Manufacture Corporation 94-1518PF User Manual Download Page 38 | Manualshive

Page: 38 / 280

background image

29



Floor :

Floor - Example: 4.



Room no. :

Room number - Example: 450F.



Place type :

Place type - Example: Office.



Postal community name :

Postal community name - Example: Leonia.



P.O. Box :

Post office box (P.O. BOX) - Example: 12345.



Additional code :

Additional code - Example: 1320300003.



Emergency Call Service:

Emergency Call Service (e.g. E911 and others), such as defined by TIA or NENA.



Emergency Call Service :

Emergency Call Service ELIN identifier data format is defined to carry the ELIN identifier as
used during emergency call setup to a traditional CAMA or ISDN trunk-based PSAP. This
format consists of a numerical digit string, corresponding to the ELIN to be used for
emergency calling.

Policies

Network Policy Discovery enables the efficient discovery and diagnosis of mismatch issues with
the VLAN configuration, along with the associated Layer 2 and Layer 3 attributes, which apply
for a set of specific protocol applications on that port. Improper network policy configurations
are a very significant issue in VoIP environments that frequently result in voice quality
degradation or loss of service.

Policies are only intended for use with applications that have specific 'real-time' network policy
requirements, such as interactive voice and/or video services.

The network policy attributes advertised are:

1. Layer 2 VLAN ID (IEEE 802.1Q-2003)

2. Layer 2 priority value (IEEE 802.1D-2004)

3. Layer 3 Diffserv code point (DSCP) value (IETF RFC 2474)

This network policy is potentially advertised and associated with multiple sets of application
types supported on a given port. The application types specifically addressed are:

1. Voice

2. Guest Voice

3. Softphone Voice

4. Video Conferencing

5. Streaming Video

6. Control / Signalling (conditionally support a separate network policy for the media types
above)

A large network may support multiple VoIP policies across the entire organization, and different

«
...
36
37
38
39
40
...
»

Summary of Contents for 94-1518PF

Page 1: ...8PF GUI User Guide 18 Ports Web Smart GbE PoE Switch Release A1 2017 Manufacture Corporation All rights reserved All brand and product names are trademarks or registered trademarks of their respective companies ...

Page 2: ...ge of general switch functions the Internet Protocol IP and Hypertext Transfer Protocol HTTP CONVENTIONS The following conventions are used throughout this manual to show information WARRANTY See the Customer Support Warranty booklet included with the product A copy of the specific warranty terms applicable to your Manufacture products and replacement parts can be obtained from your Manufacture Sa...

Page 3: ...ghbour 34 3 5 5 LLDP Statistics 38 3 6 UPNP 40 CHAPTER 4 PORT MANAGEMENT 42 4 1 PORT CONFIGURATION 42 4 2 PORT STATISTICS 45 4 3 SFP PORT INFO 49 4 4 ENERGY EFFICIENT ETHERNET 51 4 5 LINK AGGREGATION 52 4 5 1 Port 52 4 5 2 Aggregator View 54 4 5 3 Aggregation Hash Mode 56 4 5 4 LACP System Priority 58 4 6 LOOP PROTECTION 59 4 6 1 Configuration 59 4 6 2 Status 61 CHAPTER 5 POE MANAGEMENT 63 5 1 POE...

Page 4: ... 11 DSCP MAPPING 110 7 12 DSCP REMARKING 111 CHAPTER 8 SPANNING TREE 112 8 1 STATE 112 8 2 REGION CONFIG 114 8 3 INSTANCE VIEW 115 CHAPTER 9 MAC ADDRESS TABLES 122 9 1 CONFIGURATION 122 9 2 INFORMATION 125 CHAPTER 10 MULTICAST 127 10 1 IGMP SNOOPING 127 10 1 1 Basic Configuration 127 10 1 2 VLAN Configuration 130 10 1 3 Status 132 10 1 4 Group Information 134 10 1 5 IGMP SFM Information 136 10 2 M...

Page 5: ...13 3 RMON CONFIGURATION 197 13 3 1 Statistics 197 13 3 2 History 202 13 3 3 Alarm 206 13 3 4 Event 211 13 3 IEEE 802 1X 215 13 3 1 Configuration 215 13 3 2 Status 219 13 4 IP SOURCE GUARD 221 13 4 1 Configuration 221 13 4 2 Static Table 223 13 4 3 Dynamic Table 224 13 5 ARP INSPECTION 226 13 5 1 Configuration 226 13 5 2 VLAN Configuration 228 13 5 3 Static Table 229 13 5 4 Dynamic Table 231 13 6 P...

Page 6: ...R 17 MAINTENANCE 262 17 1 CONFIGURATION 262 17 1 1 Save startup config 262 17 1 2 Backup 264 17 1 3 Restore 265 17 1 4 Activate config 266 17 1 5 Delete config 267 17 2 RESTART DEVICE 268 17 3 FACTORY DEFAULTS 269 17 4 FIRMWARE 270 17 4 1 Firmware Upgrade 270 17 4 2 Firmware Selection 271 ...

Page 7: ...viii Revision History Release Date Revision Initial Release 2017 01 20 A1 ...

Page 8: ...ively It provides the ideal combination of affordability and capabilities for entry level networking includes small business or enterprise application and helps you create a more efficient better connected workforce 94 1518PF Web Smart Managed Switch provide 18 ports in a single device the specification is highlighted as follows L2 features provide better manageability security QoS and performance...

Page 9: ...ce Chapter 8 Spanning tree Chapter 9 MAC Address Tables Chapter 10 Multicast Chapter 11 MVR Chapter 12 DHCP Chapter 13 Security Chapter 14 Access Control Chapter 15 Event Notification Chapter 16 Diagnostics Chapter 17 Maintenance ...

Page 10: ...nd access authentication The default username is admin and password is empty For the first time to use please enter the default username and password and then click the Login button The login process now is completed In this login menu you have to input the complete username and password respectively the 94 1518PF will not give you a shortcut to username automatically This looks inconvenient but s...

Page 11: ...NOTE AS 94 1518PF the function enable dhcp so If you do not have DHCP server to provide ip addresses to the switch the Switch default ip 192 168 1 1 Figure 1 The login page ...

Page 12: ...gs such as password IP address date time system information According to the following procedure Step1 Change default password Configure new password and enter it again Figure 2 Change default password Step2 Set IP address Select obtain IP address via DHCP or Set IP address manually to set IP address ...

Page 13: ...te and time Enable Automatic data and time or select manually to set date and time Figure 2 Set date and time Step4 Set system information You can set some system information to this device such as System contact System name System location ...

Page 14: ...5 Figure 2 Set system information ...

Page 15: ...e location and the contact of the switch The switch system s contact information is provided here Web interface To configure System Information in the web interface 1 Click System and System Information 2 Write System Name Location Contact information in this page 3 Click Apply Figure 3 1 System Information Parameter description Model Name Displays the factory defined model name for identification...

Page 16: ...an alpha character And the first or last character must not be a minus sign The allowed string length is 0 to 128 Location The physical location of this node e g telephone closet 3rd floor The allowed string length is 0 to 128 and the allowed content is the ASCII characters from 32 to 1 Contact The textual identification of the contact person for this managed node together with information on how ...

Page 17: ... Subnet Mask Gateway 4 Select DNS Server 5 Click Apply Figure 3 2 1 The IP settings Parameter description IPv4 DHCP Client Enable Enable the DHCP client by checking this box If this option is enabled the system will configure the IPv4 address and mask of the interface using the DHCP protocol The DHCP client will announce the configured System Name as hostname to provide DNS lookup IPv4 Address The...

Page 18: ...sed Configured Explicitly provide the IP address of the DNS Server in dotted decimal notation From this DHCP interface Specify from which DHCP enabled interface a provided DNS server should be preferred From any DHCP interfaces The first DNS server offered from a DHCP lease to a DHCP enabled interface will be used Buttons Apply Click to save changes ...

Page 19: ... switch 3 Click Add Route then you can create new Route on the switch 4 Click Apply Figure 3 2 2 The advanced IP settings Parameter description IP Configuration DNS Server This setting controls the DNS name resolution done by the switch The following modes are supported No DNS server No DNS server will be used Configured Explicitly provide the IP address of the DNS Server in dotted decimal notatio...

Page 20: ... used The field may also be left blank if IPv4 operation on the interface is not desired IPv4 Mask The IPv4 network mask in number of bits prefix length Valid values are between 0 and 30 bits for a IPv4 address If DHCP is enabled this field is not used The field may also be left blank if IPv4 operation on the interface is not desired IPv6 Address The IPv6 address of the interface A IPv6 address is...

Page 21: ...e Next Hop VLAN Only for IPv6 The VLAN ID VID of the specific IPv6 interface associated with the gateway The given VID ranges from 1 to 4094 and will be effective only when the corresponding IPv6 interface is valid If the IPv6 gateway address is link local it must specify the next hop VLAN for the gateway If the IPv6 gateway address is not link local system ignores the next hop VLAN for the gatewa...

Page 22: ...y the IP interfaces the IP routes and the neighbour cache ARP cache status Web Interface To display the log configuration in the web interface 1 Click System IP Address and Status 2 Display the IP Configuration information Figure 3 2 3 The IP Status Parameter description IP Interfaces Interface ...

Page 23: ...s of the route Interface Show the name of the interface Neighbour cache IP Address Show the IP address of the entry Link Address Show the Link MAC address for which a binding to the IP address given exist DNS Server Type Show the address type of the entry This may be LINK or IPv4 IP Address Show the current address of the interface of the given type Interface Show the name of the interface Buttons...

Page 24: ...e indicated in each item Web Interface To configure Time in the web interface 1 Click System and System Time 2 Specify the Time parameter 3 Click Apply Figure 3 3 The time configuration Parameter description Time Configuration Clock Source There are two modes for configuring how the Clock Source from Select Local Settings Clock Source from Local Time Select NTP Server Clock Source from NTP Server ...

Page 25: ...ime duration to repeat the configuration every year Select Non Recurring and configure the Daylight Saving Time duration for single time configuration Default Disabled Recurring Configuration Start time settings Week Select the starting week number Day Select the starting day Month Select the starting month Hours Select the starting hour End time settings Week Select the ending week number Day Sel...

Page 26: ...orrect time The switch supports configurable time zone from 12 to 13 step 1 hour Default Time zone 8 Hrs Parameter description Server 1 to 6 Provide the NTP IPv4 or IPv6 address of this switch IPv6 address is in 128 bit records represented as eight fields of up to four hexadecimal digits with a colon separating each field For example fe80 215 c5ff fe03 4dc7 The symbol is a special syntax that can ...

Page 27: ...log server and Port number 3 Evoke the Syslog to enable it 4 Click Apply Figure 3 4 1 The System Log configuration Parameter description Mode Indicate the server mode operation When the mode operation is enabled the syslog message will send out to syslog server The syslog protocol is based on UDP communication and received on UDP port 514 and the syslog server will not send acknowledgments back se...

Page 28: ...19 Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 29: ... the system log entry The following level types are supported Debug debug level message Info informational message Notice normal but significant condition Warning warning condition Error error condition Crit critical condition Alert action must be taken immediately Emerg system is unusable Time It will display the log record by device time The time of the system log entry Message It will display t...

Page 30: ... Buttons Refresh Updates the system log entries starting from the current entry ID Clear Logs Clear all the system log entries Next Updates the system log entries turn to the next page Previous Updates the system log entries turn to the previous page ...

Page 31: ...area network principally wired Ethernet The protocol is formally referred to by the IEEE as Station and Media Access Control Connectivity Discovery specified in standards document IEEE 802 1AB 3 5 1 LLDP Configuration You can per port to do the LLDP configuration and the detail parameters the settings will take effect immediately This page allows the user to inspect and configure the current LLDP ...

Page 32: ...l value Valid values are restricted to 1 8192 seconds Tx Reinit When a port is disabled LLDP is disabled or the switch is rebooted an LLDP shutdown frame is transmitted to the neighboring units signaling that the LLDP information isn t valid anymore Tx Reinit controls the amount of seconds between the shutdown frame and a new LLDP initialization Valid values are restricted to 1 10 seconds LLDP Por...

Page 33: ...DP capabilities cover capabilities that are not part of the LLDP These capabilities are shown as others in the LLDP neighbors table If all ports have CDP awareness disabled the switch forwards CDP frames received from neighbor devices If at least one port has CDP awareness enabled all CDP frames are terminated by the switch NOTE When CDP awareness on a port is disabled the CDP information isn t re...

Page 34: ...over Ethernet PoE end points Inventory management allowing network administrators to track their network devices and determine their characteristics manufacturer software and hardware versions and serial or asset number This page allows you to configure the LLDP MED This function applies to VoIP devices which support LLDP MED Web Interface To configure LLDP MED 1 Click System LLDP and LLDP MED Con...

Page 35: ... is a critically important aspect of VoIP systems in general In addition it is best to advertise only those pieces of information which are specifically relevant to particular endpoint types for example only advertise the voice network policy to permitted voice capable devices both in order to conserve the limited LLDPU space and to reduce security and system integrity issues ...

Page 36: ...uding Network Connectivity Devices or other types of links Coordinates Location Latitude Latitude SHOULD be normalized to within 0 90 degrees with a maximum of 4 digits It is possible to specify the direction to either North of the equator or South of the equator Longitude Longitude SHOULD be normalized to within 0 180 degrees with a maximum of 5 digits It is possible to specify the direction to e...

Page 37: ...eighbourhood Neighbourhood block Street Street Example Poppelvej Leading street direction Leading street direction Example N Trailing street suffix Trailing street suffix Example SW Street suffix Street suffix Example Ave Platz House no House number Example 21 House no suffix House number suffix Example A 1 2 Landmark Landmark or vanity address Example Columbia University Additional location info ...

Page 38: ...r 3 attributes which apply for a set of specific protocol applications on that port Improper network policy configurations are a very significant issue in VoIP environments that frequently result in voice quality degradation or loss of service Policies are only intended for use with applications that have specific real time network policy requirements such as interactive voice and or video service...

Page 39: ... own IP Telephony handsets and other similar appliances supporting interactive voice services 4 Guest Voice Signalling conditional for use in network topologies that require a different policy for the guest voice signalling than for the guest voice media This application type should not be advertised if all the same network policies apply as those advertised in the Guest Voice application policy 5...

Page 40: ... by IEEE 802 1D 2004 A value of 0 represents use of the default priority as defined in IEEE 802 1D 2004 DSCP DSCP value to be used to provide Diffserv node behaviour for the specified application type as defined in IETF RFC 2474 DSCP may contain one of 64 code point values 0 through 63 A value of 0 represents use of the default DSCP value as defined in RFC 2475 Port Policies Configuration Every po...

Page 41: ...re is no device that supports LLDP in your network then the table will show No LLDP neighbour information found Parameter description Local Port The port on which the LLDP frame was received Chassis ID The Chassis ID is the identification of the neighbour s LLDP frames Port ID The Remote Port ID is the identification of the neighbour port Port Description Port Description is the port description a...

Page 42: ...plays the system description Management Address Management Address is the neighbour unit s address that is used for higher layer entities to assist discovery by the network management This could for instance hold the neighbour s IP address Buttons Figure 3 5 3 The LLDP Neighbor buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Cl...

Page 43: ... LLDP MED Neighbour information NOTE If there is no device that supports LLDP MED in your network then the table will show No LLDP MED neighbour information found Parameter description Port The port on which the LLDP frame was received Device Type LLDP MED Devices are comprised of two primary Device Types Network Connectivity Devices and Endpoint Devices LLDP MED Network Connectivity Device Defini...

Page 44: ...57 Discovery services defined in this class include LAN configuration device location network policy power management and inventory management LLDP MED Media Endpoint Class II The LLDP MED Media Endpoint Class II definition is applicable to all endpoint products that have IP media capabilities however may or may not be associated with a particular end user Capabilities include all of the capabilit...

Page 45: ...Cs or laptops 6 Video Conferencing for use by dedicated Video Conferencing equipment and other similar appliances supporting real time interactive video audio services 7 Streaming Video for use by broadcast or multicast based video content distribution and other similar applications supporting streaming video services that require specific network policy treatment Video applications relying on TCP...

Page 46: ...uto negotiation Auto negotiation identifies if MAC PHY auto negotiation is supported by the link partner Auto negotiation status Auto negotiation status identifies if auto negotiation is currently enabled at the link partner If Auto negotiation is supported and Auto negotiation status is disabled the 802 3 PMD operating mode will be determined the operational MAU type field value rather than by au...

Page 47: ... all counters Figure 3 5 5 The LLDP Statistics information Parameter description Global Counters Neighbour entries were last changed at It also shows the time when the last entry was last deleted or added It also shows the time elapsed since the last change was detected Total Neighbours Entries Added Shows the number of new entries added since switch reboot Total Neighbours Entries Deleted Shows t...

Page 48: ...tained within the table Entries are removed from the table when a given port s link is down an LLDP shutdown frame is received or when the entry ages out TLVs Discarded Each LLDP frame can contain multiple pieces of information known as TLVs TLV is short for Type Length Value If a TLV is malformed it is counted and discarded TLVs Unrecognized The number of well formed TLVs but with an unknown type...

Page 49: ...nt to cancel the setting then you need to click the Reset button 6 It will revert to previously saved values Figure 3 6 The UPnP Configuration Parameter description These parameters are displayed on the UPnP Configuration page Mode Indicates the UPnP operation mode Possible modes are Enabled Enable UPnP mode operation Disabled Disable UPnP mode operation When the mode is enabled two ACEs are added...

Page 50: ...witch no longer exists Due to the unreliable nature of UDP in the standard it is recommended that such refreshing of advertisements to be done at less than one half of the advertising duration In the implementation the switch sends SSDP messages periodically at the interval one half of the advertising duration minus 30 seconds Valid values are in the range 100 to 86400 Buttons Apply Click to save ...

Page 51: ...ts can also be configured here Web Interface To configure a Current Port Configuration in the web interface 1 Click Port Management and Port Configuration 2 Specify the Speed Configured Flow Control 3 Specify the detail Port alias or description an alphanumeric string describing the full name and version identification for the system s hardware type software version and networking application 4 Cl...

Page 52: ...y of doing SFP auto detect some SFPs might not be detectable The port is set in AMS mode Cu port is set in Auto mode 100 FX SFP port in 100 FX speed Cu port disabled 100 FX_AMS Port in AMS mode SFP port in 100 FX speed Cu port in Auto mode 1000 X SFP port in 1000 X speed Cu port disabled 1000 X_AMS Port in AMS mode SFP port in 1000 X speed Cu port in Auto mode Ports in AMS mode with 1000 X speed h...

Page 53: ...44 Reset Click to undo any changes made locally and revert to previously saved values ...

Page 54: ... to see the detail of port statistic then you need to click that port Figure 4 2 The Port Statistics Overview Parameter description Port The logical port for the settings contained in the same row Packets The number of received and transmitted packets per port Bytes The number of received and transmitted bytes per port Errors The number of frames received in error and the number of incomplete tran...

Page 55: ...ceive and transmit and the error counters for receive and transmit Figure 4 2 The Detailed Port Statistics Parameter description Upper left scroll bar To scroll which port to display the Port statistics with Port 1 Port 2 Receive Total and Transmit Total Rx and Tx Packets The number of received and transmitted good and bad packets Rx and Tx Octets The number of received and transmitted good and ba...

Page 56: ...rames dropped due to lack of receive buffers or egress congestion Rx CRC Alignment The number of frames received with CRC or alignment errors Rx Undersize The number of short 1 frames received with valid CRC Rx Oversize The number of long 2 frames received with valid CRC Rx Fragments The number of short 1 frames received with invalid CRC Rx Jabber The number of long 2 frames received with invalid ...

Page 57: ...48 Click to refresh the page Clear Clears the counters for the selected port ...

Page 58: ...nd SFP Port Info 2 To display the SFP Information Figure 4 3 The SFP Port Information Parameter description Upper left scroll bar To scroll which port to display the Port statistics Connector Type Display the connector type for instance UTP SC ST LC and so on Fiber Type Display the fiber mode for instance Multi Mode Single Mode Tx Central Wavelength Display the fiber optical transmitting central w...

Page 59: ...by the manufacturer Date Code Show the date this SFP module was made Temperature Show the current temperature of SFP module Vcc Show the working DC voltage of SFP module Mon1 Bias mA Show the Bias current of SFP module Mon2 TX PWR Show the transmit power of SFP module Mon3 RX PWR Show the receiver power of SFP module Buttons Figure 4 3 The SFP Port Information buttons Auto refresh Check this box t...

Page 60: ...e that both the receiving and transmitting device has all circuits powered up when traffic is transmitted The devices can exchange information about the devices wakeup time using the LLDP protocol Web Interface To configure an Energy Efficient Ethernet in the web interface 1 Click Port Management and Energy Efficient Ethernet 2 Select enable or disable Energy Efficient Ethernet by the port 3 Click...

Page 61: ...t to cancel the setting then you need to click the Reset button It will revert to previously saved values Figure 4 5 1 The trunk port setting status Parameter description Port The logical port for the settings contained in the same row Method This determines the method a port uses to aggregate with other ports None A port does not want to aggregate with any other port should choose this default se...

Page 62: ... Slow It will wait for 30 seconds before sending a LACP packet Aggtr Aggtr is an abbreviation of aggregator Every port is also an aggregator and its own aggregator ID is the same as its own Port No We can regard an aggregator as a representative of a trunking group Ports with same Group ID and using same trunking method will have the opportunity to aggregate to a particular aggregator port This ag...

Page 63: ...hows the aggregator ID of every port In fact every port is also an aggregator and its own aggregator ID is the same as its own Port No Method Show the method a port uses to aggregate with other ports Member Ports Show all member ports of an aggregator port Ready Ports Show only the ready member ports within an aggregator port Lacp Detail You can select the port that you want to see the LACP Detail...

Page 64: ...how the System Priority part of the aggregation partner 1 65535 Mac Address The system ID of the aggregation partner Partner Port The partner s port number connected to this port Partner Key The Key that the partner has assigned to this aggregation ID Trunk Status This field represents the trunking status of a port which uses a trunking method other than None It also represents the management link...

Page 65: ...tination port for the frame Check to enable the use of the Source MAC address or uncheck to disable By default Source MAC Address is enabled dst mac Destination MAC Address The Destination MAC Address can be used to calculate the destination port for the frame Check to enable the use of the Destination MAC Address or uncheck to disable By default Destination MAC Address is disabled ip IP Address T...

Page 66: ...57 Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 67: ...range is from 1 to 65535 Default 32768 Web Interface To configure the LACP System Priority in the web interface 1 Click Port Management Link Aggregation and LACP System Priority 2 Specify the LACP System Priority 3 Click the apply to save the setting 4 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values Figure 4 5 4 The Lacp System Pr...

Page 68: ...re the Loop Protection parameters in the web interface 1 Click Port Management Loop Protection and Configuration 2 Evoke to select enable or disable the port loop Protection 3 Click the apply to save the setting 4 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values Figure 4 6 1 The Loop Protection Configuration Parameter description G...

Page 69: ... this switch port Action Configures the action performed when a loop is detected on a port Valid values are Shutdown Port Shutdown Port and Log or Log Only Tx Mode Controls whether the port is actively generating loop protection PDU s or whether it is just passively looking for looped PDU s Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously sa...

Page 70: ...k Refresh to refresh the Loop Protection Status Figure 4 6 2 Loop Protection Status Parameter description Port The switch port number of the logical port Action The currently configured port action Transmit The currently configured port transmit mode Loops The number of loops detected on this port Status The current loop protection status of the port Loop Whether a loop is currently detected on th...

Page 71: ...62 Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately ...

Page 72: ...upply 5 1 PoE Configuration This page allows the user to inspect and configure the current PoE port settings and show all PoE Supply W Web Interface To configure Power over Ethernet in the web interface 1 Click PoE Management and PoE Configuration 2 Specify the PoE or PoE Mode PoE Schedule Priority and Maximum Power W 3 Click Apply to save the configuration 4 If you want to cancel the setting then...

Page 73: ...s priority There are three levels of power priority named Low High and Critical The priority is used in the case where the remote devices requires more power than the power supply can deliver In this case the port with the lowest priority will be turn off starting from the port with the highest port number Maximum Power W The Maximum Power value contains a numerical value that indicates the maximu...

Page 74: ...D is classified according to a class that defines the maximum power the PD will use The PD Class shows the PDs class Five Classes are defined Class 0 Max power 15 4 W Class 1 Max power 4 0 W Class 2 Max power 7 0 W Class 3 Max power 15 4 W Class 4 Max power 30 0 W Power Allocated The Power Allocated shows the amount of power the switch has allocated for the PD Power Used The Power Used shows how m...

Page 75: ...ower the Power Supply can deliver and port s with the lowest priority is are powered down No PD detected No PD detected for the port PoE turned OFF PD overload The PD has requested or used more power than the port can deliver and is powered down PoE turned OFF PD is off Invalid PD PD detected but is not working correctly Buttons Figure 5 2 The PoE Status buttons Auto refresh Check this box to refr...

Page 76: ...en reboot 4 Click Apply to apply the change Figure 5 3 The PoE Power Delay Parameter description Port This is the logical port number for this row Delay Mode Turn on off the power delay function Enabled Enable POE Power Delay Disabled Disable POE Power Delay Delay Time 0 300sec When rebooting the PoE port will start to provide power to the PD when it out of delay time Default 0 range 0 300 sec But...

Page 77: ...ure action and reboot time 4 Click Apply to apply the change Figure 5 4 The PoE Auto Checking Parameter description Ping Check Enable Ping Check function can detects the connection between PoE port and power device Disable will turn off the detection Port This is the logical port number for this row Ping IP Address The PD s IP Address the system should ping Startup Time After startup time device w...

Page 78: ...hing Keep Ping the remote PD but does nothing further Reboot Cut off the power of the PoE port make PD rebooted Reboot time sec When PD has been rebooted the PoE port restored power after the specified time Default 15 range 3 120 sec Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 79: ...d Time 4 Click Apply to apply the change Figure 5 5 The PoE Schedule Profile Parameter description Profile The index of profile There are 16 profiles in the configuration Name The name of profile The default name is Profile User can define the name for identifying the profile Week Day The day to schedule PoE Start Time The time to start PoE The time 00 00 means the first second of this day End Tim...

Page 80: ... active at a time When you specify a new management VLAN your HTTP connection to the old management VLAN is lost For this reason you should have a connection between your management station and a port in the new management VLAN or connect to the new management VLAN through a multi VLAN route Web Interface To configure VLAN membership configuration in the web interface 1 Click VLAN Management and V...

Page 81: ...e Port VLAN a k a Access VLAN which by default is 1 accepts untagged frames and C tagged frames discards all frames that are not classified to the Access VLAN on egress all frames are transmitted untagged Trunk Trunk ports can carry traffic on multiple VLANs simultaneously and are normally used to connect to other switches Trunk ports have the following characteristics By default a trunk port is m...

Page 82: ...he Port VLAN If frames must be tagged on egress they will be tagged with an S tag S Custom Port On ingress frames with a VLAN tag with a TPID 0x8100 or equal to the Ethertype configured for Custom S ports get classified to the VLAN ID embedded in the tag If a frame is untagged or priority tagged the frame gets classified to the Port VLAN If frames must be tagged on egress they will be tagged with ...

Page 83: ... or not are transmitted without a tag This option is only available for ports in Hybrid mode Allowed VLANs Ports in Trunk and Hybrid mode may control which VLANs they are allowed to become members of Access ports can only be member of one VLAN the Access VLAN The field s syntax is identical to the syntax used in the Existing VLANs field By default a port may become member of all possible VLANs and...

Page 84: ... configuration and basically reflects what is actually configured in hardware VLAN User module uses services of the VLAN management functionality to configure VLAN memberships and VLAN port configurations such as PVID and UVID Currently we support the following VLAN user types NAS NAS provides port based authentication which involves communications between a Supplicant Authenticator and an Authent...

Page 85: ...the current VLAN port members for all VLANs configured by a selected VLAN User selection shall be allowed by a Combo Box When combined Users are selected it shall show this information for all the VLAN Users and this is by default VLAN membership allows the frames classified to the VLAN ID to be forwarded on the respective VLAN member ports Show entries You can choose how many items you want to sh...

Page 86: ... an Authentication Server GVRP Adjacent VLAN aware devices can exchange VLAN information with each other by using Generic VLAN Registration Protocol GVRP GVRP is based on the Generic Attribute Registration Protocol GARP and propagates VLAN information throughout a bridged network MVR MVR is used to eliminate the need to duplicate multicast traffic for subscribers in each VLAN Multicast traffic for...

Page 87: ...e is discarded Frame Type Shows whether the port accepts all frames or only tagged frames This parameter affects VLAN ingress processing If the port only accepts tagged frames untagged frames received on that port are discarded Port VLAN ID Shows the Port VLAN ID PVID that a given user wants the port to have The field is empty if not overridden by the selected user Tx Tag Shows egress filtering fr...

Page 88: ...nQ Configuration 2 Click Add New Entry 3 Specify CVID SPID Port Members 4 Click Apply Figure 6 4 The VLAN Selective QinQ Configuration Parameter description CVID 1 4095 The customer VLAN ID List to which the tagged packets will be added SPID 1 4095 This configures the VLAN to join the Service Providers VLAN as a tagged member Port Members Checkmarks indicate which ports are members of the entry Ch...

Page 89: ...80 Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 90: ... accesses the network As a result it will not be able to use the resources in the old VLAN On the other hand if Port A and Port B belong to the same VLAN after terminal devices access the network through Port B they will have access to the same resources as those accessing the network through Port A do which brings security issues To provide user access and ensure data security in the meantime the...

Page 91: ...r a VLAN ID are 1 through 4095 The MAC based VLAN entry is enabled on the selected stack switch unit when you click on Save A MAC based VLAN without any port members on any stack unit will be deleted when you click Save The button can be used to undo the addition of new MAC based VLANs Delete To delete a MAC based VLAN entry check this box and press save The entry will be deleted on the selected s...

Page 92: ...the Auto refresh 3 Click Refresh to refresh the MAC based VLAN Membership Status Figure 6 5 2 The MAC based VLAN Configuration Parameter description MAC Address Indicates the MAC address VLAN ID Indicates the VLAN ID User Indicates the user Buttons Figure 6 5 2 The MAC based VLAN Configuration buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 se...

Page 93: ...stinguished by the 8 bit 802 2 Service Access Point SAP fields SNAP supports identifying protocols by Ethernet type field values it also supports vendor private protocol identifier spaces It is used with IEEE 802 3 IEEE 802 4 IEEE 802 5 IEEE 802 11 and other IEEE 802 physical network layers as well as with non IEEE 802 physical network layers such as FDDI that use 802 2 LLC 6 6 1 Protocol to Group...

Page 94: ...xff b PID If the OUI is hexadecimal 000000 the protocol ID is the Ethernet type EtherType field value for the protocol running on top of SNAP if the OUI is an OUI for a particular organization the protocol ID is a value assigned by that organization to the protocol running on top of SNAP In other words if value of OUI field is 00 00 00 then value of PID will be etype 0x0600 0xffff and if value of ...

Page 95: ...Group Name will be mapped A valid VLAN ID ranges from 1 4095 Port Members A row of check boxes for each port is displayed for each Group Name to VLAN ID mapping To include a port in a mapping check the box To remove or exclude the port from the mapping make sure the box is unchecked By default no ports are members and all boxes are unchecked Buttons Delete To delete a Group Name to VLAN map entry ...

Page 96: ...87 Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 97: ...tes the network mask length VLAN ID Indicates the VLAN ID VLAN ID can be changed for the existing entries Buttons Delete To delete a IP subnet based VLAN entry check this box and press save The entry will be deleted on the selected switch in the stack Adding New Entry Click Add New Entry to add a new IP subnet based VLAN entry An empty row is added to the table and the IP subnet based VLAN entry c...

Page 98: ...89 Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 99: ...onfigurations for the switch 3 Click Apply Figure 6 8 The Private VLAN Configuration Parameter description Delete To delete a private VLAN entry check this box The entry will be deleted during the next apply Private VLAN ID Indicates the ID of this particular private VLAN Port Members A row of check boxes for each port is displayed for each private VLAN ID To include a port in a Private VLAN check...

Page 100: ...91 Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 101: ... upon the destination address on the data packet The data packet is then sent to the plurality of ports pursuant to the forwarding map generated based upon whether the ingress port was configured as a protected or non protected port This page is used for enabling or disabling port isolation on ports in a Private VLAN A port member of a VLAN can be isolated to other isolated ports on the same VLAN ...

Page 102: ...to the switch the IP phone should configure the voice VLAN ID correctly It should be configured through its own GUI Web Interface To configure Voice VLAN in the web interface 1 Click VLAN Management Voice VLAN and Configuration 2 Click Add New Entry 3 Select Port Members in the Voice VLAN Configuration 4 Specify VLAN ID Aging Time Traffic 5 Specify Mode Security Discovery Protocol in the Port Conf...

Page 103: ...port modes are Auto Enable auto detect mode It detects whether there is VoIP phone attached to the specific port and configures the Voice VLAN members automatically Forced Force join to Voice VLAN Security Indicates the Voice VLAN port security mode When the function is enabled all non telephonic MAC addresses in the Voice VLAN will be blocked for 10 seconds Possible port modes are Enabled Enable ...

Page 104: ...Delete Check to delete the entry It will be deleted during the next save Telephony OUI A telephony OUI address is a globally unique identifier assigned to a vendor by IEEE It must be 6 characters long and the input format is xx xx xx x is a hexadecimal digit Description The description of OUI address Normally it describes which vendor telephony device it belongs to The allowed string length is 0 t...

Page 105: ...eset button It will revert to previously saved values Figure 7 1 The QoS Global Settings Parameter description Trust Mode CoS 802 1p Traffic is mapped to queues based on the VPT field in the VLAN tag or based on the per port default CoS 802 1p value if there is no VLAN tag on the incoming packet the actual mapping of the VPT to queue can be configured on the CoS 802 1p to Queue page DSCP All IP tr...

Page 106: ...97 Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 107: ...ontained in the same row Mode Untrust All ingress traffic on the port is mapped to the best effort queue and no classification prioritization takes place Trust Port prioritize ingress traffic is based on the system wide configured trusted mode which is either CoS 802 1p trusted mode IP Precedence trusted mode or DSCP trusted mode Default CoS Select the default CoS value to be assigned for incoming...

Page 108: ...y and IP Precedence or the CoS 802 1p priority and DSCP value can be remarked simultaneously for egress traffic on a port but the DSCP value and IP Precedence cannot be remarked simultaneously Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 109: ... Ingress Port Policers and configue the Rate limit condition 3 Click Apply to save the configuration 4 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values Figure 7 3 The QoS Ingress Port Policers Configuration Parameter description Port The logical port for the settings contained in the same row Click on the port number in order to co...

Page 110: ...eed to enable and configure the Rate limit condition 4 Click Apply to save the configuration 5 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values Figure 7 4 The QoS Egress Port Shaper Parameter description Port The logical port for the settings contained in the same row Click on the port number in order to configure the shapers Queue...

Page 111: ...he port shaper is enabled for this switch port Rate kbps Controls the rate for the port shaper The default value is 1000000 Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 112: ...lick which port need to enable and configure the Rate limit condition 4 Click the Apply to save the setting 5 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values Figure 7 5 The Storm Control Configuration Parameter description Port The logical port for the settings contained in the same row Click on the port number in order to configu...

Page 113: ...104 Reset Click to undo any changes made locally and revert to previously saved values ...

Page 114: ...etting 5 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values Figure 7 6 The QoS Egress Port Schedules Parameter description Port The logical port for the settings contained in the same row Scheduler Mode Controls whether the scheduler mode is Strict Priority WRR or WFQ on this switch port Weight Controls the weight for this queue The ...

Page 115: ...3 Click the Apply to save the setting 4 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values Figure 7 7 The QoS Ingress CoS 802 1p to Queue Mapping Parameter description CoS 802 1p Displays the 802 1p priority tag values to be assigned to an egress queue where 0 is the lowest and 7 is the highest priority Queue ID Select the egress que...

Page 116: ...el the setting then you need to click the Reset button It will revert to previously saved values Figure 7 8 The QoS Egress Queue to CoS 802 1p Remarking Parameter description Queue ID Displays the Queue ID where Queue 7 is the highest priority egress queue and Queue 0 is the lowest priority egress queue CoS 802 1p For each output queue select the CoS 802 1p priority to which egress traffic from th...

Page 117: ...alues Figure 7 9 The QoS Ingress IP Precedence to Queue Mapping Parameter description IP Precedence Displays the IP Precedence priority tag values to be assigned to an egress queue where 0 is the lowest and 7 is the highest priority Queue ID Select the egress queue to which the IP precedence priority is mapped Eight egress queues are supported where Queue 7 is the highest priority egress queue and...

Page 118: ...click the Reset button It will revert to previously saved values Figure 7 10 The QoS Egress Queue to IP Precedence Remarking Parameter description Queue ID Displays the Queue ID where Queue 7 is the highest priority egress queue and Queue 0 is the lowest priority egress queue IP Precedence For each output queue select the IP Precedence priority to which egress traffic from the queue is remarked Bu...

Page 119: ...SCP Mapping in the web interface 1 Click Quality of Service and DSCP Mapping 2 Select Queue ID 3 Click the Apply to save the setting 4 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values Figure 7 11 The QoS Ingress DSCP to Queue Mapping Parameter description DSCP Displays the DSCP value in the incoming packet and its associated class ...

Page 120: ...g then you need to click the Reset button It will revert to previously saved values Figure 7 12 The QoS Egress Queue to DSCP Remarking Parameter description Queue ID Displays the Queue ID where Queue 7 is the highest priority egress queue and Queue 0 is the lowest priority egress queue DSCP For each output queue select the DSCP priority to which egress traffic from the queue is remarked Buttons Ap...

Page 121: ... ports After determining the lowest cost spanning tree it enables all root ports and designated ports and disables all other ports Network packets are therefore only forwarded between root ports and designated ports eliminating any possible network loops Figure 8 The Spanning Tree Protocol Once a stable network topology has been established all bridges listen for Hello BPDUs Bridge Protocol Data U...

Page 122: ...anning Tree Protocol You can select enable spanning tree protocol or not Force Version The STP protocol version setting Valid values are STP RSTP and MSTP Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 123: ...ou need to click the Reset button It will revert to previously saved values Figure 8 2 The Region Configuration Parameter description Configuration Name The name identifying the VLAN to MSTI mapping Bridges must share the name and revision see below as well as the VLAN to MSTI mapping configuration in order to share spanning trees for MSTI s Intra region The name is at most 32 characters Configura...

Page 124: ... click Delete Figure 8 3 MSTP Instance Config Parameter description Instance ID Every spanning tree instance need to have a unique instance ID within 0 4094 Instance 0 CIST always exists and can not be deleted Additional spanning instances MSTIs can be added or deleted At least one vlan must be provisioned for an MSTI to declare the need for the MSTI to be existent Corresponding Vlans 1 4094 Multi...

Page 125: ...tion Instance ID The Range is 1 4094 Vlan Mapping The list of VLANs mapped to the MSTI The VLANs can be given as a single xx xx being between 1 and 4094 VLAN or a range xx yy each of which must be separated with comma and or space A VLAN can only be mapped to one MSTI An unused MSTI should just be left empty I e not having any VLANs mapped to it Example 2 5 20 40 Buttons Apply Click to save change...

Page 126: ...tiple spanning tree protocol It is used in the internal spanning tree instances CIST Remaining Hops or MSTI Remaining Hops in the Spanning tree protocol message would decreased by one when the message is propagated to the neighboring bridge If the Remaining Hops in a message is zero the message BPDU would be regarded as invalid Max Hops is used to specify the initial value of the Remaining Hops fo...

Page 127: ...pecification for the CIST ports Admin P2P Auto True False The same definition as in the RSTP specification for the CIST ports Restricted Role Yes No If Yes causes the Port not to be selected as Root Port for the CIST or any MSTI even it has the best spanning tree priority vector Such a Port will be selected as an Alternate Port after the Root Port has been selected This parameter is No by default ...

Page 128: ... MAC operation for the attached LANs transitions frequently Mcheck The same definition as in the RSTP specification for the CIST ports Buttons Apply Click to save changes Back Click to undo any changes made locally and return to the Users Instance Status to Instance 0 Figure 8 3 Instance Status to Instance 0 Parameter description MSTP State MSTP protocol is Enable or Disable Force Version It shows...

Page 129: ...n RSTP bridge The IST Internal Spanning Tree and MSTIs are transparent to bridges outside this region CIST REGIONAL ROOT MAC Mac Address of the CIST regional root bridge CIST INTERNAL ROOT PATH COST Root path cost value from the point of view of the bridges inside the IST CIST CURRENT MAX AGE Max Age of the CIST Root bridge CIST CURRENT FORWARD DELAY Forward Delay of the CIST Root bridge TIME SINC...

Page 130: ...sible port roles for a port to transit to FORWARDING state Path Cost Display currently resolved port path cost value for each port in a particular spanning tree instance Priority Display port priority value for each port in a particular spanning tree instance Hello Per port Hello Time display It takes the following form Current Hello Time Hello Time Setting Oper Edge Whether or not a port is an Ed...

Page 131: ...witch ports The frames also contain a MAC address SMAC address which shows the MAC address of the equipment sending the frame The SMAC address is used by the switch to automatically update the MAC table with these dynamic MAC addresses Dynamic entries are removed from the MAC table if no frame with the corresponding SMAC address have been seen after a configurable age time Web Interface To configu...

Page 132: ... a frame with unknown SMAC is received Disable No learning is done Secure Only static MAC entries are learned all other frames are dropped NOTE Make sure that the link used for managing the switch is added to the Static Mac Table before changing to secure learning mode otherwise the management link is lost and can only be restored by using another non secure port or by connecting to the switch via...

Page 133: ...ck to add a new entry to the static MAC table Specify the VLAN ID MAC address and port members for the new entry Click Apply Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 134: ...9 entries from the MAC table default being 10 selected through the entries per page input field When first visited the web page will show the first 10 entries from the beginning of the MAC Table The first displayed will be the one with the lowest VLAN ID and the lowest MAC address found in the MAC Table Type Indicates whether the entry is a static or a dynamic entry 802 1x DMS VLAN The VLAN ID of ...

Page 135: ...mac address entries turn to the previous page NOTE 00 40 C7 73 01 29 your switch MAC address for IPv4 33 33 00 00 00 01 Destination MAC for IPv6 Router Advertisement reference IPv6 RA JPG 33 33 00 00 00 02 Destination MAC for IPv6 Router Solicitation reference IPv6 RS JPG 33 33 FF 73 01 29 Destination MAC for IPv6 Neighbor Solicitation reference IPv6 DAD JPG 33 33 FF A8 01 01 your switch MAC addre...

Page 136: ...icast group before The packets will be discarded by the IGMP Snooping if the user transmits multicast packets to the multicast group that had not been built up in advance IGMP mode enables the switch to issue IGMP function that you enable IGMP proxy or snooping on the switch which connects to a router closer to the root of the tree This interface is the upstream interface The router on the upstrea...

Page 137: ...s run the SSM service model for the groups in the address range Format IP address sub mask Proxy Enabled Enable IGMP Proxy This feature can be used to avoid forwarding unnecessary join and leave messages to the router side Port Related Configuration Port It shows the physical Port index of switch Router Port Specify which ports act as router ports A router port is a port on the Ethernet switch tha...

Page 138: ...129 You can select profile when you edit in Multicast Filtering Profile Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 139: ...rting from that or the next closest VLAN Table match Web Interface To configure the IGMP Snooping VLAN Configuration in the web interface 1 Click Multicast IGMP Snooping and VLAN Configuration 2 Click to add new IGMP VLAN 3 Click the Apply to save the setting 4 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values Figure 10 1 2 The IGMP...

Page 140: ... seconds QRI 0 1 sec Query Response Interval The Max Response Time used to calculate the Max Resp Code inserted into the periodic General Queries The allowed range is 0 to 31744 in tenths of seconds default query response interval is 100 in tenths of seconds 10 seconds LLQI 0 1 sec Last Member Query Interval The Last Member Query Time is the time value represented by the Last Member Query Interval...

Page 141: ...resh the information then you need to evoke the Auto refresh 3 Click Refresh to refresh the IGMP Snooping Status Figure 10 1 3 The IGMP Snooping Status Parameter description Statistic VLAN ID The VLAN ID of the entry Querier Version Working Querier Version currently Host Version Working Host Version currently Querier Status Shows the Querier status is ACTIVE or IDLE DISABLE denotes the specific in...

Page 142: ... multicast device or IGMP querier Static denotes the specific port is configured to be a router port Dynamic denotes the specific port is learnt to be a router port Both denote the specific port is configured or learnt to be a router port Port Switch port number Status Indicate whether specific port is a router port or not Buttons Figure 10 1 3 The IGMP Snooping Status buttons Auto refresh Check t...

Page 143: ...entry of the IGMP Snooping Groups Information 5 Click Previous next to change page Figure 10 1 4 The IGMP Snooping Groups Information Parameter description Navigating the IGMP Group Table Each page shows up to many entries from the IGMP Group table default being 10 selected through the entries per page input field When first visited the web page will show the first 10 entries from the beginning of...

Page 144: ...on buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately Next Updates the group information entries turn to the next page Previous Updates the group information entries turn to the previous page ...

Page 145: ...ion Parameter description Navigating the IGMP SFM Information Table Each page shows up to many entries from the IGMP SFM Information table default being 10 selected through the entries per page input field When first visited the web page will show the first 10 entries from the beginning of the IGMP SFM Information Table The Search input fields allow the user to select the starting point in the IGM...

Page 146: ... for filtering to be 128 Type Indicates the Type It can be either Allow or Deny Buttons Figure 10 1 5 The IGMP Snooping Groups Information buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately Next Updates the group information entries turn to the next page Previous Updates the group information ...

Page 147: ...se Note that this is a function of the application software not of MLD When MLD snooping is enabled on a VLAN the switch acts to minimize unnecessary multicast traffic If the switch receives multicast traffic destined for a given multicast address it forwards that traffic only to ports on the VLAN that have MLD hosts for that address It drops that traffic for ports on the VLAN that have no MLD hos...

Page 148: ... SSM service model for the groups in the address Using IPv6 Address range Proxy Enabled Enable MLD Proxy This feature can be used to avoid forwarding unnecessary join and leave messages to the router side Port Related Configuration Router Port Specify which ports act as router ports A router port is a port on the Ethernet switch that leads towards the Layer 3 multicast device or MLD querier If an ...

Page 149: ...140 Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 150: ...tries per page Figure 10 2 2 The MLD Snooping VLAN Configuration Parameter description Delete Check to delete the entry The designated entry will be deleted during the next save VLAN ID It displays the VLAN ID of the entry Snooping Enabled Enable the per VLAN IGMP Snooping Only up to 32 VLANs can be selected MLD Querier Enable to join IGMP Querier election in the VLAN Disable to act as an IGMP Non...

Page 151: ...er Query Time is the time value represented by the Last Member Query Interval multiplied by the Last Member Query Count The allowed range is 0 to 31744 in tenths of seconds default last member query interval is 10 in tenths of seconds 1 second URI sec Unsolicited Report Interval The Unsolicited Report Interval is the time between repetitions of a host s initial report of membership in a group The ...

Page 152: ...o refresh 3 Click Refresh to refresh an entry of the MLD Snooping Status Information Figure 10 2 3 The MLD Snooping Status Parameter description VLAN ID The VLAN ID of the entry Querier Version Working Querier Version currently Host Version Working Host Version currently Querier Status Show the Querier status is ACTIVE or IDLE DISABLE denotes the specific interface is administratively disabled Que...

Page 153: ...onfigured to be a router port Dynamic denotes the specific port is learnt to be a router port Both denote the specific port is configured or learnt to be a router port Port Switch port number Status Indicate whether specific port is a router port or not Buttons Figure 10 2 3 The MLD Snooping Status buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every...

Page 154: ...s from the MLD Group table default being 10 selected through the entries per page input field When first visited the web page will show the first 10 entries from the beginning of the MLD Group Table The Search input fields allow the user to select the starting point in the MLD Group Table It will update the displayed table starting from that or the closest next MLD Group Table match This will use ...

Page 155: ...146 Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately ...

Page 156: ...LD SFM Information Table Each page shows up to many entries from the MLD SFM Information table default being 10 selected through the entries per page input field When first visited the web page will show the first 10 entries from the beginning of the MLD SFM Information Table The Search input fields allow the user to select the starting point in the MLD SFM Information Table It will update the dis...

Page 157: ...ype Indicates the Type It can be either Allow or Deny Show entries You can choose how many items you want to show off Buttons Figure 10 2 5 The MLD SFM Information buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately ...

Page 158: ...tering Profile Table The IPMC profile is used to deploy the access control on IP multicast streams It is allowed to create at maximum 64 Profiles with at maximum 128 corresponding rules for each Web Interface To configure the IPMC Profile Configuration in the web interface Figure 10 3 1 The IPMC Profile Configuration ...

Page 159: ... The name of the designated profile to be associated This field is not editable Entry Name The name used in specifying the address range used for this rule Only the existing profile address entries will be chosen in the selected box This field is not allowed to be selected as none while the Rule Settings Table is committed Address Range The corresponding address range of the selected profile entry...

Page 160: ...ry The designated entry will be deleted during the next save Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Add Last Rule Click to add a new rule in the end of the specific profile s rule list Specify the address entry and configure the new entry Click Apply ...

Page 161: ...r indexing the address entry table Each entry has the unique name which is composed of at maximum 16 alphabetic and numeric characters Start Address The starting IPv4 IPv6 Multicast Group Address that will be used as an address range End Address The ending IPv4 IPv6 Multicast Group Address that will be used as an address range Buttons Add New Address Range Entry Click to add new address range Spec...

Page 162: ...153 ...

Page 163: ...end and receive multicast data to and from the multicast VLAN are called MVR source ports 11 3 1 Basic Configuration Web Interface To configure the MVR Configuration in the web interface 1 Click MVR and Basic Configuration 2 Scroll the MVR mode to enable or disable and Scroll to set all parameters 3 Click Add New MVR VLAN 4 Specify MVR VID MVR Name IGMP Address Mode Tagging Priority LLQI Interface...

Page 164: ...lt this value will be 192 0 2 1 Mode Specify the MVR mode of operation In Dynamic mode MVR allows dynamic MVR membership reports on source ports In Compatible mode MVR membership reports are forbidden on source ports The default is Dynamic mode Tagging Specify whether the traversed IGMP MLD control frames will be sent as Untagged or Tagged with MVR VID The default is tagged Priority Specify how th...

Page 165: ...s Select the port role by clicking the Role symbol to switch the setting I indicates Inactive S indicates Source R indicates Receiver The default Role is Inactive Immediate Leave Enable the fast leave on the port Buttons Add New MVR VLAN Click to add new mvr vlan Specify MVR VID MVR Name IGMP Address Mode Tagging Priority LLQI Interface Channel Profile Click Apply Delete Check to delete the entry ...

Page 166: ...GMP MLD Queries Received The number of Received Queries for IGMP and MLD respectively IGMP MLD Queries Transmitted The number of Transmitted Queries for IGMP and MLD respectively IGMPv1 Joins Received The number of Received IGMPv1 Join s IGMPv2 MLDv1 Report s Received The number of Received IGMPv2 Join s and MLDv1 Report s respectively IGMPv3 MLDv2 Report s Received The number of Received IGMPv3 J...

Page 167: ... up to many entries from the MVR Group table default being 10 selected through the entries per page input field When first visited the web page will show the first 10 entries from the beginning of the MVR Channels Groups Information Table The Search input fields allow the user to select the starting point in the MVR Channels Groups Information Table It will update the displayed table starting from...

Page 168: ...R Groups Information buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately Next Updates the system log entries turn to the next page Previous Updates the system log entries turn to the previous page ...

Page 169: ...on Table Each page shows up to many entries from the MVR SFM Information Table default being 10 selected through the entries per page input field When first visited the web page will show the first 10 entries from the beginning of the MVR SFM Information Table The Search input fields allow the user to select the starting point in the MVR SFM Information Table It will update the displayed table sta...

Page 170: ...Source Address field Type Indicates the Type It can be either Allow or Deny Hardware Filter Switch Indicates whether data plane destined to the specific group address from the source IPv4 IPv6 address could be handled by chip or not Buttons Figure 11 3 4 The MVR SFM Information buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Cl...

Page 171: ...e DHCP Snooping parameters of the switch The DHCP Snooping can prevent attackers from adding their own DHCP servers to the network Web Interface To configure DHCP snooping in the web interface 1 Click DHCP Snooping and Configuration 2 Select on in the Mode of DHCP Snooping Configuration 3 Select Trusted of the specific port in the Mode of Port Mode Configuration 4 Click Apply Figure 12 1 1 The DHC...

Page 172: ...d Configures the port as trusted source of the DHCP messages Trusted port can forward DHCP packets normally Untrusted Configures the port as untrusted source of the DHCP messages Untrusted port will discard the packets when it receive DHCP packets Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 173: ... Click DHCP Snooping and Snooping table Figure 12 1 2 The DHCP snooping table Parameter description Show entries You can choose how many items you want to show up Search You can search for the information that you want to see MAC Address User MAC address of the entry VLAN ID VLAN ID in which the DHCP traffic is permitted Port Switch Port Number for which the entries are displayed IP Address User I...

Page 174: ...he page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately Next Updates the system log entries turn to the next page Previous Updates the system log entries turn to the previous page ...

Page 175: ... 4 To click the Refresh to refresh an entry of the DHCP Detailed Statistics Figure 12 1 3 The DHCP Detailed Statistics Parameter description Server Statistics Rx and Tx Discover The number of discover option 53 with value 1 packets received and transmitted Rx and Tx Offer The number of offer option 53 with value 2 packets received and transmitted Rx and Tx Request The number of request option 53 w...

Page 176: ...d and transmitted Rx and Tx Lease Active Rx and Tx Lease Active The number of lease active option 53 with value 13 packets received and transmitted Rx Discarded checksum error The number of discard packet that IP UDP checksum is error Rx Discarded from Untrusted The number of discarded packet that are coming from untrusted port Buttons Figure 12 1 3 The DHCP Detailed Statistics buttons Auto refres...

Page 177: ... 2 1 The DHCP Relay Configuration Parameter description Relay Mode Indicates the DHCP relay mode operation Possible modes are on Enable DHCP relay mode operation When DHCP relay mode operation is enabled the agent forwards and transfers DHCP messages between the clients and the server when they are not in the same subnet domain And the DHCP broadcast message won t be flooded for security considera...

Page 178: ...ion Relay Information Policy Indicates the DHCP relay information option policy When DHCP relay information mode operation is enabled if the agent receives a DHCP message that already contains relay agent information it will enforce the policy The Replace policy is invalid when relay information mode is disabled Possible policies are Replace Replace the original relay information when a DHCP messa...

Page 179: ...rs while being sent to clients Receive from Server The number of packets received from server Receive Missing Agent Option The number of packets received without agent information options Receive Missing Circuit ID The number of packets received with the Circuit ID option missing Receive Missing Remote ID The number of packets received with the Remote ID option missing Client Statistics Transmit t...

Page 180: ...Option The number of packets whose relay agent information was retained Drop Agent Option The number of packets that were dropped which were received with relay agent information Buttons Figure 12 2 2 The DHCP relay statistics buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately ...

Page 181: ...mask Default router DNS server 4 Click Apply Figure 12 3 The DHCP server configuration Parameter description VLAN Configure the VLAN in which DHCP server is enabled or disabled Allowed VLAN are in the range 1 through 4095 Mode Indicate the operation mode per VLAN Possible modes are Enable Enable DHCP server per VLAN Disable Disable DHCP server pre VLAN Start IP and End IP Define the IP range The S...

Page 182: ...Buttons Delete Check to delete the entry It will be deleted during the next save Add Interface Click to add a new DHCP server Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 183: ... way to login as another user on the web server is to close and reopen the browser Web Interface To configure User in the web interface 1 Click Security Management and Account 2 Click Add new user 3 Specify the User Name parameter 4 Click Apply Figure 13 1 1 The Account configuration Parameter description User Name The name identifying the user The field can be input 31 characters This is also a l...

Page 184: ...t group By default setting most groups privilege level 5 has the read only access and privilege level 10 has the read write access And the system maintenance software upload factory defaults and etc need user privilege level 15 Generally the privilege level 15 can be used for an administrator account privilege level 10 for a standard user account and privilege level 5 for a guest account Buttons A...

Page 185: ...ngle module e g LACP RSTP or QoS but a few of them contains more than one The following description defines these privilege level groups in details System Contact Name Location Timezone Daylight Saving Time Log Security Authentication System Access Management Port contains Dot1x port MAC based and the MAC Address Limit ACL HTTPS SSH ARP Inspection IP source guard IP Everything except ping Port Eve...

Page 186: ...177 Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 187: ...b interface 1 Click Security Management and Auth Method 2 Specify the Client console telent ssh web which you want to monitor 3 Specify the Methods none local radius tacacs Service port Cmd Lvl Cfg Cmd Fallback Exec 4 Click Apply Figure 13 1 3 The Authentication Method Configuration Parameter description Authentication Method Configuration Client The management client for which the configuration b...

Page 188: ...ect Enable http Automatic Redirect Command Authorization Method Configuration Client The management client for which the configuration below applies Method Authorization Method can be set to one of the following values none authorization is disabled and login is not possible tacacs use a remote TACACS server for authorization Cmd Lvl Runs authorization for all commands at the specified privilege l...

Page 189: ... accounting to determine if the user is allowed to run an EXEC shell This facility might return user profile information such as autocommand information Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 190: ...cess Management method HTTP HTTPS SNMP and TELNET SSH in the entry 6 Click Apply Figure 13 1 4 The Access Management Configuration Parameter description Mode Indicates the access management mode operation Possible modes are On Enable access management mode operation Off Disable access management mode operation VLAN ID Indicates the VLAN ID for the access management entry Delete Check to delete the...

Page 191: ...he entry TELNET SSH Indicates that the host can access the switch from TELNET SSH interface if the host IP address matches the IP address range provided in the entry Buttons Add New Entry Click to add a new access management entry Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 192: ...the switch This function is used to configure SNMP settings community name trap host and public traps as well as the throttle of SNMP A SNMP manager must pass the authentication by identifying both community names then it can access the MIB information of the target device So both parties must have the same community name Once completing the setting click Apply button the setting takes effect Web ...

Page 193: ... is SNMPv1 or SNMPv2c If SNMP version is SNMPv3 the community string will be associated with SNMPv3 communities table It provides more flexibility to configure security name than a SNMPv1 or SNMPv2c community string In addition to community string a particular range of source addresses can be used to restrict source subnet Buttons Apply Click to save changes Reset Click to undo any changes made lo...

Page 194: ...13 2 2 1 The SNMPv3 Communities Configuration Parameter description Community Indicates the community access string to permit access to SNMPv3 agent The allowed string length is 1 to 32 and the allowed content is ASCII characters from 33 to 126 The community string will be treated as security name and map a SNMPv1 or SNMPv2c community string Source IP Indicates the SNMP access source address A par...

Page 195: ...186 Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 196: ... 33 to 126 Security Level Indicates the security model that this entry should belong to Possible security models are NoAuth NoPriv No authentication and no privacy Auth NoPriv Authentication and no privacy Auth Priv Authentication and privacy The value of security level cannot be modified if entry already exists That means it must first be ensured that the value is set correctly Authentication Pro...

Page 197: ...to indicate that this user uses DES authentication protocol AES An optional flag to indicate that this user uses AES authentication protocol Privacy Password A string identifying the privacy password phrase The allowed string length is 8 to 31 and the allowed content is ASCII characters from 33 to 126 Buttons Add New Entry Click to add new entry Specify the name and configure the new entry Click A...

Page 198: ...Indicates the security model that this entry should belong to Possible security models are v1 Reserved for SNMPv1 v2c Reserved for SNMPv2c usm User based Security Model USM Security Name A string identifying the security name that this entry should belong to The allowed string length is 1 to 31 and the allowed content is ASCII characters from 33 to 126 Group Name A string identifying the group nam...

Page 199: ...190 Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 200: ...ion Parameter description View Name A string identifying the view name that this entry should belong to The allowed string length is 1 to 31 and the allowed content is ASCII characters from 33 to 126 View Type Indicates the view type that this entry should belong to Possible view types are Included An optional flag to indicate that this view subtree should be included Excluded An optional flag to ...

Page 201: ...y Specify the name and configure the new entry Click Save Delete Check to delete the entry It will be deleted during the next save Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 202: ...ck Reset Figure 13 2 2 5 The SNMP Accesses Configuration Parameter description Group Name A string identifying the group name that this entry should belong to The allowed string length is 1 to 31 and the allowed content is ASCII characters from 33 to 126 Security Model Indicates the security model that this entry should belong to Possible security models are Any Any security model accepted v1 v2c ...

Page 203: ... defining the MIB objects for which this request may potentially set new values The allowed string length is 1 to 31 and the allowed content is ASCII characters from 33 to 126 Buttons Add New Entry Click to add new entry Specify the name and configure the new entry Click Apply Delete Check to delete the entry It will be deleted during the next save Apply Click to save changes Reset Click to undo a...

Page 204: ...ll revert to previously saved values Figure 13 2 3 The Trap Event Severity Configuration Parameter description Group Name The name identifying the severity group Severity Level Every group has an severity level The following level types are supported 0 Emergency System is unusable 1 Alert Action must be taken immediately 2 Critical Critical conditions 3 Error Error conditions 4 Warning Warning con...

Page 205: ...196 Reset Click to undo any changes made locally and revert to previously saved values ...

Page 206: ...he RMON Statistics Configuration in the web interface 1 Click Security RMON Statistics and Configuration 2 Click Add New Entry 3 Specify the ID parameters 4 Click Apply Figure 13 3 1 1 The RMON Statistics Configuration Parameter description These parameters are displayed on the RMON Statistics Configuration page ID Indicates the index of the entry The range is from 1 to 65535 Data Source Indicates...

Page 207: ...198 Add New Entry Click to add a new entry Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 208: ...sh the port detailed statistics Figure 13 3 1 2 The RMON Statistics Status Parameter description ID Indicates the index of Statistics entry Data Source if Index The port ID which wants to be monitored Drop The total number of events in which packets were dropped by the probe due to lack of resources Octets The total number of octets of data including those in bad packets received on the network Pk...

Page 209: ...that were 64 octets in length 65 127 The total number of packets including bad packets received that were between 65 to 127 octets in length 128 255 The total number of packets including bad packets received that were between 128 to 255 octets in length 256 511 The total number of packets including bad packets received that were between 256 to 511 octets in length 512 1023 The total number of pack...

Page 210: ...201 Click to refresh the page immediately Next Updates the system log entries turn to the next page Previous Updates the system log entries turn to the previous page ...

Page 211: ...nfiguration page ID Indicates the index of the entry The range is from 1 to 65535 Data Source Indicates the port ID which wants to be monitored If in stacking switch the value must add 1000 switch ID 1 for example if the port is switch 3 port 5 the value is 2005 Interval Indicates the interval in seconds for sampling the history statistics data The range is from 1 to 3600 default value is 1800 sec...

Page 212: ... to delete the entry It will be deleted during the next save Add New Entry Click to add a new entry Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 213: ... Refresh to refresh the port detailed statistics Figure 13 3 2 2 The RMON History Status Parameter description Index Indicates the index of History control entry Sample Index Indicates the index of the data entry associated with the control entry Sample Start The value of sysUpTime at the start of the interval over which this sample was measured Drop The total number of events in which packets wer...

Page 214: ... octets received with invalid CRC Jabb The number of frames which size is larger than 64 octets received with invalid CRC Coll The best estimate of the total number of collisions on this Ethernet segment Utilization The best estimate of the mean physical layer network utilization on this interface during this sampling interval in hundredths of a percent Search You can search for the information th...

Page 215: ...the RMON Alarm Configuration page ID Indicates the index of the entry The range is from 1 to 65535 Interval Indicates the interval in seconds for sampling and comparing the rising and falling threshold The range is from 1 to 2 31 1 Variable Indicates the particular variable to be sampled the possible variables are InOctets The total number of octets received on the interface including framing char...

Page 216: ...he output packet queue in packets Sample Type The method of sampling the selected variable and calculating the value to be compared against the thresholds possible sample types are Absolute Get the sample directly Delta Calculate the difference between samples default Value The value of the statistic during the last sampling period Startup Alarm The method of sampling the selected variable and cal...

Page 217: ...heck to delete the entry It will be deleted during the next save Add New Entry Click to add a new entry Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 218: ...esh 3 Click Refresh to refresh the port detailed statistics Figure 13 3 3 2 RMON Alarm Status Parameter description ID Indicates the index of Alarm control entry Interval Indicates the interval in seconds for sampling and comparing the rising and falling threshold Variable Indicates the particular variable to be sampled Sample Type The method of sampling the selected variable and calculating the v...

Page 219: ... you want to show off Buttons Figure 13 3 3 2 RMON Alarm Status buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately Next Updates the system log entries turn to the next page Previous Updates the system log entries turn to the previous page ...

Page 220: ...e index of the entry The range is from 1 to 65535 Desc Indicates this event the string length is from 0 to 127 default is a null string Type Indicates the notification of the event the possible types are None No SNMP log is created no SNMP trap is sent Log Create SNMP log entry when the event is triggered Snmp trap Send SNMP trap when the event is triggered Log and trap Create SNMP log entry and s...

Page 221: ...te Check to delete the entry It will be deleted during the next save Add New Entry Click to add a new entry Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 222: ...splay a RMON Event Status in the web interface 1 Click Security RMON Event and Status 2 Checked Auto refresh 3 Click Refresh to refresh the port detailed statistics 4 Specify Port which wants to check Figure 13 3 4 2 RMON Event Status Parameter description Event Index Indicates the index of the event entry Log Index Indicates the index of the log entry LogTIme Indicates Event log time LogDescripti...

Page 223: ...he page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately Next Updates the system log entries turn to the next page Previous Updates the system log entries turn to the previous page ...

Page 224: ... and Configuration 2 Select on in the Mode of IEEE 802 1X Configuration 3 Checked Reauthentication Enabled 4 Set Reauthentication Period Default is 3600 seconds 5 Select Admin State and displays Port State 6 Click the Apply to save the setting 7 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values Figure 13 3 1 The IEEE 802 1X Configur...

Page 225: ...AN functionality When checked the individual ports ditto setting determines whether the port can be moved into Guest VLAN When unchecked the ability to move to the Guest VLAN is disabled on all ports Guest VLAN ID This is the value that a port s Port VLAN ID is set to if a port is moved into the Guest VLAN It is only changeable if the Guest VLAN option is globally enabled Valid values are in the r...

Page 226: ...into the relevant type EAPOL or RADIUS and forwards it When authentication is complete the RADIUS server sends a special packet containing a success or failure indication Besides forwarding this decision to the supplicant the switch uses it to open up or block traffic on the switch port connected to the supplicant NOTE Suppose two backend servers are enabled and that the server timeout is configur...

Page 227: ... back into the Guest VLAN if the Allow Guest VLAN if EAPOL Seen is disabled Port State The current state of the port It can undertake one of the following values Globally Disabled IEEE 802 1X is globally disabled Link Down IEEE 802 1X is globally enabled but there is no link on the port Authorized The port is in Force Authorized or a single supplicant mode and the supplicant is authorized Unauthor...

Page 228: ...port Admin State The port s current administrative state Refer to 802 1X Admin State for a description of possible values Port State The current state of the port Refer to 802 1X Port State for a description of the individual states Last Source The source MAC address carried in the most recently received EAPOL frame for EAPOL based authentication and the most recently received frame from a new cli...

Page 229: ...ely If you select port1 to display 802 1X Statistics Figure 13 3 2 The 802 1X Statistics Port 1 Parameter description Port You can select which port that you want display 802 1X Statistics Admin State The port s current administrative state Refer to 802 1X Admin State for a description of possible values Port State The current state of the port Refer to 802 1X Port State for a description of the i...

Page 230: ... port in the Mode of Port Mode Configuration 4 Select Maximum Dynamic Clients 0 1 2 Unlimited of the specific port in the Mode of Port Mode Configuration 5 Click Apply Figure 13 4 1 The IP Source Guard Configuration Parameter description Mode of IP Source Guard Configuration Enable the Global IP Source Guard or disable the Global IP Source Guard All configured ACEs will be lost when the mode is en...

Page 231: ... 0 it means only allow the IP packets forwarding that are matched in static entries on the specific port Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 232: ...IP Address and MAC address in the entry 4 Click Apply Figure 13 4 2 The Static IP Source Guard Table Parameter description Port The logical port for the settings IP Address Allowed Source IP address MAC address Allowed Source MAC address Buttons Add New Entry Click to add a new entry to the Static IP Source Guard table Specify the Port VLAN ID IP address and IP Mask for the new entry Click Apply D...

Page 233: ... detailed statistics 4 Specify the Start from port IP Address and entries per page Figure 13 4 3 The Dynamic IP Source Guard Table Parameter description Port Switch Port Number for which the entries are displayed IP Address User IP address of the entry MAC Address Source MAC address Search You can search for the information that you want to see Show entries You can choose how many items you want t...

Page 234: ...225 Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately ...

Page 235: ...ction Configuration Parameter description Mode of ARP Inspection Configuration Enable the Global ARP Inspection or disable the Global ARP Inspection Port Mode Configuration Specify ARP Inspection is enabled on which ports Only when both Global Mode and Port Mode on a given port are enabled ARP Inspection is enabled on this given port Possible modes are Enabled Enable ARP Inspection operation Disab...

Page 236: ...etting of Check VLAN is disabled the log type of ARP Inspection will refer to the port setting There are four log types and possible types are None Log nothing Deny Log denied entries Permit Log permitted entries ALL Log all entries Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 237: ...rt mode configuration web page Only when both Global Mode and Port Mode on a given port are enabled ARP Inspection is enabled on this given port Second you can specify which VLAN will be inspected on VLAN mode configuration web page The log type also can be configured on per VLAN setting Possible types are None Log nothing Deny Log denied entries Permit Log permitted entries ALL Log all entries Bu...

Page 238: ...ddress in the entry 4 Click Apply Figure13 5 3 The Static ARP Inspection Table Parameter description Port The logical port for the settings VLAN ID The vlan id for the settings MAC Address Allowed Source MAC address in ARP request packets IP Address Allowed Source IP address in ARP request packets Adding new entry Click to add a new entry to the Static ARP Inspection table Specify the Port VLAN ID...

Page 239: ...230 Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 240: ...ble It will update the displayed table starting from that or the closest next Dynamic ARP Inspection Table match This will use the last entry of the currently displayed table as a basis for the next lookup When the end is reached the text No more entries is shown in the displayed table Use the button to start over Web Interface To configure a Dynamic ARP Inspection Table Configuration in the web i...

Page 241: ...efresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately Next Updates the system log entries turn to the next page Previous Updates the system log entries turn to the previous page ...

Page 242: ...el the setting then you need to click the Reset button It will revert to previously saved values Figure 13 6 1 The Port Security Configuration Parameter description System Configuration Mode Indicates if Limit Control is globally enabled or disabled on the switch If globally disabled other modules may still use the underlying functionality but limit checks and corresponding actions are disabled Po...

Page 243: ...earned Even if the link is physically disconnected and reconnected on the port by disconnecting the cable the port will remain shut down There are three ways to re open the port 1 Boot the switch 2 Disable and re enable Limit Control on the port or the switch 3 Click the Reopen button Trap Shutdown If Limit 1 MAC addresses is seen on the port both the Trap and the Shutdown actions described above ...

Page 244: ...235 Click to undo any changes made locally and revert to previously saved values ...

Page 245: ...t Security and status 2 Checked Auto refresh 3 Click Refresh to refresh the port detailed statistics 4 Click the port number to see the status for this particular port Figure 13 6 2 The Port Security Status Parameter description Port The port number for which the status applies Click the port number to see the status for this particular port State Shows the current state of the port It can take on...

Page 246: ...ses that can be learned on the port respectively If no user modules are enabled on the port the Current column will show a dash Buttons Figure 13 6 2 The Port Security Status buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately ...

Page 247: ...ou need to click the Reset button It will revert to previously saved values Figure 13 7 1 The RADIUS Configuration Parameter description Global Configuration These setting are common for all of the RADIUS servers Timeout Timeout is the number of seconds in the range 1 to 1000 to wait for a reply from a RADIUS server before retransmitting the request Retransmit Retransmit is the number of times in ...

Page 248: ...long to be used as attribute 32 in RADIUS Access Request packets If this field is left blank the NAS Identifier is not included in the packet Server Configuration The table has one row for each RADIUS server and a number of columns which are Delete To delete a RADIUS server entry check this box The entry will be deleted during the next Save Hostname The IP address or hostname of the RADIUS server ...

Page 249: ...240 Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 250: ...iew Parameter description RADIUS Authentication Server Status The RADIUS server number Click to navigate to detailed statistics for this server IP Address The IP address and UDP port number in IP Address UDP Port notation of this server State The current state of the server This field takes one of the following values Disabled The server is disabled Not Ready The server is enabled but IP communica...

Page 251: ...is server State The current state of the server This field takes one of the following values Disabled The server is disabled Not Ready The server is enabled but IP communication is not yet up and running Ready The server is enabled IP communication is up and running and the RADIUS module is ready to accept accounting attempts Dead X seconds left Accounting attempts were made to this server but it ...

Page 252: ...DIUS Access Response packets received from the server Malformed packets include packets with an invalid length Bad authenticators or Message Authenticator attributes or unknown types are not included as malformed access responses Bad Authenticators The number of RADIUS Access Response packets containing invalid authenticators or Message Authenticator attributes received from the server Unknown Typ...

Page 253: ...e server has temporarily been disabled but will get re enabled when the dead time expires The number of seconds left before this occurs is displayed in parentheses This state is only reachable when more than one server is enabled Round Trip Time The time interval measured in milliseconds between the most recent Access Reply Access Challenge and the Access Request that matched it from the RADIUS au...

Page 254: ... well as a timeout IP Address IP address and UDP port for the accounting server in question State Shows the state of the server It takes one of the following values Disabled The selected server is disabled Not Ready The server is enabled but IP communication is not yet up and running Ready The server is enabled IP communication is up and running and the RADIUS module is ready to accept accounting ...

Page 255: ...eout Deadtime Key 4 Specify the Hostname Port Timeout and Key in the server 5 Click Apply Figure 13 8 1 The TACACS Server Configuration Parameter description Global Configuration These setting are common for all of the TACACS servers Timeout Timeout is the number of seconds in the range 1 to 1000 to wait for a reply from a TACACS server before it is considered to be dead ...

Page 256: ...umber of columns which are Delete To delete a TACACS server entry check this box The entry will be deleted during the next Save Hostname The IP address or hostname of the TACACS server Port The TCP port to use on the TACACS server for authentication Timeout This optional setting overrides the global timeout value Leaving it blank will use the global timeout value Key This optional setting override...

Page 257: ... ACE that is defined The maximum number of ACEs is 256 on each switch Click on the lowest plus sign to add a new ACE to the list The reserved ACEs used for internal protocol cannot be edited or deleted the order sequence cannot be changed the priority is highest Web Interface To configure Access Control List in the web interface 1 Click Access Control and Access Control List 2 Click the button to ...

Page 258: ...IPv4 frames Action Indicates the forwarding action of the ACE Permit Frames matching the ACE may be forwarded and learned Deny Frames matching the ACE are dropped Shutdown Specify the port shut down operation of the ACE Metering Select metering mode enable or disable Mirror Select mirror mode enable or disable Counter The counter indicates the number of times the ACE was hit by a frame Modificatio...

Page 259: ...t Type Only Ethernet Type frames can match this ACE The IEEE 802 3 describes the value of Length Type Field specifications to be greater than or equal to 1536 decimal equal to 0600 hexadecimal IPv4 Only IPv4 frames can match this ACE Notice the IPv4 frames won t match the ACE with ethernet type Action Specify the action to take with a frame that hits this ACE Permit The frame that hits this ACE is...

Page 260: ...ter status is don t care Specific If you want to filter a specific destination Ethernet Type with this ACE choose this value A field for entering a Ethernet Type value appears VLAN Parameters C VLAN Tagged Indicates tag type Possible values are Any Match tagged and untagged frames Enable Match C VLAN Tagged frames Disable disable C VLAN Tagged frames C VLAN ID Filter Specify the C VLAN ID filter f...

Page 261: ...rity is specified tag priority is don t care Select Frame Type to IPv4 Figure 14 1 The ACE Configuration Select Frame Type to Ipv4 IP Parameters IP Protocol Filter Any The ACE will match any frame type ICMP The ACE will match IPv4 frames with ICMP protocol UDP The ACE will match IPv4 frames with UDP protocol TCP The ACE will match IPv4 frames with TCP protocol Other The ACE will match IPv4 frames ...

Page 262: ...Auto refresh To evoke the auto refresh to refresh the information automatically Refresh clear Remove All You can click them for refresh the ACL configuration or clear them by manual Others remove all to clean up all ACL configurations on the table Cancel Return to the previous page ...

Page 263: ...Notification and SNMP Trap 2 Click any entry then you can create new SNMP Trap on the switch 3 Specify Server IP Community Severity Level 4 Click Apply Figure 15 1 The SNMP Trap Configuration Parameter description No The index of the trap host entry Version Indicates the SNMP trap supported version Possible versions are SNMP v2c Set SNMP trap supported version 2c ...

Page 264: ...y Level Indicates what kind of message will send to trap server Possible modes are Emerg System is unusable Alert Action must be taken immediately Crit Critical conditions Error Error conditions Warning Warning conditions Notice Normal but significant conditions Info Information messages Debug Debug level messages Buttons Apply Click to save changes Reset Click to undo any changes made locally and...

Page 265: ...u to issue ICMP Echo packets to troubleshoot Ipv4 6 connectivity issues Web Interface To configure a PING in the web interface 1 Click Diagnostics and Ping 2 Specify IP Address IP Version Ping Length and Ping Count 3 Click Start Figure 16 1 The ICMP Ping Parameter description IP Address To specify the target IP Address of the Ping IP Version To select the IP Version Ping Length ...

Page 266: ...load size of the ICMP packet Values range from 1 bytes to 1452 bytes Ping Count The count of the ICMP packet Values range from 1 time to 60 times Start Click the Start button to start to ping the target IP Address ...

Page 267: ...Click Diagnostics and Cable Diagnostics 2 Specify Port which want to check 3 Click Start Figure 16 2 The Cable Diagnostics Parameter description Port The port where you are requesting Cable Diagnostics Cable Status Port Port number Pair The status of the cable pair Length The length in meters of the cable pair Button Start Start to cable diagnostics the port that you selected ...

Page 268: ...te Parameter description IP Address The destination IP Address IP Version To set the IP Version what you want Protocol The protocol ICMP UDP TCP packets to send Wait Time Set the time in seconds to wait for a response to a probe default 5 0 sec Values range from 1 to 60 Maximum TTL Specifies the maximum number of hops max time to live value traceroute will probe Values range from 1 to 255 The defa...

Page 269: ... web interface 1 Click Diagnostics and Mirroring 2 Select the Monitor Destination Port Mirror Port 3 Select mode disabled enable TX Only and RX only for each monitored port 4 Click the Apply button to save the setting 5 If you want to cancel the setting then you need to click the Reset button to revert to previously saved values Figure 16 4 The Mirror Configuration Parameter description Mode Indic...

Page 270: ...ort Frames transmitted are not mirrored Tx only Frames transmitted on this port are mirrored on the mirror port Frames received are not mirrored Disabled neither frames transmitted nor frames received are mirrored Enabled Frames received and frames transmitted are mirrored on the mirror port Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously s...

Page 271: ...he currently active configuration on the switch This file is volatile startup config The startup configuration for the switch read at boot time default config A read only file with vendor specific configuration This file is read when the system is restored to default settings 17 1 1 Save startup config This copy running config to startup config thereby ensuring that the current active configuratio...

Page 272: ...263 Parameter description Button Save Configuration Click to save configuration the running configuration will be written to flash memory for system boot up to load this startup configuration file ...

Page 273: ... prepared before backup Web Interface To backup configuration in the web interface 1 Click Maintenance Configuration and Backup 2 Click Backup Figure 17 1 2 Backup Parameter description running config A virtual file that represents the currently active configuration on the switch This file is volatile startup config The startup configuration for the switch read at boot time default config A read o...

Page 274: ...erge mode The source file configuration is merged into running config Web Interface To restore configuration in the web interface 1 Click Maintenance Configuration and Restore 2 Click Restore Figure 17 1 3 Restore Config There are three system files 1 running config A virtual file that represents the currently active configuration on the switch This file is volatile 2 startup config The startup co...

Page 275: ... selected file Web Interface To activate configuration in the web interface 1 Click Maintenance Configuration and Activate config 2 Click Activate Select Figure 17 1 4 Configuration Activation System files startup config The startup configuration for the switch read at boot time Parameter description Activate You can select the file that you want to activate Buttons Activate Configuration File Cli...

Page 276: ...ly resets the switch to default configuration Web Interface To delete configuration in the web interface 1 Click Maintenance Configuration and Delete config 2 Click Delete Select Figure 17 1 5 Delete Configuration Parameter description Delete You can select the file that you want to delete Buttons Delete Configuration File Click the Delete Configuration File button then the selected file will be d...

Page 277: ...d still be available afterwards Web Interface To Restart Device in the web interface 1 Click Maintenance and Restart Device 2 Click Yes Figure 17 2 Restart Device Parameter description Restart Device You can restart the switch on this page After restart the switch will boot normally Buttons Yes Click to Yes then the device will restart No Click to cancel the opeation ...

Page 278: ... interface 1 Click Maintenance and Factory Defaults 2 You can choose if you want to keep ip configuration or not 3 Click Yes Figure 17 3 The Factory Defaults Parameter description Buttons Keep IP Configuration Choose if you want to keep ip configuration or not Yes Click to Yes button to reset the configuration to Factory Defaults No Click to cancel the operation ...

Page 279: ...es an update of the firmware controlling the switch Web Interface To update firmware of the device in the web interface 1 Click Maintenance Firmware and Firmware Upgrade 2 Click Upload Figure 17 4 1 The firmware upgrade Parameter description Browse Click the Browse button to search the Firmware URL and filename Browse ...

Page 280: ...eb interface 1 Click Maintenance Firmware and Firmware Selection 2 Click Activate Alternate Image Figure 17 4 2 The Firmware selection Image Information Partition Indicate whether primary or secondary partition in the flash is used for storing the firmware image Version The version of the firmware image Date The date where the firmware was produced Buttons Activate Alternate Image Click to use the...

Reviews:

No comments

Related manuals for 94-1518PF

DGS-1224TP - Web Smart Switch

Brand: D-Link Pages: 52

Brand: D-Link Pages: 8

DES-3225G Series

Brand: D-Link Pages: 3

DES-1228 - Web Smart Switch

Brand: D-Link Pages: 69

Brand: D-Link Pages: 109

Brand: Barco Pages: 2

Brand: Jabra Pages: 4

LINK 14201-20 - DATASHEET FOR TOSHIBA PHONES

Brand: Jabra Pages: 2

Brand: D-Link Pages: 7

INTEGRA KLI 310

Brand: Velux Pages: 9

Custom Pro Matrix

Brand: Bluestream Pages: 27

Brand: Omron Pages: 4

Brand: PABX Pages: 46

Brand: Vagner Pool Pages: 5

Brand: IPGARD Pages: 2

Brand: Eaton Pages: 3

ControlZAPP CZ CEFL 10VDC

Brand: DANLERS Pages: 2

Brand: Linksys Pages: 22

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands