manualshive.com logo in svg

SMC Networks SMC8024L2, Management Manual

Share
Download
SMC Networks SMC8024L2 Management Manual Download Page 52

C

ONFIGURING

 

THE

 S

WITCH

44

intrude and possibly gain access to sensitive network data. With IEEE 
802.1X (dot1X), access to all switch ports in a network can be centrally 
controlled from a server, which means that authorized users can use the 
same credentials for authentication from any point within the network.

802.1 X Setting

The IEEE 802.1x standard defines a port-based access control procedure 
that prevents unauthorized access to a network by requiring users to first 
submit credentials for authentication.

Field Attributes

System Setting

Mode

 - Indicates if 802.1x protocol is globally enabled or disabled on the 

switch. 

RADIUS IP

 - Set RADIUS server IP address. 

RADIUS UDP Port

 - Set up UDP Port for the external RADIUS 

server. 

RADIUS Secret

 - Set the secret shared between the switch and the 

RADIUS server. 

Reauthentication Enabled

 - Sets the client to be re-authenticated after 

the interval specified by the Re-authentication Period. Re-authentication 
can be used to detect if a new device is plugged into a switch port. 

Reauthentication Period

 - Sets the time period after which a 

connected client must be re-authenticated. 

EAP timeout 

- The time the switch shall wait for the supplicant 

response before re-transmitting a packet. 

Port Setting

Port

 - The port ID. It can not be changed. 

Admin State

 - Sets the authentication mode to one of the following 

options: 

Auto

 - Requires a dot1x-aware client to be authorized by the 

authentication server. Clients that are not dot1x-aware will be 

Summary of Contents for SMC8024L2

Page 1: ...ver slots Non blocking switching architecture Spanning Tree Protocol Up to eight LACP or static 8 port trunks Layer 2 3 4 CoS support through four priority queues Full support for VLANs IGMP multicast...

Page 2: ......

Page 3: ...38 Tesla Irvine CA 92618 Phone 949 679 8000 TigerSwitch 10 100 1000 Installation Guide From SMC s Tiger line of feature rich workgroup LAN solutions April 2006 Pub 150000022900H...

Page 4: ...ed by implication or otherwise under any patent or patent rights of SMC SMC reserves the right to change specifications at any time without notice Copyright 2006 by SMC Networks Inc 38 Tesla Irvine CA...

Page 5: ...corporates these newer technologies At that point the obsolete product is discontinued and is no longer an Active SMC product A list of discontinued products with their respective dates of discontinua...

Page 6: ...RE LIGHTNING OR OTHER HAZARD LIMITATION OF LIABILITY IN NO EVENT WHETHER BASED IN CONTRACT OR TORT INCLUDING NEGLIGENCE SHALL SMC BE LIABLE FOR INCIDENTAL CONSEQUENTIAL INDIRECT SPECIAL OR PUNITIVE DA...

Page 7: ...Configuration 9 Displaying Status Overview 9 Showing Port Statistics 13 Displaying System Name 16 Setting the Switch s IP Address 17 Configuring the Logon Password 18 Tools 19 Register Product 22 Sta...

Page 8: ...43 Security 47 IGMP Snoop 52 SNMP 55 Troubleshooting 57 Diagnosing Switch Indicators 57 Changing a PC s IP Address 59 Software Specifications 61 Software Features 61 Management Features 62 Standards...

Page 9: ...ts of throughput bandwidth these switches provide the quickest solution to meeting the growing demands on your network Features and Benefits User friendly web management interface Supports Qos Spannin...

Page 10: ...rify that you have a link by checking the front panel LEDs See the Hardware Description on page 2 for more information on the LEDs 3 The default IP address of the switch is 192 168 2 10 and the subnet...

Page 11: ...ateway IP Address for the switch then click on the APPLY button No other configuration changes are required at this stage but it is recommended that you change the administrator s password before logg...

Page 12: ...ssing the switch from a web browser be sure you have first performed the following tasks 1 Configure the switch with a valid IP address subnet mask and default gateway Default 192 168 2 10 255 255 255...

Page 13: ...itch is smcadmin If user input is not detected within five minutes the current session will be terminated Home Page When your web browser connects with the switch s web agent the home page is displaye...

Page 14: ...Internet Options General Temporary Internet Files Settings the setting for item Check for newer versions of stored pages should be Every visit to the page Panel Display The web agent displays an image...

Page 15: ...on 9 Statistics Shows statistics for port interface and RMON 13 SYSTEM 16 Name Shows the name of the switch 16 LAN Settings Sets LAN IP address subnet mask and gateway IP address 17 Password Changes p...

Page 16: ...ng Sets the rate limiting parameters for each Trunk configured on the Switch 32 LACP Setup Sets link aggregation 33 LACP Status Shows the LACP groups status 34 VLANS 33 VLAN Membership Sets VLAN group...

Page 17: ...the switch Address Information Management VLAN ID of the configured VLAN this is set to 1 and cannot be changed all ports on the unit are members of VLAN 1 The management station must always be attach...

Page 18: ...s followed by either fdx for full duplex or hdx for half duplex Flow Control Status Indicates whether flow control is enabled or disabled Autonegotiation Shows if auto negotiation is enabled or disabl...

Page 19: ...CONFIGURATION 11 VLAN Inoformation VLAN ID A number in the range 1 4094 which identifies the VLAN VLAN Member A list of the ports that are members of the VLAN By default all ports are members of VLAN...

Page 20: ...CONFIGURING THE SWITCH 12 Web Click STATUS Overview Figure 3 Switch Information...

Page 21: ...ackets that contained errors preventing them from being deliverable to a higher layer protocol Transmitted Multicast Packets The total number of packets that higher level protocols requested be transm...

Page 22: ...ransmitted Normal Priority Packets The total number of transmitted packets that set as High Priority in the QoS settings RMON Statistics Drop Events The total number of events in which packets were dr...

Page 23: ...ing FCS octets and were otherwise well formed Jabbers The total number of frames received that were longer than 1518 octets excluding framing bits but including FCS octets and had either an FCS or ali...

Page 24: ...SWITCH 16 Web Click STATUS Statistics Figure 4 Port Statistics Displaying System Name You can easily identify the system by displaying the device name Field Attributes Switch Name Name assigned to th...

Page 25: ...exist on another network segment Field Attributes DHCP Enabled Clciik to select the box to enable DHCP default enabled LAN IP Address Address of the VLAN interface that is allowed management access V...

Page 26: ...ccess for all parameters governing the onboard agent You should therefore assign a new administrator password as soon as possible and store it in a safe place Field Attributes Password Specifies the u...

Page 27: ...assword Settings Tools On Tools page you can restore the switch to default settings upgrade the firmware of the switch or restart the switch Restore to Factory Defaults Force the Switch to restore the...

Page 28: ...ile provided by SMC Select Upgrade Firmware from the Tools drop down list then click on the Browse button to select the firmware file Finally press the APPLY button to upgrade the selected Switch firm...

Page 29: ...rom the Tools drop down list then click Upload or Download and then click on the Browse button to select the file Figure 10 Upload Download Configuration Restart Switch Web Click SYSTEM Tools Restart...

Page 30: ...Add Static MAC table After pressing ADD button you will be navigated to a new page to configure the Destination Mask for this MAC entry Only one static MAC address can be added per time Static MAC Add...

Page 31: ...mit byte counter and receive byte counter at the same time Please also note the following restrictions Received Unicast Packets can be enabled after Received Multicast Packets and Received Broadcast P...

Page 32: ...rt Configuration page to manually fix the speed duplex mode and flow control Field Attributes Speed Duplex Allows you to manually set the port speed and duplex mode Flow Control Allows flow control to...

Page 33: ...ic that falls within the rate limit is transmitted while packets that exceed the acceptable amount of traffic are dropped Rate limiting can be applied to individual ports or trunks When an interface i...

Page 34: ...l input bandwidth of the port that can be used before packets are dropped or flow control starts Web Click PORTS Rate Limiting This page enables you to set the rate limiting parameters for each port o...

Page 35: ...for each port Any broadcast packets exceeding the specified threshold will then be dropped Field Attributes Type List the type of traffic which can be rate limited including ICMP Learn Frames Broadcas...

Page 36: ...sing the source port in a completely unobtrusive manner Field Attributes Ports to Mirror Select the ports that you want to mirror from this section of the page A port will be mirrored when the Mirrori...

Page 37: ...ort Mirroring Figure 18 Port Mirroring Cable Diagnostic You can perform cable diagnostics for all ports or selected ports to diagnose any cable faults Short Open etc and feedback a distance to the fau...

Page 38: ...buttons which are used to indicate which trunk if any the port belongs to Field Attributes Port The front panel port number of the port Not a Trunk Member If the radio button in this column is select...

Page 39: ...rship Trunk Configuration Field Attributes Trunk Indicates trunk identification Speed Duplex Allows you to manually set the port speed and duplex mode for all ports in the trunk Flow Control Allows fl...

Page 40: ...unk Indicates trunk identification Trunk Speed Indicates the trunk speed Enable Input Rate Limiting Click to select the box to enable the Input Rate Limiting function Input Limit Enter the desired lim...

Page 41: ...or some ports LACP IEEE 802 3ad Link Aggregation Protocol provides a way to set up aggregation automatically between switc Field Attributes Port The front panel port number of the port This cannot be...

Page 42: ...ate status Aggregation Information Shows aggregation information for each LACP group Field Attributes Aggregation Group The ID number of the LACP group Partner MAC Address The MAC address of link part...

Page 43: ...create and delete VLANs Virtual LANs and to change the VLAN membership and behaviour of individual ports VLANs are powerful but can be difficult to set up properly Each row of the table corresponds t...

Page 44: ...igured for each port on the switch VLAN IDs VLAN membership PVID and Packet Type Note that the ports within a Trunk cannot be configured individually configure the Trunk instead Trunks are labelled T1...

Page 45: ...ed packets Untagged packets will be associated with the VLAN identified by the PVID Tagged packets will be dropped unless the port is a member of the VLAN identified by the VLAN tag in the packet Outg...

Page 46: ...can be classified as High or Normal priority and when the switch is heavily loaded it is the Normal priority packets that are dropped first You can select how traffic is prioritized by using one of th...

Page 47: ...Cs are not usually VLAN aware they do not create VLAN tagged frames As a result this method of prioritization is not ideal when there are a lot of PCs connected to the Switch DSCP Packets are prioriti...

Page 48: ...an be used to detect and disable network loops and to provide backup links between switches bridges or routers This allows the switch to interact with other bridging devices that is an STA compliant s...

Page 49: ...ximum time in seconds a device can wait without receiving a configuration message before attempting to reconfigure That also means the maximum life time for a BPDU frame Number between 6 40 default is...

Page 50: ...athcost on the port Number between 0 200000000 0 means autogenerated pathcost Web Click RSTP Settings Figure 26 Figure 27 RSTP Configuration RSTP Status Overview The RSTP Bridge Overview table has one...

Page 51: ...link is connected to another STP device Protocol Show the running protocol RSTP or STP Port State Show the current port state blocking forwarding learning etc Web Click RSTP Status Figure 28 RSTP Stat...

Page 52: ...et RADIUS server IP address RADIUS UDP Port Set up UDP Port for the external RADIUS server RADIUS Secret Set the secret shared between the switch and the RADIUS server Reauthentication Enabled Sets th...

Page 53: ...tication to whenever the quiet period of the port runs out Force Reinitialize Bypasses the quiet period of the port and enables immediate reauthentication regardless of the status for the quiet period...

Page 54: ...d Attributes Port Statistics Statistics can be viewed on a per port basis Select the port that you want to view here Authenticator counters General statistics for authenticator Backend Authenticator c...

Page 55: ...d access and provide access to the network for either a specific source IP address or a specific subnet The IP Filter Configuration table has one row for each port and five columns Field Attributes Po...

Page 56: ...d IP address and 255 255 255 255 individually by software IP Address Setup IP addresses to allow accessing Frames with IP address outside the allowed range will be dropped IP Mask Setup IP subnet mask...

Page 57: ...hen port security is enabled on a port the switch stops learning new MAC addresses on the specified port when it has reached a configured maximum number Only incoming traffic with source addresses alr...

Page 58: ...c MAC addresses On this switch 24 static MAC address can be configured by System Static MAC Note The MAC addresses already in the address table will be retained and will not age out Any other device t...

Page 59: ...re allowed management access to the switch through the web interface or SNMP The management interfaces are open to all IP addresses by default Once you add an entry to a filter list access to that int...

Page 60: ...namically configures the ports which need to recieve the mulitcast traffic For IGMPV3 basic support for reports only Source Multicast not supported Settings Field Attributes IGMP Snooping Configuratio...

Page 61: ...ing VLAN Configuration VLAN ID The VLAN ID It can not be changed IGMP Snooping Enabled When enabled the port will monitor network traffic to determine which hosts want to receive the multicast traffic...

Page 62: ...ed Show the number of transmitted Query packets Queries received Show the number of received Query packets v1 Reports Show the number of received v1 Report packets v2 Reports Show the number of receiv...

Page 63: ...To communicate with the switch the management station must first submit a valid community string for authentication Field Attributes SNMP Enabled Activate or deactivate SNMP SNMP Trap Destination IP...

Page 64: ...CONFIGURING THE SWITCH 56 Web Click IGMP Snoop Status Figure 36 SNMP Configuration...

Page 65: ...ght after connection is made Probable Causes Switch port network card or cable may be defective Possible Solutions Check that the switch and attached device are both powered on Be sure the network cab...

Page 66: ...he back of the Switch 2 Remove all cables from the front panel ports 3 Connect port 1 to port 2 on the front panel using a standard network cable 4 Reconnect the power cord to the rear of the Switch 5...

Page 67: ...address Then type your intended IP address Subnet mask and Default gateway in the provided text boxes 5 Click OK to save the changes To change the IP address of a Windows XP PC 1 Click Start Control...

Page 68: ...CHANGING A PC S IP ADDRESS 60 Note For users of systems other than Windows 2000 or Windows XP refer to your system documentation for information on changing the PC s IP address...

Page 69: ...full duplex 1000 Mbps at full duplex Flow Control Full Duplex IEEE 802 3 2002 Half Duplex Back pressure Broadcast Storm Control Traffic throttled above a critical threshold Port Mirroring One source p...

Page 70: ...ecedence IP DSCP Multicast Filtering IGMP Snooping Layer 2 Additional Features BOOTP client SNTP Simple Network Time Protocol SNMP Simple Network Management Protocol RMON Remote Monitoring groups 1 2...

Page 71: ...rotocol IEEE 802 1X Port Authentication IEEE 802 3 2002 Ethernet Fast Ethernet Gigabit Ethernet Full duplex flow control Link Aggregation Control Protocol IEEE 802 3ac VLAN tagging DHCP Client RFC 154...

Page 72: ...MIB RFC 2233 Interfaces Evolution MIB RFC 2863 IP Multicasting related MIBs MAU MIB RFC 2668 MIB II RFC 1213 Port Access Entity MIB IEEE 802 1X Port Access Entity Equipment MIB Private MIB RADIUS Aut...

Page 73: ......

Page 74: ...K 44 0 1932 866553 Fax 44 0 118 974 8701 France 33 0 41 38 32 32 Fax 33 0 41 38 01 58 Italy 39 0 335 5708602 Fax 39 02 739 14 17 Benelux 31 33 455 72 88 Fax 31 33 455 73 30 Central Europe 49 0 89 9286...

Reviews:

No comments

Brands by name

Popular brands

Load more brands