manualshive.com logo in svg

LevelOne FGP-1072, User Manual

The LevelOne FGP-1072 is a high-performance gigabit Ethernet switch designed for small to medium-sized businesses. Ensure optimal performance with the easy-to-follow User Manual, available for free download on our website. Maximize your network efficiency and productivity with the LevelOne FGP-1072. Download the manual from manualshive.com.

Share
Download
background image

 

52

 
3-2. DHCP Snooping   

 
 

 
 
 
 
 

 
 
 
 

 

 
 
Function name: 

Config 

Function description: 

The  addresses  assigned  to  DHCP  clients  on  unsecure  ports  can  be  carefully 
controlled using the dynamic bindings registered with DHCP Snooping. DHCP 
snooping  allows  a  switch  to  protect  a  network  from  rogue  DHCP  servers  or 
other  devices  which  send  port-related  information  to  a  DHCP  server.  This 
information can be useful in tracking an IP address back to a physical port.   

 

When  DHCP  servers  are  allocating  IP  addresses  to  the  clients  on  the  LAN, 
DHCP snooping can be configured on LAN switches to harden the security on 
the  LAN to  only  allow clients with specific IP/MAC  addresses to have access 
to the network. 

DHCP  snooping  is  a  series  of  layer  2  techniques.  It  works  with  information 
from a DHCP server to: 

 

Track the physical location of hosts.  

 

Ensure that hosts only use the IP addresses assigned to them.  

 

Ensure that only authorized DHCP servers are accessible.  

In short, DHCP snooping ensures IP integrity on a Layer 2 switched domain. 

With DHCP snooping, only a whitelist of IP addresses may access the network. 
The  whitelist  is  configured  at  the  switch  port  level,  and  the  DHCP  server 
manages  the  access  control.  Only  specific  IP  addresses  with  specific  MAC 
addresses on specific ports may access the IP network. 

DHCP snooping also stops attackers from adding their own DHCP servers to 
the network. An attacker could set up a server to wreak havoc in the network 
or even control it. 

 

  

Config 

Trust Group 

DHCP Snooping 

Lease List 

Counter 

Summary of Contents for FGP-1072

Page 1: ...i FGP 1072 8FE PoE 2GE Combo SFP L2 Managed Switch User Manual Ver 1 00 1206...

Page 2: ...y this warranty DISCLAIMER EXCEPT AS SPECIFICALLY PROVIDED ABOVE AS REQUIRED AS IS AND THE WARRANTIES AND REMEDIES STATED ABOVE ARE EXCLUSIVE AND IN LIEU OF ALL OTHERS ORAL OR WRITTEN EXPRESS OR IMPLI...

Page 3: ...LEVELONE OR ITS AUTHORIZED RESELLER BE LIABLE TO LICENSEE OR ANY THIRD PARTY FOR A ANY MATTER BEYOND ITS REASONABLE CONTROL OR B ANY CONSEQUENTIAL SPECIAL INDIRECT OR INCIDENTAL DAMAGES ARISING OUT OF...

Page 4: ...computing device pursuant to Subpart J of part 15 of FCC Rules which are designed to provide reasonable protection against such interference when operated in a commercial environment European Communit...

Page 5: ...e and Ethernet ports step by step Many explanation in detail of hardware and software functions are shown as well as the examples of the operation for web based interface and command line interface CL...

Page 6: ...System Information 38 3 1 2 IP Configuration 40 3 1 3 Time Configuration 43 3 1 4 Account Configuration 46 3 1 5 Management Security 47 3 1 6 Virtual Stack 50 3 2 DHCP SNOOPING 52 3 3 DHCP RELAY 57 3...

Page 7: ...19 CONFIGURATION 152 3 19 1 Save Restore 153 3 19 2 Config File 156 3 20 SECURITY 157 3 21 BANDWIDTH MANAGEMENT 159 3 22 QOS QUALITY OF SERVICE CONFIGURATION 163 3 23 ACL 166 3 24 POE 176 3 25 DIAGNO...

Page 8: ...for DHCP broadcast messages to be sent over routers that do not support forwarding of these types of messages The DHCP Relay Agent is therefore the routing protocol that enables DHCP clients to obtai...

Page 9: ...pport allowed denied forwarding and port security with MAC address SNMP RMON SNMP agent and RMON MIB In the device SNMP agent is a client software which is operating over SNMP protocol used to receive...

Page 10: ...ule supporting 100 1000M SFP fiber module Supports on line pluggable fiber transceiver modules Supports 256KB packet buffer and 128KB control memory Maximal packet length can be up to 1536 bytes It su...

Page 11: ...t UI for the user Supports port mirror function with ingress egress traffic Supports rapid spanning tree 802 1w RSTP Supports 802 1x port security on a VLAN Supports user management and only first log...

Page 12: ...fered for configuration or management LED display area locating on the front panel contains a CPURUN Power LED and 10 ports working status of the switch Fig 1 1 Full View Fig 1 2 Front View of FGP 107...

Page 13: ...esent PoE Green Lit when PoE Power is active 1000SX LX Gigabit Fiber Port 7 8 LED LNK Green Lit when connection with remote device is good Off when cable connection is not good FB Green Lit when Fiber...

Page 14: ...detected function 1000Mbps SFP Fiber transceiver is used for high speed connection expansion the following are optional SFP types provided for the switch Model No Description GVT 0300 Multi mode SFP...

Page 15: ...no modules please skip this section Connecting the SFP Module to the Chassis The optional SFP modules are hot swappable so you can plug or unplug it before or after powering on 1 Verify that the SFP m...

Page 16: ...eeded for each RJ 45 port to be connected to a Gigabit 10 100 1000 TP device Now you can start having the switch in operation Power On The switch supports 100 240 VAC 50 60 Hz power supply The power s...

Page 17: ...w the mounting accessory to the front side of the switch See Fig 2 2 Place the Chassis into the 9 inch wiring closet rail and locate it at the proper position Then fix the Chassis by screwing it 2 1 3...

Page 18: ...nto several classes by the distance it supports They are SX LX LHX XD and ZX From the viewpoint of connector type there mainly are LC and BiDi SC Gigabit Fiber with multi mode LC SFP module Gigabit Fi...

Page 19: ...it Time unit 0 01 s 1sec 100 Mega bit Table 2 2 Sum up all elements bit time delay and the overall bit time delay of wires devices must be within Round Trip Delay bit times in a half duplex network se...

Page 20: ...practical deployment especially in physical location The following diagram shows how it works and what the difference they are Case2a Port based VLAN See Fig 2 4 1 The same VLAN members could not be...

Page 21: ...embers but they could access VLAN4 members 3 VLAN3 members could not access VLAN1 VLAN2 and VLAN4 4 VLAN4 members could not access VLAN1 and VLAN3 members but they could access VLAN2 members Case3a Th...

Page 22: ...itor and configure the switch You can touch them through the following procedures Section 2 1 4 1 Configuring the Management Agent of FGP 1072 through the Serial RS 232 Port Section 2 1 4 2 Configurin...

Page 23: ...ails on Null Modem Cable Specifications 2 Attaches the DB 9 female cable connector to the male serial RS 232 DB 9 connector on the switch 3 Attaches the other end of the serial RS 232 DB 9 cable to PC...

Page 24: ...address 192 168 1 1 to 10 1 1 1 and set the subnet mask to be 255 255 255 0 Then choose your default gateway maybe it is 10 1 1 254 Default Value FGP 1072 Your Network Setting IP Address 192 168 1 1...

Page 25: ...the switch Then follow the procedures listed below 1 Set up a physical path between the configured the switch and a PC by a qualified UTP Cat 5 cable with RJ 45 connector Note If PC directly connects...

Page 26: ...predefined address classes or categories Each class has its own network range between the network identifier and host identifier in the 32 bits address Each IP address comprises two parts network iden...

Page 27: ...route and 127 0 0 0 8 is reserved for loopback function 0 Class B IP address range between 128 0 0 0 and 191 255 255 255 Each class B network has a 16 bit network prefix followed 16 bit host address T...

Page 28: ...t may have a subnet mask 255 255 0 0 in default in which the first two bytes is with all 1s This means more than 60 thousands of nodes in flat IP address will be at the same network It s too large to...

Page 29: ...2 510 22 1024 1022 21 2048 2046 20 4096 4094 19 8192 8190 18 16384 16382 17 32768 32766 16 65536 65534 Table 2 4 According to the scheme above a subnet mask 255 255 255 0 will partition a network with...

Page 30: ...e switch Use the same network address and append your host address to it Fig 2 12 First IP Address as shown in the Fig 2 12 enter 192 168 1 1 for instance For sure an IP address such as 192 168 1 x mu...

Page 31: ...itch please refer to Appendix A The switch is suitable for the following applications Central Site Remote site application is used in carrier or ISP See Fig 2 13 Peer to peer application is used in tw...

Page 32: ...32 Fig 2 15 Office Network Connection Fig 2 14 Peer to peer Network Connection...

Page 33: ...ser it will show the following screen see Fig 3 1 and ask you inputting username and password in order to login and access authentication The default username and password are both admin For the first...

Page 34: ...can only monitor the system For those who have no administrator s identity can only monitor the system There are only a maximum of three users able to login simultaneously in the switch To optimize t...

Page 35: ...oning Fig 3 2 The Information of Page Layout On the top side it shows the front panel of the switch In the front panel the linked ports will display green as to the ports which are link off they will...

Page 36: ...ving If you do not choose any selection in Auto Logout list it means you turn on the Auto Logout function and the system will be logged out automatically when no action on the device 3 minutes later I...

Page 37: ...Loop Detection System DHCP Relay Port SNMP LLDP Root VLAN MAC Table GVRP STP MSTP Trunk 802 1X Alarm Configuration Security Bandwidth QoS PoE ACL Diagnostics TFTP Server Syslog Multicast DHCP Boot Log...

Page 38: ...hernet PoE Switch 2 TP SFP Gigabit Dual Media Location Basically it is the location where this switch is put User defined Contact For easily managing and maintaining device you may write down the cont...

Page 39: ...cal The figure before the hyphen is the version of electronic hardware the one after the hyphen is the version of mechanical Serial number The number is assigned by the manufacturer Host IP address Th...

Page 40: ...arameter description DHCP Setting DHCP is the abbreviation of Dynamic Host Configuration Protocol Here DHCP means a switch to turn ON or OFF the function The switch supports DHCP client used to get an...

Page 41: ...Network address Subnet mask number and host address It is shown in the following figure This reduces the total IP number of a network able to support by the amount of 2 power of the bit number of sub...

Page 42: ...specify a DNS IP address for the switch With this the switch can translate a mnemonic name address into an IP address There are two ways to specify the IP address of DNS One is fixed mode which manual...

Page 43: ...nction to adjust the time manually Filling the valid figures in the fields of Year Month Day Hour Minute and Second respectively and press Apply button time is adjusted The valid figures for the param...

Page 44: ...one hour The zero for this parameter means it need not have to adjust current time equivalent to in act daylight saving You don t have to set the starting ending date as well If you set daylight savi...

Page 45: ...45 Fig 3 5...

Page 46: ...his password only Please note that you must confirm administrator guest identity in the field of Authorization in advance before configuring the username and password Only one administrator is allowed...

Page 47: ...n inside of the accepting range Accept Deny Accept Deny Accept Rule 3 When only deny lists exist then it will accept all connections excluding the connection inside of the denying range Deny Accept De...

Page 48: ...he port that the user is allowed or not allowed to connect with the switch or the way of controlling and connecting to the switch via Http Telnet or SNMP Fig 3 7 Parameter description Name A name is c...

Page 49: ...aged valid Action Type including Deny and Accept Default is Deny When you choose Deny action you will be restricted and refused to manage the switch due to the Access Type you choose However while you...

Page 50: ...in the same window without the login of these device The most top left button is only for Master device See Fig 3 8 The background color of the button you press will be changed to represent that the d...

Page 51: ...ble Role The role that the switch would like to play in virtual stack Two types of roles including master and slave are offered for option Default is Master Group ID It is the group identifier GID whi...

Page 52: ...ave access to the network DHCP snooping is a series of layer 2 techniques It works with information from a DHCP server to Track the physical location of hosts Ensure that hosts only use the IP address...

Page 53: ...ig 3 9 Parameter description State It is used for the activation or de activation of DHCP snooping Default is disable Per Port Client Count Setup It is used for per port client count setup Default is...

Page 54: ...CP Option 82 function on the switch Default is disabled Action It set the switch when received a client DHCP request packet then action for filtering available action keep drop replace Trust VID It se...

Page 55: ...ed then the packet will only be forwarded if the client s hardware address stored in the DHCP packet is the same as the source MAC address in the Ethernet header If the DHCP packet is not a recognizab...

Page 56: ...ess Port To show the DHCP snooping client s port VID To show the DHCP snooping client s VLAN ID Lease To show the DHCP snooping client s lease Day Hour Min Sec Function name DHCP Snooping Counter Func...

Page 57: ...er on a remote subnet or which is not located on the local subnet If you have no configured DHCP Relay Agent your clients would only be able to obtain IP addresses from the DHCP server which is on the...

Page 58: ...state Enables the system to insert the DHCP relay agent information option 82 in forwarded BOOT REQUEST messages to a DHCP server Default is Disable sec DHCP Relay Agent Information Option 82 Policy...

Page 59: ...he access by dropping its packet Function name IP MAC Binding Configuration Function description The switch has client and server two classes of IP MAC Binding table The maximum number of IP MAC bindi...

Page 60: ...e the entry then you need to click the icon to delete it Name A name is composed of any letter A Z a z and digit 0 9 with maximal 8 characters MAC Six byte MAC Address xx xx xx xx xx xx For example 00...

Page 61: ...entry into the IP MAC Binding table and Input name MAC IP Port and Binding Method Edit The existed entry also can be modified after pressing Edit button Delete Select one of entry from the table then...

Page 62: ...by the order of port number media link status port state Auto Negotiation status speed duplex Rx Pause and Tx Pause An extra media type information for the module ports 9 and 10 is also offered See Fi...

Page 63: ...ort State is configured by user Default Enabled Auto Nego Show the exchange mode of Ethernet MAC There are two modes supported in the switch They are auto negotiation mode Enabled and forced mode Disa...

Page 64: ...frame If it shows on the port will care the PAUSE frame otherwise the port will ignore the PAUSE frame Default None Tx Pause It decides that whether the port transmits the PAUSE frame or not If it sh...

Page 65: ...r Vendor P N Display the product name of the naming by module manufacturer Vendor Rev Revision Display the module revision Vendor SN Serial Number Show the serial number assigned by the manufacturer D...

Page 66: ...parameters for each port They are State Speed Duplex and Flow Control Parameter description State Set the communication capability of the port is Enabled or Disabled When enabled traffic can be transm...

Page 67: ...default value In Forced mode default value depends on your setting Flow Control There are two modes to choose in flow control including Symmetric and Asymmetric If flow control is set Symmetric both...

Page 68: ...Port Function name Description Function description To type the port alias for port description Identify the port property and what is the port purpose Fig 3 19 Parameters description Port No Display...

Page 69: ...r The valid range is 3 to 10 seconds The Refresh Interval is used to set the update frequency Default update time is 3 seconds Fig 3 20 Function name Simple Counter Function description Display the su...

Page 70: ...he figures displayed about the port you had chosen Each data field has 20 digit long If the counting is overflow the counter will be reset and restart counting The data is updated every time interval...

Page 71: ...Counters Tx Collisions Number of collisions transmitting frames experienced Tx Single Collision Number of frames transmitted that experienced exactly one collision Tx Multiple Collision Number of fra...

Page 72: ...tted bytes Tx Unicast Packets Show the counting number of the transmitted unicast packet Tx Broadcast Packets Show the counting number of the transmitted broadcast packet Tx Multicast Packets Show the...

Page 73: ...ion Fig 3 22 Parameter description Port No Display the port number The number is 1 10 State Disable Enable When Port No is chosen and enable port s Loop detection the port can detect loop happens When...

Page 74: ...e field SNMP Enable SNMP agent will be started up All supported MIB OIDs including RMON MIB can be accessed via SNMP manager If the field SNMP is set Disable SNMP agent will be de activated the relate...

Page 75: ...SET private Default community name for Trap public Default Set function Enable Default trap host IP address 0 0 0 0 Default port number 162 Trap In the switch there are 6 trap hosts supported Each of...

Page 76: ...sses the broadcast storm while all devices are at booting stage in the same time The maximum user defined delay time is 30 sec If DHCP Broadcasting Suppression function is enabled the delay time is se...

Page 77: ...etween IP Multicast Router Switch and IP Multicast Host can update the information of the Multicast table when a member port joins or leaves an IP Multicast Destination Address With this function once...

Page 78: ...tion which contains the multicast member list with the multicast groups VID and member port Fig 3 9 2 Parameter description IGMP Proxy mode selection Unregistered Multicast Flooding The switch support...

Page 79: ...Query Count on Switch Available value 1 10 times Specific Query Max Response Time To set the specific Query Response Time field is used in specific or group specific query messages The Specific Maximu...

Page 80: ...member list with the multicast groups VID and member port Fig 3 9 3 Parameter description Host Time Out To set the IGMP Snooping enable and the Host packet received by Switch timeout period The unit i...

Page 81: ...AN Function name IGMP VLAN Function description Specify the a static connection to a multicast router for the VLAN Fig 3 9 4 Parameter description VID To Set specify the IGMP snooping VLAN ID for each...

Page 82: ...55 VID The switch supports two kinds of options for managed valid VLAN VID including Any and Custom Default is Any When you choose Custom you can fill in VID number The valid VID range is 1 4094 Port...

Page 83: ...splay the No multicast entry Fig 3 9 6 Parameter description Index No To display current built up multicast group entry index VID To display current built up multicast VLAN ID Multicast Group To displ...

Page 84: ...n MVR Fig 3 9 7 Parameter description Multicast VLAN Registration To Set the multicast VLAN registration function enable Multicast VLAN ID To Set the multicast VLAN ID Host Time Out To set the IGMP Sn...

Page 85: ...lid range is 224 0 0 0 239 255 255 255 MVID You can fill in MVID number The valid MVID range is 0 4094 Port You can select the ports that you would like them to be worked and restricted in the allowed...

Page 86: ...will display the No MVR multicast entry Fig 3 9 9 Parameter description Index No To display current built up multicast group entry index VID To display current built up multicast VLAN ID Multicast Gr...

Page 87: ...raffic affects not only targets directly intercepted by IP address but also targets intercepted by login name calling line identity MAC address and similar identities used by such protocols as RADIUS...

Page 88: ...ense It is not allowed for putting a blank between any two characters Default Radius To display current built up multicast VLAN ID Response Timeout A timeout condition in the exchange between the auth...

Page 89: ...3 10 1 Configuration Function name Configuration Function description The Configuration function you can set per port the LLDP configuration and the detail parameters the settings will take effect im...

Page 90: ...only Port Descr To evoke the outbound LLDP advertisements includes an alphanumeric string describing the port Sys Name To evoke the outbound LLDP advertisements includes the system s assigned name Sys...

Page 91: ...s ID which connect to the switch and what the neighbor Chassis ID Remote Port ID To display the Remote Port ID which connect to the switch and what the neighbor s remote port ID System name To display...

Page 92: ...ude a specific IP address in the outbound LLDP advertisements for specific ports Auto refresh Refresh the authenticator counters in the web UI automatically Refresh Click on the Refresh to update the...

Page 93: ...List Last Updated The time period which neighbor entries List were be updated Total Neighbors Entries Added The total neighbors entries added be received Total Neighbors Entries Deleted The total nei...

Page 94: ...r of the frames transmitted Rx Frames The counting number of the frames transmitted Frames Discarded Show the number of frame discarded TLVs Discarded Show the number of TLVs discarded TLVs Unrecogniz...

Page 95: ...you can choose one of them by pulling down list and pressing the Downward arrow key Then click Apply button the settings will take effect immediately Fig 3 29 Parameter description VLAN Mode Tag based...

Page 96: ...eceived packet is forwarded otherwise the received packet is dropped Note If Symmetric is enabled and port 1 for example receives an untagged packet the switch will apply the PVID of port 1 to tag thi...

Page 97: ...ch port groups a VLAN with Port 10 thus total 8 groups consisting of 2 members are formed 9 10 Except Port 9 and Port 10 each port of the switch cannot transmit packets with each other Each port group...

Page 98: ...e and VLAN ID after pressing Add button Fig 3 30 Parameter description VLAN Name The name defined by administrator is associated with a VLAN group Valid letters are A Z a z 0 9 and _ characters The ma...

Page 99: ...the check box beside the port No packets with this VID outgoing from this port will be untagged Finally press the Apply button to have the setting taken effect Fig 3 31 Delete Group Just press the De...

Page 100: ...ased VLAN with VID x For example if port x receives an untagged packet the switch will apply the PVID assume as VID y of port x to tag this packet the packet then will be forwarded as the tagged packe...

Page 101: ...o accept all frames Tagged and Untagged or just receive tagged frame If the former is the case then the packets with tagged or untagged will be processed If the later is the case only the packets carr...

Page 102: ...eter description VLAN Name The name defined by administrator is associated with a VLAN group Valid letters are A Z a z 0 9 and _ characters The maximal length is 15 characters Member This is used to e...

Page 103: ...Just press the Delete button to remove the selected group entry from the Port based group table Fig 3 36 Edit a group Just select a group entry and press the Edit button then you can modify a group s...

Page 104: ...name Management VLAN Function Description Fig 3 37 Parameter description State It works when the tag based mode is chosen When this function is enabled only the tagged packets with this VID can manag...

Page 105: ...ic or dynamic learning MAC entry and the state for the selected port Fig 3 38 Parameter description Port Select the port you would like to inquire Search Set up the MAC entry you would like to inquire...

Page 106: ...c MAC or Static MAC Function Name MAC Table Maintenance Function Description This function can allow the user to set up the processing mechanism of MAC Table An idle MAC address exceeding MAC Address...

Page 107: ...is used to configure MAC s real manners inside of the switch Three kinds of manners including static static with destination drop and static with source drop are contained in this function As static i...

Page 108: ...ile the SA of the incoming packets meets the value you set up these packets will be dropped Port Select the port No you would like to do setup in the switch It is 1 10 Function name MAC Alias Function...

Page 109: ...e As to MAC Alias Delete function is used to let you remove an alias name to a MAC address You can select an existed MAC address or alias name to remove Fig 3 42 Parameter description MAC Address It i...

Page 110: ...h the port port security will disable the port Fig 3 42 Parameter description You can select which port to enable the port security When you enable the port security then the switch port only forwardi...

Page 111: ...Add to create a new Static MAC address entry Fig 3 44 MAC Address It is a six byte long Ethernet hardware address and usually expressed by hex and separated by hyphens For example 00 11 6B D6 00 02 V...

Page 112: ...hese information to other GVRP aware devices to setup and update their knowledge database the set of VLANs associated with currently active members and through which ports these members can be reached...

Page 113: ...is Normal Non Participant It is Non Participant In this mode the switch does not send or reply any GARP messages It just listens messages and reacts for the received GVRP BPDU Default Registrar Mode T...

Page 114: ...into the static VLAN members dynamically Function name GVRP Counter Function description All GVRP counters are mainly divided into Received and Transmitted two categories to let you monitor the GVRP...

Page 115: ...DU is transmitted by the GVRP application Invalid GVRP Packets Number of invalid GARP BPDU is transmitted by the GVRP application LeaveAll Message Packets Number of GARP BPDU with Leave All message is...

Page 116: ...rrently VID VLAN identifier When GVRP group creates each dynamic VLAN group owns its VID Valid range is 1 4094 Member Port Those are the members belonging to the same dynamic VLAN group Edit Administr...

Page 117: ...ork 3 14 1 STP Status Function name STP Status Function description In the Spanning Tree Status user can read 12 parameters to know STP current status The 12 parameters description is listed in the fo...

Page 118: ...elay time is defined as the time spent from Listening state moved to Learning state or from Learning state moved to Forwarding state of a port in bridge Hello Time Show the current hello time of the r...

Page 119: ...2 1W Rapid STP function Enable Disable Default is Disable Bridge Priority The lower the bridge priority is the higher priority it has Usually the bridge with the highest bridge priority is the root If...

Page 120: ...e is set by root bridge only The forward delay time is defined as the time spent from Listening state moved to Learning state and also from Learning state moved to Forwarding state of a port in bridge...

Page 121: ...ording to 802 1w specification DISCARDING state indicates that this port can neither forward packets nor contribute learning knowledge Notice Three other states Disable state BLOCKING state and LISTEN...

Page 122: ...ot create bridging loops in the network This will expedite the convergence When the link on the edge port toggles the STP topology keeps unchanged Unlike the designate port or root port though an edge...

Page 123: ...the port sending out an RSTP BPDU instead of a legacy STP BPDU at the next transmission The only benefit of this operation is to make the port quickly get back to act as an RSTP port Click M Check but...

Page 124: ...N environment can ensure a loop free data path for a group of vlans within an MSTI Redundant path and load balancing in vlan environment is also achieved via this feature A spanning tree instance call...

Page 125: ...a MSTP bridge Bridges participating in a common MST region must have the same Region Name and Revision Level Fig 3 52 Parameter description Region Name 0 32 characters A variable length text string e...

Page 126: ...ID Every spanning tree instance need to have a unique instance ID within 0 4095 Instance 0 CIST always exists and cannot be deleted Additional spanning instances MSTIs can be added or deleted At least...

Page 127: ...tree performance parameters per instance per port Instance Status Fig 3 57 To show the status report of a particular spanning tree instance Port Status Fig 3 58 To show the status report of all ports...

Page 128: ...internal spanning tree instances CIST Remaining Hops or MSTI Remaining Hops in the Spanning tree protocol message would decreased by one when the message is propagated to the neighboring bridge If the...

Page 129: ...lack of spanning tree connectivity It is set by a network administrator to prevent bridges external to a core region of the network influencing the spanning tree active topology possibly because those...

Page 130: ...e setting of the bridge itself Bridge Forward Delay It shows the Forward Delay setting of the bridge itself Bridge Max Hops It shows the Max Hops setting of the bridge itself Instance Priority Spannin...

Page 131: ...nd MSTIs are transparent to bridges outside this region CIST REGIONAL ROOT MAC Mac Address of the CIST regional root bridge CIST INTERNAL ROOT PATH COST Root path cost value from the point of view of...

Page 132: ...port MSTR master port The last 3 are possible port roles for a port to transit to FORWARDING state Path Cost Display currently resolved port path cost value for each port in a particular spanning tree...

Page 133: ...133 Same as mentioned in Port Config Restricted Tcn Same as mentioned in Port Config...

Page 134: ...n IEEE 802 3 MAC link Operating in half duplex mode Aggregate the ports with different data rates Static Trunk Ports using Static Trunk as their trunk method can choose their unique Static GroupID als...

Page 135: ...want to aggregate with any other port should choose this default setting LACP A port use LACP as its trunk method to get aggregated with other ports also using LACP Static A port use Static Trunk as i...

Page 136: ...n Port No We can regard an aggregator as a representative of a trunking group Ports with same Group ID and using same trunking method will have the opportunity to aggregate to a particular aggregator...

Page 137: ...egator port Function name LACP Detail LACP Aggregator Detailed Information Function description Show the detailed information of the LACP trunking group Fig 3 61 Parameter description Actor The switch...

Page 138: ...upports LACP will be assigned a globally unique System Identifier for this purpose A system ID is a 64 bit field comprising a 48 bit MAC Address and 16 bit priority value Fig 3 62 Parameter descriptio...

Page 139: ...nt It is an entity being authenticated by an authenticator It is used to communicate with the Authenticator PAE Port Access Entity by exchanging the authentication message when the Authenticator PAE r...

Page 140: ...d C is in the internal network D is Authentication server running RADIUS switch at the central location acts Authenticator connecting to PC A and A is a PC outside the controlled port running Supplica...

Page 141: ...replies an EAP Response Identity to the authenticator The authenticator will embed the user ID into Radius Access Request command and send it to the authentication server for confirming its identity...

Page 142: ...the type of authentication supported in the switch In this mode for the devices connected to this port once a supplicant is authorized the devices connected to this port can access the network resourc...

Page 143: ...n t Care Port Authorized Table 3 3 Function name 802 1x State Setting Function description This function is used to configure the global parameters for RADIUS authentication in 802 1x port security ap...

Page 144: ...s Accounting Service To enable or disable the accounting function Accounting Server 1 and 2 Server IP Server Server IP address for authentication Default 192 168 1 1 UDP Port Default port number is 18...

Page 145: ...tion mode There are two options including Disable and Multi host mode Default is Disable Disable It will have the chosen port acting as a plain port that is no 802 1x port access control works on the...

Page 146: ...without the admittance of 802 1X authenticator The Port Status will show the following screen Port Number The port number to be chosen to show its 802 1X Port Status The valid number is Port 1 10 Por...

Page 147: ...bled reAuthPeriod max Request suppTimeout serverTimeout and Controlled direction Port Control This is used to set the operation mode of authorization There are three type of operation mode supported F...

Page 148: ...efault ON reAuthPeriod 1 65535 s A non zero number seconds between the periodic re authentication of the supplicant Default 3600 max Request 1 10 The maximum of number times that the authenticator wil...

Page 149: ...p information while pre defined trap events occurred The switch offers 21 different trap events to users for switch management The trap information can be sent out in two ways including email and trap...

Page 150: ...Alarm configuration is used to configure the persons who should receive the alarm message via either email or both It depends on your settings An email address or a mobile phone number has to be set...

Page 151: ...il Mail Server the IP address of the server transferring your email Username your username on the mail server Password your password on the mail server Email Address 1 6 email address that would like...

Page 152: ...address the IP address will restore to default 192 168 1 1 as you use it The other is the function of Restore Default Configuration without changing current IP address the IP address will keep the sa...

Page 153: ...ation Function description Save the current configuration as a start configuration file in flash memory Fig 3 73 Function name Save As User Configuration Function description Save the current configur...

Page 154: ...e IP address of the switch will also be restored to 192 168 1 1 Fig 3 75 Function name Restore Default Configuration excludes current IP address Function description Restore Default Configuration func...

Page 155: ...n function can retrieve the previous confirmed working configuration stored in the flash memory to update start configuration When completing to restore the configuration the system s start configurat...

Page 156: ...always the same After firmware upgrade the switch will remove the configuration automatically to latest firmware version Fig 3 78 Parameter description Export File Path Export Start Export Save As St...

Page 157: ...or the activation or de activation of Port Mirror function Default is disable Monitoring Port Set up the port for monitoring Valid port is Port 1 10 and default is Port 1 Monitored Ingress Port Set up...

Page 158: ...o immediately find and solve the port that results in the occurrence of looping problems in the network Fig 3 80 Parameter description Mode Used for the activation or de activation of Isolated Group f...

Page 159: ...Valid range of the port is 1 10 Rate Set up the limit of Ingress bandwidth for the port you choose Incoming traffic will be discarded if the rate exceeds the value you set up in Data Rate field Pause...

Page 160: ...nge of the port is 1 10 Rate Set up the limit of Egress bandwidth for the port you choose Packet transmission will be delayed if the rate exceeds the value you set up in Data Rate field Traffic may be...

Page 161: ...rol BC Broadcast Storm Control Enable the function of bandwidth storm control for broadcast packets UC Unknown Unicast Storm Control Enable the function of bandwidth storm control for unknown unicast...

Page 162: ...lticast Storm Control Enable the function of bandwidth storm control for Unknown Unicast and multicast Storm packets in transmission BC UC MC Broadcast Unknown Unicast Multicast Storm Control Enable t...

Page 163: ...eduling WRR Weighted Round Robin and Strict Priority as well When you finish to set the priority mapping to the queue WRR scheduling will distribute the bandwidth according to the weight you set for 4...

Page 164: ...eration Weight 1 55 Over here you can make an arrangement to Weight values of Queue 0 to Queue 3 The range of Weight you can set is 1 55 In default the weight of Queue 0 is 1 the weight of Queue 1 is...

Page 165: ...modate a set of differentiated services DS Under the differentiated services interpretation the first six bits comprise a codepoint which is sometimes abbreviated DSCP and the last two bits are left u...

Page 166: ...he ACL rules with the top priority The High ACL rules will give the top priority against the other access control rules The Low ACL List rule When you set on the switch it will apply the ACL rules whi...

Page 167: ...rule on switch You must configure the parameters what described later when you add the new access control rule Edit Show To modify or monitor the access control configuration rule on switch Delete To...

Page 168: ...characters Ingress Port Map To evoke the ingress ports to join the access control rule port number is 1 10 or all MAC DA SA To input the source and destination MAC filter For example 00 40 c7 00 00 01...

Page 169: ...Type bar and option any IPv4 ARP and Specific for ACL requirement Any It is including all frame type IPv4 It is including all IPv4 protocol frame type ARP It is including all ARP protocol frame type...

Page 170: ...ACLs the parameters shown as below Protocol To droll the bar and you can elect Any ICMP UDP TCP and Other Fig 3 93 IPv4 TOS To droll the bar and you can elect Any and Specific If you click Specific t...

Page 171: ...254 and TTL 255 and set the Time to live value range Fig 3 81 IPv4 DA SA To droll the bar and you can elect Any HOST and Network Fig 3 82 L4 Destination port To droll the bar and you can elect Any and...

Page 172: ...or In Out Band In Band Out Band Forward Decision To droll down the bar to elect No change Use new forward map ORed with new map and Explicit actions Use new forward map When the packet is in band then...

Page 173: ...173 Fig 3 85 Fig 3 86 Fig 3 87...

Page 174: ...down the bar to elect Any and Specific If you click the Specific then you need to set 802 1p value in the field default is 0 Fig 3 90 Modify Packet QOS To droll down the bar to elect Any and Specific...

Page 175: ...175 Fig 3 91 Rate Meter To set rate meter function with the bandwidth parameter The range is 64 to 1024000kbps Fig 3 92...

Page 176: ...Class of the PD and it will stop supplying the power once the power required by the PD excesses the Class Short Circuit or over temperature occurs Fig 3 92 1 PoE Configuration Parameter description P...

Page 177: ...Low and High Default is Normal The switch will stop supplying the power to the port based on the order of the priority Low Normal High in case total power required by all PDs linked to the switch exc...

Page 178: ...il To scroll and select the Enable or Disable Send Mail function Port No To display the Port Index the maximum is 24 Ping IP Address To set up the PD s IP address which you need to check it is alive I...

Page 179: ...lure and switch action command The values are Nothing and Reboot Remote PD Nothing The switch detects that PD occurs failure and do nothing Reboot Remote PD The switch detect that PD occurs failure an...

Page 180: ...provides user to appoint date and time Enable or Disable PoE function switch can with according to the time when is set up carry on the designated movements Web Smart Switch NTP only supports IP addre...

Page 181: ...schedule mode with Enable or Disable The default is Disable Select all To select all date and time to enable the PoE function Hour Day To evoke what time to enable the PoE function Sunday Saturday To...

Page 182: ...will be described in detail orderly in the following sections Function name Diag Function description Diagnostics function provides a set of basic system diagnosis It let users know that whether the s...

Page 183: ...failed If they all are ok it just shows OK Note Whatever you choose Internal Loopback Test or External Loopback Test these two functions will interfere with the normal system working and all packets...

Page 184: ...name Auto Ping Function description Auto Ping function is a tool for detecting if the target device is alive or not through ICMP protocol which abounds with report messages The switch provides auto P...

Page 185: ...tion description Cable function is a tool for detecting if the cable per port status is OK or not report messages The switch provides cable Test function to let you know that if the cable connect to a...

Page 186: ...rver Function description Set up IP address of TFTP server Parameter description Specify the IP address where the TFTP server locates Fill in the IP address of your TFTP server then press Apply button...

Page 187: ...It is supported by a wide variety of devices and receivers across multiple platforms Function name Syslog Function description The Syslog allows you to configure the syslog server address and enable d...

Page 188: ...The Trap Log Data is displaying the log items including all SNMP Private Trap events SNMP Public traps and user logs occurred in the system In the report table No Time and Events are three fields cont...

Page 189: ...hould be filled in 2 Specifying what the filename and where the file is You must specify full path and filename Then press Upgrade button if your download is not successful the switch will also be bac...

Page 190: ...oot to have the new configuration taken effect Here we are discussing is software reset for the reboot in the main menu Function name Reboot Function description Reboot the switch Reboot takes the sam...

Page 191: ...the system without the permission If you do not logout and exit the browser the switch will automatically have you logout Besides this manually logout and implicit logout you can pull down the Auto Lo...

Page 192: ...s Menu configure the parameters as below see the next section Baud rate 57600 Stop bits 1 Data bits 8 Parity N Flow control none 4 1 1 Login The command line interface CLI is a text based interface Us...

Page 193: ...193 Managed Switch FGP 1072 Login admin Password FGP 1072 Fig 4 1...

Page 194: ...help history logout save start save user restore default and restore user For more details please refer to Section 4 2 1 Command instructions reside in the corresponding modes are local commands The s...

Page 195: ...op mode Argument None Possible value None Example FGP 1072 alarm FGP 1072 alarm events FGP 1072 alarm events end FGP 1072 exit Syntax exit Description Back to the previous mode When you enter this com...

Page 196: ...e FGP 1072 ip FGP 1072 ip help Commands available Local commands disable dhcp Disable DHCP enable dhcp Enable DHCP and set dns auto or manual set dns Set dns set ip Set ip and gateway show Show IP Con...

Page 197: ...t total records up to 256 If optional argument is given the CLI would only show the last numbers of records given by the argument Argument show last number of history records optional Possible value 1...

Page 198: ...t IP address y n If you choose Y or y the IP address will restore to default 192 168 1 1 If you choose N or n the IP address will keep the same one that you had saved before If restoring default succe...

Page 199: ...tire startup configuration would replace as user defined one Argument None Possible value None Example FGP 1072 restore user Restoring Restore user configuration successfully Do you want to reboot the...

Page 200: ...ation as the user defined configuration When you enter this command the CLI would save your current configuration into the non volatile FLASH as user defined configuration Argument None Possible value...

Page 201: ...uthEnabled port range ebl Description A constant that define whether regular reauthentication will take place on this port Argument port range syntax 1 5 7 available from 1 to 26 ebl 0 OFF to disable...

Page 202: ...or Authentication Server The initial value of this timer is either suppTimeout or serverTimeout as determined by the operation of the Backend Authentication state machine Argument port range syntax 1...

Page 203: ...by the Backend Authentication state machine in order to determine timeout conditions in the exchanges between the Authenticator and the Supplicant or Authentication Server The initial value of this t...

Page 204: ...2 802 1X show mode 1 Disable 2 Disable 3 Disable 4 Disable 5 Disable 6 Disable 7 Disable 8 Disable 9 Disable 10 Advanced 802 1X 11 Disable 12 Disable 13 Disable 14 Disable 15 Disable 16 Disable Show p...

Page 205: ...ntax show security Description To display the authentication status of each port Argument None Possible value None Example FGP 1072 802 1x show security Port Mode Status 1 Disable 2 Disable 3 Disable...

Page 206: ...ate Syntax show state Description To display the Radius server configuration Argument None Possible value None Example FGP 1072 802 1x show state Radius Server 192 168 1 115 Port Number 1812 Secret Ke...

Page 207: ...word Argument name new account name Possible value name A string must be at least 5 character Example FGP 1072 account add aaaaa Password Confirm Password FGP 1072 account del Syntax del name Descript...

Page 208: ...aaaaa username password the length is from 5 to 15 Current username aaaaa bbbbb New password Confirm password Username changed successfully Password changed successfully show Syntax show Description...

Page 209: ...er user Syntax del server user Description To remove the server user account and password Argument None Possible value None Example FGP 1072 alarm email del server user set mail address Syntax set mai...

Page 210: ...tion To set up the account of the email server Argument username email server account Possible value None Example FGP 1072 alarm email set user admin show Syntax show Description To display the config...

Page 211: ...yntax del email range Description To disable the email of the events Argument range del the range of email syntax 1 5 7 available from 1 to 25 Possible value range 1 25 Example FGP 1072 alarm events d...

Page 212: ...ge of email syntax 1 5 7 available from 1 to 25 Possible value range 1 25 Example FGP 1072 alarm events set email 1 3 set trap Syntax set trap range Description To enable the trap of the events Argume...

Page 213: ...led 18 Tag based Vlan Enabled 19 Metro mode Vlan Enabled 20 Module Inserted 21 Module Removed 22 Dual Media Swapped 23 Looping Detected 24 IP MAC Binding Offered 25 IP MAC Binding Released v show alar...

Page 214: ...sabled 10 STP Enabled 11 LACP Disabled 12 LACP Enabled 13 LACP Member Added 14 LACP Port Failure 15 GVRP Disabled 16 GVRP Enabled 17 Port based Vlan Enabled 18 Tag based Vlan Enabled 19 Metro mode Vla...

Page 215: ...ble from 1 to 26 rate 64 1024000 Kb port 1 24 64 102400 Kb port 25 26 64 1024000 Kb Possible value range 1 to 26 rate 64 102400 Kb for port 1 24 64 1024000 Kb for port 25 26 Example FGP 1072 bandwidth...

Page 216: ...t ingress rate Syntax set ingress range rate Description To set up the ingress rate of the ports Argument range syntax 1 5 7 available from 1 to 26 rate 64 1024000 Kb port 1 24 64 102400 Kb port 25 26...

Page 217: ...Syntax set storm range type rate Description To set up the storm control of the ports Argument range syntax 1 5 7 available from 1 to 26 type 0 Disable 1 BC for broadcast storm 2 UC for unicast storm...

Page 218: ...2400 DISABLE 102400 23 102400 102400 DISABLE 102400 24 102400 102400 DISABLE 102400 25 1024000 1024000 DISABLE 1024000 26 1024000 1024000 DISABLE 1024000 FGP 1072 bandwidth show Syntax show Descriptio...

Page 219: ...2400 DISABLE 102400 18 19520 102400 DISABLE 102400 19 102400 102400 DISABLE 102400 20 102400 102400 BC UC 4992 21 102400 102400 DISABLE 102400 22 102400 102400 DISABLE 102400 23 102400 102400 DISABLE...

Page 220: ...rt successful export user conf Syntax export user conf Description To run the export user conf function Argument None Possible value None Example FGP 1072 config file export user conf Export successfu...

Page 221: ...le path and filename that user would like to export Argument filepath filepath and filename Possible value filepath filepath and filename Example FGP 1072 config file set export path log 21511 txt set...

Page 222: ...port Path and Filename log 21511 txt dhcp boot set Syntax set sec Description To set up the delay time for DHCP Boot Argument sec range syntax 0 1 30 The value 0 is to disable dhcp boot delay Possible...

Page 223: ...nction on switch Argument None Possible value None Example FGP 1072 diag autoping enable set Syntax set IP address interval times Description To set auto ping function on switch Argument IP address IP...

Page 224: ...toping show Auto Ping state Enabled IP address 192 168 1 22 Interval sec 100 Times 3 FGP 1072 diag autoping cable cable Syntax cable port Description To enable cable diagnostic function on switch Argu...

Page 225: ...al Loopback Test Argument None Possible value None Example FGP 1072 diag loopback Internal Loopback Test OK External Loopback Test Port 2 3 4 6 8 9 10 Fail FGP 1072 diag ping Syntax ping ip Descriptio...

Page 226: ...set upgrade path ddc_fgp1072_v6 09 img show Syntax show Description To display the information of tftp server and upgrade path and file name Argument None Possible value None Example FGP 1072 firmware...

Page 227: ...p enable group Syntax group group number Description To enter any of gvrp group for changing gvrp group setting You can change the applicant or registrar mode of existing gvrp group per port Argument...

Page 228: ...cipant Normal 4 Non Participant Normal 5 Non Participant Normal 6 Non Participant Normal 7 Normal Normal 8 Normal Normal FGP 1072 gvrp group 2 set registrar 1 5 fixed FGP 1072 gvrp group 2 show GVRP g...

Page 229: ...rbidden Description To set default registrar mode for each port Argument range port range syntax 1 5 7 available from 1 to 26 normal set registrar as normal mode fixed set registrar as fixed mode forb...

Page 230: ...7 20 60 1000 Normal Normal Enable 8 20 60 1000 Normal Normal Enable set timer Syntax set timer range join leave leaveall Description To set gvrp join time leave time and leaveall time for each port Ar...

Page 231: ...Disable 5 20 60 1000 Normal Normal Disable 6 20 60 1000 Normal Normal Disable 7 20 60 1000 Normal Normal Disable 8 20 60 1000 Normal Normal Disable show counter Syntax show counter port Description To...

Page 232: ...lue name hostname max 40 characters Example FGP 1072 hostname Company Company multicast add group filter Syntax add group filter vid start end port Description To add group filter function on switch A...

Page 233: ...om 1 to 4094 value Example FGP 1072 multicast add igmp vlan 3 FGP 1072 multicast show igmp vlan Index VID 1 1 2 2 3 3 deletegroup filter Syntax delete group filter vid index Description To delete grou...

Page 234: ...16 value start ip address format end ip address format port syntax 1 5 7 from 1 to 26 value Possible value vid from 1 to 4094 value index from 1 to 16 value start ip address format end ip address form...

Page 235: ...Snooping Enable Unregister Multicast Flooding Enable General Query Interval 125 General Query Max Response Time 10 General Query Timeout 11 Specific Query Count 2 Specific Query Max Response Time 1 Sp...

Page 236: ...general query max response time Argument sec from 1 to 10 value Possible value sec 1 to 10 Example FGP 1072 multicast set gnlqry response 5 set gnlqry timeout Syntax set gnlqry response sec Descriptio...

Page 237: ...gister Multicast Flooding Enable General Query Interval 20 General Query Max Response Time 5 General Query Timeout 15 Specific Query Count 2 Specific Query Max Response Time 1 Specific Query Timeout 2...

Page 238: ...quit set igmp router Syntax set igmp router port state Description To set igmp router port Argument port syntax 1 5 7 from 1 to 26 value state 0 non router 1 router Possible value port 1 to 26 state...

Page 239: ...e state 0 disable 1 enable mvid 1 to 4094 Example FGP 1072 multicast set mvr enable 1 3 set mvr tagging Syntax set mvr tagging port state Description To set mvr tagging function on switch Argument por...

Page 240: ...one 7 None 8 None v 9 None v 10 None v q to quit set mvr vid Syntax set mvr vid vid Description To set mvr vid on switch Argument vid from 1 to 4094 value Possible value vid from 1 to 4094 value Examp...

Page 241: ...Possible value port 1 to 26 type 0 None 1 Client 2 Router Example FGP 1072 multicast set mvrserv type 6 8 1 FGP 1072 multicast set mvrserv type 9 10 2 FGP 1072 multicast show mvr setting Multicast VL...

Page 242: ...lticast set specqry response 2 Specific Query Max Response Time must less than Specific Query Timeout FGP 1072 multicast set specqry response 1 set specqry timeout Syntax set specqry timeout time Desc...

Page 243: ...vid 1 to 4094 Example FGP 1072 multicast show group filtering 3 Index 1 Start Address 224 1 1 1 End Address 226 255 255 255 Port Member 10 11 FGP 1072 multicast show igmp setting Syntax show igmp sett...

Page 244: ...5 256 v 6 256 v 7 256 v 8 256 9 256 10 55 v q to quit show igmp vlan Syntax show igmp vlan Description To show igmp vlan on switch Argument none Possible value none Example FGP 1072 multicast show igm...

Page 245: ...r setting on switch Argument none Possible value none Example FGP 1072 multicast show mvr setting Multicast VLAN Registration Enable MMulticast VLAN ID 0 Port Service Type Tagging 1 None 2 None 3 None...

Page 246: ...HCP function and set DNS server via manual or auto mode Argument manual auto set DNS by using manual or auto mode Possible value manual auto manual or auto Example FGP 1072 ip enable dhcp manual set d...

Page 247: ...55 255 0 Gateway 192 168 1 253 Current IP Address 192 168 1 10 Current Subnet mask 255 255 255 0 Current Gateway 192 168 1 254 DNS Setting Manual DNS Server 0 0 0 0 show Syntax show Description To dis...

Page 248: ...auto upload Syntax disable auto upload Description To disable the auto upload function Argument None Possible value None Example FGP 1072 log disable auto upload enable auto upload Syntax enable auto...

Page 249: ...FGP 1072 log show Tftp Server 192 168 1 2 Auto Upload Enable 1 Thu Apr 03 14 45 17 2008 Login admin 2 Thu Apr 03 14 43 59 2008 Link Up Port 7 3 Thu Apr 03 14 43 56 2008 Link Down Port 7 4 Thu Apr 03...

Page 250: ...set up the mac alias entry Argument mac mac address format xx xx xx xx xx xx alias mac alias name max 15 characters Possible value mac mac address alias max 15 characters Example FGP 1072 mac table a...

Page 251: ...mple FGP 1072 mac table information search 7 00 d0 59 c5 92 c8 1 MAC Table List Alias MAC Address Port VID State client1 00 D0 59 C5 92 C8 7 1 Dynamic FGP 1072 mac table information show Syntax show D...

Page 252: ...set time to 0 as disable age out time Possible value time 10 1000000 seconds or 0 Example FGP 1072 mac table maintain set aging 300 set learning Syntax set learning port num Description To set up the...

Page 253: ...value None Example FGP 1072 mac table maintain show Mac table ageout time 300 seconds Port Dynamically learn limit 1 8191 2 8191 3 8191 4 8191 5 8191 port security disable Syntax disable Description...

Page 254: ...1 to 26 Example FGP 1072 mac table port security port 10 FGP 1072 mac table port security port 10 FGP 1072 mac table port security port 10 add 00 d0 59 c5 92 c8 2 FGP 1072 mac table port security por...

Page 255: ...4094 rule 0 to 2 port 1 to 26 Example FGP 1072 mac table static mac add 00 d0 59 c5 92 c8 1 1 8 FGP 1072 mac table static mac show MAC VID Forwarding Rule Port 1 00 D0 59 C5 92 C8 1 Static with Desti...

Page 256: ...ame Description To delete a management security entry Argument name management security entry name Possible value name management security entry name Example FGP 1072 management add set name Mary vid...

Page 257: ...Any Access Http Telnet SNMP Action Deny FGP 1072 management set action Syntax set action name act Description To setup action field of a management security entry Argument name management security ent...

Page 258: ...rgument name management security entry name ip1 start ip address 0 for any ip2 end ip address Possible value name management security entry name ip1 start ip address 0 for any ip2 end ip address Examp...

Page 259: ...te1 9 FGP 1072 management show 1 Name remote1 VID Any IP Range 192 168 1 33 192 168 1 34 Port 9 Access Any Action Deny FGP 1072 management set vid Syntax set vid name vid Description To setup vid fiel...

Page 260: ...ntax show Description To show management security entry Argument None Possible value None Example FGP 1072 management show 1 Name remote1 VID 300 IP Range 192 168 1 33 192 168 1 34 Port 9 Access Any A...

Page 261: ...state range Description To disable the communication capability of the port Argument range port range syntax 1 5 7 available from 1 to 10 Possible value range 1 10 Example FGP 1072 port disable state...

Page 262: ...ription 6 Engineer FGP 1072 port show description Port Description 0D 61 1 2 3 4 RDTeam 5 6 Engineer 7 8 sales 9 10 set flow control Syntax set flow control range symmetric asymmetric Description To s...

Page 263: ...nge 1 to 26 port speed auto 10 100 1000 port duplex full half Example FGP 1072 port set speed duplex 10 15 10 full FGP 1072 port show status asymmetric set 5 TP Up Enable Enable 100M Full ON OFF 6 TP...

Page 264: ...ode Symmetric 8 Enable Auto Mode Symmetric 9 Enable Auto Mode Asymmetric 10 Enable 10M Full Symmetric show detail counter Syntax show detail counter Description To display the detailed counting number...

Page 265: ...9 or 10 information Argument port available 9 10 Possible value port 9 10 Example FGP 1072 port show media 9 Port 9 Fiber Media Information Connector Type SFP Unknown or unspecified Fiber Type Reserve...

Page 266: ...e Example FGP 1072 port show simple counter Port 1 Tx Octets 2346780 Rx Octets 57965158 Tx Packets 28884 Rx Packets 65171 Tx Collisions 0 Rx Errors 0 Port 2 Tx Octets 0 Rx Octets 0 Tx Packets 0 Rx Pac...

Page 267: ...Possible value None Example FGP 1072 port show status Port Media Link State Auto Nego Speed Duplex Rx Pause Tx Pause 1 TP Down Enable Enable 2 TP Down Enable Enable 3 TP Down Enable Enable 4 TP Down E...

Page 268: ...e Example FGP 1072 qos disable 1p disable dscp Syntax disable dscp Description To disable IP DSCP qos Argument None Possible value None Example FGP 1072 qos disable dscp disable qos Syntax disable qos...

Page 269: ...ne Example FGP 1072 qos enable 1p enable dscp Syntax enable dscp Description To enable IP DSCP qos Argument None Possible value None Example FGP 1072 qos enable dscp enable qos Syntax enable qos Descr...

Page 270: ...syntax 1 2 or 2 5 7 available from 0 to 63 Possible value priority 0 to 63 Example FGP 1072 qos set dscp q0 2 q1 2 q2 2 q3 3 set pri tag Syntax set pri tag q0 priority q1 priority q2 priority q3 prio...

Page 271: ...ds or weight Argument method priority scheduling method 0 4 WRR 1 1 Strict 3 WRR 2 2 Strict 2 WRR 3 4 Strict wrr_0 to 3 weighted for every queue weighted range 1 55 Possible value method 0 3 wrr_0 to...

Page 272: ...und robin method weight wrr 0 1 wrr 1 1 wrr 2 8 wrr 3 16 weighted range 1 55 P0 63 Priority 0 63 Default mode Queue0 P0 15 Queue1 P16 31 Queue2 P32 47 Queue3 P48 63 DiffServ Queue DiffServ Queue DiffS...

Page 273: ...show priority tag 802 1p priority Global QoS mode Enable QoS Enable 802 1p Priority Enable ip diffserv classification Scheduling 4 WRR method weight wrr 0 2 wrr 1 8 wrr 2 11 wrr 3 11 weighted range 1...

Page 274: ...e isolated group Argument port isolated port range syntax 1 5 7 available from 0 to 10 set 0 as disabled Possible value port 0 to 10 Example FGP 1072 security isolated group set 2 4 7 FGP 1072 securit...

Page 275: ...nction of mirror Argument None Possible value None Example FGP 1072 security mirror enable set Syntax set spy ingress egress Description To set up the monitoring port and monitored ports of the mirror...

Page 276: ...irror Monitoring Port 9 Monitored Ingress Monitored Egress FGP 1072 security mirror show Syntax show Description To display the current setting status of mirror Argument None Possible value None Examp...

Page 277: ...is used for the activation snmp or set community Argument None Possible value None Example FGP 1072 snmp enable set community FGP 1072 snmp enable snmp set Syntax set get community community set set c...

Page 278: ...e None Example FGP 1072 snmp show SNMP Enable Get Community public Set Community private Enable Trap Host 1 IP Address 192 168 1 1 Port 162 Community public Trap Host 2 IP Address 0 0 0 0 Port 162 Com...

Page 279: ...rom 1 to 10 Possible value range 1 to 10 Example FGP 1072 stp Mcheck 1 8 disable Syntax disable Description To disable the function of STP Argument None Possible value None Example FGP 1072 stp disabl...

Page 280: ...fig 61440 2 20 15 set port Syntax set port range path cost priority edge_port admin p2p Description To set up the port information of STP Argument range syntax 1 5 7 available from 1 to 10 path cost 0...

Page 281: ...Hello Time 1 10 sec 2 Max Age 6 40 sec 20 Forward Delay 4 30 sec 15 Force Version RSTP show port Syntax show port Description To display the port information of STP Argument None Possible value None...

Page 282: ...1D Bridge Priority 61440 Designated Root 00 11 6B D8 09 1D Designated Priority 61440 Root Port 0 Root Path Cost 0 Current Max Age sec 20 Current Forward Delay sec 15 Hello Time sec 2 STP Topology Chan...

Page 283: ...ip port trap port Possible value ip syslog server ip port trap port Example FGP 1072 syslog set server 192 168 22 0 8 FGP 1072 syslog FGP 1072 syslog show syslog Enable Syslog Host IP 192 168 22 0 Po...

Page 284: ...tion description of the switch Argument location string length up to 40 characters Possible value location A b c d z and 1 2 3 etc Example FGP 1072 system set location Taipei show Syntax show Descript...

Page 285: ...up the IP address of tftp server Argument ip the IP address of tftp server Possible value ip tftp server IP Example FGP 1072 tftp set server 192 168 1 111 show Syntax show Description To display the...

Page 286: ...209 81 9 7 Timezone 8 Day light Saving 5 Hours Day light Saving Start Mth 10 Day 31 Hour 0 Day light Saving End Mth 12 Day 31 Hour 0 set manual Syntax set manual YYYY MM DD hh mm ss Description To se...

Page 287: ...time set ntp 192 168 2 22 8 Synchronizing 1 Synchronization success show Syntax show Description To show the time configuration including Current Time NTP Server Timezone Daylight Saving Daylight Savi...

Page 288: ...hash method Description To set up trunk hash method Argument method lacp hash method 0 DA and SA 1 SA 2 DA Note This hash method applies to both LACP and static trunk Possible value method 0 2 Exampl...

Page 289: ...regation control protocol group 1 3 active LACP passive active active set the LACP to active mode passive set the LACP to passive mode Possible value port range 1 to 10 method static or lacp group 1 3...

Page 290: ...acp detail Syntax show lacp detail aggtr Description To display the detailed information of the LACP trunk group Argument aggtr aggregator available from 1 to 10 Possible value aggtr 1 to 10 Example F...

Page 291: ...ssible value None Example FGP 1072 trunk show status Trunk Port Setting Trunk Port Status port Method Group Active LACP Aggtregator Status 1 None 0 Active 1 Ready 2 LACP 1 Active 2 3 LACP 1 Active 3 4...

Page 292: ...vlan del port group vlan 2 del tag group Syntax del tag group vid Description To delete the tag based vlan group Argument vid vlan ID available from 1 to 4094 Possible value vid 1 to 4094 Example FGP...

Page 293: ...ossible value port_range 1 to 10 Example FGP 1072 vlan disable drop untag 2 4 5 7 disable svl Syntax disable svl Description To enable Independent VLAN Learning Argument None Possible value None Examp...

Page 294: ...ble drop untag port_range Description To enable drop untag Argument port_range which port s you want to drop untagged frames Syntax 1 5 7 available from 1 to 10 Possible value port_range 1 to 10 Examp...

Page 295: ...isable 1 for enable vid vlan id from 1 to 4094 Possible value state 0 for disable 1 for enable vid 1 to 4094 Example FGP 1072 vlan set mgt vlan 1 33 FGP 1072 vlan show mgt vlan Management Vlan State E...

Page 296: ...able from 1 to 10 Possible value range 1 to 10 Example FGP 1072 vlan set port group vlan 1 2 5 6 10 set pvid Syntax set pvid port_range pvid default_priority Description To set vlan PVID and port prip...

Page 297: ...ed Possible value vid 1 to 4094 member_range 1 to 10 untag_range 0 to 10 Example FGP 1072 vlan set tag group 2 vlan 2 2 5 6 0 show config Syntax show config Description To display the current vlan mod...

Page 298: ...4 5 6 Untag show pvid Syntax show pvid Description To display pvid priority and drop untag result Argument None Possible value None Example FGP 1072 vlan show pvid Port PVID Priority Drop Untag 1 1 0...

Page 299: ...one Example FGP 1072 vs disable enable Syntax enable Description To enable the virtual stack Argument None Possible value None Example FGP 1072 vs enable set gid Syntax set gid gid Description To set...

Page 300: ...ster slave act as slave Possible value master slave master or slave Example FGP 1072 vs set role master show Syntax show Description To display the configuration of the virtual stack Argument None Pos...

Page 301: ...on ports are used on that Managed Switch Please check the uplink setup of the Managed Switch to verify the uplink function is enabled 3 The console interface cannot appear on the console port connecti...

Reviews:

No comments

Related manuals for FGP-1072

D-Link DGS-1024D - Switch Quick Installation Manual preview
DGS-1024D - Switch
Brand: D-Link Pages: 16
D-Link DGS-1016D - Switch User Manual preview
DGS-1016D - Switch
Brand: D-Link Pages: 44
D-Link DES-6000 Series Firmware Update Manual preview
DES-6000 Series
Brand: D-Link Pages: 3
D-Link DES-5024 - Switch Application Notes preview
DES-5024 - Switch
Brand: D-Link Pages: 2
D-Link DES-3828 - xStack Switch - Stackable Datasheet preview
DES-3828 - xStack Switch - Stackable
Brand: D-Link Pages: 3
D-Link DES-3550 User Manual preview
DES-3550
Brand: D-Link Pages: 192
D-Link DES-3326 Configuration Manual preview
DES-3326
Brand: D-Link Pages: 9
D-Link DES-3226L User Manual preview
DES-3226L
Brand: D-Link Pages: 110
D-Link DES-1026G User Manual preview
DES-1026G
Brand: D-Link Pages: 10
D-Link DES-1008D Manual preview
DES-1008D
Brand: D-Link Pages: 17
D-Link DES-1005P Quick Install Manual preview
DES-1005P
Brand: D-Link Pages: 4
D-Link DGS-1210-28P Manual preview
DGS-1210-28P
Brand: D-Link Pages: 9
D-Link DES-1024D Brochure preview
DES-1024D
Brand: D-Link Pages: 4
D-Link DGS-105 - Switch Datasheet preview
DGS-105 - Switch
Brand: D-Link Pages: 4
D-Link DES-1024D Quick Install Manual preview
DES-1024D
Brand: D-Link Pages: 2
D-Link des-1016a Quick Install Manual preview
des-1016a
Brand: D-Link Pages: 2
Pakedge SX-8P Quick Start Manual preview
SX-8P
Brand: Pakedge Pages: 24
Belkin F5U307 User Manual preview
F5U307
Brand: Belkin Pages: 12

Brands by name

Popular brands

Load more brands