Avaya C360 Manager Скачать руководство пользователя страница 136 | Manualshive

Страница: 136 / 248

background image

Avaya C360 Layer 2 Features

136 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches, version 4.5

MAC Security

The MAC security function is intended to filter incoming frames (from the line) with an
unauthorized source MAC address (SA).

MAC Security Implementation in the C360

When a frame is received on a secured port, its source MAC address is checked against the
secured MAC Address Table. If either the source MAC address is not found there, or it is found
but with a different ingress port location, then the frame is rejected

The C360 can be configured to take one of the following actions when an attempted intrusion
occurs:

●

Drop – Drops the packets for five seconds.

●

Drop and notify – Drops the packets for five seconds and sends a notification to the
management station.

●

Disable and notify – Permanently disables the packets and sends a notification to the
management station.

When the C360 is configured to send traps to report attempted intrusion, to prevent the flooding
of the Console's trap log / network, the Agent sends an intruder alert every five seconds for the
first 3 times a specific intruder is detected on a port, and then every 15 minutes if the intrusion
continues.

You should first enable the MAC security global mode (use the

set security mode

CLI

command) and then configure the ports which should be secured (use the

set port

security CLI

command). When setting a port to secured, the MAC addresses that a

currently learnt on this port are preserved and considered as secure MAC, unless they are
removed using clear secure mac command. Individual secure MACs can also be added.

Tip:

Tip:

You can add a MAC address to more than one port on the device. This allows a
specific device to communicate with the switch via more than one ingress port.
However the number of secured MAC addresses on any module cannot exceed
1,024.

Note:

Note:

Ports that are members of a port redundancy scheme should not be also
configured as secure ports.

«
...
134
135
136
137
138
...
»

Содержание C360 Manager

Страница 1: ...Installation and Configuration for the Avaya C360 Converged Stackable Switches Software Version 4 5 10 300503 Issue 2 July 2005...

Страница 2: ...than those specified herein may result in hazardous radiation exposures Contact your Avaya representative for more laser product information Electromagnetic Compatibility EMC Standards This product co...

Страница 3: ...ity 23 Quality of Service QoS 23 Monitoring 24 Power over Ethernet PoE Support on C360 PWR switches 24 Layer 3 Support 25 Management 25 Management Interface Options 26 C360 Switch Configurations 27 Se...

Страница 4: ...PS 55 Supplemental Earthing of the C360 Optional 56 Sample Backup Power Supply Scheme 57 Budgeting Power 59 Post Installation 60 Chapter 5 Establishing Switch Access 61 CLI Architecture 62 Security Le...

Страница 5: ...rs 86 Allowed Managers Introduction 86 Allowed Managers CLI Commands 86 Allowed Protocols 88 Allowed Protocols Introduction 88 Allowed Protocols CLI Commands 88 Section 3 Avaya C360 Configuration 91 C...

Страница 6: ...ter 8 Avaya C360 Layer 2 Features 113 Ethernet 114 Fast Ethernet 114 Gigabit Ethernet 114 Configuring Ethernet Parameters 115 Auto Negotiation 115 Full Duplex Half Duplex 115 Speed 115 MDI MDI X Detec...

Страница 7: ...Commands 138 LAG Implementation in the C360 139 Port Redundancy 140 Port Redundancy Operation 140 Intermodule Port Redundancy 141 Port Redundancy CLI Commands 142 Port Classification 143 Overview 143...

Страница 8: ...AN 168 IP Configuration 169 IP Configuration CLI Commands 169 Assigning Initial Router Parameters 170 RIP Routing Interchange Protocol Configuration 172 RIP Overview 172 RIP2 173 RIP CLI Commands 173...

Страница 9: ...xample 193 IP Fragmentation and Reassembly 194 IP Fragmentation and Reassembly Overview 194 IP Fragmentation Reassembly CLI Commands 194 Chapter 10 Avaya C360 Power over Ethernet Features 197 Power Ov...

Страница 10: ...hooting the Installation 213 Stack Health 216 Overview 216 Implementation of Stack Health in the C360 216 Stack Health CLI Commands 217 Chapter 13 Maintenance 219 Introduction 219 Replacing the Stacki...

Страница 11: ...r 2 233 IETF Layer 3 234 IETF Network Monitoring 235 Appendix D Specifications 237 Physical 237 Power Requirements 237 Environmental 238 Safety 238 MTBF 239 Interfaces 239 GBIC Transceivers 239 LX Tra...

Страница 12: ...Contents 12 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 13: ...tches and stacking modules contain components sensitive to electrostatic discharge Touching the circuit boards unless instructed to do so may damage them PRECAUCI N PRECAUCION El switch C360 y sus m d...

Страница 14: ...onvey instructions and information CLI Conventions Mandatory keywords are in the computer bold font Information displayed on screen is displayed in computer font Variables that you supply are in point...

Страница 15: ...ar el equipo o resultar en p rdida de datos WARNING WARNING This means danger Failure to follow the instructions or warnings may result in bodily injury You should ensure that you are qualified for t...

Страница 16: ...Before you Install the Avaya C360 16 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 17: ...Issue 2 July 2005 17 Section 1 Avaya C360 Overview...

Страница 18: ...18 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 19: ...non PoE configurations the C360 series is a powerful yet cost effective option for enterprise applications With C360 switches you can deploy PoE and multilayer switching using one switch while mainta...

Страница 20: ...ss are maintained You can add remove and replace switches in the stack without disrupting operation Auto reconfiguration for replaced switch the configuration of the units is distributed over the stac...

Страница 21: ...agement access through the switch console port to a directly attached terminal or remote terminal via a serial connection or modem Refer to Establishing a Console Connection on page 64 and Establishin...

Страница 22: ...edundant cable is connected to the stack The broken link is bypassed and data transmission continues uninterrupted BUPS Backup Power Supply you can connect an additional DC power supply to the BUPS co...

Страница 23: ...r to RADIUS on page 82 for further information SNMP v3 adds security features to the SNMP v1 and SNMP v2c feature set Refer to SNMPv3 on page 77 for further information SSH enables establishing a remo...

Страница 24: ...ular valuable so in case of link failure notification is generated for valuable ports only Refer to Port Classification on page 143 for further information The C360 supports SMON switch monitoring whi...

Страница 25: ...ts IP address and its corresponding Media Access Control MAC address Refer to ARP Address Resolution Protocol Table Configuration on page 181 for further information NetBIOS Re broadcast for applicati...

Страница 26: ...le port or by using Telnet PPP or SSH from a remote management station SNMP provides a means to monitor and control the switch or the stack You can manage switch configuration settings performance sec...

Страница 27: ...5 27 C360 Switch Configurations Table 2 summarizes the C360 switch configurations Table 2 C360 Switch Configurations Model 10 100BASE T Ports GBIC SFP Ports PoE on 10 100BASE T ports C363T 24 2 C363T...

Страница 28: ...Avaya C360 Overview 28 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 29: ...Issue 2 July 2005 29 Section 2 Installing the C360...

Страница 30: ...30 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 31: ...2 July 2005 31 Chapter 2 Avaya C360 Front and Rear Panels This chapter describes the front and rear panels of the C360 switches including the LEDs buttons and power inlets C360 Front Panels C360 Rear...

Страница 32: ...For example if the COL LED is illuminated then all Port LEDs show the collision status of their respective port If you wish to select the LAG function then press the left button until the LAG Functio...

Страница 33: ...C360 Front Panels Issue 2 July 2005 33 Figure 4 C364T PWR Front Panel Figure 5 C360 Function LEDs Figure notes 1 PoE LED on C360 PWR only 2 Left front panel button 3 Right front panel button 1 2 3...

Страница 34: ...Status OFF Power is off ON Power is on Blinking Main power is down and BUPS is active SYS System Status OFF Module is a slave in a stack ON Module is the stack master and the optional Octaplane and R...

Страница 35: ...activity ON Data transmitted on line from the module Rx Receive from line OFF No receive activity ON Data received from the line into the module FDX Full Duplex mode OFF Half duplex mode ports 1 to 24...

Страница 36: ...is detected or Power supply error or Not enough power Table 4 C360 Right and Left Select buttons On order to Press Select the function LED see Table 3 Left or Right button Reset the switch Both Right...

Страница 37: ...panel contains a stacking module slot AC power input and BUPS DC input Note Note The C S and SW versions on your C360 switches may differ from those shown in Figure 7 Figure 7 C360 Back Panel Figure n...

Страница 38: ...Avaya C360 Front and Rear Panels 38 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 39: ...ll Mounting Optional Stacking optional Making Connections to Network Equipment Installing SFP GBIC Transceivers Preparing Needed Tools Prepare the tools you need to mount the Replace variable w short...

Страница 40: ...uct name fulfills the following requirements Cables are away from sources of electrical noise such as radio transmitters broadcast amplifiers power lines fluorescent light fixtures Water or moisture c...

Страница 41: ...tches the specifications shown in Table 7 Table 7 Power Requirements AC Input voltage 100 to 240 VAC 50 to 60 Hz Power consumption C363T C363T PWR C364T C364T PWR 60 W 420 W 90 W 760 W AC Input curren...

Страница 42: ...e brackets supplied with the chassis The brackets are symmetric you can fix either bracket on either side Figure 8 shows the two available rack mounting positions Figure 8 Front and Mid Mount Position...

Страница 43: ...is a reliable ground connection at the outlet 5 Ensure that the internal rack ambient temperature is within the operating specification limits of the C360 6 Ventilation for the C360 is from side to si...

Страница 44: ...it on the wall Ensure that the four C360 screw holes are aligned with the rack hole positions as shown in Figure 10 You can attach the brackets to face either the top or the bottom of the unit dependi...

Страница 45: ...not leave the stacking slots open Cover empty slots using the blanking plates supplied PRECAUCI N PRECAUCION No deje las aberturas de ampliaci n abiertas Cubrir las aberturas vacias con las placas blo...

Страница 46: ...he long cable is 2 m long the extra long cable is 8 m long Redundant Long Redundant Octaplane cable X330RC X330L RC black used to connect the top and bottom switches of a stack Catalog No CB0222 CB026...

Страница 47: ...as a redundant connection CAUTION CAUTION To prevent EMI cover any unused ports on the stacking modules using the grey plugs provided Insert the plug labelled left into the lower port insert the plug...

Страница 48: ...equipment to be connected to the C360 detailing the connector types on the various units All required cables as specified in Connecting Cables to Network Equipment Appropriate cables are available fro...

Страница 49: ...roved SFP GBIC transceivers see http support avaya com SFP GBIC transceivers are hot swappable Safety Information CAUTION CAUTION You must operate the SFP GBIC transceivers under recommended operating...

Страница 50: ...copper GBIC transceiver To remove the SFP GBIC transceiver 1 Press the clip on the base of the transceiver see Figure 13 for the location Figure 13 Clip Location on Base of Transceiver 2 Pull the tra...

Страница 51: ...the port at the other end of the link 1 Use the show port command to check the auto negotiation status of the transceiver ports 2 Use the set port negotiation module port enable command to enable aut...

Страница 52: ...Installation 52 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 53: ...s power to the switch and for Power over Ethernet PoE WARNING WARNING To isolate the switch completely you must disconnect all the power connections AC plug and BUPS DC power ADVERTENCIA ADVERTENCIA P...

Страница 54: ...o a 3 conductor grounding type attachment plug rated at a minimum of 10A 250V and a configuration specific for the region country in which it will be used The attachment plug must bear the safety agen...

Страница 55: ...the two screws in the terminal block is M4 The pitch between each screw is 9 5mm 1 Remove the protective plastic cover over the BUPS DC inputs by unscrewing the two Phillips screws WARNING WARNING The...

Страница 56: ...y la fuente de alimentaci n externa est n conectados correctamente Positivo a Positivo Negativo a Negativo 3 Replace the plastic cover by aligning the holes with the screw receptacles and replacing t...

Страница 57: ...of inline power per C363T PWR switch Table 9 lists the equipment required for this scenario Figure 16 Sample Scheme Figure notes 1 AC power 2 BUPS DC input 3 BUPS DC input Table 9 Required Equipment...

Страница 58: ...PC 800W PSUs see Budgeting Power for details APC A0800 085 545 CA1 3 X360STK Octaplane stacking module 700305899 1 X330RC Redundant Octaplane stacking cable 108563453 4705 065 2 X330SC Short Octaplane...

Страница 59: ...parameter in the C360 PWR switch set using the set powerinline external power CLI command Refer to Table 10 and Table 11 for guidelines If you set the powerinline external power parameter to other val...

Страница 60: ...hooting the Installation Table 12 Post Installation Indications Procedure Indication Troubleshooting Information Powering the C360 All front panel function LEDs illuminate briefly If the PWR LED blink...

Страница 61: ...I Architecture Security Levels Entering the CLI Establishing Connections Establishing a Console Connection Assigning C360 IP Stack Address Establishing a Telnet Connection Establishing an SSH Connecti...

Страница 62: ...to show system parameter values The Privileged level read write is used by site personnel to access stack configuration options The Supervisor level administrator is used to define user names passwor...

Страница 63: ...ame Type root as the Login name and the default password root in lowercase letters Defining new local users Define new users and access levels using the following command in Supervisor Level Exiting t...

Страница 64: ...ection describes the procedure for establishing switch access between a terminal and the C360 switch over the serial port provided on the front panel of the C360 RJ 45 connector labeled Console For in...

Страница 65: ...9600 baud 8 bits 1 stop bit no parity If you reset or powered up the switch after connecting and configuring the terminal Welcome to C360 appears followed by the Login Name prompt If the login prompt...

Страница 66: ...CLI to assign the C360 stack an IP address and net mask To assign a C360 IP stack address 1 Establish a serial connection by connecting a terminal to the master C360 switch of the stack 2 When prompt...

Страница 67: ...ult subnet mask is 255 255 255 0 3 From the Microsoft Windows taskbar of your PC click Start and then Run or from the DOS prompt of your PC then start the Telnet session by typing telnet C360_IP_addre...

Страница 68: ...ck contains three router modules a maximum of eight SSH sessions can be active on the stack The C360 agent reports SSH sessions opened to it In addition each router module reports the SSH sessions ope...

Страница 69: ...t verifies digital signature by decrypting it with DSA and the C360 host public key This and the step above are essential to prevent a man in the middle attack by someone taking the C360 identity 7 Us...

Страница 70: ...to key generate dsa CLI command to generate a key if necessary 2 Enable SSH on the switch using the ip ssh enable CLI command 3 Connect your station to the network 4 Verify that you can communicate wi...

Страница 71: ...s default IP address SSH Commands The following SSH commands are accessible from Supervisor level Table 15 SSH CLI Commands In order to Use the following command Enable SSH and configure SSH parameter...

Страница 72: ...ntities use the session mod_num mode CLI command mod_num is the number of the switch in the stack counting from the bottom mode can be switch router wan or mgp Use switch mode to configure layer 2 com...

Страница 73: ...password root You are now in Supervisor Level 4 At the prompt type set interface ppp ip_addr net mask with an IP address and netmask to be used by the C360 to connect via its PPP interface Note Note T...

Страница 74: ...ch Access 74 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 9 You can now dial into the switch from a remote station and open a Telnet session to the PPP int...

Страница 75: ...also sends management information back to the SNMP Manager as events occur Each C360 module has an agent However on each C360 stack one module is selected to be the master module The stack is managed...

Страница 76: ...a trap is detected SNMPv1 SNMPv1 uses community strings to limit access rights Each SNMP device is assigned to a read community and a read write community To communicate with a switch you must send an...

Страница 77: ...HMAC SHA 96 protocols for user authentication and the CBC DES56 protocol for encryption A maximum of 21 users including local users and remote users getting notifications can be defined on a stack If...

Страница 78: ...ccess rights including read write and trap or inform notifications the users can send The group maps its users to views based on the security model and level with which the user is communicating with...

Страница 79: ...n use wildcards to include or exclude an entire branch of OIDs in the MIB tree using an asterisk instead of the specific node To create an SNMPv3 view you must provide the following information ViewNa...

Страница 80: ...t snmp community Display a list of SNMPv3 views show snmp view Display a table of SNMPv3 users and the groups with which they are mapped show snmp userToGroup Display the SNMPv3 engine ID show snmp en...

Страница 81: ...emote user for SNMP notifications snmp server remote user Remove an SNMPv3 remote user for SNMP notifications no snmp server remote user Configure the SNMPv3 timeout and retries for notification snmp...

Страница 82: ...server in an attempt to authenticate the user remotely If the user name and password are authenticated then the RADIUS server responds to the switch with an Authentication Acknowledgement that includ...

Страница 83: ...1x refer to IEEE 802 1x Port Based Network Access Control User attempts login Local User account authenticated in switch Perform log in according to user s privilege level to switch Yes Authenticatio...

Страница 84: ...fault set radius authentication Set a primary or secondary RADIUS server IP address set radius authentication server Configure a character string to be used as a shared secret between the switch and t...

Страница 85: ...To use the recovery password feature you must connect to the switch s console port Log in using the user name root and password ggdaseuaimhrke Use the set username command to change the password for t...

Страница 86: ...IP address from the Allowed Managers List Tip Tip The identification of an Allowed Manager is done by checking the Source IP address of the packets Thus if the Source IP address is modified on the wa...

Страница 87: ...tatus of allowed managers is enabled or disabled show allowed managers status Show the IP addresses of the managers that are currently connected show secure current Table 19 Allowed Managers CLI Comma...

Страница 88: ...e connection via the Console port Allowed Protocols CLI Commands The following Allowed Protocols commands are available Table 20 Allowed Protocol CLI Commands 1 of 2 In order to Use the following comm...

Страница 89: ...sword on the switch terminal recovery password enable Disable Recovery Password on the switch no terminal recovery password Enable Telnet access from the switch ip telnet client enable Disable Telnet...

Страница 90: ...Establishing Switch Access 90 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 91: ...Issue 2 July 2005 91 Section 3 Avaya C360 Configuration...

Страница 92: ...92 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 93: ...0506 For instructions on the use of the graphical user interfaces refer to the C360 Device Manager User Guide on the Avaya C360 Documentation and Utilities CD C360 Default Settings The default setting...

Страница 94: ...d 802 1x port control Auto RADIUS server Disabled Time server IP address 0 0 0 0 Timezone offset 0 hours SNMPv1 communities Read only Read write Trap SNMP Public Public Public SNMP authentication trap...

Страница 95: ...nly Port speed 10 100 Mbps Depending on auto negotiation results 1000 Mbps Auto negotiation1 1 Ensure that the other side is also set to Autonegotiation Enabled Enable Enable Flow control Disabled no...

Страница 96: ...Avaya C360 Default Settings 96 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 97: ...tem Logging Telnet Client Support Monitoring CPU Utilization Basic Switch Configuration Use the CLI commands briefly described below for configuring the display on your terminal or workstation The rul...

Страница 98: ...to its default value no hostname Clear the current terminal display clear screen Set the number of minutes before an inactive CLI session automatically logs out set logout Display the number of minut...

Страница 99: ...ameters The rules of syntax and output examples are all set out in detail in the Reference Guide for the Avaya C360 Converged Stackable Switch 10 300506 Table 25 Operating Parameter CLI Commands In or...

Страница 100: ...uide Avaya C360 Multilayer Stackable Switches version 4 5 Display the time status and parameters show time parameters Display the current time zone offset show timezone Get the time from the time serv...

Страница 101: ...figuration file to multiple devices in the network resulting in a consistent configuration You can also download image files to the switch The image files provide the switch s firmware and device mana...

Страница 102: ...in a switch mode Use the CLI commands described below for uploading and downloading Layer 2 configuration files The rules of syntax and output examples are all set out in detail in the Reference Guid...

Страница 103: ...ion files you must be in a router mode Use the CLI commands briefly described below for uploading and downloading Layer 3 configuration files The rules of syntax and output examples are all set out in...

Страница 104: ...the device using SCP copy startup config scp Upload the running configuration file from the device using SCP copy running config scp Upload a startup configuration file from the device using TFTP copy...

Страница 105: ...the secured file server The C360 authenticates itself to the server by providing a user name and password With a Windows based SSH server WinSSHD the user name provided must be a defined user on the W...

Страница 106: ...nt Time is included only if a time server is configured for the device Message Facility The software sub system from which the message originated Severity Level The severity level of the message Sever...

Страница 107: ...messages are saved to a log file in the NVRAM of the master module in the stack The log file is not erased by an NVRAM initialization Syslog server Logging messages are sent to a Syslog server as ASC...

Страница 108: ...facility that the messages are sent to on the remote syslog server If a syslog facility is not defined the default facility local7 is used 3 Enable the Syslog server Addition optional configuration i...

Страница 109: ...in the Reference Guide for the Avaya C360 Converged Stackable Switch 10 300506 In order to Use the following command Define a filter rule for logging messages for the current session set logging sessi...

Страница 110: ...r the specified Syslog server or for all servers show logging server condition Define a filter rule for logging messages to a file set logging file condition Enable or disable logging to a file on NVR...

Страница 111: ...ip Tip Enabling and disabling the Telnet client service can only be done using a direct console connection via the Console port By default the Telnet client service is disabled Telnet Commands The fol...

Страница 112: ...g and disabling CPU utilization monitoring and viewing CPU utilization statistics The rules of syntax and output examples are all set out in detail in the Reference Guide for the Avaya C360 Converged...

Страница 113: ...iated with it These commands are used to configure operate or monitor switch activity for each of the Layer 2 features This section of the C360 Installation and Maintenance Guide explains each of the...

Страница 114: ...y other stations The first version of Ethernet supported data transfer rates of 10 Mbps and is therefore known as 10BASE T over copper or 10BASE FX over fiber Fast Ethernet Fast Ethernet is a newer ve...

Страница 115: ...gabit ports Auto Negotiation determines the Flow Control configuration of the port Full Duplex Half Duplex Devices that support Full Duplex can transmit and receive data simultaneously as opposed to h...

Страница 116: ...over time so short term peak loads may exceed the switch capacity When this occurs the switch must buffer frames until there is enough capacity to forward them to the appropriate ports This however c...

Страница 117: ...ts the serial number assigned to the device by the manufacturer CAM Table The CAM Table contains a mapping of learned MAC addresses to ports and VLANs The switch checks forwarding requests against the...

Страница 118: ...t port negotiation Administratively enable a port set port enable Administratively disable a port set port disable Set the speed for a 10 100 port set port speed Configure the duplex mode of a 10 100B...

Страница 119: ...address show cam mac Clear all the CAM table entries clear cam Display the autopartition settings show autopartition Display the current status of the MAC aging function show mac aging Display the MAC...

Страница 120: ...within the VLAN The figure below illustrates how a simple VLAN can connect several endpoints in different locations and attached to different hubs In this example the Management VLAN consists of stat...

Страница 121: ...N Thus the Engineering and Mktg VLANs are not burdened with processing that traffic Figure 22 VLAN Switching and Bridging VLAN Tagging VLAN Tagging is a method of controlling the distribution of infor...

Страница 122: ...able Port Multi VLAN binding modes are Bind to All the port is programmed to support the entire 3K VLANs range Traffic from any VLAN is forwarded through a port defined as Bind to All This is intended...

Страница 123: ...port Intended mainly for easy backbone link 2 Static Binding You manually specify the list of VLAN IDs to be bound to the port up to 3 071 VLANs Default mode for every port Only VLAN 9 and any other V...

Страница 124: ...ckets Permitted Static Only user defined VIDs Bind to Configured All VIDs defined in the switch Bind to All Any VID 1 to 3 071 Table 32 VLAN CLI Commands 1 of 2 In order to Use the following command A...

Страница 125: ...a port clear port static vlan Clear the dynamic vlans learned by the switch from incoming traffic clear dynamic vlans Display the MAC addresses learned on a specific VLAN show cam vlan Table 32 VLAN...

Страница 126: ...the authenticator The process begins with the supplicant trying to access a certain restricted network resource and upon successful authentication by the authentication server the supplicant is grant...

Страница 127: ...ports in a blocking state unless they were declared Force Authenticate They will be reverted to Forwarding state only when the port is authorized by the RADIUS server Note Note The actual state of por...

Страница 128: ...ols prevent the port from being authorized when the link is down or when the user supplied incorrect logon information 802 1x CLI Commands The following table contains a list of the CLI commands for t...

Страница 129: ...enable disable 802 1x set dot1x system auth control enable disable Set dot1x control parameter per port set port dot1x port control Initialize port dot1x set port dot1x initialize Set the port to re a...

Страница 130: ...e authentication period per port an idle time between re authentication attempts set port dot1x re authperiod Set the max req per port the maximal number of times the port tries to retransmit requests...

Страница 131: ...increased traffic and degradation in network performance The Spanning Tree Algorithm Produces a logical tree topology out of any arrangement of bridges The result is a single path between any two end...

Страница 132: ...to be propagated all the way back to the Root Bridge and back to be changed Origination of BPDUs on a port by port basis Port Roles At the center of RSTP specifically as an improvement over STP 802 1d...

Страница 133: ...int to point link is sufficient for most networks Spanning Tree Implementation in the C360 RSTP is implemented in C360 family of products so that it is interoperable with the existing implementation o...

Страница 134: ...g the CLI command set port spantree cost auto Spanning Tree Protocol CLI Commands The following table contains a list of CLI commands for the Spanning Tree feature The rules of syntax and output examp...

Страница 135: ...P port and not as a common STA port set port spantree force protocol migration Display a port s edge admin and operational RSTP state show port edge state Set the port as an RSTP edge port or non edge...

Страница 136: ...management station When the C360 is configured to send traps to report attempted intrusion to prevent the flooding of the Console s trap log network the Agent sends an intruder alert every five second...

Страница 137: ...security for the switch set security mode Display the MAC security mode for the switch show security mode Enable Disable MAC security for a specific port set port security Display the MAC security mo...

Страница 138: ...mes a LAG member The attributes of the base port such as port speed VLAN number etc are applied to all the other member ports in the LAG When created each LAG is automatically assigned a logical port...

Страница 139: ...he two GBIC ports to form a LAG you can aggregate the bandwidths of six 10 100BASE T ports in a LAG for a maximum of seven LAGs per switch Tip Tip You cannot combine 10 100BASE T and 1000BASE X ports...

Страница 140: ...undancy feature supports up to 20 pairs of ports per stack The redundant or secondary port takes over when the primary port link is down Port redundancy provides for the following in the C360 Switchba...

Страница 141: ...naffected This makes intermodule port redundancy a better option for very important connections In the example in Figure 24 Intermodule Port Redundancy is configured on ports in switch 1 primary and s...

Страница 142: ...detail in the Reference Guide for the Avaya C360 Converged Stackable Switch 10 300506 In order to Use the following command Define or remove port redundancy schemes set port redundancy Enable the defi...

Страница 143: ...an be sent even when the port is disabled This feature is particularly useful for the link intermodule redundancy application where you need to be informed about a link failure on the dormant port and...

Страница 144: ...he layer 2 switches as described in IEEE standard 802 1D Layer 2 switches capable of multicast filtering send the multicast packets only to ports connecting members of that multicast group This is typ...

Страница 145: ...e C360 switch reset that the filtering information is learned by the switch but not configured on the ports The Group Filtering Delay time is the time that the switch waits between becoming aware of a...

Страница 146: ...order to Use the following command Enable or disable the IP multicast filtering application set intelligent multicast Define aging time for client ports set intelligent multicast client port pruning...

Страница 147: ...N s advanced remote networking capabilities provide the tools needed to monitor and analyze the behavior of segments on a network In conjunction with an RMON agent RMON gathers details and logical inf...

Страница 148: ...nterface table numbering scheme show rmon statistics Display the most recent RMON history log for a given History Index show rmon history Display the parameters set for a specific alarm entry that was...

Страница 149: ...N is an extension of the RMON standard SMON adds to the monitoring capabilities of RMON in the following ways It provides additional tools and features for monitoring in the switch environment It prov...

Страница 150: ...C360 Multilayer Stackable Switches version 4 5 Note Note SMON for the network layer is not supported in this version of the C360 SMON CLI Commands In order to Use the following command Enter the SMON...

Страница 151: ...define one source port and one destination port on each C360 stack for either received Rx or transmitted and received Tx Rx traffic Port Mirroring CLI commands Port Mirroring Implementation in the C3...

Страница 152: ...dules installed in the stack When the Priority scheme is set to Strict the Lower priority queue will transmit only if none of the Higher priority queues has nothing to transmit When the Priority schem...

Страница 153: ...ted periodically The IEEE has defined a recommended transmission rate of 30 seconds however the transmission rate is adjustable LLDP devices after receiving an LLDP message from a neighboring network...

Страница 154: ...tus using the set port lldp CLI command optional The default value is rx and tx The device now accepts LLDP TLVs from neighboring devices supporting LLDP on port 3 in module 5 in the stack 3 Configure...

Страница 155: ...val at which the device transmits LLDP frames set lldp tx interval Set the TxHoldMultiplier set lldp tx hold multiplier Set the TxDelay set lldp tx delay Set the reinitDelay lldp re init delay Display...

Страница 156: ...Avaya C360 Layer 2 Features 156 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 157: ...c Routing Configuration Route Redistribution ARP Address Resolution Protocol Table Configuration BOOTP DHCP Dynamic Host Configuration Protocol Relay Configuration NetBIOS Re broadcast Configuration V...

Страница 158: ...0 Multilayer Stackable Switches version 4 5 Obtaining and Activating a License Key Each Certificate is specific for The switch type The required feature The number of devices After you purchase a Rout...

Страница 159: ...ing and Activating a License Key Issue 2 July 2005 159 Obtaining a Routing License Key To obtain a License Key that enables routing features 1 Go to http license lsg avaya com and click request new li...

Страница 160: ...Avaya C360 Layer 3 Features 160 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 2 Enter the Certificate Key and Certificate Type 3 Click Next...

Страница 161: ...Obtaining and Activating a License Key Issue 2 July 2005 161 4 Enter contact information once per certificate 5 Click Next...

Страница 162: ...Avaya C360 Layer 3 Features 162 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 6 View number of licenses left...

Страница 163: ...Obtaining and Activating a License Key Issue 2 July 2005 163 7 Enter serial number of the switch es or module To identify serial numbers use the CLI command show module identity...

Страница 164: ...Avaya C360 Layer 3 Features 164 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 8 Click Generate The feature enabling license code is generated...

Страница 165: ...tureName where module C360 switch number the location of the device in the stack license license code featureName routing and press Enter 2 Reset the module 3 Check that the license is activated using...

Страница 166: ...sender s links Link information can also be used to build a complete picture of the network s topology Once the network topology is understood routers can determine optimal routes to network destinat...

Страница 167: ...ects all networks This architecture strings several routers together via a high speed LAN topology such as Fast Ethernet or Gigabit Ethernet Within the global Internet routers do all the packet switch...

Страница 168: ...omplicated For example if there are two interfaces over the same VLAN and you configure DHCP server on one interface it will be used also for the second interface over the same VLAN This behavior migh...

Страница 169: ...dress Set the administrative state of an IP interface ip admin state Update the interface broadcast address ip broadcast address Define a default gateway router ip default gateway Define the interface...

Страница 170: ...r commands from the Master module type the command session module number router where module number is the location of the router module in the stack and press Enter The command prompt changes from C3...

Страница 171: ...Use the command Router configure if interface name ip address ip address netmask Press Enter 9 Assign a vlan to the IP interface you have created Type Assign a vlan to the IP interface you have creat...

Страница 172: ...e size Also when operating RIPv1 you must not configure supernets which are networks with a mask smaller than the natural net mask of the address class such as 192 1 0 0 with mask 255 255 0 0 smaller...

Страница 173: ...owing command Configure the Routing Information Protocol RIP router rip Specify a list of networks on which the RIP is running network Redistribute routing information from other protocols into RIP re...

Страница 174: ...Stackable Switches version 4 5 Specify the type of authentication used in RIP Version 2 packets ip rip authentication mode Set the authentication string used on the interface ip rip authentication ke...

Страница 175: ...ate algorithms to send routing information to all nodes in an internetwork by calculating the shortest path to each node This calculation is based on a topography of the Internet constructed by each n...

Страница 176: ...re interface metric ip ospf cost Specify the time interval between hellos the router sends ip ospf hello interval Configure the interval before declaring the neighbor as dead ip ospf dead interval Con...

Страница 177: ...are reachable via another router as a next hop The next hop router must belong to one of the directly attached networks for which the C360 has an IP interface Local static routes such as those that h...

Страница 178: ...tch choice For example a high preference static default route will not be preferred over a RIP route to the subnet of the destination In order to Use the following command Establish a static route ip...

Страница 179: ...otocol preferences are listed below from the most to the least preferred 1 Local directly attached net 2 High preference static manually configured routes 3 OSPF internal routes 4 RIP 5 OSPF external...

Страница 180: ...1 metric N to RIP metric 1 OSPF external type 2 metric N to RIP metric N 1 Static to OSPF external type 2 metric configurable default 1 RIP metric N to OSPF external type 2 metric N Direct to OSPF ext...

Страница 181: ...re address from its IP address This mechanism ability is called ARP Address Resolution Protocol The following mechanism describes how a station builds an ARP Table Figure 27 Building an ARP Table Stat...

Страница 182: ...esolution Protocol ARP cache arp Configure the amount of time that an entry remains in the ARP cache arp timeout Set the amount of time that an entry remains in the ARP cache back to default no arp ti...

Страница 183: ...eeps track of IP addresses rather than requiring an administrator to manage the task This means that a new computer can be added to a network without the hassle of manually assigning it a unique IP ad...

Страница 184: ...ify two DHCP BOOTP servers In this case it duplicates each request and sends it to both servers This provides redundancy and prevents the failure of a single server from blocking hosts from loading Yo...

Страница 185: ...is When a netbios broadcast packet arrives from an interface on which netbios rebroadcast is enabled the packet is distributed to all other interfaces configured to rebroadcast netbios If the netbios...

Страница 186: ...l routers The routing functions of the virtual router are performed by one of the physical routers with which it is associated This router is known as the master router For each virtual router VRRP se...

Страница 187: ...n must be done per VLAN The C360 requires that this VRID must not be used in the network even in different VLAN By the end of the routers configuration and when the network is up the main router for e...

Страница 188: ...C for the ARP requests Therefore the stations will not sense any change neither in the configured DG nor in the MAC level VRRP has no provisions for routing data base synchronization among the redunda...

Страница 189: ...ter ID ip vrrp preempt Set the primary address that shall be used as the source address of VRRP packets for the virtual router ID ip vrrp primary Accept or discard packets addressed to the IP address...

Страница 190: ...on the DSCP 802 1p mapping configured by the user The C360 supports Access Control policy Access Control rules define how the C360 should handle routed packets There are three possible ways to handle...

Страница 191: ...nal frame fields influence internal queues selection ip access list dscp trust Assign a name to a Policy List ip access list name Add the name of an owner to a Policy List ip access list owner Delete...

Страница 192: ...configured access lists show ip access list summary Set the policy control source to either local or remote policy server set qos policy source Copy current policy and router configuration to the sta...

Страница 193: ...k 149 49 0 0 rule 1 2 Assigning priority 3 to all TCP traffic going to the host 172 44 17 1 rule 2 3 Denying Telnet sessions originated by the host 192 168 5 33 rule 3 C360 1 super ip access list 100...

Страница 194: ...h and fragment offset fields along with the more fragment and don t fragment flags in the IP header are used for IP fragmentation and reassembly IP Fragmentation works as follows 1 IP packet is divide...

Страница 195: ...et the maximum number of seconds to reassemble a fragmented IP packet destined for the router fragment timeout Display information regarding fragmented IP packets that are destined for the router show...

Страница 196: ...Avaya C360 Layer 3 Features 196 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 197: ...bes the C360 PWR PoE Power over Ethernet Features It provides the basic procedures for configuring the C360 for PoE operation It contains the following sections Load Detection Plug and Play Operation...

Страница 198: ...eria see Load Detection so you can use it right out of the box The C360 PWR switches provide power over standard Category 3 and Category 5 cables Load Detection The C360 PWR switches periodically chec...

Страница 199: ...cted Once power is provided to a port it is checked periodically to see if a PD is still connected If a PD is disconnected from a powered port then power is denied to the port Plug and Play Operation...

Страница 200: ...arning Similarly if the power drops below the lower limit for a port power is denied to that port and an undercurrent warning is issued Priority Since the internal power supply may not be capable of d...

Страница 201: ...ltra reliable Avaya network It provides power to IP telephones wireless network access devices and Web cameras Figure 31 Powered Ethernet Application Both the data and power paths from the C360 PWR to...

Страница 202: ...circuitry reset stack and powerinline Enable the load detection process and power delivery for the port set port powerinline enable Disable the load detection process and power delivery for the port...

Страница 203: ...ANs Viewing and editing Virtual LAN information Link Aggregation Groups LAGs Viewing and editing LAG information Port Redundancy Setting port redundancy for ports in a C360 Switch Port Mirroring Setti...

Страница 204: ...ion of the Java plug in Configuring the Device Manager You can configure several Device Manager parameters using the CLI These parameters include the time out and retries parameters and the location o...

Страница 205: ...xx xxx xxx xxx is the IP address of the Avaya C360 Device you want to manage The SNMP parameters dialog box opens Figure 32 SNMP parameters dialog box 3 For SNMPv1 login a enter the SNMP community str...

Страница 206: ...Java plug in is installed on your computer the Java Plug in Security Warning dialog box opens after a few seconds Figure 33 Java Plug in Security Warning dialog box Click Yes If the required Java plu...

Страница 207: ...unning the Device Manager Issue 1 June 2005 207 Figure 34 The Welcome Page 6 If you have the Java plug in installed the Device Manager should open in a new window see Figure 35 Figure 35 Device Manage...

Страница 208: ...t installed automatically then you have three options for installing it manually Installing from the C360 Documentation and Utilities CD To install from the C360 documentation and Utilities CD 1 Close...

Страница 209: ...n the first time the users tries to manage the device 1 Copy the emweb aux files directory from the Avaya C360 Documentation and Utilities CD to your local Web server Please refer to your Web server d...

Страница 210: ...C360 Device Manager 210 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 211: ...Issue 2 July 2005 211 Section 4 Troubleshooting and Maintaining the Avaya C360...

Страница 212: ...212 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 213: ...r cord is inserted correctly Replace the power cord If the cord is inserted correctly check that the AC power source is working by connecting a different device in place of the C360 If that device wor...

Страница 214: ...Switch Inline power capacity exceeded PoE LED blinks Increase the priority of the PD port to High or Critical see page Move the PD to a higher numbered port Disconnect unnecessary PDs from the switch...

Страница 215: ...inserted correctly Check that there are no cross corrections The pins on the Octaplane cable are bent or broken Replace the cable The socket on the stacking module is damaged Replace the stacking modu...

Страница 216: ...gents in all modules start sending special packets of various length via all stacking cables to one another The Master module synchronizes this process and collects the results When the Redundant Cabl...

Страница 217: ...ins a list of the CLI commands for the Stack Health feature The syntax and output examples are set out in detail in the Reference Guide for the Avaya C360 Converged Stackable Switch 10 300506 In order...

Страница 218: ...Troubleshooting the Installation 218 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 219: ...nobs anti clockwise 3 Take hold of the two knobs one near each side of the front panel and pull gently but firmly towards yourself 4 Insert the new stacking module gently into the slot ensuring that t...

Страница 220: ...CION El switch C360 y sus m dulos de ampliaci n contienen componentes sensibles a descargas electrost ticas Tocar las tarjetas sin autorizaci n del personal t cnico puede da arlas CAUTION CAUTION Do n...

Страница 221: ...for the Avaya C360 Converged Stackable Switch 10 300506 for further information on the NVRAM initialization 4 The NVRAM initialization process starts When you receive a CLI message on to remove the mo...

Страница 222: ...Maintenance 222 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 223: ...Avaya Integrated Management Suite Obtain Software Online You can obtain the firmware and C360 Device Manager from the Downloads section on the Avaya Support Site at http support avaya com Downloading...

Страница 224: ...from memory Bank B to Bank A and download the new version to Bank B This process accomplishes the following prevents the device manager image file from being downloaded into Bank A by providing a non...

Страница 225: ...G700 Media Gateway subject to certain limitations which are described in this appendix Please read the information carefully before creating mixed stacks Important Important You should update existing...

Страница 226: ...ion of cables You may use the same Octaplane cables for stacking all the switches However the stacking modules are not interchangeable Please refer to Table 36 for information on which stacking module...

Страница 227: ...for information on which stacking module to use Tip Tip Please refer to the appropriate documentation for further information Table 38 BUPS Compatibility Switch BUPS C360 APC 800 refer to Connecting...

Страница 228: ...ML Notes SSH 1 You can open SSH sessions to the stack or Layer 3 interface You can access the G700 MGP after opening an SSH connection to the stack IP and then using the session command Logging 1 Even...

Страница 229: ...33T PWR P332G ML and P332GT ML as follows Layer 3 VLANs 3 071 3 071 252 P332G ML and P332GT ML will only recognize the first 252 VLANs the others will not be used It is recommended not to define more...

Страница 230: ...Mixed Stacks 230 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 231: ...vaya com Table 41 Configuration for ports connected to Avaya IP Telephones Parameter Value CLI command PVID Data VLAN set port vlan vlan_num module port Port tagging None i e not a trunk port set trun...

Страница 232: ...Configuring C360 QoS for Avaya IP Telephones 232 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 233: ...rt Based Network Access Control 802 3z Gigabit Ethernet 802 3u Ethernet Fast Ethernet IETF Layer 2 RFC 1155 Structure and identification of management information for TCP IP based internets RFC 1157 S...

Страница 234: ...dcasting Internet datagrams in the presence of subnets RFC 950 Internet Standard Subnetting Procedure RFC 951 Bootstrap Protocol RFC 1027 Using ARP to implement transparent subnet gateways RCF 1058 Ro...

Страница 235: ...rt for groups 1 2 3 and 9 Statistics History Alarms Events SMON RFC 2613 support for groups Data Source Capabilities Port Copy VLAN and Priority Statistics Bridge MIB Groups RFC 2674 dot1dbase and dot...

Страница 236: ...Standards and Compatibility 236 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5...

Страница 237: ...364T PWR 4 9 kg 10 8 lb 5 5 kg 12 1 lb 5 0 kg 11 lb 6 8 kg 15 lb C363T C363T PWR Input voltage 100 to 240 VAC 50 60 Hz 100 to 240 VAC 50 60 Hz Power dissipation 60 W max 420 W max AC Input current 1 3...

Страница 238: ...60950 and IEC 60950 1 Laser components are Laser Class I approved EN 60825 IEC 825 for Europe FDA CFR 1040 for USA Branch Circuit Protection A UL Listed and CSA Certified 15A branch circuit protectiv...

Страница 239: ...port connectors 2 x SFP GBIC connectors RS 232 for terminal setup via RJ 45 connector on front panel GBIC Transceivers LX Transceiver A 9 m or 10 m single mode fiber SMF cable may be connected to a 1...

Страница 240: ...3V and Maximum Output Wattage of 4 dBm ELX Transceiver You may connect a 9 mm or 10 mm single mode fiber SMF cable to a 1000BASE ELX SFP GBIC port The fiber length should be between a minimum length...

Страница 241: ...rminal using the supplied RJ 45 crossed cable and RJ 45 to DB 9 adapter Tip Tip Pin 1 of the Modem DB 25 connector is internally connected to Pin 7 GND C360 RJ 45 Pin Name DCE View Terminal DB 9 Pins...

Страница 242: ...ations 242 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 Ethernet VLANs Layer 23 071 Layer 3255 MAC addressesminimum 16k Priority queuing4 queues Multicast...

Страница 243: ...h configuration settings 93 Client configuring Telnet support 111 Compatibility features in stacking different devices 228 hardware in stacking different devices 226 standards 233 Configurations switc...

Страница 244: ...duplex half duplex 115 gigabit ethernet 114 MAC address 117 MAC aging 117 priority 116 speed 115 F Fast ethernet 114 Features layer 2 113 layer 2 ethernet 114 layer 2 IEEE 802 1x 126 layer 2 IP multi...

Страница 245: ...assigning router parameters 170 fragmentation and reassembly 194 multicast filtering configuring with CLI 146 IP multicast filtering 144 J Java plug in installing 208 L Layer 2 and Layer 3 connection...

Страница 246: ...9 PoE configuring with CLI 202 in converged networks 201 support 24 PoE features 197 load detection 198 plug and play 199 powering devices 200 Policy configuration 190 Port mirroring 151 configuring w...

Страница 247: ...orted 233 IEEE 233 IETF layer 2 233 IETF layer 3 234 IETF network monitoring 235 Static routing configuration 177 Supported standards 233 Switch configuration basic 97 hardware configurations 27 Switc...

Страница 248: ...248 Installation and Configuration Guide Avaya C360 Multilayer Stackable Switches version 4 5 Index...

Отзывы:

Нет отзывов

Похожие инструкции для C360 Manager

Бренд: Barco Страницы: 22

DEEP FREEZE ENTERPRISE - PATCH MANAGEMENT...

Бренд: FARONICS Страницы: 23

Бренд: RTS Страницы: 51

SmartCell ZX Administrator

Бренд: Cabletron Systems Страницы: 34

Бренд: Art & Logic Страницы: 2

WayPoint Map Loader

Бренд: Mobile Crossing Страницы: 32

Бренд: Ulead Страницы: 168

Бренд: AMX Страницы: 3

Бренд: Bay Networks Страницы: 130

Artistic Suite V6

Бренд: Janome Страницы: 5

Terminal Emulation TN5250

Бренд: IBM Страницы: 51

DEEP FREEZE SERVER STANDARD

Бренд: FARONICS Страницы: 24

EDIUS - INSTALLATION V6.0

Бренд: GRASS VALLEY Страницы: 23

Бренд: M-Audio Страницы: 5

LaserWriter 8 Series driver

Бренд: Xerox Страницы: 12

IP and Ethernet services

Бренд: Extreme Networks Страницы: 8

Бренд: Allied Telesis Страницы: 32

Бренд: Allied Telesis Страницы: 40

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды