manualshive.com logo in svg

Westermo MDI-110 Series, User Manual

The Westermo MDI-110 Series product offers superior performance in industrial networking. Engineered for advanced connectivity, this product includes a comprehensive User Manual, providing detailed instructions for seamless integration. Download this invaluable resource for free from manualshive.com, ensuring hassle-free setup and optimal utilization of the MDI-110 Series.

Share
Download
background image

 

99

Note: Rule: Add the static MAC, VLAN and Port 

binding first, then enable the port security to 

stop new MAC learning. 

Disable Port Security 

Switch(config-if)# no switchport port-security

Enable new MAC addresses learning and aging 

activities! 

Display 

Switch# show mac-address-table static 

Destination  Address  Address  Type    Vlan     

Destination Port 

-------------------  ---------------  -------  

------------------------ 

0007.7c01.0101       Static          1        fa1 

IP Security 

IP Security 

Switch(config)# ip security 

Set ip security enable ok. 

Switch(config)# ip security host 192.168.2.33 

Add ip security host 192.168.2.33 ok. 

Display 

Switch# show ip security 

ip security is enabled 

ip security host: 

192.168.2.33 

802.1x 

enable 

 

diable 

Switch(config)# dot1x system-auth-control 

Switch(config)# 

Switch(config)# no dot1x system-auth-control 

Switch(config)# 

authentic-method 

Switch(config)# dot1x authentic-method 

 local   Use the local username database for 

authentication  

 radius  Use the Remote Authentication Dial-In 

User Service (RADIUS) servers for 

authentication 

Switch(config)# dot1x authentic-method radius 

Switch(config)# 

radius server-ip 

Switch(config)# dot1x radius 

Switch(config)# dot1x radius server-ip 

192.168.2.200 key 1234 

Summary of Contents for MDI-110 Series

Page 1: ...1 MDI 110 Series User s Manual Industrial Managed Ethernet Switch ...

Page 2: ...2 Copyright Notice Copyright 2010 Westermo Technology Co Ltd All rights reserved Reproduction in any form or by any means without permission is prohibited ...

Page 3: ...s equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instruction manual may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his expense The user is cautioned that changes...

Page 4: ...tallation 13 2 10 Wall Mounting Installation 15 2 11 Safety Warming 16 3 Preparation for Management 17 3 1 Preparation for Serial Console 17 3 2 Preparation for Web Interface 18 3 3 Preparation for Telnet Console 20 4 Feature Configuration 23 4 1 Command Line Interface Introduction 24 4 2 Basic Setting 29 4 3 Port Configuration 46 4 4 Network Redundancy 56 4 5 VLAN 67 4 6 Traffic Prioritization 77...

Page 5: ...5 5 Appendix 125 5 1 Pin Assignment of the RS 232 Console Cable 125 5 2 Private MIB 126 5 3 Revision History 127 ...

Page 6: ... new rules for CLI commands Security is enhanced with advanced features such as 802 1Q VLAN and Port IP security Performance is optimized by QoS and IGMP Snooping Query Westermo ring technology Multiple Super Ring enables superb self healing capability for network failure The fastest failover time is enhanced from 300ms to 5ms for 10 100TX RJ 45 ports and 30ms for 100FX and Gigabit Fiber This is W...

Page 7: ... Mirroring Secured by IEEE 802 1x Port Security Access IP list SSH and HTTPS Login Event Notification by E mail SNMP trap and SysLog Cisco Like CLI Web SNMP RMON and JetView for network Management Redundant DC Power Inputs Digital Input and Relay Output 1 5KV Hi Pot Protection for ports and power Industrial Heat dispersing design 25 70 C operating temperature Rigid Aluminum Case Complies with IP31...

Page 8: ...rdware Introduction Dimension Panel Layout Bottom View 2 2 Wiring Power Inputs 2 3 Wiring Digital Input 2 4 Wiring Relay Output 2 5 Wiring Ethernet Ports 2 6 Wiring Combo Ports 2 7 Wiring RS 232 console cable 2 8 DIN Rail Mounting Installation 2 9 Wall Mounting Installation 2 1 Hardware Introduction Dimension The switch dimension W x H x D is 96mm x 137mm x 119mm ...

Page 9: ...tom View The bottom view of the switch consists of three terminal block connectors with two DC power inputs two Digital Inputs 2 Relay Outputs and 1 Earth Ground 2 2 Wiring Power Inputs Follow below steps to wire the redundant DC power inputs ...

Page 10: ...nnections Otherwise your screwdriver blade can inadvertently short your terminal connections to the grounded enclosure Note 2 The range of the suitable electric wire is from 12 to 24 AWG Note 3 If the 2 power inputs are connected the switch will be powered from the highest connected voltage The unit will alarm for loss of power either PWR1 or PWR2 Note 4 To use the UL Listed Power supply with outp...

Page 11: ...for normal operation and will close for fault conditions The fault conditions include power failure Ethernet port link break or other pre defined events which can be configured in the switch UI Wiring digital output is exactly the same as wiring power input introduced in chapter 2 2 2 5 Wiring Earth Ground To ensure the system will not be damaged by noise or any electrical shock we suggest you to ...

Page 12: ...rossover cables Note that crossover cables simply cross connect the transmit lines at each end to the received lines at the opposite end Straight through Cabling Schematic Cross over Cabling Schematic Note that Ethernet cables use pins 1 2 3 and 6 of an 8 pin RJ 45 connector The signals of these pins are converted by the automatic MDI X function as shown in the table below Pin MDI X Signals MDI Si...

Page 13: ... i line certificated SFP Transceiver The certificated SFP transceiver includes 100Base FX single multi mode 1000Base SX LX single multi mode ranger from 550m to 80KM 2 8 Wiring RS 232 Console Cable Westermo attaches one RS 232 DB 9 to RJ 45 cable in the box Connect the DB 9 connector to the COM port of your PC open Terminal tool and set up serial settings to 9600 N 8 1 Baud Rate 9600 Parity None D...

Page 14: ...k 1 First insert the upper end of DIN Rail clip into the back of DIN Rail track from its upper side 2 Lightly push the bottom of DIN Rail clip into the track 1 Use the screws to attach DIN Rail clip to the rear panel 2 To remove DIN Rail clip reverse step 1 ...

Page 15: ...standard Using wrong DIN rail may cause system install unsafe 2 10 Wall Mounting Installation Follow the steps below to install the switch with the wall mounting plate 1 To remove DIN Rail clip from the switch loosen the screws from DIN Rail clip 2 Place the wall mounting plate on the rear panel of the switch 3 Use the screws to tighten the wall mounting plate onto the switch ...

Page 16: ... kit onto the rear side of the switch The specification of screw is M3 in 6 mm length 2 11 Safety Warming The Equipment intended for installation in a Restricted Access Location The warning test is provided in user manual Below is the information For tilslutning af de ovrige ledere se medfolgende installationsvejledning Laite on liitettava suojamaadoitus koskettimilla varustettuun pistorasiaan App...

Page 17: ...tion for Serial Console 3 2 Preparation for Web Interface 3 3 Preparation for Telnet console 3 1 Preparation for Serial Console In the package Westermo attached one RS 232 DB 9 to RJ 45 console cable Please attach RS 232 DB 9 connector to your PC COM port connect RJ 45 to the Console port of the switch If you lose the cable please follow the console cable PIN assignment to find one Refer to the ap...

Page 18: ...Verify that your network interface card NIC is operational and that your operating system supports TCP IP protocol 2 Wire DC power to the switch and connect your switch to your computer 3 Make sure that the switch default IP address is 192 168 2 200 4 Change your computer IP address to 192 168 2 2 or other IP address which is located in the 192 168 2 x Network Mask 255 255 255 0 subnet 5 Switch to...

Page 19: ...t allow Java applets to open sockets by default Users have to directly modify the browser settings to selectively enable Java applets to use network ports Note 2 The Web UI connection session will be logged out automatically if you don t give any input after 30 seconds After logged out you should re login and key in correct user name and password again 3 2 2 Secured Web Interface Westermo web mana...

Page 20: ...name is admin and password is westermo 7 Click on Enter or OK Welcome page of the web based management interface will then appear 8 Once you enter the web based management interface all the commands you see are the same as what you see by HTTP login 3 3 Preparation for Telnet Console 3 3 1 Telnet The switch supports Telnet console You can connect to the switch by Telnet and the command lines are t...

Page 21: ...or charged SSH clients you can find on the internet Fox example PuTTY is a free and popular Telnet SSH client We ll use this tool to demonstrate how to login by SSH Note PuTTY is copyright 1997 2006 Simon Tatham 1 Open SSH Client PuTTY In the Session configuration enter the Host Name IP Address of your switch and Port number default 22 Choose the SSH protocol Then click on Open to start the SSH se...

Page 22: ...pe the Login Name and its Password The default Login Name and Password are admin westermo 5 All the commands you see in SSH are the same as the CLI commands you see via RS232 console The next chapter will introduce in detail how to use command line to configure the switch ...

Page 23: ...elnet Web browser and SNMP Following topics are covered in this chapter 4 1 Command Line Interface CLI Introduction 4 2 Basic Setting 4 3 Port Configuration 4 4 Network Redundancy 4 5 VLAN 4 6 Traffic Prioritization 4 7 Multicast Filtering 4 8 SNMP 4 9 Security 4 10 Warning 4 11 Monitor and Diag 4 12 Device Front Panel 4 13 Save 4 14 Logout ...

Page 24: ...et default reload switch show system information save configuration and enter the global configuration mode Type configure terminal to enter next mode exit to leave to see the command list Switch enable Turn on privileged mode command exit Exit current mode and down to previous mode list Print command list ping Send echo messages quit Exit current mode and down to previous mode show Show running s...

Page 25: ...terminal Switch config access list Add an access list entry administrator Administrator account setting arp Set a static ARP entry clock Configure time of day clock default Set a command to its defaults end End current mode and change to enable mode exit Exit current mode and down to previous mode gvrp GARP VLAN Registration Protocol hostname Set system s network name interface Select an interface...

Page 26: ...face Switch config interface fa1 Switch config if acceptable Configure 802 1Q acceptable frame types of a port auto negotiation Enable auto negotiation state of a given port description Interface specific description duplex Specify duplex mode of operation for a port end End current mode and change to enable mode exit Exit current mode and down to previous mode flowcontrol Set flow control value f...

Page 27: ...global configuration command Switch Global configuration In global configuration mode you can configure all the features that the system provides you Enter Type configure terminal in privileged EXEC mode Exit Type exit or end or press Ctrl Z to exit Next mode Type interface IFNAME VLAN VID to enter interface configuration mode Switch config Port Interface configuration In this mode you can configu...

Page 28: ...nished command Ctrl S To lock the screen of the terminal You can t input any command Ctrl Q To unlock the screen which is locked by Ctrl S Ctrl Z To exit configuration mode Alert message when multiple users want to configure the switch If the administrator is in configuration mode then the Web users can t change the settings The switch allows only one administrator to configure the switch at a tim...

Page 29: ...2 9 System Reboot 4 2 10 CLI Commands for Basic Setting 4 2 1 Switch Setting You can assign System name Location Contact and view system information Figure 4 2 1 1 Web UI of the Switch Setting System Name You can assign a name to the device The number of characters you can input is 64 After you configure the name CLI system will select the first 12 characters as the name in CLI system System Locat...

Page 30: ...n Apply to apply your settings Note Always remember to select Save to save your settings Otherwise the settings you made will be lost when the switch is powered off 4 2 2 Admin Password You can change the user name and the password here to enhance security Figure 4 2 2 1 Web UI of the Admin Password User name You can key in new user name here The default setting is admin Password You can key in ne...

Page 31: ...92 168 2 200 Subnet Mask You can assign the subnet mask for the IP address here If DHCP Client function is enabled you don t need to assign the subnet mask The default Subnet Mask is 255 255 255 0 Note In the CLI we use the enabled bit of the subnet mask to represent the number displayed in web UI For example 8 stands for 255 0 0 0 16 stands for 255 255 0 0 24 stands for 255 255 255 0 Default Gate...

Page 32: ... acquire current time from the NTP server you assigned Time zone Select the time zone where the switch is located Following table lists the time zones for different locations for your reference The default time zone is GMT Greenwich Mean Time Switch config clock timezone 01 GMT 12 00 Eniwetok Kwajalein 02 GMT 11 00 Midway Island Samoa 03 GMT 10 00 Hawaii 04 GMT 09 00 Alaska 05 GMT 08 00 Pacific Ti...

Page 33: ...dapest Ljubljana Prague 29 GMT 01 00 Brussels Copenhagen Madrid Paris 30 GMT 01 00 Sarajevo Skopje Sofija Vilnius Warsaw Zagreb 31 GMT 01 00 West Central Africa 32 GMT 02 00 Athens Istanbul Minsk 33 GMT 02 00 Bucharest 34 GMT 02 00 Cairo 35 GMT 02 00 Harare Pretoria 36 GMT 02 00 Helsinki Riga Tallinn 37 GMT 02 00 Jerusalem 38 GMT 03 00 Baghdad 39 GMT 03 00 Kuwait Riyadh 40 GMT 03 00 Moscow St Pete...

Page 34: ...MT 10 00 Canberra Melbourne Sydney 68 GMT 10 00 Guam Port Moresby 69 GMT 10 00 Hobart 70 GMT 10 00 Vladivostok 71 GMT 11 00 Magadan Solomon Is New Caledonia 72 GMT 12 00 Aukland Wellington 73 GMT 12 00 Fiji Kamchatka Marshall Is 74 GMT 13 00 Nuku alofa Daylight Saving Time Set when Enable Daylight Saving Time start and end during the Daylight Saving Time the device s time is one hour earlier than ...

Page 35: ...not be assigned to the network device Add or remove an IP address from the Excluded Address List by clicking Add or Remove Manual Binding the switch provides a MAC address and IP address binding and removing function You can type in the specified IP and MAC address then click Add to add a new MAC IP address binding rule for a specified link partner like PLC or any device without DHCP client functi...

Page 36: ...CP relay agent function All the DHCP packets from client will be modified by the policy and forwarded to DHCP server through the gateway port 4 2 6 Backup and Restore With Backup command you can save current configuration file saved in the switch s flash to admin PC or TFTP server This will allow you to go to Restore command later to restore the configuration file back to the switch Before you res...

Page 37: ... can also modify the file add remove the configuration settings and then restore back to the switch Startup Configuration File After you saved the running config to flash the new settings will be kept and work after power cycle You can use show startup config to view it in CLI The Backup command can only backup such configuration file to your PC or TFTP server Once you finish selecting and configu...

Page 38: ...grade In this section you can update the latest firmware for your switch Westermo provides the latest firmware in the web site The new firmware may include new features bug fixes or other software changes We ll also provide the release notes for the update as well For technical viewpoint we suggest you use the latest firmware before installing the switch to the customer site Note that the system w...

Page 39: ...I and Web UI TFTP Server IP Address You need to key in the IP address of your TFTP Server here Firmware File Name The file name of the new firmware The UI also shows you the current firmware version and built date of current firmware Please check the version number after the switch is rebooted Click on Upgrade to start the process After finishing transmitting the firmware the system will copy the ...

Page 40: ... default IP The system will remain the IP address so that you can still connect the switch via the network 4 2 9 System Reboot System Reboot allows you to reboot the device Some of the feature changes require you to reboot the system Click on Reboot to reboot your device Note Remember to click on Save button to save your settings Otherwise the settings you made will be gone when the switch is powe...

Page 41: ...rt westermo se Display SWITCH show snmp server name SWITCH SWITCH show snmp server location Sweden SWITCH show snmp server contact support westermo se SWITCH show version 0 31 20061218 Switch show hardware mac MAC Address 00 07 7c e6 00 00 Admin Password User Name and Password SWITCH config administrator NAME Administrator account name SWITCH config administrator orwell PASSWORD Administrator acco...

Page 42: ...renew Gateway SWITCH config ip route 0 0 0 0 0 192 168 2 254 24 Remove Gateway SWITCH config no ip route 0 0 0 0 0 192 168 2 254 24 Display SWITCH show running config interface vlan1 ip address 192 168 2 8 24 no shutdown ip route 0 0 0 0 0 192 168 2 254 24 Time Setting NTP Server SWITCH config ntp peer enable disable primary secondary SWITCH config ntp peer primary IPADDR SWITCH config ntp peer pr...

Page 43: ... Dublin Edinburgh Lisbon London DHCP Server DHCP Server configuration Enable DHCP Server on Switch Switch Switch configure terminal Switch config router dhcp Switch config dhcp service dhcp Configure DHCP network address pool Switch config dhcp network 192 168 17 0 24 network mask Switch config dhcp default router 192 168 17 254 Lease time configure Switch config dhcp lease 300 300 sec DHCP Relay ...

Page 44: ... IP MAC binding entry Leased Address List IP Address MAC Address Leased Time Remains list leased Time remain information for each entry Backup and Restore Backup Startup Configuration file Switch copy startup config tftp 192 168 2 33 default conf Writing Configuration OK Note 1 To backup the latest startup configuration file you should save current settings to flash first You can refer to 4 12 to ...

Page 45: ...figuration Switch show running config Firmware Upgrade Firmware Upgrade Switch archive download sw overwrite tftp 192 168 2 33 mdi 110 bin Firmware upgrading don t turn off the switch Tftping file mdi 110 bin Firmware upgrading Firmware upgrade success Rebooting Factory Default Factory Default Switch reload default config file Reload OK Switch reboot System Reboot Reboot Switch reboot ...

Page 46: ...e or configure the port auto negotiation speed duplex and flow control Select the port you want to configure and make changes to the port In State column you can enable or disable the state of this port Once you disable the port stop to link to the other end and stop to forward any traffic The default setting is Enable which means all the ports are workable when you receive the device In Speed Dup...

Page 47: ...l of that corresponding port on the switch will work anyway Once you finish configuring the settings click on Apply to save the configuration Technical Tips If both ends are not at the same speed they can t link with each other If both ends are not in the same duplex mode they will be connected by half mode 4 3 2 Port Status Port Status shows you current port status The switch supports SFP fiber t...

Page 48: ...ct All Temperature The temperature specific and current detected of DDM SFP transceiver Tx Power dBm The specification and current transmit power of DDM SFP transceiver Rx Power dBm The specification and current received power of DDM SFP transceiver Note 1 Most of the SFP transceivers provide vendor information which allows your switch to read it The UI can display vendor name wave length and dist...

Page 49: ...umn allows you to manually assign the limit rate of the port Valid values are from 1Mbps 100Mbps for fast Ethernet ports and gigabit Ethernet ports The step of the rate is 1 Mbps Default value of Ingress Rule is 8 Mbps default value of Egress Rule is 0 Mbps 0 stands for disabling the rate control for the port Click on Apply to apply the configuration 4 3 4 Port Trunking Port Trunking configuration...

Page 50: ... 3ad LACP you should assign 802 3ad LACP to the trunk When the other end uses non 802 3ad you can then use Static Trunk There are 2 configuration pages Aggregation Setting and Aggregation Status Aggregation Setting Trunk Size The switch can support up to 5 trunk groups Each trunk group can support up to 8 member ports Since the member ports should use same speed duplex max groups for 100M ports wo...

Page 51: ... enabled member ports of LACP group which are not linked up will be displayed in the Link Down column 4 3 5 Command Lines for Port Configuration Feature Command Line Port Control Port Control State Switch config if shutdown Disable port state Port1 Link Change to DOWN interface fastethernet1 is shutdown now Switch config if no shutdown Enable port state Port1 Link Change to DOWN Port1 Link Change ...

Page 52: ...n Auto negotiation of port 1 is enabled Port Control Force Speed Duplex Switch config if speed 100 Port1 Link Change to DOWN set the speed mode ok Switch config if Port1 Link Change to UP Switch config if duplex full Port1 Link Change to DOWN set the duplex mode ok Switch config if Port1 Link Change to UP Port Control Flow Control Switch config if flowcontrol on Flowcontrol on for port 1 set ok Sw...

Page 53: ...Port 10 Temperature 67 00 C range 0 0 80 00 Tx power 6 0 dBm range 9 0 4 0 Rx power 2 0 dBm range 30 0 4 0 Note Administrative Status Port state of the port Operating status Current status of the port Duplex Duplex mode of the port Speed Speed mode of the port Flow control Flow Control status of the port Rate Control Rate Control Ingress or Egress Switch config if rate limit egress Outgoing packet...

Page 54: ...runking LACP Switch config lacp group 1 gi8 10 Group 1 based on LACP 802 3ad is enabled Note The interface list is fa1 fa3 5 gi8 10 Note different speed port can t be aggregated together Static Trunk Switch config trunk group 2 fa6 7 Trunk group 2 enable ok Display LACP Switch show lacp internal LACP group 1 internal information LACP Port Admin Oper Port Port Priority Key Key State 8 1 8 8 0x45 9 ...

Page 55: ...55 FLAGS I Individual P In channel D Port Down Trunk Group GroupID Protocol Ports 2 Static 6 D 7 P Switch ...

Page 56: ...reviation of Rapid Spanning Tree Protocol If a switch has more than one path to a destination it will lead to message loops that can generate broadcast storms and quickly bog down a network The spanning tree was created to combat the negative effects of message loops in switched networks A spanning tree uses a spanning tree algorithm STA to automatically sense whether a switch has more than one wa...

Page 57: ...is composed of bridge priority and bridge MAC address So that the bridge with the highest priority becomes the highest bridge ID If all the bridge ID has the same priority the bridge with the lowest MAC address will then become the root bridge Note The bridge priority value must be in multiples of 4096 A device with a lower number has a higher bridge priority Ex 4096 is higher than 32768 Max Age 6...

Page 58: ...mount of time the switch will wait before checking to see if it should be changed to a different state Once you have completed your configuration click on Apply to apply your settings Note You must observe the following rule to configure Hello Time Forwarding Delay and Max Age parameters 2 Forward Delay Time 1 sec Max Age Time 2 Hello Time value 1 sec Port Configuration Select the port you want to...

Page 59: ...ding state in 4 seconds Once you finish your configuration click on Apply to save your settings 4 4 2 RSTP Info This page allows you to see the information of the root switch and port status Root Information You can see root Bridge ID Root Priority Root Port Root Path Cost and the Max Age Hello Time and Forward Delay of BPDU sent from the root switch Port Information You can see port Role Port Sta...

Page 60: ...eating it will be automatically named by the rule RingID Version The version of Ring can be changed here There are three modes to choose Rapid Super Ring as default Device Priority The switch with highest priority highest value will be automatically selected as Ring Master Then one of the ring ports in this switch will become forwarding port and the other one will become blocking port If all of th...

Page 61: ...al Homing will smartly choose the fastest link for primary link and block all the other links to avoid loop If the primary link failed Rapid Dual Homing will automatically forward the secondary link for network redundant Of course if there are more connections they will be standby links and recover one of them if both primary and secondary links are broken Ring status To enable disable the Ring Pl...

Page 62: ...ty 0 61440 valid range is 0 to 61440 in multiple of 4096 Switch config spanning tree priority 4096 Max Age Switch config spanning tree max age 6 40 Valid range is 6 40 seconds Switch config spanning tree max age 10 Hello Time Switch config spanning tree hello time 1 10 Valid range is 1 10 seconds Switch config spanning tree hello time 2 Forward Delay Switch config spanning tree forward time 4 30 V...

Page 63: ... Times max age 20 sec hello time 2 sec forward delay 15 sec Bridge Address 0007 7cff 0102 Priority 4096 Bridge Times max age 10 sec hello time 2 sec forward delay 15 sec Aging time 300 Port Role Port State Cost Prio Nbr Type fa6 Designated Forwarding 200000 128 6 Auto RST fa7 Root Forwarding 200000 128 7 Shared STP RSTP Summary Switch show spanning tree summary Switch is in rapid stp mode BPDU ske...

Page 64: ...is 600000 Timers message age 0 sec forward delay 0 sec Link Aggregation Group N A Type N A Aggregated with N A BPDU sent 43759 received 4854 TCN sent 0 received 0 Forwarding State Transmit count 12 Message Age Expired count Multiple Super Ring Create or configure a Ring Switch config multiple super ring 1 Ring 1 created Switch config multiple super ring Note 1 is the target Ring ID which is going ...

Page 65: ...ch config super ring plus port cost 100 200 Set path cost success Rapid Dual Homing Switch config multiple super ring rapid dual homing enable Switch config multiple super ring rapid dual homing disable Switch config multiple super ring rapid dual homing port IFLIST Interface name ex fastethernet1 or gi8 auto detect up link auto detection IFNAME Interface name ex fastethernet1 or gi8 Switch config...

Page 66: ...t 100 200 Dual Homing II Disabled Statistics Watchdog sent 0 received 0 missed 0 Link Up sent 0 received 0 Link Down sent 0 received 0 Role Transition count 0 Ring State Transition count 1 Ring ID is optional If the ring ID is typed this command will only display the information of the target Ring ...

Page 67: ...re 1 IEEE 802 1Q tag based VLAN makes use of VLAN control information stored in a VLAN header attached to IEEE 802 3 packet frames This tag contains a VLAN Identifier VID that indicates which VLAN a frame belongs to Since each switch only has to check a frame s tag without the need to dissect the contents of the frame this also saves a lot of computing resources within the switch VLAN Configuratio...

Page 68: ... port can accept both tagged and untagged packets Tag Only mode means that the port can only accept tagged packets Ingress Filtering Ingress filtering helps VLAN engine to filter out undesired traffic on a port When Ingress Filtering is enabled the port checks whether the incoming frames belong to the VLAN they claimed or not Then the port determines if the frames can be processed or not For examp...

Page 69: ...the default VLAN VLAN Name is a reference for network administrator to identify different VLANs The available character is 12 for you to input If you don t input VLAN name the system will automatically assign VLAN name for the VLAN The rule is VLAN VLAN ID The steps to create a new VLAN Type VLAN ID and NAME and press Add to create a new VLAN Then you can see the new VLAN in the Static VLAN Config...

Page 70: ...e not configured now Figure 4 5 2 4 Configure Egress rule of the ports Not available U Untag Indicates that egress outgoing frames are not VLAN tagged T Tag Indicates that egress outgoing frames are to be VLAN tagged Steps to configure Egress rules Select the VLAN ID Entry of the selected VLAN turns to light blue Assign Egress rule of the ports to U or T Press Apply to apply the setting If you wan...

Page 71: ... basis Leave Timer Control the time to release the GVRP reservation after received the GVRP Leave BPDU An instance of the timer is required for each state machine that is in the LV state Leave All Timer Controls the period to initiate the garbage collection of registered VLAN The timer is required on a per Port per GARP Participant basis 4 5 4 VLAN Table This table shows you current settings of yo...

Page 72: ...d ports to the VLAN 4 5 5 CLI Commands of the VLAN Command Lines of the VLAN port configuration VLAN configuration and VLAN table display Feature Command Line VLAN Port Configuration VLAN Port PVID Switch config if switchport trunk native vlan 2 Set port default vlan id to 2 success Port Accept Frame Type Switch config inter fa1 Switch config if acceptable frame type all any kind of frame type is ...

Page 73: ...ce fastethernet1 Administrative Status Enable Operating Status Not Connected Duplex Auto Speed Auto Flow Control off Default Port VLAN ID 2 Ingress Filtering Disabled Acceptable Frame Type All Port Security Disabled Auto Negotiation Enable Loopback Mode None STP Status disabled Default CoS Value for untagged packets is 0 Mdix mode is Auto Medium mode is Copper Display Port Egress Rule Egress rule ...

Page 74: ...xists Switch config vlan name v2 Switch config vlan no name Note Use no name to change the name to default name VLAN VID VLAN description Switch config interface vlan 2 Switch config if Switch config if description this is the VLAN 2 Switch config if no description Delete the description IP address of the VLAN Switch config interface vlan 2 Switch config if Switch config if ip address 192 168 2 20...

Page 75: ...nput packets 639 bytes 38248 dropped 0 multicast packets 0 input errors 0 length 0 overrun 0 CRC 0 frame 0 fifo 0 missed 0 output packets 959 bytes 829280 dropped 0 output errors 0 aborted 0 carrier 0 fifo 0 heartbeat 0 window 0 collisions 0 GVRP configuration GVRP enable disable Switch config gvrp mode disable Disable GVRP feature globally on the switch enable Enable GVRP feature globally on the ...

Page 76: ...r Management VLAN Management VLAN Switch config int vlan 1 Go to management VLAN Switch config if no shutdown Display Switch show running config interface vlan1 ip address 192 168 2 200 24 ip igmp no shutdown ...

Page 77: ...ization settings for each port with regard to setting priorities QOS supports 4 physical queues weighted fair queuing WRR and Strict Priority scheme which follows 802 1p COS tag and IPv4 TOS DiffServ information to prioritize the traffic of your industrial network Following commands are included in this group 4 6 1 QoS Setting 4 6 2 CoS Queue Mapping 4 6 3 DSCP Queue Mapping 4 6 4 CLI Commands of ...

Page 78: ...nly Port priority will only follow DSCP Queue Mapping you have assigned COS first Port priority will follow COS Queue Mapping first and then DSCP Queue Mapping rule DSCP first Port priority will follow DSCP Queue Mapping first and then COS Queue Mapping rule Default priority type is COS Only The system will provide default COS Queue table to which you can refer for the next command After configura...

Page 79: ...e switch fabric supports 4 physical queues Lowest Low Middle and High Users should therefore assign how to map DSCP value to the level of the physical queue You can freely change the mapping table to follow the upper layer 3 switch or routers DSCP setting After configuration press Apply to enable the settings 4 6 4 CLI Commands of the Traffic Prioritization ...

Page 80: ...rt first Ex fa1 means fast Ethernet port 1 Port Setting Trust Mode CoS Only Switch config interface fa1 Switch config if qos trust cos The port trust is set CoS only ok Port Setting Trust Mode CoS First Switch config interface fa1 Switch config if qos trust cos first The port trust is set CoS first ok Port Setting Trust Mode DSCP Only Switch config interface fa1 Switch config if qos trust dscp The...

Page 81: ... 0 CoS Queue Mapping Format Switch config qos cos map PRIORITY Assign an priority 7 highest Switch config qos cos map 1 QUEUE Assign an queue 0 3 Note Format qos cos map priority_value queue_value Map CoS 0 to Queue 1 Switch config qos cos map 0 1 The CoS to queue mapping is set ok Map CoS 1 to Queue 0 Switch config qos cos map 1 0 The CoS to queue mapping is set ok Map CoS 2 to Queue 0 Switch con...

Page 82: ... qos cos map 7 3 The CoS to queue mapping is set ok Display CoS Queue mapping Switch sh qos cos map CoS to Queue Mapping CoS Queue 0 1 1 0 2 0 3 1 4 2 5 2 6 3 7 3 DSCP Queue Mapping Format Switch config qos dscp map PRIORITY Assign an priority 63 highest Switch config qos dscp map 0 QUEUE Assign an queue 0 3 Format qos dscp map priority_value queue_value Map DSCP 0 to Queue 1 Switch config qos dsc...

Page 83: ...83 1 0 0 0 0 0 0 0 0 0 0 2 0 0 0 0 1 1 1 1 1 1 3 1 1 2 2 2 2 2 2 2 2 4 2 2 2 2 2 2 2 2 3 3 5 3 3 3 3 3 3 3 3 3 3 6 3 3 3 3 ...

Page 84: ... IGMP queries report packets and manage multicast traffic through the switch IGMP has three fundamental types of messages as shown below Message Description Query A message sent from the querier an IGMP router or a switch which asks for a response from each host that belongs to the multicast group Report A message sent by a host to the querier to indicate that the host wants to be or is a member o...

Page 85: ... IGMP Snooping for specific VLAN You can enable IGMP Snooping for some VLANs so that some of the VLANs will support IGMP Snooping and others won t To assign IGMP Snooping to VLAN please select the checkbox of VLAN ID or select Select All checkbox for all VLANs Then press Enable In the same way you can also Disable IGMP Snooping for certain VLANs IGMP Snooping Table In the table you can see multica...

Page 86: ... VLANs that are connected to it For networks with more than one IGMP querier a switch with the lowest IP address becomes the IGMP querier In IGMP Query selection you can select V1 V2 or Disable V1 means IGMP V1 General Query and V2 means IGMP V2 General Query The query will be forwarded to all multicast groups in the VLAN Disable allows you to disable IGMP Query Query Interval s The period of quer...

Page 87: ...ts even they are not the member ports of the groups Discard The unknown multicast will be discarded Non member ports will not receive the unknown multicast streams 4 7 4 CLI Commands of the Multicast Filtering Command Lines of the multicast filtering configuration Feature Command Line IGMP Snooping IGMP Snooping Global Switch config ip igmp snooping IGMP snooping is enabled globally Please specify...

Page 88: ...nooping multicast all VLAN IP Address Type Ports 1 239 192 8 0 IGMP fa6 1 239 255 255 250 IGMP fa6 IGMP Query IGMP Query V1 Switch config int vlan 1 Go to management VLAN Switch config if ip igmp v1 IGMP Query V2 Switch config int vlan 1 Go to management VLAN Switch config if ip igmp IGMP Query version Switch config if ip igmp version 1 Switch config if ip igmp version 2 Disable Switch config int ...

Page 89: ... Send to All Ports Disable Force filtering Discard Switch config mac address table multicast filtering Filtering unknown multicast addresses ok Switch config no mac address table multicast filtering Flooding unknown multicast addresses ok Unknown Multicast Send to All Ports Switch config ip igmp snooping source only learning ...

Page 90: ...tion This page allows users to configure SNMP V1 V2c Community The community string can be viewed as the password because SNMP V1 V2c doesn t request you to enter password before you try to access SNMP agent The community includes 2 privileges Read Only and Read and Write With Read Only privilege you only have the ability to read the values of MIB tables Default community string is Public With Rea...

Page 91: ...the switch and the administrator are encrypted to ensure secure communication Security Level Here the user can select the following levels of security None User Authentication and Authentication with privacy Authentication Protocol Here the user can select either MD5 Message Digest algorithm 5 or SHA Secure Hash Algorithm MD5 is a widely used cryptographic hash function with a 128 bit hash value S...

Page 92: ...on Password Here the user enters the password for SNMP v3 user DES Encryption 4 8 3 SNMP Traps SNMP Trap is the notification feature defined by SNMP protocol All the SNMP management applications can understand such trap information So you don t need to install new application to read the notification information This page allows users to Enable SNMP Trap configure the SNMP Trap server IP Community...

Page 93: ...P Trap Server IP with version 1 and community Switch config snmp server host 192 168 2 33 version 1 private SNMP trap host add OK Note private is the community name version 1 is the SNMP version SNMP Trap Server IP with version 2 and community Switch config snmp server host 192 168 2 33 version 2 private SNMP trap host add OK Disable SNMP Trap Switch config no snmp server enable trap Set SNMP trap...

Page 94: ...curity List can access the switch and transmit receive traffic This is a simple way to secure your network environment and not to be accessed by hackers This page allows you to enable Port Security and configure Port Security entry Port Security State Change Port Security State of the port to Enable first Add Port Security Entry Select the port and type VID and MAC address Format of the MAC addres...

Page 95: ...lnet IP Security Select Enable and Apply to enable IP security function Add Security IP You can assign specific IP addresses and then press Add Only these IP addresses can access and manage switch via a web browser or Telnet Max security IP is 10 Security IP List This table shows you added security IP addresses You can press Remove to delete Reload to reload the table Once you finish configuring t...

Page 96: ...ch use the local user data base which can be create in this page for authentication Radius Server IP The IP address of Radius server Shared Key The password between the switch and the Radius Server Server Port UDP port of Radius server Accounting Port Port for packets that contain the information of account login or logout Secondary Radius Server IP Secondary Radius Server could be set in case of ...

Page 97: ... available for this field If this field is set to 0 that means the port is blocked after authentication fail Otherwise the port will be set to Guest VLAN Host Mode if there are more than one device connected to this port set the Host Mode to single means only the first PC authenticate success can access this port If this port is set to multi all the device can access this port once any one of them...

Page 98: ... 1x parameters of selected port to the default values 802 1X Port Status Here user can observe the port status for Port control status Authorize Status Authorized Supplicant and Oper Control Direction each port 4 9 4 CLI Commands of the Security Command Lines of the Security configuration Feature Command Line Port Security Add MAC Switch config mac address table static 0007 7c01 0101 vlan 1 interf...

Page 99: ...fig ip security host 192 168 2 33 Add ip security host 192 168 2 33 ok Display Switch show ip security ip security is enabled ip security host 192 168 2 33 802 1x enable diable Switch config dot1x system auth control Switch config Switch config no dot1x system auth control Switch config authentic method Switch config dot1x authentic method local Use the local username database for authentication r...

Page 100: ...unting Port number NOT given default 1813 RADIUS Server IP 192 168 2 200 RADIUS Server Key 1234 RADIUS Server Port 1812 RADIUS Accounting Port 1813 Switch config radius secondary server ip Switch config dot1x radius secondary server ip 192 168 2 250 key 5678 Port number NOT given default 1812 RADIUS Accounting Port number NOT given default 1813 Secondary RADIUS Server IP 192 168 2 250 Secondary RA...

Page 101: ...d open for normal operation and will close under fault conditions Fault conditions include DI State change Periodical On Off Power Failure Ethernet port Link Failure Ping Failure and Super Ring Topology Change You can configure these settings in this Fault Relay Setting Each Relay can be assigned 1 fault condition Relay 1 Click on checkbox of the Relay 1 then select the Event Type and its paramete...

Page 102: ...onds Off Period Sec Type the period time to turn off Relay Output Available range of a period is 0 4294967295 seconds How to configure Type turn on period and turn off period when the time is reached the system will turn on or off the Relay Output If you connect DO to DI of the other terminal unit the setting can help you to change DI state If you connect DO to the power set of other terminal unit...

Page 103: ...want to monitor When the power is shut down or broken the system will short Relay Out and light the DO LED Event Type Like Failure Link Select the port ID you want to monitor How to configure Select the checkbox of the Ethernet ports you want to monitor You can select one or multiple ports When the selected ports are linked down or broken the system will short Relay Output and light the DO LED Tur...

Page 104: ...timeout the system will turn the Relay Output to close state After the Hold Time timer is timeout the switch system will start ping the target device Ex Reset Time is 5 sec Hold Time is 50 sec If the ping failure occurred the switch system will turn Relay output to open state to emulate power switch off for 5 sec periods After Reset Time timeout the Switch system will start ping target device afte...

Page 105: ...ailure Power 2 is failure Authentication failure An incorrect password SNMP Community String is entered Time Synchronize Failure Accessing to NTP Server is failure Fault Relay The DO Fault Relay is on Super Ring Topology Changes Master of Super Ring has changed or backup path is activated DI1 Change The Digital Input 1 status is changed DI2 Change The Digital Input 2 status is changed SFP DDM Fail...

Page 106: ...local mode and remote mode Local Mode In this mode the switch will print the occurred events selected in the Event Selection page to System Log table of the switch You can monitor the system logs in Monitor and Diag Event Log page Remote Mode In this mode you should assign the IP address of the System Log server The switch will send the occurred events selected in Event Selection page to System Lo...

Page 107: ... The switch supports E mail Warning feature The switch will send the occurred events to remote E mail server The receiver can then receive notification by E mail The E mail warning is conformed to SMTP standard This page allows you to enable E mail Alert assign the SMTP Server IP Sender E mail and Receiver E mail If SMTP server requests you to authorize first you can also set up the username and p...

Page 108: ... to receive email alert from the switch Max 40 characters Rcpt E mail Address 3 The third email address to receive email alert from the switch Max 40 characters Rcpt E mail Address 4 The fourth email address to receive email alert from the switch Max 40 characters Once you finish configuring the settings click on Apply to apply your configuration 4 10 5 CLI Commands Command Lines of the Warning co...

Page 109: ...68 2 33 reset 60 0 65535 hold time to retry Switch config relay 1 ping 192 168 2 33 reset 60 60 Port Link Failure Switch config relay 1 port PORTLIST port list Switch config relay 1 port fa1 5 Power Failure Switch config relay 1 power 1 2 power id Switch config relay 1 power 1 Switch config relay 1 power 2 Super Ring Failure Switch config relay 1 ring Disable Relay Switch config no relay 1 2 relay...

Page 110: ...et cold start event enable ok Ex Link Up event Switch config warning event linkup IFNAME Interface name ex fastethernet1 or gi8 Switch config warning event linkup fa5 Set fa5 link up event enable ok Display Switch show warning event Warning Event Cold Start Enabled Warm Start Disabled Authentication Failure Disabled Link Down fa4 5 Link Up fa4 5 Power Failure Super Ring Topology Change Disabled Fa...

Page 111: ...1 support westermo com ok Authentication with username and password Switch config smtp server authentication username admin password admin SMTP Email Alert set authentication Username admin Password admin Note You can assign string to username and password Disable SMTP Switch config no smtp server enable email alert SMTP Email Alert set disable ok Disable Authentication Switch config no smtp serve...

Page 112: ...ze to write the learnt MAC address To save more entries for new MAC address the switch fabric will age out non used MAC address entry per Aging Time timeout The default Aging Time is 300 seconds The Aging Time can be modified in this page Static Unicast MAC Address In some applications users may need to type in the static Unicast MAC address to its MAC address table In this page you can type MAC A...

Page 113: ...that can be viewed include Link Type Link State Rx Good Rx Bad Rx Abort Tx Good Tx Bad and Collision Rx means the received packet while Tx means the transmitted packets Note If you see many Bad Abort or Collision counts increased that may mean your network cable is not connected well the network performance of the port is poor etc Please check your network cable Network Interface Card of the conne...

Page 114: ...Port Mirror Source Port This is also known as Monitor Port These are the ports you want to monitor The traffic of all source monitor ports will be copied to destination analysis ports You can choose a single port or any combination of ports but you can only monitor them in Rx or TX only Click on checkbox of the Port ID RX Tx or Both to select the source ports Destination Port This is also known as...

Page 115: ...s selected the switch will record occurred events in local log table This page shows this log table The entry includes the index occurred data and time and content of the events Click on Clear to clear the entries Click on Reload to refresh the table ...

Page 116: ...ant from the connected devices LLDP Select Enable Disable to enable disable LLDP function LLDP Configuration To configure the related timer of LLDP LLDP Timer the interval time of each LLDP and counts in second the valid number is from 5 to 254 default is 30 seconds LLDP Hold time The TTL Time To Live timer The LLDP state will be expired once the LLDP is not received by the hold time The default i...

Page 117: ...lt field 4 11 7 CLI Commands of the Monitor and Diag Command Lines of the Monitor and Diag configuration Feature Command Line MAC Address Table Ageing Time Switch config mac address table aging time 350 mac address table aging time set ok Note 350 is the new ageing timeout value Add Static Unicast MAC address Switch config mac address table static 0007 7c01 0101 vlan 1 interface fastethernet7 mac ...

Page 118: ...ss Type Vlan Destination Port 000f b079 ca3b Dynamic 1 fa4 0007 7c01 0386 Dynamic 1 fa7 000d 7c10 0101 Static 1 fa7 0007 7c10 0102 Static 1 fa7 0007 7cff 0100 Management 1 MULTICAST MAC ADDRESS Vlan Mac Address COS Status Ports 1 0100 5e40 0800 0 fa6 1 0100 5e7f fffa 0 fa4 fa6 Show MAC Address Table Dynamic Learnt MAC addresses Switch show mac address table dynamic Destination Address Address Type...

Page 119: ...net4 is enable connected which has Inbound Good Octets 178792 Bad Octets 0 Unicast 598 Broadcast 1764 Multicast 160 Pause 0 Undersize 0 Fragments 0 Oversize 0 Jabbers 0 Disacrds 0 Filtered 0 RxError 0 FCSError 0 Outbound Good Octets 330500 Unicast 602 Broadcast 1 Multicast 2261 Pause 0 Deferred 0 Collisions 0 SingleCollision 0 MultipleCollision 0 ExcessiveCollision 0 LateCollision 0 Filtered 0 FCS...

Page 120: ...itor Destination Port fa6 Egress Monitor Destination Port fa6 Ingress Source Ports fa1 fa2 Egress Source Ports fa1 fa2 Event Log Display Switch show event log 1 Jan 1 02 50 47 snmpd 101 Event Link 4 Down 2 Jan 1 02 50 50 snmpd 101 Event Link 5 Up 3 Jan 1 02 50 51 snmpd 101 Event Link 5 Down 4 Jan 1 02 50 53 snmpd 101 Event Link 4 Up Topology Discovery LLDP Enable LLDP Switch config lldp holdtime S...

Page 121: ...me 0 0 ms 64 bytes from 192 168 2 33 icmp_seq 1 ttl 128 time 0 0 ms 64 bytes from 192 168 2 33 icmp_seq 2 ttl 128 time 0 0 ms 64 bytes from 192 168 2 33 icmp_seq 3 ttl 128 time 0 0 ms 64 bytes from 192 168 2 33 icmp_seq 4 ttl 128 time 0 0 ms 192 168 2 33 ping statistics 5 packets transmitted 5 packets received 0 packet loss round trip min avg max 0 0 0 0 0 0 ms ...

Page 122: ...nk status of the Power DO DI R M and Ports Feature On Link UP Off Link Down Other Power Green Black Digital Output Green Black Digital Input Green Black R M Ring Master Green Black Fast Ethernet Green Black Gigabit Ethernet Green Black SFP Green Black Gray Plugged but not link up yet Note No CLI command for this feature ...

Page 123: ...f the switch without clicking on Save Configuration will cause loss of new settings After selecting Save Configuration click on Save to Flash to save your new configuration Command Lines Feature Command Line Save SWITCH write Building Configuration OK Switch copy running config startup config Building Configuration OK ...

Page 124: ...ection will be logged out if you don t input any command after 30 seconds The Logout command allows you to manually logout the web connection Click on Yes to logout No to go back the configuration page Command Lines Feature Command Line Logout SWITCH exit SWITCH exit ...

Page 125: ...125 5 Appendix 5 1 Pin Assignment of the RS 232 Console Cable The total cable length is 150cm excluding RJ 45 and DB 9 DB 9 is Female RJ 45 Pin DB 9 Pin 1 7 2 9 3 4 4 5 5 1 6 3 7 2 8 8 ...

Page 126: ...ate MIB file by your SNMP tool The private MIB tree is the same as the web tree This is easier to understand and use If you are not familiar with standard MIB you can directly use private MIB to manage monitor the switch no need to learn or find where the OIDs of the commands are ...

Page 127: ...127 5 3 Revision History Edition Date Modifications V0 1 2010 10 11 The first version ...

Page 128: ...128 ...

Reviews:

No comments

Related manuals for MDI-110 Series

H3C s5800 series Configuration Manual preview
s5800 series
Brand: H3C Pages: 22
H3C S5500-EI series Quick Start preview
S5500-EI series
Brand: H3C Pages: 2
SMC Networks PF2MC7 Series Operation Manual preview
PF2MC7 Series
Brand: SMC Networks Pages: 102
IPGARD SA-DVN-2S Quick Start Manual preview
SA-DVN-2S
Brand: IPGARD Pages: 2
Ruby Tech GS-2108C User Manual preview
GS-2108C
Brand: Ruby Tech Pages: 254
Black Box KV1044A-R2 Specifications preview
KV1044A-R2
Brand: Black Box Pages: 4
Minicom DX DX 432 Operating Manual preview
DX 432
Brand: Minicom DX Pages: 36
Belkin OMNICUBE F1DK102P Quick Installation Manual preview
OMNICUBE F1DK102P
Brand: Belkin Pages: 21
Allied Telesis AT 8000/8POE Installation Manual preview
AT 8000/8POE
Brand: Allied Telesis Pages: 56
Clare Controls CLIQ.mini Quick Start Manual preview
CLIQ.mini
Brand: Clare Controls Pages: 2
Xantech 686-10 Installation Instructions preview
686-10
Brand: Xantech Pages: 5
Videoswitch VS - 12 User Manual preview
VS - 12
Brand: Videoswitch Pages: 17
DataParts DAP-SW1003 User Manual preview
DAP-SW1003
Brand: DataParts Pages: 5
Fujitsu XG2600 Series Specifications preview
XG2600 Series
Brand: Fujitsu Pages: 2
Fujitsu XG2600 Series Hardware Manual preview
XG2600 Series
Brand: Fujitsu Pages: 59
Fujitsu XG2000R Hardware Manual preview
XG2000R
Brand: Fujitsu Pages: 75
Fujitsu XG700 - Switch User Manual preview
XG700 - Switch
Brand: Fujitsu Pages: 266
VICOR 4kW MegaPAC User Manual preview
4kW MegaPAC
Brand: VICOR Pages: 31

Brands by name

Popular brands

Load more brands