manualshive.com logo in svg

ZyXEL Communications MGS3600-24F, User Manual

The ZyXEL Communications MGS3600-24F is a high-performance network switch that offers advanced features for seamless connectivity. Get started with this product by downloading the free User Manual from our website, where you can access the manual in PDF format. Explore the extensive functionalities of MGS3600-24F at your convenience. (Note: Focus on the product, not the website).

Share
Download
background image

User’s Guide

MGS3600-24F/XGS3600-26F/XGS3600-28F

Summary of Contents for MGS3600-24F

Page 1: ...User s Guide MGS3600 24F XGS3600 26F XGS3600 28F ...

Page 2: ...ommand Reference Guide explains how to use the Command Line Interface CLI and CLI commands to configure the switch Web Configurator Online Help The embedded Web Help contains descriptions of individual screens and supplementary information Note It is recommended you use the web configurator to configure the switch Support Disc Refer to the included CD for support documents Documentation Feedback S...

Page 3: ...our product Knowledge Base If you have a specific question about your product the answer may be here This is a collection of answers to previously asked questions about ZyXEL products Forum This contains discussions on ZyXEL products Learn from others who use ZyXEL products and share your experiences as well Customer Support Should problems arise that cannot be solved by the methods listed above y...

Page 4: ...MGS3600 24F XGS3600 26F XGS3600 28F USER S GUIDE ABOUT THIS USER S GUIDE IV Date that you received your device Brief description of the problem and the steps you took to solve it ...

Page 5: ...tion is made where needed Product labels screen names field labels and field choices are all in bold font A key stroke is denoted by square brackets and uppercase text for example ENTER means the enter or return key on your keyboard Enter means for you to type one or more characters and then press the ENTER key Select or choose means for you to use one of the predefined choices A right angle brack...

Page 6: ...UMENT CONVENTIONS VI Icons Used in Figures Figures in this User s Guide may use the following generic icons The switch icon is not an exact representation of your device The Switch Computer Notebook computer Server DSLAM Firewall Telephone Switch Router ...

Page 7: ...ect the cables to the correct ports Place connecting cables carefully so that no one will step on them or stumble over them Always disconnect all cables from this device before servicing or disassembling Use ONLY an appropriate power adaptor or cord for your device Connect it to the right supply voltage for example 110V AC in North America or 230V AC in Europe Do NOT allow anything to rest on the ...

Page 8: ...t is marked with this symbol which is known as the WEEE mark WEEE stands for Waste Electronics and Electrical Equipment It means that used electrical and electronic products should not be mixed with general waste Used electrical and elec tronic equipment should be treated separately ...

Page 9: ...ion 1 2 Ways to Manage the Switch 1 3 Good Habits for Managing the Switch 1 4 Front Matter Free Standing Installation 2 2 Rack Mounted Installation 2 4 Rack mounted Installation Requirements 2 4 Precautions 2 4 Attaching the Mounting Brackets to the Switch 2 5 Mounting the Switch on a Rack 2 6 Front Matter ...

Page 10: ...ality Interfaces 3 5 1000Base T Ports 3 6 Default Ethernet Settings 3 6 Mini GBIC Slots 3 7 Transceiver Installation 3 8 Transceiver Removal 3 9 Power Connectors 3 10 Console Port 3 12 LEDs 3 13 Front Matter Overview 4 2 Traffic Overview 4 3 Status Port Details 4 5 Front Matter Overview 5 2 ...

Page 11: ...o 5 3 System Information 5 4 General Setup 5 7 VLANs 5 10 IP Setup 5 12 Management IP Addresses 5 12 Port Configuration 5 15 Front Matter Front Matter System Configuration 6 5 System Information 6 6 Information 6 6 Configuration 6 9 CPU Load 6 10 Time 6 11 Manual 6 11 ...

Page 12: ...28F USER S GUIDE XII NTP 6 13 Account 6 14 Users 6 14 Privilege Level 6 16 IP 6 17 IPv4 6 17 IPv6 6 19 SYSLOG 6 20 Configuration 6 20 Log 6 21 Detailed Log 6 22 SNMP 6 23 System 6 23 Communities 6 24 Users 6 25 Groups 6 27 Views 6 28 ...

Page 13: ...rap 6 31 Front Matter Configuration 7 2 Port 7 3 Configuration 7 3 Port Description 7 5 Traffic Overview 7 6 Detailed Statistics 7 7 QoS Statistics 7 9 SFP Information 7 10 ACL 7 12 Ports 7 12 Rate Limiters 7 14 Access Control List 7 15 ACL Status 7 21 Aggregation 7 23 ...

Page 14: ...anning Tree 7 29 Bridge Settings 7 30 MSTI Mapping 7 32 MSTI Priorities 7 33 CIST Ports 7 34 MSTI Ports 7 36 Bridge Status 7 37 Port Status 7 39 Port Statistics 7 40 MRSTP 7 41 Instances 7 41 Port Configuration 7 44 Port Status 7 46 IGMP and MLD Snooping 7 48 Basic Configuration 7 48 ...

Page 15: ...tatus 7 53 Group Information 7 55 IPv4 and IPv6 SSM Information 7 56 MVR 7 57 Configuration 7 57 Groups Information 7 59 Statistics 7 60 LLDP 7 61 LLDP Configuration 7 61 LLDP Neighbors 7 64 LLDP MED Configuration 7 65 LLDP MED Neighbors 7 71 Port Statistics 7 74 Configuration 7 76 Dynamic MAC Table 7 78 ...

Page 16: ...ip 7 79 Ports 7 80 Switch Status 7 82 Port Status 7 83 Private VLANs 7 84 MAC Based VLAN 7 86 Protocol Based VLAN 7 88 GARP and MRP 7 90 Configuration 7 90 Statistics 7 92 GVRP and MVRP 7 93 Configuration 7 93 Statistics 7 95 QoS 7 96 Port Classification 7 96 Port Policing 7 99 ...

Page 17: ...ing 7 102 Port Tag Remarking 7 104 Port DSCP 7 106 DSCP Based QoS 7 107 DSCP Translation 7 108 DSCP Classification 7 109 QoS Control List 7 110 QCL Status 7 114 WRED 7 116 sFlow Agent 7 118 Collector 7 118 Sampler 7 120 Mirroring 7 121 Trap Event Severity 7 122 SMTP Configuration 7 123 802 3ah OAM 7 124 ...

Page 18: ... 7 124 Event Config 7 126 Port Status 7 128 Link Events 7 130 Statistics 7 133 Ethernet OAM 7 135 EPS 7 137 EPRS 7 139 Security Security 8 2 IP Source Guard 8 3 Configuration 8 3 Static Table 8 4 Dynamic Table 8 5 ARP Inspection 8 6 Configuration 8 6 Static Table 8 7 ...

Page 19: ...DHCP Snooping 8 9 Configuration 8 9 Statistics 8 10 DHCP Relay 8 12 Configuration 8 12 Statistics 8 13 NAS 8 15 Configuration 8 15 Switch Status 8 22 Port Status 8 23 AAA 8 25 Configuration 8 25 RADIUS Overview 8 28 RADIUS Details 8 29 Port Security 8 33 Limit Control 8 33 ...

Page 20: ...36 Port Status 8 38 Access Management 8 40 Configuration 8 40 Statistics 8 42 SSH 8 43 HTTPS 8 44 AUTH Method 8 45 Maintenance Restart Device 9 2 Firmware 9 3 Firmware Upgrade 9 3 Firmware Selection 9 4 Save Restore 9 5 Factory Defaults 9 5 Save Start 9 6 Save User 9 7 ...

Page 21: ...Import 9 9 Export Config 9 9 Import Config 9 10 Diagnostics 9 11 Ping 9 11 Ping6 9 12 Front Matter Front Matter Power Hardware Connections and LEDs 10 3 Switch Access and Login 10 4 Switch Configuration 10 6 Front Matter Hardware Specifications 11 2 Firmware Specifications 11 7 ...

Page 22: ...MGS3600 24F XGS3600 26F XGS3600 28F USER S GUIDE XXII EMI Safety Specifications 11 19 Front Matter Glossary of Web Based Management A 1 Common Services B 1 Legal Information C 1 ...

Page 23: ...28F USER S GUIDE XXIII TABLE OF CONTENTS About This User s Guide Intended Audience ii Related Documents ii Documentation Feedback ii Customer Support iii Document Conventions Safety Warnings Front Matter Front Matter Introduction 1 2 ...

Page 24: ...llation 2 2 Rack Mounted Installation 2 4 Rack mounted Installation Requirements 2 4 Precautions 2 4 Attaching the Mounting Brackets to the Switch 2 5 Mounting the Switch on a Rack 2 6 Front Matter Front Panel Connections 3 2 Dual Personality Interfaces 3 5 1000Base T Ports 3 6 Default Ethernet Settings 3 6 Mini GBIC Slots 3 7 Transceiver Installation 3 8 ...

Page 25: ... 3 9 Power Connectors 3 10 AC Power Connection 3 10 DC Power Connection 3 11 Console Port 3 12 LEDs 3 13 Front Matter Overview 4 2 Traffic Overview 4 3 Status Port Details 4 5 Front Matter Overview 5 2 What You Can Do 5 3 System Information 5 4 General Setup 5 7 VLANs 5 10 ...

Page 26: ...ent IP Addresses 5 12 Port Configuration 5 15 Front Matter Front Matter System Configuration 6 5 System Information 6 6 Information 6 6 Parameter description 6 6 Configuration 6 9 Parameter description 6 9 CPU Load 6 10 Time 6 11 Manual 6 11 Parameter description 6 11 NTP 6 13 ...

Page 27: ...unt 6 14 Users 6 14 Parameter description 6 14 Privilege Level 6 16 Parameter description 6 16 IP 6 17 IPv4 6 17 Parameter description 6 17 IPv6 6 19 Parameter description 6 19 SYSLOG 6 20 Configuration 6 20 Parameter description 6 20 Log 6 21 Parameter description 6 21 Detailed Log 6 22 ...

Page 28: ...NMP 6 23 System 6 23 Parameter description 6 23 Communities 6 24 Parameter description 6 24 Users 6 25 Parameter description 6 25 Groups 6 27 Parameter description 6 27 Views 6 28 Parameter description 6 28 Access 6 29 Parameter description 6 29 Trap 6 31 Front Matter Configuration 7 2 ...

Page 29: ... 3 Port Description 7 5 Parameter description 7 5 Traffic Overview 7 6 Parameter description 7 6 Detailed Statistics 7 7 Parameter description 7 7 QoS Statistics 7 9 Parameter description 7 9 SFP Information 7 10 Parameter description 7 10 ACL 7 12 Ports 7 12 Parameter description 7 12 Rate Limiters 7 14 ...

Page 30: ...ion 7 15 ACE Conditions 7 15 ACE Actions 7 20 ACL Status 7 21 Parameter description 7 21 Aggregation 7 23 Static Trunk 7 23 Parameter description 7 23 Aggregation Mode Configuration 7 23 Aggregation Group Configuration 7 24 LACP 7 25 Configuration 7 25 Parameter description 7 25 System Status 7 26 Parameter description 7 26 ...

Page 31: ...rameter description 7 28 Spanning Tree 7 29 Bridge Settings 7 30 Parameter description 7 30 Basic Settings 7 30 Advanced Settings 7 31 MSTI Mapping 7 32 Parameter description 7 32 Configuration Identification 7 32 MSTI Mapping 7 32 MSTI Priorities 7 33 Parameter description 7 33 CIST Ports 7 34 Parameter description 7 34 ...

Page 32: ...meter description 7 37 Port Status 7 39 Parameter description 7 39 Port Statistics 7 40 Parameter description 7 40 MRSTP 7 41 Instances 7 41 Parameter description 7 41 MRSTP Instance Configuration 7 41 MRSTP Instance Status 7 42 Port Configuration 7 44 Parameter description 7 44 Port Status 7 46 Parameter description 7 46 ...

Page 33: ...LD Snooping Configuration 7 48 Port Related Configuration 7 49 VLAN Configuration 7 50 Parameter description 7 50 Port Group Filtering 7 52 Parameter description 7 52 Status 7 53 Parameter description 7 53 Group Information 7 55 Parameter description 7 55 IPv4 and IPv6 SSM Information 7 56 Parameter description 7 56 MVR 7 57 Configuration 7 57 ...

Page 34: ... Statistics 7 60 Parameter description 7 60 LLDP 7 61 LLDP Configuration 7 61 Parameter description 7 61 LLDP Neighbors 7 64 Parameter description 7 64 LLDP MED Configuration 7 65 Parameter description 7 65 Fast Start Repeat Count 7 65 Coordinates Location 7 66 Civic Address Location 7 66 Policies 7 68 Policy Port Configuration 7 70 ...

Page 35: ...7 74 Parameter description 7 74 Global Counters 7 74 Local Counters 7 74 Configuration 7 76 Parameter description 7 76 Aging Configuration 7 76 MAC Table Learning 7 76 Static MAC Table Configuration 7 77 Dynamic MAC Table 7 78 Parameter description 7 78 VLAN 7 79 VLAN Membership 7 79 Parameter description 7 79 Ports 7 80 ...

Page 36: ...7 82 Port Status 7 83 Parameter description 7 83 Private VLANs 7 84 Private VLANs Membership 7 84 Parameter description 7 84 Port Isolation 7 84 Parameter description 7 85 MAC Based VLAN 7 86 Configuration 7 86 Parameter description 7 86 Status 7 87 Parameter description 7 87 Protocol Based VLAN 7 88 Protocol to Group 7 88 ...

Page 37: ...escription 7 89 GARP and MRP 7 90 Configuration 7 90 Parameter description 7 90 Statistics 7 92 Parameter description 7 92 GVRP and MVRP 7 93 Configuration 7 93 Parameter description 7 93 Global Configuration 7 93 Port Configuration 7 93 Statistics 7 95 Parameter description 7 95 QoS 7 96 Port Classification 7 96 ...

Page 38: ...olicing 7 99 Parameter description 7 99 Queue Policing 7 101 Parameter description 7 101 Port Scheduler and Port Shaping 7 102 Parameter description 7 102 Queue Shaper 7 102 Queue Scheduler 7 102 Port Shaper 7 103 Port Tag Remarking 7 104 Parameter description 7 104 PCP DEI Configuration 7 104 DP level Configuration 7 104 QoS class DP level to PCP DEI Mapping 7 105 ...

Page 39: ...arameter description 7 107 DSCP Translation 7 108 Parameter description 7 108 DSCP Classification 7 109 Parameter description 7 109 QoS Control List 7 110 Parameter description 7 110 QCE Conditions 7 110 QCE Actions 7 113 QCL Status 7 114 Parameter description 7 114 WRED 7 116 Parameter description 7 117 sFlow Agent 7 118 ...

Page 40: ...scription 7 120 Mirroring 7 121 Parameter description 7 121 Trap Event Severity 7 122 Parameter description 7 122 SMTP Configuration 7 123 Parameter description 7 123 802 3ah OAM 7 124 Port Config 7 124 Parameter description 7 124 Event Config 7 126 Parameter description 7 126 Port Status 7 128 Parameter description 7 128 ...

Page 41: ...al and Remote Frame Period Status 7 130 Local and Remote Symbol Period Status 7 131 Local and Remote Event Seconds Summary Status 7 132 Statistics 7 133 Parameter description 7 133 Ethernet OAM 7 135 Parameter description 7 135 EPS 7 137 Parameter description 7 137 EPRS 7 139 Parameter description 7 139 Security Security 8 2 IP Source Guard 8 3 ...

Page 42: ...8 3 Port Mode Configuration 8 3 Static Table 8 4 Parameter description 8 4 Dynamic Table 8 5 Parameter description 8 5 ARP Inspection 8 6 Configuration 8 6 Parameter description 8 6 ARP Inspection Configuration 8 6 Port Mode Configuration 8 6 Static Table 8 7 Parameter description 8 7 Dynamic Table 8 8 Parameter description 8 8 ...

Page 43: ... 8 9 DHCP Snooping Configuration 8 9 Port Mode Configuration 8 9 Statistics 8 10 Parameter description 8 10 DHCP Relay 8 12 Configuration 8 12 Parameter description 8 12 Statistics 8 13 Parameter description 8 13 Server Statistics 8 13 Client Statistics 8 14 NAS 8 15 Configuration 8 15 Parameter description 8 15 ...

Page 44: ... Parameter description 8 23 Port State 8 23 Port Counters 8 23 Attached MAC Addresses 8 24 AAA 8 25 Configuration 8 25 Parameter description 8 25 Common Server Configuration 8 25 TACACS Authorization and Accounting Configuration 8 26 RADIUS Authentication Server Configuration 8 26 RADIUS Accounting Server Configuration 8 26 TACACS Authentication Server Configuration 8 27 ...

Page 45: ...escription 8 29 RADIUS Authentication Statistics 8 29 RADIUS Accounting Statistics 8 31 Port Security 8 33 Limit Control 8 33 Parameter description 8 33 System Configuration 8 33 Port Configuration 8 34 Switch Status 8 36 Parameter description 8 36 User Module Legend 8 36 Port Status 8 36 Port Status 8 38 Parameter description 8 38 ...

Page 46: ...rameter description 8 40 Statistics 8 42 Parameter description 8 42 SSH 8 43 Parameter description 8 43 HTTPS 8 44 Parameter description 8 44 AUTH Method 8 45 Parameter description 8 45 Maintenance Restart Device 9 2 Firmware 9 3 Firmware Upgrade 9 3 Firmware Selection 9 4 Parameter description 9 4 ...

Page 47: ...tory Defaults 9 5 Save Start 9 6 Save User 9 7 Restore User 9 8 Export Import 9 9 Export Config 9 9 Import Config 9 10 Diagnostics 9 11 Ping 9 11 Parameter description 9 11 Ping6 9 12 Parameter description 9 12 Front Matter Front Matter Power Hardware Connections and LEDs 10 3 ...

Page 48: ...ration 10 6 Front Matter Hardware Specifications 11 2 Key Features 11 2 Interface 11 3 LED Indicators 11 4 General 11 5 Firmware Specifications 11 7 Port Control 11 7 QoS 11 8 L2 Switching 11 9 Security and Synchronization 11 12 OAM 11 13 Robustness and Power Saving 11 14 Management 11 15 MIBs 11 16 ...

Page 49: ... XGS3600 26F XGS3600 28F USER S GUIDE XLIX EMI Safety Specifications 11 19 Front Matter Appendix A Glossary of Web Based Management A 1 A A 1 C A 3 D A 4 E A 6 F A 7 H A 8 I A 9 L A 11 M A 12 N A 14 O A 15 P A 16 ...

Page 50: ...L Q A 18 R A 19 S A 20 T A 23 U A 25 V A 26 Appendix B Common Services B 1 Appendix C Legal Information C 1 Copyright C 1 Disclaimer C 1 Trademarks C 1 Certifications C 1 Federal Communications Commission FCC Interference Statement C 1 FCC Warning C 2 ...

Page 51: ...0 26F XGS3600 28F USER S GUIDE LI CE Mark Warning C 2 Taiwanese BSMI Bureau of Standards Metrology and Inspection A Warning C 2 Notices C 2 Viewing Certifications C 3 ZyXEL Limited Warranty C 3 Note C 3 Registration C 3 ...

Page 52: ...Part I Front Matter ...

Page 53: ...Front Matter Chapter 1 ...

Page 54: ...iber Ports XGS3600 28F 20 port GbE Fiber L2 Switch with Four GbE Combo Ports and Four 10G Fiber Ports The switch is a layer 2 standalone Ethernet switch with additional layer 2 layer 3 and layer 4 features suitable for Ethernets With its built in web configurator managing and configuring the switch is easy In addition the switch can also be managed via Telnet any terminal emulator program on the c...

Page 55: ...b Configurator This is recommended for everyday management of the switch using a supported web browser Command Line Interface Line commands offer an alternative to the Web Configurator and may be necessary to configure advanced fea tures See the CLI Reference Guide SNMP The device can be monitored and or managed by an SNMP manager See SNMP on page 6 23 ...

Page 56: ... of characters such as numbers and let ters Write down the password and put it in a safe place Back up the configuration and make sure you know how to restore it Restoring an earlier working configuration may be useful if the device becomes unstable or even crashes If you forget your password you will have to reset the switch to its factory default settings If you backed up an earlier configuratio...

Page 57: ...Front Matter Chapter 2 ...

Page 58: ...rculation and the attachment of cables and the power cord 4 Remove the adhesive backing from the rubber feet 5 Attach the rubber feet to each corner on the bottom of the switch These rubber feet help protect the switch from shock or vibration and ensure space between devices when stacking 17 18 19 20 13 14 15 16 9 10 11 12 5 6 7 8 1 AC INPUT 100 2 40VA C XG S36 00 26F DC INPUT 48VD C RTN 48V 2 3 4...

Page 59: ...3600 26F XGS3600 28F 2 3 USER S GUIDE Note For proper ventilation allow at least 4 inches 10 cm of clearance at the front and 3 4 inches 8 cm at the back of the switch This is espe cially important for enclosed rack installations ...

Page 60: ...brackets Eight M3 flat head screws and a 2 Phillips screwdriver Four M5 flat head screws and a 2 Phillips screwdriver WARNING Failure to use the proper screws may damage the unit 2 2 1 1 Precautions Make sure the rack will safely support the combined weight of all the equipment it contains Make sure the position of the switch does not make the rack unstable or top heavy Take all necessary precauti...

Page 61: ... 6 7 8 1 AC INPUT 100 240VAC XGS3600 26F DC INPUT 48VDC RTN 48V 2 3 4 MGMT 1000 CONSOLE 100 PWR AC PWR AC SYS ALM LINK ACT 21 22 23 24 21 22 23 24 Figure 2 2 MGS3600 24F XGS3600 26F XGS3600 28F Attaching the Mounting Brackets 2 Using a 2 Phillips screwdriver install the M3 flat head screws through the mounting bracket holes into the switch 3 Repeat steps 1 and 2 to install the second mounting brac...

Page 62: ...f the rack 17 18 19 20 13 14 15 16 9 10 11 12 5 6 7 8 1 AC INPUT 100 240VAC XGS3600 26F DC INPUT 48VDC RTN 48V 2 3 4 MGMT 1000 CONSOLE 100 PWR AC PWR AC SYS ALM LINK ACT 21 22 23 24 21 22 23 24 Figure 2 3 MGS3600 24F XGS3600 26F XGS3600 28F Mounting the Switch on a Rack 2 Using a 2 Phillips screwdriver install the M5 flat head screws through the mounting bracket holes into the rack 3 Repeat steps ...

Page 63: ...Front Matter Chapter 3 ...

Page 64: ...40VAC XGS3600 24F DC INPUT 48VDC RTN 48V 2 3 4 MGMT 1000 CONSOLE 100 PWR AC PWR AC SYS ALM LINK ACT 21 22 23 24 21 22 23 24 1 2 3 4 6 7 Figure 3 1 MGS3600 24F Front Panel 17 18 19 20 13 14 15 16 9 10 11 12 5 6 7 8 1 AC INPUT 100 240VAC XGS3600 26F DC INPUT 48VDC RTN 48V 2 3 4 25 26 MGMT 1000 CONSOLE 100 PWR AC PWR AC SYS ALM LINK ACT 21 22 23 24 21 22 23 24 1 2 3 4 5 6 7 Figure 3 2 XGS3600 26F Fro...

Page 65: ...ectricity grid 2 DC Backup Power Supply 3 pin terminal block Connect 48 V DC backup power to here 3 SFP Subscriber Ports 20 x 100 1000 Mbps Connect these ports to a subscriber s computer 4 SFP RJ 45 Dual Personality Interfaces 4 Connect these interfaces to local servers routers or switches Each interface consists of a pair of ports one SFP 100 1000 Mb port and one RJ 45 10 100 1000Base T port Only...

Page 66: ...ion layer of the network XGS3600 28F only 6 RS 232 Management Port Connect this port to an RS 232 interface to configure the switch using the command line interface CLI 7 RJ 45 Management Port 10 100 1000 Mbps Connect this Ethernet port to the out of band remote management network Table 3 1 Front Panel Connections CONNECTOR DESCRIPTION ...

Page 67: ...omprising four 1000Base T and four mini GBIC combo ports For each interface you can connect either to the 1000Base T port or the mini GBIC port The mini GBIC ports have priority over the 1000Base T ports This means that if a mini GBIC port and the corresponding 1000Base T port are connected at the same time the 1000Base T port will be disabled ...

Page 68: ...full duplex at 100 Mbps and full duplex only at 1000 Mbps An auto negotiating port can detect and adjust to the optimum Ethernet speed 100 1000 Mbps and duplex mode full duplex or half duplex of the connected device An auto crossover auto MDI MDI X port automatically works with a straight through or crossover Ethernet cable 3 1 2 1 Default Ethernet Settings The factory default negotiation settings...

Page 69: ...e transceivers that comply with the Small Form Factor Pluggable SFP Transceiver MultiSource Agreement MSA See the SFF committee s INF 8074i specification Rev 1 0 for details You can change transceivers while the switch is operating You can use different transceivers to connect to Ethernet switches with different types of fiber optic connectors Type SFP connection interface Connection speed 1 Gigab...

Page 70: ...SFP or XFP module 1 Insert the transceiver into the slot with the exposed section of PCB board facing down Figure 3 4 Transceiver Installation Example 2 Press the transceiver firmly until it clicks into place 3 The switch automatically detects the installed transceiver Check the LEDs to verify that it is functioning properly Figure 3 5 Installed Transceiver ...

Page 71: ...3 1 3 3 Transceiver Removal Use the following steps to remove a mini GBIC transceiver SFP module 1 Open the transceiver s latch styles vary Figure 3 6 Opening the Transceiver s Latch Example 2 Pull the transceiver out of the slot Figure 3 7 Transceiver Removal Example ...

Page 72: ...lled it WARNING Make sure you are using the correct power source as shown on the panel and that no objects obstruct the airflow of the fans Use only power wires of the required diameter for connecting the switch to a power supply AC Power Connection 1 Connect the female end of the power cord to the power socket of your switch 2 Connect the other end of the cord to a power outlet ...

Page 73: ...ep as possible and make sure that no exposed bare wire can be seen or touched WARNING Exposed power wire is dangerous Use extreme care when connecting a DC power source to the device To connect a power supply 1 Use a screwdriver to loosen the terminal block captive screws 2 Connect one end of a power wire to the switch s RTN return pin and tighten the captive screw 3 Connect the other end of the p...

Page 74: ... with terminal emulation software configured to the following parameters VT100 terminal emulation 115200 bps No parity 8 data bits 1 stop bit No flow control Connect the male 9 pin end of the RS 232 console cable to the console port of the switch Connect the female end to a serial port COM1 COM2 or other COM port of your computer ...

Page 75: ...em is off SYS Green Blinking The system is rebooting and performing self diagnostic tests On The system is on and functioning properly Off The power is off or the system is not ready malfunctioning ALM Red On There is a hardware failure Off The system is functioning normally RJ 45 Dual Personality 1000Base T Ports 21 24 Green On The 1000 Mbps link is up Amber On The 100 Mbps link is up Green Amber...

Page 76: ...ng The system is transmitting receiving data Off The link to an Ethernet network is down 1 10 GbE mini GBIC Ethernet Uplink Ports 25 26 Green On The 1 Gbps link is up Amber On The 10 Gbps link is up Green Amber Blinking The system is transmitting receiving data Off The link to an Ethernet network is down Table 3 2 LEDs Continued LED COLOR STATUS DESCRIPTION ...

Page 77: ...Front Matter Chapter 4 ...

Page 78: ...rview This chapter describes how to show an overview of the traffic flowing on all ports and detailed statistics for each port Use the Traffic Overview screen to see an overview of the traffic flowing on all ports Detailed Statistics screen to see individual port statistics ...

Page 79: ... 3 USER S GUIDE 4 2 Traffic Overview Use the Traffic Overview sub menu to see the traffic statistics for all switch ports To show an overview of traffic statistics click Configuration Port Traffic Overview Figure 4 1 Configuration Port Traffic Overview ...

Page 80: ...packets per port Bytes These fields show the number of received and transmitted bytes per port Errors These fields show the number of frames received in error and the number of incomplete transmis sions per port Drops These fields show the number of frames discarded due to ingress or egress congestion Filtered This field shows the number of received frames filtered by the switch forwarding process...

Page 81: ...enu to see per port traffic statistics To show detailed statistics 1 Click Configuration Port Detailed Statistics 2 Select the port number from the Port Index drop down box to show detailed port statistics for that port Figure 4 2 Configuration Port Detailed Statistics The following table describes the labels in this screen ...

Page 82: ...show the number of received and transmitted good and bad broadcast pack ets Rx and Tx Pause These fields show the number of received and transmitted pause frames Receive and Transmit Size Counters These fields show the number of received and transmitted good and bad packets catego rized by size Receive and Transmit Queue Counters These fields show the number of received and transmitted packets per...

Page 83: ...e configured maximum frame size received with invalid CRCs Rx Filtered This field shows the number of received frames filtered by the forwarding process Transmit Error Counters Tx Drops This field shows the number of frames dropped due to output buffer congestion Tx Late Exc Coll This field shows the number of frames dropped due to excessive or late collisions Table 4 2 Configuration Port Detailed...

Page 84: ...Front Matter Chapter 5 ...

Page 85: ...al time is then displayed in the switch logs The VLANs section describes how to configure VLANs The IP Setup section describes how to configure a switch IP address in each routing domain subnet mask s and DNS domain name server for management purposes Web management screens have some common elements that are described here once Auto refresh Check this checkbox to configure the Web interface to ref...

Page 86: ...System Information Information screen to check the firmware version number Use the System System Information Configuration and System Time Manual screens to configure the system name and time Use the Configuration VLAN VLAN membership screen to configure VLANs Use the System IP IPv4 screen to configure the switch IPv4 address default gateway device the default domain name server and the management...

Page 87: ... overview of the state of the switch including the software version used host MAC address and switch serial number This information helps support personnel to diagnose a malfunction Click System System Information Information to show the System Information screen Figure 5 1 System System Information Information The following table describes the labels in this screen ...

Page 88: ...te This field shows the system time of the device The format is YYYY MM DD HH MM SS System Uptime This field shows the accumulated time since the device was powered up BIOS Version This field shows the BIOS version in the device Firmware Version This field shows the firmware version in the device Hardware Mechanical Ver sion This shows the electronic and mechanical versions of the device The value...

Page 89: ...his shows the total number of entries that the device can hold in its forwarding database Transmit Queue This shows the number of hardware priority transmit queues per port on this device Maximum Frame Size This shows the maximum frame size of the device Fan Speed This shows the speeds of fan 1 2 and 3 Powers This shows the voltage supplied by the internal AC power supply and the external DC power...

Page 90: ...m Information Configuration 2 Enter System Contact System Name System Location information 3 Click Save to save the configuration or Reset to discard your changes Figure 5 2 System System Information Configuration Use the Time sub menu to set the time manually or configure NTP To manually configure the time 1 Click System Time Manual The Time Configuration screen appears 2 Enter the time parameter...

Page 91: ...ield identifies the person responsible for this device and their contact information The maximum length of text is 255 characters and each character can have an ASCII code of 32 to 126 System Name This field contains the user defined system name This is usually the fully qualified domain name FQDN This must begin with a letter end with a letter or digit and have letters dig its or hyphens in betwe...

Page 92: ...en the From and To times Time Set Offset Use this field to configure the daylight saving time offset If this is non zero the From and To fields must be configured to enable daylight saving mode Daylight Savings Type Select By dates or Recurring to configure how the From and To fields are used to define daylight saving time Select By dates to start and finish daylight saving on fixed dates Select R...

Page 93: ...ber from accessing the network resources of another on the same LAN thus a user will not see the printers and hard disks of another user in the same building VLANs also increase network performance by limiting broadcasts to a smaller and more manageable logical broadcast domain In traditional switched environments all broadcast packets go to each and every individual port With VLAN all broadcasts ...

Page 94: ...ration VLAN VLAN membership LABEL DESCRIPTION VLAN ID Use this field to configure the identity of this VLAN VLAN Name Use this field to configure the name of VLAN The VLAN name can only contain alphabetic or numeric characters and should contain at least one alphabetic character Port Members Use these check boxes to configure membership for each VLAN ID No ports are mem bers by default ...

Page 95: ... managed over the network The factory default static IP address is 192 168 1 1 The subnet mask specifies the network number portion of an IP address The factory default subnet mask is 255 255 255 0 Inband configuration applies to non management ports and outband configuration applies only to the management port The switch gets its management IPv4 configuration via DHCP by default If there is no DH...

Page 96: ...fails and the configured IP address is zero DHCP will retry If DHCP fails and the configured IP address is non zero DHCP will stop and the static IP settings will be used The DHCP client will announce the configured System Name as host name to provide DNS lookup IP Address Use this field to set the management IPv4 address of this switch IP Mask Use this field to set the IPv4 mask of this switch IP...

Page 97: ...Pv4 address of the DNS Server DNS Proxy Use this check box to enable or disable the DNS Proxy When DNS Proxy is enabled the device appears as a DNS resolver to DNS clients connected to the device Only valid DNS requests are relayed to the DNS server on behalf of DNS clients connected to the device This helps to protect DNS clients against attack Table 5 4 System IP IPv4 LABEL DESCRIPTION ...

Page 98: ...8F 5 15 USER S GUIDE 5 6 Port Configuration Use the Configuration sub menu to configure the speed flow control and power saving characteristics of each port To configure a port 1 Click Configuration Port Configuration 2 Specify the port parameters ...

Page 99: ...FRONT MATTER MGS3600 24F XGS3600 26F XGS3600 28F 5 16 USER S GUIDE 3 Click Save Figure 5 6 Configuration Port Configuration The following table describes the labels in this screen ...

Page 100: ...t Tx column indicates whether pause frames on the port are transmitted If the configured link speed is auto the current Rx and Tx fields show the flow control capabilities of the link partner If the configured link speed is fixed the current Rx and Tx fields reflect that setting The cur rent Rx and Tx settings are determined by the result of the last Auto Negotiation Flow control is not possible f...

Page 101: ...configure power saving options Possible power control modes are Disabled All power saving mechanisms disabled ActiPHY Link down power saving enabled PerfectReach Link up power saving enabled Enabled Both link up and link down power savings enabled Table 5 5 Configuration Port Configuration LABEL DESCRIPTION ...

Page 102: ...Part II Front Matter ...

Page 103: ...ation and optimize network bandwidth They provide the ideal combination of features and affordability for the entry level networking requirements of small business or enterprise applications to help create a more efficient and better connected workforce MGS3600 24F XGS3600 26F XGS3600 28F switches provide the following features Twenty 100 1000 SFP ports Four dual personality ports 10 100 1000 BASE...

Page 104: ...s as follows Table 6 1 Default Management Interface Configuration DHCP Client Enabled Static IP Address 192 168 1 1 Static Subnet Mask 255 255 255 0 Static Default Gateway 192 168 1 254 Username admin Password Blank password Note The default admin password is blank so simply press enter at the password prompt The MGS3600 24F XGS3600 26F XGS3600 28F Web interface can be accessed over IPv4 or IPv6 T...

Page 105: ...Front Matter Chapter 6 ...

Page 106: ...FRONT MATTER MGS3600 24F XGS3600 26F XGS3600 28F 6 5 USER S GUIDE 6 1 System Configuration This chapter describes the System Information Time Account IP Syslog and SNMP sub menus ...

Page 107: ...n screen Parameter description Model Name This field shows the model number of the device System Description This field shows a short description of the device Location This field shows the user defined location of the device Contact This field shows the user defined contact information of the person responsible for maintaining this device Device Name This field shows the user defined system name ...

Page 108: ...ess This shows the IP address of the device Subnet Mask This shows the subnet mask of the device Gateway IP Address This shows the IP address that the device uses for its gateway Host MAC Address This shows the MAC address of the management agent in this device Console Baudrate This shows the baud rate of the device s console port RAM Size This shows the amount of RAM in this device Flash Size Thi...

Page 109: ...ws the maximum frame size of the device Fan Speed This shows the speeds of fan 1 2 and 3 Powers This shows the voltage supplied by the internal AC power supply and the external DC power input Temperature 1 to 4 This shows the temperature of four important chips in the device ...

Page 110: ...s the person responsible for this device and their contact information The maximum length of text is 255 characters and each character can have an ASCII code of 32 to 126 System Name This field contains the user defined system name This is usually the fully qualified domain name FQDN This must begin with a letter end with a letter or digit and have letters digits or hyphens in between The maximum ...

Page 111: ...S GUIDE 6 2 3 CPU Load Use this screen to see a graph rendered by SVG of how the CPU is being used The load is shown as a points that are the average load over 100 ms 1 second and 10 second intervals To see the CPU Load Click System System Information CPU Load ...

Page 112: ...board clock or from a remote NTP server Local Time Use this field to set the device s onboard clock Time Zone Offset Use this field to configure the time zone offset relative to UTC GMT This is also used when NTP synchronizes time Daylight Savings Use this check box to enable or disable daylight saving mode In daylight saving mode the time will be offset by the Time Set Offset value between the Fr...

Page 113: ...g to start and finish daylight saving on a day of the month From Use this field to configure the start of daylight saving time The top From field is active if the By dates radio button is selected in Daylight Savings Type otherwise the bottom From field is active To Use this field to configure the end of daylight saving time The top To field is active if the By dates radio button is selected in Da...

Page 114: ... button Though it synchronizes the time automatically NTP does not update the time periodically without user intervention Note You must enter the Time Zone Offset in System Time Manual before performing a time sync via NTP because the switch will calculate local time from the time zone offset and the NTP time The time zone range is from 12 to 13 in steps of 1 hour The default time zone off set is ...

Page 115: ... Guests must confirm their identity in the Authorization field before configuring the username and password There is only one administrator and this administrator cannot be deleted Up to 4 guest accounts can be created To add a user account 1 Click System Account User The Users Configuration screen appears 2 Click Add new user The Add User screen appears 3 Enter the new user name password and priv...

Page 116: ...on the group The user s privilege level must be the same or greater than the group privilege level to have the access of that group By default for most groups privilege level 5 has read only access and privilege level 10 has read write access System maintenance software upload factory defaults etc needs user privilege level 15 Privilege level 15 is used for an administrator account privilege level...

Page 117: ... System Access Management Port 802 1x port MAC based and the MAC Address Limit ACL HTTPS SSH ARP Inspection and IP source guard IP Everything except ping Port Everything except VeriPHY Diagnostics Ping and VeriPHY Maintenance CLI System Reboot System Restore Default System Password Configuration Save Configuration Load and Firmware Load Web Users Privilege Levels and everything in Maintenance Debu...

Page 118: ...description The Configured column is used to view or change the IP configuration The Current column is used to show the active IP configuration DHCP Client Use this check box to enable or disable the DHCP client If DHCP fails and the configured IP address is zero DHCP will retry If DHCP fails and the configured IP address is non zero DHCP will stop and the static IP settings will be used The DHCP ...

Page 119: ...and default gateway DNS Server Use this field to set the IPv4 address of the DNS Server DNS Proxy Use this check box to enable or disable the DNS Proxy When DNS Proxy is enabled the device appears as a DNS resolver to DNS clients connected to the device Only valid DNS requests are relayed to the DNS server on behalf of DNS clients connected to the device This helps to protect DNS clients against a...

Page 120: ...nfiguration fails the configured IPv6 address is zero The router may delay responding to a router solicitation for a few seconds so the total time needed to complete auto configuration can be significantly longer Address Use this field to set the IPv6 address of this switch An IPv6 address is a 128 bit value represented by eight colon separated hexadecimal strings of four digits An example address...

Page 121: ... Syslog To configure Syslog 1 Click System Syslog Configuration 2 Specify the syslog parameters 3 Click Save Parameter description Server Mode Use this drop down box to enable or disable sending syslog messages via UDP port 514 to a syslog server UDP is connectionless so sys log messages are sent even if the syslog server does not exist Server Address 1 and 2 Use these fields to configure up to tw...

Page 122: ...d the number of entries per page or click or to move to the previous or next entry Parameter description ID This shows the ID of the system log entry Click an ID to see a detailed view of that entry Level This shows the level of the system log entry Possible levels are Emergency Alert Critical Error Warning Notice Informational and Debug Time This shows the time that the log entry was made Message...

Page 123: ...b menu to show a detailed view of a log entry To display a detailed log entry 1 Click System Syslog Detailed Log 2 Select an ID to see a detailed view of that entry Parameter description ID Use this drop down box to select the ID of the system log entry Message This shows the details of a log entry ...

Page 124: ...n Base MIB Most communication is initiated by the SNMP Manager traps are the only communication initiated by agents 6 7 1 System To enable or disable SNMP 1 Click System SNMP System 2 Specify the SNMP parameters 3 Click Apply Parameter description SNMP State Use these radio buttons to enable default or disable the SNMP agent Engine ID Use this field to configure the SNMPv3 Engine ID The Engine ID ...

Page 125: ...er description Delete Use this check box to mark an entry for deletion The entry is deleted during the next save Community Use this field to configure an SNMPv3 community access string Community strings can be up to 32 characters each of which with ASCII codes from 33 to 126 The community string is treated as a security name and mapped to an SNMPv1 or SNMPv2c community string User Name Use this fi...

Page 126: ...p down box to configure the security level of a new entry Possible security levels are NoAuth NoPriv No authentication and no privacy Auth NoPriv Authentication and no privacy Auth Priv Authentication and privacy The security level of an existing entry can t be changed Authentication Protocol Use this drop down box to configure the authentication protocol of a new entry Possible authentication pro...

Page 127: ...r can be an ASCII code from 33 to 126 Privacy Protocol Use this drop down box to configure the privacy protocol of a new entry Possible privacy protocols are None No privacy protocol DES An optional flag to indicate that this user uses the DES authentication protocol Privacy Password Use this field to configure an privacy password phrase Passwords are 8 to 32 characters long Each character can be ...

Page 128: ...e Parameter description Delete Use this check box to mark an entry for deletion The entry is deleted during the next save Security Model Use this drop down box to configure the security model of a new entry Possible security models are v1 SNMPv1 v2c SNMPv2c usm SNMPv3 User based Security Model USM Security Name Use this field to configure a security name Security names can be up to 32 characters e...

Page 129: ...he entry is deleted during the next save View Name Use this field to configure a view name View names can be up to 32 characters each of which with ASCII codes from 33 to 126 View Type Use this drop down box to configure the view type of a new entry Possible view types are included This view is included excluded This view is excluded In general for every excluded view there should be another inclu...

Page 130: ... for deletion The entry is deleted during the next save Group Name Use this field to configure a group name Group names can be up to 32 characters each of which with ASCII codes from 33 to 126 Security Model Use this drop down box to configure the security model of a new entry Possible security models are any Any security model accepted v1 SNMPv1 v2c SNMPv2c usm SNMPv3 User based Security Model US...

Page 131: ...S3600 26F XGS3600 28F 6 30 USER S GUIDE Read View Name Use this drop down box to configure the SNMP view used to read MIB values Write View Name Use this drop down box to configure the SNMP view used to read and write MIB values ...

Page 132: ...P address of the host that will receive the trap UDP Port Use this field to configure the UDP port number that traps are sent to The default is port is 162 Community Security Name Use this field to configure an SNMPv3 community access string Community strings can be up to 32 characters each of which with ASCII codes from 33 to 126 The community string is treated as a security name and mapped to an...

Page 133: ...er uses the SHA authentication protocol Authentication Password Use this field to configure an authentication password phrase MD5 passwords are 8 to 32 characters long SHA passwords are 8 to 40 characters long Each character can be an ASCII code from 33 to 126 Privacy Protocol Use this drop down box to configure the privacy protocol of a new entry Possible privacy protocols are None No privacy pro...

Page 134: ...Front Matter Chapter 7 ...

Page 135: ...FRONT MATTER MGS3600 24F XGS3600 26F XGS3600 28F 7 2 USER S GUIDE 7 1 Configuration This chapter describes the sub menus used to configure the core functions of this device ...

Page 136: ...port number for this row Link This field shows the current link state Green indicates the link is up and red that it is down Current Link Speed This field shows the current link speed Configured Link Speed Use this drop down box to select a fixed link speed or Auto to select the highest speed that is compatible with a link partner Disabled to disable the switch port operation Flow Control Check th...

Page 137: ... field to configure the maximum frame size including Frame Check Sequence FCS allowed for the port Excessive Collision Mode Use this drop down box to configure port transmit collision behavior Possible collision modes are Discard Discard frame after 16 collisions default Restart Restart backoff algorithm after 16 collisions Power Control Use this drop down box to configure power saving options Pos...

Page 138: ...ts This can be used to describe what the port is used for To configure a port description 1 Click Configuration Port Port Description 2 Enter some text in the Description field 3 Click Apply Parameter description Port This field shows the port number for this row Description Use this field to configure a user defined label for the port ...

Page 139: ...iption Port This field shows the port number for this row Packets These fields shows the number of received and transmitted packets per port Bytes These fields show the number of received and transmitted bytes per port Errors These fields show the number of frames received in error and the number of incomplete transmissions per port Drops These fields show the number of frames discarded due to ing...

Page 140: ...ved and transmitted good and bad byte This includes the FCS but excludes framing bits Rx and Tx Unicast These fields show the number of received and transmitted good and bad unicast packets Rx and Tx Multicast These fields show the number of received and transmitted good and bad multicast packets Rx and Tx Broadcast These fields show the number of received and transmitted good and bad broadcast pa...

Page 141: ...ber of frames bigger than the configured maximum frame size received with valid CRCs Rx Fragments This field shows the number of frames smaller than 64 bytes received with invalid CRCs Rx Jabber This field shows the number of frames bigger than the configured maximum frame size received with invalid CRCs Rx Filtered This field shows the number of received frames filtered by the forwarding process ...

Page 142: ...orts To show QoS statistics 1 Click Configuration Port QoS Statistics 2 Click a port number to show detailed statistics for that port Parameter description Port This field shows the port number for this row Rx Tx These fields show the number of received and transmitted packets per queue Qn is queue number n where n is 0 to 7 and Q0 is the high est priority queue ...

Page 143: ...ype e g UTP SC ST LC Fiber Type This field shows the fiber mode Multi Mode or Single Mode Tx Central Wavelength This field shows the fiber optic transmission central wavelength e g 850nm 1310nm 1550nm Baud Rate This field shows the maximum baud rate of the fiber module supported e g 10M 100M 1G Vendor OUI This field shows the manufacturer s OUI which is assigned by IEEE Vendor Name This field show...

Page 144: ... was made Temperature This field shows the current temperature of SFP module Vcc This field shows the working DC voltage of SFP module Mon1 Bias mA This field shows the bias current of SFP module Mon2 TX PWR This field shows the transmit power of SFP module Mon3 RX PWR This field shows the receiver power of SFP module ...

Page 145: ...tten once and used in more than one policy and a policy can be defined once and used on many ports 7 3 1 Ports Use the Ports sub menu to apply a policy and default ACL actions to each port Default ACL actions affect frames received on a port unless the frame matches a specific ACE To configure ACL port actions and policies 1 Click Configuration ACL Ports 2 Configure the parameters for one or more ...

Page 146: ...Choose Disabled not to copy traffic or choose a port num ber to copy traffic Logging Use this drop down box to log traffic in the system log Choose Disabled to disable this action or choose Enabled to log traffic Note The system log memory and logging rate is limited Shutdown Use this drop down box to shut down the port if any traffic is received Choose Disabled to disable this action or choose En...

Page 147: ...te limiters used by ACEs To configure ACL rate limiters 1 Click Configuration ACL Rate Limiter 2 Configure the Rate field for one or more rate limiters 3 Click Save Parameter description Rate Limiter ID This field shows the rate limiter ID number for this row Rate Use this field to configure a rate limit of 0 to 131071 packets per second ...

Page 148: ...2 Click one of the following icons to view add or edit an ACE Inserts a new ACE before the current row Edits the ACE row Moves the ACE up the list Moves the ACE down the list Deletes the ACE The lowest plus sign adds a new entry at the bottom of the ACE listings 3 Configure the ACE parameters 4 Click Save Parameter description ACE parameters consist of conditions that must match to trigger an ACE ...

Page 149: ...ears when this is chosen ARP The ACE matches ARP RARP frames IPv4 The ACE matches any IPv4 packets MAC Parameters SMAC Filter This option appears when the Frame Type is Ethernet Type or ARP Use this drop down box to configure which source MAC addresses match this ACE Choose Any to configure this ACE to ignore the source MAC address or choose Specific and then complete the SMAC Value field to match...

Page 150: ...rnet Type Values less than 0x0600 or equal to 0x0800 IPv4 0x0806 ARP or 0x86DD IPv6 cannot be configured ARP Parameters ARP RARP and Request Reply Use a combination of these two drop down boxes to configure which ARP opcode field values match this ACE Possible combinations are Any Any The ACE matches any ARP opcode Any Request The ACE matches ARP opcode 1 and RARP opcode 3 requests Any Reply The A...

Page 151: ...gister a match in the ACE if the addresses are not equal or choose 1 to register a match in the ACE if the addresses are equal IP Ethernet Length Use this drop down box to configure the ACE to check if the hardware address length is 6 bytes Ethernet MAC address length and the protocol address length is 4 bytes IPv4 address length Choose Any to configure this ACE to ignore the check Choose 0 to reg...

Page 152: ...s and destination IP address field values match this ACE Choose Any to configure this ACE to ignore the source destination IP address field Choose Host and then complete the SIP Address or DIP Address field to match a specific source or destination IP address Choose Network and then complete the SIP Address or DIP Address and SIP Mask or DIP Mask fields to match all source destination IP addresses...

Page 153: ... to ignore the check Choose 0 to fail the ACE if the flag is set or choose 1 to register a match in the ACE if the flag is set ACE Actions Action Use this drop down box to Permit default or Deny forwarding of traffic that matches the ACE Rate Limiter Use this drop down box to apply a rate limiter ID if the ACE matches Choose Disabled to disable this action or choose 1 to 16 to apply a rate lim ite...

Page 154: ...me Type This field shows which Ethernet frame type matches this ACE Possible values are Any The ACE matches any frame type EType The ACE matches Ethernet frames that are not IP or ARP frames ARP The ACE matches ARP RARP frames IPv4 The ACE matches IPv4 packets IPv4 ICMP The ACE matches ICMP packets IPv4 UDP The ACE matches UDP packets IPv4 TCP The ACE matches TCP packets IPv4 Other n The ACE match...

Page 155: ... This field shows whether the ACE is configured to forward frames that match the ACE to the CPU CPU Once This field shows whether the ACE is configured to forward the first frame that match the ACE to the CPU Counter This field shows the number of frames that have matched the ACE Conflict This field shows whether the ACE has not been applied to the hardware due to hardware limitations ...

Page 156: ... be established To configure a static trunk 1 Click Configuration Aggregation Static Trunk 2 Configure the Hash Code Contributors 3 Click the corresponding radio button for each port you want to add to a trunk Note Each port in a trunk must be full duplex with the same speed 4 Click Save Parameter description Static trunk parameters consist of those that define member ports Aggregation Group Confi...

Page 157: ... destination IP addresses to the hash TCP UDP Port Number Use this check box to add the least significant byte of source and destination TCP UDP port numbers to the hash Aggregation Group Configuration Group ID This field shows the trunk s group ID for this row Normal means no aggregation Port Members Use these radio buttons to configure which trunk a port belongs to Note Each port in a trunk must...

Page 158: ... box to enable or disable LACP on this switch port LACP will form a trunk when two or more ports are connected to the same partner LACP can form maximum of twelve trunks Key Use this drop down box and field to configure a key for the trunk Ports must have the same key to participate in a trunk Choose Auto from the drop down box to let the switch configure the key according to link speed 1 for 10Mb...

Page 159: ...meter description Aggr ID This field shows the Aggregation ID associated with this aggregation instance Partner System ID This field shows the system ID MAC address of the aggregation partner Partner Key This field shows the Key that the partner has assigned to this aggregation ID Last changed This field shows the time since this aggregation changed Local Ports This field shows which ports are a m...

Page 160: ...on this port Yes means that LACP is enabled and the port link is up No means that LACP is not enabled or that the port link is down Backup means that the port could not join the aggregation group but will join if another port leaves Key This field shows the key assigned to this port Only ports with the same key can aggregate together Aggr ID This field shows the Aggregation ID assigned to this agg...

Page 161: ...ort status click Configuration Aggregation LACP Port Statistics Parameter description Port This field shows the port number for this row LACP Received This field shows how many LACP frames have been received at each port LACP Transmitted This field shows how many LACP frames have been sent from each port Discarded This field shows how many unknown or illegal LACP frames have been discarded at each...

Page 162: ...device which incurs the lowest path cost when forwarding a packet from that device to the root device Then it selects a designated bridging device from each LAN which incurs the lowest path cost when forwarding a packet from that LAN to the root device All ports connected to designated bridging devices are assigned as designated ports After determining the lowest cost spanning tree STP enables all...

Page 163: ...op down box to configure whether STP RSTP or MSTP runs on this switch Bridge Priority Use this drop down box to configure the priority Lower values mean higher priority The bridge priority plus the MSTI instance number con catenated with the MAC address of the switch forms a Bridge Identifier For MSTP operation this is the priority of the CIST otherwise this is the priority of the STP RSTP bridge ...

Page 164: ...ly configured as Edge will transmit and receive BPDUs Edge Port BPDU Guard Use this check box to configure whether a port explicitly configured as Edge will disable itself upon reception of a BPDU Disabled ports enter the error disabled state and are removed from the active topology Port Error Recovery Use this check box to configure whether a port in the error disabled state will be automatically...

Page 165: ...appings themselves Configuration Identification Configuration Name Use this field to configure the name identifying the collection of VLAN to MSTI mappings Bridges must share have the same Configuration Name and Configuration Revision as well as the MSTI Mapping configuration to share spanning trees in an MSTI region The name can be up to 32 characters Configuration Revision Use this field to conf...

Page 166: ...igure MSTI Priorities 1 Click Configuration Spanning Tree MSTI Priorities 2 Configure the Priority for one or more bridge instances 3 Click Save Parameter description MSTI This field shows the bridge instance Priority Use this field to configure the bridge priority Lower values have better priority The bridge priority plus the MSTI instance number concate nated with the 6 byte MAC address of the s...

Page 167: ...port Path Cost Use this drop down box to configure the cost incurred by this port when STP calculates the lowest path cost through this port to the root bridge Choose Auto to automatically assign an 802 1D recommended patch cost or choose Specific and then complete the adjacent field to manually assign a value from 1 to 200000000 Priority Use this drop down box to configure the priority of this po...

Page 168: ...ty after changes in a spanning tree s active topology as a result of persistently incorrect learned sta tion location information Restricted TCN is used to prevent bridges outside the core region of the network from causing address flushing in that region possibly because non core bridges are not under the full control of the administrator or the physical link state of the attached LANs transits f...

Page 169: ...t parameters consist of MSTI Aggregated Port Configuration settings for logically aggregated ports and MSTI Normal Port Configura tion settings for physical ports but the parameters are the same for both Port This field shows the port number for this row Path Cost Use this drop down box to configure the cost incurred by this port when STP calculates the lowest path cost through this port to the ro...

Page 170: ...ot bridge Root Port This field shows the switch port currently assigned the root port role Root Cost This field shows the root path cost For the root bridge it is zero For all other bridges it is the sum of the port path costs on the least cost path to the root bridge Regional Root This field shows the bridge ID of the regional root bridge in this bridge s MSTP region For the CIST instance only In...

Page 171: ...ole can be AlternatePort BackupPort RootPort or DesignatedPort State This field shows the STP port state The port state can be Discarding Learning or Forwarding Path Cost This field shows the current STP port path cost Edge This field shows the state of the operEdge flag If the operEdge flag is true the port transitions directly to the forwarding state because the port is at the edge of the networ...

Page 172: ...tion Spanning Tree Port Status Parameter description Port This field shows the port number for this row CIST Role This field shows the STP port role The port role can be AlternatePort BackupPort RootPort DesignatedPort or Disabled CIST State This field shows the STP port state The port state can be Blocking Learning or Forwarding Uptime This field shows the time since the bridge port was last init...

Page 173: ... of MSTP Configuration BPDUs received transmitted on the port RSTP This field shows the number of RSTP Configuration BPDUs received transmitted on the port STP This field shows the number of legacy STP Configuration BPDUs received transmitted on the port TCN This field shows the number of legacy Topology Change Notification BPDUs received transmitted on the port Discarded Unknown This field shows ...

Page 174: ...nstance Status page 3 Click Save Parameter description MRSTP Instance Configuration Global State Use this drop down box to enable or disable MRSTP Instance This field shows the MRSTP bridge instance number Click an instance number to show MRSTP Instance Status State Use this check box to enable this MRSTP instance Version Use this drop down box to configure whether this instance uses STP or RSTP P...

Page 175: ...ure the delay used by an MRSTP bridge instance to transit root and designated ports to the forwarding state used in STP compatible mode Valid values are in the range 4 to 30 seconds MRSTP Instance Status Global State This field shows whether MRSTP is globally enabled or disabled Instance State Config This field shows whether this instance is configured as enabled or disabled Instance This field sh...

Page 176: ...ge Current Max Age sec This field shows the max age time inherited from the root bridge Current Forward Delay sec This field shows forward delay time inherited from the root bridge Hello Time sec This field shows hello time inherited from the root bridge Topology Change Count This field shows the topology change count since this instance was operationally enabled Time Since Last Topology Change se...

Page 177: ... automatically assign an 802 1D recommended patch cost or choose Specific and then complete the adjacent field to manually assign a value from 1 to 200000000 Priority Use this drop down box to configure the priority of this port when MRSTP must decide between identical path costs Admin Edge Use this drop down box to configure the state of the operEdge flag when the port is initialized If the operE...

Page 178: ...3600 24F XGS3600 26F XGS3600 28F 7 45 USER S GUIDE Migrate Check Use this check box to force this port to send RSTP BPDUs instead of a legacy STP BPDUs This enables a port to quickly get back to acting as an RSTP port ...

Page 179: ... This is none if the bridge instance the port belongs to is disabled or the port is not an MRSTP port or DSGN if this port is a designated port PathCost This field shows the cost incurred by this port when MRSTP calculates the lowest path cost through this port to the root bridge Choose Auto to automatically assign an 802 1D recommended patch cost or choose Specific and then complete the adjacent ...

Page 180: ...to the for warding state because the port is at the edge of the network and an edge device non STP device is attached to this port Admin P2P This field shows whether the port is configured as being connected to point to point or shared media Forced True means point to point media Forced False means shared media and Auto means the switch decides Transition to the forwarding state is faster for poin...

Page 181: ...d processor power on non member hosts The switch can also use this table to function as an IGMP MLD proxy so only the first member to join and the last member to leave a multi cast group trigger join and leave packets toward the multicast router This saves memory and processing power on the router because it only has to process one join or leave packet 7 7 1 Basic Configuration Use the Basic Confi...

Page 182: ...nable or disable the IGMP Proxy Port Related Configuration Port This field shows the port number for this row Router Port Use this check box to configure whether this port leads towards the IGMP querier Fast Leave Use this check box to enable or disable fast leave on this port Throttling Use this drop down box to enable or disable the limit on the number of multicast groups a switch port can belon...

Page 183: ...ox to enable or disable snooping on this VLAN A maximum of 32 VLANs can be enabled IGMP Querier or MLD Querier Use this check box to enable or disable IGMP or MLD queries to be forwarded to this VLAN Compatibility Use this drop down box to configure which version of IGMP or MLD is allowed on this VLAN Choose IGMP Auto Forced IGMPv1 Forced IGMPv2 or Forced IGMPv3 for IGMP or choose MLD Auto Forced ...

Page 184: ...4 and MLD IPv6 respectively They are equivalent in purpose Use this field to configure LMQI or LLQI to a value from 0 to 31744 default 10 in tenths of a second LMQI is the Max Response Time IGMP or Maximum Response Delay MLD used to calculate the value of the Max Resp Code IGMP or Maximum Response Code MLD field in Group Specific Queries IGMP or Multicast Address Specific Queries MLD and Group and...

Page 185: ...uter can receive them For example in metropolitan or multiple dwelling unit installations each customer is connected to a port so Port Group Filtering can be used to ensure the distribution of multicast services such as IPTV matches customer subscriptions To configure a port group filter 1 Click Configuration IGMP Snooping or MLD Snooping Port Group Filtering 2 Click Add new Filtering Group 3 Conf...

Page 186: ...ld shows the host version Querier Status This field shows the status of the querier Possible values are ACTIVE IDLE or DISABLE DISABLE means the interface is administratively disabled Queries Transmitted This field shows the number of queries transmitted Queries Received This field shows the number of queries received V1 Reports Received and V2 Reports Received This field shows the number of versi...

Page 187: ...eived Port This field shows which port will be filtered Filtering Groups This field shows which ports lead towards the multicast router or IGMP querier Static means this port is a router port Dynamic means this port can learn to be a router port Both means this port is statically configured and can learn to be a router port ...

Page 188: ...lticast group member is connected To show group information click Configuration IGMP Snooping or MLD Snooping Group Information Parameter description VLAN ID This field shows the VLAN ID for this row Groups This field shows the multicast group address for this row Port Members This field shows the ports that are connected to members of this group ...

Page 189: ...tion within the network only within each source host Different applications running on the same source host must use different SSM groups Different applications running on different source hosts can arbitrarily reuse SSM group addresses without causing any excess traffic on the network IPv4 addresses in the range 232 0 0 0 8 232 0 0 0 to 232 255 255 255 are reserved for SSM by IANA In the switch y...

Page 190: ...source ports because they send and receive multicast data to and from the multicast VLAN When a subscriber selects a TV channel the access switch forwards the subscriber s IGMP join message to the multicast VLAN and begins selectively forwarding multicast content to the subscriber 7 8 1 Configuration Use the Configuration sub menu to establish MVR over a VLAN on selected ports To configure MVR 1 C...

Page 191: ...26F XGS3600 28F 7 58 USER S GUIDE Type Use this drop down box to configure whether this port is connected to a multicast source or a multicast receiver Immediate Leave Use this drop down box to enable or disable fast leave on this port ...

Page 192: ... where each MVR group member is connected To show MVR group information click Configuration MVR Groups Information Parameter description VLAN ID This field shows the VLAN ID for this row Groups This field shows the multicast group address for this row Port Members This field shows the ports that are connected to members of this group ...

Page 193: ... MVR To show the MVR status click Configuration MVR Statistics Parameter description VLAN ID This field shows the VLAN ID for this row V1 Reports Received V2 Reports Received and V3 Reports Received This field shows the number of IGMP version 1 2 and 3 reports received V2 Leaves Received This field shows the number of IGMP version 2 leaves received ...

Page 194: ...bal LLDP timers and how LLDP works on a port by port basis To configure LLDP 1 Click Configuration LLDP LLDP Configuration 2 Configure the parameters 3 Click Save Parameter description Tx Interval Use this field to configure how often this switch transmits LLDP frames to its neighbors Valid values are from 5 to 32768 seconds Tx Hold Use this field to configure the Time To Live TTL field in LLDP fr...

Page 195: ... incoming CDP frames The switch doesn t transmit CDP frames and CDP frames are only decoded if LLDP on the port is enabled Only CDP TLVs that can be mapped to corresponding fields in the LLDP neighbors table are decoded All other TLVs are discarded unrecognized CDP TLVs and discarded CDP frames are not shown in the LLDP statistics CDP TLVs are mapped to the LLDP neighbors table as follows The CDP ...

Page 196: ...nformation isn t removed immediately but gets removed when the hold time is exceeded Port Descr Sys Name Sys Descr Sys Capa and Mgmt Addr Use these check boxes to configure whether port descriptions the system name the system description system capabilities and manage ment address are included in the LLDP information sent ...

Page 197: ...eighbor port System Name This field shows the system name of the neighbor Port Description This field shows the port description of the neighbor port System Capabilities This field shows what the neighboring device can do The possible capabilities are Other Repeater Bridge WLAN Access Point Router Telephone DOCSIS cable device Station only and Reserved When a capability is enabled the capability i...

Page 198: ...r network devices and determine their characteristics manufacturer software and hardware versions serial or asset number To configure LLDP MED 1 Click Configuration LLDP LLDP MED Configuration 2 Configure the Fast Start Repeat Count Coordinates Location Civic Address Location and Emergency Call Service parameters 3 Under Policies click Add new policy and complete the policy configuration fields 4 ...

Page 199: ...gure one of the following Map Datums WGS84 Geographical 3D World Geodesic System 1984 CRS Code 4327 Prime Meridian Name Greenwich NAD83 NAVD88 North American Datum 1983 CRS Code 4269 Prime Meridian Name Greenwich The associated vertical datum is the North American Vertical Datum of 1988 NAVD88 Use this datum pair when referencing locations on land not near tidal water NAD83 MLLW North American Dat...

Page 200: ...railing street suffix Trailing street suffix Example SW Street suffix Street suffix Example Ave Platz House no House number Example 21 House no suffix House number suffix Example A 1 2 Landmark Landmark or vanity address Example Columbia University Additional location info Additional location info Example South Wing Name Name residence and office occupant Example Flemming Jahn Zip code Postal zip ...

Page 201: ... during emergency call setup to a tradi tional CAMA or ISDN trunk based PSAP This format consists of a numerical digit string corresponding to the ELIN to be used for emer gency calling Policies Network Policy Discovery enables the efficient discovery and diagnosis of mismatch issues with the VLAN configuration along with the associ ated Layer 2 and Layer 3 attributes which apply for a set of spec...

Page 202: ...ent ports on the same Network Connectivity Device may advertise different sets of policies based on the authenticated user identity or port configuration LLDP MED is intended to run between this switch and endpoint devices so it doesn t need to advertise the multitude of policies configured on interior aggregated links Policy ID This field shows the automatically generated ID number for the policy...

Page 203: ...eo media and signalling policies Tag Use this drop down box to configure an untagged or IEEE 802 1Q tagged VLAN for this policy Choose Untagged to configure a policy not to include tag headers in frames sent by end devices An untagged policy ignores the VLAN ID and Layer 2 priority fields Choose Tagged to configure a policy to include tag headers in frames sent by end devices A tagged policy uses ...

Page 204: ... d IEEE 802 11 Wireless Access Point e Any device that supports the IEEE 802 1AB and MED extensions defined by TIA 1057 and can relay IEEE 802 frames via any method LLDP MED Endpoint Device Definition LLDP MED Endpoint Devices as defined in TIA 1057 are located at the IEEE 802 LAN network edge and participate in IP communica tion service using the LLDP MED framework Within the LLDP MED Endpoint De...

Page 205: ...ies expected to adhere to this class include but are not limited to Voice Media Gateways Conference Bridges Media Servers and similar Discovery services defined in this class include media type specific network layer policy discovery LLDP MED Communication Endpoint Class III The LLDP MED Communication Endpoint Class III definition is applicable to all endpoint products that act as end user communi...

Page 206: ...ibution applications that require specific network policy treat ment This application type doesn t cover video applications relying on TCP with buffering Video Signalling This is for network topologies that separate video media and signalling policies Policy This field shows whether the policy is Defined or Unknown and indicates whether the Endpoint Device wants to explicitly advertise that the po...

Page 207: ...e time when and elapsed time since the neighbors table last changed Total Neighbors Entries Added This field shows the number of new entries added since switch reboot Total Neighbor Entries Deleted This field shows the number of new entries deleted since switch reboot Total Neighbors Entries Dropped This field shows the number of LLDP frames dropped due to the entry table being full Total Neighbor...

Page 208: ... from the table when a given port s link is down an LLDP shutdown frame is received or when the entry ages out TLVs Discarded This field shows the number of LLDP frames with malformed TLV fields that have been discarded TLVs Unrecognized This field shows the number of LLDP frames received with well formed TLVs that have an unknown type Org Discarded This field shows the number of organizationally ...

Page 209: ...the CAM never to remove an entry Aging Time Use this field to configure a time out between 10 and 1000000 default 300 seconds for CAM entries MAC Table Learning Use the MAC Table Learning parameters to configure how the CAM is updated If the learning mode for a given port is greyed out another module is in control of how frames arriving on this port update the CAM An example of such a module is th...

Page 210: ...changing to secure learning mode otherwise the management link is lost and can only be restored by using another non secure port or by connecting to the switch via the serial inter face Static MAC Table Configuration Use the Static MAC Table Configuration parameters to configure up to 64 fixed entries in the CAM VLAN ID Use this field to configure the VLAN ID of the entry MAC Address Use this fiel...

Page 211: ...how the CAM click Configuration Filtering Data Base Dynamic MAC Table Parameter description MAC Table Columns Type This field shows whether the entry is a static or a dynamic entry VLAN This field shows the VLAN ID of the entry MAC address This field shows the MAC address of the entry Port Members These check boxes show the ports that are members of the entry ...

Page 212: ...ip 1 Click Configuration VLAN VLAN membership 2 Click Add New VLAN 3 Configure the parameters 4 Click Save Parameter description VLAN ID Use this field to configure the identity of this VLAN VLAN Name Use this field to configure the name of VLAN The VLAN name can only contain alphabetic or numeric characters and should contain at least one alphabetic character Port Members Use these check box es t...

Page 213: ... port number of this row Port Type Use this drop down box to configure the port as Unaware C port Customer port S port Service port S custom port Custom Service port If the port type is unaware all frames are classified with the PVID and tags are not removed Ingress Filtering Use this check box to enable or disable default ingress filtering on a port There are two ingress filtering rules which can...

Page 214: ...This mode is for ports connected to VLAN aware switches If Hybrid is selected and the classified VLAN ID of a frame transmitted on the port is different from the port VLAN ID a tag with the classified VLAN ID is inserted in to the frame If Access is selected all frames are untagged before transmission PVID Use this field to configure the port VLAN identifier default 1 Note The port must be a membe...

Page 215: ...thenticator and an Authentication Server MVRP Multiple VLAN Registration Protocol MVRP allows dynamic registration and de registration of VLANs on ports on a VLAN bridged network GVRP GARP VLAN Registration Protocol GVRP allows dynamic registration and de registration of VLANs on ports on a VLAN bridged network Voice VLAN Voice VLAN is a VLAN configured specially for voice traffic typically origin...

Page 216: ...the VLAN identifier for this port Port Type This field shows the port type Ingress Filtering This field shows whether ingress filtering is Enabled or Disabled on this port Frame Type This field shows whether the port accepts all frames or only tagged frames Tx Tag This field shows whether frames are tagged before they re sent UVID This field shows the untagged VLAN ID The port s UVID determines ho...

Page 217: ...1 and Private VLAN 1 A VLAN unaware port can only be a member of one VLAN but it can be a member of multiple Private VLANs Private VLANs Membership Use the Private VLAN Membership sub menu to configure which ports are part of a private VLAN To configure Private membership 1 Click Configuration VLAN Private VLAN Membership 2 Click Add New Private VLAN 3 Configure the parameters 4 Click Save Paramet...

Page 218: ... USER S GUIDE 1 Click Configuration VLAN Private VLANs Port Isolation 2 Configure the parameters 3 Click Save Parameter description Port Number Use these check boxes to configure which ports are isolated Port isolation is disabled on all ports by default ...

Page 219: ...ifferent VLAN the next time it accesses the network As a result it will not be able to use the resources in the old VLAN On the other hand if Port A and Port B belong to the same VLAN after terminal devices access the network through Port B they will have access to the same resources as those accessing the net work through Port A do which brings security issues MAC based VLANs solve these problems...

Page 220: ...Server or Combined MAC based VLAN users To show MAC based VLAN status 1 Click Configuration VLAN MAC based VLAN Status 2 Use the MAC based VLAN user drop down box to select the specific MAC based VLAN user of the configuration or choose Combined to see all VLANs from any VLAN user Parameter description MAC Address This field shows the MAC address for this entry VLAN ID This field shows the VLAN id...

Page 221: ...in the seven layer OSI reference model It provides multiplexing mechanisms that make it possi ble for several network protocols IP IPX Decnet and Appletalk to coexist within a multipoint network and to be transported over the same network media and can also provide flow control and automatic repeat request ARQ error management mechanisms SNAP The Subnetwork Access Protocol SNAP is a mechanism for ...

Page 222: ...This name must be unique across groups Group to VLAN Use the Group to VLAN sub menu to configure how Protocol based VLAN groups map to VLAN IDs To configure Group to VLAN mappings 1 Click Configuration VLAN Protocol based VLAN Group to VLAN 2 Click Add new entry 3 Configure the parameters 4 Click Save Parameter description Group Name Use this field to configure a 16 character alphanumeric group na...

Page 223: ...The propagation of information between GARP participants for the same application in a bridge is car ried out by the GARP Information Propagation GIP component Protocol exchanges take place between GARP participants by means of LLC Type 1 services using the group MAC address and PDU format defined for the GARP application concerned This switch has one GARP applica tion the GARP VLAN Registration P...

Page 224: ...0ms Application Use this drop down box to configure the GARP or MRP application to GVRP or MVRP Attribute Type Use this drop down box to configure the types of attributes distributed by GARP MRP to VLAN GARP MRP Applicant Use this drop down box to configure the Applicant state machine behavior for GARP MRP on this port to normal participant In this default mode the Applicant state machine will ope...

Page 225: ...r GARP MRP To show GARP MRP statistics 1 Click Configuration GARP or MRP Statistics Parameter description Port This field shows the port number of this row Peer MAC This field shows the MAC address of the neighbor switch from which a GARP MRP frame has been received Failed Count This field shows the number of packets that couldn t be sent ...

Page 226: ... other bridges This information allows GVRP MVRP aware devices to dynamically establish and update their knowledge of the set of VLANs that have members and the ports through which these members can be reached 7 13 1 Configuration Use the Configuration sub menu to setup GVRP MVRP for all switch ports To configure GVRP MVRP 1 Click Configuration GVRP or MVRP Configuration 2 Configure the Parameters...

Page 227: ...XGS3600 26F XGS3600 28F 7 94 USER S GUIDE Use this drop down box to Enable or Disable default GVRP MVRP mode on this port GVRP MVRP rrole Use this drop down box to configure the restricted role to Enable or Disable on this port ...

Page 228: ...istics for GVRP MVRP To show GVRP MVRP statistics click Configuration GVRP or MVRP Statistics Parameter description Port This field shows the port number of this row Join Tx Count This field shows the number of join events sent from this port Leave Tx Count This field shows the number of number of leave events sent from this port ...

Page 229: ...guarantees to the frame according to what was configured for that specific QoS class The switch support advanced memory control mechanisms providing excellent per formance of all QoS classes under any traffic scenario including jumbo frame A super priority queue with dedicated memory and strict highest pri ority in the arbitration The ingress super priority queue allows traffic recognized as CPU t...

Page 230: ...Tag Class This shows the following classification modes for tagged frames on this port Disabled Use default QoS class and DP level for tagged frames Enabled Use mapped versions of PCP and DEI for tagged frames PCP DEI to QoS class DP level Mapping on the QoS Ingress Port Tag Classification page for this port controls the mapping of classified PCP DEI to QoS class DP level values Click the mode to ...

Page 231: ...ure the default QoS class for frames not classified in any other way There is a one to one mapping between QoS class queue and priority A QoS class of zero has the lowest priority DP level Use this drop down box to configure the default Drop Precedence Level for frames not classified in any other way ...

Page 232: ...cription Policer This column header shows the policer number of 1 to 4 Enabled Check these check boxes to enable policers for this port Rate and Rate Unit Use these fields and drop down boxes to limit the data rate default is 500 for this port DP Bypass Level Use these drop down boxes to configure the drop precedence bypass level Frames with a Drop Precedence Level below the bypass level are not p...

Page 233: ...GS3600 26F XGS3600 28F 7 100 USER S GUIDE Flow Control Check these check boxes to send pause frames instead of dropping frames when the policed data rate is reached Pause frames are only sent if the port is in flow control mode ...

Page 234: ...ntain a steady rate of traffic To configure QoS Queue Policing 1 Click Configuration QoS Queue Policing 2 Configure the parameters 3 Click Save Parameter description Port This shows the port number of this row Enabled Check these check boxes to enable queue policers on this port Rate and Unit Use these fields and drop down boxes to limit the data rate default is 500 for this queue This value is re...

Page 235: ...eters 4 Click Save Parameter description Scheduler Mode Use this drop down box to configure the scheduler mode to Strict Priority or Weighted for this port Queue Shaper Enable Check these check boxes to enable queue shapers on this port Rate and Unit Use these fields and drop down boxes to limit the data rate default is 500 for this queue This value is restricted to 100 to 1000000 kbps or 1 to 132...

Page 236: ...hows the weight in percent for this queue Port Shaper Enable Check this check box to a enable port shaper on this port Rate and Unit Use these fields and drop down boxes to limit the data rate default is 500 for this queue This value is restricted to 100 to 1000000 kbps or 1 to 13200 Mbps ...

Page 237: ...ers 4 Click Save Parameter description Tag Remarking Mode Use this drop down box to configure how egress frames are re marked Possible values are Classified Use classified PCP DEI values Default Use default PCP DEI values Mapped Use mapped versions of QoS class and DP level PCP DEI Configuration These parameters appear when Tag Remarking Mode is Default Default PCP Use this drop down box to config...

Page 238: ...Mapping These parameters appear when Tag Remarking Mode is Mapped QoS class This field shows the QoS class for this row There is a one to one mapping between QoS class queue and priority A QoS class of zero has the lowest priority DP level This field shows the Drop Precedence Level for this row PCP Use this drop down box to configure the Priority Code Point written to egress frames DEI Use this dr...

Page 239: ...ange the DSCP field on ingress packets Ingress Classify Use this drop down box to configure how incoming packets are classified into flows Disable Don t classify any packets DSCP 0 Classify packets that have a DSCP of 0 Selected Classify packets with one of a set of selected DSCPs These selected DSCPs are those whose Ingress Classify check box is checked in the DSCP Translation page All Classify a...

Page 240: ...lass and DPL values To configure DSCP based QoS 1 Click Configuration QoS DSCP Based QoS 2 Configure the parameters 3 Click Save Parameter description DSCP This field shows the DSCP for this row Trust Check this check box to trust this DSCP value QoS Class Use this drop down box to configure the QoS class for this row DPL Use this drop down box to configure the Drop Precedence Level for this row ...

Page 241: ...figuration QoS DSCP Translation 2 Configure the parameters 3 Click Save Parameter description DSCP This field shows the DSCP for this row Ingress Translate Use this drop down box to configure the translated DSCP that is used for QoS class and DPL mapping of incoming packets Ingress Classify Check this check box to specify this DSCP be used to classify incoming packets Egress Remap Use this drop do...

Page 242: ... Classification sub menu to map DSCPs to QoS Classes To configure DSCP Classification 1 Click Configuration QoS DSCP Classification 2 Configure the Parameters 3 Click Save Parameter description QoS Class This field shows the QoS Class for this row DSCP Use this drop down box to configure a DSCP for this row ...

Page 243: ...n the list Deletes the QCE The lowest plus sign adds a new entry at the bottom of the QCE listings 3 Configure the parameters 4 Click Save Parameter description QCE parameters consist of conditions that must match to trigger a QCE and the actions that are carried out when an QCE is triggered QCE Conditions The items shown on the QCE Configuration page depend on the conditions selected E g select a...

Page 244: ...C address matches this QCE DMAC Type Use this drop down box to configure which destination MAC address match this QCE Possible values are Any The QCE matches any address MC The QCE matches multicast addresses BC The QCE matches broadcast addresses UC The QCE matches any unicast address Frame Type Use this drop down box to configure which frame type matches this QCE Possible frame types are Any The...

Page 245: ...ore the DSAP Choose Specific and then complete the Value field to match a specific DSAP from 0 to 0xFF Control Use this drop down box to configure which control address matches this QCE Choose Any to configure this QCE to ignore the control address Choose Specific and then complete the Value field to match a specific control address from 0 to 0xFF SNAP Parameters PID Use this drop down box to conf...

Page 246: ...wn box to configure which protocol in the IP header matches this QCE Choose Any to configure this QCE to ignore the protocol Choose UDP or TCP or choose Other and then complete the IP Protocol Value field match another protocol Source IP 32 LSB Use this drop down box to configure which least significant 32 bits of source IP address field values matches this QCE Choose Any to con figure this QCE to...

Page 247: ...s field shows which Ethernet frame type matches this QCE Possible values are Any The QCE matches any frame type Ethernet Type The QCE matches Ethernet frames with EtherTypes of 0x0600 to 0xFFFF LLC The QCE matches LLC frames SNAP The QCE matches SNAP frames IPv4 The QCE matches any IPv4 packets IPv6 The QCE matches any IPv6 packets Port This field shows the list of ports that match this QCE Action...

Page 248: ... 28F 7 115 USER S GUIDE DSCP This shows which DSCP is set if this QCE is triggered Conflict This field shows whether the QCE has not been applied to the hardware due to hardware limitations Resolve Conflict Click this button to resolve a conflict ...

Page 249: ...et being dropped is proportional to the amount of data it has in a queue Early detection helps avoid TCP global synchronization There were two bugs in classic RED so improvements to the algorithm were developed A draft paper was prepared but never published so the improvements were not widely implemented Pure RED does not accommodate quality of service QoS differentiation WRED and RED with In and ...

Page 250: ...o configure whether RED is enabled for this queue Min Threshold Use this field to configure the lower RED threshold If the average queue filling level is below this threshold the drop probability is zero This value is restricted to between 0 and 100 Max DP1 Max DP2 and Max DP3 Use this field to configure the drop probability for frames marked with Drop Precedence Level 1 2 or 3 when the average qu...

Page 251: ...low collector attributes 1 Click Configuration sFlow Agent Collector 2 Configure the Parameters 3 Click Save Parameter description Receiver Id This field shows the identity of this particular sFlow receiver IP Type Use this drop down box to configure whether the collector supports IPv4 or IPv6 IP Address Use this field to configure which IP address sFlow samples are sent Port Use this field to con...

Page 252: ...ONT MATTER MGS3600 24F XGS3600 26F XGS3600 28F 7 119 USER S GUIDE Use this field to configure the maximum UDP datagram size default 1400 bytes used for sending samples This must be from 200 to 1500 bytes ...

Page 253: ...s field shows the sFlow instance for this port Sampler Type Use this drop down box to configure what is sampled on this port Choose None default to disable sampling RX to sample traffic received TX to sample traffic sent or ALL to sample both sent and received traffic Sampling Rate Use this field to configure the switch to sample one in this number of frames This can be from 0 disabled to 4095 Max...

Page 254: ...cription Port to mirror on Use this drop down box to configure the port where traffic is mirrored to Port This field shows the logical port for this row Mode Use this drop down box to configure which traffic is mirrored Choose Rx only to mirror frames received on this port Choose Tx only to mir ror frames transmitted on this port Choose Enabled to mirror frames received and transmitted on this por...

Page 255: ...s will be sent to the system log To configure Trap Event Severity 1 Click Configuration Trap Event Severity Configuration 2 Configure the parameters 3 Click Save Parameter description Group Name The field shows the type of events that can be logged Severity Level Use this drop down box to configure the event severity required to cause events to be logged ...

Page 256: ...er Use this field to configure the IP Address of the SMTP server User Name and Password Use this field to configure the user name and password that the switch logs into the SMTP server with Severity Level Use this drop down box to configure the event severity required to cause events to be logged Sender Use this field to configure the SMTP sender name Return Path Use this field to configure the SM...

Page 257: ...acting the competitiveness of the service provider Ethernet has been used as a LAN technology for many years and enterprises have managed these networks effectively Ethernet OAM is a broad topic but this paper will focus on three main areas of Ethernet OAM that are most in need by service providers and are rapidly evolving in the standards bodies Service Layer OAM IEEE 802 1ag Connectivity Fault M...

Page 258: ...tion of the discov ery process to prevent passive to passive links Passive ports don t send Variable Request or Loopback Control OAMPDUs Loopback support Check this check box to enable this port to execute the remote loopback command that helps fault localization and link performance testing Link Monitor support Use this check box to configure whether this port supports event notification that per...

Page 259: ...sion errors as detected at the Media Access Control sub layer Event Seconds Summary The Error Frame Seconds Summary Event counts the number of error frame seconds that occurred during the time defined by the Win dow 100 msec field and generates an event if the error frame count is equal to or greater than the threshold Period Threshold for that time window An error frame second is a one second int...

Page 260: ...indow 100 msec field as the number of frames that can be received in this time period Error frames are frames that had transmission errors as detected at the Media Access Control sub layer Window 100 msec Use this field to configure the window for the observation of link events Period Threshold Use this field to configure the threshold that must be reached during the window period for a link event...

Page 261: ...NY Discovery State The field shows the current state of the discovery process The possible states are Fault state Active state Passive state SEND_LOCAL_REMOTE_STATE SEND_LOCAL_REMOTE_ OK_STATE SEND_ANY_STATE Remote MAC Address This field shows the MAC address of the remote device Mode The field shows the OAM Mode that the port is operating in Active or Passive Unidirectional Operation Support The ...

Page 262: ... OAMPDUs to the higher sub layer or looping them back through the lower sub layer When in the discarding state this port discards non OAMPDUs Organizational Unique Identification This field shows the 24 bit Organizationally Unique Identifier of the vendor PDU Revision This field shows the current revision of the Information TLV This value starts at zero and is incremented each time something in th...

Page 263: ...ow for the observation of Error Frame Events in 100 millisecond units Frame Error Event threshold This four octet field shows the number of error frames that must be detected during the window period for a link event to be generated Frame Errors This four octet field shows the number of detected error frames in the window period Total Frame Errors This eight octet field shows the number of error f...

Page 264: ... been generated since the OAM sub layer was reset Local and Remote Symbol Period Status Symbol Period Error Event Timestamp This two octet field shows when the event was generated in 100 millisecond units Symbol Period Error Event Window This eight octet field shows the duration of the window for the observation of error symbols in terms of symbols Symbol Period Error Event Threshold This eight oc...

Page 265: ...y Threshold This two octet field shows the number of error frame seconds that must be detected during the window period for a link event to be gener ated An error frame second is a one second interval wherein at least one frame error was detected Event Seconds Summary Events The field shows this two octet field indicates the number of error frames in the period Event Seconds Summary Error Total Th...

Page 266: ...ication OAMPDUs may be resent to reduce the chance of loss This field doesn t count duplicates Rx and Tx Duplicate Error Event Notification This field shows the number of Event OAMPDUs received and transmitted with duplicate OAMPDU Sequence Numbers on this interface Event Notification OAMPDUs may be resent to reduce the chance of loss This field counts the original as well as the duplicates Rx and...

Page 267: ... code Rx and Tx Link fault PDU s This field shows the number of link fault PDUs received and transmitted on this interface Rx and Tx Dying Gasp This field shows the number of dying gasp events received and transmitted on this interface Rx and Tx Critical Event PDU s This field shows the number of critical event PDUs received and transmitted on this interface ...

Page 268: ...AM 2 Click Add new MEP 3 Configure the parameters 4 Click Save Parameter description Instance Use this field to configure the identity of the MEP Domain Use this drop down box to configure the CFM domain Possible values are Port This is an MEP in the Port Domain The Flow Instance is a Port Esp This is reserved for future use and needs a firmware upgrade to support it Evc This is an MEP in the EVC ...

Page 269: ...vels 5 to 7 and the SP uses the remaining levels When the encapsulation is different the subscriber and SP can use all 8 levels Flow instance Use this field to configure the MEP instance identifier for this flow A MEP monitors a flow by sending periodic Continuity Check Messages CCMs for that flow Tagged VID Use this field to configure an outer C S TAG depending on the VLAN Port Type 0 means no ta...

Page 270: ...box to configure the CFM domain Possible values are Port This is an EPS instance in the Port Domain The working protected flow is a Port Esp This is reserved for future use and needs a firmware upgrade to support it Evc This is an EPS in the EVC Domain The working protected flow is an EVC Mpls This is reserved for future use and needs a firmware upgrade to support it Architecture Use this field to...

Page 271: ...GS3600 28F 7 138 USER S GUIDE P SF MEP Use this field to configure the protecting Signal Fail reporting MEP APS MEP Use this field to configure the APS PDU handling MEP Alarm The shows the MEP alarm data There is an active alarm on the MEP ...

Page 272: ...his field to configure port 1 If the ring has only one connected port configure this with 0 to disable it Port 0 SF MEP Use this field to configure port 0 Signal Fail reporting MEP Port 1 SF MEP Use this field to configure port 1 Signal Fail reporting MEP If the ring has only one connected port configure this with 0 to disable it Port 0 APS MEP Use this field to configure the port 0 APS PDU handli...

Page 273: ...l Check this check box to configure a virtual channel for this sub ring Major Ring ID Use this field to configure the major ring group ID for the interconnected sub ring The major ring group ID is used to send topology changes on the major ring For major rings this value is the same as the protection group ID for this ring Alarm The shows the MEP alarm data There is an active alarm on the MEP ...

Page 274: ...Security Chapter 8 ...

Page 275: ...FRONT MATTER MGS3600 24F XGS3600 26F XGS3600 28F 8 2 USER S GUIDE 8 1 Security Use the Security menu to enhance the security of the LAN ...

Page 276: ...ion 2 Configure the parameters 3 Click Save Parameter description IP Source Guard Configuration Mode Use this drop down box to globally enable or disable IP Source Guard All configured ACEs will be lost when the mode is enabled Port Mode Configuration Port This field shows the port number for this row Mode Use this drop down box to enable or disable IP Source Guard on this port Max Dynamic Clients...

Page 277: ...Static IP Source Guard Table 1 Click Security IP Source Guard Static Table 2 Click Add new entry 3 Configure the parameters 4 Click Save Parameter description Port Use this drop down box to configure the port number for this row VLAN ID Use this field to configure the VLAN ID for this row IP Address and IP Mask Use these fields to configure the network of the source IP addresses allowed ...

Page 278: ...ce Guard Table click Security IP Source Guard Dynamic Table Parameter description Port This field shows the port number for this row VLAN ID This field shows the VLAN ID in which the IP traffic is permitted IP Address This field shows the source IP addresses learned on this port MAC Address This field shows the source MAC address associated with source IP addresses learned on this port ...

Page 279: ...on Use the Configuration sub menu to enable ARP Inspection on a port by port basis To configure ARP Inspection 1 Click Security ARP Inspection Configuration 2 Configure the parameters 3 Click Save Parameter description ARP Inspection Configuration Mode Use this drop down box to globally enable or disable ARP Inspection Port Mode Configuration Port This field shows the port number for this row Mode...

Page 280: ...spection Table 1 Click Security ARP Inspection Configuration 2 Click Add new entry 3 Configure the parameters 4 Click Save Parameter description Port Use this drop down box to configure the port number for this row VLAN ID Use this field to configure the VLAN ID for this row MAC Address and IP Address Use this field to configure the source MAC address to source IP address binding that is used to v...

Page 281: ...nspection Table click Security ARP Inspection Dynamic Table Parameter description Port This field shows the port number for this row VLAN ID This field shows the VLAN ID in which ARP traffic is permitted MAC Address This field shows the source MAC address associated with source IP addresses learned on this port IP Address This field shows the source IP addresses learned on this port ...

Page 282: ...configure DHCP Snooping 1 Click Security DHCP Snooping Configuration 2 Configure the parameters 3 Click Save Parameter description DHCP Snooping Configuration Mode Use this drop down box to globally enable or disable DHCP Snooping Port Mode Configuration Port This field shows the port number for this row Mode Use this drop down box to configure this port as a Trusted or Untrusted DHCP request mess...

Page 283: ... and Tx Request This field shows the number of request option 53 with value 3 packets received and transmitted Rx and Tx Decline This field shows the number of decline option 53 with value 4 packets received and transmitted Rx and Tx ACK This field shows the number of ACK option 53 with value 5 packets received and transmitted Rx and Tx NAK This field shows the number of NAK option 53 with value 6...

Page 284: ...f lease unassigned option 53 with value 11 packets received and transmitted Rx and Tx Lease Unknown This field shows the number of lease unknown option 53 with value 12 packets received and transmitted Rx and Tx Lease Active This field shows the number of lease active option 53 with value 13 packets received and transmitted ...

Page 285: ...uration 2 Configure the parameters 3 Click Save Parameter description Relay Mode Use this drop down box to Enable or Disable DHCP relay Relay Server Use this field to configure the IP address of the DHCP server Relay Information Mode Use this drop down box to configure whether option 82 is inserted into forwarded DHCP messages and removed from DHCP messages for warded to DHCP clients Relay Informa...

Page 286: ...o clients Receive from Server This field shows the number of packets received from the server Receive Missing Agent Option This field shows the number of packets received without agent information options Receive Missing Circuit ID This field shows the number of packets received with the Circuit ID option missing Receive Missing Remote ID This field shows the number of packets received with the Re...

Page 287: ...rom Client This field shows the number of packets received from clients Receive Agent Option This field shows the number of packets received with the relay agent information option Replace Agent Option This field shows the number of packets that had their relay agent information option replaced Keep Agent Option This field shows the number of packets whose relay agent information was retained Drop...

Page 288: ...cation Period Check this check box to reauthenticate authenticated supplicants clients after the interval specified by Reauthentication Period 1 to 3600 seconds The Reauthentication for 802 1X enabled ports can be used to detect if a new device is plugged into a switch port or if a suppli cant is no longer attached For MAC based ports reauthentication is only useful if the RADIUS server configurat...

Page 289: ...in locked out before being allowed to authenticate This field can be between 10 and 1000000 seconds and applies to the Single 802 1X Multi 802 1X and MAC Based Auth modes that use Port Secu rity to secure MAC addresses If a client fails to authenticate because the RADIUS server denies the client access or because the RADIUS server request times out the client is put on hold in the Unauthorized sta...

Page 290: ...ss without authentication Force Unauthorized In this mode the switch will send one EAPOL Failure frame when the port link comes up and any client on the port will be disallowed network access Port based 802 1X In the 802 1X world the user is called the supplicant the switch is the authenticator and the RADIUS server is the authentication server The authenticator acts as the man in the middle forwa...

Page 291: ...pplicant and the switch If more than one supplicant is connected to a port the one that comes first when the port s link comes up will be the first one considered If that supplicant doesn t provide valid credentials within a certain amount of time another supplicant will get a chance Once a supplicant is successfully authenticated only that supplicant will be allowed access This is the most secure...

Page 292: ...e The advantage of MAC based authentication over 802 1X based authentication is that the clients don t need special supplicant software to authenticate The disadvantage is that MAC addresses can be spoofed by malicious users equipment whose MAC address is a valid RADIUS user can be used by anyone Also only the MD5 Challenge method is supported The maximum number of clients that can be attached to ...

Page 293: ...urrent port VLAN configuration RADIUS attributes used in identifying a VLAN ID RFC2868 and RFC3580 form the basis for the attributes used in identifying a VLAN ID in an Access Accept packet The following criteria are used The Tunnel Medium Type Tunnel Type and Tunnel Private Group ID attributes must all be present at least once in the Access Accept packet The switch looks for the first set of thes...

Page 294: ...e supplicant according to the port mode If an EAPOL frame is received the port will never be able to go back into the Guest VLAN if the Allow Guest VLAN if EAPOL Seen is disabled Port State This field shows one of the following port states Globally Disabled NAS is globally disabled Link Down NAS is globally enabled but there is no link on the port Authorized The port is in Force Authorized or a si...

Page 295: ...urce MAC address carried in the most recently received EAPOL frame for EAPOL based authentication and the most recently received frame from a new client for MAC based authentication Last ID This field shows the user name supplicant identity carried in the most recently received Response Identity EAPOL frame for EAPOL based authentication and the source MAC address from the most recently received f...

Page 296: ...ate This field shows the current state of the port QoS Class This field shows the QoS class assigned by the RADIUS server The field is blank if no QoS class is assigned Port VLAN ID This field shows the VLAN ID that the NAS has put the port in The field is blank if the Port VLAN ID is not overridden by NAS If the VLAN ID is assigned by the RADIUS server RADIUS assigned is appended to the VLAN ID I...

Page 297: ...pli cant s EAPOL and Backend Server counters to be shown in the Selected Counters table If no supplicants are attached it shows No sup plicants attached This column is not available for MAC based Auth MAC Address This field shows the MAC address of the attached supplicant for Multi 802 1X mode In MAC based Auth mode this column holds the MAC address of the attached client Clicking a MAC address ca...

Page 298: ...rame we will consider it to be dead and continue with the next enabled server if any RADIUS serv ers are using the UDP protocol which is unreliable by design In order to cope with lost frames the timeout interval is divided into 3 subin tervals of equal length If a reply is not received within the subinterval the request is transmitted again This algorithm causes the RADIUS server to be queried up...

Page 299: ... Authentication Server number for which the configuration below applies Enabled Enable the RADIUS Authentication Server by checking this box IP Address Host name The IP address or host name of the RADIUS Authentication Server Port The UDP port to use on the RADIUS Authentication Server If the port is set to 0 zero the default port 1812 is used on the RADIUS Authentication Server Secret The secret ...

Page 300: ...switch stack TACACS Authentication Server Configuration The table has one row for each TACACS Authentication Server and a number of columns which are The TACACS Authentication Server number for which the configuration below applies Enabled Enable the TACACS Authentication Server by checking this box IP Address Host name The IP address or host name of the TACACS Authentication Server IP address is ...

Page 301: ...rrent state of the server This field takes one of the following values Disabled The server is disabled Not Ready The server is enabled but IP communication is not yet up and running Ready The server is enabled IP communication is up and running and the RADIUS module is ready to accept accounting attempts Dead X seconds left Accounting Authentication attempts were made to this server but it did not...

Page 302: ...cation Client MIB Packet Counters Access Accepts The number of RADIUS Access Accept packets valid or invalid received from the server Access Rejects The number of RADIUS Access Reject packets valid or invalid received from the server Access Challenges The number of RADIUS Access Challenge packets valid or invalid received from the server Malformed Access Responses The number of malformed RADIUS Ac...

Page 303: ...to a different server or give up A retry to the same server is counted as a retransmit as well as a timeout A send to a different server is counted as a Request as well as a timeout State The current state of the server This field takes one of the following values Disabled The server is disabled Not Ready The server is enabled but IP communication is not yet up and running Ready The server is enab...

Page 304: ...ckets sent to the server This does not include retransmissions Retransmissions The number of RADIUS packets retransmitted to the RADIUS accounting server Pending Requests The number of RADIUS packets destined for the server that have not yet timed out or received a response This variable is incremented when a Request is sent and decremented due to receipt of a Response timeout or retransmission Ti...

Page 305: ...s were made to this server but it did not reply within the configured timeout The server has temporarily been disabled but will get re enabled when the dead time expires The number of seconds left before this occurs is displayed in parentheses This state is only reachable when more than one server is enabled Round Trip Time The time interval measured in milliseconds between the most recent Access ...

Page 306: ... Control is globally enabled or disabled on the switch stack If globally disabled other modules may still use the underlying functionality but limit checks and corresponding actions are disabled Aging Enabled If checked secured MAC addresses are subject to aging as discussed under Aging Period Aging Period If Aging Enabled is checked then the aging period is controlled with this input If other mod...

Page 307: ...res without enabling Limit Control on a given port Limit The maximum number of MAC addresses that can be secured on this port This number cannot exceed 1024 If the limit is exceeded the corresponding action is taken The switch is born with a total number of MAC addresses from which all ports draw whenever a new MAC address is seen on a Port Secu rity enabled port Since all ports draw from the same...

Page 308: ...The limit is not yet reached This can be shown for all actions Limit Reached Indicates that the limit is reached on this port This state can only be shown if Action is set to None or Trap Shutdown Indicates that the port is shut down by the Limit Control module This state can only be shown if Action is set to Shutdown or Trap Shutdown Re open Button If a port is shutdown by this module you may reo...

Page 309: ... be blocked until that user module decides otherwise The status page is divided into two sections one with a legend of user modules and one with the actual port status To show Port Security Switch Status click Security Port Security Switch Status Parameter description User Module Legend This shows all user modules that may request Port Security services User Module Name The full name of a module t...

Page 310: ...bled by at least the Limit Control user module and that module has indicated that the limit is exceeded No MAC addresses can be learned on the port until it is administratively re opened on the Limit Control configuration Web page MAC Count Current Limit These two columns indicate the number of currently learned MAC addresses forwarding as well as blocked and the maximum number of MAC addresses th...

Page 311: ...the port number from the Port Number drop down box to show the state of that port Parameter description MAC Address VLAN ID The MAC address and VLAN ID that is seen on this port If no MAC addresses are learned a single row stating No MAC addresses attached is displayed State Indicates whether the corresponding MAC address is blocked or forwarding In the blocked state it will not be allowed to tran...

Page 312: ...FRONT MATTER MGS3600 24F XGS3600 26F XGS3600 28F 8 39 USER S GUIDE ...

Page 313: ...d To configure Access Management 1 Click Security Access Management Configuration 2 Click Add new entry 3 Configure the parameters 4 Click Save Parameter description Mode Use this drop down box to Enable or Disable access management Start IP address Indicates the start IP address for the access management entry End IP address Indicates the end IP address for the access management entry HTTP HTTPS ...

Page 314: ... the host can access the switch from SNMP interface if the host IP address matches the IP address range provided in the entry TELNET SSH Indicates that the host can access the switch from TELNET SSH interface if the host IP address matches the IP address range provided in the entry ...

Page 315: ... Statistics Parameter description Interface The interface type through which the remote host can access the switch Received Packets Number of received packets from the interface when access management mode is enabled Allowed Packets Number of allowed packets from the interface when access management mode is enabled Discarded Packets Number of discarded packets from the interface when access manage...

Page 316: ...SH Secure SHell protocol SSH combines authentication and data encryp tion to provide secure encrypted communication To configure SSH click Security SSH Parameter description Mode Use this drop down box to Enable or Disable SSH Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 317: ...ure protocol HTTPS combines authentication and data encryption to provide secure encrypted communication To configure HTTS click Security HTTPS Parameter description Mode Use this drop down box to Enable or Disable HTTPS Automatic Redirect Use this drop down box to Enable or Disable HTTPS automatically redirect web browsers to HTTPS when HTTPS mode is enabled ...

Page 318: ...s Authentication Method Authentication Method can be set to one of the following values none authentication is disabled and login is not possible local use the local user database on the switch stack for authentication RADIUS use a remote RADIUS server for authentication TACACS use a remote TACACS server for authentication Fallback Check this check box to enable fallback to local authentication If...

Page 319: ...Maintenance Chapter 9 ...

Page 320: ...menu to restart the switch upgrade the firmware save restore import or export switch configuration or perform network diagnostics 9 1 Restart Device Use the Restart Device sub menu to reboot the switch To restart the switch click Maintenance Restart Device and follow the onscreen prompts ...

Page 321: ...een prompts to complete the firmware upgrade Note This page facilitates an update of the firmware controlling the stack switch Uploading software will update all managed switches in the stack to the location of a software image and click After the software image is uploaded a page announces that the firmware update is ini tiated After about a minute the firmware is updated and all managed switches...

Page 322: ...avigates away from this page Image The flash index name of the firmware image The name of primary preferred image is image the alternate image is named image bk Version The version of the firmware image Date The date where the firmware was produced Note In case the active firmware image is the alternate image only the Active Image table is shown In this case the Activate Alternate Image button is ...

Page 323: ...or restore the switch configuration 9 3 1 Factory Defaults Use the Factory Defaults sub menu to reset the switch configuration to the same as it was when manufactured To reset the switch to factory default configuration 1 Click Maintenance Save Restore Factory Defaults 2 Follow the onscreen prompts to complete the process ...

Page 324: ... GUIDE 9 3 2 Save Start Use the Save Start sub menu to save the switch s configuration so this configuration is used after a power cycle To save the configuration 1 Click Maintenance Save Restore Save Start 2 Follow the onscreen prompts to complete the process ...

Page 325: ...SER S GUIDE 9 3 3 Save User Use the Save User sub menu to save the switch s configuration to the backup user part of the flash memory To save the configuration 1 Click Maintenance Save Restore Save User 2 Follow the onscreen prompts to complete the process ...

Page 326: ...DE 9 3 4 Restore User Use the Restore User sub menu to restore the switch s configuration from the backup user part of the flash memory To restore the configuration 1 Click Maintenance Save Restore Restore User 2 Follow the onscreen prompts to complete the process ...

Page 327: ...port sub menu to export or import the switch configuration to an XML file 9 4 1 Export Config Use the Export Config sub menu to save the switch s configuration to an XML file To save the configuration 1 Click Maintenance Export Import Export Config 2 Follow the onscreen prompts to complete the process ...

Page 328: ...t Config sub menu to import the switch s configuration from an XML file To import the configuration 1 Click Maintenance Export Import Import Config 2 Browse to the new configuration file 3 Click Upload to upload the configuration file to the switch 4 Follow the onscreen prompts to complete the process ...

Page 329: ...9 5 1 Ping Use the Ping sub menu to execute an ICMP ping from the switch s management interface To start an ICMP ping 1 Click Maintenance Diagnostics Ping 2 Configure the parameters 3 Click Start Parameter description IP Address Use this field to configure the IP address of the host to ping Ping Size Use this field to configure the ICMP packet size ...

Page 330: ...g from the switch s management interface To start an ICMP ping 1 Click Maintenance Diagnostics Ping6 2 Configure the parameters 3 Click Start Parameter description IP Address Use this field to configure the IPv6 address of the host to ping Ping Size Use this field to configure an ICMPv6 payload size from 8 bytes to 1400 bytes ...

Page 331: ...Part III Front Matter ...

Page 332: ...Front Matter Chapter 10 ...

Page 333: ...in AC DC models 6 If the problem continues contact the vendor The ALM LED is on 1 Turn the switch off and on in DC models or if the DC power supply is connected in AC DC models 2 Disconnect and re connect the power adaptor or cord to the switch in AC models or if the AC power supply is connected in AC DC models 3 If the problem continues contact the vendor One of the LEDs does not behave as expect...

Page 334: ...band IP address is 192 168 1 1 If you changed the IP address use the new IP address If you changed the IP address and have forgotten it see the troubleshooting suggestions for I forgot the IP address for the switch 2 Check the hardware connections and make sure the LEDs are behaving as expected See LEDs on page 13 3 Make sure your Internet browser does not block pop up windows and has JavaScript a...

Page 335: ...e to its factory defaults See Factory Defaults on page 5 Pop up Windows JavaScript and Java Permissions In order to use the web configurator you need to allow Web browser pop up windows from your device JavaScript enabled by default Java permissions enabled by default I cannot see some of the submenus at the bottom of the navigation panel The recommended screen resolution is 1024 by 768 pixels Adj...

Page 336: ...nfiguration I lost my configuration settings after I restarted the switch Make sure you save your configuration into the switch s nonvolatile memory each time you make changes Click Maintenance Save Restore Save Start to save the configuration permanently See Save Restore on page 5 ...

Page 337: ...Front Matter Chapter 11 ...

Page 338: ... 400 MHz MIPS CPU MAC chip Vitesse VSC7460 PHY chip Vitesse VSC8488 for 10G SFP XGS3600 26F only Vitesse VSC8664 for 4 port dual personality GbE RJ 45 SFP RAM DDR2 128 MB 64 M x 16 Flash 32 MB 16 MB SPI x 2 dual image support Packet buffer size 4 MB MAC table 32 K Switching capacity 14880 pps at 10 Mbps 148810 pps at 100 Mbps 1488095 pps at 1 Gbps with 64 byte packets Total switch capacity 88 Gbps...

Page 339: ...100 1000 Mb SFP port 4 x Dual personality interfaces 10 100 1000Base T RJ 45 port 100 1000 Mb SFP port Auto negotiation Auto MDIX Management interface 1 x Out of band management port 10 100 1000Base T Standards IEEE 802 3 10Base T Ethernet IEEE 802 3u 100Base TX Ethernet IEEE 802 3ab 1000Base T Ethernet IEEE 802 3z 1000Base X Ethernet IEEE 802 3x flow control IEEE 802 3az Energy Efficient Ethernet...

Page 340: ...iled Alarm LED Steady red system failure because of overheating wrong voltage or abnormal fan speed Unlit switch is in normal condition Power LED Steady green power on Unlit power off of fail Backup power LED Steady green power on Unlit power off of fail SFP LED P1 24 Steady green 1000 Mbps link up Steady amber 100 Mbps link up Flash green yellow activity receiving or transmitting data Unlit green...

Page 341: ...green 1 Gbps link up Steady amber 10 Gbps link up Flash green amber activity receiving or transmitting data Unlit green amber port disconnected or link failed Table 11 4 General SPECIFICATION DESCRIPTION Console port Female D sub 9 pin DCE Fan design Three fans on the rear panel One fan is dedicated to the power supply Reset button Push button accessed through right hand ventilation slots Dimensio...

Page 342: ...stem monitoring AC power supply internal 12 volt output DC power supply internal 12 volt output 3 fan speed sensors 2 temperature sensors Dying gasp Power supply Redundant 85 W AC and DC power inputs 100 240 V AC in via 3 pin socket 12 V 5 A minimum out 48 V DC in via 3 pin terminal block 12 V 5 A minimum out Table 11 4 General SPECIFICATION DESCRIPTION ...

Page 343: ...es summarize the switch s firmware features Port Control Table 11 5 Port Control FEATURE DESCRIPTION Port speed duplex mode flow ctrl Port frame size Jumbo frames Port state Administrative status Port status Link monitoring Port Statistics MIB counters Port VeriPHY Cable diagnostics Dual media TP SFP auto detection ...

Page 344: ...ve status Port status Link monitoring Port Statistics MIB counters Port VeriPHY Cable diagnostics Dual media TP SFP auto detection FRONT MATTER MGS3600 24F XGS3600 26F XGS3600 28F 11 8 USER S GUIDE QoS Table 11 7 QoS FEATURE DESCRIPTION Traffic classes 8 active priorities Port default priority User priority Input priority mapping ...

Page 345: ... control Unicast Multicast and Broadcast Port policers Global VCAP ACL policers Port egress shaper Queue egress shapers DiffServ RFC2474 re mark ing Tag re marking QoS WRED Table 11 8 L2 Switching FEATURE DESCRIPTION IEEE 802 1D bridge Automatic MAC address learning aging Static MAC addresses Table 11 7 QoS FEATURE DESCRIPTION ...

Page 346: ...AN Registration Protocol MVRP IEEE 802 1ad provider bridge Native or translated VLAN IEEE 802 1Q 2005 Multiple Spanning Tree Protocol MSTP RSTP and STP Rapid Spanning Tree Protocol RSTP and STP MRSTP Up to 12 instances without trunking RSTP MRSTP port set as non edge port automatically if STP port configured RSTP MRSTP loop detection IEEE 802 3ad Link Aggregation Control Protocol LACP Static link ...

Page 347: ...ooping throttling filtering and leave proxy MVR Voice VLAN DHCP Client Snooping Option 82 relay DHCP v6 Client DNS Client proxy ARP Inspection Port mirroring Protection 1 1 port protection 1 1 port protection G 8032 ring protection v1 v2 XGS3600 26F only Up to 12 instances IP MAC binding Table 11 8 L2 Switching FEATURE DESCRIPTION ...

Page 348: ...rver NAS Port based 802 1x Single 802 1x Multiple 802 1x MAC based authentication VLAN assignment QoS assignment Guest VLAN RADIUS Accounting authentication and accounting MAC address limit TACACS Accounting authentication and accounting Web CLI authentication Authorization 15 user levels ACL Filtering policing port copy IP source guard Remote Switched Port Ana lyzer RSPAN ...

Page 349: ...ON IEEE 802 3ah link OAM Variable request response Discovery process information event notification and loopback Flow OAM Ingress and egress IEEE 802 1ag Connectivity Fault Management CFM Fault Management FM continuity check remote defect indication ETH CC ETH RDI loopback ETH LB link trace ETH LT Table 11 9 Security and Synchronization FEATURE DESCRIPTION ...

Page 350: ...Vitesse OAM Y 1731 PHY solution MEP FM automatic protection switching ETH APS ETH RAPS EPS ERPS using ETH CCM MIP FM link trace PDU LTM respond FM loop back PDU LBM respond Table 11 11 Robustness and Power Saving FEATURE DESCRIPTION Cold start Warm start POWER SAVING ActivePHY PerfectReach Table 11 10 OAM FEATURE DESCRIPTION ...

Page 351: ...net EEE Thermal protection Table 11 12 Management FEATURE DESCRIPTION HTTP server CLI All parameters are configurable via console port telnet Management access filtering HTTPS SSH v2 IPv6 management System syslog Software update via web SNMP v1 v2 v3 agent Table 11 11 Robustness and Power Saving FEATURE DESCRIPTION ...

Page 352: ...ink Layer Discovery Protocol LLDP TIA 1057 LLDP MED Cisco Discovery Protocol CDP sFlow Configuration download upload Dual image Table 11 13 MIBs FEATURE DESCRIPTION RFC 2674 VLAN MIB IEEE 802 1Q bridge MIB 2008 RFC 1213 MIB II RFC 1215 TRAPS MIB Table 11 12 Management FEATURE DESCRIPTION ...

Page 353: ...h Cli ent MIB RFC 4670 RADIUS Account ing MIB RFC 3635 Ethernet like MIB RFC 2863 Interface Group MIB using SMI v2 RFC 3636 802 30 MAU MIB RFC 4133 Entity MIB version 3 RFC 3411 SNMP Manage ment Frameworks RFC 3414 User based Secu rity Model for SNMPv3 RFC 3415 View based access Control Model for SNMP IEEE 802 1 MSTP MIB Table 11 13 MIBs FEATURE DESCRIPTION ...

Page 354: ...MIB LLDP MIB included in a clause of the STD IEEE 802 30ad LACP MIB included in a clause of the STD IEEE 802 1X PAE MIB included in a clause of the STD TIA 1057 LLDP MED MIB is part of the STD Private MIB framework ZyXEL private MIB For every function Table 11 13 MIBs FEATURE DESCRIPTION ...

Page 355: ...0 26F XGS3600 28F 11 19 USER S GUIDE 11 3 EMI Safety Specifications The following table summarizes the switch s EMI safety specifications Table 11 14 EMI Safety Specifications ITEM DESCRIPTION REMARK Safety BSMI EMI BSMI RoHS Level A ...

Page 356: ...port IEC 60068 2 64 Storage Test Report Temperature 40 70 C Humidity 10 95 R H Test duration 72 hours Operation Cold low temperature Test Operation Dry Heat High temperature Test Operation Temperature Cycles Test E cap Lifetime Test 43800 hours Thermal Shock Test Damp Heat Steady State Test Thermal Profile Test ESD Simulation Test report High Low Temperature Start Test Table 11 14 EMI Safety Speci...

Page 357: ...2002 95 EC RoHS Restriction of Hazardous Substances Directive 2002 96 EC WEEE WEEE Waste Electrical and Electronic Equipment Directive European Parliament and Council Directive 94 62 EC of 20 December 1994 on packaging and packaging waste Table 11 14 EMI Safety Specifications ITEM DESCRIPTION REMARK ...

Page 358: ...Part IV Front Matter ...

Page 359: ...e complex for example when the ACEs are prioritized In networking the ACL refers to a list of service ports or network services that are available on a host or server each with a list of hosts or servers permitted or denied to use the service ACL can generally be configured to control inbound traffic and in this context they are similar to firewalls AES AES Advanced Encryption Standard is a U S go...

Page 360: ...ARP request con taining the IP address of the desired destination system ARP Inspection ARP Inspection is a security feature Several types of attacks can be launched against a host or devices connected to Layer 2 networks by poison ing the ARP caches This feature is used to block such attacks Only valid ARP requests and responses can go through the switch device Auto Negotiation Auto negotiation i...

Page 361: ...eck is a MEP function that is able to detect loss of continuity in a network by transmitting CCM frames to a peer MEP CCM CCM Continuity Check Message is an OAM frame transmitted from a MEP to its peer MEP that is used to implement CC functionality CDP CDP is an acronym for Cisco Discovery Protocol ...

Page 362: ...fies network administration because the software keeps track of IP addresses rather than requiring an administrator to manage the task This means that a new computer can be added to a network without the hassle of manually assigning it a unique IP address DHCP Relay DHCP Relay is used to forward and to transfer DHCP messages between clients and the server when they are not on the same subnet The D...

Page 363: ...translate to 192 168 0 1 DoS DoS Denial of Service is a kind of network attack that attempts to prevent legitimate users from accessing information or services By targeting at network sites or network connections an attacker may be able to prevent network users from accessing services e g email web etc that rely on the affected computer Dotted Decimal Notation Dotted Decimal Notation refers to a m...

Page 364: ...d in IEEE 802 3az EPS EPS Ethernet Protection Switching more recently known as Ethernet Linear Protection Switching provides redundancy for point to point links as defined in ITU T G 8031 Ethernet Type Ethernet Type or EtherType is a field in the Ethernet MAC header It is used to indicate which protocol is being transported in an Ethernet frame ...

Page 365: ...e switch to remove an interface from the forwarding table entry without first sending out group specific queries to the interface The VLAN interface is pruned from the multicast tree for the multicast group specified in the original leave mes sage Fast leave processing ensures optimal bandwidth management for all hosts on a switched network even when multiple multicast groups are in use simultaneo...

Page 366: ... to a particular port on a remote host port 80 by default A HTTP server listening on that port waits for the client to send a request message and responds to them when they arrive HTTPS HTTPS Hypertext Transfer Protocol over Secure Sockets Layer secures HTTP connections by providing authentication and encrypted communi cation HTTPS is really just the use of Secure Sockets Layer SSL as a sublayer u...

Page 367: ...dentials for authentication from any point within the network IGMP IGMP is an acronym for Internet Group Management Protocol It is a communications protocol used to manage the membership of Internet Proto col multicast groups IGMP is used by IP hosts and adjacent multicast routers to establish multicast group memberships It is an integral part of the IP multicast specification like ICMP for unicas...

Page 368: ...dition it was sent IPv4 IP version 4 uses 32 bits to represent over four billion unique addresses IPv4 addresses are becoming depleted because of the increasing number of devices directly connected to the Internet and because they were allocated in blocks the bulk of which remain unused IPv6 IP version 6 solves this problem by providing the same service using 128 bits to represent over 3 x 1038 ad...

Page 369: ...he IEEE 802 1ab standard allows stations attached to an IEEE 802 LAN to advertise to other stations attached to the same IEEE 802 LAN the major capabilities provided by the system incorporating that station the management address or addresses of the entity or entities that provide management of those capabilities and the identification of the stations point of attach ment to the IEEE 802 LAN requi...

Page 370: ... Entity Endpoint and is an endpoint in a Maintenance Entity Group ITU T Y 1731 MD5 MD5 is an acronym for Message Digest algorithm 5 MD5 is a message digest algorithm used cryptographic hash function with a 128 bit hash value It was designed by Ron Rivest in 1991 MD5 is officially defined in RFC 1321 The MD5 Message Digest Algorithm Mirroring For debugging network problems or monitoring network tra...

Page 371: ...P networks that enables multicast traffic from a source VLAN to be shared with sub scriber VLANs The main reason for using MVR is to save bandwidth by preventing duplicate multicast streams being sent in the core network instead the stream s are received on the MVR VLAN and forwarded to the VLANs where hosts have requested it them Wikipedia ...

Page 372: ...and it is not supported on a Wide Area Network WAN The NetBIOS giving each computer in the network both a NetBIOS name and an IP address corresponding to a different host name provides the session and transport services described in the Open Systems Interconnection OSI model NFS NFS is an acronym for Network File System It allows hosts to mount partitions on a remote system and use them as though ...

Page 373: ...LLDP frame contains multiple TLVs For some TLVs it is configurable if the switch shall include the TLV in the LLDP frame These TLVs are known as optional TLVs If an optional TLVs is disabled the corresponding information is not included in the LLDP frame OUI OUI is the organizationally unique identifier An OUI address is a globally unique identifier assigned to a vendor by IEEE You can determine w...

Page 374: ...it the bandwidth of received frames It is located in front of the ingress queue POP3 POP3 is an acronym for Post Office Protocol version 3 It is a protocol for email clients to retrieve email messages from a mail server POP3 is designed to delete mail on the server as soon as the user has downloaded it However some implementations allow users or an adminis trator to specify that mail be saved for ...

Page 375: ...ER S GUIDE Private VLAN In a private VLAN communication between ports in that private VLAN is not permitted A VLAN can be configured as a private VLAN PTP PTP is an acronym for Precision Time Protocol a network protocol for synchronizing the clocks of computer systems ...

Page 376: ...s an identifier to its QCL The privileges determine specific traffic object to specific QoS class QL QL In SyncE this is the Quality Level of a given clock source This is received on a port in a SSM indicating the quality of the clock received in the port QoS QoS is an acronym for Quality of Service It is a method to guarantee a bandwidth relationship between individual applications or protocols A...

Page 377: ...hat provides centralized access authorization and accounting management for people or computers to connect and use a network service RDI RDI is an acronym for Remote Defect Indication It is a OAM functionality that is used by a MEP to indicate defect detected to the remote peer MEP RSTP In 1998 the IEEE with document 802 1w introduced an evolution of STP the Rapid Spanning Tree Protocol which prov...

Page 378: ...service modeled on the FTP file transfer service SMTP transfers mail messages between systems and notifications regarding incoming mail SNAP The SubNetwork Access Protocol SNAP is a mechanism for multiplexing on networks using IEEE 802 2 LLC more protocols than can be distin guished by the 8 bit 802 2 Service Access Point SAP fields SNAP supports identifying protocols by Ethernet type field values...

Page 379: ...cast messages from all access points within range advertising their SSIDs and can choose one to connect to based on pre configuration or by displaying a list of SSIDs in range and asking the user to select one wikipedia SSH SSH is an acronym for Secure SHell It is a network protocol that allows data to be exchanged using a secure channel between two networked devices The encryption used by SSH pro...

Page 380: ...hin a stack The Switch ID of each switch is shown on the display on the front of the switch and is used widely in the web pages as well as in the CLI commands SyncE SyncE Is an abbreviation for Synchronous Ethernet This functionality is used to make a network clock frequency synchronized Not to be con fused with real time clock synchronized IEEE 1588 ...

Page 381: ... receiver and distinguishes data for multiple connections by con current applications for example Web server and e mail server running on the same host The applications on networked hosts can use TCP to create connections to one another It is known as a connection oriented protocol which means that a connection is established and maintained until such time as the message or messages to be exchange...

Page 382: ... log in to a server by entering a valid username and password Then the client user can enter commands through the Telnet program just as if they were entering commands directly on the server console TFTP TFTP is an acronym for Trivial File Transfer Protocol It is transfer protocol that uses the User Datagram Protocol UDP and provides file writing and reading but it does not provide directory servi...

Page 383: ...gram that uses UDP must be able to make sure that the entire message has arrived and is in the right order Network applications that want to save processing time because they have very small data units to exchange may prefer UDP to TCP UDP provides two services not provided by the IP layer It provides port numbers to help distinguish different user requests and optionally a checksum capability to ...

Page 384: ...his Port VLAN ID and transmit untagged frames Provider switching This is also known as Q in Q switching Ports connected to subscribers are VLAN unaware members of one VLAN and set up with this unique Port VLAN ID Ports connected to the service provider are VLAN aware members of multiple VLANs and set up to tag all frames Untagged frames received on a subscriber port are forwarded to the provider p...

Page 385: ...efined the Port s is the IP protocol number not the port number Port s This value depends on the Protocol Please refer to RFC 1700 for further information about port numbers If the Protocol is TCP UDP or TCP UDP this is the IP port number If the Protocol is User Defined this is the IP protocol number Description This is a brief explanation of the applications that use this service or the situation...

Page 386: ...used to find out if a user is logged on FTP TCP TCP 20 21 File Transfer Program a program to enable fast transfer of files including large files that may not be possible by e mail H 323 TCP 1720 NetMeeting uses this protocol HTTP TCP 80 Hyper Text Transfer Protocol a client server protocol for the world wide web HTTPS TCP 443 HTTPS is a secured http session often used in e commerce ICMP User Defin...

Page 387: ...he USENET newsgroup service PING User Defined 1 Packet INternet Groper is a protocol that sends out ICMP echo requests to test whether or not a remote host is reachable POP3 TCP 110 Post Office Protocol version 3 lets a client computer get e mail from a POP3 server through a temporary connection TCP IP or other PPTP TCP 1723 Point to Point Tunneling Protocol enables secure transfer of data over pu...

Page 388: ...il server to another SNMP TCP UDP 161 Simple Network Management Program SNMP TRAPS TCP UDP 162 Traps for use with the SNMP RFC 1215 SQL NET TCP 1521 Structured Query Language is an interface to access data on many different types of database systems including mainframes midrange systems UNIX systems and network servers SSH TCP UDP 22 Secure Shell Remote Login Program STRM WORKS UDP 1558 Stream Wor...

Page 389: ... Disclaimer ZyXEL does not assume any liability arising out of the application or use of any products or software described herein Neither does it convey any license under its patent rights nor the patent rights of others ZyXEL further reserves the right to make changes in any products described herein without notice This publication is subject to change without notice Trademarks ZyNOS ZyXEL Netwo...

Page 390: ...nual may cause harmful interference to radio com munications Operation of this device in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his own expense CE Mark Warning This is a class A product In a domestic environment this product may cause radio interference in which case the user may be required to take ade quat...

Page 391: ...nts to proper operating condition Any replace ment will consist of a new or re manufactured functionally equivalent product of equal or higher value and will be solely at the discretion of ZyXEL This warranty shall not apply if the product has been modified misused tampered with damaged by an act of God or subjected to abnormal work ing conditions Note Repair or replacement as provided under this ...

Page 392: ...25 6 32 Authentication Protocol 6 25 6 32 Auto Configuration 6 19 Auto Edge 7 34 Automatic Redirect 8 44 B Baud Rate 7 10 BIOS Version 6 6 BPDU Guard 7 35 Bridge FDB Size 6 7 Bridge ID 7 37 Bridge Instance 7 37 Bridge Priority 7 30 C CDP Aware 7 62 Chassis ID 7 64 CIST Role 7 39 CIST State 7 39 Classified DP Level 7 104 Clock Source 6 11 Community 6 24 Configured Link Speed 7 3 Connector Type 7 10...

Page 393: ...L Counters 8 23 EAPOL Timeout 8 15 Edge Port BPDU Filtering 7 31 Edge Port BPDU Guard 7 31 Egress Remap 7 108 Egress Rule 7 80 Engine ID 6 23 EPRS ID 7 139 EPS ID 7 137 EtherType Filter 7 17 7 111 Excessive Collision Mode 7 4 F Fallback 8 45 Fallback to Local Authorization 8 26 Fan Speed 6 8 Fast Leave 7 49 Fiber Type 7 10 Filtering Groups 7 52 Firmware Version 6 7 Flash Size 6 7 Flooding 7 99 Flo...

Page 394: ...s Classify 7 106 7 108 Ingress Filtering 7 80 Ingress Translate 7 106 7 108 Internal Root Cost 7 37 IP Address 6 19 IP Fragment 7 19 IP Option 7 19 IP Protocol Filter 7 18 IP TTL 7 19 IP Ethernet Length 7 18 L LACP Key 7 25 LACP Received 7 28 LACP Role 7 25 LACP Transmitted 7 28 Last Authentication 8 24 Last ID 8 22 Learning 7 99 Link Monitor support 7 125 Link Monitoring Support 7 128 LLDP MED Ca...

Page 395: ...olicy Filter 7 16 Policy ID 7 12 Polling Interval 7 120 Port Copy 7 13 7 20 Port Error Recovery 7 31 Port Error Recovery Timeout 7 31 Power Control 7 4 Powers 6 8 Prefix 6 19 Privacy Password 6 26 6 32 Privacy Protocol 6 26 6 32 Privilege Level 6 14 Privilege Levels 6 16 Proxy Enabled 7 49 PVID 7 81 7 83 Q QI 7 50 QoS Class 7 107 7 109 QoS class 7 97 7 105 QRI 7 51 R RADIUS Assigned QoS Enabled 8 ...

Page 396: ...ity Name 6 27 6 31 Sender IP Filter and Target IP Filter 7 17 Serial Number 6 7 Server IP 6 31 Server Mode 6 20 Severity Level 6 31 7 122 sFlow Instance 7 120 sFlow Port 7 120 Shutdown 7 13 SIP Filter 7 19 SMAC 7 111 SMAC Filter 7 16 SNMP State 6 23 Snooping Enabled 7 48 7 50 Source IP 6 24 Source Mask 6 24 Source Port Filter 7 19 SPort 7 113 SSAP Address 7 112 SSM Range 7 49 STP Enabled 7 34 Subn...

Page 397: ...st 7 38 Topology Flag 7 37 Transmit Hold Count 7 31 Transmit Queue 6 7 Trap Version 6 31 Tx Central Wavelength 7 10 U UDP Port 6 31 Unidirectional Operation Support 7 128 URI 7 51 User Module Name 8 36 User Name 6 14 6 24 6 25 V Vcc 7 11 Vendor Name 7 10 Vendor OUI 7 10 Vendor P N 7 10 Vendor Rev 7 10 Vendor SN 7 10 View Name 6 28 View Type 6 28 Virtual Channel 7 140 VLAN ID Filter 7 16 VLAN User ...

Reviews:

No comments

Related manuals for MGS3600-24F

Barksdale 9000 Series Operating Instructions preview
9000 Series
Brand: Barksdale Pages: 5
GE SecoGear User Manual preview
SecoGear
Brand: GE Pages: 36
GE Power Break Installation Instructions Manual preview
Power Break
Brand: GE Pages: 8
ANTAIRA LMP-1204G-SFP Series Hardware Manual preview
LMP-1204G-SFP Series
Brand: ANTAIRA Pages: 20
Campbell HUB-SDM5 Instruction Manual preview
HUB-SDM5
Brand: Campbell Pages: 10
Datavideo SE-2200 Instruction Manual preview
SE-2200
Brand: Datavideo Pages: 38
Hama Data Switch Operating Instruction preview
Data Switch
Brand: Hama Pages: 10
StarTech.com MSTCDP122DP Quick Start Manual preview
MSTCDP122DP
Brand: StarTech.com Pages: 2
DeLOCK 87699 User Manual preview
87699
Brand: DeLOCK Pages: 8
Wavetronix Click 223 Installation preview
Click 223
Brand: Wavetronix Pages: 3
TAXON TOOLS Scart Switch Manual preview
Scart Switch
Brand: TAXON TOOLS Pages: 9
Cabletron Systems SmartSTACK 100 ELS100-16TX Getting Started preview
SmartSTACK 100 ELS100-16TX
Brand: Cabletron Systems Pages: 16
HDTV Supply HDTVCV0702HDS User Manual preview
HDTVCV0702HDS
Brand: HDTV Supply Pages: 15
Versitron SG70660M Installation Manual preview
SG70660M
Brand: Versitron Pages: 46
PCB Piezotronics IMI SENSORS EX686B77 Installation And Operating Manual preview
IMI SENSORS EX686B77
Brand: PCB Piezotronics Pages: 63
QNAP QSW-M2108 Series Quick Installation Manual preview
QSW-M2108 Series
Brand: QNAP Pages: 28
Extron electronics CrossPoint 42 HVA User Manual preview
CrossPoint 42 HVA
Brand: Extron electronics Pages: 46
Kramer VP-553xl User Manual preview
VP-553xl
Brand: Kramer Pages: 85

Brands by name

Popular brands

Load more brands