manualshive.com logo in svg

ZyXEL Communications VES-1616F-44, User Manual

The ZyXEL Communications VES-1616F-44 is a reliable and versatile networking product designed to meet your needs. Easily set up and configure your device with the included User Manual - available for free download from manualshive.com. Stay connected and efficient with this high-quality solution.

Share
Download
background image

VES-1616F/1624F-44 User’s Guide

Chapter 17 Access Control

129

Figure 61   

SSH Login Example 

17.8  Introduction to HTTPS

HTTPS (HyperText Transfer Protocol over Secure Socket Layer, or HTTP over SSL) is a web 
protocol that encrypts and decrypts web pages. Secure Socket Layer (SSL) is an application-
level protocol that enables secure transactions of data by ensuring confidentiality (an 
unauthorized party cannot read the transferred data), authentication (one party can identify the 
other party) and data integrity (you know if data has been changed). 

It relies upon certificates, public keys, and private keys.

HTTPS on the switch is used so that you may securely access the switch using the web 
configurator. The SSL protocol specifies that the SSL server (the switch) must always 
authenticate itself to the SSL client (the computer which requests the HTTPS connection with 
the switch), whereas the SSL client only should authenticate itself when the SSL server 
requires it to do so. Authenticating client certificates is optional and if selected means the SSL-
client must send the switch a certificate. You must apply for a certificate for the browser from 
a CA that is a trusted CA on the switch.

Please refer to the following figure. 

C:\>ssh2 

[email protected]

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@       WARNING: HOST IDENTIFICATION HAS CHANGED!         @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the host key has just been changed.
Please contact your system administrator.
Add correct host key to "C:/Documents and Settings/Administrator/Application 
Data/SSH/hostkeys/key_22_192.168.1.1.pub" to get rid of this message. 
Received server key's fingerprint: xigil-gidot-homug-duzab-tocyh-pamyb-
ronep-tisaf-hebip-gokeb-goxix You can get a public key's fingerprint by 
running % ssh-keygen -F publickey.pub
on the keyfile. Agent forwarding is disabled to avoid attacks by corrupted 
servers. X11 forwarding is disabled to avoid attacks by corrupted servers.
Are you sure you want to continue connecting (yes/no)? 

yes

Do you want to change the host key on disk (yes/no)? 

yes

Agent forwarding re-enabled.
X11 forwarding re-enabled.
Host key saved to C:/Documents and Settings/Administrator/Application Data/
SSH/hostkeys/key_22_192.168.1.1.pub host key for 192.168.1.1, accepted by 
Administrator Thu May 12 2005 09:52:21
admin's password:
Authentication successful.
Copyright (c) 1994 - 2005 ZyXEL Communications Corp.
sysname>

Summary of Contents for VES-1616F-44

Page 1: ...VES 1616F 1624F 44 VDSL Switch User s Guide Version 3 50 2 2007 Edition 2...

Page 2: ...ZyXEL Communications Corporation All rights reserved Disclaimer ZyXEL does not assume any liability arising out of the application or use of any products or software described herein Neither does it...

Page 3: ...ce with the instruction manual may cause harmful interference to radio communications Operation of this device in a residential area is likely to cause harmful interference in which case the user will...

Page 4: ...uide Certifications 3 Viewing Certifications 1 Go to www zyxel com 2 Select your product from the drop down list box on the ZyXEL home page to go to that product s page 3 Select the certification you...

Page 5: ...mbling Use ONLY an appropriate power adaptor or cord for your device Connect the power adaptor or cord to the right supply voltage for example 110V AC in North America or 230V AC in Europe For DC mode...

Page 6: ...acement as provided under this warranty is the exclusive remedy of the purchaser This warranty is in lieu of all other warranties express or implied including any implied warranty of merchantability o...

Page 7: ...a 4 Modrany Cesk Republika info cz zyxel com 420 241 091 359 DENMARK support zyxel dk 45 39 55 07 00 www zyxel dk ZyXEL Communications A S Columbusvej 2860 Soeborg Denmark sales zyxel dk 45 39 55 07 0...

Page 8: ...xel es ZyXEL Communications Arte 21 5 planta 28033 Madrid Spain sales zyxel es 34 913 005 345 SWEDEN support zyxel se 46 31 744 7700 www zyxel se ZyXEL Communications A S Sj porten 4 41764 G teborg Sw...

Page 9: ...VES 1616F 1624F 44 User s Guide 8 Customer Support...

Page 10: ...res 29 1 3 Hardware Features 32 1 4 Applications 32 1 4 1 MTU Application 33 1 4 2 Curbside Application 33 Chapter 2 Hardware Installation 35 2 1 Mounting the Switch on a Rack 35 2 1 1 Rack mounted In...

Page 11: ...h 49 4 5 1 Reload the Configuration File 50 4 6 Logging Out of the Web Configurator 51 4 7 Help 51 Chapter 5 System Status and Port Statistics 53 5 1 Overview 53 5 2 Port Status Summary 53 5 2 1 VDSL...

Page 12: ...2 2 GVRP 80 7 3 Port VLAN Trunking 81 7 4 Select the VLAN Type 81 7 5 Static VLAN 81 7 5 1 Static VLAN Status 82 7 5 2 Configure a Static VLAN 83 7 5 3 Configure VLAN Port Setting 84 7 5 4 VLAN Based...

Page 13: ...ation Overview 109 14 1 1 Dynamic Link Aggregation 109 14 1 2 Link Aggregation ID 110 14 2 Link Aggregation Status 110 14 3 Link Aggregation Setup 111 Chapter 15 Port Authentication 113 15 1 Port Auth...

Page 14: ...ages 131 17 9 3 The Main Screen 131 17 10 Service Access Control 132 17 11 Remote Management 133 Chapter 18 Queuing Method 135 18 1 Queuing Method Overview 135 18 1 1 Strict Priority Queuing SPQ 135 1...

Page 15: ...VLAN Registration 165 23 1 MVR Overview 165 23 1 1 Types of MVR Ports 165 23 1 2 MVR Modes 165 23 1 3 How MVR Works 166 23 2 General MVR Configuration 166 23 3 MVR Group Configuration 168 23 3 1 MVR...

Page 16: ...le 188 27 6 Backing Up a Configuration File 188 27 7 FTP Command Line 189 27 7 1 Filename Conventions 189 27 7 1 1 Example FTP Commands 190 27 7 2 FTP Command Line Procedure 190 27 7 3 GUI based FTP C...

Page 17: ...ege Levels 208 32 8 Command Modes 208 32 9 Using Command History 210 32 10 Saving Your Configuration 210 32 10 1 Logging Out 210 32 11 Command Summary 211 32 11 1 User Mode 211 32 11 2 Enable Mode 212...

Page 18: ...248 33 9 1 no mirror 249 33 9 2 no https timeout 249 33 9 3 no trunk 249 33 9 4 no port access authenticator 250 33 9 5 no ssh 250 33 10 interface Commands 251 33 10 1 interface port channel 251 33 10...

Page 19: ...5 1 Problems Starting Up the Switch 267 35 2 Problems Accessing the Switch 267 35 3 Problem with the VDSL Connection 268 35 3 1 Pop up Windows JavaScripts and Java Permissions 268 35 3 1 1 Internet Ex...

Page 20: ...igure 16 Resetting the Switch Via the Console Port 50 Figure 17 Web Configurator Logout Screen 51 Figure 18 Status 53 Figure 19 Status VDSL Summary 55 Figure 20 Status VDSL Port Details 55 Figure 21 S...

Page 21: ...7 Access Control SNMP Trap Group 124 Figure 58 Access Control Logins 126 Figure 59 SSH Communication Example 127 Figure 60 How SSH Works 127 Figure 61 SSH Login Example 129 Figure 62 HTTPS Implementat...

Page 22: ...95 Load Factory Default Conformation 186 Figure 96 Load Factory Default Start 186 Figure 97 Reboot System Confirmation 186 Figure 98 Reboot System Start 186 Figure 99 Firmware Upgrade 187 Figure 100 R...

Page 23: ...VES 1616F 1624F 44 User s Guide 22 List of Figures...

Page 24: ...18 IEEE 802 1Q Terminology 80 Table 19 VLAN VLAN Status 82 Table 20 VLAN Static VLAN 84 Table 21 VLAN Static VLAN VLAN Port Setting 85 Table 22 Port Based VLAN Setup 87 Table 23 Port Based VLAN Setup...

Page 25: ...t Types and Protocol Number 142 Table 56 Common IP Ports 142 Table 57 Policy 147 Table 58 VLAN Tag Format 152 Table 59 Single and Double Tagged 802 11Q Frame Format 153 Table 60 IEEE 802 1Q Frame 153...

Page 26: ...Your Switch 267 Table 92 Troubleshooting Accessing the Switch 267 Table 93 Troubleshooting VDSL Connection 268 Table 94 Troubleshooting the Password 275 Table 95 Product Specifications 277 Table 96 C...

Page 27: ...VES 1616F 1624F 44 User s Guide 26 List of Tables...

Page 28: ...s It can also be deployed as a mini POP point of presence in a building basement delivering VDSL POST service to each customer Related Documentation Web Configurator Online Help Embedded web help for...

Page 29: ...specified Graphics Icons Key User Guide Feedback Help us help you E mail all User Guide related comments questions or suggestions for improvement to techwriters zyxel com tw or send regular mail to Th...

Page 30: ...an also be managed via Telnet any terminal emulator program on the console port or third party SNMP management 1 2 Software Features This section describes the general software features of the switch...

Page 31: ...094 customer VLANs This allows a service provider to provide different service based on specific VLANs for many different customers Multicast VLAN Registration MVR MVR is designed for applications su...

Page 32: ...IP multicast packets STP Spanning Tree Protocol RSTP Rapid STP R STP detects and breaks network loops and provides backup links between switches bridges or routers It allows a switch to interact with...

Page 33: ...ignals Mini GBIC Slots Install SPF transceivers in these slots to connect to other Ethernet switches at longer distances than the Ethernet port Gigabit Ethernet Ports The ports allow the switch to con...

Page 34: ...building or multiple tenant unit MTU that leverages existing phone line wiring to provide Internet access to all tenants Note that VDSL service can coexist with voice service on the same line Figure 1...

Page 35: ...VES 1616F 1624F 44 User s Guide 34 Chapter 1 Getting to Know Your Switch Figure 2 Curbside Application...

Page 36: ...installation steps 2 1 1 Rack mounted Installation Requirements Two mounting brackets Eight M3 flat head screws and a 2 Philips screwdriver Four M5 flat head screws and a 2 Philips screwdriver Note F...

Page 37: ...ay now mount the switch on a rack Proceed to the next section 2 1 3 Mounting the Switch on a Rack 1 Position a mounting bracket that is already attached to the switch on one side of the rack lining up...

Page 38: ...VDSL LINE wire wrapping pins and the POTS LINE wire wrapping pins are not shorted on the MDF Main Distribution Frame The line from the user carries both the VDSL and the voice signals For each line t...

Page 39: ...plex mode full duplex or half duplex of the connected device An auto crossover auto MDI MDI X port automatically works with a straight through or crossover Ethernet cable 3 1 2 1 Default Ethernet Sett...

Page 40: ...se different transceivers to connect to Ethernet switches with different types of fiber optic connectors Type SFP connection interface Connection speed 1 Gigabit per second Gbps Note To avoid possible...

Page 41: ...ch automatically detects the installed transceiver Check the LEDs to verify that it is functioning properly Figure 8 Installed Transceiver 3 1 5 2 Transceiver Removal Use the following steps to remove...

Page 42: ...ower receptacle on the rear panel Connect the other end of the supplied power cord to a 110VAC 60Hz 2A power outlet Figure 12 Rear Panel DC Unit You need an AWG 16 to AWG 18 power wire for DC power co...

Page 43: ...itting receiving to from a VDSL link Off The link to a VDSL line is down Gigabit Ports 100 Green On The link to a 100 Mbps Ethernet network is up The link to a 1000 Mbps Ethernet network is up if the...

Page 44: ...u need to allow Web browser pop up windows from your device Web pop up blocking is enabled by default in Windows XP SP Service Pack 2 JavaScripts enabled by default Java permissions enabled by default...

Page 45: ...n 4 3 The Status Screen The Status screen is the first screen that displays when you access the web configurator The following figure shows the navigating components of a web configurator screen Figur...

Page 46: ...ide Chapter 4 The Web Configurator 45 The following table lists the various web configurator screens within the sub links Table 4 Navigation Panel Sub links Overview BASIC SETTING ADVANCED APPLICATION...

Page 47: ...Protocol Status Spanning Tree Protocol Configuration Bandwidth Control Broadcast Storm Control Mirroring Link Aggregation Status Link Aggregation Configuration Port Authentication RADIUS 802 1x Port...

Page 48: ...Forwarding This link takes you to screens where you can configure static MAC addresses for a port These static MAC addresses do not age out Filtering This link takes you to a screen to set up filterin...

Page 49: ...onfigure the DHCP settings for the network on the switch DiffServ This link takes you to screens where you can enable DiffServ configure marking rules and set DSCP to IEEE802 1p mappings Routing Proto...

Page 50: ...ased VLANs with the CPU port as a member The CPU port is the management port of the switch 3 Incorrectly configuring the access control settings This could also lock you out from performing out of ban...

Page 51: ...the switch s power to begin a session When you reconnect the switch s power you will see the initial screen 3 When you see the message Press any key to enter Debug Mode within 3 seconds press any key...

Page 52: ...ou log out This is recommended after you finish a management session both for security reasons and so as you don t lock out other switch administrators Figure 17 Web Configurator Logout Screen 4 7 Hel...

Page 53: ...VES 1616F 1624F 44 User s Guide 52 Chapter 4 The Web Configurator...

Page 54: ...status web configurator home page and port details screens 5 1 Overview The home screen of the web configurator displays a port statistical summary with links to each port showing statistical details...

Page 55: ...es the port Click a port number to display the Port Details screen Link This field displays the speed 10M for 10Mbps 100M for 100Mbps or 1000M for 1000Mbps and the duplex F for full duplex or H for ha...

Page 56: ...gure 19 Status VDSL Summary 5 2 2 VDSL Port Details Click a number in the Port column in the Status screen to display individual port statistics Use this screen to check status and detailed performanc...

Page 57: ...ort Info Number This field displays the port number Name This field displays the descriptive name of a port Link Type This field displays the type of the port State This field displays the status of t...

Page 58: ...smitted Pause This field shows the number of 802 3x Pause frames transmitted Rx Packet Rx Packets This field displays the number of packets received Multicast This field shows the number of good multi...

Page 59: ...nt elapses LOS 15Min This field displays the number of Loss of Signal LOS failures since the last 15 minute 900 second time segment The counter restarts to zero after the time segment elapses LOF 15Mi...

Page 60: ...reen to check status and detailed performance data about an Ethernet port on the switch Figure 21 Status Port Details Poll Interval s The text box displays how often in seconds this screen refreshes Y...

Page 61: ...tted Multicast This field shows the number of good multicast packets transmitted Broadcast This field shows the number of good broadcast packets transmitted Pause This field shows the number of 802 3x...

Page 62: ...7 octets in length 128 255 This field shows the number of packets including bad packets received that were between 128 and 255 octets in length 256 511 This field shows the number of packets including...

Page 63: ...VES 1616F 1624F 44 User s Guide 62 Chapter 5 System Status and Port Statistics...

Page 64: ...n The General Setup screen also allows you to set the system time manually or get the current time and date from an external server when you turn on your switch The real time is then displayed in the...

Page 65: ...ield displays the descriptive name of the switch for identification purposes OS F W Version This field displays the version number of the switch s current firmware including the date created Modem Cod...

Page 66: ...s when you turn on the switch Not all time servers support all protocols so you may have to use trial and error to find a protocol that works The main differences between them are the time format When...

Page 67: ...her on the same LAN thus a user will not see the printers and hard disks of another user in the same building VLAN also increases network performance by limiting broadcasts to a smaller and more manag...

Page 68: ...timer for GVRP in milliseconds Each port has a single Leave All Period timer Leave All Timer must be larger than Leave Timer the default is 1000 milliseconds Priority Queue Assignment IEEE 802 1p defi...

Page 69: ...belonging to the pre defined VLAN s Note You must configure a VLAN first Figure 25 IP Setup The following table describes the labels in this screen Table 13 IP Setup LABEL DESCRIPTION Domain Name Serv...

Page 70: ...is management VLAN in order to manage the device from any port If a port is not a member of this VLAN then users on that port cannot access the device To access the switch make sure the port that you...

Page 71: ...ort You can enter up to 64 alpha numerical characters Note Due to space limitation the port name may be truncated in some web configurator screens Type This field displays VDSL for the VDSL ports Prof...

Page 72: ...y BPDU received on this port Select Network to process a BPDU with no VLAN tag and forward a tagged BPDU Ports 17 18 Port This is the port index number Active Select this check box to enable a port Th...

Page 73: ...k pressure flow control in half duplex mode IEEE802 3x flow control is used in full duplex mode to send a pause signal to the sending port causing it to temporarily stop sending signals when the recei...

Page 74: ...t Interleave Interleave delay is the wait in milliseconds that determines the size of a single block of data to be interleaved assembled and then transmitted Interleave delay is used when transmission...

Page 75: ...Interference RFI is induced noise on the lines by surrounding radio frequency electromagnetic radiation from sources such as AM and HAM radio stations Since the VDSL uses a much larger frequency rang...

Page 76: ...tandard and premium Assign the appropriate profile to a VDSL port and it takes care of a large part of the port s configuration 6 10 1 VDSL Profile Setup The line profile defines VDSL parameters such...

Page 77: ...Adaptive Select Fixed Mode or Rate Adaptive Decrease Mode Target Upstream SNR Margin Select the target upstream SNR Signal to Noise Ratio margin Target Downstream SNR Margin Select the target downstre...

Page 78: ...revious configuration Clear Click Clear to clear the fields to the factory defaults Name This field displays the descriptive name for this profile Payload Rate This field displays the configured maxim...

Page 79: ...tes Initialization Failure Select On to trigger an alarm for an initialization failure trap Select Off to disable trap sending when a line fails to initialize Add Click Add to save the new rule to the...

Page 80: ...a frame received at an Ethernet port has a CFI set to 1 then that frame should not be forwarded as it is to an untagged port The remaining twelve bits define the VLAN ID giving a possible maximum numb...

Page 81: ...rs on ports across the network Enable this function to permit VLANs groups beyond the local switch Table 18 IEEE 802 1Q Terminology VLAN PARAMETER TERM DESCRIPTION VLAN Type Permanent VLAN This is a s...

Page 82: ...However with VLAN Trunking enabled on a port s in each intermediary switch you only need to create VLAN groups in the end devices A and B C D and E automatically allow frames with VLAN group tags 1 an...

Page 83: ...on the switch Index This is the VLAN index number VID This is the VLAN identification number Port Number This field shows how this VLAN was added to the switch dynamic using GVRP static added as a per...

Page 84: ...nt to a group whether it has a VLAN tag or not blocked from a VLAN group regardless of its VLAN tag You can also tag all outgoing frames that were previously untagged from a port with the specified VI...

Page 85: ...ort to dynamically join this VLAN group using GVRP This is the default selection Select Fixed for the port to be a permanent member of this VLAN group Select Forbidden if you want to prohibit the port...

Page 86: ...ssary VLAN members on ports across the network Select this check box to permit VLAN groups beyond the local switch Port This field displays the port number Ingress Check Select this check box to activ...

Page 87: ...VES 1616F 1624F 44 User s Guide 86 Chapter 7 VLAN Figure 35 VLAN Static VLAN Port Isolation Setup All Connected...

Page 88: ...tgoing port is selected This option is the most limiting but also the most secure After you make your selection click Apply top right of screen to display the screens as mentioned above You can still...

Page 89: ...tering that require a VID you must enter 1 as the VID The port based VLAN setup screen is shown next The CPU management port forms a VLAN with all Ethernet ports 7 6 1 Configure a Port based VLAN Sele...

Page 90: ...VES 1616F 1624F 44 User s Guide Chapter 7 VLAN 89 Figure 37 Port Based VLAN Setup All Connected...

Page 91: ...lected This option is the most limiting but also the most secure After you make your selection click Set top right of screen to display the screens as mentioned above You can still customize these set...

Page 92: ...o talk to each other you must define the egress port for both ports CPU refers to the switch management port By default it forms a VLAN with all Ethernet ports If it does not form a VLAN with a partic...

Page 93: ...VES 1616F 1624F 44 User s Guide 92 Chapter 7 VLAN...

Page 94: ...the need for broadcasting 8 2 Configuring Static MAC Forwarding Click Advanced Applications Static MAC Forwarding in the navigation panel to display the configuration screen as shown Scroll down to t...

Page 95: ...an index number to modify the settings Active This field displays whether this static MAC address forwarding rule is active Yes or not No You may temporarily deactivate a rule without deleting it Name...

Page 96: ...ced Application Filtering in the navigation panel to display the screen as shown next Scroll down to the bottom of the screen to view the summary table for the settings Figure 40 Filtering The followi...

Page 97: ...isplays in the summary table at the bottom of the screen Cancel Click Cancel to reset the fields to your previous configuration Clear Click Clear to clear the fields to the factory defaults Index This...

Page 98: ...nge In STP a longer delay is required as the device that causes a topology change first notifies the root bridge that then notifies the network Both RSTP and STP flush unwanted learned addresses from...

Page 99: ...established all bridges listen for Hello BPDUs Bridge Protocol Data Units transmitted from the root bridge If a bridge does not get a Hello BPDU after a predefined interval Max Age the bridge assumes...

Page 100: ...itch is the root switch Hello Time second This is the time interval in seconds at which the root switch transmits a configuration message The root bridge determines Hello Time Max Age and Forwarding D...

Page 101: ...iguration LABEL DESCRIPTION Status Click Status to display the Spanning Tree Protocol Status screen Active Select this check box to activate STP Clear this checkbox to disable STP Bridge Priority Brid...

Page 102: ...nflicting information that would make it return to a blocking state otherwise temporary data loops might result The allowed range is 4 to 30 seconds As a general rule 2 Forward Delay 1 Max Age 2 Hello...

Page 103: ...VES 1616F 1624F 44 User s Guide 102 Chapter 10 Spanning Tree Protocol...

Page 104: ...e navigation panel to bring up the screen as shown next Figure 43 Bandwidth Control The following table describes the related labels in this screen Table 30 Bandwidth Control LABEL DESCRIPTION Active...

Page 105: ...m bandwidth allowed in kilobits per second Kbps for the out going traffic flow on a port Enter a number between 1000 and 1000 000 Apply Click Apply to save the settings Cancel Click Cancel to reset th...

Page 106: ...multicast and or DLF packets is reached per second the subsequent packets are discarded Enable this feature to reduce broadcast multicast and or DLF packets in your network You can specify limits for...

Page 107: ...s Select this option and specify how many multicast packets the port receives per second DLF pkt s Select this option and specify how many destination lookup failure DLF packets the port receives per...

Page 108: ...ne the traffic from the mirror port the port you copy the traffic to without interference 13 2 Port Mirroring Configuration Click Advanced Application Mirroring in the navigation panel to display the...

Page 109: ...xamine it in more detail without interfering with the traffic flow on the original port s Select this port from this drop down list box Port This field displays the port number Mirrored Select this op...

Page 110: ...c and dynamic LACP port trunking The switch supports the link aggregation IEEE802 3ad standard This standard describes the Link Aggregate Control Protocol LACP which is a protocol that dynamically cre...

Page 111: ...lt This screen displays LACP group aggregator ID member port number s and the group status Figure 46 Link Aggregation Control Protocol Status Table 33 Link Aggregation ID Local Switch SYSTEM PRIORITY...

Page 112: ...link containing multiple ports Aggregator ID This field displays the link aggregation ID Link aggregation ID consists of the following system priority MAC address key port priority and port number Re...

Page 113: ...ority level Group ID The field identifies the link aggregation group that is one logical link containing multiple ports Active Select this option to activate a trunk group Dynamic LACP Select this che...

Page 114: ...on to an internal device user database that is limited to the memory capacity of the device In essence RADIUS authentication allows you to validate an unlimited number of users from a central location...

Page 115: ...the switch before configuring it on each port Port This field displays a port number Active Select this checkbox to permit 802 1x authentication on this port You must first allow 802 1x authenticatio...

Page 116: ...CRIPTION Authentication Server IP Address Enter the IP address of the external RADIUS server in dotted decimal notation UDP Port The default port of the RADIUS server for authentication is 1812 You ne...

Page 117: ...VES 1616F 1624F 44 User s Guide 116 Chapter 15 Port Authentication...

Page 118: ...itch can learn up to 16K 16384 bytes MAC addresses in total with no limit on individual ports other than the sum cannot exceed 16K For maximum port security enable this feature disable MAC address lea...

Page 119: ...For MAC address learning to occur on a port the port itself must be active with address learning enabled Limited Number of Learned MAC Address Use this field to limit the number of dynamic MAC address...

Page 120: ...onsole port then you will see the following message Figure 53 Console Port Priority 17 2 The Access Control Main Screen Click Management Access Control in the navigation panel to display the main scre...

Page 121: ...software module that resides in a managed switch this device An agent translates the local management information from the managed switch into a form compatible with SNMP The manager is the console t...

Page 122: ...s Otherwise it is a standard MIB OID Table 41 SNMP Commands COMMAND DESCRIPTION Get Allows the manager to retrieve an object variable from the agent GetNext Allows the manager to retrieve the next obj...

Page 123: ...tOn 1 3 6 1 4 1 890 1 5 12 11 27 2 1 or 1 3 6 1 4 1 890 1 5 12 12 27 2 1 This trap is sent when the Ethernet link is down autonegotiation AutonegotiationFailed EventOn 1 3 6 1 4 1 890 1 5 12 11 27 2 1...

Page 124: ...eRouteTestCompleted 1 3 6 1 2 1 81 0 3 This trap is sent when a traceroute test is completed Table 46 SNMP Switch Traps OPTION OBJECT LABEL OBJECT ID DESCRIPTION stp STPNewRoot 1 3 6 1 2 1 17 0 1 This...

Page 125: ...ontrol SNMP Trap Group Table 47 Access Control SNMP LABEL DESCRIPTION Get Community Enter the get community which is the password for the incoming Get and GetNext requests from the management station...

Page 126: ...stination IP Select one of your configured trap destination IP addresses These are the IP addresses of the SNMP stations You must first configure a trap destination IP address in the SNMP Setting scre...

Page 127: ...r account with the admin user name You cannot change the default administrator user name Only the administrator has read write access Old Password Type the existing system password 1234 is the default...

Page 128: ...quest to the SSH server The server identifies itself with a host key The client encrypts a randomly generated session key with the host key and server key and sends the result back to the server The c...

Page 129: ...SSH version 2 using RSA authentication and three encryption methods DES 3DES and Blowfish The SSH server is implemented on the switch for remote management and file transfer on port 22 17 7 1 Require...

Page 130: ...te for the browser from a CA that is a trusted CA on the switch Please refer to the following figure C ssh2 admin 192 168 1 1 WARNING HOST IDENTIFICATION HAS CHANGED IT IS POSSIBLE THAT SOMEONE IS DOI...

Page 131: ...HTTPS port on the switch then in your browser enter https switch IP Address as the web site address where switch IP Address is the IP address or domain name of the switch you wish to access 17 9 1 In...

Page 132: ...s from the switch If Accept this certificate temporarily for this session is selected then click OK to continue in Netscape Select Accept this certificate permanently to import the switch s certificat...

Page 133: ...rvice Access Control allows you to decide what services you may use to access the switch You may also change the default service port and configure trusted computer s for each service in the Remote Ma...

Page 134: ...r HTTPS services you may change the default service port by typing the new port number in the Server Port field If you change the default port number then you will have to let people who wish to use t...

Page 135: ...sting a service or protocol matches the range set here The switch immediately disconnects the session if it does not match Telnet FTP Web ICMP SNMP SSH HTTPS Select services that may be used for manag...

Page 136: ...w and prevent a source from monopolizing the bandwidth The switch has eight physical queues Q0 to Q7 Q7 has the highest priority and Q0 has the lowest 18 1 1 Strict Priority Queuing SPQ Strict Priorit...

Page 137: ...an queues with smaller weights This queuing mechanism is highly efficient in that it divides any available bandwidth across the different traffic queues By default the weight for Q0 is 1 for Q1 is 2 f...

Page 138: ...Fair Scheduling is used to guarantee each queue s minimum bandwidth based on their bandwidth portion weight the number you configure in the Weight field Queues with larger weights get more guaranteed...

Page 139: ...VES 1616F 1624F 44 User s Guide 138 Chapter 18 Queuing Method...

Page 140: ...group MAC address and or port number A layer 3 classifier groups traffic according to the IP address and or TCP UDP protocol number Configure QoS on the switch to group and prioritize application tra...

Page 141: ...CII characters for this rule This is for identification purpose only Packet Format Specify the format of the packet Choices are All 802 3 tagged 802 3 untagged Ethernet II tagged and Ethernet II untag...

Page 142: ...IP Protocol Select an IP protocol type or select Other and enter the protocol number in decimal value Refer to Table 56 on page 142 for more information You may select Establish Only for TCP protocol...

Page 143: ...escriptive name for this rule This is for identification purpose only Rule This field displays a summary of the classifier rule s settings Delete Click Delete to remove the selected entry from the sum...

Page 144: ...screen shows an example where you configure a classifier that identifies all traffic from MAC address 00 50 ba ad 4f 81 on port 2 After you have configured a classifier you can configure a policy in t...

Page 145: ...VES 1616F 1624F 44 User s Guide 144 Chapter 19 Classifier...

Page 146: ...information for every flow In addition applications do not have to request a particular service or give advanced notice of where the traffic is going 20 1 2 DSCP and Per Hop Behavior DiffServ defines...

Page 147: ...44 User s Guide 146 Chapter 20 Policy Click Advanced Applications and then Policy Rule in the navigation panel to display the screen as shown Figure 72 Policy The following table describes the labels...

Page 148: ...d 63 TOS Specify the type of service TOS priority level Metering You can configure the desired bandwidth available to a traffic flow Traffic that exceeds the maximum bandwidth allocated in cases where...

Page 149: ...set the VLAN ID of the packet with the value you configure in the VLANID field Metering Select Enable to activate bandwidth limitation on the traffic flow s then set the actions to be taken on out of...

Page 150: ...VES 1616F 1624F 44 User s Guide Chapter 20 Policy 149 Figure 73 Policy Example...

Page 151: ...VES 1616F 1624F 44 User s Guide 150 Chapter 20 Policy...

Page 152: ...ent service based on specific VLANs for many different customers A service provider s customers may require a range of VLANs to handle multiple applications A service provider s customers can assign t...

Page 153: ...eated as untagged so a second VLAN tag outer VLAN tag can be added Note Static VLAN Tx Tagging MUST be disabled on a port where you choose Normal or Access Port Select Tunnel available for Gigabit por...

Page 154: ...add the tag Priority refers to the IEEE 802 1p standard that allows the service provider to prioritize traffic based on the class of service CoS the customer has paid for On the switch configure prio...

Page 155: ...ped in the Others text field Port The port number identifies the port you are configuring Role Select Normal to have the switch ignore frames received or transmitted on this port with VLAN stacking ta...

Page 156: ...ity level of the outer tag 0 is the lowest priority level and 7 is the highest Note Configure the priority level of the inner IEEE 802 1Q tag in the Port Setup screen Apply Click Apply to save your ch...

Page 157: ...VES 1616F 1624F 44 User s Guide 156 Chapter 21 VLAN Stacking...

Page 158: ...represents a traffic receiving group not individual receiving devices IP addresses in the Class D range 224 0 0 0 to 239 255 255 255 are used for IP multicasting Certain IP multicast numbers are reser...

Page 159: ...t to display the screen as shown Use this screen to enable and configure multicast settings on the switch and apply IGMP profiles to ports See Section 22 1 on page 157 for background information Figur...

Page 160: ...ort Type This field displays the port type Immed Leave Select this option to set the switch to remove this port from the multicast tree when an IGMP version 2 leave message is received on this port Se...

Page 161: ...Profile LABEL DESCRIPTION Profile Name Enter a descriptive name for the profile for identification purposes To configure additional rule s for a profile that you have already added enter the profile n...

Page 162: ...d then the IGMP Snooping VLAN link to display the screen as shown Figure 78 IGMP Snooping VLAN Delete To delete the profile s and all the accompanying rules select the profile s that you want to remov...

Page 163: ...essages which do not belong to these 16 VLANs Note You must also enable IGMP snooping in the Multicast Setting screen first Apply Click Apply to save your changes back to the switch Cancel Click Cance...

Page 164: ...els in this screen Table 65 Multicast Status LABEL DESCRIPTION Index This is the index number of the entry VID This field displays the multicast VLAN ID Port This field displays the port number that b...

Page 165: ...VES 1616F 1624F 44 User s Guide 164 Chapter 22 Multicast...

Page 166: ...s multicast group management You must enable IGMP snooping to use MVR However MVR only responds to IGMP join and leave control messages from multicast groups that are configured under MVR Join and lea...

Page 167: ...switch to join the appropriate multicast group If the IGMP report matches one of the configured MVR multicast group addresses on the switch an entry is created in the forwarding table on the switch Th...

Page 168: ...criber VLANs on the network Name Enter a descriptive name up to 32 printable ASCII characters for identification purposes Multicast VLAN Enter the VLAN ID 1 to 4094 of the multicast VLAN 802 1p Priori...

Page 169: ...port that only receives multicast traffic None Select this option to set the port not to participate in MVR No MVR multicast traffic is sent or received on this port Tagging Select this checkbox if y...

Page 170: ...of the multicast group in dotted decimal notation Enter the same IP address as the Start Address field if you want to configure only one IP address for a multicast group Refer to Section 22 1 1 on pag...

Page 171: ...eaming media server S Computers A B and C in VLAN are able to receive the traffic Figure 84 MVR Configuration Example To configure the MVR settings on the switch create a multicast group in the MVR sc...

Page 172: ...VES 1616F 1624F 44 User s Guide Chapter 23 Multicast VLAN Registration 171 Figure 86 MVR Group Configuration Example Figure 87 MVR Group Configuration Example...

Page 173: ...VES 1616F 1624F 44 User s Guide 172 Chapter 23 Multicast VLAN Registration...

Page 174: ...ver function for your network then you can configure the switch as a DHCP relay agent When the switch receives a request from a computer on your network it contacts the Ethernet device the DHCP server...

Page 175: ...the ID number of the VLAN group to which this DHCP settings apply DHCP Status Select Sever to set the switch to act as a DHCP server Select Relay to set the switch to act as a DHCP relay Then set the...

Page 176: ...check box to have the switch add information slot number port number and VLAN ID to client DHCP requests that it relays to a DHCP server Information This read only field displays the system name you c...

Page 177: ...VES 1616F 1624F 44 User s Guide 176 Chapter 24 DHCP...

Page 178: ...In addition applications do not have to request a particular service or give advanced notice of where the traffic is going 25 1 1 DSCP and Per Hop Behavior DiffServ defines a new DS Differentiated Se...

Page 179: ...apply marking rules and IEEE802 1p priority mapping on the selected port s Click IP Application DiffServ in the navigation panel to display the screen as shown Figure 91 DiffServ The following table d...

Page 180: ...splay the screen as shown next Figure 92 DiffServ DSCP Setting The following table describes the labels in this screen Apply Click Apply to save the changes Cancel Click Cancel to start configuring th...

Page 181: ...VES 1616F 1624F 44 User s Guide 180 Chapter 25 Differentiated Services...

Page 182: ...VES 1616F 1624F 44 User s Guide Chapter 25 Differentiated Services 181...

Page 183: ...VES 1616F 1624F 44 User s Guide 182 Chapter 25 Differentiated Services...

Page 184: ...field allows you to activate deactivate this static route Name Enter a descriptive name for this route This is for identification purpose only Destination IP Address This parameter specifies the IP n...

Page 185: ...mber of the route Click a number to edit the static route entry Active This field displays Yes when the static route is activated and NO when it is deactivated Name This field displays the descriptive...

Page 186: ...ow the steps below to reset the switch back to the factory defaults Table 73 Maintenance LINK DESCRIPTION Firmware Upgrade Access this screen to upload a new firmware to this switch Restore Configurat...

Page 187: ...his takes up to two minutes If you want to access the switch web configurator again you may need to change the IP address of your computer to be in the same subnet as that of the default switch IP add...

Page 188: ...se during system startup using the boot image 1 2 command To specify whether to save a new firmware to ras 0 or ras 1 on the switch perform firmware upgrade using the FTP commands refer to Section 27...

Page 189: ...the File Path text box or click Browse to display the Choose File screen below from which you can locate it After you have specified the file click Restore config is the name of the configuration fil...

Page 190: ...he factory default settings in the screens such as password switch setup IP Setup etc Once you have customized the switch s settings they can be saved back to your computer under a filename of your ch...

Page 191: ...ay damage your device 27 7 2 FTP Command Line Procedure 1 Launch the FTP client on your computer 2 Enter open followed by a space and the IP address of your switch 3 Press ENTER when prompted for a us...

Page 192: ...General Commands for GUI based FTP Clients COMMAND DESCRIPTION Host Address Enter the address of the host server Login Type Anonymous This is when a user I D and password is automatically supplied to...

Page 193: ...VES 1616F 1624F 44 User s Guide 192 Chapter 27 Maintenance...

Page 194: ...screen Table 75 Diagnostic LABEL DESCRIPTION System Log Click Display to display a log of events in the multi line text box Click Clear to empty the text box and reset the syslog entry IP Ping Type th...

Page 195: ...VES 1616F 1624F 44 User s Guide 194 Chapter 28 Diagnostic...

Page 196: ...r Refer to the documentation of your syslog program for details The following table describes the syslog severity levels 29 2 Syslog Setup Click Management and then Syslog in the navigation panel to d...

Page 197: ...7 Syslog LABEL DESCRIPTION Syslog Select Active to turn on syslog system logging and then configure the syslog setting Logging Type This column displays the names of the categories of logs that the de...

Page 198: ...critical the logs are Add Click Add to save your changes back to the device The entry displays in the table below Cancel Click Cancel to begin configuring this screen afresh Clear Click Clear to retur...

Page 199: ...VES 1616F 1624F 44 User s Guide 198 Chapter 29 Syslog...

Page 200: ...ble to determine how to forward frames See the following figure 1 The switch examines a received frame and learns the port on which this source MAC address came 2 The switch checks to see if the frame...

Page 201: ...splayed in the summary table below MAC Click this button to display and arrange the data according to MAC address VID Click this button to display and arrange the data according to VLAN group Port Cli...

Page 202: ...s sends it to the device If no entry is found for the IP address ARP broadcasts the request to all the devices on the LAN The switch fills in its own MAC and IP address in the sender address fields an...

Page 203: ...This is the ARP Table entry number IP Address This is the learned IP address of a device connected to a switch port with corresponding MAC address below MAC Address This is the MAC address of the dev...

Page 204: ...e When you configure the switch using either the CLI or web configurator the settings are saved as a series of commands in a configuration file on the switch You can perform the following with a confi...

Page 205: ...sole Port Connect to the switch s console port using a terminal emulation software configured to the following settings VT100 terminal emulation 9600 bps No parity 8 data bits 1 stop bit No flow contr...

Page 206: ...pping on you right now man in the middle attack It is also possible that the host key has just been changed Please contact your system administrator Add correct host key to C Documents and Settings Ad...

Page 207: ...refers to a command used in the command line interface CI command The symbol means or The entry cr in the command lines refers to carriage return Press ENTER or carriage return after a command to exec...

Page 208: ...the sub commands and parameters sysname help Commands available help logout exit history enable show ip cr ping ip host name cr traceroute ip host name cr ssh 1 2 user dest ip cr ssh 1 2 user dest ip...

Page 209: ...ccounts Note If you use an external RADIUS server to authenticate users you can use a VSA Vendor Specific Attribute to configure a privilege level for an account on the RADIUS server 32 8 Command Mode...

Page 210: ...ommand which takes you to config mode Default login level for the administrator or accounts with a privilege of 13 or 14 Read only accounts with a privilege of 0 12 need to type the enable command and...

Page 211: ...configuration changes are lost once you restart the switch 32 10 1 Logging Out In User or Enable mode enter the exit or logout command to log out of the CLI In Config mode entering exit takes you out...

Page 212: ...ESCRIPTION P enable Accesses Enable or privileged mode See Section 32 11 2 on page 212 0 exit Logs out from the CLI 0 help Displays help information 0 history Displays a list of previously command s t...

Page 213: ...leged mode 13 enable Accesses Enable or privileged mode 13 erase running config Resets to the factory default settings 13 exit Exits Enable or privileged mode 13 help Displays help information 13 hist...

Page 214: ...ort list Displays current interface configuration 13 bandwidth control Displays bandwidth control settings 13 bstorm control Displays broadcast storm control settings 13 egress Displays outgoing port...

Page 215: ...n settings 13 VID Displays the specified MVR group settings 13 policy Displays all policy related information 13 name Displays the specified policy related information 13 port access authenticator Dis...

Page 216: ...r information in the specified 15 minute interval 13 channel counters 1day counters 1 30 Displays VDSL channel counter information in the specified 1 day interval 13 channel counters persistence Displ...

Page 217: ...n the server 13 traceroute ip host name Determines the path a packet takes to a device 13 vlan id ttl 1 255 wait 1 60 queries 1 10 Determines the path a packet takes to a device in the specified VLAN...

Page 218: ...ata flows according to specific criteria such as the source address destination address source port number destination port number or incoming port number 13 help Displays command information 13 dhcp...

Page 219: ...es the priority in outgoing IGMP control packets 13 host timeout 1 16711450 Sets the host timeout value 13 leave timeout 1 16711450 Sets the leave timeout value 13 reserved multicast group drop floodi...

Page 220: ...ct which database the switch should use first to authenticate a user 14 logins username name password pwd Configures up to four read only login accounts 14 privilege 0 14 Sets the access privilege for...

Page 221: ...option System name is not appended to option 82 information field 13 server Disables DHCP server settings 13 server default gateway Disables DHCP server default gateway settings 13 dhcp server primar...

Page 222: ...the specified MAC forwarding entry belonging to a VLAN group if any forwarded through an interface s 13 inactive Enables the specified MAC address belonging to a VLAN group if any forwarded through a...

Page 223: ...uting 13 snmp Disables SNMP management 13 ssh Disables SSH Secure Shell server access to the switch 13 telnet Disables telnet access to the switch 13 snmp server trap destination ip Removes a configur...

Page 224: ...ol Disables broadcast storm control 13 syslog Disables syslog logging 13 server ip address Disables syslog logging to the specified syslog server 13 server ip address inactive Enables syslog logging t...

Page 225: ...requested treatment in the network 13 help Displays command information 13 port access authenticator Enables 802 1x authentication on the switch 13 port list Enables 802 1x authentication on the speci...

Page 226: ...eout period 13 https socket number Allows HTTPS access on the specified service port 13 icmp Allows ICMP access for services like Ping 13 snmp Allows SNMP management 13 ssh socket number Allows SSH ac...

Page 227: ...path cost for a specified port 13 priority 0 255 Sets the priority for a specified port 13 hello time 1 10 maximum age 6 40 forward delay 4 30 Sets Hello Time Maximum Age and Forward Delay 13 help Dis...

Page 228: ...imeout lacp timeout Defines the port number and LACP timeout period 13 vdsl alarmprofile name Enters the VDSL alarm profile mode See Section 32 11 7 on page 234 for more information 13 vdsl common 13...

Page 229: ...t s 13 vlan stacking Enables VLAN stacking on the device 13 SPTPID Sets the service provider s TP Tagged Protocol ID 13 vlan type 802 1q port based Specifies the VLAN type 13 wfq Sets the switch to us...

Page 230: ...igmp filtering profile name Applies the specified IGMP filtering profile 13 igmp group limit Enables the IGMP group limiting feature 13 number number Sets the maximum number IGMP groups allowed 13 igm...

Page 231: ...s flow control on the port s 13 gvrp Disable GVRP on the port s 13 igmp filtering profile Disables IGMP filtering 13 igmp group limit Disables IGMP group limitation 13 igmp immediate leave Disables th...

Page 232: ...100 or 1000 Mbps of the connection on the interface Selecting auto auto negotiation makes one port able to negotiate with a peer automatically to obtain the connection speed and duplex mode that both...

Page 233: ...e Sets the MVR mode 13 name name Sets the MVR name for identification purposes 13 no 13 group Disables all MVR group settings 13 group name Disables the specified MVR group setting 13 inactive Enables...

Page 234: ...oping enable disabl e Activates or deactivates IGMP snooping on the CPE device 13 status Checks command status for layer2 settings 13 unknown mcast 0 1 Sets the action know unknown multicast packets o...

Page 235: ...the settings for this command group to the CPE device 13 level 1 7 Sets the CPE priority level 13 status Checks the command status for priority queue settings 13 vlan1q commit Saves the settings for...

Page 236: ...minute period An alarm is triggered if this number is exceeded 13 15minsUASs threshold Sets the number of UnAvailable Seconds UAS errors allowed in any 15 minute period An alarm is triggered if this...

Page 237: ...3 fixed port list Specifies the port s to be a permanent member of this VLAN group 13 forbidden port list Specifies the port s you want to prohibit from joining this VLAN group 13 help Displays a list...

Page 238: ...show interface Syntax show interface port number This command displays statistics of a port The following example shows that port 2 is up and the related information sysname show interface 18 Port Inf...

Page 239: ...nicast 0 InMulticast 0 InDiscards 0 InErrors 0 InUnknownProtos 0 OutOctets 0 OutUnicast 0 OutMulticast 0 OutDiscards 0 OutErrors 0 swif0 mtu 1500 inet 192 168 1 1 netmask 0xffffff00 broadcast 172 23 3...

Page 240: ...4 1970 PSSV WARN SNMP TRAP 0 cold start 57 Thu Jan 1 00 01 04 1970 PSSV WARN System cold start 58 Thu Jan 1 00 01 04 1970 PP1f WARN SNMP TRAP 26 Event On Trap 59 Thu Jan 1 00 01 06 1970 PKEB INFO User...

Page 241: ...he firmware version and system up time An example is shown next 33 2 7 show vdsl alarmprofile Syntax show vdsl alarmprofile profile name sysname show multi login session info denotes your session inde...

Page 242: ...settings The following shows an example 33 2 9 show vdsl profile Syntax show bdsl profile profile name sysname show vdsl alarmprofile Name LOSs ESs SESs InitFailure Applied Ps test 15 10 5 On sysname...

Page 243: ...ow vdsl profile test Profile Name test Downstream Payload Rate MAX 9984 MIN 4992 Upstream Payload Rate MAX 45440 MIN 64 Rate Adaptive Fixed Mode Target Upstream SNR Margin 20dB Target Downstream SNR M...

Page 244: ...s of 192 168 1 100 33 5 Enabling RSTP Syntax snapping tree port number sysname ping 192 168 1 100 sent rcvd rate rtt avg mdev max min reply from 1 1 100 0 0 0 0 0 192 168 1 100 2 2 100 0 0 0 0 0 192 1...

Page 245: ...dsl common latency 0 1 vdsl common pbo 1 2 vdsl common psdmask 1 2 where This command sets the general VDSL settings on the switch These settings apply to all VDSL ports Refer to Section 6 8 on page 7...

Page 246: ...ance This section shows you how to backup or restore the configuration file on the switch using TFTP 33 7 1 Backing up Configuration Syntax copy running config tftp ip remote file where sysname config...

Page 247: ...uration file There are two ways in which you can set the switch to use a different configuration file restart the switch cold reboot and restart the system warm reboot Use the boot config command to r...

Page 248: ...wing example resets both configuration files to the factory default settings 33 8 Remote CPE Firmware Upgrade You can remotely upgrade firmware on connected CPE devices via the switch Note It is recom...

Page 249: ...o perform remote CPE firmware upgrade you can use the rmt fw upgrade release command to delete the CPE firmware file from the switch Keeping the CPE firmware on the switch takes up space in system mem...

Page 250: ...s 33 9 3 no trunk Syntax no trunk T1 no trunk T1 lacp no trunk T1 interface port list where An example is shown next Disable the trunk group Disable LAPC on the trunk group Remove ports 17 and 18 from...

Page 251: ...SA1 encryption key Remove the remote host with IP address 172 165 1 8 from the list of known hosts Disables port authentication on the switch port list reauthenticate Disables the re authentication me...

Page 252: ...tion Type multiple ports or port ranges separated by a comma Ranges of port numbers are typed separated by a dash The following example shows you how to access the interface command mode to configure...

Page 253: ...es per second peer tunnel discard network Type peer to process any BPDUs received on these ports Type tunnel to forward BPDUs received on these ports Type discard to drop any BPDUs received on these p...

Page 254: ...rroring Enable the monitor port three Enable ports one four five and six for configuration Enables bandwidth control on the switch Mbps Sets the maximum bandwidth allowed for outgoing traffic egress o...

Page 255: ...n example is shown next Enable the IEEE 802 1Q tagged VLAN command to configure tagged VLAN for the switch Enable ports one three four and five for configuration Enable GVRP on the interface 33 10 7 i...

Page 256: ...tch Enable ports one three four and five for configuration Set the outgoing traffic ports as the CPU 0 seven 7 eight 8 and nine 9 sysname config interface port channel 1 3 5 sysname config interface i...

Page 257: ...eed duplex auto 10 half 10 full 100 half 100 full 1000 full where 0 7 Sets the quality of service priority for a port sysname config interface port channel 1 3 5 sysname config interface qos priority...

Page 258: ...33 Command Examples 257 An example is shown next Enable ports one three four and five for configuration Set the speed to 10 Mbps in half duplex mode sysname config interface port channel 1 3 5 sysnam...

Page 259: ...VES 1616F 1624F 44 User s Guide 258 Chapter 33 Command Examples...

Page 260: ...s Use the interface port channel port list command to enter the config interface mode to set the VLAN settings on a port then use the pvid vlan id command to set the VLAN ID you created for the port...

Page 261: ...tings including the join leave and leave all timers An example is shown next 34 2 2 GARP Timer Syntax garp join msec leave msec leaveall msec where sysname config vlan 3 sysname config vlan inactive s...

Page 262: ...VRP Timer Syntax show vlan1q gvrp This command shows the switch s GVRP settings An example is shown next 34 2 4 Enable GVRP Syntax vlan1q gvrp This command turns on GVRP in order to propagate VLAN inf...

Page 263: ...ID Syntax pvid VID where This command sets the default VLAN ID on the port s The following example sets the default VID to 200 on ports 1 to 5 34 3 2 Set Acceptable Frame Type Syntax frame type all ta...

Page 264: ...ixed port list no forbidden port list no untagged port list where Enter fixed to register the port list to the static VLAN table with vlan id Enter normal to confirm registration of the port list to t...

Page 265: ...em Frames might also be dropped if they are sent to a CPE customer premises equipment DSL device that does not accept tagged frames 34 3 5 2 Untagged Frames 1 An untagged frame comes in from the LAN 2...

Page 266: ...ble 34 7 Show VLAN Setting Syntax show vlan This command shows the IEEE 802 1Q Tagged SVLAN Static VLAN table An example is shown next For the AdCtl section of the last column is a port set to normal...

Page 267: ...VES 1616F 1624F 44 User s Guide 266 Chapter 34 IEEE 802 1Q Tagged VLAN Commands...

Page 268: ...d a secured client IP address your computer s IP address must match it Refer to the chapter on access control for details I cannot access the web configurator The administrator username is admin The d...

Page 269: ...Off Pop up Blocker Table 93 Troubleshooting VDSL Connection PROBLEM CORRECTIVE ACTION The VDSL link is down Make sure the VDSL port is activated Check the port connection Make sure the cable is fault...

Page 270: ...op ups check box in the Pop up Blocker section of the screen This disables any web pop up blockers you may have enabled Figure 109 Internet Options 3 Click Apply to save this setting 35 3 1 1 2 Enable...

Page 271: ...Troubleshooting Figure 110 Internet Options 3 Type the IP address of your device the web page that you do not want to have blocked with the prefix http For example http 192 168 1 1 4 Click Add to mov...

Page 272: ...gs 5 Click Close to return to the Privacy screen 6 Click Apply to save this setting 35 3 1 2 JavaScripts If pages of the web configurator do not display properly in Internet Explorer check that JavaSc...

Page 273: ...ure 112 Internet Options 2 Click the Custom Level button 3 Scroll down to Scripting 4 Under Active scripting make sure that Enable is selected the default 5 Under Scripting of Java applets make sure t...

Page 274: ...tings Java Scripting 35 3 1 3 Java Permissions 1 From Internet Explorer click Tools Internet Options and then the Security tab 2 Click the Custom Level button 3 Scroll down to Microsoft VM 4 Under Jav...

Page 275: ...Troubleshooting Figure 114 Security Settings Java 35 3 1 3 1 JAVA Sun 1 From Internet Explorer click Tools Internet Options and then the Advanced tab 2 make sure that Use Java 2 for applet under Java...

Page 276: ...re that you enter the correct password using the proper casing The administrator username is admin The default administrator password is 1234 The username and password are case sensitive Make sure tha...

Page 277: ...VES 1616F 1624F 44 User s Guide 276 Chapter 35 Troubleshooting...

Page 278: ...g pins for 16 or 24 VDSL POTS lines Compatible CPE Device Model P 872H Performance and Management Specifications VDSL Fixed Rate and Rate Adaptive Power back off Interleave delay setting RFI configura...

Page 279: ...CP support DHCP DCHP server relay DHCP relay Option82 System Management Configuration via console telnet web Firmware upgrade via FTP web console Configuration backup and restore via FTP web console S...

Page 280: ...ON 65 C OFF T3 Switch 65 C ON 60 C OFF Voltage Threshold Six voltages 1 8V Digital 5 1 8V Analog 5 2 5V 5 3 3V 5 5V 5 15V 5 Operating Temperature 0 50 C Storage Temperature 25 70 C Operational Humidit...

Page 281: ...VES 1616F 1624F 44 User s Guide 280 Product Specifications...

Page 282: ...binary number Therefore each octet has a possible range of 00000000 to 11111111 in binary or 0 to 255 in decimal There are several classes of IP addresses The first network number 192 in the above ex...

Page 283: ...most bit Class B addresses have a 1 in the leftmost bit and a 0 in the next leftmost bit Class C addresses start with 1 1 0 in the first three leftmost bits Class D addresses begin with 1 1 1 0 Class...

Page 284: ...to network number bits By convention subnet masks always consist of a continuous sequence of ones beginning from the leftmost bit of the mask followed by a continuous sequence of zeros for a total num...

Page 285: ...ed last octet bit values indicate host ID bits borrowed to make network ID bits The number of borrowed host ID bits determines the number of subnets you can have The remaining number of host ID bits a...

Page 286: ...ou need to borrow two host ID bits to give four possible combinations 00 01 10 and 11 The subnet mask is 26 bits 11111111 11111111 11111111 11000000 or 255 255 255 192 Each subnet contains 6 host ID b...

Page 287: ...s 192 168 1 127 Highest Host ID 192 168 1 126 Table 105 Subnet 3 IP SUBNET MASK NETWORK NUMBER LAST OCTET BIT VALUE IP Address 192 168 1 128 IP Address Binary 11000000 10101000 00000001 10000000 Subne...

Page 288: ...D octets available for subnetting and a class A address has three host ID octets see Table 96 on page 282 available for subnetting Table 107 Eight Subnets SUBNET SUBNET ADDRESS FIRST ADDRESS LAST ADDR...

Page 289: ...UBNET 1 255 255 128 0 17 2 32766 2 255 255 192 0 18 4 16382 3 255 255 224 0 19 8 8190 4 255 255 240 0 20 16 4094 5 255 255 248 0 21 32 2046 6 255 255 252 0 22 64 1022 7 255 255 254 0 23 128 510 8 255...

Page 290: ...nonical Format Indicator See CFI certifications 2 notices 2 viewing 3 CFI 79 Change password 48 Changes or Modifications 4 CI Commands 206 Class of Service See CoS classifier 30 Ethernet type 141 exam...

Page 291: ...al firmware 187 Dynamic Host Configuration Protocol See also DHCP Dynamic Host Configuration Protocol See DHCP dynamic link aggregation E egress port 88 91 Ethernet broadcast address 201 Ethernet port...

Page 292: ...Protocol See IGMP IP multicast 31 IP setup 68 L LACP link aggregation ID 110 note 109 server 112 system priority 112 timeout 112 latency mode 73 fast 73 interleave delay 73 LED 37 LEDs 42 limit MAC ad...

Page 293: ...ement NE Network Management System NMS Network Time Protocol See NTP NTP 65 O Operating Temperature 279 Operational Humidity 279 P Password 48 Per Hop Behavior See PHB PHB 145 177 physical queue 67 pi...

Page 294: ...the factory defaults 185 restart system 186 Restore configuration 49 restore configuration 188 RFC 2131 RFC 2132 RFC 2138 RFC 2139 RFC 3046 173 RFC 3164 195 RFI 74 route cost 184 RSTP RSTP Rapid STP 3...

Page 295: ...port state 98 root path cost 98 root port 98 setup 100 status 98 Terminology 97 terminology 97 Strict Priority Queuing See SPQ subnet 281 subnet mask 283 subnetting 283 Switch lockout 49 Switch reset...

Page 296: ...rame select type 67 stacking 151 static static port isolation 85 Status 82 tage format 152 tagging 79 Trunking 81 Type 81 VLAN ID 79 VLAN Identifier See VID VLAN profile 75 VLAN stacking 30 151 port r...

Reviews:

No comments

Related manuals for VES-1616F-44

D-Link GO-RT-N300 Quick Installation Manual preview
GO-RT-N300
Brand: D-Link Pages: 32
D-Link DXN-W224 Quick Start Manual preview
DXN-W224
Brand: D-Link Pages: 6
D-Link DSR-250N User Manual preview
DSR-250N
Brand: D-Link Pages: 221
D-Link ShareCenter Pro DNS-1200-05 Quick Installation Manual preview
ShareCenter Pro DNS-1200-05
Brand: D-Link Pages: 68
D-Link Express Ethernetwork DI-707P Quick Installation Manual preview
Express Ethernetwork DI-707P
Brand: D-Link Pages: 14
IBM 3708 Description preview
3708
Brand: IBM Pages: 342
i-MO 540 Series Product Installation Manual preview
540 Series
Brand: i-MO Pages: 58
Paradyne FrameSaver 9120 Installation Instruction Supplement preview
FrameSaver 9120
Brand: Paradyne Pages: 2
Draytek VigorIPPBX 2820 Series Quick Start Manual preview
VigorIPPBX 2820 Series
Brand: Draytek Pages: 29
ADTRAN 617600026F1 Quick Start Manual preview
617600026F1
Brand: ADTRAN Pages: 9
ForeScout CounterACT Quick Installation Manual preview
CounterACT
Brand: ForeScout Pages: 28
insys icom EBW-E Quick Installation Manual preview
EBW-E
Brand: insys icom Pages: 4
Juniper EX2500 Quick Start preview
EX2500
Brand: Juniper Pages: 2
Lanner NCA-1040 User Manual preview
NCA-1040
Brand: Lanner Pages: 59
Magma ExpressBox2 EB2 User Manual preview
ExpressBox2 EB2
Brand: Magma Pages: 74
Federal Signal Corporation AR2000-M Installation And Maintenance Manual preview
AR2000-M
Brand: Federal Signal Corporation Pages: 49
3Com NETBuilder SI Using Manual preview
NETBuilder SI
Brand: 3Com Pages: 212
Multiplex MULTIflight Stick Operating Instructions Manual preview
MULTIflight Stick
Brand: Multiplex Pages: 10

Brands by name

Popular brands

Load more brands