manualshive.com logo in svg

ORiNG IGS-9084GP-FB2-MM, User Manual

Share
Download
ORiNG IGS-9084GP-FB2-MM User Manual Download Page 134

IGS-9084GP-FB2 Series User Manual

ORing Industrial Networking Corp

133

quiet-period of the port runs out (EAPOL-based authentication).

For MAC-based authentication, reauthentication will be attempted

immediately.

The button only has effect on successfully authenticated clients

on the port and will not cause the clients to be temporarily

unauthorized.

Reinitialize

: forces a reinitialization of the clients on the port and

hence a reauthentication immediately. The clients will transfer to

the unauthorized state while the reauthentication is in progress.

NAS Status

This page shows the information on current NAS port statuses.

Label

Description

Port

The switch port number. Click to navigate to detailed 802.1X

statistics of each port.

Admin State

The port’s current administrative state. Refer to

NAS Admin State

for more details regarding each value.

Port State

The current state of the port. Refer to

NAS Port State

 for more

details regarding each value.

Last Source

The source MAC address carried in the most recently received

EAPOL frame for EAPOL-based authentication, and the most

recently received frame from a new client for MAC-based

authentication.

Last ID

The user name (supplicant identity) carried in the most recently

received Response Identity EAPOL frame for EAPOL-based

authentication, and the source MAC address from the most recently

received frame from a new client for MAC-based authentication.

Summary of Contents for IGS-9084GP-FB2-MM

Page 1: ...nd du us st tr ri ia al l M Ma an na ag ge ed d E Et th he er rn ne et t S Sw wi it tc ch h U Us se er r M Ma an nu ua al l V Ve er rs si io on n 1 1 1 1 M Ma ay y 2 20 01 14 4 w ww ww w o or ri in ng...

Page 2: ...expenses apportioned by ORing and the distributor This warranty does not cover product modifications or repairs done by persons other than ORing approved personnel and this warranty does not apply to...

Page 3: ...2 Rear Panel 9 Hardware Installation 11 3 1 DIN rail Installation 11 3 2 Wall Mounting 12 3 3 Wiring 13 3 3 1 Grounding 13 3 3 2 Fault Relay 14 3 3 3 Redundant Power Inputs 14 3 4 Connection 14 3 4 1...

Page 4: ...y 38 Management 39 5 1 Basic Settings 40 5 1 1 System Information 40 5 1 2 Admin Password 41 5 1 3 Authentication 42 5 1 4 IP Settings 42 5 1 5 IPv6 Settings 43 5 1 6 Daylight Saving Time 45 5 1 7 TTP...

Page 5: ...Port Classification 83 5 6 3 Port Tag Remaking 85 5 6 4 Port DSCP 85 5 6 5 Policing 87 Queue Policing 88 5 6 6 Scheduling and Shaping 88 5 6 7 Port Scheduler 91 5 6 8 Port Shaping 92 5 6 9 DSCP based...

Page 6: ...rning 136 5 10 Monitor and Diag 139 5 10 1 MAC Table 139 5 10 2 Port Statistics 142 5 10 3 Port Mirroring 144 5 10 4 System Log Information 145 5 10 5 Cable Diagnostics 146 5 10 6 SFP Monitor 147 5 10...

Page 7: ...ighly managed and fiber Ethernet applications 1 2 Software Features Supports O Ring recovery time 30ms over 250 units of connection and MSTP RSTP STP compatible for Ethernet Redundancy Open Ring suppo...

Page 8: ...rdware Specifications 8 x 10 100 1000Base T X Ethernet ports 4 x 100 1000Base X SFP ports 1 x Console port Support 100M 1G 10G optical bypass function of 2 port duplex or 4 port simplex fiber connecti...

Page 9: ...X ports Console port 1 x console port 2 1 2 LED LED Color Status Description PWR Green On System power on PW1 Green On Power module 1 activated PW2 Green On Power module 2 activated 1 Power system LED...

Page 10: ...ng data Duplex Amber On Port in full duplex mode SFP ports LNK ACT Green On Port is linked Blinking Transmitting data 2 2 Top Panel Below are the top panel components of IGS 9084GP series 1 Terminal b...

Page 11: ...IGS 9084GP FB2 Series User Manual ORing Industrial Networking Corp 10 1 Wall mount screw holes 2 Din rail screw holes...

Page 12: ...l kit to allow you to fasten the switch to a DIN rail in any environments DIN Rail Measurement Installing the switch on the DIN rail is easy First screw the Din rail kit onto the back of the switch ri...

Page 13: ...ting Measurement To mount the switch onto the wall follow the steps 1 Screw the two pieces of wall mount kits onto both ends of the rear panel of the switch A total of six screws are required as shown...

Page 14: ...er wire and common wire Observe all electrical codes dictating the maximum current allowable for each wire size 3 If the current goes above the maximum ratings the wiring could overheat causing seriou...

Page 15: ...tive positive wires into the V V terminals respectively Step 2 to keep the DC wires from pulling loose use a small flat blade screwdriver to tighten the wire clamp screws on the front of the terminal...

Page 16: ...BI_DD 8 BI_DD The series also supports auto MDI MDI X operation You can use a cable to connect the switch to a PC The tables below show the MDI and MDI X port pin outs 10 100 Base T X MDI MDI X Pin A...

Page 17: ...cable with a DB 9 female connector The DB 9 female connector of the RS 232 cable should be connected the PC while the other end of the cable RJ 45 connector should be connected to the console port of...

Page 18: ...h the link as shown in the figure below Switches with bypass functions provide one or more sets of bypass ports that ensure constant network connectivity during power failure The IGS 9084GP FB2 provid...

Page 19: ...3 4 2 O Ring O Chain O Ring You can connect three or more switches to form a ring topology to gain network redundancy capabilities through the following steps 1 Connect each switch to form a daisy cha...

Page 20: ...nable Coupling Ring option by checking the checkbox on the management page and select the coupling ring in correspondence to the connected port For more information on port setting please refer to 4 1...

Page 21: ...rom the chain Switch A B that you want to connect to the O Ring and connect them to the switches in the ring Switch C D 2 In correspondence to the port connected to the ring configure an edge port for...

Page 22: ...y time of less than 30 milliseconds in full duplex Gigabit operation or 10 milliseconds in full duplex Fast Ethernet operation and up to 250 nodes The ring protocols identify one switch as the master...

Page 23: ...an divide a big ring into two smaller rings to avoid network topology changes affecting all switches It is a good method for connecting two rings Couple Port Ports for connecting multiple rings A coup...

Page 24: ...veloped by ORing to enhance ORing switches interoperability with other vendors products With this technology you can add any ORing switches to the network based on other ring technologies 4 2 2 Config...

Page 25: ...esigned for distributed and complex industrial networks enables the network to recover in less than 30 milliseconds in full duplex Gigabit operation or 10 milliseconds in full duplex Fast Ethernet ope...

Page 26: ...ght up 4 4 Bypass 4 4 1 Introduction Bypass provides reliable and uninterrupted connections of inline network devices when any of the devices encounter hardware failure such as power outage Figure 1 s...

Page 27: ...the backup link will be activated immediately when one of the links is down thereby ensuring uninterrupted data transmission However if any inline device fails the network will be disconnected see be...

Page 28: ...Networking Corp 27 Fast Ethernet Networks Fiber Networks When a link between two switches fails following the breakdown of the switch the backup link will be activated Data will then be transmitted vi...

Page 29: ...nactive switch s to another active switch the distance between the two active switches must be within the maximum length otherwise transmission will fail 4 5 MRP 4 5 1 Introduction MRP Media Redundanc...

Page 30: ...the MRP ring Force Speed Duplex for 100BASE TX By default this is in auto negotiation mode Enabling this function will automatically change the default to Full mode this function is used in combinatio...

Page 31: ...ogy changes The switch supports STP and will auto detect the connected device running on STP or RSTP protocols RSTP Repeater A repeater can pass a BPDU packet directly from one RSTP device to another...

Page 32: ...ithout receiving STP configuration messages before attempting a reconfiguration The valid value is between 6 and 40 Hello Time 1 10 The time interval a switch sends out the BPDU packet to check RSTP c...

Page 33: ...priority in the LAN The valid value is between 0 and 240 and must be a multiple of 16 Admin P2P Configures whether the port connects to a point to point LAN rather than a shared medium This can be con...

Page 34: ...LAN rather than a shared medium This can be configured automatically or set to true or false manually True means P2P enabling False means P2P disabling Transiting to forwarding state is faster for poi...

Page 35: ...within a network by grouping and mapping multiple VLANs into different spanning tree instances known as MSTIs to form individual MST regions Each switch is assigned to an MST region Hence each MST reg...

Page 36: ...evel 0 65535 Revision of the MSTI configuration named above This must be an integer between 0 and 65535 Priority 0 61440 A value used to identify the root bridge The bridge with the lowest value has t...

Page 37: ...h cost is used when establishing an active topology for the network Lower path cost ports are chosen as forwarding ports in favor of higher path cost ports The range of valid values is 1 to 200000000...

Page 38: ...ne MSTI An unused MSTI will be left empty ex without any mapped VLANs Priority 0 61440 A value used to identify the root bridge The bridge with the lowest value has the highest priority and is selecte...

Page 39: ...r path cost ports are chosen as forwarding ports in favor of higher path cost ports The range of valid values is 1 to 200000000 Apply Click to apply the configurations 4 7 Fast Recovery Fast recovery...

Page 40: ...ccess speed and provides a user friendly viewing screen Note By default IE5 0 or later version do not allow Java applets to open sockets You need to modify the browser setting separately in order to e...

Page 41: ...ing in you will see the information of the switch as below On the left hand side of the management interface shows links to various settings Clicking on the links will bring you to individual configur...

Page 42: ...llowed string length is 0 to 255 and only ASCII characters from 32 to 126 are allowed System Contact The textual identification of the contact person for this managed node together with information on...

Page 43: ...f the following values None authentication is disabled and login is not possible Local local user database on the switch is used for authentication Radius a remote RADIUS server is used for authentica...

Page 44: ...l be displayed in this column The default IP is 192 168 10 1 IP Mask Assigns the subnet mask of the IP address If DHCP client function is enabled you do not need to assign the subnet mask IP Router As...

Page 45: ...ecial syntax that can be used as a shorthand way of representing multiple 16 bit groups of contiguous zeros but it can appear only once It can also represent a legally valid IPv4 address For example 1...

Page 46: ...e Up to 16 alpha numeric characters and can contain _ or Daylight Saving Time Configuration Label Description Daylight Saving Time This is used to set the clock forward or backward according to the co...

Page 47: ...month Hours Select the starting hour Minutes Select the starting minute End Time Settings Label Description Week Select the ending week number Day Select the ending day Month Select the ending month...

Page 48: ...TTPS Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values 5 1 8 SSH SSH Secure Shell is a cryptographic network protocol intended for secure da...

Page 49: ...e applied Mode Indicates the selected LLDP mode Rx only the switch will not send out LLDP information but LLDP information from its neighbors will be analyzed Tx only the switch will drop LLDP informa...

Page 50: ...e 1 Other 2 Repeater 3 Bridge 4 WLAN Access Point 5 Router 6 Telephone 7 DOCSIS Cable Device 8 Station Only 9 Reserved When a capability is enabled a will be displayed If the capability is disabled a...

Page 51: ...ber of entries deleted due to expired time to live Local Counters Label Description Local Port The port that receives or transmits LLDP frames Tx Frames The number of LLDP frames transmitted on the po...

Page 52: ...ounter will be incremented Refresh Click to refresh the page immediately Clear Click to clear the local counters All counters including global counters are cleared upon reboot Auto refresh Check to en...

Page 53: ...ides DHCP server functions By enabling DHCP the switch will become a DHCP server and dynamically assigns IP addresses and related IP information to network clients 5 2 1 Basic Settings This page allow...

Page 54: ...ort When a device is connected to the port and requests for dynamic IP assigning the switch will assign the IP address that has previously been assigned to the connected device 5 2 4 DHCP Relay DHCP r...

Page 55: ...3 switch ID 1 and port No 8 The option 82 remote ID value equals to the switch MAC address The modes include Enabled activate DHCP relay information When DHCP relay information is enabled the agent in...

Page 56: ...th the Remote ID option missing Receive Bad Circuit ID The number of packets whose Circuit ID do not match the known circuit ID Receive Bad Remote ID The number of packets whose Remote ID do not match...

Page 57: ...t The switch port number to which the following settings will be applied Link The current link state is shown by different colors Green indicates the link is up and red means the link is down Current...

Page 58: ...nge power saving parameters for each port Disabled all power savings functions are disabled ActiPHY link down and power savings enabled PerfectReach link up and power savings enabled Enabled both link...

Page 59: ...this box to enable the IP address or uncheck to disable By default IP Address is enabled TCP UDP Port Number Calculates the destination port of the frame You can check this box to enable the TCP UDP p...

Page 60: ...compatible devices Label Description Port Indicates the ID of each aggregation group Normal indicates there is no aggregation Only one group ID is valid per port LACP Enabled Lists each switch port f...

Page 61: ...scription Aggr ID The aggregation ID is associated with the aggregation instance For LLAG the ID is shown as isid aggr id and for GLAGs as aggr id Partner System ID System ID MAC address of the aggreg...

Page 62: ...moved The LACP status is disabled Key The key assigned to the port Only ports with the same key can be aggregated Aggr ID The aggregation ID assigned to the aggregation group Partner System ID The par...

Page 63: ...Discarded The number of unknown or illegal LACP frames discarded at each port Refresh Click to refresh the page immediately Auto refresh Check to enable an automatic refresh of the page at regular int...

Page 64: ...Port Switch port number Enable Activate loop protection functions as a whole Action Configures the action to take when a loop is detected Valid values include Shutdown Port Shutdown Port and Log or Lo...

Page 65: ...ports are members of the entry Check or uncheck as needed to modify the entry Add New VLAN Click to add a new VLAN ID An empty row is added to the table and the VLAN can be configured as needed Valid...

Page 66: ...tomer C port Service S port Custom Service S custom port If port type is Unaware all frames are classified to the port VLAN ID and tags are not removed Ingress Filtering Enable ingress filtering on a...

Page 67: ...ID Configures the VLAN identifier for the port The allowed range of the values is 1 through 4095 The default value is 1 Note The port must be a member of the same VLAN as the port VLAN ID Tx Tag Dete...

Page 68: ...f the tagged frame contains a TPID of 0x8100 it will be forwarded 2 If the TPID of tagged frame is not 0x88A8 ex 0x8100 it will be discarded The TPID of a frame transmitted by S port will be set to 0x...

Page 69: ...IGS 9084GP FB2 Series User Manual ORing Industrial Networking Corp 68...

Page 70: ...Series User Manual ORing Industrial Networking Corp 69 Examples of VLAN Settings VLAN Access Mode Switch A Port 7 is VLAN Access mode Untagged 20 Port 8 is VLAN Access mode Untagged 10 Below are the s...

Page 71: ...S 9084GP FB2 Series User Manual ORing Industrial Networking Corp 70 VLAN 1Q Trunk Mode Switch B Port 1 VLAN 1Qtrunk mode tagged 10 20 Port 2 VLAN 1Qtrunk mode tagged 10 20 Below are the switch setting...

Page 72: ...IGS 9084GP FB2 Series User Manual ORing Industrial Networking Corp 71 VLAN Hybrid Mode Port 1 VLAN Hybrid mode untagged 10 Tagged 10 20 Below are the switch settings...

Page 73: ...Series User Manual ORing Industrial Networking Corp 72 VLAN QinQ Mode VLAN QinQ mode is usually adopted when there are unknown VLANs as shown in the figure below VLAN X Unknown VLAN 9000 Series Port 1...

Page 74: ...e ports Each private VLAN typically contains many private ports and a single uplink The switch forwards all frames received on a private port out the uplink port regardless of VLAN ID or destination M...

Page 75: ...same as the switch port number range Any values outside this range are not accepted and a warning message appears Click OK to discard the incorrect entry or click Cancel to return to the editing and m...

Page 76: ...ion 2c SNMP v3 supports SNMP version 3 Read Community Indicates the read community string to permit access to SNMP agent The allowed string length is 0 to 255 and only ASCII characters from 33 to 126...

Page 77: ...ity Indicates the community access string when sending SNMP trap packets The allowed string length is 0 to 255 and only ASCII characters from 33 to 126 are allowed Trap Destination Address Indicates t...

Page 78: ...out The allowed range is 0 to 2147 Trap Inform Retry Times Configures the retry times for SNMP trap inform The allowed range is 0 to 255 5 5 2 SNMP Community Configurations You can define access to th...

Page 79: ...n 10 and 64 hexadecimal digits but all zeros and all F s are not allowed The SNMPv3 architecture uses User based Security Model USM for message security and View based Access Control Model VACM for ac...

Page 80: ...is 8 to 32 For SHA authentication protocol the allowed string length is 8 to 40 Only ASCII characters from 33 to 126 are allowed Privacy Protocol Indicates the privacy protocol that this entry should...

Page 81: ...g length is 1 to 32 and only ASCII characters from 33 to 126 are allowed Group Name A string identifying the group name that this entry should belong to The allowed string length is 1 to 32 and only A...

Page 82: ...e root of the subtree to add to the named view The allowed OID length is 1 to 128 The allowed string content is digital number or asterisk 5 5 6 SNMP Access Configurations This page allows you to conf...

Page 83: ...ve traffic and degrading network performance Errors in the protocol stack implementation mistakes in network configuration or users issuing a denial of service attack can cause a storm Storm control p...

Page 84: ...eceive a bigger slice of bandwidth than those in a lower priority queue Label Description Port The port number for which the configuration below applies QoS Class Controls the default QoS class All fr...

Page 85: ...d from the PCP and DEI value in the tag Otherwise the frame is classified to the default DP level The classified DP level can be overruled by a QCL entry PCP Controls the default PCP value All frames...

Page 86: ...lick on the port number to configure tag remarking Mode Shows the tag remarking mode for this port Classified use classified PCP DEI values Default use default PCP DEI values Mapped use mapped version...

Page 87: ...te check to enable the function Classify includes four values Disable no Ingress DSCP classification DSCP 0 classify if incoming or translated if enabled DSCP is 0 Selected classify only selected DSCP...

Page 88: ...5 6 5 Policing Policing is a traffic regulation mechanism for limiting the rate of traffic streams thereby controlling the maximum rate of traffic sent or received on an interface When the traffic rat...

Page 89: ...stricted to 100 to 1000000 when the Unit is kbps and is restricted to 1 to 3300 when the Unit is Mbps This field is only shown if at least one of the queue policers is enabled Unit Configures the unit...

Page 90: ...such as voice and video Label Description Scheduler Mode Two scheduling modes are available Strict Priority or Weighted Queue Shaper Enable Check to enable queue shaper for individual switch ports Que...

Page 91: ...hen the Unit is Mbps Port Shaper Unit Configures the unit of measurement for each port shaper rate as kbps or Mbps The default value is kbps Weighted Weighted scheduling will deliver traffic on a rota...

Page 92: ...dth Queue Scheduler Weight Configures the weight of each queue The default value is 17 This value is restricted to 1 to 100 This parameter is only shown if Scheduler Mode is set to Weighted Queue Sche...

Page 93: ...te that is less than the line rate for that interface When configuring port shaping on an interface you specify a value indicating the maximum amount of traffic allowable for the interface This value...

Page 94: ...Translation This page allows you to configure basic QoS DSCP translation settings for all switches DSCP translation can apply to Ingress or Egress Label Description DSCP Maximum number of supported DS...

Page 95: ...rop precedence with a high priority You can select the DSCP value from a selected menu to which you want to remap DSCP value ranges form 0 to 63 5 6 11 DSCP Classification This page allows you to conf...

Page 96: ...ge of VIDs PCP Priority Code Point can be specific numbers 0 1 2 3 4 5 6 7 a range 0 1 2 3 4 5 6 7 0 3 4 7 or Any DEI Drop Eligible Indicator can be any of values between 0 and 1 or Any SMAC Source MA...

Page 97: ...rom left to right all bits following the first zero must also be zero DSCP Differentiated Code Point can be a specific value a range or Any DSCP values are in the range 0 63 including BE CS1 CS7 EF or...

Page 98: ...ived at each queue Label Description Port The switch port number to which the following settings will be applied Qn There are 8 QoS queues per port Q0 is the lowest priority Rx Tx The number of receiv...

Page 99: ...to a value displayed under DPL column DSCP if a frame matches the QCE then DSCP will be classified with the value displayed under DSCP column Conflict Displays the conflict status of QCL entries As h...

Page 100: ...t leave on the port 5 7 2 VLAN Configurations of IGMP Snooping If a VLAN is not IGMP snooping enabled it floods multicast data and control packets to the entire VLAN in hardware When snooping is enabl...

Page 101: ...entry as a basis for the next lookup When the end is reached the text No more entries is shown in the displayed table Use the button to start over Label Description Delete Check to delete the entry Th...

Page 102: ...e The number of received V3 reports V2 Leave Receive The number of received V2 leave packets Refresh Click to refresh the page immediately Clear Clear all statistics counters Auto refresh Check to ena...

Page 103: ...lient 0 0 0 0 means any IP Web Check to enable management via a Web interface Telnet Check to enable management via a Telnet interface SNMP Check to enable management via a SNMP interface Delete Check...

Page 104: ...ve been dead Stream Check Active Check to enable stream check When enabled the switch will detect the stream change getting low from the device Stream Check Status Indicates stream check status Possib...

Page 105: ...real time status of the device connected to the port Alive checking packets will be sent to the device to probe if the device is running If the switch receives no response from the device actions wil...

Page 106: ...ible levels are Low low sensibility Normal normal sensibility Medium medium sensibility High high sensibility Packet Type Indicates the types of DDoS attack packets to be monitored Possible types are...

Page 107: ...the Port shuts down the port No Link and logs the event Only Log it simply logs the event Reboot Device if PoE is supported the device can be rebooted The event will be logged Status Indicates the DD...

Page 108: ...an be used for Google Mapping Description Device descriptions Stream Check Stream check monitors the consistency of real time network traffic from the device bound with the port When the traffic chang...

Page 109: ...a rate limiter for the port The allowed values are Disabled or numbers from 1 to 15 The default value is Disabled Port Copy Select which port frames are copied to The allowed values are Disabled or a...

Page 110: ...K 16K 32K 64K 128K 256K 512K or 1024K The 1 kpps is actually 1002 1 pps ACL Control List An ACE Access Control Entry is an element in an access control list ACL An ACL can have zero or more ACEs Each...

Page 111: ...Permit takes action when the frame matches the ACE Deny drops the frame matching the ACE Rate Limiter Specifies the rate limiter in number of base units The allowed range is 1 to 15 Disabled means the...

Page 112: ...can enter a specific source MAC address The legal format is xx xx xx xx xx xx Frames matching the ACE will use this SMAC value DMAC Filter Specifies the destination MAC filter for this ACE Any no DMAC...

Page 113: ...e this tag priority The allowed number range is 0 to 7 Any means that no tag priority is specified tag priority is don t care Label Description IP Protocol Filter Specifies the IP protocol filter for...

Page 114: ...set or the FRAG OFFSET field is greater than zero must be able to match this entry Any any value is allowed don t care IP Option Specifies the options flag settings for the ACE No IPv4 frames whose o...

Page 115: ...el Description ARP RARP Specifies the available ARP RARP opcode OP flag for the ACE Any no ARP RARP OP flag is specified OP is don t care ARP frame must have ARP RARP opcode set to ARP RARP frame must...

Page 116: ...n Network is selected for the target IP filter you can enter a specific target IP mask in dotted decimal notation ARP SMAC Match Specifies whether frames will meet the action according to their sender...

Page 117: ...r Specifies the ICMP filter for the ACE Any no ICMP filter is specified ICMP filter status is don t care Specific if you want to filter a specific ICMP filter with the ACE you can enter a specific ICM...

Page 118: ...ilter with the ACE you can enter a specific TCP UDP source range A field for entering a TCP UDP source value appears TCP UDP Source No When Specific is selected for the TCP UDP source filter you can e...

Page 119: ...A frame matching the ACE will use this TCP UDP destination value TCP FIN Specifies the TCP FIN no more data from sender value for the ACE 0 TCP frames where the FIN field is set must not be able to m...

Page 120: ...evices or applications communicate with an AAA server is RADIUS Remote Authentication Dial In User Service RADIUS is a protocol used between the switch and the authentication server This page allows y...

Page 121: ...DIUS server matches data from the authentication authorization request with information in a trusted database If a match is found and the user s credentials are correct the RADIUS server sends an acce...

Page 122: ...able the RADIUS accounting server IP Address The IP address or hostname of the RADIUS accounting server IP address is expressed in dotted decimal notation Port The UDP port to use on the RADIUS accoun...

Page 123: ...enabled but IP communication is not yet up and running Ready the server is enabled IP communications are built and the RADIUS module is ready to accept access attempts Dead X seconds left access atte...

Page 124: ...X seconds left accounting attempts are made to this server but it does not reply within the configured timeout The server has temporarily been disabled but will be re enabled when the dead time expir...

Page 125: ...Networking Corp 124 Other Info This section contains information about the state of the server and the latest round trip time Label Description Packet Counters RADIUS accounting server packet counters...

Page 126: ...at prevents unauthorized access to a network by requiring users to first submit credentials for authentication One or more backend servers RADIUS determine whether the user is allowed access to the ne...

Page 127: ...s currently down but not considered dead if the supplicant retransmits EAPOL Start frames at a rate faster than X seconds it will never be authenticated because the switch will cancel on going backend...

Page 128: ...can be spoofed by malicious users equipment whose MAC address is a valid RADIUS user can be used by anyone and only the MD5 Challenge method is supported 802 1X and MAC Based authentication configura...

Page 129: ...module needs to check for activity on the MAC address in question at regular intervals and free resources if no activity is seen within a given period of time This parameter controls exactly this peri...

Page 130: ...between the supplicant and the switch are special 802 1X frames known as EAPOL EAP Over LANs frames which encapsulate EAP PDUs RFC3748 Frames sent between the switch and the RADIUS server is RADIUS pa...

Page 131: ...gh a hub to piggy back on the successfully authenticated client and get network access even though they are not authenticated individually To overcome this security breach use the Single 802 1X varian...

Page 132: ...rame sent by the supplicant An exception to this is when no supplicants are attached In this case the switch sends EAPOL Request Identity frames using the BPDU multicast MAC address as destination to...

Page 133: ...equipment whose MAC address is a valid RADIUS user can be used by anyone Also only the MD5 Challenge method is supported The maximum number of clients that can be attached to a port can be limited us...

Page 134: ...nt NAS port statuses Label Description Port The switch port number Click to navigate to detailed 802 1X statistics of each port Admin State The port s current administrative state Refer to NAS Admin S...

Page 135: ...be displayed Label Description Admin State The port s current administrative state Refer to NAS Admin State for more details regarding each value Port State The current state of the port Refer to NAS...

Page 136: ...for the following administrative states 802 1X MAC based Auth 5 9 Alerts 5 9 1 Fault Alarm When any selected fault event happens the Fault LED on the switch panel will light up and the electric relay...

Page 137: ...them As Syslog messages are UDP based the sender and receiver will not be aware of it if the packet is lost due to network disconnection and no UDP packet will be resent Label Description Server Mode...

Page 138: ...l is a protocol for transmitting e mails across the Internet By setting up SMTP alert the device will send a notification e mail when a user defined event occurs Label Description E mail Alarm Enables...

Page 139: ...e checkboxes will gray out if SYSLOG or SMTP is disabled Label Description System Cold Start Sends out alerts when the system is restarted Power Status Sends out alerts when power is up or down SNMP A...

Page 140: ...ed manually and cannot age out by themselves Entries in a dynamic MAC tablet will age out after a configured aging time Such entries can be added by learning or manual configuration Aging Configuratio...

Page 141: ...done automatically as soon as a frame with unknown SMAC is received Disable No learning is done Secure Only static MAC entries are learned all other frames are dropped Note make sure the link used for...

Page 142: ...he lowest VLAN ID and the lowest MAC address found in the MAC Table Each page shows up to 999 entries from the MAC table with a default value of 20 selected by the Entries Per Page input field When fi...

Page 143: ...s of the entry VLAN The VLAN ID of the entry Port Members The ports that are members of the entry 5 10 2 Port Statistics Traffic Overview This page provides an overview of general traffic statistics f...

Page 144: ...process Auto refresh Check to enable an automatic refresh of the page at regular intervals Refresh Updates the counter entries starting from the current entry ID Clear Flushes all counters entries Det...

Page 145: ...ragments The number of short 1 frames received with an invalid CRC Rx Jabber The number of long 2 frames received with an invalid CRC Rx Filtered The number of received frames filtered by the forwardi...

Page 146: ...Tx only only frames transmitted from this port are mirrored to the mirror port Frames received are not mirrored Disabled neither transmitted nor recived frames are mirrored Enabled both received and...

Page 147: ...hes all system log entries Updates system log entries starting from the first available entry ID Updates system log entries ending at the last entry currently displayed Updates system log entries star...

Page 148: ...switch to stop responding until VeriPHY is completed Label Description Port The port for which VeriPHY Cable Diagnostics is requested Cable Status Port port number Pair the status of the cable pair Le...

Page 149: ...mitted and the sequence number and roundtrip time will be displayed upon reception of a reply The page refreshes automatically until responses to all packets are received or until a timeout occurs PIN...

Page 150: ...sendto sendto sendto sendto sendto Sent 5 packets received 0 OK 0 bad 5 11 Synchronization PTP External Clock Mode PTP External Clock Mode is a protocol for synchronizing clocks throughout a computer...

Page 151: ...ency The box allows you to set clock frequency The range of values is 1 25000000 1 25MHz Label Description Delete Check this box and click Save to delete the clock instance Clock Instance Indicates th...

Page 152: ...ocks For more information please refer to Device Type In a unicast Slave Only clock you also need to configure which master clocks to request Announce and Sync messages from For more information pleas...

Page 153: ...factory defaults No Click to return to the Port State page without resetting 5 12 2 System Reboot You can reset the stack switch on this page After reset the system will boot normally as if you have...

Page 154: ...switch by CLI CLI Management by RS 232 Serial Console 115200 8 none 1 none Before configuring RS 232 serial console connect the RS 232 port of the switch to your PC Com port using a RJ45 to DB9 F cab...

Page 155: ...Manual ORing Industrial Networking Corp 154 Step 3 Select a COM port in the drop down list Step 4 A pop up window that indicates COM port properties appears including bits per second data bits parity...

Page 156: ...ing Corp 155 Step 5 The console login screen will appear Use the keyboard to enter the Username and Password same as the password for Web browsers then press Enter CLI Management by Telnet You can can...

Page 157: ...User Name admin Password admin Follow the steps below to access console via Telnet Step 1 Telnet to the IP address of the switch from the Run window by inputingcommands or from the MS DOS prompt as b...

Page 158: ...Industrial Networking Corp 157 Commander Groups System System Configuration all port_list Reboot Restore Default keep_ip Contact contact Name name Location location Description description Password pa...

Page 159: ...Control port_list enable disable State port_list enable disable MaxFrame port_list max_frame Power port_list enable disable actiphy dynamic Excessive port_list discard restart Statistics port_list co...

Page 160: ...tic nas all Name Add name vid Name Delete name Name Lookup name Status port_list combined static nas mstp all conflicts Private VLAN PVLAN Configuration port_list Add pvlan_id port_list Delete pvlan_i...

Page 161: ...e Statistics Delete stats_id Statistics Lookup stats_id History Add history_id data_source interval buckets History Delete history_id History Lookup history_id Alarm Add alarm_id interval alarm_variab...

Page 162: ...rity Network ACL Security Network ACL Configuration port_list Action port_list permit deny rate_limiter port_redirect mirror logging shutdown Policy port_list policy Rate rate_limiter_list rate_unit r...

Page 163: ...ty Network AAA Security Network AAA Configuration Timeout timeout Deadtime dead_time RADIUS server_index enable disable ip_addr_string secret server_port ACCT_RADIUS server_index enable disable ip_add...

Page 164: ...uGuard port_list enable disable Port Statistics port_list Port Mcheck port_list Msti Port Configuration msti port_list Msti Port Cost msti port_list path_cost Msti Port Priority msti port_list priorit...

Page 165: ...t dscp_list enable disable DSCP Classification Mode dscp_list enable disable DSCP Classification Map class_list dpl_list dscp DSCP EgressRemap dscp_list dpl_list dscp Storm Unicast enable disable pack...

Page 166: ...iod reauth_period Timeout eapol_timeout Statistics port_list clear eapol radius Clients port_list all client_cnt Agetime age_time Holdtime hold_time IGMP IGMP Configuration port_list Mode enable disab...

Page 167: ...tcp sip dip sport dport ip_flags tcp_flags permit deny rate_limiter port_copy logging shutdown Delete ace_id Lookup ace_id Clear Mirror Mirror Configuration port_list Port port disable Mode port_list...

Page 168: ...name included excluded oid_subtree View Delete index View Lookup index Access Add group_name security_model security_level read_view_name write_view_name Access Delete index Access Lookup index Firmwa...

Page 169: ...port_list EgressLatency show clear MasterTableUnicast clockinst ExtClockMode one_pps_mode ext_enable clockfreq vcxo_enable OnePpsAction one_pps_clear DebugMode clockinst debug_mode Wireless mode clock...

Page 170: ...wr1 pwr2 pwr3 enable disable Event Event Configuration Syslog SystemStart enable disable Syslog PowerStatus enable disable Syslog SnmpAuthenticationFailure enable disable Syslog RingTopologyChange ena...

Page 171: ...2ndUplinkPort port EdgePort 1st 2nd none RCS RCS Mode enable disable Add ip_addr port_list web_on web_off telnet_on telnet_off snmp_on snmp_off Del index Configuration FastReocvery FastRecovery Mode...

Page 172: ...link_change shutdown only_log reboot_device Port Alive Status port_list Port Stream Mode port_list enable disable Port Stream Action port_list do_nothing only_log Port Stream Status port_list Port Ad...

Page 173: ...IGS 9084GP FB2 Series User Manual ORing Industrial Networking Corp 172 Parameter MRP_LNKdownT value Parameter MRP_LNKupT value Parameter MRP_LNKNRmax value Modbus Modbus Status Mode enable disable...

Page 174: ...ching bandwidth 24Gbps Max Number of Available VLANs 4096 IGMP multicast groups 128 for each VLAN Port rate limiting User Define Jumbo frame Up to 9 6K Bytes Security Features Device Binding security...

Page 175: ...y capacity of 1A at 24VDC Power Redundant Input power Dual DC inputs 12 48VDC on 6 pin terminal block Power consumption Typ 13 Watts Overload current protection Present Physical Characteristic Enclosu...

Reviews:

No comments

Brands by name

Popular brands

Load more brands