manualshive.com logo in svg

Transition Networks S4224, Web User Manual

Share
Download
Transition Networks S4224 Web User Manual Download Page 554

Transition Networks 

                               

     S4224 Web User Guide 

33558 Rev. C 

https://www.transition.com 

Page 554 of 669 

Configure FreeRadius or  for Correct ADMIN Level 

AAA ‘keyword attribute’ 

 

Problem

: When the privilege Levels with the Radius Account to the switch are not sent, you have read-

only access. FreeRadius is sending Privilege Level 5 per the default. (This also applies to  with 

service

=

shell

 and 

priv-lvl

=

x

.)    

Meaning

: If the S4224 does not see these 

attrs

 then it defaults to level 1 (minimal access). The S4224 

can do vendor specific values of Cisco and Zyxel:   

 

 

Vendor-id: 9 (Cisco) Vendor-type: 1 
Vendor-id: 890 (Zyxel) Vendor-type: 3 

 

 

FreeRadius sends a Privilege Level 5 by default. The Keyword or attribute for Transition is vendor_value 

syntax: "

shell:priv-lvl=x

" where x is an integer from 0 to 15. For Extreme it is ‘Extreme-CLI-Authorization’, 

for ADVA DWDM ‘ADVA-ADMIN’, for other vendors, something else (e.g., the config for Extreme 

Switches is 

Extreme-CLI-Authorization

 = 1). 

Recovery

:  

1. The current security privilege setting for the user must be 15. The S4224 range is 1 to 15 (where 15 is 

the highest value / fullest possible access to all S4224 functions).  

2. See “

AAA

 

Configuration

” on page

 

119

 

of the Web User Guide for more information on configuring via 

the web interface. See the “

Security

 

AAA

 commands” section

 

of the CLI Command Reference for more 

information on configuring via the CLI. See the 

Configuration

 > 

Security

 > 

Switch

 > 

Privilege

 

Levels

 

menu path.  See the “

Security Switch Users

” commands section.  

3. This works similarly for  with 

service

=

shell 

and 

priv-lvl

=

x

.  

 

FreeRADIUS includes a RADIUS server, a BSD licensed client library, a PAM library, and an Apache 

module. The word ‘FreeRADIUS’ usually refers to the RADIUS server. FreeRADIUS is the most widely 

deployed RADIUS server in the world, and it is the basis for several commercial offerings. FreeRADIUS 

supplies the AAA needs of many Fortune-500 companies and Tier 1 ISPs. 

 

FreeRADIUS supports a simple processing language in its configuration files, called "un-language". The 

goal of the language is to allow simple policies to be written with minimal effort. Those policies are then 

applied when a request is being processed. Requests are processed through virtual servers (including the 

default one), in the sections titled "authorize", "authenticate", "post-auth", "preacct", "accounting", "pre-

proxy", "post-proxy", and "session".  The keywords for the language are a combination of pre-defined 

keywords and references to loadable module names. Subject to a few limitations, any keyword can 

appear in any context. The language consists of a series of entries, each one with one line. Each entry 

begins with a keyword and entries are organized into lists. The language is processed line by line, from 

the start of the list to the end. Actions are executed per-keyword.  

 

For the FreeRADIUS “RADIUS Attribute List” see

 

http://freeradius.org/rfc/attributes.html

.   

See

 

http://freeradius.org/radiusd/man/unlang.html

 

for the FreeRADIUS “unlang - FreeRADIUS Processing 

un-language” page. The FreeRADIUS Version 2 Documentation page is a

http://freeradius.org/doc/

.   

 

 (and RADIUS) have generally replaced the earlier protocols in more current networks. 

 uses TCP and RADIUS uses UDP; some administrators recommend  because TCP 

is considered more reliable. While RADIUS combines authentication and authorization in a user profile, 

 separates the two operations.  is available from Cisco, shrubbery.net, rubyforge.org 

and others.  

 

Summary of Contents for S4224

Page 1: ...33558 Rev C https www transition com Page 1 of 669 S4224 Managed 10 Gigabit Ethernet Access Aggregation Switch Web User Guide 33558 Rev C...

Page 2: ...7 20 15 Updated to v 2 2 which adds GVRP Service Activation Tests DDMI UDLD PFC and Perf Mon support C 06 5 17 Update LACP Syslog and contact information Add webpage to view and set VLAN names at v2 2...

Page 3: ...34 Pool Setting 36 Configuration DHCP DHCP Snooping 41 Configuration DHCP DHCP Relay 42 S4224 DHCP Configuration Process 44 A At Configuration System IP 44 B At Configuration DHCP 44 Web Interface Scr...

Page 4: ...91 System Configuration 91 Port Configuration 92 NAS Network Access Server Configuration 94 Configuration Security Network NAS 94 NAS System Configuration 95 NAS Port Configuration 97 ACL Ports Config...

Page 5: ...45 Link OAM LOAM Configuration 148 Link OAM Port Settings 149 Link OAM Event Settings 151 Detailed Link OAM Status 153 Loop Protection Configuration 155 Spanning Tree 157 STP RSTP MSTP 157 Bridge Sett...

Page 6: ...218 MEP Instance Data 218 Instance Configuration 218 Peer MEP Configuration 220 MEP Functional Configuration 221 Fault Management 223 Performance Monitoring 231 TLV Configuration 240 TLV Status 240 L...

Page 7: ...ation Ethernet Services 288 Configuration Ethernet Services Ports 289 Configuration Ethernet Services Bandwidth Profiles 290 Configuration Ethernet Services EVCs 293 Configuration Prerequisites 294 Co...

Page 8: ...nfiguration 378 Configuration DDMI General 378 Configuration DDMI Thresholds 378 UDLD Configuration 380 Monitor Main Menu 382 Monitor System Information 382 Monitor System CPU Load 384 Monitor System...

Page 9: ...446 Monitor Security Switch RMON 449 RMON Statistics 449 RMON History 452 RMON Alarm 454 RMON Event 456 Monitor LACP System Status 457 Monitor LACP Port Status 458 Monitor LACP Port Statistics 459 Mo...

Page 10: ...Set 506 Clock Parent Data Set 507 Clock Time Properties Data Set 507 Servo Parameters 508 Filter Parameters 508 Unicast Slave Configuration 509 Monitor MAC Table 512 Monitor VLANs 514 Monitor VLANs VL...

Page 11: ...ting 552 Address Resolution in Windows 7 552 Verify IPv6 Configuration in Windows 7 552 Verify IPv6 Connectivity 552 IPv6 Auto Config Troubleshooting 553 RADIUS Troubleshooting in Windows Server Envir...

Page 12: ...ltiple UNI bundled at the Operator domain 275 Figure 8 Provider Bridge E LINE Service 293 Figure 9 Provider Bridge E LINE Service 293 Figure 10 Color Aware Token Bucket Profile for Bandwidth Profiling...

Page 13: ...uilt into the Web interface A substantial set of technical documents white papers case studies application notes etc are available on the Transition Networks web site at www transition com Note this m...

Page 14: ...nitor lets you view and track the S4224 operating functions See Monitor on page 382 Diagnostics provides access to the full set of S4224 tests and verification functions See Diagnostics Main Menu on p...

Page 15: ...path Logout Display the confirmation message Do you want to log out of the web site Click the OK button to clear the web page message perform a logout and re display the login Username Password screen...

Page 16: ...stratively assigned name for this managed node By convention this is the node s fully qualified domain name A domain name is a text string drawn from the alphabet A Z a z digits 0 9 minus sign No spac...

Page 17: ...rompt will change to include the newly added System Name from to SCENID010 If you enter a space character or other invalid entry and click the Save button the message System Name is not valid Please r...

Page 18: ...selects the active DNS server from configuration in turn if the preferred server does not respond in five attempts The following modes are supported No DNS server No DNS server will be used Configured...

Page 19: ...ues are 0 to 4294967295 seconds DHCPv4 Current Lease For DHCP interfaces with an active lease this column shows the current interface address as provided by the DHCP server IPv4 Address The IPv4 addre...

Page 20: ...er device occupying the same hardware address as the device in the VLAN After making sure the specific link local address is unique on the IPv6 link in use delete and then add the specific IPv6 interf...

Page 21: ...ave Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Messages After you click the Renew button the message Warning When renewing DHCP you may lo...

Page 22: ...e DHCP or give a valid IPv4 or IPv6 network address and netmask Recovery 1 Click the OK button to clear the message 2 Re enter a parameter per the instructions Message A static address is only used if...

Page 23: ...NTP mode operation is enabled the agent forwards NTP messages between the clients and the server when they are not on the same subnet domain Disabled Disable NTP mode operation Server Provide the IPv...

Page 24: ...tion for the Time Zone selections Acronym User can set the acronym of the time zone This is a User configurable acronym to identify the time zone Enter up to 16 alpha numeric characters including _ or...

Page 25: ...lect the ending minute 0 59 Offset Settings Offset Enter the number of minutes to add during Daylight Saving Time Range 1 to 1440 Start Time Settings Month Select the starting month Jan Feb Mar Apr Ma...

Page 26: ...onterrey New GMT 06 00 Guadalajara Mexico City Monterrey Old GMT 06 00 Saskatchewan GMT 05 00 Bogota Lima Quito Rio Branco GMT 05 00 Eastern Time US and Canada GMT 05 00 Indiana East GMT 04 30 Caracas...

Page 27: ...the syslog server does not exist Possible modes are Enabled Enable server mode operation Disabled Disable server mode operation Server Address Sets indicates the IPv4 or IPv6 host address of the syslo...

Page 28: ...2 57 46 977 14 1 1970 01 01T00 31 51 00 00 192 168 1 110 syslog ID11 S4224 24 Input Alarm 2 triggered 192 168 1 110 15 10 09 00 23 647 14 1 1970 01 01T00 31 55 00 00 192 168 1 110 syslog ID12 S4224 24...

Page 29: ...s is very useful to detect faults in network since fiber links can be long FEF is enabled by default and is not a configurable option Configuration Ports Shared Port Configuration Configure the FPGA S...

Page 30: ...ort 100fdx the link is up and operating at 100 Mbps at Full Duplex Down the link is currently down s Shared port lower case s S Active shared port upper case S Configured Link Speed Select any availab...

Page 31: ...will advertise all the supported duplexes if the Duplex is set to Auto Advertise Speed When Speed is set as auto Autonegotiation the port will only advertise the specified speeds Speed10 Speed100 Spee...

Page 32: ...Page 32 of 669 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Refresh Click to refresh the page Any changes made locally will be...

Page 33: ...menu path lets you configure S4224 DHCP Snooping and or DHCP Relay as discussed below Note that you can not access the S4224 by System Name via DHCP DNS Note for DHCP server operation you must also co...

Page 34: ...en you can just input it into either the first or the second VLAN ID or both On the other hand if you want to disable the existing VLAN range then you can follow these steps 1 Click the Add VLAN Range...

Page 35: ...on entry fields The excluded IP address parameters are described below IP Range Define the IP range to be excluded IP addresses The first excluded IP must be smaller than or equal to the second exclud...

Page 36: ...o the configuration page Name Configure the pool name that accepts all printable characters except white space If you want to configure the detail settings you can click the pool name to go into the c...

Page 37: ...ew Pool Click to add a new DHCP pool Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Example Click the linked Name e g DSPC100 below to di...

Page 38: ...on 51 58 and 59 Specify a lease time that allows the client to request a lease time for the IP address If all are 0 s then it means the lease time is infinite Domain Name DHCP option 15 Specify domain...

Page 39: ...ing NIS servers available to the client The Network Information Service NIS maintains and distributes a central directory of user and group information hostnames e mail aliases and other text based ta...

Page 40: ...ast Address 222 333 444 555 must be a valid IP address in dotted decimal notation x y z w where x y z and w are decimal numbers between 0 and 255 The value of NetBIOS name server DSS must be a valid I...

Page 41: ...es the DHCP snooping mode operation Possible modes are Enabled Enable DHCP snooping mode operation When DHCP snooping mode operation is enabled the DHCP request messages will be forwarded to trusted p...

Page 42: ...ers represent the VLAN ID the fifth and sixth characters are the module ID in standalone device it always equal 0 in a stackable device it means switch ID and the last two characters are the port numb...

Page 43: ...ecovery 1 Click the OK button to clear the webpage message 2 Verify the parameter entry See the preceding section for details Message The value of Relay server must be a valid IP address in dotted dec...

Page 44: ...it may make things more complicated if there are other DHCP servers on the network 2 Set up IP Interfaces at Configuration System IP a Click the Add Interface button b Configure the Allowed VLAN range...

Page 45: ...as required 8 Once the server has been configured check Monitor DHCP pages for activity on the server The counters under the Statistics page and the Bindings page allow you to click on each IP address...

Page 46: ...Transition Networks S4224 Web User Guide 33558 Rev C https www transition com Page 46 of 669 B Configuration DHCP Server Pool B Configuration DHCP Server Pool Click on linked Pool Name once added...

Page 47: ...ml for more DHCP options information See the IETF web site for RFC 2132 information at http tools ietf org html rfc2132 and at http www networksorcery com enp rfc rfc4361 txt for RFC 4361 information...

Page 48: ...d by DHCP client to optionally identify the vendor type and configuration of a DHCP client DHCP server will deliver the corresponding option 43 specific information to the client that sends option 60...

Page 49: ...Edit or Delete an existing User Privilege Level Enter the new user s level of access to be allowed This is the privilege level of the user The valid range is 1 15 If the privilege level value is 15 a...

Page 50: ...ame A string identifying the user name that this entry should belong to The allowed string length is 1 to 32 A valid user name can include a combination of letters numbers and underscores Password The...

Page 51: ...access software upload factory defaults etc Privilege Level 10 for a Standard basic user account Privilege level 10 allows read write access Privilege Level 5 for a Guest account By default most grou...

Page 52: ...guration Security Switch Privilege Levels menu path Note this feature only works for web users The Group Name column lists the S4224 main functions including Aggregation DDMI Debug DHCP DHCPv6_Client...

Page 53: ...or status configuration settings Configuration execute read write these users are only allowed to monitor status and make changes to configuration settings Status statistics read only these users are...

Page 54: ...er Guide 33558 Rev C https www transition com Page 54 of 669 Message Must explicitly add case for module ID d Meaning A user privilege level was not defined for a module Recovery 1 Define a privilege...

Page 55: ...e management client for which the configuration below applies console telnet ssh or http Methods Method can be set to one of the following values no Authentication is disabled and login is not possibl...

Page 56: ...od can be set to one of the following values no Command authorization is disabled User is granted access to CLI commands according to his privilege level tacacs Use remote TACACS server s for command...

Page 57: ...tering option does not always work as expected At the default level of 0 all commands are logged as expected After setting the level to 1 which should log commands level 1 and above some level 5 comma...

Page 58: ...orks S4224 Web User Guide 33558 Rev C https www transition com Page 58 of 669 A sample Auth Method config screen is shown below Note that AAA is also configurable from the Configuration Security AAA T...

Page 59: ...yption used by SSH provides confidentiality and integrity of data over an insecure network The goal of SSH was to replace the earlier rlogin TELNET and rsh protocols which did not provide strong authe...

Page 60: ...the HTTPS mode operation The possible modes are Enabled Enable HTTPS mode operation After a change from Disabled to Enabled and a Save you must login in secure mode i e from https 192 168 1 110 Disabl...

Page 61: ...he use of a private key verification takes place in reference to a corresponding public key PassPhrase The pattern is used for encrypting the certification Certificate Upload Possible modes are Web Br...

Page 62: ...C https www transition com Page 62 of 669 Certificate upload via Web Browser No File Selected Certificate upload via Web Browser File Selected Certificate upload via URL valid path format shown in URL...

Page 63: ...tion can not be processed Dynamic memory allocated failure Invalid URL Upload process failure Invalid certificate format HTTPS_ERROR_CERT_TOO_BIG The certificate PEM file size too big HTTPS_CERT_PRESE...

Page 64: ...ion Disabled Disable access management mode operation Delete Click to delete the entry It will be deleted during the next save VLAN ID Indicates the VLAN ID for the access management entry Start IP Ad...

Page 65: ...ote Save each new entry individually Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Messages Message No such field new_vid_1 2 Meaning On...

Page 66: ...nternet Protocol IP OSI Connectionless Network Service CLNS AppleTalk Datagram Delivery Protocol DDP and Novell Internet Packet Exchange IPX SNMPv1 is widely used and is the de facto network managemen...

Page 67: ...which security mechanism is used when handling an SNMP packet Three security models are available SNMPv1 v2c and v3 SNMPv3 introduces the following key features SNMPv3 EngineID SNMPv3 USM User Based...

Page 68: ...to only a subset of the management information in the management domain A view subtree is the set of all MIB object instances which have a common ASN 1 OBJECT IDENTIFIER prefix to their names A family...

Page 69: ...them with a Group you can associate multiple Users with a particular Group With SNMPv3 you can define SNMP views groups and users to provide access control to SNMP devices as shown below Figure 1 SNMP...

Page 70: ...t are repeated separately for more convenient viewing under certain NMS packages SNMP v2 Traps All S4224 SNMP Trap messages conform to SNMPv2 MIB RFC 2573 See the Supported MIBs section on page Error...

Page 71: ...The default is public The field is applicable only when SNMP version is SNMPv1 or SNMPv2c If SNMP version is SNMPv3 the community string will be associated with SNMPv3 communities table It provides m...

Page 72: ...the Engine ID clears deletes all original local users This field is grayed out unless SNMP V3 is selected SNMP Trap Configuration Configure SNMP traps on this page from the Configuration Security Swi...

Page 73: ...st not be greater than 223 Indicates the SNMP trap destination IPv4 address It allows a valid IPv4 address in dotted decimal notation x y z w or a valid hostname A valid hostname is a string drawn fro...

Page 74: ...eros and all F s are not allowed The message Probe Fail displays if the information could not be read This field displays only if the Trap Version parameter is set to SNMP v3 see the Trap Version desc...

Page 75: ...f you select the specific radio button for the SNMP Trap Events Link up Link down and LLDP the port specific table displays Configure the events on a per port basis as required Click the Save button w...

Page 76: ...76 of 669 Messages Message The value of Trap Destination Address is 0 0 0 0 Do you want to proceed anyway Message After saving configuration remember select the correct trap security name Recovery 1...

Page 77: ...ters and the allowed content is ASCII characters from 33 to 126 e g space character not allowed The community string will be treated as the security name and map an SNMPv1 or SNMPv2c community string...

Page 78: ...digits between 10 and 64 but all zeros and all F s are not allowed The SNMPv3 architecture uses the User based Security Model USM for message security and the View based Access Control Model VACM for...

Page 79: ...ntication protocol the allowed string length is 8 to 32 For SHA authentication protocol the allowed string length is 8 to 40 characters The allowed content is ASCII characters from 33 to 126 Privacy P...

Page 80: ...e Add New Entry button to display the new entry edit fields Delete Check to delete the entry It will be deleted during the next save Security Model Indicates sets the security model that this entry sh...

Page 81: ...ry It will be deleted during the next save View Name A string identifying the view name that this entry should belong to The allowed string length is 1 32 and the allowed content is ASCII characters f...

Page 82: ...ou select an existing Group Name Security Model Indicates the security model that this entry should belong to Valid security models are any Any SNMP security model accepted v1 v2c or usm v1 Reserved f...

Page 83: ...of 669 Buttons Add New Entry Click to add a new access entry to the table Add the Group Name Security Model Security Level Read View Name and Write View Name as described above Save Click to save chan...

Page 84: ...e RMON Statistics History Alarm and event data displays at Monitor Security Switch RMON Event RMON Statistics The Configuration Security Switch RMON Statistics menu path displays the RMON Statistics C...

Page 85: ...ange is 1 to 3600 The default value is 1800 seconds Buckets Indicates the maximum data entries associated this History control entry stored in RMON The valid range is 1 to 3600 The default value is 50...

Page 86: ...Entry Click to add a new community entry to the table Enter the ID Data Source Interval Buckets and Buckets Granted parameters Save Click to save changes Reset Click to undo any changes made locally...

Page 87: ...le to be sampled The valid variables are InOctets The total number of octets received on the interface including framing characters InUcastPkts The number of uni cast packets delivered to a higher lay...

Page 88: ...alue is less than the falling threshold RisingOrFalling Trigger alarm when the first value is larger than the rising threshold or less than the falling threshold default Rising Threshold Rising thresh...

Page 89: ...unique Desc Indicates this event the string length is 0 to 127 The default is a null string Type Indicates the notification of the event the valid types are none No logging action is performed log A s...

Page 90: ...Security Switch RMON Event menu path Related RMON RFCs RFC 2819 RMON1 Remote Network Monitoring Management Information Base RFC 4502 RMON2 Remote Network Monitoring Management Information Base Version...

Page 91: ...ayer module the Port Security module which manages MAC addresses learned on the port The Limit Control configuration consists of two sections a system wide and a port wide configuration table System C...

Page 92: ...explained below Port The port number to which the configuration below applies The in the Port column acts as a wild card character which causes the selections in this row to be applied to all other r...

Page 93: ...shown for all actions Limit Reached Indicates that the limit is reached on this port This state can only be shown if Action is set to None or Trap Shutdown Indicates that the port is shut down by the...

Page 94: ...The IEEE802 1X standard defines port based operation but non standard variants overcome security limitations as explained below MAC based authentication allows for authentication of more than one user...

Page 95: ...the Port Security function to secure MAC addresses Single 802 1X Multi 802 1X MAC Based Auth When the NAS module uses the Port Security module to secure MAC addresses the Port Security module needs to...

Page 96: ...hether RADIUS assigned VLAN is enabled on that port When unchecked RADIUS server assigned VLAN is disabled on all ports Guest VLAN Enabled A Guest VLAN is a special VLAN typically with limited network...

Page 97: ...TLS The important thing is that the authenticator the switch doesn t need to know which authentication method the supplicant and the authentication server are using or how many information exchange fr...

Page 98: ...The initial frame any kind of frame sent by a client is snooped by the switch which in turn uses the client s MAC address as both username and password in the subsequent EAP exchange with the RADIUS...

Page 99: ...rship and the Monitor VLANs VLAN Port menu paths These pages show which modules have temporarily overridden the current Port VLAN configuration RADIUS attributes used in identifying a VLAN ID IETF RFC...

Page 100: ...port It can undertake one of the following values Globally Disabled NAS is globally disabled Link Down NAS is globally enabled but there is no link on the port Authorized The port is in Force Authoriz...

Page 101: ...itialize restart enabled The 802 1X Admin State must be set to Authorized for ports that are enabled for Spanning Tree You can disable STP at the port level at Configuration Spanning Tree CIST Port me...

Page 102: ...look at any field in the Layer 2 to Layer 4 headers to make the decision of allowing discarding mirroring logging or even shutdown the port that the frame came through The ACL rule created can be ass...

Page 103: ...Policer ID Select which EVC policer ID to apply on this port The valid values are Disabled or 1 128 Port Redirect Select which port frames are copied on The allowed values are Disabled or a specific...

Page 104: ...f the ACL user module The default value is Enabled Counter A count of the number of frames that match this ACE This is a read only field Buttons Save Click to save changes Reset Click to undo any chan...

Page 105: ...page parameters are explained below Rate Limiter ID The rate limiter ID for the settings contained in the same row The in the Rate Limiter ID column acts as a wild card character which causes the sele...

Page 106: ...ess port Port The ACE will match a specific ingress port Policy Bitmask Indicates the policy number and bitmask of the ACE Frame Type Indicates the frame type of the ACE Possible values are Any The AC...

Page 107: ...led Counter The counter indicates the number of times the ACE was hit by a frame ACE Configuration The AEC Configuration page displays when you click on the plus sign to add a new ACE to the list Each...

Page 108: ...pes are mutually exclusive Any The ACE will match any frame type Ethernet Type The ACE will match Ethernet Type frames Note that an Ethernet Type based ACE will not get matched by IP and ARP frames Th...

Page 109: ...s hit by a frame Modification Buttons You can modify each ACE Access Control Entry in the table using the following buttons Inserts a new ACE before the current row Use this button initially from the...

Page 110: ...an existing ACE row the ACE row edit screen displays to let you edit the above parameters for an existing ACE entry The parameters displayed depend on the config selections For example the config scr...

Page 111: ...rks S4224 Web User Guide 33558 Rev C https www transition com Page 111 of 669 The configuration screen below displays if you select Frame Type ARP The configuration screen below displays if you select...

Page 112: ...ition Networks S4224 Web User Guide 33558 Rev C https www transition com Page 112 of 669 The configuration screen below displays if you select Frame Type IPv6 The various ACL parameters are explained...

Page 113: ...field for entering an SMAC value displays SMAC Value When Specific is selected for the SMAC filter you can enter a specific source MAC address The legal format is xx xx xx xx xx xx or xx xx xx xx xx x...

Page 114: ...y means that no tag priority is specified tag priority is don t care ARP Parameters The ARP parameters can be configured when Frame Type ARP is selected ARP RARP Specify the available ARP RARP opcode...

Page 115: ...d for the target IP filter you can enter a specific target IP address in dotted decimal notation Notice the invalid IP address configuration is acceptable too for example 0 0 0 0 Normally an ACE with...

Page 116: ...parameters will appear These fields are explained later in this section TCP Select TCP to filter IPv4 TCP protocol frames Extra fields for defining TCP parameters will appear These fields are explaine...

Page 117: ...sk fields that appear SIP Address When Host or Network is selected for the source IP filter you can enter a specific SIP address in dotted decimal notation SIP Mask When Network is selected for the so...

Page 118: ...A frame that hits this ACE matches this IPv6 protocol value SIP Filter Specify the source IPv6 filter for this ACE Any No source IPv6 filter is specified Source IPv6 filter is don t care Specific Sour...

Page 119: ...the ICMP filter you can enter a specific ICMP value The allowed range is 0 to 255 A frame that hits this ACE matches this ICMP value ICMP Code Filter Specify the ICMP code filter for this ACE Any No I...

Page 120: ...er for this ACE Any No TCP UDP destination filter is specified TCP UDP destination filter status is don t care Specific If you want to filter a specific TCP UDP destination filter with this ACE you ca...

Page 121: ...lag names used only when filtering TCP urg ack psh rst syn and fin Specify the TCP Push function PSH value for this ACE 0 TCP frames where the PSH field is set must not be able to match this entry 1 T...

Page 122: ...lected for the TCP UDP source filter you can enter a specific TCP UDP source value The allowed range is 0 to 65535 A frame that hits this ACE matches this TCP UDP source value Source Port Range When R...

Page 123: ...erType filter is specified EtherType filter status is don t care Specific If you want to filter a specific EtherType filter with this ACE you can enter a specific EtherType value A field for entering...

Page 124: ...ofile parameters of CIR CBS EIR EBS CM CF with any kind of traffic flow The web interface provides the option of Layer 2 to Layer 4 flows to be associated with a bandwidth profile The flow can be char...

Page 125: ...ess it ensures that the switch does not forward the packet i e the packet is discarded When you configure IP source guard you enable on it on one or more VLANs IP source guard applies its checking rul...

Page 126: ...lid Port Mode Configuration Port The Port column specifies if IP Source Guard is enabled on each port Mode The table specifies if IP Source Guard is enabled on which ports Only when both Global Mode a...

Page 127: ...settings IP Address Enter the allowed Source IP address e g enter 192 168 1 30 IP Mask The IP Mask can be used for calculating the allowed network with IP address A valid IP Mask is a dotted decimal s...

Page 128: ...ample The Static IP Source Guard Table shown below shows four new saved entries The example above has Port 1 with two entries with the same VLAN ID different IP Addresses and different MAC address Por...

Page 129: ...ion feature Port Mode Configuration Specify ARP Inspection is enabled on which ports Only when both Global Mode and Port Mode on a given port are enabled ARP Inspection is enabled on this given port P...

Page 130: ...com Page 130 of 669 Permit Log permitted entries ALL Log all entries Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Translate dy...

Page 131: ...n will update the displayed table starting from that or the closest next VLAN Table match The button will use the next entry of the currently displayed VLAN entry as a basis for the next lookup When t...

Page 132: ...It will be deleted during the next save Port The logical port for the settings VLAN ID The VLAN ID VID for the settings MAC Address Allows Source MAC address in ARP request packets e g enter 00 c0 f2...

Page 133: ...33 of 669 Example The Static ARP Inspection Table shown below shows three saved entries Note that you can create multiple entries and then Save them in one Save operation You can also cut and paste in...

Page 134: ...Table Clicking the Refresh button will update the displayed table starting from that or the closest next Dynamic ARP Inspection Table match In addition the two input fields will upon a Refresh button...

Page 135: ...efresh occurs every 3 seconds Refresh Refreshes the displayed table starting from the input fields Save Click to save changes Reset Click to undo any changes made locally and revert to previously save...

Page 136: ...rovides access control for routers network access servers and other networked computing devices via one or more centralized servers TACACS provides separate authentication authorization and accounting...

Page 137: ...responded after the last retransmit it is considered to be dead Deadtime Deadtime which can be set to a number between 0 to 1440 minutes is the period during which the switch will not send new reques...

Page 138: ...or each RADIUS server and a number of columns which are Delete To delete a RADIUS server entry check this box The entry will be deleted during the next Save Hostname The IP address or hostname of the...

Page 139: ...n 0 to 1440 minutes is the period during which the switch will not send new requests to a server that has failed to respond to a previous request This will stop the switch from continually trying to c...

Page 140: ...Key This optional setting overrides the global key Leaving it blank will use the global key Adding a New Server Click the Add New Server button to add a new TACACS server An empty row is added to the...

Page 141: ...nk aggregation group LAG can be established with individual links being dynamically added or removed This enables bandwidth to be incrementally scaled based on changing requirements A LAG can be quick...

Page 142: ...egation ports can be either consecutive e g Ports 2 4 or non consecutive e g ports 1 3 and 5 Before creating a port aggregation verify that the settings are the same for all ports in the trunk includi...

Page 143: ...ash code contributor TCP UDP Port Number The TCP UDP port number can be used to calculate the destination port for the frame Check to enable the use of the TCP UDP Port Number or uncheck to disable By...

Page 144: ...must match group speed and duplex must be full Half duplex ports are not allowed to join aggregation groups Port joining aggregation must be in the same speed and in full duplex Port speed must be th...

Page 145: ...logical link LACP can be configured in one of two modes active or passive In active mode it will always send frames along the configured links In passive mode however it acts as speak when spoken to a...

Page 146: ...s as a wild card character which causes the selections in this row to be applied to all other rows in the table for which this selection is valid LACP Enabled Controls whether LACP is enabled on this...

Page 147: ...s before sending a LACP packet The default is Fast Prio The Prio controls the priority of the port If the LACP partner wants to form a larger group than is supported by this device then this parameter...

Page 148: ...le the OAM functionality depending on the topology requirements These port based configurations are supported 1 Mode selection active passive 2 OAM Client configuration for Capability Discovery Protoc...

Page 149: ...rmation OAMPDUs as defined by the Discovery process Once the Discovery process completes Active DTEs are permitted to send any OAMPDU while connected to a remote OAM peer entity in Active mode Active...

Page 150: ...oth are enabled the message OAM Error Error while configuring the OAM loopback displays To recover click the browser s Back button and disable either MIB Retrieval Support or Loopback Operation Loopba...

Page 151: ...specified by a time interval Window in order of 1 second This event is generated if the errored frame count is equal to or greater than the specified threshold for that period Period Threshold Errored...

Page 152: ...onds Summary Event must be an integer value from 10 900 and its default value is 60 Error Threshold must be between 0 0xffff and its default value is 1 Buttons The port select box determines which por...

Page 153: ...ceive only Discovery State Displays the port s current state of discovery e g Active state Fault state Peer MAC Address Displays the peer s MAC address or if no peer is available Local and Peer Mode T...

Page 154: ...PDUs Organizational Unique Identification Displays the 24 bit Organizationally Unique Identifier OUI of the vendor if available e g 00 01 c1 PDU Revision It indicates the current revision of the Infor...

Page 155: ...ously if the interface stops receiving BPDUs from its designated port on the segment This transition error can occur with a hardware error on the switch or a software configuration error between the s...

Page 156: ...le Controls whether loop protection is enabled on this S4224 port Action Configures the action to be performed when a loop is detected on a port The valid Actions are Sets the action to be performed w...

Page 157: ...P on all interfaces The Spanning Tree protocols help in creating a loop free bridged network The implementation conforms to the IEEE specs 802 1D for STP 802 1w for RSTP and 802 1s for MSTP The S4224...

Page 158: ...Configuration for each MSTI and the VLANs that belong to that instance is supported The S4224 also supports configuration of enabling disabling BPDU guard path cost for that port restricting topology...

Page 159: ...Hops for MSTI information generated at the boundary of an MSTI region It defines how many bridges a root bridge can distribute its BPDU information to Valid values are 6 to 40 hops The default is 20 h...

Page 160: ...tion Networks S4224 Web User Guide 33558 Rev C https www transition com Page 160 of 669 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved v...

Page 161: ...the VLAN to MSTI mapping Bridges must share the name and revision see below as well as the VLAN to MSTI mapping configuration in order to share spanning trees for MSTIs Intra region Enter a name of up...

Page 162: ...tion Networks S4224 Web User Guide 33558 Rev C https www transition com Page 162 of 669 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved v...

Page 163: ...TI column acts as a wild card character which causes the selections in this row to be applied to all other rows in the table for which this selection is valid Priority Sets the bridge priority Lower n...

Page 164: ...rt types defined RSTP can reconfigure a network much quicker than STP when a change in network topology is detected The two possible selections are Non Edge Point to point port or Edge port If a bridg...

Page 165: ...to be derived from whether BPDUs are received on the port or not The default is automatic edge detection on the bridge port enabled checkbox checked Restricted Role If checked causes the port not to b...

Page 166: ...rmined or forced either true or false Transition to the forwarding state is faster for point to point LANs than for shared media Forced True the port connects to a point to point LAN Forced False the...

Page 167: ...active CIST physical port for each MSTI instance configured on and applicable to the port Select the MSTI instance MST1 MST2 etc from the dropdown and click the Get button to display the specific MST...

Page 168: ...ports are chosen as forwarding ports in favor of higher path cost ports Valid values are 1 to 200 000 000 Priority Controls the port priority This can be used to control the priority of ports having i...

Page 169: ...d rule entries in precedence order The first rule entry has highest priority in lookup while the last rule entry has lowest priority in lookup The IP MultiCast profile is used to deploy the access con...

Page 170: ...en in the selected box This field is not allowed to be selected as none while the Rule Settings Table is committed Address Range The corresponding address range of the selected profile entry This fiel...

Page 171: ...ntry of rule up in the list Moves the current entry of rule down in the list Buttons Add Last Rule Click to add a new rule in the end of the specific profile s rule list Specify the address entry and...

Page 172: ...try Name The name used for indexing the address entry table Each entry has the unique name which is composed of at maximum 16 alphabetic and numeric characters At least one alphabet must be present St...

Page 173: ...9 IPMC Profile Address Entry Example Messages Please input valid IPv4 IPv6 multicast start address for entry name Enter valid starting and ending IPv4 IPv6 Multicast Group Addresses See http www iana...

Page 174: ...Start and End valid IPv4 IPv6 Multicast address Up to 128 address entries could be created Configurable Parameter Allowed Range Default Entry name Up to 16 characters None Start Address A valid Multi...

Page 175: ...riber selects a channel the set top box or PC sends an IGMP MLD report message to Switch A to join the appropriate multicast group address Uplink ports that send and receive multicast data to and from...

Page 176: ...the MVR mode of operation In Dynamic mode MVR allows dynamic MVR membership reports on source ports In Compatible mode MVR membership reports are forbidden on source ports The default is Dynamic mode...

Page 177: ...e by clicking the Role symbol to switch the setting I indicates Inactive S indicates Source R indicates Receiver The default Role is Inactive Immediate Leave Enable the fast leave on the port Multicas...

Page 178: ...ocol is used to manage the membership of Internet Protocol multicast groups IGMP is used by IP hosts and adjacent multicast routers to establish multicast group memberships It is an integral part of t...

Page 179: ...MP messages snooped add a receiver to a group remove a receiver from a group or maintain group membership Basic Configuration From the Configuration IPMC IGMP Snooping Basic Configuration menu path yo...

Page 180: ...IGMPv3 as specified in RFC 4607 In SSM some types of denial of service DoS attack cannot be made by simply sending traffic to a multicast group SSM destination addresses must be in the ranges 232 0 0...

Page 181: ...tion Networks S4224 Web User Guide 33558 Rev C https www transition com Page 181 of 669 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved v...

Page 182: ...currently displayed entry as a basis for the next lookup When the end is reached the text No more entries displays in the table Use the button to start over IGMP Snooping VLAN Table Columns Delete Ch...

Page 183: ...he ability of host nodes to join or leave specific sources in a multicast group PRI Priority of Interface indicates the IGMP control frame priority level generated by the system These values can be us...

Page 184: ...arting from the VLAN input fields Updates the table starting at the first VLAN Table entry the entry with the lowest VLAN ID Updates the table starting with the entry after the last entry currently di...

Page 185: ...ms Port The logical port for the settings Filtering Profile Select the IPMC Profile as the filtering condition for the specific port A summary of the designated profile will be shown by clicking the v...

Page 186: ...d on these mappings When MLD snooping is not running IPv6 multicast packets are broadcast to all devices on Layer 2 With MLD snooping running multicast packets for known IPv6 multicast groups are mult...

Page 187: ...traffic to a multicast address and also expresses interest in receiving traffic from just one specific source sending to that multicast address This keeps the network from having to discover numerous...

Page 188: ...e message Fast leave processing ensures optimal bandwidth management for all hosts on a switched network even when multiple multicast groups are in use simultaneously Fast Leave processing applies to...

Page 189: ...splayed table starting from that or the next closest VLAN Table match The button will use the last entry of the currently displayed entry as a basis for the next lookup When the end is reached the tex...

Page 190: ...ghest default interface priority value is 0 RV The Robustness Variable allows tuning for the expected packet loss on a link The valid range is 1 to 255 default robustness variable value is 2 QI The Qu...

Page 191: ...VLAN Table i e the entry with the lowest VLAN ID Updates the table starting with the entry after the last entry currently displayed Add New MLD VLAN Click to add new MLD VLAN Specify the VID and conf...

Page 192: ...lained below Port The logical port for the settings Filtering Profile Select the IPMC Profile as the filtering condition for the specific port A summary of the designated profile will be shown by clic...

Page 193: ...00 00 0X and GARP 01 80 C2 00 00 2X MAC addresses for the settings contained in the same row L2CP Mode The L2CP mode for the specific port The possible values are Peer Redirect to CPU to allow 18 peer...

Page 194: ...its recipients in a standard Management Information Base MIB making it possible for the information to be accessed by a Network Management System NMS using a management protocol such as the Simple Net...

Page 195: ...between the shutdown frame and a new LLDP initialization Valid values are 1 10 seconds The default is 2 seconds LLDP Interface Configuration Interface The switch interface name of the logical LLDP int...

Page 196: ...ess on a port is disabled the CDP information is not removed immediately but gets removed when the hold time is exceeded Port Descr Optional TLV When checked the port description is included in LLDP i...

Page 197: ...and system integrity issues that can come with inappropriate knowledge of the network policy With this in mind LLDP MED defines an LLDP MED Fast Start interaction between the protocol and the applicat...

Page 198: ...When checked the configured policies for the interface is included in LLDP MED information transmitted Location When checked the configured location information for the switch is included in LLDP MED...

Page 199: ...Location IETF Geopriv Civic Address based Location Configuration Information Civic Address LCI The total number of characters for the combined civic address information must not exceed 250 characters...

Page 200: ...nfo Additional location info e g South Wing Name Name residence and office occupant e g Flemming Jahn Zip code Postal zip code e g 2791 Building Building structure e g Low Library Apartment Unit Apart...

Page 201: ...cy attributes advertised are 1 Layer 2 VLAN ID IEEE 802 1Q 2003 2 Layer 2 priority value IEEE 802 1D 2004 3 Layer 3 Diffserv code point DSCP value IETF RFC 2474 This network policy is potentially adve...

Page 202: ...gged flag below then the L2 priority field is ignored and only the DSCP value has relevance 6 Video Conferencing for use by dedicated Video Conferencing equipment and other similar appliances supporti...

Page 203: ...ve Up to 32 policies are supported Policy Interface Configuration Every interface may advertise a unique set of network policies or different attributes for the same network policies based on the auth...

Page 204: ...revertive mode i e when the Working instance has been restored whether there should be a Protection switch to use the Working instance again or whether to continue using the Protecting instance You ca...

Page 205: ...sport entity is used to protect the normal traffic signal At the head end the bridge is not established until a protection switch is required 1 1 protection is usually provisioned as revertive operati...

Page 206: ...reen above the EPS ID 2 configuration screen displays This screen lets you configure the EPS Instance Data Instance Configuration and Instance Command parameters as well as display the current Instanc...

Page 207: ...n the case of intermittent defects Operationally in revertive mode in conditions where working traffic is being received via the protection entity if local protection switching requests have been prev...

Page 208: ...zed If both the local state and far end state are NR with the requested signal number 1 the local state transits to WTR only when the previous local state is SF Otherwise the local state transits to N...

Page 209: ...ting flow when one EPS switches to protecting flow the other EPS is enforces this command Forced Switch Forced switch to protecting This forces normal traffic signal to be selected A Forced switch ove...

Page 210: ...f working flow is ok SF State of working flow is Signal Fail SD State of working flow is Signal Degrade for future use P Flow Displays Protection flow status of OK SF or SD where OK State of protectin...

Page 211: ...d for monitoring the working and protection transport entities See the SOAM MEP Configuration section below for more information EPS Port Protection Parameter Summary An Ethernet Protection switching...

Page 212: ...owever there are two points to consider when setting up redundancy Strict pair redundancy reduces the actual number of usable ports to n 2 which may not be the best use of available resources The prob...

Page 213: ...levels are required in every application The figure above shows pairs of MEPs and MIPs that may communicate across the OAM domains discussed above The figure also shows the hierarchical relationship...

Page 214: ...ction of a flow 6 Loss Measurement is done between MEPs only There can only be two MEPs in the group this is a flow point to point functionality Both the near end and the far end loss can be calculate...

Page 215: ...MEP Click on the ID of a MEP to enter the configuration page see description below Domain Port This is a MEP in the Port Domain Evc This is a MEP in the EVC Domain Flow Instance is an EVC The EVC mus...

Page 216: ...ovider role and Operator role is somewhat arbitrary since those terms imply business relationships that cannot be standardized For example a subscriber or customer may also be an Operator seeking a se...

Page 217: ...sidence Port 1 number of ports 1 Level 0 7 0 Flow Instance 1 128 1 Tagged VID 0 4094 0 This MAC e g 00 C0 F2 56 1A 91 or Not Available Alarm Up green dot or Down red dot Messages Warning The configura...

Page 218: ...creen displays This page lets you configure the MEP Instance Data Instance Configuration and Functional Configuration parameters Here you can add a new peer MEP and configure Fault Management and or P...

Page 219: ...16 characters MEG Id This is either ITU MEG ID or IEEE Short MA Name depending on Format See Format For ITU ICC format this must be 13 characters e g ICC000MEG0000 For ITU CC ICC format this must be 1...

Page 220: ...this MAC is used to create hardware checking of receiving CCM PDU LOC detection from this MEP cLOC Fault Cause indicating that no CCM has been received in 3 5 periods from this peer MEP cRDI Fault Cau...

Page 221: ...s always transmitted as Multi cast Class 1 Priority The priority to be inserted as PCP bits in TAG if any In case of enable of Continuity Check and Loss Measurement both implemented on SW based CCM Pr...

Page 222: ...elow The R APS PDU is always transmitted with multi cast MAC described in G 8032 Type R APS APS PDU is transmitted as R APS this is for ERPS Automatic Protection Switching Protocol Data Unit transmitt...

Page 223: ...ion com Page 223 of 669 Fault Management Click the Fault Management button to view and configure the Fault Management FM of the current MEP Instance Note that after a system reboot the MEP PM and FM b...

Page 224: ...of LBM PDU transmitted unicast or multi cast The unicast MAC will be configured through Peer MEP or Unicast Peer MAC Towards MIP only unicast Loop Back is possible Select Uni or Multi Peer MEP This i...

Page 225: ...LTM PDU is always transmitted as Multi cast Class 2 Linktrace Messages LTMs and Linktrace Replies LTRs are used to track the path hop by hop to a unicast destination MAC address At the request of the...

Page 226: ...mented as if forwarded The valid LT TTL range is 0 255 Mode Indicates if it was a MEP MIP sending this LTR Direction Indicates if MEP MIP sending this LTR is ingress egress Forwarded Indicating if MEP...

Page 227: ...eports such errors Enable Test Signal based on transmitting TST PDU can be enabled or disabled here Dei The DEI to be inserted as PCP bits in Tag if any Priority The priority to be inserted as PCP bit...

Page 228: ...ved TST frames since the last Clear RX rate The current received TST frame bit rate in 100 Kbps This is calculated on a 1 second basis starting when first TST frame is received after Clear The frame s...

Page 229: ...domain Instance Client layer flow instance numbers Level Client layer level AIS and LCK PDU transmitted in this client layer flow will be on this level AIS prio The priority to be used when transmitti...

Page 230: ...auses the first three AIS PDUs to be transmitted as fast as possible in case of using this for protection in the end point LOCK The Ethernet Locked Signal ETH LCK is used to block reaction to a fault...

Page 231: ...d FM become disabled Service provider SLAs depend on the ability to measure and monitor performance metrics for packet loss and one way and two way delay plus related metrics such as delay variation T...

Page 232: ...if any In case of enable of Continuity Check and Loss Measurement both implemented on SW based CCM Priority must be the same for both Frame rate Select the frame rate of CCM LMM PDU This is the invers...

Page 233: ...on which the LM is based Rx The receive count on which the LM is based Near End Loss Count The accumulated near end frame loss count since the last Clear Far End Loss Count The accumulated far end fr...

Page 234: ...stamp in the Ethernet frame After the destination node performs a loopback on the frame the initiating node will receive the frame again On reception this node will capture the reception timestamp Fin...

Page 235: ...olution Select us or ns us microseconds uS or S ns nanoseconds nS D2forD1 Enable to use DMM DMR packet to calculate one way DM If the option is enabled the following action will be taken When DMR is r...

Page 236: ...o far end One way Delay The one way delay is from local devices to remote devices The only case to calculate this delay is DMR received with D2forD1 enabled Two way Delay Performs two way ETH DM which...

Page 237: ...e average delay variation of the last n packets since last clear Delay Var Min The minimum delay variation since last clear Delay Var Max The maximum delay variation since last clear Overflow The numb...

Page 238: ...nterval supported is 2 The maximum number of FD Measurement Bins per Measurement Interval supported is 10 The default number of FD Measurement Bins per Measurement Interval supported is 2 Measurement...

Page 239: ...ing a Measurement Interval The IFDV is the Inter Frame Delay Variation per MEF 10 2 If the measurement threshold is 5000 us and the total number of Measurement Bins is four we can give an example as f...

Page 240: ...e transmitted value in the OS TLV Sub Type field Organization Specific Value The transmitted value in the OS TLV Value field TLV Status Display of the last received TLV Currently only TLV in the CCM i...

Page 241: ...e field CC Port Status Last RX PS TLV was received in the last received CCM PDU CC Interface Status Value The last received value in the IS TLV Value field CC Interface Status Last RX IS TLV was recei...

Page 242: ...iguration on page 213 2 Select a MEP Instance to configure e g click on the 2 in the Instance column above The MEP Configuration page for MEP Instance 2 displays 3 In the Peer MEP Configuration sectio...

Page 243: ...r MEP IDs 0 and 1 shown below Messages If the message Peer Unicast MAC must be known to do HW based CCM on SW MEP displays click the OK button then verify that hardware based CCM is set on the softwar...

Page 244: ...avigate to the Configuration VLAN menu path and configure VLANs as required 3 Navigate to the Configuration MEP menu path and click the Add New MEP button 4 Enter an Instance number 5 At the Domain dr...

Page 245: ...M functions only one is allowed at a time Recovery 1 Click the OK button to clear the webpage message 2 Re configure or disable all but one of the Fault Management functions Loopback Link Trace Test S...

Page 246: ...an operational perspective the maximum number of groups is limited to 64 When you select the Configuration ERPS menu path the default page displays At the default Ethernet Ring Protection Switching pa...

Page 247: ...nterconnection node Sub ring an Ethernet ring which is connected to one or more other Ethernet rings or networks through the use of a pair of interconnection nodes On their own the sub ring links do n...

Page 248: ...ive alarm on the ERPS A Green dot Up a red dot Down Buttons Add New Protection Group Click to add and configure a new Protection group entry Refresh Click to refresh the page immediately Save Click to...

Page 249: ...1 cannot be the same Port 1 This will create Port 1 of the switch in the Ring As interconnected sub ring will have only one ring port Port 1 is configured as 0 for interconnected sub ring 0 in this fi...

Page 250: ...e controlled by other Ethernet ring s or network s between interconnection nodes ERPS Instance Configuration Configured Displays a green LED for Up or a red LED for Down Red This ERPS is only created...

Page 251: ...witch FS or manual switch MS to take care of field maintenance scenario v2 G 8032 v2 supports multiple rings ladder topology The v2 protocol also introduced other features such as Revertive Non revert...

Page 252: ...stablished and no requests are present in the ring It is also responsible for activating reversion behavior from protected or manual switch forced switch MS FS conditions RPL Port This dropdown lets y...

Page 253: ...ate according to State Transition Tables in G 8032 Pending The state is in the process of changing you have selected a change but not yet Saved the change Protected ERPS protected mode is enabled for...

Page 254: ...ed the status for Port 0 both traffic and R APS block status is unblocked Port 1 Block Status Block status for Port 1 Both traffic and R APS block status The R APS channel is never blocked on sub ring...

Page 255: ...e ERPS can be added for each Save operation Meaning An ERPS parameter was mis configured Recovery 1 Click the OK button to clear the webpage message 2 Configure an ERPS instance and then Save before a...

Page 256: ...Rec ITU T G 8032 Y 1344 03 2010 Signal fail SF When an SF condition is detected on a ring link and it is determined to be a stable failure Ethernet ring nodes adjacent to the failed ring link initiate...

Page 257: ...VLANs created here are tied to Ring instances that are like traffic channels that contain different sets of VLANs A ring instance is responsible for the protection of a subset of VLANs that transport...

Page 258: ...opologies ERPS specifies protection switching mechanisms and a protocol for Ethernet layer network ETH rings Ethernet Rings can provide wide area multipoint connectivity more economically due to their...

Page 259: ...Valid port range 1 Port 1 West Port Valid port range 1 Port 0 SF MEP 1 32 1 Port 1 SF MEP 1 32 1 Port 0 APS MEP 1 32 1 Port 1 APS MEP 1 32 1 Ring type Major Sub Major Interconnected Node Yes No No Vi...

Page 260: ...MAC table with these dynamic MAC addresses Dynamic entries are removed from the MAC table if no frame with the corresponding SMAC address have been seen after the configured Aging Time Enabling known...

Page 261: ...of the FDB The S4224 FDB can be configured with static MAC entries for filtering or forwarding The static entries are not aged out and remain in the device even after a power cycle The Management inte...

Page 262: ...ere The static MAC table can contain up to 64 entries The MAC table is sorted first by VLAN ID and then by MAC address Delete Check to delete the entry It will be deleted during the next Save VLAN ID...

Page 263: ...ton a message displays warning you that this will block the MAC address for all ports If this is the configuration you want click the OK button Otherwise click the Cancel button and select one or more...

Page 264: ...you can configure the VLAN Translation Mapping Group Default To set the switch port to use the default VLAN Translation Group click the checkbox and press Save Group ID The VLAN Translation mappings a...

Page 265: ...tion Networks S4224 Web User Guide 33558 Rev C https www transition com Page 265 of 669 Refresh Click to refresh the page immediately Auto refresh Click to automatically refresh the page every three s...

Page 266: ...is configured to use a number of VLAN Translation mappings easily by simply configuring it to use a given group Then number of possible groups in a switch is equal to the number of ports present in t...

Page 267: ...slation mapping in the table using the following buttons Edits the mapping row Deletes the mapping Adds a new mapping Buttons Auto refresh Click to automatically refresh the page every three seconds R...

Page 268: ...ed to any port will be able to reach the management interface Broadcast traffic for example will be flooded to all ports on the switch Note VLAN ID 1 is always reserved for the default VLAN The range...

Page 269: ...s VLAN are transmitted untagged Other dynamically added VLANs are transmitted tagged Trunk Trunk ports can carry traffic on multiple VLANs simultaneously and are normally used to connect to other swit...

Page 270: ...ID embedded in the tag If a frame is untagged or priority tagged the frame gets classified to the Port VLAN If frames must be tagged on egress they will be tagged with the custom S tag Ingress Filteri...

Page 271: ...en VLANs A port may be configured to never be a member of one or more VLANs This is particularly useful when dynamic VLAN protocols like MVRP and GVRP must be prevented from dynamically adding ports t...

Page 272: ...Start from VLAN input field let you select the starting point in the VLAN Table The with xx entries per page input field lets you define the number of entries on each page Clicking the Refresh button...

Page 273: ...h Refreshes the displayed table starting from the VLAN ID input fields Updates the table starting from the first entry in the VLAN Table the entry with the lowest VLAN ID Updates the table starting wi...

Page 274: ...EtherTypes excerpt from IEEE 802 1ad 2005 The S4224 can be an SVLAN bridge C bridge or both bridge types and the hardware can support inspection of both the tags The S4224 can push and pop one or bot...

Page 275: ...https www transition com Page 275 of 669 Figure 6 S VLAN with multiple trunks EPL service at 3 different UNIs 2 Another case is shown below with one S Tag uplink or S Tag trunk Figure 7 S VLAN with o...

Page 276: ...N IDs and Private VLAN IDs can be identical A port must be a member of both a VLAN and a Private VLAN to be able to forward packets By default all ports are VLAN unaware and members of VLAN 1 and Priv...

Page 277: ...ports configured as part of a PVLAN cannot communicate with each other Add New Private VLAN Click the Add New Private VLAN button to add a new private VLAN ID An empty row is added to the table and th...

Page 278: ...When checked port isolation is enabled on that port and that port is considered isolated Isolated ports configured as part of a PVLAN cannot communicate with each other When unchecked port isolation i...

Page 279: ...s and assign the entries membership to different ports VLANs are layer 2 constructs compared with IP subnets which are layer 3 constructs In an environment employing VLANs a one to one relationship of...

Page 280: ...sses are allowed Legal values for a VLAN ID are 1 through 4094 The MAC based VLAN entry is enabled when you click the Save button A MAC based VLAN without any port members will be deleted when you cli...

Page 281: ...ts and MTU values but can coexist on the same physical medium Select a Frame Type of one of the following values from the dropdown Ethernet the frame type is Ethernet An Etype value and a Group Name e...

Page 282: ...exadecimal value ranges from 0x00 0xff b PID If the OUI is hexadecimal 000000 the protocol ID is the Ethernet type EtherType field value for the protocol running on top of SNAP if the OUI is an OUI fo...

Page 283: ...to save changes Reset Click to undo any changes made locally and revert to previously saved values Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 second...

Page 284: ...l characters are allowed Whichever Group name you try map to a VLAN must be present in the Protocol to Group mapping table see above and must not already be used by any other existing mapping entry on...

Page 285: ...a New Group to VLAN mapping entry The screen below shows three Group Names added to the Group Name to VLAN members table as configured from the Configuration VCL Group to VLAN menu path If you enter a...

Page 286: ...tries are explained below Delete To delete an IP subnet based VLAN entry check this box and click Save The entry will be deleted from the switch IP Address Sets shows the IP address Enter a valid IP a...

Page 287: ...Note that you can add multiple entries with one Save operation Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Auto refresh Check...

Page 288: ...dwidth profiles processing of L2 control protocols L2CP etc The S4224 EVC Ethernet Virtual Connection commands let you configure S4224 Ethernet services in terms of EVCs and ECEs EVC Control Entries O...

Page 289: ...rt The logical port for the settings contained in the same row DEI Mode The DEI mode for an NNI port determines whether frames transmitted on the port will have the DEI field in the outer tag marked b...

Page 290: ...he traffic received on UNI ports This page lets you view and configure current EVC ingress bandwidth profile configurations Start from Policer ID The start Policer ID for displaying the table entries...

Page 291: ...kilobits per second CBS The Committed Burst Size of the bandwidth profile The valid range is 0 100000 bytes EIR The Excess Information Rate for MEF type bandwidth profile The valid range is 0 10000000...

Page 292: ...annot be changed None State Enabled or Disabled Disabled Type MEF or Single MEF Policer Mode Coupled or Aware Aware Rate Type Data or Line Data CIR 0 to 10000000 kbps 0 CBS 0 to 100000 bytes 0 EIR 0 t...

Page 293: ...Service Provider and the responsibility of the Subscriber MEF Ethernet Virtual Connection Types The Metro Ethernet Forum MEF specifies these EVC Ethernet Virtual Connection types E Line EVC Point to p...

Page 294: ...displays the EVC Control List Configuration table You can add edit and delete EVCs here Only Provider Bridge based EVCs are supported The EVC configuration parameters on the default page are shown bel...

Page 295: ...UNI NNI ports The possible values are Enabled Learning is enabled MAC addresses are learned Disabled Learning is disabled MAC addresses are not learned Policer ID Filter The ingress bandwidth profile...

Page 296: ...tch both tagged and untagged frames Untagged The ECE will match untagged frames only C Tagged The ECE will match custom tagged frames only S Tagged The ECE will match service tagged frames only Tagged...

Page 297: ...EVC ID filter is specified EVC ID filter status is don t care Specific If you want to filter a specific EVC ID with this ECE choose this value A field for entering a specific value appears EVC ID Val...

Page 298: ...The outer tag PCP Mode is based on mapped QOS DP PCP The PCP value 0 7 DEI Mode The outer tag DEI mode for the ECE The possible values are Classified The outer tag DEI mode is classified Fixed The out...

Page 299: ...com Page 299 of 669 Buttons Auto refresh Check the checkbox to refresh the page automatically every three seconds Refresh Click to refresh the page Remove All Click to remove all ECEs At the Confirm p...

Page 300: ...ers displayed here depend on the Frame Type selection at the UNI Matching section The ECE Configuration page parameters are explained below UNI Ports The list of User Network Interfaces for the ECE Ch...

Page 301: ...sk For example n160 10100000 in binary can go to n161 10100001 n163 10100011 n167 10100111 n175 10101111 or n191 10111111 PCP The PCP value for matching the ECE It only significant if tag type Tagged...

Page 302: ...h this ECE choose this value A field for entering a range appears Inner VLAN ID Value When Specific is selected for the VLAN ID filter you can enter a specific value The allowed value is from 0 throug...

Page 303: ...cted for the DMAC filter you can enter a specific value The legal format is xx xx xx xx xx xx or xx xx xx xx xx xx or xxxxxxxxxxxx x is a hexadecimal digit Actions Direction The EVCs and ECEs are used...

Page 304: ...selected for the policer ID filter you can enter a specific value 1 256 Tag Pop Count The ingress tag pop count for the ECE The allowed range is from 0 2 Policy ID The ACL Policy ID for the ECE for m...

Page 305: ...values are Preserved The outer tag PCP and DEI is preserved Fixed The outer tag PCP and DEI is fixed PCP The inner tag PCP value for the ECE The allowed range is 0 7 DEI The inner tag DEI value for th...

Page 306: ...r more CE VLAN IDs to an EVC if multiple services are required An EVPL service is commonly used for connecting Subscriber hub and branch locations An example EPL service may be configured on two S4224...

Page 307: ...may be configured on two S4224s with the GUI or CLI This service features a single EVC with one UNI port on device 1 and two UNI ports on device 2 using VID 11 Device 1 conf t config no int vlan 2 409...

Page 308: ...addition of an S VLAN tag The S VLAN tag is removed upon delivery to the UNI from the ENNI A Service Provider can use an Access EPL service from an Access Provider to deliver port based Ethernet serv...

Page 309: ...e matched with PCP 5 in OVC 5 config evc ece 2 interface GigabitEthernet 1 2 outer tag match type untagged add pcp 5 evc 3 Configure the final EVC ECE 3 also for UNI port GigabitEthernet 1 2 Untagged...

Page 310: ...ure both ports GigabitEthernet 1 2 and 2 5GigabitEthernet 1 2 as S ports Allow both S VLAN IDs 11 and 22 on these ports In this configuration OVC 5 is represented by OVC End Points 1 and 2 and OVC6 by...

Page 311: ...n and Storage Configuration Configure Perf Mon PM Session and storage from Configuration Performance Monitor Configuration The parameters are described below Type The data type of performance monitor...

Page 312: ...he parameters are described below Type The data type of performance monitor PM Transfer Mode Configure the operation mode per system Possible modes are Enabled Enable PM Transfer Mode Disabled Disable...

Page 313: ...can configure the full URL of the server and the corresponding directory if any for uploading The supported protocols are HTTP and TFTP To enable HTTP by entering http followed by the domain name or...

Page 314: ...agreement with a customer for 5M for video 3M for voice and 4M for data service but the overall service cannot exceed 7M for that subscriber Figure 10 Color Aware Token Bucket Profile for Bandwidth P...

Page 315: ...ple SLA for Bandwidth profiling QoS Configuration Sub menus S4224 QoS configuration sub menus include Port Classification Port Policing Queue Policing Port Scheduler Port Shaping Port Tag Remarking Po...

Page 316: ...uration below applies CoS Controls the default class of service 0 7 All frames are classified to a CoS There is a one to one mapping between CoS queue and priority A CoS of 0 zero has the lowest prior...

Page 317: ...fault DEI value All frames are classified to a DEI value of 0 or 1 The default is 0 If the port is VLAN aware and the frame is tagged then the frame is classified to the DEI value in the tag Otherwise...

Page 318: ...splays for that port Here you can Set Tag Classification to Enabled or Disabled the default is Disabled Set the PCP DEI to QoS class DP level Mapping o Set QoS class to 0 7 and or o Set DP level to 0...

Page 319: ...the table for which this selection is valid Enable E Controls whether the policer is enabled on this S4224 port Check the checkbox to enable port policing on this port row The default is unchecked dis...

Page 320: ...onitor Ports QoS Statistics The QoS Ingress Queue Policers parameters are explained below Port The port number for which the configuration below applies The first row in the table marked by the sign e...

Page 321: ...www transition com Page 321 of 669 Example The screen below shows multiple Queue Policers configured for port 2 The configuration below shows Port 2 with Queues 0 1 and 2 enabled and Queue 0 is set fo...

Page 322: ...a mixed mode where the high priority queues are Strict and the rest are in DWRR Deficit Weighted Round Robin The scheduler mode in DWRR lets you assign weights to the individual QoS queues The Egress...

Page 323: ...queues C0 C1 C2 C3 C4 C5 then calculate the resulting weights using the following algorithm 1 Set the weight of the queue with the highest cost Chighest to 1 2 For any other queue Qn with cost Cn set...

Page 324: ...f 669 When you click on the Port number in a row the QoS Egress Port Scheduler and Shapers for that Port display e g for Port 1 in the screen sample below If Scheduler Mode is set to 6 Queues Weighted...

Page 325: ...is allowed to use excess bandwidth Queue Scheduler Weight Controls the weight for this queue The default value is 17 This value is restricted to 1 100 This parameter is only shown if Scheduler Mode is...

Page 326: ...rt number for the settings contained in the same row Click on the port number to configure the port shapers for that port Shapers Displays columns Q0 Q7 and Port Qn Shows disabled or the actual port s...

Page 327: ...e tag remarking Mode Shows the tag remarking mode for this port Classified Use classified PCP DEI values Default Use default PCP DEI values Mapped Use mapped versions of QoS class and DP level When yo...

Page 328: ...ange is 0 1 The default is 0 Controls the default PCP and DEI values used when the Tag Remarking Mode above is set to Default When 0 the DEI bit in the tag is set to 0 the default setting When 1 the D...

Page 329: ...y changes made locally and revert to previously saved values Cancel Click to undo any changes made locally and return to the previous page Use the port select box to select which port details to displ...

Page 330: ...lassification settings for individual ports There are two configuration parameters available in Ingress 1 Translate perform ingress translation for a specific port s 2 Classify perform ingress classif...

Page 331: ...tion Networks S4224 Web User Guide 33558 Rev C https www transition com Page 331 of 669 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved v...

Page 332: ...g a value of 46 is usually recommended for real time traffic with the strictest latency requirements Per the MEF DiffServ defines several per hop behaviors PHBs that provide robust QoS capabilities co...

Page 333: ...ty in another Without inspecting and re marking the inbound DSCP values both networks would give the opposite treatment to packets than was intended Some applications e g VoIP or videoconferencing mar...

Page 334: ...Translation settings DSCP translation can be performed on Ingress or Egress The displayed settings are explained below DSCP A maximum of 64 DSCP values are supported and the valid DSCP values are 0 to...

Page 335: ...nable Classification at the Ingress side Egress The following configurable parameter is for the Egress side Remap Select the DSCP value from select menu to which you want to remap Valid DSCP values ar...

Page 336: ...corresponds to Discard Eligible Yellow frames DSCP The DiffServ standards define 64 DSCP values Some of them are recommended for marking particular classes of QoS services e g a value of 46 is usuall...

Page 337: ...e often used flows are VLAN based service IP flows TCP sessions etc The QCL Configuration is a table of QCEs containing QoS control entries that classify to a specific QoS class on specific traffic ob...

Page 338: ...e of DEI are 0 1 or Any Inner Tag Indicates sets the inner tag type Possible values are Any Match tagged and untagged frames Untagged Match untagged frames Tagged Match tagged frames C Tagged Match C...

Page 339: ...that the default classified value is not modified by this QCE Modification Buttons You can modify each QCE QoS Control Entry in the table using the following buttons Inserts a new QCE before the curre...

Page 340: ...Networks S4224 Web User Guide 33558 Rev C https www transition com Page 340 of 669 Examples You can click the browser s Back button to return to the QoS Control List page or edit the parameters and c...

Page 341: ...ction in the Key Parameters table determines which specific subset of parameters display Frame Types Key Parameter Additional Parameters Additional Parameter Values Frame Type Any No additional parame...

Page 342: ...pplied to all the switches in the stack Port Members Check the checkbox button to include the port in the QCL entry By default all ports are included Key Parameters Key configuration is described belo...

Page 343: ...Any DSCP values are in the range 0 63 including BE CS1 CS7 EF or AF11 AF43 Sport Source TCP UDP port 0 65535 or Any specific or port range applicable for IP protocol UDP TCP Dport Destination TCP UDP...

Page 344: ...control levels that are used for each traffic type Unicast Multicast and Broadcast When the ingress traffic for which Storm Control is enabled reaches the traffic storm control rate you configured on...

Page 345: ...with broadcasts from the core or from other access switches Note Follow your organization s policies and procedures and best practices for implementing storm control e g if you should set the Multicas...

Page 346: ...below applies Enable Controls whether RED is enabled for this queue Min Controls the lower RED threshold If the average queue filling level is below this threshold the drop probability is zero This va...

Page 347: ...rked with Drop Precedence Level 0 are never dropped Min is the average queue filling level where the queues randomly start dropping frames The drop probability for frames marked with Drop Precedence L...

Page 348: ...tor can use the Mirroring to debug network problems The selected traffic can be mirrored or copied on a destination port where a network analyzer can be attached to analyze the network traffic Remote...

Page 349: ...nectivity until Remote Mirroring is disabled If you shut down a port it cannot be a candidate for reflector port If you shut down the port which is a reflector port the Remote Mirror function cannot w...

Page 350: ...if MSTP is not disabled on the Reflector port all monitor traffic will be blocked on the Reflector port All recommended settings are as follows Impact Source Reflector Intermediate Destination Remote...

Page 351: ...Click to undo any changes made locally and revert to previously saved values Messages Message The reflector port needs to select on source switch Meaning The reflector port requires you to select Sour...

Page 352: ...nent like an Ethernet switch is a Boundary clock BC or Transparent clock TC A Master synchronizes the respective slaves connected to it The synchronization process is divided into two phases First the...

Page 353: ...EEE 1588 Output State Enable or Disable the SMB port These values are possible Enable the port Disable the port Frequency Set the Clock Frequency The following values are possible for input 1 PPS 8 KH...

Page 354: ...tic member defined by system true if two step Sync events and Pdelay_Resp events used Clock Identity Shows the unique clock identifier One Way If true one way measurements are used This parameter appl...

Page 355: ...to identify the switch port that is connected to a device with the most precise clock This is the default clock mode The device is synchronized with the grand master clock and operates as a parent mas...

Page 356: ...r IPv4 multicast IPv4Mixed PTP over IPv4 mixed IPv4Uni PTP over IPv4 unicast Note The IPv4 unicast protocol only works in Master only and Slave only clocks see the Device Type parameter description In...

Page 357: ...of four PTP Clock configuration PTP Clock Instances 0 to 3 PTP Clock s Configuration Click on a linked Clock Instance in the PTP Clock Configuration section at the Configuration PTP menu path to disp...

Page 358: ...RT Board that is used for timing Synchronize to System Clock You can click the Synchronize to System Clock button to synchronize the System Clock to the PTP Time Select the Clock Type in RFC2544 Y 156...

Page 359: ...y the system True if two step Sync events and Pdelay_Resp events are used otherwise False Clock Identity Displays the unique clock identifier e g 00 c0 f2 ff fe 00 00 01 Dom The Clock domain 0 127 Clo...

Page 360: ...able parameter is ignored because the tagging is controlled by the VLAN configuration VID The VLAN Identifier used for tagging the VLAN packets PCP The Priority Code Point value used for PTP frames Cl...

Page 361: ...set to 0 the delay filter uses the same algorithm as the offset filter period The default offset filter uses a minimum delay filter method i e the minimum measured offset during Period samples is use...

Page 362: ...rent Clock Phase Change Rate i e the slave clocks rate offset compared to the master The unit is ns per sec nanoseconds per second Grand Master Identity The Clock identity for the grand master clock i...

Page 363: ...s typically given as hour or hour and minute Many time zones employ two time offsets one for standard time and one for daylight saving time Valid The current Valid setting True or False leap59 The cur...

Page 364: ...a control element such as the position of a valve or the amount of power supplied to a heating element The Proportional Integral and Derivative terms are summed to calculate the output of the PID cont...

Page 365: ...seconds a master is requested to send Announce Sync messages The request is repeated from the slave each Duration 4 seconds ip_address The IPv4 Address of the Master clock grant The granted repetitio...

Page 366: ...ck s Port Data Set Configuration table parameters are explained below Port Static member port Identity Port number 2 6 This is the S4224 port number Note that PTP configuration of the S4224 MGMT port...

Page 367: ...e interpretation of this parameter has changed from v 1 2 to v 2 0 In earlier versions the value was interpreted relative to the Sync interval this was a violation of the standard so now the value is...

Page 368: ...Global VLAN and Port VLAN configuration section for related information GVRP Global Configuration GVRP is enabled globally at the device level from Configuration GVRP Global config Enable GVRP Global...

Page 369: ...the same Note that GVRP must be enabled both globally and at the port level to work The GVRP Port Configuration parameters are described below Port The logical port that is to be configured Mode Enab...

Page 370: ...The default is Disabled The Collector Flag determines if the SA module accept SA test requests from outside Peer communication protocol state Enable disable the peer communication protocol If this at...

Page 371: ...ervice Activation Profiles Configuration page Click the Add New Profile button to display the configurable parameters Service Activation Profiles Configuration Profile ID The profile entry ID Name The...

Page 372: ...r loopback unidirectional enables uni directional test mode bidirectional enables bi directional test mode loopback enables loopback test mode Set both sides to loopback Test steps List of tests to ex...

Page 373: ...w are also 0 3 x must not be 127 and 4 x must not be greater than 223 DSCP hex DSCP value for L3 IP frames The valid range is 0 3f ECN ECN value for L3 IP frames The valid range is 0 3 Flags Flags val...

Page 374: ...t be sorted and last value must be 5000000 DMV Threshold Configuration Delay Measurement Variation threshold values in usec DMV Threshold must be sorted and last value must be 5000000 Buttons Save Cli...

Page 375: ...Test button to display the configurable parameters See also Diagnostics Service Activation on page 530 Service Activation Tests Configuration Test settings ID The test entry ID Name The Test name Do...

Page 376: ...ged C tag S tag CC tag or SC tag Ingress Tag Inner VID Ingress Inner VLAN ID 0 4095 Ingress Tag Inner PCP Ingress Inner PCP value 0 7 Ingress Tag Outer VID Ingress Outer VLAN ID 0 4095 Ingress Tag Out...

Page 377: ...rom selected policer 1 128 Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Messages Message Error tn_ether_sat_lb_conf_set failed Meaning...

Page 378: ...ating parameters Configuration DDMI General Here you enable or disable DDMI global operation Mode Sets indicates the DDMI mode of operation Possible modes are Enabled Enable DDMI mode operation Disabl...

Page 379: ...sh the page immediately Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values See Configuration DDMI General on page 378 and see Configuration D...

Page 380: ...ional link Port The Port number configured by this row UDLD mode Configures the UDLD mode on a port Valid values are Disable Normal and Aggressive The default mode is Disabled Disable In disabled mode...

Page 381: ...tion Networks S4224 Web User Guide 33558 Rev C https www transition com Page 381 of 669 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved v...

Page 382: ...onitor System Information S4224 system information is displayed at the Monitor System Information menu path System information is entered from the Configuration System Information menu path The system...

Page 383: ...00 00 The system time is obtained through the configured timing server if any is configured System Uptime The period of time the device has been operational e g 4d 19 05 44 Software Version The softw...

Page 384: ...set of specifications for an XML based file format for describing two dimensional vector graphics both static interactive and dynamic animated The SVG specification is an open standard that has been u...

Page 385: ...Adobe Systems Inc unverified publisher If you trust the website and the add on and want to allow it to run click here The CPU Load page displays using an SVG graph The message Collecting data please...

Page 386: ...ansition com Page 386 of 669 Example The screen below shows a workload introduced at 500 ms intervals that creates transient spikes in the graphs to 89 load For troubleshooting High CPU utilization co...

Page 387: ...e g OS lo or VLAN1 Type The address type of the entry This may be LINK or IPv4 or IPv6 Address The current address of the interface of the given type Status The status flags of the interface and or a...

Page 388: ...cache IP Address The IP address of the entry Link Address The Link MAC address for which a binding to the IP address given exists For example VLAN1 00 c0 f2 56 19 08 Buttons Refresh Click to refresh...

Page 389: ...el The level of the system log entry The following level types are supported Error Error level of the system log Severity 3 Non urgent failures these should be relayed to developers or admins Each ite...

Page 390: ...anges with each refresh action e g displays level warning clear level all press F5 Refresh clear level error press F5 the configuration goes back to clear level all Clear Flushes all system log entrie...

Page 391: ...figuration Ports Port Configuration Using primary power source Normal power on operation Frame of 243 bytes received on port 1MAC Normal frame size information Port 1 shut down Normal port shutdown in...

Page 392: ...w of the current S4224 port states The S4224 port states are shown and explained below Port State Disabled Down Link RJ45 ports SFP ports X2 ports Buttons Auto refresh Check this box to refresh the pa...

Page 393: ...led Statistics menu path See Detailed Port Statistics on page 393 for more information on the Detailed Port Statistics parameters A sample Detailed Port Statistics page is shown below for Port 4 Butto...

Page 394: ...rs are explained below Port The logical port for the settings contained in the same row Provides a link to the Detailed Port Statistics page for each port Packets The number of received and transmitte...

Page 395: ...checkbox to automatically refresh the page every three seconds Left mouse click on a port to display that port s Detailed Port Statistics page You can also reach this page from the Monitor Ports Deta...

Page 396: ...riority Statistics for each output queue on each port are available The option to restrict a port to a specific number of MAC entries to be learned is provided to allow the provider to restrict number...

Page 397: ...Buttons Auto refresh Click to refresh the page immediately Refresh Clears the counters for all ports Auto refresh Check this checkbox to automatically refresh this page every three seconds See Detaile...

Page 398: ...splays just the Conflict QCL status User Indicates the QCL user type selected for display e g Combined Static or Conflict QCE Indicates the index of the QCE on this line of the table Port Indicates th...

Page 399: ...t is always No Note that conflict can be resolved by releasing the hardware resources required to add a QCL entry on pressing the Resolve Conflict button Buttons Combined Select the QCL status from th...

Page 400: ...The S4224 can forward unicast multicast or broadcasts frames RMON Counters based on frame type frame size are maintained and reported All error counters at the MAC layer are reported per ether like M...

Page 401: ...s per input and output queue Receive Error Counters Rx Drops The number of frames dropped due to lack of receive buffers or egress congestion Rx CRC Alignment The number of frames received with CRC or...

Page 402: ...d due to output buffer congestion Tx Late Exc Coll The number of frames dropped due to excessive or late collisions Buttons The port select box determines which port is affected Refresh Click to refre...

Page 403: ...probability of successfully being received given the possibility that a frame may be lost in transit Duplicate Event Notification transmissions are counted by Duplicate Event Notification counters for...

Page 404: ...224 is equipped with the last gasp circuit for triggering a notification in the event of a power failure This can be useful for sending a notification The uplink ports have highest priority to send th...

Page 405: ...re Link fault Receive only Info exchange or ANY Discovery State Displays the current state of the discovery process Possible states are Fault state Active state Passive state SEND_LOCAL_REMOTE_STATE S...

Page 406: ...on OAMPDUs to the lower sublayer When in Discarding state the S4224 is discarding non OAMPDUs Organizational Unique Identification This is the 24 bit Organizationally Unique Identifier OUI of the vend...

Page 407: ...lect the S4224 port number Frame Error Event Timestamp This two octet field indicates the time reference when the event was generated in terms of 100 ms intervals Frame error event window This two oct...

Page 408: ...er for the event to be generated Frame Period Errors This four octet field indicates the number of frame errors in the period Total frame period errors This eight octet field indicates the sum of fram...

Page 409: ...ndicates the number of errored frame seconds in the period is required to be equal to or greater than in order for the event to be generated encoded as a 16 bit unsigned integer Event Seconds Summary...

Page 410: ...atabase counters and the number of DHCP messages sent and received by DHCP server Database Counters Displays the counters of the various databases Pool Number of the pool Excluded IP Address Number of...

Page 411: ...es received DECLINE Number of DHCP DECLINE messages received RELEASE Number of DHCP RELEASE messages received INFORM Number of DHCP INFORM messages received DHCP Message Sent Counters Display counters...

Page 412: ...pired Pool Name The pool that generates the binding Server ID Server IP address to service the binding Buttons Auto refresh Check this box to refresh the page automatically every three seconds Refresh...

Page 413: ...any exist Declined IP List of IP addresses declined Typically no user action is needed The DHCP service responds to the DHCPDECLINE message with a DHCPNAK message This response forces the client to r...

Page 414: ...put fields let you select the starting point in the Dynamic DHCP snooping Table Clicking the Refresh button will update the displayed table starting from that or the closest next Dynamic DHCP snooping...

Page 415: ...box to refresh the page automatically every three seconds Refresh Refreshes the displayed table starting from the input fields Clear Flushes all dynamic entries Updates the table starting from the fir...

Page 416: ...D in the switch is 4 bytes in length and the format is vlan_id module_id port_no The parameter of vlan_id is the first two bytes represent the VLAN ID The parameter of module_id is the third byte for...

Page 417: ...eive Agent Option The number of received packets with relay agent information option Replace Agent Option The number of packets which were replaced with relay agent information option Keep Agent Optio...

Page 418: ...bined all of the available DHCP statistics Normal Forward only the normal forward statistics details Server only the DHCP server statistics details Client only the DHCP client statistics details Snoop...

Page 419: ...e 6 packets received and transmitted Rx and Tx Release The number of release DHCP option 53 with value 7 packets received and transmitted Rx and Tx Inform The number of inform DHCP option 53 with valu...

Page 420: ...refresh the page automatically every three seconds Refresh Click to refresh the page immediately Clear Clears the counters for the selected port DHCP Message Types This option is used to convey the ty...

Page 421: ...stics table parameters are explained below Interface The interface type through which the remote host can access the S4224 HTTP HTTPS SNMP TELNET and or SSH Received Packets Number of received packets...

Page 422: ...ses are passed on to the port security module which in turn asks all user modules whether to allow this new MAC address to forward or block it For a MAC address to be set in the forwarding state all e...

Page 423: ...ice Ready The Port Security service is in use by at least one user module and is awaiting frames from unknown MAC addresses to arrive Limit Reached The Port Security service is enabled by at least the...

Page 424: ...wise MAC Address The MAC address and VLAN ID that is seen on this port If no MAC addresses are learned a single row stating No MAC addresses attached is displayed VLAN ID The VLAN ID that is seen on t...

Page 425: ...port link comes up and any client on the port will be disallowed network access Port based 802 1X In 802 1X the user is called the supplicant the switch is the authenticator and the RADIUS server is t...

Page 426: ...Multi 802 1X Multi 802 1X is like Single 802 1X not an IEEE standard but a variant that features many of the same characteristics In Multi 802 1X one or more supplicants can get authenticated on the...

Page 427: ...the RADIUS Access Accept packet transmitted by the RADIUS server when a supplicant is successfully authenticated If present and valid the port s Port VLAN ID will be changed to this VLAN ID the port...

Page 428: ...cated and all attached clients on the port are allowed access on this VLAN The switch will not transmit an EAPOL Success frame when entering the Guest VLAN While in the Guest VLAN the switch monitors...

Page 429: ...the Port VLAN ID is not overridden by NAS If the VLAN ID is assigned by the RADIUS server RADIUS assigned is appended to the VLAN ID Read more about RADIUS assigned VLANs If the port is moved to the G...

Page 430: ...apsulate EAP PDUs RFC3748 Frames sent between the switch and the RADIUS server are RADIUS packets RADIUS packets also encapsulate EAP PDUs together with other attributes like the switch s IP address n...

Page 431: ...t The switch only supports the MD5 Challenge authentication method so the RADIUS server must be configured accordingly When authentication is complete the RADIUS server sends a success or failure indi...

Page 432: ...tity frames received by the S4224 Rx Start dot1xAuthEapolStartFramesRx The number of EAPOL Start frames that have been received by the switch Rx Logoff dot1xAuthEapolLogoffFramesRx The number of valid...

Page 433: ...of times the S4224 sends an EAP Request packet following the first to the supplicant Indicates the backend server chose an EAP method MAC based Not applicable Rx Auth Successes dot1xAuthBackendAuthSu...

Page 434: ...tive states Multi 802 1X MAC based Auth The table is identical to and is placed next to the Port Counters table and will be empty if no MAC address is currently selected To populate the table select o...

Page 435: ...cted when clicking the buttons Auto Refresh Check this box to automatically refresh the page every three seconds Refresh Click to refresh the page immediately Clear Click to clear the counters for the...

Page 436: ...e frame type of the ACE The valid values are Any The ACE will match any frame type EType The ACE will match Ethernet Type frames Note that an Ethernet Type based ACE will not get matched by IP and ARP...

Page 437: ...ACL users ipManagement displays the ACL status of just IP Management users ipSourceGuard displays the ACL status of just the IP Source Guard users ipmc displays the ACL status of just IPMC ACL users e...

Page 438: ...Transition Networks S4224 Web User Guide 33558 Rev C https www transition com Page 438 of 669 Examples Static MEP PTP Combined...

Page 439: ...om port address VLAN MAC address and IP address input fields let you select the starting point in the Dynamic ARP Inspection Table Clicking the Refresh button will update the displayed table starting...

Page 440: ...to enable an automatic refresh of this page at 3 second intervals Refresh Refreshes the displayed table starting from the input fields Clear Flushes all dynamic entries Updates the table starting from...

Page 441: ...ic IP Source Guard Table match In addition the two input fields will upon a Refresh button click assume the value of the first displayed entry allowing for continuous refresh with the same start addre...

Page 442: ...t number for authentication Authentication Status The current status of the server This field takes one of the following values Disabled The server is disabled Not Ready The server is enabled but IP c...

Page 443: ...ng and the RADIUS module is ready to accept access attempts Dead X seconds left Access attempts were made to this server but it did not reply within the configured timeout The server has temporarily b...

Page 444: ...RADIUS Authentication Statistics Packet Counters The RADIUS authentication server packet counters include seven receive counters and four transmit counters Direction Name RFC4668 Name Description Rx A...

Page 445: ...RADIUS packets that were received from the server on the authentication port and dropped for some other reason Tx Access Requests radiusAuthClientExtAccess Requests The number of RADIUS Access Request...

Page 446: ...recent Access Reply Access Challenge and the Access Request that matched it from the RADIUS authentication server The granularity of this measurement is 100 ms A value of 0 ms indicates that there ha...

Page 447: ...ns The number of RADIUS packets retransmitted to the RADIUS accounting server Tx Pending Requests radiusAccClientExtPending Requests The number of RADIUS packets destined for the server that have not...

Page 448: ...configured timeout The server has temporarily been disabled but will get re enabled when the dead time expires The number of seconds left before this occurs is displayed in parentheses This state is o...

Page 449: ...g the Refresh button will update the displayed table starting from that or the next closest Statistics table match The button will use the last entry of the currently displayed entry as a basis for th...

Page 450: ...ncluding bad packets received that were 64 octets in length 65 127 The total number of packets including bad packets received that were 65 to 127 octets in length 128 255 The total number of packets i...

Page 451: ...selected instance Buttons Use the ID select dropdown box to select which port s detailed RMON statistics display Auto refresh Check this box to automatically refresh the page every three seconds Refr...

Page 452: ...The button will use the last entry of the currently displayed entry as a basis for the next lookup When the end is reached the text No more entries is shown in the displayed table Use the button to s...

Page 453: ...The number of frames which size is larger than 64 octets received with invalid CRC Coll The best estimate of the total number of collisions on this Ethernet segment Utilization The best estimate of th...

Page 454: ...are explained below ID Indicates the index of Alarm control entry Interval Indicates the interval in seconds for sampling and comparing the rising and falling threshold Variable Indicates the particu...

Page 455: ...old Falling threshold value Falling Index Falling event index Buttons Refresh Click to refresh the page immediately Auto refresh Check this box to automatically refresh the page every three seconds Up...

Page 456: ...ton will update the displayed table starting from that or the next closest Event table match The button will use the last entry of the currently displayed entry as a basis for the next lookup When the...

Page 457: ...ts enabled or no existing partners displays if no status is available The LACP System Status table parameters are explained below Aggr ID The Aggregation ID associated with this aggregation instance F...

Page 458: ...ot enabled or that the port link is down Backup means that the port could not join the aggregation group but will join if other port leaves Meanwhile its LACP status is disabled Key The key assigned t...

Page 459: ...table parameters are explained below Port The S4224 port number LACP Received Shows how many LACP frames have been received at each port LACP Transmitted Shows how many LACP frames have been sent fro...

Page 460: ...wn Log Shutdown the port and Log the event Log Only Only Log the event Trap Only Only send a trap Shutdown Trap Shutdown the port and Send trap Log Trap Send a Trap and Log the event All Shutdown the...

Page 461: ...s is also a link to the STP Detailed Bridge Status MSTP allows formation of MST regions that can run multiple MST instances MSTI Bridge ID The Bridge ID of this Bridge instance e g 80 00 00 C0 F2 21 B...

Page 462: ...32768 00 C0 F2 56 1A 90 Root Cost Root Path Cost For the Root Bridge this is zero For all other Bridges it is the sum of the Port Path Costs on the least cost path to the Root Bridge e g 0 20000 Root...

Page 463: ...The port state can be Discarding Learning or Forwarding Path Cost The current STP port path cost This will either be a value computed from the Auto setting or any explicitly configured value e g 20000...

Page 464: ...there is more than device advertising the lowest cost and 3 the lowest port ID on that device if there is more than one connection to the device The STP Port Status table parameters are explained bel...

Page 465: ...rding After the Learning state the root and designated ports enter the Forwarding state while the non designated ports are set to blocking state A port receiving and sending data normal operation STP...

Page 466: ...convergence after a topology change Standard IEEE 802 1D 2004 now uses RSTP and obsoletes STP while at the same time remains backwards compatible with STP STP The number of legacy STP Configuration B...

Page 467: ...uide 33558 Rev C https www transition com Page 467 of 669 Buttons Refresh Click to refresh the page immediately Auto refresh Check this checkbox to enable automatic page refreshes at 3 second interval...

Page 468: ...ceived The number of Received Queries for IGMP and MLD respectively IGMP MLD Queries Transmitted The number of Transmitted Queries for IGMP and MLD respectively IGMPv1 Joins Received The number of Rec...

Page 469: ...g from that or the closest next MVR Channels Groups Information table match In addition the two input fields will upon a button click assume the value of the first displayed entry allowing for continu...

Page 470: ...elect the starting point in the MVR SFM Information table Clicking the Refresh button will update the displayed table starting from that or the closest next MVR SFM Information Table match In addition...

Page 471: ...e type of MVR performed It can be either Allow or Deny Hardware Filter Switch Indicates whether the data plane destined to the specific group address from the source IPv4 IPv6 address could be handled...

Page 472: ...mation is explained below VLAN ID The VLAN ID of the entry e g VLAN ID 1 Querier Version The working Querier Version currently in use e g v3 shown above In order for IGMP and IGMP snooping to function...

Page 473: ...status as ACTIVE or IDLE Queries Transmitted The number of Transmitted Queries e g 5 Queries Received The number of Received Queries V1 Reports Received The number of Received V1 Reports V2 Reports Re...

Page 474: ...ide 33558 Rev C https www transition com Page 474 of 669 Buttons Refresh Click to refresh the page immediately Clear Clears all Statistics counters Auto refresh Check this checkbox to enable automatic...

Page 475: ...m that or the closest next IGMP Group Table match In addition the two input fields will upon a Refresh button click assume the value of the first displayed entry allowing for continuous refresh with t...

Page 476: ...g Refresh the button will update the displayed table starting from that or the closest next IGMP SFM Information table match In addition the two input fields will upon a Refresh button click assume th...

Page 477: ...ess from the source IPv4 address could be handled by the chip Buttons Auto refresh Check this box to automatically refresh the page every three seconds Refresh Refreshes the displayed table starting f...

Page 478: ...Version currently e g v2 shown above Host Version The working Host Version currently in use e g v2 shown above MLD v1 was the original release of MLD as an asymmetric protocol specifying different beh...

Page 479: ...Reports Received The number of Received V2 Reports V1 Leaves Received The number of Received V1 Leaves The MLD Snooping Status table Router Port parameters are explained below Router Port Display whi...

Page 480: ...sest MLD Group Table match In addition the two input fields will upon a Refresh button click assume the value of the first displayed entry allowing for continuous refresh with the same start address T...

Page 481: ...able starting from that or the closest next MLD SFM Information table match In addition the two input fields will upon a Refresh button click assume the value of the first displayed entry allowing for...

Page 482: ...efresh Check this box to automatically refresh the page every three seconds Refresh Refreshes the displayed table starting from the input fields Updates the table starting from the first entry in the...

Page 483: ...ocol is stored by its recipients in a standard Management Information Base MIB making it possible for the information to be accessed by a Network Management System NMS using a management protocol such...

Page 484: ...ility is enabled the capability is followed by If the capability is disabled the capability is followed by Management Address Management Address is the neighbour unit s address that is used for higher...

Page 485: ...MED Endpoint Devices as defined in TIA 1057 are located at the IEEE 802 LAN network edge and participate in IP communication service using the LLDP MED framework Within the LLDP MED Endpoint Device ca...

Page 486: ...ies Possible capabilities are 1 LLDP MED capabilities 2 Network Policy 3 Location Identification 4 Extended Power via MDI PSE 5 Extended Power via MDI PD 6 Inventory 7 Reserved Application Type Applic...

Page 487: ...Priority is the Layer 2 priority to be used for the specified application type One of the eight priority levels 0 7 DSCP DSCP is the DSCP value to be used to provide Diffserv node behavior for the spe...

Page 488: ...ear global counters If checked the global counters are cleared when the Clear button is pressed Neighbour entries were last changed on Shows the date and or time when the last entry was last deleted o...

Page 489: ...ed from the table when a given port s link is down an LLDP shutdown frame is received or when the entry ages out See IEEE Std 802 1AB for more information TLVs Discarded Each LLDP frame can contain mu...

Page 490: ...may get discarded by the network A service frame is yellow if it is not conformant with the EIR of the bandwidth profile Red Service Frame discarded out of profile and immediately discarded A service...

Page 491: ...ics only Bytes Show bytes statistics only Both Show both frames and bytes statistics Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Clic...

Page 492: ...ames and Bytes The number of green bytes and frames received Tx Green Frames and Bytes The number of green bytes and frames transmitted Rx Yellow Frames and Bytes The number of yellow bytes and frames...

Page 493: ...h Click to refresh the page immediately Clear Clears the counters for selected ports Clear All Clears the counters for all ports Displays the message All EVCs statistics will be cleared Do you want to...

Page 494: ...nt Statistics The Configuration Performance Monitor LM Statistics parameters are described below Measurement Interval ID The measurement interval for the performance monitor data sets MEP Instance The...

Page 495: ...ber VID that identifies the subscriber flow in this EVC where the MIP is active MEP ID This value will become the transmitted two byte CCM MEP ID MAC Address The MAC of this MEP can be used by other M...

Page 496: ...terval ID The measurement interval for the performance monitor data sets MEP Instance The MEP instance for the performance monitor data sets Residence Port The residence port for the MEP Priority The...

Page 497: ...tion The two way average delay variation Two way Min Delay The minimum two way delay Two way Max Delay The maximum two way delay Domain Port This is a MEP in the Port Domain Flow Instance is a Port Ev...

Page 498: ...surement threshold is 5000 us and the total number of Measurement Bins is four the following example applies Bin Threshold Range bin0 0 us 0 us measurement 5 000 us bin1 5 000 us 5 000 us measurement...

Page 499: ...s EVC Instance The EVC instance for the performance monitor data sets MEP Instance The MEP instance for the performance monitor data sets Residence Port The residence port for the EVC Cos NNI na this...

Page 500: ...ames and bytes statistics Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Delete All Delete all table entries Updates the ta...

Page 501: ...e monitor data sets Interval Start Time The interval start time Interval End Time The interval end time Elapsed Time The elapsed time Buttons Frames Show frames statistics only Bytes Show bytes statis...

Page 502: ...ate The following values are possible 1 The SMB port is currently Enabled 2 The SMB port is currently Disabled Frequency Displays the configured Clock Frequency The following values are possible for i...

Page 503: ...nstance The five Device Types are Ord Bound Clock s Device Type is Ordinary Boundary Clock P2p Transp Clock s Device Type is Peer to Peer Transparent Clock E2e Transp Clock s Device Type is End to End...

Page 504: ...k s Configuration page This page lets you view the current PTP clock settings The PTP clock settings are described below Local Clock Current time Shows the local clock data PTP Time Shows the actual P...

Page 505: ...ck s Device Type is Boundary Clock front end 2 Step Flag Static member defined by the system true if two step Sync events and Pdelay_Resp events are used Ports The total number of physical ports in th...

Page 506: ...TP frames Clock current Data Set The clock current data set is defined in the IEEE 1588 Standard The current data set is dynamic stpRm Steps Removed It is the number of PTP clocks traversed from the g...

Page 507: ...k if the local clock is not a slave the value is the clocks own id Grand Master Clock Quality The clock quality announced by the grand master See description of Clock Default DataSet Clock Quality Pri...

Page 508: ...uded I Enable If true the I part of the algorithm is included D enable If true the D part of the algorithm is included P constant 1 1000 see above I constant 1 10000 see above D constant 1 10000 see a...

Page 509: ...is requested to send Announce Sync messages The request is repeated from the slave each Duration 4 seconds IP_address IPv4 Address of the master clock grant The granted repetition period for the sync...

Page 510: ...max number of ports Stat Dynamic member portState Current state of the port MDR Dynamic member log Min Delay Req Interval The delay request interval announced by the master Peer Mean Path Del The pat...

Page 511: ...lay_Req pr sec independent of the Sync rate The valid range is 7 to 5 Delay Asymmetry The transmission delay asymmetry for a link See IEEE 1588 Section 7 4 2 Communication path asymmetry If the transm...

Page 512: ...C address has been seen after a configurable age time Each page shows up to 999 entries from the MAC table default being 20 selected through the entries per page input field When first visited the web...

Page 513: ...eck this checkbox to automatically refresh the page every three seconds Refresh Refreshes the displayed table starting from the Start from MAC address and VLAN input fields Clear Flushes all dynamic e...

Page 514: ...bership Status page is shown below for the Combined selection Each page shows up to 99 entries from the VLAN table default being 20 selected through the entries per page input field When first visited...

Page 515: ...s automatically MVR MVR is used to eliminate the need to duplicate multicast traffic for subscribers in each VLAN Multicast traffic for all channels is sent only on a single multicast VLAN MEP display...

Page 516: ...the port settings the text No data exists for the selected user is shown in the table Combined The Combined entry shows a combination of the administrator and internal software modules configuration...

Page 517: ...if not overridden by the selected user Tx Tag Shows the Tx Tag requirements Tag All Tag PVID Tag UVID Untag All Untag PVID Untag UVID that a given user has on a port The field is empty if not overrid...

Page 518: ...tworks S4224 Web User Guide 33558 Rev C https www transition com Page 518 of 669 Examples An example of the VLAN Port Status for Combined users is shown below VLAN Port Status for MVR user is shown be...

Page 519: ...ndor s name e g Transition Part Number Indicates Vendor Part number PN provided by the SFP vendor TN 10GSFP SR Serial Number Indicates Vendor Serial number SN provided by the SFP vendor e g 8672105 Re...

Page 520: ...ovided by the SFP vendor e g 102201102 Revision Indicates Vendor rev Revision level for part number provided by the SFP vendor Data Code Indicates Date code Vendor s manufacturing date code e g 2009 1...

Page 521: ...ns Refresh Click to refresh the page immediately Auto refresh Check this box to refresh the page automatically every 3 seconds DDMI Measurement Details Type Unit of Measure Typical Measurement Tempera...

Page 522: ...vice e g 00 C0 F2 56 1A 90 Device Name local The Name of the local device Bidirectional State The current state of the port e g Indeterminant Neighbour Status Displays No Neighbour ports enabled or no...

Page 523: ...At IP Address enter a valid IPv4 address e g 192 168 1 30 3 At Ping Length enter the packet size in bytes 4 At Ping Count enter the number of packets to be sent The default is 5 pings 5 At Ping Inter...

Page 524: ...bytes from 10 10 132 20 icmp_seq 1 time 0ms 64 bytes from 10 10 132 20 icmp_seq 2 time 0ms 64 bytes from 10 10 132 20 icmp_seq 3 time 0ms 64 bytes from 10 10 132 20 icmp_seq 4 time 0ms Sent 5 packets...

Page 525: ...the Diagnostics Link OAM Mib Retrieve menu path 3 Select the appropriate radio button to retrieve the content of interest Local or Peer 4 Enter the S4224 Port number This port must be configured and...

Page 526: ...interface is not given PING6 finds the best match interface for destination Do not specify egress interface for loopback address Do specify egress interface for link local or multicast address 7 Click...

Page 527: ...seconds Egress Interface Only for IPv6 The VLAN ID VID of the specific egress IPv6 interface which ICMP packet goes The given VID ranges from 1 to 4094 and will be effective only when the correspondi...

Page 528: ...us table Note that VeriPHY is only accurate for cables 7 140 meters long Note The 10 and 100 Mbps ports will be linked down while running VeriPHY Therefore running VeriPHY on a 10 or 100 Mbps manageme...

Page 529: ...ss pair coupling with pair C Cross D Abnormal cross pair coupling with pair D Length The length in meters of the cable pair The resolution is 3 meters Messages Message x VeriPHY is running Meaning The...

Page 530: ...cs Service Activation Test This page lets you configure and run an Ethernet Service Activation Test and save the test results Note Before running the Service Activation Test set the shared port mode t...

Page 531: ...Activation Testing page is shown below The Loopback test parameters are described below State At the dropdown set the test state to Inactive or Active Note that the Loopback State must be Inactive to...

Page 532: ...and try again etherset loopback smac set failed Check that the shared port is internal and try again etherset loopback vid set failed Check that the shared port is internal and try again Meaning The E...

Page 533: ...enu path The confirmation message Are you sure you want to perform a Restart displays 2 If you are sure you want to restart the S4224 click the Yes button If you are not sure you want to restart the S...

Page 534: ...4224 cool restart If this occurs at Maintenance Restart Device Are you sure you want to perform a Restart Force Cool Restart check or uncheck the checkbox and click the Yes button Check the Force Cool...

Page 535: ...sure you want to restart the S4224 click the No button and continue operation If you are sure you want to restart the S4224 click the Yes button The information message Configuration Factory Reset Do...

Page 536: ...c will experience a loss when the device resets to boot with the new image but the service is restored immediately after the S4224 is configured The dat file contains a checksum which is validated aft...

Page 537: ...pen button 4 At the Activate Image Now checkbox check or uncheck the box If you leave the checkbox unchecked the image will be uploaded but not immediately activated If you check the checkbox the imag...

Page 538: ...If you checked the Activate Image Now checkbox the S4224 restarts When the S4224 startup screen displays continue operation If you unchecked the Activate Image Now checkbox the Software Image Selecti...

Page 539: ...Alternate image only the Active Image table displays In this case the Activate Alternate Image button is also disabled 2 If the Alternate Image is active due to a corruption of the primary image or du...

Page 540: ...tton A confirmation message displays 3 If you are not sure you want to activate the alternate S4224 image click the Cancel button and continue operation If you are sure you want to restart the S4224 c...

Page 541: ...ge System config has just converted to a new format Please backup the configuration if needed CLI Commands to Re Access the Web GUI After a Software Upload via the Maintenance Software Upload path you...

Page 542: ...ce Firmware Update Browse to the location of a firmware image and click Upload After the firmware image is uploaded a page announces that the firmware update is initiated The switch will automatically...

Page 543: ...ile that represents the currently active configuration on the switch This file is volatile startup config The startup configuration for the switch read at boot time default config A read only file wit...

Page 544: ...fig thereby ensuring that the currently active configuration will be used at the next reboot Note The generation of the configuration file may be time consuming depending on the amount of non default...

Page 545: ...for download 1 Navigate to the Maintenance Configuration Download menu path 2 Select the file to save and click the Download Configuration button 3 At the File Download dialog click the Save button 4...

Page 546: ...he current configuration is fully replaced with the configuration in the uploaded file Merge mode The uploaded file is merged into running config If the file system is full i e contains the three syst...

Page 547: ...other files it is not possible to create new files but an existing file must be overwritten or another deleted first 5 At the Choose File dialog click the Open button 6 Click the Upload Configuration...

Page 548: ...e Configuration Upload menu path to display the Upload Configuration page 2 Select the configuration file to activate and click the Activate Configuration button This will initiate the process of comp...

Page 549: ...default configuration 1 Navigate to the Maintenance Configuration Delete menu path to display the Delete Configuration page 2 Select the filename of the config file to be deleted 3 Click the Delete Co...

Page 550: ...ed Log See the Monitor section on page 382 9 In Windows Internet Explorer try clicking the Tools Compatibility View option 10 If you can access the S4224 via PuTTY or HyperTerminal but not via the web...

Page 551: ...tection that can operate without APS 1 1 unidirectional Note that 010x 001x and 011x are invalid since 1 1 and bidirectional require an APS communication If the B bit mismatches the selector is releas...

Page 552: ...of host names to IPv6 addresses is done by DNS with the exception of link local equivalent to IPv4 APIPA addresses which resolve automatically DNS handles records for IPv6 host names similar to IPv4 a...

Page 553: ...TO html_single Linux IPv6 HOWTO or your distribution documentation and or website RADIUS Troubleshooting in Windows Server Environments Microsoft RADIUS implementations differ between Windows Server 2...

Page 554: ...a PAM library and an Apache module The word FreeRADIUS usually refers to the RADIUS server FreeRADIUS is the most widely deployed RADIUS server in the world and it is the basis for several commercial...

Page 555: ...ivity are not problems even an 85 spike may be acceptable depending on the cause Over time the switch operates within a certain sustained CPU load range which is considered the normal operations basel...

Page 556: ...46 aspx For troubleshooting High CPU Usage on a Domain Controller see http technet microsoft com en us library bb727054 aspx For troubleshooting High CPU Utilization issues using Tracelog see http blo...

Page 557: ...e the Monitor sub menu functions System Ports Link OAM MAC Table VLANS to view related status statistics events etc related to a specific function 8 Use the Diagnostics Main Menu sub menu functions Pi...

Page 558: ...to connect on a secure port identify the device that attempted to connect on the secure port and notify your network system administrator of the condition 7 For messages that indicate that the amount...

Page 559: ...Maintenance Factory Defaults Recovery None confirm that you want to reset the S4224 to its factory default settings click Yes or clear the message and continue using the current configuration click No...

Page 560: ...browser s Back key to return to the main menu 2 Enter or Browse to and select an acceptable file image from a valid location e g C TFTP Root 3 Click the Upload button See the Software Upload section f...

Page 561: ...he Logout button Recovery Confirmation message only click the webpage OK button to continue to log out of the S4224 web interface session otherwise click the Cancel button to continue working in the c...

Page 562: ...act TN Tech Support Message West RAPS MEP and East RAPS MEP cannot be the same Meaning At Configuration ERPS you tried to add a new Protection Group but the operation failed when you clicked the Save...

Page 563: ...webpage message 2 Change the Port 0 APS MEP or the Port 1 APS MEP field so that they have different entries 3 Click the Save button 4 If the problem persists contact TN Tech Support Message The value...

Page 564: ...In the ERPDS ID field enter a unique ID number of 1 64 3 Click the Save button 4 If the problem persists contact TN Tech Support Message Only one MEP can be added for each Save operation Meaning At C...

Page 565: ...ther valid supported selection and then click Save 3 If the problem persists contact TN Tech Support Message GroupID3andVID 4combinationisalreadyinuse Pleaseupdateexistingentryinsteadofaddingitagain E...

Page 566: ...ANs VLAN Membership you tried to delete VLAN ID 1 from the VLAN Membership table This is the default VLAN if you delete it the S4224 connection will drop Meaning You tried to delete a non existent VLA...

Page 567: ...clear the webpage message 2 Select another unit of measure kbps or mbps and continue operation 3 If a problem persists contact TN Tech Support Message Do you want to log out the web site Meaning Fire...

Page 568: ...ists contact TN Tech Support Message No port members for VLAN x Please check the delete button to delete the VLAN from the list or add the members Example Meaning At Configuration VLANs VLAN Membershi...

Page 569: ...t the Action parameter to Permit which does not allow the Port Redirect parameter to be set to a Port Port 3 on the screen above Recovery 1 Click the OK button to close the webpage message 2 Either a...

Page 570: ...an invalid parameter Recovery 1 Click the browser Back button to clear the message 2 Make sure the Loopback Operation checkbox is unchecked 3 Verify the Link OAM Port Configuration table selections c...

Page 571: ...tor or change your user privilege to Admin 2 Click the OK button to clear the message 3 Continue operation 4 If a problem persists contact TN Tech Support Message The value of Group IP Address must be...

Page 572: ...ust be a valid IPv6 address in 128 bit records represented as eight fields of up to four hexadecimal digits with a colon separates each field Meaning At Configuration IPMC MLD Snooping Port Group Filt...

Page 573: ...help page for correct Group ID format Meaning Recovery At Configuration VLAN VLAN Membership you did not enter a Group ID or VLAN ID 1 Click the OK button to clear the webpage message 2 Enter a valid...

Page 574: ...ured checkbox and clicked Save Recovery 1 Verify that this is the function that you want to perform and be aware of the consequences mentioned 2 Determine whether your particular computer will require...

Page 575: ...Click the OK button only if you are sure you want to continue IPv6 Auto Configuration Otherwise click the No button and then click Reset 3 See IP Configuration on page 18 for more information Message...

Page 576: ...ion MEP Performance Monitor Instance in the Delay Measurement section in the Count field you entered an invalid value Recovery 1 Click the OK button to clear the webpage message 2 Enter a Gap value of...

Page 577: ...1 Click the OK button to clear the webpage message 2 Enter a valid Interval in the range of 1 to 3600 3 See Configuration Security Switch SNMP RMON on page 83 Message Variable value is xxx yyy xxx is...

Page 578: ...b session may drop 2 See IP Configuration on page 22 Message The format of Server Address is invalid It must be a valid IP in dotted decimal notation x y z w Example Meaning Recovery 1 Click the OK bu...

Page 579: ...of Key cannot be empty Meaning At Configuration Aggregation LACP you clicked the Save button without first entering a Key entry field entry Recovery 1 Click the OK button to close the message dialog b...

Page 580: ...not signed by a valid security certificate To help protect your security Internet Explorer has blocked this website with security certificate errors Click here for option Meaning Web browser certifica...

Page 581: ...manual Message All EVCs statistics will be cleared Do you want to proceed anyway Meaning Confirmation message You clicked the Clear button at Monitor Ethernet Services EVC Statistics Recovery 1 Click...

Page 582: ...res a configuration change before you can perform this action Recovery 1 Click the browser s Back button to clear the message 2 Make the requested configuration change e g disable LACP for the port or...

Page 583: ...it s physically disconnected from the storm At times the S4224 is unresponsive even after disconnecting it from the storm and has to be power cycled to regain management Disabling Storm Control produ...

Page 584: ...ports set to the forbidden state 5 See the Delete VLAN Translation Group Entry command for CLI information Problem CPU can be overloaded by broadcast packets causing loss of management S4224 receiving...

Page 585: ...e 3280 as a ping to the DNS name will fail The A record maps a host name to an IP address and the PTR record creates a pointer to the host for reverse lookups Recovery FQDN option 81 refers to the Ful...

Page 586: ...50 Message Entry with VLAN ID x and MAC Address xx xx xx xx xx xx already in MAC table Meaning At the Configuration MAC Table Static MAC Table Configuration menu path you tried to add a new static en...

Page 587: ...one of the following errors after firmware upgrade decompression error invalid block type decompression error invalid stored block lengths Meaning Flash Corruption and SPI Bus Access bug Recovery 1 Bo...

Page 588: ...the configuration at Configuration Link OAM Port Settings or at Configuration Link OAM Event Settings Problem The Clear button at Configuration Link OAM Event Settings causes issues Meaning Clicking...

Page 589: ...ox click the Open button 4 Click the Upload button 5 At the web page message select OK or Cancel 6 The upgrade will proceed or the message Firmware Upload Error Flash is already updated with this imag...

Page 590: ...r the webpage message if applicable 2 Re enter the parameter within the valid range See ERPS Instance Configuration on page 250 Note that the number refers to the MEP instance number and not the MEP I...

Page 591: ...Error evc_mgmt_add 0 failed Meaning At the S4224 Configuration Ethernet Services menu path you tried to set up the ECE before setting up the related EVC At the CLI you entered one of the EVC ECE comm...

Page 592: ...s occur when the limit parameter reaches 1023 or 1024 Description This is a Port Security Limit Control issue where the software is unable to process the new Mac address frames in time It is receiving...

Page 593: ...ices Bandwidth Profiles in the Bandwidth Profiles Configuration table the numbers in the CIR kbps CBS bytes EIR kbps EBS bytes columns are different than expected Meaning EVC BWP rates are now calcula...

Page 594: ...d together Recovery 1 Disable one or the other Message Error Part of the VLAN configuration didn t apply as some of ports are in forbidden list for a given VLAN id Error Part of the VLAN configuration...

Page 595: ...evel after login with TACACS using a user configured with level 15 A configured user is allowed to login if TACACS is the only login method for HTTP or SSH Saving the configuration and rebooting after...

Page 596: ...Port Configuration Using primary power source Normal power on operation Frame of 243 bytes received on port 1MAC Normal frame size information Port 1 shut down Normal port shutdown information Authen...

Page 597: ...00 27 32 58 eth_link_oam_mgmt_port_mib_retrival_oper_set 849 Error Unable to retrive the mode of the port 1 41 Verify the Link OAM Mib Retrieve settings See the Link OAM Mib Retrieve section of this m...

Page 598: ...s the messages provides an example and discusses the message meaning of and possible recovery steps Message PuTTY Security Alert The server s host key is not cached in the registry Meaning Normal PuTT...

Page 599: ...ired Meaning Normal Firefox login screen Recovery Enter your S4224 User Name and Password and click the Log In button Message PuTTY Fatal Error Server unexpectedly closed network connection Meaning Re...

Page 600: ...operations Some web pages do not render correctly with IE because the web pages were designed for earlier functions Resolution 1 Enable compatibility view in Internet Explorer at IE Tools Compatibilit...

Page 601: ...CAT 6E Up to 500 MHz Field tested to 500 MHz Supports 10 Gigabit Ethernet 10GBASE T May be either shielded STP ScTP S FTP or unshielded UTP Standard published in Feb 2008 The minimum requirement for...

Page 602: ...seagate com sff SFF 8472 PDF Table 8 Connector Descriptions Value Description of connector 00h Unknown or unspecified 01h SC 02h Fibre Channel Style 1 copper connector 03h Fibre Channel Style 2 coppe...

Page 603: ...org All rights reserved Redistribution and use in source and binary forms with or without modification are permitted provided that the following conditions are met 1 Redistributions of source code mus...

Page 604: ...CONTRACT TORT OR OTHERWISE ARISING FROM OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE LibTomCrypt and LibTomMath are written by Tom St Denis and are Public Do...

Page 605: ...tions and the following disclaimer 2 Redistributions in binary form must reproduce the above copyright notice this list of conditions and the following disclaimer in the documentation and or other mat...

Page 606: ...ight notice and this permission notice shall be included in all copies or substantial portions of the Software THE SOFTWARE IS PROVIDED AS IS WITHOUT WARRANTY OF ANY KIND EXPRESS OR IMPLIED INCLUDING...

Page 607: ...ded that the following conditions are met Redistributions of source code must retain the above copyright notice this list of conditions and the following disclaimer Redistributions in binary form must...

Page 608: ...ies Redistribution and use in source and binary forms with or without modification are permitted provided that the following conditions are met Redistributions of source code must retain the above cop...

Page 609: ...d provided that the above copyright notice appear in all copies and that both that copyright notice and this permission notice appear in supporting documentation ALEX ROZIN DISCLAIM ALL WARRANTIES WIT...

Page 610: ...de must retain the above copyright notice this list of conditions and the following disclaimer 2 Redistributions in binary form must reproduce the above copyright notice this list of conditions and th...

Page 611: ...be used in advertising or publicity pertaining to distribution of the software without specific written prior permission U M makes no representations about the suitability of this software for any pur...

Page 612: ...nSSL Toolkit http www openssl org THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT AS IS AND ANY EXPRESSED OR IMPLIED WARRANTIES INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY...

Page 613: ...ute sublicense and or sell copies of the Software and to permit persons to whom the Software is furnished to do so subject to the following conditions The above copyright notice and this permission no...

Page 614: ...conditions and the following disclaimer in this position and unchanged 2 Redistributions in binary form must reproduce the above copyright notice this list of conditions and the following disclaimer i...

Page 615: ...nitoring and service activation measurement SAM Network demarcation Service protection linear ring S4224 applications include Wireless and mobile backhaul small cell Ethernet demarcation Available TN...

Page 616: ...ix D Service Warranty Compliance Information See the related Install Guide manual for Service Warranty Compliance Information Declaration of Conformity Electrical Safety Warnings Safety Instructions f...

Page 617: ...RFC 5519 Multicast Group Membership Discovery MIB RFC 3411 SNMP Management Frameworks RFC 3414 User based Security Model for SNMPv3 RFC 3415View based access Control Model for SNMP RFC 3635 Ethernet l...

Page 618: ...Transition Networks S4224 Web User Guide 33558 Rev C https www transition com Page 618 of 669 tn mibs v2 2 1 zip file tn mibs v2 2 x standards draft_standards...

Page 619: ...hanced Multicast Filtering components of IEEE 802 1D 1998 The other MIB module defines objects for managing IEEE 802 1Q VLANs RFC 4878 Link OAM MIB Definitions and Managed Objects for OAM Functions on...

Page 620: ...rt for version neutral IP address formats RFC 3411 SNMP Management Frameworks An Architecture for Describing SNMP Management Frameworks describes an architecture for describing Simple Network Manageme...

Page 621: ...MEF 7 1 which are applicable to FM functions Two non MEF documents serve as the baseline documents for this work ITU T Y 1731 and IEEE 802 1ag MEF SOAM PM draft MEF 36 Service OAM SNMP MIB for Perform...

Page 622: ...Tabl e 12 TN V LA N M G M T M I B t nS ysV LA N E xt Tabl e 13 TN V LA N M G M T M I B t nI f V LA N TagM gm t 2Tabl e 14 P BRIDGE MIB dot1dPortPriorityTable 15 P BRIDGE MIB dot1dUserPriorityRegenTab...

Page 623: ...S oam D m S t at eTabl e 44 TN Q O S E X T M I B t nQ osE xt P ort P ol i cerTabl e 45 TN Q O S E X T M I B t nQ osE xt P ort Q ueueP ol i cerTabl e 46 TN Q O S E X T M I B t nQ osE xt P ort S chedul...

Page 624: ...IB modules and MIB Variables the Object ID OID the MIB Tree branch node MIB Table Indices values notations and transaction types etc see the SNMP Primer at http www transition com pshelp snmp html ind...

Page 625: ...6 1 4 1 868 2 5 3 0 1 When the tnDMIRxPowerLevel falls below the tnDMIRxPwrLvlPreset indicating an intrusion on the fiber 12 TN MGMT MIB tnDMIRxPowerEvt 1 ifIndex 2 tnDMIRxPowerAlarm 3 tnDMIRxPowerLev...

Page 626: ...1 tnPortMIB tnProducts 31 tnIPSourceGuardMIB tnProducts 142 tnMacMib tnProducts 32 tnThermalProtectionMIB tnProducts 143 tnEthSoamPmMIB tnProducts 33 tnDhcpMIB tnProducts 144 tnMplsMib tnProducts 35 t...

Page 627: ...ingGasp tnDevMgmt 4 tnDevSysMACLearning tnDevMgmt 5 tnAclMgmt tnDevMgmt 11 tnDevSysxNTP tnDevMgmt 14 tnDevSysSnmpmgmt tnDevMgmt 18 tnSyslogMIB tnDevMgmt 19 tnDevSysUser tnDevMgmt 21 tnSecurityAAAMIB t...

Page 628: ...fSoamLmCfgTable 29 MEF SOAM FM MIB mefSoamLbCfgTable 30 MEF SOAM FM MIB mefSoamLbrMulticastTable 31 TN ETHSOAM MIB tnEthSoamLocalCfgTable 32 TN ETHSOAM MIB tnEthSoamStatusTable 33 TN ETHSOAM MIB tnEth...

Page 629: ...nAccessMgmtTable v1 4 83 TN ACCESS MGMT MIB tnAccessMgmtStatsTable v1 4 84 TN IP SOURCE GUARD MIB tnIPSourceGuardTable v1 4 85 TN IP SOURCE GUARD MIB tnIPSourceGuardIfTable v1 4 86 TN IP SOURCE GUARD...

Page 630: ...nCurrentTable 1 3 4 Q BRIDGE MIB dot1qVlanStaticTable 1 3 4 Q BRIDGE MIB dot1qPortVlanTable 1 3 4 IEEE8021 Q BRIDGE MIB ieee8021QBridgeTable 1 3 4 IEEE8021 Q BRIDGE MIB ieee8021QBridgeFdbTable 1 3 4 I...

Page 631: ...SNMP NOTIFICATION MIB snmpNotifyTable SNMP COMMUNITY MIB snmpCommunityTable SNMP COMMUNITY MIB snmpTargetAddrExtTable Additional SNMP traps notes The Last Gasp can be in the form of IEEE802 3 2008 Cla...

Page 632: ...lude RADIUS TACACS TACACS etc See the IETF Working Group status page http tools ietf org wg aaa for more information For IETF RFC information see http tools ietf org html rfc2975 Authentication refers...

Page 633: ...is 64 ACL Ports The ACL Ports configuration is used to assign a Policy ID to an ingress port This is useful to group ports to obey the same traffic rules Traffic Policy is created under the Access Co...

Page 634: ...8031 Aggregation Using multiple ports in parallel to increase the link speed beyond the limits of a port and to increase the redundancy for higher availability Also Port Aggregation Link Aggregation A...

Page 635: ...rival times and lengths at a reference point and a specification of the disposition of each Service Frame based on its level of compliance with the Bandwidth Profile In MEF documents the reference poi...

Page 636: ...t routed Using SNMP with the CDP MIB lets network management applications learn the device type and the SNMP agent address of neighboring devices and to then send SNMP queries to those devices CIST Ac...

Page 637: ...ement Protocol 0x8819 CobraNet 0x8847 MPLS Multi Protocol Label Switching unicast 0x8848 MPLS Multi Protocol Label Switching multicast 0x8863 PPoE PPP over Ethernet Discovery stage 0x8864 PPoE PPP ove...

Page 638: ...ode used in the exchange remain the same for the duration of the packet exchange Examples are a TCP connection or a UDP request response CoS The QoS technique known as Class of Service CoS is a 3 bit...

Page 639: ...into a DHCP request packets when forwarding client DHCP packets to a DHCP server and remove the specific information from a DHCP reply packets when forwarding server DHCP packets to a DHCP client The...

Page 640: ...rwarding behaviors known as per hop behaviors or PHBs for a given set of packet travel rules DSCP uses the first 6 bits in the ToS field of the IPv4 packet header In many cases DSCP has replaced the o...

Page 641: ...a fully allocated survivability mechanism fully allocated in that the route and bandwidth of the protection entity is reserved for a selected working entity EPS provides a fast and simple survivabilit...

Page 642: ...and fewer than 16 Ethernet ring nodes the switch completion time transfer time as defined in ITU T G 808 1 for a failure on a ring link will be less than 50 ms On Ethernet rings under all other condit...

Page 643: ...col is being transported in an Ethernet frame See Commonly Used EtherTypes above EUI 64 The 64 bit Extended Unique Identifier EUI 64 in IPv6 EVC Ethernet Virtual Connection An association of two or mo...

Page 644: ...stack and each of the two GLAGs may consist of up to eight ports For both LLAGs and GLAGs the egress port is chosen based on an aggregation code that is calculated for the frame This ensures that fram...

Page 645: ...sion Control Protocol TCP connection to a particular port on a remote host port 80 by default An HTTP server listening on that port waits for the client to send a request message HTTPS HTTPS Hypertext...

Page 646: ...e name is a feature that allows a network switch to listen in on the IGMP conversation between hosts and routers By listening to these conversations the switch maintains a map of which links need whic...

Page 647: ...Area Network LAN or Wide Area Network WAN is given an Internet Protocol address and this IP address is used to identify the device uniquely among all other devices connected to the extended network T...

Page 648: ...where each host has a different MAC address and at the same time ensure that other hosts which are not part of the multicast group don t process the information Broadcast packets make use of a broadc...

Page 649: ...In IPv6 a communication facility or medium over which nodes can communicate at the link layer i e the layer immediately below IPv6 Examples are Ethernets simple or bridged PPP links X 25 Frame Relay...

Page 650: ...an aggregation code that is calculated for the frame This ensures that frames relating to a given frame flow are forwarded on the LLAG or GLAG member port and thus do not risk being re ordered See als...

Page 651: ...namic entries are removed from the MAC table if no frame with the corresponding SMAC address have been seen after a configurable age time Major ring The Ethernet ring that is connected on two ports to...

Page 652: ...ators and Service Providers Note The MEF and Broadband Forum BBF are not aligned on the use of MEG Level 5 If interworking between an MEF compliant implementation and a BBF compliant implementation is...

Page 653: ...ned a number of configured VLANs and frames packets assigned to these VLANs operate in this spanning tree instance whenever they are inside the MST region To avoid conveying their entire VLAN to spann...

Page 654: ...ir features and capabilities for remote troubleshooting easy installation and SLA monitoring to reduce SLA penalties it is important for service providers to be aware of the additional revenue streams...

Page 655: ...ere the registration activity is high Alternatively registration can be affected by letting organizations act as registration authorities to perform registration on a flexible basis The registration t...

Page 656: ...e also known as User Priority PD PD Powered Device in a PoE system the power is delivered from a PSE power sourcing equipment to a remote device The remote device is called a PD PDU Protocol Data Unit...

Page 657: ...s assigned to an interface whose use by upper layer protocols is unrestricted Preferred addresses may be used as the source or destination address of packets sent from or to the interface Preferred li...

Page 658: ...RPL The node at the other end of the RPL is known as RPL Neighbour Node It uses R APS control messages to coordinate the activities of switching on off the RPL link Any failure along the ring triggers...

Page 659: ...n the transmitted request state information and maintains the switch With bidirectional protection switching a local wait to restore state is entered only when there is no higher priority of request r...

Page 660: ...ure Hash Algorithm is designed by the National Security Agency NSA and published by the NIST as a U S Federal Information Processing Standard Hash algorithms compute a fixed length digital representat...

Page 661: ...ng SNMP SNTP SNTP Simple Network Time Protocol is a network protocol for synchronizing the clocks of computer systems SNTP uses UDP datagrams as transport layer SOAM Service OAM provides Ethernet Conn...

Page 662: ...the receiver By so limiting the source SSM reduces demands on the network and improves security SSM requires that the receiver specify the source address and explicitly excludes the use of the G join...

Page 663: ...address the network mask can be determined by the encoding inherent in an IP address Synchronized clocks Two clocks are synchronized to a specified uncertainty when they have the same epoch and their...

Page 664: ...hich a switch port can belong ToS ToS Type of Service is implemented as the IPv4 ToS priority control It is fully decoded to determine the priority from the 6 bit ToS field in the IP header The most s...

Page 665: ...required to connect a subscriber to a MEN per MEF 27 UNI N UNI Network per MEF 4 A compound functional element used to represent all of the functional elements required to connect a MEN to a MEN subs...

Page 666: ...ID 1 and members of VLAN 1 This means that MAC addresses are learned in VLAN 1 and the switch does not remove or insert VLAN tags VLAN aware switching This is based on the IEEE 802 1Q standard All po...

Page 667: ...G levels used by SOAM PDUs that use single tags Voice VLAN Voice VLAN is VLAN configured specially for voice traffic By adding the ports with voice devices attached to voice VLAN we can perform QoS re...

Page 668: ...8 EVC Configuration 293 EVC types 288 EVPL service 306 Fast Leave 180 HTTPS Configuration 60 LACP Configuration 145 Link Aggregation 142 Link Speed 30 LLDP Configuration 194 197 Loop Protection Config...

Page 669: ...C https www transition com Page 669 of 669 Transition Networks 10900 Red Circle Drive Minnetonka MN 55343 USA Tel 952 941 7600 or 1 800 526 9267 Fax 952 941 2322 Copyright 2014 2017 Transition Network...

Reviews:

No comments

Brands by name

Popular brands

Load more brands