manualshive.com logo in svg

Transition Networks SM8T2DPA, User Manual

The Transition Networks SM8T2DPA user manual is available for free download from our website. This comprehensive manual provides detailed instructions for setting up and using the product, ensuring a seamless user experience. Download the manual today to get the most out of your SM8T2DPA device.

Share
Download
background image

 

                                                                                                                      May., 2011 

                                                                                                                                               Revision A0     

 

106 

3-8. ACL 

The SM8T2DPA switch access control list (ACL) is probably the most 

commonly used object in the IOS. It is used for packet filtering but also for selecting 
types of traffic to be analyzed, forwarded, or influenced in some way. 

The ACLs are divided into EtherTypes. IPv4, ARP protocol, MAC and VLAN 

parameters etc. Here we will just go over the standard and extended access lists for 
TCP/IP. As you create ACEs for ingress classification, you can assign a policy for 
each port, the policy number is 1-8, however, each policy can be applied to any port. 
This makes it very easy to determine what type of ACL policy you will be working 
with. 

 
 
 

3-8-1.Ports 

 
Function name: 

ACL Port Configuration 

Function description: 

The switch ACL function support up to 128 Access Control Entries (ACEs), 
using the shared 128 ACEs for ingress classification. You can create an ACE 
and assign this ACE for each port with <Any> or assign this ACE for a policy 
or assign this ACE for a port. There are 8 policies, each port can select one of   
policy, then decides which of the following actions would take according to the 
packet’s IPv4, EtherType, ARP Protocol, MAC Parameters and VLAN 
parameters: 

-

 

Packet Deny or Permit 

-

 

Rate Limiter (Unit: pps)  

-

 

Port Copy (1 – 8) 

 

 

Fig. 3-64 

Parameter description: 

Port #: 

Port number: 1~8 

Summary of Contents for SM8T2DPA

Page 1: ...SM8T2DPA 6 Port 10 100 1000Base T plus 2 RJ 45 100 1000 SFP Combo Ports Managed Switch User Guide...

Page 2: ......

Page 3: ...opean Community Compliance with these directives imply conformity to the following European Norms EN55022 CISPR 22 Radio Frequency Interference EN61000 X Electromagnetic Immunity EN60950 IEC950 Produc...

Page 4: ...Serial RS 232 Port 21 2 1 4 2 Configuring the Management Agent of SM8T2DPA through the Ethernet Port 24 2 1 5 IP Address Assignment 25 2 2 TYPICAL APPLICATIONS 29 3 OPERATION OF WEB BASED MANAGEMENT...

Page 5: ...S 157 3 11 1 State 157 3 11 2 Authentication 158 3 11 3 Authorization 159 3 11 4 Accounting 160 3 12 TRUNKING CONFIGURATION 161 3 12 1 Port 162 3 12 2 Aggregator View 164 3 12 3 Aggregation Hash Mode...

Page 6: ...Save User 208 3 20 4 Restore User 209 3 21 EXPORT IMPORT 210 3 22 DIAGNOSTICS 211 3 22 1 Diag 211 3 22 2 Ping 212 3 23 MAINTENANCE 213 3 23 1 Warm Restart 213 3 23 2 Software Upload 213 3 24 LOGOUT 21...

Page 7: ...Rev A0 1 May 11 v Revision History Date Revision 05 01 2010 A0...

Page 8: ...for repairing fees Do not place product at outdoor or sandstorm Before installation please make sure input power supply and product specifications are compatible to each other The SSL only provide th...

Page 9: ...by RS 232 serial interface and Ethernet ports step by step It will also show you the deital of hardware and software functions as well as the examples of the operation for web based interface and comm...

Page 10: ...o LAN and office application The switch also support the Power saving for reduce the power consumption with ActiPHY Power Management and PerfectReach Power Management two technique It could efficient...

Page 11: ...ver SNMP protocol used to receive the command from SNMP manager server site and echo the corresponded data i e MIB object Besides SNMP agent will actively issue TRAP information when happened RMON is...

Page 12: ...Subscriber Aggregation This is very useful in the MAN MVR Multicast VLAN Registration MVR can support carrier to serve content provider using multicast for Video streaming application in the network...

Page 13: ...s to the browser based management GUI in the switch And Secure Shell SSH which supports the encryption for all transmitted data for secure remote command line interface CLI access over IP networks Not...

Page 14: ...able classifier for QoS Layer 4 Multimedia 8K MAC address and 4K VLAN support IEEE802 1Q Per port shaping policing and Broadcast Storm Control Power Saving with ActiPHY Power Management and PerfectRea...

Page 15: ...t security administration by using a password with Cisco TACACS authentication server Supports 802 1X port security on a VLAN Supports IP MAC Port Binding for LAN security Supports user management and...

Page 16: ...left side of the panel contains a Power LED which indicates the power status and 8 ports working status of the switch One RS 232 DB 9 interface is offered for configuration or management One RS 232 DB...

Page 17: ...good 10 100 1000Mbps Green Amber Lit green when 1000Mbps speed is active Lit ember when 100Mbps speed is active Off when 10Mbps speed is active 1000SX LX Gigabit Fiber Port 7 8 LED SFP LINK ACT Green...

Page 18: ...ber Transceivers to the SM8T2DPA Note If you have no modules please skip this section Connecting the SFP Module to the Chassis The optional SFP modules are hot swappable so you can plug or unplug it b...

Page 19: ...eps as needed for each RJ 45 port to be connected to a Gigabit 10 100 1000 TP device Now you can start having the switch in operation Power On The switch supports 100 240 VAC 50 60 Hz power supply The...

Page 20: ...1 Cabling Requirements for TP Ports For Fast Ethernet TP network connection The grade of the cable must be Cat 5 or Cat 5e with a maximum length of 100 meters Gigabit Ethernet TP network connection Th...

Page 21: ...may reduce the timing delay between server and client station Basically with this approach it will minimize the number of switches in any one path will lower the possibility of network loop and will...

Page 22: ...5 1 VLAN1 members could not access VLAN2 VLAN3 and VLAN4 members 2 VLAN2 members could not access VLAN1 and VLAN3 members but they could access VLAN4 members 3 VLAN3 members could not access VLAN1 VL...

Page 23: ...lease first modify the IP address Subnet mask Default gateway and DNS through RS 232 console and then do the next 2 1 4 1 Configuring the Management Agent of SM8T2DPA through the Serial RS 232 Port To...

Page 24: ...serial RS 232 DB 9 connector on the switch 3 Attaches the other end of the serial RS 232 DB 9 cable to PC s serial port running a terminal emulator supporting VT100 ANSI terminal with The switch s ser...

Page 25: ...e IP address of the switch next to change the IP address of default gateway and subnet mask For example your network address is 10 1 1 0 and subnet mask is 255 255 255 0 You can change the switch s de...

Page 26: ...llow the procedures listed below 1 Set up a physical path between the configured the switch and a PC by a qualified UTP Cat 5 cable with RJ 45 connector Note If PC directly connects to the switch you...

Page 27: ...fier must be unique in the same LAN Here the term of IP address we used is version 4 known as IPv4 Network identifier Host identifier Fig 2 11 IP address structure With the classful addressing it divi...

Page 28: ...means the sub division of a class based network or a CIDR block The subnet is used to determine how to split an IP address to the network prefix and the host address in bitwise basis It is designed to...

Page 29: ...mbers in the sub netted network Another is that the length of network prefix equals the number of the bit with 1s in that subnet mask With this you can easily count the number of IP addresses matched...

Page 30: ...with the designated IP address known as default router Basically it is a routing policy The gateway setting is used for Trap Events Host only in the switch For assigning an IP address to the switch y...

Page 31: ...LC and BiDi LC SFP modules For more details on the specification of the switch please refer to Appendix A The switch is suitable for the following applications Central Site Remote site application is...

Page 32: ...g 2 13 is a system wide basic reference connection diagram This diagram demonstrates how the switch connects with other network devices and hosts Fig 2 15 Office Network Connection Fig 2 14 Peer to pe...

Page 33: ...and password then click the Login button The login process now is completed Just click the link of Forget Password in WebUI See Fig 3 1 or input Ctrl Z in CLI s login screen See Fig 4 1 4 2 in case th...

Page 34: ...t IE 6 0 above Netscape V7 1 above or FireFox V1 00 above and have the resolution 1024x768 The switch supported neutral web browser interface In Fig 3 2 for example left section is the whole function...

Page 35: ...g Model Name System Description Location Contact Device Name System Up Time Current Time BIOS Version Firmware Version Hardware Mechanical Version Serial Number Host IP Address Host Mac Address Device...

Page 36: ...fic status and bandwidth rating for egress and ingress respectively On the left top corner there is a pull down list for Auto Logout For the sake of security we provide auto logout function to protect...

Page 37: ...ev A0 1 May 11 35 Port MAC QoS System VLAN GVRP SNMP ACL Root IP MAC Binding 802 1X Trunk STP MSTP Mirroring Multicast Alam Save Restore Export Import Diagnostics DHCP Snooping LLDP Maintenance Logout...

Page 38: ...Location Basically it is the location where this switch is put User defined Contact For easily managing and maintaining device you may write down the contact person and phone here for getting help so...

Page 39: ...ersion of electronic hardware the one after the hyphen is the version of mechanical Serial number The serial number is assigned by the Transition Host IP address The IP address of the switch Host MAC...

Page 40: ...o modify the administrator equivalent identity Guest equivalent identity can modify his password only Please note that you must confirm administrator guest identity in the field of Authorization in ad...

Page 41: ...the Internet and an user defined NTP server IP address The time zone is Greenwich centered which uses the expression form of GMT xx hours Function name Time Function description Set the system time by...

Page 42: ...set it will adjust the time lag or in advance in unit of hours according to the starting date and the ending date For example if you set the day light saving to be 1 hour When the time passes over the...

Page 43: ...v A0 1 May 11 41 Default 0 Day Light Saving End This is used to set when to stop performing the daylight saving time Mth Range is 1 12 Default 1 Day Range is 1 31 Default 1 Hour Range is 0 23 Default...

Page 44: ...guration Parameter description DHCP Setting DHCP is the abbreviation of Dynamic Host Configuration Protocol Here DHCP means a switch to turn ON or OFF the function The switch supports DHCP client used...

Page 45: ...ss looked Network address Subnet mask number and host address It is shown in the following figure This reduces the total IP number of a network able to support by the amount of 2 power of the bit numb...

Page 46: ...ser can specify a DNS IP address for the switch With this the switch can translate a mnemonic name address into an IP address There are two ways to specify the IP address of DNS One is fixed mode whic...

Page 47: ...ts Function name Loop Detection Function description Display whether switch open Loop detection Fig 3 8 Parameter description Port No Display the port number The number is 1 8 Detection Port Enable Wh...

Page 48: ...connection inside of the accepting range Accept Deny Accept Deny Accept Rule 3 When only deny lists exist then it will accept all connections excluding the connection inside of the denying range Deny...

Page 49: ...e switch for example we can decide that which VLAN VID is able to be accepted or denied by the switch the IP range of the user could be accepted or denied by the switch the port that the user is allow...

Page 50: ...ions for managed valid Port Range including Any and Custom Default is Any You can select the ports that you would like them to be worked and restricted in the management security configuration if Cust...

Page 51: ...System Log Function description The Trap Log Data is displaying the log items including all SNMP Private Trap events SNMP Public traps and user logs occurred in the system In the report table No Time...

Page 52: ...he group in the same window without the login of these device The most top left button is only for Master device See Fig 3 9 The background color of the button you press will be changed to represent t...

Page 53: ...t is Enable Role The role that the switch would like to play in virtual stack Two types of roles including master and slave are offered for option Default is Master Group ID It is the group identifier...

Page 54: ...3 2 1 Port Configuration Port Configuration is applied to change the setting of each port In this configuration function you can set reset the following functions All of them are described in detail...

Page 55: ...mitting device s if the receiving port is too busy to handle When it is set Disable there will be no flow control in the port It drops the packet if too much to handle Maximum Frame This module offer...

Page 56: ...the ports in the switch changes its parameter displayed in the page it will be automatically refreshed the port current status about every 5 seconds Fig 3 13 Parameter Description Port Display the por...

Page 57: ...mode The local port has to be preset its capability Default None depends on the result of the negotiation Flow Control Show each port s flow control status There are two types of flow control in Ethe...

Page 58: ...Vendor OUI Display the Manufacturer s OUI code which is assigned by IEEE Vendor Name Display the company name of the module manufacturer Vendor P N Display the product name of the naming by module ma...

Page 59: ...r will be reset and restart counting The data is updated every time interval defined by the user The Refresh Interval is used to set the update frequency Function name Simple Counter Function descript...

Page 60: ...ackets transmitted drop Receive Number of packets received drop Auto refresh The simple counts will be refreshed automatically on the UI screen Refresh The simple counts will be refreshed manually whe...

Page 61: ...counter will be reset and restart counting The data is updated every time interval defined by the user The valid range is 3 to 10 seconds The Refresh Interval is used to set the update frequency Defa...

Page 62: ...t packet Rx 64 Bytes Number of 64 byte frames in good and bad packets received Rx 65 127 Bytes Number of 65 126 byte frames in good and bad packets received Rx 128 255 Bytes Number of 127 255 byte fra...

Page 63: ...ytes with invalid CRC Rx Jabber Number of long frames according tomax_length register with invalid CRC Rx Drops Frames dropped due to the lack of receiving buffer Rx Errors Number of the error packet...

Page 64: ...ent power Function name Power Saving Function description The function using ActiPHY Power Management and PerfectReach Power Management to save the switch s power consumption Fig 3 16 1 Parameter desc...

Page 65: ...ne port of a port based VLAN will be accepted No filtering criterion applies in port based VLAN The only criterion is the physical port you connect to For example for a port based VLAN named PVLAN 1 c...

Page 66: ...to issue IGMP host messages on behalf of hosts that the system discovered through standard IGMP interfaces The system acts as a proxy for its hosts This switch can be set IGMP function Enable or Disab...

Page 67: ...he SYM VLAN function and choose the member by ticking the check box beside the port No then press the Apply button to have the setting taken effect Fig 3 19 Delete Group Just press the Delete button t...

Page 68: ...Rev A0 1 Mar 11 66 Fig 3 20 1 c You need to assign these ports for member of port isolation Fig 3 20 2 d Press the Save to complete the PVLAN configuration process...

Page 69: ...meter description VLAN Name The name defined by administrator is associated with a VLAN group Valid letters are A Z a z 0 9 and _ characters The maximal length is 15 characters Member Port This is use...

Page 70: ...Rev A0 1 Mar 11 68 Delete Group Just press the Delete button to remove the selected group entry from the Port based group table Fig 3 23...

Page 71: ...select the Role of each port as Access Trunk or Hybrid Fig 3 24 Parameter description Port 1 8 Port number VLAN Aware Based on IEEE 802 1Q VLAN tag to forward packet Ingress Filtering Discard other V...

Page 72: ...port is set to Hybrid its packets will be untagged out if the VID of the outgoing packets with tag is the same as the one in the field of Untag VID of this port Untag VID Valid range is 1 4094 It wor...

Page 73: ...of a data packet The method for isolating ports on a layer 2 switch comprises configuring each of the ports on the layer 2 switch as a protected port or a non protected port A destination address on a...

Page 74: ...2011 Revision A0 72 3 3 6 Management VLAN Function name Management VLAN Function description To assign a specific VLAN for management purpose Fig 3 25 Parameter description VID Specific Management VLA...

Page 75: ...essing mechanism of MAC Table An idle MAC address exceeding MAC Address Age out Time will be removed from the MAC Table The range of Age out Time is 10 1000000 seconds and the setup of this time will...

Page 76: ...ynamic learning mechanism Disable Disable this port MAC address dynamic learning mechanism only support static MAC address setting Secure Disable this port MAC address dynamic learning mechanism and c...

Page 77: ...ly maintain the table by filling in MAC Address VID VLAN ID and Alias fields individually User also can delete the existed entry by clicking Delete button Fig 3 27 Parameter description MAC It is a si...

Page 78: ...nt to this MAC address will be forwarded to this port For adding a MAC address entry in the allowed table you just need to fill in four parameters MAC address associated port VID and Alias Just select...

Page 79: ...dd MAC Alias Edit and MAC Alias Delete You can click Create Edit button to add modify a new or an existed alias name for a specified MAC address or mark an existed entry to delete it Alias name must b...

Page 80: ...y the MAC address of one entry you selected from the searched MAC entries table Port The port that exists in the searched MAC Entry VID VLAN identifier This will be filled only when tagged VLAN is app...

Page 81: ...ese information to other GVRP aware devices to setup and update their knowledge database the set of VLANs associated with currently active members and through which ports these members can be reached...

Page 82: ...ault setting is Normal Non Participant It is Non Participant In this mode the switch does not send or reply any GARP messages It just listens messages and reacts for the received GVRP BPDU Default Reg...

Page 83: ...received GVRP PDU The default setting is Normal Enabled In this mode the switch does not create dynamic VLAN when this port received GVRP PDU Except received dynamic VLAN message of the GVRP PDU is a...

Page 84: ...e GVRP application Invalid GVRP Packets Number of invalid GARP BPDU is received by the GARP application LeaveAll Message Packets Number of GARP BPDU with Leave All message is received by the GARP appl...

Page 85: ...kets Number of GARP BPDU with Leave All message is transmitted by the GARP application JoinEmpty Message Packets Number of GARP BPDU with Join Empty message is transmitted by the GARP application Join...

Page 86: ...Parameter description VID VLAN identifier When GVRP group creates each dynamic VLAN group owns its VID Valid range is 1 4094 Member Port Those are the members belonging to the same dynamic VLAN group...

Page 87: ...euing scheduling and congestion control guarantees to the frame according to what was configured for that specific QoS class The switch support advanced memory control mechanisms providing excellent p...

Page 88: ...for QoS behavior User priority The user priority value 0 7 3 bits is used as an index to the eight QoS class values for VLAN tagged or priority tagged frames Queuing Mode There are two Scheduling Met...

Page 89: ...v6 DSCP and UDP TCP ports and ranges Fig 3 35 QCE Configuration The QCL consists of 8 QoS Control Entries QCEs that are searched from the top of the list to the bottom of the list for a match The firs...

Page 90: ...Rev A0 1 Mar 11 88 Fig 3 36 Fig 3 37 Fig 3 38...

Page 91: ...Rev A0 1 May 11 89 Fig 3 39 Fig 3 40 Fig 3 41 Fig 3 42...

Page 92: ...t 0x0803 ECMA Internet 0x0804 Chaosnet 0x0805 X 25 Level 3 0x0806 ARP Address Resolution Protocol 0x0808 Frame Relay ARP RFC1701 0x6559 Raw Frame Relay RFC1701 0x8035 DRARP Dynamic RARP RARP Reverse A...

Page 93: ...x8E88 EAPOL EAP over LAN 0x9000 Loopback Configuration Test Protocol 0xFFFF reserved VLAN ID The configurable VID range 1 4094 UDP TCP Port To select the UDP TCP port classification method by Range or...

Page 94: ...ration Fig 3 43 Parameter description Port Port number Policer Enabled Policer enabled to limit ingress bandwidth by policer rate Policer Rate The configurable policer rate range 500 Kbps 1000000 Kbps...

Page 95: ...Broadcast to prevent storm event happen Fig 3 44 Parameter description Frame Type There three frame types of storm can be controlled Flooded unicast Multicast Broadcast Status Enable Disable Selectio...

Page 96: ...rules user can apply these application easily Fig 3 45 Parameter description Please select an Action User need to select one of action from following items then click on Next to finish QCL configurat...

Page 97: ...ember 1 8 Fig 3 47 Set up Port Policies Parameter description Wizard Again Click on the Wizard Again back to QCL Configuration Wizard Finish When you click on Finish the parameters will be set accordi...

Page 98: ...Rev A0 1 Mar 11 96 Fig 3 48 Set up Port Policies Finish Fig 3 49 Set up Typical Network Application Rules Fig 3 50 Set up Typical Network Application Rules...

Page 99: ...r Real Audio Games Blizzard Battlenet Diablo2 and StarCraft Fighter Ace II Quake2 Quake3 MSN Game Zone User Definition Ethernet Type VLAN ID UDP TCP Port DSCP Ethernet Type Value Type Range 0x600 0xFF...

Page 100: ...11 98 Fig 3 52 Set up Typical Network Application Rules Parameter description QCL ID QCL ID Range 1 8 Traffic Class There are four classes Low Normal Medium High Fig 3 53 Set up Typical Network Appli...

Page 101: ...Rev A0 1 May 11 99 Fig 3 54 Set up Typical Network Application Rules Finish Fig 3 55 Set up Typical Network Application Rules Finish...

Page 102: ...p Typical Network Application Rules Finish Parameter description QCL QoS Control List QCL 1 8 Fig 3 57 Set up TOS Precedence Mapping Parameter description QCL ID QoS Control List QCL 1 8 TOS Precedenc...

Page 103: ...3 58 Set up TOS Precedence Mapping Fig 3 59 Set up TOS Precedence Mapping Finish Fig 3 60 Set up VLAN Tag Priority Mapping Parameter description QCL ID QoS Control List QCL 1 8 Tag Priority 0 7 Class...

Page 104: ...Rev A0 1 Mar 11 102 Fig 3 61 Set up VLAN Tag Priority Mapping...

Page 105: ...Rev A0 1 May 11 103 Fig 3 62 Set up VLAN Tag Priority Mapping Finish...

Page 106: ...NMP agent If you set the field SNMP Enable SNMP agent will be started up All supported MIB OIDs including RMON MIB can be accessed via SNMP manager If the field SNMP is set Disable SNMP agent will be...

Page 107: ...ault community name for SET private Default community name for Trap public Default Set function Enable Default trap host IP address 0 0 0 0 Default port number 162 Trap In the switch there are 6 trap...

Page 108: ...an be applied to any port This makes it very easy to determine what type of ACL policy you will be working with 3 8 1 Ports Function name ACL Port Configuration Function description The switch ACL fun...

Page 109: ...select one of rate limiter ID for this port it will limit met ACL packets by rate limiter ID configuration Port Copy Disabled Disable to copy the met ACL packets to specific port Port number 1 8 Copy...

Page 110: ...n description There are 16 rate limiter ID You can assign one of the limiter ID for each port The rate limit configuration unit is Packet Per Second pps Fig 3 65 Parameter description Rate Limiter ID...

Page 111: ...es each port can select one of policy then decides which of the Permit Deny Rate Limitation and Port Copy actions would take according to the ACL configuration packet s IPv4 EtherType ARP Protocol MAC...

Page 112: ...arameter description Frame Type Range Any Ethernet Type ARP IPv4 Any It is including all frame type Ethernet Type It is including all Ethernet frame type ARP It is including all ARP protocol frame typ...

Page 113: ...Rev A0 1 May 11 111 Fig 3 69 Frame Type Fig 3 70...

Page 114: ...Rev A0 1 Mar 11 112 Fig 3 71 Fig 3 72 Fig 3 73 ARP...

Page 115: ...Rev A0 1 May 11 113 Fig 3 74 ARP Fig 3 75 ARP Fig 3 76 ARP Fig 3 77 ARP...

Page 116: ...Rev A0 1 Mar 11 114 Fig 3 79 ARP Fig 3 80 ARP Fig 3 81 ARP...

Page 117: ...Rev A0 1 May 11 115 Fig 3 82 ARP Fig 3 83 ARP Fig 3 84 ARP Fig 3 85 ARP Fig 3 86 ARP...

Page 118: ...Rev A0 1 Mar 11 116 Fig 3 87 ARP Fig 3 88 IPv4...

Page 119: ...Rev A0 1 May 11 117 Fig 3 89 IPv4 Fig 3 90 IPv4 Fig 3 91 IPv4 Fig 3 92 IPv4 Fig 3 93 IPv4...

Page 120: ...Rev A0 1 Mar 11 118 Fig 3 94 IPv4 Fig 3 95 IPv4 Fig 3 96 IPv4 Fig 3 97 IPv4 Fig 3 98 IPv4...

Page 121: ...Rev A0 1 May 11 119 Fig 3 99 IPv4 Fig 3 100 IPv4 Fig 3 101 IPv4 Fig 3 102 IPv4...

Page 122: ...Rev A0 1 Mar 11 120 Fig 3 103 IPv4 Fig 3 104 IPv4 Fig 3 105 IPv4...

Page 123: ...Rev A0 1 May 11 121 Fig 3 106 IPv4 Fig 3 107 IPv4 Fig 3 108 IPv4...

Page 124: ...Rev A0 1 Mar 11 122 Fig 3 109 IPv4 Fig 3 110 IPv4 Fig 3 111 IPv4...

Page 125: ...Rev A0 1 May 11 123 Fig 3 112 IPv4 Fig 3 113 IPv4 Fig 3 114 IPv4...

Page 126: ...Rev A0 1 Mar 11 124 Fig 3 115 IPv4 Fig 3 116 IPv4 Fig 3 117 IPv4...

Page 127: ...Rev A0 1 May 11 125 Fig 3 118 Action Fig 3 119 Rate Limiter...

Page 128: ...Rev A0 1 Mar 11 126 Fig 3 120 Port Copy Fig 3 121 DMAC Filter...

Page 129: ...Rev A0 1 May 11 127 Fig 3 122 VLAN ID Filter Fig 3 123 VLAN ID Filter Fig 3 124 Tag Priority...

Page 130: ...ingress classification IP Protocol Filter Range Any Ethernet Type ARP IPv4 Any It is including all frame type Ethernet Type It is including all Ethernet frame type ARP It is including all ARP protoco...

Page 131: ...dress BC It is including all Broadcast MAC address UC It is including all Unicast MAC address Ether Type Parameters When Frame Type Ethernet Type EtherType Filter Range Any Specific Any It is includin...

Page 132: ...target IP mask Target IP Address Default 192 168 1 254 Target IP Mask Default 255 255 255 0 ARP SMAC Match Range Any 0 1 Any Both 0 and 1 0 The ingress ARP frames where the source MAC address is not e...

Page 133: ...equal 0x100 IP Parameters When Frame Type IPv4 and IP Protocol Filter Any IPTTL Time To Live How many routers a datagram can pass through Each router decrements this value by 1 until it reaches 0 when...

Page 134: ...ic IP subnet segment under the source IP mask SIP Address Default 192 168 1 77 SIP Mask Default 255 255 255 0 DIP Filter DIP Destination IP Address Range Any Host Network Any Including all destination...

Page 135: ...e Range 0 65535 Dest Port Filter Range Any Specific Range Any Including all UDP destination ports Specific According to following Dest Port No setting for ingress classification Range According to fol...

Page 136: ...ontrol Bit FIN Means No more data from sender Range Any 0 1 Any Including all TCP FIN case 0 The TCP control bit FIN is 0 1 The TCP control bit FIN is 1 TCP SYN TCP Control Bit SYN Means Synchronize s...

Page 137: ...ader and are a multiple of 8 bits in length Currently defined options include kind indicated in octal 0 End of option list 1 No Operation Range Any 0 1 Any Including all IP protocol value case 0 The I...

Page 138: ...e ingress frame is specified IP options No The ingress frame is not specified IP options SIP Filter SIP Source IP Address Range Any Host Network Any Including all source IP address Host Only one speci...

Page 139: ...ons Action Range Permit Deny Permit Permit the met ACL ingress classification rule packets forwarding to other ports on the switch Deny Discard the met ACL ingress classification rule packets Rate Lim...

Page 140: ...on Rules Set up Source MAC and Source IP Binding Next Click on Next to confirm current setting and go to next step automatically Cancel Cancel current setting back to top layer in the ACL wizard funct...

Page 141: ...Rev A0 1 May 11 139 Fig 3 126 Set up Policy Rules Fig 3 127 Set up Policy Rules Fig 3 128 Set up Policy Rules...

Page 142: ...Rev A0 1 Mar 11 140 Fig 3 129 Set up Policy Rules Finish Fig 3 130 Set up Port Policies Fig 3 131 Set up Port Policies...

Page 143: ...Rev A0 1 May 11 141 Fig 3 132 Set up Port Policies Fig 3 133 Set up Port Policies Finish Fig 3 134 Set up Typical Network Application Rules...

Page 144: ...Rev A0 1 Mar 11 142 Fig 3 135 Set up Typical Network Application Rules Fig 3 136 Set up Typical Network Application Rules Fig 3 137 Set up Typical Network Application Rules...

Page 145: ...P HTTP IMAP NFS POP3 SAMBA SMTP TELNET TFTP Instant Messaging Google Talk MSN Messenger Yahoo Messenger User Definition Ethernet Type UDP Port TCP Port Others TCP Port ICMP Multicast IP Stream NetBIOS...

Page 146: ...with the pre configured database If an unauthorized user tries to access an IP MAC binding enabled port the system will block the access by dropping its packet Function name IP MAC Binding Configurat...

Page 147: ...ix byte MAC Address xx xx xx xx xx xx For example 00 40 c7 00 00 01 IP Four byte IP Address xxx xxx xxx xxx For example 192 168 1 100 Port No Port no 1 8 VID VLAN ID 1 4094 Add Input MAC IP Port and V...

Page 148: ...3 Supplicant It is an entity being authenticated by an authenticator It is used to communicate with the Authenticator PAE Port Access Entity by exchanging the authentication message when the Authentic...

Page 149: ...ver B and C is in the internal network D is Authentication server running RADIUS switch at the central location acts Authenticator connecting to PC A and A is a PC outside the controlled port running...

Page 150: ...licant will initiate EAPOL Start the process by sending to the authenticator 5 And next the Supplicant replies an EAP Response Identity to the authenticator The authenticator will embed the user ID in...

Page 151: ...hentication server the port you are using is set to be unauthorized Fig 3 55 Only MultiHost 802 1X is the type of authentication supported in the switch In this mode for the devices connected to this...

Page 152: ...ort Unauthorized Multihost ForceAuthorized Don t Care Port Authorized Table 3 3 3 10 1 Server Function name 802 1X Server Configuration Function description This function is used to configure the glob...

Page 153: ...nk between any two characters Default Radius Accounting Server Server IP Server Server IP address for authentication Default 192 168 1 77 UDP Port Default port number is 1812 Secret Key The secret key...

Page 154: ...Fig 3 145 Parameter description Port It is the port number to be selected for configuring its associated 802 1X parameters which are Port control reAuthMax txPeriod Quiet Period reAuthEnabled reAuthPe...

Page 155: ...uthorized state ForceAuthorized The controlled port is forced to hold in the authorized state Auto The controlled port is set to be in authorized state or unauthorized state depends on the result of t...

Page 156: ...cator and the supplicant The valid range 1 65535 Default 30 seconds serverTimeout 1 65535 s A timeout condition in the exchange between the authenticator and the authentication server The valid range...

Page 157: ...IEEE 802 1X authentication current operating mode and status Fig 3 146 Parameter description Port Port number 1 8 Mode Show this port IEEE 802 1X operating mode There are four modes Disable Normal Ad...

Page 158: ...ated counters for manager monitoring authenticator status Fig 3 147 Parameter description Port Port Number 1 8 Auto refresh Refresh the authenticator counters in the web UI automatically Refresh Click...

Page 159: ...ough AAA and can be enabled only through AAA commands which detailed accounting information and flexible administrative control over authentication and authorization processes Providing to set TACACS...

Page 160: ...ation method with Login primary or Login secondary Default Primary is Local and Secondary is None Telnet To set Telnet authentication method with Login primary or Login secondary Default Primary is Lo...

Page 161: ...upports TACACS server Authorization method with State and Fallback to Local Authorization Fig 3 147 1 Parameter description State To enable or disable the State Authorization via TACACS Server Default...

Page 162: ...nting Configuration Function description The switch supports TACACS server Accounting method with Enable and Disable for manage login traffic accounting Fig 3 147 1 Parameter description State To enab...

Page 163: ...tion with non IEEE 802 3 MAC link Operating in half duplex mode Aggregate the ports with different data rates Static Trunk Ports using Static Trunk as their trunk method can choose their unique Static...

Page 164: ...o use the None trunking method and its Group ID will turn to 0 This means the port won t aggregate with other ports b 4 ports all use LACP Trunk Group ID 1 at most 2 ports can aggregate together and t...

Page 165: ...An Active LACP port begins to send LACPDU to its link partner right after the LACP protocol entity started to take control of this port Passive A Passive LACP port will not actively send LACPDU out be...

Page 166: ...149 Parameter description Aggregator It shows the aggregator ID from 1 to 8 of every port In fact every port is also an aggregator and its own aggregator ID is the same as its own Port No Method Show...

Page 167: ...regate mode with 4 types Fig 3 149 1 Parameter description Source MAC Address To evoke to enable source MAC address for Aggregate Mode Destination MAC Address To evoke to enable destination MAC addres...

Page 168: ...peer link partners are all on a single system Each system supports LACP will be assigned a globally unique System Identifier for this purpose A system ID is a 64 bit field comprising a 48 bit MAC Addr...

Page 169: ...on the network 3 13 1 Status Function name STP Status Function description In the Spanning Tree Status user can read 12 parameters to know STP current status The 12 parameters description is listed i...

Page 170: ...orward Delay time is defined as the time spent from Listening state moved to Learning state or from Learning state moved to Forwarding state of a port in bridge Hello Time Show the current hello time...

Page 171: ...Tree Protocol Set 802 1W Rapid STP function Enable Disable Default is Disable Bridge Priority The lower the bridge priority is the higher priority it has Usually the bridge with the highest bridge pri...

Page 172: ...lay time This figure is set by root bridge only The forward delay time is defined as the time spent from Listening state moved to Learning state and also from Learning state moved to Forwarding state...

Page 173: ...states according to 802 1w specification DISCARDING state indicates that this port can neither forward packets nor contribute learning knowledge Notice Three other states Disable state BLOCKING state...

Page 174: ...rts cannot create bridging loops in the network This will expedite the convergence When the link on the edge port toggles the STP topology keeps unchanged Unlike the designate port or root port though...

Page 175: ...forces the port sending out an RSTP BPDU instead of a legacy STP BPDU at the next transmission The only benefit of this operation is to make the port quickly get back to act as an RSTP port Click M C...

Page 176: ...N environment can ensure a loop free data path for a group of vlans within an MSTI Redundant path and load balancing in vlan environment is also achieved via this feature A spanning tree instance call...

Page 177: ...ation of a MSTP bridge Bridges participating in a common MST region must have the same Region Name and Revision Level Fig 3 155 Parameter description Region Name 0 32 characters A variable length text...

Page 178: ...r description Instance ID Every spanning tree instance need to have a unique instance ID within 0 4095 Instance 0 CIST always exists and can not be deleted Additional spanning instances MSTIs can be a...

Page 179: ...o provision spanning tree performance parameters per instance per port Instance Status Fig 3 160 To show the status report of a particular spanning tree instance Port Status Fig 3 161 To show the stat...

Page 180: ...tion as in the RSTP protocol MAX Hops 6 40sec It s a new parameter for the multiple spanning tree protocol It is used in the internal spanning tree instances CIST Remaining Hops or MSTI Remaining Hops...

Page 181: ...64 80 96 112 128 144 160 176 192 208 224 240 The same definition as in the RSTP specification But in MSTP this parameter can be respectively applied to ports of CIST and ports of any MSTI Hello Time...

Page 182: ...he administrator Restricted TCN Yes No If Yes causes the Port not to propagate received topology change notifications and topology changes to other Ports This parameter is No by default If set it can...

Page 183: ...the CIST root bridge CIST EXTERNAL ROOT PATH COST Root path cost value from the point of view of the bridge s MST region CIST ROOT PORT ID The port ID of the bridge s root port In MSTP peer port of a...

Page 184: ...pology Change Count expresses the time spent in unit of seconds since the beginning of the Spanning Tree Topology Change to the end of the STP convergence Once there is no topology change occurring an...

Page 185: ...e instance Hello per port Hello Time display It takes the following form Current Hello Time Hello Time Setting Oper Edge Whether or not a port is an Edge Port in reality Oper P2P Whether or not a port...

Page 186: ...Note When configure the mirror function you should avoid setting a port to be a sniffer port and aggregated port at the same time It will cause something wrong Fig 3 162 Parameter description Port to...

Page 187: ...ticast Host can update the information of the Multicast table when a member port joins or leaves an IP Multicast Destination Address With this function once a switch receives an IP multicast packet it...

Page 188: ...e upstream interface The router on the upstream interface should be running IGMP Fig 3 163 IGMP Proxy Parameter description IGMP Proxy Enable The function supports to enable the IGMP Proxy on Switch E...

Page 189: ...ency what the Switch send specific query period time Available 1 25 secs Last Member Query Max Response Time To set the max response code value in the specific query packet Available 1 25 secs Update...

Page 190: ...Snooping mode for its hosts You enable IGMP Snooping on the switch Fig 3 163 2 IGMP Snooping Parameter description Host Time Out To set the IGMP Snooping enable and the Host packet received by Switch...

Page 191: ...st group Fig 3 164 3 MVID Group Allow configuration Parameter description IP Address Range The switch supports two kinds of options for managed valid IP range including Any and Custom Default is Any I...

Page 192: ...user interface Fig 3 164 Parameter description Index To display current built up multicast group entry index Group Address To display current built up multicast Group Address VLAN ID To display curre...

Page 193: ...ed when MVR is enabled Refer to the configuration guide at Understanding Multicast VLAN Registration for more information on MVR Note The function must using with tag base VLAN mode Fig 3 164 1 MVR co...

Page 194: ...oup member ID MVID entry with the Member port and Router Port Fig 3 164 2 MVID configuration Fig 3 164 3 MVID configuration Parameter description Add new MVID To create a new MVID entry MVID To set th...

Page 195: ...group Fig 3 164 3 MVID Group Allow configuration Parameter description IP Address Range The switch supports two kinds of options for managed valid IP range including Any and Custom Default is Any In c...

Page 196: ...ip Function description To display the MVR Group Membership information Fig 3 164 4 MVID Group Membership Parameter description Refresh Refresh function can help you to see current MVR group Membershi...

Page 197: ...ssage will be sent while users tick the trap event individually on the web page shown as below Parameter description Trap Cold Start Warm Start Link Down Link Up Authentication Failure User login User...

Page 198: ...in the web page of alarm configuration See Fig 3 61 Then user can read the trap information from the email This function provides 6 email addresses at most The 24 different trap events will be sent ou...

Page 199: ...cription Email Mail Server the IP address of the server transferring your email Username your username on the mail server Password your password on the mail server Email Address 1 6 email address that...

Page 200: ...network from rogue DHCP servers or other devices which send port related information to a DHCP server This information can be useful in tracking an IP address back to a physical port Fig 3 17 1 DHCP S...

Page 201: ...received all DHCP packets are forwarded for a trusted por It set a trust port 1 available port from 0 to 8 0 is disabled Trust port 2 It set a trust port 2 available port from 0 to 8 0 is disabled Tru...

Page 202: ...izable type it is dropped If a DHCP packet from a client passes the filtering criteria above it will only be forwarded to trusted ports in the same VLAN If a DHCP packet is from server is received on...

Page 203: ...on and the detail parameters the settings will take effect immediately Fig 3 18 1 LLDP parameter Parameter description Tx Interval To changes the interval between consecutive transmissions of LLDP adv...

Page 204: ...ound LLDP advertisements includes the system s assigned name Sys Descr To evoke outbound LLDP advertisements includes an alphanumeric string describing the full name and version identification for the...

Page 205: ...Chassis ID To display the Chassis ID which connect to the switch and what the neighbor Chassis ID Remote Port ID To display the Remote Port ID which connect to the switch and what the neighbor s remo...

Page 206: ...ties are enabled Management Address To display include a specific IP address in the outbound LLDP advertisements for specific ports Auto refresh Refresh the authenticator counters in the web UI automa...

Page 207: ...hbor entries were last changed at The time period which neighbor entries were be changed Total Neighbors Entries Added The total neighbors entries added be received Total Neighbors Entries Deleted The...

Page 208: ...mber of the frames transmitted Rx Frames The counting number of the frames transmitted Frames Discarded Show the number of frame discarded TLVs Discarded Show the number of TLVs discarded TLVs Unrecog...

Page 209: ...uded default IP address the IP address will restore to default 192 168 1 77 as you use it The other is the function of Restore Default Configuration without changing current IP address the IP address...

Page 210: ...e start configuration And the IP address of the switch will also be restored to 192 168 1 77 Fig 3 167 3 20 2 Save Start Function name Save As Start Configuration Function description Save the current...

Page 211: ...store User Configuration function can retrieve the previous confirmed working configuration stored in the flash memory to update start configuration When completing to restore the configuration the sy...

Page 212: ...Start or Save As User via TFTP Parameter description Export File Path Export Start Export Save As Start s config file stored in the flash Export User Conf Export Save As User s config file stored in t...

Page 213: ...m will be described in detail orderly in the following sections 3 22 1 Diag Function name Diagnostics Function description Diagnostics function provides a set of basic system diagnosis It let users kn...

Page 214: ...o let you know that if the target device is available or not You can simply fill in a known IP address and then click Ping button After a few seconds later the switch will report you the pinged device...

Page 215: ...pgrading software changing IP configuration or changing VLAN mode configuration then you must reboot to have the new configuration taken effect Here we are discussing is software reset for the reboot...

Page 216: ...ally Function name Logout Function description The switch allows you to logout the system to prevent other users from the system without the permission If you do not logout and exit the browser the sw...

Page 217: ...Properties Menu configure the parameters as below see the next section Baud rate 115200 Stop bits 1 Data bits 8 Parity N Flow control none 4 1 1 Login The command line interface CLI is a text based i...

Page 218: ...Rev A0 1 Mar 11 216 Fig 4 1...

Page 219: ...xit end help history logout save start save user restore default and restore user For more details please refer to Section 4 2 1 Command instructions reside in the corresponding modes are local comman...

Page 220: ...of the top mode Argument None Possible value None Example SM8T2DPA alarm SM8T2DPA alarm events SM8T2DPA alarm events end SM8T2DPA exit Syntax exit Description Back to the previous mode When you enter...

Page 221: ...e Example SM8T2DPA ip SM8T2DPA ip help Commands available Local commands set ip Set ip subnet mask and gateway set dns Set dns enable dhcp Enable DHCP and set dns auto or manual disable dhcp Disable D...

Page 222: ...ld list total records up to 256 If optional argument is given the CLI would only show the last numbers of records given by the argument Argument show last number of history records optional Possible v...

Page 223: ...o restore the default IP address y n If you choose Y or y the IP address will restore to default 192 168 1 77 If you choose N or n the IP address will keep the same one that you had saved before If re...

Page 224: ...ting the entire startup configuration would replace as user defined one Argument None Possible value None Example SM8T2DPA restore user Restoring Restore User Configuration Successfully Press any key...

Page 225: ...configuration as the user defined configuration When you enter this command the CLI would save your current configuration into the non volatile FLASH as user defined configuration Argument None Possib...

Page 226: ...2 1X set maxReq 2 2 set mode Syntax set mode port range mode Description To set up the 802 1X authentication mode of each port Argument port range syntax 1 5 7 available from 1 to 8 mode set up 802 1X...

Page 227: ...le SM8T2DPA 802 1X set quietPeriod 2 30 set reAuthEnabled Syntax set reAuthEnabled port range on off Description A constant that define whether regular reauthentication will take place on this port Ar...

Page 228: ...sed by the Backend Authentication state machine in order to determine timeout conditions in the exchanges between the Authenticator and the Supplicant or Authentication Server The initial value of thi...

Page 229: ...meout or serverTimeout as determined by the operation of the Backend Authentication state machine Argument port range syntax 1 5 7 available from 1 to 8 value timer range 1 65535 Possible value port r...

Page 230: ...port Argument port range syntax 1 5 7 available from 1 to 8 Possible value port range 1 to 8 Example SM8T2DPA 802 1X show port config 1 2 port 1 Mode Disabled port control Auto reAuthMax 2 txPeriod 30...

Page 231: ...SM8T2DPA 802 1X show server Authentication Server ________________________________________ IP Address 192 168 1 77 UDP Port 1812 Secret Key Radius Accounting Server __________________________________...

Page 232: ...yntax modify username Description To change the username and password of an existing account Argument name existing user account Possible value None Example SM8T2DPA account modify aaaaa username pass...

Page 233: ...ble 1 enable default is 0 Example SM8T2DPA https set state 1 SM8T2DPA https set redirect Syntax set redirect 0 1 Description To set SSL function for secure encryption web manage traffic and redirect a...

Page 234: ...new account name Possible value A string must be at least 5 character Example SM8T2DPA account add aaaaa Password Confirm Password SM8T2DPA account del Syntax del name Description To delete an existin...

Page 235: ...hanged successfully show Syntax show Description To show system account including account name and identity Argument None Possible value None Example SM8T2DPA account show Account Name Identity admin...

Page 236: ...rio any dmac any frame type arp arp type Request Reply opcode any source ip any destination ip any ARP flag ARP SMAC Match any RARP DMAC Match any IP Ethernet Length any IP any Ethernet any action 1 r...

Page 237: ...ue port 1 8 permit deny 0 1 rate_limiter 0 16 port copy 0 8 Example SM8T2DPA acl action 5 0 2 2 SM8T2DPA acl show port policy id action rate limiter port copy counter a class map 5 1 deny 2 2 rate lim...

Page 238: ...cy 1 8 ports 1 8 Possible value policy 1 8 ports 1 8 Example SM8T2DPA acl policy 3 10 SM8T2DPA acl ratelimiter Syntax ratelimiter id rate Description To set access control rule with rate limiter on sw...

Page 239: ...fragment ip option icmp icmp type icmp code udp source port range destination port range tcp source port range destination port range tcp fin flag tcp syn flag tcp rst flag tcp psh flag tcp ack flag...

Page 240: ...6 Possible value 1 to 6 Example SM8T2DPA alarm email del mail address 2 del server user Syntax del server user Description To remove the configuration of server user account and password Argument Non...

Page 241: ...ple SM8T2DPA alarm email set server 192 168 1 6 set user Syntax set user username Description To set up the account and password of the email server Argument username email server account and password...

Page 242: ...24 Example SM8T2DPA alarm events del all 1 3 del email Syntax del email range Description To disable the email of the events Argument range del the range of email syntax 1 5 7 Possible value range 1...

Page 243: ...n To enable the email of the events Argument range set the range of email syntax 1 5 7 Possible value range 1 24 Example SM8T2DPA alarm events set email 1 3 set trap Syntax set trap range Description...

Page 244: ...6 LACP Enabled 17 LACP Member Added 18 LACP Aggregates Port Failure 19 GVRP Disabled 20 GVRP Enabled 21 VLAN Disabled 22 Port based Vlan Enabled 23 Tag based Vlan Enabled 24 IP MAC Binding Enabled 25...

Page 245: ...to 3600 seconds config file export Syntax export current user ip address Description To run the export function Argument Usage set up current or user ip address the TFTP server ip address Possible va...

Page 246: ...state 0 1 Description To disable enable the gvrp function Argument 0 disable the gvrp function 1 enable the gvrp function Possible value 0 disable the gvrp function 1 enable the gvrp function Example...

Page 247: ...sible value port 1 to 8 0 1 normal or non participant Example SM8T2DPA gvrp set applicant 1 8 non participant set registrar Syntax set registrar port 0 1 2 Description To set default registrar mode fo...

Page 248: ...l Normal Enable 6 20 60 1000 Normal Normal Enable 7 20 60 1000 Normal Normal Enable 8 20 60 1000 Normal Normal Enable set timer Syntax set timer port JoinTime leaveTime leaveAllTime Description To set...

Page 249: ...l Disable 7 25 80 2000 Normal Normal Disable 8 25 80 2000 Normal Normal Disable counter Syntax counter port Description To display the counter number of the port Argument port port number Possible val...

Page 250: ...mation VID Member Port hostname hostname Syntax hostname name Description To set up the hostname of the switch Argument name hostname max 40 characters Possible value name hostname max 40 characters E...

Page 251: ...ntax set flood state Description To set up disable enable unregister ipmc flooding Argument state 0 disable 1 enable Possible value state 0 or 1 Example SM8T2DPA igmp set flood 1 show gm Syntax show g...

Page 252: ...Syntax enable dhcp manual auto Description To enable the system DHCP function and set DNS server via manual or auto mode Argument manual auto set dhcp by using manual or auto mode Possible value manu...

Page 253: ...8 1 253 or others Example SM8T2DPA ip set ip 192 168 1 2 255 255 255 0 192 168 1 253 show Syntax show Description To display the system s DHCP function state IP address subnet mask default gateway DNS...

Page 254: ...lient 1 Server mac format 00 02 03 04 05 06 ip ip address port 1 to 8 vid 1 to 4094 Example SM8T2DPA ip_mac_binding set entry 1 00 11 2f de 7b a9 192 168 2 2 1 1 delete ip Syntax delete ip 0 1 ip Desc...

Page 255: ...alue 1 to 8 Example SM8T2DPA loop detection disable 1 24 SM8T2DPA loop detection show Detection Port Locked Port Port Status Port Status 1 Disable 1 Normal 2 Disable 2 Normal 3 Disable 3 Normal 4 Disa...

Page 256: ...ports to search for syntax 1 5 7 available form 1 to 8 Possible value 1 to 8 Example SM8T2DPA loop detection resume 1 24 SM8T2DPA loop detection show Detection Port Locked Port Port Status Port Status...

Page 257: ...4 Normal 5 Enable 5 Normal 6 Enable 6 Normal 7 Enable 7 Normal 8 Enable 8 Normal show Syntax show Description To display loop detection configure Argument None Possible value None Example SM8T2DPA lo...

Page 258: ...mode Syntax set mode mode range Description To set LLDP mode Argument tx and rx 1 tx only 2 rx only 3 disabled 0 port range syntax 1 5 7 available from 1 to 8 Possible value Port range 1 to 8 Example...

Page 259: ...o set disable enable lldp tlv Argument Port Description bit 0 System Name bit 1 System Description bit 2 System Capabilities bit 3 Management Address bit 4 port range syntax 1 5 7 available from 1 to...

Page 260: ...time Description To set lldp txInterval Argument time from 5 to 32768 second s Possible value time from 5 to 32768 second s Example SM8T2DPA lldp set txInterval 5 SM8T2DPA lldp show config Syntax Show...

Page 261: ...x show detail counter port Description To display LLDP detail counter Argument port 1 5 9 available from 1 to 8 Possible value port 1 5 9 available from 1 to 8 Example SM8T2DPA lldp show detail counte...

Page 262: ...ilities Enabled bridge Management Address Type ipv4 Address 192 168 20 15 LLDP Port Information Port PortType PortId PortDesc 1 local 1 Port 1 2 local 2 Port 2 3 local 3 Port 3 4 local 4 Port 4 5 loca...

Page 263: ...l Port 5 AdminStatus Tx_Rx Disable NotificationEnabled False True TLVs Advertised SM8T2DPA lldp SM8T2DPA lldp show stats Syntax show stats Description To display LLDP stats Argument None Possible valu...

Page 264: ...Argument mac set up the MAC format xx xx xx xx xx xx Possible value mac set up the MAC format xx xx xx xx xx xx Example SM8T2DPA mac alias set 23 56 r5 55 3f 03 test3 SM8T2DPA mac alias show MAC Alia...

Page 265: ...mple SM8T2DPA mac alias set 23 56 r5 55 3f 03 test3 SM8T2DPA mac alias show MAC Alias No MAC Alias 1 23 56 00 55 3F 03 test3 2 23 56 00 55 EF 03 test13 3 23 56 00 55 EF 33 test1 show Syntax show Descr...

Page 266: ...le value none Example SM8T2DPA mac mac table show No Type VLAN MAC Port Members 1 Static 1 FF FF FF FF FF FF 1 2 3 4 5 6 7 8 maintenance set age time Syntax set age time Description To set mac table a...

Page 267: ...8 auto auto learning disable disable learning secure learn frames are discarded Possible value range syntax 1 5 7 available from 1 to 8 auto auto learning disable disable learning secure learn frames...

Page 268: ...uto 5 Auto 6 Auto 7 Auto 8 Auto static mac add Syntax add mac port vid alias Description To add the static mac entry Argument mac mac address format 00 02 03 04 05 06 port 0 8 The value 0 means this e...

Page 269: ...ilter Syntax show filter Description To display the static filtering mac entry Argument None Possible value None Example SM8T2DPA mac static mac show filter Static Filtering Etnry Total 1 item s 1 mac...

Page 270: ...n To set monitor destination port The packets sent by this port will be copied to the monitoring port Argument range the port that is chosen for monitored port of the mirror function syntax 1 5 7 avai...

Page 271: ...r set monitor source 18 SM8T2DPA mirror show Port to mirror to 1 Port Source Enable Destination Enable 2 V 3 V 4 V 5 V 6 V 7 V 8 V SM8T2DPA mirror show Syntax show Description To display the setting s...

Page 272: ...SM8T2DPA mstp enable migrate check Syntax migrate check port range Description To force the port to transmit RST BPDUs Argument Usage migrate check port range port range syntax 1 5 7 available from 1...

Page 273: ...n ID s to an MSTI Argument instance id MSTI id available from 1 to 4095 vid string syntax example 2 5 7 100 200 Possible value instance id available from 1 to 4094 Example SM8T2DPA mstp set msti vlan...

Page 274: ...1 to 8 hello time only 1 2 are valid values Possible value port range syntax 1 5 7 available from 1 to 8 hello time only 1 2 are valid values Example SM8T2DPA mstp set p hello 5 10 1 SM8T2DPA mstp se...

Page 275: ...9 CIST EXTERNAL ROOT PATH COST 0 CIST ROOT PORT ID 0 CIST REGIONAL ROOT PRIORITY 4096 CIST REGIONAL ROOT MAC 00 40 c7 5e 00 09 CIST INTERNAL ROOT PATH COST 0 CIST CURRENT MAX AGE 20 CIST CURRENT FORWA...

Page 276: ...1 to 8 restricted tcn 0 false 1 True Possible value port range 1 to 8 restricted tcn 0 false 1 True Example SM8T2DPA mstp set r tcn 1 5 1 SM8T2DPA mstp set r tcn 6 8 1 SM8T2DPA mstp show pconf 0 Port...

Page 277: ...nt revision level 0 65535 Possible value revision level 0 65535 Example SM8T2DPA mstp set revision level 30000 SM8T2DPA mstp show region info Name test2 Revision 30000 Instances 0 SM8T2DPA mstp set ve...

Page 278: ...AL ROOT MAC 00 40 c7 5e 00 09 CIST INTERNAL ROOT PATH COST 0 CIST CURRENT MAX AGE 20 CIST CURRENT FORWARD DELAY 15 TIME SINCE LAST TOPOLOGY CHANGE SECs 2569 TOPOLOGY CHANGE COUNT SECs 0 SM8T2DPA mstp...

Page 279: ...show region info Description To show region config Argument none Possible value none Example SM8T2DPA mstp show region info Name test2 Revision 30000 Instances 0 SM8T2DPA mstp show vlan map Syntax sh...

Page 280: ...Accept Access Type HTTP SNMP Port 2 3 4 5 8 2 Name rule1 IP Range 192 168 2 1 192 168 2 30 Action Deny Access Type HTTP TELENT SNMP Port 11 12 13 14 15 3 Name Mary IP Range 192 168 3 1 192 168 3 4 Act...

Page 281: ...5 192 168 4 22 Action Deny Access Type HTTP TELENT SNMP Port 2 3 4 5 SM8T2DPA policy show Syntax show Description To show management policy list Argument none Possible value none Example SM8T2DPA pol...

Page 282: ...to 8 description max 47 characters Example SM8T2DPA port set description 3 8 salesdepartment SM8T2DPA port show config Speed Flow Maximum ExcessiveSynopsis add name George ip 192 168 1 77 Port Duplex...

Page 283: ...Auto Disabled 9600 Restart salesdepartment 8 Auto Disabled 9600 Restart salesdepartment set flow control Syntax set flow control port range enable disable Description To set per port flow control Arg...

Page 284: ...ed 9600 Restart salesdepartment set speed Syntax set speed port range disable auto 1Gfull 100full 100half 10full 10half Description To set port capability Argument port range syntax 1 5 7 available fr...

Page 285: ...ing 2 1 SM8T2DPA port show config Syntax show config Description To display the each port s configuration information Argument None Possible value None Example SM8T2DPA port show config Speed Flow Max...

Page 286: ...5 Rx 256 511 Bytes 53 Tx 256 511 Bytes 1081 Rx 512 1023 Bytes 33 Tx 512 1023 Bytes 144 Rx 1024 1526 Bytes 28 Tx 1024 1526 Bytes 11453 Rx 1527 Bytes 0 Tx 1527 Bytes 0 Receive Error Counters Transmit Er...

Page 287: ...de MM Tx Central Wavelength 850 Baud Rate 1G Vendor OUI 00 40 c7 Vendor Name APAC Opto Vendor PN KM28 C3S TC N Vendor Rev 0000 Vendor SN 5425010708 Date Code 050530 Temperature none Vcc none Mon1 Bias...

Page 288: ...Rx Pause Tx Pause Description 3 Auto Disabled 9600 Discard 2 Down Down Disabled Disabled 3 Up 100M Full Disabled Disabled 4 Down Down Disabled Disabled 5 Down Down Disabled Disabled 6 Down Down Disab...

Page 289: ...t port range default class qcl user priority queuing mode lo w queue weighted normal queue weighted medium queue weighted high queue we ighted Description To set port information Argument range syntax...

Page 290: ...rict Priority 1 2 4 8 6 Low 1 0 Strict Priority 1 2 4 8 7 Low 1 0 Strict Priority 1 2 4 8 8 Low 1 0 Strict Priority 1 2 4 8 SM8T2DPA qos ports show Syntax show Description To show port information Arg...

Page 291: ...ernet Type Ethernet Type Value 0xfff0 Traffic Class High SM8T2DPA qos qcl move Syntax move qcl qce new qce Description To move up the specific QCE entry in the specific QCL Argument qcl the qcl number...

Page 292: ...it k means kbps and m means mbps Possible value range syntax 1 5 7 available from 1 to 8 policer enabled 1 means enable and 0 means disable rate allowed values are 500kbps 1Gkps unit k means kbps and...

Page 293: ...set multicast Syntax set multicast status rate Description To set multicast storm control configuration Argument status 1 means enable and 0 means disable rate 1 2 4 8 16 32 64 128 256 512 1k 2k 4k 8k...

Page 294: ...56 512 1k 2k 4k 8k 16k 32k 64k 128k 256k 512k Example SM8T2DPA qos storm set unicast 1 128 SM8T2DPA qos storm show Frame Type Status Rate Packet Per Second Flooded unicast V 128 Multicast V 64 Broadca...

Page 295: ...ion The Disable here is used for the de activation of snmp or set community Argument None Possible value None Example SM8T2DPA snmp disable snmp SM8T2DPA snmp disable set ability enable Syntax enable...

Page 296: ...set community private SM8T2DPA snmp set trap 1 192 168 1 77 162 public show Syntax show Description The Show here is to display the configuration of SNMP Argument None Possible value None Example SM8...

Page 297: ...isable the STP function Argument None Possible value None Example SM8T2DPA stp disable enable Syntax enable Description To enable the STP function Argument None Possible value None Example SM8T2DPA st...

Page 298: ...f STP Argument range syntax 1 5 7 available from 1 to 8 path cost 0 1 200000000 The value zero means auto status priority priority must be a multiple of 16 available from 0 to 240 edge_port Admin Edge...

Page 299: ...40 sec 20 Forward Delay 4 30 sec 15 Force Version RSTP show port Syntax show port Description To display the port information of STP Argument None Possible value None Example SM8T2DPA stp SM8T2DPA stp...

Page 300: ...ge sec 848 system set contact Syntax set contact contact string Description To set the contact description of the switch Argument contact string length up to 40 characters Possible value contact A b c...

Page 301: ...formation of the switch Argument None Possible value None Example SM8T2DPA system show Model Name SM8T2DPA System Description L2 Managed Switch Location Contact Device Name SM8T2DPA System Up Time 0 D...

Page 302: ...display the trap log Argument None Possible value None Example SM8T2DPA tftp show 2 Mon Mar 17 15 18 38 2008gvrp mode qce type Dual Media Swapped Port 1 SwapTo TP ge hostnamexit 4 8 3 Mon Mar 17 15 18...

Page 303: ...aving end Day 01 31 hh daylight saving end Hour 00 23 Possible value hr 5 to 5 MM 01 12 DD 01 31 HH 00 23 mm 01 12 dd 01 31 hh 00 23 Example SM8T2DPA time set daylightsaving 3 10 12 01 11 12 01 Save S...

Page 304: ...how the time configuration including Current Time NTP Server Timezone Daylight Saving Daylight Saving Start and Daylight Saving End Argument None Possible value None Example SM8T2DPA time show Current...

Page 305: ...ng the group number and mode of the trunk as well as LACP mode Argument port range port range syntax 1 5 7 available from 1 to 8 method static adopt the static link aggregation lacp adopt the dynamic...

Page 306: ...aggtr aggregator available from 1 to 8 Possible value aggtr 1 to 8 Example SM8T2DPA trunk show lacp detail 2 Aggregator 2 Information Actor Partner System Priority MAC Address System Priority MAC Add...

Page 307: ...Ready 2 LACP 1 Active 2 3 LACP 1 Active 3 4 LACP 1 Active 4 5 LACP 1 Active 5 6 LACP 1 Active 6 7 LACP 1 Active 7 vlan del port group Syntax del port group name Description To delete the port based v...

Page 308: ...isable drop untag 5 8 disable sym vlan Syntax disable sym vlan range Description To drop frames from the non member port Argument range which port s you want to set syntax 1 5 7 available from 1 to 8...

Page 309: ...cluding port based and tag based modes Argument tag set tag based vlan port set port based vlan Possible value port tag port tag Example SM8T2DPA vlan set mode Usage set mode port tag tag set tag base...

Page 310: ...les Argument range which port s you want to set syntax 1 5 7 available from 1 to 8 access Do not tag frames trunk Tag all frames hybrid Tag all frames except a specific VID vid untag vid for hybrid po...

Page 311: ...lan Possible value vid 1 to 4094 range 1 to 8 0 or 1 Example SM8T2DPA vlan set tag group 2 VLAN 2 2 5 6 7 8 0 show group Syntax show group Description To display the vlan mode and vlan group Argument...

Page 312: ...cess TACACS Set console authentication method Syntax set console authentication method1 method2 Description To set console authentication method Argument method available from 0 to 2 0 Local 1 TACACS...

Page 313: ...to 31 Example SM8T2DPA tac plus set key tacacs Server connect Set retry Syntax set retry retry Description To set retry time Argument retry 1 3 Possible value retry 1 3 Example SM8T2DPA tac plus set...

Page 314: ...on 2 None for method2 only Possible value method available from 0 to 2 0 Local 1 TACACS Authentication 2 None for method2 only Example SM8T2DPA tac plus set web authentication 0 1 Server connect Enabl...

Page 315: ...ue None Example SM8T2DPA tac plus enable fallback author Server connect Show authentication Syntax show authentication Description To show authentication config Argument None Possible value None Examp...

Page 316: ...f connection ports are used on that Managed Switch Please check the uplink setup of the Managed Switch to verify the uplink function is enabled 3 The console interface cannot appear on the console por...

Page 317: ...to completely manage the switch from any web browser SNMP Telnet interface delivers complete in band management Supports IEEE 802 1d Spanning Tree Protocol Supports IEEE 802 1w Rapid Spanning Trees Su...

Page 318: ...Speed 10 100 1000Mbps for TP 1000Mbps for Fiber Full Forwarding Filtering Packet Rate PPS packets per second Forwarding Rate Speed 1 488 000PPS 1000Mbps 148 800PPS 100Mbps 14 880PPS 10Mbps MAC Addres...

Page 319: ...ress rate control Quality of Service QoS Referred as Class of Service CoS by the IEEE 802 1P standard Classification of packet priority can be based on either a VLAN tag on packet or a user defined Pe...

Page 320: ...line interface The table below shows the pin assignments for the DB 9 cable Function Mnemonic Pin Carrier CD 1 Receive Data RXD 2 Transmit Data TXD 3 Data Terminal Ready DTR 4 Signal Ground GND 5 Data...

Page 321: ...10900 Red Circle Drive Minnetonka MN 55344 Tel 1 952 941 7600 techsupport transition com...

Reviews:

No comments

Related manuals for SM8T2DPA

D-Link DES-1005E Quick Install Manual preview
DES-1005E
Brand: D-Link Pages: 2
Water Witch 217 Installation Instructions preview
217
Brand: Water Witch Pages: 2
B&B Electronics 485DSS Manual preview
485DSS
Brand: B&B Electronics Pages: 26
B&B Electronics 232XS5 Instruction Manual preview
232XS5
Brand: B&B Electronics Pages: 15
B&B Electronics 232BSS4 Instruction Manual preview
232BSS4
Brand: B&B Electronics Pages: 45
AMX AVS-OP-1616-340 Product View preview
AVS-OP-1616-340
Brand: AMX Pages: 1
INFLUX MEASUREMENTS SPDB 30 Manual To The Installation, Operation & Maintenance preview
SPDB 30
Brand: INFLUX MEASUREMENTS Pages: 6
protech 4PET0301SC User Manual preview
4PET0301SC
Brand: protech Pages: 4
G&D ControlCenter-IP-XS Installation Manual preview
ControlCenter-IP-XS
Brand: G&D Pages: 56
H3C IE4300-12P-PWR Installation Manual preview
IE4300-12P-PWR
Brand: H3C Pages: 38
Helmholz PROFINET 4-port Quick Start Manual preview
PROFINET 4-port
Brand: Helmholz Pages: 20
KDS KD-MSW8x3 Operating Instructions Manual preview
KD-MSW8x3
Brand: KDS Pages: 10
Smartwares SH5-TSW-C Quick Start Manual preview
SH5-TSW-C
Brand: Smartwares Pages: 2
Blue Sea Systems 8689 Manual preview
8689
Brand: Blue Sea Systems Pages: 2
SMC Networks EZ HUB 10/100 5608DS User Manual preview
EZ HUB 10/100 5608DS
Brand: SMC Networks Pages: 2
Altusen KN9116 Quick Start Manual preview
KN9116
Brand: Altusen Pages: 2
WELLTECH WPoE-2426 User Manual preview
WPoE-2426
Brand: WELLTECH Pages: 280
Blueridge Digi-Touch DDN-SW1 Installation Manual preview
Digi-Touch DDN-SW1
Brand: Blueridge Pages: 13

Brands by name

Popular brands

Load more brands