manualshive.com logo in svg

ZyXEL Communications ES-100, User Manual

The iB ES-100 Instruction Manual is a comprehensive guide for users looking to get the most out of their product. Available for free download on our website, this manual provides easy-to-follow instructions and troubleshooting tips, ensuring a seamless and efficient user experience.

Share
Download
background image

Chapter 19 IP Source Guard

MES-2110 User’s Guide

142

19.1.1  DHCP Snooping Overview

Use DHCP snooping to filter unauthorized DHCP frames on the network and to 
build the binding table dynamically. This can prevent clients from getting IP 
addresses from unauthorized DHCP servers.

19.1.1.1  Trusted vs. Untrusted Ports

Every port is either a trusted port or an untrusted port for DHCP snooping. This 
setting is independent of the trusted/untrusted setting for ARP inspection. You can 
also specify the maximum number for DHCP frames that each port (trusted or 
untrusted) can receive each second.

Trusted ports are connected to DHCP servers or other switches. The MES-2110 
discards DHCP frames from trusted ports only if the rate at which DHCP frames 
arrive is too high. The MES-2110 learns dynamic bindings from trusted ports.

Note: If DHCP is enabled and there are no trusted ports, DHCP requests will not 

succeed.

Untrusted ports are connected to subscribers. The MES-2110 discards DHCP 
frames from untrusted ports in the following situations:

• The frame is a DHCP server frame (for example, OFFER, ACK, or NACK).
• The source MAC address and source IP address in the frame do not match any 

of the current bindings.

• The frame is a RELEASE or DECLINE frame, and the source MAC address and 

source port do not match any of the current bindings.

• The rate at which DHCP frames arrive is too high.

19.1.1.2  DHCP Snooping Static Binding Table

The MES-2110 stores the binding table in volatile memory. If the MES-2110 
restarts, it loads static bindings from permanent memory but loses the dynamic 
bindings, in which case the devices in the network have to send DHCP requests 
again. As a result, it is recommended you configure the DHCP snooping database.

19.1.1.3  Configuring DHCP Snooping

Follow these steps to configure DHCP snooping on the MES-2110.

1

Enable DHCP snooping on the MES-2110.

2

Configure trusted and untrusted ports, and specify the maximum number of DHCP 
frames that each port can receive per second.

Summary of Contents for ES-100

Page 1: ...ww zyxel com MES 2110 Intelligent Layer 2 Switch Copyright 2010 ZyXEL Communications Corporation Firmware Version 1 00 Edition 4 05 2010 Default Login Details IP Address http 192 168 1 1 User Name admin Password 1234 ...

Page 2: ......

Page 3: ...ure advanced features Note It is recommended you use the web configurator to configure the MES 2110 Support Disc Refer to the included CD for support documents ZyXEL Web Site Please refer to www zyxel com for additional support documentation and product certifications Documentation Feedback Send your comments questions or suggestions to techwriters zyxel com tw Thank you The Technical Writing Team...

Page 4: ...stions about ZyXEL products Forum This contains discussions on ZyXEL products Learn from others who use ZyXEL products and share your experiences as well Customer Support Should problems arise that cannot be solved by the methods listed above you should contact your vendor If you cannot contact your vendor then contact a ZyXEL office for the region in which you bought the device See http www zyxel...

Page 5: ...key stroke is denoted by square brackets and uppercase text for example ENTER means the enter or return key on your keyboard Enter means for you to type one or more characters and then press the ENTER key Select or choose means for you to use one of the predefined choices A right angle bracket within a screen name denotes a mouse click For example Maintenance Log Log Setting means you first click ...

Page 6: ... Guide 6 Icons Used in Figures Figures in this User s Guide may use the following generic icons The MES 2110 icon is not an exact representation of your device The MES 2110 Computer Notebook computer Server DSLAM Firewall Telephone Router ...

Page 7: ...icing or disassembling Use ONLY an appropriate power adaptor or cord for your device Connect it to the right supply voltage for example 110V AC in North America or 230V AC in Europe Use ONLY power wires of the appropriate wire gauge see Chapter 25 on page 215 for details for your device Connect it to a power supply of the correct voltage see Chapter 25 on page 215 for details Do NOT allow anything...

Page 8: ...Safety Warnings MES 2110 User s Guide 8 ...

Page 9: ... System Details 61 Configuration 65 Loop Detection 71 Jumbo Frame 75 802 1x 77 Bridge 89 VLAN 97 Bandwidth Control 111 Broadcast Storm Control 113 Port Mirroring 115 Link Aggregation 117 IGMP 123 DHCP Relay Configuration 137 IP Source Guard 141 MAC 151 QoS 157 Mgmt Config and System Restart Menu 165 Command Line Interface 179 Troubleshooting 207 Product Specifications 215 ...

Page 10: ...Contents Overview MES 2110 User s Guide 10 ...

Page 11: ...22 1 2 Ways to Manage the MES 2110 23 1 3 Good Habits for Managing the MES 2110 24 Chapter 2 Hardware Installation and Connection 25 2 1 Installation Scenarios 25 2 2 Desktop Installation Procedure 25 2 3 Mounting the MES 2110 on a Rack 26 2 3 1 Rack mounted Installation Requirements 26 2 3 2 Attaching the Mounting Brackets to the MES 2110 27 2 3 3 Mounting the MES 2110 on a Rack 28 Chapter 3 Hard...

Page 12: ...e Administrative Password 58 5 4 Saving Your Configuration 58 5 5 Switch Lockout 59 5 6 Resetting the MES 2110 59 5 6 1 Reload the Configuration File 59 Chapter 6 System Details 61 6 1 Overview 61 6 2 The System Information Screen 61 6 3 The Board Information Screen 62 6 4 The DHCP Configuration Screen 63 Chapter 7 Configuration 65 7 1 Overview 65 7 2 The Port Configuration Screen 65 7 3 The Port ...

Page 13: ...Bridge 89 11 1 Overview 89 11 1 1 STP Terminology 89 11 1 2 How STP Works 90 11 1 3 STP Port States 91 11 2 The Bridge Configuration Screen 91 11 3 The RSTP System Configuration Screen 92 11 4 The Spanning Tree Port Configuration 95 Chapter 12 VLAN 97 12 1 Overview 97 12 2 Introduction to IEEE 802 1Q Tagged VLANs 97 12 2 1 Forwarding Tagged and Untagged Frames 98 12 3 The VLAN Type Screen 99 12 4 ...

Page 14: ...Link Aggregation 117 16 2 1 Link Aggregation ID 118 16 3 Static Trunking Example 118 16 4 Link Aggregation Setting 119 16 5 Link Aggregation Control Protocol 120 16 6 LACP Link Status 121 Chapter 17 IGMP 123 17 1 Overview 123 17 1 1 IP Multicast Addresses 123 17 1 2 IGMP Snooping 123 17 1 3 IGMP Snooping and VLANs 124 17 2 IGMP Configuration 124 17 2 1 IGMP VLAN Query Mode 126 17 3 IGMP Status 127...

Page 15: ...creen 153 20 4 The MAC Filter Configuration Screen 154 20 5 The MAC Limit Configuration Screen 156 Chapter 21 QoS 157 21 1 Overview 157 21 2 The QoS Base Configuration Screen 157 21 2 1 Configuring the Base Configuration Screen 158 21 3 The 802 1p Priority Table 160 21 4 The Tag Priority Table 161 21 5 The IP DSCP Priority Table 161 21 6 The Priority Override Configuration Screen 163 Chapter 22 Mg...

Page 16: ...sic Commands 182 23 6 Privileged Command Mode 183 23 7 Configuration Mode 186 23 7 1 IGMP Snooping Example 193 23 7 2 RADIUS Configuration Example 194 23 8 MVR Mode 195 23 8 1 MVR Command Example 196 23 9 VLAN Mode 197 23 9 1 VLAN ID Priority Example 198 23 10 Interface Mode 198 23 10 1 Untrusted ARP Inspection Example 203 23 10 2 Outgoing Traffic Bandwidth Limit Example 203 23 10 3 Frame Tagging ...

Page 17: ...Table of Contents MES 2110 User s Guide 17 Index 229 ...

Page 18: ...Table of Contents MES 2110 User s Guide 18 ...

Page 19: ...time With its built in Web Configurator managing and configuring the MES 2110 is easy In addition the MES 2110 can also be managed via Telnet any terminal emulator program on the console port or third party SNMP management See Chapter 25 on page 215 for a full list of software features available on the MES 2110 This section shows a few examples of using the MES 2110 in various network environments...

Page 20: ...cts different company departments RD and Sales to the corporate backbone It can alleviate bandwidth contention and eliminate server and network bottlenecks All users that need high bandwidth can connect to high speed department servers via the MES 2110 You can provide a super fast uplink connection by using a Gigabit Ethernet mini GBIC port on the MES 2110 Moreover the MES 2110 eases supervision a...

Page 21: ...be retained as all ports can freely communicate with each other Figure 3 High Performance Switched Workgroup Application 1 1 4 IEEE 802 1Q VLAN Application Examples A VLAN Virtual Local Area Network allows a physical network to be partitioned into multiple logical networks Stations on a logical network belong to one group A station can belong to more than one group With VLAN a station cannot direc...

Page 22: ...ups too Figure 4 Shared Server Using VLAN Example 1 1 5 Metro Ethernet The MES 2110 is ideal for connecting users to an Ethernet network that spans a metropolitan area In the following example the MES 2110 is one of many switches that connect users in the metropolitan area to the Internet The metro ethernet is based on a star or hub and spoke topology though other topologies such as ring or mesh a...

Page 23: ...methods to manage the MES 2110 Web Configurator This is recommended for everyday management of the MES 2110 using a supported web browser See Chapter 5 on page 51 Command Line Interface Line commands offer an alternative to the web configurator and in some cases are necessary to configure advanced features See the CLI Reference Guide SNMP The MES 2110 can be monitored by an SNMP manager See Sectio...

Page 24: ...racters such as numbers and letters Write down the password and put it in a safe place Back up the configuration and make sure you know how to restore it Restoring an earlier working configuration may be useful if the device becomes unstable or even crashes If you forget your password you will have to reset the MES 2110 to its factory default settings If you backed up an earlier configuration file...

Page 25: ...ast 4 inches 10 cm of clearance at the front and 3 4 inches 8 cm at the back of the MES 2110 This is especially important for enclosed rack installations 2 2 Desktop Installation Procedure 1 Make sure the MES 2110 is clean and dry 2 Set the MES 2110 on a smooth level surface strong enough to support the weight of the MES 2110 and the connected cables Make sure there is a power outlet nearby 3 Make...

Page 26: ... 3 Mounting the MES 2110 on a Rack The MES 2110 can be mounted on an EIA standard size 19 inch rack or in a wiring closet with other equipment Follow the steps below to mount your MES 2110 on a standard EIA rack using a rack mounting kit Note The following sections feature the AC model of the MES 2110 but are equally applicable to the DC model 2 3 1 Rack mounted Installation Requirements Two mount...

Page 27: ...ng the unit 2 3 2 Attaching the Mounting Brackets to the MES 2110 1 Position a mounting bracket on one side of the MES 2110 lining up the four screw holes on the bracket with the screw holes on the side of the MES 2110 Figure 7 Attaching the Mounting Brackets 2 Using a 2 Philips screwdriver install the M3 flat head screws through the mounting bracket holes into the MES 2110 3 Repeat steps 1 and 2 ...

Page 28: ...he MES 2110 on one side of the rack lining up the two screw holes on the bracket with the screw holes on the side of the rack Figure 8 Mounting the MES 2110 on a Rack 2 Using a 2 Philips screwdriver install the M5 flat head screws through the mounting bracket holes into the rack 3 Repeat steps 1 and 2 to attach the second mounting bracket on the other side of the rack ...

Page 29: ... rear panel of the MES 2110 and shows you how to make the hardware connections 3 1 Front Panel The following figure shows the front panel of the MES 2110 Figure 9 Front Panel Ethernet Ports Dual Personality Interfaces Console Port LEDs DC Terminal Block Header Mini GBIC slots AC Power Connection ...

Page 30: ...iating port can detect and adjust to the optimum Ethernet speed 10 100 1000 Mbps and duplex mode full duplex or half duplex of the connected device Table 1 Front Panel Connections LABEL DESCRIPTION Power Connection Connect an appropriate power supply to this port 8 10 100 Mbps RJ 45 Ethernet Ports Connect these ports to a computer a hub an Ethernet switch or router Two Mini GBIC Slots Use mini GBI...

Page 31: ... pre configured speed and duplex mode when making a connection thus requiring you to make sure that the settings of the peer Ethernet port are the same in order to connect 3 1 2 1 Default Ethernet Negotiation Settings The factory default negotiation settings for the Gigabit ports on the MES 2110 are Speed Auto Duplex Auto Flow control Off Link Aggregation Disabled 3 1 2 2 Auto crossover All ports ...

Page 32: ...ni GBIC transceiver SFP module 1 Insert the transceiver into the slot with the exposed section of PCB board facing down 2 Press the transceiver firmly until it clicks into place 3 The MES 2110 automatically detects the installed transceiver Check the LEDs to verify that it is functioning properly 4 Close the transceiver s latch latch styles vary 5 Connect the fiber optic cables to the transceiver ...

Page 33: ...w Use the following procedures to connect the MES 2110 to a power source after you have installed it Note Check the power supply requirements in Chapter 25 on page 215 and make sure you are using an appropriate power source Keep the power supply switch and the MES 2110 s power switch in the OFF position until you come to the procedure for turning on the power Use only power wires of the required d...

Page 34: ...e power wires must be greater than 20 Amps The power supply to which the MES 2110 connects must have a built in circuit breaker or switch to toggle the power Note When installing the power wire push it wire firmly into the terminal as deep as possible and make sure that no exposed bare wire can be seen or touched An exposed wire from a DC power source can be dangerous Use extreme care when connect...

Page 35: ...gnostic tests Off The power is off or the system is not ready malfunctioning Ethernet Ports LINK ACT Green Blinking The system is transmitting receiving to from a 10 Mbps Ethernet network On The link to a 10 Mbps Ethernet network is up Amber Blinking The system is transmitting receiving to from a 100 Mbps Ethernet network On The link to a 100 Mbps Ethernet network is up Off The link to an Ethernet...

Page 36: ...000 Mbps Ethernet network On The link to a 10 Mbps or a 1000 Mbps Ethernet network is up Amber Blinking The system is transmitting receiving to from a 100 Mbps Ethernet network On The link to a 100 Mbps Ethernet network is up Off The link to an Ethernet network is down Table 2 LED Descriptions continued LED COLOR STATU S DESCRIPTION ...

Page 37: ...s allows it to determine which ports should specifically receive multicast traffic in order to prevent multicasting flooding across all of its ports This tutorial shows you how to enable IGMP snooping set IGMP to automatic query mode and then set port 10 to static To configure IGMP snooping 1 In the Web Configurator open the Configuration IGMP Menu IGMP Configuration screen 2 Set IGMP Snooping to ...

Page 38: ...DIUS Configuration RADIUS is a protocol explicitly designed to manage single location authentication and authorization for an entire network It also provides accounting services for client usage of network resources This tutorial shows you how to set up one RADIUS server 172 16 10 10 and a shared secret key hello for authentication To assign a RADIUS server to the MES 2110 1 Open the Configuration...

Page 39: ...d info screen add VLAN ID 99 and click Apply The new VLAN ID appears in the Tag VLAN Status table 3 Open the Configuration 802 1x Global Configuration screen For the 802 1x option select Enable For the Guest VLAN option select Enable and enter 99 in the associated field Click Apply to save these changes ...

Page 40: ...Configuration screen For Server IP Address enter 172 16 10 10 and for Shared Server Key enter hello then click Apply 5 Finally open the Configuration 802 1x Port Configuration screen From the Port Number menu select Port 1 if not already selected set the Guest VLAN option to Enable and click Apply ...

Page 41: ...rk but rather just to the intended computers This tutorial shows you set up a Multicast VLAN Registration MVR group and then direct all multicast traffic with matching VLAN IDs to it For the purposes of this tutorial use the following settings Note Make sure your Configuration VLAN Menu VLAN Type is set to Tag Based 802 1q before proceeding Table 3 MVR Tutorial Values SETTING VALUE VLAN Name Strea...

Page 42: ...ynamic 6 In the Source Port column deselect all ports except Port 9 This will be the source port which receives all incoming multicasts from upstream 7 In the Receiver Port column select Ports 1 4 and Port 10 These ports are now the designated downstream recipients for all incoming multicasts 8 In the Tagging column enable tagging for Port 9 and 10 9 Click Apply to store these changes 10 Click the...

Page 43: ...reen select the Multicast VLAN ID you created in step 4 from the list In this example it is VLAN ID 100 12 Enter a Group ID of 1 a Start Address of 227 3 3 1 and a Quantity of 10 13 Click Add then click Save Settings in the navigation panel to store the changes permanently 11 12 ...

Page 44: ...ake sure your Configuration VLAN Menu VLAN Type is set to Tag Based 802 1q before proceeding To configure VLAN ID priority 1 Open the Configuration VLAN Menu Tag Based 802 1q Tag Based info screen 2 For VLAN ID select Add from the menu and enter 2 in the associated field 3 Set the Priority to 1 4 For Pri Overide select Enable 5 In the Member column for Port 1 select Tagging 6 Click Apply 2 3 4 1 5...

Page 45: ... ARP Inspection This tutorial shows you how to assign port 1 to 8 as untrusted for ARP inspection Generally if you want to enable ARP inspection on the device you also have to enable DHCP snooping first to build a binding table To set up ARP inspection 1 Open the Configuration IP Source Guard DHCP DHCP Snooping Configuration screen 3 1 2 ...

Page 46: ...onfiguration IP Source Guard ARP Inspection ARP Inspection Configuration screen 5 Set Action to Enable and ARP Inspection VLAN Mode to All VLAN 6 In the Trust column select Port 9 and Port 10 7 In the Untrust column select Ports 1 8 8 Click Apply 9 Click Save Settings in the navigation panel to store the changes permanently 4 5 6 7 8 ...

Page 47: ... 1 Mbps for Port 2 To configure outgoing traffic bandwidth 1 Open the Configuration Bandwidth Control screen 2 Set the Port Number to Port 2 3 In the Egress row set the Rate Level to 1M 100M 1M the Rate Limit to 1000 k and the Active option to Enable 4 Click Apply 5 Click Save Settings in the navigation panel to store the changes permanently 2 1 3 4 ...

Page 48: ... The scenario is that both A and B are Service Provider s Network SPN customers with VPN tunnels between their head offices and branch offices respectively Both have an identical VLAN tag for their VLAN group The service provider can separate these two VLANs within its network by adding tag 37 to distinguish customer A and tag 48 to distinguish customer B at edge device x and then stripping those ...

Page 49: ...ort 2 use the following settings for Role select Access for PVID use 37 and for Priority choose 1 Note If the port for which you are configuring frame tagging is the same port by which you connect to the MES 2110 then your computer should use the same PVID or you should switch a non tagged port 4 Click Apply 5 Click Save Settings in the navigation panel to store the changes permanently 2 1 3 4 ...

Page 50: ...Chapter 4 Tutorials MES 2110 User s Guide 50 ...

Page 51: ...d later or Firefox 1 5 and later versions The recommended screen resolution is 1024 by 768 pixels In order to use the web configurator you need to allow Web browser pop up windows from your device Web pop up blocking is enabled by default in Windows XP SP Service Pack 2 JavaScript enabled by default Java permissions enabled by default 5 2 System Login 1 Start your web browser 2 Type http and the I...

Page 52: ...b Configurator MES 2110 User s Guide 52 3 The login screen appears Enter the user name admin by default and password 1234 by default Figure 16 Web Configurator Login 4 Click OK to view the first web configurator screen ...

Page 53: ...irst screen that displays when you access the web configurator The following figure shows the navigating components of a web configurator screen Figure 17 Web Configurator Main Screen A Click the menu items to open submenu links and then click on a submenu link to open the screen in the main window A ...

Page 54: ... Configurator MES 2110 User s Guide 54 In the navigation panel click a main link to reveal a list of submenu links Table 4 Navigation Panel Sub links Overview SYSTEM DETAILS CONFIGURATION MGMT CONFIG SYSTEM RESTART MENU ...

Page 55: ...figuration Port Configuration 802 1x Status Bridge Menu Bridge Config RSTP System Config RSTP Per Port Config VLAN Menu VLAN Type Port Based Tag Based 802 1q VLAN Stacking Port Info Tag Based Info Management VLAN Bandwidth Control Storm Control Port Mirroring Trunk Config Aggregator Setting LACP Configuration LACP Link Status IGMP Menu IGMP Config IGMP Groups Status MVR Serial Port Config SNMP Con...

Page 56: ...ti on This link takes you to a screen where you can configure settings for individual MES 2110 ports Port Status This link takes you to a screen that shows port settings for individual MES 2110 ports Rmon Status This link takes you to a screen where you can view statistics on the traffic going through each port Loop Detection This link takes you to a screen where you can configure protection again...

Page 57: ... MES 2110 activate MAC address learning and set the maximum number of MAC addresses to learn on a port view the MAC addresses and types of devices attached to what ports QoS Menu This link takes you to screens where you can configure priority levels for traffic transmitted through each port Mgmt Config Serial Port Config This link takes you to a screen where you can configure the parameters for co...

Page 58: ...S 2110 s storage that remains even if the MES 2110 s power is turned off If you don t use Save Settings all configuration changes will only apply until you restart the MES 2110 Note Use the Save Settings link when you are done with a configuration session Note After saving changes to the IP Address Subnet Mask or Gateway settings the MES 2110 will need to reboot to put them into effect after promp...

Page 59: ...elf out try using out of band management via the console port to configure the MES 2110 5 6 Resetting the MES 2110 If you lock yourself and others from the MES 2110 or forget the administrator password you will need to reload the factory default configuration file or reset the MES 2110 back to the factory defaults 5 6 1 Reload the Configuration File Uploading the factory default configuration file...

Page 60: ...the administrative password and press Enter Simply press Enter if you did not set up a password 5 Type enable and press Enter to turn on administrative commands 6 Type reset default and press Enter to restore the system to the factory defaults The MES 2110 will restart Figure 19 Resetting the MES 2110 Via the Console Port The MES 2110 is now reinitialized with a default configuration file Username...

Page 61: ... Details screens show general system information about the MES 2110 You can also use the screens to configure system and DHCP client settings 6 2 The System Information Screen Click System Details System Info to open the following screen Figure 20 System Details System Info ...

Page 62: ...ters spaces are allowed Location Enter the geographic location of your MES 2110 You can use up to 32 printable ASCII characters spaces are allowed DHCP Client This shows whether the DHCP client is Enabled or Disabled If DHCP is disabled you must enter an IP address subnet mask and gateway in the following fields Otherwise a DHCP server will assign this information to the MES 2110 See Section 6 4 o...

Page 63: ...ystem Details DHCP Config LABEL DESCRIPTION DHCP Client Use this to turn the DHCP client on or off Turn on the DHCP client if you have a DHCP server that can assign the MES 2110 an IP address subnet mask and a default gateway IP address automatically DHCP Client State This shows whether the DHCP client is Enabled or Disabled DHCP Leased Time This is how long ago the MES 2110 got an IP address from...

Page 64: ...ils MES 2110 User s Guide 64 Once you click the Apply button the following message displays reminding you to save your settings in the Save Settings screen and reboot the MES 2110 Figure 23 System Details DHCP Config Apply ...

Page 65: ...2110 settings 7 2 The Port Configuration Screen Use this screen to configure MES 2110 port settings You can assign a unique name to the ports select its speed setting and enable or disable auto negotiation Click Configuration Port Configuration to open the following screen Figure 24 Configuration Port Configuration ...

Page 66: ...detecting the signal on the cable and using half duplex mode When the MES 2110 s auto negotiation is turned off a port uses the pre configured speed and duplex mode when making a connection thus requiring you to make sure that the settings of the peer port are the same in order to connect Flow Control Use this to enable or disable flow control A concentration of traffic on a port decreases port ba...

Page 67: ...o the ZyXEL Device s run time memory The ZyXEL Device loses these changes if it is turned off or loses power so use the Save Settings link in the navigation panel to save your changes to the non volatile memory Table 10 Configuration Port Configuration LABEL DESCRIPTION Table 11 Configuration Port Status LABEL DESCRIPTION Port This identifies the Ethernet port Name This is the name you assigned to...

Page 68: ...s Duplex This is the the port s duplex status Half or Full Link This shows the port s connection status AUTO This shows whether auto negotiation is On or Off Flow Control This shows whether flow control is Enabled or Disabled Port Configuration Click this to configure port settings in the Port Configuration screen Table 11 Configuration Port Status continued LABEL DESCRIPTION Table 12 Configuratio...

Page 69: ... CRC errors InOversize This field shows the number of frames received with a length that was out of range TX The following fields show detailed information about frames transmitted OutUnicasts This field shows the number of good unicast frames transmitted OutBroadcasts This field shows the number of good broadcast frames transmitted Late This is the number of times a late collision is detected tha...

Page 70: ... of frames including bad frames received that were between 256 and 511 octets in length 512to1023 Octets This field shows the number of frames including bad frames received that were between 512 and 1023 octets in length 1024toMax Octets This field shows the number of frames including bad frames received that were between 1024 and the maximum octets in length Table 12 Configuration Rmon Status con...

Page 71: ... to a switch in loop state then it will be affected by the switch in loop state in the following way It will receive broadcast messages sent out from the switch in loop state It will receive its own broadcast messages that it sends out as they loop back It will then re broadcast those messages again The following figure shows port N on switch A connected to switch B Switch B is in loop state When ...

Page 72: ...hen shuts down port N to ensure that the rest of the network is not affected by the switch in loop state Figure 28 Loop detection Probe Frame Note After resolving the loop problem on your network you can re activate the disabled port via the web configurator or via commands See the CLI Reference Guide 8 2 The Loop Detection Screen Click Configuration Loop Detection to open the following screen Fig...

Page 73: ... switch Users can configure a unicast MAC address to solve this problem Port This is the port number Enable Disable Select Enable or Disable to have the MES 2110 apply loop detection feature on this port When the loop detection feature is enabled the MES 2110 sends probe frames from this port to check if the switch it is connected to is in loop state If the switch that this port is connected is in...

Page 74: ...Chapter 8 Loop Detection MES 2110 User s Guide 74 ...

Page 75: ...en Figure 30 Configuration Jumbo Frame The following table describes the labels in this screen Table 14 Configuration Jumbo Frame LABEL DESCRIPTION Frame Size Configure the jumbo frame size 1522 to 1632 The bigger the frame size the better the performance Undo Click this to restore your last saved settings Apply Click Apply to save your changes to the ZyXEL Device s run time memory The ZyXEL Devic...

Page 76: ...Chapter 9 Jumbo Frame MES 2110 User s Guide 76 ...

Page 77: ...ial In User Service RFC 2138 2139 protocol to validate users See Section 10 6 on page 84 for more information on configuring your RADIUS server settings 10 1 1 IEEE 802 1x Authentication The following figure illustrates how a client connecting to a IEEE 802 1x authentication enabled port goes through a validation process The MES 2110 prompts the client for login information in the form of a user n...

Page 78: ...nrestricted areas of the network such as the Internet The rights granted to the Guest VLAN depends on how the network administrator configures switches or routers with the Guest network feature Note Use the MES 2110 to assign the Guest VLAN to a port This assignment should corresponds to the network s Guest VLAN The Guest network is not configurable in this MES 2110 To enable port authentication f...

Page 79: ...o authenticate a client twice If the client does not respond to the first authentication request the MES 2110 tries again If the client still does not respond to the second request the MES 2110 sends the client to the Guest VLAN The client needs to send a new request to be authenticated by the MES 2110 again Guest VLAN Select Enable then enter the number that identifies the Guest VLAN Make sure th...

Page 80: ...he MES 2110 The key must be the same on the external authentication server and your MES 2110 The key is not sent over the network Server UDP Port Number Enter the port number of the RADIUS server The default port number is 1812 Server Accounting Port Number Enter the port number of the external accounting server The default port number is 1813 You need not change this value unless your network adm...

Page 81: ...e navigation panel to display the screen as shown Figure 34 Configuration Port Configuration The following table describes the labels in this screen Table 17 Configuration Port Configuration LABEL DESCRIPTION Port Select a port number to configure Active Enable this to permit 802 1x authentication on the MES 2110 Note You must first enable 802 1x authentication on the MES 2110 before configuring i...

Page 82: ...as to re enter his or her username and password to stay connected to the port Default is 3600 minutes or 1 hour Port This indicates the port number Active This indicates whether 802 1x authentication is enabled or disabled for this port Guest VLAN This indicates whether Guest VLAN is enabled or disabled for this port Reauthenticat ion This indicates whether Reauthentication is enabled or disabled ...

Page 83: ...led on the Switch Reauth Max This shows the number of times the MES 2110 attempts to authenticate clients for port access Server IP Address This is the IP address of the RADIUS server Server Shared Key This is the password shared between the external authentication server and the MES 2110 Server UDP Port Number This is the port number of the RADIUS server Server Accounting Port Number This is the ...

Page 84: ...ix lists the RADIUS attributes supported by the MES 2110 Guest VLAN This shows if a Guest VLAN is enabled on the port Reauthenticat ion This shows if a subscriber has to periodically re enter his or her username and password to stay connected to the port Reauth Period This shows how often in minutes a client has to re enter his or her username and password to stay connected to the port Undo Click ...

Page 85: ...following sections list the attributes sent from the MES 2110 to the RADIUS server when performing authentication 10 6 3 1 Attributes Used for Authenticating Privilege Access User Name The format of the User Name attribute is enab where is the privilege level 1 14 User Password NAS Identifier NAS IP Address 10 6 3 2 Attributes Used to Login Users User Name User Password NAS Identifier NAS IP Addre...

Page 86: ...attributes are listed in the following table along with the time that they are sent the difference between Console and Telnet SSH Exec events is that the Telnet SSH events utilize the Calling Station Id attribute Table 20 RADIUS Attributes Exec Events via Console ATTRIBUTE START INTERIM UPDATE STOP User Name Y Y Y NAS Identifier Y Y Y NAS IP Address Y Y Y Service Type Y Y Y Acct Status Type Y Y Y ...

Page 87: ...IBUTE START INTERIM UPDATE STOP Table 22 RADIUS Attributes Exec Events via 802 1x ATTRIBUTE START INTERIM UPDATE STOP User Name Y Y Y NAS IP Address Y Y Y NAS Port Y Y Y Class Y Y Y Called Station Id Y Y Y Calling Station Id Y Y Y NAS Identifier Y Y Y NAS Port Type Y Y Y Acct Status Type Y Y Y Acct Delay Time Y Y Y Acct Session Id Y Y Y Acct Authentic Y Y Y Acct Input Octets Y Y Acct Output Octets...

Page 88: ...Chapter 10 802 1x MES 2110 User s Guide 88 ...

Page 89: ...y propagated throughout the network from the device that generates the topology change In STP a longer delay is required as the device that causes a topology change first notifies the root bridge that then notifies the network Both RSTP and STP flush unwanted learned addresses from the filtering database In RSTP the port states are Discarding Learning and Forwarding Note In this user s guide STP r...

Page 90: ...twork frames are therefore only forwarded between enabled ports eliminating any possible network loops STP aware switches exchange Bridge Protocol Data Units BPDUs periodically When the bridged LAN topology changes a new spanning tree is constructed Once a stable network topology has been established all bridges listen for Hello BPDUs Bridge Protocol Data Units transmitted from the root bridge If ...

Page 91: ...following screen Figure 36 Configuration Bridge Menu Bridge Config Table 24 STP Port States PORT STATE DESCRIPTION Disabled STP is disabled default Blocking Only configuration and management BPDUs are received and processed Listening All BPDUs are received and processed Note The listening state does not exist in RSTP Learning All BPDUs are received and processed Information frames are submitted to...

Page 92: ... Port Select Enable to have the port participate in RSTP when you select RSTP 802 1W in the Ring Protocol field Select Disable so that the port will not participate in RSTP when you select RSTP 802 1W in the Ring Protocol field Select Tunnel so that the port will not participate in RSTP When the tunnel port receives Bridge Protocol Data Units BPDU frames the MES 2110 forwards the frames to other t...

Page 93: ...lo Time sec This is the time interval in seconds at which the root switch transmits a configuration message The root bridge determines Hello Time Max Age and Forwarding Delay Forward Delay sec This is the time in seconds the root switch will wait before changing states that is listening to learning to forwarding Note The listening state does not exist in RSTP Max age sec This is the maximum time i...

Page 94: ...U before attempting to reconfigure All MES 2110 ports except for designated ports should receive BPDUs at regular intervals Any port that ages out STP information provided in the last BPDU becomes the designated port for the attached LAN If it is a root port a new root port is selected from among the MES 2110 ports attached to the network The allowed range is 6 to 40 seconds Undo Click this to res...

Page 95: ...port to configure Priority 1 255 Enter the port s priority rating Priority decides which port should be disabled when more than one port forms a loop in a switch Ports with a higher priority numeric value are disabled first The allowed range is between 0 and 255 and the default value is 128 Cost 1 65535 Enter the port s path cost Path cost is the cost of transmitting a frame on to a LAN through th...

Page 96: ...se the Save Settings link in the navigation panel to save your changes to the non volatile memory when you are done configuring Port This indicates the port index number Type This indicates the cable type connected to the port Priority 1 255 This indicates the port priority Cost 1 65535 This indicates the path cost for the port Edge This indicates whether the port is connected to an end node On or...

Page 97: ...ag Protocol Identifier residing within the type length field of the Ethernet frame and two bytes of TCI Tag Control Information starts after the source address field of the Ethernet frame The CFI Canonical Format Indicator is a single bit flag always set to zero for Ethernet switches If a frame received at an Ethernet port has a CFI set to 1 then that frame should not be forwarded as it is to an u...

Page 98: ...e for common IEEE 802 1Q VLAN terminology Table 28 IEEE 802 1Q VLAN Terminology VLAN PARAMETER TERM DESCRIPTION VLAN Type Permanent VLAN This is a static VLAN created manually Dynamic VLAN This is a VLAN configured by a GVRP registration deregistration process VLAN Administrative Control Registration Fixed Fixed registration ports are permanent VLAN members Registration Forbidden Ports with regist...

Page 99: ...iber ports to talk to each other for example between conference rooms in a hotel you must define the egress an egress port is an outgoing port that is a port through which a data frame leaves for both ports Port based VLANs are specific only to the MES 2110 on which they were created Table 29 Configuration VLAN Menu VLAN Type LABEL DESCRIPTION VLAN Type Use this to set the MES 2110 to Port Based o...

Page 100: ...is to enable or disable switch management via the web configurator Telnet or SNMP manager Select the port through which you can manage the MES 2110 If you disable this feature then you cannot access the web configurator from a computer connected to this port Apply Click Apply to save your changes to the MES 2110 s run time memory The MES 2110 loses these changes if it is turned off or loses power ...

Page 101: ...vice provider to provide different service based on specific VLANs for many different customers A service provider s customers may require a range of VLANs to handle multiple applications A service provider s customers can assign their own inner VLAN tags on ports for these applications The service provider can assign an outer VLAN tag for each customer Therefore there is no VLAN tag overlap among...

Page 102: ...g IEEE 802 1Q frame switching Select Access Port for ingress ports on the service provider s edge devices 1 and 2 in the VLAN stacking example figure The incoming frame is treated as untagged so a second VLAN tag outer VLAN tag can be added Note Static VLAN Tx Tagging MUST be disabled on a port where you choose Normal or Access Port Select Tunnel Port available for Gigabit ports only for egress po...

Page 103: ... stacking example figure If the VLAN stacking port role is Tunnel then the MES 2110 only adds the SP TPID tag to all incoming frames on the service provider s edge devices 1 and 2 in the VLAN stacking example figure that have an SP TPID different to the one configured on the MES 2110 If an incoming frame s SP TPID is the same as the one configured on the MES 2110 then the MES 2110 will not add the...

Page 104: ... 32 Single and Double Tagged 802 11Q Frame Format DA SA Len Etype Data FCS Untagged Ethernet frame DA SA TPID Priority VID Len Etype Data FCS IEEE 802 1Q customer tagged frame DA SA SPTPID Priority VID TPID Priority VID Len Etype Data FCS Double tagged frame Table 33 802 1Q Frame DA Destination Address Priority 802 1p Priority SA Source Address Len Etype Length and type of Ethernet frame SP TPID S...

Page 105: ... the frame carries IEEE 802 1Q tag information Choose 0x8100 or 0x9100 from the drop down list box or select Others and then enter a four digit hexadecimal number from 0x0000 to 0xFFFF 0x denotes a hexadecimal number It does not have to be typed in the Others text field Port The port number identifies the port you are configuring Role Select Access to have the MES 2110 add the SP TPID tag to all i...

Page 106: ... run time memory The MES 2110 loses these changes if it is turned off or loses power so use the Save Settings link in the navigation panel to save your changes to the non volatile memory when you are done configuring VLAN Stacking Status Port1 10 This is the port number Active This shows whether VLAN stacking is enabled or disabled on the MES 2110 SP TPID This is the service provider VLAN tag Role...

Page 107: ...etween 1 and 4094 as the port VLAN ID Ingress Filter Use this to determine the action about incoming traffic passing through the port NonMember Forward Untagged Forward Forward frames that do not belong to any VLAN group and forward untagged VLAN frames NonMember Drop Untagged Forward Drop frames that do not belong to any VLAN group and forward untagged VLAN frames NonMember Drop Untagged Drop Dro...

Page 108: ...settings Apply Click Apply to save your changes to the MES 2110 s run time memory The MES 2110 loses these changes if it is turned off or loses power so use the Save Settings link in the navigation panel to save your changes to the non volatile memory when you are done configuring Table 35 Configuration VLAN Menu Tag Based Port Info LABEL DESCRIPTION Table 36 Configuration VLAN Menu Tag Based Tag ...

Page 109: ...the non volatile memory when you are done configuring Tag VLAN Status M member U untag T tag Add VLAN Configuration VLAN ID Enter a VLAN ID number from 1 to 4094 Priority This is the priority you want to assign to the Tag based VLAN Pri Override Select Enable to ignore the priority level assigned to the transmitted frames Otherwise select Disable Port 1 10 A Member port is a permanent member of th...

Page 110: ...is is the current management VLAN VLAN ID Enter an ID number from 1 to 4094 1 is the default value If you change this you will be disconnected from the web configurator unless your current access belongs to the new VLAN Undo Click this to restore your last saved settings Apply Click Apply to save your changes to the MES 2110 s run time memory The MES 2110 loses these changes if it is turned off or...

Page 111: ...h control means defining a maximum allowable bandwidth for incoming and or out going traffic flows on a port 13 2 Bandwidth Control Setup Click Configuration Bandwidth Control in the navigation panel to bring up the screen as shown next Figure 46 Configuration Bandwidth Control ...

Page 112: ...his field must be within the rate level range Active Use this to enable or disable bandwidth control Undo Click this to restore your last saved settings Apply Click Apply to save your changes to the MES 2110 s run time memory The MES 2110 loses these changes if it is turned off or loses power so use the Save Settings link in the navigation panel to save your changes to the non volatile memory when...

Page 113: ...ion lookup failure DLF frames the MES 2110 receives per second on the ports When the maximum number of allowable broadcast multicast and or DLF frames is reached per second the subsequent frames are discarded Enable this feature to reduce broadcast multicast and or DLF frames in your network You can specify limits for each frame type on each port Click Configuration Storm Control in the navigation...

Page 114: ...nable or disable storm control Undo Click this to restore your last saved settings Apply Click Apply to save your changes to the MES 2110 s run time memory The MES 2110 loses these changes if it is turned off or loses power so use the Save Settings link in the navigation panel to save your changes to the non volatile memory when you are done configuring Storm Control Status Port This is the port n...

Page 115: ...traffic flow to a monitor port the port you copy the traffic to in order that you can examine the traffic from the monitor port without interference Click Configuration Port Mirroring in the navigation panel to display the following screen Use this screen to select a monitor port and specify the traffic flow to be copied to the monitor port Figure 48 Configuration Port Mirroring ...

Page 116: ... you copy the traffic to in order to examine it in more detail without interfering with the traffic flow on the original port s Select the monitor port number from the list Monitored Port Select the port s to mirror the traffic on a port Undo Click this to restore your last saved settings Apply Click Apply to save your changes to the MES 2110 s run time memory The MES 2110 loses these changes if i...

Page 117: ...t is recommended to implement static link aggregation only This ensures increased network stability and control over the trunk groups on your MES 2110 See Section 16 3 on page 118 for a static port trunking example 16 2 Dynamic Link Aggregation The MES 2110 adheres to the IEEE 802 3ad standard for static and dynamic LACP port trunking The MES 2110 supports the link aggregation IEEE802 3ad standard...

Page 118: ...g Example This example shows you how to create a static port trunk group for ports 2 5 1 Make your physical connections make sure that the ports that you want to belong to the trunk group are connected to the same destination The following figure shows ports 2 5 on switch A connected to switch B Figure 49 Trunking Example Physical Connections Table 41 Link Aggregation ID Local Switch SYSTEM PRIORI...

Page 119: ... select the LACP option Click Apply when you are done Figure 50 Trunking Example Configuration Screen Your trunk group 1 configuration is now complete you do not need to go to any additional screens 16 4 Link Aggregation Setting Click Configuration Trunk Config Aggregator Setting to display the screen shown next See Section 16 1 on page 117 for more information on link aggregation Figure 51 Config...

Page 120: ... a trunk group For Groups 1 to 4 you can select up to four port members for each group For Group 5 you can select the two Gigabit ports as the members LACP Use this to enable or disable LACP port trunking Undo Click this to restore your last saved settings Apply Click Apply to save your changes to the MES 2110 s run time memory The MES 2110 loses these changes if it is turned off or loses power so...

Page 121: ...ast saved settings Apply Click Apply to save your changes to the MES 2110 s run time memory The MES 2110 loses these changes if it is turned off or loses power so use the Save Settings link in the navigation panel to save your changes to the non volatile memory when you are done configuring Table 44 Configuration Trunk Config LACP Configuration continued LABEL DESCRIPTION Table 45 Configuration Tr...

Page 122: ...16 Link Aggregation MES 2110 User s Guide 122 Key This is the peer MES 2110 s key value Priority This is the port priority level Table 45 Configuration Trunk Config LACP Link Status continued LABEL DESCRIPTION ...

Page 123: ...eiving devices IP addresses in the Class D range 224 0 0 0 to 239 255 255 255 are used for IP multicasting Certain IP multicast numbers are reserved by IANA for special purposes see the IANA web site for more information 17 1 2 IGMP Snooping A MES 2110 can passively snoop on IGMP frames transferred between IP multicast routers switches and IP multicast hosts to learn the IP multicast group members...

Page 124: ...GMP frames This is referred to as auto mode Alternatively you can specify the VLANs that IGMP snooping should be performed on This is referred to as fixed mode In fixed mode the MES 2110 does not learn multicast group membership of any VLANs other than those explicitly added as an IGMP snooping VLAN 17 2 IGMP Configuration Use this screen to configure the MES 2110 s IGMP settings Click Configurati...

Page 125: ... ID of the static VLAN s that the MES 2110 includes in its learning process of multicast group membership of the ports Enter a VLAN ID between 1 and 4094 IGMP VLAN Query Mode Click this to display the IGMP VLAN Query Mode screen Port 1 10 This shows the port numbers that you can configure individually using the fields described below The Switch can forward multicast frames to IGMP static ports wit...

Page 126: ...his port IGMP VLAN Mode This indicates whether the IGMP VLAN Mode is set to Auto or Fixed for this port IGMP Query Mode This indicates whether the IGMP Query Mode is set to Auto or Disable for this port IGMP VLAN This indicates the static VLAN ID the MES 2110 uses to learn multicast group membership Immediate Leave This indicates whether Immediate Leave is enabled or disabled for this port Static ...

Page 127: ...cast stream in the multicast VLAN This improves bandwidth utilization with reduced multicast traffic in the subscriber VLANs and simplifies multicast group management Apply Click Apply to save your changes to the MES 2110 s run time memory The MES 2110 loses these changes if it is turned off or loses power so use the Save Settings link in the navigation panel to save your changes to the non volati...

Page 128: ... in either dynamic or compatible mode In dynamic mode the MES 2110 sends IGMP leave and join reports to the other multicast devices such as multicast routers or servers in the multicast VLAN This allows the multicast devices to update the multicast forwarding table to forward or not forward multicast traffic to the receiver ports In compatible mode the MES 2110 does not send any IGMP reports In th...

Page 129: ...the MES 2110 If there is another subscriber device connected to this port in the same subscriber VLAN the receiving port will still be on the list of forwarding destination for the multicast traffic Otherwise the MES 2110 removes the receiver port from the forwarding table Figure 58 MVR Multicast Television Example 17 5 General MVR Configuration Use the MVR screen to create multicast VLANs and sel...

Page 130: ... single multicast VLAN to be shared among different subscriber VLANs on the network Name Enter a descriptive name up to 32 printable ASCII characters for identification purposes Multicast VLAN ID Enter the VLAN ID 1 to 4094 of the multicast VLAN Query Mode Choose Auto to have the MES 2110 select the querier automatically or Disable to turn this feature off Mode Specify the MVR mode on the MES 2110...

Page 131: ...ct this checkbox if you want the ports to tag the VLAN ID in all outgoing frames transmitted Undo Click this to load your last saved settings Apply Click Apply to save your changes to the MES 2110 s run time memory The MES 2110 loses these changes if it is turned off or loses power so use the Save Settings link in the navigation panel to save your changes to the non volatile memory when you are do...

Page 132: ...mation on IP multicast addresses Quantity Specify the number of IP addresses to include in the multicast group Undo Click this to load your last saved settings Add Click Add to save your changes to the MES 2110 s run time memory The MES 2110 loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when y...

Page 133: ...mple where ports 1 2 and 3 on the MES 2110 belong to VLAN 1 In addition port 7 belongs to the multicast group with VID 200 to receive multicast traffic the News and Movie channels from the remote streaming media server S Computers A B and C in VLAN are able to receive the traffic Figure 61 MVR Configuration Example ...

Page 134: ...e MES 2110 create a multicast group in the MVR screen and set the receiver and source ports Figure 62 MVR Configuration Example To set the MES 2110 to forward the multicast group traffic to the subscribers configure multicast group settings in the Group Configuration screen The ...

Page 135: ...e 135 following figure shows an example where two multicast groups Group ID 1 for News and Group ID 2 for Movie are configured for the multicast VLAN 200 Figure 63 MVR Group Configuration Example Figure 64 MVR Group Configuration Example ...

Page 136: ...Chapter 17 IGMP MES 2110 User s Guide 136 ...

Page 137: ...0 to relay DHCP information based on the VLAN membership of the DHCP clients 18 1 1 DHCP Relay Agent Information The MES 2110 can add information about the source of client DHCP requests that it relays to a DHCP server by adding Relay Agent information This helps provide authentication about the source of the requests The DHCP server can then provide an IP address based on this information Please ...

Page 138: ...t belongs to Remote ID up to 64 bytes This optional field is set on the DHCP Relay Configuration Section 19 2 on page 143 screen Table 51 Relay Agent Information FIELD LABELS DESCRIPTION Table 52 Configuration DHCP Relay Configuration LABEL DESCRIPTION DHCP Relay Agent Configuration Active Select this check box to enable DHCP relay Remote DHCP Server Enter the IP address of a DHCP server in dotted...

Page 139: ...it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring DHCP Relay Agent Status Active This indicates whether DHCP relay is enabled or disabled Remote DHCP server This indicates the remote DHCP server s IP address Smart Relay Exclude VLAN This indicates which VLAN IDs are excluded from the DHCP r...

Page 140: ...Chapter 18 DHCP Relay Configuration MES 2110 User s Guide 140 ...

Page 141: ...here is not a binding the MES 2110 discards the frame The MES 2110 builds the binding table by snooping DHCP frames dynamic bindings and from information provided manually by administrators static bindings IP source guard consists of the following features Static bindings Use this to create static bindings in the binding table DHCP snooping Use this to filter unauthorized DHCP frames on the networ...

Page 142: ...l not succeed Untrusted ports are connected to subscribers The MES 2110 discards DHCP frames from untrusted ports in the following situations The frame is a DHCP server frame for example OFFER ACK or NACK The source MAC address and source IP address in the frame do not match any of the current bindings The frame is a RELEASE or DECLINE frame and the source MAC address and source port do not match ...

Page 143: ...nfiguration Use this screen to enable DHCP snooping on the MES 2110 and specify whether ports are trusted or untrusted ports for DHCP snooping To open this screen click Configuration IP Source Guard DHCP DHCP Snooping Configuration Figure 66 Configuration IP Source Guard DHCP DHCP Snooping Configuration ...

Page 144: ... 2110 s MAC address for the DHCP relay agent This must be globally unique You can enter up to 64 ASCII characters DHCP VLAN Fixed Enter the ID of a static VLAN the valid range is between 1 and 4094 Port This field displays the port number If you configure the port the settings are applied to all of the ports Trust Use this to set trusted ports Trusted ports are connected to DHCP servers or other s...

Page 145: ...MES 2110 s run time memory The MES 2110 loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring DHCP Snooping Status Action This shows whether DHCP snooping is enabled or disabled DHCP snooping VLAN Mode This shows whether the MES 2110 forwards DHCP frames of any VLANs or s...

Page 146: ...rames to DHCP servers on a specific VLAN Leave the field blank if you do not want the MES 2110 to forward DHCP frames to a specific VLAN Undo Click this to restore your last saved settings Add Click this to add the rule to the MES 2110 Static Dynamic Binding Table No This field displays a sequential number for each binding Port This field displays the port number in the binding VLAN ID This field ...

Page 147: ... pretends to be computer A and responds to computer B It pretends to be computer B and sends a message to computer A As a result all the communication between computer A and computer B passes through computer X Computer X can read and alter the information passed between them 19 4 1 Configuring ARP Inspection Follow these steps to configure ARP inspection on the MES 2110 1 Configure DHCP snooping ...

Page 148: ... Inspection The following table describes the labels in this screen Table 55 Configuration ARP Inspection LABEL DESCRIPTION ARP Inspection Action Use this to enable or disable the ARP inspection feature MAC Filter Aging Time Enter the number of minutes from 1 10080 that the MES 2110 retains MAC addresses in its MAC address table Enter 0 to retain addresses permanently ...

Page 149: ...s to set un trusted ports All Port Use this to configure all ports as trusted or un trusted ports ARP Inspection Status Action This shows whether the ARP inspection feature is enabled or disabled on the MES 2110 MAC Filter Aging Time This shows the number of minutes that the MES 2110 retains MAC addresses in its MAC address table ARP Inspection VLAN Mode This shows whether the MES 2110 look at all...

Page 150: ...Chapter 19 IP Source Guard MES 2110 User s Guide 150 ...

Page 151: ...Forwarding screen The MES 2110 uses the MAC table to determine how to forward frames See the following figure 1 The MES 2110 examines a received frame and learns the port on which this source MAC address came 2 The MES 2110 checks to see if the frame s destination MAC address matches a source MAC address already learned in the MAC table If the MES 2110 has already learned the port for this MAC add...

Page 152: ... the MAC table Click Configuration MAC Menu MAC Table Status to open the following screen Figure 71 Configuration MAC Menu MAC Table Status The following table describes the labels in this screen Table 56 Configuration MAC Menu MAC Table Status LABEL DESCRIPTION MAC Table Configuration MAC aging time Enter a time from 16 to 4080 seconds This is how long all dynamically learned MAC addresses remain...

Page 153: ... if it is turned off or loses power so use the Save Settings link in the navigation panel to save your changes to the non volatile memory MAC Table Status No This is the incoming frame index number MAC Address This is the MAC address of the device from which this incoming frame came Static This shows whether the MAC address is dynamic learned by the MES 2110 or static manually configured Priority ...

Page 154: ...r Config Table 57 Configuration MAC Menu Lock Learning MAC LABEL DESCRIPTION Port This is the port number Lock MAC address learning reduces outgoing broadcast traffic Use this to activate MAC address learning on the port Undo Click this to load your last saved settings Apply Click Apply to save your changes to the ZyXEL Device s run time memory The ZyXEL Device loses these changes if it is turned ...

Page 155: ...se changes if it is turned off or loses power so use the Save Settings link in the navigation panel to save your changes to the non volatile memory Allowed Table Port This is the port number through which traffic from the source MAC address is transmitted MAC Address This is the source MAC address Priority This shows the priority level Pri Override This shows whether priority level override is ena...

Page 156: ...you set this field to 5 on port 2 then only the devices with these five learned MAC addresses may access port 2 at any one time A sixth device would have to wait until one of the five learned MAC addresses aged out MAC address aging out time can be set in the MAC Table Status screen Action Enable the MAC limit function on this port The MES 2110 forwards frames whose MAC address es is in the MAC ad...

Page 157: ...Q6 is transmitted until Q6 empties and then traffic is transmitted on Q5 and so on If higher priority queues never empty then traffic on lower priority queues never gets sent SP does not automatically adapt to changing network requirements Weighted Round Robin Scheduling WRR Round Robin Scheduling services queues on a rotating basis and is activated only when a port has more traffic than it can ha...

Page 158: ...n to open the following screen Figure 75 Configuration QoS Menu Base Configuration The following table describes the labels in this screen Table 60 Configuration QoS Menu Base Configuration LABEL DESCRIPTION QoS Base Configuration Schedule Mode Select all high before low or weighted round robin All high before low queues based on priority only When the highest priority queue empties traffic on the...

Page 159: ... Tag on the port When you enable this feature and the MES 2110 receives a frame containing both IP DSCP and tag priority information the MES 2110 will only use the IP DSCP priority information All Port Use this to set the priority mode for all ports Undo Click this to load your last saved settings Apply Click Apply to save your changes to the ZyXEL Device s run time memory The ZyXEL Device loses t...

Page 160: ...e labels in this screen Table 61 Configuration QoS Menu 802 1p Priority LABEL DESCRIPTION Port This label shows the port you are configuring Priority Assign a priority level to the port Undo Click this to load your last saved settings Apply Click Apply to save your changes to the ZyXEL Device s run time memory The ZyXEL Device loses these changes if it is turned off or loses power so use the Save ...

Page 161: ...mpliant network devices to handle the frames differently depending on the code points without the need to negotiate paths or remember state information for every flow In addition applications do not have to request a particular service or give advanced notice of where the traffic is going Table 62 Configuration QoS Menu Tag Priority LABEL DESCRIPTION Number This is the IEEE 802 1p priority level P...

Page 162: ...enu IP DSCP Priority LABEL DESCRIPTION Number Enter the DSCP classification identification number 0 63 Priority Assign a MES 2110 s priority level Low Normal Preferred or High to the DSCP value Undo Click this to load your last saved settings Apply Click Apply to save your changes to the ZyXEL Device s run time memory The ZyXEL Device loses these changes if it is turned off or loses power so use t...

Page 163: ...erride Configuration LABEL DESCRIPTION Port This label shows the port you are configuring VID Pri Override Select Enable to have the MES 2110 ignore the priority level assigned to the transmitted frames on this port Select Disable if you do not want to use this feature This is selected by default Destination MAC Pri Override Select Enable to have the MES 2110 ignore the priority level assigned to ...

Page 164: ... save your changes to the ZyXEL Device s run time memory The ZyXEL Device loses these changes if it is turned off or loses power so use the Save Settings link in the navigation panel to save your changes to the non volatile memory Table 64 Configuration QoS Menu Priority Override Configuration LABEL DESCRIPTION ...

Page 165: ...ation software with the displayed parameters to manage the MES 2110 Connect the male 9 pin end of the console cable to the console port of the MES 2110 Connect the female end to a serial port COM1 COM2 or other COM port of your computer Click Mgmt Config Serial Port Config to open the following screen Figure 80 Mgmt Config Serial Port Config Specify the amount of time in seconds before the console...

Page 166: ...l An SNMP managed network consists of two main components agents and a manager An agent is a management software module that resides in a managed switch the MES 2110 An agent translates the local management information from the managed switch into a form compatible with SNMP The manager is the console through which network administrators perform network management functions It executes application...

Page 167: ...from the agent GetNext Allows the manager to retrieve the next object variable from a table or list within an agent In SNMPv1 when a manager wants to retrieve all elements of a table from an agent it initiates a Get operation followed by a series of GetNext operations Set Allows the manager to set values for object variables within an agent Trap Used by the agent to inform the manager of some even...

Page 168: ...ple Network Time Protocol SNTP You can also configure two servers If the first one is down the MES 2110 will try to connect to the second one Table 67 Mgmt Config SNMP Config IP Trap Manager LABEL DESCRIPTION IP Address Enter the IP addresses of up to five managers to send your SNMP traps to Community Name Enter the community string Status Use this to enable or disable the trap manager feature Und...

Page 169: ...hour minute and second format Time Zone Select the time difference between UTC Universal Time Coordinated formerly known as GMT Greenwich Mean Time and your time zone Day Light Saving Daylight saving is a period from late spring to early fall when many countries set their clocks ahead of normal local time by one hour to give more daytime light in the evening Enable this option if you use Daylight ...

Page 170: ...of examples Daylight Saving Time ends in the United States on the first Sunday of November Each time zone in the United States stops using Daylight Saving Time at 2 A M local time You ll have to manually configure the date every year as the date changes every year Undo Click this to restore your last saved settings Refresh Click this to reset the data for the field s Apply Click Apply to save your...

Page 171: ...MES 2110 To The MES 2110 sends logs to the e mail addresses specified in this field If this field is left blank the MES 2110 does not send logs via e mail SYSLOG SYSLOG Status Use this to enable or disable syslog logging Backup Click this save syslog file to a TFTP server Show Click this to show a complete list of syslog messages Alarm Type Select the categories of alarm that you want to record an...

Page 172: ...EL DESCRIPTION User Name Enter a name to identify the user account You can type up to 15 characters using characters found on a standard keyboard User Password Enter a password associated with the user name You can type up to 15 characters using characters found on a standard keyboard User Level Assign access rights for the user account Read Write users can manage the MES 2110 settings as an admin...

Page 173: ...table describes the labels in this screen Table 71 Mgmt Config Host Denial of Service Protection LABEL DESCRIPTION Port This is the port number PHY RX TX This shows if data is flowing through the ports on the MES 2110 If no data is passing through a port this shows Link Down Otherwise the number indicates the maximum size of packets during data transmission in the port Test If the cable is well co...

Page 174: ...tection LABEL DESCRIPTION Table 72 Mgmt Config Host Denial of Service Protection LABEL DESCRIPTION Protection Use this to enable or disable host denial of service protection IP Address Configure the IP address of the trusted computer from which you can manage this MES 2110 The MES 2110 checks if the client IP address of a computer requesting a service or protocol matches the range set here The MES...

Page 175: ...Abnormal Traffic Detection to open the following screen Figure 89 Mgmt Config Port Abnormal Traffic Detection The following table describes the labels in this screen Table 73 Mgmt Config Port Abnormal Traffic Detection LABEL DESCRIPTION Protection Use this to enable or disable abnormal traffic detection on the MES 2110 Abnormal Traffic Set the rules for abnormal traffic in the fields described bel...

Page 176: ...d when it is not receiving excessive traffic anymore If No block for N seconds Specify for how long the MES 2110 will block the port if traffic exceeds the threshold Port This shows the port number s that you can configure Enable Disable If you enabled abnormal traffic detection on the MES 2110 use this to enable or disable abnormal traffic detection on a specific port The rules you set will only ...

Page 177: ...y restore at a later date Use this screen to back up or restore a configuration file Click Mgmt Config Configuration File to open the following screen Figure 91 Mgmt Config Configuration File Follow the steps below to back up the current MES 2110 configuration to your computer in this screen 1 Click Backup Setting 2 Choose a location to save the file on your computer from the Save in drop down lis...

Page 178: ...start Menu Restart Option to open the following screen Use the Restore button to load the factory default settings or use the Reset button to restart the system without physically turning the power off It also allows you to load the factory default settings when you reboot Figure 92 System Restart Menu Restart Option ...

Page 179: ...lation software with the following settings 3 Press ENTER to trigger the login screen 23 1 2 Logging in Use the administrator password to log into the MES 2110 The default value administrator login username and password are admin and 1234 The MES 2110 automatically logs you out of the management interface after five minutes of inactivity If this happens simply log back in again SETTING DEFAULT VAL...

Page 180: ...L U Clears the current command Displays the keywords and or input values that are allowed in place of the There are 2 types of help in the MES 2110 descriptive and parameter Descriptive help This type of help displays a short description of the command To display descriptive help simply type command with no space between the command s final letter and the question mark Parameter help This type of ...

Page 181: ...s mode Table 76 Basic Commands MODE TRIGGER DESCRIPTION Basic Log in This is the default command line interface mode when you log into the device Commands are restricted in this mode See Section 23 5 on page 182 for details Privileged While in Basic mode type enable at the prompt and then press ENTER This mode a limited command set for configuring some of the MES 2110 s features See Section 23 6 o...

Page 182: ...nds history Displays a list of previously run commands logout Disconnects from the device ping n count l length t w timeout ip address Pings the specied IP address You can use the following parameters n count Determines the number of echo requests to send The default is 4 l length Adjusts the size of the ping packet by the number of specified bytes 64 8148 t Pings the specified host until the brea...

Page 183: ...efrom the specified TFTP server s IP address copy tftp firmware ip address remote file name Downloads a firmware file from the specified TFTP server s IP address reset default Resets the device to its factory default settings reset system Resets the system show abnormal Displays the abnormal traffic detection configuration show arp inspection config status Displays ARP inspection information confi...

Page 184: ...r table Displays the MAC filter table show mac limit Displays the MAC limit table show mirror Displays the mirror configuration show mvr Displays multicast status including the port number VLAN ID and multicast group members on the switch Optionally displays the type of each multicast VLAN show priority override Displays the priority override status table show qinq sp tpid Displays the Server Prov...

Page 185: ... syslog messages begin Enter the first syslog message to display end Enter the last syslog message to display show syslog config Displays the syslog configuration show version Displays the system version show vlan port base Displays the port base VLAN show vlan stacking Displays the VLAN stacking status show vlan tag base management VLAN Displays the VLAN for the management switch show vlan tag ba...

Page 186: ...ts then this creates one for you This mode allows you to configure the MES 2110 s VLAN IDs and their associated options See Section 23 9 on page 197 for details Interface While in Configuration mode Type interface port where port is a port number at the command line prompt and then press ENTER This mode allows you to configure the MES 2110 s port interfaces and their associated options See Section...

Page 187: ...hcp binding mac address ip address port vlan id Adds the specified MAC address IP address port numer and VLAN ID to the DHCP snooping static binding table dhcp client Enables DHCP client dhcp option information remote id Sets the DHCP Option Remote ID remote id Enter a maximum of 64 characters dhcp smart relay enable Enables DHCP smart relay dhcp smart relay exlude vlan 1 4094 Sets the DHCP smart ...

Page 188: ...rm s from field to the specified string string Enter up to 63 characters cr Leave this blank and press the Enter key to clear the email alarm from setting email alarm server ip address Sets the email alarm s server to the specified IP address email alarm to id string enable disable id Sets the email alarm s to field id Enter an ID number for this recipent 1 5 If you enter just the ID and no other ...

Page 189: ...GMP query mode igmp snooping Enables IGMP snooping igmp static port list Sets the IGMP static port list igmp vlan 1 4094 Specifies the VLANs on which to perform IGMP snooping if the mode is fixed igmp vlan mode auto fixed Specifies how the VLANs snooped by the device select IGMP packets auto The device learns multicast group membership on any VLAN It drops a ny IGMP control messages on other VLANs...

Page 190: ...ty override enable override disable Sets the static unicast MAC configuration mac filter add deny mac mac address Adds a specified MAC address to the deny MAC configuration mac filter delete mac address Deletes a static unicast MAC configuration mac limit enable disable Enables or disables MAC limit configuration mirror mode all disable Sets the mirror mode mirror monitoring port port id Sets the ...

Page 191: ...snooping Disables IGMP snooping no igmp static Disables the IGMP static port no igmp vlan 1 4094 Disables IGMP VLAN for the specified VLAN ID no ip Sets the device to its default IP address Note You cannot change the device s IP address over Telnet no lacp Disables LACP no logins Resets the login password to NULL no mvr 1 4094 Removes an MVR configuration from the specified VLAN no netmask Sets th...

Page 192: ...y index community string Sets the SNMP trap community index Enter an index number 1 5 community string Enter up to 30 characters snmp trapenable index enable disable Enables the SNMP trap index Enter an index number 1 5 snmp trapip index ip address Sets the IP addresses of up to 5 SNMP managers to receive SNMP traps index Enter an index number 1 5 sntp enable disable Enables and disables SNTP supp...

Page 193: ...ts the RSTP forward delay The default is 15 spanning tree hello time 1 10 Sets the RSTP hello time The default is 2 spanning tree maximum age 6 40 Sets the RSTP maximum age The default is 20 spanning tree priority 0 61440 Sets the RSTP switch priority the default is 32768 syslog enable Enables syslog support syslog disable Disables syslog support syslog clear Clears all data out of the syslog syst...

Page 194: ...ig interface port channel 1 MES 2110 config interface dot1x guest vlan enable MES 2110 config interface end MES 2110 show dot1x radius server Server IP Address 172 16 10 10 Shared Key hello Sever Port Number 1812 Accounting Port Number 1813 Sever Time out sec 30 MES 2110 show dot1x global 802 1x protocol Enabled reauth max 2 Guest VLAN VID 99 MES 2110 show dot1x port control 802 1x Port control Pa...

Page 195: ...up group id start address n Sets the multicast group range for the current MVR group group id Enter 1 255 characters for the group identification start address Enter the start IP address for the multicast range of this group n Enter the number of additional addresses to generate based on the start address for the multicast range of this group inactive Disables the MVR settings for the current MVR ...

Page 196: ...current MVR group name for identification purposes name Enter 1 30 characters query mode auto disable Sets the query mode of the current MVR group receiver port port list Sets the receiver port s for the current MVR group An MVR receiver port can only receive multicast traffic in a multicast VLAN source port port list Sets the source port s for the current MVR group An MVR source port can send and...

Page 197: ...nters VLAN Configuration mode for the specified VLAN ID If no VLAN IDs exist then this creates the specified ID manage Sets the current VLAN as a management VLAN member port list Specifies the ports that are members of the current VLAN group non member port list Specifies the ports that are excluded from the current VLAN group tagging port list Specifies the ports in the current VLAN group for whi...

Page 198: ...nfig vlan use vid priority yes MES 2110 config vlan exit MES 2110 config interface port channel 1 MES 2110 config interface vid pri override enable MES 2110 config interface exit MES 2110 config exit MES 2110 show priority override port vid pri override da pri override sa pri override 01 enabled disabled disabled 02 disabled disabled disabled 03 disabled disabled disabled 04 disabled disabled disa...

Page 199: ...urrent port s low 64K 960K 64 960 in 64k steps medium 1 100M 1 100 in 1M steps high 100 1000M 110 1000 in 10M steps bandwidth limit ingress low medium high rate Sets the ingress rate for the current port s cr Press ENTER without entering any other parameters to enable egress bandwidth control on the current port s low 64K 960K 64 960 in 64k steps medium 1 100M 1 100 in 1M steps high 100 1000M 110 ...

Page 200: ...he current port s mirror Enables port mirroring for the current port s name string Sets a name for the port for the current port s string Enter up to 15 characters no abnormal Disables individual port detection for the current port s no active Disables the current port s no arp inspection trust Disables ARP inspection trust for the current port s no bandwidth limit egress Disables egress rate for ...

Page 201: ...le disable Sets the QoS ipdscp over tag priority for the current port s dot1x reauth period 1 999999 Set reauthentication period for the current port s The default is 3600 dot1x enable Enable 802 1x port control for the current port s dot1x reauth enable Enable 802 1x reauthentication for the current port s dot1x guest vlan enable Enables guest VLAN for the current port s rstp edge on off Sets the...

Page 202: ...medium high rate Sets the DLF storm control for the current port s cr Enter nothing for this field and just press Enter to enable DLF packet limits on the current port s low 64K 960K 64 960 in 64k steps medium 1 100M 1 100 in 1M steps high 100 1000M 110 1000 in 10M steps vid pri overide enable disable Enables or disables the VLAN ID priority override for the current port s vlan stacking role norma...

Page 203: ...0 7 of the current port s in VLAN stacking Table 83 Interface Mode Commands COMMAND DESCRIPTION MES 2110 config dhcp snooping enable MES 2110 config dhcp snooping vlan mode all MES 2110 config arp inspection enable MES 2110 config arp inspection vlan mode all MES 2110 config interface port channel 1 2 3 4 5 6 7 8 MES 2110 config interface no arp inspection trust MES 2110 show arp inspection config...

Page 204: ...93 Frame Tagging Example This example shows how to configure ports 1 and 2 on the switch to tag incoming frames with the service provider s VID of 37 ports are connected to customer A network This example also shows how to set the priority for ports 1 and 2 to 3 MES 2110 config vlan stacking MES 2110 config interface port channel 1 2 MES 2110 config interface vlan stacking role access MES 2110 con...

Page 205: ...rt port 10 and drops the frames whose SPVID is not in the SVLAN table MES 2110 configure terminal MES 2110 config interface port channel 1 MES 2110 config interface vlan stacking role access MES 2110 config interface vlan stacking SPVID 37 MES 2110 config interface exit MES 2110 config interface port channel 2 MES 2110 config interface vlan stacking role access MES 2110 config interface vlan stack...

Page 206: ...Chapter 23 Command Line Interface MES 2110 User s Guide 206 ...

Page 207: ...e MES 2110 does not turn on None of the LEDs turn on 1 Make sure you are using the power adaptor or cord included with the MES 2110 2 Make sure the power adaptor or cord is connected to the MES 2110 and plugged in to an appropriate power source Make sure the power source is turned on 3 Disconnect and re connect the power adaptor or cord to the MES 2110 4 If the problem continues contact the vendor...

Page 208: ...e power adaptor or cord to the MES 2110 5 If the problem continues contact the vendor 24 2 MES 2110 Access and Login I forgot the IP address for the MES 2110 1 The default IP address is 192 168 1 1 2 Use the console port to log in to the MES 2110 3 If this does not work you have to reset the device to its factory defaults See Section 5 6 on page 59 I forgot the username and or password 1 The defau...

Page 209: ... your computer and the MES 2110 skip this step 5 Reset the device to its factory defaults and try to access the MES 2110 with the default IP address See Section 5 6 on page 59 6 If the problem continues contact the vendor or try one of the advanced suggestions Advanced Suggestions Try to access the MES 2110 using another service such as Telnet or over the console port If you can access the MES 211...

Page 210: ...ps Lock is not on 2 You may have exceeded the maximum number of concurrent Telnet sessions Close other Telnet session s or try connecting again later Check that you have enabled logins for HTTP or Telnet If you have configured a secured client IP address your computer s IP address must match it Refer to the chapter on access control for details 3 Disconnect and re connect the cord to the MES 2110 ...

Page 211: ...d all configuration changes using the Save Settings link in the Web Configurator s navigation pane Clean out the cache of the browser that you are using to connect to the MES 2110 s Web Configurator and make sure that you re only using a browser supported by the device Chapter 1 on page 19 Try making your changes through the MES 2110 s command line interface Chapter 23 on page 179 and using the wr...

Page 212: ...ands are available to you while using the command line interface type and press ENTER I enabled ARP inspection on my MES 2110 but it doesn t seem to be working It is recommended you enable DHCP snooping at least one day before you enable ARP inspection so that the MES 2110 has enough time to build the binding table My changes in the Web Configurator keep getting overwritten The MES 2110 allows up ...

Page 213: ...Chapter 24 Troubleshooting MES 2110 User s Guide 213 Every time I try to change the MES 2110 s IP address over Telnet I get an error You cannot change the device s IP address over Telnet ...

Page 214: ...Chapter 24 Troubleshooting MES 2110 User s Guide 214 ...

Page 215: ...ch interface has one 1000Base T RJ 45 port and one Small Form Factor Pluggable SFP slot with one port active at a time 2 mini GBIC SFP slots Auto negotiation Auto MDIX One console port Compliant with IEEE 802 3 3u Back pressure flow control for half duplex Flow control for full duplex IEEE 802 3x LEDs Per switch PWR SYS Per Fast Ethernet RJ 45 10 100 port LNK ACT Per mini GBIC slot LNK ACT Per min...

Page 216: ...service based on specific VLANs for many different customers MAC Address Filter Filter traffic based on the source and or destination MAC address IGMP Snooping The MES 2110 supports IGMP snooping enabling group multicast traffic to be only forwarded to ports that are members of that group thus allowing you to significantly reduce multicast traffic passing through your MES 2110 QoS Queuing is used ...

Page 217: ...rd to filter unauthorized DHCP and ARP packets in your network Link Aggregation Link aggregation trunking is the grouping of physical ports into one logical higher capacity link You may want to trunk ports if for example it is cheaper to use multiple lower speed links than to under utilize a high speed but more costly single port link Port Authentication and Security For security the MES 2110 allo...

Page 218: ...757 RMON RFC 1901 SNMPv2c Simple Network Management Protocol version 2c RFC 2138 RADIUS Remote Authentication Dial In User Service RFC 2139 RADIUS Accounting RFC 2236 Internet Group Management Protocol Version 2 RFC 3046 DHCP Relay RFC 4330 Simple Network Time Protocol SNTP IEEE 802 1x Port Based Network Access Control IEEE 802 1D MAC Bridges IEEE 802 1p Traffic Types Packet Priority IEEE 802 1Q T...

Page 219: ... fuse housing 3 A burnt out fuse is blackened darkened or cloudy inside its glass casing A working fuse has a completely clear glass casing Pull gently but firmly to remove the burnt out fuse from the fuse housing Dispose of the burnt out fuse properly Installing a Fuse 1 The MES 2110 is shipped from the factory with one spare fuse included in a box like section of the fuse housing Push the middle...

Page 220: ...Appendix A Changing a Fuse MES 2110 User s Guide 220 ...

Page 221: ... if you like Protocol This is the type of IP protocol used by the service If this is TCP UDP then the service uses the same port number with TCP and UDP If this is User Defined the Port s is the IP protocol number not the port number Port s This value depends on the Protocol Please refer to RFC 1700 for further information about port numbers If the Protocol is TCP UDP or TCP UDP this is the IP por...

Page 222: ...this service FINGER TCP 79 Finger is a UNIX or Internet related command that can be used to find out if a user is logged on FTP TCP TCP 20 21 File Transfer Program a program to enable fast transfer of files including large files that may not be possible by e mail H 323 TCP 1720 NetMeeting uses this protocol HTTP TCP 80 Hyper Text Transfer Protocol a client server protocol for the world wide web HT...

Page 223: ...fer of data over public networks This is the control channel PPTP_TUNNEL GRE User Defined 47 PPTP Point to Point Tunneling Protocol enables secure transfer of data over public networks This is the data channel RCMD TCP 512 Remote Command Service REAL_AUDIO TCP 7070 A streaming audio service that enables real time sound over the web REXEC TCP 514 Remote Execution Daemon RLOGIN TCP 513 Remote Login ...

Page 224: ...UDP 49 Login Host Protocol used for Terminal Access Controller Access Control System TELNET TCP 23 Telnet is the login and terminal emulation protocol common on the Internet and in UNIX environments It operates over TCP IP networks Its primary function is to allow users to log into remote host systems TFTP UDP 69 Trivial File Transfer Protocol is an Internet file transfer protocol similar to FTP b...

Page 225: ...ing out of the application or use of any products or software described herein Neither does it convey any license under its patent rights nor the patent rights of others ZyXEL further reserves the right to make changes in any products described herein without notice This publication is subject to change without notice Trademarks ZyNOS ZyXEL Network Operating System is a registered trademark of ZyX...

Page 226: ...e in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his own expense CE Mark Warning This is a class A product In a domestic environment this product may cause radio interference in which case the user may be required to take adequate measures Taiwanese BSMI Bureau of Standards Metrology and Inspection A Warning Noti...

Page 227: ...sist of a new or re manufactured functionally equivalent product of equal or higher value and will be solely at the discretion of ZyXEL This warranty shall not apply if the product has been modified misused tampered with damaged by an act of God or subjected to abnormal working conditions Note Repair or replacement as provided under this warranty is the exclusive remedy of the purchaser This warra...

Page 228: ...Appendix C Legal Information MES 2110 User s Guide 228 ...

Page 229: ...3 broadcast storm control 113 C configuration bandwidth control 111 bridge 89 92 broadcast storm control 113 date time 168 DHCP snooping 143 IGMP 125 jumbo frames 75 link aggregation 119 loop detection 71 MAC filtering 154 multicast 125 MVR 129 port mirroring 115 ports 65 QoS 158 trunking 119 VLAN 99 configuration file 177 connection test 173 console port 30 165 console port accessing the CLI 179 ...

Page 230: ...oping 142 J jumbo frames 75 L LEDs 35 link aggregation 117 configuration 119 dynamic 117 hash mode 120 ID 118 static 118 status 121 system priority 121 lockout 59 login 51 179 logout 181 logs 170 loop detection 71 M MAC filtering 151 configuration 154 MAC learning 153 management 165 abnormal traffic detection 175 alarms 170 configuration file 177 connection test 173 console port 30 165 date time 1...

Page 231: ...n 84 server 84 Rapid Spanning Tree Protocol see RSTP reset 59 178 RMON status 68 RSTP 89 BPDU 90 bridge priority 93 configuration 92 path cost 89 93 port states 91 S shortcuts 180 SNMP 166 SNTP 168 stacking VLAN 105 stacking VLANs 101 static bindings 141 status IGMP 127 link aggregation 121 MAC filtering 152 multicast 127 ports 67 RMON 68 trunking 121 switch lockout 59 system abnormal traffic dete...

Page 232: ...117 hash mode 120 ID 118 static 118 status 121 system priority 121 U unicast 123 user accounts 172 V VLAN 97 application 21 configuration 99 forwarding frames 98 frame formats 104 management VLAN 109 port based 99 stacking 101 105 tag format 103 tag based 107 tagged 97 W web configurator 51 navigation panel 54 weighted round robin scheduling 157 ...

Reviews:

No comments

Related manuals for ES-100

Brightlink 16x16 Manual preview
16x16
Brand: Brightlink Pages: 33
steute 1177987 Mounting And Wiring Instructions preview
1177987
Brand: steute Pages: 20
UfiSpace S9180-32X Hardware Installation Manual preview
S9180-32X
Brand: UfiSpace Pages: 25
Equip Vision 332702 Manual preview
Vision 332702
Brand: Equip Pages: 10
Patton electronics SmartNode 4658 Series Quick Start Manual preview
SmartNode 4658 Series
Brand: Patton electronics Pages: 12
Setra Systems SSC-2S Operation And Installation Instructions preview
SSC-2S
Brand: Setra Systems Pages: 4
I-Tech NVCIP800 User Manual preview
NVCIP800
Brand: I-Tech Pages: 29
hager EHN010 Installation And Instruction Manual preview
EHN010
Brand: hager Pages: 6
Wyrestorm MX-0404-H2 Quick Start Manual preview
MX-0404-H2
Brand: Wyrestorm Pages: 4
Ormazabal velatia cgm.3 system General Instructions Manual preview
velatia cgm.3 system
Brand: Ormazabal Pages: 76
Ubiquiti 0817882025218 Quick Start Manual preview
0817882025218
Brand: Ubiquiti Pages: 23
Exsys EX-1178 Manual preview
EX-1178
Brand: Exsys Pages: 2
Eaton Cutler-Hammer RTHMFDA20100WSU Instructions Manual preview
Cutler-Hammer RTHMFDA20100WSU
Brand: Eaton Pages: 28
Enterasys SecureStack B2 B2G124-48P Hardware Installation Manual preview
SecureStack B2 B2G124-48P
Brand: Enterasys Pages: 91
Eminent EM1019 Instruction Manual preview
EM1019
Brand: Eminent Pages: 6
INDO GrowHub 800C User Manual preview
GrowHub 800C
Brand: INDO Pages: 3
PCB Piezotronics IMI SENSORS EX686B77 Installation And Operating Manual preview
IMI SENSORS EX686B77
Brand: PCB Piezotronics Pages: 63
LEGRAND Area box distribution switch Installation And Configuration Manual preview
Area box distribution switch
Brand: LEGRAND Pages: 87

Brands by name

Popular brands

Load more brands