manualshive.com logo in svg

ZIV SW3-L3, User Manual

Looking for the User Manual for ZIV SW3-L3? Look no further! Download the manual for free from manualshive.com, providing you with all the information you need to maximize the features of your ZIV SW3-L3. Get your hands on the manual now and make the most of your device.

Share
Download
background image

SW3-L3

 

GIGABIT/FAST ETHERNET SWITCH/ROUTER TYPE SW3-L3 

119/180

 

USER GUIDE - M0SW3M1902Iv07 -  V06  February 2019 

 

Shared  Secret.

  It  sets  the  shared  secret  key.  Being  a  necessary  data,  the  device 

uses 

ziv12345

 as the default value. 

 

Timeout.

 It sets the timeout for obtaining response from the server. This parameter 

is necessary due to the use of the connectionless UDP protocol. 

 

Guest  Privilege  Level.

  It  sets  the  privilege  level  (0  to  15)  of  the  guest  profile 

(

guest

). If the privilege level received for the calling user in the affirmative answer of 

the  RADIUS  server  is  equal  to  or  more  than  this  parameter,  and  at  the  same  time 

lower than the 

Admin

 level, the user will get guest access (read only). 

 

Admin Privilege Level.

 It sets the privilege level (0 to 15) of the administrator profile 

(

admin

). If the privilege level received for the calling user in the affirmative answer of 

the  RADIUS  server  is  equal  to  or  more  than  this  parameter,  the  user  will  get 

administrator access (read and write access). 

The parameters associated with each access option (

console

web

telnet, SSH

 and 

FTP 

access

) are the following: 

 

Authentication  method.

  This  sets  whether  the  user  validation  must  be  made 

locally or by consulting the configured tacacsplus or radius servers.

 

 

Fallback to local  access.

 When this option is enabled, if there is no accessibility 

to  the  configured    or  RADIUS  servers,  users  are  permitted  to  validate 

themselves  with  local  user  names.  If  the  option  is  disabled,  and  the    or 

RADIUS  servers  are  not  accessible,  users  will  not  be  granted  access.  Access 

through the console has this option permanently enabled, for which reason it is not 

configurable.

 

5.18 

SECURITY CONFIGURATION 

This  menu  allows  traffic  restrictions  to  be  imposed,  depending  on  the  MAC  addresses  of 

the  clients.  The  equipment  admits  two  modes  for  verifying  the  admitted  client  MAC 

addresses: maclist or 802.1x. 

When operating with lists, maclist, the equipment will only send traffic if the MAC address is 

included in the authorized address list. Activation of the restriction and the list is configured 

separately for each port. 

For  the  802.1x  mode,  the  authentication  of  MAC  addresses  is  done  by  consulting  a 

RADIUS server. 

RADIUS

 (acronym for 

Remote  Authentication Dial-In User Server

) is a 

Summary of Contents for SW3-L3

Page 1: ...Antonio Machado 78 80 08840 Viladecans Barcelona Spain Tel 34 933 490 700 Fax 34 933 492 258 Mail to ziv zivautomation com www zivautomation com GIGABIT FAST ETHERNET SWITCH ROUTER TYPE SW3 L3 USER GU...

Page 2: ...ETY SYMBOLS WARNING OR CAUTION This symbol denotes a hazard Not following the indicated procedure operation or alike could mean total or partial breakdown of the equipment or even injury to the person...

Page 3: ...ipment management 16 1 4 5 Additional services 16 1 4 6 Certifications 16 1 4 7 Mechanical characteristics 16 1 4 8 Operating conditions 17 1 5 WARNINGS 19 1 5 1 Warnings before installing 19 1 5 2 Eq...

Page 4: ...P SERVER 48 5 CONFIGURATION AND MANAGEMENT 50 5 1 GENERAL PARAMETERS 51 5 1 1 Equipment identification 52 5 1 2 Access control 52 5 1 3 Others 53 5 1 4 Syslog 53 5 2 ADMINISTRATION 54 5 3 LAN CONFIGUR...

Page 5: ...CONFIGURATION 108 5 16 MULTICAST CONFIGURATION 110 5 16 1 Static 113 5 16 2 GMRP 114 5 16 3 IGMP 115 5 17 ACCESS CONFIGURATION 117 5 18 SECURITY CONFIGURATION 119 5 18 1 802 1x 121 5 18 2 MAC list 12...

Page 6: ...cast traffic The SW3 L3 supports the SNMPv1 SNMPv2c and SNMPv3 management protocols the RIPv1 RIPv2 OSPFv2 and BGPv4 routing protocols the VRRP redundancy protocol as well as other protocols and servi...

Page 7: ...ic identifier called VID which is included in the VLAN tag and specified in the standard IEEE 802 1q It permits several VLANs to share resources either switching devices such as the SW3 L3 or links be...

Page 8: ...SW3 L3 GIGABIT FAST ETHERNET SWITCH ROUTER TYPE SW3 L3 8 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 FIGURE 2 Star topology FIGURE 3 Rings...

Page 9: ...the planned interface functions user edge untag inter switch link trunk or native and those associated to the Q in Q functionality access and core Once the LAG is selected the set of parameters of the...

Page 10: ...port disabling traffic restriction according to MAC addresses authentication protocols TACACS RADIUS etc Broadcast traffic limitation In order to avoid the network flooding the SW3 L3 selects maximum...

Page 11: ...r the service tcp udp the latter supports the use of a range of ports both destination and origin Filtering rules admit conditions in many fields 1 3 EQUIPMENT COMPOSITION The SW3 L3 is provided in a...

Page 12: ...luded in the IP header Broadcast and Multicast Broadcast Storm Control traffic limitation MAC access control lists and 802 1x user authentication Q in Q operation double tagged Link aggregation by LAG...

Page 13: ...E in the first four ports always front Block of 4 or 8 ports type 100Base Fx multimode 1300 nm with MT RJ connector Block of 2 or 4 ports type 100Base Fx multimode 1300 nm with ST connector Block of 2...

Page 14: ...imode 1300 nm with MT RJ connector Block of 4 ports type 10 100Base Tx with RJ 45 connector and 2 ports type 100Base Fx multimode 1300 nm with LC connector Block of 4 ports type 10 100Base Tx with RJ...

Page 15: ...r LC type of fiber singlemode wavelength 1310 nm typical maximum distance 10 km SFP 100BaseEx 4CZ07980008 type of connector LC type of fiber singlemode wavelength 1310 nm typical maximum distance 40 k...

Page 16: ...ACS client RADIUS client GARP GMRP IEEE 802 1D 2004 IGMP snooping DHCP server and client DHCP Relay VRRP LLDP IEEE 802 1AB 2016 TLS 1 0 1 4 6 Certifications CE Designed for industrial applications Des...

Page 17: ...48 Vdc 40 W Maximum PoE consumption to be distributed for every group of four electrical ports 12 W Temperature range From 25 C to 70 C Relative humidity Not greater than 95 in accordance with IEC 72...

Page 18: ...ing at a c power port low frequency immunity tests in accordance with EN 61000 4 13 standard Damped oscillatory wave immunity test in accordance with EN 61000 4 18 standard Voltage dips short interrup...

Page 19: ...company that will use these devices and the Safety standards EN 50110 2 In order to install and handle the SW3 L3 the following points must be complied with Only qualified personnel appointed by the e...

Page 20: ...any injury to persons or third parties caused by the non fulfilment of point 1 1 The terminal contains components sensitive to static electricity the following must be observed when handling it Person...

Page 21: ...d unit s u high which is prepared for rack mounting FIGURE 5 shows the general dimensions in mm of the SW3 L3 as well as the position of the fastening holes FIGURE 5 General dimensions in mm of the SW...

Page 22: ...eight 10 100Base Tx ports 1 to 4 of block 1 and 1 to 4 of block 2 admit the PoE power supply option which is performed through the connector shown in FIGURE 7 The PoE interfaces provide power supply...

Page 23: ...s not compulsory but it is strongly advisable FIGURE 8 Location of the earth connection The SW3 L3 may have 4 Gigabit Ethernet SFP bays and up to 32 ports without PTP Precision Time Protocol or up to...

Page 24: ...10 shows an example of a rear view of the SW3 L3 with 4 Gigabit Ethernet SFP bays and with 24 rear ports without PTP the first 16 in 100Base Fx multimode MT RJ configuration and the last 8 in 100Base...

Page 25: ...essing the equipment through a console and an I O connector FIGURE 12 Location of the SRV maintenance connector and the I O connector a Front view of shelf with front ports b Rear view of shelf with r...

Page 26: ...e is made up of eight copper wires that form the four twisted pairs covered in different coloured insulating material FIGURE 13 shows the colour of the wires that make up each one of the pairs accordi...

Page 27: ...0Base Tx LAN interface In the eight 10 100Base Tx ports that admit the PoE power supply option 1 to 4 of block 1 and 1 to 4 of block 2 pair 1 is used for the VDCPoE connection and pair 4 is used for t...

Page 28: ...e cable length should not be more than 2 km FIGURE 16 shows the most important input and output optical power characteristics according to the type of multimode fiber used All the MT RJ type connector...

Page 29: ...multimode The cable length should not be more than 2 km FIGURE 16 shows the most important input and output optical power characteristics according to the type of multimode fiber used All the LC type...

Page 30: ...dules in section 1 4 3 Accessories Bays have a protective cap FIGURE 17 SFP modules Inserting procedure of an SFP module The inserting procedure of an SFP module is the following 1 Remove the protecti...

Page 31: ...ule is the following 1 Disconnect the optical fiber from the connector of the SFP module 2 Pull down the transceiver security lever 3 Whilst the security lever down remove the port from the module if...

Page 32: ...acteristics of the maintenance connector and its use are indicated below The connector has a protective cap FIGURE 19 Location of the SRV maintenance connector Pin RS 232 2 RD 3 TD 5 GND SRV CONNECTOR...

Page 33: ...in 4 5 OUTPUT pin 1 2 Input Inactive In Voltage 8 Vdc between pins 4 5 Output Active Impedance 26 between pins 1 2 Input Active In Voltage 10 Vdc between pins 4 5 Output Inactive Impedance 500 M betwe...

Page 34: ...Ds are indicated in the following sections 3 1 SW3 L3 WITH FRONT PORTS WITHOUT PTP FIGURE 21 shows a front view of the SW3 L3 with front ports without PTP showing the detail of the different LEDs They...

Page 35: ...ume PoE power supply will remain off LEDs associated with SFP ports Link Act LED Two coloured There is one LED per SFP interface It flashes in the case of emission or reception activity in the interfa...

Page 36: ...There is one LED per port It stays on when the link is established correctly and flashes in the case of emission or reception activity in the interface LEDs associated with 100Base Fx multimode SC po...

Page 37: ...M1902Iv07 V06 February 2019 LEDs associated with 100Base Fx multimode LC or 100Base Lx singlemode LC ports Link Act LED Green There is one LED per port It stays on when the link is established correct...

Page 38: ...different LEDs in the SW3 L3 with rear ports without PTP Basic LEDs SRV LED Amber It flashes when there is emission or reception activity by the SRV serial service interface ON LED Red It is permanen...

Page 39: ...stays on when the link is established correctly and flashes in the case of emission or reception activity in the interface It lights up in green at 100 Mbit s and in amber at 10 Mbit s LEDs associate...

Page 40: ...s one LED per port It stays on when the link is established correctly and flashes in the case of emission or reception activity in the interface LEDs associated with 100Base Fx multimode LC or 100Base...

Page 41: ...nterface On LED Red It is permanently lit when the equipment is powered with an external power supply voltage LEDs associated with SFP1 to SFP4 ports Link Act LED Two coloured There is one LED per SFP...

Page 42: ...one LED per SFP interface It flashes in the case of emission or reception activity in the interface It lights up in green at 1 Gbit s and in amber at 100 Mbit s LEDs associated with the block of four...

Page 43: ...There is one LED per port It stays on when the link is established correctly and flashes in the case of emission or reception activity in the interface LEDs associated with the block of four 10 100Ba...

Page 44: ...ode LC ports Sp Lk Act LED Two coloured There is one LED per port It stays on when the link is established correctly and flashes in the case of emission or reception activity in the interface It light...

Page 45: ...ferent LEDs in the SW3 L3 with rear PTP ports Basic LEDs SRV LED Amber It flashes when there is emission or reception activity by the SRV serial service interface ON LED Red It is permanently lit when...

Page 46: ...RJ ports LEDs Green There is one LED per port It stays on when the link is established correctly and flashes in the case of emission or reception activity in the interface LEDs associated with 100Base...

Page 47: ...available commands that is obtained by executing the help command The data are grouped virtually into directories and subdirectories To browse through the directories the cd change directory command...

Page 48: ...remotely through SSH connection and Telnet 4 2 HTTP SERVER The HTTP server included provides access to the HTML pages giving access to all the configuration data see FIGURE 25 The procedures for the e...

Page 49: ...ersion with standard ports SW3 L3 version with PTP ports The factory IP address of the equipment is 192 168 0 1 meaning it is possible to access the HTTP server to configure it from the very start see...

Page 50: ...t is to execute the Apply command which entails the immediate use of the changes made the second is to execute the Save command which means that the changes will be operative once the equipment is reb...

Page 51: ...SW3 L3 validates the user identity In addition to the configuration parameters which will be described in the following sections as shown in the figure the system provides information about the equip...

Page 52: ...or the two pre set profiles guest and admin The guest profile can only access query operations On the contrary the admin profile has access to all the system configuration data As summarised in TABLE...

Page 53: ...gged with a level equal to or lower than the level specified The levels are Level Description Emergency Level 1 Multiple apps servers sites This level should not be used by applications Alert Level 2...

Page 54: ...at a remote server is configured and the traces are NOT stored in the local Log The last parameter Syslog Server IP selects the IP address of the Remote Syslog server to which the information is sent...

Page 55: ...019 Messages 2 Messages 3 Security Security 0 The credentials for accessing the FTP folder are the same as for accessing the equipment FIGURE 27 Administration menu configuration page The procedure fo...

Page 56: ...Ports menu permits the configuration of the operating parameters of the ports of the equipment and the assigning of each port to the VLANs defined in the equipment see section 5 3 2 By default all po...

Page 57: ...cases be transmitted with a tag It is the specific mode for connection with other switching devices so as preserve the VLAN information between switches Tag The 802 1 frames will be transmitted with...

Page 58: ...ave sense so any value other than 100hdx is processed as 100fdx The SFP interfaces do not support changing data rate that is to say they can operate at the data rate set by the manufacturer so that th...

Page 59: ...e separated by a comma without spaces If a range is to be included the initial and final vlan identifiers are separated by a dash Example in equipment with the vlan1 to vlan3 and vlan5 defined the gro...

Page 60: ...Network VLAN corresponds to an independent Ethernet spread domain The equipment can create many of these independent domains and can assign each user ports to one of them Domains can spread across man...

Page 61: ...operation mode as regards the management of the MAC addresses of the different VLANs The operation mode is IVL Independent VLAN Learning by default The equipment operates in SVL mode Shared VLAN Learn...

Page 62: ...CTIVATED The IP address for each of the virtual logical interfaces and its mask can be obtained automatically from the DHCP client which is known as dynamic or NON static configuration Users can activ...

Page 63: ...rver IP Remote DHCP server to which is transmitted the requests of received dynamic addresses VLANs for Q in Q In this section must be indicated which of the VLANs will be the ones used in interfaces...

Page 64: ...ch one of the ports both incoming and outgoing The data volume limit may be selected in general for all types of traffic as well as for certain combinations that take into account the type of Ethernet...

Page 65: ...configuration parameters of each block are indicated below Ingress Rate Control It identifies the port number and it coincides with the equipment connector number The last four ports are always associ...

Page 66: ...imum incoming bandwidth to the port 64000 bps 64 kbps to 250000000 bps 250 Mbps The maximum data rate only affects the Gigabit Ethernet ports Egress Rate Control It identifies the port number and it c...

Page 67: ...nd disabling monitoring of the incoming traffic by ticking or not ticking the corresponding box Monitored Ports It sets the port or ports to be monitored The incoming traffic in each one of the select...

Page 68: ...ETHERNET SWITCH ROUTER TYPE SW3 L3 68 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 Target port It sets the port where the replicated packets will be sent to be monitored FIGURE 34 Example of Monito...

Page 69: ...mode of the LLDP agent of the interface Valid values are TxRx TxOnly RxOnly and disabled The default value is TxRx Tx Interval It sets the time between the transmission of messages in normal operatio...

Page 70: ...in the LLDP messages sent The value of the field is the text of the Hostname parameter of the main menu see 5 1 1 SysDesc Indicates to the LLDP agent whether or not to include the optional field with...

Page 71: ...erves a queue with a lower priority when the higher priority queues are empty The WFQ policy guarantees a weighted service for all the priority but pre eminently to queues with a high priority The ser...

Page 72: ...UIDE M0SW3M1902Iv07 V06 February 2019 In any case except for the DSCP assignment that is direct to the internal queues the assigned priority is used for the final classification in accordance with the...

Page 73: ...the field will be inserted Valid values identify the four internal priorities High Medium Low or Mgmt Although it is available it is recommended to reserve the Mgmt priority for exclusive use as prio...

Page 74: ...at The priority selected as default value in the input port will be associated with a frame without tag 802 1 Regardless of whether the priority was already included in the original frame or assigned...

Page 75: ...nfigured devices vlan simply assign to it the IP address equal to IP 0 0 0 0 If routing should be partially active instead of not being active the filtering rules must be configured see section 5 9 Th...

Page 76: ...tcp udp icmp After the service the port number 1 65535 must be indicated separated by two points The default value is any that is to say the route applies for all types of traffic only the IP destina...

Page 77: ...g vlan1 Metric This permits a value to be set originating from among the default different routes that could be created A higher metric means a lower priority Description This permits a description o...

Page 78: ...nterface are Interface This identifies the real or virtual device in which the protocol execution must be enabled Send version This selects the protocol version to be use by the equipment to transmit...

Page 79: ...nfiguration parameters for all interfaces are Protocol Route Distribution It indicates whether the protocol must include not only the routing information obtained through the protocol messages and IP...

Page 80: ...e described below Router ID Identifies the equipment Although the format coincides with that normally used for an IP address it is really a digit to distinguish the routers executing the OSPF protocol...

Page 81: ...d and behaves as a backbone since all the areas must be connected to it The third parameter determines whether messages for the defined area should provide and require authentication using MD5 for it...

Page 82: ...al connection will be created The equipment identifier in which the virtual connection will be carried out is configured in Remote router Id By means of an option it is possible to enable the use of M...

Page 83: ...es whether the protocol must include not only the routing information obtained through the protocol messages and IP data of the local interfaces but also the routing data specified in the static route...

Page 84: ...nd its conditions are described below BGP AS Number Identifies the AS of the router usually referred to as ASN Router ID Identifies the equipment Although the format coincides with that normally used...

Page 85: ...onnections and therefore configuration Therefore there are provided mechanisms to avoid compliance of the same One of the simplification mechanisms is the use of the equipment as Route Reflector Clien...

Page 86: ...ction mode The equipment that behaves as a Route Reflector is identified by having even devices with the same ASN and by having active the RFLC option activated in the block in which the parameters ar...

Page 87: ...means of the previous parameter In order for the Confederation be effective the Confederation ID must be different from 0 and at the same time there must be at least one ASN configured in the Confede...

Page 88: ...lue of the Local AS parameter is not used in any way o alternative The Local AS configured is put before the AS AS PATH sequence for the routes received from the neighbouring router and is added to th...

Page 89: ...neighbouring router when the route is known locally PA When it is active the opening messages are not sent to the neighbouring router but will behave in passive way awaiting that the neighbouring rout...

Page 90: ...D N O P Q format Aggregation Type Controls how the network information of the previous parameter is advertised It admits five values no aggregate aggregate as set summary only and as set_sumary only...

Page 91: ...d affects all the input output routes that are not going to have more specific policies for the router identified with the previous parameter Peer ID Local Preference It sets the value of the Local Pr...

Page 92: ...l services for example http Telnet etc Filtering of packets through the incoming outgoing service for virtual interfaces associated with each VLAN that is defined FIGURE 46 Filtering menu The configur...

Page 93: ...an In and outgoing by Vlan Out out incoming by Vlan Out and outgoing by Vlan In Policy This allows the filtering policy to be specified accept drop or reject When the filtering policy is accept only p...

Page 94: ...on several of the equipment virtual VLAN interfaces each one with its own server FIGURE 47 DHCP Server menu 5 10 1 DHCP Server Profiles Creating profiles allows the creation of sets of parameters tha...

Page 95: ...Boot TFTP Server This selects the IP address of the TFTP server that stores the remote boot file thereby allowing the client to execute a request to download the file Bootfile Name This selects the na...

Page 96: ...which could disconnect a whole network from the rest The VRRP protocol permits several routers to be presented to clients with a common single virtual IP address controlling the routers included in th...

Page 97: ...3 Priority This parameter sets the priority the router will present during the process for selecting the master router Valid values are 1 to 254 The master router is identified by using the priority 2...

Page 98: ...o be chosen as router master when the supervision function fails Remote IP This sets the address of the external equipment final destination to be supervised If the field value is 0 0 0 0 this means t...

Page 99: ...and 6000 All the responses to the Ping Keep Alive packets sent in this period make the universe of samples that will be considered to decide about the execution of Action according to the fulfilment...

Page 100: ...sociated with SNMPv3 Tabulate information that allows the users including the privileges and the operation mode associated with each user to be defined That is to say the rights of access Access read...

Page 101: ...tion devices for the traps to be defined For each of the spontaneous SNMP message addressees a profile must be provided which must be included in the spontaneous message the SNMP protocol version with...

Page 102: ...ol in both its original version STP and the improved version RSTP has the objective of identifying potential loops in level 2 networks so that the different devices can communicate with each other and...

Page 103: ...is 20 seconds and valid values are 6 to 40 seconds Hello Time This parameter sets the time between sending BPDU messages the STP protocol messages The default and maximum value is 2 seconds Forward D...

Page 104: ...of level 2 switching devices connected to the interface This is useful in cases in which the type of devices to be connected is not known The last and fourth mode redundant is specifically designed fo...

Page 105: ...ets in the interfaces operating in edge mode This parameter is only effective when the operating state of the interface is edge and this situation is only possible when the Edge parameter is configure...

Page 106: ...the use of several NTP servers simultaneously and the option of using authentication The SNTP variant means a faster synchronization but less accurate and on the other hand it is necessary to run it p...

Page 107: ...oll Maximum time between requests The parameter is the exponent of the power of 2 that corresponds to the maximum period Authentication Enable This sets whether messages should be sent with authentica...

Page 108: ...e in 2 step mode although it accepts 1 step and converts automatically to 2 step When the PTP protocol is in execution the user can individually configure the execution of the protocol in each of the...

Page 109: ...the PTP protocol Profile It only supports the IEC 61850 value which selects the PTP operation according to the Power Profile according to IEEE Std C37 118 1 2011 standard Priority Syntonization Domai...

Page 110: ...xecuted or not Asymmetry The equipment allows the user to configure an individualized time asymmetry value for each of the ports 5 16 MULTICAST CONFIGURATION Under normal conditions multicast traffic...

Page 111: ...figuration or requested by client devices Any other multicast traffic will be discarded As an example FIGURE 55 shows the advantages of using GARP GMRP or IGMP Snooping FIGURE 55a shows a network made...

Page 112: ...SW3 L3 112 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 FIGURE 55 Example of using the GARP GMRP or IGMP Snooping a Network that does NOT use Multicast configuration protocols b Network that uses G...

Page 113: ...l port identifiers are separated by a dash The value any means the port is not relevant VLANs Numeric identifier of the VLANs defined on the equipment on which the MAC address will be transmitted VID...

Page 114: ...d by configuring the registers of the Static zone Unlike purely manual operation the execution of the protocol involves the automatic propagation of application manually set towards the rest of the sw...

Page 115: ...RP messages concerning the group address is ignored The Forbidden option assumes that requests won t be accepted by the client devices for the group address and that only the multicast traffic registe...

Page 116: ...sion based on the obtained information Enable A simple CheckBox to set if the IGMP periodic consultation service is active or not It sets the equipment physical port number IGMP forward It sets the tr...

Page 117: ...hentication authorisation and registration services The general configuration parameters are the following 1 Server IP This sets the IP address of the primary TACACS server 2 Server IP This sets the I...

Page 118: ...configuration page RADIUS The parameters for the RADIUS client are the following 1 Server IP It sets the primary RADIUS server IP address 2 Server IP It sets the secondary RADIUS server IP address UDP...

Page 119: ...cess option console web telnet SSH and FTP access are the following Authentication method This sets whether the user validation must be made locally or by consulting the configured tacacsplus or radiu...

Page 120: ...he ports are the following Physical interface identifier Security Type It sets if the filtering service by MAC address is active in the indicated port maclist option or the 802 1x authorization is use...

Page 121: ...option indicates to the equipment that periodic reauthentication has to be requested Reauthentication period reAuthPeriod It sets the time between one reauthentication and the next The parameter is e...

Page 122: ...range is desired to be included the initial address and final address are separated by a hyphen see example in the figure Ports Port s in which the MAC address will be accepted A group of discreet po...

Page 123: ...ration parameters are as follows MACS Bridge Age Time It sets the maximum time a learned MAC address of inactivity will remain in the switch MAC address table Valid values in seconds are 15 to 3600 Th...

Page 124: ...FLASH The equipment admits the updating of applicative software by executing the Reflash command which is only available in the HTML pages and for the administrator profile The code reflash process do...

Page 125: ...tomatically an application software backup The copy is not accessible or configurable by the user The system itself is that after a few minutes from the start up checks if the application software run...

Page 126: ...tem issues a warning due to the possible loss of equipment access If the Only verify option has been selected and verification has been successful it is indicated by the system to the user If desired...

Page 127: ...st relevant event log General Events events txt the authentication event log Authority Events authority txt and the security event log Security Events security txt are available The latter is only acc...

Page 128: ...ped into data on the Ethernet interfaces Ports the MAC addresses identified by the switch MACS STP protocol LLDP protocol VLAN Routing DHCP Servers VRRP synchronization client NTP and PTP ports as app...

Page 129: ...GIGABIT FAST ETHERNET SWITCH ROUTER TYPE SW3 L3 129 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 FIGURE 67 Example of statistics with general data FIGURE 68 Example of basic statistics of Ethernet...

Page 130: ...SW3 L3 GIGABIT FAST ETHERNET SWITCH ROUTER TYPE SW3 L3 130 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 FIGURE 69 Example of statistics detail of a specific port selection of parameter...

Page 131: ...SW3 L3 GIGABIT FAST ETHERNET SWITCH ROUTER TYPE SW3 L3 131 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 FIGURE 70 Example of statistics of the MAC addresses identified by the switch...

Page 132: ...SW3 L3 GIGABIT FAST ETHERNET SWITCH ROUTER TYPE SW3 L3 132 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 FIGURE 71 Example of statistics of the STP protocol...

Page 133: ...GABIT FAST ETHERNET SWITCH ROUTER TYPE SW3 L3 133 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 FIGURE 72 Example of statistics of the LLDP protocol FIGURE 73 Example of statistics of IP addressing...

Page 134: ...ITCH ROUTER TYPE SW3 L3 134 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 FIGURE 74 Example of statistics of routing information FIGURE 75 Example of statistics of DHCP Servers FIGURE 76 Example of...

Page 135: ...HERNET SWITCH ROUTER TYPE SW3 L3 135 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 FIGURE 77 Example of statistics of the NTP client FIGURE 78 Example of statistics of the PTP protocol for SW3 L3 eq...

Page 136: ...SW3 L3 GIGABIT FAST ETHERNET SWITCH ROUTER TYPE SW3 L3 136 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 APPENDIX A BIBLIOGRAPHY AND ABBREVIATIONS...

Page 137: ...ion Protocol 2 STD 56 IEEE RFC 2453 November 1998 RIP Version 2 Obsoletes RFC 1723 RFC 1388 3 STD 15 IEEE RFC 1157 May 1990 A Simple Network Management Protocol SNMP 4 STD 62 IEEE RFC 3416 December 20...

Page 138: ...Multipoint Virtual Private Network DNS Domain Name Server DPD Dead Peer Detection DSCP Differentiated Services Code Point GPRS General Packet Radio Service GRE Generic Routing Encapsulation HTTP Hype...

Page 139: ...PP Point to Point Protocol PPTP Point to Point Tunneling Protocol PSTN Public Switched Telephone Network QoS Quality of Service RADIUS Remote Authentication Dial In User Server RAS Registration Authen...

Page 140: ...Iv07 V06 February 2019 VLAN Virtual Local Area Network VPN Virtual Private Network VRID Virtual Router Identifier VRRP Virtual Router Redundancy Protocol WAN Wide Area Network WEP Wired Equivalent Pri...

Page 141: ...SW3 L3 GIGABIT FAST ETHERNET SWITCH ROUTER TYPE SW3 L3 141 180 USER GUIDE M0SW3M1902Iv07 V06 February 2019 APPENDIX B DATA STRUCTURE IN CLI...

Page 142: ...f the equipment Conventions The equipment configuration parameters are laid out in a tree directory in which parameters and related subdirectories are grouped where A name followed by indicates the na...

Page 143: ...f the equipment SRV Communication between the computer and the equipment is established through a terminal emulation programme such as Windows HyperTerminal configuring a serial connection with the fo...

Page 144: ...login prompt will appear ready for the user to enter the login and code for starting the session the logins and their respective passwords are the same as in the web interface Remember that no text wi...

Page 145: ...R GUIDE M0SW3M1902Iv07 V06 February 2019 FIGURE 81 Putty home window In the Serial menu last of all the serial port is configured If an USB converter is used first consult the COM number in the Device...

Page 146: ...l port with Putty Pressing the Open button and return if necessary a window is shown in which the swt login prompt will appear ready for the user to enter the login and code for starting the session t...

Page 147: ...igured and be connected to the management computer network Telnet can be executed in Windows XP from the Start button Start Execute and in the text box enter telnet space Equipment_IP_address 111 222...

Page 148: ...with the equipment the swt login prompt will appear ready for the user to enter the login and code for starting the session the logins and their respective passwords are the same as in the web interfa...

Page 149: ...ment download Generates a configuration commands file exit Interrupts the connection with the equipment get Shows the parameter values help Shows the list of available commands log Shows the log file...

Page 150: ...mation in the log The events that are generated at the system level and sent to the log include an identification level The system supports 8 different levels separated into two blocks The first set c...

Page 151: ...which it is located or enter the relative route The new item created has the next order number with respect to the last one For instance if vif 1 and vif 2 already existed on executing the command ad...

Page 152: ...hown starts with the command restore which applies the factory configuration followed by the commands required to obtain the current configuration It is a good idea to copy and save this list of comma...

Page 153: ...ry or the relative route must be entered Examples swt get swt get main swt main get hostname swt get main hostname swt admin get main hostname remove This eliminates an item from the matrix of a matri...

Page 154: ...ent is rebooted Syntax swt save Arguments Observations This command can be used irrespective of the directory where the user is Example swt save set This changes the value stored in the configuration...

Page 155: ...e of each of the parameters in the active directory and its subdirectories one by one Consequently if the set command is executed without an argument in the root directory the system will request a ne...

Page 156: ...ent directory or its relative route must be entered To activate the directory on the level immediately above it two dots must be entered cd When the directory is changed the prompt shows the equipment...

Page 157: ...xample swt quit reboot This reboots the equipment without having to turn it off and on again for instance in order to apply the saved configuration changes Syntax swt reboot Arguments Observations Exa...

Page 158: ...equipment open Syntax swt telnet Host Port Arguments Host Name of the destination host to which open a Telnet session Port optional Number of the destination port where to open a Telnet session Observ...

Page 159: ...r Delete the statistics Syntax swt clear Arguments Observations Example swt clear date Shows the date and time recorded in the equipment Syntax swt date Arguments Observations Example swt date help Di...

Page 160: ...ts the timing by using a suffix The higher the suffix oldest is the file contents Use the show command to display the oldest files You can filter at will the temporary log using the text as a filter a...

Page 161: ...the contents of the log file specified Syntax swt show file Arguments file Name of the file desired to display The log file in use current is named messages Oldest log files include a suffix e g messa...

Page 162: ...ers To show a parameter for a specific status or those of a specific directory the names of each one must be known Once at swt mac the execution of the command stats shows the MAC addresses identified...

Page 163: ...sumed that the equipment is connected to a network and with an IP address configured which in the case of this example will be 111 222 0 123 In addition the computer used to make the connection is als...

Page 164: ...at we only want information it makes no difference which login is entered admin or guest Enter guest and then press enter Now the system is waiting for us to enter the respective password Enter passwd...

Page 165: ...If the information extends beyond the edges of the window the system will only show the information at the start and it will be necessary to press enter once or several times for all the information t...

Page 166: ...ing the left button press the enter key That way you will have copied the selected text into the Windows clipboard Now open Windows Notepad and paste the text Ctrl V in a txt file and save it 4 Obtain...

Page 167: ...l to save the information in a txt file using the method described above 5 Obtaining the equipment statistics The equipment statistics list is shown through the command stats In this example it is ass...

Page 168: ...ay the oldest log files In this example it is assumed that the equipment is a DRA 2 Remember to save the information in a txt file as indicated above 7 Obtaining events taking place in the equipment i...

Page 169: ...auto none off 13 swt port on edge auto 1 auto none off 14 swt port on edge auto 1 auto none off 15 swt port on edge auto 1 auto none off 16 swt port on edge auto 1 auto none off 17 swt port on edge au...

Page 170: ...15 0 on off 16 0 on off 17 0 on off 18 0 on off 19 0 on off 20 0 on off 21 0 on off 22 0 on off 23 0 on off 24 0 on off 25 0 on off 26 0 on off 27 0 on off 28 0 on off vlan vlan vid priover priority...

Page 171: ...able off version rstp priority 32768 max_age 20 000000000 hello_time 2 000000000 forward_delay 15 000000000 tx_hold_count 6 Press any key to continue or CTRL C to stop A J port port enable priority co...

Page 172: ...0 0 12 TxRx 30 4 2 5 1 4 off off off off off off 0 0 0 0 13 TxRx 30 4 2 5 1 4 off off off off off off 0 0 0 0 14 TxRx 30 4 2 5 1 4 off off off off off off 0 0 0 0 15 TxRx 30 4 2 5 1 4 off off off off...

Page 173: ...ay if metric descr 1 10 212 3 254 vlan1 1 dns dns_enabled off rip enable off advertised_policy permit ospf enable on router_id 10 212 2 108 abr_type standard dist_default_policy permit areas areas net...

Page 174: ...xxxxxxxx client broadcastenable off server server ip type minpoll maxpoll authenable authkey lowtraffic 1 10 212 1 205 unicast 5 10 off 1 off sntp client client ip poll units authenable authkey timeou...

Page 175: ...AETbQB1gaviCAAAAGNjZWEwZmM4Mjk3NTdjNWY0OTY4NNWQ3MmNkZTg1YzU4Cg guest_lvl 1 admin_lvl 2 radius server1_ip 0 0 0 0 server2_ip 0 0 0 0 udp_port 1812 secret tH4sIAOUmEVwCAzM0AAET7arMMkMjYxNTAPpzLn0QAAAAYT...

Page 176: ...V06 February 2019 reauth_period 3600 reauth_max 2 Press any key to continue or CTRL C to stop A J quiet_period 60 radius_server ip 10 212 4 5 udp_port 1812 secret tH4sIAOUmEVwCAzM0AAETbSMjAzMDc2MDQ3MA...

Page 177: ...cert a valid certificate with the command upload cert raw The procedure for loading the certificate is the following Copy in the clipboard the certificate Then execute the indicated upload command and...

Page 178: ...ndicating that the certificate has not been validated by a trusted authority Select Go to this web site not recommended Then the equipment access control requires the user login and password In the eq...

Page 179: ...t3IyhOQxzEE5mM2hOhWKgaJn0ZEGDqcoIMLj4 E3f 3QIDAQAB nA oGAOvDzYhVKhjodHlUzm3lbsZzAklKAKNorgn8kxbpYE RM8mkV9f Lb3jWhiEu nxy f7m7BmNMcex8bSRwduzrUnK66DW8jP3b2tsxJHLYU9UpN1XKDNBHGvgJ7Gis S nApu oZFYmh34uB...

Page 180: ...21apGGhF1Bz0FPn3LRxC1Mb6PI kNatYteCq5FJNjGunF8hDIQVc1x7O2ju2vmGOiyVfSz1eqiy Tx0dMYsgpBeY3K 8fb J1jmLPNzPhgMlzPK6VGNA70 QhfCG9l5xK1oWQ END CERTIFICATE Example of a valid private key BEGIN RSA PRIVATE K...

Reviews:

No comments

Related manuals for SW3-L3

6TL YAV904X8 Manual preview
YAV904X8
Brand: 6TL Pages: 25
Lindy 32351 Manual preview
32351
Brand: Lindy Pages: 70
Intermatic T7802BC Supplementary Manual preview
T7802BC
Brand: Intermatic Pages: 1
Aastra TA7102i Hardware Installation Manual preview
TA7102i
Brand: Aastra Pages: 52
Hanwell IKVM-101Plus User Manual preview
IKVM-101Plus
Brand: Hanwell Pages: 109
Olympia TV 150 Quick Start Manual preview
TV 150
Brand: Olympia Pages: 6
Tekmar tekmarNet4 User Switch 480 Data Brochure preview
tekmarNet4 User Switch 480
Brand: Tekmar Pages: 8
Key Digital KD-PS42 Manual preview
KD-PS42
Brand: Key Digital Pages: 31
Hisselektronik Safeline 2000 Light Manual For Programmering preview
Safeline 2000 Light
Brand: Hisselektronik Pages: 9
ICCN WX7020-1210G Web User Manual preview
WX7020-1210G
Brand: ICCN Pages: 48
Larson Electronics GAU-125V-20A-P Instruction Manual preview
GAU-125V-20A-P
Brand: Larson Electronics Pages: 2
DANLERS ControlZAPP CZ CESR 10VDC Installation Notes preview
ControlZAPP CZ CESR 10VDC
Brand: DANLERS Pages: 2
J-Tech Digital JTD-3003 User Manual preview
JTD-3003
Brand: J-Tech Digital Pages: 13
BZB Gear BG-UHD44MA User Manual preview
BG-UHD44MA
Brand: BZB Gear Pages: 27
QNAP QSW-M2108 Series Quick Installation Manual preview
QSW-M2108 Series
Brand: QNAP Pages: 28
Extron electronics CrossPoint 42 HVA User Manual preview
CrossPoint 42 HVA
Brand: Extron electronics Pages: 46
Kramer VP-553xl User Manual preview
VP-553xl
Brand: Kramer Pages: 85
Lex PowerGATE LELTS-1 Series Installation Instructions & User Manual preview
PowerGATE LELTS-1 Series
Brand: Lex Pages: 12

Brands by name

Popular brands

Load more brands