manualshive.com logo in svg

Niveo Professional NGSME16T2H, User Manual

Get ready to optimize your work with the Niveo Professional NGSME16T2H switch. This advanced network switch ensures high-speed data transfer and reliable connections. Need the user manual? Download it for free from manualshive.com and maximize your experience with this powerful networking tool.

Share
Download
background image

Chapter 4: Feature Configuration - CLI 

Featuring Configuration – CLI

 

 

NGSME16T2H  User  Manual  |  213 

SSH 

Syntax: 

Security Switch SSH Mode [enable|disable] 

 

Example:

 

Security/Switch>ssh mode en 

Security/Switch>ssh mode dis 

 

HTTPS 

Syntax: 

Security Switch HTTPS Mode [enable|disable] 

Security/Switch>https mode en 

Security/Switch>https mode dis 

 

Security Switch HTTPS Redirect [enable|disable] 

Security/Switch>https mode en    (Must enabled HTTPS) 

Security/Switch>https redi en 

 

Result: 

Security/Switch>https conf 

 

HTTPS Configuration: 

==================== 

 

HTTPS Mode                    : Enabled 

HTTPS Redirect Mode : Enabled 

 

 

Access Management 

Syntax: 

Security Switch Access Add <access_id> <start_ip_addr> 

<end_ip_addr> [web] [snmp 

] [telnet] 

 

Example:

 Limit the IP range from the 192.168.2.1 to 

Summary of Contents for NGSME16T2H

Page 1: ...Version 1 0 Niveo Professional NGSME16T2H 16 Port 10 100 1000Base T PoE 2 Gigabit SFP Advanced Web Management PoE Switch...

Page 2: ...nce will not occur in a particular installation If this equipment does cause harmful interference to radio or television reception which can be determined by turning the equipment off and on the user...

Page 3: ...uring Configuration Web UI 26 System Configuration 27 System Information 27 Configuration 28 IPv6 Configuration 30 NTP Configuration 32 System Log Configuration 33 Power Reduction 35 LED Power Reducti...

Page 4: ...iorities 120 Spanning Tree CIST Ports 121 Spanning Tree MSTI Ports 124 MVR Multicast VLAN Registration 125 IPMC IP Multicast 127 IGMP Snooping Configuration 127 Basic Configuration 127 IGMP Snooping V...

Page 5: ...180 QoS DSCP based QoS Ingress Classification 182 QoS DSCP Translation 183 QoS DSCP Classification 185 QoS Control List Configuration 186 QoS Storm Control Configuration 189 Mirroring Configuration 1...

Page 6: ...stem Information 267 CPU Load 269 System Log Information 270 System Detailed Log 272 Monitor Port State 273 Port State 273 Traffic Overview 274 QoS Statistics 275 QCL Status 276 Detailed Port Statisti...

Page 7: ...PoE 343 LLDP EEE 345 LLDP Statistics 347 Dynamic MAC Table 349 VLAN Membership Status 351 VCL MAC Based VLAN Status 355 sFlow 356 Diagnostic 357 Ping 357 Ping6 358 VeriPHY Cable Diagnostic 359 Mainte...

Page 8: ...NGSME16T2H User Manual 8 Before Starting In Before Starting This section contains introductory information which includes Intended Readers Icons for Note Caution and Warning Product Package Contents...

Page 9: ...management and terminologies Icons for Note Caution and Warning To install configure use and maintain this product properly please pay attention when you see these icons in this manual A Note icon in...

Page 10: ...check and verify the contents of the product package which should include the following items One Network Switch One Power Cord One User Manual CD One pair Rack mount kit 8 Screws Note If any item li...

Page 11: ...Overview In Product Overview This section will give you an overview of this product including its feature functions and hardware software specifications Product Brief Description Product Specification...

Page 12: ...s The switch features 16 IEEE 802 3at Power over Ethernet PoE ports supplying up to 30 watts per port This product can convert standard 100 240V AC power into low voltage DC that runs over existing LA...

Page 13: ...rator can set up VLANs to segregate traffic QoS to prioritize mission critical data RSTP Loop Protection to avoid network loop link aggregation to create fat traffic pipelines bandwidth control to lim...

Page 14: ...ning Tree Protocol IEEE 802 1p Class of Service Priority Protocols IEEE 802 1X Port based Network Access Control Interface Number of Port 18 All Ethernet Port are on the Rear 10 100 1000Base RJ 45 Por...

Page 15: ...ery LLDP IEEE 802 1ab Link Layer Discovery Protocol MAC Address Table Ageing Time Static Secure MAC Table VLAN IEEE 802 1Q VLAN up to 4K groups Private VLAN Private VLAN and Port Isolation QoS 8 Prior...

Page 16: ...Chapter 1 Product Overview Product Overview NGSME16T2H User Manual 16 Humidity 5 90 non condensing Certification CE FCC Class A Safety UL UL60950 1 CE IEC60950 1...

Page 17: ...ors are also located on the front panel LED Indicators The LED Indicators present real time information of systematic operation status The following table provides description of LED status and their...

Page 18: ...00 ohm Max 100m 100 Base TX 2 pair UTP STP Cat 5 cable EIA TIA 568 100 ohm Max 100m 1000 Base T 4 pair UTP STP Cat 5 cable EIA TIA 568 100 ohm Max 100m PoE To delivery power without problem the Cat 5e...

Page 19: ...ure the switch via RS232 console cable if you don t attach your admin PC to your network or if you lose network connection to your switch It wouldn t be affected by network performance This is so call...

Page 20: ...oose the COM name 4 Select correct serial settings The serial settings of the switch are as below Baud Rate 115200 Parity None Data Bit 8 Stop Bit 1 5 After connected you can see Switch login request...

Page 21: ...Chapter 2 Preparing for Management Preparing for Management NGSME16T2H User Manual 21 Figure 3 2 Putty Configuration Figure 3 3 Putty Login Screen...

Page 22: ...t your Switch is properly installed on your network and that every PC on this network can access the switch via the web browser 1 Verify that your network interface card NIC is operational and that yo...

Page 23: ...will appear next 9 Key in the password Default user name and password are both admin If you can t login the switch the following steps can help you to identify the problem 1 Switch to DOS command mod...

Page 24: ...SSH console can be treated as secured Telnet connection need to enable the SSH feature in Security Switch SSH Tradition way for Telnet Connection 1 Go to Start Run cmd And then press Enter 2 Type the...

Page 25: ...ion in the popup screen Press Yes to accept the Security Alert If you choose Telnet connection there is no such cipher information and window It goes to next step directly 3 After few seconds the Teln...

Page 26: ...Configuration Web UI The switch provides abundant software features after login the switch you can start configuring the settings or monitoring the status This is one question market on the right top...

Page 27: ...e s fully qualified domain name A domain name is a text string drawn from the alphabet A Za z digits 0 9 minus sign No space characters are permitted as part of a name The first character must be an a...

Page 28: ...will be used The DHCP client will announce the configured System Name as hostname to provide DNS lookup IP Address Provide the IP address of this switch in dotted decimal notation IP Mask Provide the...

Page 29: ...uring Configuration Web UI NGSME16T2H User Manual 29 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Renew Click to renew DHCP Thi...

Page 30: ...ed as eight fields of up to four hexadecimal digits with a colon separating each field For example fe80 215 c5ff fe03 4dc7 The symbol is a special syntax that can be used as a shorthand way of represe...

Page 31: ...figuration Web UI NGSME16T2H User Manual 31 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Renew Click to renew IPv6 AUTOCONF Thi...

Page 32: ...s NTP messages between the clients and the server when they are not on the same subnet domain Disable NTP mode operation Server Provide the NTP IPv4 or IPv6 address of this switch IPv6 address is in 1...

Page 33: ...the cause of the issues The switch Web UI allows you to Enable the Syslog Server assign the IP address and assign the syslog level Server Mode Indicates the server mode operation When the mode operat...

Page 34: ...yslog Level Indicates what kind of message will send to syslog server Possible modes are Info Send information warnings and errors Warning Send warnings and errors Error Send errors Buttons Save Click...

Page 35: ...ntensity shall be set The time setting is step by one hour Intensity The LEDs intensity 100 Full power 0 LED off Maintenance Time When a network administrator does maintenance of the switch e g adding...

Page 36: ...that both the receiving and transmitting device has all circuits powered up when traffic is transmitted The devices can exchange information about the devices wakeup time using the LLDP protocol For...

Page 37: ...Controls whether EEE is enabled for this switch port EEE Urgent Queues Queues set will activate transmision of frames as soon as any data is available Otherwise the queue will postpone the transmsion...

Page 38: ...e Full Duplex Mode Configured Link Speed Select any available link speed for the given switch port Auto Speed selects the highest speed that is compatible with a link partner Disabled disables the swi...

Page 39: ...imum Frame Size Enter the maximum frame size allowed for the switch port including FCS The switch supports up to 9K Jumbo Frame Excessive Collision Mode Configure port transmit collision behavior Disc...

Page 40: ...ntly the only way to login as another user on the web server is to close and reopen the browser This page configures a user This is also a link to Add User Edit User Add New User Edit User Click Add N...

Page 41: ...e same or greater than the group privilege level to have the access of that group By default setting most groups privilege level 5 has the read only access and privilege level 10 has the read write ac...

Page 42: ...n one The following description defines these privilege level groups in details System Contact Name Location Timezone Log Security Authentication System Access Management Port contains Dot1x port MAC...

Page 43: ...for clearing of statistics User Privilege should be same or greater than the authorization Privilege level to have the access to that group Insufficient Privilege Level If you login with lower level p...

Page 44: ...set to one of the following values none authentication is disabled and login is not possible local use the local user database on the switch for authentication RADIUS use a remote RADIUS server for a...

Page 45: ...switch by SSH you should install SSH client on you computer such as PuTTy console tool In the switch side the switch acts as SSH server for user login and you can Enable or Disable SSH on this page P...

Page 46: ...This page allows you to configure HTTPS mode Mode Indicates the HTTPS mode operation Possible modes are Enable Enable HTTPS mode operation Disabled Disable HTTPS mode operation Automatic Redirect Indi...

Page 47: ...access to the switch Example of the below figure only the IP Addresses range from 192 168 2 101 to 192 168 2 200 can access the switch s management interface The available services are HTTP HTTPS SNM...

Page 48: ...IP address matches the IP address range provided in the entry TELNET SSH Indicates that the host can access the switch from TELNET SSH interface if the host IP address matches the IP address range pro...

Page 49: ...ation Disabled Disable SNMP mode operation Version Indicates the SNMP supported version Possible versions are SNMPv1 Set SNMP supported version 1 SNMPv2c Set SNMP supported version 2c SNMPv3 Set SNMP...

Page 50: ...MPv2c If SNMP version is SNMPv3 the community string will be associated with SNMPv3 communities table It provides more flexibility to configure security name than a SNMPv1 or SNMPv2c community string...

Page 51: ...ty Indicates the community access string when sending SNMP trap packet The allowed string length is 0 to 255 and the allowed content is ASCII characters from 33 to 126 Trap Destination Address Indicat...

Page 52: ...orm retry times The allowed range is 0 to 255 Trap Probe Security Engine ID Indicates the SNMP trap probe security engine ID mode of operation Possible values are Enable Enable SNMP trap probe securit...

Page 53: ...t access to SNMPv3 agent The allowed string length is 1 to 32 and the allowed content is ASCII characters from 33 to 126 The community string will be treated as security name and map a SNMPv1 or SNMPv...

Page 54: ...ine ID and usm User Name are the entry s keys In a simple agent usm User Engine ID is always that agent s own snmp Engine ID value The value can also take the value of the snmp Engine ID of a remote S...

Page 55: ...ring identifying the authentication password phrase For MD5 authentication protocol the allowed string length is 8 to 32 For SHA authentication protocol the allowed string length is 8 to 40 The allowe...

Page 56: ...v1 Reserved for SNMPv1 v2c Reserved for SNMPv2c usm User based Security Model USM Security Name A string identifying the security name that this entry should belong to The allowed string length is 1 t...

Page 57: ...ould belong to Possible view types are Included An optional flag to indicate that this view sub tree should be included excluded An optional flag to indicate that this view sub tree should be excluded...

Page 58: ...should belong to The allowed string length is 1 to 32 and the allowed content is ASCII characters from 33 to 126 Security Model Indicates the security model that this entry should belong to Possible s...

Page 59: ...to 32 and the allowed content is ASCII characters from 33 to 126 Write View Name The name of the MIB view defining the MIB objects for which this request may potentially set new values The allowed st...

Page 60: ...s Packets dropped packets sent bytes sent octets broadcast packets multicast packets CRC errors undersize packets oversize packets fragments jabbers collisions and counters for packets ranging from 64...

Page 61: ...deleted during the next save ID Indicates the index of the entry The range is from 1 to 65535 Data Source Indicates the port ID which wants to be monitored If in stacking switch the value must add 10...

Page 62: ...h the value must add 1000 switch ID 1 for example if the port is switch 3 port 5 the value is 2005 Interval Indicates the interval in seconds for sampling the history statistics data The range is from...

Page 63: ...The total number of octets received on the interface including framing characters InUcastPkts The number of uni cast packets delivered to a higher layer protocol InNUcastPkts The number of broad cast...

Page 64: ...e thresholds possible sample types are Absolute Get the sample directly Delta Calculate the difference between samples default Value The value of the statistic during the last sampling period Startup...

Page 65: ...er Manual 65 Falling Threshold Falling threshold value 2147483648 2147483647 Falling Index Falling event index 1 65535 Buttons Add new entry Click to add a new community entry Save Click to save chang...

Page 66: ...umber of octets received on the interface including framing characters Log The number of uni cast packets delivered to a higher layer protocol Snmptrap The number of broad cast and multi cast packets...

Page 67: ...f users on a given port A user is identified by a MAC address and VLAN ID If Limit Control is enabled on a port the limit specifies the maximum number of users on the port If this number is exceeded a...

Page 68: ...period of all modules that use the functionality The Aging Period can be set to a number between 10 and 10 000 000 seconds To understand why aging may be desired consider the following scenario Suppo...

Page 69: ...otice that other modules may still use the underlying port security features without enabling Limit Control on a given port Limit The maximum number of MAC addresses that can be secured on this port T...

Page 70: ...addresses is seen on the port both the Trap and the Shutdown actions described above will be taken State This column shows the current state of the port as seen from the Limit Control s point of view...

Page 71: ...s allowed access to the network These backend RADIUS servers are configured on the Configuration Security AAA page The IEEE802 1X standard defines port based operation but non standard variants overco...

Page 72: ...ted This is only active if the Reauthentication Enabled checkbox is checked Valid values are in the range 1 to 3600 seconds EAPOL Timeout Determines the time for retransmission of Request Identity EAP...

Page 73: ...a number between 10 and 1000000 seconds RADIUS Assigned QoS Enabled RADIUS assigned QoS provides a means to centrally control the traffic class to which traffic coming from a successfully authenticat...

Page 74: ...bled on all ports Guest VLAN ID This is the value that a port s Port VLAN ID is set to if a port is moved into the Guest VLAN It is only changeable if the Guest VLAN option is globally enabled Valid v...

Page 75: ...g modes are available Force Authorized In this mode the switch will send one EAPOL Success frame when the port link comes up and any client on the port will be allowed network access without authentic...

Page 76: ...ted to the supplicant Note Suppose two backend servers are enabled and that the server timeout is configured to X seconds using the AAA configuration page and suppose that the first server in the list...

Page 77: ...sent from the switch towards the supplicant since that would cause all supplicants attached to the port to reply to requests sent from the switch Instead the switch uses the supplicant s MAC address w...

Page 78: ...ed QoS is both globally enabled and enabled checked on a given port the switch reacts to QoS Class information carried in the RADIUS Access Accept packet transmitted by the RADIUS server when a suppli...

Page 79: ...ut affecting the RADIUS assigned This option is only available for single client modes i e Port based 802 1X Single 802 1X For trouble shooting VLAN assignments use the Monitor VLANs VLAN Membership a...

Page 80: ...Request Identity frames is configured with EAPOL Timeout If Allow guest VLAN if EAPOL Seen is enabled the port will now be placed in the Guest VLAN If disabled the switch will first check its history...

Page 81: ...he buttons are only enabled when authentication is globally enabled and the port s Admin State is in an EAPOL based or MAC based mode Clicking these buttons will not cause settings changed on the page...

Page 82: ...E of each switch port These parameters will affect frames received on a port unless the frame matches a specific ACE The settings relate to the currently selected stack unit as reflected by the page h...

Page 83: ...on the port are not mirrored The default value is Disabled Logging Specify the logging operation of this port The allowed values are Enabled Frames received on the port are stored in the System Log Di...

Page 84: ...switch Rate Limiter ID The rate limiter ID for the settings contained in the same row Rate The allowed values are 0 3276700 in pps Or 0 100 200 300 1000000 in kbps Unit Specify the rate unit The allow...

Page 85: ...erved ACEs used for internal protocol cannot be edited or deleted the order sequence cannot be changed and the priority is highest Ingress Port Indicates the ingress port of the ACE Possible values ar...

Page 86: ...ayed the rate limiter operation is disabled Port Copy Indicates the port copy operation of the ACE Frames matching the ACE are copied to the port number The allowed values are Disabled or a specific p...

Page 87: ...H User Manual 87 Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs at regular intervals Refresh Click to refresh the page Note that non committed changes w...

Page 88: ...of the switch port You can select one port or select multiple ports for the entry Policy Filter Specify the policy number filter for this ACE The policy ID should be the same when you want apply it to...

Page 89: ...t match the ACE with ethernet type IPv4 Only IPv4 frames can match this ACE Notice the IPv4 frames won t match the ACE with ethernet type IPv6 Only IPv6 frames can match this ACE Notice the IPv6 frame...

Page 90: ...Port shut down is disabled for the ACE Counter The counter indicates the number of times the ACE was hit by a frame MAC Parameters SMAC Filter Only displayed when the frame type is Ethernet Type or A...

Page 91: ...this value A field for entering a VLAN ID number appears VLAN ID When Specific is selected for the VLAN ID filter you can enter a specific VLAN ID number The allowed range is 1 to 4095 A frame that hi...

Page 92: ...can enter a specific sender IP mask in dotted decimal notation Target IP Filter Specify the target IP filter for this specific ACE Any No target IP filter is specified Target IP filter is don t care H...

Page 93: ...rames where the HLN is not equal to Ethernet 0x06 or the PLN is not equal to IPv4 0x04 1 ARP RARP frames where the HLN is equal to Ethernet 0x06 and the PLN is equal to IPv4 0x04 Any Any value is allo...

Page 94: ...defining TCP parameters will appear These fields are explained later in this help file IP Protocol Value When Specific is selected for the IP protocol value you can enter a specific value The allowed...

Page 95: ...Address When Host or Network is selected for the source IP filter you can enter a specific SIP address in dotted decimal notation SIP Mask When Network is selected for the source IP filter you can en...

Page 96: ...de value A field for entering an ICMP code value appears ICMP Code Value When Specific is selected for the ICMP code filter you can enter a specific ICMP code value The allowed range is 0 to 255 A fra...

Page 97: ...ter you can enter a specific TCP UDP destination value The allowed range is 0 to 65535 A frame that hits this ACE matches this TCP UDP destination value TCP UDP Destination Range When Range is selecte...

Page 98: ...t care TCP ACK Specify the TCP Acknowledgment field significant ACK value for this ACE 0 TCP frames where the ACK field is set must not be able to match this entry 1 TCP frames where the ACK field is...

Page 99: ...DHCP snooping mode operation is enabled the DHCP request messages will be forwarded to trusted ports and only allow reply packets from trusted ports Disabled Disable DHCP snooping mode operation Port...

Page 100: ...ration Relay Server Indicates the DHCP relay server IP address A DHCP relay agent is used to forward and to transfer DHCP messages between the clients and the server when they are not in the same subn...

Page 101: ...tes the DHCP relay information option policy When DHCP relay information mode operation is enabled if agent receives a DHCP message that already contains relay agent information it will enforce the po...

Page 102: ...which ports Only when both Global Mode and Port Mode on a given port are enabled IP Source Guard is enabled on this given port Max Dynamic Clients Specify the maximum number of dynamic clients that ca...

Page 103: ...al port for the settings VLAN ID The vlan id for the settings IP Address Allowed Source IP address usedMAC address Allowed Source MAC address Adding new entry Click to add a new entry to the Static IP...

Page 104: ...ring Configuration Web UI NGSME16T2H User Manual 104 ARP Inspection ARP Inspection This page provides ARP Inspection related configuration Mode of ARP Inspection Configuration Enable the Global ARP In...

Page 105: ...n is enabled on which ports Only when both Global Mode and Port Mode on a given port are enabled ARP Inspection is enabled on this given port Buttons Save Click to save changes Reset Click to undo any...

Page 106: ...s VLAND ID The vlan id for the settings MAC Address Allowed Source MAC address in ARP request packets IP Address Allowed Source IP address in ARP request packets Adding new entry Click to add a new en...

Page 107: ...ng the UDP protocol which is unreliable by design In order to cope with lost frames the timeout interval is divided into 3 subintervals of equal length If a reply is not received within the subinterva...

Page 108: ...fault port 1812 is used on the RADIUS Authentication Server Secret The secret up to 29 characters long shared between the RADIUS Authentication Server and the switch RADIUS Accounting Server Configura...

Page 109: ...ntication Server by checking this box IP Address Hostname The IP address or hostname of the TACACS Authentication Server IP address is expressed in dotted decimal notation Port The TCP port to use on...

Page 110: ...group The aggregation hash mode settings are global whereas the aggregation group relate to the currently selected stack unit as reflected by the page header Hash Code Contributors Source MAC Address...

Page 111: ...D for the settings contained in the same row Group ID Normal indicates there is no aggregation Only one group ID is valid per port Port Members Each switch port is listed for each group ID Select a ra...

Page 112: ...llows the user to inspect the current LACP port configurations and possibly change them as well Port The switch port number LACP Enabled Controls whether LACP is enabled on this switch port LACP will...

Page 113: ...Specific setting a user defined value can be entered Ports with the same Key value can participate in the same aggregation group while ports with different keys cannot Role The Role shows the LACP ac...

Page 114: ...hen the switch do detect the network loop After the port is shutdown it may hard to manually reconnect it so that there is a shutdown time timeout design can help re enable the port link automatically...

Page 115: ...med when a loop is detected on a port The valid values are Shutdown Port Shutdown the port until the Shutdown Time timeout Shutdown Port and Log Shutdown the port and log the status Log Only Only log...

Page 116: ...ovide an independent spanning tree for different VLANs With the Spanning Tree and VLAN mapping each VLAN has its own root and blocking path the STP region size becomes lower the convergence time of to...

Page 117: ...is the priority of the STP RSTP bridge Forward Delay The delay used by STP Bridges to transit Root and Designated Ports to Forwarding used in STP compatible mode Valid values are in the range 4 to 30...

Page 118: ...port will enter the error disabled state and will be removed from the active topology Port Error Recovery Control whether a port in the error disabled state automatically will be enabled after a certa...

Page 119: ...are spanning trees for MSTI s Intra region The name is at most 32 characters Configuration Revision The revision of the MSTI configuration named above This must be an integer between 0 and 65535 MSTI...

Page 120: ...ibly change them as well MSTI The bridge instance The CIST is the default instance which is always active Priority Controls the bridge priority Lower numeric values have better priority The bridge pri...

Page 121: ...y the page header Port The switch port number of the logical STP port STP Enabled Controls whether STP is enabled on this switch port Path Cost Controls the path cost incurred by the port The Auto set...

Page 122: ...ses the port not to be selected as Root Port for the CIST or any MSTI even if it has the best spanning tree priority vector Such a port will be selected as an Alternate Port after the Root Port has be...

Page 123: ...ing error disabled state due to this setting is subject to the bridge Port Error Recovery setting as well Point2Point Controls whether the port connects to a point to point LAN rather than to a shared...

Page 124: ...ttings also relate to the currently selected stack unit as reflected by the page header Port The switch port number of the corresponding STP CIST and MSTI port Path Cost Controls the path cost incurre...

Page 125: ...er after MVR enabled the client subscriber VLANs are registered to the same source VLAN then there is only one source stream will be delivered to the registered VLANs This page provides MVR related co...

Page 126: ...Enable Disable the Global MVR VLAN ID Specify the Multicast VLAN ID Mode Enable MVR on the port Type Specify the MVR port type on the port Immediate Leave Enable the fast leave on the port Buttons Sa...

Page 127: ...2 devices to manage and control multicast groups By listening to and analyzing IGMP messages a Layer 2 device running IGMP Snooping establishes mappings between ports and multicast MAC addresses and...

Page 128: ...owards the Layer 3 multicast device or MLD querier Normally the router port is the uplink port to the upper L3 Router or IGMP Querier For example in below figure the green port of the 2 switches are R...

Page 129: ...figuration Web UI NGSME16T2H User Manual 129 Throttling Enable to limit the number of multicast groups to which a switch port can belong Buttons Save Click to save changes Reset Click to undo any chan...

Page 130: ...he will use the last entry of the currently displayed entry as a basis for the next lookup When the end is reached the text No more entries is shown in the displayed table Use the button to start over...

Page 131: ...ented by the Last Member Query Interval multiplied by the Last Member Query Count The allowed range is 0 to 31744 in tenths of seconds default last member query interval is 10 in tenths of seconds 1 s...

Page 132: ...The logical port for the settings Filtering Groups The IP Multicast Group that will be filtered Adding New Filtering Group Click to add a new entry to the Group Filtering table Specify the Port and Fi...

Page 133: ...nable unregistered IPMCv6 traffic flooding Please note that disabling unregistered IPMCv6 traffic flooding may lead to failure of Neighbor Discovery SSM Range SSM Source Specific Multicast Range allow...

Page 134: ...16T2H User Manual 134 Fast Leave Enable the fast leave on the port Throttling Enable to limit the number of multicast groups to which a switch port can belong Buttons Save Click to save changes Reset...

Page 135: ...t lookup When the end is reached the text No more entries is shown in the displayed table Use the button to start over MLD Snooping VLAN Table Columns VLAN ID The VLAN ID of the entry MLD Snooping Ena...

Page 136: ...Done messages It is also the Maximum Response Delay used to calculate the Maximum Response Code inserted into Multicast Address and Source Specific Query messages The allowed range is 0 to 31744 in t...

Page 137: ...entry It will be deleted during the next save Port The logical port for the settings Filtering Groups The IP Multicast Group that will be filtered Adding New Filtering Group Click to add a new entry...

Page 138: ...urrent LLDP port settings LLDP Configuration Tx Interval The switch periodically transmits LLDP frames to its neighbors for having the network discovery information up to date The interval between eac...

Page 139: ...ation received from neighbors but will send out LLDP information Disabled The switch will not send out LLDP information and will drop LLDP information received from neighbors Enabled The switch will s...

Page 140: ...terminated by the switch Note When CDP awareness on a port is disabled the CDP information isn t removed immediately but gets removed when the hold time is exceeded Port Descr Optional TLV When checke...

Page 141: ...nappropriate knowledge of the network policy With this in mind LLDP MED defines an LLDP MED Fast Start interaction between the protocol and the application layers on top of the protocol in order to ac...

Page 142: ...ithin 0 180 degrees with a maximum of 4 digits It is possible to specify the direction the either East of the prime meridian or West of the prime meridian Altitude Altitude SHOULD be normalized to wit...

Page 143: ...ry code The two letter ISO 3166 Country code in capital ASCII letters Example DK DE or US State National subdivisions state canton region province prefecture County County perish gun Japan district Ci...

Page 144: ...ample 450F Place type Place type Example Office Postal community name Postal community name Example Leonia P O Box Post office box P O Box Example 12345 Additional code Additional code Example 1320300...

Page 145: ...e Policies are only intended for use with applications that have specific real time network policy requirements such as interactive voice and or video services The network policy attributes advertised...

Page 146: ...policy It will be deleted during the next save Policy ID ID for the policy This is auto generated and shall be used when selecting the polices that shall be mapped to the specific ports Application T...

Page 147: ...specific network policy treatment Video applications relying on TCP with buffering would not be an intended use of this application type 8 Video Signalling conditional for use in network topologies t...

Page 148: ...3 A value of 0 represents use of the default DSCP value as defined in RFC 2475 Adding a new policy Click to add a new policy Specify the Application type Tag VLAN ID L2 Priority and DSCP for the new p...

Page 149: ...ch port PDs specified in the Maximum Power fields 2 Class mode In this mode each port automatically determines how much power to reserve according to the class the connected PD belongs to and reserves...

Page 150: ...ration Primary Power Supply W Some switches support having two PoE power supplies One is used as primary power source and one as backup power source If the switch doesn t support backup power supply o...

Page 151: ...ces requires more power than the power supply can deliver In this case the port with the lowest priority will be turn off starting from the port with the highest port number Maximum Power The Maximum...

Page 152: ...gure aging time by entering a value here in seconds for example Age time seconds The allowed range is 10 to 1000000 seconds Disable the automatic aging of dynamic entries by checking Disable automatic...

Page 153: ...to secure learning mode otherwise the management link is lost and can only be restored by using another non secure port or by connecting to the switch via the serial interface Static MAC Table Configu...

Page 154: ...indicate which ports are members of the entry Check or uncheck as needed to modify the entry Adding a New Static Entry Click to add a new entry to the static MAC table Specify the VLAN ID MAC address...

Page 155: ...to next switch and whole network depends on how you configuring the switch settings VLAN Membership Configuration The VLAN membership configuration for theswitch can be monitored and modified here Up...

Page 156: ...ries or it can be added to the new entries Port Members A row of check boxes for each port is displayed for each VLAN ID To include a port in a VLAN check the box as To include a port in a forbidden p...

Page 157: ...ck to save changes Reset Click to undo any changes made locally and revert to previously saved values Refreshes Refreshes the displayed the table starting from the VLAND ID input fields Updates the ta...

Page 158: ...S ports Port This is the logical port number of this row Port Type Port can be one of the following types Unaware Customer port C port Service port S port Custom Service port S custom port If Port Ty...

Page 159: ...pecific the default value is selected a Port VLAN ID can be configured see below Untagged frames received on the port are classified to the Port VLAN ID If VLAN awareness is disabled all frames receiv...

Page 160: ...ty The switch ports assigned to an Isolated VLAN can send traffic to the primary VLAN but CANNOT see traffic from other devices in the same Isolated VLAN In this section the switch allows you to assig...

Page 161: ...lt no ports are members and all boxes are unchecked Adding a New Private VLAN Click to add a new private VLAN ID An empty row is added to the table and the private VLAN can be configured as needed The...

Page 162: ...nd Private VLAN The port settings relate to the currently selected stack unit as reflected by the page header This feature works across the stack Configuration Port Members A check box is provided for...

Page 163: ...ayed for each MAC based VLAN entry To include a port in a MAC based VLAN check the box To remove or exclude the port from the MAC based VLAN make sure the box is unchecked By default no ports are memb...

Page 164: ...ck to undo any changes made locally and revert to previously saved values Refreshes Refreshes the displayed the table starting from the VLAND ID input fields Updates the table starting from the first...

Page 165: ...pe Frame Type can have one of the following values 1 Ethernet 2 LLC 3 SNAP Note On changing the Frame type field valid value of the following text field will vary depending on the new frame type you s...

Page 166: ...unning on top of SNAP In other words if value of OUI field is 00 00 00 then value of PID will be etype 0x0600 0xffff and if value of OUI is other than 00 00 00 then valid value of PID will be any valu...

Page 167: ...a VLAN must be present in Protocol to Group mapping table and must not be preused by any other existing mapping entry on this page VLAD ID Indicates the ID to which Group Name will be mapped A valid...

Page 168: ...3 Featuring Configuration Web UI Featuring Configuration Web UI NGSME16T2H User Manual 168 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously save...

Page 169: ...es the IP address Mask Length Indicates the network mask length VLAN ID Indicates the VLAN ID VLAN ID can be changed for the existing entries Port Members A row of check boxes for each port is display...

Page 170: ...T2H User Manual 170 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Auto refresh Check this box to refresh the page automatically...

Page 171: ...e Voice VLAN It can avoid the conflict of ingress filtering Possible modes are Enabled Enable Voice VLAN mode operation Disabled Disable Voice VLAN mode operation VLAN ID Indicates the Voice VLAN ID I...

Page 172: ...will be blocked for 10 seconds Possible port modes are Enabled Enable Voice VLAN security mode operation Disabled Disable Voice VLAN security mode operation Port Discovery Protocol Indicates the Voice...

Page 173: ...ned to a vendor by IEEE It must be 6 characters long and the input format is xx xx xx x is a hexadecimal digit Description The description of OUI address Normally it describes which vendor telephony d...

Page 174: ...ader The displayed settings are Port The port number for which the configuration below applies QoS class Controls the default QoS class i e the QoS class for frames not classified in any other way The...

Page 175: ...sabled Use default QoS class and DP level for tagged frames Enabled Use mapped versions of PCP and DEI for tagged frames Click on the mode in order to configure the mode and or mapping DSCP Based Clic...

Page 176: ...number for which the configuration below applies Enabled Controls whether the policer is enabled on this switch port Rate Controls the rate for the policer The default value is 500 This value is rest...

Page 177: ...ort Schedulers for all switch ports The ports belong to the currently selected stack unit as reflected by the page header The displayed settings are Port The logical port for the settings contained in...

Page 178: ...s for all switch ports The ports belong to the currently selected stack unit as reflected by the page header The displayed settings are Port The logical port for the settings contained in the same row...

Page 179: ...ports belong to the currently selected stack unit as reflected by the page header The displayed settings are Port The logical port for the settings contained in the same row Click on the port number i...

Page 180: ...e dscp ingress and egress settings Ingress In Ingress settings you can change ingress translation and classification settings for individual ports There are two configuration parameters available in I...

Page 181: ...d DSCP value The remapped DSCP value is always taken from the DSCP Translation Egress Remap DP0 table Remap DP Aware DSCP from analyzer is remapped and frame is remarked with remapped DSCP value Depen...

Page 182: ...ings are DSCP Maximum number of supported DSCP values are 64 Trust Controls whether a specific DSCP value is trusted Only frames with trusted DSCP values are mapped to a specific QOs class and Drop Pr...

Page 183: ...gress The displayed settings are DSCP Maximum number of supported DSCP values are 64 and valid DSCP value ranges from 0 to 63 Ingress Ingress side DSCP can be first translated to new DSCP before using...

Page 184: ...with DP level 0 2 Remap DP1 Controls the remapping for frames with DP level 1 1 Remap DP0 Select the DSCP value from select menu to which you want to remap DSCP value ranges form 0 to 63 2 Remap DP1...

Page 185: ...ss and Drop Precedence Level to DSCP value The settings relate to the currently selected stack unit as reflected by the page header The displayed settings are QoS Class Actual QoS class DPL Actual Dro...

Page 186: ...nfigured with the QCE Frame Type Indicates the type of frame to look for incomming frames Possible frame types are Any The QCE will match all frame type Ethernet Only Ethernet frames with Ether Type 0...

Page 187: ...I Drop Eligible Indicator Valid value of DEI can be any of values between 0 1 or Any Conflict Displays QCE status It may happen that resources required to add a QCE may not available in that case it s...

Page 188: ...in the table using the following buttons Inserts a new QCE before the current row Edits the QCE Moves the QCE up the list Moves the QCE down the list Deletes the QCE The lowest plus sign adds a new e...

Page 189: ...switch Note Frames which are sent to the CPU of the switch are always limited to approximately 4 kpps For example broadcasts in the management VLAN are limited to this rate The management VLAN is conf...

Page 190: ...mirroring Port to mirror on Port to mirror also known as the mirror port Frames from ports that have either source rx or destination tx mirroring enabled are mirrored on this port Disabled disables mi...

Page 191: ...ven port a frame is only transmitted once It is therefore not possible to mirror Tx frames on the mirror port Because of this mode for the selected mirror port is limited to Disabled or Rx only Button...

Page 192: ...ion The duration carried in SSDP packets is used to inform a control point or control points how often it or they should receive an SSDP advertisement message from this switch If a control point does...

Page 193: ...into sFlow packets The sFlow agent then sends the packet to a specified sFlow collector the IP Address you assigned in the switch UI The sFlow collector analyzes the sFlow packets and displays the re...

Page 194: ...rting the sampled datagram for analysis The attributes associated with the flow sampling are sampler type sampling rate maximum header size Sampler Type Configured sampler type on the port and could b...

Page 195: ...nfiguration Web UI NGSME16T2H User Manual 195 Polling Interval Configured polling interval for the counter sampling Editing Button You can modify each port s sampler configuration the table using the...

Page 196: ...In Feature Configuration CLI The Command Line Interface CLI is the user interface to the switch s embedded software system You can view the system information show the status configure the switch and...

Page 197: ...or to go to root level Type logout in root level to leave the command line interface Click Enter key after finish the command Click Up key to repeat the previous commands Commands may be abbreviated e...

Page 198: ...stem Type up to move up one level or to go to root level System System Contact Syntax System Name name Parameters name System name string 1 255 Example Contact Name Orwell System contact Orwell System...

Page 199: ...s offset Time zone offset in minutes 720 to 720 relative to UTC Example Time Zone 100 poeswitch System time 100 IP Configuration IP Group Enter the IP Configuration Group poeswitch ip Type up to move...

Page 200: ...below command Syntax IP NTP Server Add server_index ip_addr_string IP NTP Server Ipv6 Add server_index server_ipv6 IP NTP Server Delete server_index Example poeswitch IP ntp ser add 1 192 168 100 1 p...

Page 201: ...ax IP IPv6 AUTOCONFIG enable disable IP IPv6 Setup ipv6_addr ipv6_prefix ipv6_router IP IPv6 State ipv6_addr enable disable IP IPv6 Ping6 ipv6_addr Length ping_length Count ping_count Interval ping_in...

Page 202: ...rver Address Setting Syntax Type the NTP Server address settings by below command IP NTP Server Add server_index ip_addr_string IP NTP Server Ipv6 Add server_index server_ipv6 IP NTP Server Delete ser...

Page 203: ...ver mode en Server Address Syntax System Log Server Address ip_addr_string Example poeswitch System log server add 192 168 2 100 Syslog Level Syntax System Log Level info warning error Information poe...

Page 204: ...n CLI Featuring Configuration CLI NGSME16T2H User Manual 204 System Log Configuration poeswitch System log conf System Log Configuration System Log Server Mode Enabled System Log Server Address 192 16...

Page 205: ...timer 2 30 Maintenance Syntax led_power maintenance maintenance_time on_at_errors leave_at_errors Parameters maintenance_time Time in seconds 0 65535 that the LEDs shall be turned on when any port cha...

Page 206: ...t All ports enable Enable EEE disable Disable EEE Example Enable Port 1 5 EEE mode 1 5 en Urgent Queue of Port Syntax EEE Urgent_queues port_list queue_list Parameters port_list Port list or all defau...

Page 207: ...State After port 1 disabled the port can t access the switch Port state 1 en Port state 1 dis Link Speed and Duplex Syntax Port Mode port_list auto 10hdx 10fdx 100hdx 100fdx 1000fdx sfp_auto_ams 100 0...

Page 208: ...rt maxf 1 24 9600 Port Status Port Status Port conf 1 2 Port Configuration Port State Mode Flow Control MaxFrame Power Excessive Link 1 Enabled Auto Disabled 9600 Disabled Discard Down 2 Enabled Auto...

Page 209: ...iscard 1Gfdx 3 Enabled Auto Disabled 9600 Disabled Discard Down Status of Link UP ports poeswitch Port conf all up Port Configuration Port State Mode Flow Control MaxFrame Power Excessive Link 2 Enabl...

Page 210: ...SSH Secure Shell Security Switch HTTPS Hypertext Transfer Protocol over Secure Socket Layer Security Switch Access Access management Security Switch SNMP Simple Network Management Protocol Security Sw...

Page 211: ...sers del Orwell User Name Database Security Switch users conf Users Configuration User Name Privilege Level admin 15 Orwell 15 Privilege Level Syntax Security Switch Privilege Level Group group_name c...

Page 212: ...bug 15 15 15 15 Diagnostics 5 10 5 10 Authentication Method Syntax Security Switch Auth Method console telnet ssh web none local radius tacacs enable disable Example Configure Telnet Authentication me...

Page 213: ...e disable Security Switch https mode en Security Switch https mode dis Security Switch HTTPS Redirect enable disable Security Switch https mode en Must enabled HTTPS Security Switch https redi en Resu...

Page 214: ...n 1 2c 3 Security Switch SNMP Read Community community Security Switch SNMP Write Community community Example Security Switch snmp mode en Security Switch snmp ver 2c Security Switch SNMP read com abc...

Page 215: ...rap Mode enable disable Security Switch SNMP Trap Version 1 2c 3 Security Switch SNMP Trap Community community Security Switch SNMP Trap Destination ip_addr_string Security Switch SNMP Trap IPv6 Desti...

Page 216: ...p en Security Switch SNMP trap info mode en Security Switch SNMP trap info time 5 Security Switch SNMP trap info ret times 5 Result Trap Authentication Failure Enabled Trap Link up and Link down Enabl...

Page 217: ...stics Add stats_id data_source Security Switch RMON Statistics Delete stats_id Security Switch RMON Statistics Lookup stats_id Histroy Security Switch RMON History Add history_id data_source interval...

Page 218: ...etwork Limit Mode enable disable Security Network Limit Aging enable disable Security Network Limit Agetime age_time Example Security Network limit mode enable Security Network limit agin enable Secur...

Page 219: ...on enable disable Time Settings Security Network NAS ReauthPeriod reauth_period Security Network NAS EapolTimeout eapol_timeout Security Network NAS Agetime age_time Security Network NAS Holdtime hold...

Page 220: ...d MAC_Based Authentication Example Security Network nas state 2 auto ACL Access Control List ACL Port Configuration Syntax Security Network ACL Action port_list permit deny rate_limiter port_redirect...

Page 221: ...bled Enabled Enabled 0 Rate Limiter Syntax Security Network ACL Rate rate_limiter_list rate_unit rate Parameters rate_limiter_list Rate limiter list 1 16 default All rate limiters rate_unit IP flags p...

Page 222: ...e_limiter port_redirect mirror logging shutdown Parameters ace_id ACE ID 1 256 default Next available ID ace_id_next Next ACE ID 1 256 default Add ACE last port Port ACE keyword port_list Port list or...

Page 223: ...gs IP flags ttl options fragment 0 1 any icmp ICMP keyword icmp_type ICMP type number 0 255 or any icmp_code ICMP code number 0 255 or any udp UDP keyword sport Source UDP TCP port range 0 65535 or an...

Page 224: ...Snooping Syntax Security Network DHCP Snooping Mode enable disable Security Network DHCP Snooping Port Mode port_list trusted untrusted Security Network DHCP Snooping Statistics port_list clear Examp...

Page 225: ...e enable disable Security Network IP Source Guard Port Mode port_list enable disable Security Network IP Source Guard limit port_list dynamic_entry_limit unlimited Security Network IP Source Guard Ent...

Page 226: ...on Configuration Security Network ARP Inspection Mode enable disable Security Network ARP Inspection Port Mode port_list enable disable Security Network ARP Inspection Entry port_list add delete vid a...

Page 227: ...ex enable disable ip_addr_string secret server_port Example Security aaa radi 1 en 192 168 2 200 password 1812 RADIUS Accounting Server Syntax Security AAA ACCT_RADIUS server_index enable disable ip_a...

Page 228: ...ess Secret Port 1 Enabled 192 168 2 200 1812 2 Disabled 1812 3 Disabled 1812 4 Disabled 1812 5 Disabled 1812 RADIUS Accounting Server Configuration Server Mode IP Address Secret Port 1 Enabled 192 168...

Page 229: ...Chapter 4 Feature Configuration CLI Featuring Configuration CLI NGSME16T2H User Manual 229 4 Disabled 49 5 Disabled 49 Security...

Page 230: ...o Group 1 aggr add 5 8 1 aggr del 1 Delete the group 1 Hash Code Contributors Syntax Aggr Mode smac dmac ip port enable disable smac Source MAC Address dmac Destination MAC Address ip IP Address port...

Page 231: ...GSME16T2H User Manual 231 LACP Key port_list key LACP Role port_list active passive LACP Status port_list LACP Statistics port_list clear Example Configure port 5 8 to a LACP group lacp mode 5 8 en Mo...

Page 232: ...ime Example loop protect mode en Transmission Time loop protect trans 10 10 seconds Shutdown Time loop protect shut 200 200 seconds Port Configuration Loop Protection Port Configuration Syntax Loop Pr...

Page 233: ...on mstp rstp stp Example STP ver rstp Bridge Priority Syntax STP Msti Priority msti priority Example STP msti pri MSTI Bridge Priority CIST 32768 STP msti pri 4096 The available priority parameter inc...

Page 234: ...holdcount Valid values are in the range 1 to 10 BPDU s per second Advanced Setting Syntax STP bpduFilter enable disable STP bpduGuard enable disable STP recovery timeout After recovery timeout time i...

Page 235: ...Guard port_list enable disable STP Port Statistics port_list clear Example STP port mode 1 24 dis Disable STP on port 1 24 STP port edge 1 24 en Enable Edge port on port 1 24 STP port autoedge 1 24 en...

Page 236: ...y Parameters msti STP bridge instance no 0 7 CIST 0 MSTI1 1 port_list Port list or all Port zero means aggregations priority STP port priority 0 16 32 48 224 240 Example Configure CIST 0 Port Priority...

Page 237: ...setup 2 add Name Source2 MVR Port Role Syntax MVR VLAN Port vid mvr_name port_list source receiver inactive Example Port 2 Source Port Port 6 7 Receiver Port MVR vlan port 2 2 source MVR vlan port 2 6...

Page 238: ...g of Source2 VID 2 Source Port 2 Receiver Port 6 7 Inactive Port 1 3 5 8 26 Channel Setting of Source2 VID 2 Empty Channel Table MVR Immediate Leave Setting Port Immediate Leave 1 Enabled 2 Enabled 3...

Page 239: ...ed Syntax IPMC Flooding mld igmp enable disable Example IPMC flood igmp en IGMP SSM Range Source Specific Multicast Syntax IPMC SSM mld igmp Range prefix mask_len Example IPMC ssm igmp range 239 0 0 0...

Page 240: ...figuration Syntax IPMC State mld igmp vid enable disable IPMC Querier mld igmp vid enable disable IPMC Compatibility mld igmp vid auto v1 v2 v3 IPMC Parameter RV mld igmp vid ipmc_param_rv IPMC Parame...

Page 241: ...Chapter 4 Feature Configuration CLI Featuring Configuration CLI NGSME16T2H User Manual 241 mld igmp in the syntax The IP Address should be IPv6 format for sure...

Page 242: ...delay 2 LLDP reini 2 LLDP Mode Syntax LLDP Mode port_list enable disable rx tx rx RX Only tx TX Only Example Enable LLDP on Ports LLDP mode 1 10 en Port 1 10 are enabled LLDP mode 1 26 en Port 1 26 a...

Page 243: ...ture Configuration CLI Featuring Configuration CLI NGSME16T2H User Manual 243 LLDP option 1 3 port en LLDP option 1 3 sys_name en LLDP option 1 3 sys_desc en LLDP option 1 3 sys_capa en LLDP option 1...

Page 244: ...p_res LLDP MED Reserved Power Example PoE mgmt class_con PoE Power Supply Configuration Warning The default value is for reference only If the value is not comfort to your product specification please...

Page 245: ...bles PoE IEEE 802 3af Class 4 limited to 15 4W poe Enables PoE IEEE 802 3at Class 4 limited to 30W default Show PoE s mode Example Set Port 1 24 ro PoE mode PoE mode 1 24 poe PoE Status Primary Power...

Page 246: ...AC age 100 change aging time to 100 seconds the aging time range is 10 1000000 MAC age 0 0 Disable Aging time MAC Learning Configuration Syntax MAC Learning port_list auto disable secure Example MAC l...

Page 247: ...Chapter 4 Feature Configuration CLI Featuring Configuration CLI NGSME16T2H User Manual 247 VID MAC Address Ports 1 00 10 15 02 25 2a 1 5 1 0b 16 21 2c 37 42 1 10...

Page 248: ...me vid Example VLAN add 3 5 8 Add port 5 8 to VLAN 3 VLAN name add vlan3 3 vlan3 is the name of VLAN 3 Port Configuration Syntax VLAN FrameType port_list all tagged untagged VLAN IngressFilter port_li...

Page 249: ...figuration PVLAN Configuration Syntax PVLAN Configuration port_list PVLAN Add pvlan_id port_list PVLAN Delete pvlan_id PVLAN Lookup pvlan_id PVLAN Isolate port_list enable disable Example PVLAN add 10...

Page 250: ...22334455 10 1 4 Result VCL Macvlan conf MAC Address VID Ports 00 0b 16 21 2c 37 10 1 4 Protocol based VLAN Configuration Protocol to Group Syntax VCL ProtoVlan Protocol Add Eth2 ether_type arp ip ipx...

Page 251: ...1 8 E1 10 5 8 IP Subnet based VLAN Configuration IP Subnet based VLAN Configuration Syntax VCL IPVlan Add vce_id ip_addr_mask vid port_list Parameters vce_id Unique VCE ID for each VCL entry ip_addr_m...

Page 252: ...mode en Voice vlan id 100 Voice vlan age 86400 Voice vlan traff class 7 Result Voice VLAN Configuration Voice VLAN Mode Enabled Voice VLAN VLAN ID 100 Voice VLAN Age Time seconds 86400 Voice VLAN Tra...

Page 253: ...e VLAN OUI Add oui_addr description Voice VLAN OUI Delete oui_addr Voice VLAN OUI Clear Voice VLAN OUI Lookup oui_addr Example Voice VLAN oui add 00 12 08 hello Result Voice VLAN oui lookup Voice VLAN...

Page 254: ...cp_list dei_list class dpl QoS Port Classification DSCP port_list enable disable Range of the Value class QoS class 0 7 dpl Drop Precedence Level 0 1 pcp Priority Code Point 0 7 dei Drop Eligible Indi...

Page 255: ...QoS Port Policer mode 1 2 en QoS Port Policer rate 1 2 300 QoS Port Policer unit 1 2 kbps QoS Port Policer flow 1 2 en Port Scheduler Syntax Syntax QoS Port Scheduler Mode port_list strict weighted E...

Page 256: ...S Port QueueShaper Mode port_list queue_list enable disable QoS Port QueueShaper Rate port_list queue_list bit_rate QoS Port QueueShaper Excess port_list queue_list enable disable Parameters port_list...

Page 257: ...nced QoS setting please follow the DSCP table of upper access core switch to configure the table The table of the whole network must be unified Storm Configuration Strom Control Syntax QoS Storm Unica...

Page 258: ...ure Command Line Mirroring Configuration Mirror Configuration Syntax Mirror Port port disable Mirror Mode port_cpu_list enable disable rx tx Example Mirror port 5 Mirror mode 6 8 en Result Mirror Conf...

Page 259: ...Feature Command Line UPnP Configuration UPnp Configuration Syntax UPnP Configuration UPnP Mode enable disable UPnP TTL ttl UPnP AdvertisingDuration duration Example UPnP mode en UPnP ttl 5 Default 4 U...

Page 260: ...0 6343 1400 Result Receiver Configuration Owner none Receiver 192 168 2 100 UDP Port 6343 Max Datagram 1400 bytes Time left 0 seconds Receiver Release sFlow receiver Port Configuration Syntax sFlow Re...

Page 261: ...iguration CLI NGSME16T2H User Manual 261 rate 10 max size 128 sFlow coun 1 2 5 Enable CounterPoller of port 1 2 and set interval to 5 sFlow statistic sample 1 2 Per Port Statistics Port Rx Flow Sample...

Page 262: ...Count keyword ping_count Transmit ECHO_REQUEST packet count 1 60 Default is 5 interval PING Interval keyword ping_interval Ping interval 0 30 Default is 0 Example Ping IP 192 168 2 100 IP ping 192 168...

Page 263: ...CLI NGSME16T2H User Manual 263 poeswitch IP ipv6 ping6 2001 DB8 250 8bff fee8 f800 VeriPHY Syntax Port VeriPHY port_list Example Port veriphy 24 Starting VeriPHY please wait Port Pair A Length Pair B...

Page 264: ...Example Software Firmware Firmware Version Firmware Swapping Firmware Update Syntax Firmware Information Firmware Swap Firmware Load ip_addr_string file_name Parameters of Firmware Load ip_addr_string...

Page 265: ...ote 1 The switch process the firmware upgrading through TFTP protocol When running firmware upgrading please open the TFTP tool as TFTP server for the switch For example TFTPd32 is a freeware TFTP ser...

Page 266: ...5 Web Configuration Monitor Diagnostic Maintenance In Web Configuration Monitor Diagnostic Maintenance The following chapter will guide you to this switch s configuration webpage regarding to Monitor...

Page 267: ...in Configuration System Information System Name Location The system location configured in Configuration System Information System Location MAC Address The MAC Address of this switch Chip ID The Chip...

Page 268: ...ance Monitor Diagnostic Maintenance NGSME16T2H User Manual 268 Buttons Auto refresh Check this box to enable an automatic refresh of the page at regular intervals Refresh Click to refresh the page any...

Page 269: ...ls The last 120 samples are graphed and the last numbers are displayed as text as well In order to display the SVG graph your browser must support the SVG format Consult the SVG Wiki for more informat...

Page 270: ...tion is provided here ID The ID 1 of the system log entry Level The level of the system log entry The following level types are supported Info Information level of the system log Warning Warning level...

Page 271: ...sh Updates the system log entries starting from the current entry ID Clear Flushes all system log entries Updates the system log entries starting from the first available entry ID Updates the system l...

Page 272: ...k this box to enable an automatic refresh of the page at regular intervals Refresh Updates the system log entries starting from the current entry ID Clear Flushes all system log entries Updates the sy...

Page 273: ...ge provides an overview of the current switch port states The port states are illustrated as follows RJ45 ports SFP ports State Disabled Down Link Buttons Auto refresh Check this box to refresh the pa...

Page 274: ...transmitted packets per port Bytes The number of received and transmitted bytes per port Errors The number of frames received in error and the number of incomplete transmissions per port Drops The nu...

Page 275: ...ayed counters are Port The logical port for the settings contained in the same row Qn There are 8 QoS queues per port Q0 is the lowest priority queue Rx Tx The number of received and transmitted packe...

Page 276: ...net Only Ethernet frames with Ether Type 0x600 0xFFFF are allowed LLC Only LLC frames are allowed SNAP Only SNAP frames are allowed IPv4 The QCE will match only IPV4 frames IPv6 The QCE will match onl...

Page 277: ...therwise it is always No Please note that conflict can be resolved by releaseing the H W resources required to add QCL entry on pressing Resolve Conflict button Buttons Select the QCL status from this...

Page 278: ...ceive Total and Transmit Total Rx and Tx Packets The number of received and transmitted good and bad packets Rx and Tx Octets The number of received and transmitted good and bad bytes Includes FCS but...

Page 279: ...received with CRC or alignment errors Rx Undersize The number of short 1 frames received with valid CRC Rx Oversize The number of long 2 frames received with valid CRC Rx Fragments The number of short...

Page 280: ...er Manual 280 Buttons The port select box determines which port is affected by clicking the buttons Refresh Click to refresh the page immediately Clear Clears the counters for the selected port Auto r...

Page 281: ...tch Received Packets Number of received packets from the interface when access management mode is enabled Allowed Packets Number of allowed packets from the interface when access management mode is en...

Page 282: ...asks all user modules whether to allow this new MAC address to forward or block it For a MAC address to be set in the forwarding state all enabled user modules must unanimously agree on allowing the M...

Page 283: ...unknown MAC addresses to arrive Limit Reached The Port Security service is enabled by at least the Limit Control user module and that module has indicated that the limit is reached and no more MAC add...

Page 284: ...it will be blocked until that user module decides otherwise MAC Address VLAN ID The MAC address and VLAN ID that is seen on this port If no MAC addresses are learned a single row stating No MAC addres...

Page 285: ...resh Click to refresh the page immediately Auto refresh Click this box to enable an automatic refresh of the page at regular intervals Security Network NAS This page provides an overview of the curren...

Page 286: ...ned to the port by the RADIUS server if enabled Port VLAN ID The VLAN ID that NAS has put the port in The field is blank if the Port VLAN ID is not overridden by NAS If the VLAN ID is assigned by the...

Page 287: ...1X Multi 802 1X EAPOL Counters Direction Name IEEE Name Description Rx Total dot1xAuthEapolFramesRx The number of valid EAPOL frames of any type that have been received by the switch Rx Response ID d...

Page 288: ...amesTx The number of valid EAPOL Request frames other than Request Identity frames that have been transmitted by the switch Backend Server Counters These backend RADIUS frame counters are available fo...

Page 289: ...hat the supplicant client has successfully authenticated to the backend server Rx Auth Failures dot1xAuthBackendAuthFails 802 1X and MAC based Counts the number of times that the switch receives a fai...

Page 290: ...802 1X MAC based Auth Last Supplicant Client Info Name IEEE Name Description MAC Address dot1xAuthLastEapolFrameSource The MAC address of the last supplicant client VLAN ID The VLAN ID on which the la...

Page 291: ...ched it shows No supplicants attached This column is not available for MAC based Auth MAC Address For Multi 802 1X this column holds the MAC address of the attached supplicant For MAC based Auth this...

Page 292: ...ble an automatic refresh of the page at regular intervals Click to refresh the page immediately This button is available in the following modes Force Authorized Force Unauthorized Port based 802 1X Si...

Page 293: ...e values are All The ACE will match all ingress port Port The ACE will match a specific ingress port Frame Type Indicates the frame type of the ACE Possible values are Any The ACE will match any frame...

Page 294: ...is displayed the port copy operation is disabled Mirror Specify the mirror operation of this port The allowed values are Enabled Frames received on the port are mirrored Disabled Frames received on t...

Page 295: ...st The number of request option 53 with value 3 packets received and transmitted Rx and Tx Decline The number of decline option 53 with value 4 packets received and transmitted Rx and Tx ACK The numbe...

Page 296: ...ion 53 with value 12 packets received and transmitted Rx and Tx Lease Active The number of lease active option 53 with value 13 packets received and transmitted Buttons Auto refresh Click this box to...

Page 297: ...ent Option The number of packets received without agent information options Receive Missing Circuit ID The number of packets received with the Circuit ID option missing Receive Missing Remote ID The n...

Page 298: ...tains up to 1024 entries and is sorted first by port then by VLAN ID then by MAC address and then by IP address Navigating the ARP Inspection Table Each page shows up to 99 entries from the Dynamic AR...

Page 299: ...itted MAC Address User MAC address of the entry IP Address User IP address of the entry Buttons Auto refresh Click this box to enable an automatic refresh of the page at regular intervals Refresh Clic...

Page 300: ...The Start from port address VLAN and IP address input fields allow the user to select the starting point in the Dynamic IP Source Guard Table Clicking the button will update the displayed table starti...

Page 301: ...uto refresh Click this box to enable an automatic refresh of the page at regular intervals Refresh Click to refresh the page immediately Clear Flushes all dynamic entries Updates the table starting fr...

Page 302: ...bled Not Ready The server is enabled but IP communication is not yet up and running Ready The server is enabled IP communication is up and running and the RADIUS module is ready to accept access attem...

Page 303: ...and the RADIUS module is ready to accept accounting attempts Dead X seconds left Accounting attempts were made to this server but it did not reply within the configured timeout The server has tempora...

Page 304: ...8 Name Description Rx Access Accepts radiusAuthClientExtAccess Accepts The number of RADIUS Access Accept packets valid or invalid received from the server Rx Access Rejects radiusAuthClientExtAccess...

Page 305: ...ExtAccess Requests The number of RADIUS Access Request packets sent to the server This does not include retransmissions Tx Access Retransmission s radiusAuthClientExtAcc essRetransmissions The number...

Page 306: ...odule is ready to accept access attempts Dead X seconds left Access attempts were made to this server but it did not reply within the configured timeout The server has temporarily been disabled but wi...

Page 307: ...id received from the server Rx Malformed Responses radiusAccClientExtMalform edResponses The number of malformed RADIUS packets received from the server Malformed packets include packets with an inval...

Page 308: ...eipt of a Response timeout or retransmission Tx Timeouts radiusAccClientExtTimeout s The number of accounting timeouts to the server After a timeout the client may retry to the same server send to a d...

Page 309: ...Time radiusAccClientExtRoun dTripTime The time interval measured in milliseconds between the most recent Response and the Request that matched it from the RADIUS accounting server The granularity of...

Page 310: ...of octets of data including those in bad packets received on the network Pkts The total number of packets including bad packets broadcast packets and multicast packets received Broad cast The total n...

Page 311: ...Chapter 5 Monitor Diagnostic Maintenance Monitor Diagnostic Maintenance NGSME16T2H User Manual 311 The total number of packets received that were longer than 1518 octets...

Page 312: ...including bad packets received that were between 65 to 127 octets in length 128 255 The total number of packets including bad packets received that were between 128 to 255 octets in length 256 511 Th...

Page 313: ...the probe due to lack of resources Drops The total number of events in which packets were dropped by the probe due to lack of resources Octets The total number of octets of data including those in bad...

Page 314: ...Chapter 5 Monitor Diagnostic Maintenance Monitor Diagnostic Maintenance NGSME16T2H User Manual 314 including FCS octets of between 64 and 1518 octets...

Page 315: ...64 octets received with invalid CRC Jabb The number of frames which size is larger than 64 octets received with invalid CRC Coll The best estimate of the total number of collisions on this Ethernet s...

Page 316: ...ng and falling threshold Variable Indicates the particular variable to be sampled Sample Type The method of sampling the selected variable and calculating the value to be compared against the threshol...

Page 317: ...nt entries The displayed fields are Event Index Indicates the index of the event entry Log Index Indicates the index of the log entry Log TIme Indicates Event log time Log Description Indicates the Ev...

Page 318: ...id is shown as isid aggr id and for GLAGs as aggr id Partner System ID The system ID MAC address of the aggregation partner Partner Key The Key that the partner has assigned to this aggregation ID La...

Page 319: ...means that the port could not join the aggregation group but will join if other port leaves Meanwhile it s LACP status is disabled Key The key assigned to this port Only ports with the same key can a...

Page 320: ...ceived Shows how many LACP frames have been received at each port LACP Transmitted Shows how many LACP frames have been sent from each port Discarded Shows how many unknown or illegal LACP frames have...

Page 321: ...action Transmit The currently configured port transmit mode Loops The number of loops detected on this port Status The current loop protection status of the port Loop Whether a loop is currently dete...

Page 322: ...e Bridge ID of the currently elected root bridge Root Port The switch port currently assigned the root port role Root Cost Root Path Cost For the Root Bridge it is zero For all other Bridges it is the...

Page 323: ...nt STP port role of the CIST port The port role can be one of the following values AlternatePort BackupPort RootPort DesignatedPort Disabled CIST State The current STP port state of the CIST port The...

Page 324: ...ber of RSTP Configuration BPDU s received transmitted on the port STP The number of legacy STP Configuration BPDU s received transmitted on the port TCN The number of legacy Topology Change Notificati...

Page 325: ...V1 Reports Received The number of Received V1 Reports V2 Reports Received The number of Received V2 Reports V3 Reports Received The number of Received V3 Reports V2 Leaves Received The number of Recei...

Page 326: ...rom that or the closest next MVR Group Table match In addition the two input fields will upon a Refresh button click assume the value of the first displayed entry allowing for continuous refresh with...

Page 327: ...Querier Version currently Host Version Working Host Version currently Querier Status Shows the Querier status is ACTIVE or IDLE DISABLE denotes the specific interface is administratively disabled Quer...

Page 328: ...at leads towards the Layer 3 multicast device or IGMP querier Static denotes the specific port is configured to be a router port Dynamic denotes the specific port is learnt to be a router port Both de...

Page 329: ...AN and group input fields allow the user to select the starting point in the IGMP Group Table Clicking the Refresh button will update the displayed table starting from that or the closest next IGMP Gr...

Page 330: ...belong to the same group are treated as single entry Navigating the IGMP SFM Information Table Each page shows up to 99 entries from the IGMP SFM Information table default being 20 selected through t...

Page 331: ...basis It can be either Include or Exclude Source Address IP Address of the source Currently system limits the total number of IP source addresses for filtering to be 128 Type Indicates the Type It can...

Page 332: ...ently Host Version Working Host Version currently Querier Status Show the Querier status is ACTIVE or IDLE DISABLE denotes the specific interface is administratively disabled Queries Transmitted The n...

Page 333: ...3 multicast device or IGMP querier Static denotes the specific port is configured to be a router port Dynamic denotes the specific port is learnt to be a router port Both denotes the specific port is...

Page 334: ...cking the Refresh button will update the displayed table starting from that or the next closest MLD Group Table match In addition the two input fields will upon a Refresh button click assume the value...

Page 335: ...st visited the web page will show the first 20 entries from the beginning of the MLD SFM Information Table The Start from VLAN and group input fields allow the user to select the starting point in the...

Page 336: ...tly system limits the total number of IP source addresses for filtering to be 128 Type Indicates the Type It can be either Allow or Deny Buttons Auto refresh Check this box to enable an automatic refr...

Page 337: ...ion of the neighbor s LLDP frames Remote Port ID The Remote Port ID is the identification of the neighbor port System Name System Name is the name advertised by the neighbor unit Port Description Port...

Page 338: ...t Address is the neighbor unit s address that is used for higher layer entities to assist discovery by the network management This could for instance hold the neighbor s IP address Buttons Refresh Cli...

Page 339: ...evices as defined in TIA 1057 provide access to the IEEE 802 based LAN infrastructure for LLDP MED Endpoint Devices An LLDP MED Network Connectivity Device is a LAN access device based on any of the f...

Page 340: ...ration device location network policy power management and inventory management LLDP MED Media Endpoint Class II The LLDP MED Media Endpoint Class II definition is applicable to all endpoint products...

Page 341: ...w 1 Voice for use by dedicated IP Telephony handsets and other similar appliances supporting interactive voice services These devices are typically deployed on a separate VLAN for ease of deployment a...

Page 342: ...ed or an untagged VLAN Can be Tagged or Untagged Untagged The device is using an untagged frame format and as such does not include a tag header as defined by IEEE 802 1Q 2003 Tagged The device is usi...

Page 343: ...r Source or its Backup Power Source it is indicated as Unknown If the device is a PD device it can either run on its local power supply or it can use the PSE as power source It can also use both its l...

Page 344: ...nostic Maintenance Monitor Diagnostic Maintenance NGSME16T2H User Manual 344 Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Clic...

Page 345: ...layed table contains a row for each port The columns hold the following information Local Port The port on which LLDP frames are received or transmitted Tx Tw The link parther s maximum time that tran...

Page 346: ...ink partners request was based on stale information Echo Rx Tw The link partner s Echo Rx Tw value Resolved Tx Tw The resolved Tx Tw for this link Note NOT the link parther The resolved value that is...

Page 347: ...t deleted or added It also shows the time elapsed since the last change was detected Total Neighbors Entries Added Shows the number of new entries added since switch reboot Total Neighbors Entries Del...

Page 348: ...port s link is down an LLDP shutdown frame is received or when the entry ages out TLVs Discarded Each LLDP frame can contain multiple pieces of information known as TLVs TLV is short for Type Length V...

Page 349: ...and VLAN input fields allow the user to select the starting point in the MAC Table Clicking the button will update the displayed table starting from that or the closest next MAC Table match In additi...

Page 350: ...the page at regular intervals Refresh Refreshes the displayed table starting from the Start from MAC address and VLAN input fields Clear Flushes all dynamic entries Updates the table starting from th...

Page 351: ...n ports on a VLAN bridged network Voice VLAN Voice VLAN is a VLAN configured specially for voice traffic typically originating from IP phones MVR MVR is used to eliminate the need to duplicate multica...

Page 352: ...g from that or the closest next VLAN Table match The will use the last entry of the currently displayed VLAN entry as a basis for the next lookup When the end is reached the text No more entries is sh...

Page 353: ...Protocol MVRP allows dynamic registration and deregistration of VLANs on ports on a VLAN bridged network Voice VLAN Voice VLAN is a VLAN configured specially for voice traffic typically originating fr...

Page 354: ...accepts all frames or only tagged frames This parameter affects VLAN ingress processing If the port only accepts tagged frames untagged frames received on that port are discarded Tx Tag Shows egress f...

Page 355: ...sers Currently we support following VLAN User types CLI Web SNMP These are referred to as static NAS NAS provides port based authentication which involves communications between a Supplicant Authentic...

Page 356: ...the sampled datagram for analysis The attributes associated with the flow sampling are sampler type sampling rate maximum header size Counter Sampling Counter sampling performs periodic time based sam...

Page 357: ...eption of a reply The page refreshes automatically until responses to all packets are received or until a timeout occurs ICMP Ping Output Result PING server 192 168 2 100 56 bytes of data 64 bytes fro...

Page 358: ...all packets are received or until a timeout occurs ICMPv6 Ping Output PING6 server 10 10 132 20 64 bytes from 10 10 132 20 icmp_seq 0 time 0ms 64 bytes from 10 10 132 20 icmp_seq 1 time 0ms 64 bytes...

Page 359: ...linked down while running VeriPHY Therefore running VeriPHY on a 10 or 100 Mbps management port will cause the switch to stop responding until VeriPHY is complete Port The port where you are requesti...

Page 360: ...ctory Defaults You can reset the configuration of the switch on this page Only the IP configuration is retained The new configuration is available immediately which means that no restart is necessary...

Page 361: ...the Browse command Click Upload to start the process After the software image is uploaded a page announces that the firmware update is initiated After about a minute the firmware is updated and the sw...

Page 362: ...d 2 If the alternate image is active due to a corruption of the primary image or by manual intervention uploading a new firmware image to the device will automatically use the primary image slot and a...

Page 363: ...module controlling specific parts of the configuration Group tags port table vlan table etc These tags identify a group of parameters typically a table Parameter tags mode entry etc These tags identif...

Page 364: ...e Monitor Diagnostic Maintenance NGSME16T2H User Manual 364 mac global switch sid 1 mac entry port 1 24 learn mode auto entry mac switch configuration Save Click to save the configuration file Upload...

Page 365: ...e changes even within the product s operating temperature range may cause malfunctions DO NOT install this product in a location near any sources of water or liquid DO NOT stack this product with othe...

Page 366: ...ill guide you to set the IP address properly in a Microsoft Windows 8 environment Setting IP address in other Microsoft operating system such as Windows Vista or Windows 7 is quite the same and can be...

Page 367: ...ME16T2H User Manual 367 3 An Ethernet Status window will pop up Please click on the Properties button as shown in the figure down below 4 An Ethernet Properties window will pop up Please double click...

Page 368: ...hown in the figure down below By default your product s IP address should be 192 168 2 1 You can set any IP address as long as it s not the same with your product s IP address and is in the same netwo...

Reviews:

No comments

Related manuals for NGSME16T2H

D-Link xStack User Manual preview
xStack
Brand: D-Link Pages: 357
GE SecoGear User Manual preview
SecoGear
Brand: GE Pages: 36
GE Power Break Installation Instructions Manual preview
Power Break
Brand: GE Pages: 8
FAAC 593 Quick Start Manual preview
593
Brand: FAAC Pages: 2
WAGO 852-112/000-001 Manual preview
852-112/000-001
Brand: WAGO Pages: 30
UNICOM SmartGST-2600M Specifications preview
SmartGST-2600M
Brand: UNICOM Pages: 1
TRENDnet TEG-30284 Quick Installation Manual preview
TEG-30284
Brand: TRENDnet Pages: 12
Exsys EX-1183HMVS-2W Manual preview
EX-1183HMVS-2W
Brand: Exsys Pages: 14
NTI UNIMUX-nXm-UHD Installation And Operation Manual preview
UNIMUX-nXm-UHD
Brand: NTI Pages: 69
T1V ThinkHub Pro Quick Start Manual preview
ThinkHub Pro
Brand: T1V Pages: 2
Labgear HDS3K User Manual preview
HDS3K
Brand: Labgear Pages: 8
NETGEAR GS316P Installation Manual preview
GS316P
Brand: NETGEAR Pages: 8
Omega Engineering LVU-230 User Manual preview
LVU-230
Brand: Omega Engineering Pages: 16
Fastcabling L2+ Instructions preview
L2+
Brand: Fastcabling Pages: 4
3Com 4200G PWR Getting Started Manual preview
4200G PWR
Brand: 3Com Pages: 104
hager EGN100AU Quick Start Manual preview
EGN100AU
Brand: hager Pages: 18
Comelit IPSWR030A Manual preview
IPSWR030A
Brand: Comelit Pages: 8
PS Automation PSL 4 Installation Instructions preview
PSL 4
Brand: PS Automation Pages: 4

Brands by name

Popular brands

Load more brands