background image

User’s Manual of WGSW-20160HP 

 

Security Network NAS Guest_VLAN 

Description: 

Set or show either global state and parameters (use the global keyword) or per-port state of Guest VLAN. 

Unless the 'global' keyword is used, the <reauth_max> and <allow_if_eapol_seen> parameters will not be unused. 

 

Syntax: 

Security Network NAS Guest_VLAN [global|<port_list>] [enable|disable] [<vid>] [<reauth_max>] [<allow_if_eapol_seen>] 

 

Parameters: 

global     

: Select the global Guest VLAN setting 

<port_list>

: Select the per-port Guest VLAN setting 

(default: Show current per-port Guest VLAN state) 

enable|disable       

: enable : Enable Guest VLAN either globally or on one or more ports 

disable

: Disable Guest VLAN either globally or on one or more ports 

(default: Show current Guest VLAN state) 

<vid>                             

  : Guest VLAN ID used when entering the Guest VLAN. Use the 'global' keyword to change it 

(default: Show current Guest VLAN ID) 

<reauth_max> 

: The value can only be set if you use the 'global' keyword in the beginning of the command. 

The number of times a Request Identity EAPOL frame is sent without response before considering 

entering the Guest VLAN 

(default: Show current Maximum Reauth Count value 

<allow_if_eapol_seen>

: The value can only be set if you use the 'global' keyword in the beginning of the command. 

disable

:The Guest VLAN can only be entered if no EAPOL frames have been received on a port for the lifetime of the port 

enable 

:The Guest VLAN can be entered even if an EAPOL frame has been received during the lifetime of the port 

(default: Show current setting) 

 

Default Setting: 

disable 

 

422 

 

Summary of Contents for WGSW-20160HP

Page 1: ...User s Manual of WGSW 20160HP 1...

Page 2: ...nst harmful interference when the equipment is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance wit...

Page 3: ...32 2 1 3 Switch Rear Panel 33 2 2 Install the Switch 34 2 2 1 Desktop Installation 34 2 2 2 Rack Mounting 35 2 2 3 Installing the SFP Transceiver 36 3 SWITCH MANAGEMENT 39 3 1 Requirements 39 3 2 Mana...

Page 4: ...20 Factory Default 76 4 2 21 System Reboot 77 4 3 Simple Network Management Protocol 78 4 3 1 SNMP Overview 78 4 3 2 SNMP System Configuration 79 4 3 3 SNMP Trap Configuration 80 4 3 4 SNMP System Inf...

Page 5: ...4 6 11 MAC based VLAN 130 4 6 12 MAC based VLAN Status 131 4 6 13 IP Subnet based VLAN 132 4 6 14 Protocol based VLAN 133 4 6 15 Protocol based VLAN Membership 135 4 7 Spanning Tree Protocol 136 4 7...

Page 6: ...and Shapers 189 4 9 6 Port Tag Remarking 190 4 9 6 1 QoS Egress Port Tag Remarking 191 4 9 7 Port DSCP 192 4 9 8 DSCP Based QoS 194 4 9 9 DSCP Translation 196 4 9 10 DSCP Classification 198 4 9 11 QoS...

Page 7: ...77 4 12 7 Port Security Detail 279 4 12 8 DHCP Snooping 280 4 12 9 DHCP Snooping Statistics 281 4 12 10 IP Source Guard Configuration 283 4 12 11 IP Source Guard Static Table 285 4 12 12 ARP Inspectio...

Page 8: ...Configuration 333 4 18 2 RMON Alarm Detail 335 4 18 3 RMON Alarm Status 336 4 18 4 RMON Event Configuration 337 4 18 5 RMON Event Detail 337 4 18 6 RMON Event Status 338 4 18 7 RMON History Configurat...

Page 9: ...mand 359 IP Configuration 359 IP DHCP 359 IP Setup 360 IP Ping 360 IP DNS 361 IP DNS Proxy 361 IPv6 AUTOCINFIG 362 IPv6 Setup 362 IPv6 State 363 IPv6 Ping 363 IP NTP Configuration 364 IP NTP Mode 364...

Page 10: ...Mode 377 VLAN Link Type 377 VLAN Q in Q Mode 378 VLAN Ethernet Type 378 VLAN Add 379 VLAN Forbidden Add 379 VLAN Delete 379 VLAN Forbidden Delete 380 VLAN Forbidden Lookup 380 VLAN Lookup 381 VLAN Nam...

Page 11: ...ty Switch SNMP Configuration 393 Security Switch SNMP Mode 394 Security Switch SNMP Version 394 Security Switch SNMP Read Community 395 Security Switch SNMP Write Community 395 Security Switch SNMP Tr...

Page 12: ...itch RMON History Add 409 Security Switch RMON History Delete 409 Security Switch RMON History Lookup 410 Security Switch RMON Alarm Add 410 Security Switch RMON Alarm Delete 411 Security Switch RMON...

Page 13: ...Mode 429 Security Network DHCP Relay Server 429 Security Network DHCP Relay Information Mode 430 Security Network DHCP Relay Information Policy 430 Security Network DHCP Relay Statistics 431 Security...

Page 14: ...442 STP MaxAge 443 STP FwdDelay 443 STP CName 444 STP BPDU Filter 444 STP BPDU Guard 445 STP Recovery 445 STP Status 445 STP MSTI Priority 446 STP MSTI Map 446 STP MSTI Add 446 STP Port Configuration...

Page 15: ...out 457 6 11 LLDP Command 458 LLDP Configuration 458 LLDP Mode 458 LLDP Optional TLV 459 LLDP Interval 459 LLDP Hold 460 LLDP Delay 460 LLDP Reinit 460 LLDP Statistics 461 LLDP Info 461 LLDP CDP Aware...

Page 16: ...icer Rate 474 QoS Port Policer Unit 474 QoS Port Policer Flow Control 475 QoS Port Scheduler Mode 475 QoS Port Scheduler Weight 476 QoS Port Shaper Mode 476 QoS Port Shaper Rate 477 QoS Port QueueShap...

Page 17: ...figuration Save 492 Configuration Load 492 6 17 Firmware Command 493 Firmware Load 493 Firmware IPv6 Load 493 Firmware Information 493 Firmware Swap 493 6 18 UPnP Command 494 UPnP Configuration 494 UP...

Page 18: ...Protect Command 506 Loop Protect Configuration 506 Loop Protect Mode 506 Loop Protect Transmit 506 Loop Protect Shutdown 507 Loop Protect Port Configuration 507 Loop Protect Port Mode 507 Loop Protec...

Page 19: ...VLAN Add SNAP 522 VCL Protocol based VLAN Add LLC 523 VCL Protocol based VLAN Delete Ethernet II 523 VCL Protocol based VLAN Delete SNAP 523 VCL Protocol based VLAN Delete LLC 524 VCL Protocol based...

Page 20: ...tore and Forward 529 7 5 Auto Negotiation 530 8 Power over Ethernet Overview 531 9 TROUBLE SHOOTING 533 APPENDEX A Networking Connection 535 A 1 PoE RJ 45 Port Pin Assignments 535 A 2 Switch s Data RJ...

Page 21: ...mmediately if possible retain the carton including the original packing material and use them against to repack the product in case there is a need to return it to us for repair 1 2 Product Descriptio...

Page 22: ...gement functions such as dynamic Port link aggregation Q in Q VLAN private VLAN Rapid Spanning Tree protocol Layer 2 to Layer 4 QoS bandwidth control and IGMP MLD Snooping The WGSW 20160HP provides 80...

Page 23: ...optic modules that means the administrator now can flexibly choose the suitable SFP transceiver according to not only the transmission distance but also the transmission speed required The distance ca...

Page 24: ...y Web interface Section 5 COMMAND LINE INTERFACE The section describes how to use the Command Line interface CLI Section 6 CLI CONFIGURATION The section explains how to manage the Managed Switch by Co...

Page 25: ...powered device PD Circuit protection prevent power interference between ports Remote power feeding up to 100m PoE Management Total PoE power budget control Per port PoE function enable disable PoE Po...

Page 26: ...er and Egress Rate Limit per port bandwidth control 8 priority queues on all switch ports Traffic classification IEEE 802 1p CoS TOS DSCP IP Precedence of IPv4 IPv6 packets IP TCP UDP port number Typi...

Page 27: ...nd Line Interface Web switch management SNMP v1 v2c and v3 switch management SSH SSL secure access Four RMON groups history statistics alarms and events IPv6 IP Address NTP DNS management Built in Tri...

Page 28: ...sure for Half Duplex Jumbo Frame 9Kbytes Reset Button 5 sec System reboot 5 sec Factory Default Dimension W x D x H 440 x 300 x 44 5 mm 1U high Weight 4 1kg LED System Power Green SYS System Green Ale...

Page 29: ...LAN MVR Multicast VLAN Registration Up to 255 VLAN groups out of 4094 VLAN IDs Link Aggregation IEEE 802 3ad LACP Static Trunk Support 10 groups of 16 Port trunk support QoS Traffic classification bas...

Page 30: ...EE 802 1w Rapid spanning tree protocol IEEE 802 1s Multiple spanning tree protocol IEEE 802 1p Class of service IEEE 802 1Q VLAN Tagging IEEE 802 1x Port Authentication Network Control IEEE 802 1ab LL...

Page 31: ...W 20160HP Front Panel Gigabit TP interface 10 100 1000Base T Copper RJ 45 Twist Pair Up to 100 meters SFP slots 100 1000Base X mini GBIC slot SFP Small Factor Pluggable transceiver module From 550 met...

Page 32: ...n Lights to indicate that the Switch has power SYS Green Lights to indicate the system is working Alert LED Color Function FAN1 Green Lights to indicate that the FAN1 failure FAN2 Green Lights to indi...

Page 33: ...2 3 Rear Panel of WGSW 20160HP AC Power Receptacle For compatibility with electric service in most areas of the world the Managed Switch s power supply automatically adjusts to line power in the rang...

Page 34: ...p or the shelf near an AC power source as shown in Figure 2 4 Figure 2 4 Place the Managed Switch on the Desktop Step3 Keep enough ventilation space between the Managed Switch and the surrounding obje...

Page 35: ...ositioned towards the front side Step2 Attach the rack mount bracket to each side of the Managed Switch with supplied screws attached to the package Figure 2 5 shows how to attach brackets to one side...

Page 36: ...ng and supply power to the Managed Switch 2 2 3 Installing the SFP Transceiver The sections describe how to insert an SFP transceiver into an SFP slot The SFP transceivers are hot pluggable and hot sw...

Page 37: ...sceiver 20KM MFB F60 SFP Port 100Base FX Transceiver 60KM MFB FA20 SFP Port 100Base BX Transceiver WDM TX 1310nm 20KM MFB FB20 SFP Port 100Base BX Transceiver WDM TX 1550nm 20KM 1 It recommends using...

Page 38: ...r NICs or Media Converters set the Link mode to 1000 Force or 100 Force is needed Remove the Transceiver Module 1 Make sure there is no network activity by consult or check with the network administra...

Page 39: ...iew Administration Console Access Web Management Access SNMP Access Standards Protocols and Related Reading 3 1 Requirements Workstations of subscribers running Windows 2000 XP 2003 Vista 7 8 2008 MAC...

Page 40: ...Can be accessed from any location Most visually appealing Security can be compromised hackers need only know the IP address and subnet mask May encounter lag times on poor connections SNMP Agent Commu...

Page 41: ...n program to use the following parameters The default parameters are 115200 bps 8 data bits No parity 1 stop bit Figure 3 2 Terminal Parameter Settings You can change these settings if desired after y...

Page 42: ...Managed Switch s Web interface applications directly in your Web browser by entering the IP address of the Managed Switch Figure 3 3 Web Management You can then use your Web browser to list and manage...

Page 43: ...k management Station only knows the set community string it can read and write to the MIBs However if it only knows the get community string it can only read MIBs The default gets and sets community s...

Page 44: ...for the devices 2 After setup completed press Update Device Update Multi or Update All button to take affect The meaning of the 3 buttons above are shown as below Update Device use current setting on...

Page 45: ...not allow Java Applets to open sockets The user has to explicitly modify the browser setting to enable Java Applets to use network ports The Managed Switch can be configured through an Ethernet conne...

Page 46: ...http 192 168 0 100 2 When the following login screen appears please enter the default username admin with password admin or the username password you have changed via console to login the main screen...

Page 47: ...all the commands and statistics the Managed Switch provides 1 It is recommended to use Internet Explore 7 0 or above to access Managed Switch 2 The changed IP address take effect immediately after cl...

Page 48: ...on the image of a port opens the Port Statistics Page The port states are illustrated as follows Disabled Down Link Help Button Main Screen Panel Display The web agent displays an image of the Manage...

Page 49: ...User s Manual of WGSW 20160HP Figure 4 1 5 Managed Switch Main Functions Menu 49...

Page 50: ...cs This Page provides statistics for DHCP relay CPU Load This Page displays the CPU load using a SVG graph System Log The Managed Switch system log information is provided here Detailed Log The Manage...

Page 51: ...Configuration System Information System Name Location The system location configured in Configuration System Information System Location MAC Address The MAC Address of this Managed Switch Temperature...

Page 52: ...ails and the configured IP address is non zero DHCP will stop and the configured IP settings will be used The DHCP client will announce the configured System Name as hostname to provide DNS lookup IP...

Page 53: ...this box If fails the configured IPv6 address is zero The router may delay responding to a router solicitation for a few seconds the total time needed to complete auto configuration can be significant...

Page 54: ...ce It also used a following legally IPv4 address For example 192 1 2 34 Buttons Click to save changes Click to undo any changes made locally and revert to previously saved values Click to renew IPv6 A...

Page 55: ...or delete user Figure 4 2 5 Add Edit User Configuration Page Screenshot The Page includes the following fields Object Description Username A string identifying the user name that this entry should bel...

Page 56: ...sly saved values Click to undo any changes made locally and return to the Users Delete the current user This button is not available for new configurations Add new user Once the new user is added the...

Page 57: ...ge provides an overview of the privilege levels After setup completed please press Save button to take effect Please login web interface with new user name and password the screen in Figure 4 2 7 appe...

Page 58: ...L HTTPS SSH ARP Inspection and IP source guard IP Everything except ping Port Everything except VeriPHY Diagnostics ping and VeriPHY Maintenance CLI System Reboot System Restore Default System Passwor...

Page 59: ...rd and to transfer NTP messages between the clients and the server when they are not on the same subnet domain Disabled Disable NTP mode operation Time Zone Allow select the time zone according to cur...

Page 60: ...o CPU The ACEs are automatically removed when the mode is disabled TTL The TTL value is used by UPnP to send SSDP advertisement messages Valid values are in the range 1 to 255 Advertising Duration The...

Page 61: ...e this information to implement IP address or other assignment policies Specifically the option works by setting two sub options Circuit ID option 1 Remote ID option2 The Circuit ID sub option is supp...

Page 62: ...er when they are not on the same subnet domain Relay Information Mode Indicates the DHCP relay information mode option operation Possible modes are Enabled Enable DHCP relay information mode operation...

Page 63: ...packets number that relayed from client to server Transmit Error The packets number that errors sending packets to clients Receive from Server The packets number that received packets from server Rece...

Page 64: ...at received packets with relay agent information option Replace Agent Option The packets number that replaced received packets with relay agent information option Keep Agent Optin The packets number t...

Page 65: ...upport the SVG format Consult the SVG Wiki for more information on browser support Specifically at the time of writing Microsoft Internet Explorer will need to have a plugin installed to support SVG T...

Page 66: ...stem log Error Error level of the system log All All levels Clear Level To clear the system log entry level The following level types are supported Info Information level of the system log Warning War...

Page 67: ...Log screen in Figure 4 2 15 appears Figure 4 2 15 Detailed Log Page Screenshot The Page includes the following fields Object Description ID The ID 1 of the system log entry Message The message of the...

Page 68: ...back sender since UDP is a connectionless protocol and it does not provide acknowledgments The syslog packet will always send out even if the syslog server does not exist Possible modes are Enabled E...

Page 69: ...ontrols whether SMTP authentication is enabled If authentication is required when an e mail is sent Authentication User Name Type the user name for the SMTP server if Authentication is Enable Authenti...

Page 70: ...e system would pop up the file selection menu to choose firmware 4 Select on the firmware then click the Software Upload Progress would show the file upload status 5 Once the software be loaded to the...

Page 71: ...bject Description TFTP Server IP Fill in your TFTP server IP address Firmware File Name The name of firmware image Maximum length 24 characters Buttons Click to upgrade firmware DO NOT Power OFF the M...

Page 72: ...uration Group tags port_table vlan_table etc These tags identify a group of parameters typically a table Parameter tags mode entry etc These tags identify parameters for the specific section module an...

Page 73: ...User s Manual of WGSW 20160HP 73 Figure 4 2 22 File Download Screen 2 Chose the file save path in management workstation Figure 4 2 23 File Save Screen...

Page 74: ...Figure 4 2 24 appears Figure 4 2 24 Configuration Upload Page Screenshot Configuration Upload 1 Click the button of the main Page the system would pop up the file selection menu to choose saved confi...

Page 75: ...e primary image or by manual intervention uploading a new firmware image to the device will automatically use the primary image slot and activate this 3 The firmware version and date information may b...

Page 76: ...Figure 4 2 27 appears Figure 4 2 27 Factory Default Page Screenshot Buttons Click to reset the configuration to Factory Defaults Click to return to the Port State Page without resetting the configura...

Page 77: ...Reboot screen in Figure 4 2 28 appears Figure 4 2 28 System Reboot Page Screenshot Buttons Click to reboot the system Click to return to the Port State Page without reboot the system You can also che...

Page 78: ...of managed objects residing in a virtual information store Collections of related managed objects are defined in specific MIB modules network management protocol A management protocol is used to conve...

Page 79: ...icates the SNMP supported version Possible versions are SNMP v1 Set SNMP supported version 1 SNMP v2c Set SNMP supported version 2c SNMP v3 Set SNMP supported version 3 Read Community Indicates the co...

Page 80: ...and 64 hexadecimal digits but all zeros and all F s are not allowed Change of the Engine ID will clear all original local users 4 3 3 SNMP Trap Configuration Configure SNMP trap on this Page The SNMP...

Page 81: ...e modes are Enabled Enable SNMP trap authentication failure Disabled Disable SNMP trap authentication failure Trap Link up and Link down Indicates the SNMP trap link up and link down mode operation Po...

Page 82: ...ion System Contact The textual identification of the contact person for this managed node together with information on how to contact this person The allowed string length is 0 to 255 and the allowed...

Page 83: ...It will be deleted during the next save Community Indicates the community access string to permit access to SNMPv3 agent The allowed string length is 1 to 32 and the allowed content is ASCII characte...

Page 84: ...EngineID is always that agent s own snmpEngineID value The value can also take the value of the snmpEngineID of a remote SNMP engine with which this user can communicate In other words if user engine...

Page 85: ...col Indicates the privacy protocol that this entry should belong to Possible privacy protocol are None None privacy protocol DES An optional flag to indicate that this user using DES authentication pr...

Page 86: ...string identifying the group name that this entry should belong to The allowed string length is 1 to 32 and the allowed content is the ASCII characters from 33 to 126 Buttons Click to add a new group...

Page 87: ...e named view The allowed OID length is 1 to 128 The allowed string content is digital number or asterisk Buttons Click to add a new view entry Click to save changes Click to undo any changes made loca...

Page 88: ...tion and none privacy Auth Priv Authentication and privacy Read View Name The name of the MIB view defining the MIB objects for which this request may request the current values The allowed string len...

Page 89: ...formation Display SFP information Port Mirror Sets the source and target ports for mirroring 4 4 1 Port Configuration This Page displays current port configurations Ports can also be configured here T...

Page 90: ...umn indicates whether pause frames on the port are transmitted The Rx and Tx settings are determined by the result of the last Auto Negotiation Check the configured column to use flow control This set...

Page 91: ...igure 4 4 2 appears Figure 4 4 2 Port Statistics Overview Page Screenshot The displayed counters are Object Description Port The logical port for the settings contained in the same row Packets The num...

Page 92: ...to the currently selected stack unit as reflected by the Page header The displayed counters are the totals for receive and transmit the size counters for receive and transmit and the error counters f...

Page 93: ...packets per input and output queue Receive Error Counters Object Description Rx Drops The number of frames dropped due to lack of receive buffers or egress congestion Rx CRC Alignment The number of fr...

Page 94: ...mation Page This Page shows the operational status such as the transceiver type speed and wavelength and supports distance of SFP module on a specific interface You can also use the hyperlink of port...

Page 95: ...onfigure port Mirroring on this Page This function provide to monitoring network traffic that forwards a copy of each incoming or outgoing packet from one port of a network Switch to another port wher...

Page 96: ...rror screen in Figure 4 4 6 appears Figure 4 4 6 Mirror Configuration Page Screenshot The Page includes the following fields Object Description Port to mirror on Frames from ports that have either sou...

Page 97: ...mirrored Both Frames received and frames transmitted are mirrored to the mirror port For a given port a frame is only transmitted once It is therefore not possible to mirror Tx frames on the mirror p...

Page 98: ...e assigned manually Port Trunk or automatically by enabling Link Aggregation Control Protocol LACP on the relevant links Aggregated Links are treated by the system as a single logical port Specificall...

Page 99: ...d or deleted from a VLAN The Spanning Tree Protocol will treat all the ports in a link aggregation as a whole Enable the link aggregation prior to connecting any cable between the switches to avoid cr...

Page 100: ...MAC address or uncheck to disable By default Source MAC Address is enabled Destination MAC Address The Destination MAC Address can be used to calculate the destination port for the frame Check to ena...

Page 101: ...Group ID Normal indicates there is no aggregation Only one group ID is valid per port Port Members Each switch port is listed for each group ID Select a radio button to include a port in an aggregati...

Page 102: ...ort configurations and possibly change them as well The LACP port settings relate to the currently selected stack unit as reflected by the Page header The LACP Configuration screen in Figure 4 5 4 app...

Page 103: ...it LACP packets each second while Passive will wait for a LACP packet from a partner speak if spoken to Timeout The Timeout controls the period between BPDU transmissions Fast will transmit LACP packe...

Page 104: ...n ID associated with this aggregation instance For LLAG the id is shown as isid aggr id and for GLAGs as aggr id Partner System ID The system ID MAC address of the aggregation partner Partner Key The...

Page 105: ...d the port link is up No means that LACP is not enabled or that the port link is down Backup means that the port could not join the aggregation group but will join if other port leaves Meanwhile it s...

Page 106: ...LACP Statistics Page Screenshot The Page includes the following fields Object Description Port The switch port number LACP Received Shows how many LACP frames have been sent from each port LACP Transm...

Page 107: ...des and assign these nodes VLAN membership packets cannot cross VLAN without a network device performing a routing function between the VLAN 2 The Managed Switch supports IEEE 802 1Q VLAN The port unt...

Page 108: ...upports the following VLAN features Up to 255 VLANs based on the IEEE 802 1Q standard Port overlapping allowing a port to participate in multiple VLANs End stations can belong to multiple VLANs Passin...

Page 109: ...rmation originally contained in the packet is retained 802 1Q Tag User Priority CFI VLAN ID VID 3 bits 1 bits 12 bits TPID Tag Protocol Identifier TCI Tag Control Information 2 bytes 2 bytes Preamble...

Page 110: ...cted to a tag aware device the packet should be tagged Default VLANs The Switch initially configures one VLAN VID 1 called default The factory default setting assigns all ports on the Switch to the de...

Page 111: ...to manually isolate user groups or subnets 4 6 3 VLAN Basic Information The VLAN Basic Information Page displays basic information on the VLAN type supported by the Managed Switch The VLAN Basic Info...

Page 112: ...ber that the PVID is only used internally within the Switch Untagging is used to send packets from an 802 1Q compliant network device to a non compliant network device Frame Income Frame Leave Income...

Page 113: ...VID for frames entering the MAN When leaving the MAN the tag is stripped and the original VLAN tag with the customer related VID is again available This provides a tunneling mechanism to connect remot...

Page 114: ...ng the ingress port The PVID must as same as the VLAN ID that the port belong to VLAN group or the untagged traffic will be dropped Ingress Filtering Enable ingress filtering for a port by checking th...

Page 115: ...Disable mode Disable The port operates in its normal VLAN mode This is the default MAN Port Configures IEEE 802 1Q tunneling QinQ for an uplink port to another device within the service provider netw...

Page 116: ...s particular VLAN VLAN Name Indicates the name of the VLAN Maximum length of the VLAN Name String is 32 VLAN Name can only contain alphabets or numbers VLAN name should contain atleast one alphabet VL...

Page 117: ...iew of membership status for VLAN users The VLAN Membership Status screen in Figure 4 6 4 appears Figure 4 6 4 VLAN Membership Status for Static User Page Screenshot The Page includes the following fi...

Page 118: ...list and dynamic VLAN user register VLAN on same Forbidden port then conflict port will be displayed as conflict port VLAN Membership The VLAN Membership Status Page shall show the current VLAN port...

Page 119: ...wareness is enabled the tag is removed from tagged frames received on the port VLAN tagged frames are classified to the VLAN ID in the tag If VLAN awareness is disabled all frames are classified to th...

Page 120: ...occurs every 3 seconds Click to refresh the Page immediately 4 6 8 Private VLAN The Private VLAN membership configurations for the switch can be monitored and modified here Private VLANs can be added...

Page 121: ...ivate VLAN to add a new private VLAN ID An empty row is added to the table and the private VLAN can be configured as needed The allowed range for a private VLAN ID is the same as the switch port numbe...

Page 122: ...abase servers on the inside segment but are not allowed to communicate with each other For private VLANs to be applied the switch must first be configured for standard VLAN operation When this is in p...

Page 123: ...A port member of a VLAN can be isolated to other isolated ports on the same VLAN and Private VLAN The Port Isolation screen in Figure 4 6 7 appears Figure 4 6 7 Port Isolation Configuration Page Scre...

Page 124: ...bers The screen in Figure 4 6 8 appears and Table 4 6 9 describes the port configuration of the Managed Switches Figure 4 6 8 Two Separate VLAN Diagram VLAN Group VID Untagged Members Tagged Members V...

Page 125: ...ll tag it with a VLAN Tag 3 PC 5 and PC 6 will received the packet through Port 5 and Port 6 2 While the packet leaves Port 5 it will be stripped away it tag becoming an untagged packet 3 While the pa...

Page 126: ...Or the ports would become overlap setting About the overlapped VLAN configuration see next VLAN configure sample 4 Assign PVID for each port Port 1 Port 2 and Port 3 PVID 2 Port 4 Port 5 and Port 6 PV...

Page 127: ...en in Figure 4 6 11 appears Setup steps 1 Create VLAN Group Set VLAN Group 1 Default VLAN with VID VLAN ID 1 Add two VLANs VLAN 2 and VLAN 3 VLAN Group 2 with VID 2 VLAN Group 3 with VID 3 2 Assign VL...

Page 128: ...Overlap Port Setting VLAN 1 The Public Area Member Assign 5 Specify Port 8 to be the 802 1Q VLAN Trunk port and the Trunking port must be a Tagged port while egress The Port 8 configuration as the fol...

Page 129: ...screen in Figure 4 6 14 appears This section will show you how to configure the port for the server that could be accessed by each isolate port Setup steps 1 Assign Port Mode Set Port 1 Port 4 in Isol...

Page 130: ...entry will be deleted in the stack MAC Address Indicates the MAC address VLAN ID Indicates the VLAN ID Port Members A row of check boxes for each port is displayed for each MAC based VLAN entry To in...

Page 131: ...he table starting from the first entry in the MAC based VLAN Table Updates the table starting with the entry after the last entry currently displayed 4 6 12 MAC based VLAN Status This Page shows MAC b...

Page 132: ...IP subnet based VLAN are based on VCE ID IP Address Indicates the IP address Mask Length Indicates the network mask length VLAN ID Indicates the VLAN ID VLAN ID can be changed for the existing entrie...

Page 133: ...6 20 Protocol to Group Mapping Table Page Screenshot The Page includes the following fields Object Description Delete To delete a Protocol to Group Name map entry check this box The entry will be dele...

Page 134: ...I field is 00 00 00 then value of PID will be etype 0x0600 0xffff and if value of OUI is other than 00 00 00 then valid value of PID will be any value from 0x0000 to 0xffff Group Name A valid Group Na...

Page 135: ...sting mapping entry on this Page VLAN ID Indicates the ID to which Group Name will be mapped A valid VLAN ID ranges from 1 4095 Port Members A row of check boxes for each port is displayed for each Gr...

Page 136: ...is also accomplished automatically without operator intervention This automatic network reconfiguration provides maximum uptime to network users However the concepts of the Spanning Tree Algorithm and...

Page 137: ...a higher number than the current root port can cause a root port change STP Port States The BPDUs take some time to pass through a network This propagation delay can result in topology changes where...

Page 138: ...or received by STP enabled ports until the forwarding state is enabled for that port 2 STP Parameters STP Operation Levels The Switch allows for two levels of operation the switch level and the port...

Page 139: ...ensures that the BPDU is discarded when its age exceeds the value of the maximum age timer 20 seconds Forward Delay Timer The amount time spent by a port in the learning and listening states waiting...

Page 140: ...tting the above parameters Max Age _ 2 x Forward Delay 1 second Max Age _ 2 x Hello Time 1 second Port Priority A Port Priority can be from 0 to 240 The lower the number the greater the probability th...

Page 141: ...User s Manual of WGSW 20160HP Figure 4 7 2 Before Applying the STA Rules In this example only the default STP values are used Figure 4 7 3 After Applying the STA Rules 141...

Page 142: ...ystem settings The settings are used by all STP Bridge instances in the Switch or switch Stack The Managed Switch support the following Spanning Tree protocols Compatiable Spanning Tree Protocol STP P...

Page 143: ...or 2 x Hello Time 1 Maximum The lower of 40 or 2 x Forward Delay 1 Maximum Hop Count This defines the initial value of remaining Hops for MSTI information generated at the boundary of an MSTI region...

Page 144: ...displayed table contains a row for each STP bridge instance where the column displays the following information The Bridge Status screen in Figure 4 7 5 appears Figure 4 7 5 STP Bridge Status Page Scr...

Page 145: ...current STP CIST port configurations and possibly change them as well The CIST Port Configuration screen in Figure 4 7 6 appears Figure 4 7 6 STP CIST Port Configuration Page Screenshot The Page inclu...

Page 146: ...ator to prevent bridges external to a core region of the network influence the spanning tree active topology possibly because those bridges are not under the full control of the administrator This fea...

Page 147: ...IEEE 802 1w 2001 Ethernet 50 600 200 000 20 000 000 Fast Ethernet 10 60 20 000 2 000 000 Gigabit Ethernet 3 10 2 000 200 000 Table 4 7 1 Recommended STP Path Cost Range Port Type Link Type IEEE 802 1D...

Page 148: ...creenshot The Page includes the following fields Object Description MSTI The bridge instance The CIST is the default instance which is always active Priority Controls the bridge priority Lower numeric...

Page 149: ...guration This Page allows the user to inspect the current STP MSTI bridge instance priority configurations and possibly change them as well The MSTI Configuration screen in Figure 4 7 8 appears Figure...

Page 150: ...Revision The revision of the MSTI configuration named above This must be an integer between 0 and 65535 MSTI Mapping Object Description MSTI The bridge instance The CIST is not available for explicit...

Page 151: ...licable for the port The MSTI instance must be selected before displaying actual MSTI port configuration options This Page contains MSTI port settings for physical and aggregated ports The aggregation...

Page 152: ...STP CIST and MSTI port Path Cost Controls the path cost incurred by the port The Auto setting will set the path cost as appropriate by the physical link speed using the 802 1D recommended values Usin...

Page 153: ...ort cost Buttons Click to set MSTx configuration Click to save changes Click to undo any changes made locally and revert to previously saved values 4 7 8 Port Status This Page displays the STP CIST po...

Page 154: ...of the following values AlternatePort BackupPort RootPort DesignatedPort Disable CIST State The current STP port state of the CIST port The port state can be one of the following values Disabled Learn...

Page 155: ...ort RSTP The number of RSTP Configuration BPDU s received transmitted on the port STP The number of legacy STP Configuration BPDU s received transmitted on the port TCN The number of legacy Topology C...

Page 156: ...that they will become members of a multicast group The Internet Group Management Protocol IGMP is used to communicate this information IGMP is also used to periodically check the multicast group for m...

Page 157: ...User s Manual of WGSW 20160HP Figure 4 8 2 Multicast Flooding Figure 4 8 3 IGMP Snooping Multicast Stream Control 157...

Page 158: ...ets enable multicast routers to keep track of the membership of multicast groups on their respective sub networks The following outlines what is communicated between a multicast router and a multicast...

Page 159: ...they want to receive multicast traffic If there is more than one router switch on the LAN performing IP multicasting one of these devices is elected querier and assumes the role of querying the LAN fo...

Page 160: ...ing Configuration Page Screenshot The Page includes the following fields Object Description Snooping Enabled Enable the Global IGMP Snooping Unregistered IPMCv4 Flooding Enabled Enable unregistered IP...

Page 161: ...d Switch automatically uses the port as IGMP Router port if the port receives IGMP query packets Fix The Managed Switch always uses the specified port as an IGMP Router port Use this mode when you con...

Page 162: ...per VLAN IGMP Snooping Only up to 64 VLANs can be selected IGMP Querier Enable the IGMP Querier in the VLAN Compatibility Compatibility is maintained by hosts and routers taking appropriate actions de...

Page 163: ...dministrator may want to control the multicast services that are available to end users For example an IP TV service based on a specific subscription plan The IGMP filtering feature fulfills this requ...

Page 164: ...xt save Port The logical port for the settings Filtering Group The IP Multicast Group that will be filtered Add New Filtering Group Click Add New Filtering Group to add a new entry to the Group Filter...

Page 165: ...owing fields Object Description VLAN ID The VLAN ID of the entry Querier Version Working Querier Version currently Host Version Working Host Version currently Querier Status Show the Querier status is...

Page 166: ...is a router port or not Buttons Click to refresh the Page immediately Clears all Statistics counters Auto refresh Automatic refresh occurs every 3 seconds 4 8 6 IGMP Group Information Entries in the I...

Page 167: ...on Table is sorted first by VLAN ID then by group and then by Port No Diffrent source addresses belong to the same group are treated as single entry Each Page shows up to 99 entries from the IGMP SSM...

Page 168: ...e 128 Type Indicates the Type It can be either Allow or Deny Hardware Filter Switch Indicates whether data plane destined to the specific group address from the source IPv4 address could be handled by...

Page 169: ...nregistered IPMCv6 Flooding enabled Enable unregistered IPMCv6 traffic flooding The flooding control takes effect only when MLD Snooping is enabled When MLD Snooping is disabled unregistered IPMCv6 tr...

Page 170: ...ns Click to save changes Click to undo any changes made locally and revert to previously saved values 4 8 9 MLD Snooping VLAN Configuration Each Page shows up to 99 entries from the VLAN table default...

Page 171: ...y Interval The Last Listener Query Interval is the Maximum Response Delay used to calculate the Maximum Response Code inserted into Multicast Address Specific Queries sent in response to Version 1 Mul...

Page 172: ...LD join report is dropped MLD throttling sets a maximum number of multicast groups that a port can join at the same time When the maximum number of groups is reached on a port the switch can take one...

Page 173: ...N ID The VLAN ID of the entry Querier Version Working Querier Version currently Host Version Working Host Version currently Querier Status Shows the Querier status is ACTIVE or IDLE DISABLE denotes th...

Page 174: ...h Automatic refresh occurs every 3 seconds 4 8 12 MLD Group Information Entries in the MLD Group Table are shown on this Page The MLD Group Table is sorted first by VLAN ID and then by group Each Page...

Page 175: ...Information table default being 20 selected through the entries per Page input field When first visited the web Page will show the first 20 entries from the beginning of the MLD SFM Information Table...

Page 176: ...icast traffic forwarding on the Multicast VLANs In a multicast television application a PC or a network television or a set top box can receive the multicast stream Multiple set top boxes or PCs can b...

Page 177: ...e following fields Object Description MVR Mode Enable Disable the Global MVR The Unregistered Flooding control depends on the current configuration in IGMP MLD Snooping It is suggested to enable Unreg...

Page 178: ...rt from multicast group membership The value is in units of tenths of a seconds The range is from 0 to 31744 The default LLQI is 5 tenths or one half second Interface Channel Setting When the MVR VLAN...

Page 179: ...ueries Received The number of Received Queries for IGMP and MLD respectively IGMP MLD Queries Transmitted The number of Transmitted Queries for IGMP and MLD respectively IGMPv1 Joins Received The numb...

Page 180: ...ut fields allow the user to select the starting point in the MVR Group Table The MVR Groups Information screen in Figure 4 8 19 appears Figure 4 8 19 MVR Groups Information Page Screenshot The Page in...

Page 181: ...e user to select the starting point in the MVR SFM Information Table The MVR SFM Information screen in Figure 4 8 20 appears Figure 4 8 20 MVR SFM Information Page Screenshot The Page includes the fol...

Page 182: ...refresh occurs every 3 seconds Refreshes the displayed table starting from the input fields Updates the table starting from the first entry in the MVR SFM Information Table Updates the table starting...

Page 183: ...ier classifies the traffic on the network Traffic classifications are determined by protocol application source destination and so on You can create and modify classifications The Switch then groups c...

Page 184: ...configuration below applies Enable Controls whether the policer is enabled on this switch port Rate Controls the rate for the policer The default value is 500 This value is restricted to 100 1000000 w...

Page 185: ...tings for all switch ports The Port Classification screen in Figure 4 9 2 appears Figure 4 9 2 QoS Ingress Port Classification Page Screenshot The Page includes the following fields Object Description...

Page 186: ...rols the default PCP for untagged frames DEI Controls the default DEI for untagged frames Tag Class Shows the classification mode for tagged frames on this port Disabled Use default QoS class and DP l...

Page 187: ...ars Figure 4 9 3 QoS Egress Port Schedule Page Screenshot The Page includes the following fields Object Description Port The logical port for the settings contained in the same row Click on the port n...

Page 188: ...Egress Port Shapers Page Screenshot The Page includes the following fields Object Description Port The logical port for the settings contained in the same row Click on the port number in order to con...

Page 189: ...n this switch port Queue Shaper Rate Controls the rate for the queue shaper The default value is 500 This value is restricted to 100 1000000 when the Unit is kbps and it is restricted to 1 3300 when t...

Page 190: ...Port Shaper Unit Controls the unit of measure for the port shaper rate as kbps or Mbps The default value is kbps Buttons Click to save changes Click to undo any changes made locally and revert to prev...

Page 191: ...9 7 appears Figure 4 9 7 QoS Egress Port Tag Remarking Page Screenshot The Page includes the following fields Object Description Mode Controls the tag remarking mode for this port Classified Use clas...

Page 192: ...viously saved values Click to undo any changes made locally and return to the previous Page 4 9 7 Port DSCP This Page allows you to configure the basic QoS Port DSCP Configuration settings for all swi...

Page 193: ...ssify only selected DSCP for which classification is enabled as specified in DSCP Translation window for the specific DSCP All Classify all DSCP Egress Port Egress Rewriting can be one of Disable No E...

Page 194: ...ased QoS This Page allows you to configure the basic QoS DSCP based QoS Ingress Classification settings for all switches The DSCP Based QoS screen in Figure 4 9 9 appears Figure 4 9 9 DSCP Based QoS I...

Page 195: ...ic DSCP value is trusted Only frames with trusted DSCP values are mapped to a specific QoS class and Drop Precedence Level Frames with untrusted DSCP values are treated as a non IP frame QoS Class QoS...

Page 196: ...ion This Page allows you to configure the basic QoS DSCP Translation settings for all switches DSCP translation can be done in Ingress or Egress The DSCP Translation screen in Figure 4 9 10 appears Fi...

Page 197: ...n Translate Classify Translate DSCP at Ingress side can be translated to any of 0 63 DSCP values Classify Click to enable Classification at Ingress side Egress There is following configurable paramete...

Page 198: ...ge Screenshot The Page includes the following fields Object Description QoS Class Available QoS Class value ranges from 0 to 7 QoS Class 0 7 can be mapped to followed parameters DPL Actual Drop Preced...

Page 199: ...frame type Ethernet Only Ethernet frames with Ether Type 0x600 0xFFFF are allowed LLC Only LLC frames are allowed SNAP Only SNAP frames are allowed IPv4 The QCE will match only IPV4 frames IPv6 The QC...

Page 200: ...ssified QoS class DPL Classified Drop Precedence Level DSCP Classified DSCP value Modification Buttons You can modify each QCE in the table using the following buttons Inserts a new QCE before the cur...

Page 201: ...lues 1 Any 2 Ethernet 3 LLC 4 SNAP 5 IPv4 6 IPv6 Note all frame types are explained below Any Allow all types of frames Ethernet Ethernet Type Valid ethernet type can have value within 0x600 0xFFFF or...

Page 202: ...It can be specific value range of value or Any DSCP values are in the range 0 63 including BE CS1 CS7 EF or AF11 AF43 Sport Source TCP UDP port 0 65535 or Any specific or port range applicable for IP...

Page 203: ...Only LLC frames are allowed SNAP Only SNAP frames are allowed IPv4 The QCE will match only IPV4 frames IPv6 The QCE will match only IPV6 frames Port Indicates the list of ports configured with the QCE...

Page 204: ...ly affect flooded frames i e frames with a VLAN ID DMAC pair not present on the MAC Address table The configuration indicates the permitted packet rate for unicast multicast or broadcast traffic acros...

Page 205: ...The Page includes the following fields Object Description Port The logical port for the settings contained in the same row Q0 Q7 There are 8 QoS queues per port Q0 is the lowest priority queue Rx Tx...

Page 206: ...chedule network traffic It is recommended that there be two VLANs on a port one for voice one for data Before connecting the IP device to the switch the IP phone should configure the voice VLAN ID cor...

Page 207: ...the Voice VLAN traffic class All traffic on Voice VLAN will apply this class Mode Indicates the Voice VLAN port mode Possible port modes are Disabled Disjoin from Voice VLAN Auto Enable auto detect mo...

Page 208: ...he Page includes the following fields Object Description Check to delete the entry It will be deleted during the next save Delete An telephony OUI address is a globally unique identifier assigned to a...

Page 209: ...are three ACE frame types Ethernet Type ARP and IPv4 and two ACE actions permit and deny The ACE also contains many detailed different parameter options that are available for individual application 4...

Page 210: ...peration of the ACE Frames matching the ACE are redirected to the port number The allowed values are Disabled or a specific port number When Disabled is displayed the port redirect operation is disabl...

Page 211: ...le values are Any The ACE will match any frame type EType The ACE will match Ethernet Type frames Note that an Ethernet Type based ACE will not get matched by IP and ARP frames ARP The ACE will match...

Page 212: ...hit by a frame Counter Modification Buttons You can modify each ACE Access Control Entry in the table using the following buttons Inserts a new ACE before the current row Edits the ACE row Moves the A...

Page 213: ...Figure 4 10 3 ACE Configuration Page Screenshot The Page includes the following fields Object Description Select the ingress port for which this ACE applies Any The ACE applies to any port Port n The...

Page 214: ...s dropped Rate Limiter Specify the rate limiter in number of base units The allowed range is 1 to 16 Disabled indicates that the rate limiter operation is disabled Port Redirect Frames that hit the AC...

Page 215: ...hen Specific is selected for the DMAC filter you can enter a specific destination MAC address The legal format is xx xx xx xx xx xx A frame that hits this ACE matches this DMAC value DMAC Value VLAN P...

Page 216: ...ter you can enter a specific sender IP address in dotted decimal notation Sender IP Address When Network is selected for the sender IP filter you can enter a specific sender IP mask in dotted decimal...

Page 217: ...frames where the PRO is equal to IP 0x800 1 ARP RARP frames where the PRO is equal to IP 0x800 Any Any value is allowed don t care Ethernet IP Parameters The IP parameters can be configured when Fram...

Page 218: ...IP filter for this ACE Any No source IP filter is specified Source IP filter is don t care Host Source IP filter is set to Host Specify the source IP address in the SIP Address field that appears Netw...

Page 219: ...cific ICMP code value The allowed range is 0 to 255 A frame that hits this ACE matches this ICMP code value ICMP Code Value TCP UDP Parameters Object Description TCP UDP Source Filter Specify the TCP...

Page 220: ...TCP frames where the FIN field is set must be able to match this entry Any Any value is allowed don t care TCP FIN Specify the TCP Synchronize sequence numbers SYN value for this ACE 0 TCP frames wher...

Page 221: ...c EtherType filter with this ACE you can enter a specific EtherType value A field for entering a EtherType value appears EtherType Filter When Specific is selected for the EtherType filter you can ent...

Page 222: ...or the settings contained in the same row Port Select the policy to apply to this port The allowed values are 0 through 255 The default value is 0 Policy ID Select whether forwarding is permitted Perm...

Page 223: ...he port shut down operation of this port The allowed values are Enabled If a frame is received on the port the port will be disabled Disabled Port shut down is disabled The default value is Disabled S...

Page 224: ...ge Screenshot The Page includes the following fields Object Description The rate limiter ID for the settings contained in the same row Rate Limiter ID The allowed values are 0 3276700 in pps or 0 100...

Page 225: ...tion is complete the RADIUS server sends a special packet containing a success or failure indication Besides forwarding this decision to the supplicant the switch uses it to open up or block traffic o...

Page 226: ...r TACACS aware devices on the network An authentication server contains a database of multiple user name password pairs with associated privilege levels for each user that requires management access t...

Page 227: ...ure Access Control Server version 3 0 RADIUS operates in a client server model in which secure authentication information is exchanged between the RADIUS server and one or more RADIUS clients Switch 8...

Page 228: ...frame from the switch the client can initiate authentication by sending an EAPOL start frame which prompts the switch to request the client s identity If 802 1X is not enabled or supported on the net...

Page 229: ...ecause no response is received the client begins sending frames as if the port is in the authorized state If the client is successfully authenticated receives an Accept frame from the authentication s...

Page 230: ...configure the IEEE 802 1X and MAC based authentication system and port settings The IEEE 802 1X standard defines a port based access control procedure that prevents unauthorized access to a network b...

Page 231: ...f NAS is globally enabled or disabled on the switch If globally disabled all ports are allowed forwarding of frames Mode Reauthentication Enabled If checked successfully authenticated supplicants clie...

Page 232: ...ctivity on the MAC address in question at regular intervals and free resources if no activity is seen within a given period of time This parameter controls exactly this period and can be set to a numb...

Page 233: ...ust be configured to transmit special RADIUS attributes to take advantage of this feature The RADIUS Assigned VLAN Enabled checkbox provides a quick way to globally enable disable RADIUS server assign...

Page 234: ...number for which the configuration below applies Port Admin State If NAS is globally enabled this selection controls the port s authentication mode The following modes are available Force Authorized I...

Page 235: ...ince the server hasn t yet failed because the X seconds haven t expired the same server will be contacted upon the next backend authentication server request from the switch This scenario will loop fo...

Page 236: ...h Unlike port based 802 1X MAC based authentication is not a standard but merely a best practices method adopted by the industry In MAC based authentication users are called clients and the switch act...

Page 237: ...ately reverted to the original QoS Class which may be changed by the administrator in the meanwhile without affecting the RADIUS assigned This option is only available for single client modes i e Port...

Page 238: ...ks for the first set of these attributes that have the same Tag value and fulfil the following requirements if Tag 0 is used the Tunnel Private Group ID does not need to include a Tag Value of Tunnel...

Page 239: ...the supplicant according to the port mode If an EAPOL frame is received the port will never be able to go back into the Guest VLAN if the Allow Guest VLAN if EAPOL Seen is disabled Port State The curr...

Page 240: ...to refresh the Page Click to save changes Click to undo any changes made locally and revert to previously saved values 4 11 4 Network Access Overview This Page provides an overview of the current NAS...

Page 241: ...upplicant identity carried in the most recently received Response Identity EAPOL frame for EAPOL based authentication and the source MAC address from the most recently received frame from a new client...

Page 242: ...State Object Description The port s current administrative state Refer to NAS Admin State for a description of possible values Admin State The current state of the port Refer to NAS Port State for a d...

Page 243: ...ity frames that have been received by the switch Rx Responses dot1xAuthEapolRespFr amesRx The number of valid EAPOL response frames other than Response Identity frames that have been received by the s...

Page 244: ...that have been transmitted by the switch These backend RADIUS frame counters are available for the following administrative states Port based 802 1X Single 802 1X Multi 802 1X MAC based Auth Backend S...

Page 245: ...ation Indicates that the supplicant client has successfully authenticated to the backend server Rx Auth Failures dot1xAuthBackendAuth Fails 802 1X and MAC based Counts the number of times that the swi...

Page 246: ...lti 802 1X MAC based Auth Last Supplicant Client Info Name IEEE Name Description MAC Address dot1xAuthLastEapolF rameSource The MAC address of the last supplicant client VLAN ID The VLAN ID on which t...

Page 247: ...ased Auth MAC Address For Multi 802 1X this column holds the MAC address of the attached supplicant For MAC based Auth this column holds the MAC address of the attached client Clicking the link causes...

Page 248: ...orce Unauthorized Port based 802 1X Single 802 1X Click to clear the counters for the selected port This button is available in the following modes Multi 802 1X MAC based Auth X Click to clear both th...

Page 249: ...uthentication Server Configuration This Page allows you to configure the Authentication Servers The Authentication Server Configuration screen in Figure 4 11 7 appears Figure 4 11 7 Authentication Ser...

Page 250: ...period during which the switch will not send new requests to a server that has failed to respond to a previous request This will stop the switch from continually trying to contact a server that it ha...

Page 251: ...DIUS Accounting Server and the switch Secret TACACS Authentication Server Configuration The table has one row for each TACACS Authentication Server and a number of columns which are Object Description...

Page 252: ...nd UDP port number in IP Address UDP Port notation of this server IP Address The current state of the server This field takes one of the following values Disabled The server is disabled Not Ready The...

Page 253: ...up and running Ready The server is enabled IP communication is up and running and the RADIUS module is ready to accept accounting attempts Dead X seconds left Accounting attempts were made to this ser...

Page 254: ...ls This Page provides detailed statistics for a particular RADIUS server The RADIUS Authentication Accounting for Server Overview screen in Figure 4 11 9 appears Figure 4 11 9 RADIUS Authentication Ac...

Page 255: ...radiusAuthClientExtA ccessRejects The number of RADIUS Access Reject packets valid or invalid received from the server Rx Access Challenges radiusAuthClientExtA ccessChallenges The number of RADIUS Ac...

Page 256: ...include retransmissions Tx Access Retransmissio ns radiusAuthClientExtA ccessRetransmission s The number of RADIUS Access Request packets retransmitted to the RADIUS authentication server Tx Pending R...

Page 257: ...ed IP communication is up and running and the RADIUS module is ready to accept access attempts Dead X seconds left Access attempts were made to this server but it did not reply within the configured t...

Page 258: ...ed RADIUS packets received from the server Malformed packets include packets with an invalid length Bad authenticators or or unknown types are not included as malformed access responses Rx Bad Authent...

Page 259: ...to a different server or give up A retry to the same server is counted as a retransmit as well as a timeout A send to a different server is counted as a Request as well as a timeout This section conta...

Page 260: ...e time interval measured in milliseconds between the most recent Response and the Request that matched it from the RADIUS accounting server The granularity of this measurement is 100 ms A value of 0 m...

Page 261: ...itch In this case field in the default IP Address of the Managed Switch with 192 168 0 100 And also make sure the shared secret key is as same as the one you had set at the Managed Switch s 802 1x sys...

Page 262: ...60HP 2 Add New RADIUS Cleint on the Windows 2003 server Figure 4 11 11 Windows Server Add New RADIUS Client Setting 3 Assign the client IP address to the Managed Switch Figure 4 11 12 Windows Server R...

Page 263: ...1 13 Windows Server RADIUS Server Setting 5 Configure ports attribute of 802 1X the same as 802 1X Port Configuration Figure 4 11 14 802 1x Port Configuration 6 Create user data The establishment of t...

Page 264: ...W 20160HP Figure 4 11 15 Windows 2003 AD Server Setting Path 7 Enter Active Directory Users and Computers create legal user data the next right click a user what you created to enter properties and wh...

Page 265: ...Add User Properties Screen Set the Ports Authenticate Status to Force Authorized if the port is connected to the RADIUS server or the port is a uplink port that is connected to another switch Or once...

Page 266: ...ient i e switch to EAP TLS from EAP MD5 you must remove the current existing wireless network from your preferred connection first and add it in again Configure Sample EAP MD5 Authentication 1 Go to S...

Page 267: ...HP Figure 4 11 19 7 Click OK 8 When client has associated with the Managed Switch a user authentication notice appears in system tray Click on the notice to continue Figure 4 11 20 Windows Client Popu...

Page 268: ...User s Manual of WGSW 20160HP 9 Enter the user name password and the logon domain that your account belongs 10 Click OK to complete the validation process Figure 4 11 21 268...

Page 269: ...ings Limit Control allows for limiting the number of users on a given port A user is identified by a MAC address and VLAN ID If Limit Control is enabled on a port the limit specifies the maximum numbe...

Page 270: ...figuration Object Description Indicates if Limit Control is globally enabled or disabled on the switchstack If globally disabled other modules may still use the underlying functionality but limit chec...

Page 271: ...st and if such frames are not seen within the next Aging Period the end host is assumed to be disconnected and the corresponding resources are freed on the switch Port Configuration The table has one...

Page 272: ...taken This column shows the current state of the port as seen from the Limit Control s point of view The state takes one of four values Disabled Limit Control is either globally disabled or disabled o...

Page 273: ...ccess management mode operation Mode Check to delete the entry It will be deleted during the next save Delete Indicates the start IP address for the access management entry Start IP address Indicates...

Page 274: ...t allowed remote host can access the switch Interface The received packets number from the interface under access management mode is enabled Receive Packets The allowed packets number from the interfa...

Page 275: ...sible modes are Enabled Enable HTTPS mode operation Disabled Disable HTTPS mode operation Mode Indicates the HTTPS redirect mode operation It only significant if HTTPS mode Enabled is selected Automat...

Page 276: ...s to be set in the forwarding state all enabled user modules must unanimously agree on allowing the MAC address to forward If only one chooses to block it it will be blocked until that user module dec...

Page 277: ...to the port security module which in turn asks all user modules whether to allow this new MAC address to forward or block it For a MAC address to be set in the forwarding state all enabled user modul...

Page 278: ...state of the port It can take one of four values Disabled No user modules are currently using the Port Security service Ready The Port Security service is in use by at least one user module and is aw...

Page 279: ...4 12 7 appears Figure 4 12 7 Port Security Detail Screen Page Screenshot The Page includes the following fields Object Description MAC Address VLAN ID The MAC address and VLAN ID that is seen on this...

Page 280: ...DHCP Snooping DHCP Snooping is used to block intruder on the untrusted ports of DUT when it tries to intervene by injecting a bogus DHCP reply packet to a legitimate conversation between the DHCP cli...

Page 281: ...t modes are Trusted Configures the port as trusted sources of the DHCP message Untrusted Configures the port as untrusted sources of the DHCP message Port Mode Configuration Buttons Click to save chan...

Page 282: ...ed Rx and Tx NAK The number of release option 53 with value 7 packets received and transmitted Rx and Tx Release The number of inform option 53 with value 8 packets received and transmitted Rx and Tx...

Page 283: ...affic based on the DHCP Snooping Table or manually configured IP Source Bindings It helps prevent IP spoofing attacks when a host tries to spoof and use the IP address of another host This Page provid...

Page 284: ...are enabled IP Source Guard is enabled on this given port Port Mode Configuration Max Dynamic Clients Specify the maximum number of dynamic clients can be learned on given ports This value can be 0 1...

Page 285: ...Page includes the following fields Object Description Check to delete the entry It will be deleted during the next save Delete The logical port for the settings Port The VLAN ID for the settings VLAN...

Page 286: ...s connected to Layer 2 networks by poisoning the ARP caches This feature is used to block such attacks Only valid ARP requests and responses can go through DUT This Page provides ARP Inspection relate...

Page 287: ...obal ARP Inspection Port Mode Configuration Specify ARP Inspection is enabled on which ports Only when both Global Mode and Port Mode on a given port are enabled ARP Inspection is enabled on this give...

Page 288: ...ing fields Object Description Check to delete the entry It will be deleted during the next save Delete The logical port for the settings Port The VLAN ID for the settings VLAN ID Allowed Source MAC ad...

Page 289: ...switch ports The frames also contain a MAC address SMAC address which shows the MAC address of the equipment sending the frame The SMAC address is used by the switch to automatically update the MAC t...

Page 290: ...No learning is done Disable Only static MAC entries are learned all other frames are dropped Note Make sure that the link used for managing the switch is added to the Static Mac Table before changing...

Page 291: ...web Page will show the first 20 entries from the beginning of the MAC Table The first displayed will be the one with the lowest VLAN ID and the lowest MAC address found in the MAC Table The Start from...

Page 292: ...then by IP address The Dynamic ARP Inspection Table screen in Figure 4 13 3 appears Figure 4 13 3 Dynamic ARP Inspection Table Screenshot Navigating the ARP Inspection Table Each Page shows up to 99...

Page 293: ...ard Table are shown on this Page The Dynamic IP Source Guard Table is sorted first by port then by VLAN ID then by IP address and then by IP mask The Dynamic IP Source Guard Table screen in Figure 4 1...

Page 294: ...is particular port Port The VLAN ID of the entry VLAN ID The IP address of the entry IP Address The MAC address of the entry MAC Address Buttons Auto refresh Check this box to refresh the Page automat...

Page 295: ...e and maintain information gathered about the neighboring network nodes it discovers Link Layer Discovery Protocol Media Endpoint Discovery LLDP MED is an extension of LLDP intended for managing endpo...

Page 296: ...6 Therefore the default TTL is 4 30 120 seconds Tx Hold If some configuration is changed e g the IP address a new LLDP frame is transmitted but the time between the LLDP frames will always be at least...

Page 297: ...hown in the LLDP neighbours table CDP TLV Port ID is mapped to the LLDP Port ID field CDP TLV Version and Platform is mapped to the LLDP System Description field Both the CDP and LLDP support system c...

Page 298: ...ount Object Description Fast start repeat count Rapid startup and Emergency Call Service Location Identification Discovery of endpoints is a critically important aspect of VoIP systems in general In a...

Page 299: ...ded value is 4 times given that 4 LLDP frames with a 1 second interval will be transmitted when an LLDP frame with new information is received It should be noted that LLDP MED and the LLDP MED Fast St...

Page 300: ...is datum pair is to be used when referencing locations on water sea ocean Map Datum Civic Address Location IETF Geopriv Civic Address based Location Configuration Information Civic Address LCI Object...

Page 301: ...ing to the ELIN to be used for emergency calling Emergency Call Service Policies Network Policy Discovery enables the efficient discovery and diagnosis of mismatch issues with the VLAN configuration a...

Page 302: ...voice services These devices are typically deployed on a separate VLAN for ease of deployment and enhanced security by isolation from data applications Voice Signaling conditional for use in network t...

Page 303: ...are ignored and only the DSCP value has relevance Tagged indicates that the device is using the IEEE 802 1Q tagged frame format and that both the VLAN ID and the Layer 2 priority values are being used...

Page 304: ...to previously saved values 4 14 4 LLDP MED Neighbor This Page provides a status overview for all LLDP MED neighbors The displayed table contains a row for each port on which an LLDP neighbor is detec...

Page 305: ...ss I LLDP MED Generic Endpoint Class I The LLDP MED Generic Endpoint Class I definition is applicable to all endpoint products that require the base LLDP discovery services defined in TIA 1057 however...

Page 306: ...an Endpoint or Network Connectivity Device The poosible application types are shown below Voice for use by dedicated IP Telephony handsets and other similar appliances supporting interactive voice ser...

Page 307: ...the device is using priority tagged frames as defined by IEEE 802 1Q 2003 meaning that only the IEEE 802 1D priority level is significant and the default PVID of the ingress port is used instead VLAN...

Page 308: ...hbor unit System Name Port Description is the port description advertised by the neighbor unit Port Description System Capabilities describes the neighbor unit s capabilities The possible capabilities...

Page 309: ...g fields Global Counters Object Description Neighbor entries were last changed It also shows the time when the last entry was last deleted or added It also shows the time elapsed since the last change...

Page 310: ...e table Entries are removed from the table when a given port links down an LLDP shutdown frame is received or when the entry ages out Frames Discarded Each LLDP frame can contain multiple pieces of in...

Page 311: ...issues The Managed Switch transmit ICMP packets and the sequence number and roundtrip time are displayed upon reception of a reply Cable Diagnostics The Cable Diagnostics performing tests on copper ca...

Page 312: ...ears Figure 4 15 1 ICMP Ping Page Screenshot The Page includes the following fields Object Description The destination IP Address IP Address The payload size of the ICMP packet Values range from 2 byt...

Page 313: ...ed or until a timeout occurs The ICMPv6 Ping screen in Figure 4 15 2 appears Figure 4 15 2 ICMPv6 Ping Page Screenshot The Page includes the following fields Object Description The destination IP Addr...

Page 314: ...ption of a reply The Page refreshes automatically until responses to all packets are received or until a timeout occurs The ICMP Ping screen in Figure 4 15 3 appears Figure 4 15 3 Remote IP Ping Test...

Page 315: ...s results in the cable status table Note that Cable Diagnostics is only accurate for cables of length 7 140 meters 10 and 100 Mbps ports will be linked down while running cable diagnostic Therefore ru...

Page 316: ...Short Shorted pair Short A Cross pair short to pair A Short B Cross pair short to pair B Short C Cross pair short to pair C Short D Cross pair short to pair D Cross A Abnormal cross pair coupling with...

Page 317: ...allation of cameras or WLAN AP more easily and efficiently Figure 4 16 1 Power over Ethernet Status 4 16 1 Power over Ethernet Powered Device 3 5 Watts Voice over IP phones Enterprise can install POE...

Page 318: ...loyment from restrictions due to power outlet locations which eliminate the costs for additional AC wiring and reduces the installation time 30 Watts High Power Speed Dome This state of the art design...

Page 319: ...system is lower than the power level at which additional PDs cannot be connected When this value is exceeded ports will be deactivated according to user defined priorities The power budget is managed...

Page 320: ...ceeds the amount of power that the power supply can deliver or if the actual power consumption for a given port exceeds the reserved power for that port The ports are shut down according to the ports...

Page 321: ...e of the total PoE port provided power to the PDs For WGSW 20160HP the available max Value is 230 Allows setting over temperature protection threshold value It system temperature was over it then syst...

Page 322: ...tion unimplement 1 Optional 0 44 to 3 84 Watts Very low power 2 Optional 3 84 to 6 49 Watts Low power 3 Optional 6 49 to 12 95 Watts or to 15 4Watts Mid power 4 Optional 12 95 to 25 50 Watts or to 30...

Page 323: ...port Class4 level From class1 to class3 level on the 802 3at mode will be reserved the same PoE power with 802 3af mode AF AT Mode The Priority represents PoE ports priority There are three levels of...

Page 324: ...d Shows how much the total power be reserved for all PDs Display the current operating temperature of first PoE chip unit Temperature 1 Display the current operating temperature of second PoE chip uni...

Page 325: ...all PDs Total Buttons Auto refresh Check this box to enable an automatic refresh of the page at regular intervals Click to refresh the page immediately 4 16 5 PoE Schedule This page allows the user t...

Page 326: ...ticed that if you want to PoE schedule and PoE reboot schedule work at the same time please use this function and don t use Reboot Only function This function offers administrator to reboot PoE device...

Page 327: ...en in Figure 4 16 6 appears Figure 4 16 6 LLDP PoE Neighbour Screenshot Please be noticed that administrator has to enable LLDP port from LLDP configuration please refer to following example The scree...

Page 328: ...or system making ping to the PoE device Please be noticed that the PD s IP address must be set to the same network segment with WGSW 20160HP PoE Switch Ping PD IP Address Interval Time 10 300s This co...

Page 329: ...ard so the PoE device on the market doesn t report reboots done information to WGSW 20160HP PoE Switch so user has to make sure how long the PD will be finished to boot and then set the time value to...

Page 330: ...n that provides loop protection to prevent broadcast loops in Managed Switch 4 17 1 Configuration This Page allows the user to inspect the current Loop Protection configurations and possibly change th...

Page 331: ...are 0 to 604800 seconds 7 days A value of zero will keep a port disabled until next device restart Shutdown Time Port Configuration Object Description The switch port number of the port Port Controls...

Page 332: ...port number of the logical port Port The currently configured port action Action The currently configured port transmit mode Transmit The number of loops detected on this port Loops The current loop...

Page 333: ...tory display some current or history subnet statistics Alarm and Event provide a method to monitor any integer data change in the network and provide some alerts upon abnormal events sending Trap or r...

Page 334: ...method of sampling the selected variable and calculating the value to be compared against the thresholds possible sample types are Absolute Get the sample directly Delta Calculate the difference betwe...

Page 335: ...variable to be sampled Variable The method of sampling the selected variable and calculating the value to be compared against the thresholds Sample Type The value of the statistic during the last samp...

Page 336: ...ring the rising and falling threshold Interval Indicates the particular variable to be sampled Variable The method of sampling the selected variable and calculating the value to be compared against th...

Page 337: ...f octets received on the interface including framing characters log The number of uni cast packets delivered to a higher layer protocol snmptrap The number of broad cast and multi cast packets deliver...

Page 338: ...atus This Page provides an overview of RMON Event table entries Each Page shows up to 99 entries from the Event table default being 20 selected through the entries per Page input field When first visi...

Page 339: ...e The entry index key is ID screen in Figure 4 18 7 appears Figure 4 18 7 RMON History Configuration Page Screenshot The Page includes the following fields Object Description Check to delete the entry...

Page 340: ...ject Description Indicates the index of History control entry History Index Indicates the index of the data entry associated with the control entry Sample Index The total number of events in which pac...

Page 341: ...ate of the total number of collisions on this Ethernet segment Collisions The best estimate of the mean physical layer network utilization on this interface during this sampling interval in hundredths...

Page 342: ...ackets received that had a length excluding framing bits but including FCS octets of between 64 and 1518 octets CRCErrors The total number of packets received that were less than 64 octets Undersize T...

Page 343: ...Description Check to delete the entry It will be deleted during the next save Delete Indicates the index of the entry The range is from 1 to 65535 ID Indicates the port ID which wants to be monitored...

Page 344: ...p The total number of octets of data including those in bad packets received on the network Octets The total number of packets including bad packets broadcast packets and multicast packets received Pk...

Page 345: ...ing bad packets received that were between 65 to 127 octets in length 65 127 Bytes The total number of packets including bad packets received that were between 128 to 255 octets in length 128 255 Byte...

Page 346: ...ck of resources Drop The total number of octets of data including those in bad packets received on the network Octets The total number of packets including bad packets broadcast packets and multicast...

Page 347: ...hat were between 256 to 511 octets in length 256 511 The total number of packets including bad packets received that were between 512 to 1023 octets in length 512 1023 The total number of packets incl...

Page 348: ...system This chapter describes how to use the Command Line Interface CLI Logon to the Console Once the terminal has connected to the device power on the Managed Switch the terminal will display that i...

Page 349: ...IP address 1 On WGSW 20160HP prompt enter show ip 2 The screen displays the current IP address Subnet Mask and Gateway As show in Figure 5 2 Figure 5 2 Show IP Information Screen Configure IP address...

Page 350: ...ed parameter enter help anytime in console to get the help description You can change these settings if desired after you log on This management method is often preferred because you can remain connec...

Page 351: ...elnet Login The Managed Switch also supports telnet for remote management The Managed Switch asks for user name and password for remote login when using telnet please use admin for username password F...

Page 352: ...VLAN Virtual LAN PVLAN Private VLAN Security Security Management STP Spanning Tree Protocol Aggr Link Aggregation LACP Link Aggregation Control Protocol LLDP Link Layer Discovery Protocol LLDPMED Lin...

Page 353: ..._list Parameters all Show all switch configuration default Show system configuration port Show switch port configuration port_list Port list or all default All ports System Log Configuration Descripti...

Page 354: ...Show system Log server mode Default Setting disable System Name Description Set or show the system name Syntax System Name name Parameters name System name string 1 255 Use to clear the string System...

Page 355: ...ring 1 255 Use to clear the string In CLI No blank or space characters are permitted as part of a contact Default Setting empty System Log Server Address Description Show or set the system log server...

Page 356: ...n CLI no blank or space characters are permitted as part of a location Default Setting empty System Log Level Description Show or set the system log level It uses to determine what kind of message wil...

Page 357: ...Time zone offset in minutes 720 to 720 relative to UTC Default Setting 0 System Log Lookup Description Show or clear the system log Syntax System Log Lookup log_id all info warning error Parameters l...

Page 358: ...arnings error Show errors System Reboot Description Reboot the system Syntax System Reboot System Restore Default Description Restore factory default configuration Syntax System Restore Default keep_i...

Page 359: ...Configuration Description Show IP configuration Syntax IP Configuration IP DHCP Description Set or show the DHCP client mode Syntax IP DHCP enable disable Parameters enable Enable or renew DHCP client...

Page 360: ...IP Mask 255 255 255 0 IP Router 192 168 0 1 DNS Server 0 0 0 0 VLAN ID 1 IP Ping Description Ping IP address ICMP echo Syntax IP Ping ip_addr_string Length ping_length Count ping_count Interval ping_i...

Page 361: ...x IP DNS ip_addr Parameters ip_addr IP address a b c d default Showdne IP address Default Setting 0 0 0 0 IP DNS Proxy Description Set or show the IP DNS Proxy mode Syntax IP DNS_Proxy enable disable...

Page 362: ...that can be used as a shorthand way of representing multiple 16 bit groups of contiguous zeros but it can only appear once It also used a following legally IPv4 address For example 192 1 2 34 ipv6_pre...

Page 363: ...ields of up to four hexadecimal digits with a colon separates each field For example four hexadecimal digits with a colon separates each field For example fe80 215 c5ff fe03 4dc7 The symbol is a speci...

Page 364: ...abled Idx Server IP host address a b c d or a host name string 1 pool ntp org 2 europe pool ntp org 3 north america pool ntp org 4 asia pool ntp org 5 oceania pool ntp org IP NTP Mode Description Set...

Page 365: ...server index 1 5 server_ipv6 IPv6 server address IPv6 address is in 128 bit records represented as eight fields of up to four hexadecimal digits with a colon separates each field For example fe80 215...

Page 366: ...Mode Description Set or show the port speed and duplex mode Syntax Port Mode port_list auto 10hdx 10fdx 100hdx 100fdx 1000fdx 1000x_ams 1000x Parameters port_list Port list or all default All ports a...

Page 367: ...ault All ports enable Enable flow control disable Disable flow control default Show flow control mode Default Setting Disable Port State Description Set or show the port administrative state Syntax Po...

Page 368: ...um frame size 1518 9600 default Show maximum frame size Default Setting 9600 Port Power Description Set or show the port PHY power mode Syntax Port Power port_list enable disable actiphy dynamic Param...

Page 369: ...tting Discard Port Statistics Description Show port statistics Syntax Port Statistics port_list command up down Parameters port_list Port list or all default All ports command The command parameter ta...

Page 370: ...iPHY port_list Parameters port_list Port list or all default All ports Port Description Description Set or show Port Description Syntax Port Description port_list descr_text Parameters port_list Port...

Page 371: ...dress table entry Syntax MAC Add mac_addr port_list vid Parameters mac_addr MAC address xx xx xx xx xx xx or xx xx xx xx xx xx or xxxxxxxxxxxx x is a hexadecimal digit port_list Port list or all or no...

Page 372: ...ddr MAC address xx xx xx xx xx xx or xx xx xx xx xx xx or xxxxxxxxxxxx x is a hexadecimal digit vid VLAN ID 1 4095 default 1 MAC Age Time Description Set or show the MAC address age timer Syntax MAC A...

Page 373: ...learning secure Secure learning default Show learn mode Default Setting Auto MAC Dump Description Show sorted list of MAC address entries Syntax MAC Dump mac_max mac_addr vid Parameters mac_max Maxim...

Page 374: ...160HP MAC Statistics Description Show MAC address table statistics Syntax MAC Statistics port_list Parameters port_list Port list or all default All ports MAC Flush Description Flush all learned entri...

Page 375: ...ntax VLAN Configuration port_list Parameters port_list Port list or all default All ports VLAV PVID Description Set or show the port VLAN ID Syntax VLAN PVID port_list vid none Parameters port_list Po...

Page 376: ...agged frames tagged Allow tagged frames only default Show accepted frame types Default Setting All VLAN Ingress Filter Description Set or show the port VLAN ingress filter Syntax VLAN IngressFilter po...

Page 377: ...1q 802 1Q VLAN Mode default Show VLAN Mode Default Setting IEEE 802 1Q VLAN Link Type Description Set or show the port VLAN link type Syntax VLAN LinkType port_list untagged tagged Parameters port_lis...

Page 378: ...Q in Q MAN Port Mode customer Q in Q Customer Port Mode default Show VLAN QinQ Mode VLAN Ethernet Type Description Set or show out layer VLAN tag ether type in Q in Q VLAN mode Syntax VLAN Ethtype por...

Page 379: ...or all default All ports Default Setting 1 VLAN Forbidden Add Description Add or modify VLAN entry in forbidden table Syntax VLAN Forbidden Add vid name port_list Parameters vid name VLAN ID 1 4095 o...

Page 380: ...D 1 4095 or VLAN Name VLAN Forbidden Lookup Description Lookup VLAN Forbidden port entry Syntax VLAN Forbidden Lookup vid name name Parameters vid VLAN ID 1 4095 default Show all VLANs name VLAN name...

Page 381: ...Shows All the Combined VLAN database static Shows the VLAN entries configured by the administrator nas Shows the VLANs configured by NAS mvr Shows the VLANs configured by MVR voice_vlan Shows the VLAN...

Page 382: ...e Maximum of 32 characters VLAN Name can only contain alphabets or numbers VLAN name should contain atleast one alphabet VLAN Name Lookup Description Show VLAN Name table Syntax VLAN Name Lookup name...

Page 383: ...licts Parameters port_list Port list or all default All ports combined combined VLAN Users configuration static static port configuration nas NAS port configuration mvr MVR port configuration voice_vl...

Page 384: ...tion Add or modify Private VLAN entry Syntax PVLAN Add pvlan_id port_list Parameters pvlan_id Private VLAN ID The allowed range for a Private VLAN ID is the same as the switch port number range port_l...

Page 385: ...e allowed range for a Private VLAN ID is the same as the switch port number range PVLAN Isolate Description Set or show the port isolation mode Syntax PVLAN Isolate port_list enable disable Parameters...

Page 386: ...name that this entry should belong to The allowed string length is 1 32 The valid user name is a combination of letters numbers and underscores password The password for this user name The allowed str...

Page 387: ...rity Switch Privilege Level Group group_name cro crw sro srw Parameters group_name Privilege group name cro Configuration read only privilege level 1 15 crw Configuration Execute read write privilege...

Page 388: ...meters console Settings for console telnet Settings for telnet ssh Settings for ssh web Settings for web default Set or show the specific client authentication method none Authentication disabled loca...

Page 389: ...guration Security Switch SSH Mode Description Set or show the SSH mode Syntax Security Switch SSH Mode enable disable Parameters enable Enable SSH disable Disable SSH default Show SSH mode Default Set...

Page 390: ...able HTTPs default Show HTTPs mode Default Setting enable Security Switch HTTPs Redirect Description Set or show the HTTPS redirect mode Automatic redirect web browser to HTTPS during HTTPS mode enabl...

Page 391: ...nt default Show access management mode Default Setting disable Security Switch Access Add Description Add access management entry default Add all supported protocols Syntax Security Switch Access Add...

Page 392: ...lso used a following legally IPv4 address For example 192 1 2 34 end_ipv6_addr End IPv6 address IPv6 address is in 128 bit records represented as eight fields of up to four hexadecimal digits with a c...

Page 393: ...tch Access Clear Description Clear access management entry Syntax Security Switch Access Clear Security Switch Access Statistics Description Show or clear access management statistics Syntax Security...

Page 394: ...able Parameters enable Enable SNMP disable Disable SNMP default Show SNMP mode Default Setting enable Security Switch SNMP Version Description Set or show the SNMP protocol version Syntax Security Swi...

Page 395: ...e string Maximum length allowed is upto 256 characters default Show SNMP read community Default Setting public Security Switch SNMP Write Community Description Set or show the community string for SNM...

Page 396: ...ters enable Enable SNMP traps disable Disable SNMP traps default Show SNMP trap mode Default Setting disable Security Switch SNMP Trap Version Description Set or show the SNMP trap protocol version Sy...

Page 397: ...ers ip_addr_string IP host address a b c d or a host name string Security Switch SNMP Trap IPv6 Destination Description Set or Show the SNMP trap destination IPv6 address Syntax Security Switch SNMP T...

Page 398: ...on failure disable Disable SNMP trap authentication failure default Show SNMP trap authentication failure mode Default Setting enable Security Switch SNMP Trap Link up Description Set or show the port...

Page 399: ...isable Parameters enable Enable SNMP trap inform disable Disable SNMP trap inform default Show SNMP inform mode Default Setting enable Security Switch SNMP Trap Inform Timeout Description Set or show...

Page 400: ...imes 0 255 default Show SNMP trap inform retry times Default Setting 5 Security Switch SNMP Trap Probe Security Engine ID Description Show SNMP trap security engine ID probe mode Syntax Security Switc...

Page 401: ...P trap security name Syntax Security Switch SNMP Trap Security Name security_name Parameters security_name A string representing the security name for a principal default Show SNMP trap security name...

Page 402: ...string ip_addr IP address a b c d default Show IP address ip_mask IPv4 subnet mask a b c d default Show IP mask Security Switch SNMP Community Delete Description Delete SNMPv3 community entry Syntax S...

Page 403: ...cation protocol The allowed length is 8 32 and the allowed content is ASCII characters from 33 to 126 sha An optional flag to indicate that this user using SHA authentication protocol The allowed leng...

Page 404: ...the user name that this entry should belong to The name of None is reserved The allowed string length is 1 32 and the allowed content is ASCII characters from 33 to 126 auth_password A string identify...

Page 405: ...t this entry should belong to The allowed string length is 1 32 and the allowed content is ASCII characters from 33 to 126 group_name A string identifying the group name that this entry should belong...

Page 406: ...content is ASCII characters from 33 to 126 included An optional flag to indicate that this view subtree should included excluded An optional flag to indicate that this view subtree should excluded oid...

Page 407: ...ty_model any Accepted any security model v1 v2c usm v1 Reserved for SNMPv1 v2c Reserved for SNMPv2c usm User based Security Model USM security_level noAuthNoPriv None authentication and none privacy A...

Page 408: ...try The entry index key is stats_id Syntax Security Switch RMON Statistics Add stats_id data_source Parameters stats_id Statistics ID 1 65535 data_source The OID that indicates that the ifIndex in ifE...

Page 409: ...Add history_id data_source interval buckets Parameters history_id History ID 1 65535 data_source The OID that indicates that the ifIndex in ifEntry The value should be like 1 3 6 1 2 1 2 2 1 1 xxx int...

Page 410: ...47 default 30 alarm_vairable The MIB OID that need to be referenced 1 3 6 1 2 1 2 2 1 10 xxx ifInOctets 1 3 6 1 2 1 2 2 1 11 xxx ifInUcastPkts 1 3 6 1 2 1 2 2 1 12 xxx ifInNUcastPkts 1 3 6 1 2 1 2 2 1...

Page 411: ...ng Trigger alarm when the first value is less than the falling threshold both Trigger alarm when the first value is larger than the rising threshold or less than the falling threshold default Security...

Page 412: ...e difference between samples default community Specify the community when trap is sent the string lengh is 0 127 default public description The string for describing this event the string lengh is 0 1...

Page 413: ...ult All ports Security Network Psec Port Description Show MAC Addresses learned by Port Security Syntax Security Network Psec Port port_list Parameters port_list Port list or all default All ports Sec...

Page 414: ...security disable Globally disable port security default Show current global enabledness of port security limit control Default Setting disable Security Network Limit Aging Description Set or show agi...

Page 415: ...a MAC address 10 10000000 seconds default Show current age time Default Setting 3600 Security Network Limit Port Description Set or show per port enabledness Syntax Security Network Limit Port port_li...

Page 416: ...rrent limit Default Setting 4 Security Network Limit Action Description Set or show the action involved with exceeding the limit Syntax Security Network Limit Action port_list none trap shut trap_shut...

Page 417: ...ity Network NAS Configuration Description Show 802 1X configuration Syntax Security Network NAS Configuration port_list Parameters port_list Port list or all default All ports Security Network NAS Mod...

Page 418: ...llowed unauthorized Port access is not allowed single Single Host 802 1X Authentication multi Multiple Host 802 1X Authentication macbased Switch authenticates on behalf of the client default Show 802...

Page 419: ...d between reauthentication attempts 1 3600 seconds default Show current reauthentication period Default Setting 3600 Security Network NAS EapolTimeout Description Set or show the time between EAPOL re...

Page 420: ...Parameters age_time Time between checks 10 1000000 seconds default Show current age time Default Setting 300 Security Network NAS Holdtime Description Time in seconds before a MAC address that failed...

Page 421: ...ther globally or on one or more ports default Show current RADIUS assigned QoS state Default Setting disable Security Network NAS RADIUS_VLAN Description Set or show either global state use the global...

Page 422: ...obally or on one or more ports default Show current Guest VLAN state vid Guest VLAN ID used when entering the Guest VLAN Use the global keyword to change it default Show current Guest VLAN ID reauth_m...

Page 423: ...tion Security Network NAS Statistics Description Show or clear 802 1X statistics Syntax Security Network NAS Statistics port_list clear eapol radius Parameters port_list Port list or all default All p...

Page 424: ...ermit forwarding default deny Deny forwarding rate_limiter Rate limiter number 1 15 or disable port_copy Port number for copy of frames or disable logging System logging of frames log log_disable shut...

Page 425: ...is not specified the ACE will be placed last in the list If the Switch keyword is used the rule applies to all ports If the Port keyword is used the rule applies to the specified port only If the Pol...

Page 426: ...b c d n or any dip Destination IP address a b c d n or any arp_opcode ARP operation code any arp rarp other arp_flags ARP flags request smac tmac len ip ether 0 1 any ip IP keyword protocol IP protoc...

Page 427: ...Network ACL Delete ace_id Parameters ace_id ACE ID 1 512 Security Network ACL Lookup Description Show ACE default All ACEs Syntax Security Network ACL Lookup ace_id Parameters ace_id ACE ID 1 512 Sec...

Page 428: ...ct Shows the status by Loop Protect dhcp Show DHCP status upnp Show UPnP status arp_inspection Show ARP Inspection status ipmc Show IPMC status ip_source_guard Show IP Source Guard status conflicts Sh...

Page 429: ...When enable DHCP relay mode operation the agent forward and to transfer DHCP messages between the clients and the server when they are not on the same subnet domain And the DHCP broadcast message won...

Page 430: ...nformation option mode default Show DHCP relay agent information option mode Default Setting disable Security Network DHCP Relay Information Policy Description Set or show the DHCP relay mode When ena...

Page 431: ...uration Syntax Security Network DHCP Snooping Configuration Security Network DHCP Snooping Mode Description Set or show the DHCP snooping mode Syntax Security Network DHCP Snooping Mode enable disable...

Page 432: ...rusted Configures the port as trusted sources of the DHCP message untrusted Configures the port as untrusted sources of the DHCP message default Show flow DHCP snooping port mode Default Setting trust...

Page 433: ...mode Syntax Security Network IP Source Guard Mode enable disable Parameters enable Enable IP Source Guard disable Disable IP Source Guard Default Setting disable Security Network IP Source Guard Port...

Page 434: ...P source guard static entry Syntax Security Network IP Source Guard Entry port_list add delete vid allowed_ip allowed_mac Parameters port_list Port list or all default All ports add Add new port IP so...

Page 435: ...Translation Security Network ARP Inspection Configuration Description Show ARP inspection configuration Syntax Security Network ARP Inspection Configuration Security Network ARP Inspection Mode Descr...

Page 436: ...e Security Network ARP Inspection Entry Description Add or delete ARP inspection static entry Syntax Security Network ARP Inspection Entry port_list add delete vid allowed_mac allowed_ip Parameters po...

Page 437: ...nspection Translation Description Translate ARP inspection dynamic entries into static entries Syntax Security Network ARP Inspection Translation Security AAA Configuration Description Show Auth confi...

Page 438: ...curity AAA RADIUS server_index enable disable ip_addr_string secret server_port Parameters The server index 1 5 default Show RADIUS authentication server configuration enable Enable RADIUS authenticat...

Page 439: ...t Quotes in the secret are not allowed server_port Server UDP port Use 0 to use the default RADIUS port 1813 Security AAA TACACS Description Set or show TACACS authentication server setup Syntax Secur...

Page 440: ...s Manual of WGSW 20160HP 440 Security AAA Statistics Description Show RADIUS statistics Syntax Security AAA Statistics server_index Parameters The server index 1 5 default Show statistics for all ser...

Page 441: ...l Command STP Configuration Description Show STP Bridge configuration Syntax STP Configuration STP Version Description Set or show the STP Bridge protocol version Syntax STP Version stp_version Parame...

Page 442: ...ansmit Hold Count parameter Syntax STP Txhold holdcount Parameters holdcount STP Transmit Hold Count 1 10 Default Setting 6 STP MaxHops Description Set or show the MSTP Bridge Max Hop Count parameter...

Page 443: ...STP MaxAge max_age Parameters max_age STP maximum age time 6 40 and max_age forward_delay 1 2 Default Setting 20 STP FwdDelay Description Set or show the bridge instance forward delay Syntax STP FwdDe...

Page 444: ...ion name A text string up to 32 characters long Use quotes to embed spaces in name integer Integer value Default Setting Configuration name MAC address Configuration rev 0 STP BPDU Filter Description...

Page 445: ...covery Description Set or show edge port error recovery timeout Syntax STP recovery timeout Parameters timeout Time before error disabled ports are reenabled 30 86400 seconds 0 disables default Show r...

Page 446: ...2288 53248 57344 61440 Default 32768 STP MSTI Map Description Show or clear MSTP MSTI VLAN mapping configuration Syntax STP Msti Map msti clear Parameters msti STP bridge instance no 0 7 CIST 0 MSTI1...

Page 447: ...yntax STP Port Mode stp_port_list enable disable Parameters port_list Port list or all Port zero means aggregations Enable Enable MSTP protocol Disable Disable MSTP protocol Default disable STP Port E...

Page 448: ...all default All ports Enable Enable MSTP autoEdge Disable Disable MSTP autoEdge Default enable STP Port P2P Description Set or show the STP point2point port parameter Syntax STP Port P2P stp_port_list...

Page 449: ...st or all default All ports enable Enable MSTP restricted role disable Disable MSTP restricted role Default disable STP Port RestrictedTcn Description Set or show the MSTP restrictedTcn port parameter...

Page 450: ...U Guard disable Disable port BPDU Guard Default disable STP Port Statistic Description Show STP port statistics Syntax STP Port Statistics stp_port_list clear Parameters port_list Port list or all def...

Page 451: ...h cost Syntax STP Msti Port Cost msti stp_port_list path_cost Parameters msti STP bridge instance no 0 7 CIST 0 MSTI1 1 port_list Port list or all Port zero means aggregations path_cost STP port path...

Page 452: ...on Syntax Aggr Configuration Aggregation Add Description Add or modify link aggregation Syntax Aggr Add port_list aggr_id Parameters port_list Port list or all default All ports aggr_id Aggregation ID...

Page 453: ...link aggregation traffic distribution mode Syntax Aggr Mode smac dmac ip port enable disable Parameters smac Source MAC address dmac Destination MAC address ip Source and destination IP address port S...

Page 454: ...x LACP Configuration port_list Parameters port_list Port list or all default All ports LACP Mode Description Set or show LACP mode Syntax LACP Mode port_list enable disable Parameters port_list Port l...

Page 455: ...t key Parameters port_list Port list or all default All ports key LACP key 1 65535 or auto Default Setting auto LACP Priority Description Set or show the LACP prio Syntax LACP Prio port_list prio Para...

Page 456: ...768 LACP Role Description Set or show the LACP role Syntax LACP Role port_list active passive Parameters port_list Port list or all default All ports active Initiate LACP negotiation passive Listen fo...

Page 457: ...t list or all default All ports clear Clear LACP statistics LACP Timeout Description Set or show the LACP timeout Syntax LACP Timeout port_list fast slow Parameters port_list Port list or all default...

Page 458: ...t Port list or all default All ports LLDP Mode Description Set or show LLDP mode Syntax LLDP Mode port_list enable disable rx tx Parameters port_list Port list or all default All ports enable Enable L...

Page 459: ...iption of the system sys_capa System capabilities mgmt_addr Master s IP address default Show optional TLV s configuration enable Enables TLV disable Disable TLV default Show optional TLV s configurati...

Page 460: ...LLDP hold value 2 10 Default Setting 3 LLDP Delay Description Set or show LLDP Tx delay Syntax LLDP Delay delay Parameters delay LLDP transmission delay 1 8192 Default Setting 2 LLDP Reinit Descriptio...

Page 461: ...rt_list Parameters port_list Port list or all default All ports LLDP CDP Aware Description Set or show if discovery information from received CDP Cisco Discovery Protocol frames is added to the LLDP n...

Page 462: ...de building apartment floor room_number place_type postal_com_name p_o_ box additional_code civic_value Parameters country Country state National subdivisions state caton region province prefecture co...

Page 463: ...code Addtional code default Show Civic Address Location configuration civic_value lldpmed The value for the Civic Address Location entry LLDPMED ECS Description Set or show LLDP MED Emergency Call Ser...

Page 464: ...ces such as PCs or laptops This class of endpoints frequently does not support multiple VLANs if at all and are typically configured to use an untagged VLAN or a single tagged data specific VLAN video...

Page 465: ...s latitude Latitude 0 to 90 degrees with max 4 digits Positive numbers are north of the equator and negative numbers are south of the equator longitude Longitude 0 to 180 degrees with max 4 digits Pos...

Page 466: ...83_NAVD88 nad83_mllw NAD83_MLLW LLDPMED Fast Description Set or show LLDP MED Fast Start Repeat Count Syntax LLDPMED Fast count Parameters count The number of times the fast start LLDPDU are being sen...

Page 467: ...ist enable disable af at Parameters port_list Port list or all default All ports enable Enables PoE disable Disable PoE default Show PoE s mode Default Setting enable AF AT Mode Description Allows use...

Page 468: ...efault Show PoE priority Default Setting high PoE Mamagement Mode Description Show Set PoE management mode Syntax PoE Mgmt_mode mgt_class mgt_alloc mgt_consumption mgt_priority PoE Allocated Power Des...

Page 469: ...0HP 469 PoE Power Supply Description Set or show the value of the power supply Syntax PoE Power_Supply supply_power Parameters supply_power PoE power for a power supply PoE Status Description Show PoE...

Page 470: ...or all default All ports QoS Port Classification Class Description Set or show the default QoS class If the QoS class has been dynamically changed then the actual QoS class is shown in parentheses af...

Page 471: ...Port Classification PCP Description Set or show the default Priority Code Point Syntax QoS Port Classification PCP port_list pcp Parameters port_list Port list or all default All ports pcp Priority Co...

Page 472: ...mode Default Setting disable QoS Port Classification Map Description Set or show the port classification map This map is used when port classification tag is enabled and the purpose is to translate t...

Page 473: ...l ports enable Enable DSCP based classification disable Disable DSCP based classification default Show DSCP based classification mode Default Setting disable QoS Port Policer Mode Description Set or s...

Page 474: ...r all default All ports rate Rate in kbps or fps 100 13200000 Default Setting 500 QoS Port Policer Unit Description Set or show the port policer unit Syntax QoS Port Policer Unit port_list kbps fps Pa...

Page 475: ...able Parameters port_list Port list or all default All ports enable Enable port policer flow control disable Disable port policer flow control default Show port policer flow control mode Default Setti...

Page 476: ...queue list or all default All weighted queues 0 5 weight Scheduler weight 1 100 QoS Port Shaper Mode Description Set or show the port queue shaper mode Syntax QoS Port Shaper Mode port_list enable dis...

Page 477: ...7 bit_rate Rate in kilo bits per second 100 13200000 Default Setting 500kbps QoS Port QueueShaper Mode Description Set or show the port QueueShaper mode Syntax QoS Port QueueShaper Mode port_list que...

Page 478: ...rate Rate in kbps or fps 100 13200000 Default Setting 500 QoS Port QueueShaper Excess Description Set or show the port queue excess bandwidth mode Syntax QoS Port QueueShaper Excess port_list queue_li...

Page 479: ...fied PCP DEI values default Use default PCP DEI values mapped Use mapped versions of QoS class and DP level default Show port tag remarking mode Default Setting classified QoS Port TagRemarking PCP De...

Page 480: ...emarking Map Description Set or show the port tag remarking map This map is used when port tag remarking mode is set to mapped and the purpose is to translate the classified QoS class 0 7 and DP level...

Page 481: ...e Disable DSCP ingress translation default Show DSCP ingress translation mode Default Setting disable QoS Port DSCP Classification Description Set or show DSCP classification based on QoS class This e...

Page 482: ...r remap Rewrite DSCP in egress frame with remapped DSCP default Show port DSCP egress remarking mode Default Setting disable QoS DSCP Map Description Set or show DSCP mapping table This table is used...

Page 483: ...s_dscp Translated DSCP 0 63 BE CS1 CS7 EF or AF11 AF43 QoS DSCP Trust Description Set or show trusted DSCP value which is used for QoS classification The DSCP value to be checked for trust is either t...

Page 484: ...sable DSCP ingress classification default Show DSCP classification mode Default Setting disable QoS DSCP Classification MAP Description Set or show DSCP ingress classification table This table is used...

Page 485: ...0 63 list or all dscp Egress remapped DSCP 0 63 BE CS1 CS7 EF or AF11 AF43 QoS Port Storm Unicast Description Set or show the port storm rate limiter for unicast frames Syntax QoS Storm Unicast enabl...

Page 486: ...Rate in kbps or fps 100 13200000 kbps Unit is kilo bits per second fps Unit is frames per second Default Setting disable QoS Port Storm Broadcast Description Set or show the broadcast storm rate limi...

Page 487: ...ment sport dport ipv6 protocol sip_v6 dscp sport dport class dp classified_dscp Parameters qce_id QCE ID 1 256 default Next available ID qce_id_next Next QCE ID next_id 1 256 or last port_list Port Li...

Page 488: ...y 32 LS bits class QoS Class class 0 7 default basic classification dp DP Level dp 0 3 default basic classification classified_dscp DSCP dscp 0 63 BE CS1 CS7 EF or AF11 AF43 QoS QCL Delete Description...

Page 489: ...s the combined status static Shows the static user configured status voice_vlan Shows the status by Voice VLAN conflicts Shows all conflict status default Shows the combined status QoS QCL Refresh Des...

Page 490: ...rror configuration Syntax Mirror Configuration port_list Parameters port_list Port list or all default All ports Mirror Port Description Set or show the mirror port Syntax Mirror Port port disable Par...

Page 491: ...yntax Mirror Mode port_cpu_list both disable rx tx Parameters port_cpu_list Port list or CPU or all default All ports and CPU both Enable Rx and Tx mirroring disable Disable Mirroring rx Enable Rx mir...

Page 492: ...ame Parameters ip_server TFTP server IP address a b c d file_name Configuration file name Configuration Load Description Load configuration from TFTP server Syntax Config Load ip_server file_name chec...

Page 493: ...e_name Firmware file name Firmware IPv6 Load Description Load new firmware from IPv6 TFTP server Syntax Firmware IPv6 Load ipv6_server file_name Parameters ipv6_server TFTP server IPv6 address file_na...

Page 494: ...scription Set or show the UPnP mode Syntax UPnP Mode enable disable Parameters enable Enable UPnP disable Disable UPnP default Show UPnP mode Default Setting disable UPnP TTL Description Set or show t...

Page 495: ...60HP 495 UPnP Advertising Duration Description Set or show UPnP Advertising Duration Syntax UPnP Advertising Duration duration Parameters duration duration range 100 86400 default Show UPnP duration r...

Page 496: ...isable Parameters enable Enable MVR mode disable Disable MVR mode default Show MVR mode Default Setting disable MVR VLAN Setup Description Set or show per MVR VLAN configuration Syntax MVR VLAN Setup...

Page 497: ...c Dynamic MVR mode compatible Compatible MVR mode default Show MVR VLAN mode MVR VLAN Port Description Set or show per MVR VLAN port role Syntax MVR VLAN Port vid mvr_name port_list source receiver in...

Page 498: ...fault Show MVR Interface Last Listener Query Interval MVR VLAN Channel Description Set or show per MVR VLAN channel Syntax MVR VLAN Channel vid mvr_name add del upd channel channel_bound Name grp_name...

Page 499: ...d Tagged IGMP MLD frames will be sent untagged Untagged IGMP MLD frames will be sent MVR Immediate Leave Description Set or show MVR immediate leave per port Syntax MVR Immediate Leave port_list enabl...

Page 500: ...on Show MVR group addresses Syntax MVR Groups vid Parameters vid VLAN ID 1 4095 MVR SFM Description Show SFM including SSM related information for MVR Syntax MVR SFM vid port_list Parameters vid VLAN...

Page 501: ...iguration Voice VLAN Mode Description Set or show the Voice VLAN mode We must disable MSTP feature before we enable Voice VLAN It can avoid the conflict of ingress filter Syntax Voice VLAN Mode enable...

Page 502: ...Voice VLAN Agetime Description Set or show Voice VLAN age time Syntax Voice VLAN Agetime age_time Parameters age_time MAC address age time 10 10000000 default Show age time Default Setting 86400sec V...

Page 503: ...ption Entry description Use clear or to clear the string No blank or space characters are permitted as part of a contact only in CLI Voice VLAN OUI Delete Description Delete Voice VLAN OUI entry Modif...

Page 504: ...abled we must disable MSTP feature before we enable Voice VLAN It can avoid the conflict of ingress filter Syntax Voice VLAN Port Mode port_list disable auto force Parameters port_list Port list or al...

Page 505: ...security mode Default Setting disable Voice VLAN Discovery Protocol Description Set or show the Voice VLAN port discovery protocol mode It only work under auto detect mode is enabled We should enable...

Page 506: ...Description Set or show the Loop Protection mode Syntax Loop Protect Mode enable disable Parameters enable Enable Loop Protection disable Disable Loop Protection Default Setting enable Loop Protect T...

Page 507: ...t Setting 10 Loop Protect Port Configuration Description Show Loop Protection port configuration Syntax Loop Protect Port Configuration port_list Parameters port_list Port list or all default All port...

Page 508: ...nd Log event log Only Log the event Loop Protect Port Transmit Description Set or show the Loop Protection port transmit Syntax Loop Protect Port Transmit port_list enable disable Parameters port_list...

Page 509: ...meters mld igmp mld IPMC for IPv6 MLD igmp IPMC for IPv4 IGMP IPMC Mode Description Set or show the IPMC snooping mode Syntax IPMC Mode mld igmp enable disable Parameters mld igmp mld IPMC for IPv6 ML...

Page 510: ...le Enable IPMC flooding disable Disable IPMC flooding default Show global IPMC flooding mode Default Setting disable IPMC Leave Proxy Description Set or show the mode of IPMC Leave Proxy Syntax IPMC L...

Page 511: ...PMC Proxy disable Disable IPMC Proxy default Show global IPMC Proxy mode Default Setting disable IPMC SSM Description Set or show the IPMC SSM Range Syntax IPMC SSM mld igmp Range prefix mask_len Para...

Page 512: ...C VLAN Add mld igmp vid Parameters mld igmp mld IPMC for IPv6 MLD igmp IPMC for IPv4 IGMP vid VLAN ID 1 4095 IPMC VLAN Delete Description Delete the IPMC snooping VLAN interface Syntax IPMC VLAN Delet...

Page 513: ...r any default Show all VLANs enable Enable MLD snooping disable Disable MLD snooping Default Setting disable IPMC Querier Description Set or show the IPMC snooping querier mode for VLAN Syntax IPMC Qu...

Page 514: ...ced Compatibility of IGMPv1 or MLDv1 v2 Forced Compatibility of IGMPv2 or MLDv2 v3 Forced Compatibility of IGMPv3 default Show IPMC Interface Compatibility IPMC Fastleave Description Set or show the I...

Page 515: ...learn limit default Show IPMC Port Throttling Default Setting Unlimited IPMC Filtering Description Set or show the IPMC port group filtering list Syntax IPMC Filtering mld igmp port_list add del group...

Page 516: ...MLD igmp IPMC for IPv4 IGMP port_list Port list or all default All ports auto Enable IGMP router mode auto fix Enable IGMP router mode fix none Enable IGMP router mode none IPMC Status Description Sh...

Page 517: ...escription Show IPMC Versions Syntax IPMC Version mld igmp vid Parameters mld igmp mld IPMC for IPv6 MLD igmp IPMC for IPv4 IGMP vid VLAN ID 1 4095 or any default Show all VLANs IPMC SFM Description S...

Page 518: ...all VLANs ipmc_param_rv 1 Default Value 2 1 255 Robustness Variable default Show IPMC Interface Robustness Variable IPMC Parameter QI Description Set or show the IPMC Query Interval Syntax IPMC Param...

Page 519: ...31744 Query Response Interval in tenths of seconds default Show IPMC Interface Query Response Interval IPMC Parameter LLQI Description Set or show the IPMC Last Listener Query Interval Syntax IPMC Pa...

Page 520: ...Syntax IPMC Parameter URI mld igmp vid ipmc_param_uri Parameters mld igmp mld IPMC for IPv6 MLD igmp IPMC for IPv4 IGMP vid VLAN ID 1 4095 or any default Show all VLANs ipmc_param_uri 1 Default Value...

Page 521: ...L MAC based VLAN Add Description Add or modify VCL MAC based VLAN entry Syntax VCL Macvlan Add mac_addr vid port_list Parameters mac_addr MAC address xx xx xx xx xx xx vid VLAN ID 1 4095 port_list Por...

Page 522: ...lan Protocol Add Eth2 ether_type arp ip ipx at group_id Parameters ether_type arp ip ipx at Ether Type 0x0600 0xFFFF group_id Protocol group ID VCL Protocol based VLAN Add SNAP Description Add VCL pro...

Page 523: ...e VCL protocol based VLAN Ethernet II protocol to group mapping Syntax VCL ProtoVlan Protocol Delete Eth2 ether_type arp ip ipx at Parameters ether_type arp ip ipx at Ether Type 0x0600 0xFFFF VCL Prot...

Page 524: ...ased VLAN Add Description Add VCL protocol based VLAN group to VLAN mapping Syntax VCL ProtoVlan Vlan Add port_list group_id vid Parameters port_list Port list or all default All ports group_id Protoc...

Page 525: ...VCE ID for each VCL entry VCL IP based VLAN Add Description Add or modify VCL IP Subnet based VLAN entry Syntax VCL IPVlan Add vce_id ip_addr_mask vid port_list Parameters vce_id Unique VCE ID for eac...

Page 526: ...tion SMTP Mode Description Enable or disable SMTP configure Syntax SMTP Mode enable disable Parameters enable Enable SMTP mode disable Disable SMTP mode default Show SMTP mode SMTP Server Description...

Page 527: ...P authentication default Show SMTP authentication SMTP Auth_user Description Set or show SMTP authentication user name configure Syntax SMTP Auth_user auth_user_text Parameters auth_user_text SMTP aut...

Page 528: ...w SMTP E mail subject configure Syntax SMTP Mailsubject mailsubject_text Parameters mailsubject_text SMTP E mail subject SMTP Mail to 1 Description Set or show SMTP E mail 1 to configure Syntax SMTP M...

Page 529: ...packet will be filtered Thereby increasing the network throughput and availability 7 4 Store and Forward Store and Forward is one type of packet forwarding techniques A Store and Forward Managed Swit...

Page 530: ...ossible bandwidth when a connection is established with another network device usually at Power On or Reset This is done by detect the modes and speeds at the second of both device is connected and ca...

Page 531: ...ource Equipment PSE and the Powered Device PD The PSE is either an End Span or a Mid Span while the PD is a PoE enabled terminal such as IP Phones Wireless LAN etc Power can be delivered over data pai...

Page 532: ...rnet pairs are transformer coupled at each end it is possible to apply DC power to the center tap of the isolation transformer without upsetting the data transfer In this mode of operation the pair on...

Page 533: ...of the port Why the Switch doesn t connect to the network Solution 1 Check the LNK ACT LED on the switch 2 Try another port on the Switch 3 Make sure the cable is installed properly 4 Make sure the ca...

Page 534: ...To reset the IP address to the default IP Address 192 168 0 100 or reset the password to default value Press the hardware reset button at the front panel about 10 seconds After the device is rebooted...

Page 535: ...ge or a hub a straight or crossover cable is necessary Each port of the Switch supports auto MDI MDI X detection That means you can directly connect the Switch to any Ethernet devices without making a...

Page 536: ...White Green 4 Blue 5 White Blue 6 Green 7 White Brown 8 Brown 1 White Orange 2 Orange 3 White Green 4 Blue 5 White Blue 6 Green 7 White Brown 8 Brown SIDE 2 Crossover Cable SIDE 1 SIDE2 SIDE 1 1 2 3...

Page 537: ...the manual ACL configuration ACL Access Control List The web Page shows the ACEs in a prioritized way highest top to lowest bottom Default the table is empty An ingress frame will only get a hit on o...

Page 538: ...nal in the two ends of a protection group as defined in G 8031 Aggregation Using multiple ports in parallel to increase the link speed beyond the limits of a port and to increase the redundancy for hi...

Page 539: ...ata converts it to an unintelligible form called cipher Decrypting cipher converts the data back to its original form called plaintext The algorithm described in this standard specifies both encipheri...

Page 540: ...resent the VLAN ID The parameter of module_id is the third byte for the module ID in standalone switch it always equal 0 in stackable switch it means switch ID The parameter of port_no is the fourth b...

Page 541: ...runed from the multicast tree for the multicast group specified in the original leave message Fast leave processing ensures optimal bandwidth management for all hosts on a switched network even when m...

Page 542: ...ies or simple exchanges such as time stamp or echo transactions For example the PING command uses ICMP to test an Internet connection IEEE 802 1X IEEE 802 1X is an IEEE standard for port based Network...

Page 543: ...rotocol address and this IP address is used to identify the device uniquely among all other devices connected to the extended network The current version of the Internet protocol is IPv4 which has 32...

Page 544: ...nectivity in the network Can be used as a switch criteria by EPS M MAC Table Switching of frames is based upon the DMAC address contained in the frame The switch builds up a table that maps MAC addres...

Page 545: ...k Access Server The NAS is meant to act as a gateway to guard access to a protected source A client connects to the NAS and the NAS connects to another resource asking whether the client s supplied cr...

Page 546: ...TLVs is disabled the corresponding information is not included in the LLDP frame OUI OUI is the organizationally unique identifier An OUI address is a globally unique identifier assigned to a vendor...

Page 547: ...d service An alternative protocol is Internet Message Access Protocol IMAP IMAP provides the user with more capabilities for retaining e mail on the server and for organizing it in folders on the serv...

Page 548: ...ethod to guarantee a bandwidth relationship between individual applications or protocols A communications network transports a multitude of applications and data including high quality video and delay...

Page 549: ...rs for Microsoft Windows IBM OS 2 and other SMB client machines Samba uses the Server Message Block SMB protocol and Common Internet File System CIFS which is the underlying protocol used in Microsoft...

Page 550: ...etting up each switch to perform shortest path forwarding within the stack SSID Service Set Identifier is a name used to identify the particular 802 11 wireless LANs to which a user wants to attach A...

Page 551: ...ge or messages to be exchanged by the application programs at each end have been exchanged TCP is responsible for ensuring that a message is divided into the packets that IP manages and for reassembli...

Page 552: ...ke TCP UDP does not provide the service of dividing a message into packet datagrams and UDP doesn t provide reassembling and sequencing of the packets This means that the application program that uses...

Page 553: ...is a 12 bit field specifying the VLAN to which the frame belongs Voice VLAN Voice VLAN is VLAN configured specially for voice traffic By adding the ports with voice devices attached to voice VLAN we...

Page 554: ...nterprise is meant for use with an IEEE 802 1X authentication server which distributes different keys to each user Personal WPA utilizes less scalable pre shared key PSK mode where every allowed compu...

Page 555: ...000 3 2 2006 A1 2009 A2 2009 EN 61000 3 3 2008 EN 55024 2010 IEC 61000 4 2 2008 IEC 61000 4 3 2006 A1 2007 A2 2010 IEC 61000 4 4 2004 A1 2010 IEC 61000 4 5 2005 IEC 61000 4 6 2008 IEC 61000 4 8 2009 I...

Reviews: