manualshive.com logo in svg

ORiNG RGPS-92222GCP-NP, User Manual

Looking for a comprehensive User Manual for the ORiNG RGPS-92222GCP-NP? Look no further! You can download the manual for free from our website. This manual will provide you with all the information you need to get the most out of your product. Download it now!

Share
Download
background image

 

 

 

 

 

RGPS-92222GCP-NP  Series  User  Manual 

 

ORing Industrial Networking Corp. 

118 

link is up, and any client on the port will be disallowed network access.   

Port-based 802.1X 

In  an  802.1X  network  environment,  the  user  is  called  the  supplicant,  the 

switch  is  the  authenticator,  and  the  RADIUS  server  is  the  authentication 

server. The authenticator acts as the man-in-the-middle, forwarding requests 

and responses between the supplicant and the authentication server. Frames 

sent  between  the  supplicant  and  the  switch  are  special  802.1X  frames, 

known  as  EAPOL  (EAP  Over  LANs)  frames  which  encapsulate  EAP  PDUs 

(RFC3748).  Frames  sent  between  the  switch  and  the  RADIUS  server  is 

RADIUS  packets.  RADIUS  packets  also  encapsulate  EAP  PDUs  together 

with other attributes like the switch's IP address, name, and the supplicant's 

port  number  on  the  switch.  EAP  is  very  flexible  as  it  allows  for  different 

authentication methods, like MD5-Challenge, PEAP, and TLS. The important 

thing  is  that  the  authenticator  (the  switch)  does  not  need  to  know  which 

authentication method the supplicant and the authentication server are using, 

or  how  many  information  exchange  frames  are  needed  for  a  particular 

method. The switch simply encapsulates the EAP part of the frame into the 

relevant type (EAPOL or RADIUS) and forwards it. 

When authentication is complete, the RADIUS server sends a special packet 

containing a success or failure indication. Besides forwarding the result to the 

supplicant,  the  switch  uses  it  to  open  up  or  block  traffic  on  the  switch  port 

connected to the supplicant. 

Note: in an environment where two backend servers are enabled, the server 

timeout  is  configured  to  X  seconds  (using  the  authentication  configuration 

page),  and  the  first  server  in  the  list  is  currently  down  (but  not  considered 

dead), if the supplicant retransmits EAPOL Start frames at a rate faster than 

X  seconds,  it  will  never  be  authenticated  because  the  switch  will  cancel 

on-going backend authentication server requests whenever it receives a new 

EAPOL  Start  frame  from  the  supplicant.  Since  the  server  has  not  failed 

(because the X seconds have not expired), the same server will be contacted 

when  the  next  backend  authentication  server  request  from  the  switch  This 

scenario  will  loop  forever.  Therefore,  the  server  timeout  should  be  smaller 

than the supplicant's EAPOL Start frame retransmission rate.   

a. Single 802.1X 

In  port-based  802.1X  authentication,  once  a  supplicant  is  successfully 

authenticated  on  a  port,  the  whole  port  is  opened  for  network  traffic.  This 

allows  other  clients  connected  to  the  port  (for  instance  through  a  hub)  to 

Summary of Contents for RGPS-92222GCP-NP

Page 1: ...RGPS 92222GCP NP Series Industrial Rack Mount Ethernet Switch User Manual Version 1 1 Nov 2015 www oring networking com...

Page 2: ...expenses apportioned by ORing and the distributor This warranty does not cover product modifications or repairs done by persons other than ORing approved personnel and this warranty does not apply to...

Page 3: ...Rear Panel 9 Hardware Installation 10 3 1 Rack mount Installation 10 3 2 Wiring 11 3 2 1 AC Power Connection 11 3 3 Connection 11 3 3 1 Cables 11 3 3 2 SFP 14 3 3 3 O Ring O Chain 14 Redundancy 18 4 1...

Page 4: ...DHCP Server 44 5 2 1 Basic Settings 44 5 2 2 Dynamic Client List 45 5 2 3 Client List 45 5 2 4 Relay Agent 45 5 3 Port Setting 48 5 3 1 Port Control 48 5 3 2 Port Trunk 49 5 3 4 Loop Gourd 54 5 4 VLA...

Page 5: ...us 87 5 7 Multicast 88 5 7 1 IGMP Snooping 88 5 7 2 VLAN Configurations of IGMP Snooping 89 5 7 3 IGMP Snooping Status 89 5 7 4 Groups Information of IGMP Snooping 90 5 8 Security 91 5 8 1 Remote Cont...

Page 6: ...r Manual ORing Industrial Networking Corp 5 5 11 2 Status 140 5 11 3 PoE Schedule 141 5 11 4 PoE Auto Ping 141 5 12 Troubleshooting 142 5 12 1 Factory Defaults 142 5 12 2 System Reboot 143 Command Lin...

Page 7: ...recovery technology Featuring a wide operating temperature from 40oC to 60oC the device can be managed centrally and conveniently via Open Vision web browsers Telnet and console CLI configuration mak...

Page 8: ...rdware Specifications 19 inch rack mountable design 22 x 10 100 1000Base T X RJ 45 ports with PoE function 2xGigabit combo ports with PoE function 2x100 1000Base X SFP ports Supports PoE scheduled con...

Page 9: ...set button Press the button for 3 seconds to reset and 5 seconds to return to factory default 2 1 2 LED LED Color Status Description PWR Green On System power on Green Blinking Upgrading firmware R M...

Page 10: ...On PoE enabled 100 1000Base X SFP port Link Act Green On Port connected Blinking Transmitting data 2 2 Rear Panel On the rear panel of the switch sits two panel module slots and one terminal block Th...

Page 11: ...to allow you to fasten the switch to a rack in any environments Follow the following steps to install the switch to a rack Step 1 Install the mounting brackets to the left and right front sides of the...

Page 12: ...stics should be routed separately 6 You can use the type of signal transmitted through a wire to determine which wires should be kept separate The rule of thumb is that wiring sharing similar electric...

Page 13: ...ceiving data 10 100Base T X P S E RJ 45 port Pin Number Assignment 1 TD with PoE Power input 2 TD with PoE Power input 3 RD with PoE Power input 6 RD with PoE Power input 10 100Base T RJ 45 Pin Assign...

Page 14: ...I and MDI X port pin outs 10 100 Base T X MDI MDI X Pin Assignments Pin Number MDI port MDI X port 1 TD transmit RD receive 2 TD transmit RD receive 3 RD receive TD transmit 4 Not used Not used 5 Not...

Page 15: ...ly PC pin out male assignment RS 232 with DB9 female connector DB9 to RJ 45 Pin 2 RD Pin 2 TD Pin 2 Pin 3 TD Pin 3 RD Pin 3 Pin 5 GD Pin 5 GD Pin 5 3 3 2 SFP The switch comes with fiber optical ports...

Page 16: ...gy Coupling Ring If you already have two O Ring topologies and would like to connect the rings you can form them into a coupling ring All you need to do is select two switches from each ring to be con...

Page 17: ...h A B from the ring for connecting to the switches in the RSTP network backbone switches The connection of one of the switches Switch A or B will act as the primary path while the other will act as th...

Page 18: ...n the ring Switch C D 2 In correspondence to the ports connected to the ring configure an edge port for both of the connected switches in the chain by checking the box in the management page see 4 1 2...

Page 19: ...proprietary redundant ring technology with recovery time of less than 10 milliseconds and up to 250 nodes The ring protocols identify one switch as the master of the network and then automatically bl...

Page 20: ...an divide a big ring into two smaller rings to avoid network topology changes affecting all switches It is a good method for connecting two rings Coupling Port Ports for connecting multiple rings A co...

Page 21: ...esigned for distributed and complex industrial networks enables the network to recover in less than 10ms for up to 250 switches if at any time a segment of the chain fails O Chain allows multiple redu...

Page 22: ...es in ring configuration to recover from failure rapidly to ensure seamless data transmission A MRP ring IEC 62439 can support up to 50 devices and will enable a back up link in 80ms adjustable to max...

Page 23: ...ination broadcast packets may get in to an infinite loop and hence causing congestion in the network STP can identify the best path to the destination and block all other paths The blocked links will...

Page 24: ...e valid value is between 4 through 30 Max Age Time 6 40 The number of seconds a bridge waits without receiving Spanning tree Protocol configuration messages before attempting a reconfiguration The val...

Page 25: ...matically will be enabled after a certain time If recovery is not enabled ports have to be disabled and re enabled for normal STP operation The condition is also cleared by a system reboot Port Error...

Page 26: ...rom whether BPDU s are received on the port or not Restricted Role If enabled causes the port not to be selected as Root Port for the CIST or any MSTI even if it has the best spanning tree priority ve...

Page 27: ...dia Apply Click to apply the configurations 4 4 2 MSTP Since the recovery time of STP and RSTP takes seconds which is unacceptable in industrial applications MSTP was developed The technology supports...

Page 28: ...idge that supports RSTP to operate in an STP compatible manner Configuration Name The name which identifies the VLAN to MSTI mapping Bridges must share the name and revision see below as well as the V...

Page 29: ...gle value applies to all STP within an MST region the CIST and all MSTIs for which the bridge is the regional root Apply Click to apply the configurations Bridge Port Label Description Port No The num...

Page 30: ...o apply the configurations Instance Setting This page allows you to change the configurations of current MSTI bridge instance Label Description Instance Set the instance from 1 to 15 State Enables or...

Page 31: ...st incurred by the port The path cost is used when establishing an active topology for the network Lower path cost ports are chosen as forwarding ports in favor of higher path cost ports The range of...

Page 32: ...ial Networking Corp 31 Label Description Active Activate fast recovery mode Port Ports can be set to 12 priorities Only the port with the highest priority will be the active port 1st Priority is the h...

Page 33: ...er friendly viewing screen By default IE5 0 or later version do not allow Java applets to open sockets You need to modify the browser setting separately in order to enable Java applets for network por...

Page 34: ...links to access the configuration pages of different functions 5 1 Basic Settings Basic Settings allow you to configure the basic functions of the switch 5 1 1 System Information This page shows the...

Page 35: ...tion of the contact person for this managed node together with information on how to contact this person The allowed string length is 0 to 255 and only ASCII characters from 32 to 126 are allowed Save...

Page 36: ...ation is disabled and login is not possible Local local user database on the switch is used for authentication Radius a remote RADIUS server is used for authentication Fallback Check to enable fallbac...

Page 37: ...sign the subnet mask IP Router Assigns the network gateway for the switch The default gateway is 192 168 10 254 VLAN ID Provides the managed VLAN ID The allowed range is 1 through 4095 DNS Server Prov...

Page 38: ...r hexadecimal digits with a colon separating each field For example in fe80 215 c5ff fe03 4dc7 the symbol is a special syntax that can be used as a shorthand way of representing multiple 16 bit groups...

Page 39: ...Time duration Select Disable to disable the configuration or Recurring to configure the duration to repeat every year Select Non Recurring to configure the duration for single time configuration Defau...

Page 40: ...me The time is measured by minute 5 1 7 HTTPS You can configure HTTPS settings in the following page Label Description Mode Indicates the selected HTTPS mode When the current connection is HTTPS disab...

Page 41: ...DP LLDP Configurations This page allows you to examine and configure LLDP port settings Label Description Port The switch port number to which the following settings will be applied Mode Indicates the...

Page 42: ...r of the neighbor sending out the LLDP frames Remote Port ID The identification of the neighbor port System Name The name advertised by the neighbor Port Description The description of the port advert...

Page 43: ...ot Total Neighbors Entries Deleted Shows the number of new entries deleted since switch reboot Total Neighbors Entries Dropped Shows the number of LLDP frames dropped due to full entry table Total Nei...

Page 44: ...TLVs received Age Outs Each LLDP frame contains information about how long the LLDP information is valid age out time If no new LLDP frame is received during the age out time the LLDP information wil...

Page 45: ...vides DHCP server functions By enabling DHCP the switch will become a DHCP server and dynamically assigns IP addresses and related IP information to network clients 5 2 1 Basic Settings This page allo...

Page 46: ...to the port and requests for dynamic IP assigning the switch will assign the IP address that has previously been assigned to the connected device 5 2 4 Relay Agent DHCP relay is used to forward and tr...

Page 47: ...e option 82 remote ID value equals to the switch MAC address The modes include Enabled activate DHCP relay information When DHCP relay information is enabled the agent inserts specific information opt...

Page 48: ...ith the Remote ID option missing Receive Bad Circuit ID The number of packets whose Circuit ID do not match the known circuit ID Receive Bad Remote ID The number of packets whose Remote ID do not matc...

Page 49: ...hich the following settings will be applied Link The current link state is shown by different colors Green indicates the link is up and red means the link is down Current Link Speed Indicates the curr...

Page 50: ...he Configured column allows you to change power saving parameters for each port Disabled all power savings functions are disabled ActiPHY link down and power savings enabled PerfectReach link up and p...

Page 51: ...f each aggregation group Normal means no aggregation Only one group ID is valid per port Port Members Lists each switch port for each group ID Select a radio button to include a port in an aggregation...

Page 52: ...full duplex ports can join an aggregation and the ports must be in the same speed in each group Key The Key value varies with the port ranging from 1 to 65535 Auto will set the key according to the ph...

Page 53: ...Partner System ID System ID MAC address of the aggregation partner Partner Key The key assigned by the partner to the aggregation ID Last Changed The time since this aggregation changed Last Channged...

Page 54: ...e partner s system ID MAC address Partner Port The partner s port number associated with the port Refresh Click to refresh the page immediately Auto refresh Check to enable an automatic refresh of the...

Page 55: ...ansmission Time The interval between each loop protection PDU sent on each port The valid value is 1 to 10 seconds Shutdown Time The period in seconds for which a port will be kept disabled when a loo...

Page 56: ...he number of loops detected on this port Status The current loop protection status of the port Loop Whether a loop is currently detected on the port Time of Last Loop The time of the last loop event d...

Page 57: ...95 After clicking Save the new VLAN will be enabled on the selected switch stack but contains no port members A VLAN without any port members on any stack will be deleted when you click Save Click Del...

Page 58: ...d in frames transmitted on the port This mode is normally used for ports connected to VLAN aware switches Tx tag should be set to Untag_pvid when this mode is used If Specific the default value is sel...

Page 59: ...e forwarded 2 If the TPID of tagged frame is not 0x8100 ex 0x88A8 it will be discarded The TPID of a frame transmitted by C port will be set to 0x8100 S port When the port receives untagged frames an...

Page 60: ...RGPS 92222GCP NP Series User Manual ORing Industrial Networking Corp 59...

Page 61: ...RGPS 92222GCP NP Series User Manual ORing Industrial Networking Corp 60...

Page 62: ...Series User Manual ORing Industrial Networking Corp 61 Examples of VLAN Settings VLAN Access Mode Switch A Port 7 is VLAN Access mode Untagged 20 Port 8 is VLAN Access mode Untagged 10 Below are the...

Page 63: ...S 92222GCP NP Series User Manual ORing Industrial Networking Corp 62 VLAN 1Q Trunk Mode Switch B Port 1 VLAN 1Qtrunk mode tagged 10 20 Port 2 VLAN 1Qtrunk mode tagged 10 20 Below are the switch settin...

Page 64: ...RGPS 92222GCP NP Series User Manual ORing Industrial Networking Corp 63 VLAN Hybrid Mode Port 1 VLAN Hybrid mode untagged 10 Tagged 10 20 Below are the switch settings...

Page 65: ...de VLAN QinQ mode is usually adopted when there are unknown VLANs as shown in the figure below VLAN X Unknown VLAN 9000 Series Port 1 VLAN Settings VLAN ID Settings When setting the management VLAN on...

Page 66: ...to be able to forward packets By default all ports are VLAN unaware and members of VLAN 1 and private VLAN 1 A VLAN unaware port can only be a member of one VLAN but it can be a member of multiple pri...

Page 67: ...ted and a warning message appears Click OK to discard the incorrect entry or click Cancel to return to the editing and make a correction The private VLAN is enabled when you click Save The Delete butt...

Page 68: ...2c SNMPv3 uses USM for authentication and privacy and the community string will be associated with SNMPv3 community table Write Community Indicates the write community string to permit access to SNMP...

Page 69: ...shorthand way of representing multiple 16 bit groups of contiguous zeros but it can only appear once It also uses a following legally IPv4 address For example 192 1 2 34 Trap Authentication Failure I...

Page 70: ...r table The entry index keys are Engine ID and User Name Label Description Delete Check to delete the entry It will be deleted during the next save Engine ID An octet string identifying the engine ID...

Page 71: ...clude None no authentication protocol MD5 an optional flag to indicate that this user is using MD5 authentication protocol SHA an optional flag to indicate that this user is using SHA authentication p...

Page 72: ...USM Security Name A string identifying the security name that this entry should belong to The allowed string length is 1 to 32 and only ASCII characters from 33 to 126 are allowed Group Name A string...

Page 73: ...he root of the subtree to add to the named view The allowed OID length is 1 to 128 The allowed string content is digital number or asterisk 5 5 6 SNMP Access Configurations This page allows you to con...

Page 74: ...control and a broadcast storm rate control These only affect flooded frames i e frames with a VLAN ID DMAC pair not present on the MAC Address table The rate is 2 n where n is equal to or less than 1...

Page 75: ...of 0 zero has the lowest priority If the port is VLAN aware and the frame is tagged then the frame is classified to a QoS class that is based on the PCP value in the tag as shown below Otherwise the f...

Page 76: ...frame is tagged then the frame is classified to the PCP value in the tag Otherwise the frame is classified to the default PCP value DEI Controls the default DEI value All frames are classified to a DE...

Page 77: ...gs will be applied Click on the port number to configure tag remarking Mode Shows the tag remarking mode for this port Classified use classified PCP DEI values Default use default PCP DEI values Mappe...

Page 78: ...se classification is enabled as specified in DSCP Translation window for the specific DSCP All classify all DSCP Egress Port egress rewriting can be one of the following options Disable no Egress rewr...

Page 79: ...policer for individual switch ports Rate Configures the rate of each policer The default value is 500 This value is restricted to 100 to 1000000 when the Unit is kbps or fps and is restricted to 1 to...

Page 80: ...t is kbps and is restricted to 1 to 3300 when the Unit is Mbps This field is only shown if at least one of the queue policers is enabled Unit Configures the unit of measurement for each queue policer...

Page 81: ...haper The default value is 500 This value is restricted to 100 to 1000000 when the Unit is kbps and it is restricted to 1 to 3300 when the Unit is Mbps Queue Shaper Excess Allows the queue to use exce...

Page 82: ...Configures the weight of each queue The default value is 17 This value is restricted to 1 to 100 This parameter is only shown if Scheduler Mode is set to Weighted Queue Scheduler Percent Shows the we...

Page 83: ...he port number to configure the shapers Mode Shows disabled or actual queue shaper rate e g 800 Mbps Qn Shows disabled or actual port shaper rate e g 800 Mbps 5 6 10 DSCP Based QoS This page allows yo...

Page 84: ...SCP for QoS class and DPL map There are two configuration parameters for DSCP Translation 1 Translate DSCP can be translated to any of 0 63 DSCP values 2 Classify check to enable ingress classificatio...

Page 85: ...lass Actual QoS class DPL Actual Drop Precedence Level DSCP Select the classified DSCP value 0 63 5 6 13 QoS Control List This page allows you to edit or insert a single QoS control entry at a time A...

Page 86: ...rames Ethernet Valid Ethernet values can range from 0x600 to 0xFFFF or Any but excluding 0x800 IPv4 and 0x86DD IPv6 The default value is Any LLC SSAP Address valid SSAP Source Service Access Point val...

Page 87: ...LS bits DSCP Differentiated Code Point can be a specific value a range or Any DSCP values are in the range 0 63 including BE CS1 CS7 EF or AF11 AF43 Sport Source TCP UDP port 0 65535 or Any specific...

Page 88: ...QCL user QCE Indicates the index of QCE Frame Type Indicates the type of frame to look for incoming frames Possible frame types are Any the QCE will match all frame type Ethernet Only Ethernet frames...

Page 89: ...ase note that conflict can be resolved by releasing the hardware resources required to add the QCL entry by pressing Resolve Conflict button 5 7 Multicast 5 7 1 IGMP Snooping This page provides IGMP S...

Page 90: ...he starting point in the VLAN Table Clicking the Refresh button will update the displayed table starting from that or the next closest VLAN Table match The will use the last entry of the currently dis...

Page 91: ...eceive The number of received V2 reports V3 Reports Receive The number of received V3 reports V2 Leave Receive The number of received V2 leave packets Refresh Click to refresh the page immediately Cle...

Page 92: ...trol Security allows you to limit the remote access to the management interface When enabled requests of the client which is not in the allow list will be rejected Label Description Port Port number o...

Page 93: ...Alive Check Active Check to enable alive check When enabled switch will ping the device continually Alive Check Status Indicates alive check status Possible statuses are disable Got Reply receive pin...

Page 94: ...es IP address of the device Device MAC Address Specifies MAC address of the device Advanced Configurations Alias IP Address This page provides Alias IP Address configuration Some devices might have mo...

Page 95: ...les or enables PoE power DDoS Prevention This page provides DDOS Prevention configurations The switch can monitor ingress packets and perform actions when DDOS attack occurred on this port You can con...

Page 96: ...ype is UDP or TCP please choose the socket direction Destination Source Action Indicates the action to take when DDOS attacks occur Possible actions are no action Blocking 1 minute blocks the forwardi...

Page 97: ...types Possible types are no specification IP Camera IP Phone Access Point PC PLC and Network Video Recorder Location Address Indicates location information of the device The information can be used f...

Page 98: ...ll be applied Policy ID Select to apply a policy to the port The allowed values are 1 to 8 The default value is 1 Action Select to Permit to permit or Deny to deny forwarding The default value is Perm...

Page 99: ...switch Label Description Rate Limiter ID The rate limiter ID for the settings contained in the same row Rate The rate unit is packet per second pps which can be configured as 1 2 4 8 16 32 64 128 256...

Page 100: ...rames can match the ACE Notice the ARP frames will not match the ACE with Ethernet type IPv4 only IPv4 frames can match the ACE Notice the IPv4 frames will not match the ACE with Ethernet type Action...

Page 101: ...a specific source MAC address with the ACE choose this value A field for entering an SMAC value appears SMAC Value When Specific is selected for the SMAC filter you can enter a specific source MAC ad...

Page 102: ...can enter a specific VLAN ID number The allowed range is 1 to 4095 Frames matching the ACE will use this VLAN ID value Tag Priority Specifies the tag priority for the ACE A frame matching the ACE wil...

Page 103: ...field greater than zero must be able to match this entry Any any value is allowed don t care IP Fragment Specifies the fragment offset settings for the ACE This includes settings of More Fragments MF...

Page 104: ...Specify the destination IP address and destination IP mask in the DIP Address and DIP Mask fields that appear DIP Address When Host or Network is selected for the destination IP filter you can enter...

Page 105: ...ddress in the Target IP Address field that appears Network target IP filter is set to Network Specify the target IP address and target IP mask in the Target IP Address and Target IP Mask fields that a...

Page 106: ...t match this entry Any any value is allowed don t care Ethernet Specifies whether frames will meet the action according to their ARP RARP protocol address space PRO settings 0 ARP RARP frames where th...

Page 107: ...ill use this ICMP code value Label Description TCP UDP Source Filter Specifies the TCP UDP source filter for the ACE Any no TCP UDP source filter is specified TCP UDP source filter status is don t car...

Page 108: ...fic is selected for the TCP UDP destination filter you can enter a specific TCP UDP destination value The allowed range is 0 to 65535 A frame matching the ACE will use this TCP UDP destination value T...

Page 109: ...RG urgent pointer field significant value for the ACE 0 TCP frames where the URG field is set must not be able to match this entry 1 TCP frames where the URG field is set must be able to match this en...

Page 110: ...etermined as dead Setting the dead time to a value greater than 0 zero will enable this feature but only if more than one server has been configured 5 8 5 RADIUS Authentication and Accounting Server C...

Page 111: ...accounting server If the port is set to 0 zero the default port 1813 is used on the RADIUS accounting server Secret The secret up to 29 characters long shared between the RADIUS accounting server and...

Page 112: ...e this occurs is displayed in parentheses This state is only reachable when more than one server is enabled Label Description The RADIUS server number Click to navigate to detailed statistics of the s...

Page 113: ...ore than one server is enabled Authentication and Accounting Server Statistics The statistics map closely to those specified in RFC4668 RADIUS Authentication Client MIB Use the server drop down list t...

Page 114: ...Networking Corp 113 Other Info This section contains information about the state of the server and the latest round trip time Label Description Packet Counters RADIUS accounting server packet counter...

Page 115: ...end server As intruders can create counterfeit MAC addresses MAC based authentication is less secure than 802 1X authentication Overview of 802 1X Port Based Authentication In an 802 1X network enviro...

Page 116: ...mission rate Overview of MAC Based Authentication Unlike 802 1X MAC based authentication is not a standard but merely a best practices method adopted by the industry In MAC based authentication users...

Page 117: ...bled all ports are allowed to forward frames Reauthenti cation Enabled If checked clients are reauthenticated after the interval specified by the Reauthentication Period Reauthentication for 802 1X en...

Page 118: ...the client is still attached or not and the only way to free any resources is to age the entry Hold Time This setting applies to the following modes i e modes using the Port Security functionality to...

Page 119: ...ncapsulates the EAP part of the frame into the relevant type EAPOL or RADIUS and forwards it When authentication is complete the RADIUS server sends a special packet containing a success or failure in...

Page 120: ...ully authenticated on a port the whole port is opened for network traffic This allows other clients connected to the port for instance through a hub to piggy back on the successfully authenticated cli...

Page 121: ...ch There are no EAPOL frames involved in this authentication and therefore MAC based authentication has nothing to do with the 802 1X standard The advantage of MAC based authentication over port based...

Page 122: ...enticated clients on the port and will not cause the clients to be temporarily unauthorized Reinitialize forces a reinitialization of the clients on the port and hence a reauthentication immediately T...

Page 123: ...itch port using port based authentication For MAC based ports only selected backend server RADIUS Authentication Server statistics is showed Use the port drop down list to select which port details to...

Page 124: ...backend RADIUS frame counters are available for the following administrative states 802 1X MAC based Auth Last Supplicant Clie nt Info Information about the last supplicant client that attempts to au...

Page 125: ...ies User Manual ORing Industrial Networking Corp 124 5 9 Alerts 5 9 1 Fault Alarm When any selected fault event happens the Fault LED on the switch panel will light up and the electric relay will sign...

Page 126: ...received on UDP port 514 and the syslog server will not send acknowledgments back to the sender since UDP is a connectionless protocol and it does not provide acknowledgments The syslog packet will a...

Page 127: ...ication username Password the authentication password Confirm Password re enter password Recipient E mail Address The recipient s e mail address A mail allows for 6 recipients Apply Click to activate...

Page 128: ...restarted Power Status Sends out alerts when power is up or down SNMP Authentication Failure Sends out alert when SNMP authentication fails O Ring Topology Change Sends out alerts when O Ring topology...

Page 129: ...is called aging You can configure aging time by entering a value in the box of Age Time The allowed range is 10 to 1000000 seconds You can also disable the automatic aging of dynamic entries by checki...

Page 130: ...ill be lost and can only be restored by using another non secure port or by connecting to the switch via the serial interface Static MAC Table Configurations The static entries in the MAC table are sh...

Page 131: ...e with a default value of 20 selected by the Entries Per Page input field When first visited the web page will show the first 20 entries from the beginning of the MAC Table The first displayed will be...

Page 132: ...eceived and transmitted packets per port Bytes The number of received and transmitted bytes per port Errors The number of frames received in error and the number of incomplete transmissions per port D...

Page 133: ...ted good and bad packets Rx and Tx Octets The number of received and transmitted good and bad bytes including FCS except framing bits Rx and Tx Unicast The number of received and transmitted good and...

Page 134: ...Tx Late Exc Coll The number of frames dropped due to excessive or late collisions 1 Short frames are frames smaller than 64 bytes 2 Long frames are frames longer than the maximum frame length configu...

Page 135: ...frames are mirrored to the mirror port Note for a given port a frame is only transmitted once Therefore you cannot mirror Tx frames to the mirror port In this case mode for the selected mirror port is...

Page 136: ...diagnostics Press Start to run the diagnostics This will take approximately 5 seconds If all ports are selected this can take approximately 15 seconds When completed the page refreshes automatically a...

Page 137: ...manage and set up event alarms through DDM Web interface 5 10 7 Ping This page allows you to issue ICMP PING packets to troubleshoot IP connectivity issues After you press Start five ICMP packets wil...

Page 138: ...d ICMP packets Label Description IP Address The destination IP Address Ping Size The payload size of the ICMP packet Values range from 8 to 1400 bytes IPv6 Ping PING6 server 192 168 10 1 sendto sendto...

Page 139: ...much power to reserve according to the class the connected power device belongs to and then reserves the power accordingly Four different port classes are available including 4 7 15 4 and 30 Watts In...

Page 140: ...urce and one as a backup If the switch does not support backup power supply only the primary power supply settings will be shown If the primary power source fails the backup power source will take ove...

Page 141: ...W Class 3 Max power 15 4 W Class 4 Max power 30 0 W Power Requested Shows the amount of power requested by the power device Power Allocated Shows the amount of power the switch has allocated for the...

Page 142: ...is not working correctly 5 11 3 PoE Schedule You can appoint a date and time as well as enable or disable PoE functions The switch will perform PoE functions based on your configurations SNTP functio...

Page 143: ...Enter an IP address Interval Time Assigns a time interval for the check 10 120 seconds Retry Time Set up the number of times for which the function will perform repeatedly Failure Log Note down failed...

Page 144: ...o factory defaults No Click to return to the Port State page without resetting 5 12 2 System Reboot You can reset the stack switch on this page After reset the system will boot normally as if you have...

Page 145: ...use console or telnet to manage the switch by CLI CLI Management by RS 232 Serial Console 115200 8 none 1 none Before configuring RS 232 serial console connect the RS 232 port of the switch to your P...

Page 146: ...User Manual ORing Industrial Networking Corp 145 Step 2 Input a name for the new connection Step 3 Select a COM port in the drop down list Step 4 A pop up window that indicates COM port properties app...

Page 147: ...bits parity stop bits and flow control Step 5 The console login screen will appear Use the keyboard to enter the Username and Password same as the password for Web browsers then press Enter CLI Manag...

Page 148: ...User Name admin Password admin Follow the steps below to access console via Telnet Step 1 Telnet to the IP address of the switch from the Run window by inputting commands or from the MS DOS prompt as...

Page 149: ...RGPS 92222GCP NP Series User Manual ORing Industrial Networking Corp 148 Commander Groups...

Page 150: ...DHCP enable disable Setup ip_addr ip_mask ip_router vid Ping ip_addr_string ping_length SNTP ip_addr_string Port port Configuration port_list up down Mode port_list auto 10hdx 10fdx 100hdx 100fdx 1000...

Page 151: ...st untag_pvid untag_all tag_all PortType port_list unaware c port s port s custom port EtypeCustomSport etype Add vid name ports_list Forbidden Add vid name port_list Delete vid name Forbidden Delete...

Page 152: ...nsole telnet ssh web none local radius enable disable Security Switch SSH Security switch ssh Configuration Mode enable disable Security Switch HTTPS Security switch ssh Configuration Mode enable disa...

Page 153: ...e port_list auto authorized unauthorized macbased Reauthentication enable disable ReauthPeriod reauth_period EapolTimeout eapol_timeout Agetime age_time Holdtime hold_time Authenticate port_list now S...

Page 154: ...onflicts Port State port_list enable disable Security Network DHCP Security Network DHCP Configuration Mode enable disable Server ip_addr Information Mode enable disable Information Policy replace kee...

Page 155: ...Port Edge port_list enable disable Port AutoEdge port_list enable disable Port P2P port_list enable disable auto Port RestrictedRole port_list enable disable Port RestrictedTcn port_list enable disabl...

Page 156: ...mode class_con class_res al_con al_res lldp_res lldp_con Maximum_Power port_list port_power Status Primary_Supply supply_power Schedule Configuration port_list Schedule Mode port_list enable disable S...

Page 157: ...LLC DSAP SSAP control SNAP PID ipv4 protocol sip dscp fragment sport dport ipv6 protocol sip_v6 dscp sport dport class dp classified_dscp QCL Delete qce_id QCL Lookup qce_id QCL Status combined stati...

Page 158: ...guration port_list Action port_list permit deny rate_limiter port_copy logging shutdown Policy port_list policy Rate rate_limiter_list packet_rate Add ace_id ace_id_next switch port port policy policy...

Page 159: ...y Engine ID enable disable Trap Security Engine ID engineid Trap Security Name security_name Engine ID engineid Community Add community ip_addr ip_mask Community Delete index Community Lookup index Us...

Page 160: ...ckinst Timingproperties clockinst utcoffset valid leap59 leap61 timetrac freqtrac ptptimescale timesource PTP PortDataSet clockinst port_list announceintv announceto syncintv delaymech minpdelayreqint...

Page 161: ...shut_log log Port Transmit port_list enable disable Status port_list IPMC IPMC Configuration igmp Mode igmp enable disable Flooding igmp enable disable VLAN Add igmp vid VLAN Delete igmp vid State igm...

Page 162: ...SMTP Port port_list disable linkup linkdown both DHCPServer DHCPServer Mode enable disable Setup ip_start ip_end ip_mask ip_router ip_dns ip_tftp lease bootfile Ring Ring Mode enable disable Master en...

Page 163: ...DDOS Low port_list socket_number Port DDOS High port_list socket_number Port DDOS Filter port_list source destination Port DDOS Action port_list do_nothing block_1_min block_10_mins block shutdown on...

Page 164: ...Manager enable disable React enable disable 1stRingPort mrp_port 2ndRingPort mrp_port Parameter MRP_TOPchgT value Parameter MRP_TOPNRmax value Parameter MRP_TSTshortT value Parameter MRP_TSTdefaultT...

Page 165: ...222GCP NP Total power budget is 720Watts and based on external power supply spec MAC Table 8k Priority Queues 8 Processing Store and Forward Switch Properties Switching latency 7 us Switching bandwidt...

Page 166: ...lor LED for Speed Link Act indicator Green 1000Mbps Link Act Amber 10 100Mbps Link Act 100 1000Base X SFP Port Indicator Green for port Link Act PoE Indicator Green PoE enabled LED x 24 Power Power In...

Page 167: ...RGPS 92222GCP NP Series User Manual ORing Industrial Networking Corp 2 Vibration IEC60068 2 6 Safety EN60950 1 Warranty 5 years...

Reviews:

No comments

Related manuals for RGPS-92222GCP-NP

GE MDS SD Series Setup Manual preview
MDS SD Series
Brand: GE Pages: 4
LaCie Network Space MAX Datasheet preview
Network Space MAX
Brand: LaCie Pages: 2
FOR-A MFR-4000 Operation Manual preview
MFR-4000
Brand: FOR-A Pages: 72
Delta Electronics Ethernet Communication Module DVPEN01-SL Manual preview
Ethernet Communication Module DVPEN01-SL
Brand: Delta Electronics Pages: 54
LGC wireless InterReach Fusion SingleStar Installation And Operation Manual preview
InterReach Fusion SingleStar
Brand: LGC wireless Pages: 154
Freund FE-W826-T2 Setup Manual preview
FE-W826-T2
Brand: Freund Pages: 6
ICP DAS USA iWSN-200E Quick Start Manual preview
iWSN-200E
Brand: ICP DAS USA Pages: 8
3Com EtherLink 3C905C-TX User Manual preview
EtherLink 3C905C-TX
Brand: 3Com Pages: 96
Intercoax IXWB-450 Quick Start Manual preview
IXWB-450
Brand: Intercoax Pages: 2
Comway 4G DTU Configuration Instructions preview
4G DTU
Brand: Comway Pages: 20
TP-Link TD-W8101G Quick Installation Manual preview
TD-W8101G
Brand: TP-Link Pages: 16
DPS KDA 864 User Manual preview
KDA 864
Brand: DPS Pages: 57
Dialogic IP Board IPT10000C Quick Install Card preview
IP Board IPT10000C
Brand: Dialogic Pages: 2
EMC VNX5300 Block Hardware Information Manual preview
VNX5300 Block
Brand: EMC Pages: 88
ZyXEL Communications Prestige 643 User Manual preview
Prestige 643
Brand: ZyXEL Communications Pages: 191
Avocent Cyclades CS4008 Specifications preview
Cyclades CS4008
Brand: Avocent Pages: 2
Ubiquiti airCube Configuring And Installing preview
airCube
Brand: Ubiquiti Pages: 2
Crestron QM-IEM Installation Manual preview
QM-IEM
Brand: Crestron Pages: 8

Brands by name

Popular brands

Load more brands