MLis MLB-E4203-28-F User Manual Download Page 82 | Manualshive

Page: 82 / 85

background image

78

802.1x Authentication Application Guide

Introduction of 802.1x authentication function

IEEE 802.1x derives keys which can be used to provide per-packet authentication, integrity and
confidentially. Typically use along with well-known key derivation algorithms (e.g. TLS, SRP,
MD5-Challenge, etc.). In our industrial switch (RACK-MOUNT SWITCH), we support 802.1x
authentication function per port (port1~port10). You should enable 802.1x function of the system, and
choose ports and type you want to apply. If RACK-MOUNT SWITCH enable 802.1x authentication
control for certain Ethernet port, this port should be authenticated before using any service from the
network. Please see the following description.

802.1x Timer in RACK-MOUNT SWITCH

Item

Parameter (sec)

Description

1

ReAuth Period

RACK-MOUNT SWITCH will restart authentication after each Reauth-Period
when authentication success and ReAuth option is enabled

2

Quiet Period

RACK-MOUNT SWITCH will wait QuietPeriod to restart authentication
process again when authentication failed in previous time.

3

Tx Period

RACK-MOUNT SWITCH will send EAP-request to Supplicant every TxPeriod
when authentication is running and Quiet Period is not running.

4

Supplicant Timeout

RACK-MOUNT SWITCH will wait SupplicantTmeout to receive response
from Supplicant.

5

Server Timeout

RACK-MOUNT SWITCH will wait ServerTimeout to receive response from
RADIUS server.

Configuration in RADIUS Server

Step 1: Prepare a Linux PC with RADIUS server installed.

Step 2: Edit secret key for Radius server.

Setting:

client 20.20.20.0/24 {
secret = a1b2c3d4
}

The secret in the
RACK-MOUNT SWITCH
should be the same with this
one.

«
...
80
81
82
83
84
...
»

Summary of Contents for MLB-E4203-28-F

Page 1: ...MLB E4203 28 F MLB E4204 28 G F 28 Ports L2 Managed Gigabit Switch USER MANNUAL ...

Page 2: ...2 Managed Switch series MLB E4203 28 F MLB E4204 28 G F Managed Industrial Ethernet Switch User Manual Part Number Issue 01 May 2015 ...

Page 3: ...on Optional 20 VLAN Application Guide 22 Example 1 Default VLAN Settings 22 Example 2 Port based VLANs 23 Example 3 IEEE 802 1Q Tagging 26 Security Application Guide 29 Case 1 ACL for MAC address 29 Case 2 ACL for IP address 45 Case 3 ACL for L4 Port 45 Case 4 ACL for ToS 45 Ring Version 2 Application Guide 46 Ring Version 2 Feature 47 Configuration Web Interface 50 QoS Application Guide 56 SP SPW...

Page 4: ...CONTENTS ii ...

Page 5: ...1 Preface Scope Audience Safety Instructions Documentation Conventions ...

Page 6: ...2 ...

Page 7: ...us occurs depending on the laser output power The primary hazards of exposure to laser radiation from an optical fiber communication system are Damage to the eye by accidental exposure to a beam emitted by a laser source Damage to the eye from viewing a connector attached to a broken fiber or an energized fiber Documentation Conventions The following conventions are used in this manual to emphasiz...

Page 8: ...Preface 4 ...

Page 9: ...5 Overview Overview Panel Introduction Technical Specifications ...

Page 10: ...6 ...

Page 11: ...rnet port Dust Cover 14 SFP Ethernet port Dust cover 2 Safety Instructions When a connector is removed during installation testing or servicing or when an energized fiber is broken a risk of ocular exposure to optical energy that may be potentially hazardous occurs depending on the laser output power The primary hazards of exposure to laser radiation from an optical fiber communication system are ...

Page 12: ...Quick Installation 8 Model Layouts Front Access Models Front View All Front Access models Rear View MLB E4204 28 G F ...

Page 13: ...s Indicators LED Port Status Indicators LED Gigabit Copper RJ45 ports 100 1000BaseSFP slot Port 25 26 1000BaseSFP slot Port 27 28 Terminal block for Alarm Relay output Grounding screw DC terminal block dual input AC supply socket Console port Reset Button ...

Page 14: ...Quick Installation 10 Dimensions unit mm ...

Page 15: ... EZX Fiber port connector LC typically for fiber depends on module Power Power input options DC Redundant Input Terminals Reverse power protection Single dual AC inputs DC AC dual inputs Input voltage range AC 100 240 VAC 50Hz 60Hz Power Consumption 24 W Max Environmental and Compliances Operating temperature range 0 to 60 C or 40 to 75 C cold startup at 40 C Storage temperature range 40 to 85 C H...

Page 16: ...Quick Installation 12 Quick Installation Equipment Mounting Cable Connecting Equipment Configuration ...

Page 17: ... at least two people 1 Obtain the tools required for the mounting hardware 2 Attach the mounting brackets to the switch by using the screws in the accessory kit 3 From the front of the relay rack position the switch in its relay rack mounting location 4 Secure the switch in its relay location on both left and right side of mounting bracket Position 1 Position 2 ...

Page 18: ...ck Installation 14 Mounting Bracket Position 1 for Standard Mount Mounting Bracket Position 2 for Standard Mount Ground Connecting MLB E4204 28 G F must be properly grounded for optimum system performance ...

Page 19: ...the fused power distribution panel feeding the chassis Note The DC power should be connected to a well fused power supply AC Power Connection If you use AC power connect the AC power cord to the AC supply socket on the rear panel and plug the cord into the external power source The voltage must be 100 to 240 V 10 tolerance Warning Ensure that all power sources to the chassis power distribution pan...

Page 20: ...cial application transceivers Prepare a proper SFP module and install it into the optical port Then you can connect fiber optics cabling that uses LC connectors or SC connectors with the use of an optional SC to LC adapter to the fiber optics connector Fiber optics cable with LC duplex connector Connect the optical fiber to the SFP socket DANGER Never attempt to view optical connectors that might ...

Page 21: ...sole port a RJ45 male connector to RS232 DB9 female connector cable is required The RJ45 connector of the cable is connected to the console port of MLB E4204 28 G F the DB9 connector of the cable is connected to the PC COM port The pin assignment of the console cable is shown below Connect Login to MLB E4203 28 F MLB E4204 28 G F 1 Connecting to MLB E4203 28 F MLB E4204 28 G F Ethernet port RJ45 E...

Page 22: ... Username admin Password 4 Change the IP with commands listed below CLI Command SYSTEM RESET The Reset button is provided to reboot the system without the need to remove power Under normal circumstances you will not have to use it However or rare occasions the MLB E4203 28 F MLB E4204 28 G F may not respond then you may need to push the Reset button enable configure interface vlan 1 ip address xxx...

Page 23: ...bl le e m mo od de e O Of ff f R Ri in ng g g gr ro ou up p n no ot t s se et t o or r d di is sa ab bl le e R RS S R Ri in ng g S St ta at tu us s F Fl la as sh h G Gr re ee en n R Ri in ng g f fa ai il l h ha ap pp pe en n a an nd d d de et te ec ct te ed d O Of ff f N No o r ri in ng g f fa ai il l d de et te ec ct te ed d 2 2 P Po or rt t S St ta at tu us s I In nd di ic ca at to or rs s C Co ...

Page 24: ... Latin based Web page font Times New Roman Plain text font Courier New Encoding Unicode UTF 8 Text size Medium Firefox with the following default settings is recommended Web page font Times New Roman Encoding Unicode UTF 8 Text size 16 Google Chrome with the following default settings is recommended Web page font Times New Roman Encoding Unicode UTF 8 Text size Medium ...

Page 25: ...ation Guide 21 Application Guide VLAN Application Guide Security Application Guide Ring Protection Application Guide QoS Application Guide Link Fail Alarm Application Guide 802 1x Authentication Application Guide ...

Page 26: ...d only to ports in the same VLAN Example 1 Default VLAN Settings Each port in the RACK MOUNT SWITCH has a configurable default VLAN number known as its PVID This places all ports on the same VLAN initially although each port PVID is configurable to any VLAN number between 1 and 4094 The default configuration settings for RACK MOUNT SWITCH have all ports set as untagged members of VLAN 1 with all p...

Page 27: ...wing figure the untagged packet is marked tagged as it leaves the RACK MOUNT SWITCH through Port 2 which is configured as a tagged member of VLAN100 The untagged packet remains unchanged as it leaves the RACK MOUNT SWITCH through Port 7 which is configured as an untagged member of VLAN100 Configuration Step1 Go to Configuration Port Configuration Bridge Port and configure PVID 100 on Port 1 Port 2...

Page 28: ...ID The possible tag settings are T Specifies that the egress packet is tagged for the port U Specifies that the egress packet is untagged for the port Specifies that the port is not part of the VLAN Here we set tagged VLAN100 on Port 1 and Port 2 untagged VLAN100 on Port7 Step4 Transmit untagged unicast packets from Port 1 to Port 2 and Port 7 The RACK MOUNT SWITCH should tag it with VID 100 The p...

Page 29: ...cket leaves as a tagged packet with VID 100 Step6 Transmit untagged unicast packets from Port 7 to Port 1 and Port 2 The RACK MOUNT SWITCH should tag it with VID 100 The packet has access to Port1 and Port 2 For Port 1 and Port 2 the outgoing packet leaves as a tagged packet with VID 100 Step7 Repeat step 4 using broadcast and multicast packets CLI Command interface gigabit 1 default vlan 100 vlan...

Page 30: ...N 200 because of the tag assignment in the packet Port 2 is configured as a tagged member of VLAN 100 and Port 7 is configured as an untagged member of VLAN 200 Hosts in the same VLAN communicate with each other as if they in a LAN However hosts in different VLANs cannot communicate with each other directly In this case 1 The hosts from Group A can communicate with each other 2 The hosts from Grou...

Page 31: ...t with VID 200 The packet only has access to Port7 The outgoing packet on Port 7 is stripped of its tag as an untagged packet Step4 Transmit unicast packets with VLAN tag 100 from Port 2 to Port 1 and Port 7 The RACK MOUNT SWITCH should tag it with VID 100 The packet only has access to Port1 For Port 1 the outgoing packet leaves as a tagged packet with VID 100 Step5 Transmit unicast packets with V...

Page 32: ...VLAN Application Guide 28 vlan 100 v100 vlan 200 v200 interface gigabit 1 vlan 100 tag vlan 200 tag exit interface gigabit 2 vlan 100 tag exit interface gigabit 7 vlan 200 untag exit ...

Page 33: ...but permit frames set in ACL entry h Deny all frames i Deny all frames j Deny all frames but to copy frame which set in ACL entry to a defined GE port Case 1 ACL for MAC address For MAC address ACL it can filter on source MAC address destination MAC address or both When it filters on both MAC address packets coincident with both rules will take effect In other words it does not do filter if it onl...

Page 34: ...ectional MAC address with one VLAN deny filtering Step 1 Create a new ACL Profile Profile Name DenySomeMac Step 2 Create a new ACL Entry rule under this ACL profile Deny MAC 11 and VLAN 4 Step 3 Bind this ACL profile to a GE port GE 4 ...

Page 35: ...t name DenySomeMac acl profile 2 create entry 1 acl profile 2 set entry 1 mac type set vlan 4 acl profile 2 set entry 1 mac type set srcmac 00 00 00 00 00 11 FF FF FF FF FF FF exit vlan 4 vlan 5 interface gigabit 3 vlan 4 tag vlan 5 tag exit interface gigabit 4 vlan 4 tag vlan 5 tag acl profile bind 2 exit RACK MOUN T SWITC H SWITCH SWITCH SWITCH ...

Page 36: ...ional MAC address with all VLAN deny filtering Step 1 Create a new ACL Profile Profile Name DenySomeMac Step 2 Create a new ACL Entry rule under this ACL profile Deny SrcMAC 13 and DesMAC 11 Step 3 Bind this ACL profile to a GE port GE 3 ...

Page 37: ...ile 2 create entry 1 acl profile 2 set entry 1 mac type set srcmac 00 00 00 00 00 13 FF FF FF FF FF FF acl profile 2 set entry 1 mac type set dstmac 00 00 00 00 00 11 FF FF FF FF FF FF exit vlan 4 vlan 5 interface gigabit 3 vlan 4 tag vlan 5 tag acl profile bind 2 exit interface gigabit 4 vlan 4 tag vlan 5 tag exit RACK MOUN T SWITC H RACK MOUN T SWITC H RACK MOUN T SWITC H ...

Page 38: ...his port Case 1 d User can set default ACL Rule of GE port as Permit then to bind a suitable profile with CoS Marking action for some ACL function It means GE port can remark CoS of the VLAN frame received from this port One directional MAC address with CoS Marking action one VLAN and don t care Ether Type Step 1 Create a new ACL Profile Profile Name CoSMarkingTest Step 2 Create a new ACL Entry ru...

Page 39: ...ile 2 create entry 1 acl profile 2 set entry 1 mac type set vlan 4 acl profile 2 set entry 1 mac type set srcmac 00 00 00 00 00 11 FF FF FF FF FF FF acl profile 2 set entry 1 action cos 2 exit vlan 4 vlan 5 interface gigabit 3 vlan 4 tag vlan 5 tag exit interface gigabit 4 vlan 4 tag vlan 5 tag acl profile bind 2 exit RACK MOUN T SWITC H RACK MOUN T SWITC H RACK MOUN T SWITC H ...

Page 40: ...m will copy frames from binding GE Port to analyzer port Two directional MAC address with Copy Frame action Don t care VLAN ID Ether Type Step 1 Create a new ACL Profile Profile Name CopyFrameTest Step 2 Create a new ACL Entry rule under this ACL profile SrcMAC 13 and DesMAC 11 Step 3 Set analyzer port to enable and mirror analyzer port Step 4 Bind this ACL profile to a GE port GE 3 ...

Page 41: ... mac type set srcmac 00 00 00 00 00 13 FF FF FF FF FF FF acl profile 2 set entry 1 mac type set dstmac 00 00 00 00 00 11 FF FF FF FF FF FF acl profile 2 set entry 1 action copyframe exit vlan 4 vlan 5 interface gigabit 3 vlan 4 tag vlan 5 tag acl profile bind 2 exit interface gigabit 4 vlan 4 tag vlan 5 tag exit mirror analyzer port enable mirror analyzer port 5 RACK MOUN T SWITC H RACK MOUN T SWI...

Page 42: ...profile with Permit action for ACL It means GE port can not pass through all packets but ACL entry of the profile binding One directional MAC address with one VLAN permit filtering Step 1 Create a new ACL Profile Profile Name AllowSomeMac Step 2 Create a new ACL Entry rule under this ACL profile Allow MAC 11 and VLAN 4 Step 3 Bind this ACL profile to a GE port GE 4 ...

Page 43: ...ntry 1 acl profile 2 set entry 1 mac type set vlan 4 acl profile 2 set entry 1 mac type set srcmac 00 00 00 00 00 11 FF FF FF FF FF FF acl profile 2 set entry 1 action forwarding permit exit vlan 4 vlan 5 interface gigabit 3 vlan 4 tag vlan 5 tag exit interface gigabit 4 vlan 4 tag vlan 5 tag def acl deny acl profile bind 2 exit RACK MOUN T SWITC H RACK MOUN T SWITC H RACK MOUN T SWITC H ...

Page 44: ...nal MAC address with all VLAN permit filtering Step 1 Create a new ACL Profile Profile Name AllowSomeMac Step 2 Create a new ACL Entry rule under this ACL profile Allow SrcMAC 13 and DesMAC 11 Step 3 Bind this ACL profile to a GE port GE 3 ...

Page 45: ... set entry 1 mac type set srcmac 00 00 00 00 00 13 FF FF FF FF FF FF acl profile 2 set entry 1 mac type set dstmac 00 00 00 00 00 11 FF FF FF FF FF FF acl profile 2 set entry 1 action forwarding permit exit vlan 4 vlan 5 interface gigabit 3 vlan 4 tag vlan 5 tag def acl deny acl profile bind 2 exit interface gigabit 4 vlan 4 tag vlan 5 tag exit RACK MOUN T SWITC H RACK MOUN T SWITC H RACK MOUN T S...

Page 46: ...hen to bind a suitable profile with Copy Frame action for mirror analyzer used It means the system will copy frames from binding GE Port to analyzer port There is no frame received from the denied GE port but the mirror analyzer port One directional MAC address with Copy Frame action Don t case VLAN Ether Type Step 1 Create a new ACL Profile Profile Name CopyFrameTest Step 2 Create a new ACL Entry...

Page 47: ...QoS Application Guide 43 Step 4 Bind this ACL profile to a GE port GE 3 Step 5 Send frames between GE 3 and GE 4 see test result RACK MOU NT SWIT CH RACK MOU NT SWIT CH RACK MOU NT SWIT CH ...

Page 48: ...profile 2 set entry 1 mac type set srcmac 00 00 00 00 00 13 FF FF FF FF FF FF acl profile 2 set entry 1 mac type set dstmac 00 00 00 00 00 11 FF FF FF FF FF FF acl profile 2 set entry 1 action copyframe exit vlan 4 vlan 5 interface gigabit 3 vlan 4 tag vlan 5 tag def acl deny acl profile bind 2 exit interface gigabit 4 vlan 4 tag vlan 5 tag ...

Page 49: ... it should select exact one Protocol from UDP or TCP When it filters on both directional IP address and L4 port packets coincident with both rules will take effect In other words it does not do filter if it only coincident with one rule If user wants to filter only one directional IP address or L4 port the other IP address and L4 port just set to all zero It means don t care portion The detail tes...

Page 50: ...ry important to Ethernet applications especially in Industrial domain RACK MOUNT SWITCH provides a mini second grade failover ring protection this feature offers a seamless working network even if encountering some matters with connections It is able to be applied by Ethernet cable and Fiber ...

Page 51: ... is ring slave both ring ports are forward port Group 2 It support configuration of the ring coupling and dual homing Ring it could be master or slave Coupling it could be primary and backup When role is coupling primary only it need configure one ring port named primary port When role is coupling backup only it need configure one ring port named backup port This backup port is redundant port In n...

Page 52: ...in and balancing chain Chain it could be head tail or member When role is chain head one ring port is head port and another is member port Both ring ports are forwarded in normal state When role is chain tail one ring port is tail port and another is member port The tail port is redundant port It is blocked in normal state When role is chain member both ring ports are member port Both ring ports a...

Page 53: ...ncing chain terminal 1 2 one ring port is terminal port and another is member port Both ring ports are forwarded in normal state When role is balancing chain member both ring ports are member port Both ring ports are forwarded in normal state Note 1 It must enable group1 before configure group2 as coupling Note 2 When group1 or group2 is enabled the configuration of group3 is invisible Note 3 When...

Page 54: ...can accept the Node 2 port be blocking port Modify after the selection click Modify to apply the settings Note Please pay attention on the status of Previous Command Result after every action This document is introduction of the Industrial Ethernet Switch Software Spec for Ringv3 In our current design one device could support 3 ring index they are include ring coupling dual homing chain and balanc...

Page 55: ...ing Tree Protocol STP STP Bridge Config panel Select STP status be Disable Select RSTP Modify Ring Master 1 Go to Configuration Ringv2 Web page 2 Enable Group1 and Select Role be Ring Master 3 Select one port link to neighbor devices be Forward Port another is Block Port ...

Page 56: ... Select two port link to neighbor devices be Forward Port Coupling Primary 1 Go to Configuration Ringv2 Web page 2 Enable Group1 and Select Role be Ring Slave 3 Select two port link to neighbor devices be Forward Port 4 Enable Group2 and Select Role be Coupling Primary 5 Select one port link to above ring be Primary Port ...

Page 57: ...g Slave 3 Select two port link to neighbor devices be Forward Port 4 Enable Group2 and Select Role be Coupling Backup 5 Select one port link to above ring be Backup Port Dual Homing 1 Go to Configuration Ringv2 Web page 2 Enable Group2 and Select Role be Dual Homing 3 Select one port link to other ring be Backup Port ...

Page 58: ...page 2 Enable Group3 and Select Role be Chain Member 3 Select one port link to other ring or networks be Member Port Chain Haed 1 Go to Configuration Ringv2 Web page 2 Enable Group3 and Select Role be Chain Head 3 Select one port link to other ring or networks be Head Port ...

Page 59: ... Chain Central Block 1 Go to Configuration Ring Chain Web page 2 Enable Group3 and Select Role be Balance Chain Central Block 3 Select one port be Block Port which could distribute traffic loading Balance Chain Terminal 1 Go to Configuration Ringv2 Web page 2 Enable Group3 and Select Role be Balance Chain Terminal 1 or2 3 Select one port be Terminal Port which connect to other ring group ...

Page 60: ... CoS queue User needs to bind VLAN priority queue mapping profile to each port for every VLAN priority need assign a traffic descriptor for it The traffic descriptor defines the shapping parameter on every VLAN priority for Ethernet interface Currently RACK MOUNT SWITCH supports Strict Priority SP SPWRR SP WRR WRR Weighted Round Robin scheduling methods on each port Please find the detail referenc...

Page 61: ...xpected Result We expect GE 2 only can receive 100Mbps of Stream1 and Stream0 will be discarded This case will help user to know how SPQ works on the RACK MOUNT SWITCH Gigabit port VLAN Priority Queue mapping Stream0 Dst Mac 00 00 00 00 20 01 Src Mac 00 00 00 00 10 01 Vlan 100 Vlan prio 0 Send rate 100Mbps Packet length 1518bytes Stream1 Dst Mac 00 00 00 00 20 02 Src Mac 00 00 00 00 10 02 Vlan 100...

Page 62: ...Mbps full duplex Step2 Select Configuration VLAN Static VLAN Create a VLAN with VLAN ID 100 Enter a VLAN name in the Name field Here we set tagged VLAN100 on GE 1 and GE 2 CLI configuration command interface gigabit 2 speed full 100mbps exit vlan 100 v100 interface gigabit 1 vlan 100 tag exit interface gigabit 2 vlan 100 tag ...

Page 63: ...fic are not flooding Expected Result We expect GE 2 only can receive 20Mbps of Stream1 and 80Mbps of Stream0 This case will help user to know how SPQ works on the RACK MOUNT SWITCH VDSL port VLAN Priority Queue mapping Stream0 Dst Mac 00 00 00 00 20 01 Src Mac 00 00 00 00 10 01 Vlan 100 Vlan prio 0 Send rate 100Mbps Packet length 1518bytes Stream1 Dst Mac 00 00 00 00 20 02 Src Mac 00 00 00 00 10 0...

Page 64: ...00 00 10 02 Src Mac 00 00 00 00 20 02 Vlan 100 Vlan prio 0 Send rate 10Mbps Packet length 1518bytes Web management Step1 Go to Configuration Shaper Queue and set shaping rate for queue 0 and queue 7 as below CLI configuration command vlan 100 v100 interface gigabit 1 vlan 100 tag exit interface gigabit 2 vlan 100 tag queue shaper enable queue shaper queue 7 20000 queue shaper queue 0 80000 exit ...

Page 65: ...t flooding WRR support weight assignment the range of weight value is from 1 to 255 Bye the way RACK MOUNT SWITCH applies WRR scheduling and weight 1 for all the Gigabit Ethernet Port In the following case we will assign Weight 2 for Priority0 Weight 3 for Priority3 and Weight 5 for Priority7 Expected Result We expect GE 2 can receive about 20Mbps of Stream0 30Mbps of Stream1 and 50Mbps of Stream2...

Page 66: ... 20 08 Src Mac 00 00 00 00 10 08 Vlan 100 Vlan prio 7 Send rate 100Mbps Packet length 1518bytes Stream3 for Learning Dst Mac 00 00 00 00 10 01 Src Mac 00 00 00 00 20 01 Vlan 100 Vlan prio 0 Send rate 10Mbps Packet length 1518bytes Stream4 for Learning Dst Mac 00 00 00 00 10 04 Src Mac 00 00 00 00 20 04 Vlan 100 Vlan prio 0 Send rate 10Mbps Packet length 1518bytes Stream5 for Learning Dst Mac 00 00...

Page 67: ...63 Web management Step1 Go to Configuration Queue and Scheduler Scheduler Profile and set weight value for queue 0 queue 3 and queue 7 as below Step2 Go to Configuration Queue and Scheduler Binding and bind profile 2 on GE 2 ...

Page 68: ...ch scheduler profile 2 method wrr scheduler profile 2 queue 7 weight 5 scheduler profile 2 queue 3 weight 3 scheduler profile 2 queue 0 weight 2 exit vlan 100 v100 interface gigabit 1 vlan 100 tag exit interface gigabit 2 vlan 100 tag queue scheduler bind 2 exit ...

Page 69: ...K MOUNT SWITCH applies WRR scheduling and weight 1 for all the Gigabit Ethernet Port In the following case we will assign Weight 1 for Priority0 Weight 2 for Priority1 Weight3 for Priority2 and Weight4 for Priority 3 In SP WRR mode queue0 to queue3 belongs to WRR queue4 to queue6 belongs to SP Expected Result In Case 1 we expect GE 2 can receive about 10Mbps of Stream0 20Mbps of Stream1 30Mbps of ...

Page 70: ...e 100Mbps Packet length 1518bytes Stream3 Dst Mac 00 00 00 00 20 04 Src Mac 00 00 00 00 10 04 Vlan 100 Vlan prio 7 Send rate 100Mbps Packet length 1518bytes Stream5 for Learning Dst Mac 00 00 00 00 10 01 Src Mac 00 00 00 00 20 01 Vlan 100 Vlan prio 0 Send rate 10Mbps Packet length 1518bytes Stream6 for Learning Dst Mac 00 00 00 00 10 02 Src Mac 00 00 00 00 20 02 Vlan 100 Vlan prio 0 Send rate 10Mb...

Page 71: ...0 00 00 20 04 Vlan 100 Vlan prio 0 Send rate 10Mbps Packet length 1518bytes Web management Step1 Go to Configuration Queue and Scheduler Scheduler Profile and set weight value for queue 0 queue 3 as below Step2 Go to Configuration Queue and Scheduler Binding and bind profile 2 on GE 2 ...

Page 72: ... scheduler profile 2 method spq wrr scheduler profile 2 queue 3 weight 4 scheduler profile 2 queue 2 weight 3 scheduler profile 2 queue 1 weight 2 exit vlan 100 v100 interface gigabit 1 vlan 100 tag exit interface gigabit 2 vlan 100 tag queue scheduler bind 2 exit ...

Page 73: ... Queue mapping Stream0 Dst Mac 00 00 00 00 20 01 Src Mac 00 00 00 00 10 01 Vlan 100 Vlan prio 0 Send rate 100Mbps Packet length 1518bytes Stream1 Dst Mac 00 00 00 00 20 02 Src Mac 00 00 00 00 10 02 Vlan 100 Vlan prio 3 Send rate 100Mbps Packet length 1518bytes ...

Page 74: ...bps Packet length 1518bytes Stream5 for Learning Dst Mac 00 00 00 00 10 01 Src Mac 00 00 00 00 20 01 Vlan 100 Vlan prio 0 Send rate 10Mbps Packet length 1518bytes Stream6 for Learning Dst Mac 00 00 00 00 10 02 Src Mac 00 00 00 00 20 02 Vlan 100 Vlan prio 0 Send rate 10Mbps Packet length 1518bytes Stream7 for Learning Dst Mac 00 00 00 00 10 03 Src Mac 00 00 00 00 20 03 Vlan 100 Vlan prio 0 Send rat...

Page 75: ...0 00 00 20 07 Vlan 100 Vlan prio 0 Send rate 10Mbps Packet length 1518bytes Web management Step1 Go to Configuration Queue and Scheduler Scheduler Profile and set weight value for queue 0 queue 3 as below Step2 Go to Configuration Queue and Scheduler Binding and bind profile 2 on GE 2 ...

Page 76: ... scheduler profile 2 method spq wrr scheduler profile 2 queue 3 weight 4 scheduler profile 2 queue 2 weight 3 scheduler profile 2 queue 1 weight 2 exit vlan 100 v100 interface gigabit 1 vlan 100 tag exit interface gigabit 2 vlan 100 tag queue scheduler bind 2 exit ...

Page 77: ...y to alarm history table SNMP alarm trap and also trigger the alarm output relay In current design RACK MOUNT SWITCH only supports link fail alarm Please see the following description Link Fail Alarm in RACK MOUNT SWITCH RACK MOUNT SWITCH supports below alarm types GE 1 Port Link Down GE 2 Port Link Down GE 3 Port Link Down GE 4 Port Link Down GE 5 Port Link Down GE 6 Port Link Down GE 7 Port Link...

Page 78: ...guration and Application in Alarm 1 Each type can configure as mask or unmask The default values are mask for all of the alarm types 2 RACK MOUNT SWITCH supports alarm current table to display the current alarm ...

Page 79: ...e log the alarm history records The capture should include clear set alarm The alarm history table max size is 256 entries When the alarm history table is full the newly entry will override oldest one 4 RACK MOUNT SWITCH supports clear alarm history table command ...

Page 80: ...e relay output and alarm LED need to set ON If the alarm current table is empty then the relay output and alarm LED need to set OFF 6 When an alarm set clear RACK MOUNT SWITCH need generate an entry to alarm history table and also need send a SNMP trap to management server ...

Page 81: ...77 7 On the host with IP 172 16 100 10 could receive alarm trap which record link down up information ...

Page 82: ...OUNT SWITCH Item Parameter sec Description 1 ReAuth Period RACK MOUNT SWITCH will restart authentication after each Reauth Period when authentication success and ReAuth option is enabled 2 Quiet Period RACK MOUNT SWITCH will wait QuietPeriod to restart authentication process again when authentication failed in previous time 3 Tx Period RACK MOUNT SWITCH will send EAP request to Supplicant every Tx...

Page 83: ...ed by RADIUS server In a basic example we take port 1 as a testing port which enables 802 1x in RACK MOUNT SWITCH With default configuration use the following CLI commands CLI Command Configuration configure interface vlan 1 ip address 20 20 20 30 netmask 255 255 255 0 exit dot1x enable dot1x radius set 20 20 20 20 1812 a1b2c3d4 interface gigabit 1 dot1x auth port control auto dot1x reauth enable ...

Page 84: ...then to configure EAP type to MD5 Challenge After setting this function in NIC supplicant should enter a correct pair of account and password in order to use this Ethernet port service from RACK MOUNT SWITCH Authentication Behavior Supplicant should pass authentication process in order to use any service After supplicant enters correct account and password which stored in RADIUS server it can be a...

Page 85: ...5 China 86 755 8376 0232 Singapore 65 6272 7233 Email sales mlis schmidtelectronics com Official Website MLiS Website www schmidtm2m com Support www schmidtm2m com support Download www schmidtm2m com download Facebook www facebook com MLiSM2M ...

Reviews:

No comments

Related manuals for MLB-E4203-28-F

Brand: B&K Pages: 2

Brand: B&B Electronics Pages: 45

Brand: Radial Engineering Pages: 8

Brand: Radial Engineering Pages: 2

Brand: BeeSecure Pages: 35

Brand: SMC Networks Pages: 43

Brand: socomec Pages: 78

Brand: H3C Pages: 10

SEHI SEHI100TX-

Brand: Cabletron Systems Pages: 75

Omni-Rupter Series

Brand: S&C Pages: 31

IES-5222T Series

Brand: Lantech Pages: 30

Brand: SICK Pages: 19

Brand: Radware Pages: 4

Brand: ABM Pages: 8

Brand: W Box Technologies Pages: 10

Extricom AT-EXLS-3000

Brand: Allied Telesis Pages: 120

Brand: Opencockpits Pages: 30

Brand: ZIEHL-ABEGG Pages: 12

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands