manualshive.com logo in svg

ZyXEL Communications XGS1930-38, User Manual

The ZyXEL Communications XGS1930-38 is a high-performance network switch designed for seamless data transmission. Enhance your network connectivity with this advanced device. For easy setup and smooth operation, make sure to download the free user manual from manualshive.com. Get comprehensive instructions and optimize your device's performance.

Share
Download
background image

XGS1930 Series User’s Guide

201

The following table describes the labels in this screen. 

25.4  AAA Setup 

Use this screen to configure authentication, authorization and accounting settings on the Switch. Click 
on the 

AAA Setup 

link in the 

AAA 

screen to view the screen as shown. 

Table 93   Advanced Application > AAA > RADIUS Server Setup 

LABEL

DESCRIPTION

Authentication 
Server

Use this section to configure your RADIUS authentication settings.

Mode

This field is only valid if you configure multiple RADIUS servers. 

Select 

index-priority

 and the Switch tries to authenticate with the first configured RADIUS server, 

if the RADIUS server does not respond then the Switch tries to authenticate with the second 
RADIUS server. 

Select 

round-robin

 to alternate between the RADIUS servers that it sends authentication 

requests to.

Timeout

Specify the amount of time in seconds that the Switch waits for an authentication request 
response from the RADIUS server. 

If you are using 

index-priority

 for your authentication and you are using two RADIUS servers 

then the timeout value is divided between the two RADIUS servers. For example, if you set the 
timeout value to 30 seconds, then the Switch waits for a response from the first RADIUS server for 
15 seconds and then tries the second RADIUS server. 

Index

This is a read-only number representing a RADIUS server entry.

IP Address

Enter the IP address of an external RADIUS server in dotted decimal notation.

UDP Port

The default port of a RADIUS server for authentication is 

1812

. You need not change this value 

unless your network administrator instructs you to do so.

Shared Secret

Specify a password (up to 32 alphanumeric characters) as the key to be shared between the 
external RADIUS server and the Switch. This key is not sent over the network. This key must be the 
same on the external RADIUS server and the Switch.

Delete

Check this box if you want to remove an existing RADIUS server entry from the Switch. This entry 
is deleted when you click 

Apply

.

Accounting 
Server

Use this section to configure your RADIUS accounting server settings. 

Timeout

Specify the amount of time in seconds that the Switch waits for an accounting request 
response from the RADIUS accounting server. 

Index

This is a read-only number representing a RADIUS accounting server entry.

IP Address

Enter the IP address of an external RADIUS accounting server in dotted decimal notation.

UDP Port

The default port of a RADIUS accounting server for accounting is 

1813

. You need not change 

this value unless your network administrator instructs you to do so.

Shared Secret

Specify a password (up to 32 alphanumeric characters) as the key to be shared between the 
external RADIUS accounting server and the Switch. This key is not sent over the network. This key 
must be the same on the external RADIUS accounting server and the Switch.

Delete

Check this box if you want to remove an existing RADIUS accounting server entry from the 
Switch. This entry is deleted when you click 

Apply

.

Apply

Click 

Apply

 to save your changes to the Switch’s run-time memory. The Switch loses these 

changes if it is turned off or loses power, so use the 

Save

 link on the top navigation panel to 

save your changes to the non-volatile memory when you are done configuring.

Cancel

Click 

Cancel

 to begin configuring this screen afresh.

Summary of Contents for XGS1930-38

Page 1: ...User s Guide XGS1930 Series 24 48 port GbE Smart Managed Switch Copyright 2018 Zyxel Communications Corporation LAN IP Address http DHCP assigned IP or 192 168 1 1 User Name admin Password 1234 Version 4 50 Edition 2 05 2018 ...

Page 2: ... to differences in your product firmware or your computer operating system Every effort has been made to ensure that the information in this manual is accurate Related Documentation Quick Start Guide The Quick Start Guide shows how to connect the Switch Online Help Click the help link for a description of the fields in the Switch menus More Information Go to https businessforum zyxel com for produ...

Page 3: ... 106 Static MAC Forward Setup 121 Static Multicast Forwarding 123 Filtering 127 Spanning Tree Protocol 129 Bandwidth Control 146 Broadcast Storm Control 148 Mirroring 150 Link Aggregation 152 Port Authentication 161 Port Security 169 Time Range 172 Classifier 174 Policy Rule 183 Queuing Method 187 Multicast 190 AAA 198 Loop Guard 207 Layer 2 Protocol Tunneling 211 PPPoE 215 Error Disable 223 Green...

Page 4: ...4 Access Control 288 Diagnostic 308 System Log 311 Syslog Setup 312 Cluster Management 315 MAC Table 321 IP Table 324 ARP Table 326 Routing Table 328 Path MTU Table 329 Configure Clone 330 IPv6 Neighbor Table 333 Port Status 335 Troubleshooting 341 ...

Page 5: ...2 4 IEEE 802 1Q VLAN Application Examples 22 1 3 Ways to Manage the Switch 23 1 4 Good Habits for Managing the Switch 23 Chapter 2 Hardware Installation and Connection 25 2 1 Installation Scenarios 25 2 2 Desktop Installation Procedure 25 2 3 Mounting the Switch on a Rack 26 2 3 1 Rack mounted Installation Requirements 26 2 3 2 Attaching the Mounting Brackets to the Switch 26 2 3 3 Mounting the Sw...

Page 6: ...tton 53 4 7 2 Restore Custom Default 54 4 7 3 Reboot the Switch 54 4 8 Logging Out of the Web Configurator 54 4 9 Help 54 Chapter 5 Initial Setup Example 55 5 1 Overview 55 5 1 1 Creating a VLAN 55 5 1 2 Setting Port VID 56 5 2 Configuring Switch Management IP Address 57 Chapter 6 DHCP Relay Tutorial 59 6 1 Overview 59 6 2 How to Use DHCPv4 Relay on the Switch 59 6 2 1 DHCP Relay Tutorial Introduc...

Page 7: ... Configuration 81 8 7 Port Setup 83 8 8 PoE Setup 84 8 8 1 PoE Time Range Status 86 8 8 2 PoE Setup 87 8 9 Interface Setup 89 8 10 IPv6 90 8 10 1 IPv6 Interface Status 91 8 10 2 IPv6 Configuration 93 8 10 3 IPv6 Global Setup 94 8 10 4 IPv6 Interface Setup 94 8 10 5 IPv6 Link Local Address Setup 95 8 10 6 IPv6 Global Address Setup 96 8 10 7 IPv6 Neighbor Discovery Setup 97 8 10 8 IPv6 Router Discov...

Page 8: ...u Need To Know 123 11 2 Configuring Static Multicast Forwarding 124 Chapter 12 Filtering 127 12 1 Filtering Overview 127 12 1 1 What You Can Do 127 12 2 Configure a Filtering Rule 127 Chapter 13 Spanning Tree Protocol 129 13 1 Spanning Tree Protocol Overview 129 13 1 1 What You Can Do 129 13 1 2 What You Need to Know 129 13 2 Spanning Tree Protocol Status Screen 131 13 3 Spanning Tree Configuratio...

Page 9: ...1 What You Can Do 150 16 2 Port Mirroring Setup 150 Chapter 17 Link Aggregation 152 17 1 Link Aggregation Overview 152 17 1 1 What You Can Do 152 17 1 2 What You Need to Know 152 17 2 Link Aggregation Status 153 17 3 Link Aggregation Setting 155 17 3 1 Link Aggregation Control Protocol 157 17 4 Technical Reference 159 17 4 1 Static Trunking Example 159 Chapter 18 Port Authentication 161 18 1 Port ...

Page 10: ...tus 175 21 3 Classifier Configuration 175 21 3 1 Viewing and Editing Classifier Configuration Summary 179 21 4 Classifier Global Setting Configuration 180 21 5 Classifier Example 181 Chapter 22 Policy Rule 183 22 1 Policy Rules Overview 183 22 1 1 What You Can Do 183 22 2 Configuring Policy Rules 183 22 3 Policy Example 186 Chapter 23 Queuing Method 187 23 1 Queuing Method Overview 187 23 1 1 What...

Page 11: ... Attributes Used for Authentication 205 Chapter 26 Loop Guard 207 26 1 Loop Guard Overview 207 26 1 1 What You Can Do 207 26 1 2 What You Need to Know 207 26 2 Loop Guard Setup 209 Chapter 27 Layer 2 Protocol Tunneling 211 27 1 Layer 2 Protocol Tunneling Overview 211 27 1 1 What You Can Do 211 27 1 2 What You Need to Know 211 27 2 Configuring Layer 2 Protocol Tunneling 212 Chapter 28 PPPoE 215 28 ...

Page 12: ... 30 2 Configuring Green Ethernet 230 Chapter 31 Link Layer Discovery Protocol LLDP 232 31 1 LLDP Overview 232 31 2 LLDP MED Overview 233 31 3 LLDP Screens 234 31 4 LLDP Local Status 235 31 4 1 LLDP Local Port Status Detail 236 31 5 LLDP Remote Status 239 31 5 1 LLDP Remote Port Status Detail 240 31 6 LLDP Configuration 246 31 6 1 Basic TLV Setting 247 31 6 2 Org specific TLV Setting 248 31 7 LLDP ...

Page 13: ... Example DHCP Relay for Two VLANs 269 33 5 DHCPv6 Relay 270 Chapter 34 ARP Setup 272 34 1 ARP Overview 272 34 1 1 What You Can Do 272 34 1 2 What You Need to Know 272 34 2 ARP Setup 274 34 2 1 ARP Learning 274 34 2 2 Static ARP 275 Chapter 35 Maintenance 277 35 1 Overview 277 35 1 1 What You Can Do 277 35 2 The Maintenance Screen 277 35 3 Erase Running Configuration 278 35 4 Save Configuration 279...

Page 14: ...3 Configuring SNMP User 292 36 4 Logins 294 36 5 Service Access Control 295 36 6 Remote Management 296 36 7 Technical Reference 297 36 7 1 About SNMP 298 36 7 2 SSH Overview 301 36 7 3 Introduction to HTTPS 302 36 7 4 Google Chrome Warning Messages 306 Chapter 37 Diagnostic 308 37 1 Overview 308 37 2 Diagnostic 308 Chapter 38 System Log 311 38 1 Overview 311 38 2 System Log 311 Chapter 39 Syslog S...

Page 15: ...rview 324 42 2 Viewing the IP Table 325 Chapter 43 ARP Table 326 43 1 ARP Table Overview 326 43 1 1 What You Can Do 326 43 1 2 What You Need to Know 326 43 2 Viewing the ARP Table 326 Chapter 44 Routing Table 328 44 1 Overview 328 44 2 Viewing the Routing Table Status 328 Chapter 45 Path MTU Table 329 45 1 Path MTU Overview 329 45 2 Viewing the Path MTU Table 329 Chapter 46 Configure Clone 330 46 ...

Page 16: ...rt Details 336 48 1 2 Port Utilization 339 Chapter 49 Troubleshooting 341 49 1 Power Hardware Connections and LEDs 341 49 2 Switch Access and Login 342 49 3 Switch Configuration 343 Appendix A Customer Support 344 Appendix B Common Services 350 Appendix C IPv6 353 Appendix D Legal Information 361 Index 365 ...

Page 17: ...17 PART I User s Guide ...

Page 18: ...r standalone or Nebula cloud management mode When the Switch is in standalone mode it can be configured and managed by the web configurator When the Switch is in Nebula cloud management mode it can be managed and provisioned by the Zyxel Nebula Control Center NCC See Section 8 12 on page 104 for more information The following table describes the port features of the Switch by model 1 1 1 Managemen...

Page 19: ...he NCC http nebula zyxel com See the following steps or the corresponding Quick Start Guide for how to do device registration 1 Go to the NCC There are three ways to go to the NCC portal website Type http nebula zyxel com in a supported web browser See the NCC User s Guide for more information about supported browsers Click the Visit button in the Switch s login page Click the Nebula icon in the u...

Page 20: ...g the Switch and its neighboring devices is easy In addition Zyxel offers a proprietary software program called Zyxel One Network ZON Utility it is a utility tool that assists you to set up and maintain network devices in a more simple and efficient way You can download the ZON Utility at www zyxel com and install it on a PC Windows operation system For more information on ZON Utility see Section ...

Page 21: ...tions on the server To expand the network simply add more networking devices such as switches routers computers print servers etc Figure 1 Backbone Application 1 2 2 Bridging Example In this example the Switch connects different company departments RD and Sales to the corporate backbone It can alleviate bandwidth contention and eliminate server and network bottlenecks All users that need high band...

Page 22: ...rds restructuring your network and complex maintenance The Switch can provide the same bandwidth as ATM at much lower cost while still being able to use existing adapters and switches Moreover the current LAN structure can be retained as all ports can freely communicate with each other Figure 3 High Performance Switched Workgroup Application 1 2 4 IEEE 802 1Q VLAN Application Examples A VLAN Virtu...

Page 23: ...hapter 4 on page 36 FTP Use FTP for firmware upgrades and configuration backup restore See Section 35 10 1 on page 285 SNMP The Switch can be monitored by an SNMP manager See Section 35 8 on page 283 Cluster Management Cluster Management allows you to manage multiple switches through one switch called the cluster manager See Chapter 39 on page 312 ZON Utility ZON Utility is a program designed to h...

Page 24: ...put it in a safe place Back up the configuration and make sure you know how to restore it Restoring an earlier working configuration may be useful if the device becomes unstable or even crashes If you forget your password you will have to reset the Switch to its factory default settings If you backed up an earlier configuration file you would not have to totally re configure the Switch You could s...

Page 25: ...ace strong enough to support the weight of the Switch and the connected cables Make sure there is a power outlet nearby 3 Make sure there is at least 40 mm of clearance from the bottom to the Switch and make sure there is enough clearance around the Switch to allow air circulation and the attachment of cables and the power cord This is especially important for enclosed rack installations 4 Remove ...

Page 26: ...n a standard EIA rack using a rack mounting kit Note Make sure there is enough clearance between each equipment on the rack for air circulation 2 3 1 Rack mounted Installation Requirements Two mounting brackets Eight M3 flat head screws and a 2 Philips screwdriver Four M5 flat head screws and a 2 Philips screwdriver Failure to use the proper screws may damage the unit 2 3 1 1 Precautions Make sure...

Page 27: ...on 2 3 3 Mounting the Switch on a Rack 1 Position a mounting bracket that is already attached to the Switch on one side of the rack lining up the two screw holes on the bracket with the screw holes on the side of the rack Figure 7 Mounting the Switch on a Rack 2 Using a 2 Philips screwdriver install the M5 flat head screws through the mounting bracket holes into the rack 3 Repeat steps 1 and 2 to ...

Page 28: ... Mbps 100 Mbps or 1000 Mbps The duplex mode can be half duplex or full duplex An auto negotiating port can detect and adjust to the optimum Ethernet speed 10 100 1000 Mbps and duplex mode full duplex or half duplex of the connected device An auto crossover auto MDI MDI X port automatically works with a straight through or crossover Ethernet cable When auto negotiation is turned on an Ethernet port...

Page 29: ...ource of power via its Ethernet ports Each device that receives power through an Ethernet port is a Powered Device PD 3 1 3 SFP SFP Slots These are four slots for Small Form Factor Pluggable SFP or SFP modules such as an SFP SFP transceiver The SFP SFP Plus is an enhanced version of the SFP and supports data rates of 10 Gbps A transceiver is a single unit that houses a transmitter and a receiver U...

Page 30: ...h styles vary 6 Connect the fiber optic cables to the transceiver Figure 12 Transceiver Installation Example Figure 13 Connecting the Fiber Optic Cables 3 1 3 2 Transceiver Removal Use the following steps to remove an SFP SFP transceiver 1 Remove the fiber optic cables from the transceiver 2 Open the transceiver s latch latch styles vary 3 Pull the transceiver out of the slot Figure 14 Removing th...

Page 31: ... Switch and protects you from electrocution 1 Remove the M4 ground screw from the Switch s rear panel 2 Secure a green yellow ground cable 16 AWG or smaller to the Switch s rear panel using the M4 ground screw 3 Attach the other end of the cable to the ground either to the same ground electrode as the rack you installed the device on or to the main grounding electrode of the building Follow your c...

Page 32: ...Switch s power supply requirements 3 3 LEDs After you connect the power to the Switch view the LEDs to ensure proper functioning of the Switch and as an aid in troubleshooting Table 4 LED Descriptions LED COLOR STATUS DESCRIPTION PWR Green On The Switch is receiving power from the power module in the power slot Blinking The Switch is returning to the custom default configuration settings Amber On ...

Page 33: ...er supplied budget but over 60 percent of the power supplied budget Red Bar5 On PoE power usage is more than 80 percent of the power supplied budget Blinking Less than 5 percent of the power supplied budget remains 5 percent is the default value Off PoE power usage is 0 percent of the power supplied budget 10 100 1000Base T Ports LNK ACT Left 1 24 XGS1930 28 1 48 XGS1930 52 Green On The link to a ...

Page 34: ...een On The port has a successful 1000 Mbps connection Blinking The port is transmitting or receiving data at 1000 Mbps Blue On The port has a successful 10 Gbps connection Blinking The port is transmitting or receiving data at 10 Gbps Off This link is disconnected Table 4 LED Descriptions continued LED COLOR STATUS DESCRIPTION ...

Page 35: ...35 PART II Technical Reference ...

Page 36: ...g is enabled by default in Windows XP SP Service Pack 2 JavaScript enabled by default Java permissions enabled by default Note The screens are based on the Switch in standalone mode 4 2 System Login 1 Start your web browser 2 The Switch is a DHCP client by default Type http DHCP assigned IP in the Location or Address field Press ENTER If the Switch is not connected to a DHCP server type http and t...

Page 37: ... on the Wizard screen When you finish configuring the settings you can click the Apply button to make the settings take effect Check the screens to see if the settings are applied and click the Save button in the top to save your configuration into the Switch s nonvolatile memory You can also just click the Apply Save button to make the settings takes effect and save your configuration into the Sw...

Page 38: ...nge the default administrator password and or SNMP community values a warning screen displays each time you log into the web configurator Click Password SNMP to open a screen where you can change the administrator and SNMP passwords simultaneously Otherwise click Ignore to close it Figure 24 Web Configurator Warning ...

Page 39: ...ion 2c v2c SNMP version 3 v3 or both v3v2c Note SNMP version 2c is backwards compatible with SNMP version 1 Get Community Enter the Get Community string which is the password for the incoming Get and GetNext requests from the management station The Get Community string is only used by SNMP managers using SNMP version 2c or lower Set Community Enter the Set Community string which is the password fo...

Page 40: ...ld displays a host name IP Interface Select DHCP Client if the Switch is connected to a router with the DHCP server enabled You then need to check the router for the IP address assigned to the Switch in order to access the Switch s web configurator again Select Static IP Address when the Switch is NOT connected to a router or you want to assign it a fixed IP address VID This field displays the VLA...

Page 41: ...assword LABEL DESCRIPTION Administrator s Password Current password Type the existing system password 1234 is the default password when shipped New password Enter your new system password Confirm password Retype your new system password for confirmation SNMP SNMP Select Enabled to let the Switch act as an SNMP agent which allows a manager station to manage and monitor the Switch through the networ...

Page 42: ... managers using SNMP version 2c or lower Trap Community Enter the Trap Community string which is the password sent with each trap to the SNMP manager The Trap Community string is only used by SNMP managers using SNMP version 2c or lower Previous Click Previous to show the previous screen Next Click Next to show the next screen Cancel Click Cancel to exit this screen without saving Table 8 Wizard B...

Page 43: ...the network IP Subnet Mask The subnet mask specifies the network number portion of an IP address Default Gateway Type the IP address of the default outgoing gateway in dotted decimal notation for example 192 168 1 254 DNS Server DNS Domain Name System is for mapping a domain name to its corresponding IP address and vice versa Enter a domain name server IP address in order to be able to use a domai...

Page 44: ...roup This field displays the group number Type This field displays Static or LACP of this group Member This field displays the members of this group Previous Click Previous to show the previous screen Finish Review the information and click Finish to create the task Cancel Click Cancel to exit this screen without saving Table 10 Wizard Protection Step 1 Loop Guard LABEL DESCRIPTION Loop Guard Sele...

Page 45: ...he Summary screen appears Table 11 Wizard Protection Step 2 Broadcast Storm Control LABEL DESCRIPTION Broadcast Storm Control Select all ports Select all ports to apply settings on all ports You can select a port by clicking it Broadcast pkt s Specify how many broadcast packets the port receives per second Previous Click Previous to show the previous screen Next Click Next to show the next screen ...

Page 46: ...tep 3 Summary LABEL DESCRIPTION Summary Loop Guard If the loop guard feature is enabled on a port the Switch will prevent loops on this port Broadcast Storm Control If the broadcast storm control feature is enabled on a port the number of broadcast packets the Switch receives per second will be limited on this port Previous Click Previous to show the previous screen Finish Review the information a...

Page 47: ...Setting LABEL DESCRIPTION VLAN Setting Default VLAN 1 Access Untagged port Select ports and use the right arrow to add them as the untagged ports to a VLAN group VLAN member port VLAN Type a number between 2 and 4094 to create a VLAN ID Type the VLAN ID that you want to edit Trunk Tagged port Select ports and use the downward arrow to add them as the tagged ports to the VLAN group s you created Fi...

Page 48: ...onfigurator screen Table 14 Wizard QoS QoS Setting LABEL DESCRIPTION QoS Setting Select all ports Select all ports to apply settings on all ports You can select a port by clicking it High Select ports and click the High button so they will have high priority Medium Select ports and click the Medium button and so they will have medium priority Low Select ports and click the Low button so they will ...

Page 49: ...mory is the configuration of your Switch that stays the same even if the Switch s power is turned off D Click this link to go to the status page of the Switch E Click this icon to open the Wizard screen where you can configure the Switch s IP login password SNMP community link aggregation and so on F Click this link to log out of the web configurator G Click this link to display web help pages The...

Page 50: ...sary for Switch management and set up to 32 IP routing domains Port Setup This link takes you to a screen where you can configure settings for individual Switch ports PoE Setup For PoE model s This link takes you to a screen where you can set priorities PoE power up settings and schedule so that the Switch is able to reserve and allocate power to certain PDs Interface Setup This link takes you to ...

Page 51: ...ferent schedules Classifier This link takes you to screens where you can configure the Switch to group packets based on the specified criteria Policy Rule This link takes you to a screen where you can configure the Switch to perform special treatment on the grouped packets Queuing Method This link takes you to a screen where you can configure queuing with associated queue weights for each port Mul...

Page 52: ...system log server Cluster Management This link takes you to screens where you can configure clustering management and view its status MAC Table This link takes you to a screen where you can view the MAC addresses and types of devices attached to what ports and VLAN IDs IP Table This link takes you to a screen where you can view the IP addresses and VLAN ID of a device attached to a port You can al...

Page 53: ... Delete the management VLAN default is VLAN 1 2 Delete all port based VLANs with the CPU port as a member The CPU port is the management port of the Switch 3 Filter all traffic to the CPU port 4 Disable all ports 5 Misconfigure the text configuration file 6 Forget the password and or IP address 7 Prevent all services from accessing the Switch 8 Change a service port number but forget it Note Be ca...

Page 54: ...the power off See Section 3 3 on page 32 for more information about the LED behavior 4 8 Logging Out of the Web Configurator Click Logout in a screen to exit the web configurator You have to log in with your password again after you log out This is recommended after you finish a management session for security reasons Figure 37 Web Configurator Logout Screen 4 9 Help The web configurator s online ...

Page 55: ...ort VLAN ID Configure the Switch IP management address 5 1 1 Creating a VLAN VLANs confine broadcast frames to the VLAN group in which the port s belongs You can do this with port based VLAN or tagged static VLAN with fixed port members In this example you want to configure port 1 as a member of VLAN 2 Figure 38 Initial Setup Network Example VLAN 1 Click Advanced Application VLAN VLAN Configuratio...

Page 56: ...e a permanent member of the VLAN only 4 To ensure that VLAN unaware devices such as computers and hubs can receive frames properly clear the TX Tagging check box to set the Switch to remove VLAN tags before sending 5 Click Add to save the settings to the run time memory Settings in the run time memory are lost when the Switch s power is turned off 5 1 2 Setting Port VID Use PVID to add a tag to in...

Page 57: ...up link 2 Enter 2 in the PVID field for port 2 and click Apply to save your changes back to the run time memory Settings in the run time memory are lost when the Switch s power is turned off 5 2 Configuring Switch Management IP Address The default management IP address of the Switch is 192 168 1 1 You can configure another IP address in a different subnet for management purposes The following figu...

Page 58: ...page 36 for more information 3 Click Basic Setting IP Setup IP Configuration in the navigation panel 4 Configure the related fields in the IP Configuration screen 5 For the VLAN2 network enter 192 168 2 1 as the IP address and 255 255 255 0 as the subnet mask 6 In the VID field enter the ID of the VLAN group to which you want this management IP address to belong This is the same as the VLAN ID you...

Page 59: ... to configure your Switch to forward DHCP client requests to a specific DHCP server The DHCP server can then assign a specific IP address based on the information in the DHCP requests 6 2 1 DHCP Relay Tutorial Introduction In this example you have configured your DHCP server 192 168 2 3 and want to have it assign a specific IP address say 172 16 1 18 to DHCP client A based on the system name VLAN ...

Page 60: ...o 802 1Q 3 Click Advanced Application VLAN VLAN Configuration Static VLAN Setup 4 In the Static VLAN screen select ACTIVE enter a descriptive name VLAN 102 for example in the Name field and enter 102 in the VLAN Group ID field Use the default VLAN type Normal in the VLAN Type field 5 Select Fixed to configure port 2 to be a permanent member of this VLAN 6 Clear the TX Tagging check box to set the ...

Page 61: ...creen and then the VLAN Port Setup link in the VLAN Configuration screen Figure 44 Tutorial Click the VLAN Port Setting Link 9 Enter 102 in the PVID field for port 2 to add a tag to incoming untagged frames received on that port so that the frames are forwarded to the VLAN group that the tag defines 10 Click Apply to save your changes back to the run time memory ...

Page 62: ...eps below to enable DHCP relay on the Switch and allow the Switch to add relay agent information such as the VLAN ID to DHCP requests 1 Click IP Application DHCP DHCPv4 and then the Global link to open the DHCP Relay screen 2 Select the Active check box 3 Enter the DHCP server s IP address 192 168 2 3 in this example in the Remote DHCP Server 1 field 4 Select default1 or default2 in the Option 82 ...

Page 63: ...P server can then assign a specific IP address based on the DHCP request 6 2 4 Troubleshooting Check the client A s IP address If it did not receive the IP address 172 16 1 18 make sure 1 Client A is connected to the Switch s port 2 in VLAN 102 2 You configured the correct VLAN ID port number and system name for DHCP relay on both the DHCP server and the Switch 3 You clicked the Save link on the S...

Page 64: ...evice information system status and IP addresses You can also display other status screens for more information Use the ZON Utility screen Section 7 3 on page 66 to deploy and manage network devices Use the Neighbor screen Section 7 4 on page 71 to view and manage Switch s neighbor devices 7 2 Status The Status screen displays when you log into the Switch or click Status at the top right corner of...

Page 65: ...Version This field displays the version number and date of the firmware the Switch is currently running System Time This field displays the current date and time in the UAG The format is mm dd yyyy hh mm ss Serial Number This field displays the serial number of this Switch The serial number is used for device tracking and control System Up Time This field displays how long the Switch has been runn...

Page 66: ...Status This field displays the registration and connection statuses between the Switch and the NCC Nebula Control Center See Section 8 12 on page 104 for more information Linked The Switch is registered with and connected to the NCC Failed The Switch fails to connect to the NCC Unregistered The Switch is not registered with the NCC You can register the Switch in Nebula Control Center preferable De...

Page 67: ...ons Window 10 both 32 bit 64 bit versions Note To check for your Windows operating system version right click on My Computer Properties You should see this information in the General tab Hardware Here are the minimum hardware requirements to use the ZON Utility on your PC Core i3 processor 2GB RAM 100MB free hard disk WXGA Wide XGA 1280x800 7 3 2 Run the ZON Utility 1 Double click the ZON Utility ...

Page 68: ...n about ZON icon in the upper right hand corner of the screen Then select the Supported model and firmware version link If your device is not listed here see the device release notes for ZON utility support The release notes are in the firmware zip file on the Zyxel web site Figure 49 ZON Utility Screen 3 Select a network adapter to which your supported devices are connected ...

Page 69: ...iscovered Figure 52 ZON Utility Screen 6 Select a device and then use the icons to perform actions Some functions may not be available for your devices The following table describes the icons numbered from left to right in the ZON Utility screen 1 2 3 4 5 6 7 8 9 10 11 12 13 Table 18 ZON Utility Icons ICON DESCRIPTION 1 IP configuration Change the selected device s IP address 2 Renew IP Address Up...

Page 70: ...n to clear the list and discover all devices on the connected network again 12 Save Configuration Use this icon to save configuration changes to permanent memory on a selected device 13 Settings Use this icon to select a network adaptor for the computer on which the ZON utility is installed and the utility language Table 19 ZON Utility Fields LABEL DESCRIPTION Type This field displays an icon of t...

Page 71: ...hows the port description of the Switch PoE Draw This shows the consumption that the neighboring device connected to this port draws from the Switch This allows you to plan and use within the power budget of the Switch Remote Port This show the number of the neighbor device s port which is connected to the Switch Desc This shows the description of the neighbor device s port which is connected to t...

Page 72: ...rst device others will show instead Reset to Default Click the Reset button to reset the neighbor device to its factory default settings A warning message Are you sure you want to load factory default appears prompting you to confirm the action After confirming the action a count down button from 5 to 0 starts Note The Switch must support power sourcing PSE or the network device is a powered devic...

Page 73: ... the Port Setup screen Section 8 7 on page 83 to configure Switch port settings Use the PoE Setup screens Section 8 8 on page 84 to view the current amount of power that PDs are receiving from the Switch and set the priority levels for the Switch in distributing power to PDs This screen is available for PoE model s only Use the Interface Setup screens Section 8 9 on page 89 to configure Switch int...

Page 74: ...AC Media Access Control address of the Switch CPU Utilization CPU utilization quantifies how busy the system is Current displays the current percentage of CPU utilization Memory Utilization Memory utilization shows how much DRAM memory is available and in use It also displays the current percentage of memory utilization Name This field displays the name of memory pool Total byte This field display...

Page 75: ...speed falls below the threshold shown Current This field displays this fan s current speed in Revolutions Per Minute RPM MAX This field displays this fan s maximum speed measured in Revolutions Per Minute RPM MIN This field displays this fan s minimum speed measured in Revolutions Per Minute RPM 41 is displayed for speeds too small to measure under 2000 RPM Threshold This field displays the minimu...

Page 76: ...the day month year and time with no time zone adjustment When you use this format it is recommended that you use a Daytime timeserver within your geographical time zone Time RFC 868 format displays a 4 byte integer giving the total number of seconds since 2016 1 1 at 0 0 0 NTP RFC 1305 is similar to Time RFC 868 None is the default value Enter the time manually Each time you turn on the Switch the...

Page 77: ...amples Daylight Saving Time starts in most parts of the United States on the second Sunday of March Each time zone in the United States starts using Daylight Saving Time at 2 A M local time So in the United States you would select Second Sunday March and 2 00 Daylight Saving Time starts in the European Union on the last Sunday of March All of the time zones in the European Union start using Daylig...

Page 78: ...t the port must be active Aging Time Enter a time from 10 to 1000000 seconds This is how long all dynamically learned MAC addresses remain in the MAC address table before they age out and must be relearned ARP Aging Time Aging Time Enter a time from 60 to 1000000 seconds This is how long dynamically learned ARP entries remain in the ARP table before they age out and must be relearned The setting h...

Page 79: ...ty level to physical queue mapping The Switch has eight physical queues that you can map to the 8 priority levels On the Switch traffic assigned to higher index queues gets through faster while traffic in lower index queues is dropped if the network is congested Priority Level The following descriptions are based on the traffic types defined in the IEEE 802 1d standard which incorporates the 802 1...

Page 80: ...ld displays IP address of the Switch in the IP domain IP Subnet Mask This field displays the subnet mask of the Switch in the IP domain VID This field displays the VLAN identification number of the IP domain on the Switch Type This shows whether this IP address is dynamically assigned from a DHCP server or manually assigned Static Renew Click this to renew the dynamic IP address Release Click this...

Page 81: ...t this interface can use the current dynamic IP address from the DHCP server Renew Time This displays the length of time from the lease start that the Switch will request to renew its current dynamic IP address from the DHCP server Rebind Time This displays the length of time from the lease start that the Switch will request to get any dynamic IP address from the DHCP server Lease Time Start This ...

Page 82: ... option if you don t have a DHCP server or if you wish to assign static IP address information to the Switch You need to fill in the following fields when you select this option IP Address Enter the IP address of your Switch in dotted decimal notation for example 192 168 1 1 This is the IP address of the Switch in an IP routing domain IP Subnet Mask Enter the IP subnet mask of an IP routing domain...

Page 83: ...ck Cancel to clear the check boxes Table 27 Basic Setting IP Setup IP Configuration continued LABEL DESCRIPTION Table 28 Basic Setting Port Setup LABEL DESCRIPTION Port This is the port index number means all ports Settings in this row apply to all ports Use this row only if you want to make some settings the same for all ports Use this row first to set the common settings and then make adjustment...

Page 84: ...of traffic on a port decreases port bandwidth and overflows buffer memory causing packet discards and frame losses Flow Control is used to regulate transmission of signals to match the bandwidth of the receiving port The Switch uses IEEE802 3x flow control in full duplex mode and backpressure flow control in half duplex mode IEEE802 3x flow control is used in full duplex mode to send a pause signa...

Page 85: ... electric outlet to power up devices Figure 62 Powered Device Examples You can also set priorities so that the Switch is able to reserve and allocate power to certain PDs Note The POE Power over Ethernet devices that supply or receive power and their connected Ethernet cables must all be completely indoors To view the current amount of power that PDs are receiving from the Switch click Basic Setti...

Page 86: ...f the PoE device needs less than 16W Port This is the port index number State This field shows which ports can receive power from the Switch You can set this in Section 8 8 2 on page 87 Disable The PD connected to this port cannot get power supply Enable The PD connected to this port can receive power Class This shows the power classification of the PD This is a number from 0 to 4 where each value...

Page 87: ...Ds Click the PoE Setup link in the Basic Setting PoE Setup screen The following screen opens Table 30 Basic Setting PoE Setup PoE Time Range Status LABEL DESCRIPTION Port This is the number of the port on the Switch Time Range This field displays the name of the schedule which is applied to the port PoE is enabled at the specified time date state This field displays whether the port can receive po...

Page 88: ...his to have the Switch pre allocate power to each port based on the classification of the PD device Dual Detection Select this to have the Switch run another detecting procedure between the detection and classification stages This helps check if the power interface PI range of the connected PD is within the IEEE 802 3AF AT standard range and ensures it is an IEEE PD Power Up Sequence Delay Select ...

Page 89: ... is NOT performing Layer 2 power classification using Link Layer Discovery Protocol LLDP 802 3at the Switch supports the IEEE 802 3at High Power over Ethernet standard and can supply power of up to 30W per Ethernet port IEEE 802 3at is also known as PoE or PoE Plus An IEEE 802 3at compatible device is referred to as Type 2 Power Class 4 High Power can only be used by Type 2 devices If the connecte...

Page 90: ...tion properly you should configure a static VLAN with the same ID number in the Advanced Application VLAN screens Add Click this to create a new entry This saves your changes to the Switch s run time memory The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring ...

Page 91: ...tion Click an interface index number in the Basic Setting IPv6 screen The following screen opens Figure 68 Basic Setting IPv6 IPv6 Interface Status Table 33 Basic Setting IPv6 LABEL DESCRIPTION Index This field displays the index number of an IPv6 interface Click on an index number to view more interface details Interface This is the name of the IPv6 interface you created Active This field display...

Page 92: ...erface ND Reachable Time millisecond This field displays how long in milliseconds a neighbor is considered reachable for this interface DHCPv6 Client Active This field displays whether the Switch acts as a DHCPv6 client to get an IPv6 address from a DHCPv6 server Identity Association An Identity Association IA is a collection of addresses assigned to a DHCP client through which the server and clie...

Page 93: ...CPv6 Client Click Click Here to send a new DHCP request to the DHCPv6 server and update the IPv6 address and DNS information for this interface Table 34 Basic Setting IPv6 IPv6 Interface Status continued LABEL DESCRIPTION Table 35 Basic Setting IPv6 IPv6 Configuration LABEL DESCRIPTION IPv6 Global Setup Click the link to go to a screen where you can configure the global IPv6 settings on the Switch...

Page 94: ...n configure the Switch DHCP settings Table 35 Basic Setting IPv6 IPv6 Configuration continued LABEL DESCRIPTION Table 36 Basic Setting IPv6 IPv6 Configuration IPv6 Global Setup LABEL DESCRIPTION IPv6 Hop Limit Specify the maximum number of hops from 1 to 255 in router advertisements This is the maximum number of hops on which an IPv6 packet is allowed to transmit before it is discarded by an IPv6 ...

Page 95: ...next Figure 72 Basic Setting IPv6 IPv6 Configuration IPv6 Link Local Address Setup Table 37 Basic Setting IPv6 IPv6 Configuration IPv6 Interface Setup LABEL DESCRIPTION Interface Select the IPv6 interface you want to configure Active Select this option to enable the interface Apply Click Apply to save your changes to the Switch s run time memory The Switch loses these changes if it is turned off o...

Page 96: ...witch s run time memory The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the nonvolatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh Clear Click Clear to reset the fields to the factory defaults Index This is the interface index number Click on an index num...

Page 97: ... Prefix Length This field displays the IPv6 global address and prefix length for the interface EUI 64 This shows whether the interface ID of the global address is generated using the EUI 64 format Select an entry s check box to select a specific entry Otherwise select the check box in the table heading row to select all entries Delete Check the entry ies that you want to remove and then click Dele...

Page 98: ...e changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the nonvolatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh Clear Click Clear to reset the fields to the factory defaults Index This is the interface index number Click on an index number to change the settings Interface This is ...

Page 99: ...imum Interval Specify the maximum time interval from 4 to 1800 seconds at which the Switch sends router advertisements for this interface Lifetime Specify how long from 0 to 9000 seconds the router in router advertisements can be used as a default router for this interface Suppress Select this option to set the Switch to not send router advertisements and responses to router solicitations on this ...

Page 100: ...onfiguration Select No Onlink Flag to not allow the specified prefix to be used for on link determination Select No Advertise Flag to set the Switch to not include the specified IPv6 prefix prefix length in router advertisements for this interface Add Click this to create a new entry or to update an existing one This saves your changes to the Switch s run time memory The Switch loses these changes...

Page 101: ...face type for IPv6 at the time of writing Interface ID Specify a unique identification number from 1 to 4094 for the interface A static IPv6 neighbor entry displays in the Management Neighbor Table screen only when the interface ID is also created in the Basic Setup Interface Setup screen To have IPv6 function properly you should configure a static VLAN with the same ID number in the Advanced Appl...

Page 102: ... entry ies from the summary table Cancel Click Cancel to clear the check boxes Table 43 Basic Setting IPv6 IPv6 Configuration IPv6 Neighbor Setup continued LABEL DESCRIPTION Table 44 Basic Setting IPv6 IPv6 Configuration DHCPv6 Client Setup LABEL DESCRIPTION Interface Select the IPv6 interface you want to configure IA Type Select IA NA to set the Switch to get a non temporary IP address from the D...

Page 103: ...apid Commit This field displays whether the Switch obtains information from the DHCPv6 server by a rapid two message exchange DNS This field displays whether the Switch obtains DNS server IPv6 addresses from the DHCPv6 server Domain List This field displays whether the Switch obtains a list of domain names from the DHCP server Information Refresh Minimum This field displays the time interval in se...

Page 104: ...mation about the CLOUD LED to see if the Switch goes into Nebula cloud management mode successfully Use this screen to enable or disable the Nebula Control Center Discovery feature If it s enabled the Switch will try to connect to the NCC You must have Internet access to use the Nebula Control Center Discovery feature Note Once the Switch is managed by the NCC you can t disable the Nebula Control ...

Page 105: ...Chapter 8 Basic Setting XGS1930 Series User s Guide 105 Figure 80 Basic Setting Cloud Management ...

Page 106: ...know more about VLAN and how to configure the screens IEEE 802 1Q Tagged VLANs A tagged VLAN uses an explicit tag VLAN ID in the MAC header to identify the VLAN membership of a frame across bridges they are not confined to the switch on which they were created The VLANs can be created statically by hand or dynamically through GVRP The VLAN ID associates a frame with a specific VLAN and provides th...

Page 107: ...ocols used to automatically register VLAN membership across switches GARP GARP Generic Attribute Registration Protocol allows network switches to register and de register attribute values with other GARP participants within a bridged LAN GARP is a protocol that provides a generic mechanism for protocols that serve a more specific application for example GVRP GARP Timers Switches join VLANs by maki...

Page 108: ...AN trunking port s Figure 81 Port VLAN Trunking 9 1 2 3 Select the VLAN Type Select a VLAN type in the Basic Setting Switch Setup screen Figure 82 Switch Setup Select VLAN Type VLAN Administrative Control Registration Fixed Fixed registration ports are permanent VLAN members Registration Forbidden Ports with registration forbidden are forbidden to join the specified VLAN Normal Registration Ports ...

Page 109: ...tatus The following table describes the labels in this screen Table 47 Advanced Application VLAN VLAN Status LABEL DESCRIPTION VLAN Search by VID Enter an existing VLAN ID number s separated by a comma and click Search to display only the specified VLAN s in the list below Leave this field blank and click Search to display all VLANs configured on the Switch The Number of VLAN This is the number of...

Page 110: ...nent entry Voice manually added as a Voice VLAN Change Pages Click Previous or Next to show the previous next screen if all status information cannot be seen in one screen Table 47 Advanced Application VLAN VLAN Status continued LABEL DESCRIPTION Table 48 Advanced Application VLAN VLAN Detail LABEL DESCRIPTION VLAN Status Click this to go to the VLAN Status screen VID This is the VLAN identificati...

Page 111: ...ic VLAN for the Switch Click the Static VLAN Setup link in the VLAN Configuration screen to display the screen as shown next Table 49 Advanced Application VLAN VLAN Configuration LABEL DESCRIPTION Static VLAN Setup Click Click Here to configure the Static VLAN for the Switch VLAN Port Setup Click Click Here to configure the VLAN Port for the Switch Voice VLAN Setup Click Click Here to configure th...

Page 112: ...rposes This name consists of up to 64 printable characters Spaces are allowed VLAN Group ID Enter the VLAN ID for this static entry the valid range is between 1 and 4094 Port The port number identifies the port you are configuring In stacking mode the first number represents the slot and the second the port number Settings in this row apply to all ports Use this row only if you want to make some s...

Page 113: ...changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to change the fields back to their last saved values Clear Click Clear to start configuring the screen again VID This field displays the ID number of the VLAN group Click the number to edit the VLAN settings Ac...

Page 114: ...n this row apply to all ports Use this row only if you want to make some settings the same for all ports Use this row first to set the common settings and then make adjustments on a port by port basis Note Changes in this row are copied to all the ports as soon as you make them Ingress Check If this check box is selected the Switch discards incoming frames on a port for VLANs that do not include t...

Page 115: ...r tagged frames on this port This is the default setting Select Tag Only to accept only tagged frames on this port All untagged frames will be dropped Select Untag Only to accept only untagged frames on this port All tagged frames will be dropped VLAN Trunking Enable VLAN Trunking on ports connected to other switches or routers but not ports directly connected to end users to allow frames belongin...

Page 116: ...e your changes to the non volatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh Clear Click Clear to reset the fields to default settings Voice VLAN OUI Setup OUI address Type the IP Phone manufacturer s OUI MAC address The first three byes is the manufacturer identifier the last three bytes is a unique station ID OUI mask Type the IP Phone manuf...

Page 117: ...te port based VLAN the Switch uses a default VLAN ID of 1 You cannot change it Note In screens such as IP Setup and Filtering that require a VID you must enter 1 as the VID The port based VLAN setup screen is shown next The CPU management port forms a VLAN with all Ethernet ports 9 7 1 Configure a Port Based VLAN Select Port Based as the VLAN Type in the Basic Setting Switch Setup screen and then ...

Page 118: ...Chapter 9 VLAN XGS1930 Series User s Guide 118 Figure 89 Advanced Application VLAN Port Based VLAN Setup All Connected ...

Page 119: ... CPU outgoing port is selected This option is the most limiting but also the most secure After you make your selection click Apply top right of screen to display the screens as mentioned above You can still customize these settings by adding deleting incoming or outgoing ports but you must also click Apply at the bottom of the screen Incoming These are the ingress ports an ingress port is an incom...

Page 120: ...s a VLAN with all Ethernet ports If it does not form a VLAN with a particular port then the Switch cannot be managed from that port Apply Click Apply to save your changes to the Switch s run time memory The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Canc...

Page 121: ...10 2 Configuring Static MAC Forwarding A static MAC address is an address that has been manually entered in the MAC address table Static MAC addresses do not age out When you set up static MAC address rules you are setting static MAC addresses for a port This may reduce the need for broadcasting Static MAC address forwarding together with port security allow only computers in the MAC address table...

Page 122: ...n the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to reset the fields to their last saved values Clear Click Clear to begin configuring this screen afresh Index Click an index number to modify a static MAC address rule for a port Active This field displays whether this static MAC address forwarding rule is active Yes or not...

Page 123: ...er of a multicast group A static multicast address is a multicast MAC address that has been manually entered in the multicast table Static multicast addresses do not age out Static multicast forwarding allows you the administrator to forward multicast frames to a member without the member having to join the group first If a multicast group has no members then the switch will either flood the multi...

Page 124: ...Figure 94 Static Multicast Forwarding to Multiple Ports 11 2 Configuring Static Multicast Forwarding Use this screen to configure rules to forward specific multicast frames such as streaming or control frames to specific port s Click Advanced Application Static Multicast Forwarding to display the configuration screen as shown ...

Page 125: ...ultiple ports separated by no space comma or hyphen For example enter 3 5 for ports 3 4 and 5 Enter 3 5 7 for ports 3 5 and 7 Add Click Add to save your rule to the Switch s run time memory The Switch loses this rule if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel t...

Page 126: ...ng XGS1930 Series User s Guide 126 Delete Click Delete to remove the selected entry from the summary table Cancel Click Cancel to clear the check boxes Table 55 Advanced Application Static Multicast Forwarding continued LABEL DESCRIPTION ...

Page 127: ...ource and or destination MAC addresses and VLAN group ID 12 1 1 What You Can Do Use the Filtering screen Section 12 2 on page 127 to create rules for traffic going through the Switch 12 2 Configure a Filtering Rule Use this screen to create rules for traffic going through the Switch Click Advanced Application Filtering in the navigation panel to display the screen as shown next Figure 96 Advanced ...

Page 128: ... your changes to the Switch s run time memory The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to reset the fields to your previous configuration Clear Click Clear to clear the fields to the factory defaults Index This field displays th...

Page 129: ...e Protocol Status screen Section 13 5 on page 134 to view the RSTP status Use the Multiple Spanning Tree Protocol screen Section 13 6 on page 136 to configure MSTP Use the Multiple Spanning Tree Protocol Status screen Section 13 7 on page 141 to view the MSTP status 13 1 2 What You Need to Know Read on for concepts on STP that can help you configure the screens in this chapter Rapid Spanning Tree ...

Page 130: ...ines the lowest cost spanning tree with STP it enables the root port and the ports that are the designated ports for connected LANs and disables all other ports that participate in STP Network packets are therefore only forwarded between enabled ports eliminating any possible network loops STP aware switches exchange Bridge Protocol Data Units BPDUs periodically When the bridged LAN topology chang...

Page 131: ...ng Tree Instance MSTI MSTI allows multiple VLANs to use the same spanning tree Load balancing is possible as traffic from different VLANs can use distinct paths in a region 13 2 Spanning Tree Protocol Status Screen The Spanning Tree Protocol status screen changes depending on what standard you choose to implement on your network Click Advanced Application Spanning Tree Protocol to see the screen a...

Page 132: ...reen 13 4 Configure Rapid Spanning Tree Protocol Use this screen to configure RSTP settings see Section 13 1 on page 129 for more information on RSTP Click RSTP in the Advanced Application Spanning Tree Protocol screen Table 59 Advanced Application Spanning Tree Protocol Configuration LABEL DESCRIPTION Spanning Tree Mode You can activate one of the STP modes on the Switch Select Rapid Spanning Tre...

Page 133: ...een to enable RSTP on the Switch Bridge Priority Bridge priority is used in determining the root switch root port and designated port The switch with the highest priority lowest numeric value becomes the STP root switch If all switches have the same priority the switch with the lowest MAC address will then become the root switch Select a value from the drop down list box The lower the numeric valu...

Page 134: ...e settings the same for all ports Use this row first to set the common settings and then make adjustments on a port by port basis Note Changes in this row are copied to all the ports as soon as you make them Active Select this check box to activate RSTP on this port Edge Select this check box to configure a port as an edge port when it is directly attached to a computer An edge port changes its in...

Page 135: ...tch can wait without receiving a configuration message before attempting to reconfigure Forwarding Delay second This is the time in seconds the root switch will wait before changing states that is listening to learning to forwarding Note The listening state does not exist in RSTP Cost to Bridge This is the path cost from the root port on this Switch to the root switch Port ID This is the priority ...

Page 136: ...warding state when the designated port for the LAN segment fails Backup A blocked port which has a backup redundant path to a LAN segment where a designated port is already connected when a switch has two links to the same LAN segment Disabled Not strictly part of STP The port can be disabled manually Designated Bridge ID This field displays the identifier of the designated bridge to which this po...

Page 137: ...Chapter 13 Spanning Tree Protocol XGS1930 Series User s Guide 137 Figure 101 Advanced Application Spanning Tree Protocol MSTP ...

Page 138: ...Time 1 Maximum hops Enter the number of hops between 1 and 255 in an MSTP region before the BPDU is discarded and the port information is aged Configuration Name Enter a descriptive name up to 32 characters of an MST region Revision Number Enter a number to identify a region s configuration Devices must have the same revision number to belong to the same region Apply Click Apply to save your chang...

Page 139: ...d 255 and the default value is 128 Path Cost Path cost is the cost of transmitting a frame on to a LAN through that port It is recommended to assign this value according to the speed of the bridge The slower the media the higher the cost see Table 57 on page 130 for more information Add Click Add to save this MST instance to the Switch s run time memory The Switch loses this change if it is turned...

Page 140: ... the ports as soon as you make them Edge Select this check box to configure a port as an edge port when it is directly attached to a computer An edge port changes its initial STP port state from blocking state to forwarding state immediately without going through listening and learning states right after the port is configured as an edge port or when its link status changes Note An edge port becom...

Page 141: ...n to specify which STP mode you want to activate Click MSTP to edit MSTP settings on the Switch CST This section describes the Common Spanning Tree settings Bridge Root refers to the base of the spanning tree the root bridge Our Bridge is this switch This Switch may also be the root bridge Bridge ID This is the unique identifier for this bridge consisting of bridge priority plus MAC address This I...

Page 142: ...ge if the Switch is the root switch Internal Cost This is the path cost from the root port in this MST instance to the regional root switch Port ID This is the priority and number of the port on the Switch through which this Switch must communicate with the root of the MST instance Port This field displays the number of the port on the Switch Port State This field displays the port state in STP Di...

Page 143: ...g figure shows the network example using MSTP Designated Bridge ID This field displays the identifier of the designated bridge to which this port belongs when the port is a designated port Otherwise it displays the identifier of the designated bridge for the LAN segment to which this port is connected Designated Port ID This field displays the priority and number of the bridge port on the designat...

Page 144: ...region Devices that belong to the same MST region are configured to have the same MSTP configuration identification settings These include the following parameters Name of the MST region Revision level as the unique number for the MST region VLAN to MST Instance mapping 13 8 3 MST Instance An MST Instance MSTI is a spanning tree instance VLANs can be configured to run on a specific MSTI Each creat...

Page 145: ... a spanning tree in an STP RSTP The CIST is the default MST instance MSTID 0 Any VLANs that are not members of an MST instance are members of the CIST In an MSTP enabled network there is only one CIST that runs between MST regions and single spanning tree devices A network may contain multiple MST regions and other network segments running RSTP Figure 107 MSTP and Legacy RSTP Network Example ...

Page 146: ...ontrol screen Bandwidth control means defining a maximum allowable bandwidth for incoming and or out going traffic flows on a port 14 1 1 What You Can Do Use the Bandwidth Control screen Section 14 2 on page 146 to limit the bandwidth for traffic going through the Switch 14 2 Bandwidth Control Setup Click Advanced Application Bandwidth Control in the navigation panel to bring up the screen as show...

Page 147: ...re copied to all the ports as soon as you make them Active Select this check box to activate ingress rate limits on this port Ingress Rate Specify the maximum bandwidth allowed in kilobits per second Kbps for the incoming traffic flow on a port Note Ingress rate bandwidth control applies to layer 2 traffic only Active Select this check box to activate egress rate limits on this port Egress Rate Sp...

Page 148: ...allowable broadcast multicast and or DLF packets is reached per second the subsequent packets are discarded Enable this feature to reduce broadcast multicast and or DLF packets in your network You can specify limits for each packet type on each port 15 1 1 What You Can Do Use the Broadcast Storm Control screen Section 15 2 on page 148 to limit the number of broadcast multicast and destination look...

Page 149: ...e common settings and then make adjustments on a port by port basis Note Changes in this row are copied to all the ports as soon as you make them Broadcast pkt s Select this option and specify how many broadcast packets the port receives per second Multicast pkt s Select this option and specify how many multicast packets the port receives per second DLF pkt s Select this option and specify how man...

Page 150: ...r that you can examine the traffic from the monitor port without interference 16 1 1 What You Can Do Use the Mirroring screen Section 16 2 on page 150 to select a monitor port and specify the traffic flow to be copied to the monitor port 16 2 Port Mirroring Setup Click Advanced Application Mirroring in the navigation panel to display the Mirroring screen Use this screen to select a monitor port an...

Page 151: ...gs in this row apply to all ports Use this row only if you want to make some settings the same for all ports Use this row first to set the common settings and then make adjustments on a port by port basis Note Changes in this row are copied to all the ports as soon as you make them Mirrored Select this option to mirror the traffic on a port Direction Specify the direction of the traffic to mirror ...

Page 152: ...smitting data as one logical link in the trunk group and so on Use the Link Aggregation Setting screen Section 17 3 on page 155 to configure to enable static link aggregation Use the Link Aggregation Control Protocol screen Section 17 3 1 on page 157 to enable Link Aggregation Control Protocol LACP 17 1 2 What You Need to Know The Switch supports both static and dynamic link aggregation Note In a ...

Page 153: ...h to avoid causing network topology loops Link Aggregation ID LACP aggregation ID consists of the following information1 17 2 Link Aggregation Status Click Advanced Application Link Aggregation in the navigation panel The Link Aggregation Status screen displays by default See Section 17 1 on page 152 for more information Table 68 Link Aggregation ID Local Switch SYSTEM PRIORITY MAC ADDRESS KEY POR...

Page 154: ...igured in the Link Aggregation screen to be in the trunk group The port number s displays only when this trunk group is activated and there is a port belonging to this group Synchronized Ports These are the ports that are currently transmitting data as one logical link in this trunk group Aggregator ID Link Aggregator ID consists of the following system priority MAC address key port priority and p...

Page 155: ...istributes traffic based on the packet s destination MAC address src dst mac means the Switch distributes traffic based on a combination of the packet s source and destination MAC addresses src ip means the Switch distributes traffic based on the packet s source IP address dst ip means the Switch distributes traffic based on the packet s destination IP address src dst ip means the Switch distribut...

Page 156: ...els in this screen Table 71 Advanced Application Link Aggregation Link Aggregation Setting LABEL DESCRIPTION Link Aggregation Setting This is the only screen you need to configure to enable static link aggregation Group ID The field identifies the link aggregation group that is one logical link containing multiple ports Active Select this option to activate a trunk group ...

Page 157: ...n MAC address Select src dst mac to distribute traffic based on a combination of the packet s source and destination MAC addresses Select src ip to distribute traffic based on the packet s source IP address Select dst ip to distribute traffic based on the packet s destination IP address Select src dst ip to distribute traffic based on a combination of the packet s source and destination IP address...

Page 158: ...Chapter 17 Link Aggregation XGS1930 Series User s Guide 158 Figure 113 Advanced Application Link Aggregation Link Aggregation Setting LACP ...

Page 159: ...gation Control Protocol LACP The smaller the number the higher the priority level Group ID The field identifies the link aggregation group that is one logical link containing multiple ports LACP Active Select this option to enable LACP for a trunk Port This field displays the port number means all ports Settings in this row apply to all ports Use this row only if you want to make some settings the...

Page 160: ...tion Link Aggregation Link Aggregation Setting In this screen activate trunk group T1 select the traffic distribution algorithm used by this group and select the ports that should belong to this group as shown in the figure below Click Apply when you are done Figure 115 Trunking Example Configuration Screen Your trunk group 1 T1 configuration is now complete ...

Page 161: ...02 1x authentication first If a user fails to authenticate via the IEEE 802 1x method then access to the port is denied 18 1 1 What You Can Do Use the Port Authentication screen Section 18 2 on page 163 to display the links to the configuration screens where you can enable the port authentication methods Use the 802 1x screen Section 18 3 on page 163 to activate IEEE 802 1x security Use the MAC Au...

Page 162: ...a very similar way to IEEE 802 1x authentication The main difference is that the Switch does not prompt the client for login credentials The login credentials are based on the source MAC address of the client connecting to a port on the Switch along with a password configured specifically for MAC authentication on the Switch Figure 117 MAC Authentication Process ...

Page 163: ...erver Setup screen Click Advanced Application Port Authentication in the navigation panel to display the screen as shown Select a port authentication method s link in the screen that appears Figure 118 Advanced Application Port Authentication 18 3 Activate IEEE 802 1x Security Use this screen to activate IEEE 802 1x security In the Port Authentication screen click 802 1x to display the configurati...

Page 164: ...s to permit 802 1x authentication on this port You must first allow 802 1x authentication on the Switch before configuring it on each port Max Req Specify the number of times the Switch tries to authenticate client s before sending unresponsive ports to the Guest VLAN This is set to 2 by default That is the Switch attempts to authenticate a client twice If the client does not respond to the first ...

Page 165: ...ation 802 1x Guest VLAN The following table describes the labels in this screen Table 74 Advanced Application Port Authentication 802 1x Guest VLAN LABEL DESCRIPTION Port This field displays a port number means all ports Settings in this row apply to all ports Use this row only if you want to make some settings the same for all ports Use this row first to set the common settings and then make adju...

Page 166: ...Multi Host to authenticate only the first user that connects to this port If the first user enters the correct credential any other users are allowed to access the port without authentication If the first user fails to enter the correct credential they are all put in the guest VLAN Once the first user who did authentication logs out or disconnects from the port rest of the users are blocked until ...

Page 167: ... Switch Note You must first enable MAC authentication on the Switch before configuring it on each port Name Prefix Type the prefix that is appended to all MAC addresses sent to the RADIUS server for authentication You can enter up to 32 printable ASCII characters If you leave this field blank then only the MAC address of the client is forwarded to the RADIUS server Password Type the password the S...

Page 168: ...ion 8 5 on page 78 Port This field displays a port number means all ports Use this row to make the setting the same for all ports Use this row first and then make adjustments on a port by port basis Note Changes in this row are copied to all the ports as soon as you make them Active Select this check box to permit MAC authentication on this port You must first allow MAC authentication on the Switc...

Page 169: ...imum port security enable this feature disable MAC address learning and configure static MAC address es for a port It is not recommended you disable port security together with MAC address learning as this will result in many broadcasts By default MAC address learning is still enabled even though the port security is not activated 19 1 1 What You Can Do Use the Port Security screen Section 19 2 on...

Page 170: ...s port The Switch forwards packets whose MAC address es is in the MAC address table on this port Packets with no matching MAC address es are dropped Clear this check box to disable the port security feature The Switch forwards all packets on this port Address Learning MAC address learning reduces outgoing broadcast traffic For MAC address learning to occur on a port the port itself must be active ...

Page 171: ...ry The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh Table 76 Advanced Application Port Security continued LABEL DESCRIPTION ...

Page 172: ...time schedules are effective only once while recurring schedules usually repeat Both types of schedules are based on the current date and time in the Switch 20 1 1 What You Can Do Use the Time Range screen Section 20 2 on page 172 to view or define a schedule on the Switch 20 2 Configuring Time Range Click Advanced Application Time Range in the navigation panel to display the screen as shown Figur...

Page 173: ...the week hour and minute when the schedule begins and ends respectively Select the second option if you want to define a recurring schedule for multiple non consecutive time periods You need to select each day of the week the recurring schedule is effective You also need to specify the hour and minute when the schedule begins and ends each day The schedule begins and ends in the same day Add Click...

Page 174: ... Need to Know Quality of Service QoS refers to both a network s ability to deliver data with minimum delay and the networking methods used to control the use of bandwidth Without QoS all traffic data is equally likely to be dropped when the network is congested This can cause a reduction in network performance and make the network inadequate for time critical application such as video on demand A ...

Page 175: ...en as shown Table 78 Advanced Application Classifier LABEL DESCRIPTION Index This field displays the index number of the rule Click an index number to edit the rule Active This field displays Yes when the rule is activated and No when it is deactivated Weight This field displays the rule s weight This is to indicate a rule s priority when the match order is set to manual in the Classifier Classifi...

Page 176: ...ed Application Classifier Classifier Configuration LABEL DESCRIPTION Active Select this option to enable this rule Name Enter a descriptive name for this rule for identifying purposes Weight Enter a number between 0 and 65535 to specify the rule s weight When the match order is in manual mode in the Classifier Global Setting screen a higher weight means a higher priority ...

Page 177: ...ce select MAC Mask to enter the source MAC address of the packet in valid MAC address format six hexadecimal character pairs and type the mask for the specified MAC address to determine which bits a packet s MAC address should match Enter f for each bit of the specified MAC address that the traffic s MAC address should match Enter 0 for the bit s of the matched traffic s MAC address which can be o...

Page 178: ...he subnet mask A subnet mask can be represented in a 32 bit notation For example the subnet mask 255 255 255 0 can be represented as 11111111 11111111 11111111 00000000 and counting up the number of ones in this case results in 24 Destination IP Address Address Prefix Enter a destination IP address in dotted decimal notation Specify the address prefix by entering the number of ones in the subnet m...

Page 179: ...ndex number of the rule Click an index number to edit the rule Active This field displays Yes when the rule is activated and No when it is deactivated Weight The field displays the priority of the rule when the match order is in manual mode A higher weight means a higher priority Name This field displays the descriptive name for this rule This is for identification purpose only Rule This field dis...

Page 180: ...nly used port numbers 21 4 Classifier Global Setting Configuration Use this screen to configure the match order and enable logging on the Switch In the Classifier Configuration screen click Classifier Global Setting to display the configuration screen as shown Figure 128 Advanced Application Classifier Classifier Configuration Classifier Global Setting Table 82 Common IP Protocol Types and Protoco...

Page 181: ...he layer of the item configured in the rule Layer 4 items have the highest priority and layer 2 items has the lowest priority For example you configure a layer 2 item VLAN ID in classifier A and configure a layer 3 item source IP address in classifier B When an incoming packet matches both classifier rules classifier B has priority over classifer A Logging Active Select this to allow the Switch to...

Page 182: ...Chapter 21 Classifier XGS1930 Series User s Guide 182 Figure 129 Classifier Example ...

Page 183: ...licy rule ensures that a traffic flow gets the requested treatment in the network 22 1 1 What You Can Do Use the Policy Rule screen Section 22 2 on page 183 to enable the policy and display the active classifier s you configure in the Classifier screen 22 2 Configuring Policy Rules You must first configure a classifier in the Classifier screen Refer to Section 21 3 on page 175 for more information...

Page 184: ...rule applies To select more than one classifier press SHIFT and select the choices at the same time Parameters Set the fields below for this policy You only have to set the field s that is related to the action s you configure in the Action field General VLAN ID Specify a VLAN ID Egress Port Type the number of an outgoing port Priority Specify a priority level Rate Limit You can configure the desi...

Page 185: ...to forward the packets to the egress port Policy 2 applies to Class 2 and the action is to enable bandwidth limitation the Switch will forward the packets Forwarding Select No change to forward the packets Select Discard the packet to drop the packets Priority Select No change to keep the priority setting of the frames Select Set the packet s 802 1p priority to replace the packet s 802 1p priority...

Page 186: ...s Guide 186 22 3 Policy Example The figure below shows an example Policy screen where you configure a policy to limit bandwidth on a traffic flow classified using the Example classifier refer to Section 21 5 on page 181 Figure 131 Policy Example ...

Page 187: ...irst When that queue empties traffic on the next highest priority queue Q6 is transmitted until Q6 empties and then traffic is transmitted on Q5 and so on If higher priority queues never empty then traffic on lower priority queues never gets sent SPQ does not automatically adapt to changing network requirements Weighted Fair Queuing Weighted Fair Queuing is used to guarantee each queue s minimum b...

Page 188: ...ld rather than a fixed amount of bandwidth WRR is activated only when a port has more traffic than it can handle Queues with larger weights get more service than queues with smaller weights This queuing mechanism is highly efficient in that it divides any available bandwidth across the different traffic queues and returns to queues that have not yet emptied 23 2 Configuring Queuing Use this screen...

Page 189: ...onfigure in the Weight field Queues with larger weights get more guaranteed bandwidth than queues with smaller weights Weighted Round Robin Scheduling services queues on a rotating basis based on their queue weight the number you configure in the queue Weight field Queues with larger weights get more service than queues with smaller weights Weight When you select WFQ or WRR enter the queue weight ...

Page 190: ...on page 192 to enable IGMP snooping to forward group multicast traffic only to ports that are members of that group Use the IGMP Snooping VLAN screen Section 24 3 2 on page 194 to perform IGMP snooping on up to 16 VLANs Use the IGMP Filtering Profile Section 24 3 3 on page 196 to specify a range of multicast groups that clients connected to the Switch are able to join 24 1 2 What You Need to Know ...

Page 191: ...rred to as auto mode Alternatively you can specify the VLANs that IGMP snooping should be performed on This is referred to as fixed mode In fixed mode the Switch does not learn multicast group membership of any VLANs other than those explicitly added as an IGMP snooping VLAN 24 2 Multicast Setup Use this screen to configure IGMP for IPv4 or MLD for IPv6 and set up multicast VLANs Click Advanced Ap...

Page 192: ...scribes the labels in this screen Table 88 Advanced Application Multicast IPv4 Multicast LABEL DESCRIPTION Index This is the index number of the entry VID This field displays the multicast VLAN ID Port This field displays the port number that belongs to the multicast group Multicast Group This field displays IP multicast group addresses Table 89 Advanced Application Multicast IPv4 Multicast IGMP S...

Page 193: ...umber means all ports Settings in this row apply to all ports Use this row only if you want to make some settings the same for all ports Use this row first to set the common settings and then make adjustments on a port by port basis Changes in this row are copied to all the ports as soon as you make them Normal Leave Enter an IGMP normal leave timeout value from 200 to 6 348 800 in miliseconds Sel...

Page 194: ...efault to prohibit the port from joining any multicast group You can create IGMP filtering profiles in the Multicast IPv4 Multicast IGMP Snooping IGMP Filtering Profile screen IGMP Querier Mode The Switch treats an IGMP query port as being connected to an IGMP multicast router or server The Switch forwards IGMP join or leave packets to an IGMP query port Select Auto to have the Switch use the port...

Page 195: ...ink on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh VLAN Use this section of the screen to add VLANs upon which the Switch is to perform IGMP snooping Name Enter the descriptive name of the VLAN for identification purposes VID Enter the ID of a static VLAN the valid range is betwee...

Page 196: ... entry s check box to select a specific entry Otherwise select the check box in the table heading row to select all entries Delete Check the entry ies that you want to remove then click the Delete button Cancel Click Cancel to clear the check boxes Table 90 Advanced Application Multicast IPv4 Multicast IGMP Snooping IGMP Snooping VLAN continued LABEL DESCRIPTION Table 91 Advanced Application Multi...

Page 197: ...plays the end of the multicast address range Delete Profile Select a profile s check box to select a specific profile Otherwise select the check box in the table heading row to select all profiles Delete Rule Select the check box es of the rule s that you want to remove from a profile Delete To delete the profile s and all the accompanying rules select the profile s that you want to remove in the ...

Page 198: ...rize a large number of users Accounting is the process of recording what a user is doing The Switch can use an external server to track when users log in log out and so on Accounting can also record system related actions such as boot up and shut down times of the Switch The external servers that perform authentication authorization and accounting functions are known as AAA servers The Switch supp...

Page 199: ...ated actions such as boot up and shut down times of the Switch Local User Accounts By storing user profiles locally on the Switch your Switch is able to authenticate and authorize users without interacting with a network AAA server However there is a limit on the number of users you may authenticate in this way See Section 36 4 on page 294 RADIUS RADIUS is a security protocol used to authenticate ...

Page 200: ... your RADIUS server settings See RADIUS on page 199 for more information on RADIUS servers and Section 25 5 2 on page 205 for RADIUS attributes utilized by the authentication features on the Switch Click on the RADIUS Server Setup link in the AAA screen to view the screen as shown Figure 140 Advanced Application AAA RADIUS Server Setup ...

Page 201: ...our network administrator instructs you to do so Shared Secret Specify a password up to 32 alphanumeric characters as the key to be shared between the external RADIUS server and the Switch This key is not sent over the network This key must be the same on the external RADIUS server and the Switch Delete Check this box if you want to remove an existing RADIUS server entry from the Switch This entry...

Page 202: ... The Switch checks the methods in the order you configure them first Method 1 and finally Method 2 You must configure the settings in the Method 1 field If you want the Switch to check other sources for administrator accounts specify them in the Method 2 field Select local to have the Switch check the administrator accounts configured in the Access Control Logins screen Select radius to have the S...

Page 203: ...s enabled system accounting is disabled Dot1x Configure the Switch to send information when an IEEE 802 1x client begins a session authenticates via the Switch ends a session as well as interim updates of a session Active Select this to activate accounting for a specified event types Broadcast Select this to have the Switch send accounting information to all configured accounting servers at the sa...

Page 204: ...nnel protocol attributes on the RADIUS server refer to your RADIUS server documentation to assign a port on the Switch to a VLAN based on IEEE 802 1x authentication The port VLAN settings are fixed and untagged This will also set the port s VID The following table describes the Table 95 Supported VSAs FUNCTION ATTRIBUTE Ingress Bandwidth Assignment Vendor Id 890 Vendor Type 1 Vendor data ingress r...

Page 205: ...ssociated with it the format is specified 25 5 3 Attributes Used for Authentication The following sections list the attributes sent from the Switch to the RADIUS server when performing authentication 25 5 3 1 Attributes Used for Authenticating Privilege Access User Name The format of the User Name attribute is enab where is the privilege level 1 14 User Password NAS Identifier NAS IP Address 25 5 ...

Page 206: ...Chapter 25 AAA XGS1930 Series User s Guide 206 This value is set to Ethernet 15 on the Switch Calling Station Id Frame MTU EAP Message State Message Authenticator ...

Page 207: ...le loop guard on the Switch and in specific ports 26 1 2 What You Need to Know Loop guard is designed to handle loop problems on the edge of your network This can occur when a port is connected to a Switch that is in a loop state Loop state occurs as a result of human error It happens when two ports on a switch are connected with the same cable When a switch in loop state sends out broadcast messa...

Page 208: ...switch B Since switch B is in loop state the probe packet P returns to port N on A The Switch then shuts down port N to ensure that the rest of the network is not affected by the switch in loop state Figure 144 Loop Guard Probe Packet The Switch also shuts down port N if the probe packet returns to switch A on any other port In other words loop guard also protects against standard network loops Th...

Page 209: ...le 97 Advanced Application Loop Guard LABEL DESCRIPTION Active Select this option to enable loop guard on the Switch The Switch generates syslog internal log messages as well as SNMP traps when it shuts down a port via the loop guard feature Port This field displays the port number means all ports Settings in this row apply to all ports Use this row only if you want to make some settings the same ...

Page 210: ...state the Switch will shut down this port Clear this check box to disable the loop guard feature Apply Click Apply to save your changes to the Switch s run time memory The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to begin configurin...

Page 211: ...ts by replacing the destination MAC address in the packets 27 1 2 What You Need to Know Layer 2 protocol tunneling L2PT is used on the service provider s edge devices L2PT allows edge switches 1 and 2 in the following figure to tunnel layer 2 STP Spanning Tree Protocol CDP Cisco Discovery Protocol and VTP VLAN Trunking Protocol packets between customer switches A B and C in the following figure co...

Page 212: ...T Network Example 27 1 2 1 Layer 2 Protocol Tunneling Mode Each port can have two layer 2 protocol tunneling modes Access and Tunnel The Access port is an ingress port on the service provider s edge device 1 or 2 in Figure 148 on page 212 and connected to a customer switch A or B Incoming layer 2 protocol packets received on an access port are encapsulated and forwarded to the tunnel ports The Tun...

Page 213: ... the address table of a switch on the service provider s network Note All the edge switches in the service provider s network should be set to use the same MAC address for encapsulation Port This field displays the port number means all ports Use this row to make the setting the same for all ports Use this row first and then make adjustments on a port by port basis Note Changes in this row are cop...

Page 214: ...n to have the Switch send UDLD packets to a peer s port it connected to monitor the physical status of a link Mode Select Access to have the Switch encapsulate the incoming layer 2 protocol packets and forward them to the tunnel port s Select Access for ingress ports at the edge of the service provider s network Note You can enable L2PT services for STP LACP VTP CDP UDLD and PAGP on the access por...

Page 215: ...e PPPoE Intermediate Agent on the Switch Use the PPPoE IA Per Port screen Section 28 3 1 on page 219 to set the port state and configure PPPoE intermediate agent sub options on a per port basis Use the PPPoE IA Per Port Per VLAN screen Section 28 3 2 on page 220 to configure PPPoE IA settings that apply to a specific VLAN on a port Use the PPPoE IA for VLAN Section 28 3 3 on page 221 to enable the...

Page 216: ...user defined identifier string and variables into the Agent Circuit ID Sub option The variables can be the slot ID of the PPPoE client the port number of the PPPoE client and or the VLAN ID on the PPPoE packet The identifier string slot ID port number and VLAN ID are separated from each other by a pound key semi colon period comma forward slash or space An Agent Circuit ID Sub option example is Sw...

Page 217: ...eived on a trusted port the Switch forwards it to other trusted port s Note The Switch will drop all PPPoE discovery packets if you enable the PPPoE intermediate agent and there are no trusted ports Untrusted ports are connected to subscribers If a PADI PADR or PADT packet is sent from a PPPoE client and received on an untrusted port the Switch adds a vendor specific tag to the packet and then for...

Page 218: ...r for a specific VLAN on a port in the Advanced Application PPPoE Intermediate Agent Port VLAN screen has priority over this That means if you also want to configure PPPoE IA Per Port or Per Port Per VLAN setting leave the fields here empty and configure circuit id and remote id in the Per Port or Per Port Per VLAN screen Active Select this option to have the Switch add the user defined identifier...

Page 219: ...bes the labels in this screen Apply Click Apply to save your changes to the Switch s run time memory The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh Table 104 Advanced Application PPPoE Intermedi...

Page 220: ...ch discards PADO and PADS packets which are sent from a PPPoE server but received on an untrusted port Circuit id Enter a string of up to 63 ASCII characters that the Switch adds into the Agent Circuit ID sub option for PPPoE discovery packets received on this port Spaces are allowed The Circuit ID you configure for a specific VLAN on a port in the Advanced Application PPPoE Intermediate Agent Por...

Page 221: ...d displays the VLAN ID of each VLAN in the range specified above If you configure the VLAN the settings are applied to all VLANs Use this row to make the setting the same for all VLANs Use this row first and then make adjustments on a VLAN by VLAN basis Changes in this row are copied to all the VLANs as soon as you make them Circuit id Enter a string of up to 63 ASCII characters that the Switch ad...

Page 222: ...settings are applied to all VLANs Use this row to make the setting the same for all VLANs Use this row first and then make adjustments on a VLAN by VLAN basis Changes in this row are copied to all the VLANs as soon as you make them Enabled Select this option to turn on the PPPoE Intermediate Agent on a VLAN Circuit id Select this option to make the Circuit ID settings for a specific VLAN take effe...

Page 223: ...e features such as loop guard or CPU protection allow the Switch to shut down a port or discard specific packets on a port when an error is detected on the port For example if the Switch detects that packets sent out the port s loop back to the Switch the Switch can shut down the port s automatically After that you need to enable the port s or allow the packets on a port manually via the web confi...

Page 224: ...o Errdisable Status in the Advanced Application Errdisable screen to display the screen as shown Table 108 Advanced Application Errdisable LABEL DESCRIPTION Errdisable Status Click this link to view whether the Switch detected that control packets exceeded the rate limit configured for a port or a port is disabled according to the feature requirements and what action you configure and related info...

Page 225: ...active reason mode Errdisable Status Port This is the number of the port on which you want to configure Errdisable Status Cause This displays the type of the control packet received on the port or the feature enabled on the port and causing the Switch to take the specified action Active This field displays whether the control packets ARP BPDU and or IGMP on the port is being detected or not It als...

Page 226: ...eld displays how many control packets this port can receive or transmit per second It can be adjusted in CPU Protection 0 means no rate limit Status This field displays the errdisable status Forwarding The Switch is forwarding packets Rate limitation mode is always in Forwarding status Err disable The Switch disables the port on which the control packets are received inactive port or drops specifi...

Page 227: ... as soon as you make them Rate Limit pkt s Enter a number from 0 to 256 to specify how many control packets this port can receive or transmit per second 0 means no rate limit You can configure the action that the Switch takes when the limit is exceeded See Section 29 5 on page 227 for detailed information Apply Click Apply to save your changes to the Switch s run time memory The Switch loses these...

Page 228: ...to the Switch s run time memory The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh Table 111 Advanced Application Errdisable Errdisable Detect continued LABEL DESCRIPTION Table 112 Advanced Applicat...

Page 229: ... to the Switch s run time memory The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh Table 112 Advanced Application Errdisable Errdisable Recovery continued LABEL DESCRIPTION ...

Page 230: ...be sent a WAKE signal is sent to the link partner to return the link to active mode Auto Power Down Auto Power Down turns off almost all functions of the port s physical layer functions when the link is down so the port only uses power to check for a link up pulse from the link partner After the link up pulse is detected the port wakes up from Auto Power Down and operates normally Short Reach Trad...

Page 231: ...etting the same for all ports Use this row first and then make adjustments to each port if necessary Changes in this row are copied to all the ports as soon as you make them EEE Select this to activate Energy Efficient Ethernet on this port Auto Power Down Select this to activate Auto Power Down on this port Short Reach Select this to activate Short Reach on this port Apply Click Apply to save you...

Page 232: ...he form of TLV Type Length Value Device information carried in the received LLDPDUs is stored in the standard MIB The Switch supports these basic management TLVs End of LLDPDU mandatory Chassis ID mandatory Port ID mandatory Time to Live mandatory Port Description optional System Name optional System Description optional System Capabilities optional Management Address optional The Switch also supp...

Page 233: ...and easy trouble shooting for misconfigured IP addresses There are three classes of endpoint devices that the LLDP MED supports Class I IP Communications Controllers or other communication related servers Class II Voice Gateways Conference Bridges or Media Servers Class III IP Phones PC based Softphones End user Communication Appliances supporting IP Media The following figure shows that with the ...

Page 234: ...e labels in this screen Table 114 Advanced Application LLDP LABEL DESCRIPTION LLDP LLDP Local Status Click here to show a screen with the Switch s LLDP information LLDP Remote Status Click here to show a screen with LLDP information from the neighboring devices LLDP Configuration Click here to show a screen to configure LLDP parameters LLDP MED LLDP MED Configuration Click here to show a screen to...

Page 235: ... as shown next Figure 164 Advanced Application LLDP LLDP Local Status LLDP MED Network Policy Click here to show a screen to configure LLDP MED Link Layer Discovery Protocol for Media Endpoint Devices network policy parameters LLDP MED Location Click here to show a screen to configure LLDP MED Link Layer Discovery Protocol for Media Endpoint Devices location parameters Table 114 Advanced Applicati...

Page 236: ... Switch System Capabilities Supported Bridge System Capabilities Enabled Bridge Management Address TLV The Management Address TLV identifies an address associated with the local LLDP agent that may be used to reach higher layer entities to assist discovery by network management The TLV may also include the system interface number and an object identifier OID that are associated with this managemen...

Page 237: ...Protocol LLDP XGS1930 Series User s Guide 237 Figure 165 Advanced Application LLDP LLDP Local Status LLDP Local Port Status Detail Basic TLV Figure 166 Advanced Application LLDP LLDP Local Status LLDP Local Port Status Detail MED TLV ...

Page 238: ...t auto negotiation status of the port AN Advertised Capability The auto negotiation capabilities of the port Oper MAU Type The current Medium Attachment Unit MAU type of the port Link Aggregation TLV The Link Aggregation TLV indicates whether the link is capable of being aggregated whether the link is currently in an aggregation and if in an aggregation the port identification of the aggregation A...

Page 239: ...mergency Location Identifier Number Table 116 Advanced Application LLDP LLDP Local Status LLDP Local Port Status Detail LABEL DESCRIPTION Table 117 Advanced Application LLDP LLDP Remote Status LABEL DESCRIPTION Index The index number shows the number of remote devices that are connected to the Switch Click on an index number to view the detailed LLDP status for this remote device in the LLDP Remot...

Page 240: ...e following table describes the labels in Basic TLV part of the screen Table 118 Advanced Application LLDP LLDP Remote Status LLDP Remote Port Status Detail Basic TLV LABEL DESCRIPTION Local Port This displays the number of the Switch s port to which the remote device is connected Basic TLV Chassis ID TLV Chassis ID Subtype this displays how the chassis of the remote device is identified Chassis I...

Page 241: ...TLV This displays the system name of the remote device System Description TLV This displays the system description of the remote device System Capabilities TLV This displays whether the system capabilities are enabled and supported on the remote device System Capabilities Supported System Capabilities Enabled Management Address TLV This displays the following management address parameters of the r...

Page 242: ...ed Application LLDP LLDP Remote Status LLDP Remote Port Status Detail Dot1 and Dot3 TLV LABEL DESCRIPTION Dot1 TLV Port VLAN ID TLV This displays the VLAN ID of this port on the remote device Port Protocol VLAN ID TLV This displays the IEEE 802 1 Port Protocol VLAN ID TLV which indicates whether the VLAN ID and whether it is enabled and supported on the port of remote Switch which sent the LLDPDU ...

Page 243: ...dvertised Capability The auto negotiation capabilities of the port Oper MAU Type The current Medium Attachment Unit MAU type of the port Link Aggregation TLV The Link Aggregation TLV indicates whether the link is capable of being aggregated whether the link is currently in an aggregation and if in an aggregation the port identification of the aggregation Aggregation Capability The current aggregat...

Page 244: ...Chapter 31 Link Layer Discovery Protocol LLDP XGS1930 Series User s Guide 244 Figure 170 Advanced Application LLDP LLDP Remote Status LLDP Remote Port Status Detail MED TLV ...

Page 245: ...ler by its Coordinate base LCI latitude and longitude coordinates of the Location Configuration Information LCI Civic LCI IETF Geopriv Civic Address based Location Configuration Information ELIN Emergency Location Identifier Number Inventory TLV The majority of IP Phones lack support of management protocols such as SNMP so LLDP MED inventory TLVs are used to provide their inventory information to ...

Page 246: ...L multiplier of LLDP frames The device information on the neighboring devices ages out and is discarded when its corresponding TTL expires The TTL value is to multiply the TTL multiplier by the LLDP packets transmitting interval Transmit Delay Enter the delay in seconds between successive LLDPDU transmissions initiated by value or status changes in the Switch MIB Reinitialize Delay Enter the numbe...

Page 247: ... copied to all the ports as soon as you make them Admin Status Select whether LLDP transmission and or reception is allowed on this port Disable not allowed Tx Only transmit only Rx Only receive only Tx Rx transmit and receive Notification Select whether LLDP notification is enabled on this port Apply Click Apply to save your changes to the Switch s run time memory The Switch loses these changes i...

Page 248: ... to all the ports as soon as you make them Management Address Select the check box es to enable or disable the sending of Management Address TLVs on the port s Port Description Select the check box es to enable or disable the sending of Port Description TLVs on the port s System Capabilities Select the check box es to enable or to disable the sending of System Capabilities TLVs on the port s Syste...

Page 249: ...egation Select the check box es to enable or disable the sending of IEEE 802 3 Link Aggregation TLVs on the port s MAC PHY Select the check box es to enable or disable the sending of IEEE 802 3 MAC PHY Configuration Status TLVs on the port s All check boxes in this column are enabled by default Max Frame Size Select the check box es to enable or disable the sending of IEEE 802 3 Max Frame Size TLV...

Page 250: ...he same for all ports Use this row first and then make adjustments to each port if necessary Changes in this row are copied to all the ports as soon as you make them Notification Topology Change Select to enable LLDP MED topology change traps on this port MED TLV Setting Location Select to enable transmitting LLDP MED location TLV Network Policy Select to enable transmitting LLDP MED Network Polic...

Page 251: ...enter 0 DSCP Enter the DSCP value of the network policy The value is defined from 0 through 63 with the 0 representing use of the default DSCP value Priority Enter the priority value for the network policy Add Click Add after finish entering the network policy information A summary table will list all the Switch you ve added Cancel Click Cancel to begin entering the information afresh Index This f...

Page 252: ...t Figure 176 Advanced Application LLDP LLDP MED Location Select an entry s check box to select a specific entry Otherwise select the check box in the table heading row to select all entries Delete Check the rules that you want to remove then click the Delete button Cancel Click Cancel to clear the selected check boxes Table 125 Advanced Application LLDP LLDP MED Network Policy LABEL DESCRIPTION ...

Page 253: ...formation The value should be from 0º to 180º The negative value represents the West west east Altitude Enter the altitude information The value should be from 2097151 to 2097151 in meters or in floors meters floor Datum Select the appropriate geodetic datum used by GPS WGS84 NAD83 NAVD88 NAD83 MLLW Civic Address Enter the Civic Address by providing information such as Country State County City St...

Page 254: ...e location configuration information based on geographical coordinates that includes longitude latitude altitude and datum Civic Address This field displays the Civic Address for the remote device using information such as Country State County City Street Number ZIP code and additional information ELIN Number This field shows the Emergency Location Identification Number ELIN which is used to ident...

Page 255: ...when sending SNMP traps or using ping to test IP connectivity This figure shows a Telnet session coming in from network N1 The Switch sends reply traffic to default gateway R1 which routes it back to the manager s computer The Switch needs a static route to tell it to use router R2 to send traffic to an SNMP trap server on network N2 Figure 177 Static Routing Overview 32 1 1 What You Can Do Use th...

Page 256: ... shown Figure 179 IP Application Static Routing IPv4 Static Route The following table describes the related labels you use to create a static route Table 127 IP Application Static Routing IPv4 Static Route LABEL DESCRIPTION Active This field allows you to activate deactivate this static route Name Enter a descriptive name up to 10 printable ASCII characters for identification purposes Destination ...

Page 257: ...ou are done configuring Cancel Click Cancel to reset the above fields to your previous configuration Clear Click Clear to set the above fields back to the factory defaults Index This field displays the index number of the route Click a number to edit the static route entry Active This field displays Yes when the static route is activated and NO when it is deactivated Name This field displays the d...

Page 258: ...to the Switch s run time memory The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh Index This field displays the index number of the route Click a number to edit the static route entry Interface Thi...

Page 259: ...d on the VLAN domain of the DHCPv4 clients Use the DHCPv6 Relay screen Section 33 5 on page 270 to enable and configure DHCPv6 relay 33 1 2 What You Need to Know Read on for concepts on DHCP that can help you configure the screens in this chapter DHCP Modes If there is already a DHCP server on your network then you can configure the Switch as a DHCP relay agent When the Switch receives a request f...

Page 260: ...e 182 IP Application DHCP DHCPv4 The following table describes the labels in this screen Table 129 IP Application DHCP DHCPv4 LABEL DESCRIPTION Relay Status This section displays configuration settings related to the Switch s DHCP relay mode Relay Mode This field displays None if the Switch is not configured as a DHCP relay agent Global if the Switch is configured as a DHCP relay agent only VLAN f...

Page 261: ...ss based on this information Please refer to RFC 3046 for more details The DHCP Relay Agent Information feature adds an Agent Information field also known as the Option 82 field to DHCP requests The Option 82 field is in the DHCP headers of client DHCP request frames that the Switch relays to a DHCP server Relay Agent Information can include the System Name of the Switch if you select this option ...

Page 262: ...s the length of the field 33 4 2 DHCPv4 Option 82 Profile Use this screen to create DHCPv4 option 82 profiles Click IP Application DHCP DHCPv4 in the navigation panel and click the Option 82 Profile link to display the screen as shown Figure 183 IP Application DHCP DHCPv4 Option 82 Profile Table 132 DHCP Relay Agent Circuit ID Sub option Format SubOpt Code Length Value 1 1 byte N 1 byte Slot ID Po...

Page 263: ...on to include information that identifies the relay agent the Switch Enable Select this option to have the Switch append the Remote ID sub option to the option 82 field of DHCP requests mac Select this option to have the Switch add its MAC address to the client DHCP requests that it relays to a DHCP server string Enter a string of up to 64 ASCII characters for the remote ID information in this fie...

Page 264: ...nable DHCPv4 relay Remote DHCP Server 1 3 Enter the IP address of a DHCPv4 server in dotted decimal notation Option 82 Profile Select a pre defined DHCPv4 option 82 profile that the Switch applies to all ports The Switch adds the Circuit ID sub option and or Remote ID sub option specified in the profile to DHCP requests that it relays to a DHCP server Apply Click Apply to save your changes to the ...

Page 265: ... over the one you select in the DHCP DHCPv4 Global screen Add Click this to create a new entry or to update an existing one This saves your changes to the Switch s run time memory The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click this to reset ...

Page 266: ...rver to assign the appropriate IP address according to the VLAN ID Figure 187 DHCP Relay Configuration Example 33 4 6 Configuring DHCP VLAN Settings Use this screen to configure your DHCP settings based on the VLAN domain of the DHCP clients Click IP Application DHCP DHCPv4 in the navigation panel then click the VLAN link In the DHCP Status screen that displays Note You must set up a management IP...

Page 267: ... pre defined DHCP option 82 profile that the Switch applies to all ports in this VLAN The Switch adds the Circuit ID sub option and or Remote ID sub option specified in the profile to DHCP requests that it relays to a DHCP server Add Click this to create a new entry or to update an existing one This saves your changes to the Switch s run time memory The Switch loses these changes if it is turned o...

Page 268: ...ted by no space comma or hyphen For example enter 3 5 for ports 3 4 and 5 Enter 3 5 7 for ports 3 5 and 7 Option 82 Profile Select a pre defined DHCP option 82 profile that the Switch applies to the specified port s in this VLAN The Switch adds the Circuit ID sub option and or Remote ID sub option specified in the profile to DHCP requests that it relays to a DHCP server The profile you select here...

Page 269: ...the example network configure the VLAN Setting screen as shown Figure 191 DHCP Relay for Two VLANs Configuration Example Port This field displays the port s to which the Switch applies the settings Profile Name This field displays the DHCP option 82 profile that the Switch applies to the port s in this VLAN Select an entry s check box to select a specific entry Otherwise select the check box in th...

Page 270: ...se this screen to configure DHCPv6 relay settings for a specific VLAN on the Switch Click IP Application DHCP DHCPv6 in the navigation panel to display the screen as shown Figure 192 IP Application DHCP DHCPv6 The following table describes the labels in this screen Table 139 IP Application DHCP DHCPv6 LABEL DESCRIPTION VID Enter the ID number of the VLAN you want to configure here Helper Address E...

Page 271: ...r the interface ID option is added to DHCPv6 requests from clients in this VLAN Remote ID This field displays whether the remote ID option is added to DHCPv6 requests from clients in this VLAN Select an entry s check box to select a specific entry Otherwise select the check box in the table heading row to select all entries Delete Check the entry ies that you want to remove and then click the Dele...

Page 272: ...ives at the Switch the Switch looks in the ARP Table and if it finds the address it sends it to the device If no entry is found for the IP address ARP broadcasts the request to all the devices on the LAN The Switch fills in its own MAC and IP address in the sender address fields and puts the known IP address of the target in the target IP address field In addition the Switch puts all ones in the t...

Page 273: ...e ARP table with host A s ARP reply The Switch then can forward host B s ICMP reply to host A Gratuitous ARP A gratuitous ARP is an ARP request in which both the source and destination IP address fields are set to the IP address of the device that sends this request and the destination MAC address field is set to the broadcast address There will be no reply to a gratuitous ARP request A device may...

Page 274: ...ation ARP Setup in the navigation panel to display the screen as shown Click the link next to ARP Learning to open a screen where you can set the ARP learning mode for each port Click the link next to Static ARP to open a screen where you can create static ARP entries on the Switch Figure 193 IP Application ARP Setup 34 2 1 ARP Learning Use this screen to configure each port s ARP learning mode Cl...

Page 275: ...en make adjustments on a port by port basis Changes in this row are copied to all the ports as soon as you make them ARP Learning Mode Select the ARP learning mode the Switch uses on the port Select ARP Reply to have the Switch update the ARP table only with the ARP replies to the ARP requests sent by the Switch Select Gratuitous ARP to have the Switch update its ARP table with either an ARP reply...

Page 276: ...ses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh Clear Click Clear to set the above fields back to the factory defaults Index This field displays the index number of an entry Click an index number to change the settings Active This field displays Yes w...

Page 277: ...ge 281 to upload the latest firmware Use the Restore Configuration screen Section 35 7 on page 282 to upload a stored device configuration file Use the Backup Configuration screen Section 35 8 on page 283 to save your configurations for later use Use the Tech Support screen Section 35 9 on page 283 to create reports for customer support if there are problems with the Switch 35 2 The Maintenance Sc...

Page 278: ...l not reset the configuration to the factory default settings Save Configuration Click Config 1 to save the current configuration settings to Configuration 1 on the Switch Click Config 2 to save the current configuration settings to Configuration 2 on the Switch Click Custom Default to save the current configuration settings to a custom default file on the Switch Reboot System Click Config 1 to re...

Page 279: ...he Switch If configuration changes cause the Switch to behave abnormally click Custom Default next to Reboot System to have the Switch automatically reboot and restore the saved custom default file Alternatively click Save on the top right hand corner in any screen to save the configuration changes to the current configuration Note Clicking the Apply or Add button does NOT save the changes permane...

Page 280: ...ory defaults 1 Click the Factory Default button 2 Click OK to continue or Cancel to abort Figure 199 Load Factory Default Start If you want to access the Switch web configurator again you may need to change the IP address of your computer to be in the same subnet as that of the default Switch IP address 192 168 1 1 or DHCP assigned IP 35 5 2 Custom Default Follow the steps below to reset the Switc...

Page 281: ... sure you have downloaded and unzipped the correct model firmware and version to your computer before uploading to the device Be sure to upload the correct model firmware as uploading the wrong model firmware may damage your device Click Management Maintenance Firmware Upgrade to view the screen as shown next Figure 201 Management Maintenance Firmware Upgrade Type the path and file name of the fir...

Page 282: ... Settings Firmware 1 shows its version number and model code and MM DD YYYY creation date Firmware 2 shows its version number and model code and MM DD YYYY creation date Current Boot Image This displays which firmware is currently in use on the Switch Firmware 1 or Firmware 2 Config Boot Image Select which firmware Firmware 1 or Firmware 2 should load click Apply and reboot the Switch to see chang...

Page 283: ...to save the file to a specific place If a dialog box pops up asking whether you want to open or save the file click Save or Save File to download it to the default downloads folder on your computer If a Save As screen displays after you click Save or Save File choose a location to save the file on your computer from the Save in drop down list box and type a descriptive name for it in the File name...

Page 284: ...g from 50 to 100 in the Mbuf Memory Buffer threshold box The Mbuf log report is stored in flash permanent memory For example Mbuf 50 means a log will be created when the Mbuf utilization is over 50 The higher the Mbuf threshold number the fewer logs will be created and the less data technical support will have to analyze and vice versa Apply Click Apply to save your changes to the Switch s run tim...

Page 285: ...ename Conventions The configuration file also known as the romfile or ROM contains the factory default settings in the screens such as password Switch setup IP Setup and so on Once you have custom the Switch s settings they can be saved back to your computer under a filename of your choosing Memory Section Click Download to see the memory section log report This log report is stored in flash memor...

Page 286: ...ess of your Switch 3 Press ENTER when prompted for a username 4 Enter your password as requested the default is 1234 5 Enter bin to set transfer mode to binary 6 Use put to transfer files from the computer to the Switch for example put firmware bin ras transfers the firmware on your computer firmware bin to the Switch and renames it to ras Similarly put config cfg config transfers the configuratio...

Page 287: ...UI based FTP Clients COMMAND DESCRIPTION Host Address Enter the address of the host server Login Type Anonymous This is when a user I D and password is automatically supplied to the server for anonymous access Anonymous logins will work only if your ISP or service administrator has enabled this option Normal The server requires a unique User ID and Password to login Transfer Type Transfer files in...

Page 288: ... User Information screen Section 36 3 3 on page 292 to create SNMP users for authentication with managers using SNMP v3 and associate them to SNMP groups Use the Logins screens Section 36 4 on page 294 to assign which users can access the Switch via web configurator at any one time Use the Service Access Control screen Section 36 5 on page 295 to decide what services you may use to access the Swit...

Page 289: ...LABEL DESCRIPTION General Setting Use this section to specify the SNMP version and community password values Version Select the SNMP version for the Switch The SNMP version on the Switch must match the version on the SNMP manager Choose SNMP version 2c v2c SNMP version 3 v3 or both v3v2c SNMP version 2c is backwards compatible with SNMP version 1 Get Community Enter the Get Community string which ...

Page 290: ...agers to send your SNMP traps to Port Enter the port number upon which the manager listens for SNMP traps Username Enter the username to be sent to the SNMP manager along with the SNMP v3 trap This username must match an existing account on the Switch configured in Management Access Control Logins screen Apply Click Apply to save your changes to the Switch s run time memory The Switch loses these ...

Page 291: ...y s traps Clear the check boxes for individual traps that you do not want the Switch to send to the SNMP station Clearing a category s check box automatically clears all of the category s trap check boxes the Switch only sends traps from selected categories Apply Click Apply to save your changes to the Switch s run time memory The Switch loses these changes if it is turned off or loses power so us...

Page 292: ...he ports as soon as you make them Active Select this check box to enable the trap type of SNMP traps on this port Clear this check box to disable the sending of SNMP traps on this port Apply Click Apply to save your changes to the Switch s run time memory The Switch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the n...

Page 293: ...y in which SNMP group this user is admin Members of this group can perform all types of system configuration including the management of administrator accounts readwrite Members of this group have read and write rights meaning that the user can create and edit the MIBs on the Switch except the user account and AAA configuration readonly Members of this group have read rights only meaning the user ...

Page 294: ...ngs Click Management Access Control Logins to view the screen as shown Figure 211 Management Access Control Logins The following table describes the labels in this screen Table 151 Management Access Control Logins LABEL DESCRIPTION Administrator This is the default administrator account with the admin user name You cannot change the default administrator user name Only the administrator has read w...

Page 295: ... the authentication method sequence and authorization settings multiple logins administrator and enable passwords and configuration information display 14 Configure login accounts SNMP user accounts the authentication method sequence and authorization settings multiple logins and administrator and enable passwords and display configuration information Users can run command lines if the session s p...

Page 296: ...or the corresponding services that you want to allow to access the Switch Service Port For Telnet SSH FTP HTTP or HTTPS services you may change the default service port by typing the new port number in the Service Port field If you change the default port number then you will have to let people who wish to use the service know the new port number for that service Timeout Type how many minutes from...

Page 297: ... you wish to temporarily disable the set without deleting it Start Address End Address Configure the IP address range of trusted computers from which you can manage this Switch The Switch checks if the client IP address of a computer requesting a service or protocol matches the range set here The Switch immediately disconnects the session if it does not match Telnet FTP HTTP ICMP SNMP SSH HTTPS Se...

Page 298: ...he managed devices contain object variables managed objects that define each piece of information to be collected about a Switch Examples of variables include number of packets received node port status and so on A Management Information Base MIB is a collection of managed objects SNMP allows a manager and agents to communicate for the purpose of accessing these objects SNMP itself is a simple req...

Page 299: ...s traps to an SNMP manager when an event occurs The following tables outline the SNMP traps by category Table 155 SNMP System Traps OPTION OBJECT LABEL OBJECT ID DESCRIPTION coldstart coldStart 1 3 6 1 6 3 1 1 5 1 This trap is sent when the Switch is turned on warmstart warmStart 1 3 6 1 6 3 1 1 5 2 This trap is sent when the Switch restarts poe For PoE models only pethPsePortOnOffNotificatio n 1 ...

Page 300: ...JECT LABEL OBJECT ID DESCRIPTION ping pingProbeFailed 1 3 6 1 2 1 80 0 1 This trap is sent when a single ping probe fails pingTestFailed 1 3 6 1 2 1 80 0 2 This trap is sent when a ping test consisting of a series of ping probes fails pingTestCompleted 1 3 6 1 2 1 80 0 3 This trap is sent when a ping test is completed traceroute traceRouteTestFailed 1 3 6 1 2 1 81 0 2 This trap is sent when a trac...

Page 301: ... is a secure communication protocol that combines authentication and data encryption to provide secure encrypted communication between two hosts over an unsecured network Figure 215 SSH Communication Example 36 7 2 1 How SSH works The following table summarizes how a secure connection is established between two remote hosts Figure 216 How SSH Works ...

Page 302: ...am on a client computer Windows or Linux operating system that is used to connect to the Switch over SSH 36 7 3 Introduction to HTTPS HTTPS HyperText Transfer Protocol over Secure Socket Layer or HTTP over SSL is a web protocol that encrypts and decrypts web pages Secure Socket Layer SSL is an application level protocol that enables secure transactions of data by ensuring confidentiality an unauth...

Page 303: ...ages Internet Explorer 6 When you attempt to access the Switch HTTPS server a Windows dialog box pops up asking if you trust the server certificate You see the following Security Alert screen in Internet Explorer Select Yes to proceed to the web configurator login screen if you select No then web configurator access is blocked Figure 218 Security Alert Dialog Box Internet Explorer 6 Internet Explo...

Page 304: ...r you log in you will see the red address bar with the message Certificate Error Click on Certificate Error next to the address bar and click View certificates Figure 220 Certificate Error Internet Explorer 11 Click Install Certificate and follow the on screen instructions to install the certificate in your browser EXAMPLE ...

Page 305: ...itch HTTPS server a This Connection is Unstructed or Your connection is not secure screen may display If that is the case click I Understand the Risks or Advanced and then the Add Exception button Figure 222 Security Alert Mozilla Firefox 53 0 Confirm the HTTPS server URL matches Click Confirm Security Exception to proceed to the web configurator login screen EXAMPLE ...

Page 306: ...ozilla Firefox 53 0 36 7 4 Google Chrome Warning Messages When you attempt to access the Switch HTTPS server a Your connection is not private screen may display If that is the case click Advanced and then Proceed to x x x x unsafe to proceed to the web configurator login screen EXAMPLE ...

Page 307: ...6 7 4 1 The Main Screen After you accept the certificate and enter the login username and password the Switch main screen appears The lock displayed in the bottom right of the browser status bar or next to the website address denotes a secure connection Figure 225 Example Lock Denoting a Secure Connection EXAMPLE ...

Page 308: ...he Diagnostic screen You can use this screen to help you identify problems 37 2 Diagnostic Click Management Diagnostic in the navigation panel to open this screen Use this screen to ping IP addresses run a traceroute perform port tests or show the Switch s location between devices Figure 226 Management Diagnostic ...

Page 309: ...traceroute Click Trace Route to have the Switch perform the traceroute function This determines the path a packet takes to the specified device TTL Enter the Time To Live TTL value for the ICMP Echo Request packets This is to set the maximum number of the hops routers a packet can travel through Each router along the path will decrement the TTL value by one and forward the packets When the TTL val...

Page 310: ...pset supports this feature This shows N A if the Pair status is Open or Short Check the Distance to fault This shows Unsupported if the Switch chipset does not support to show the cable length Distance to fault This displays the distance between the port and the location where the cable is open or shorted This shows N A if the Pair status is Ok This shows Unsupported if the Switch chipset does not...

Page 311: ...en a log reaches the maximum number of log messages new log messages automatically overwrite existing log messages starting with the oldest existing log message first Figure 227 Management System Log The summary table shows the time the log message was recorded and the reason the log message was generated Click Refresh to update this screen Click Clear to clear the whole log regardless of what is ...

Page 312: ...og severity levels 39 1 1 What You Can Do Use the Syslog Setup screen Section 39 2 on page 312 to configure the device s system logging settings and configure a list of external syslog servers 39 2 Syslog Setup The syslog feature sends logs to an external syslog server Use this screen to configure the device s system logging settings and configure a list of external syslog servers Click Management...

Page 313: ...ges to the non volatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh Syslog Server Setup Active Select this check box to have the device send logs to this syslog server Clear the check box if you want to create a syslog server entry but not have the device send logs to it you can edit the entry later Server Address Enter the IPv4 or IPv6 address ...

Page 314: ...r IP Address This field displays the IP address of the syslog server UDP Port This field displays the port of the syslog server Log Level This field displays the severity level of the logs that the device is to send to this syslog server Select an entry s check box to select a specific entry Otherwise select the check box in the table heading row to select all entries Delete Click Delete to remove...

Page 315: ...o communicate with one another In the following example switch A in the basement is the cluster manager and the other switches on the upper floors of the building are cluster members Figure 229 Clustering Application Example Table 163 Zyxel Clustering Management Specifications Maximum number of cluster members 24 Cluster Member Models Must be compatible with Zyxel cluster management implementation...

Page 316: ...lowing table describes the labels in this screen Table 164 Management Cluster Management Status LABEL DESCRIPTION Status This field displays the role of this Switch within the cluster Manager Member you see this if you access this screen in the cluster member switch directly and not via the cluster manager None neither a manager nor a member of a cluster Manager This field displays the cluster man...

Page 317: ...Model This field displays the model name Status This field displays Online the cluster member switch is accessible Error for example the cluster member switch password was changed or the switch was set as the manager and so left the member list etc Offline the switch is disconnected Offline shows approximately 1 5 minutes after the link between cluster member and manager goes down Table 164 Manage...

Page 318: ...overy is shown here The switches must be directly connected Directly connected switches that are set to be cluster managers will not be visible in the Clustering Candidate list Switches that are not in the same management VLAN group will not be visible in the Clustering Candidate list Password Each cluster member s password is its web configurator password Select a member in the Clustering Candida...

Page 319: ...hen select an Index hyperlink from the list of members to go to that cluster member switch s web configurator home page This cluster member web configurator home page and the home page that you d see if you accessed it directly are different Figure 232 Cluster Management Cluster Member Web Configurator Screen 40 4 1 1 Uploading Firmware to a Cluster Member Switch You can use FTP to upload firmware...

Page 320: ...K ftp 297 bytes received in 0 00Seconds 297000 00Kbytes sec ftp bin 200 Type I OK ftp put 430AAHW0 bin fw 00 a0 c5 01 23 46 200 Port command okay 150 Opening data connection for STOR fw 00 a0 c5 01 23 46 226 File received OK ftp 262144 bytes sent in 0 63Seconds 415 44Kbytes sec ftp Table 166 FTP Upload to Cluster Member Example FTP PARAMETER DESCRIPTION User Enter admin Password The web configurat...

Page 321: ... the MAC address is dynamic or static 41 1 2 What You Need to Know The Switch uses the MAC table to determine how to forward frames See the following figure 1 The Switch examines a received frame and learns the port on which this source MAC address came 2 The Switch checks to see if the frame s destination MAC address matches a source MAC address already learned in the MAC table If the Switch has ...

Page 322: ...e 322 Figure 234 MAC Table Flowchart 41 2 Viewing the MAC Table Use this screen to check whether the MAC address is dynamic or static Click Management MAC Table in the navigation panel to display the following screen Figure 235 Management MAC Table ...

Page 323: ...e data according to port number Transfer Type Select Dynamic to MAC forwarding and click the Transfer button to change all dynamically learned MAC address entries in the summary table below into static entries They also display in the Static MAC Forwarding screen Select Dynamic to MAC filtering and click the Transfer button to change all dynamically learned MAC address entries in the summary table...

Page 324: ...mines a received packet and learns the port from which this source IP address came 2 The Switch checks to see if the packet s destination IP address matches a source IP address already learned in the IP Table If the Switch has already learned the port for this IP address then it forwards the packet to that port If the Switch has not already learned the port for this IP address then the packet is f...

Page 325: ...IP Click this button to display and arrange the data according to IP address VID Click this button to display and arrange the data according to VLAN group Port Click this button to display and arrange the data according to port number Index This field displays the index number IP Address This is the IP address of the device from which the incoming packets came VID This is the VLAN group to which t...

Page 326: ...e address it sends it to the device If no entry is found for the IP address ARP broadcasts the request to all the devices on the LAN The Switch fills in its own MAC and IP address in the sender address fields and puts the known IP address of the target in the target IP address field In addition the Switch puts all ones in the target MAC field FF FF FF FF FF FF is the Ethernet broadcast address The...

Page 327: ...cel Click Cancel to return the fields to the factory defaults Index This is the ARP table entry number IP Address This is the IP address of a device connected to a Switch port with the corresponding MAC address below MAC Address This is the MAC address of the device with the corresponding IP address above VID This field displays the VLAN to which the device belongs Port This field displays the por...

Page 328: ...ls in this screen Table 170 Management Routing Table LABEL DESCRIPTION Index This field displays the index number Destination This field displays the destination IP routing domain Gateway This field displays the IP address of the gateway device Interface This field displays the IP address of the Interface Metric This field displays the cost of the route Type This field displays the method used to ...

Page 329: ...le Use this screen to view IPv6 path MTU information on the Switch Click Management Path MTU Table in the navigation panel to display the screen as shown Figure 240 Management Path MTU Table The following table describes the labels in this screen Table 171 Management Path MTU Table LABEL DESCRIPTION Path MTU aging time This field displays how long an entry remains in the Path MTU table before it a...

Page 330: ...46 1 Overview This chapter shows you how you can copy the settings of one port onto other ports 46 2 Configure Clone Cloning allows you to copy the basic and advanced settings from a source port to a destination port or ports Click Management Configure Clone to open the following screen ...

Page 331: ... attributes as the source port You can enter individual ports separated by a comma or a range of ports by using a hyphen For example 2 4 6 indicates that ports 2 4 and 6 are the destination ports 2 6 indicates that ports 2 through 6 are the destination ports Basic Setting Select which port settings you configured in the Basic Setting menus should be copied to the destination port s Advanced Applic...

Page 332: ...itch loses these changes if it is turned off or loses power so use the Save link on the top navigation panel to save your changes to the non volatile memory when you are done configuring Cancel Click Cancel to begin configuring this screen afresh Table 172 Management Configure Clone continued LABEL DESCRIPTION ...

Page 333: ...ind an entry in the neighbor table or the state for the neighbor is not reachable it starts the address resolution process This helps reduce the number of IPv6 solicitation and advertisement messages 47 2 Viewing the IPv6 Neighbor Table Use this screen to view IPv6 neighbor information on the Switch Click Management IPv6 Neighbor Table in the navigation panel to display the screen as shown Figure ...

Page 334: ...to determine reachability probe P The Switch is sending request packets and waiting for the neighbor s response invalid IV The neighbor address is with an invalid IPv6 address unknown The status of the neighboring interface can not be determined for some reason incomplete I Address resolution is in progress and the link layer address of the neighbor has not yet been determined The interface of the...

Page 335: ...tus screen to display the Port Status screen as shown next You can also click Management Port Status to see the following screen Figure 243 Port Status for PoE model s The following table describes the labels in this screen Table 174 Port Status LABEL DESCRIPTION Port This identifies the Ethernet port In stacking mode the first number represents the slot and the second the port number Click a port...

Page 336: ... Control Protocol STP and dot1x are in blocking state it displays Blocking PD For PoE model s only This field displays whether or not a powered device PD is allowed to receive power from the Switch on this port LACP This fields displays whether LACP Link Aggregation Control Protocol has been enabled on the port TxPkts This field shows the number of transmitted frames on this port RxPkts This field...

Page 337: ...000M for 1000Mbps or 10G for 10 Gbps and the duplex F for full duplex or H for half duplex It also shows the cable type Copper or Fiber for the combo ports This field displays Down if the port is not connected to any device State If STP Spanning Tree Protocol is enabled this field displays the STP state of the port See page 131 for more information If STP is disabled this field displays FORWARDING...

Page 338: ...ield shows the number of 802 3x Pause packets received TX Collision The following fields display information on collisions while transmitting Single This is a count of successfully transmitted packets for which transmission is inhibited by exactly one collision Multiple This is a count of successfully transmitted packets for which transmission was inhibited by more than one collision Excessive Thi...

Page 339: ...ation link tab Figure 245 Management Port Status Utilization 256 511 This field shows the number of packets including bad packets received that were between 256 and 511 octets in length 512 1023 This field shows the number of packets including bad packets received that were between 512 and 1023 octets in length 1024 1518 This field shows the number of packets including bad packets received that we...

Page 340: ...the duplex F for full duplex It also shows the cable type Copper or Fiber for the combo ports This field displays Down if the port is not connected to any device Tx kB s This field shows the transmission speed of data sent on this port in kilobytes per second Tx Utilization This field shows the percentage of actual transmitted frames on this port as a percentage of the Link speed Rx kB s This fiel...

Page 341: ... 2 Make sure the power adaptor or cord is connected to the Switch and plugged in to an appropriate power source Make sure the power source is turned on 3 Disconnect and re connect the power adaptor or cord to the Switch 4 If the problem continues contact the vendor One of the LEDs does not behave as expected 1 Make sure you understand the normal behavior of the LED See Section 3 3 on page 32 2 Che...

Page 342: ... new IP address If you changed the IP address and have forgotten it see the troubleshooting suggestions for I forgot the IP address for the Switch 2 Check the hardware connections and make sure the LEDs are behaving as expected See Section 3 3 on page 32 3 Make sure your Internet browser does not block pop up windows and has JavaScripts and Java enabled 4 Make sure your computer is in the same sub...

Page 343: ... defaults See Section 4 7 on page 53 Pop up Windows JavaScripts and Java Permissions In order to use the web configurator you need to allow Web browser pop up windows from your device JavaScripts enabled by default Java permissions enabled by default There is unauthorized access to my Switch via telnet HTTP and SSH To avoid unauthorized access configure the secured client setting in the Management...

Page 344: ...information Please have the following information ready when you contact an office Required Information Product model and serial number Warranty Information Date that you received your device Brief description of the problem and the steps you took to solve it Corporate Headquarters Worldwide Taiwan Zyxel Communications Corporation http www zyxel com Asia China Zyxel Communications Shanghai Corp Zy...

Page 345: ...com pk Philippines Zyxel Philippines http www zyxel com ph Singapore Zyxel Singapore Pte Ltd http www zyxel com sg Taiwan Zyxel Communications Corporation http www zyxel com tw zh Thailand Zyxel Thailand Co Ltd http www zyxel co th Vietnam Zyxel Communications Corporation Vietnam Office http www zyxel com vn vi Europe Austria Zyxel Deutschland GmbH http www zyxel de Belarus Zyxel BY http www zyxel...

Page 346: ... Czech Republic Zyxel Communications Czech s r o http www zyxel cz Denmark Zyxel Communications A S http www zyxel dk Estonia Zyxel Estonia http www zyxel com ee et Finland Zyxel Communications http www zyxel fi France Zyxel France http www zyxel fr Germany Zyxel Deutschland GmbH http www zyxel de Hungary Zyxel Hungary SEE http www zyxel hu Italy Zyxel Communications Italy http www zyxel it ...

Page 347: ...nelux http www zyxel nl Norway Zyxel Communications http www zyxel no Poland Zyxel Communications Poland http www zyxel pl Romania Zyxel Romania http www zyxel com ro ro Russia Zyxel Russia http www zyxel ru Slovakia Zyxel Communications Czech s r o organizacna zlozka http www zyxel sk Spain Zyxel Communications ES Ltd http www zyxel es Sweden Zyxel Communications http www zyxel se Switzerland Stu...

Page 348: ...kraine http www ua zyxel com Latin America Argentina Zyxel Communication Corporation http www zyxel com ec es Brazil Zyxel Communications Brasil Ltda https www zyxel com br pt Ecuador Zyxel Communication Corporation http www zyxel com ec es Middle East Israel Zyxel Communication Corporation http il zyxel com homepage shtml Middle East Zyxel Communication Corporation http www zyxel com me en ...

Page 349: ... User s Guide 349 North America USA Zyxel Communications Inc North America Headquarters http www zyxel com us en Oceania Australia Zyxel Communications Corporation http www zyxel com au en Africa South Africa Nology Pty Ltd http www zyxel co za ...

Page 350: ...ions in which this service is used Table 177 Commonly Used Services NAME PROTOCOL PORT S DESCRIPTION AH IPSEC_TUNNEL User Defined 51 The IPSEC AH Authentication Header tunneling protocol uses this service AIM New ICQ TCP 5190 AOL s Internet Messenger service It is also used as a listening port by ICQ AUTH TCP 113 Authentication protocol used by some servers BGP TCP 179 Border Gateway Protocol BOOT...

Page 351: ...at sends out ICMP echo requests to test whether or not a remote host is reachable POP3 TCP 110 Post Office Protocol version 3 lets a client computer get e mail from a POP3 server through a temporary connection TCP IP or other PPTP TCP 1723 Point to Point Tunneling Protocol enables secure transfer of data over public networks This is the control channel PPTP_TUNNEL GRE User Defined 47 PPTP Point to...

Page 352: ...CS UDP 49 Login Host Protocol used for Terminal Access Controller Access Control System TELNET TCP 23 Telnet is the login and terminal emulation protocol common on the Internet and in UNIX environments It operates over TCP IP networks Its primary function is to allow users to log into remote host systems TFTP UDP 69 Trivial File Transfer Protocol is an Internet file transfer protocol similar to FT...

Page 353: ... 1a2f 0015 2001 db8 1a2f 0 0 15 or 2001 db8 0 0 1a2f 15 Prefix and Prefix Length Similar to an IPv4 subnet mask IPv6 uses an address prefix to represent the network address An IPv6 prefix length specifies how many most significant bits start from the left in the address compose the network address The prefix length is written as x where x is a number For example 2001 db8 1a2b 15 1a2f 0 32 means th...

Page 354: ...owing table describes some of the predefined multicast addresses The following table describes the multicast addresses which are reserved and can not be assigned to a multicast group Table 179 Predefined Multicast Address MULTICAST ADDRESS DESCRIPTION FF01 0 0 0 0 0 0 1 All hosts on a local node FF01 0 0 0 0 0 0 2 All routers on a local node FF02 0 0 0 0 0 0 1 All hosts on a local connected link F...

Page 355: ...y and automatically generated Unlike DHCPv6 Dynamic Host Configuration Protocol version six which is used in IPv6 stateful autoconfiguration the owner and status of addresses don t need to be maintained by a DHCP server Every IPv6 device is able to generate its own and unique IP address automatically when IPv6 is initiated on its interface It combines the prefix and the interface ID generated from...

Page 356: ...lable server S2 For an IA_TA the client may send a Renew or Rebind message at the client s discretion DHCP Relay Agent A DHCP relay agent is on the same network as the DHCP clients and helps forward messages between the DHCP server and clients When a client cannot use its link local address and a well known multicast address to locate a DHCP server on its network it then needs a DHCP relay agent t...

Page 357: ...s its IPv6 caches constantly using the information from response messages In IPv6 the Switch configures a link local address automatically and then sends a neighbor solicitation message to check if the address is unique If there is an address to be resolved or verified the Switch also sends out a neighbor solicitation message When the Switch receives a neighbor advertisement in response it stores ...

Page 358: ...DHCPv6 for IP address assignment you have to additionally install a DHCPv6 client software on your Windows XP Note If you use static IP addresses or Router Advertisement for IPv6 address assignment in your network ignore this section This example uses Dibbler as the DHCPv6 client To enable DHCPv6 client on your computer 1 Install Dibbler and select the DHCPv6 client option on your computer 2 After...

Page 359: ...r Example Enabling IPv6 on Windows 7 Windows 7 supports IPv6 by default DHCPv6 is also enabled when you enable IPv6 on a Windows 7 computer To enable IPv6 in Windows 7 1 Select Control Panel Network and Sharing Center Local Area Connection 2 Select the Internet Protocol Version 6 TCP IPv6 checkbox to enable it 3 Click OK to save the change ...

Page 360: ...ur dynamic IPv6 address This example shows a global address 2001 b021 2d 1000 obtained from a DHCP server C ipconfig Windows IP Configuration Ethernet adapter Local Area Connection Connection specific DNS Suffix IPv6 Address 2001 b021 2d 1000 Link local IPv6 Address fe80 25d8 dcab c80a 5189 11 IPv4 Address 172 16 100 61 Subnet Mask 255 255 255 0 Default Gateway fe80 213 49ff feaa 7125 11 172 16 10...

Page 361: ...following two conditions 1 This device may not cause harmful interference 2 This device must accept any interference received including interference that may cause undesired operations Changes or modifications not expressly approved by the party responsible for compliance could void the user s authority to operate the equipment This equipment has been tested and found to comply with the limits for...

Page 362: ...device For detailed information about recycling of this product please contact your local city office your household waste disposal service or the store where you purchased the product Use ONLY power wires of the appropriate wire gauge for your device Connect it to a power supply of the correct voltage Fuse Warning Replace a fuse only with a fuse of the same type and rating The POE Power over Ethe...

Page 363: ...na y medioambiental Le symbole ci dessous signifie que selon les réglementations locales votre produit et ou sa batterie doivent être éliminés séparément des ordures ménagères Lorsque ce produit atteint sa fin de vie amenez le à un centre de recyclage Au moment de la mise au rebut la collecte séparée de votre produit et ou de sa batterie aidera à économiser les ressources naturelles et protéger l ...

Page 364: ... new or re manufactured functionally equivalent product of equal or higher value and will be solely at the discretion of Zyxel This warranty shall not apply if the product has been modified misused tampered with damaged by an act of God or subjected to abnormal working conditions Note Repair or replacement as provided under this warranty is the exclusive remedy of the purchaser This warranty is in...

Page 365: ...ing mode 272 overview 272 setup 274 ARP Address Resolution Protocol 326 ARP Reply 272 ARP Request 273 authentication setup 201 authentication authorization and accounting 198 Authentication Authorization and Accounting see AAA 199 authorization setup 201 auto crossover 29 automatic VLAN registration 107 B back up configuration file 283 bandwidth control 146 egress rate 147 ingress rate 147 setup 1...

Page 366: ...rt 344 D daylight saving time 77 default Ethernet settings 29 default IP 79 DHCP configuration options 259 Dynamic Host Configuration Protocol 259 modes 259 Relay Agent Information format 261 setup 260 DHCPv4 global relay 263 global relay example 265 Option 82 261 option 82 profiles 262 Relay Agent Information 261 DHCPv4 relay 261 DHCPv6 relay 270 interface ID 270 remote ID 270 diagnostics 308 Eth...

Page 367: ...er down 230 EEE 230 short reach 230 GVRP 107 114 and port assignment 114 GVRP GARP VLAN Registration Protocol 107 H hardware installation 25 hardware monitor 74 hardware overview 28 hello time 138 high power 84 HTTPS 302 certificates 302 implementation 302 public keys private keys 302 HTTPS example 303 I IEEE 802 1x activate 163 port authentication 161 reauthentication 164 IEEE 802 3at 84 IEEE 802...

Page 368: ...iew 211 PAgP 212 point to point 212 STP 211 tunnel port 212 UDLD 212 VTP 211 LACP 152 214 system priority 159 timeout 159 Layer 2 protocol tunneling see L2PT LEDs 32 link aggregation 152 dynamic 152 ID information 153 setup 155 traffic distribution algorithm 155 traffic distribution type 157 trunk group 152 Link Aggregation Control Protocol LACP 152 Link Layer Discovery Protocol 232 LLDP 232 Basic...

Page 369: ... supported MIBs 299 MIB Management Information Base 298 mirroring ports 150 monitor port 150 mounting brackets 26 MST Instance See MSTI 144 MST region 144 MSTI 138 144 MSTI Multiple Spanning Tree Instance 138 MSTP 129 131 bridge ID 141 configuration digest 142 forwarding delay 138 Hello Time 141 hello time 138 Max Age 138 141 maximum hops 138 revision level 138 status 141 MTU 329 MTU Multi Tenant ...

Page 370: ... settings wizard 119 ports diagnostics 309 310 mirroring 150 speed duplex 84 standby 153 power voltage 75 power connector 32 power status 75 PPPoE IA 215 agent sub options 217 configuration 217 drop PPPoE packets 219 port state 217 sub option format 216 tag format 215 trusted ports 217 untrusted ports 217 VLAN 221 PPPoE Intermediate Agent 215 priority level 79 priority queue assignment 79 product ...

Page 371: ... version 3 and security 298 versions supported 298 SNMP traps 299 supported 299 300 Spanning Tree Protocol See STP 129 SPQ Strict Priority Queuing 187 SSH encryption methods 302 how it works 301 implementation 302 SSH Secure Shell 301 SSL Secure Socket Layer 302 standby ports 153 static MAC address 121 static MAC forwarding 121 static multicast address 123 static multicast forwarding 123 static ro...

Page 372: ...59 U UDLD 214 UniDirectional Link Detection see UDLD untrusted ports PPPoE IA 217 user name 36 default 36 user profiles 199 V Vendor Specific Attribute See VSA 203 ventilation holes 26 VID 82 109 110 number of possible VIDs 106 priority frame 106 VID VLAN Identifier 106 Virtual Local Area Network 77 VLAN 77 acceptable frame type 115 automatic registration 107 ID 106 ingress filtering 114 introduct...

Page 373: ...getting help 54 home 48 login 36 logout 54 navigation panel 49 weight queuing 188 Weighted Round Robin Scheduling WRR 188 WRR Weighted Round Robin Scheduling 187 Z ZDP 66 ZON neighbor management 71 ZON Utility 66 ZyNOS ZyXEL Network Operating System 286 ZyXEL Discovery Protocol 66 ...

Reviews:

No comments

Related manuals for XGS1930-38

Top View KVM-102U User Manual preview
KVM-102U
Brand: Top View Pages: 2
Audio Authority HMX-244 Installation And Operation Manual preview
HMX-244
Brand: Audio Authority Pages: 12
steute EX ZS 92 S 22 VD F Mounting And Wiring Instructions preview
EX ZS 92 S 22 VD F
Brand: steute Pages: 28
LIVOLO VL-C302S-61 Manual preview
VL-C302S-61
Brand: LIVOLO Pages: 14
ATEN CS1922M User Manual preview
CS1922M
Brand: ATEN Pages: 17
JetNet 5018G Series Quick Installation Manual preview
5018G Series
Brand: JetNet Pages: 20
Cabletron Systems 42T User Manual preview
42T
Brand: Cabletron Systems Pages: 105
Booma-RC Hidden Ignition Switch Manual preview
Hidden Ignition Switch
Brand: Booma-RC Pages: 16
AV Link 128.823UK User Manual preview
128.823UK
Brand: AV Link Pages: 2
Enterasys Vertical Horizon VH-2402-L3 Management Manual preview
Vertical Horizon VH-2402-L3
Brand: Enterasys Pages: 201
IOGear CS1222TAA4 Manual preview
CS1222TAA4
Brand: IOGear Pages: 54
Tripp Lite B022-004-R Specification preview
B022-004-R
Brand: Tripp Lite Pages: 3
Tekvox TEK 1201-N+ User Manual preview
TEK 1201-N+
Brand: Tekvox Pages: 40
Fore Systems forerunner series Configuration Manual preview
forerunner series
Brand: Fore Systems Pages: 352
H-Tronic TSM 125 Manual preview
TSM 125
Brand: H-Tronic Pages: 36
3onedata TNS5800D Quick Installation Manual preview
TNS5800D
Brand: 3onedata Pages: 5
Profi-pumpe PSM01122V Operating Instructions Manual preview
PSM01122V
Brand: Profi-pumpe Pages: 7
B+B SmartWorx 232BSS4 Quick Start Manual preview
232BSS4
Brand: B+B SmartWorx Pages: 2

Brands by name

Popular brands

Load more brands