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values 3 4 6 Bridge Statu...

Page 41: ...e Topology Change Last The time since last Topology Change occurred Auto refresh Activate the auto refresh to refresh the information automatically Refresh Refresh the STP Bridges status information m...

Page 42: ...fresh the STP Port status information manually 3 4 8 Port Statistics After you complete the STP configuration then you could to let the switch display the STP Statistics The Section provides you to as...

Page 43: ...fferent from broadcast packet A switch which supports IGMP Snooping with the functions of query report and leave a type of packet exchanged between IP Multicast Router Switch and IP Multicast Host can...

Page 44: ...M Range SSM Source Specific Multicast Range allows the SSM aware hosts and routers run the SSM service model for the groups in the address range Format IP address sub mask Proxy Enabled Enable IGMP Pr...

Page 45: ...VLAN in the web interface 1 Click Configuration IGMP Snooping VLAN Configuration 2 Activate to select enable or disable Snooping IGMP Querier 3 Specify the parameters in the blank field 4 Click the r...

Page 46: ...the lowest VLAN ID or click to update the table starting with the entry after the last entry currently displayed 3 5 3 Port Group Filtering The section describes how to set the IGMP Port Group Filter...

Page 47: ...at will be filtered Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values 3 5 4 Status After you complete the IGMP Snooping configuratio...

Page 48: ...The number of Received V2 Reports V3 Reports Received The number of Received V3 Reports V2 Leaves Received The number of Received V2 Leaves Auto refresh Activate auto refresh to refresh the log automa...

Page 49: ...ries is shown in the displayed table IGMP Group Table Columns VLAN ID VLAN ID of the group Groups Group address of the group displayed Port Members Ports under this group Auto refresh Activate the aut...

Page 50: ...le default being 20 selected through the entries per page input field When first visited the web page will show the first 20 entries from the beginning of the IGMPv3 Information Table The Start from V...

Page 51: ...unning on the source and destination systems cooperates to determine what multicast address to use Note that this is a function of the application software not of MLD When MLD snooping is enabled on a...

Page 52: ...Proxy Enabled Enable MLD Proxy This feature can be used to avoid forwarding unnecessary join and leave messages to the router side Port The Port index what you enable or disable the MLD Snooping funct...

Page 53: ...guration Information 4 Click or to move to previous or next entry Figure 3 7 2 The MLD Snooping VLAN Configuration Parameter description VLAN ID The VLAN ID of the entry Snooping Enabled Enable the pe...

Page 54: ...Report Interval The Unsolicited Report Interval is the time between repetitions of a node s initial report of interest in a multicast address The allowed range is 0 to 31744 seconds default unsolicite...

Page 55: ...scribes the MLD Snooping Status It is helpful to find out the detailed information of the MLD Snooping status Web Interface To display the MLD Snooping Status in the web interface 1 Click Configuratio...

Page 56: ...Groups Information The Start from VLAN and group input fields allow the user to select the starting point in the MLD Group Table Each page shows up to 99 entries from the MLD Group table the default...

Page 57: ...group Auto refresh Activate the auto refresh to refresh the log automatically Refresh Refresh the IGMP Group Status manually Go to the previous next page or entry 3 6 6 IPv6 SSM Information This secti...

Page 58: ...Go to the previous next page or entry 3 7 MVR The MVR feature enables multicast traffic forwarding on the Multicast VLAN In a multicast television application a PC or a television with a set top box c...

Page 59: ...saved values Figure 3 7 1 The MVR Configuration GS 2310P Parameter description MVR Mode Enable Disable the Global MVR VLAN ID Specify the Multicast VLAN ID Mode Enable MVR on the port Type Specify the...

Page 60: ...VLAN ID VLAN ID of the group Groups Group ID of the group displayed Port Members Ports under this group Auto refresh Activate the auto refresh tto refresh the information automatically Refresh Refres...

Page 61: ...ing switches to advertise themselves to adjacent devices and to learn about adjacent LLDP devices The Link Layer Discovery Protocol LLDP is a vendor neutral Link Layer protocol in the Internet Protoco...

Page 62: ...rame shall be considered valid The LLDP information valid period is set to Tx Hold multiplied by Tx Interval seconds Valid values are restricted to 2 10 times Tx Delay If some configuration is changed...

Page 63: ...P Management Address field The CDP address TLV can contain multiple addresses but only the first address is shown in the LLDP neighbors table CDP TLV Port ID is mapped to the LLDP Port ID field CDP TL...

Page 64: ...P then the table will show No LLDP neighbor information found Parameter description Local Port The port on which the LLDP frame was received Chassis ID The Chassis ID is the identification of the neig...

Page 65: ...rv settings enabling plug and play networking Device location discovery allows creation of location databases and in the case of Voice over Internet Protocol VoIP Enhanced 911 services Extended and au...

Page 66: ...TLVs in outgoing LLDPDUs on the associated port The LLDP MED application will temporarily speed up the transmission of the LLDPDU to start within a second when a new LLDP MED neighbor has been detect...

Page 67: ...Geographical 3D World Geodesic System 1984 CRS Code 4327 Prime Meridian Name Greenwich NAD83 NAVD88 North American Datum 1983 CRS Code 4269 Prime Meridian Name Greenwich the associated vertical datum...

Page 68: ...xample 4 Room no Room number Example 450F Place type Place type Example Office Postal community name Postal community name Example Leonia P O Box Post office box P O BOX Example 12345 Additional code...

Page 69: ...dentity or port configuration It should be noted that LLDP MED is not intended to run on links other than between Network Connectivity Devices and Endpoints and therefore does not need to advertise th...

Page 70: ...the DSCP value has relevance Tagged indicates that the device is using the IEEE 802 1Q tagged frame format and that both the VLAN ID and the Layer 2 priority values are being used as well as the DSCP...

Page 71: ...ice is a LAN access device based on any of the following technologies 1 LAN Switch Router 2 IEEE 802 1 Bridge 3 IEEE 802 3 Repeater included for historical reasons 4 IEEE 802 11 Wireless Access Point...

Page 72: ...and are extended to include aspects related to end user devices Example product categories expected to adhere to this class include but are not limited to end user communication appliances such as IP...

Page 73: ...VLAN ID VLAN ID is the VLAN identifier VID for the port as defined in IEEE 802 1Q 2003 A value of 1 through 4094 is used to define a valid VLAN ID A value of 0 Priority Tagged is used if the device is...

Page 74: ...echo values shall be defined as the local link partners reflection echo of the remote link partners respective values When a local link partner receives its echoed values from the remote link partner...

Page 75: ...d or added It also shows the time elapsed since the last change was detected Total Neighbors Entries Added Shows the number of new entries added since switch reboot Total Neighbors Entries Deleted Sho...

Page 76: ...on automatically Refresh Refresh the LLDP Port Statistics information manually Clear Press clear to clean up the entries 3 9 Filtering Data Base The Filtering Data Base Configuration includes many fun...

Page 77: ...Specify the VLAN IP and Mac address Port Members 3 Click Apply Figure 3 9 1 The MAC Address Table Configuration GS 2310P Parameter description Aging Configuration By default dynamic entries are remov...

Page 78: ...can contain 64 entries The MAC table is sorted first by VLAN ID and then by MAC address Delete Check to delete the entry It will be deleted during the next save VLAN ID The VLAN ID of the entry MAC A...

Page 79: ...efresh the MAC address entries manually Clear Press clear to clean up the MAC table Go to the previous next entries of the table 5 00 A0 57 73 01 29 your switch MAC address for IPv4 33 33 00 00 00 01...

Page 80: ...as adding and deleting port members of each VLAN Web Interface To configure VLAN membership configuration in the web interface 1 Click VLAN membership Configuration 2 Specify VLAN ID 1 4094 3 Click Ap...

Page 81: ...ved values Refresh Refresh the VLAN entries manually Clear Clean up the VLAN table Go to the previous next page of the table 3 10 2 Ports In the VLAN Tag Rule Settings PVID number for each port can be...

Page 82: ...ceives a tagged frame an additional outer tag based on the defined PVID is added and the frame is forwarded Unaware 0x8100 The final status of the frame after egressing is also effected by the egress...

Page 83: ...t receives an untagged frame a tag based on the defined PVID is added and the frame is forwarded When the port receives a tagged frame and the TPID S custom port value which can be set by using the fi...

Page 84: ...ts its operate behavior to individual packet Figure 1 Ingress sample Unaware Figure 2 Ingress sample C port Figure 3 Ingress sample S port Figure 4 Ingress sample S custom port Ingress Filtering 84 LA...

Page 85: ...LAN ID If VLAN awareness is disabled all frames received on the port are classified to the Port VLAN ID If the classified VLAN ID of a frame transmitted on the port is different from the Port VLAN ID...

Page 86: ...o create multiple spanning trees in a network which significantly improves network resource utilization while maintaining a loop free environment VLAN ID Indicates the ID of this particular VLAN VLAN...

Page 87: ...of Conflicts whether exists or not When a Volatile VLAN User requests to set VLAN membership or VLAN port configuration the following conflicts can occur Functional Conflicts between features Conflict...

Page 88: ...t traffic flow The apparatus comprises a switch having said plurality of ports each port configured as a protected port or a non protected port An address table memory stores an address table having a...

Page 89: ...Ns the device will be assigned to a different VLAN the next time it accesses the network As a result it will not be able to use the resources in the old VLAN On the other hand if Port A and Port B bel...

Page 90: ...al values for a VLAN ID are 1 through 4094 The MAC based VLAN entry is enabled on the selected switch unit when you click on Save A MAC based VLAN without any port members on any unit will be deleted...

Page 91: ...repeat request ARQ error management mechanisms SNAP The Sub network Access Protocol SNAP is a mechanism for multiplexing on networks using IEEE 802 2 LLC more protocols than can be distinguished by t...

Page 92: ...string 0x00 0xff b SSAP 1 byte long string 0x00 0xff For SNAP Valid value in this case also is comprised of two different sub values a OUI OUI Organizationally Unique Identifier is value in format of...

Page 93: ...nterface To display Group Name to VLAN mapping table configured in the web interface 1 Click Group Name VLAN configuration and add new entry 2 Specify the Group Name and VLAN ID 3 Click Apply Figure 3...

Page 94: ...ly Refresh Refresh the Protocol Group Mapping information manually 3 11 Voice VLAN Voice VLAN is VLAN configured specially for voice traffic By adding the ports with voice devices attached to voice VL...

Page 95: ...e is 10 to 10000000 seconds It is used when security mode or auto detect mode is enabled In other cases it will be based on hardware aging time The actual aging time will be situated between the age_t...

Page 96: ...Possible discovery protocols are OUI Detect telephony device by OUI address LLDP Detect telephony device by LLDP Both Both OUI and LLDP Buttons Save Click to save changes Reset Click to undo any chan...

Page 97: ...e devices form a reachability tree that is a subset of an active topology GARP defines the architecture rules of operation state machines and variables for the registration and de registration of attr...

Page 98: ...for Leave All Timer is 10000ms Application Currently supported applications GVRP Attribute Type Currently supported Attribute Type is VLAN GARP Applicant This configuration is used to configure the Ap...

Page 99: ...Registration Protocol GARP mainly used to automatically and dynamically maintain the group membership information of the VLANs The GVRP offers the function providing the VLAN registration service thr...

Page 100: ...ases 1 GVRP Mode This configuration is to enable disable GVRP Mode on particular port locally Disable Select to Disable GVRP mode on this port Enable Select to Enable GVRP mode on this port The defaul...

Page 101: ...nsmitted from the GARP layer include join in join empty Leave Tx Count The count of GVRP leave PDUs transmitted from the GARP layer include leave in leave empty Auto refresh Activate the auto refresh...

Page 102: ...ings for all switch ports and the settings relate to the currently selected unit as reflected by the page header Web Interface To configure the QoS Port Classification parameters in the web interface...

Page 103: ...inition DEI value is 0 or 1 it is settable map to DP value is 0 or 1 When ingress QoS class value is the same the DP level defines the priority a large DP value will be dropped first ex From Port 1 in...

Page 104: ...vate to enable or disable flow control on port Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values 3 14 3 Port Scheduler This section...

Page 105: ...105 LANCOM GS 2310P GS 2326 P User Manual 3 Configuration...

Page 106: ...haper Enable Controls whether the queue shaper is enabled for this queue on this switch port Queue Shaper Rate Controls the rate for the queue shaper The default value is This value is restricted to 1...

Page 107: ...s and it is restricted to 1 when the Unit is Mbps Port Shaper Unit Controls the unit of measure for the port shaper rate as kbps or Mbps The default value is kbps Buttons Save Click to save changes Re...

Page 108: ...108 LANCOM GS 2310P GS 2326 P User Manual 3 Configuration...

Page 109: ...ight Controls the weight for this queue The default value is 17 This value is restricted to 1 100 This parameter is only shown if Scheduler Mode is set to Weighted Queue Scheduler Percent Shows the we...

Page 110: ...ault PCP DEI values Mapped Use mapped versions of QoS class and DP level Tag Remarking Mode To scroll to select the tag remarking mode for this port Classified Use classified PCP DEI values Default Us...

Page 111: ...2310P Parameter description Port The Port column shows the list of ports for which you can configure dscp ingress and egress settings Ingress In Ingress settings you can change ingress translation and...

Page 112: ...hows how to configure the DSCP Based QoS mode Web Interface To configure the DSCP Based QoS Ingress Classification parameters in the web interface 1 Click Configuration QoS DSCP Based QoS 2 Activate t...

Page 113: ...S DSCP Translation settings for all switches DSCP translation can be done in Ingress or Egress Web Interface To configure the DSCP Translation parameters in the web interface 1 Click Configuration QoS...

Page 114: ...There are two configuration parameters for DSCP Translation Translate DSCP at Ingress side can be translated to any of 0 63 DSCP values Classify Click to enable Classification at Ingress side Egress...

Page 115: ...eb Interface To configure the DSCP Classification parameters in the web interface 1 Click Configuration QoS DSCP Translation 2 Set the DSCP Parameters 3 Click Apply to save the setting 4 If you want t...

Page 116: ...ers in the web interface 1 Click Configuration QoS QoS Control List 2 Click the to add a new QoS Control List 3 Select the parameters and activate the Port Member to join the QCE rules 4 Click Apply t...

Page 117: ...herwise it is always No Please note that conflict can be resolved by releasing the resource required by the QCE and pressing Refresh button Action Indicates the classification action taken on ingress...

Page 118: ...efault value is Any 5 IPv4 Protocol IP protocol number 0 255 TCP or UDP or Any Source IP Specific Source IP address in value mask format or Any IP and Mask are in the format x y z w where x y z and w...

Page 119: ...fresh the information then you need to activate Auto refresh 3 Select the combined static Voice VLAN and conflict 4 Click the Refresh to refresh a entry of the MVR Statistics Information Figure 3 14 1...

Page 120: ...e Refresh Refresh the QCL information manually 3 14 12 Storm Control The section shows how to configure the Storm control of the switch There is a unicast storm rate control multicast storm rate contr...

Page 121: ...pensive to connect the equipment to main power supply 3 15 1 Configuration This page allows the user to inspect and configure the current PoE port settings Figure 3 15 1 The PoE Configuration Paramete...

Page 122: ...PDs in total Local Port The logical port number for this row PD Class The class the of PDs that identify with a specified current The classification current describes the amount of power the PD will...

Page 123: ...ally Figure 3 15 4 The PoE Auto Checking Parameter description Ping Check Enable the ping check function to detect the connection between PoE port and powered device Port The logical port number for t...

Page 124: ...ower after a reboot of the PD The reboot time range is 3 to 120 seconds Buttons Apply Apply changes 3 15 5 Scheduling This page allows the user to make a schedule for the PoE power supply Scheduling m...

Page 125: ...ow Agent in the web interface 1 Click Configuration sFlow Agent Collector 2 Set the parameters 3 Scroll to IP Type to choice with IPv4 or IPv6 4 Click Apply to save the setting 5 If you want to cancel...

Page 126: ...nd out the sFlow samples to the receiver The value accepted is within the range of 200 1500 bytes The default is 1400 bytes Buttons Save Click to save changes Reset Click to undo any changes made loca...

Page 127: ...e counter sampling Buttons Edits the Data source sampler configuration Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Cancel Click to can...

Page 128: ...Protection Configuration GS 2310P Parameter description General Settings Enable Loop Protection Controls whether loop protections is enabled as a whole Transmission Time The interval between each loop...

Page 129: ...page displays the loop protection port status of the ports of the currently selected switch Web Interface To configure the Loop Protection parameters in the web interface 1 Click Configuration Loop Pr...

Page 130: ...Eliminate any specialized cables for stacking and remove the distance barriers that typically limit topology options when using other stacking technology Each single IP group consists of one master s...

Page 131: ...Easy Port provides a convenient way to save and share common configurations You can use it to enable features and settings based on the location of a switch in the network and for mass configuration...

Page 132: ...want the voice has high priority then you can set the value with 7 Port Security To scroll to enable or disable the Port Security function on the Port If you turn on the function then you need to set...

Page 133: ...affic received by Port B will be copied to Port A for monitoring Web Interface To configure the Mirror in the web interface 1 Click Configuration Mirroring 2 Select Port to mirror on which port 3 Scro...

Page 134: ...is limited to Disabled or Rx only Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values 3 21 Trap Event Severity The function is used to...

Page 135: ...ction is used to set a Alarm trap when the switch alarm then you could set the SMTP server to send you the alarm mail Web Interface To configure the SMTP in the web interface 1 Click Configuration SMT...

Page 136: ...ike to receive the alarm message Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values 3 23 UPnP UPnP is an acronym for Universal Plug a...

Page 137: ...ertisement messages Valid values are in the range 1 to 255 Advertising Duration The duration carried in SSDP packets is used to inform a control point or control points how often it or they should rec...

Page 138: ...chanical Version Serial Number Host IP Address Host Mac Address Device Port RAM Size and Flash Size 4 1 1 Information The switch system information is provided here To access the System Information in...

Page 139: ...BIOS in the switch Firmware version The firmware version in the switch Hardware Mechanical version The version of the electronic and the mechanical hardware The figure before the hyphen shows the ver...

Page 140: ...The first character must be an alpha character And the first or last character must not be a minus sign The allowed string length is 0 to 255 System Location The physical location of this node e g tel...

Page 141: ...tch provides manual and automatic ways to set the system time via NTP Manual setting is simple and you just enter Year Month Day Hour Minute and Second within the valid value range indicated in each i...

Page 142: ...ime the system time will be decreased one hour after one minute The switch supports a configurable day light saving time offset of up to 24 hours The zero for this parameter means it need not have to...

Page 143: ...to 5 The NTP s IPv4 or IPv6 address The IPv6 address in 128 bit records is represented as eight fields of up to four hexadecimal digits with a colon separating each field For example fe80 215 c5ff fe0...

Page 144: ...from 32 to 126 Password again You must type the same password again in this field Privilege Level The privilege level of the user The allowed range is 1 to 15 If the privilege level value is 15 he ca...

Page 145: ...MRP MVR MVRP Maintenance Mirroring POE Ports Private VLANs QoS SMTP SNMP Security Spanning Tree System Trap Event VCL VLANs Voice VLAN Web Interface To configure Privilege Level in the web interface...

Page 146: ...ation in the same condition it was sent Each device connected to a Local Area Network LAN or Wide Area Network WAN is given an Internet Protocol address and this IP address is used to identify the dev...

Page 147: ...the IP address of the SNTP Server in dotted decimal notation DNS Server Provide the IP address of the DNS Server in dotted decimal notation VLAN ID Provide the managed VLAN ID The allowed range is 1...

Page 148: ...6 address is in 128 bit records represented as eight fields of up to four hexadecimal digits with a colon separating each field For example fe80 215 c5ff fe03 4dc7 The symbol is a special syntax that...

Page 149: ...des are Enabled Enable server mode operation Disabled Disable server mode operation Server Address 1 and 2 Indicates the IPv4 host address of the syslog server 1 and server 2 For redundancy If the swi...

Page 150: ...of the system log entry Time The time of the system log entry Message The message of the system log entry Refresh Refresh the system log manually Clear Clear the system log manually 4 5 3 Detailed Lo...

Page 151: ...nt If you set the field SNMP Enable the SNMP agent will be started up All supported MIB OIDs including RMON MIB can be accessed via SNMP manager If the field SNMP is set Disable SNMP agent will be de...

Page 152: ...to configure SNMPv3 communities The Community and UserName is unique To create a new community account please click on the Add new community button and enter the account information and click on Save...

Page 153: ...rce address A particular range of source addresses can be used to restrict the source subnet when combined with source mask Source Mask Indicates the SNMP access source address mask 4 6 3 Users The fu...

Page 154: ...that the value is set correctly Authentication Password A string identifying the authentication password phrase For MD5 authentication protocol the allowed string length is 8 to 32 For SHA authentica...

Page 155: ...ame that this entry should belong to The allowed string length is 1 to 32 and the allowed content is ASCII characters from 33 to 126 4 6 5 Views The function is used to configure SNMPv3 view The entri...

Page 156: ...another view entry existing with view type as included and it s OID subtree should overstep the excluded view entry OID Subtree The OID defining the root of the subtree to add to the named view The al...

Page 157: ...NMPv2c usm User based Security Model USM Security Level Indicates the security model that this entry should belong to Possible security models are NoAuth NoPriv No authentication and no privacy Auth N...

Page 158: ...y and modify the detail parameters or click the delete button to delete the entry Figure 4 6 7 The SNMP Trap Host Configuration Parameters description Delete Check Delete entry then click the Save but...

Page 159: ...uthentication and no privacy Auth Priv Authentication and privacy Authentication Protocol You can choose MD5 or SHA for authentication Authentication Password The length of MD5 Authentication Password...

Page 160: ...5 1 1 Configuration This section describes how to configure IP Source Guard setting including Mode Enabled and Disabled Maximum Dynamic Clients 0 1 2 Unlimited To configure an IP Source Guard in the w...

Page 161: ...to 0 it means only allow the IP packets forwarding that are matched in static entries on the specific port Buttons Save Click to save changes Reset Click to undo any changes made locally and revert t...

Page 162: ...ve changes Reset Click to undo any changes made locally and revert to previously saved values 5 1 3 Dynamic Table The section describes how to configure the Dynamic IP Source Guard Table parameters of...

Page 163: ...f the switch 5 2 1 Configuration This section describes how to configure ARP Inspection including Mode Enabled and Disabled Port Enabled and Disabled To configure ARP Inspection in the web interface 1...

Page 164: ...on describes how to configure the Static ARP Inspection Table parameters of the switch To configure a Static ARP Inspection Table in the web interface 1 Click Add new entry 2 Specify the Port VLAN ID...

Page 165: ...MAC address and then by IP address To configure a Dynamic ARP Inspection Table Configuration in the web interface 1 Specify the Start from port VLAN ID MAC Address IP Address and entry per page 2 Che...

Page 166: ...ct Trusted of the specific port in the Mode of Port Mode Configuration 3 Click Apply Figure 5 3 1 The DHCP Snooping Configuration GS 2310P Parameter description Snooping Mode Indicates the DHCP snoopi...

Page 167: ...arameter description Rx and Tx Discover The number of discover option 53 with value 1 packets received and transmitted Rx and Tx Offer The number of offer option 53 with value 2 packets received and t...

Page 168: ...elay The section describes how to forward DHCP requests to another specific DHCP servers via DHCP relay The DHCP servers may be on another network 5 4 1 Configuration This section describes how to con...

Page 169: ...HCP relay operation mode is enabled Disabled Disable DHCP relay information mode operation Relay Information Policy Indicates the DHCP relay information option policy When DHCP relay information mode...

Page 170: ...rcuit ID The number of packets whose Circuit ID option did not match known circuit ID Receive Bad Remote ID The number of packets whose Remote ID option did not match known Remote ID Client Statistics...

Page 171: ...cording to IEEE 802 1X MAC based authentication system and port settings The NAS configuration consists of two sections system and port wide To configure the Network Access Server in the web interface...

Page 172: ...ermines the period in seconds after which a connected client must be reauthenticated This is only active if the Reauthentication Enabled checkbox is checked Valid values are in the range 1 to 3600 sec...

Page 173: ...tto setting determine whether RADIUS assigned QoS Class is enabled on that port When unchecked RADIUS server assigned QoS Class is disabled on all ports RADIUS Assigned VLAN Enabled RADIUS assigned VL...

Page 174: ...n as EAPOL EAP Over LANs frames EAPOL frames encapsulate EAP PDUs RFC3748 Frames sent between the switch and the RADIUS server are RADIUS packets RADIUS packets also encapsulate EAP PDUs together with...

Page 175: ...POL Response Identity frame sent by the supplicant An exception to this is when no supplicants are attached In this case the switch sends EAPOL Request Identity frames using the BPDU multicast MAC add...

Page 176: ...rt will be classified and switched on the RADIUS assigned VLAN ID If re authentication fails or the RADIUS Access Accept packet no longer carries a VLAN ID or it s invalid or the supplicant is otherwi...

Page 177: ...the port mode If an EAPOL frame is received the port will never be able to go back into the Guest VLAN if the Allow Guest VLAN if EAPOL Seen is disabled Port State The current state of the port It ca...

Page 178: ...ent for MAC based authentication Last ID The user name supplicant identity carried in the most recently received Response Identity EAPOL frame for EAPOL based authentication and the source MAC address...

Page 179: ...S has put the port in The field is blank if the Port VLAN ID is not overridden by NAS If the VLAN ID is assigned by the RADIUS server RADIUS assigned is appended to the VLAN ID Read more about RADIUS...

Page 180: ...MAC based Auth MAC Address For Multi 802 1X this column holds the MAC address of the attached supplicant For MAC based Auth this column holds the MAC address of the attached client Clicking the link...

Page 181: ...igure a RADIUS Authentication Server Configuration of AAA in the web interface 1 Check Enabled 2 Specify IP address or Hostname for Radius Server 3 Specify Authentication Port for Radius Server Defaul...

Page 182: ...ut interval is divided into 3 subintervals of equal length If a reply is not received within the subinterval the request is transmitted again This algorithm causes the RADIUS server to be queried up t...

Page 183: ...by checking this box IP Address Hostname The IP address or hostname of the RADIUS Accounting Server IP address is expressed in dotted decimal notation Port The UDP port to use on the RADIUS Accounting...

Page 184: ...the following values Disabled The server is disabled Not Ready The server is enabled but IP communication is not yet up and running Ready The server is enabled IP communication is up and running and...

Page 185: ...arentheses This state is only reachable when more than one server is enabled Auto refresh Activate the auto refresh to refresh the information automatically Refresh Refresh the RADIUS Status manually...

Page 186: ...input to an interface by limiting and identifying MAC addresses Web Interface To configure Limit Control in the web interface 1 Select Enabled in the Mode of System Configuration 2 Check Aging Enabled...

Page 187: ...desired consider the following scenario Suppose an end host is connected to a 3rd party switch or hub which in turn is connected to a port on this switch on which Limit Control is enabled The end hos...

Page 188: ...d Even if the link is physically disconnected and reconnected on the port by disconnecting the cable the port will remain shut down There are three ways to re open the port Boot the switch Disable and...

Page 189: ...nterface 1 Check Auto refresh Figure 5 7 2 The Port Security Switch Status Parameter description User Module Legend The legend shows all user modules that may request Port Security services User Modul...

Page 190: ...formation automatically Refresh Refresh the Port Security Switch Status information manually 5 7 3 Port Status This section shows the MAC addresses secured by the Port Security module Port Security is...

Page 191: ...h to refresh the information automatically Refresh Refresh the Port Security Port Status information manually 5 8 Access Management This section explains how to configure access management of the swit...

Page 192: ...in the entry SNMP Indicates that the host can access the switch from SNMP interface if the host IP address matches the IP address range provided in the entry TELNET SSH Indicates that the host can acc...

Page 193: ...efresh Activate the auto refresh to refresh the information automatically Refresh Refresh the Access Management Statistics information manually Clear Clear the statistics 5 9 SSH This section shows yo...

Page 194: ...ect Enabled in the Mode of HTTPS Configuration 2 Select Enabled in the Automatic Redirect of HTTPS Configuration 3 Click Apply Figure 5 10 1 The HTTPS Configuration Parameter description Mode Indicate...

Page 195: ...is disabled and login is not possible local use the local user database on the switch for authentication radius use a remote RADIUS server for authentication tacacs use a remote TACACS server for aut...

Page 196: ...Web Interface To restart the device 1 Click Restart Device 2 Click Yes Figure 6 1 1 Restart Device Parameter description Restart Device You can restart the switch on this page After restart the switc...

Page 197: ...witches restart 5 WARNING While the firmware is being updated Web access appears to be defunct The front LED flashes Green Off with a frequency of 10 Hz while the firmware update is in progress Do not...

Page 198: ...ion uploading a new firmware image to the device will automatically use the primary image slot and activate it The firmware version and date information may be empty for older firmware releases This d...

Page 199: ...art Configuration via the web interface 1 Click Save Start 2 Click Yes Figure 6 3 2 The Save as Start configuration Parameter description Buttons Save Click to save current configuration as Start Conf...

Page 200: ...Save Click to restore the Backup Configuration to the switch 6 4 Export Import This section describes how to export and import the Switch configuration Any current configuration file will be exported...

Page 201: ...escribes how to import the switch configuration for maintenance needs Any current configuration file will be imported via XML format Web Interface To import a configuration via the web interface 1 Cli...

Page 202: ...ow that whether the system is healthy or needs to be fixed The basic system check includes ICMP Ping ICMPv6 and VeriPHY Cable Diagnostics 6 5 1 Ping This section allows you to issue ICMP PING packets...

Page 203: ...eout occurs PING server 10 10 132 20 64 bytes from 10 10 132 20 icmp_seq 0 time 0ms 64 bytes from 10 10 132 20 icmp_seq 1 time 0ms 64 bytes from 10 10 132 20 icmp_seq 2 time 0ms 64 bytes from 10 10 13...

Page 204: ...onfigure the following properties of the issued ICMP packets 6 5 3 VeriPHY GS 2326 P only This section is used for running the VeriPHY Cable Diagnostics Press Start to run the diagnostics This will ta...

Page 205: ...Cable Status Port Port number Pair The status of the cable pair Length The length in meters of the cable pair 205 LANCOM GS 2310P GS 2326 P User Manual 6 Maintenance...

Page 206: ...An ACE can be associated with a Policy 1 ingress port or any ingress port the whole switch If an ACE Policy is created then that Policy can be associated with a group of ports under the Ports web pag...

Page 207: ...n be shared by those devices for a link C CC CC is an acronym for Continuity Check It is a MEP functionality that is able to detect loss of continuity in a network by transmitting CCM frames to a peer...

Page 208: ...format is vlan_id module_id port_no The parameter of vlan_id is the first two bytes represent the VLAN ID The parameter of module_id is the third byte for the module ID in standalone switch it always...

Page 209: ...rvers and browsers should take in response to various commands The other main standard that controls how the World Wide Web works is HTML which covers how Web pages are formatted and displayed Any Web...

Page 210: ...transport mail to an IMAP server The current version of the Internet Message Access Protocol is IMAP4 It is similar to Post Office Protocol version 3 POP3 but offers additional and more complex featu...

Page 211: ...management entity or entities The information distributed via this protocol is stored by its recipients in a standard Management Information Base MIB making it possible for the information to be acces...

Page 212: ...k Access Server The NAS is meant to act as a gateway to guard access to a protected source A client connects to the NAS and the NAS connects to another resource asking whether the client s supplied cr...

Page 213: ...ice The remote device is called a PD PHY PHY is an abbreviation for Physical Interface Transceiver and is the device that implement the Ethernet physical layer IEEE 802 3 PING ping is a program that s...

Page 214: ...or synchronizing the clocks of computer systems Q QCE QCE is an acronym for QoS Control Entry It describes QoS class associated with a particular QCE ID There are six QCE frame types Ethernet Type VLA...

Page 215: ...uence the message of any length Shaper A shaper can limit the bandwidth of transmitted frames It is located after the ingress queues SMTP SMTP is an acronym for Simple Mail Transfer Protocol It is a t...

Page 216: ...access control for routers network access servers and other networked computing devices via one or more centralized servers TACACS provides separate authentication authorization and accounting service...

Page 217: ...2 1Q frame It is also known as PCP V VLAN Virtual LAN A method to restrict communication between switch ports VLANs can be used for the following applications VLAN unaware switching This is the defaul...

Reviews:

No comments

Related manuals for GS-2310P

Accelerated 6330-MX User Manual preview
6330-MX
Brand: Accelerated Pages: 10
Accelerated 6300-CX Customer Setup Instructions preview
6300-CX
Brand: Accelerated Pages: 4
A10 Thunder Series Manual preview
Thunder Series
Brand: A10 Pages: 52
NetBurner MOD5272 Quick Start Manual preview
MOD5272
Brand: NetBurner Pages: 15
Abocom 802.11a/b/g SDIO WiFi Module SDM3100 User Manual preview
802.11a/b/g SDIO WiFi Module SDM3100
Brand: Abocom Pages: 14
LevelOne NetCon FBR-1409TX User Manual preview
NetCon FBR-1409TX
Brand: LevelOne Pages: 88
RuggedCom RuggedSwitch RS500 Installation Manual preview
RuggedSwitch RS500
Brand: RuggedCom Pages: 16
Cayman Systems 2E-H-W User Manual preview
2E-H-W
Brand: Cayman Systems Pages: 170
IBM Nways 2216 Service And Maintenance Manual preview
Nways 2216
Brand: IBM Pages: 168
Clas Ohlson AE222X1 Quick Start Manual preview
AE222X1
Brand: Clas Ohlson Pages: 4
Korenix JetNet 5720G-8P Series Quick Installation Manual preview
JetNet 5720G-8P Series
Brand: Korenix Pages: 52
Intellinet 560665 User Manual preview
560665
Brand: Intellinet Pages: 32
Adeunis RF COMFORT LwM2M User Manual preview
COMFORT LwM2M
Brand: Adeunis RF Pages: 68
Crestron C2N-NPA8 Operation Manual preview
C2N-NPA8
Brand: Crestron Pages: 40
Cambium Networks PTP 650 Installation Manual preview
PTP 650
Brand: Cambium Networks Pages: 39
Hitachi F1500 Hardware Manual preview
F1500
Brand: Hitachi Pages: 208
Hitachi AMS 2500 Getting Started Manual preview
AMS 2500
Brand: Hitachi Pages: 36
ADTRAN 1203086L1 Manual preview
1203086L1
Brand: ADTRAN Pages: 162

Brands by name

Popular brands

Load more brands