manualshive.com logo in svg

Zte ZXR10 2910E-PS, Configuration Manual

The ZTE ZXR10 2910E-PS is a high-performance network switch. To configure this powerful device to suit your needs, you can easily download the detailed Configuration Manual from our website, free of charge. Achieve optimal performance and take full advantage of its features with our comprehensive manual.

Share
Download
background image

ZXR10 2900E Series

Easy-maintenance Secure Switch

Configuration Guide

Version: 2.05.10

ZTE CORPORATION
NO. 55, Hi-tech Road South, ShenZhen, P.R.China
Postcode: 518057
Tel: +86-755-26771900
Fax: +86-755-26770801
URL: http://ensupport.zte.com.cn
E-mail: [email protected]

Summary of Contents for ZXR10 2910E-PS

Page 1: ...tenance Secure Switch Configuration Guide Version 2 05 10 ZTE CORPORATION NO 55 Hi tech Road South ShenZhen P R China Postcode 518057 Tel 86 755 26771900 Fax 86 755 26770801 URL http ensupport zte com cn E mail support zte com cn ...

Page 2: ...s for a particular purpose title or non infringement ZTE CORPORATION and its licensors shall not be liable for damages resulting from the use of or reliance on the information contained herein ZTE CORPORATION or its licensors may have current or pending intellectual property rights or applications covering the subject matter of this document Except as expressly provided in any written license betw...

Page 3: ...matically 3 8 3 7 Configuring Automatic Saving of a Configuration File 3 10 3 8 Software Version Upgrade 3 11 3 9 File System Configuration Commands 3 15 Chapter 4 Service Configuration 4 1 4 1 Management Configuration 4 2 4 2 Port Configuration 4 5 4 3 PoE Configuration 4 6 4 4 Port Mirroring 4 9 4 5 VLAN Configuration 4 12 4 6 MAC Table Operation 4 14 4 7 LACP Configuration 4 17 4 8 IGMP Snoopin...

Page 4: ...M Configuration 4 111 4 31 SQinQ Configuration 4 117 4 32 VLAN Mapping Configuration 4 119 4 33 sFlow Configuration 4 122 4 34 PP Configuration 4 123 4 35 LLDP Configuration 4 125 4 36 Single Port Loop Detection Configuration 4 128 4 37 UDLD Configuration 4 131 4 38 TACACS Configuration 4 133 4 39 Time Range Configuration 4 135 4 40 Voice VLAN Configuration 4 136 4 41 802 1AG Configuration 4 138 4...

Page 5: ...ion by Console Port Fails 6 3 6 3 3 Failed Telnet Connection 6 4 6 3 4 WEB Management Cannot be Connected 6 4 6 3 5 Losing the Login Username or Password 6 5 6 3 6 Losing Enable Enable Password 6 6 6 3 7 The Two Devices Cannot Interconnect in The Same VLAN 6 7 6 3 8 The Solution to Authentication Timeout Fault in Campus Network 6 7 6 3 9 The Solution to ARP Attack in Campus Network 6 9 Figures I T...

Page 6: ...IV ...

Page 7: ...ce secure switch l ZXR10 2952E easy maintenance secure switch What Is in This Manual ZXR10 2900E V2 05 10 series switch user manual contains the following chapters Chapter Summary Chapter 1 Safety Instruction Provides safety description and safety signs Chapter 2 System Overview Describes the ZXR10 2900E system Chapter 3 Usage and Operation Describes the configuration mode command mode and command...

Page 8: ...II ...

Page 9: ...00 1000BASE X ports 2 Gigabit Ethernet ports are combo electro optic multiplexing ports ZXR10 2918E 16 10 100 BASE T Ethernet ports 2 10 100 1000BASE T Ethernet ports 2 100 1000BASE X ports 2 Gigabit Ethernet ports are combo electro optic multiplexing ports ZXR10 2928E 24 10 100 BASE T Ethernet ports 4 10 100 1000BASE T Ethernet ports 2 100 1000BASE X ports 2 1000BASE X interfaces Two Gigabit Ethe...

Page 10: ...ded à IEEE 802 1x implements dynamic and port based security which provides the user ID authentication function à It supports MAC IP VLAN PORT combination at random which prevents illegal user from accessing the network effectively à Port isolation is helpful to make sure that users can not monitor or access to other users on the same switch à It supports GuestVlan and anti proxy function which he...

Page 11: ...l supplies the bandwidth control with minimal increment of 8kbps When network congestion occurs it still can satisfy the QoS demands of discarding packets time delay and time jitter As a result queue congestion can be avoided effectively Management Modes Switch management refers to l It supports SNMPv1 v2c v3 and RMON l It supports ZXNM01 uniform network management platform l It supports CLI comma...

Page 12: ...pports DHCP Client function which can automatically apply management interface from DHCP Server l It supports the DHCP relay function which allows an access device to request the DHCP server for a host address across different network segments l It supports DAI dynamic ARP detection technology which prevents ARP attack l It supports broadcast storm suppression l It supports port ingress and egress...

Page 13: ...NM01 unified network management l It supports the uploading and downloading of TFTP version configuration l It supports the uploading and downloading of FTP version configuration l ZXR10 2910E PS 2918E PS 2928E PS supports PoE function complying with the 802 3af standard At most 30 W power supply is supported 1 5 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 14: ...ZXR10 2900E Series Configuration Guide This page intentionally left blank 1 6 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 15: ...etwork connected Figure 2 1 ZXR10 2900E CONFIGURATION MODES Configuring Through Console Port This is main configuration mode of ZXR10 2900E ZXR10 2900E debugging configuration is implemented through the console port connection The console port connection configuration uses VT100 terminal mode 1 Select Start Programs Accessories Communications HyperTerminal on the PC screen to start the HyperTermin...

Page 16: ...local information in the open dialog box see Figure 2 3 Figure 2 3 Location Information Dialog Box After the Connection Description dialog box appears enter a name and select an icon for the new connection see Figure 2 4 2 2 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 17: ...scription Dialog Box 3 Based on the serial port connected to the console cable select COM1 or COM2 as the serial port to be connected see Figure 2 5 Figure 2 5 Connect To Dialog Box 2 3 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 18: ...n to the remote switch through the Ethernet port of the local host The login username and password must be configured on the switch and the IP address of the layer 3 port on the switch can be successfully pinged through on the local host For configuration of the IP address of the layer 3 port see Layer 3 Configuration Use the command create user name admin guest 0 15 the length of user name does n...

Page 19: ...nt password is null Suppose the IP address of the layer 3 port is 192 168 3 1 and this address can be pinged from the local host Then perform the following remote configuration operations 1 Run the Telnet command on the host see Figure 2 7 Figure 2 7 Run Telnet 2 Click OK A Telnet window is displayed see Figure 2 8 Figure 2 8 Telnet Window 3 Enter the username and password to enter the user mode o...

Page 20: ... is another way to implement remote switches management and is similar to Telnet A user can log in to a remote switch through the Ethernet port of the local host The login username login password and administrator password must be configured on the switch and the Web function must be enabled Also the IP address of the layer 3 port on the switch can be successfully pinged through on the local host ...

Page 21: ...ser Mode When you log in to the switch through the HyperTerminal Telne or SSHt you can enter the user mode after entering the login username and password The prompt character in the user mode is the host name followed by as shown below zte The default host name is zte The user can modify the host name by using the command hostname name the name length cannot exceed 200 characters In the user mode ...

Page 22: ...r zte cfg router In the Layer 3 configuration mode the user can configure the Layer 3 port static router and ARP entities To return to the global configuration mode from the layer 3 configuration mode use the command exit or press Ctrl Z File System Configuration Mode In the global configuration mode use the command config tffs to enter the file system configuration mode as shown below zte cfg con...

Page 23: ...ow zte cfg config ingress acl basic number 10 zte ingress basic acl In the basic ingress ACL configuration mode you can add delete and move the rules of basic ingress ACL with specific ACL number To return to the global configuration mode from basic ingress ACL configuration mode use the command exit or press Ctrl Z Extended Ingress ACL Configuration Mode In the global configuration mode use the c...

Page 24: ...nfig ingress acl global to enter global ingress ACL configuration mode as shown below zte cfg config ingress acl global zte ingress global acl In the global ingress ACL configuration mode you can add delete and move the rules of global ingress ACL with specific ACL number To return to the global configuration mode from global ingress ACL configuration mode use the command exit or press Ctrl Z Basi...

Page 25: ...n the global configuration mode use the command config egress acl hybrid number 700 799 to enter hybrid egress ACL configuration mode as shown below zte cfg config egress acl hybrid number 700 zte egress hybrid acl In the hybrid egress ACL configuration mode you can add delete and move the rules of hybrid egress ACL with specific ACL numbers To return to the global configuration mode from hybrid e...

Page 26: ...ered once trunkid A trunk ID can be entered once HH HH HH HH HH HH MAC address such as 00 22 33 44 55 66 A B C D IP address such as 10 40 47 254 A B C D M IP address and mask bit It must be the integer from 1 to 32 such as 10 40 47 254 24 string A string without spaces mib oid Dotted decimal with variable length such as 1 3 6 2 19 2 name Name a string without spaces sessionlist Session list 2 4 Us...

Page 27: ...ss acl config mode group enter group management config mode ingress acl enter ingress acl config mode mac based vlan enter mac based vlan config mode nas enter nas config mode router enter router config mode snmp enter SNMP config mode tffs enter file system config mode 4 If you enter a wrong command keyword or parameter and press Enter the message Command not found will be displayed on the interf...

Page 28: ...the following Command Function Ctrl P or Invoke a historical command in the buffer forward Ctrl N or Invoke a historical command in the buffer backward Functional Keys The ZXR10 2900E provides a lot of functional keys for the user interface to facilitate user operations Table 2 2 lists the functional keys Table 2 2 Functional Keys Descriptions Functional Key Usage Ctrl P or Recovers the last comma...

Page 29: ... command and displays the prompt character Ctrl L Clears the screen Ctrl Y Recovers the last command executed Ctrl H Returns to the global configuration mode If the command output exceeds one page the output is split into several pages automatically and the prompt more Press Q or Ctrl C to break appears at the bottom of the current page You can press any key to turn pages or press Q or Ctrl C to s...

Page 30: ...ZXR10 2900E Series Configuration Guide This page intentionally left blank 2 16 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 31: ...ing should be conducted in the FLASH memory l The name of the version file is zImage By default it is saved in the img directory l The name of configuration file is startrun dat By default it is saved in the cfg directory Directory Operation The directory can be created and deleted The current working directory the file of the specified directory can be viewed Configure directory operation at glob...

Page 32: ...e version files and configuration files of the switch After the TFTP server is enabled at the back end you can enter file system configuration mode and perform related operations To download or upload a version through TFTP perform the following steps Ste p Command Function 1 zte cfg config tffs Enters file system configuration mode 2 zte cfg tffs cd directory name Enters the directory 3 zte cfg t...

Page 33: ...will be cleared Perform the following operations in global mode Ste p Command Function 1 zte cfg config tffs Enters file system configuration mode 2 zte cfg tffs format Formats flash 3 2 Configuring the TFTP Server The switch version file and configuration file can be backed up or restored by TFTP The TFTP server application software is started at the back end to communicate with the switch TFTP c...

Page 34: ...figuration file for example D IMG 3 Click the second Browse to select the log file name click OK to complete the configuration see Figure 3 2 Figure 3 2 Tftpd Settings Dialog Box After the TFTP configuration is completed perform the TFTP operations on the switch For details see the later sections End of Steps 3 4 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 35: ...s how to configure the FTP server software FileZilla Server as an example for configuring the back end FTP server Steps 1 Run the FileZilla Server software on the back end host and perform the operation as shown in Figure 3 3 The FileZilla Server window is displayed see Figure 3 4 Figure 3 3 Connect to Server Dialog Box Figure 3 4 FileZilla Server Window 2 Click Edit Uers and create a user name an...

Page 36: ...re 3 6 Figure 3 6 Directory Setting Area After that you can perform FTP application operations on the switch The scenarios for FTP and TFTP are the same including the configuration import and export and automatic software download For details refer to the following sections End of Steps 3 6 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 37: ...command write Contents can be edited manually as needed and then downloaded to cfg of the switch by using the command tftp After the configuration file is downloaded to the flash of switch reboot the switch to import the configuration zte cfg tffs cd cfg zte cfg tffs tftp 192 168 1 102 download startrun dat zte cfg tffs cd 3 5 Backing Up and Recovering Files Note The files mentioned here refer to ...

Page 38: ...1 102 upload zImage zte cfg tffs cd Recover the version file Version file recovery is used to retransmit the back end backup version file to the front end through TFTP Recovery is very important in the case of upgrade failure The version recovery operation is basically the same as the version upgrade procedure For details refer to software version upgrade 3 6 Downloading Software Version Automatic...

Page 39: ...figured on the DHCP server and it cannot be modified locally By executing the show dhcp command you can see the configuration file to be downloaded to the current device for example the ZXR10_2928E dat file downloaded from the TFTP server to the ZXR10 2928E device The following table lists the complete adaption relation ID Device Configuration File Name 1 ZXR10 2910E PS ZXR10_2910E PS dat 2 ZXR10 ...

Page 40: ...figuration File Note The function of automatic saving of a configuration file helps you to upload switch configurations to the back end The uploaded configuration files include startrun dat and toPmac dat When the time set by period is counted down to 0 the switch uploads the startrun dat file to the TFTP server at a local time between 00 00 and 00 01 and uploads the toPmac dat file one minute lat...

Page 41: ...ys a prompt The automatic uploading function cannot be enabled successfully If a communication exception occurrs between the switch and the server when the uploading function is triggered last time the configuration files cannot be uploaded successfully this time The system uploads the configuration files when the next triggering time comes 3 8 Software Version Upgrade Note Normally version upgrad...

Page 42: ...rade When the System is Normal If the switch runs normally upgrade the version as follows 1 Connect Console port of the switch to the serial port of the back end host using the self contained configuration cable Connect an Ethernet port of the switch to the network port of the back end host using a network cable Check whether the connections are correct 2 Set the IP address of the Ethernet port on...

Page 43: ...y or runs abnormally upgrade the version as follows 1 Connect Console port of the switch to the serial port of the background host by using the self contained configuration cable Connect an Ethernet port of the switch to the network port of the background host by using a network cable Check whether the connections are correct 2 Restart the switch At the HyperTerminal press any key as prompted to e...

Page 44: ...ftp MAC 00 d0 d0 30 20 10 Switch MAC address 4 Set the IP address of the back end host to be the same as that of the above TFTP server 5 Start the TFTP server software on the back end server and configure the TFTP by referring to the TFTP configuration 6 In the ZX10 Boot status enter zte enter the BootManager status of the switch Enter to display the command list for this state ZXR10 Boot zte boot...

Page 45: ... to stop autoboot 0 ZXR10 Boot ZXR10 Boot zte bootManager cd img bootManager ftp get zImage Ftp get zImage successfully 7397428 bytes received bootManager 8 In the BootManager status use the reboot command to restart the switch by using the new version If the switch is started normally use the show version command to check whether the new version is operating in the memory If the switch cannot be ...

Page 46: ...m Updates bootrom zte cfg set dhcp download enable disable Enables or disables automatic download function of a DHCP client zte cfg set auto saveconfig enable disable Enables or disables the system to automatically upload the configuration file to a TFTP server zte cfg set auto saveconfig serverip A B C D Sets the IP address of the TFTP server to which the system automatically uploads the configur...

Page 47: ...nfiguration 4 61 IPv6 Layer 3 Configuration 4 63 DAI Configuration 4 64 Access Service Configuration 4 66 MAC Authentication Configuration 4 74 QinQ Configuration 4 75 Syslog Configuration 4 77 NTP Configuration 4 78 GARP GVRP Configuration 4 80 DHCP Configuration 4 82 DHCPv6 Configuration 4 87 VBAS Configuration 4 90 PPPoE PLUS Configuration 4 92 ZESR Configuration 4 93 OAM Configuration 4 111 SQ...

Page 48: ...te cfg config snmp Enters SNMP configuration mode zte cfg config tffs Enters file system configuration mode zte cfg config nas Enters service configuration mode zte cfg config mac based vlan Enters mac based vlan configuration mode exit All configuration mode Returns to the original command line mode zte enable Enters global configuration mode from user configuration mode list all configuration mo...

Page 49: ...nt authentication mode zte cfg set user local name admin password string Sets a local user management password zte cfg set user radius purview admin guest Sets a RADIUS authentication user login authority zte cfg set user radius admin password string Sets a RADIUS user management password zte cfg set user tacacs plus purview admin guest Sets login permissions of TACACS authentication users zte cfg...

Page 50: ...isplays alarm log information including a specific string show reset time all configuration modes Displays switch Console automatic logout time configuration show line vty all configuration modes Displays Telnet user login timeout time configuration show loginauth all configuration mode Displays login authentication mode show adminauth all configuration modes Displays management authentication sta...

Page 51: ... Command Function zte cfg set port portlist enable disable Enables or disables the port zte cfg set port portlist work mode fiber copper auto prefer first up fiber copper Sets the combo port to switch in electrooptic mode zte cfg set port portlist speedadvertise maxspeed Sets the advertisement of the maximum port speed duplex information zte cfg set port portlist speedadvertise speed10 speed100 sp...

Page 52: ... port bandwidth utilization show port portlist brief all configuration modes Displays port brief show port portlist vlan all configuration modes Displays the location of VLAN show jumbo all configuration modes Displays the jumbo configuration of all ports show jumbo portlist all configuration modes Displays port jumbo configuration information show vct port portid all configuration modes Displays ...

Page 53: ... ZXR10 2928E PS The device can provide power supply for the PD complying with 802 3af 802 3at standard and the single port can provide up to 30 W power l ZXR10 2900E PS series switch supports both DC and AC power input When ZXR10 2900E PS series switch acts as a PSE the maximum output power depends on the RPS if the switch uses DC power input or the maximum output power is 250 W if the switch uses...

Page 54: ...he port zte cfg set poe port portlist priority critical high low Sets the port power supply priority zte cfg set poe port portlist forcepower enable disable Enables or disables the port force power function zte cfg set poe port portlist extend detection enable disable Enables or disables the port extended detection function zte cfg set poe power maxvalue 1 500 threshold 0 30 Sets device maximum ou...

Page 55: ...ersion ZTE 3 3 PSE max power 250 watt PSE power threshold 10 watt PSE current power 207 1 watt PSE average power 207 1 watt PSE peak power 207 2 watt PSE critical power 0 watt From the results we can see that the DUT device provides a power supply for PD stably 4 4 Port Mirroring Port Mirroring Overview Port mirroring is used to mirror data packets of the switch port ingress mirroring port to an i...

Page 56: ...ession zte cfg set mirror session 1 3 delete source port portlist ingress egress Deletes an egress or ingress monitoring port according to session zte cfg set mirror session 1 3 delete dest port 1 28 ingress egress rspan Deletes an egress or ingress monitoring destination port according to session zte cfg set mirror rspan tag vlan id 1 4094 priority 0 7 ingress egress Sets RSPAN tag format includi...

Page 57: ... to set port mirroring in egress direction zte cfg set mirror add source port 1 egress zte cfg set mirror add dest port 2 egress zte cfg set mirror statistical sample interval 100 egress set the port sample interval of mirror statistic zte cfg set mirror rspan tag vlan id 100 priority 7 engress set VLAN tag added after port mirroring l Configuration Verification Check port mirroring configuration ...

Page 58: ... the division of VLAN is based on the VLAN information about the port PVID port VLAN ID or the information in the VLAN tag Also the ZXR10 2900E supports the division of VLAN according to packet protocol type that is protocol VLAN Configuring a VLAN The VLAN configuration includes the following commands Command Function zte cfg set vlan vlanlist enable disable Enables or disables a VLAN zte cfg set...

Page 59: ... as follows Note By default VLAN1 is enabled all ports are in VLAN1 and in untag mode l Configuration Procedure zte cfg set vlan 100 add port 1 2 untag zte cfg set vlan 100 add port 7 8 tag zte cfg set port 1 2 pvid 100 zte cfg set vlan 100 enable l Configuration Verification zte cfg show vlan 100 VlanId 100 VlanStatus enabled VlanName VlanMode Static Tagged ports 7 8 Untagged ports 1 2 Forbidden ...

Page 60: ... set vlan 3 add port 4 untag zte cfg set port 2 pvid 2 zte cfg set port 4 pvid 3 zte cfg set vlan 2 3 enable 4 6 MAC Table Operation MAC Table Overview MAC table operations mainly include MAC addition deletion MAC aging time configuration MAC filtering function MAC learning control MAC learning number limit MAC alarm control MAC fixed function and MAC related information display l MAC addition del...

Page 61: ...d state information can be checked Note The MAC address of Ethernet NIC is a group of 48 bit number The 48 bits include two parts The previous 24 bits are used to represent the manufacturer indicating Ethernet NIC The following 24 bits are a group of sequence numbers designated by manufacturer and named as OUI Organizationally Unique Identifier The lowest bit the most left bit in the structure is ...

Page 62: ...4094 enable disable mode automatic cpu controlled Sets MAC address learning mode based on global port trunk VLAN zte cfg set mac limit global port 1 28 trunk 1 15 vlan 1 4094 limit num 0 16384 Sets the MAC address number limit function based on global port trunk VLAN zte cfg set mac unknown filter global port 1 28 trunk 1 15 limit num 0 16384 Sets the function of filtering unknown source packets b...

Page 63: ...c learning except port portlist trunk trunklist session 1 100 bind unbind Sets the binding relation between ports trunks and all sessions show mac learning except session 1 100 Displays the configuration of sessions for which specified source MAC learning is not needed show mac learning except port portlist trunk trunklist Displays the binding relation between ports trunks and sessions 4 7 LACP Co...

Page 64: ... of the port participating in the aggregation zte cfg set lacp priority 1 65535 Sets the priority of LACP zte cfg set lacp load balance port packet L2 L3 L4 Sets LACP load balance mode show trunk all configuration modes Displays the PVIDs of all trunks and unregistered multicast filtering configuration show trunk trunklist all configuration modes Displays the trunk PVID and unregistered multicast ...

Page 65: ...d configuration of switch A is as follows zte cfg set lacp enable zte cfg set lacp aggregator 3 add port 15 16 zte cfg set lacp aggregator 3 mode dynamic zte cfg set lacp load balance packet L2 zte cfg set vlan 2 add trunk 3 tag zte cfg set vlan 2 add port 1 untag zte cfg set vlan 3 add trunk 3 tag zte cfg set vlan 3 add port 3 untag zte cfg set port 1 pvid 2 zte cfg set port 3 pvid 3 zte cfg set ...

Page 66: ...t successful the result is shown as follows after executing the show lacp aggregator 3 command zte cfg show lacp aggregator 3 Group 3 is not active Generally the problem of the physical link causes the result Check the physical link status 4 8 IGMP Snooping Configuration IGMP Snooping Overview Because the multicast address is not in the source address of the packet the switch cannot learn the mult...

Page 67: ...rt portlist trunk trunklist Adds or deletes routing port or trunk on the specified VLAN zte cfg set igmp snooping private group A B C D enable disable Adds private multicast group and enables or disables private multicast group function zte cfg set igmp snooping timeout 100 2147483647 host router Sets multicast member or route time out zte cfg set igmp snooping query interval 10 2147483647 Sets th...

Page 68: ...trunk show igmp filter global configuration modes Displays the configuration of IGMP filter show igmp filter vlan 1 4094 global configuration modes Displays the specified VLAN multicast group filtering configuration zte cfg set igmp filter add delete grouplist A B C D mask A B C D vlan vlanlist Adds removes the group list filter to from a specified VLAN zte cfg set igmp snooping multicast ring ena...

Page 69: ...er enable zte cfg set igmp filter add groupip 230 44 45 167 vlan 200 l Configuration Verification Display multicast listening and filtering result zte cfg show igmp snooping vlan Maximal group number 1024 Current group number 1 Num VlanId Group Last_Report PortMember 1 200 230 44 45 157 194 85 1 3 1 3 5 10 zte cfg show igmp filter IGMP Filter enabled Index Type IpAddress IpMask VlanList 1 Groupip ...

Page 70: ...aste and enhances switch usage Configuring MLD Snooping The MLD snooping configuration includes the following commands Command Function zte cfg set mld snooping enable disable Enables or disables the MLD snooping function globally zte cfg set mld snooping add delete vlan vlanlist Adds or deletes an MLD snooping VLAN zte cfg set mld snooping add maxnum 1 256 vlan vlanlist Sets the maximum number of...

Page 71: ...ess 1 7 Sets the MLD robustness value show mld snooping all configuration modes Displays global MLD snooping configuration information show mld snooping vlan 1 4094 group ipv6 address port info group source filter host source filter all configuration modes Displays the MLD snooping result show mld snooping mr port info all configuration modes Displays MLD router port information MLD Snooping Confi...

Page 72: ...alled Interactive Network TV IPTV is a method of distributing television content over IP that enables a more customized and interactive user experience IPTV could allow people who were separated geographically to watch a movie together while chatting and exchanging files simultaneously IPTV uses a two way broadcast signal sent through the provider s backbone network and servers allowing viewers to...

Page 73: ...R log function at global zte cfg nas iptv cdr report Manually triggers CDR log report in one time zte cfg nas iptv cdr create period 1 65535 Sets the interval for creating CDR when user watches programs for long time zte cfg nas iptv cdr deny right enable disable Enables or disables CDR function when the access authorization is deny zte cfg nas iptv cdr prv right enable disable Enables or disables...

Page 74: ...ort portlist vlan 1 4094 channel name channel name id list channel list deny order preview query Allocates the visit authority of the channel for user zte cfg nas iptv port portlist vlan 1 4094 cdr enable disable Enables or disables user CDR log record function zte cfg nas iptv port portlist vlan 1 4094 mac base enable disable Enables or disables the management mode based on MAC address zte cfg na...

Page 75: ...ormation zte cfg nas clear iptv channel group name channel group name id list channel group list all Deletes a channel group zte cfg nas iptv channel group mvlan 1 4094 groupiplist A B C D A B C D mask A B C D name channel group name id 0 255 Adds a channel group to a specified VLAN names the channel group and allocates an ID to each channel zte cfg nas iptv channel group name channel group name r...

Page 76: ...ooping zte cfg set igmp snooping enable zte cfg set igmp snooping add vlan 100 4000 zte cfg set igmp snooping fastleave enable 2 Configure IPTV zte cfg config nas zte cfg nas iptv control enable zte cfg nas iptv cac rule enable 3 Configure a rule on the port zte cfg nas iptv channel mvlan 4000 group 225 1 1 1 name CCTV1 id 1 zte cfg nas iptv port 1 service start zte cfg nas iptv port 1 control mod...

Page 77: ...review user of channel 225 1 1 1 The maximum preview time is 20 seconds the interval is at least 10 seconds and the maximum preview time is 2 The user vlan is 100 The multicast vlan is 4000 Router sends data stream of multicast group 225 1 1 1 PC sends request for entering into channel 225 1 1 1 Figure 4 8 IPTV Configuration Instance 2 l Configuration Procedure 1 Configure VLAN zte cfg set vlan 10...

Page 78: ... channel id 1 viewfile name VPF1 PRF l Configuration Verification Check configuration check the configuration of preview template zte cfg nas show iptv view profile name VPF1 ViewProfile Id 1 MaxPrvCount 2 MaxPrvDuration 20 BlackoutInterval 10 view the user online state when the user is online zte cfg nas show iptv client index 0 Index 0 Rule 1 Vlan 100 Port 1 ChNum 1 Mac 00 10 94 00 00 01 Ip 192 ...

Page 79: ... VLAN and instance l Switches should be connected directly There are many spanning trees can be configured in each MSTP area and they are independent each other Each spanning tree is Internal Spanning Tree IST and it can be called as Multiple Spanning Tree Instance MSTI Common Spanning Tree connect all MST areas in switching network A MST area can be considered as a switch CST is a spanning tree w...

Page 80: ...ds STP protocol message to maintain the state of STP l Backup The port receives the STP message which proves that there exits a loop route to the port itself l Alternate The port receives excess STP protocol message from other equipment However when the original link abnormally lost the port under this state can transfer to transmitting state and maintain the network instead of the port lapsed l E...

Page 81: ...twork where ring exists redundant topology will be in the state of backup and in the state of blocking after the port is steady If there is no need to transfer to transmission state it is possible to set port to loop protect Once the port wants to transform it will inspire loop protection and set the port to blocking state When configuring one port only one of the three protections can be configur...

Page 82: ...inals of MST zte cfg set stp name name Sets the name of MSTP domain zte cfg set stp revision 0 65535 Sets the revision level of MSTP zte cfg set stp instance 0 63 add delete vlan vlanlist Adds or deletes VLAN to from MSTP instance zte cfg set stp instance 0 63 port 1 28 trunk trunklist priority 0 240 Sets the priority of port trunk in the instance zte cfg set stp instance 0 63 port 1 28 trunk trun...

Page 83: ... in the loop It realizes loop protection and link backup between switches Figure 4 10 STP Configuration Instance l Configuration Procedure zte cfg set stp enable enable the stp protocol of switch1 and switch2 zte cfg set stp forceversion stp set STP forceversion as stp l Configuration Verification 1 Check the STP state of switch 1 in the system view zte cfg show stp instance Spanning tree enabled ...

Page 84: ...128 2 200000 Discard Alternate SSTP None RSTP Configuration Instance l Configuration Description As shown in Figure 4 11 configure the RSTP function of switch 1 and switch 2 take switch 1 as the root bridge and block a redundant port in the loop It realizes loop protection and link backup between switches Figure 4 11 RSTP Configuration Instance l Configuration Procedure zte cfg set stp enable enab...

Page 85: ...8 Address 00 d0 d0 29 52 06 RemainHops 20 BridgeID Priority 32768 Address 00 d0 d0 29 52 06 HelloTime s 2 MaxAge s 20 ForwardDelay s 15 MaxHops 20 Interface PortId Cost Status Role Bound GuardStatus 1 128 1 200000 Forward Root RSTP None 2 128 2 200000 Discard Alternate RSTP None MSTP Configuration Instance l Configuration Description As shown in Figure 4 12 configure the MSTP of switch1 and switch...

Page 86: ...ey 0x13ac06a62e47fd51f95d2ba243cd0346 Huawei digest 0x00000000000000000000000000000000 Instance VlanMap 0 1 9 21 4094 1 10 20 2 Check the STP state of switch 1 in the system view zte cfg show stp instance MST00 Spanning tree enabled protocol mstp RootID Priority 32768 Address 00 d0 d0 02 00 54 HelloTime s 2 MaxAge s 20 ForwardDelay s 15 Reg RootID Priority 32768 Address 00 d0 d0 02 00 54 RemainHop...

Page 87: ...tID Priority 32768 Address 00 d0 d0 29 52 06 RemainHops 20 BridgeID Priority 32768 Address 00 d0 d0 29 52 06 HelloTime s 2 MaxAge s 20 ForwardDelay s 15 MaxHops 20 Interface PortId Cost Status Role Bound GuardStatus 1 128 1 200000 Forward Root MSTP None 2 128 2 200000 Discard Alternate MSTP None ST01 Spanning tree enabled protocol mstp RootID Priority 32769 Address 00 d0 d0 02 00 54 HelloTime s 2 ...

Page 88: ...ccording to configured time range After configuring absolute or relative time range on the switch time range can be applied to the rule of ACL This causes the rule to be valid according to the time range specification l The ZXR10 2900E provides the following five types of ACLs 1 Basic ACL Only match source IP address 2 Extended ACL Match source IP address destination IP address IP protocol type TC...

Page 89: ...ports IPv6 9 Global ACL 800 l Each ACL has at most 500 rules and the range is 1 500 Configuring ACL The ACL configuration includes the following commands Command Function zte cfg set port portlist acl mode port vlan Sets port ACL binding mode zte cfg set port portlist acl 1 799 enable disable Binds ACL instance to the port zte cfg set vlan vlanlist acl 1 399 enable disable Binds ACL instance to th...

Page 90: ...oup rule 1 500 permit deny arp sender ipaddr s ip mask any target ipaddr tip mask any Sets the rule that an extended ingress ACL is used to match ARP packet zte cfg clear ingress acl extend number 100 199 Clears an extended port ACL instance zte cfg config ingress acl link number 200 299 Creates and configures a layer 2 ingress ACL instance zte link acl group rule 1 500 permit deny ip cos 0 7 vlan...

Page 91: ...group rule 1 500 permit deny arp sende r ipaddr sip mask any target ipaddr tip mask any cos 0 7 vlan id vlan mask source mac smac mask any dest mac dmac mask any Sets the rule that a hybrid ingress ACL is used to match ARP packet zte hybrid acl group rule 1 500 permit deny any ether type 1501 65535 cos 0 7 vlan id vlan mask source mac smac mask any dest mac dmac mask any Sets the rule that a hybri...

Page 92: ...os 0 7 vlan id vlan mask source mac smac mask any dest mac dmac mask any Sets the rule that a global ingress ACL matches IPv4 TCP packet zte global acl group rule 1 500 permit deny port 1 28 any udp source ipaddr sip mask any source port 0 65535 sport mask destination ipaddr dip mask any dest port 0 65535 dport mask dscp 0 63 fragment cos 0 7 vlan id vlan mask source mac smac mask any dest mac dma...

Page 93: ...dip mask any desstt porrtt 0 65535 dport mask dsscp 0 63 fragment Sets an extended egress ACL which matches UDP packet zte egress extend acl rule 1 500 permit deny arp sender ipaddr sip mask any target ipaddr tip mask any Sets an extended egress ACL which matches ARP packet zte cfg clear egress acl extend number 500 599 Clears an extended egress ACL instance zte cfg config egress acl link number 6...

Page 94: ...rt mask dsscp 0 63 fragment coss 0 7 vlan id vlan mask source mac smac mask any dest mac dmac mask any Sets a hybrid egress ACL which matches the IPv4 UDP packet zte egress hybrid acl rule 1 500 permit deny arp sender ipaddr sip mask any target ipaddr tip mask any coss 0 7 vlan id vlan mask source mac smac mask any dest mac dmac mask any Sets a hybrid egress ACL which matches the ARP packet zte eg...

Page 95: ...tched in batch zte cfg show acl binding all port portlist vlan vlanlist Displays the configuration information that ACL is bound to the interface zte cfg show acl config Displays ACL summary configuration zte cfg show acl config 1 800 name word active command deny passive permit policy rule 1 500 snmp time range Displays the detailed configuration of ACL instance ACL Configuration Instance l Confi...

Page 96: ... QoS includes port QoS global QoS and flow based QoS according to influence range For the data packet QoS handling method on the network edge device of access side there are the following conditions l Switch can select whether to trust the packet and which field of the packet such as UP or DSCP can be trusted when receiving the packet and allocate QoS service according to trusted field l When the ...

Page 97: ...sed on port zte cfg set qos priority mapping qos profile dscp to dscp 0 63 to 0 63 Sets the mapping relation between DSCPs zte cfg set qos priority mapping port 1 28 port to profile qos profile 0 127 Sets the mapping relation between port and profile zte cfg set qos priority mapping qos profile up to profile 0 7 dscp to profile 0 63 qos profile 0 127 Sets the mapping relation between DSCP UP and p...

Page 98: ...cket type broadcast known uc multicast tcp syn unknown uc enable disable Sets the packet type that rate limit function limits zte cfg set qos traffic limit ge port 25 28 protect enable disable Sets the ingress rate limiting function for the 1000 M port zte cfg set qos traffic limit ge port 25 28 protect time 1 10 Sets the port shutdown time when the port rate limit function is enabled zte cfg set ...

Page 99: ... all configuration modes Displays the configuration of scheduling policy template show qos traffic limit port 1 28 protect all configuration modes Displays the egress rate limiting configuration of the port show qos traffic limit port 1 28 all configuration modes Displays ingress rate limit configuration show qos traffic shaping port 1 28 all configuration modes Displays egress shaping configurati...

Page 100: ...tics in acl 1 800 rule 1 500 counter 0 1023 Implements flow statistic for the data flow matching ACL rule zte cfg set policy vlan remark in acl 1 800 rule 1 500 1 4094 nested replace untagged tagged all Remarks the VLAN attribution of the designated flow zte cfg set policy harddrop in acl 1 800 rule 1 500 Sets harddrop zte cfg clear policy remark in acl 1 800 rule 1 500 Clears the configuration of...

Page 101: ...s policer counter 0 383 all configuration modes Displays flow policer statistics value show policy mirror redirect statistics policing 0 383 vlan remark remark harddrop all configuration modes Displays various binding configuration of the specified flow zte cfg set icmp protect enable disable Sets the ICMP protection function QoS Configuration Instance l Configuration Description As show in Figure...

Page 102: ...TCP SYN Limit UucEn Enable Unknown unicast Limit PORT DataRate Kbps BcEn KucEn McEn TcpSynEn UucEn port 1 2000 1 1 1 1 1 4 14 PVLAN Configuration PVLAN Overview To enhance network security it is necessary to isolate users packets A traditional solution is to allocate a VLAN for a user This solution has obvious limits as described below 1 IEEE 802 1Q standard supports 4094 VLANs at most The number ...

Page 103: ...on show vlan pvlan session 1 4 all configuration modes Displays PVLAN configuration zte cfg set vlan pvlan session 1 4 promise port portlist promise trunk trunklist isolate port portlist isolate trunk trunklist commu ni port portlist communi trunk trunklist Configuring a kind of PVLAN port PVLAN Configuration Example One l Configuration Description As shown in Figure 4 15 add promiscuous port 26 a...

Page 104: ...cp enable zte cfg set lacp aggregator 1 add port 1 3 zte cfg set lacp sggregator 1 mode dynamic 2 Configuration of switch B zte cfg set lacp enable zte cfg set lacp aggregator 1 add port 1 3 zte cfg set lacp aggregator 1 mode dynamic zte cfg set vlan pvlan session 2 promis trunk 1 isolate port 4 6 l Configuration Verification zte cfg show vlan pvlan pvlan session 1 promis ports 16 promis trunks is...

Page 105: ...he LAN ZXR10 2900E provides 802 1x transparent transmission function which transparently transmits 802 1x protocol packets from the client to the authentication server for authentication ZXR10 2900E provides 802 1x transparent transmission function It also provides layer 2 transparent transmission function such as STP LACP OAM ZGMP LLDP and GVRP The protocol range is 0x00 0x02 0x2f The common laye...

Page 106: ...ch 2 and Switch 3 The configuration increases the link bandwidth and realizes the redundant backup Figure 4 17 Layer 2 Protocol Transparent Transmission Configuration Topology l Configuration Procedure zte cfg set lacp enable zte cfg set lacp aggregator 1 add port 1 2 zte cfg set l2pt 0x02 enable zte cfg set vlan 100 enable zte cfg set vlan 100 add port 1 3 zte cfg set port 1 3 pvid 100 zte cfg se...

Page 107: ...ip between IP address and MAC address of each node in same network When sending IP packets switch first checks whether destination IP address is in the same network segment If yes switch checks whether there is a peer end IP address and MAC address mapping entry in the ARP table 1 If yes switch directly sends the IP packets to this MAC address 2 If MAC address corresponding to peer end IP address ...

Page 108: ... 1 1000 Sets ARP entry aging time based on layer 3 interface zte cfg router arp gratuitous send 5 4294967295 Enables the free ARP function and sets the period for sending free ARP messages zte cfg router clear arp Clears dynamic ARP entry in batch zte cfg router clear iproute A B C D M A B C D A B C D A B C D Clears static routing entry zte cfg router clear ipport 0 63 mac ipaddress vlan Deletes i...

Page 109: ...k MacAddress VlanId 0 enabled 192 168 1 2 255 255 255 0 00 d0 d0 fa 29 20 100 zte cfg router exit Use the ping command to check whether the layer 3 port is available zte cfg ping 192 168 1 1 zte cfg ping 192 168 1 1 Reply from 192 168 1 1 bytes 28 time 1ms TTL 64 Reply from 192 168 1 1 bytes 28 time 1ms TTL 64 Reply from 192 168 1 1 bytes 28 time 1ms TTL 64 Reply from 192 168 1 1 bytes 28 time 1ms...

Page 110: ...ce configuration show ipv6route all configuration modes Displays IPv6 route configuration show ipv6port 0 nd all configuration modes Displays IPv6 device neighbor information similar with the function of the show arp command in IPv4 zte cfg ping6 ipv6Addr 0 65535 48 1280 1 255 0 65535 Checks network connectivity similar with the function of the ping command in IPv4 4 18 DAI Configuration DAI Overv...

Page 111: ...es Displays DAI function configuration information DAI Configuration Instance l Configuration Description As shown in Figure 4 19 when DHCP snooping is enabled check ARP packet validity and the corresponding relation between MAC IP and VLAN Illegal packet is dropped and the rate that ARP sends to CPU of non trusted port is limited Figure 4 19 DAI Configuration InstanceTopology l Configuration Proc...

Page 112: ...fast increase of subscribers and requirement of diversified broadband services Network Access Service NAS is embedded on the switch to improve the authentication and management of access subscribers and better support the billing security operation and management of the broadband network NAS uses the 802 1x protocol and RADIUS protocol to realize the authentication and management of access subscri...

Page 113: ...r the authentication of a subscriber is passed the authentication server will pass the information of this subscriber to the authentication system which will create a dynamic access control list The subsequent flow of the subscriber will be monitored by the above parameters The authentication system communicates with the RADIUS server through the RADIUS protocol RADIUS is a protocol standard used ...

Page 114: ...of using the PAP mode for identity authentication Figure 4 20 USING PAP MODE FOR IDENTITY AUTHENTICATION l CHAP Challenge Handshake Authentication Protocol CHAP is an encrypted authentication mode and avoids the transmission of the user s real password upon the setup of connection NAS sends a randomly generated Challenge string to the user The user encrypts the Challenge string by using the own pa...

Page 115: ...ntity authentication mechanism used in the EAP framework structure Figure 4 22 shows the process of using the EAP MD5 mode for identity authentication Figure 4 22 USING EAP MODE FOR IDENTITY AUTHENTICATION Configuring Access Service The access service configuration includes the following commands Command Function zte cfg set port portlist vlanjump enable defaultauthvlan 1 4094 disable Enables or d...

Page 116: ...ve the data packets from the authentication server zte cfg nas dot1x max request 1 10 Sets the maximum times of request retransmitting when the timer expires before the authentication system receives the Challenge response from the client zte cfg nas dot1x add vlan 1 4094 mac HH HH HH HH HH HH Sets the private MAC address that DOT1X protocol can use zte cfg nas dot1x delete vlan 1 4094 Deletes the...

Page 117: ... portlist keepalive enable disable Enables or disables the abnormal off line detection mechanism of the port zte cfg nas aaa control port portlist keepalive period 1 3600 Sets the abnormal off line detection period of the port zte cfg nas aaa control port portlist keepalive antiproxy add delete character detect ip modified multi card multi ipaddress packet analyse port detect service detect tcp se...

Page 118: ...e cfg nas radius retransmit 1 255 Sets the number of retransmissions upon server response time out zte cfg nas clear accounting stop session id session id user name user name isp name isp name server ip A B C D Deletes the radius accounting stop packet which is failed to send show radius ispname ispname all configuration modes Displays radius configuration information show radius accounting stop s...

Page 119: ...g nas zte cfg nas radius isp zte enable zte cfg nas radius isp zte defaultisp enable zte cfg nas radius isp zte sharedsecret 1234 zte cfg nas radius isp zte client 10 40 89 106 zte cfg nas radius isp zte add accounting 10 40 89 78 zte cfg nas radius isp zte add authentication 10 40 89 106 4 Enable radius client software on PC and input correct username and password Then the authentication request ...

Page 120: ...Configuring MAC Authentication The MAC authentication configuration includes the following commands Command Function zte cfg nas aaa control mac authentication enable disable Enables or disables the MAC authentication function zte cfg nas aaa control mac authentication session 1 3 range HH HH HH HH HH HH HH HH HH HH HH HH Adds the range of MAC addresses that need authentication in unit of session ...

Page 121: ...etwork 1 to the customer port of switch A because the PORTBASE VLAN based customer port does not identify the tag when receiving the packet the customer port processes the packet as an untagged packet no matter whether this data packet is attached with the VLAN tag or not The packet is forwarded by the VLAN 10 which is determined by the PVID 2 The uplink port of switch A inserts the outer tag VLAN...

Page 122: ...on Description As shown in Figure 4 25 encapsulate an exterior label in SW1 ZXR10 2952E for the packet from SW2 The VLAN number is 100 The port connecting upstream BRAS in SW1 is port 24 The port connecting downstream SW2 is port 1 The NM vlan of SW1 is 999 and the management IP address is 192 168 0 1 24 Figure 4 25 QinQ Configuration Instance l Configuration Procedure set qinq the outer label is ...

Page 123: ...from low level to high level Table 4 2 Syslog Log Information Severity Level Description Emergencies crucial fault Alerts the fault that must be corrected quickly Critical key fault Errors the fault need to be noticed but not important Warnings warn maybe a mistake exists Notifications the information that needs to be noticed Informational general prompt information Debugging debug information Con...

Page 124: ...slog module commandlog enable zte cfg set syslog add server 1 ipaddress 192 168 1 1 name server1 l Configuration Verification zte cfg show syslog status Syslog status enable Syslog level informational Syslog enabled modules commandlog AAA radius Syslog disabled modules all others Syslog server IP UDP port Name 1 192 168 1 1 514 server1 4 23 NTP Configuration NTP Overview NTP is the protocol used t...

Page 125: ...through which NTP messages are sent show ntp all configuration modes Displays NTP configuration NTP Configuration Instance l Configuration Description Suppose that switch and NTP server IP address is 202 10 10 10 implement time synchronization Make sure that switch and NTP server can ping each other successfully The NTP module is configured as follows l Configuration Procedure zte cfg set ntp serv...

Page 126: ...figuring GARP GVRP The GARP GVRP configuration includes the following commands Command Function zte cfg set vlan vlanlist permit forbid port portlist trunk trunklist Permits or forbids adding deleting port trunk in the specified VLAN zte cfg set garp enable disable Enables or disables GARP function zte cfg set garp timer hold join leave learvall timer_value Sets various GARP timers show garp all c...

Page 127: ...set gvrp port 1 en zte cfg set vlan 30 40 en zte cfg set vlan 30 40 add port 1 Note 1 Garp function should be enabled first before Gvrp function is enabled 2 Enabling GVRP can enable up to 256 vlans 3 Timer of Garp generally uses the default value If it is modified the value must be the same as the one configured in the network 4 Gvrp port registration type uses default Normal value If it is modif...

Page 128: ...figuration Protocol enables the host to apply dynamic addresses from server The ZXR10 2900E DHCP function includes the following contents DHCP snooping function prevents bogus DHCP server from being laid in network and in this case the port connecting to DHCP server must be set to trusted port What s more dynamic ARP inspection technology can be used together to prevent illegal IP and MAC address ...

Page 129: ...drop Sets the binding mode of port dynamic user information binding entry zte cfg set dhcp option82 add delete port portlist trunk trunklist Enables or disables DHCP Option82 function based on port trunk zte cfg set dhcp option82 sub option device ani string remote ID cisco manual string Configures the device information of Switch zte cfg set dhcp option82 sub option port 1 28 circuit ID on cisco ...

Page 130: ...g client id mac hostname string lease 0 365 0 23 0 59 infinite Sets the sending message when DHCP client interacts with server zte cfg router set ipport 0 63 dhcp client request dns server domain name route static route tftp server name Sets message type sent by server when DHCP client interacts with server zte cfg router clear ipport 0 63 dhcp client class id client id hostname lease Clears DHCP ...

Page 131: ...from affecting hosts in the network Figure 4 27 DHCP Snooping Option82 Configuration InstanceTopology l Configuration Procedure zte cfg set dhcp snooping and option82 enable zte cfg set dhcp snooping add port 49 50 zte cfg set dhcp port 49 client zte cfg set dhcp port 50 server zte cfg set dhcp ip source guard add port 49 zte cfg set dhcp option82 add port 49 50 l Configuration Verification zte cf...

Page 132: ...nt Enabled Enabled 50 Server Enabled Enabled 51 Client Disabled Disabled 52 Client Disabled Disabled DHCP client is disabled zte cfg show dhcp ip source guard Ip source guard is configured on the following port s 49 Configuring DHCP Client l Configuration Description As shown in Figure 4 28 PC can get IP address from specified DHCP server Figure 4 28 DHCP Client Configuration InstanceTopology l Co...

Page 133: ...roblems such as IP spoofing MAC address spoofing and user ID spoofing from illegal clients and DHCPv6 server address exhaustion On the basis of DHCPv6 snooping the Option82 technology can solve these security problems effectively 2 IP source guard function By listening to the DHCPv6 interaction procedure between a client and a server the system records the IP address allocated to the client by the...

Page 134: ...e string off Sets Option82 sub option zte cfg clear dhcpv6 snp bind entry mac HH HH HH HH HH HH port 1 28 all Clears ip source guard entities zte cfg clear dhcpv6 option82 ani Clears device identifiers show dhcpv6 all configuration modes Displays DHCPv6 snooping and option configuration show dhcpv6 snooping all configuration modes Displays global DHCPv6 snooping configuration information show dhcp...

Page 135: ...on Procedure zte cfg set dhcpv6 snooping enable zte cfg set dhcpv6 snooping add port 49 50 zte cfg set dhcpv6 port 49 client zte cfg set dhcpv6 port 50 server zte cfg set dhcpv6 ip source guard add port 49 zte cfg set dhcpv6 option82 enable zte cfg set dhcpv6 option82 add port 49 50 l Configuration Verification zte cfg show dhcpv6 snooping DHCP v6 snooping is enabled on the following port s PortId...

Page 136: ...e the position of the user Layer 2 communication mode is implemented between BAS and switches that is information query and response data packets of VBAS are encapsulated into Ethernet data frames of layer 2 directly and use protocol number 0x8200 to identify Caution Only trust ports can receive VBAS packets and VBAS response packets only can be sent from trust ports Port connecting to user networ...

Page 137: ...escription As shown in Figure 4 31 this example describes how to set trust port of switch A as port 1 cascade port as port 2 trust port of switch B as port 1 Figure 4 31 VBAS Configuration InstanceTopology l Configuration Procedure 1 Configuration of switch A zte cfg set vbas enable zte cfg set vbas trust port 1 enable zte cfg set vbas cascade port 2 enable 2 Configuration of switch B zte cfg set ...

Page 138: ...llowing contents Command Function zte cfg set pppoe plus enable disable Enables or disables PPPoE function zte cfg set pppoe plus tag format port 1 28 dsl forum cisco china tel manual string Sets PPPoE location message format zte cfg set pppoe plus rid 1 28 string Adds or deletes port rid information show pppoe plus all configuration modes Displays PPPoE global configuration show pppoe plus port 1...

Page 139: ...e the service recover soon ZESR protocol is more simple than STP protocol and the topology convergence speed is more fast ZESR Related Concepts l ZESR Ring A ZESR ring physically corresponds to an Ethernet ring topology A ZESR area consists of multiple ZESR rings One ring is the major level others are the segment linking with the major level If there is only one ring in ZESR area then it is the ma...

Page 140: ...are assistant nodes S7 is master node l Smart link node The smart link is a simple expansion for the former ZESR function and realizes the protection for key service link As shown in SMART LINK when the link goes wrong it can switch automatically and carry out malfunction response in time Introduction to ZESR Function l Single Ring Single Domain ZESR à ZESR Domain ZESR domain is an example of ZESR...

Page 141: ...f master are primary and secondary The loop port is blocked when master initializes The secondary port is blocked when the master detects the normal link If master detects the disconnection of the link then it forwards the secondary port The loop port is blocked when the transit initializes When the loop is link failure as shown in Figure 4 34 master opens the secondary port to make the data trans...

Page 142: ...omain consists of many switches which are configured with the same domain ID control VLAN and protection VLAN These switches are interconnected One or more EAPS domains exist on a physical loop Each EAPS domain defines its master node transmission node and assistant node Figure 4 36 Multi Ring Multi Domain 4 96 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 143: ...wn As shown in Figure 4 38 S3 S6 compose the segment links of level 1 segment 1 where S3 and S4 are assistant nodes and S5 is the master node S3 and S4 can always intercommunicate with each other via primary ring If all links where S3 S4 S5 and S6 locate on segment 1 of level 1 are up master node S5 will block its secondary port and if the states of some links are Down the secondary port of the ma...

Page 144: ...ll make decision for processing à The Function of Assistant Node Assistant node is also the border node and transit node with only one port on corresponding segment link It is mainly used to monitor the state of direct connect ZESR notify the link change to master node and meanwhile monitor the state of master node on segment link à The Function of Multi Domain Multiple domains are supported on on...

Page 145: ...ent nodes It is used to detect the link faults such as link monologue and link across transmission equipment Linkhello interaction is only used for adjacent nodes and has nothing to do with ZESR node type and network form When Linkhello mechanism is added there are two ways to detect link state one is to detect the physical state of link another is to send Linkhello frame detection between the two...

Page 146: ...1 15 Adds or deletes primary secondary port trunk on each node zte cfg set zesr domain 1 4 add delete access port 1 28 access trunk 1 15 Adds or deletes SMART LINK access port trunk on the ZESR ring node zte cfg set zesr domain 1 4 mode smart link Sets node type as SMART LINK zte cfg set zesr domain 1 4 major level mode master transit edge master edge transit Sets the node attribute of major level...

Page 147: ...it Sets the attributes of the nodes on the slavery device ring under cross device smart link zte cfg set zesr domain domainId tcn cancel sending sending Sets the mode to send TCN in a ZESR domain zte cfg set zesr tcn sending port portlist enable disable Enables or disables a port to send TCN packets zte cfg set zesr tcn sending trunk trunklist enable disable Enables or disables a trunk port to sen...

Page 148: ...in 1 add primary port 1 zxr10 cfg set zesr domain 1 add secondary port 2 zxr10 cfg set zesr domain 1 major level mode master zxr10 cfg set zesr domain 1 enable 2 S2 S4 node VLAN zxr10 cfg set vlan 100 add port 1 2 zxr10 cfg set vlan 4000 add port 1 2 tag zxr10 cfg set vlan 100 4000 enable zxr10 cfg set port 1 2 pvid 100 STP zxr10 cfg set stp instance 1 add vlan 100 zxr10 cfg set stp enable ZESR zx...

Page 149: ... 42 the multi ring networking composed of 6 switches is shown above There are one ZESR primary ring and two hierarchical rings 1 The primary ring is composed of nodes S1 S4 S1 is Master P1 is the Primary Port P2 is the Secondary Port S2 is the Transit node S3 S4 are Edge Transit node P3 and P4 are the edge port of the two hierarchical rings 2 The link 1 of hierarchical ring is composed of S6 S3 an...

Page 150: ...nce 1 add vlan 100 zxr10 cfg set stp enable ZESR zxr10 cfg set zesr domain 1 add control vlan 4000 zxr10 cfg set zesr domain 1 add protect instance 1 zxr10 cfg set zesr domain 1 add primary port 1 zxr10 cfg set zesr domain 1 add secondary port 2 zxr10 cfg set zesr domain 1 major level mode master zxr10 cfg set zesr domain 1 enable 2 S2 node VLAN zxr10 cfg set vlan 100 add port 1 2 zxr10 cfg set vl...

Page 151: ...ZESR zxr10 cfg set zesr domain 1 add control vlan 4000 zxr10 cfg set zesr domain 1 add protect instance 1 zxr10 cfg set zesr domain 1 add primary port 1 zxr10 cfg set zesr domain 1 add secondary port 2 zxr10 cfg set zesr domain 1 major level mode edge transit zxr10 cfg set zesr domain 1 level 1 segment 1 add edge port 3 notmaster zxr10 cfg set zesr domain 1 level 1 segment 2 add edge port 4 notmas...

Page 152: ...al ring must be Edge Port 3 The edge port has two attributes not Master and Master The attribute not Master is used in the condition that the master of the hierarchical ring exists Master is used in the condition that the master does not exist and the edge port master serves as the master 4 The edge port with Master attribute must be set on edge master ZESR Smart Link Networking Example l Configur...

Page 153: ...lan 100 zxr10 cfg set stp enable ZESR zxr10 cfg set zesr domain 1 add control vlan 4000 zxr10 cfg set zesr domain 1 add protect instance 1 zxr10 cfg set zesr domain 1 add primary port 1 zxr10 cfg set zesr domain 1 add secondary port 2 zxr10 cfg set zesr domain 1 major level mode master zxr10 cfg set zesr domain 1 enable 2 S2 node VLAN zxr10 cfg set vlan 100 add port 1 2 zxr10 cfg set vlan 4000 add...

Page 154: ...cfg set zesr domain 1 add control vlan 4000 zxr10 cfg set zesr domain 1 add protect instance 1 zxr10 cfg set zesr domain 1 add primary port 1 zxr10 cfg set zesr domain 1 add secondary port 2 zxr10 cfg set zesr domain 1 major level mode edge transit zxr10 cfg set zesr domain 1 add access port 3 zxr10 cfg set zesr domain 1 enable 4 S5 node VLAN zxr10 cfg set vlan 100 add port 1 2 zxr10 cfg set vlan ...

Page 155: ... the hierarchical ring at the same time Cross Device TCN Sending Example l Configuration Description As shown in Figure 4 44 configure ZESS on the ZTE devices from SW 1 or SW 6 The devices are connected to devices of another vender It is required to enable STP When the link is changed over SW 1 is responsible for sending TCN to inform the uplink devices to clear the MAC entities 4 109 SJ 201204091...

Page 156: ...zxr10 cfg set vlan 100 4000 enable STP zxr10 cfg set stp enable zxr10 cfg set stp instance 1 add vlan 100 ZESS zxr10 cfg set zesr domain 1 add control vlan 4000 zxr10 cfg set zesr domain 1 add protect instance 1 zxr10 cfg set zesr domain 1 add primary port 1 zxr10 cfg set zesr domain 1 add secondary port 2 4 110 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 157: ...ernet networking proportion gradually increases in network structure Ethernet devices replacing ATM network devices and other devices are widely used in access convergence layer and backbone network Due to the great application Operation Administration Maintenance OAM function of Ethernet devices receive much concern The main Ethernet OAM protocols are shown below l IEEE 802 3ah Operations Adminis...

Page 158: ...red and compared at any time Meanwhile OAM loopback frame can be analyzed to obtain the additional information of link health frame discard due to the link failure l Link Monitoring ZXR10 2900E series switch monitors and examines the link state and announces the specified frame events by OAM function The specified frame events can be classified into four types error symbol period event error frame...

Page 159: ...rt summary information show ethernet oam port portlist discovery all configuration modes Displays port OAM discovery state show ethernet oam port portlist statistics all configuration modes Displays port OAM statistics information show ethernet oam port portlist link monitor all configuration modes Displays port OAM link event configuration and state OAM Remote Loopback Configuration Instance l Co...

Page 160: ...y fails Discovery done discovery succeeds undone represents that discovery fails Loopback off PDU Revision 92 Remote DTE the remote device information Config Mode active Link Monitor support Unidirection nonsupport Remote Loopback support Mib Retrieval nonsupport PDU max size 1518 Status Parser forward Multiplexer forward Stable yes Mac Address 00 d0 d0 29 28 02 the system MAC of the remote device...

Page 161: ...plexer state is discard Stable yes Mac Address 00 d0 d0 29 28 02 PDU Revision 28 zte cfg set ethernet oam remote loopback port 2 stop disable OAM remote loopback on port2 The switch replies OAM discovery success The key points of configuration The switch gives the following prompts when OAM discovery failure occurs or starting and stopping remote loopback OAM discovery is completed successfully on...

Page 162: ... ethernet oam enable zte cfg set ethernet oam port 1 enable zte cfg set ethernet oam port 1 link monitor enable zte cfg set ethernet oam port 1 lin symbol period threshold 10 window 10 zte cfg set ethernet oam port 1 lin frame threshold 10 window 20 zte cfg set ethernet oam port 1 link monitor frame period threshold 5 window 1000 zte cfg set ethernet oam port 1 link monitor frame seconds threshold...

Page 163: ...or symbol the statistic of error frame and the statistic of local and peer link events will be shown on each event 4 31 SQinQ Configuration SQinQ Overview SQinQ is a kind of VLAN tunnel technology It provides multi point to multi point VLAN transparent transportation service and simple Layer 2 VPN tunnel by means of adding a VLAN tag outside original 802 1Q tag and getting rid of outside VLAN tag ...

Page 164: ...ession SQinQ Configuration Instance l Configuration Description Port 1 is a customer port and port 2 is an uplink port When CVLAN is 10 and 12 the packet from port 1 SPVLAN is 997 and 998 respectively l Configuration Procedure Configure the SVLAN instance zte cfg set vlan 10 12 add port 1 tag zte cfg set vlan 997 998 add port 1 untag zte cfg set vlan 997 998 add port 2 tag zte cfg set vlan 10 12 9...

Page 165: ...network are planned separately The customer VLAN mentioned in this chapter refers to CVLAN used in customer network while the service provider VLAN is the SVLAN used in service provider s network Different services of home users Internet IPTV VoIP are generally transferred through different VLANs in the access networks of MAN as shown in Figure 4 47 As there are limited VLANs in operator s network...

Page 166: ...lace the CVLAN with SVLAN based on Interface customer VLAN Downlink replace the SVLAN in the outermost layer with CVLAN based on SVLAN Destination MAC address The whole system supports 400 sessions up to 400 CVLANs can be supported 4 120 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 167: ... of all VLAN Mapping sessions zte cfg clear vlan mapping user session 1 400 Deletes the user information of the specified VLAN Mapping session show vlan mapping all configuration modes Displays all VLAN Mapping sessions show vlan mapping session 1 400 all configuration modes Displays the specified VLAN Mapping session show vlan mapping user table all configuration modes Displays the user informati...

Page 168: ...set vlan mapping session 1 customer port 1 customer vlan 1 100 uplink vlan 1000 l Configuration Verification The following example shows how to show the SVLAN instance zte cfg show vlan mapping Session number 1 Customer Port 1 Customer Vlan List 1 100 Uplink Vlan 1000 4 33 sFlow Configuration The sFlow configuration includes the following commands Command Function zte cfg set sflow agent address A...

Page 169: ...w configuration on ports zte cfg clear sflow statistic Clears statistics information on ports show sflow all configuration modes Displays all sFlow configuration 4 34 PP Configuration PP Overview Protocol Protect PP maintains and monitors the rate of packets forwarded to the CPU thus preventing viruses or spiteful attacks to the switch In this way the switch provides self protection ability and en...

Page 170: ...ars the mac drop rules for specified or all ports zte cfg clear protocol protect mac drop rule 1 128 Clears specified mac drop rules show protocol protect statistic port portlist all configuration modes Displays statistics information of protocol packet alarms on a PP port show protocol protect limit all configuration modes Displays PP rate limit information show protocol protect priority all conf...

Page 171: ... device zte cfg show igmp snooping vlan Maximal group number 1024 Current group number 1 Num VlanId Group Last_Report PortMember 1 1 225 0 0 1 10 40 1 10 2 3 4 35 LLDP Configuration LLDP Overview The Link Layer Discovery Protocol LLDP is a new protocol defined in the 802 1ab This protocol allows neighboring devices to send messages to each other to update physical topology information and establis...

Page 172: ...ol Data Unit LLDPDU The LLDPDU contains a variable length message unit called TLVs which are described below l Type indicates the type of the message to be sent l Length indicates the number of bytes in the message l Value indicates the contents to be sent Each LLDPDU contains four mandatory TLVs and one optional TLV l Chassis ID TLV and Port ID TLV identify the sender l TLL TLV notifies the recei...

Page 173: ... modes Displays LLDP configuration information show lldp neighbor port portlist trunk trunklist all configuration modes Displays summary information of LLDP neighbors show lldp entry port portlist trunk trunklist all configuration modes Displays detailed information of LLDP neighbors show lldp statistic port portlist trunk trunklist all configuration modes Displays statistics information of LLDP n...

Page 174: ...can efficiently avoid the influence caused by port loop The switch sends a test packet through a port If this test packet is received through the port without any change or only a tag is attached it indicates that a loop exists in this port The test packet sent by the switch includes the following three parameters l Source MAC address It indicates the MAC address of the switch The MAC address of e...

Page 175: ...es or disables loop detection on a trunk port in a specific VLAN zte cfg set loopdetect trunk trunklist protect enable disable Enables or disables trunk port protection when a loop occurs on a trunk port zte cfg set loopdetect extend trunk trunklist enable disable Enables or disables cross device loop detection on a trunk port show loopdetect all configuration modes Displays loop detection informa...

Page 176: ...show loopdetect port 1 PortId 1 VlanId isLoop isBlock 1 Yes Yes Double Ports Loop Detection Configuration Instance l Configuration Description As shown in Figure 4 52 configure the double ports loop detection function of loop detect of switch2 to suppressing broadcast storm of network under switch2 Figure 4 52 Double Ports Loop Detection Configuration Topology l Configuration Procedure Switch2 cfg...

Page 177: ...ter neighbor relationship is established the devices send Hello messages periodically to detect whether the link is operating properly When receiving a Hello message from the neighbor a device updates the neighbor information saved locally and resets the time out period of the neighbor If the device does not receives a Hello message when the time out period expires it is considered that the a faul...

Page 178: ...ist mode aggressive normal Sets the mode of a port in UDLD zte cfg udld port portlist message timer 7 90 Sets the interval of sending messages after UDLD enters the BiDirectional status and the port is steady zte cfg udld port portlist recovery enable disable Enables or disables the UDLD recovery function zte cfg udld port portlist recovery timer 10 600 Sets the recovery interval zte cfg udld port...

Page 179: ...teA cfg show udld port 17 Port 17 Administrative configuration Enable Port mode Aggressive Aggr Current state Unidirectional Detected link failure Recovery configuration Disable Recovery time interval 30s Message time interval 15s Force check configuration Disable Force check time 30s Remaining 0s No neighbour information stored 4 38 TACACS Configuration TACACS Overview Terminal Access Controller ...

Page 180: ...nds default group group name Sets the default server group for TACACS MML accounting zte cfg nas tacacs plus accounting exec default group group name Sets the default server group for TACACS user accounting zte cfg nas tacacs plus accounting update period 1 2147483647 Sets the refresh period for TACACS user accounting zte cfg nas clear tacacs plus loginauthen default Clears the default TACACS logi...

Page 181: ...ter set ipport 1 vlan 1 zte cfg router set ipport 1 enable zte cfg router exit zte cfg config nas zte cfg nas tacacs plus group zte enable zte cfg nas tacacs plus group zte add host 192 168 1 100 zte cfg nas tacacs plus loginauthen default group zte zte cfg nas tacacs plus loginauthor default group zte zte cfg nas tacacs plus adminauthen default group zte zte cfg nas tacacs plus accounting command...

Page 182: ... configuration modes Displays time range configuration 4 40 Voice VLAN Configuration Voice VLAN Overview The Voice VLAN is a VLAN specially allocated for voice data of users It provides a voice VLAN and adds interfaces of voice devices to the voice VLAN The user can configure the CoS and DSCP for voice data to increase the priority of voice data transmission and ensure the call quality Voice data ...

Page 183: ...es Displays voice configuration on all ports show vlan voice vlan port 1 18 all configuration modes Displays voice configuration on a port show vlan voice vlan default oui all configuration modes Displays the default OUI of a device show vlan voice vlan user table port 1 18 all configuration modes Displays the user table on a port show vlan voice vlan vlanlist qos all configuration modes Displays ...

Page 184: ...n 100 Oui configed oui id 1 mac 00 00 01 00 00 02 mask FF FF FF FF FF FF 4 41 802 1AG Configuration 802 1AG Overview For IEEE802 1ag the CFM Connectivity Fault Management function checks separates and reports connectivity faults of the virtual bridge LAN It is used in operators network and also valid for the C VLAN Customer VLAN network The network manager performs planning on network services and...

Page 185: ...de domains with lower levels but not vice versa The domains with the same level cannot include each other This means that all domains can be tangential internally or externally and inclusive but cannot be intersecting Figure 4 57 Domains in the Network The message types defined in the CFM protocol include l Continuity Check Message CCM A multicast CFM protocol data unit It is periodically sent by ...

Page 186: ...mand 802 1AG configuration includes the following commands Command Function zte cfg cfm disable enable Enables disables the CFM function zte cfg create cfm md session 1 16 name string level 0 7 Creates a CFM md zte cfg create cfm md session 1 16 ma session 1 32 name string Creates a CFM ma zte cfg create cfm md session 1 16 ma session 1 32 mep session 1 64 mep id 1 8191 direction down up Creates a...

Page 187: ...md session 1 16 ma session 1 32 mep id 1 8191 mep session 1 64 Clears all configuration of cfm mep zte cfg clear cfm md session 1 16 ma session 1 32 mip session 1 64 Clears all configuration of cfm mip show cfm md session 1 16 all confiuration modes Displays all configuration of cfm md show cfm md session 1 16 ma session 1 32 all confiuration modes Displays all configuration of cfm ma show cfm md ...

Page 188: ...on 1 ma session 1 mep id 2 ccm receive enable Configuration on S2 zte cfg cfm enable zte cfg create cfm md session 1 name zte_1 level 5 zte cfg create cfm md session 1 ma session 1 name zte_zte_1 zte cfg cfm md session 1 ma session 1 primary vlan 100 zte cfg create cfm md session 1 ma session 1 mep session 1 mep id 2 direction down zte cfg cfm md session 1 ma session 1 mep id 2 state enable zte cf...

Page 189: ...on S2 zte cfg cfm enable zte cfg create cfm md session 1 name zte_1 level 5 zte cfg create cfm md session 1 ma session 1 name zte_zte_1 zte cfg cfm md session 1 ma session 1 primary vlan 100 zte cfg create cfm md session 1 ma session 1 mip session 1 name zte_mip_1 zte cfg cfm md session 1 ma session 2 mip session 1 assign port 2 zte cfg create cfm md session 1 ma session 1 mip session 2 name zte_m...

Page 190: ...ne lm enable disable Enables the LM function at one end zte cfg cfm md session 1 16 ma session 1 32 mep id 1 8191 two lm enable disable Enables the LM function at both ends zte cfg cfm md session 1 16 ma session 1 32 mep id 1 8191 two dm enable disable Enables the DM function in both directions zte cfg cfm md session 1 16 ma session 1 32 mep id 1 8191 ais enable disable Enables the AIS function zt...

Page 191: ...rated by using the network instance shown in Figure 4 60 Figure 4 60 LM Network Configuration Instance l Configuration Procedure Configuration on S1 zte cfg cfm enable zte cfg create cfm md session 1 name zte_1 level 5 zte cfg create cfm md session 1 ma session 1 name zte_zte_1 zte cfg cfm md session 1 ma session 1 primary vlan 100 zte cfg create cfm md session 1 ma session 1 mep session 1 mep id ...

Page 192: ...rmep id 1 remote mac 00 d0 d0 c0 00 01 zte cfg cfm md session 1 ma session 1 mep id 1 ccm receive enable zte cfg cfm md session 1 ma session 1 mep id 2 relate to rmep id 1 zte cfg cfm md session 1 ma session 1 mep id 2 one lm two lm enable l Configuration Verification LM on both ends is automatically performed based on the CCM configuration While LM on one end is performed after manually triggerin...

Page 193: ...d session 1 ma session 1 primary vlan 100 zte cfg create cfm md session 1 ma session 1 mep session 1 mep id 2 direction down zte cfg cfm md session 1 ma session 1 mep id 2 state enable zte cfg cfm md session 1 ma session 1 mep id 2 ccm send enable zte cfg cfm md session 1 ma session 1 mep id 2 ccm receive enable zte cfg cfm md session 1 ma session 1 mep id 2 assign port 4 zte cfg create cfm md ses...

Page 194: ...name zte level 4 zte cfg create cfm md session 10 ma session 10 name zte_zte zte cfg cfm md session 10 ma session 10 primary vlan 100 zte cfg create cfm md session 10 ma session 10 mep session 10 mep id 10 direction down zte cfg cfm md session 10 ma session 10 mep id 10 state enable zte cfg cfm md session 10 ma session 10 mep id 10 ccm send enable zte cfg cfm md session 10 ma session 10 mep id 10 ...

Page 195: ... 2 ccm send enable zte cfg cfm md session 1 ma session 1 mep id 2 ccm receive enable zte cfg cfm md session 1 ma session 1 mep id 2 assign port 6 zte cfg create cfm md session 1 ma session 1 rmep session 2 rmep id 1 remote mac 00 d0 d0 c0 00 01 zte cfg cfm md session 1 ma session 1 mep id 1 ccm receive enable zte cfg cfm md session 1 ma session 1 mep id 1 ais lck enable l Configuration Verificatio...

Page 196: ...ased VLAN instance zte cfg set vlan 100 200 enable zte cfg set vlan 100 200 add port 1 untag zte cfg set vlan 10 12 add port 1 tag zte cfg config mac based vlan session 1 zte mac based vlan rule 1 mac address 00 00 00 00 00 01 mac mask ff ff ff ff ff ff vlan 100 zte mac based vlan rule 2 mac address 00 d0 d0 00 00 00 mac mask ff ff ff 00 00 00 vlan 200 zte cfg set vlan mac based port 1 session 1 b...

Page 197: ...et dhcp relay option82 mode port 1 52 default drop modify append Sets the mode in binding the dynamic user information binding table options for the port zte cfg set dhcp relay server mode ipport vclass id Sets the DHCP Relay mode sets the DHCP server depending on ipport or vclass id zte cfg set dhcp relay server retry 5 1000 Sets the DHCP Relay retry that is the number of times that message resen...

Page 198: ...erver A B C D Clears the DHCP relay information of ipport DHCP Configuration Instance l Configuration Description As shown in Figure 4 63 switch port 1 is connected to the DHCP client and switch port 2 is connected to the DHCP server of the IP network Figure 4 63 DHCP Relay Configuration Instance Note The DHCP client and the DHCP server are in different network segments l Configuration Procedure 1...

Page 199: ...enable DHCP server mode ipport DHCP server retry 10 DHCP relay option82 disable zte cfg show dhcp relay option82 port 1 DHCP option82 sub option information on port 1 Circuit ID Disabled Remote ID Enabled Format Cisco DHCP option82 mode information on port 1 Default zte cfg show ipport 0 Status up IpAddress 169 1 15 1 VlanId 1 Mask 255 255 0 0 ArpProxy disabled MacAddress 00 00 00 11 22 33 Timeout...

Page 200: ...ZXR10 2900E Series Configuration Guide This page intentionally left blank 4 154 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 201: ...o access the switch only from a specified IP address the user cannot access the switch from other IP addresses When this function is disabled the network management user can access the switch through Telnet SSH SNMP and Web from any IP address Configuring REMOTE ACCESS The REMOTE ACCESS configuration includes the following commands Command Function zte cfg set remote access any specific Enables or...

Page 202: ...mp telnet ssh web REMOTE ACCESS Configuration Instance2 l Configuration Description Only allow the network management user to access the switch from 192 168 1 1 through Telnet SSH SNMP Web l Configuration Procedure zte cfg set remote access specific zte cfg set remote access ipaddress 192 168 1 1 zte cfg show remote access Whether check remote manage address YES Allowable remote manage address es ...

Page 203: ...te access function scope therefore the SSH connection protocol shall support interactive session The SSH can be used to encrypt all transmitted data Even if these data is intercepted no useful information can be obtained At present the SSH protocol has two incompatible versions SSH v1 x and SSH v2 x This switch only supports SSH v2 0 and uses the password authentication mode The SSH uses port 22 C...

Page 204: ...ent end setting of host The client end of SSH v2 0 can use the free software Putty developed by Simon Tatham The current version provides client end support of Putty0 54 version The required settings when using Putty to log in to switch are as follows a Set the IP address and port number of the SSH Server as shown in Figure 5 2 Figure 5 2 SETTING IP ADDRESS AND PORT NUMBER OF THE SSH SERVER 5 4 SJ...

Page 205: ...TTING SSH VERSION NUMBER c For the first time to log in the user confirmation is needed as shown in Figure 5 4 Figure 5 4 USER CONFIRMATION REQUIRED IN THE FIRST LOGIN d The SSH login result is shown in Figure 5 5 5 5 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 206: ...s the following commands Command Function zte cfg privilege enable disable Enables disables the command level function zte cfg privilege 0 15 session 1 1024 all part mode key1 string key2 string key10 string Sets the command permission zte cfg clear privilege session 1 1024 Clears a specified command permission rule show privilege default level 0 15 session 1 1024 for all configuration modes Displ...

Page 207: ...as a user with a permission higher than or equal to the permission for example Level 13 and use the same command The command can be properly executed without the prompt mentioned above occurring 5 4 SNMP Overview SNMP SNMP is the most popular network management protocol currently It involves a series of protocol and specifications l MIB Management Information Base l SMI Structure of Management Inf...

Page 208: ...evice status by querying the related object values in the agent MIB ZXR10 2900E implements the standard MIB and private MIB defined in rfc2233 rfc1493 rfc2665 and rfc2819 Configuring SNMP The SNMP configuration includes the following commands Command Function zte cfg snmp set engineID Sets device SNMP engine ID zte cfg snmp set recvpacket 0 100 Sets the number of SNMP packets that SNMP protocol st...

Page 209: ...nk event alarms event detection alarms MAC list variation notification and ping notification zte cfg snmp set group string v3 auth noauth priv read string write string notify string Sets the SNMP V3 group name and group security level zte cfg snmp set user string string v3 md5 auth string sha auth string des56 priv string Sets SNMP v3 user name authentication mode and password zte cfg snmp set tra...

Page 210: ...ement server PC l Configuration Procedure zte cfg config router zte cfg router set ipport 0 ipaddress 10 40 92 200 255 255 255 0 zte cfg router set ipport 0 vlan 2 zte cfg router set ipport 0 enable zte cfg router exit zte cfg config snmp zte cfg snmp create community zte private zte cfg snmp create view vvv zte cfg snmp set community zte view vvv zte cfg snmp set host 10 40 92 105 trap v2 zte zte...

Page 211: ...riv zte zte cfg snmp set host 10 40 92 77 inform v3 zteuser priv zte cfg snmp show snmp group groupName ztegroup secModel v3 readView zteView secLevel AuthAndPriv writeView zteView rowStatus Active notifyView zteView zte cfg snmp show snmp user UserName zteuser GroupName ztegroup v3 EngineID 830900020300010289d64401 AuthType Md5 StorageType NonVolatile EncryptType Des_Cbc RowStatus Active zte cfg ...

Page 212: ...ore if the MAC change advertisement function is enabled globally but it is not enabled on a related port the network management system cannot receive trap information In this example if the MAC entities change on another port instead of Port 1 trap information is not sent 5 5 RMON Overview RMON The Remote Monitoring RMON defines standard network monitoring function and the communication interface ...

Page 213: ...ld 1 65535 eventindex 1 65535 rising falling owner name status valid underCreation createRequest invalid Sets alarm group zte cfg snmp set event 1 65535 description string type none log snmptrap logandtrap owner name community name status valid underCreation createRequest invalid Sets event group zte cfg snmp set history 1 65535 datasource 1 28 bucketRequested 1 65535 owner name interval 1 3600 st...

Page 214: ...rm 2 variable 1 3 6 1 2 1 16 2 2 1 6 2 1 zte cfg snmp set alarm 2 sample absolute zte cfg snmp set alarm 2 startup rising zte cfg snmp set alarm 2 threshold 8 eventindex 2 rising zte cfg snmp set alarm 2 threshold 15 eventindex 2 falling zte cfg snmp set alarm 2 owner zteNj zte cfg snmp set alarm 2 status valid zte cfg snmp set statistics 1 datasource 16 zte cfg snmp set statistics 1 owner zteNj z...

Page 215: ...ment station 5 6 ZGMP ZGMP Overview ZGMP is ZTE Group Manage Protocol A cluster is a combination consisting of a set of switches in a specific broadcast domain This set of switches forms a unified management domain providing an external public network IP address and management interface as well as the ability to manage and access each member in the cluster The management switch which is configured...

Page 216: ...cast domain between the public network and the private network on the command switch and shield direct access to the private address The command switch provides an external management and maintenance channel to manage the cluster in a centralized manner Figure 5 7 shows the cluster management networking Figure 5 7 CLUSTER MANAGEMENT NETWORKING Figure 5 8 shows the changeover rule of the four roles...

Page 217: ... configuration show zdp neighbour all configuration modes Displays ZDP neighbor information show zdp neighbour detail all configuration modes Displays ZDP neighbor detailed information zte cfg group set ztp enable disable Enables or disables the global ZTP function zte cfg group set ztp port portlist trunk trunklist enable disable Enables or disables the ZTP function based on port trunk zte cfg gr...

Page 218: ...agement and sets IP address pool for user cluster management zte cfg group set group candidate Sets a switch as candidate switch zte cfg group set group independent Sets a switch as independent switch zte cfg group set group add mac HH HH HH HH HH HH 1 255 device idlist Adds a device with specified member ID from cluster zte cfg group set group delete member idlist Deletes a device with specified ...

Page 219: ... specified member switch zte cfg group reboot member idlist all Restarts a specified member switch rlogin commander member 1 255 all configuration modes Remotely logs in to cluster device ZGMP Configuration Instance l Configuration Description As shown in Figure 5 9 the initial configuration of the switches is the default configuration Here set the VLAN where the public network IP address of the c...

Page 220: ...4 tag zte cfg config router zte cfg router set ipport 25 ipaddress 100 1 1 10 24 zte cfg router set ipport 25 vlan 2525 zte cfg router set ipport 25 enable zte cfg router iproute 0 0 0 0 0 100 1 1 1 2 Create a cluster on layer 3 port 1 of the command switch and VLAN 1 default VLAN zte cfg config group zte cfg group set group commander ipport 1 Cmdr zte cfg group ztp start 5 20 SJ 20120409144109 00...

Page 221: ...te Up 3 Switch to each member switch and add all ports to VLAN 4000 taking member 4 as an example Cmdr zte cfg set vlan 4000 enable Cmdr zte cfg set vlan 4000 add port 1 16 tag Cmdr zte cfg rlogin member 1 Trying Open Connecting Mem1 zte Mem1 zte enable password Mem1 zte cfg set vlan 4000 enable Mem1 zte cfg set vlan 4000 add port 1 16 tag 4 Delete the cluster created on VLAN 1 Cmdr ZTE cfg group ...

Page 222: ...r to 110 1 1 2 Cmdr zte cfg group set group syslogsvr 110 1 1 2 8 Download version zImage on member 1 Mem1 zte cfg tffs tftp commander download zImage 5 7 sFlow sFlow Overview sFlow Overview is a technique to monitor high speed data transmission network It uses sFlow proxy embedded in network equipments to send the sampled data packets to the sFlow collectors sFlow implements the following functio...

Page 223: ...s all sFlow configuration and recovers as default state zte cfg clear sFlow statistic Clears sFlow port sampling statistics show sFlow all configuration modes Displays sFlow configuration information 5 8 WEB WEB Management Overview ZXR10 2900E provides an embedded Web server stored in flash memory which allows user to use a standard Web browser it is recommended to use IE6 0 above and 1024 768 res...

Page 224: ... Click Login to login in to the system main interface as shown in Figure 5 11 Figure 5 11 System Main Interface WEB Configuration Management l WEB Configuration Management System Information Check Click directory tree on the left of system main page Configuration System open system information page by default Configuration directory is expansive as shown in Figure 5 12 5 24 SJ 20120409144109 002 2...

Page 225: ...SysLocation system location SysUpTime the running time after the system is started Both HostName and SysLocation can be configured After configuration click the Apply button to submit to complete the configuration l Port Management Port State Information Check Click directory tree on the left of system main page Configuration Port Port State open port state information page as shown in Figure 5 13...

Page 226: ...orking state of port Speed working speed of port Note Linkdown of port means that port hasn t physical connection The displaying values of Duplex and Speed are meaningless Port Configuration Information Check Click directory tree on the left of main page Configuration Port Port Parameter open port configuration information page as shown in Figure 5 14 5 26 SJ 20120409144109 002 2012 07 02 R1 0 ZTE...

Page 227: ...LAN ID FlowControl port flow control enable MultiFilter port multicast filter enable MacLimit port Mac address learning limit Security port security enable SpeedAdvertise port speed advertisement Single Port Configuration Single port configuration click the Config button in the line of port to be configured in port configuration information page list to open configuration page of this port as show...

Page 228: ...ttributes can t be configured enabled at the same time Caution Note If the port connects the network management host is shutdown network management will be interrupted Bulk port configuration Bulk port configuration select multiple ports in port configuration information page list select Select All to select all ports and then click Apply to open bulk port configuration page as shown in Figure 5 1...

Page 229: ...AN information page to display the VLAN information which is operated currently If the VLAN hasn t been operated the default VLAN will be displayed Refer to Figure 5 17 Figure 5 17 VLAN Information Page When VLAN entry to be displayed is more than 20 it will be displayed by page and page number will prompted at bottom right corner of page When the number of page is more than one page click previou...

Page 230: ...LAN number in the following text box such as 1 3 5 or select All Click Apply to submit to get the corresponding VLAN information 1 Click directory tree Configuration VLAN Vlan Configure on the left of main page open VLAN number entering page as shown in Figure 5 18 Figure 5 18 VLAN Number Entering Page 2 Enter VLAN number in VLAN number page such as 1 3 5 click Apply to enter single VLAN configura...

Page 231: ...er in the following text box the format is as 1 3 5 Also can select the corresponding check box to add them into VLAN à Figure 5 20 shows bulk VLAN configuration Figure 5 20 Bulk VLAN Configuration Page Admin of Select items is used to enable VLAN Port is ordinary port of bulk VLAN configuration Trunk is Trunk group of bulk VLAN configuration 5 31 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Propriet...

Page 232: ...scription of Information Displayed Parameter Description Pvlan Session PVLAN instance Promiscuous Port Promiscuous physical port Promiscuous Trunk Promiscuous trunk port Isolated Port Isolated physical port Isolated Trunk Isolated trunk port Community Port Community physical port Community Trunk Community trunk port PVLAN Configuration Click directory tree Configuration PVLAN Pvlan Configure on th...

Page 233: ...ity Port Community physical port Community Trunk Community trunk port This page also can set attributes After setting click Apply to submit When system is configured successfully the configured information page will be displayed l Port Mirroring Management Port Mirroring Information Check Click directory tree Configuration MIRROR Mirror Overview on the left of main page open Mirror information pag...

Page 234: ...ress Mirroring Configuration Click Configuration MIRROR Mirror Configure on the left of main page to configure mirroring port Refer to Figure 5 24 Figure 5 24 Mirroring Port Configuration Page The source port and destination port can be configured in this page After setting click Apply to submit to complete the configuration l LACP Management 5 34 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Propriet...

Page 235: ...tion group aggregation mode that port belongs to LacpTime aggregation port timeout mode LacpActive aggregation port active passive mode set basic attributes of AdminStatus and LacpPriority in this page and set attributes of LacpTime and LacpActive of aggregation port After setting click Apply to submit to complete the configuration When setting same configuration of bulk aggregation port attribute...

Page 236: ...ion Lacp Lacp State on the left of main page open aggregation group information page as shown in Figure 5 27 Figure 5 27 Aggregation Group Information Page The Description of Information Displayed Parameter Description Attached Ports attached ports in aggregation group Active Ports active ports in aggregation group GroupMode aggregation mode of aggregation group 5 36 SJ 20120409144109 002 2012 07 ...

Page 237: ... group select port in aggregation port column click Note Only the ports with same attribute can be bound into the same aggregation group Each aggregation group can bind up to 8 ports Caution Avoid binding the port connects the network management host with aggregation group or the network management will be interrupted Monitoring Information l Terminal Log Check Click directory tree Monitoring Term...

Page 238: ...page open port statistics information page as shown in Figure 5 30 Figure 5 30 Port Statistics Information Page Click Refresh button to update port statistics information Select port in PortNumber drop down box to get the port statistics statistics includes l Statistics Data Overview Parameter Description ReceivedBytes Received bytes ReceivedFrames Received frames 5 38 SJ 20120409144109 002 2012 0...

Page 239: ...es l Configuration Information Check Click directory tree Monitoring Running config on the left of main page open configuration information page as shown in Figure 5 31 This page displays configuration information of switch Figure 5 31 Configuration Information Page This page displays configuration information of switch System Maintenance l Configuration Saving Page Click directory tree Maintenanc...

Page 240: ...al configuration file Make sure that the configuration need to be covered before clicking Ok l Configuring Reboot Click directory tree Maintenance Reboot on the left of main page open reboot function page as shown in Figure 5 33 Figure 5 33 Reboot Function Page Click Ok to reboot the switch or click Cancel to cancel reboot 5 40 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential...

Page 241: ...5 34 File Upload Page à Click Browse browse and select the file to be uploaded as shown in Figure 5 35 and then click Ok to upload file Figure 5 35 Browse and Select the File Note For safety and application only allow zImage bootrom bin startrun dat and to_permmac dat to be uploaded 5 41 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 242: ... l User Management Click directory tree Maintenance User Manager on the left of main page open user management page as shown in Figure 5 36 Figure 5 36 User Management Page By default the Modify tab is displayed Modify the login password and management password and then click Apply to submit l Adding User Click add button in user management page open Adding User page as shown in Figure 5 37 5 42 S...

Page 243: ...r page as shown in Figure 5 38 Figure 5 38 Deleting User Page Select the user to be deleted and then click Apply to submit 5 9 M_Button Introduction to the M_Button Function The M_button function is used to display the key statistics data and indicate the key events through the panel indicators which facilitates device maintenance 5 43 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Conf...

Page 244: ...nt usage each of which represents 12 5 For other devices the first 10 ports display the current usage each of which represents 10 7 Uplink port outbound bandwidth occupation rate mode BW In this mode a port indicator displays the current occupation rate of uplink port outbound bandwidth The current speed on the uplink interface is used as the base For the 2910E PS the first 8 ports display the cur...

Page 245: ...witch 1 There is a mode button on the panel Press it once and then the indicator for the next mode the sequence in which the modes described in the previous topic begins flashing for 2 seconds If the button is not pressed in 2 seconds the mode indicator is off The device enters this mode and executes the function of this mode If the button is pressed in 2 seconds the device enters the next mode Th...

Page 246: ... in to the switch through Telnet Figure 5 39 Telnet Login Instance l Configuration Procedure 1 Configure the switch By default the Telnet server function is enabled You can use the following command to make sure that the function is enabled zte cfg show Telnet Telnet server is enable 2 Configure the PC Note Windows 2000 provides the Telnet client and server programs Telnet exe is the client progra...

Page 247: ...net command on the PC see Figure 5 40 Figure 5 40 Execute the Telnet Command on the PC For the Telnet login result see Figure 5 41 Figure 5 41 Telnet Login Result 5 47 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 248: ...ZXR10 2900E Series Configuration Guide This page intentionally left blank 5 48 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 249: ...he switch by HyperTerminal or Telnet Use the ping command to test the various network segments for connectivity check 3 Check whether the related services of switch is normal 4 Record the today s operation and phenomenon The today s operation means the operation which is done on the switch The phenomenon includes switch state and equipment room environment Monthly Maintenance Items 1 Sum up the ev...

Page 250: ...state between switch and the device Day 4 Whether the related service is normally implemented Day 5 Ordinary problem monthly summary Month 6 Ordinary maintenance experience monthly summary Month 7 Equipment room cleaning Month 8 Switch cleaning Month 9 Yearly summary Year 10 Monitoring room device full maintenance and check Year 6 2 Virtual Line Detection VCT applies TDR to realize the diagnosis o...

Page 251: ...or software and the fault of the configuration the correct operation can be used to resolve the problem During the process of handling fault according to the previous chapter check whether the configuration of the device is correct the cable of the device is correct and the environment of the device is satisfying 6 3 2 The Configuration by Console Port Fails Fault Phenomenon The configuration by c...

Page 252: ...s conflict with the IP address of other devices 6 The wrong switch REMOTE ACCESS configuration causes that IP address is filtered Fault Handling 1 Modify all PVIDs of ports and make them same as the VLAN ID to which the port belongs 2 Enable all the ports used 3 Enable the VLAN that IP port binds 4 Configure valid IP address subnet mask and default gateway 5 Modify the IP address of the switch or ...

Page 253: ...the switch Fault Analysis and Location The username or password is wrong Fault Handling At first ensure whether administrator can find the original username and password If cannot reboot the switch and delete the configuration file The operation procedure is as follows 1 Reboot the switch and enter any key at the hyperterminal to enter boot state ZXR10 2928E BootRom Version v1 15 Compiled May 21 2...

Page 254: ...ate boot or firmware BootManager 3 Implement the rm command delete startrun dat configuration file and reboot the switch bootManager cd cfg bootManager ls cfg startrun dat 671 to_permmac dat 98304 bootManager rm startrun dat bootManager ls cfg to_permmac dat 98304 bootManager 4 After the switch is rebooted use default username and password for login 6 3 6 Losing Enable Enable Password Fault Phenom...

Page 255: ... is added 5 Configure the correct IP address for device 6 3 8 The Solution to Authentication Timeout Fault in Campus Network Fault Phenomenon There are six buildings in the student dormitory of A school If students want to access the internet the hosts must pass the authentication and accounting system The Radius server software of the authentication and accounting system and Bras hardware device ...

Page 256: ...hecked the internal network authentication still cannot be passed After checking all the related configuration of ZXR10 2900E in detail the problem still exists Also change one new ZXR10 2900E the problem still exists The diagnosis result is that the problem is interconnection between the two devices By the packet sniffing we find that ZXR10 2900E sends Access Request of radius protocol to account...

Page 257: ...100 Check the alarm information and configuration information the abnormality is not found Access the convergence layer switch T40G find the alarm that port 4 receives more ARP broadcast packets Check the traffic information of this port by command find that about one hundred thousand broadcast packets are added every ten seconds Analyze the access switch ZXR10 2900E of this port and find the foll...

Page 258: ...rohibit the host from logging in to the network before that the hardware of the host is not formatted and the system is installed again 3 The PCs of the whole network install ARP dedicated check and kill tool 6 10 SJ 20120409144109 002 2012 07 02 R1 0 ZTE Proprietary and Confidential ...

Page 259: ...tion File Downloading 3 10 Figure 3 8 Network Structure of Automatic Configuration File Uploading 3 11 Figure 4 1 PoE Application 4 7 Figure 4 2 Port Mirroring Configuration Instance 4 11 Figure 4 3 VLAN Transparent Transmission Configuration InstanceNetwork Topology 4 14 Figure 4 4 LACP Configuration Instance 4 19 Figure 4 5 Network Topology of IGMP Snooping Configuration Instance 4 23 Figure 4 6...

Page 260: ...HCPv6 Snooping Option82 Configuration Instance 4 89 Figure 4 30 VBAS Typical Network 4 90 Figure 4 31 VBAS Configuration InstanceTopology 4 91 Figure 4 32 PPPOE PLUS Configuration InstanceTopology 4 92 Figure 4 33 ZESR running state when the ring is complete state 4 94 Figure 4 34 ZESR running state when the ring is link failure 4 95 Figure 4 35 ZESR running state when the ring is link restore 4 9...

Page 261: ...ONFIGURATION EXAMPLE 5 4 Figure 5 2 SETTING IP ADDRESS AND PORT NUMBER OF THE SSH SERVER 5 4 Figure 5 3 SETTING SSH VERSION NUMBER 5 5 Figure 5 4 USER CONFIRMATION REQUIRED IN THE FIRST LOGIN 5 5 Figure 5 5 SSH LOGIN RESULT 5 6 Figure 5 6 MAC Change Advertisement Configuration Instance 5 12 Figure 5 7 CLUSTER MANAGEMENT NETWORKING 5 16 Figure 5 8 Switch Character Switch Rule 5 17 Figure 5 9 CLUSTE...

Page 262: ...guration Page 5 37 Figure 5 29 Terminal Log Information Page 5 38 Figure 5 30 Port Statistics Information Page 5 38 Figure 5 31 Configuration Information Page 5 39 Figure 5 32 Saving Configuration Page 5 40 Figure 5 33 Reboot Function Page 5 40 Figure 5 34 File Upload Page 5 41 Figure 5 35 Browse and Select the File 5 41 Figure 5 36 User Management Page 5 42 Figure 5 37 Adding User Page 5 43 Figur...

Page 263: ...e 2 1 Common Command Parameters 2 12 Table 2 2 Functional Keys Descriptions 2 14 Table 4 1 Port Role and Port State 4 34 Table 4 2 Syslog Log Information 4 77 Table 6 1 Maintenance Period of Ethernet Switch 6 2 V ...

Page 264: ...Tables This page intentionally left blank ...

Page 265: ...tion Protocol IP Internet Protocol IPTV Internet Protocol Television LACP Link Aggregation Control Protocol LLDP Link Layer Discovery Protocol MLD Multicast Listener Discovery MPU Management Process Unit MSTP Multiple Spanning Tree Protocol NTP Network Time Protocol OAM Operation Administration and Maintenance PPPoE Point to Point Protocol over Ethernet PVLAN Private Virtual Local Area Network VII...

Page 266: ...Simple Network Management Protocol SSH Secure Shell STP Spanning Tree Protocol TACACS Terminal Access Controller Access Control System Plus TCP Transfer Control Protocol TFTP Trivial File Transfer Protocol UDLD UniDirectional Link Detection UDP User Datagram Protocol VBAS Virtual Broadband Access Server VLAN Virtual Local Area Network VPN Virtual Private Network ZESR ZTE Ethernet Switch Ring VIII ...

Reviews:

No comments

Related manuals for ZXR10 2910E-PS

GE SE-100E Instructions Manual preview
SE-100E
Brand: GE Pages: 20
Hama S2100 Operating Instruction preview
S2100
Brand: Hama Pages: 18
Keithley 3700 series Reference Manual preview
3700 series
Brand: Keithley Pages: 434
Oase Underwater Switch 24V DC/DMX/02 Operating Instructions Manual preview
Underwater Switch 24V DC/DMX/02
Brand: Oase Pages: 40
Cudy GS1016 Quick Installation Manual preview
GS1016
Brand: Cudy Pages: 2
Waters Network Systems GS1016 Operating Manual preview
GS1016
Brand: Waters Network Systems Pages: 12
Patton electronics SmartNode 4658 Series Quick Start Manual preview
SmartNode 4658 Series
Brand: Patton electronics Pages: 12
Setra Systems SSC-2S Operation And Installation Instructions preview
SSC-2S
Brand: Setra Systems Pages: 4
Ihse Draco tera compact 480 Series User Manual preview
Draco tera compact 480 Series
Brand: Ihse Pages: 244
QSFPTEK S7300-48X2Q4C Quick Start Manual preview
S7300-48X2Q4C
Brand: QSFPTEK Pages: 12
TP-Link LiteWave LS105G Installation Manual preview
LiteWave LS105G
Brand: TP-Link Pages: 3
HDTV Supply HDTVMT0808140 User Manual preview
HDTVMT0808140
Brand: HDTV Supply Pages: 21
IPGARD SDPN-2D Manual preview
SDPN-2D
Brand: IPGARD Pages: 15
KDS KD-MSW8x3 Operating Instructions Manual preview
KD-MSW8x3
Brand: KDS Pages: 10
LEGRAND Chief Kontour KPWR Series Installation Instructions Manual preview
Chief Kontour KPWR Series
Brand: LEGRAND Pages: 8
CYP CMSI-48E Operation Manual preview
CMSI-48E
Brand: CYP Pages: 24
IOGear GCS1808H Quick Start Manual preview
GCS1808H
Brand: IOGear Pages: 12
C2G TRULINK 39973 Instruction Manual preview
TRULINK 39973
Brand: C2G Pages: 2

Brands by name

Popular brands

Load more brands