manualshive.com logo in svg

Siemens SCALANCE X-300, Configuration Manual

The Siemens SCALANCE X-300 boasts exceptional performance and reliability in industrial networking. To ensure seamless setup and operation, we offer Compact Operating Instructions, available for free download on our website. Simply visit manualshive.com to access the comprehensive manual and unlock the many possibilities of this exceptional product.

Share
Download
background image

Configuration using Web Based Management and Command Line Interface 

 

4.5 The Switch menu 

 

SCALANCE X-300 / X-400 

164

 

Configuration Manual, 10/2014, C79000-G8976-C187-22 

4.5.6.2

 

Access Control List Learning 

Start Learning / Stop Learning 

 

Figure 4-62  Access Control List Learning 

With the aid of the automatic learning function, all devices connected to the IE switch can be 

entered automatically in the Access Control List (see section "Current Unicast-Filter (Access 

Control List) menu item)". As long as this function is enabled, all learned unicast addresses 

are created immediately as static unicast entries. Learning stops only after selecting on Stop 

Learning. With this method, learning can take a few minutes or several hours in larger 

networks before all nodes have really been learned. Only nodes that send packets during the 

learning phase can be found. 
By enabling the Access Control function, the only packets accepted on the relevant ports are 

those from nodes known on completion of the learning phase (static unicast entries). 

 

 

Note 
If the Access Control function was already active on individual ports prior to the automatic 

learning phase, no addresses will be learned on these ports. This makes it possible to 

restrict learning to certain ports. If you do not want a port to learn addresses, simply enable 

access control on it before enabling learning. 

 

Clear all static unicast addresses 

In large networks with lots of nodes, automatic learning may lead to a large number of 

unwanted static entries. To avoid having to delete these individually, this button can be used 

to delete all static entries. This function is disabled during automatic learning. 

 

 

Note 
Depending on the number of entries involved, deleting may take some time. 

 

Summary of Contents for SCALANCE X-300

Page 1: ...______ ___________________ SIMATIC NET Industrial Ethernet Switches SCALANCE X 300 X 400 Configuration Manual 10 2014 C79000 G8976 C187 22 Preface Introduction 1 Network management for industrial networks 2 Assignment of an IP address 3 Configuration using Web Based Management and Command Line Interface 4 Configuration and diagnostics over SNMP 5 PROFINET IO functionality 6 C PLUG 7 Firmware updat...

Page 2: ...nly by personnel qualified for the specific task in accordance with the relevant documentation in particular its warning notices and safety instructions Qualified personnel are those who based on their training and experience are capable of identifying risks and avoiding potential hazards when working with these products systems Proper use of Siemens products Note the following WARNING Siemens pro...

Page 3: ...300 product line there are several product groups see also the product overview in the Operating Instructions Industrial Ethernet Switches SCALANCE X 300 Names of the devices in this configuration manual The descriptions in this configuration manual always apply to the devices of the SCALANCE X 300 and SCALANCE X 400 product lines listed under Validity of the manual in this configuration manual un...

Page 4: ...oncept Third party products that may be in use should also be considered For more information about industrial security visit http www siemens com industrialsecurity To stay informed about product updates as they occur sign up for a product specific newsletter For more information visit http support automation siemens com Trademarks The following and possibly other names not identified by the regi...

Page 5: ...h the BOOTP client 29 3 5 Assigning addresses with the DHCP client 30 3 6 Address assignment with the Primary Setup Tool 31 4 Configuration using Web Based Management and Command Line Interface 33 4 1 General information on Web Based Management and Command Line Interface 34 4 1 1 Introduction 34 4 1 2 The LED simulation of Web Based Management WBM 36 4 1 3 Working with Web Based Management 38 4 1 ...

Page 6: ...114 4 4 9 Agent DHCP Configuration 115 4 4 10 Time Config 116 4 4 10 1 Agent Time Configuration 116 4 4 10 2 SNTP Client Configuration 119 4 4 10 3 NTP Client Configuration 121 4 4 10 4 Daylight Saving Time 123 4 4 11 Agent PNIO Configuration 126 4 4 12 Management Access Control List 127 4 5 The Switch menu 132 4 5 1 Switch Configuration 133 4 5 2 Port status 138 4 5 3 Port Mirroring 144 4 5 4 Lin...

Page 7: ...4 5 15 3 DSCP to Queue Mapping 223 4 5 16 LLDP Configuration 224 4 5 17 Fiber Monitoring Protocol 226 4 5 18 DCP Configuration 230 4 5 19 DHCP Relay Agent 231 4 5 19 1 DHCP Relay Agent Configuration 231 4 5 19 2 DHCP Relay Agent Port Configuration 233 4 5 20 Precision Time Protocol PTP complying with IEEE 1588 236 4 5 21 Configuration of the Precision Time Protocol with the WBM 242 4 5 22 Configur...

Page 8: ... 5 MRP configuration 351 7 C PLUG 355 8 Firmware update 357 8 1 Firmware update with functional firmware 357 8 1 1 Firmware update over HTTP HTTPS 357 8 1 2 Firmware update over TFTP 357 8 1 3 Firmware updates over FTP 357 8 2 Firmware update using the boot software with an IE Switch X 400 XR 300 358 8 2 1 Firmware update over the serial port 359 8 2 2 Firmware update over an Ethernet port and FTP...

Page 9: ... an IE switch Chapter 2 You would like to know how an IP address is structured and which options you have for assigning an IP address to an IE switch Chapter 3 You would like to configure an IE switch and require information on the relevant CLI commands or want to know which pages of Web Based Management you need to edit Chapter 4 You want to know how to manage an IE switch with SNMP Chapter 5 You...

Page 10: ... and general information can be found in the Operating Instructions BA Contents Product group Type of document Document identification num ber Software de scription All devices of the X 300 and X 400 prod uct lines PH X 300 X 400 C79000 G89000 C187 Hardware de scription All devices of the X 300 product line BA X 300 A5E01113043 X 300 BAK X 300 A5E00982643 X 300M BAK X 300M A5E02630801 XR 300M BAK ...

Page 11: ...ANCE X414 3E there is also a Fast Ethernet interface available out band port on the CPU module RS 232 interface The IE switches X 400 XR 300 have an RS 232 interface You can connect a PC or PG to this port with a null modem cable and a terminal program for example HyperTerminal in Windows See also Appendix A You use this port for the manual assignment of an IP address for the out band port SCALANC...

Page 12: ...an IE switch Such a loop can lead to network overload and network failures Note If an IE switch is connected to a partner device that does not operate in autonegotiation mode the port must be set permanently to the parameters of the partner If both ends of the connection are not set manually the duplex mode will not be detected The half duplex mode is used and results in poorer performance and col...

Page 13: ... Store and forward also allows operation in a network on different links with different transmission rates Support of virtual networks VLAN port based There is no physical difference between a virtual network VLAN and a normal LAN The particular feature of a VLAN is that devices can be assigned to a device group during configuration Several of these device groups use a network infrastructure that ...

Page 14: ...e reduced to a few seconds IE switches support both Rapid Spanning Tree and Spanning Tree Rapid Spanning Tree is defined in the IEEE 802 1D 2004 standard Multiple Spanning Tree The Multiple Spanning Tree Protocol MSTP is a further development of the Rapid Spanning Tree Protocol Among other things MSTP provides the option of operating separate RSTP instances within different VLANs or VLAN groups Th...

Page 15: ...ver the network Mirroring Mirroring allows the data traffic of a port to be mirrored at another port The data traffic can then be analyzed at this monitor port without any effects on operation E mail function An IE switch can be configured so that it sends an E mail when certain events occur Event log table The event log table logs events that occur during operation with an IE switch The user can ...

Page 16: ... not in effect Note DHCP and BOOTP only influence the in band agent IP configuration the out band agent IP configuration of the SCALANCE X414 3E can only be set manually PROFINET IO As of firmware version 2 0 operation of the switch as a PROFINET IO device is supported TELNET The command line interface of an IE switch can be controlled with TELNET over a LAN or the Internet Note A maximum of three...

Page 17: ...g server DHCP Option 82 The DHCP relay function allows the IP address initialization of an end device depending on the connected switch port DHCP Option 82 is supported with this function IGMP Snooping and IGMP Querier IE switches support not only IGMP snooping but also the IGMP querier function If IGMP Snooping is enabled IGMP packets are evaluated and the multicast filter table is updated with t...

Page 18: ...es To set up a ring topology with media redundancy you bring together the two free ends of a linear bus topology in one device Closing the linear bus topology to form a ring is achieved with two ports ring ports of a device in the ring This device is the redundancy manager All other devices in the ring are redundancy clients Figure 2 1 Devices in a ring topology with media redundancy The two ring ...

Page 19: ...between two devices or by failure of a device in the ring If the test frames of the redundancy manager no longer arrive at the other ring port because of an interruption in the ring the redundancy manager connects its two ring ports This substitute path once again restores a functioning connection between all remaining devices in the form of a linear bus topology As soon as the interruption is eli...

Page 20: ...of data traffic The ring in which you want to use MRP may only consist of devices that support this function These include for example some of the Industrial Ethernet SCALANCE X switches some of the communications processors CPs for SIMATIC S7 and PG PC or non Siemens devices that support this function All devices must be interconnected via their ring ports Multimode connections up to 3 km and sin...

Page 21: ... Example of a ring topology with the MRP media redundancy protocol The following rules apply to a ring topology with media redundancy using MRP All the devices connected within the ring topology are members of the same redundancy domain One device in the ring is acting as redundancy manager All other devices in the ring are redundancy clients Non MRP compliant devices can be connected to the ring ...

Page 22: ...SCALANCE X 200IRT as of firmware version V4 0 SCALANCE X 300 as of firmware version V3 0 SCALANCE X 400 as of firmware version V3 0 Communications processors CP 443 1 Advanced 6GK7 443 1GX20 0XE0 as of firmware version V2 0 CP 343 1 Advanced 6GK7 343 1GX30 0XE0 as of firmware version V1 0 CP 1616 6GK1 161 6AA00 as of firmware version V2 2 CP 1604 6GK1 160 4AA00 as of firmware version V2 2 Non Siem...

Page 23: ...ual 10 2014 C79000 G8976 C187 22 23 2 3 3 MRP multiple rings Only for SCALANCE X414 3E MRP multiple rings With the MRP multiple rings function it is possible to control up to 4 MRP rings with one central X414 redundancy manager MRP multiple rings can only be configured using PROFINET Figure 2 3 MRP multiple rings ...

Page 24: ...d Exceeding this number of devices can lead to a loss of data traffic The ring in which you want to use HRP may only consist of devices that support this function This applies for example to the following devices X 400 IE switches X 300 IE switches X 200 IE switches and OSM ESM All devices must be interconnected via their ring ports Multimode connections up to 3 km and single mode connections up t...

Page 25: ...nment In contrast to layer 2 communication where the MAC address is permanently assigned to a device this makes it necessary to assign an address to a device explicitly This section describes the structure of an IP address and the various options for assigning the address with an IE switch IP address types of IE switches IE switches can have several IP addresses The out band IP address SCALANCE X4...

Page 26: ...e address of the subnet and the remaining bits the address of the host in the subnet A subnet is defined by the subnet mask The structure of the subnet mask corresponds to that of an IP address If a 1 is used at a bit position in the subnet mask the bit belongs to the corresponding position in the IP address of the subnet address otherwise to the address of the computer Example of a class B networ...

Page 27: ...ing Reset to Factory Defaults If a DHCP server is available in the local area network and this responds to the DHCP request of the IE switch the IP address subnet mask and gateway are assigned automatically when the module first starts up DHCP and BOOTP just like permanently set IP addresses are not deleted by a Reset to Memory Defaults Note With the SCALANCE X414 3E the IP addresses of the out ba...

Page 28: ... commands for configuring the IP address You will find a description of these commands in the next section Note If no new passwords have been assigned default factory setting the valid password is admin for the administrator login and user for the user login with restricted permissions After a successful login over the serial interface you can enter commands until you log off with the exit command...

Page 29: ...ddress BOOTP client sends its MAC address with a BOOTP query to all devices MAC broadcast address FF FF FF FF FF FF on the network The reply from the server is also sent as a broadcast and contains not only the IP address but also the MAC address of the client A client that receives such a reply can recognize whether or not the IP address is intended for it based on the MAC address BOOTP is based ...

Page 30: ...s soon as the IP address has been assigned once by a PROFINET IO controller DHCP automatically deactivates itself and must be reactivated if required Note DHCP uses a mechanism with which the IP address is assigned for only a short time lease time If the IE switch does not reach the DHCP server for a new request on expiry of the lease time the assigned IP address the subnet mask and the gateway ar...

Page 31: ...gning such an address to unconfigured devices without an IP address Prerequisite This is only possible when the devices can be reached over Ethernet Note For more detailed information refer to the Primary Setup Tool configuration manual You will find the PST at Siemens Industry Automation and Drives Service Support on the Internet under entry ID 19440762 and with the following Link Primary Setup T...

Page 32: ...Assignment of an IP address 3 6 Address assignment with the Primary Setup Tool SCALANCE X 300 X 400 32 Configuration Manual 10 2014 C79000 G8976 C187 22 ...

Page 33: ...are integrated to prevent unauthorized access to an IE switch CLI over the serial interface IE Switch X 400 only TELNET or SSH Web Based Management There is an automatic logout after 5 minutes CLI or 15 minutes WBM or depending on the time configured in the Agent Timeout Configuration menu A manual logout is also possible with the appropriate button in the user interface Exiting the browser does d...

Page 34: ...t advantage of this method is that apart from a Web browser no special software is required on the client Requirements for Web Based Management An IE switch must have an IP address before you can use Web Based Management To use Web Based Management there must be an Ethernet connection between the IE switch and the client computer Use of a Microsoft Internet Explorer version 5 5 or higher is recomm...

Page 35: ...re 4 1 Logon dialog 1 Enter the IP address or the URL of the IE switch in the address box of the Web browser If there is a problem free connection to the IE switch the logon dialog of Web Based Management appears as shown above 2 Enter a user name in the User name input box The following entries are possible admin With this user name you have read and write access user With this user name you only...

Page 36: ...r of the screen displays a schematic representation of the IE Switch X 300 or the IE Switch X 400 with the existing modules and corresponding LEDs The traffic display is not represented realistically the LEDs do not flash The meaning of the LED displays is described in the operating instructions Industrial Ethernet Switches SCALANCE X 300 or operating instructions Industrial Ethernet Switches SCAL...

Page 37: ...and Line Interface 4 1 General information on Web Based Management and Command Line Interface SCALANCE X 300 X 400 Configuration Manual 10 2014 C79000 G8976 C187 22 37 Figure 4 3 SCALANCE X408 2 LED simulation Figure 4 4 SCALANCE X308 2 LED simulation ...

Page 38: ... a Refresh button at the lower edge of the page Click this button to request up to date information from the IE switch for the current page Storing entries with Set Values Pages in which you can make configuration settings have a Set Values button at the lower edge Click this button to save the configuration data you have entered on the IE switch Note Changing configuration data is possible only w...

Page 39: ...he port labeling of an IE Switch X 400 The first number indicates the slot The second number is separated by a period and specifies the port For example the identifier 6 2 means the second port on the sixth slot Addressing scheme for the ports of an IE Switch X 300 The following addressing scheme applies to the port labeling of an IE Switch X 300 The number relates directly to the port The label 2...

Page 40: ...his is indicated by the mode parameter All available modes can be dis played using the parameter D disables the func tion Cross menu commands You can use the commands in the following table in any menu or submenu Table 4 1 Command Line Interface CLI Com mand Description Comment Changes to the highest menu level Administrator and User Moves you one menu level higher Administrator and User Displays ...

Page 41: ...her SINEC H1 time frame or SNTP You can also see when and how it was set m The setting was made manually t The setting was made using a SIMATIC time of day frame however it is not synchronized with the time transmitter s The setting was made using by SIMATIC time of day frame and it is synchronized with the time transmitter p The setting was made using the SNTP protocol System Up Time read only Th...

Page 42: ...System Configuration CLI SYSTEM Command Description Comment syscon string Sets displays the syscontact MIB variable Administrator only sysloc string Sets displays the syslocation MIB variable Administrator only sysname string Sets displays the sysname MIB variable Administrator only 4 2 2 System Identification Maintenance I M System Identification Maintenance The following screen contains informat...

Page 43: ...ax of the Command Line Interface Table 4 3 System Identification Maintenance CLI SYSTEM IM Command Description Comment info Displays information on the Identification Maintenance menu item function string Specifies the plant designation max 32 characters Administrator only location string Specifies the location identifier max 32 characters Administrator only 4 2 3 System Restart Defaults Resetting...

Page 44: ...Internet Explorer you can make the appropriate setting in the Options Internet Options General menu in the section Temporary Internet Files with the Settings button Below the text Checkfor newer versions of stored pages the Automatically check box must be selected Restart System Click this button to restart the IE Switch You must confirm the restart in a dialog box During a restart the IE switch i...

Page 45: ...x of the Command Line Interface Table 4 4 System Restart Defaults CLI Command Description Comment restart Restarts the IE switch Administrator only This command can be executed from within all menus Table 4 5 System Restart Defaults CLI SYSTEM Command Description Comment defaults Restores the factory defaults The protect ed settings are also reset The device is restarted Administrator only This co...

Page 46: ...an external file from the PC to IE switches You can also load new firmware from a file located on your client PC Note Following a firmware update delete the cache of the Web browser Figure 4 8 System Save Load via HTTP Configuration File Name and directory path of the configuration file you want to load to the IE Switch Firmware File Name and directory path of the file from which you want to load ...

Page 47: ...Restart There is an automatic restart after downloading except following Load Private Key and the device starts up again with the new data How to save data over HTTP HTTPS 1 Start the save by clicking one of the buttons Save Configuration Save Log Table Save Firmware Save Private MIB or Save GSDML File 2 You will be prompted to select a storage location and a name for the file or to accept the pro...

Page 48: ...tries required for this in the Save Load menu Figure 4 9 System Save Load TFTP Server IP Address The IP address of the TFTP server with which you want to exchange data TFTP Server Port The port of the TFTP server over which data exchange will be handled If necessary you can change the default value 69 to your own requirements Configuration File Name and if necessary folder path of the configuratio...

Page 49: ...280 bytes are accepted private keys must not be password protected An SSL certificate must be PEM coded its length must not exceed 2560 bytes How to load or save data over TFTP 1 Enter the IP address of the TFTP server in the TFTP Server IP Address text box 2 Enter a name maximum of 32 characters for the file in which you want to save the data or take the data from in the text box 3 Click on the S...

Page 50: ... of a file maximum 32 characters from which the configuration data will be loaded or in which the configura tion data will be saved Administrator only cfgsave Saves the configuration data in a file on the TFTP server Administrator only cfgload Loads the configuration data from a file on the TFTP server Administrator only logname string Specifies the name of a file maximum 32 characters in which th...

Page 51: ...ith entries for the basic device and the modules The first row of the table indicates the version of the IE switch The slot column shows the slot on the basic device If the information relates to the basic device itself is entered in this column The Hardware column displays the version and the Order Number column the order number of the IE switch or module Syntax of the Command Line Interface Tabl...

Page 52: ...In this dialog if you are the administrator you can change the passwords for Admin and User The password can be up to a maximum of 16 characters 7 bit ASCII long By selecting a login mode you also specify which user names can be used for the login Note RADIUS To be able to use the login mode RADIUS or RADIUS and Local a RADIUS server must be stored and configured for user authentication You config...

Page 53: ... a RADIUS server The local user names are disabled Save Save your entries by clicking the Set Values button Note RADIUS authentication fails If the RADIUS server configured as the primary server fails authentication will initially fail The request is only sent to the backup server with the next login attempt Syntax of the Command Line Interface Table 4 9 System Passwords CLI SYSTEM Command Descrip...

Page 54: ...able disable the redundancy manager You will find a detailed description of the individual functions available with the buttons in the SCALANCE X 400 operating instructions On this page the functionality of the Select Set button can be restricted or fully disabled This is possible for the following three functionalities Restore Factory Defaults Enable Disable Redundancy Manager Set Fault Mask Figu...

Page 55: ...tion of the button Administrator only faultmsk Enables disables the Set Fault Mask function of the button Administrator only 4 2 9 System Event Log Table Logging events An IE switch allows you to log events and to display them on the page of the Log Table menu This for example allows you to record when an SNMP authentication attempt failed or when the connection status of a port has changed You ca...

Page 56: ... last restart Refresh Click on this button to refresh the display Clear Log With this button you can delete the content of the log table Syntax of the Command Line Interface Table 4 11 System Event Log Table CLI SYSTEM Command Description Comment events clear Shows the content of the log table The content of the log table can be deleted with the clear parameter Only the administrator can de lete t...

Page 57: ...tate The status of the C PLUG is displayed here The following are possible ACCEPTED There is a C PLUG with a valid and matching content inserted in the IE switch NOT ACCEPTED Invalid or incompatible content of an inserted C PLUG This status is also displayed when the C PLUG was formatted during operation NOT ACCEPTED HEADER CRC ERROR A C PLUG with bad content is inserted NOT PRESENT There is no C ...

Page 58: ... as Administrator Here you decide how you want to change the content of the C PLUG The following alternatives are possible Copy internal Configuration to C PLUG and Restart The configuration in the internal flash memory of the IE switch is copied to the C PLUG this is followed by a restart This function is required in the following important use case The IE switch has started up with a C PLUG cont...

Page 59: ...ata from the C PLUG and runs a low level formatting function Administrator only Same function as the Clean C PLUG command in WBM 4 2 11 Geographic coordinates Information on geographic coordinates In the Geographic Coordinates window you can enter or read out information on the geographic coordinates To be able to read out the geographic coordinates the geographic location of the device must be en...

Page 60: ...he numbers 8 20 58 73 E Height geographic height Here you enter the value of the geographic height above seal level in meters For example 158 m means that the device is located at a height of 158 m above sea level Heights below sea level are indicated by a preceding minus sign Entering the geographic coordinates The values for the geographic coordinates can be entered in the text boxes for example...

Page 61: ...on the operating status This screen appears if you click the X 400 or X 300 folder icon The information in this screen depends on the IE switch With X 400 IE switches the screen shows information about the power supply and the error fault status With X 300 IE switches the screen shows additional information about ring redundancy and the standby function The text boxes of this screen are read only ...

Page 62: ...perating problem free The passive status is also displayed if the IE switch is not operating as the redundancy manager RM function disabled Active The IE switch is operating as redundancy manager and has closed the ring in other words the line of switches connected to the ring ports is interrupted problem The redundancy manager connects its ring ports through and restores an uninterrupted linear t...

Page 63: ...ase either the configuration on the partner device is inconsistent for example incorrect connection name standby link disabled or there is a physical fault for example device failure link down Connection Lost Existing connection to the partner device has been lost In this case there is either a physical fault for example device failure link down or the configuration on the partner device was modif...

Page 64: ...overable ring error These errors cannot be resolved by the redundancy manager There can for example be a loss of redundancy frames sent by the redundancy manager at one end without there being a link down An incorrectly configured second redundancy manager in the ring also causes this error message In the first case check the configuration of the ring ports Suitable setting for the operating mode ...

Page 65: ... This screen appears if you click the Ring Redundancy folder icon The screen shows the status of the device related to ring redundancy standby function and RM observer The text boxes on this page are read only Figure 4 16 SCALANCE X414 3E Ring Redundancy Information The screen contains the following sections and boxes Ring Redundancy Information section The table has the following columns Enabled ...

Page 66: ... switch operates as an HRP manager MRP Client MRP Clt The IE switch operates as an MRP client MRP Manager MRP Mgr The IE switch operates as an MRP manager RM Status The RM Status column shows whether or not the IE switch is operating as redundancy manager and whether it has opened or closed the ring in this role Passive The IE switch is operating as redundancy manager and has opened the ring in ot...

Page 67: ...e role of the standby master The Standby Function display box shows the status of the standby function Master The device has a connection to the partner device and is operating as master In normal operation the standby ports of this device are active Slave The device has a connection to the partner device and is operating as slave In normal operation the standby ports of this device are inactive D...

Page 68: ...orts of this device are inactive in other words are disabled for frame traffic Standby Ports The Standby Ports display box shows the standby ports RM Observer Information section Observer Status The Observer Status display box shows the current status of the observer passive The observer has not detected any errors active The observer has detected an errors The observer function is disabled Syntax...

Page 69: ...guration time of the frame traffic following a failover in HRP 300 ms Note For more detailed information refer to the SCALANCE X 300 or SCALANCE X 400 operating instructions Ring configuration of the IE switch Note With the SCALANCE X414 3E configuration using software CLI or WBM is possible only when both the DIL switches R1 and R2 are set to ON Otherwise the settings are as described in the oper...

Page 70: ...ith the setting Automatic Redundancy Manager or MRP Auto Manager negotiate among themselves which device will adopt the MRP Manager role The device with the lowest MAC address will always become MRP Manager In contrast to the setting Automatic Redundancy Detection the devices are not capable of detecting whether or not an HRP manager is in the ring This means that they never adopt the role of HRP ...

Page 71: ... Ports In the two drop down lists select the ports that will be used as ring ports Observer Mode Note You will find information on the observer function in the section X 300 X 400 observer Page 73 The observer monitors malfunctions of the redundancy manager or incorrect configurations of an HRP ring It is also capable of opening the connected ring if problems are detected protection mode Using the...

Page 72: ...a redundancy in ring topologies The following modes are possible D Disables media redundancy in ring topologies HRP The IE switch is an HRP client HRPMGR The IE switch is an HRP manager MRPCL The IE switch is an MRP client MRP The IE switch operates with MRP and can be come redundancy manager automatically ARD Automatic Redundancy Detection Administrator only ports port1 port2 Specifies the ring p...

Page 73: ...lly and it remains permanently in the active status This is signaled by the error LED and the following message text Observer stopped recovering because of too many number or errors repeated errors From this status the observer must be reactivated by the user after the errors have been eliminated Restart Observer When setting up a ring with an observer note the following points The first configure...

Page 74: ...e the Observer function in the Ring Config menu Error messages Errors detected by the observer are signaled by an error LED signaling contact and corresponding message text This uses the message method configured for the alarm event Fault State Change see section Agent Event Configuration The possible message methods are e mail trap and or event log table entry You will find a list with the messag...

Page 75: ...e devices monitor each other over the ring ports and in the event of a fault redirect the data traffic from one Ethernet connection standby port of the master to another Ethernet connection standby port of the slave For more detailed information on Ethernet cabling and the topological location of master and slave refer to the Operating Instructions SCALANCE X 400 Industrial Ethernet Switches Note ...

Page 76: ...rtners have established a connection This ensures that the redundant connection is really available before communication is started via a standby connection Disabled A standby connection is enabled even if the standby master has not yet established a connection to the standby slave Standby Observer enabled Enable or disable the function by selecting the check box You will find more information on ...

Page 77: ...RP rings 1 Plan which devices of the ring adopt the role of Standby Master and which adopt the role of Standby Slave You should also plan the ports of the standby Master and standby slave to which the Ethernet connections to the other rings are connected With the factory defaults the device with the highest MAC address adopts the role of standby master If both devices support the Force Device to S...

Page 78: ...e pairs as shown in the following figure Figure 4 20 Standby observer link in the HRP ring Both master slave pairs make sure independently that only one of the two link paths is enabled at any one time This prevents circulating frames Malfunctions are detected by each device comparing its current status with that of the linked device To check whether a link is active you must however query the sta...

Page 79: ...ve is interrupted the relevant slave remains passive This means that the communication to the slave and to all devices connected to the slave is interrupted Messages relating to the standby observer function In the status and event messages Partner indicates the device that is located in the same ring This means that in the figure shown above the master and slave are partners and the observer mast...

Page 80: ...ure Standby partner observer conflicts with master slave role resolved The status described above has been resolved for example after eliminating a fault Standby partner observer conflicts with observer on off configuration The configuration signaled by the partner or observer conflicts with the module s own current standby observer setting Standby partner observer observer configuration conflict ...

Page 81: ...y in the log table Device related link monitoring of the ports An IE switch provides device related link monitoring A link up or link down also affects the message system if the IE switch was appropriately configured Setting the fault mask on the device The fault mask can also be set by the using the SET SEL button on the front panel of the IE switch for more detailed information refer to the Oper...

Page 82: ...nk Down Enable Link Down Monitoring Select the check boxes of the slots ports whose connection status you want to monitor If link monitoring is activated an error is signaled when there is no valid link at this port because for example the cable is not plugged in or the connected device is turned off An error fault can be signaled in the following ways depending on the configuration of the IE swit...

Page 83: ... HRP redundancy by the fault LED and signaling by the fault signaling contact Administrator only linkdown E D ports Enables disables link monitoring for the selected ports If you do not specify any ports all ports are ena bled disabled Administrator only If you specify more than one port as parameter each port must the separated by a blank linkup E D ports Enables disables link monitoring for the ...

Page 84: ...est frames The maximum delay that occurs with these test packets is displayed No of Changes to Standby Active State A value is displayed here when the standby function is enabled see section X 300 X 400 Standby Mask The value specifies how often the IE switch has changed the standby status from passive to active This status is adopted when the connection of a standby port of the standby master fai...

Page 85: ...options for accessing the IE switch such as TELNET or RMON IP configuration for the SCALANCE X414 3E Here you specify the IP configuration for the SCALANCE X414 3E A distinction is made between the switch ports In band column and the Ethernet port of the switch CPU Out band column Note The IP addresses of the CPU and the switch ports must belong to different subnets IP Address IP address of the SC...

Page 86: ...iguration using Web Based Management and Command Line Interface 4 4 The Agent menu SCALANCE X 300 X 400 86 Configuration Manual 10 2014 C79000 G8976 C187 22 Figure 4 25 SCALANCE X414 3E agent configuration ...

Page 87: ...X408 2 Note On the SCALANCE X 300 X408 2 no CPU Ethernet port out band port can be configured You can only configure the switch ports Subnet Mask Enter the subnet mask here Figure 4 26 Agent Configuration SCALANCE X300 Settings for the IE switch FTP Enables disables the FTP server FTP can be used to download the firmware You will find more detailed information on this topic in the section Firmware...

Page 88: ...ot the IE switch is accessible over SSH HTTPS only Here you specify whether or not the IE Switch is reachable only over HTTPS If you do not select this option it can also be reached with HTTP E mail This enables disables the e mail function of the IE switch For detailed information on this functionality refer to the section Agent E Mail Configuration menu item Syslog Here you specify whether or no...

Page 89: ...e is unrestricted access to the management of the IE switch The configured access rules are only taken into account when the function is enabled SNTP Enables disables synchronization of the IE switch system time over an SNTP server in the network Supported version SNTP V2 SIMATIC Time Enables disables synchronization of the IE switch system time using the SIMATIC time protocol In this case synchro...

Page 90: ...ality refer to the section Assigning addresses with the DHCP client of the IE switch Note As soon as the IP address has been assigned once by a PROFINET IO controller DHCP automatically deactivates itself and must be reactivated if required BOOTP If you enable this check box the IE switch browses the network for a BOOTP server and configures its IP parameters according to the data supplied by this...

Page 91: ...by dots Displays the currently set in band IP address if no parameter is specified Administrator only The IP address must be entered if you want to access an IE switch using a Web browser TELNET or SNMP The IP address can also be assigned automatically by BOOTP DHCP subnet subnet mask Specifies the subnet mask for the in band ports of the IE switch You enter four decimal numbers separated by dots ...

Page 92: ...d Write telnet E D Enables disables TELNET Administrator only Default value Enabled rmon E D Enables disables remote monitoring Administrator only Default value Disabled macl E D Enables disables Management Access Control List Administrator only sntp E D Enables disables SNTP Administrator only Default value Disabled siclock Enables disables time synchronization with the SIMATIC time protocol Admi...

Page 93: ...led slog E D Enables disables Syslog Administrator only 4 4 2 Ping Reachability of an address in an IP network The ping function in Web Based Management has exactly the same function as the terminal function of the same name It checks whether an address exists in an IP network IP address Enter the IP address of the network device you want to ping to test whether it can be reached Repeat Here enter...

Page 94: ...s can communicate with each other Multi level security concept encryption of data authentication of users User defined security settings Access permissions with SNMP When using the SNMP protocol you specify access permissions by means of the community string A community string contains information about the user name and password in a string Different community strings are defined for read and wri...

Page 95: ... only If you select this option you enable SNMPv3 only the functionality of SNMPv1 and SNMPv2 is not available Read Only When this option is selected you can only read SNMP variables with SNMPv1 v2c Read Community String Here you enter the read community string maximum of 20 characters for the SNMP protocol Read Write Community String Here you enter the write community string maximum of 20 charact...

Page 96: ...ring Specifies the read community string maximum length 20 characters The default is public Administrator only setcomm string Specifies the read write community string maximum length 20 characters The default is private Administrator only traps E D Enables disables SNMPv1 traps Administrator only 4 4 3 2 SNMPv1 Trap Configuration SNMP traps for alarm events If an alarm event occurs an IE switch ca...

Page 97: ...k box next to the IP addresses to enable the sending of traps to the corresponding stations Syntax of the Command Line Interface Table 4 22 SNMPv1 Trap Configuration CLI AGENT SNMP TRAPCONF Command Description Comment Info Shows the current trap configuration ip entry ip Specifies the IP address of the trap recipient entry entry between 1 and 10 Administrator only Default value 0 0 0 0 state entry...

Page 98: ...o every member of a group Figure 4 29 SNMPv3 Groups Group Name This lists all previously defined group names When you click on a group name a new window opens in which you can change the parameter settings of a group Auth A cross in this column indicates that the authentication is enabled for the corresponding group Priv A cross in this column indicates that encryption is enabled for the correspon...

Page 99: ...d the encryption You have the following three options for the security levels Security level Special features Comment no Auth no Priv No authentication no encryption Auth Authentication with the MD5 or SHA algorithm no encryption Auth Priv Authentication with the MD5 or SHA algorithm encryption with the DES3 algorithm Read and Write Here you enable or disable write access read access and notificat...

Page 100: ...ers Security Level Here you select the security level that will apply to the group Read and Write Here you specify whether members of the group have read access write access or both Syntax of the Command Line Interface Table 4 23 SNMPv3 Groups CLI AGENT SNMP GROUP Command Description Comment info Displays a list of all SNMPv3 groups add groupname secu ritylevel Adds a new SNMPv3 group You specify ...

Page 101: ...nistrator only clearall Deletes all SNMPv3 groups from the list Administrator only 4 4 3 4 SNMPv3 Users Configuration User specific security settings The user based security model works with the concept of the user name in other words a user ID is added to every frame This user name and the applicable security settings are checked by both the sender and recipient A user is defined by the following...

Page 102: ...user is assigned is displayed in the Group column Figure 4 32 SNMPv3 Users User Name This lists all previously defined user names When you click on a user name a new window opens in which you can change the passwords of a user Group The entries in this column show the group to which a user belongs Auth This column shows the authentication algorithm used for the user Priv This column displays the e...

Page 103: ... selected for the group enter the encryption password Security Level This box displays the security level authentication encryption that applies to the group The various security levels are described on page 70 Authentication Algorithm You can choose between the MD5 and the SHA algorithm Authentication password Authentication password confirmation Enter the authentication password in these boxes T...

Page 104: ...v3 Users CLI AGENT SNMP USER Command Description Comment info Displays a list of all SNMPv3 users add username groupname Adds a new SNMPv3 user to a group If authentication is necessary for the group MD5 is selected as the default algorithm Administrator only auth username MD5 SHA Changes the authentication algorithm MD5 or SHA or an SNMPv3 user This command can only be used for mem bers of a grou...

Page 105: ...atic logout in WBM or CLI Figure 4 35 Agent Timeout Configuration Web Based Management sec Here you specify the WBM timeout Permitted values for the WBM timeout 60 3600 seconds 0 means There is no automatic logout CLI TELNET SSH Serial sec Here you specify the CLI timeout Permitted values for the CLI timeout 60 600 seconds 0 means There is no automatic logout Syntax of the Command Line Interface T...

Page 106: ...fy which events trigger which reactions on the IE switch The following options are available The IE switch sends an E mail The IE switch triggers an SNMP trap The IE switch writes an entry in the log file The IE switch writes an entry to the Syslog server Figure 4 36 Agent Event Configuration You can configure the reaction of the IE switch to the following events Cold Warm Start The IE Switch was ...

Page 107: ...ection master or slave has activated or deactivated the link to the other ring standby port The data traffic was redirected from one Ethernet connection standby port of the master to another Ethernet connection standby port of the slave see section X 400 Standby Mask menu item or X 300 Standby Mask menu item Fault State Change The fault status has changed The fault status can relate to the activat...

Page 108: ...ists the fault LED goes off and the signaling contact closes aligned The way the signaling contact works depends on the error fault that has occurred The signaling contact can be opened or closed as required by user actions Close Signaling Contact Select this check box if you want to close the signaling contact Note The setting of the Close Signaling Contact check box is only effective if the alig...

Page 109: ... Authentication Failure RA RMON Alarm PC Power Change RC RM State Change SC Standby State Change FC Fault State Change RS STP RSTP Change LD Loop Detection State Change PA Port Auth State Change VE VRRP State Change X414 only FO Fiber Optic Diagnostics If an event is specified the configured actions are formed for each event The four parameters that follow E or D configure the reactions of the IE ...

Page 110: ...n OLM in process control without I O It is assumed that you have an S7 400 controller without central I O module the I O is connected optically over PROFIBUS OLM The signaling contact of the OLM can be applied to a digital input of the SCALANCE X414 3E and is available for diagnostics If the signaling contacts of an existing OLM are applied to the digital inputs of the SCALANCE X414 3E the OLM can...

Page 111: ...of the SCALANCE X414 3E showdic Shows the configuration of the digital inputs of the SCALANCE X414 3E setdic input E D E D E D E D Sets the event configuration for the digital inputs in the order E mail trap log table entry entry on the Syslog server If no input is specified the specified configuration relates to all inputs Example setdic 5 E D E D If input 5 is set the SCALANCE X414 3E sends an E...

Page 112: ...y the browser using the identification of the sender to read out further diagnostic information E mails can only be sent when The E mail function is activated on the IE switch and the E mail address of the recipient is configured see Agent Configuration menu item The E mail function is enabled for the relevant event see Agent Event Configuration menu item There is an SMTP server in your network th...

Page 113: ...yntax of the Command Line Interface Table 4 28 Agent E Mail Configuration CLI AGENT EMAIL Command Description Comment info Shows the current E mail configuration server ip port Specifies the IP address and the port number of the SMTP server Administrator only Default value 0 0 0 0 25 email E mail address Specifies the address to which an IE switch sends an E mail This address can be up to a maximu...

Page 114: ... item There is a Syslog server in your network that receives the log entries from the IE switch Since this is a UDP connection there is no acknowledgment to the IE Switch The IP address of the Syslog server is entered on the IE switch Figure 4 39 Agent Syslog Configuration Syslog Server IP Address Here you enter the IP address of the Syslog server on which the log entries will be stored Syslog Ser...

Page 115: ...P Mode Here you set the DHCP mode Note If DHCP is not enabled in the Agent Configuration menu item no mode can be selected and the text disabled is displayed DHCP Client ID For the DHCP mode via Client ID you can assign an identification string here that is assigned to an IE switch and will be evaluated by the DHCP server DHCP Client Config File Request Op 66 67 Select this option if you want the ...

Page 116: ... only clientid ClientID Specifies the DHCP client ID This value is used when DHCP via client ID is set The client ID can be freely defined Administrator only cfgreq E D Enables disables Config File Request Opt 66 67 Administrator only 4 4 10 Time Config 4 4 10 1 Agent Time Configuration Time of day synchronization in the network The following protocols are available for time synchronization in the...

Page 117: ...hronized with the time transmitter t The system time was set by a SIMATIC time of day frame but it is not synchronized with the time transmitter m The system time is set manually You can also set the date and time of day manually The required input format is as follows MM DD YYYY HH MM SS If no time of day synchronization was possible the box displays Date time not set Time Synchronization This bo...

Page 118: ...are dis played you can also see when and how the time was set p The setting was made by SNTP n The setting was made by NTP i The setting was made by PTP t The setting was made using a SIMATIC time of day frame however it is not synchronized with the time transmitter s The setting was made using by SIMATIC time of day frame and it is synchronized with the time transmitter m The setting was made man...

Page 119: ...submenu Figure 4 42 SNTP Client Configuration SNTP Mode You can choose between the following protocol types Poll If you select this type of protocol you will need to set the SNTP server IP address You can modify the following settings SNTP Server Port Init poll interval Poll interval Time Zone Offset Listen If you select this protocol type you can also select a time zone offset in addition to the ...

Page 120: ...server Specify how often the system time will be updated Syntax of the Command Line Interface Table 4 32 SNTP Client Configuration CLI AGENT TIME SNTP Command Description Comment server ip port Sets the IP address and optionally the port of the SNTP server Administrator only sntpmode mode Specifies the SNTP mode The possible modes are as follows POLL IE switch queries the time on the SNTP server L...

Page 121: ...riate frames are then sent by the NTP servers in the network If you have several servers NTP compares the received system time and decides which has the highest quality The NTP Client Configuration screen appears if you click the NTP Client submenu Figure 4 43 NTP Client Configuration IP Adresse Enter the IP address of the NTP server to which a client will send frames for synchronizing the time of...

Page 122: ... the system time with the server following the first connection Syntax of the Command Line Interface Table 4 33 NTP Client Configuration CLI AGENT TIME NTP Command Description Comment server number IP Specifies the server number and the IP address of the NTP server Administrator only initint 1 10000 Specifies the interval for querying the system time after the first connection Permitted values 1 1...

Page 123: ...existing entries for the daylight saving time changeover As soon as the end date of an entry is exceeded if a rule is defined the data for the next changeover is displayed With fixed entries the row is deleted Nr Shows the number of the entry If you create a new entry a new row is created with a unique number Year Shows the year for which the entry was created Start Shows the month day and time fo...

Page 124: ...ime changeover This setting is suitable for regions in which the daylight saving time always begins or ends on a particular weekday Date You can define a fixed date for the daylight saving time changeover This setting is suitable for regions in which there is no rule governing the daylight saving time changeover Settings for Recurring Entry Configuration You can create a rule for the daylight savi...

Page 125: ...ight saving time changeover Start date Enter the following values for the start of daylight saving time Month Day Time of day in hours End date Enter the following values for the end of daylight saving time Month Day Time of day in hours Syntax of the Command Line Interface Table 4 34 Daylight Saving Time Table CLI AGENT TIME DST Command Description Comment info Shows information about the time zo...

Page 126: ...Agent PROFINET IO Configuration PNIO AR Status This box shows the PROFINET IO application relation status in other words whether or not the IE switch is connected online or offline with a PROFINET Controller In this context online means that a connection to a PROFINET IO controller exists that the controller has downloaded its configuration data to the IE switch and that the device can send status...

Page 127: ...switch To specify which host can access the management of your IE switch using which IP address configure the access rules for individual hosts subnets or all hosts The list of access rules presents this information clearly as shown in the example in the following figure Figure 4 46 Management Access Control List overview Note The option Out Band Port Enabled OBP is only available for the SCALANCE...

Page 128: ...veral rules for access by a host match the more narrowly defined rule Best Match takes effect If for example both the access rule for a single host matches as well as the rule for an entire subnet the host rule is used Management ACL Configuration You can set which host can access the IE switch via which ports and using which services Note Note A bad configuration may mean that you can no longer a...

Page 129: ...n enter several individual VLANs as well as VLAN ranges separated by commas e g 1 5 10 12 Out Band Port Enabled If you enable the Out Band Port Enabled option the IP address can access the switch via the out band port Services If you enable one of the following services you also enable access using this service SNMP TELNET HTTP HTTPS SSH FTP ICMP The following service is only available with SCALAN...

Page 130: ...es 8 To transfer the changed information to the device click the Set Values button 9 To return to the Management Access Control List overview click the Current Entries button Editing an existing entry Follow the steps below to modify an existing entry 1 Click on the IP address of the entry you want to modify on the Management Access Control List page 2 Make the required modifications The entries i...

Page 131: ...rts Specifies the ports via which the device may be accessed Administrator only outband IP subnet E D Applies only to the X414 Specifies whether or not the IP address can ac cess the switch via the out band port Administrator only vlans IP subnet 1 4094 Corresponds to the number of the VLAN in which the device is located Specifies that only hosts from the same VLAN can access the device Administra...

Page 132: ...ing functions General switch settings such as mirroring aging and flow control The filter table for unicast multicast and broadcast frames The management of multicast groups with IGMP GMRP The use of the spanning tree protocol Configuration of VLANs and their dynamic configuration with GVRP frames Specifying transfer priorities with CoS to Queue and DSCP to Queue Mapping DCP port filter Topology d...

Page 133: ...ble or disable the following functions of the IE switch Aging Enabled An IE switch automatically learns the source addresses of the nodes connected to it This information is used in the IE switch to forward data frames to the nodes specifically involved This reduces the network load for the other nodes If an IE switch does not receive a frame whose source address matches a learned address within a...

Page 134: ...tch also reacts to a reconfiguration without being in R STP mode When an RSTP Topology Change frame is received the MAC address table is deleted Spanning tree BPDUs are also forwarded Note In passive listening mode the IE switch is not compatible with IEEE 802 1d that forbids forwarding of spanning tree BPDUs when not in R STP mode Note If the R STP function is activated on a switch that is a node...

Page 135: ...st frames in the entire network and for nodes that are not registered for a multicast If you enable GMRP GMRP registrations are entered in the multicast filter table for all ports and generated automatically If GMRP is not enabled an IE switch does not evaluate received GMRP frames an IE switch does not send its own GMRP frames IGMP snooping IGMP is an acronym for Internet Group Management Protoco...

Page 136: ...ption Spanning Tree Protocol In the lower part of the screen you can enable or disable the following redundancy methods STP STP Spanning Tree Protocol is a method with which loops are prevented in redundant network structures If you enable STP you enable the spanning tree functionality Typical reconfiguration times with spanning tree are between 20 and 30 seconds RSTP RSTP Rapid Spanning Tree Prot...

Page 137: ...on on ring nodes refer to the operating instructions of the relevant switch RSTP Big Network Support If you enable RSTP Big Network Support large RSTP rings with up to 80 bridges are supported Syntax of the Command Line Interface Table 4 37 Switch Configuration CLI SWITCH Command Description Comment info Shows the current settings in the Switch menu aging E D Enables disables aging functionality A...

Page 138: ...strator only bnsupp E D Enables disables big network support Administrator only macl E D Enables disables the Management ACL function Administrator only blkucast E D ports Display set Unknown Unicast Blocking Mask Administrator only blkmcast E D ports Display set Unknown Multicast Blocking Mask Administrator only blkbcast E D ports Display set Broadcast Blocking Mask Administrator only fastlrn E D...

Page 139: ...dicates whether autonegotiation is enabled or disabled Flow Ctrl Shows whether flow control is enabled or disabled Active Shows whether or not the port is active true or inactive false For an inactive port the communications partner indicates the connection status Link Down Status Shows whether the port is enabled or disabled Data traffic is possible only over an enabled port On the other hand the...

Page 140: ...ith a source address that is not in the address table of the IE switch is forwarded The IE switch adds the source address of the corresponding node to the address table Note Access Control is available as of firmware version 2 2 and replaces the former Lock function Down Shift Shows whether down shift is enabled or disabled Changing the port configuration Click on the port name in the Port column ...

Page 141: ...way The connection status can be changed with the Port active check box Access Control enabled If this check box is selected the IE switch does not learn unicast addresses at this port FD Flow Control enabled Enables disables flow control for the full duplex mode Flow control is however only effective if the port operates in full duplex mode If flow control is enabled but not in effect the set che...

Page 142: ...operates as a standard gigabit port Mode In the Mode list box you can set the transmission speed and duplexity of the port If you set the mode to autonegotiation these parameters are automatically negotiated by the IE switch and the connected end device Note Set the mode to autonegotiation if you want to use autocrossover to the partner port Port Name Here you can enter a name for the port Port Ty...

Page 143: ...actrl command replaces the lock command as of firmware version 2 2 Administrator only speed speed ports Specifies the transmission speed and duplicity of the port 10H 10 Mbps half duplex 10F 10 Mbps full duplex 100H 100 Mbps half duplex 100F 100 Mbps full duplex Administrator only dwnshift E D ports Enables disables down shift for the relevant port Administrator only vd E D ports Enables disables ...

Page 144: ...n of the network traffic Bad frames for example are discarded when they are received and are not forwarded via the mirror port Configuration for mirroring ports The Mirroring Configuration screen appears if you click the Mirroring menu item Figure 4 51 Mirroring Configuration Monitor Barrier Enabled With this check box you can restrict communication via the monitor port Enabled The monitor port is...

Page 145: ...ports whose data traffic is copied to the monitor port You can make the following settings for each port Enable both halves of the box The incoming and outgoing data traffic is copied Enable the left half of the box Only the incoming data traffic is copied Enable the right half of the box Only the outgoing data traffic is copied Note Multiple mirrored ports Depending on the device type flooded fra...

Page 146: ...ink Aggregation Control Protocol LACP from the IEEE 802 3ad standard is used Note The ports bundled into a link aggregation are considered as virtual ports for example PLC1 and can be used in CLI commands instead of the individual port numbers Procedure for configuring link aggregations 1 First identify the ports you want to put together to form a link aggregation 2 Configure the link aggregation ...

Page 147: ...links of an aggregation Due to hardware restrictions the possible settings differ on a SCALANCE X 300 408 and a SCALANCE X414 Port Shows the virtual port number of this link aggregation This is assigned internally by the firmware Link Aggregation Name Shows the freely configurable name of the link aggregation This name can be specified by the user during configuration Port Member List Shows the po...

Page 148: ...port does not have a link The port was not authenticated according to 802 1x X blue The port is a member of the aggregation and is its master port and is not active Note On a SCALANCE X414 3E although the gigabit ports 5 1 and 5 2 can be configured with a Fast Ethernet port in an aggregation they will never be active along with other Fast Ethernet ports even if they are set to Fast Ethernet Creati...

Page 149: ...lack The port is a member of the aggregation M blue The port is a member of the aggregation and is its master port Changing a link aggregation In the Current Link Aggregation overview screen click on the Port column or Link Aggregation Name to change the configuration of an existing link aggregation Figure 4 54 Static Link Aggregation Configuration Port Displays the virtual port number of the aggr...

Page 150: ... to keep the port in the aggregation click on it a second time black M 2 Click on the new master port until a blue M appears Syntax of the Command Line Interface Current Link Aggregation CLI SWITCH LAG Command Description Comment info Shows the current settings of the link aggregation group actual status frmdistr mode Sets the type of distribution of packets on the individual links of an aggregati...

Page 151: ...ssible The port is not a member of the link aggrega tion M The port is a member of the link aggregation Administrator only delete ID Deletes a link aggregation Administrator only 4 5 4 2 LACP Configuration Enabling LACP functionality The LACP Link Aggregation Control Protocol handles the selection of the active ports of a link aggregation You can enable LACP for every link aggregation Figure 4 55 ...

Page 152: ...ternal authentication server The IE switch authenticates connected end devices via this server This allows you to restrict access to the network via the IE switch for end devices To do this configure the RADIUS server and specify the authentication method for the ports 802 1x RADIUS Configuration The 802 1x RADIUS Configuration screen appears if you click the RADIUS Config folder icon Figure 4 56 ...

Page 153: ...e of values is 1 to 254 RADIUS Server You can enter data for two RADIUS servers The information in the Backup column is used if the server defined in the Primary column is not available RADIUS server for Login Mode The RADIUS server specified here serves at the same time as the authentication server for the login modes RADIUS and Local and RADIUS see section System Passwords Login Mode Page 52 Syn...

Page 154: ...02 1x Auth column shows whether the authentication method 802 1x is enabled or disabled for the port 802 1X Re Auth The 802 1x Re Auth column shows whether the authentication using 802 1x is repeated cyclically enabled or not disabled Mac Auth The Mac Auth column shows whether the authentication method MAC Authentication is enabled or disabled for the port Mac Re Auth The Mac Re Auth column shows ...

Page 155: ...t Vlan The Guest Vlan column shows whether the Guest VLAN option is enabled or disabled for the port Guest Vlan ID The Guest Vlan ID column shows the VLAN ID configured as the guest VLAN for the port Syntax of the Command Line Interface Table 4 42 802 1x Port Parameters CLI SWITCH DOT1X PORTS Command Description Comment info Displays the current settings of the ports ...

Page 156: ...unctions are enabled an attempt is made initially to authenticate the end device using 802 1x If this authentication is unsuccessful MAC Authentication is started If this authentication is also unsuccessful the end device is enabled for communication in the guest VLAN Guest VLAN can only be used if at least one authentication method is active The two authentication methods depend on the end device...

Page 157: ...works as follows As soon as the IE switch receives a frame from the end device the IE switch sends a query to the RADIUS server to allow or deny the end device access to the network MAC Authentication Enable this option if you want end devices to be authenticated with the MAC Authentication method MAC Re Authentication Enable this option if you want reauthentication of an already authenticated end...

Page 158: ...TS Command Description Comment auth E D ports Enables disables the 802 1x authentication meth od for the selected port Administrator only reauth E D ports Enables disables the reauthentication functionality 802 1x for the selected port Administrator only macauth E D ports Enables disables the MAC Authentication authen tication method for the selected port Administrator only macreauth E D ports Ena...

Page 159: ...er Selecting the displayed addresses Display Selection active The display is only restricted to selected elements when this check box is selected otherwise all addresses are displayed Start Address This parameter specifies the address in the filter table starting at which stored MAC addresses are displayed If nothing is entered here the display begins at the VLAN ID If you enter a specific value h...

Page 160: ...n the list of known nodes a unicast entry must be created on the relevant port for its MAC address To enter all connected nodes automatically there is a function for automatic learning see section ACL Learning menu item Information in the filter table The four columns of the filter table show the following information VID The VLAN ID assigned to this MAC address If no VLAN ID is assigned to a MAC ...

Page 161: ...uration Slot Port Select the slot and the port to which the frames with the entered destination address will be forwarded After clicking on the appropriate box status information is displayed and has the following meaning M Member Unicast frames are sent over this port Unicast frames are not forwarded via this port The port is invalid The VLAN configuration contradicts the unicast configuration Th...

Page 162: ...e basic setting MAC Address Enter the MAC address you want to add to the address table This address matches the target address of a received frame Slot Port Select the slot and the port to which the frames with the entered destination address will be forwarded After clicking on the appropriate box M appears Invalid ports are marked with If a port is marked with the VLAN configuration contradicts t...

Page 163: ...e ports to which a received frame with this destination address is sent If you do not specify a VLAN ID all VLANs are browsed for the specified MAC address As an option you can also specify a port Browsing is then restricted to the specified port As a further option you can also restrict browsing to static and learned entries S Static entries L Learned entries add VLAN ID MAC ad dress port Inserts...

Page 164: ...really been learned Only nodes that send packets during the learning phase can be found By enabling the Access Control function the only packets accepted on the relevant ports are those from nodes known on completion of the learning phase static unicast entries Note If the Access Control function was already active on individual ports prior to the automatic learning phase no addresses will be lear...

Page 165: ... 22 165 Syntax of the Command Line Interface Table 4 45 Access Control List Learning CLI SWITCH UCAST Command Description Comment learning start stop No parameter Displays the current status of the automatic learning start Starts automatic learning stop Stops automatic learning Administrator only clear Deletes all static unicast entries Administrator only ...

Page 166: ...f the function is enabled for a port packets from unknown MAC addresses are discarded immediately Only packets from known nodes see Current Unicast Filter Access Control List menu item are accepted Figure 4 63 Access Control Port Configuration Syntax of the Command Line Interface Table 4 46 Access Control Port Configuration CLI SWITCH UCAST Command Description Comment actrl E D ports Enables Disab...

Page 167: ...ou can disable the forwarding of unknown unicast frames for individual ports Figure 4 64 Unknown Unicast Blocking Mask Disable Unknown Unicast Forwarding Here you specify the ports for which the forwarding of unknown unicast frames will be disabled Syntax of the Command Line Interface Table 4 47 Unknown Unicast Blocking Mask CLI SWITCH Command Description Comment blkucast E D ports Enables disable...

Page 168: ...cing the load caused by multicast frames Static entry of the addresses in the multicast filter table Dynamic entry of the addresses by listening in on IGMP parameter assignment packets IGMP Configuration Active dynamic assignment of addresses with GMRP frames The result of all these methods is that multicast frames are sent only to ports for which a corresponding address is entered The Multicast G...

Page 169: ... Static addresses are stored permanently in other words they are not deleted when the aging time expires or when the switch is restarted IGMP The destination port for this address was obtained by IGMP Configuration GMRP The destination port for this address was registered by a received GMRP frame Port List There is a column for each slot Within a column the multicast group to which the port belong...

Page 170: ...ess table The Static Multicast Configuration page opens in which you can make the necessary entries Figure 4 66 Static Multicast Configuration VLAN ID Enter the ID of the VLAN to which the MAC address belongs If nothing is set the VLAN ID 1 is set as the basic setting MAC Address Enter the MAC address you want to add to the address table Slot Port Here select how a port should respond to multicast...

Page 171: ...tination node Current Entries By clicking this button you return to the list of MAC addresses New entry Click this button to create a new entry in the filter table Delete Click this button to delete the displayed entry from the filter table Changing an address entry Click on a MAC address with the static status underscored in the address list to open the Static Multicast Configuration page for thi...

Page 172: ...the multicast group Moreover this address may not be an address learned dynamically with GMRP Examples add 2 01 02 03 04 05 06 m 5 1 5 2 Assigns the MAC address of the VLAN ID 2 and ports 5 1 and 5 2 are members add 3 01 02 03 04 05 06 m Creates an entry for VLAN ID 3 all existing ports are members Administrator only find VLAN ID MAC address Searches for a MAC address in the address table of an IE...

Page 173: ...or not GMRP is used for each individual port If GMRP is disabled for a port no registrations are made for it and it cannot send GMRP frames Figure 4 67 GMRP Configuration Syntax of the Command Line Interface Table 4 49 GMRP Configuration CLI SWITCH MCAST Command Description Comment gmrpport E D ports Enables Disables GMRP functionality for the speci fied ports If you do not specify any ports GMRP ...

Page 174: ...packet This applies to all ports port specific configuration is not possible in this case Figure 4 68 IGMP Configuration IGMP Snooping Aging Time sec Here you enter a time in seconds for the aging time IGMP Querier Enable this option if you want the IE switch to send IGMP queries as well Syntax of the Command Line Interface Table 4 50 IGMP Configuration CLI SWITCH MCAST IGMP Command Description Co...

Page 175: ...an block the forwarding of unknown multicast frames for individual ports Figure 4 69 Unknown Unicast Blocking Mask Disable Unknown Multicast Forwarding Here you specify the ports for which the forwarding of unknown multicast frames will be disabled Syntax of the Command Line Interface Table 4 51 Unknown Multicast Blocking Mask CLI SWITCH Command Description Comment blkbmcast E D ports Enables Disa...

Page 176: ...Broadcast Forwarding Here you specify the ports for which the forwarding of broadcast frames will be disabled Note Some communication protocols work only with the support of broadcast In these cases blocking can lead to loss of data communication Only make entries here when you are sure that you do not need broadcast and explicitly want to avoid it Syntax of the Command Line Interface Table 4 52 B...

Page 177: ...eplugging an end device This means that the switch recognizes whether or not a port assignment is valid more quickly than normally Fast Learning is specified for each port individually Configuration of the ports In the dialog shown below click the relevant check boxes of the ports at which Fast Learning will be enabled Figure 4 71 Configuration for Fast Learning Syntax of the Command Line Interfac...

Page 178: ...ort You can specify the category of frame for which the entered limit values will apply Unicast destination lookup failure Multicast Broadcast Figure 4 72 Load Limits Configuration Port Blocks The ports are assigned to the following port blocks the settings apply to all ports of a port block Port block 1 The ports on slots 6 7 and 11 Port block 2 The ports on slots 9 and 10 Port block 3 No module ...

Page 179: ...t 2 on slot 5 The ports on slots 6 7 and 11 The ports on slots 9 and 10 The ports of an installed extender in other words the ports of slots 12 and 13 of a twisted pair ex tender and the ports 12 through 15 of a media mod ule extender If a parameter blocks is specified the CLI only dis plays the selected values inmode E D E D E D blocks Specifies the ingress limiting mode for ports The three entri...

Page 180: ...entered limit values will apply You can configure by clicking on the relevant entry Figure 4 73 Load Limits Rates Port Displays the slot and the port to which the information relates You can change the configuration by clicking on the relevant entry in the Port column Ingress Limiting Mode Displays the configured frame types to which the limit values for incoming data relate Ingress Limiting Rate ...

Page 181: ...or incoming data relates Unicast destination lookup failure Multicast Broadcast Rate for ingress limiting Here you can select the maximum transfer rate for incoming data from the available values If you select not limited the Ingress Limiting Mode has no effect Mode for the egress limiting Indicates that the transfer rate for outgoing data applies to all frames This field cannot be edited Rate for...

Page 182: ...Sets the limiting mode for port 5 1 to broadcast If only the mode pa rameter is specified the settings are changed for all ports ingress rate ports Specifies the ingress limiting rate for ports The rate parameter can have the following values 128k 256k 512k 1m 2m 4m 8m 16m 32m 64m 128m 256m k stands for kilobits per second and m for megabits per second Example ingress 256k 5 1 6 2 Sets the ingress...

Page 183: ...s types of VLAN Port based VLAN level 2 MAC address based VLAN level 2 IP address based VLAN level 3 An IE switch supports port based VLAN This makes it possible to set parameters for the IE switch or to configure it using GVRP frames How to configure port based VLANs Follow the steps below to configure your VLANs 1 Specify the nodes for the individual VLANs 2 Assign the VLAN ID for each node and ...

Page 184: ...e these frames This basic setting is necessary since it is not always certain whether a node can interpret tagged frames As default an IE switch that supports VLANs has the parameter assignment VLAN identifier 1 default VLAN at all ports Note The VLAN ID 500 is reserved for future use and is already configured If an end node is connected to a port outgoing frames should be sent without a tag stati...

Page 185: ...t first delete the entry and then create it again with the required change included Status Shows the type of entry in the port filter table Here static means that the address was entered as a static address by the user The entry gvrp means that the configuration was registered by a GVRP frame This is however only possible if GVRP was enabled for the IE switch Port Member List Shows the VIDs set fo...

Page 186: ...Page 156 With a new definition all ports have the identifier Link Aggregation Member List Shows the settings of the link aggregation The meaning of the entries is as follows The port is not a member of the link aggregation M Member The port is a member of the link aggregation VLAN configuration Click the New Entry button to specify how frames are sent via ports when working with a VLAN The Static ...

Page 187: ...d The port is a member of the VLAN sent frames do not include a VLAN tag Use U if end devices that do not support VLAN tags are addressed via this port F Forbidden The port is not a member of the VLAN and it is not possible for the VLAN to be registered dynamically at this port over GVRP T Trunk Port The port is automatically a member of all configured VLANs and only sends tagged frames Note If a ...

Page 188: ...nd Description Comment info Shows the currently configured VLANs and their relationship to the ports add VLAN ID option ports Inserts a new VLAN The following abbreviations are available for the op tion parameter The port is not a member of the VLAN m The port is a member of the VLAN frames are sent with a VLAN tag u The port is a member of the VLAN frames are sent without a VLAN tag f The port is...

Page 189: ...received frames This page shows the rules according to which an IE switch handles received frames Figure 4 78 VLAN Port Parameters The five columns of the table show the following information Port This shows the slot and the port to which the following information relates Priority The CoS priority Class of Service used in the VLAN tag If a frame without a tag is received a priority can be assigned...

Page 190: ...d Trunk This specifies whether a port was configured as a trunk port entry enabled or not entry disabled Configuration of a port for VLAN After clicking on one of the entries in the Ports column you change to the page for configuring the port properties for receipt of frames Figure 4 79 VLAN Port Configuration Port This read only box displays the slot and port number to which the information on th...

Page 191: ...ed frames If you disable the option the VLAN configuration that existed prior to enabling the option is restored Syntax of the Command Line Interface Table 4 57 VLAN Port Parameters CLI SWITCH VLAN PORTS Command Description Comment info Displays an overview of the ports and corresponding VLAN settings vid VLAN ID ports Received frames without a VLAN tag at the specified ports are given a VLAN tag ...

Page 192: ...ch You can enable each port for GVRP functionality on the GVRP Configuration page Figure 4 80 GVRP Configuration Enable GVRP If you select an option the IE switch allows the registration of a VLAN by GVRP frames at the relevant port The IE switch can also send GVRP frames via this port Syntax of the Command Line Interface Table 4 58 GVRP Configuration CLI SWITCH VLAN Command Description Comment gv...

Page 193: ...n to all VLANs option for each port Figure 4 81 Learn to all VLANs Config Mask Enable learn to all VLANs If you enable the option for a port a MAC address received at the port is automatically learned in all configured VLANs Syntax of the Command Line Interface Table 4 59 Learn to all VLANs CLI SWITCH VLAN PORTS Command Description Comment lrnallv E D Ports Enables disables the automatic learning ...

Page 194: ...h the following information relates Prio 0 Shows the priority with which frames are sent that were received with priority 0 For port 1 for example the setting was made so that frames received with priority 0 are sent with priority 1 The Prio 1 to Prio 7 columns are read in exactly the same way VLAN Priority Remap Configuration The VLAN Priority Remap Configuration screen appears if you have clicke...

Page 195: ...erface Table 4 60 VLAN Port Priority Mapping CLI SWITCH VLAN PRIO Command Description Comment info Shows the priority with which a port sends received frames remap port 0 7 0 7 Changes the priority of received frames for sending Administrator only reset Resets the priority of received frames The priority when receiving then corresponds to the priority when sending Administrator only vprio VID nofo...

Page 196: ...about alternative routes during normal problem free operation Typical reconfiguration times with spanning tree are between 20 and 30 seconds With rapid spanning tree the reconfiguration times are around one second This was achieved by the following measures Edge Ports A port defined as an edge port is switched active directly following a link up If a spanning tree BPDU is received at an edge port ...

Page 197: ...l devices of a ring using R STP is not possible Since the R STP BPDUs are not forwarded via an MRP or HRP ring this results in circulating frames and the failure of the data traffic compare Impermissible R STP connection to ring redundancy Permitted R STP connection to ring redun dancy Impermissible R STP connection to ring redundancy using passive listening on various devices in the ring If you w...

Page 198: ... the lowest value for this parameter becomes the root bridge If several switches in a network have the same priority the switch whose MAC address has the lowest numeric value will become the root bridge Both parameters bridge priority and MAC address together form the Bridge Identifier Since the root bridge manages all path changes it should be located as centrally as possible due to the delay of ...

Page 199: ...erface Table 4 61 Spanning Tree Configuration CLI SWITCH STP Command Description Comment info Shows the current spanning tree configuration bprio 0 61440 Specifies the bridge priority for the IE switch Administrator only hellotm 1 10 Specifies the interval between two BPDUs in seconds Administrator only fwddelay 4 30 Specifies the delay time for the effectiveness of configu ration information spec...

Page 200: ... is largely based on the transmission speed The higher the achievable transmission speed is the lower the value for Admin Path Cost should be Typical values for path costs with spanning tree 1000 Mbps 4 100 Mbps 19 10 Mbps 100 Typical values for path costs with rapid spanning tree 1000 Mbps 20 000 100 Mbps 200 000 10 Mbps 2 000 000 State Displays the current status of the port The following status...

Page 201: ...kly without taking into account spanning tree frames If a spanning tree frame is received despite this setting the port automatically changes to the no setting for switches P t P There is a point to point link when two RSTP compliant network components are connected together over this port There are 2 possible statuses Yes There is a point to point link No There is not a point to point link Syntax...

Page 202: ...d port R STP enabled Enable this check box if you want the port to use the rapid spanning tree protocol Admin Edge Port Enable this option when there is an end device on this port Otherwise a reconfiguration of the network will be triggered whenever a link to this port is modified Auto Edge Port Enable this option if you want an end device connected to this port to be detected automatically This o...

Page 203: ...nnection and Shared Media Connection are not selected Point to point is detected automatically If the port is set to half duplex a point to point link is not assumed Shared Media Connection is selected Despite a full duplex connection a point to point link is not assumed Point to Point Connection is selected Despite a half duplex connection a point to point link is assumed Note Point to point mean...

Page 204: ...utoedge T F ports Specifies whether at this port it should be automatically detected whether a T End device or a F switch is connected Administrator only ptp A T F ports The point to point link establishes a direct link between two switches In this case you have the following options A The port recognizes a PtP port based on the duplexity If the con nection is full duplex it is assumed to be PtP i...

Page 205: ...anning Tree instances are created for various VLANs This allows the traffic from different logical networks to be routed via different paths Multiple Spanning Tree configuration with an IE switch The Multiple Spanning Tree Configuration screen opens after you click the MSTP folder icon In this screen you can display and set the parameters for the Multiple Spanning Tree Protocol Figure 4 87 Multipl...

Page 206: ... Bridge Address Root Address The Bridge Address display box shows the MAC address of the device The Root Address display box shows the MAC address of the CIST root bridge Root Port The Root Port display box shows the port via which the device communicates with the CIST root bridge Root Cost The Root Cost display box shows the path costs from this device to the CIST root bridge Topology Changes Las...

Page 207: ...nter the number of MSTP nodes that a BPDU can pass through in the Bridge Max Hop Count input box If an MSTP BPDU is received that has a hop count higher than the value configured here it is discarded The default value for this parameter is 20 The following boxes relate to the configuration of the CIST regional root bridge as can be derived from the MSTP frames The displayed data is only visible if...

Page 208: ...ame Region Version and Region Digest must be the same Syntax of the Command Line Interface Table 4 64 Multiple Spanning Tree Configuration CLI SWITCH MSTP Command Description Comment info Shows the current spanning tree configuration bprio 0 61440 Specifies the bridge priority for the IE switch Administrator only hellotm 1 10 Specifies the interval between two BPDUs in seconds Administrator only f...

Page 209: ...gure 4 88 CIST Port Parameters When the page is called the table displays the current status of the configuration of the port parameters The table has the following columns Port The Port column shows the ports to which the information relates STP Status The STP Status column shows whether spanning tree is enabled or disabled for the port Priority The Priority column shows the value of the priority...

Page 210: ... Typical values for path costs with spanning tree 1000 Mbps 4 100 Mbps 19 10 Mbps 100 Typical values for path costs with rapid spanning tree 1000 Mbps 20 000 100 Mbps 200 000 10 Mbps 2 000 000 State The State column shows the current status of the port The following statuses are possible disabled The port only receives and is not involved in STP MSTP and RSTP blocking The port receives BPDUs liste...

Page 211: ...n that is already connected via a different port FWD Transitions The FWD Transitions column shows the number of changes from the listening status to the forwarding status Edge The Edge column shows whether or not an end device is connected to the port With an end device an IE switch can switch over the port faster without taking into account spanning tree frames If a spanning tree frame is receive...

Page 212: ...P You will find the description of the individual page elements and CLI commands in the section Spanning Tree Port Configuration Page 202 Syntax of the Command Line Interface Table 4 65 CIST Port Parameters CLI SWITCH MSTP CISTPORTS Command Description Comment info Shows an overview of the ports and the corre sponding rapid spanning tree settings stpport E D ports Enables disables spanning tree fo...

Page 213: ...he relevant port T End device F Switch If a rapid spanning tree protocol is received the value F is displayed Administrator only ptp A T F ports The point to point link establishes a direct link between two switches Specifies whether or not the relevant port is a PtP port A PtP is detected automatically With full du plex a PtP link is assumed with half duplex no PtP link T Specifies a PtP link eve...

Page 214: ...MSTP Instances Configuration The table has the following columns MSTP Instance ID The MSTP Instance ID display box shows the number of the MSTP instance Root Address The Root Address display box shows the MAC address of the MST instance regional root bridge Root Path Cost The Root Path Cost display box shows the path costs from the device to the MST instance regional root bridge Root Priority The ...

Page 215: ...Bridge Priority input box The value for the bridge priority is an integral multiple of 4096 with a range of values from 0 to 61440 4 Enter the VLAN ID in the VLAN ID input box Here you can also specify ranges with Start ID End ID Several ranges or IDs are separated by Permitted values 1 to 4094 5 To store the settings click the Set Values button 6 To return from Current Entries to the MSTP Instanc...

Page 216: ... Administrator only 4 5 14 4 Multiple Spanning Tree Port Configuration Multiple Spanning Tree Ports The MSTP Ports screen appears if you click the MST Ports submenu In this screen you set the parameters for the ports of the configured Multiple Spanning Tree instances Figure 4 92 MSTP Ports The page contains the following box MSTP Instance ID In the MSTP Instance ID drop down list select the ID of ...

Page 217: ...lt value is 128 Admin Path Cost The Admin Path Cost column shows the value for the path costs to be used Calc Path Cost If the value for Admin Path Cost is 0 this value is adopted as Calculated Path Cost If the value for Admin Path Cost 0 the value for Calculated Path Cost is calculated automatically The calculation of the path costs is largely based on the transmission speed The higher the achiev...

Page 218: ...ely learning the topology in other words the node addresses forwarding Following the reconfiguration time the port is active again in the network it receives and forwards data frames Role The Role column specifies which role the port adopts The following values are possible Root The port has the lowest path costs from the device itself to the regional root bridge of the MST instance Designated Via...

Page 219: ...ce ID The MSTP Instance ID display box shows the MSTP instance ID of the selected port Priority Enter a value for the port priority in the Priority input box Permitted values 0 to 255 Admin Path Cost Here the values for the past costs to be used per port and MST instance can be set manually Calculated Path Cost If the value for Admin Path Cost is 0 this value is adopted as Calculated Path Cost If ...

Page 220: ...ST ID 1 200000000 Specifies the path costs of the port in an instance Administrator only 4 5 15 QoS 4 5 15 1 QoS Configuration QoS Different applications make different demands on networks For pure file transfer the overall throughput is decisive while the individual latency and loss rate is less significant For real time communication for example Voice over IP on the other hand latency jitter and...

Page 221: ...ping The following settings exist only for X 300 IE switches Broadcast Priority Specify the priority with which broadcast frames are sent Agent Priority Specify the priority with which agent frames are sent Scheduling Mode Strict Queueing As long as there are frames with high priority in the queue only these high priority frames are processed Weighted Fair Queueing SCALANCE X 300 only Even if ther...

Page 222: ...rator only bcprio noforce 0 7 Specify the priority with which broadcast frames are sent Administrator only agentprio noforce 0 7 Specify the priority with which agent frames are sent Administrator only sched mode Specifies the scheduling mode Administrator only 4 5 15 2 CoS to Queue Mapping CoS Queue Here CoS priorities are assigned to certain traffic queues Figure 4 95 CoS to Queue Mapping CoS Th...

Page 223: ...SWITCH QOS Command Description Comment cos 0 3 0 7 Assigns CoS priorities to certain traffic queues Parameter 1 Queue Parameter 2 CoS priority Administrator only 4 5 15 3 DSCP to Queue Mapping DSCP Queue Here DSCP settings are assigned to various traffic queues Figure 4 96 DSCP to Queue Mapping DSCP The order of DSCP priorities of the incoming packets Queue The traffic forwarding queue send priori...

Page 224: ...Parameter 1 Queue Parameter 2 DSCP value Administrator only 4 5 16 LLDP Configuration Applications PROFINET uses the LLDP protocol for topology diagnostics In the default setting LLDP is enabled for all ports in other words LLDP frames are sent and received on all ports With this function you have the option of enabling or disabling sending and or receiving per port Figure 4 97 LLDP Configuration ...

Page 225: ...Disabled This port can neither receive nor send LLDP frames Syntax of the Command Line Interface Table 4 71 Current Multicast Groups CLI SWITCH LLDP Command Description Comment info Displays the current LLDP settings lldpport mode ports Changes the LLDP settings for a port If no port is specified all ports are changed The mode parameter can have the following values rx receive only tx send only e ...

Page 226: ...check to establish whether information is being received Regardless of whether the IE switch receives diagnostics information it monitors the received power and compares it with selectable power limits If you connect two IE switches via optical ports with FMP enabled they exchange their diagnostics information This also allows a power loss to be calculated The power loss is also compared with sele...

Page 227: ...ceived power The value can have a tolerance of 3 dB Power loss State To be able to monitor the power loss of the connection the port requires a link to another port with FMP enabled disabled FMP is disabled ok The value for the power loss of the optical link is OK maintenance required Check the link An event is triggered maintenance demanded The link needs to be checked An event is triggered and t...

Page 228: ...available optical ports Fiber Monitoring Protocol FMP enabled Enable or disable FMP Rx Power Maintenance Required Enter the value at which you want to be informed of deterioration of the received power the first time Demanded Enter the value at which you want to be informed of deterioration of the received power the second time Power loss Maintenance Required Enter the value at which you want to b...

Page 229: ...e limits for the received power and the power loss per port rx Received power loss Power loss req First notification dem Second notification port Port for which the settings apply limit Value for the limit in 1 10 dBm received power or 1 10 dB power loss Administrator only enable D E Port Enables disables FMP for the specified port Administrator only Table 4 73 Fiber Monitoring CLI SWITCH FM Comma...

Page 230: ...s DCP is enabled on all ports in other words DCP frames are forwarded at all ports With this option you can disable the sending of these frames per port for example to prevent individual parts of the network from being configured with the PST Tool or to divide the full network into smaller parts for configuration and diagnostics Figure 4 100 DCP Configuration Here you select the ports that will su...

Page 231: ...IP address to this end device To achieve this the IE switch forwards the port number of the end device along with the DHCP request to the DHCP server Specifying the DHCP server IP addresses You can specify up to 4 DHCP server IP addresses for the DHCP relay agent see also the Switch Configuration menu item For every DHCP server you can configure the ports and VLANs for which it is responsible see ...

Page 232: ...CP requests VLANs Enter the number of VLANs in which the port is a member You can enter several individual VLANs as well as VLAN ranges separated by commas e g 1 5 10 12 Relay Agent Remote ID Here you can select whether or not the relay agent uses its IP address from the agent configuration or its MAC address as the remote ID Additional Server Settings Check for Server Reachability If you enable t...

Page 233: ...n Administrator only reachchk E D Enables disables the Check for Server Reachability function Administrator only 4 5 19 2 DHCP Relay Agent Port Configuration DHCP Relay Agent Port Parameters This page displays the currently configured port specific parameters of the DHCP relay agent Figure 4 102 DHCP Relay Agent Port Parameters The three columns of the port table show the following information Por...

Page 234: ...wn here if link aggregations are configured DHCP Server Selection Enable the DHCP servers that will be responsible for the port Neighborhood Detection enabled Enable this option if there should be an attempt to assign DHCP requests to a neighbor before forwarding Only detected Neighbors Enable this option if you only want DHCP requests to be forwarded if they originate from detected neighbors Synt...

Page 235: ... 10 2014 C79000 G8976 C187 22 235 Command Description Comment onlynb E D ports Enables disables the Only detected Neighbors function Administrator only sel S1 S2 S3 S4 all E D ports S1 S2 S3 S4 Enables disables the DHCP server that will be responsible for the port all Enables disables the DHCP servers S1 to S4 Administrator only ...

Page 236: ...devices forward the synchronization frames through the network using the Transparent Clock TC mechanism The connection mechanisms end to end and peer to peer are supported Note PTP is supported only by the following devices of the SCALANCE X300 product line The device X308 2M All devices of the X300 EEC product group All devices of the XR300 product group All devices of the XR300 EEC product group...

Page 237: ...t3 t2 If the time of the slave time deviates from the time of the master by the amount Δt these two calculations still do not provide the actual value for the message delay time ΔD because the send and receive times are based on different reference systems The simplest way to calculate the actual message delay time ΔD is to take the average value ΔD ΔSync ΔDelReq 2 The deviation of the slave clock...

Page 238: ...r sends a peer delay request message to a neighboring node the delay responder and stores the time t0 at which this message was sent The delay responder then immediately sends back a peer delay response message In the correction field of the peer delay response follow up message it enters the time difference between the send time t2 of the peer delay response message and the time t1 when the peer ...

Page 239: ... several switches and end devices the BMC algorithm handles the task of selecting the most precise clock in the network automatically A master slave hierarchy results in which each switch synchronizes itself with the neighboring switch in the direction of the BMC Synchronization mechanisms with boundary clocks If a boundary clock is configured for the delay request response mechanism it sends dela...

Page 240: ... switches can make appropriate entries The slave takes this information into account in the calculation of the message delay time How a transparent clock handles this correction information depends on the delay mechanism that was configured With the delay request response mechanism there is an end to end transparent clock with peer delay mechanism there is a peer to peer transparent clock End to e...

Page 241: ... delay mechanism each device calculates the delay time of a message to the neighboring device for its ports The transparent clock obtains the message delay time L1 to the master the slave obtains the value L2 for the message delay time to the transparent clock The processing of the synchronization message by the transparent clock takes a time of ΔTC The transparent clock enters the sum of L1 and Δ...

Page 242: ...h the network using to the transparent clock mechanism and the correction mechanisms end to end and peer to peer are supported The SCALANCE devices operate as a two step clock They support the use both of one step clocks as well as two step clocks in the network The IEEE 1588v2 standard defines mechanisms with which highly precise time of day synchronization of devices in a network can be achieved...

Page 243: ...opts the function of a transparent clock and forwards PTP messages to other nodes while at the same time making entries in the correction field of the PTP message 1588 Transparent Clock Configuration Figure 4 105 1588 transparent clock Delay Mechanism Specify the delay mechanism the device will work with End to End delay request response mechanism will be used Peer to Peer peer delay mechanism wil...

Page 244: ...about the individual ports Port The port number With modular devices the slot number and port number are displayed separated by a dot If you click on a port number the corresponding page 1588 Transparent Clock Port Configuration is displayed Enabled The port status The following entries are possible disabled The port is not involved in PTP enabled The port processes PTP messages Faulty Flag The er...

Page 245: ...different settings for the ports of a device however the relevant communications partner must support the selected transport mechanism The following settings are possible Ethernet UDP IPv4 Ports If you click this button you change to the Transport Clock Port Parameters page Previous Port and Next Port If you click this button you change directly to the configuration page of the previous or next po...

Page 246: ...in are synchronized PTP messages with a different domain number are discarded Administrator only vlanid VID Specifies the VLAN ID Administrator only vlanprio 0 7 Specifies the VLAN priority Administrator only PORTS Opens the PORTS menu Administrator only CLI SWITCH 1588 TC PORTS Command Description Comment tcport E D ports Enables disables the specified ports A range of ports is specified with a h...

Page 247: ...alog each individual Ethernet port can run independent fault diagnostics on the cable This allows short circuits and cable breaks to be localized Note Please note that this test is permitted only when no data connection is established on the port to be tested Figure 4 108 Cable tester Port The port to be tested is specified here Run Test This button activates the test Pair Displays the pair of wir...

Page 248: ...t link power margins when plastic optical fiber POF is used If polymer cladded fiber PCF is used diagnostics is not possible You can only use POF diagnostics with transceivers capable of diagnostics Devices and modules with transceivers capable of diagnostics have the supplement P in the name Plastic Optical Fiber Management This page shows the diagnostics data for interfaces with plastic FO cable...

Page 249: ...F fiber optic diagnostics The vertical axis shows the available link power margin in dB The measured values only have the required accuracy to be able to show the existing link power margin correctly in the range from 0 dB to 6 dB The horizontal axis shows the time since the IE switch started up relative to the current time of day and the current date Date and time information are adopted from the...

Page 250: ...r margin enters the orange range urgent maintenance is necessary The boundary of the orange area is at a link power margin of 0 dB If the link power margin is in the orange range an event is triggered and the FO LED of the relevant port lights up 4 5 23 3 POF Diagnostics Requirement On this page you run independent error diagnostics for each individual POF port This test is performed without needi...

Page 251: ...e table is structured so that the latest Current the lowest Low and the highest High value is always shown for the following parameters Temperature read only The temperature of the port Voltage read only The voltage applied to the port Current read only The current with which a device connected to this port is supplied Rx Power read only The received power of the port Tx Power read only The transm...

Page 252: ...stics with transceivers capable of diagnostics Devices and modules with transceivers capable of diagnostics have the supplement FM in the name FM Port Diagnostics Port The port to be tested is specified here The following is displayed depending on the selection Name read only The name of the port Model read only The FM transceiver used Serial read only The serial number of the FM transceiver The t...

Page 253: ...53 Current read only The current with which a device connected to this port is supplied Rx Power read only The received power of the port Tx Power read only The transmit power of the port Syntax of the Command Line Interface Table 4 79 SFPDIAGNOSTIC CLI SWITCH PORTDIAG FMDIAG Command Description Comment details port Tests the specified port Administrator only ...

Page 254: ...needing to remove the cable connect a cable tester or install a loopback module at the other end You can only use SFP diagnostics with transceivers capable of diagnostics SFP Port Diagnostics Port The SFP port to be tested is specified here The following is displayed depending on the selection Name read only The name of the SFP port Name read only The name of the SFP transceiver being used Revisio...

Page 255: ...urrent the lowest Low and the highest High value is always shown for the following parameters Temperature read only The temperature of the port Voltage read only The voltage applied to the port Current read only The current with which a device connected to this port is supplied Rx Power read only The received power of the port Tx Power read only The transmit power of the port Syntax of the Command...

Page 256: ...loop is an error in the network structure that needs to be eliminated The loop detection can help to find the errors but does not eliminate them The loop detection is not suitable for increasing network availability by deliberately including loops Enabling the function Note Loop detection is only possible at ports that were not configured as ring ports or standby ports Enabling the function for th...

Page 257: ...omation level via an MRP HRP ring The blocked ports marked red were set to Disable port If a loop occurs in the network at the automation level the loop is detected as a Remote Loop No loop detection frames are forwarded to the network at the enterprise level or to the end device due to the blocked ports If a Local Loop occurs the port is blocked automatically following a specified number of loop ...

Page 258: ...other devices are forwarded VLAN Support Enabled By clicking the check box specify for all ports whether or not loop detection frames are sent out for all VLANs configured at the relevant ports If VLAN support is disabled only loop detection frames without a VLAN tag are sent Rx Threshold All Ports By entering a number specify the number of received loop detection frames as of which a loop is assu...

Page 259: ...ptions from the drop down list No reaction A loop has no effect on the port at which the loop occurs Disable port The port is blocked If you have made a port specific setting see below Variant is displayed Loop Detection Port Control On this page you can see the specific settings of the individual ports Figure 4 113 Loop Detection Port Control To configure a port click on the relevant port number ...

Page 260: ...s create additional network load We recommend that you only configure individual switches for example at branch points of the ring as Sender and the others as Forwarder Port This box shows the number of the selected port Setting Specify how the port handles loop detection frames Select one of the following options from the drop down list Transmitter Loop detection frames are sent out and forwarded...

Page 261: ...t on the port Disable port The port is blocked State This box shows whether loop detection is enabled or disabled for this port Source Port This box shows the receiver port of the loop detection frame that triggered the last reaction Source VLAN This box shows the VLAN ID of the loop detection frame that triggered the last reaction This is only possible if you have selected VLAN Support Enabled on...

Page 262: ...in time A connected partner still sees the status Link up Remote Loop detected on port number Port disabled The device has detected a remote loop The port involved is disabled A connected partner still sees the status Link up Remote Loop detected on port number Port disabled for wait time seconds The device has detected a remote loop The port involved is disabled for a certain time A connected par...

Page 263: ...port numbers will be replaced in the router The most common reason for the use of NAT is that the IP addresses of the devices in the local network should not be visible to the outside Traditional NAT With Traditional NAT connections are only permitted in one direction originating from the local network Traditional NAT distinguishes between the methods Basic NAT and NAPT Network Address Port Transl...

Page 264: ...ossible This results in a higher data throughput for the NAT packets Click on the NAT folder in the menu tree to go to the Network Address Translation window This window shows the current NAT settings Figure 4 115 Network Address Translation NAT enabled Enable or disable the NAT function by clicking the check box NAT VLAN ID In the input box enter the ID of a configured virtual LAN for the global ...

Page 265: ...ng a new entry 1 Click the New Entry button The Basic Network Address Translation Entry window appears 2 In the Local IP box enter the local IP address to be translated 3 In the Global IP box enter the corresponding global IP address 4 Click the Set Values button to save the settings Figure 4 117 Creating a NAT entry Deleting an existing entry 1 Click on an existing IP address in the Basic Network...

Page 266: ... Displays the current NAT settings nat E D Enables disables the NAT function Administrator only config VID IP sub net Specifies the NAT settings VLAN ID IP address and subnet mask Administrator only BASIC Opens the Basic NAT menu item Administrator only Table 4 83 CLI SWITCH NAT BASIC Command Description Comment info Displays the current NAT entries add local IP global IP Creates a new NAT entry A...

Page 267: ...rames This information provides you with an overview of the data traffic and any problems on the network Figure 4 118 Statistics Throughput Octets In Shows the number of received bytes Octets Out Shows the number of sent bytes Frames In Shows the number of received frames Frames Out Shows the number of sent frames Utilization Displays the current port utilization as a percentage If the bus utiliza...

Page 268: ... the incoming frames both correct and bad frames are relevant With the outgoing frames only correct frames are relevant Syntax of the Command Line Interface Table 4 84 Statistics Throughput CLI SWITCH STATS Command Description Comment info Shows statistical information on sent and received frames Administrator only size ports Displays information on the length of the sent and received frames Admin...

Page 269: ...sorted by length The Packet Size Statistic page displays how many frames of which size were received at each port If you click the Reset Counters button you reset the counters for all ports Figure 4 119 Packet Size Statistic If you click on an entry in the Port column the Packet Size Statistics graphic is displayed for the selected port You then see a configurable graphical representation of the c...

Page 270: ...28 255 bytes 256 511 bytes 512 1023 bytes 1024 1518 bytes Figure 4 120 Packet Size Statistic Graphics With the check box in the Packet Size column you decide the content of the graphic The value in the Packets column in the graphic is only displayed for a certain range if the appropriate check box is selected The Percentage column shows the packets in a certain length range as a percentage of the ...

Page 271: ... C79000 G8976 C187 22 271 Syntax of the Command Line Interface Table 4 85 Statistics CLI SWITCH STATS Command Description Comment size ports Shows the number of received frames sorted according to frame length Several ports can also be specified Example size 5 1 6 1 7 2 Shows the lengths of the frames received at ports 5 1 and 6 1 to 7 2 ...

Page 272: ...f you click the Reset Counters button you reset the counters for all ports Figure 4 121 Packet Type Statistic If you click on an entry in the Port column the Packet Type Statistics graphic is displayed for the selected port You then see a configurable graphical representation of the counter value Graphic representation of the statistics This page displays the number of frames received at each port...

Page 273: ... The Percentage column shows the packets of a certain type as a percentage of the total packets for this port When the percentage is calculated frame types are included only if their check boxes are selected With the Previous Port and Next Port buttons you can change to the display of the previous or next port Syntax of the Command Line Interface Table 4 86 Statistics CLI SWITCH STATS Command Desc...

Page 274: ...uished CRC Packets whose content did not match the CRC checksum Undersize Packets with a length less than 64 bytes Oversize Packets with a length greater than 1518 or 1522 bytes for frames with a VLAN tag Fragments Packets with a length less than 64 bytes and a bad CRC checksum Jabbers Packets with a length greater than 1518 or 1522 bytes for frames with a VLAN tag and a bad CRC checksum Collision...

Page 275: ...ror There is a separate element in the graphic for each of the following causes of error CRC Undersize Oversize Jabbers Collisions Figure 4 124 Packet Error Statistic Graphic With the check box in the Packet Error column you decide the content of the graphic The value in the Packets column in the graphic is only displayed for a certain frame type if the appropriate check box is selected The Percen...

Page 276: ... 10 2014 C79000 G8976 C187 22 Syntax of the Command Line Interface Table 4 87 Statistics CLI SWITCH STATS Command Description Comment error ports Shows the number of received frames sorted according to frame errors Several ports can also be specified Example error 5 1 6 1 7 2 Shows the bad frames received at ports 5 1 and 6 1 to 7 2 ...

Page 277: ... device PD Devices for which a high priority was set take preference over other devices for the power supply The overview page shows information on the power supplied by the SCALANCE device with PoE and detailed information on each individual PoE port Figure 4 125 Information on the SCALANCE PoE configuration Maximum Power W read only Maximum power that the SCALANCE provides to supply PoE devices ...

Page 278: ...r supply for this port is enabled Priority Specifies the priority of this port for the power supply The following settings are possible low high critical If the same priority is set for two ports the port with the lower number will be preferred when necessary Type Here you can enter a string to describe the connected device in greater detail The maximum length is 64 characters Voltage V read only ...

Page 279: ...HIGH CRITICAL ports Sets the priority for the power supply for the specified port If no port is specified the value applies to all ports Administrator only type port string Specifies a string describing the connected device in greater detail The maximum length is 64 characters Administrator only manmode E D Enables disables the Manual Power Alloca tion Mode for a port If the Manual Power Allocatio...

Page 280: ...previously defined VLAN You can then enter the static routes and or enable the router protocols RIP or OSPF For information on configuring VLANs refer to the section Current VLAN Configuration menu item 4 7 1 Router Configuration Introduction The Router Configuration screen appears if you click the Router folder icon In this screen you can set up the SCALANCE X414 3E as an IPv4 router To distribut...

Page 281: ...D has been specified Use Hardware The SCALANCE X 414 provides the option of high speed hardware routing Select this check box if you want to enable hardware routing for the default addresses Note If the default route is entered in the hardware this reduces the number of subnets that can be reached using routing to 14 With dynamically learned routes RIP or OSPF the routing mechanism automatically r...

Page 282: ...ton A subnet always relates to a VLAN ID that was created previously in the VLAN dialog Figure 4 128 Router Subnets VID VLAN ID of the IP subnet IP Address IP address of the subnet must be unique Subnet Mask Subnet mask of the IP subnet The ones entered left justified in the bit representation of the subnet mask specify the network ID of the IP address Name Freely selectable name for the subnet Th...

Page 283: ...see the section Current VLAN Configuration menu item via which packets of this IP subnet will be transmitted range of values of the ID 1 to 4094 Note The agent VLAN ID must not be used again All other IDs can be used more than once IP Address Enter the IP address of the IP subnet IP addresses must not be used more than once Note By appending the character and a number between 1 and 30 the subnet c...

Page 284: ...nfo CLI command displays a table analogous to the table in the Web Interface The Status column is however restricted to two characters here St The following statuses are possible see also Web Interface RI RIP OS OSPF st static invalid 4 7 3 Current Routes Routing table The routing table is displayed in this dialog Static routing table entries can also be created here A routing table is generally a...

Page 285: ...g process A name can be entered for static routes If the route is dynamic the name is also set to Dynamic Metric The Metric column displays the distance between router and destination Status The status of a route indicates whether this was generated by the OSPF or RIP protocol as a static route or local Static routes are created manually with the New Entry button Local routes are created automatic...

Page 286: ... of the address are valid for the routing comparison Subnet VLAN ID The subnet VLAN ID is calculated automatically from the next IP address and is empty in new systems Next IP Address Here enter the address of the next router to which the packets of this route will be sent The router must be located in a connected subnet Name Here you enter the name of the route this is no effect on the functional...

Page 287: ...arameter for enabling disabling Use Hardware Administrator only edit IP nextIP E D name Modifies a route E D parameter for enabling disabling Use Hardware Administrator only delete IP Deletes a route Administrator only The info CLI command displays a table analogous to the table in the Web Interface The Metric and Status columns are however restricted to two characters here Me St The following sta...

Page 288: ...ers In this case subnet routes are grouped together in specific classes and so called supernets are not propagated This provides you with the greatest possible compatibility with RIPv1 routers Query Responses Number of a special routing queries responded to Route Changes Number of modifications made in the routing table Redistribute Routes Default Static OSPF Here you can specify which known route...

Page 289: ...isables redistribute routes Parameter 1 default routes Parameter 2 static routes Parameter 3 OSPF routes Administrator only 4 7 5 RIPv2 Interfaces Introduction The RIPv2 Interfaces dialog displays an overview of all IP subnets in which the RIP protocol is used With the New Entry button you can register new subnets for RIP Note Before a subnet can be registered for RIP it must first be created in t...

Page 290: ...olumn displays the form in which received RIP packets will be accepted The following are available no receive No packets are accepted RIPv1 Only packets from RIPv1 routers are accepted RIPv2 Only packets from RIPv2 routers are received and processed RIPv1 v2 All variants of the RIP protocol are accepted on this interface Default Metric This column displays the metric assigned to the default route ...

Page 291: ...gured This IP address must already be configured as an IP subnet Send Updates Here you select how the RIP updates will be sent The update packets contain the routing table of the local system The following are available no send Do not send updates RIPv1 Send RIPv1 updates according to the rules of RFC 1058 RIPv1 compat Send RIPv2 updates according to the rules of RFC 1058 as broadcasts RIPv2 Send ...

Page 292: ...ger packets require to their destination Authentication Type Here select the authentication method of the RIP packets The following options are available none no authentication default simple authentication with password and confirmation MD5 authentication using the Keyed MD5 method password confirmation and key ID These methods are simply used to determine the authenticity of a packet they do not...

Page 293: ...ew interface Possible parameters for SendUpd SV1 RIPv1 SV1C RIPv1 Comp SV1D RIPv1 Dem SV2 RIPv2 SV2D RIPv2 Dem SNO No Send Possible parameters for RecvUpd RV1 RIPv1 RV2 RIPv2 RV1V2 RIPv1 v2 RNO No Receive Administrator only edit IP SendUpd RecvUpd Metric Modifies an interface Possible parameters for SendUpd and RecvUpd as for the add command Administrator only auth IP authtype pass word key id Mod...

Page 294: ...tricted to collective routes that can be determined according to the distant vector algorithm Figure 4 135 OSPFv2 Configuration Router ID Here you set the address of an OSPF interface The IP address must be unique RFC 1583 compatible You only require this setting if you are still using old OSPFv2 routers that are not compatible with RFC 2328 Border Router Displays the border router status If the l...

Page 295: ...this check box only for gateways between different networks border gateways Enabling the Default and Static options in particular can cause problems for example forwarding loops if they are enabled at too many points in the network Syntax of the Command Line Interface Table 4 94 OSPFv2 Configuration CLI ROUTER OSPF Command Description Comment info Displays the current OSPF configuration id IP Sets...

Page 296: ...is area An area ID consists of 4 numbers each between 0 and 255 and it must be unique The area 0 0 0 0 is known as the backbone area The LSDB of this area is synchronized for all routers in an area Area Type Shows the type of the area The following area types are possible Standard Stub NSSA Backbone The backbone area is highlighted here Summary Indicates whether summary LSAs can be generated for t...

Page 297: ...R within this area ASBR Number of reachable autonomous system border routers ASBR in this area Creating a new OSPFv2 area With the New Entry button in the OSPFv2 Areas dialog you can create a new area Figure 4 137 OSPFv2 Area Configuration Area ID Enter the ID of the area here Area Type The following area types exist Standard Stub NSSA Note For the backbone area the selected area type must be Norm...

Page 298: ...is stub area you do not need to activate this option Default Metric Note The Default Metric text box is displayed only when the Stub area type was set Here enter the metric of your default route that will be propagated in the area Syntax of the Command Line Interface Table 4 95 OSPFv2 Areas CLI ROUTER OSPF AREAS Command Description Comment info Displays the current areas add areaID type E D metric...

Page 299: ...orting summary Administrator only delete areaID Deletes an area Administrator only Example The command add 0 0 0 3 Stub d 2 generates a stub area 0 0 0 3 for which no summary LSAs are generated The default route is assigned metric 2 4 7 8 OSPFv2 Area Ranges Overview You can create address ranges in the Area Ranges dialog that allow various address ranges to be grouped when propagating This allows ...

Page 300: ...anges for an area Figure 4 139 OSPFv2 Area Range Configuration Area ID Here enter the ID of the area for which you want to create an address range Subnet Addr Here you enter the address of the network to be grouped Subnet Mask Here you enter the subnet mask of the network to be grouped Advertise Enable this option to propagate the grouped network Syntax of the Command Line Interface Table 4 96 OSP...

Page 301: ...ues can also be monitored in the double page display Click on the or buttons to page backwards and forwards OSPFv2 Interfaces 1st Page Figure 4 140 OSPFv2 Interfaces page 1 IP Address IP address of the configured OSPF interface Area ID Specifies the area that belongs to this interface Interface State Indicates the state of the interface This can be Down Nothing is connected to the interface Waitin...

Page 302: ...isabled The interface is not available for OSPF Metric Path costs of the router on this interface Priority Priority of the router on this interface The priority plays a part in the selection of the designated router on the network The higher the number the higher the priority Trans Delay Estimated time in seconds that a link state update packet requires for transmission On LANs this parameter is n...

Page 303: ...e status Creating a new OSPFv2 interface With the New Entry button in the OSPFv2 Interfaces dialog you can configure a new IP interface for OSPF Note Before an interface can be created as an OSPF interface it must first be created as an IP subnet Note Take particular care when selecting the parameters A correct neighbor neighbor relationship is possible only when identical parameters are configure...

Page 304: ...e time in seconds after which a packet will be transmitted again if no confirmation was received In a LAN the value 5 is normally selected Hello Interval Here you enter the interval in seconds between two Hello packets range of values 1 through 65 535 Router Dead Interval Here enter an interval in seconds after which a router is shown as failed if no further Hello packets are received from it duri...

Page 305: ...e E Enable interface D Disable interface Administrator only edit IP AreaID E D priority Modifies an interface E Enable interface D Disable interface Administrator only timing IP setting value Changes the timing settings of an interface Possible settings TD Trans Delay RI Retrans Interval HI Hello Interval DI Dead Interval Administrator only auth IP authtype pass word Modifies the authentication of...

Page 306: ... the router will have a virtual connection to the neighbor Virt Link State State of the virtual link The following states are possible down The virtual link cannot be used point to point The virtual link can be used Trans Delay Estimated time in seconds that a link state update packet requires for transmission over the virtual link Retrans Interval Interval in seconds after which packets whose rec...

Page 307: ...ation Neighbor Router ID Here you enter the router ID of the partner device at the other end of the virtual link Transit Area ID Here you enter the area ID via which the two partners are connected Transit Delay Here you enter the expected delay in seconds when sending a link update packet range of values 1 through 3600 Retransmission Interval Here you enter the time in seconds after which a packet...

Page 308: ...here with which the password will be used as the key Since the key ID is transferred with the protocol the same key must be stored under the same key ID on all neighboring routers Password Confirmation If authentication uses a password a key is required via MD5 that can be entered here Syntax of the Command Line Interface Table 4 98 OSPFv2 Virtual Links CLI ROUTER OSPF AREAS VLINKS Command Descrip...

Page 309: ...the transit area 0 0 0 2 The remaining parameters are set to the default values 4 7 11 OSPFv2 Neighbors Overview In this dialog you can monitor the OSPF neighbors These include the dynamically detected neighbors in the relevant networks and the configured virtual neighbors Figure 4 145 Current OSPFv2 Neighbors Neighbor IP Address IP address of the neighbor in this network Neighbor Router ID Router...

Page 310: ...a over which the neighbor neighbor relation is maintained The following area types are possible Standard Stub NSSA Priority Router priority of the neighbor This is only significant when selecting the designated router on a network For virtual neighbors this information is irrelevant Hello Suppr Displays suppressed Hello packets to the neighbor This field normally displays no Retrans Queue Length o...

Page 311: ...a It consists of the link state advertisements LSAs The most important data of these LSAs is displayed in this dialog Figure 4 146 OSPFv2 Link State Database Area ID Area ID to which this link state advertisement LSA belongs LS Type Type of LSA This can be Router Network Summary ASBR Autonomous System Border Router Link State ID Unique ID of the LSA Router ID Router that generated this LSA Sequenc...

Page 312: ...ntroduction In the submenus of the VRRP menu you can set the VRRP parameters The VRRP introduces redundancy to the IPv4 network Various IP routers can take over the routing functionality of another router if the actual router fails To allow this several routers in an IP subnet are grouped together to form one virtual router This virtual router is assigned a list of IPv4 addresses for which the rel...

Page 313: ...es configured on this VLAN in the Router Subnets menu are valid addresses Router State The current state of the virtual router is displayed in this column Possible values are Master This router handles the routing functionality for all assigned IP addresses Backup Currently a different router handles the routing functionality is in the Master state The displayed router takes over the redundancy fu...

Page 314: ...dundant routers The higher the priority the earlier the router becomes Master Advert Interval This column shows the interval at which the master router sends its advertisement packets Preempt This column indicates whether a router with higher priority will interrupt a different router with lower priority Creating or changing a virtual router With the New Entry button in the VRRP Virtual Routers di...

Page 315: ...er Advertisement Interval Here you enter the interval in seconds after which a router in the Master state repeats the sending of an advertisement packet Router enabled Here you decide whether the router takes part in the VRRP protocol Router is Master Here you decide whether the router should be in the Master status from the start In this case the primary IP address is added immediately to the rou...

Page 316: ... Introduction In this menu item you can view the redundant IP addresses of the virtual routers Figure 4 149 VRRP Associated IP Addresses VID VLAN ID of the subnet The IP addresses set up for this and all subnet parameters can be found in the Router Subnets menu VRID The ID of the virtual router is displayed in this column This assigned ID must be unique for this VLAN Valid values are 1 through 255...

Page 317: ...ated IP Address Configuration VLAN ID Shows the VLAN on which the configured virtual router is located VR ID Shows the ID of this virtual router Text box 1 Text box 2 Text box 3 Text box 4 Here you enter the redundant IP addresses to be monitored in this virtual router Syntax of the Command Line Interface VRRP CLI ROUTER VRRP ADDR Command Description Comment info Shows the currently monitored IP a...

Page 318: ...ers button Figure 4 151 VRRP Statistics VRID Errors Shows the number of received VRRP packets containing an unsupported VRID Version Errors Shows the number of received VRRP packets containing an invalid version number Checksum Errors Shows the number of received VRRP packets containing an invalid checksum VID VLAN ID of the subnet The IP addresses set up for this and all subnet parameters can be ...

Page 319: ...lue Auth Errors This column shows the number of bad received packets whose authentication type was not type 0 Type 0 is the only acceptable type and means no authentication Note The Auth Errors column is the sum of the MIB objects vrrpStatsInvalidAthType and vrrpStatsAuthTypeMismatch Type Errors This column shows the number of bad received packets whose VRRP was not set correctly Packet Errors Thi...

Page 320: ...uter menu SCALANCE X414 3E SCALANCE X 300 X 400 320 Configuration Manual 10 2014 C79000 G8976 C187 22 Syntax of the Command Line Interface VRRP CLI ROUTER VRRP STAT Command Description Comment About Displays the VRRP statistics resetc Resets the statistics to 0 Administrator only ...

Page 321: ...e the SNMP information from TCP IP networks on the IOPC interface with SNMP Simple Network Management Protocol With the aid of the SNMP OPC server any OPC client systems such as WinCC can now access diagnostic and parameter data of SNMP compliant components Figure 5 1 WinCC example of network diagnostics with the SIMATIC NET SNMP OPC server Non SNMP compliant components can also be included in the...

Page 322: ...support automation siemens com WW view en 22015045 Entry ID 22015045 Standard MIBs A distinction is made between standardized MIBs defined in RFCs and private MIBs Private MIBs contain product specific expansions that are not included in standard MIBs An IE switch supports the following MIBs RFC 1213 MIB II all groups except egp and transmission RFC 2233 Interface MIB conformance group 4 5 6 7 10 ...

Page 323: ...3E only Private MIB For information on the private MIB of the IE switch refer to Appendix B of this manual Access to the private MIB file of an IE switch Follow the steps below to access the private MIB file of an IE switch 1 Open Web Based Management 2 Select the System Save Load HTTP menu item 3 Click on the Save Private MIB button 4 You will be prompted to select a storage location and a name f...

Page 324: ...Configuration and diagnostics over SNMP SCALANCE X 300 X 400 324 Configuration Manual 10 2014 C79000 G8976 C187 22 ...

Page 325: ...to use PROFINET IO Here you can see how you can use the options of PROFINET IO for a connected IE switch In the example it is assumed that a PROFINET IO Controller V2 is already configured with a PROFINET IO chain see also PROFINET IO System Manual Note STEP 7 V5 4 SP5 or a higher version is required Based on the example of a SCALANCE X 400 the following section shows a hardware configuration with...

Page 326: ...Linking IE switches To include the individual IE switches as PN IO devices the IE switch must exist in the module catalog under PROFINET IO Procedure If the devices are not yet included in STEP 7 follow the steps below 1 In the dialog select HW Config Options Install GSD files The following screen appears Figure 6 2 Install GSD files ...

Page 327: ...tion go to the supplied xml file for example GSDML Vx x Siemens 002A SCALANCE_X400 YYYYMMDD xml Y M and D stand for the issue date of the file Figure 6 3 HW Config PROFINET IO inserting a SCALANCE switch 3 Then adopt the file using the Install function The IE switches are now included in the module catalog refer to the module catalog in the following figure ...

Page 328: ...nts SCALANCE X 400 Switches SCALANCE X408 2 Drag the selected SCALANCE to the PROFINET IO system Figure 6 4 HW Config PROFINET IO setting global parameters 5 Click on the 1 SCALANCE icon so that the slots of the IE switch are displayed in the lower part of the screen By double clicking on slot 0 you can set the global parameters of the IE switch substitute module as shown in the figure 6 By double...

Page 329: ...014 C79000 G8976 C187 22 329 7 Click on the slots of the ports to set the port specific parameters Figure 6 5 HW Config 8 Open the Object Properties of the SCALANCE X408 2 dialog in HW Config right click on the Icon Object Properties and enter the name of the PROFINET IO device Click OK to exit the dialog ...

Page 330: ...300 X 400 330 Configuration Manual 10 2014 C79000 G8976 C187 22 9 Select the Station Save and Compile menu command 10 Interconnect the devices over the network and turn on the power supplies of the networked devices Figure 6 6 HW Config assigning PROFINET IO device names ...

Page 331: ...FINET IO devices are also indicated in the Assign device name dialog In this case you should compare the MAC address of the device with the indicated MAC address and select the correct IO device You can also check the assignment visually with the Flashing On Off button all the LEDs of the selected IE switch flash 1 Click on the Assign Name button in the Assign Device Names dialog box The device na...

Page 332: ...spread over two screens Power Supply and CPU For the IE Switch X 300 these settings are made in one screen Power supply monitoring Here you set the parameters of the IE switch relevant to the power supply Redundant power supply Not monitored The failure of one of the two power supplies does not cause an alarm Monitored The failure of one of the two power supplies causes an alarm Figure 6 8 Propert...

Page 333: ...figuration Manual 10 2014 C79000 G8976 C187 22 333 CPU monitoring Here you set the parameters of the IE switch relevant to the CPU module C PLUG Not monitored The C PLUG is not monitored Monitored A C PLUG fault causes an alarm Figure 6 9 Properties CPU with an IE Switch X 400 ...

Page 334: ...400 334 Configuration Manual 10 2014 C79000 G8976 C187 22 Power supply monitoring and CPU monitoring for an IE Switch X 300 The same options are available here as described in the earlier part the chapter Figure 6 10 Properties power supply and CPU for an IE Switch X 300 ...

Page 335: ...figuration Manual 10 2014 C79000 G8976 C187 22 335 Port specific settings Here you can make the settings for the individual ports of the IE switches The following screen shows these settings based on the example of a SCALANCE X408 2 Figure 6 11 Properties RJ 45 Gigabit Ethernet ...

Page 336: ...6 C187 22 Figure 6 12 Properties RJ 45 Gigabit Ethernet port options Settings made during configuration The transmission rate of the port can be set to Autonegotiation or fixed for example at 100 Mbps full duplex Note If you select a fixed speed and duplexity you need to set the check mark for Disable autonegotiation ...

Page 337: ...d X307 2EEC Slot functions of the XR324 4M EEC Slot functions X 300 The IE Switches X 300 have a subslot per switch port in slot 0 Functions that cannot be assigned uniquely to one port are assigned to the device access point slot 0 Slot 0 Subslot 1 Alarms Data records 4 5 Device Access Point DAP Interface connection C PLUG Redundant power supply Subslot 8001 8010 SCALANCE X304 2FE Subslot 8001 80...

Page 338: ...nection C PLUG Redundant power supply Subslot 8001 8004 Alarms IEC Data records IEC Switch port 1 4 Alarm response Port state Slot 1 slot 2 Subslot 8001 8002 Alarms IEC Data records IEC Switch port 5 6 Switch port 7 8 Alarm response Port state Slot functions of the XR324 12M The IE Switch XR324 12M has several slots slot 1 slot 12 each with 2 ports Functions that cannot be specifically assigned to...

Page 339: ...ots each with 2 ports are assigned to slot 1 and slot 4 Functions that cannot be assigned specifically to one port are assigned to the device access point slot 0 Slot 0 Subslot 1 Alarms Data records 4 5 Device Access Point DAP Interface connection C PLUG Redundant power supply Subslot 8001 8016 Alarms IEC Data records IEC Switch port 1 16 Alarm response Port state Slot 1 to slot 4 Subslot 8001 800...

Page 340: ...t by STEP 7 is stored retentively and the port fault mask is reset If you exit DataEX the settings in the fault mask made by STEP 7 are retained and continue to apply even without PROFINET operation Influence of the SELECT SET button during DataEX Pressing the button to set the fault mask has no effect The port LEDs flashing indicates to the user that there has been no change in the fault mask Eff...

Page 341: ...ata designates the minor version Enable_alarms This bit list specifies what is to be monitored If a bit is set this alarm source is enabled Reserved Bit 2 31 C PLUG Bit 1 Red_power Bit 0 0 0 No C PLUG monitoring 0 No monitoring of the redundant power supply 1 Missing or incorrect C PLUG generates alarm 1 Monitoring of the redundant power supply Data record 5 Supplies the current alarm setting for ...

Page 342: ...Bit 1 Power line redundancy Bit 0 0 Information regarding the configuration plug of the network compo nent 0 C PLUG inserted and ok 1 C PLUG not inserted 2 C PLUG inserted but not ok incorrect type 3 C PLUG inserted but not ok checksum error Information regarding the current state of the signaling contact 0 Fault line passive 1 Fault line active This bit provides infor mation about the redun dant ...

Page 343: ...e data designates the minor version Enable_alarms Reserved Bits 1 31 Red_power Bit 0 0 0 No monitoring of the redundant power supply 1 Monitoring of the redundant power supply Data record 11 CPU parameter assignment Structure typedef struct Word BlockType Word BlockLength Byte BlockVersionHigh Byte BlockVersionLow Word Alarm_Mode DWord Alarm_Parameter BlockType 1 Constant BlockLength 6 Constant in...

Page 344: ... of the C PLUG 1 Missing or incorrect C PLUG generates an alarm Data record 12 power supply module status Supplies the current alarm setting for this port Access Read only typedef struct Word BlockType Word BlockLength Byte BlockVersionHigh Byte BlockVersionLow DWord status BlockType 1 Constant BlockLength 6 Constant in device data designates the length without Type Length BlockVersionHigh 1 Const...

Page 345: ...active This bit provides information about the redundant power supply 0 not redundant 1 redundant Data record 13 CPU module status Structure typedef struct Word BlockType Word BlockLength Byte BlockVersionHigh Byte BlockVersionLow DWord PortState byte PortType byte reserved BlockType 1 Constant BlockLength 6 Constant in device data designates the length without Type Length BlockVersionHigh 1 Const...

Page 346: ...t OK checksum error 6 4 Data record 0x802A PDPortDataReal Structure typdef struct Word BlockType Word BlockLength Byte BlockVersionHigh Byte BlockVersionLow Word Padding Word SlotNumber Word SubslotNumber Byte LengthOwnPortID 8 Byte OwnPortID Byte NumberOfPeers Word Padding Byte LengthPeerPortID 8 Byte PeerPortID Byte LengthPeerChassisID 8 Byte PeerChassisID Word Padding DWord LineDelay 6 Byte Pee...

Page 347: ...ion BlockVersionLow Constant 0 designates the minor version SlotNumber Slot number refer to the section Access options via PROFINET IO SubslotNumber Subslot number refer to the section Access options via PROFINET IO LengthOwnPortID Length of the OwnPortID field in bytes OwnPortID ID of the port used NumberOfPeers Number of neighboring ports LengthPeerPortID Length of the PeerPortID field in bytes ...

Page 348: ...hexadecimal Meaning 0x00000000 Reserved 0x00000001 0x7FFFFFFF Cable delay in nanoseconds PeerMACAddress MAC address of the neighboring device MAUType Value hexadecimal Meaning 0x0000 0x0004 Reserved 0x0005 10BASET 0x0006 0x0009 Reserved 0x000A 10BASETXHD 0x000B 10BASETXFD 0x000C 10BASEFLHD 0x000D 10BASEFLFD 0x000F 100BASETXHD 0x0010 100BASETXFD default 0x0011 100BASEFXHD 0x0012 100BASEFXFD 0x0013 ...

Page 349: ...is 01 0E CF 00 02 1F is blocked Bit Value Meaning 0 1 The multicast MAC address 01 0E CF 00 02 00 will be blocked 0 The multicast MAC address 01 0E CF 00 02 00 will not be blocked 1 The multicast MAC address 01 0E CF 00 02 xx will be blocked 0 The multicast MAC address 01 0E CF 00 02 xx will not be blocked 31 1 The multicast MAC address 01 0E CF 00 02 1F will be blocked 0 The multicast MAC address...

Page 350: ...cimal Meaning 0x00 Unknown 0x01 Disabled discard 0x02 Blocked 0x03 Port listening enabled 0x04 Learn 0x05 Forward 0x06 Interrupted 0x07 0xFF Reserved MediaType Value hexadecimal Meaning 0x00 Unknown 0x01 Copper cable 0x02 Fiber optic cable 0x00 Wireless communication 0x04 0xFFFFFFFF Reserved Note You will find further information on the IEC data record in IEC 61158 ...

Page 351: ...artup function in PROFINET applications on the devices involved If you want to use the prioritized startup function then disable MRP in the configuration In the STEP 7 configuration set the role of the relevant device to Not a node in the ring Domain Leave the default entry mrpdomain 1 from the factory settings in the Domain drop down list All devices configured in a ring with MRP must belong to t...

Page 352: ...ing topology select the role of Client Note To ensure problem free operation when using a non Siemens device as the redundancy manager in the ring make sure that you assign the fixed role of Client to all other devices in the ring before you close the ring Otherwise there may be circulating data frames that will cause a failure in the network You want to disable MRP Select the option Not node in t...

Page 353: ...t The following diagnostic interrupts can be generated Wiring or port error Diagnostic interrupts are generated if the following errors occur at the ring ports Connection abort on a ring port A neighbor of the ring port does not support MRP A ring port is connected to a non ring port A ring port is connected to the ring port of another MRP domain Interruption return redundancy manager only If the ...

Page 354: ...dule inserted in slot 1 of this switch The factory settings for mrpdomain 1 specify ports 1 and 2 for MRP so that these two ports need to be made available on the switch by inserting a media module CAUTION Default of the ring ports with XR 324 12M in the STEP 7 project With SCALANCE XR 324 12M the ring ports are set to the first configured ports in the STEP 7 configuration of MRP if mrpdomain 1 is...

Page 355: ...t only be removed or inserted when the power supply to the device is turned off How it works Power is supplied by the end device The C PLUG retains all data permanently when the power is turned off If an empty C PLUG factory settings or deleted with the Clean function is inserted all the configuration data of an IE switch is saved to it automatically when the device starts up Changes to the config...

Page 356: ... of the C PLUG are signaled by the diagnostics mechanisms of the device LEDs WEB based management SNMP and CLI Startup behavior C PLUG IE switch startup 1 not found with internal configuration if it exists or with factory defaults 2 empty with internal configuration immediately copies this automatically to the C PLUG 3 written with own configuration data with C PLUG configuration 4 written with ot...

Page 357: ...ware updates using TFTP refer to the section System Save Load menu item 8 1 3 Firmware updates over FTP Access over the console If an IE switch has an IP address and there is an Ethernet connection to a PC or PG follow the steps below to update the firmware 1 Open a console window and type in the command ftp followed by the IP address of the IE switch Example ftp 192 168 20 54 2 For the login and ...

Page 358: ...E Do not load and update FPGA using boot software XMODEM Do not load and update FPGA using the boot software if you use XMODEM How to start the bootloader mode A PC or PG must be connected to the serial interface of the IE Switch X 400 XR 300 Follow the steps below to change to the bootloader mode 1 Restart the IE switch for example by disconnecting and reconnecting the power 2 While it is restart...

Page 359: ...nformation on this topic in Appendix A 2 Reset the IE Switch X 400 XR 300 Switch to display mode A or display mode D the device automatically switches to display mode A if the SET SEL button is not pressed for longer than one minute Press the SET SEL button for longer than 12 seconds Press any key to stop the bootloader during startup HyperTerminal displays the following message Figure 8 1 HyperTe...

Page 360: ...ng the boot software with an IE Switch X 400 XR 300 SCALANCE X 300 X 400 360 Configuration Manual 10 2014 C79000 G8976 C187 22 5 Select the Transfer Send File menu command HyperTerminal opens the following dialog Figure 8 2 Send File dialog ...

Page 361: ...al displays the following message FlashWrite COMPLETED Restart the device Note During the upload do not interrupt the connection between the PC and IE Switch X 400 XR 300 or turn off the power supply to the IE Switch X 400 XR 300 If the upload is interrupted by a problem on the signal line the device will boot with the old firmware the next time it is started up You will then need to upload the fi...

Page 362: ...ps below to update the firmware Note If a device is in bootloader mode the Ethernet connection must be established via port 1 of the device 1 Open a console window and type in the command ftp followed by the IP address of the IE switch Example ftp 192 168 20 54 2 For both the login and password enter siemens 3 Enter the command put followed by the name of the firmware file Example put V211005 lad ...

Page 363: ...ware via the serial interface of the IE Switch X 400 Entering commands over the Command Line Interface Procedure Follow the steps below to connect a PC to the IE Switch X 400 1 Connect the serial interface of the PC with the serial interface of the IE Switch X 400 with a commercially available null modem cable 2 Select the File New Connection menu command in the HyperTerminal program The Propertie...

Page 364: ... a null modem cable has either a 9 pin or a 24 pin D sub female connector and a 9 pin D sub female connector at the other end The following table shows the pin assignment for both cable variants Figure A 1 Pin assignment table Note With SIMATIC programming devices the serial interface may be a 25 pin female connector In this case use a commercially available gender changer 25 pin male to 25 pin ma...

Page 365: ...E Switch XR 300 with the supplied connecting cable for the diagnostics port 2 Select the File New Connection menu command in the HyperTerminal program The Properties window for a new connection opens 3 Set the following parameters for the connection Bits per second 115200 Data bits 8 Parity None Stop bits 1 Protocol None Pinout of the XR 300 connecting cable for the diagnostics port Note With rack...

Page 366: ...PC attachment at the serial interface of a SCALANCE X300 SCALANCE X 300 X 400 366 Configuration Manual 10 2014 C79000 G8976 C187 22 RJ 11 plug D sub 9 pin female Pin number Assignment Pin number Assignment 8 n c 9 n c ...

Page 367: ... 256 characters is used This value contains a vendor specific identification of the device sysObjectID Read only The address object identifier used to access de vice specific SNMP variables is output here 1 3 6 1 4 1 4196 1 1 5 4 If no private OIDs have been declared the object identifier is 0 0 Here the value 0 is set as default sysUpTime Read only Time since the last reset for example after powe...

Page 368: ...es in the Interface directory Variables Access rights Description ifNumber Read only The number of different interfaces available in the component With a SCALANCE X414 3E the value 68 is out put for this variable 26 physical ports 42 internal virtual ports With a SCALANCE X408 2 the value 17 is output for this variable 8 physical ports 9 internal virtu al ports With a SCALANCE X 300 the value 21 i...

Page 369: ...Number of packages that were not sent because of an error Data type Counter Port Indexes With SNMP you cannot specify port identifiers in the format Slot Port SNMP addresses the ports with interface indexes To change the settings of a port over SNMP use the AG index Changes made using the CLI or WBM can be seen over SNMP only on the AG interfaces If traps are used remember that due to the architec...

Page 370: ...1 2 34603011 51380227 Port 3 3 3 3 3 3 3 3 2 1 34603012 51380228 Port 4 4 4 4 4 4 4 4 2 2 34603013 51380229 Port 5 5 5 5 5 1 1 5 5 5 3 1 34603014 51380230 Port 6 6 6 6 6 1 2 6 6 6 3 2 34603015 51380231 Port 7 7 7 7 7 2 1 7 7 7 4 1 34603016 51380232 Port 8 8 8 8 2 2 8 8 8 4 2 34603017 51380233 Port 9 9 9 9 9 9 5 1 34603018 51380234 Port 10 10 10 10 10 5 2 34603019 51380235 Port 11 11 11 11 6 1 3460...

Page 371: ...030 51380246 Port 22 22 3 2 11 2 34603031 51380247 Port 23 23 4 1 12 1 34603032 51380248 Port 24 4 2 12 2 Table B 4 Port table for SCALANCE X408 2 and X414 3E Interface Index AG AP Port Port name X408 2 X414 3E without extender with electrical ex tender with optical ex tender 34603009 51380225 Port 1 5 1 5 1 5 1 5 1 34603010 51380226 Port 2 5 2 5 2 5 2 5 2 34603011 51380227 Port 3 6 1 6 1 6 1 6 1 ...

Page 372: ...0 4 10 4 10 4 34603023 51380239 Port 15 11 1 11 1 11 1 34603024 51380240 Port 16 11 2 11 2 11 2 34603025 51380241 Port 17 11 3 11 3 11 3 34603026 51380242 Port 18 11 4 11 4 11 4 34603027 51380243 Port 19 12 1 12 1 34603028 51380244 Port 20 12 2 12 2 34603029 51380245 Port 21 12 3 13 1 34603030 51380246 Port 22 12 4 13 2 34603031 51380247 Port 23 13 1 14 1 34603032 51380248 Port 24 13 2 14 2 346030...

Page 373: ...ncy manager The IE switch is not redundancy manager snX300X400RmState Read only Indicates whether the redundancy manager is active or passive Possible values The redundancy manager is passive The IE switch is operating as redundancy manager and has opened the ring in other words the line of IE switches connected to it is operating problem free The Passive status is also shown when the redundancy m...

Page 374: ...e standby status was switched active Data type Counter snBootStrapVersion Read only The firmware version of the bootloader in the format major minor snHwVersion Read only The hardware version of the system in the format major minor snSwVersion Read only The software version of the system snInfoSerialNr Read only The serial number of the product snMacAddressBase Read only The base MAC address of th...

Page 375: ...k whether the end nodes on the network can process this length frame type If this is not the case only frames of the standard length may be sent to these nodes The additional 4 bytes are located in the header of the data packet between the source address and the Ethernet type length field Figure C 1 Structure of a tagged frame The additional bytes contain the tag protocol identifier field and the ...

Page 376: ...sion 111 Reserved The prioritization of the data packets is possible only if there is a queue in the components in which they can buffer data packets with lower priority An IE switch has four parallel queues in which the frames with different priorities can be processed First the frames with the highest priority Strict Priority method are processed This method ensures that the frames with the high...

Page 377: ...for master slave Standby connection established to master slave MAC address on port number Standby partner observer lost connection to master slave MAC address on port number Standby partner observer reconnected to master slave MAC address on port num ber Unsupported version version number for standby protocol detected Unsupported version version number for standby protocol gone Second observer de...

Page 378: ...RM MAC address detected Media module for standby port number miss ing Media module for standby port number detect ed PNIO fault please use STEP 7 for diagnostics PNIO fault gone PNIO connection established PNIO connection terminated Severe module change detected Restart re quired Severe module change reverted DIP switch settings manipulated Redundancy will be started after next restart DIP switch ...

Page 379: ...etection Local loop detected on port number port number is enabled again for loop detec tion Remote loop detected on port number port number is enabled again for loop detec tion Standby partner observer conflicts with active passive state Standby partner observer s state conflict resolved Standby partner observer conflicts with ob server on off configuration Standby partner observer s observer con...

Page 380: ...er IP address IP address TCP port TCP port number No SMTP application found Server IP address IP address TCP port TCP port number SMTP E Mail connection aborted Server IP address IP address Unable to send message to syslog server Please check syslog socket configuration Connected to syslog server SNMP Authentification failure R STP new root bridge detected R STP topology change detected Unable to ...

Page 381: ...user Disabled port lock on ring ports Warning ring ports have different static VLAN configuration Warning ring ports have different VLAN port configuration Warning ring ports have different static multicast configuration Warning ring ports have different load limits configuration Enter fault state port port number enabled for link status monitoring and link down Leave fault state port port number ...

Page 382: ...andby observer function started stopped Standby Take on the master slave role Authentication success Port port number VLAN VLAN ID MAC MAC address Authentication failed Port port number VLAN VLAN ID MAC MAC address Authentication for Guest VLAN Port port number VLAN VLAN ID MAC MAC address PoE Port port number power up Class power class allocated power reserved power mW PoE Port port number power ...

Page 383: ... 307 3BM10 2AA3 6GK5 308 2FL00 2AA3 6GK5 308 2FL10 2AA3 6GK5 308 2FM00 2AA3 6GK5 308 2FM10 2AA3 6GK5 308 2FN00 2AA3 6GK5 308 2FN10 2AA3 6GK5 308 2FP00 2AA3 6GK5 308 2FP10 2AA3 6GK5 310 0BA00 2AA3 6GK5 310 0BA10 2AA3 6GK5 310 0FA00 2AA3 6GK5 310 0FA10 2AA3 6GK5 307 3BM00 2AA3 6GK5 307 3BL00 2AA3 6GK5 307 3BL10 2AA3 6GK5 307 3BM00 2AA3 6GK5 307 3BM10 2AA3 6GK5 308 2FL00 2AA3 6GK5 308 2FL10 2AA3 6GK5...

Page 384: ...K5 310 0FA10 2AA3 6GK5 308 2FM00 2AA3 6GK5 307 3BL00 2AA3 6GK5 307 3BL10 2AA3 6GK5 307 3BM00 2AA3 6GK5 307 3BM10 2AA3 6GK5 308 2FL00 2AA3 6GK5 308 2FL10 2AA3 6GK5 308 2FM00 2AA3 6GK5 308 2FM10 2AA3 6GK5 308 2FN00 2AA3 6GK5 308 2FN10 2AA3 6GK5 308 2FP00 2AA3 6GK5 308 2FP10 2AA3 6GK5 310 0BA00 2AA3 6GK5 310 0BA10 2AA3 6GK5 310 0FA00 2AA3 6GK5 310 0FA10 2AA3 6GK5 308 2FN00 2AA3 6GK5 307 3BL00 2AA3 6G...

Page 385: ...K5 310 0FA10 2AA3 6GK5 310 0BA00 2AA3 6GK5 307 3BL00 2AA3 6GK5 307 3BL10 2AA3 6GK5 307 3BM00 2AA3 6GK5 307 3BM10 2AA3 6GK5 308 2FL00 2AA3 6GK5 308 2FL10 2AA3 6GK5 308 2FM00 2AA3 6GK5 308 2FM10 2AA3 6GK5 308 2FN00 2AA3 6GK5 308 2FN10 2AA3 6GK5 308 2FP00 2AA3 6GK5 308 2FP10 2AA3 6GK5 310 0BA00 2AA3 6GK5 310 0BA10 2AA3 6GK5 310 0FA00 2AA3 6GK5 310 0FA10 2AA3 6GK5 310 0FA00 2AA3 6GK5 307 3BL00 2AA3 6G...

Page 386: ...K5 310 0FA10 2AA3 6GK5 307 3BM10 2AA3 6GK5 307 3BL00 2AA3 6GK5 307 3BL10 2AA3 6GK5 307 3BM00 2AA3 6GK5 307 3BM10 2AA3 6GK5 308 2FL00 2AA3 6GK5 308 2FL10 2AA3 6GK5 308 2FM00 2AA3 6GK5 308 2FM10 2AA3 6GK5 308 2FN00 2AA3 6GK5 308 2FN10 2AA3 6GK5 308 2FP00 2AA3 6GK5 308 2FP10 2AA3 6GK5 310 0BA00 2AA3 6GK5 310 0BA10 2AA3 6GK5 310 0FA00 2AA3 6GK5 310 0FA10 2AA3 6GK5 308 2FL10 2AA3 6GK5 307 3BL00 2AA3 6G...

Page 387: ...K5 310 0FA10 2AA3 6GK5 308 2FN10 2AA3 6GK5 307 3BL00 2AA3 6GK5 307 3BL10 2AA3 6GK5 307 3BM00 2AA3 6GK5 307 3BM10 2AA3 6GK5 308 2FL00 2AA3 6GK5 308 2FL10 2AA3 6GK5 308 2FM00 2AA3 6GK5 308 2FM10 2AA3 6GK5 308 2FN00 2AA3 6GK5 308 2FN10 2AA3 6GK5 308 2FP00 2AA3 6GK5 308 2FP10 2AA3 6GK5 310 0BA00 2AA3 6GK5 310 0BA10 2AA3 6GK5 310 0FA00 2AA3 6GK5 310 0FA10 2AA3 6GK5 308 2FP10 2AA3 6GK5 307 3BL00 2AA3 6G...

Page 388: ...10 2AA3 6GK5 310 0BA00 2AA3 6GK5 310 0BA10 2AA3 6GK5 310 0FA00 2AA3 6GK5 310 0FA10 2AA3 6GK5 310 0FA10 2AA3 6GK5 307 3BL00 2AA3 6GK5 307 3BL10 2AA3 6GK5 307 3BM00 2AA3 6GK5 307 3BM10 2AA3 6GK5 308 2FL00 2AA3 6GK5 308 2FL10 2AA3 6GK5 308 2FM00 2AA3 6GK5 308 2FM10 2AA3 6GK5 308 2FN00 2AA3 6GK5 308 2FN10 2AA3 6GK5 308 2FP00 2AA3 6GK5 308 2FP10 2AA3 6GK5 310 0BA00 2AA3 6GK5 310 0BA10 2AA3 6GK5 310 0FA...

Page 389: ...K5 324 0GG00 1HR2 6GK5 324 0GG00 1AR2 6GK5 324 0GG00 1HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 1CR2 6GK5 324 0GG00 1ER2 6GK5 324 0GG00 2ER2 6GK5 324 0GG00 3ER2 6GK5 324 0GG00 4ER2 6GK5 324 0GG00 5ER2 6GK5 324 4GG00 1ER2 6GK5 324 4GG00 1JR2 6GK5 324 4GG00 2ER2 6GK5 324 4GG00 2JR2 6GK5 324 4GG00 3ER2 6GK5 324 4GG00 3JR2 6GK5 324 4GG00 4ER2 6GK5 324 4GG00 4JR2 6GK5 324 0GG00 3HR2 6G...

Page 390: ...K5 324 0GG00 1CR2 6GK5 324 0GG00 1AR2 6GK5 324 0GG00 1HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 1CR2 6GK5 324 0GG00 1ER2 6GK5 324 0GG00 2ER2 6GK5 324 0GG00 3ER2 6GK5 324 0GG00 4ER2 6GK5 324 0GG00 5ER2 6GK5 324 4GG00 1ER2 6GK5 324 4GG00 1JR2 6GK5 324 4GG00 2ER2 6GK5 324 4GG00 2JR2 6GK5 324 4GG00 3ER2 6GK5 324 4GG00 3JR2 6GK5 324 4GG00 4ER2 6GK5 324 4GG00 4JR2 6GK5 324 0GG00 1ER2 6G...

Page 391: ...K5 324 0GG00 3ER2 6GK5 324 0GG00 1AR2 6GK5 324 0GG00 1HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 1CR2 6GK5 324 0GG00 1ER2 6GK5 324 0GG00 2ER2 6GK5 324 0GG00 3ER2 6GK5 324 0GG00 4ER2 6GK5 324 0GG00 5ER2 6GK5 324 4GG00 1ER2 6GK5 324 4GG00 1JR2 6GK5 324 4GG00 2ER2 6GK5 324 4GG00 2JR2 6GK5 324 4GG00 3ER2 6GK5 324 4GG00 3JR2 6GK5 324 4GG00 4ER2 6GK5 324 4GG00 4JR2 6GK5 324 0GG00 4ER2 6G...

Page 392: ...K5 324 4GG00 1JR2 6GK5 324 4GG00 2ER2 6GK5 324 4GG00 2JR2 6GK5 324 4GG00 3ER2 6GK5 324 4GG00 3JR2 6GK5 324 4GG00 4ER2 6GK5 324 4GG00 4JR2 6GK5 324 4QG00 1AR2 6GK5 324 0GG00 1AR2 6GK5 324 0GG00 1HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 1CR2 6GK5 324 0GG00 1ER2 6GK5 324 0GG00 2ER2 6GK5 324 0GG00 3ER2 6GK5 324 0GG00 4ER2 6GK5 324 0GG00 5ER2 6GK5 324 4QG00 1AR2 6GK5 324 4QG00 1HR2 6G...

Page 393: ...00 3HR2 6GK5 324 4QG00 1CR2 6GK5 324 4GG00 1ER2 6GK5 324 4GG00 1JR2 6GK5 324 4GG00 2ER2 6GK5 324 4GG00 2JR2 6GK5 324 4GG00 3ER2 6GK5 324 4GG00 3JR2 6GK5 324 4GG00 4ER2 6GK5 324 4GG00 4JR2 6GK5 324 4QG00 3AR2 6GK5 324 0GG00 1AR2 6GK5 324 0GG00 1HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 1CR2 6GK5 324 0GG00 1ER2 6GK5 324 0GG00 2ER2 6GK5 324 0GG00 3ER2 6GK5 324 0GG00 4ER2 6GK5 324 0GG...

Page 394: ...00 3HR2 6GK5 324 4QG00 1CR2 6GK5 324 4GG00 1ER2 6GK5 324 4GG00 1JR2 6GK5 324 4GG00 2ER2 6GK5 324 4GG00 2JR2 6GK5 324 4GG00 3ER2 6GK5 324 4GG00 3JR2 6GK5 324 4GG00 4ER2 6GK5 324 4GG00 4JR2 6GK5 324 4QG00 1CR2 6GK5 324 0GG00 1AR2 6GK5 324 0GG00 1HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 1CR2 6GK5 324 0GG00 1ER2 6GK5 324 0GG00 2ER2 6GK5 324 0GG00 3ER2 6GK5 324 0GG00 4ER2 6GK5 324 0GG...

Page 395: ...K5 324 4GG00 1JR2 6GK5 324 0GG00 1AR2 6GK5 324 0GG00 1HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 1CR2 6GK5 324 0GG00 1ER2 6GK5 324 0GG00 2ER2 6GK5 324 0GG00 3ER2 6GK5 324 0GG00 4ER2 6GK5 324 0GG00 5ER2 6GK5 324 4GG00 1ER2 6GK5 324 4GG00 1JR2 6GK5 324 4GG00 2ER2 6GK5 324 4GG00 2JR2 6GK5 324 4GG00 3ER2 6GK5 324 4GG00 3JR2 6GK5 324 4GG00 4ER2 6GK5 324 4GG00 4JR2 6GK5 324 4GG00 2ER2 6G...

Page 396: ...K5 324 4GG00 3ER2 6GK5 324 0GG00 1AR2 6GK5 324 0GG00 1HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 1CR2 6GK5 324 0GG00 1ER2 6GK5 324 0GG00 2ER2 6GK5 324 0GG00 3ER2 6GK5 324 0GG00 4ER2 6GK5 324 0GG00 5ER2 6GK5 324 4GG00 1ER2 6GK5 324 4GG00 1JR2 6GK5 324 4GG00 2ER2 6GK5 324 4GG00 2JR2 6GK5 324 4GG00 3ER2 6GK5 324 4GG00 3JR2 6GK5 324 4GG00 4ER2 6GK5 324 4GG00 4JR2 6GK5 324 4GG00 3JR2 6G...

Page 397: ...00 4JR2 6GK5 324 4GG00 4JR2 6GK5 324 0GG00 1AR2 6GK5 324 0GG00 1HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 3HR2 6GK5 324 0GG00 1CR2 6GK5 324 0GG00 1ER2 6GK5 324 0GG00 2ER2 6GK5 324 0GG00 3ER2 6GK5 324 0GG00 4ER2 6GK5 324 0GG00 5ER2 6GK5 324 4GG00 1ER2 6GK5 324 4GG00 1JR2 6GK5 324 4GG00 2ER2 6GK5 324 4GG00 2JR2 6GK5 324 4GG00 3ER2 6GK5 324 4GG00 3JR2 6GK5 324 4GG00 4ER2 6GK5 324 4GG00 4JR2 6GK5 302 7GD...

Page 398: ...00 4GA3 6GK5 302 7GD00 3EA3 6GK5 302 7GD00 1EA3 6GK5 302 7GD00 2EA3 6GK5 302 7GD00 1GA3 6GK5 302 7GD00 2GA3 6GK5 302 7GD00 3EA3 6GK5 302 7GD00 4EA3 6GK5 302 7GD00 3GA3 6GK5 302 7GD00 4GA3 6GK5 302 7GD00 4EA3 6GK5 302 7GD00 1EA3 6GK5 302 7GD00 2EA3 6GK5 302 7GD00 1GA3 6GK5 302 7GD00 2GA3 6GK5 302 7GD00 3EA3 6GK5 302 7GD00 4EA3 6GK5 302 7GD00 3GA3 6GK5 302 7GD00 4GA3 6GK5 302 7GD00 3GA3 6GK5 302 7GD...

Page 399: ...00 4GA3 6GK5 307 2FD00 1GA3 6GK5 307 2FD00 1EA3 6GK5 307 2FD00 2EA3 6GK5 307 2FD00 1GA3 6GK5 307 2FD00 2GA3 6GK5 307 2FD00 3EA3 6GK5 307 2FD00 4EA3 6GK5 307 2FD00 3GA3 6GK5 307 2FD00 4GA3 6GK5 307 2FD00 2GA3 6GK5 307 2FD00 1EA3 6GK5 307 2FD00 2EA3 6GK5 307 2FD00 1GA3 6GK5 307 2FD00 2GA3 6GK5 307 2FD00 3EA3 6GK5 307 2FD00 4EA3 6GK5 307 2FD00 3GA3 6GK5 307 2FD00 4GA3 6GK5 307 2FD00 3EA3 6GK5 307 2FD...

Page 400: ...00 1EA3 6GK5 307 2FD00 2EA3 6GK5 307 2FD00 1GA3 6GK5 307 2FD00 2GA3 6GK5 307 2FD00 3EA3 6GK5 307 2FD00 4EA3 6GK5 307 2FD00 3GA3 6GK5 307 2FD00 4GA3 6GK5 307 2FD00 4GA3 6GK5 307 2FD00 1EA3 6GK5 307 2FD00 2EA3 6GK5 307 2FD00 1GA3 6GK5 307 2FD00 2GA3 6GK5 307 2FD00 3EA3 6GK5 307 2FD00 4EA3 6GK5 307 2FD00 3GA3 6GK5 307 2FD00 4GA3 6GK5 414 3FC00 2AA2 6GK5 414 3FC10 2AA2 6GK5 414 3FC10 2AA2 6GK5 414 3FC...

Page 401: ...4 CRC 274 D Data rate 12 DCP 90 DCP Read Only 90 Default gateway 44 44 Default Gateway 90 DHCP 16 27 30 90 DHCP Option 82 17 Diagnostics port connecting cable Pin assignment 365 Digital input 110 DLF destination lookup failure 178 E E mail function 15 88 E Mail function 112 Alarm events 112 Line monitoring 112 Enhanced Passive Listening Compatibility 137 Ethernet port 11 Event log table 15 F Fault...

Page 402: ...ing Tree Protocol 214 MSTP instance 216 216 Multicast 168 Multiple Spanning Tree 205 Multiple Spanning Tree Protocol 136 N NCM PC 27 Network access protection complying with the standard IEEE 802 1x 15 NTP 168 NTP Network Time Protocol 121 Null modem cable 11 28 Pin assignment 364 O Observer 73 Operating mode Full duplex 12 12 15 Half duplex 12 15 Out band port 11 27 Oversize 274 Oversize Mode 134...

Page 403: ...MATIC NET glossary 3 Slot function 337 338 338 339 SMTP server 112 SNMP 94 321 SNMP trap 96 SNMPv1 321 SNMPv2 321 SNMPv3 17 321 SNMPv3 users 102 SNTP Simple Network Time Protocol 119 Spanning Tree 14 136 Multiple Spanning Tree 14 205 214 Rapid Spanning Tree 14 196 Standby observer 78 Statistics 267 STEP 7 27 Store and forward 13 STP 136 Subnet mask 26 85 87 SysLog 17 T TELNET 88 TFTP server 48 Tim...

Page 404: ...Index SCALANCE X 300 X 400 404 Configuration Manual 10 2014 C79000 G8976 C187 22 ...

Reviews:

No comments

Related manuals for SCALANCE X-300

Vanguard 3400 Series Installation Manual preview
3400 Series
Brand: Vanguard Pages: 74
NeoGate TG200 User Manual preview
TG200
Brand: NeoGate Pages: 37
Lantronix PremierWave 2050 User Manual preview
PremierWave 2050
Brand: Lantronix Pages: 73
Lantronix EMG 8500 Quick Start Manual preview
EMG 8500
Brand: Lantronix Pages: 2
B+B KNX-GSM Gateway Documentation preview
KNX-GSM Gateway
Brand: B+B Pages: 19
ZyXEL Communications P-660HN-Fx series Quick Start Manual preview
P-660HN-Fx series
Brand: ZyXEL Communications Pages: 12
Sunrise Internet Box 5G 2 Quick Start Manual preview
Internet Box 5G 2
Brand: Sunrise Pages: 5
RFM XG2510HE Hardware And Configuration Manual preview
XG2510HE
Brand: RFM Pages: 31
Hitachi ATW-MBS-02 Instruction Manual preview
ATW-MBS-02
Brand: Hitachi Pages: 18
Hitachi EM-G21 User Manual preview
EM-G21
Brand: Hitachi Pages: 56
Hitachi HC-A16MB Installation And Operation Manual preview
HC-A16MB
Brand: Hitachi Pages: 50
Aaeon UPS-GWS01 User Manual preview
UPS-GWS01
Brand: Aaeon Pages: 20
Telos Zephyr User Manual preview
Zephyr
Brand: Telos Pages: 258
2Wire 3700HGV-B Manual preview
3700HGV-B
Brand: 2Wire Pages: 82
2Wire HomePortal 3700HG Specification preview
HomePortal 3700HG
Brand: 2Wire Pages: 4
tiko Energy Solutions GM-01.0005R06 User Manual preview
GM-01.0005R06
Brand: tiko Energy Solutions Pages: 40
TEKTELIC Communications Kona Mega Gateway Quick Start Manual preview
Kona Mega Gateway
Brand: TEKTELIC Communications Pages: 16
TEKTELIC Communications Kona Macro Gateway User Manual preview
Kona Macro Gateway
Brand: TEKTELIC Communications Pages: 32

Brands by name

Popular brands

Load more brands