D-Link 3010F - DES Switch страница 84 Скачать руководство пользователя | Manualshive

Страница: 84 / 281

background image

Configuring Device Security

Configuring Network Security

Page 83

Configuring Network Security

Network security manages both access control lists and locked ports. This section contains the following topics:

•

Network Security Overview

•

Defining Network Authentication Properties

•

Defining Port Authentication

•

Configuring Traffic Control

Network Security Overview

This section provides an overview of network security and contains the following topics:

•

Port-Based Authentication

•

Advanced Port-Based Authentication

Port-Based Authentication

Port-based authentication authenticates users on a per-port basis via an external server. Only authenticated and
approved system users can transmit and receive data. Ports are authenticated via the RADIUS server using the
Extensible Authentication Protocol (EAP). Port-based authentication includes:

•

Authenticators

— Specifies the device port which is authenticated before permitting system access.

•

Supplicants

— Specifies the host connected to the authenticated port requesting to access the system ser-

vices.

•

Authentication Server

— Specifies the server that performs the authentication on behalf of the authentica-

tor, and indicates whether the supplicant is authorized to access system services.

Port-based authentication creates two access states:

•

Controlled Access

— Permits communication between the supplicant and the system, if the supplicant is

authorized.

•

Uncontrolled Access

— Permits uncontrolled communication regardless of the port state.

The device currently supports port-based authentication via RADIUS servers.

Advanced Port-Based Authentication

Advanced port-based authentication enables multiple hosts to be attached to a single port. Advanced port-based
authentication requires only one host to be authorized for all hosts to have system access. If the port is unautho-
rized, all attached hosts are denied access to the network.

Advanced port-based authentication also enables user-based authentication. Specific VLANs in the device are
always available, even if specific ports attached to the VLAN are unauthorized. For example, Voice over IP does
not require authentication, while data traffic requires authentication. VLANs for which authorization is not required
can be defined. Unauthenticated VLANs are available to users, even if the ports attached to the VLAN are defined
as authorized.

Advanced port-based authentication is implemented in the following modes:

•

Single Host Mode

— Only the authorized host can access the port.

•

Multiple Host Mode

— Multiple hosts can be attached to a single port. Only one host must be authorized for

all hosts to access the network. If the host authentication fails, or an EAPOL-logoff message is received, all
attached clients are denied access to the network.

«
...
82
83
84
85
86
...
»

Содержание 3010F - DES Switch

Страница 1: ......

Страница 2: ...9 Console Port 14 Cable Specifications 15 LED Defiitions 16 Port LEDs 16 Power LED 19 Console LED 19 Cable Port and Pinout Information 20 Pin Connections for the 10 100 1000 Ethernet Interface 20 Physical Dimensions 21 Mounting Device 22 Preparing for Installation 23 Installation Precautions 23 Site Requirements 23 Unpacking 24 Installing the Device 25 Desktop or Shelf Installation 25 Rack Install...

Страница 3: ...Management Buttons 53 Using Screen and Table Options 54 Adding Configuration Information 54 Modifying Configuration Information 54 Deleting Configuration Information 55 Resetting the Device 56 Logging off from the Device 58 Managing Device Information 59 Configuring Device Security 61 Configuring Management Security 62 Configuring Authentication Methods 62 Configuring Passwords 79 Configuring Netw...

Страница 4: ...ning Tree 140 Defining STP on Interfaces 142 Defining Rapid Spanning Tree 145 Defining Multiple Spanning Tree 148 Defining MSTP Instance Settings 148 Defining MSTP Interface Settings 151 Configuring Multicast Forwarding 154 Defining IGMP Snooping 155 Defining Multicast Bridging Groups 157 Defining Multicast Forward All Settings 159 Configuring SNMP 161 SNMP v1 and v2c 161 SNMP v3 161 Configuring S...

Страница 5: ... Files 197 Upload Type 197 Software Image Upload 198 Configuration Upload 198 Copying Files 199 Restoring the Default Configuration File 199 Managing System Logs 200 Enabling System Logs 201 Viewing the Device Memory Logs 203 Clearing Device Memory Logs 203 Viewing the FLASH Logs 204 Clearing FLASH Logs 204 Defining Servers Log Parameters 205 Managing Device Diagnostics 206 Configuring Port Mirror...

Страница 6: ...e Statistics 229 Resetting Etherlike Statistics Counters 230 Viewing GVRP Statistics 231 Resetting GVRP Statistics Counters 232 Viewing EAP Statistics 232 Managing RMON Statistics 233 Viewing RMON Statistics 234 Resetting RMON Statistics Counters 235 Configuring RMON History 236 Defining RMON Alarms 243 Problem Management 246 Troubleshooting Solutions 246 Contacting D Link Technical Support 249 Wa...

Страница 7: ... browser The D Link Embedded Web Interface web pages are easy to use and easy to navigate In addition The D Link Embedded Web Interface pro vides real time graphs and RMON statistics to help system administrators monitor network performance This preface provides an overview to the D Link Embedded Interface User Guide and includes the following sec tions D Link DES 3010FA GA User Guide Overview Int...

Страница 8: ...guring Device Security Provides information about configuring device security for man agement security traffic control and network security Section 7 Configuring Ports Provides information about configuring ports Section 8 Aggregating Ports Provides information about configuring Link Aggregated Groups and LACP Section 9 Configuring VLANs Provides information about configuring and managing VLANs in...

Страница 9: ...e Protocol SNTP parameters Section 20 Viewing Statistics Provides information about viewing device statistics including RMON sta tistics device history events and port and LAG utilization statistics Appendix A Troubleshooting Provides basic troubleshooting for installing the device Intended Audience This guide is intended for network administrators familiar with IT concepts and terminology ...

Страница 10: ...D Link DES 3010FA GA Installation Guide Page 9 D Link DES 3010FA GA Installation Guide ...

Страница 11: ...e Description This section contains a description of the D Link DES 3010FA and D Link DES 3010GA and contains the following topics Viewing the Device Ports Description Cable Specifications LED Defiitions Cable Port and Pinout Information Physical Dimensions ...

Страница 12: ...llustrates the DES 3010FA front panel Figure 1 DES 3010FA Front Panel The device front panel is configured as follows 8 Fast Ethernet ports RJ 45 ports designated as 10 100Base TX The RJ 45 ports are designated as ports Ports1 8 DB 9 Console port An asynchronous serial console port supporting the RS 232 electrical specification The port is used to connect the device to the console managing the dev...

Страница 13: ...ical specification The port is used to connect the device to the console managing the device 1000Base T port RJ 45 Gigabit port designated on the device as port 9 SFP Port There is one SFP port which contains 1000Base X fiber connections On the front panel there are the Port activity LEDs on each port and the Power LED displayed separately DES 3010 Back Panel The following figure illustrates the D...

Страница 14: ... contains a 1000 Base TX Gigabit port The port is an RJ 45 port which supports half and full duplex mode 10 100 1000 Mbps 100Base FX Fiber Ports The 100Base FX Fast Ethernet port in the DES 3010FA device is a Fiber ports SFP Port Small Form Factor Pluggable SFP Optical Transceivers are integrated duplex data GBIC links for bi directional communication over multimode optical fiber designed for high...

Страница 15: ...rial console port supporting the RS 232 electrical specification The port is used to connect the device to a console managing the device This interface configuration is as follows Eight data bits One stop bit No parity Baud rate is 9600 default The user can change the rate from 115200 down to 9600 bps Console speeds of 57600 and 115200 ...

Страница 16: ...odule 80km Mini GBIC SFP Transceiver for 1000BASE LX Single mode fiber module 10km SFP Transceiver for 1000BASE SX Multi mode fiber module 550m SFP Transceiver for 1000BASE LH Single mode fiber module 40km SFP Transceiver for 1000BASE ZX Single mode fiber module 80km Table 2 DES 3010FA GA Cable Lengths Cable Type Description DEM 310GT SFP Transceiver for 1000BASE LX Single mode fiber module 10km D...

Страница 17: ...s The RJ 45 ports have two LEDs one for speed and one for Link activity The LED indications are described in the following table 1000Base T Gigabit Ethernet RJ 45 Port LEDs The following figure illustrates the port LEDs Table 3 10 100Base TX Fast Ethernet RJ 45 Port LED Indications Port Description LED Indication Description Left LED Speed Green A 100 Mbps link is established on the port Off A 10 ...

Страница 18: ...ber Port LEDs The following figure illustrates the port LEDs Table 4 1000Base T Gigabit Ethernet RJ 45 Port LED Indications Port Description LED Indication Description Left LED Speed Green A 100 1000 Mbps link is established on the port Off No link is established on the port Link Activity LED Green A link is established on the port Flashing Green There is data transmission on the port Off No link ...

Страница 19: ...ibed in the following table Table 5 Fiber Port LED Indications Port Description LED Indication Description Left LED Speed Green A 100 1000 Mbps link is established on the port Off No link is established on the port Link Activity LED Green A link is established on the port Flashing Green There is data transmission on the port Off No link is established on the link ...

Страница 20: ...owing table Console LED The console status is indicated by the Console LED on the front panel of the device Table 6 SFP Port LED Indications Port Description LED Indication Description Left LED Speed Green A 100 1000 Mbps link is established on the port Off No link is established on the port Link Activity LED Green A link is established on the port Flashing Green There is data transmission on the ...

Страница 21: ...he 10 100 1000 Ethernet Interface The switching port can connect to stations wired in standard RJ 45 Ethernet station mode using straight cables Transmission devices connected to each other use crossed cables The following figure illustrates the pin allocation Figure 9 RJ 45 Pin Allocation The following table describes the pin allocation Table 8 Console LED Indications Port Description LED Indicat...

Страница 22: ...Device Description Physical Dimensions Page 21 Physical Dimensions The device has the following physical dimensions Width 220 mm 8 66 inch Depth 155mm 6 10 inch Height 35 mm 1 38 inch ...

Страница 23: ...ge 22 Section 2 Mounting Device This section contains information for installing the device and includes the following sections Preparing for Installation Installing the Device Connecting the Device Rack Installation Wall Installation ...

Страница 24: ...ouching internal equipment Ensure the switch does not overload the power circuits wiring and over current protection To deter mine the possibility of overloading the supply circuits add together the ampere ratings of all devices installed on the same circuit as the device being installed Compare this total with the rating limit for the circuit The maximum ampere ratings are usually printed on the ...

Страница 25: ...RS 232 cable with DB 9 connector Documentation CD Unpacking Essentials Note Before unpacking the device inspect the package and report any evidence of damage immediately To unpack the device perform the following 1 It is recommended to put on an ESD wrist strap and attach the ESD clip to a metal surface to act as ground An ESD strap is not supplied with the device 2 Place the container on a clean ...

Страница 26: ...nd the device cables To install the device on a surface perform the following 1 Attach the rubber feet on the bottom of the device The following figure illustrates the rubber feet installation on the device Figure 10 Installing Rubber Feet 2 Set device down on a flat surface while leaving 2 inches on each side and 5 inches at the back 3 Ensure that the device has proper ventilation by allowing ade...

Страница 27: ...les on the device line up to the mounting holes on the rack mounting bracket The following figure illustrates where to mount the brackets Figure 11 Attaching the Mounting Brackets 2 Insert the supplied screws into the rack mounting holes and tighten with a screwdriver 3 Repeat the process for the rack mounting bracket on the other side of the device 4 Insert the unit into the 19 inch rack ensuring...

Страница 28: ...in a Rack 5 Secure the unit to the rack with the rack screws not provided Fasten the lower pair of screws before the upper pair of screws This ensures that the weight of the unit is evenly distributed during installation Ensure that the ventilation holes are not obstructed ...

Страница 29: ... made The hole diameter and depth is defined by the wall plug and screw combination being used to mount the device 3 Insert the wall plugs unto the holes 4 Screw the screws into the wall plugs allowing the heads to protrude from the wall The device is mounted on the protruded heads Figure 13 Inserting wall plugs and screws 5 Align the mounting holes on the back of the device with the screws in the...

Страница 30: ...al desktop system running terminal emulation software for monitoring and configuring the device The terminal must be a VT100 compatible terminal or a desktop or portable system with a serial port and running VT100 terminal emulation software To connect a terminal to the device Console port perform the following 1 Connect a cable to the terminal running VT100 terminal emulation software 2 Ensure th...

Страница 31: ...k 2 the arrow keys function properly in HyperTerminal s VT100 emulation Go to www microsoft com for information on Windows 2000 service packs 3 Connect the cable to the console port on the device front panel AC Power Connection To connect the power supply perform the following 1 Using a 5 foot 1 5 m standard power cable with safety ground connected connect the power cable to the AC main socket loc...

Страница 32: ... Starting and Configuring the Device This section describes initial device configuration and includes the following topics Configuring the Terminal Installation Procedure Booting the Device Configuration Overview Advanced Configuration Startup Procedures ...

Страница 33: ... HyperTerminal with Microsoft Windows 2000 make sure that Windows 2000 Service Pack 2 or later is installed With Windows 2000 Service Pack 2 the arrow keys function properly in HyperTerminal s VT100 emulation Go to www microsoft com for information on Windows 2000 service packs Installation Procedure The order of installation and configuration procedures is illustrated in the following figure For ...

Страница 34: ...roblem is detected the program flow stops If POST passes successfully a valid executable image is loaded into RAM POST messages are displayed on the terminal and indicate test success or failure As the device boots the bootup test first counts the device memory availability and then continues to boot The following screen is an example of the displayed POST Performing the Power On Self Test POST UA...

Страница 35: ...tarts after the device has booted successfully includes static IP address and subnet mask configuration and setting user names and privilege levels to allow remote management If the device is to be managed from an SNMP based management station SNMP community strings must also be configured The following configurations are completed and the initial configuration uses the following assumptions The d...

Страница 36: ...he specific management station the IP address is defined on VLAN 1 and the default gateway is defined as 100 1 1 10 Note that by default all ports are members of VLAN 1 which is the default VLAN console configure console config interface vlan 1 console config if ip address 100 1 1 1 255 255 255 0 console config if exit console default gateway 100 1 1 10 255 255 255 0 Confirm that the IP address ha...

Страница 37: ...enable console configure console config username admin password lee privilege 15 SNMP Community Strings Simple Network Management Protocol SNMP provides a method for managing network devices Devices supporting SNMP run a local software agent The SNMP agents maintain a list of variables used to manage the device The variables are defined in the Management Information Base MIB The SNMP agent defines...

Страница 38: ...tation During the initial configuration procedure the community string community access and IP address can be set through the local terminal The SNMP configuration options are Community string Read Only Community members can view configuration information but cannot change any information Read Write Community members can view and modify configuration information Super Community members have admini...

Страница 39: ...10FA GA User Guide Page 38 Contact System Location This completes the initial configuration of the device from a local terminal The configured parameters enable further device configuration from any remote location ...

Страница 40: ...fig interface ethernet 1 console config if ip address dhcp hostname admin host console config if exit console config 3 To verify the IP address enter the show ip interface command at the system prompt as shown in the following example console show ip interface IP Address I F Type 100 1 1 1 24 vlan 1 dynamic Notes The device configuration does not have to be deleted to retrieve an IP address for th...

Страница 41: ...cation Authorization and Accounting mechanism that manages user access rights privileges and management methods AAA uses both local and remote user databases Data encryption is handled through the SSH mechanism The system is delivered with the user name admin and no default password configured all user names and passwords are user defined If a user defined user name and or password is lost a passw...

Страница 42: ... To configure an initial Telnet password enter the following commands console config aaa authentication login default line console config aaa authentication enable default line console config line telnet console config line login authentication default console config line enable authentication default console config line password bob When initially logging onto a device through a Telnet session en...

Страница 43: ...min password user1 level 15 Enter the following commands when configuring to use a console a Telnet or an SSH session to use an HTTPS session In the Web browser enable SSL 2 0 or greater for the content of the page to appear console config crypto certificate generate key_generate console config ip https server When initially enabling an http or https session enter admin for user name and user1 for...

Страница 44: ...o continue y n n y SYSTEM RESET Performing the Power On Self Test POST UART Channel Loopback Test PASS Testing the System SDRAM PASS I2C Bus Test PASS Boot1 Checksum Test PASS Boot2 Checksum Test PASS Flash Image Validation Test PASS BOOT Software Version 1 0 0 11 Built 10 Apr 2005 13 25 46 DES3010 D LINK board based on Samsung S3C2510A ARM940T processor 32 MByte SDRAM I Cache 4 KB D Cache 4 KB Ca...

Страница 45: ... the Startup menu 1 From the Startup menu press 1 The following prompt appears Downloading code using XMODEM 2 When using HyperTerminal click Transfer on the HyperTerminal Menu Bar 3 In the Filename field enter the file path for the file to be downloaded 4 Ensure that the Xmodem protocol is selected in the Protocol field 5 Press Send The software is downloaded Note After software download the devi...

Страница 46: ... the other system image copy On the next boot the device decompresses and runs the currently active system image unless otherwise directed To download a system image through the TFTP server 1 Ensure that an IP address is configured on one of the device ports and pings can be sent to the TFTP server 2 Make sure that the file to be downloaded is saved on the TFTP server the arc file 3 Enter show ver...

Страница 47: ...e 3 Enter show version to verify which software version is currently running on the device The following is an example of the information that appears console sh ver SW version 1 0 0 42 date 22 Jul 2005 time 13 42 41 Boot version 1 0 0 18 date 01 Jun 2005 time 15 12 20 HW version 00 00 01 date 01 May 2005 time 12 12 20 4 Enter copy tftp tftp address file name boot to copy the boot image to the dev...

Страница 48: ...ified within 20 seconds the command times out To download a software image file using XModem 1 Enter the command console xmodem image The switch is ready to receive the file via the XModem protocol 2 Specify the path of the source file to begin the transfer process The following is an example of the information that appears console copy xmodem image Please download program using XMODEM ...

Страница 49: ...D Link DES 3010FA GA User Guide Page 48 D Link DES 3010FA GA EWS User Guide ...

Страница 50: ...ection provides an introduction to the user interface and includes the following topics Starting the D Link Embedded Web Interface Understanding the D Link Embedded Web Interface Using Screen and Table Options Resetting the Device Logging off from the Device ...

Страница 51: ...nd device information messages may not open 3 Enter the device IP address in the address bar and press Enter The Enter Network Password Page opens Figure 15 Enter Network Password Page 4 Enter your user name and password Notes The device is configured with a user name that is admin and a password that is blank and can be configured without entering a password Passwords are case sensitive To operat...

Страница 52: ...ng views Port LED Indicators Located at the top of the home page the port LED indicators provide a visual repre sentation of the ports on the D Link front panel Tab Area Located under the LED indicators the tab area contains a list of the device features and their components Device View Located in the main part of the home page the device view provides a view of the device an information or table ...

Страница 53: ...onents View Description 1 Tree View Tree View provides easy navigation through the configurable device features The main branches expand to display the sub features 2 Device View Device View provides information about device ports current configuration and status table information and feature components Device View also displays other device information and dialog boxes for configuring parameters ...

Страница 54: ... icons provide an easy method of configuring device information and include the following Table 12 D Link Web Interface Configuration Buttons Button Button Name Description Clear Logs Clears system logs Create Enables creation of configuration entries Edit Modifies configuration settings Submit Saves configuration changes to the device Test Performs cable tests Query Queries the device table Table...

Страница 55: ... can be added to specific D Link Web Interface pages by opening a new Add page To add information to tables or D Link Web Interface pages 1 Open an D Link Web Interface page 2 Click An add page opens such as the Add SNTP Interface Page Figure 19 Add SNTP Interface 3 Define the fields 4 Click The configuration information is saved and the device is updated Modifying Configuration Information 1 Open...

Страница 56: ...Modify the fields as required 5 Click The fields are modified and the information is saved to the device Deleting Configuration Information 1 Open The D Link Embedded Web Interface page 2 Select a table row 3 Select the Remove checkbox 4 Click The information is deleted and the device is updated ...

Страница 57: ...vent the current configuration from being lost save all changes from the running configuration file to the startup configuration file before resetting the device For instructions see Copying Files on page 199 To reset the device 1 Click System General Reset The Reset page opens Figure 21 Reset Page 2 Click A confirmation message is displayed ...

Страница 58: ... Resetting the Device Page 57 Figure 22 Reset Confirmation Message 3 Click The device is reset and a prompt for a user name and password is displayed 4 Enter a user name and password to reconnect to the web Interface ...

Страница 59: ...D Link DES 3010FA GA User Guide Page 58 Logging off from the Device 1 Click The Logout Page opens Figure 23 Logout Page 2 Click The D Link Embedded Web Interface Home Page closes ...

Страница 60: ...tains the following fields Model Name Displays the device model number and name System Name Defines the user defined device name The field range is 0 160 characters System Location Defines the location where the system is currently running The field range is 0 160 characters System Contact Defines the name of the contact person The field range is 0 160 characters System Object ID Displays the vend...

Страница 61: ...ys the installed device hardware version number Software Version Displays the installed software version number Boot Version Displays the current boot version running on the device 2 Define the System Name System Location and System Contact fields 3 Click The device information is saved and the device is updated ...

Страница 62: ...urity This section provides access to security pages that contain fields for setting security parameters for ports device management methods users and server security This section contains the following topics Configuring Management Security Configuring Network Security ...

Страница 63: ...udes the following topics Configuring Authentication Methods Configuring Passwords Configuring Authentication Methods This section provides information for configuring device authentication methods This section includes the topics Defining Access Profiles Defining Profile Rules Defining Authentication Profiles Mapping Authentication Methods Defining RADIUS Settings ...

Страница 64: ...e User Group 1 can access the switch module only via an HTTPS session while User Group 2 can access the switch module via both HTTPS and Telnet sessions The Access Profile Page contains the currently configured access profiles and their activity status Assigning an access profile to an interface denies access via other interfaces If an access profile is assigned to any interface the device can be ...

Страница 65: ...rule is defined Users with this access profile can access the device using the management method selected The possible field values are All Assigns all management methods to the rule Telnet Assigns Telnet access to the rule If selected users accessing the device using Telnet meeting access profile criteria are permitted or denied access to the device Secure Telnet SSH Assigns SSH access to the rul...

Страница 66: ... on which the access profile is defined VLAN Specifies the VLAN on which the access profile is defined Source IP Address Defines the interface source IP address to which the access profile applies The Source IP Address field is valid for a subnetwork 3 Define the Access Profile Name Rule Priority Management Method Interface Source IP Address Network Mask or Prefix Length and Action fields 4 Click ...

Страница 67: ... cri teria To define profile rules 1 Click System Management Security Authentication Profile Rules The Profile Rules Page opens Figure 27 Profile Rules Page The Profile Rules Page contains the following fields Access Profile Name Displays the access profile to which the rule is attached Priority Defines the rule priority When the packet is matched to a rule user groups are either granted per missi...

Страница 68: ...ting access profile criteria are permitted or denied access to the device Secure HTTP HTTPS Assigns HTTPS access to the rule If selected users accessing the device using HTTPS meeting access profile criteria are permitted or denied access to the device SNMP Assigns SNMP access to the rule If selected users accessing the device using SNMP meeting access profile criteria are permitted or denied acce...

Страница 69: ...thod Interface Source IP Address Network Mask or Prefix Length and Action fields 4 Click The profile rule is added to the access profile and the device is updated To modify a Profile Rule 1 Click Security Management Security Authentication Access Profile The Access Profile Page opens 2 Click The Profile Rule Settings Page opens ...

Страница 70: ...Configuring Device Security Configuring Management Security Page 69 Figure 29 Profile Rule Settings Page 3 Modify the fields 4 Click The profile rule is modified and the device is updated ...

Страница 71: ...ck System Management Security Authentication Authentication Profiles The Authentication Profile Page opens Figure 30 Authentication Profile Page The Authentication Profile Page contains the following fields Profile Name User defined authentication profile lists to which user defined authentication profiles are added Methods Defines the user authentication methods The possible field values are None...

Страница 72: ...on profiles 2 Click The Add Authentication Profile Page opens Figure 31 Add Authentication Profile Page 3 Define the Profile Name and Authentication Methods fields 4 Click The authentication profile is defined and the device is updated To modify an authentication profile 1 Click System Management Security Authentication Authentication Profiles The Authentication Profile Page opens 2 Click The Auth...

Страница 73: ...3010FA GA User Guide Page 72 Figure 32 Authentication Profile Settings Page 3 Select an authentication method from the Optional Methods list 4 Click The authentication method is selected and the device is updated ...

Страница 74: ... Click System Management Security Authentication Authentication Mapping The Authentication Mapping Page opens Figure 33 Authentication Mapping Page The Authentication Mapping Page contains the following fields Console Authentication profiles used to authenticate console users Telnet Authentication profiles used to authenticate Telnet users Secure Telnet SSH Authentication profiles used to authenti...

Страница 75: ...sed for access Local Authentication occurs locally RADIUS Authentication occurs at the RADIUS server Line Authentication using a line password Enable Authentication using enable Local RADIUS Authentication first occurs locally If authentication cannot be verified locally the RADIUS server authenticates the management method If the RADIUS server cannot authenticate the management method the session...

Страница 76: ...s the following fields Retries Defines the number of transmitted requests sent to the RADIUS server before a failure occurs Possible field values are 1 10 Timeout for Reply Defines the amount of time in seconds the device waits for an answer from the RADIUS server before retrying the query or switching to the next server Possible field values are 1 30 Dead Time Defines the default amount of time i...

Страница 77: ... server before retrying the query or switching to the next server The possible field values are 1 30 Three is the default value Dead Time Defines the amount of time in minutes that a RADIUS server is bypassed for service requests The range is 0 2000 The default is 0 minutes Source IP Address Defines the source IP address that is used for communication with RADIUS servers Usage Type Specifies the R...

Страница 78: ...he Host IP Address Priority Authenticated Port Timeout for Reply Dead Time and Usage Type fields 4 Click The RADIUS server is added and the device is updated To edit RADIUS Server Settings 1 Click System Management Security Authentication Radius The RADIUS Page opens 2 Click The RADIUS Server Settings Page opens ...

Страница 79: ...ge 78 Figure 36 RADIUS Server Settings Page 3 Define the Priority Source IP Address Key String Authentication Port Timeout for Reply Dead Time and Usage Type fields 4 Click The RADIUS server settings are saved and the device is updated ...

Страница 80: ...efine local users 1 Click System Management Security Passwords Local Users The Local User Page opens Figure 37 Local User Page The Local User Page contains the following fields User Name Displays the user name Access Level Displays the user access level The lowest user access level is 1 and the highest is 15 Users with access level 15 are Privileged Users and only they can access and use the OpenM...

Страница 81: ...dd Local User Page opens Figure 38 Add Local User Page In addition to the fields in the Local User Page the Add Local User Page contains the following fields Password Defines the local user password Local user passwords can contain up to 159 characters Confirm Password Verifies the password ...

Страница 82: ...e password for accessing the device via a Console session Pass words can contain a maximum of 159 characters Telnet Line Password Defines the line password for accessing the device via a Telnet session Pass words can contain a maximum of 159 characters Secure Telnet Line Password Defines the line password for accessing the device via a secure Telnet session Passwords can contain a maximum of 159 c...

Страница 83: ...pens Figure 40 Enable Password Page The Enable Password Page contains the following fields Level Defines the access level associated with the enable password Possible field values are 1 15 Password Defines the enable password Confirm Password Confirms the new enable password The password appears in the format 2 Define the Select Enable Access Level Password and Confirm Password fields 3 Click The ...

Страница 84: ... access states Controlled Access Permits communication between the supplicant and the system if the supplicant is authorized Uncontrolled Access Permits uncontrolled communication regardless of the port state The device currently supports port based authentication via RADIUS servers Advanced Port Based Authentication Advanced port based authentication enables multiple hosts to be attached to a sin...

Страница 85: ...cation Properties The Network Authentication Properties Page allows network managers to configure network authentication parameters In addition Guest VLANs are enabled from the Network Authentication Properties Page To define the network authentication properties 1 Click Advanced Setup Network Security Authentication Properties The Network Authentication Properties Page opens Figure 41 Network Aut...

Страница 86: ... the session is permitted Guest VLAN Specifies whether the Guest VLAN is enabled on the device The possible field values are Enable Enables using a Guest VLAN for unauthorized ports If a Guest VLAN is enabled the unauthorized port automatically joins the VLAN selected in the VLAN List field Disable Disables port based authentication on the device This is the default VLAN List Contains a list of VL...

Страница 87: ...f interfaces on which port based authentication is enabled User Name Displays the supplicant user name Admin Port Control Displays the current port authorization state The possible field values are Auto Port based authentication is enabled on the device The interface moves between an authorized or unauthorized state based on the authentication exchange between the device and the client Authorized ...

Страница 88: ...iet state following a failed authentication exchange The possible field range is 0 65535 The field default is 60 seconds Resending EAP Defines the amount of time in seconds that lapses before EAP requests are resent The field default is 30 seconds Max EAP Requests Displays the total amount of EAP requests sent If a response is not received after the defined period the authentication process is res...

Страница 89: ... Port Authentication Settings Page 3 Modify the Admin Port Control Enable Periodic Reauthentication Quiet Period Resending EAP Supplicant Timeout and Server Timeout fields 4 Click The port authentication settings are defined and the device is updated ...

Страница 90: ...ort Displays the port number for which advanced port based authentication is enabled Multiple Hosts Indicates whether multiple hosts are enabled Multiple hosts must be enabled in order to either disable the ingress filter or to use port lock security on the selected port The possible field values are Multiple Multiple hosts are enabled Disable Multiple hosts are disabled Action on Violation Define...

Страница 91: ...ce Unauthorized and the port link is down or the port control is Auto but a client has not been authenticated via the port Not in Auto Mode Indicates that the port control is Forced Authorized and clients have full port access Single host Lock Indicates that the port control is Auto and a single client has been authenticated via the port No Single Host Indicates that Multiple Host is enabled Numbe...

Страница 92: ...the following fields User Name Lists the supplicants that were authenticated and are permitted on each port Port Displays the port number Session Time Displays the amount of time in seconds the supplicant was logged on the port Authentication Method Displays the method by which the last session was authenticated The possible field values are Remote 802 1x authentication is not used on this port po...

Страница 93: ...to users with specific MAC addresses These addresses are either manually defined on the port or learned on that port up to the point when it is locked When a packet is received on a locked port and the packet D Link source MAC address is not tied to that port either it was learned on a different port or it is unknown to the system the protec tion mechanism is invoked and can provide various option...

Страница 94: ...t the port control is Auto and a single client has been authenticated via the port Learning Mode Defines the locked port type The Learning Mode field is enabled only if Locked is selected in the Set Port field The possible field values are Classic Lock Locks the port using the classic lock mechanism The port is immediately locked regardless of the number of addresses that have already been learned...

Страница 95: ... The port remains shut down until reactivated or until the device is reset Trap Enables traps when a packet is received on a locked port The possible field values are Checked Enables traps Unchecked Disables traps Trap Frequency Sec The amount of time in seconds between traps The default value is 10 seconds 2 Click The Port Security Settings Page opens Figure 48 Port Security Settings Page 3 Modif...

Страница 96: ...l is enabled for all Gigabit ports by defining the packet type and the rate the packets are transmitted The system measures the incoming Broadcast and Multicast frame rates separately on each port and discards the frames when the rate exceeds a user defined rate The Storm Control Page provides fields for configuring broadcast storm control To enable storm control 1 Click Advanced Setup Network Sec...

Страница 97: ...raffic Broadcast Rate Threshold The maximum rate kilobytes per second at which unknown packets are for warded The range is 0 1 000 000 The default value is zero All values are rounded to the nearest 64Kbps If the field value is under 64Kbps the value is rounded up to 64Kbps with the exception of the value zero 2 Click The Storm Control Settings Page opens Figure 50 Storm Control Settings Page 3 Mo...

Страница 98: ...onfiguration LAG table The Interface Configuration ports table contains the following fields Interface Displays the port number Port Status Indicates whether the port is currently operational or non operational The possible field val ues are Up Indicates the port is currently operating Down Indicates the port is currently not operating Port Speed Displays the configured rate for the port The port ...

Страница 99: ... status on the port Operates when the port is in full duplex mode MDI MDIX Displays the MDI MDIX status on the port Hubs and switches are deliberately wired opposite the way end stations are wired so that when a hub or switch is connected to an end station a straight through Ethernet cable can be used and the pairs are matched up properly When two hubs or switches are con nected to each other or t...

Страница 100: ...Port or LAG Configuration Settings Page includes the field Reactivate Suspended Port or Reactivate Suspended Lag Select this field to return a suspended port or LAG to active status Figure 52 Port Configuration Settings Page 3 Modify the Admin Speed Admin Duplex and Admin Advertisement fields 4 Click The parameters are saved and the device is updated ...

Страница 101: ...e The Interface Properties Page is contains the following fields Interface Displays the port number Port Type Displays the port type The possible field values are Copper Indicates the port has a copper port connection Fiber Indicates the port has a fiber optic port connection Description Provides a user defined port description To edit the port properties 1 Click Basic Setup Interface Interface Pr...

Страница 102: ...Configuring Ports Viewing Port Properties Page 101 Figure 54 Interface Properties Page 3 Define the fields 4 Click The interface properties are modified and the device is updated ...

Страница 103: ...negotiation mode is not configured on the port The port is in full duplex mode All ports in the LAG have the same ingress filtering and tagged modes All ports in the LAG have the same back pressure and flow control modes All ports in the LAG have the same priority All ports in the LAG have the same transceiver type The device supports up to eight LAGs and eight ports in each LAG Ports can be confi...

Страница 104: ...The device supports up to eight ports per LAG and eight LAGs per system To define LAG parameters 1 Click Advanced Setup Interface LAG Membership The LAG Membership Page opens Figure 55 LAG Membership Page The LAG Membership Page contains the following fields LAG Port Displays the LAG number Name Displays the user defined port name Link State Displays the link operational status Member Displays the...

Страница 105: ...D Link DES 3010FA GA User Guide Page 104 Figure 56 LAG Membership Settings Page 3 Define the Port and LACP fields 4 Click The LAG membership settings are saved and the device is updated ...

Страница 106: ...egate ports can be linked into link aggregation port groups Each group is comprised of ports with the same speed The LACP Parameters Page contains fields for configuring LACP LAGs To configure LACP for LAGs 1 Click Advanced Setup Interface LACP Parameters tab The LACP Parameters Page opens Figure 57 LACP Parameters Page The LACP Parameters Page contains the following fields Port Displays the port ...

Страница 107: ...D Link DES 3010FA GA User Guide Page 106 Figure 58 LACP Parameters Settings Page 3 Edit the Port Priority and LACP Timeout fields 4 Click The LACP settings are saved and the device is updated ...

Страница 108: ...er working at a protocol level is required to allow traffic flow between VLANs Layer 3 routers identify segments and coordinate with VLANs VLANs are Broadcast and Multicast domains Broadcast and Multicast traffic is transmitted only in the VLAN in which the traffic is generated VLAN tagging provides a method of transferring VLAN information between VLAN groups VLAN tagging attaches a 4 byte tag to...

Страница 109: ...ID Displays the VLAN ID Name Displays the user defined VLAN name Type Displays the VLAN type The possible field values are Dynamic The VLAN was dynamically created through GARP Static The VLAN is user defined Default The VLAN is the default VLAN Authentication Indicates whether unauthorized users can access a Guest VLAN The possible field values are Enable Enables unauthorized users to use the Gue...

Страница 110: ...nfiguring VLANs Defining VLAN Properties Page 109 2 Click The Add VLAN page opens Figure 60 Add VLAN Page 3 Define the VLAN ID and VLAN Name fields 4 Click The VLAN ID is defined and the device is updated ...

Страница 111: ...the user defined VLAN ID VLAN Name Displays the name of the VLAN VLAN Type Indicates the VLAN type The possible field values are Dynamic The VLAN was dynamically created through GARP Static The VLAN is user defined Default The VLAN is the default VLAN Port Indicates the port membership LAG Indicates the LAG membership Untagged Orange Indicates the interface is an untagged VLAN member Packets forwa...

Страница 112: ...s 1 Click Basic Setup VLAN Membership Interface Settings The VLAN Interface Settings Page opens Figure 62 VLAN Interface Settings Page The VLAN Interface Settings Page contains the following fields Interface Displays the port number included in the VLAN Interface VLAN Mode Displays the port mode The possible values are General Indicates the port belongs to VLANs and each VLAN is user defined as ta...

Страница 113: ...Only Only tagged packets are accepted on the port Admit All Both tagged and untagged packets are accepted on the port Ingress Filtering Indicates whether ingress filtering is enabled on the port The possible field values are Enable Enables ingress filtering on the device Ingress filtering discards packets that are defined to VLANs of which the specific port is not a member Disable Disables ingress...

Страница 114: ... with a VLANs is blocked except for traffic from promiscuous ports All isolated ports are automatically assigned to the Iso lated VLAN Community Community ports communicate with other community ports and with promiscuous ports Community ports are separated from all other interfaces in other communities or isolated ports in the same PVLAN All community ports are automatically assigned to the Commun...

Страница 115: ...te VLANs are defined in the Add Private VLAN page Isolated Ports Indicates which VLAN to which isolated ports are assigned Community Ports Adds a Community VLAN to which community ports are assigned Remove Removes a Private VLAN when checked he possible field values are Checked Removes the selected Private VLAN Unchecked Maintains Private VLANs 2 Click The VLAN Interface Settings Page opens ...

Страница 116: ...VLANs Defining Private VLANs Page 115 Figure 65 Add Private VLAN 3 Define the New Private VLAN and Community VLAN 2 4093 or Isolated VLAN 2 4093 fields 4 Click The Private VLAN is created and the device is updated ...

Страница 117: ...ve time must be greater than or equal to three times the join time The leave all time must be greater than the leave time Set the same GARP timer values on all Layer 2 connected devices If the GARP timers are set differently on the Layer 2 connected devices the GARP application does not operate successfully To define GARP on the device 1 Click Basic Setup VLAN GARP The GARP Parameters Page opens F...

Страница 118: ... Leave time must be greater than or equal to three times the join time The default value is 60 centiseconds Leave All Timer Indicates the amount of time lapse in centiseconds that all device waits before leaving the GARP state The leave all time must be greater than the leave time The default value is 1000 centisec onds 2 Click The GARP Parameters Settings Page opens Figure 67 GARP Parameters Sett...

Страница 119: ...d definitions are the same The GVRP Parameters Page contains the following fields GVRP Global Status Indicates if GVRP is enabled on the device The possible field values are Enable Enables GVRP on the selected device Disable Disables GVRP on the selected device Copy from Entry Number Indicates the row number from which GARP parameters are copied To Row Number Indicates the row number to which GARP...

Страница 120: ...on on the interface GVRP Registration Indicates if VLAN registration through GVRP is enabled on the device The possible field values are Enable Enables GVRP registration on the device Disable Disables GVRP registration on the device 2 Click The GVRP Parameters Page opens Figure 69 GVRP Parameters Page 3 Define the GVRP State Dynamic VLAN Creation and GVRP Registration fields 4 Click The GVRP Inter...

Страница 121: ...ining device IP addresses and includes the following topics Configuring IP Interfaces Configuring Domain Name Servers Configuring IP Interfaces This section contains information for defining IP interfaces and includes the following sections Defining IP Addresses Defining Default Gateways Configuring DHCP Configuring ARP ...

Страница 122: ... interface 1 Click Basic Setup IP Configuration IP Addressing IP Interface The IP Interface Page opens Figure 70 IP Interface Page The IP Interface Page contains the following fields IP Address Displays the currently configured IP address Mask Displays the currently configured IP address mask Interface Displays the interface used to manage the device Remove Removes the selected IP address from the...

Страница 123: ... or Prefix Length and Interface fields 4 Click The IP configuration fields are saved and the device is updated To modify an IP interface 1 Click Basic Setup IP Configuration IP Addressing IP Interface The IP Interface Page opens 2 Click The IP Interface Settings Page opens Figure 72 IP Interface Settings Page ...

Страница 124: ...Configuring IP Information Configuring IP Interfaces Page 123 3 Modify the IP Address Network Mask or Prefix Length and Interface fields 4 Click The IP Interface is modified and the device is updated ...

Страница 125: ...ntains the following fields User Defined Default Gateway Defines the default gateway IP address Active Default Gateway Indicates if the default gateway is active The possible field values are Checked Activates the default gateway Unchecked Maintains the default gateway as inactive This is the default value Remove Removes the default gateway The possible field values are Checked Removes the selecte...

Страница 126: ...network To define a DHCP Interface 1 Click Basic Setup IP Configuration IP Addressing DHCP The DCHP Page opens Figure 74 DCHP Page The DCHP Page contains the following fields Interface Displays the interface D Link IP address which is connected to the device Host Name Displays the system name Remove Removes DHCP interfaces The possible field values are Checked Removes the selected DHCP interface U...

Страница 127: ...D Link DES 3010FA GA User Guide Page 126 Figure 75 Add DHCP IP Interface Page 3 Define the Interface and Host Name fields 4 Click The DHCP interface is added and the device is updated ...

Страница 128: ... amount of time in seconds that passes between ARP Table entry requests Following the ARP Entry Age period the entry is deleted from the table The range is 1 40000000 The default value is 60000 seconds Clear ARP Table Entries Specifies the types of ARP entries that are cleared The possible values are None Does not clear ARP entries All Clears all ARP entries Dynamic Clears only dynamic ARP entries...

Страница 129: ... a static entry Remove Removes a specific ARP entry The possible field values are Checked Removes the selected ARP entries Unchecked Maintains the current ARP entries 2 Define the ARP Entry Age Out and Clear ARP Table Entries fields 3 Click The ARP parameters are defined and the device is updated To create a new ARP entry 1 Click Basic Setup IP Configuration IP Addressing ARP The ARP Page opens 2 ...

Страница 130: ...ames into IP addresses Each time a domain name is assigned the DNS service translates the name into a numeric IP address For example www ipexample com is translated into 192 87 56 2 DNS servers maintain databases of domain names and their corresponding IP addresses This section contains the following topics Defining DNS Servers Defining DNS Host Mapping ...

Страница 131: ... Enable Translates the domains into IP addresses Disable Disables translating domains into IP addresses Default Domain Name Specifies the user defined DNS server name Type Displays the IP address type The possible field values are Dynamic The IP address is dynamically created Static The IP address is a static IP address Remove Removes DNS servers The possible field values are Checked Removes the s...

Страница 132: ...Active Server fields 4 Click The DNS server is enabled and the device is updated To add a new DNS Server 1 Click Basic Setup IP Configuration Domain Name System DNS Server The DNS Server Page opens 2 Click The Add DNS Server Page opens Figure 79 Add DNS Server Page 3 Define the DNS Server DNS Server Currently Active and Set DNS Server Active fields 4 Click The DNS server is added and the device is...

Страница 133: ... Mapping Page The DNS Host Mapping Page contains the following fields Host Names Displays a user defined default domain name When defined the default domain name is applied to all unqualified host names The Host Name field can contain up to 158 characters IP Address Displays the DNS host D Link IP address Remove Removes default domain names The possible field values are Checked Removes the selecte...

Страница 134: ...Configuring IP Information Configuring Domain Name Servers Page 133 Figure 81 Add DNS Host Page 3 Define the Host Name and IP Address fields 4 Click The DNS host is added and the device is updated ...

Страница 135: ...onfig ured manually An address becomes associated with a port by learning the port from the frame s source address but if a frame that is addressed to a destination MAC address is not associated with a port that frame is flooded to all relevant VLAN ports To prevent the bridging table from overflowing a dynamic MAC address from which no traffic arrives for a set period is erased This section conta...

Страница 136: ...ing Database Static Addresses Page The Forwarding Database Static Addresses Page contains the following fields MAC Address Displays the MAC address to which the entry refers VLAN ID Displays the VLAN ID number to which the entry refers Interface Displays the interface to which the entry refers Port The specific port number to which the forwarding database parameters refer LAG The specific LAG numb...

Страница 137: ...reset make sure that the port attached to the MAC address is locked To add a new static forwarding database entry 1 Click Advanced Setup Forwarding Database Static Addresses The Forwarding Database Static Addresses Page opens 2 Click The Add Forwarding Database Page opens Figure 83 Add Forwarding Database Page 3 Define the Interface MAC Address VLAN ID or VLAN Name and Status fields 4 Click The fo...

Страница 138: ...erface VLAN and MAC Address To configure the Dynamic MAC Address table 1 Click Advanced Setup Forwarding Database Dynamic Addresses The Dynamic Addresses Page opens Figure 84 Dynamic Addresses Page The Dynamic Addresses Page contains the following fields Aging Interval secs Specifies the amount of time the MAC address remains in the Dynamic MAC Address table before it is timed out if no traffic fr...

Страница 139: ... and the device is updated To query the Dynamic MAC Address Table 1 Click Advanced Setup Forwarding Database Dynamic Addresses The Dynamic Addresses Page opens 2 Select a port MAC Address and VLAN ID 3 Select an Address Table Sort Key 4 Click The Dynamic MAC Address Table is queried and the results are displayed ...

Страница 140: ... and eliminating loops For more infor mation on configuring Classic STP see Defining Classic Spanning Tree Rapid STP Detects and uses network topologies that provide faster convergence of the spanning tree without creating forwarding loops For more information on configuring Rapid STP see Defining Rapid Span ning Tree Multiple STP Provides various load balancing scenarios For example if port A is ...

Страница 141: ...Specifies the STP mode that is enabled on the device The possible field values are Classic STP Enables Classic STP on the device This is the default value Rapid STP Enables Rapid STP on the device Multiple STP Enables Multiple STP on the device BPDU Handling Determines how BPDU packets are managed when STP is disabled on the port or device BPDUs are used to transmit spanning tree information The p...

Страница 142: ...elay 4 30 Specifies the device Forward Delay Time The Forward Delay Time is the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets The default is 10 seconds Bridge ID Identifies the Bridge priority and MAC address Root Bridge ID Identifies the Root Bridge priority and MAC address Root Port Indicates the port number that offers the lowest cost pat...

Страница 143: ...Indicates that STP is disabled on the port Fast Link Indicates if Fast Link is enabled on the port If Fast Link mode is enabled for a port the Port State is automatically placed in the Forwarding state when the port link is up Fast Link optimizes the STP protocol convergence STP convergence can take 30 60 seconds in large networks Root Guard Prevents devices outside the network core from being ass...

Страница 144: ... The priority value is determined in increments of 16 Designated Bridge ID Indicates the bridge priority and the MAC Address of the designated bridge Designated Port ID Indicates the selected port D Link priority and interface Designated Cost Indicates the cost of the port participating in the STP topology Ports with a lower cost are less likely to be blocked if STP detects loops Forward Transitio...

Страница 145: ...D Link DES 3010FA GA User Guide Page 144 4 Define the Fast Link Enable Root Guard Path Cost Default Path Cost and Priority fields 5 Click STP is enabled on the interface and the device is updated ...

Страница 146: ... Tree RSTP RSTP The RSTP Page opens Figure 88 RSTP Page The RSTP Page contains the following fields Interface Displays the port or LAG on which Rapid STP is enabled Role Displays the port role assigned by the STP algorithm to provide to STP paths The possible field val ues are Root Provides the lowest cost path to forward packets to the root switch Designated The port or LAG through which the desi...

Страница 147: ...igured to automatically establish a point to point link To establish communications over a point to point link the originating PPP first sends Link Control Protocol LCP packets to configure and test the data link After a link is established and optional facilities are negotiated as needed by the LCP the originating PPP sends Network Control Protocol NCP packets to select and configure one or more ...

Страница 148: ...e Defining Rapid Spanning Tree Page 147 Figure 89 RSTP Settings Page 3 Define the Interface Point to Point Admin Status and Activate Protocol Migration fields 4 Click RSTP is defined for the interface and the device is updated ...

Страница 149: ...t number that identifies the revision of the current MSTP configuration The revision number is required as part of the MSTP configuration The possible field range is 0 65535 Max Hops Specifies the total number of hops that occur in a specific region before the BPDU is discarded Once the BPDU is discarded the port information is aged out The possible field range is 1 40 The field default is 20 hops...

Страница 150: ...MSTP Instance Settings Page contains the following fields Instance ID Specifies the VLAN group to which the interface is assigned Included VLAN Maps the selected VLANs to the selected instance Each VLAN belongs to one instance Bridge Priority Specifies the selected spanning tree instance device priority The field range is 0 61440 Designated Root Bridge ID Indicates the ID of the bridge with the lo...

Страница 151: ...D Link DES 3010FA GA User Guide Page 150 Figure 92 VLAN Instance Configuration Table 3 Define the Instance ID field 4 Click The MSTP Instances are assigned and the device is updated ...

Страница 152: ...configured on the device Possible field range is 0 15 Interface Displays the interface for which the MSTP settings are displayed The possible field values are Port Specifies the port for which the MSTP settings are displayed LAG Specifies the LAG for which the MSTP settings are displayed MSTP Specifies whether or not MSTP is enable on the interface The possible field values are Enabled Enables MST...

Страница 153: ... by a point to point link or when a LAN has two or more connections connected to a shared segment Disabled Indicates the port is not participating in the Spanning Tree Mode Indicates the STP mode by which STP is enabled on the device The possible field values are Classic STP Classic STP is enabled on the device This is the default value Rapid STP Rapid STP is enabled on the device Multiple STP Mul...

Страница 154: ... Spanning Tree Defining Multiple Spanning Tree Page 153 Figure 94 MSTP Interface Table 3 Define the Port Priority and the Path Cost fields 4 Click The MSTP interface settings are defined and the device is updated ...

Страница 155: ...010FA GA User Guide Page 154 Section 13 Configuring Multicast Forwarding This section contains the following topics Defining IGMP Snooping Defining Multicast Bridging Groups Defining Multicast Forward All Settings ...

Страница 156: ...rs This results in the creation of the Multicast filtering database To enable IGMP Snooping 1 Click Multicast Support IGMP The IGMP Snooping Page opens Figure 95 IGMP Snooping Page The IGMP Snooping Page contains the following fields Enable IGMP Snooping Status Indicates if IGMP Snooping is enabled on the device IGMP Snooping can be enabled only if Bridge Multicast Filtering is enabled The possibl...

Страница 157: ... sage before it times out The default value is 300 seconds Leave Timeout Indicates the amount of time the host waits after requesting to leave the IGMP group and not receiving a Join message from another station before timing out If a Leave Timeout occurs the switch notifies the Multicast device to stop sending traffic The Leave Timeout value is either user defined or an immediate leave value The ...

Страница 158: ...ticast groups 1 Click Advanced Setup Multicast Support Bridge Multicast Multicast Group The Multicast Group Page opens Figure 97 Multicast Group Page The Multicast Group Page contains the following information Enables Bridge Multicast Filtering Indicate if bridge Multicast filtering is enabled on the device The pos sible field values are Checked Enables Multicast filtering on the device Unchecked ...

Страница 159: ...port settings 6 Click The Multicast group is defined and the device is updated Table 14 IGMP Port LAG Members Table Control Settings Port Control Definition D Dynamically joins ports LAG to the Multicast group in the Current Row S Attaches the port to the Multicast group as static member in the Static Row The port LAG has joined the Multicast group statically in the Current Row F Forbidden ports a...

Страница 160: ...anced Setup Multicast Support Bridge Multicast Multicast Forward All The Multicast Forward All Page opens Figure 99 Multicast Forward All Page The Multicast Forward All Page contains the following fields VLAN ID DIsplays the VLAN for which Multicast parameters are displayed Ports Ports that can be added to a Multicast service The following table summarizes the Multicast settings which can be assig...

Страница 161: ...x 3 Define the VLAN port settings 4 Click The Multicast forward all settings are defined and the device is updated F Forbidden Blank The port is not attached to a Multicast router or switch Table 15 Bridge Multicast Forward All Router Port Control Settings Table Port Control Definition ...

Страница 162: ...for SNMPv3 including Authentication Provides data integrity and data origin authentication Privacy Protects against the disclosure of message content Cipher Block Chaining CBC is used for encryption Either authentication is enabled on a SNMP message or both authentication and privacy are enabled on a SNMP message However privacy cannot be enabled without authentication Timeliness Protects against ...

Страница 163: ...fications To define the SNMP security parameters 1 Click System SNMP Security Global Parameters The SNMP Security Global Parameters Page opens Figure 100 SNMP Security Global Parameters Page The SNMP Security Global Parameters Page contains the following fields Local Engine ID Displays the local device Engine ID The field value is a hexadecimal string Each byte in hexadecimal character strings is ...

Страница 164: ...vice MAC address and is defined per standard as First 4 octets first bit 1 the rest is IANA Enterprise number Fifth octet Set to 3 to indicate the MAC address that follows Last 6 octets MAC address of the device 2 Define the Local Engine ID and Use Default fields 3 Click The SNMP global security parameters are set and the device is updated ...

Страница 165: ... The SNMP Security Views Page opens Figure 101 SNMP Security Views Page The SNMP Security Views Page contains the following fields View Name Displays the user defined views The view name can contain a maximum of 30 alphanumeric characters Object ID Subtree Displays the device feature OID included in or excluded from the selected SNMP view View Type Indicates whether the defined OID branch will be ...

Страница 166: ...g SNMP Configuring SNMP Security Page 165 Figure 102 Add SNMP View Page 3 Define the View Name field 4 Define the view using and 5 Define the View Type field 6 Click The view is defined and the device is updated ...

Страница 167: ...e The SNMP Group Profile Page contains the following fields Group Name Displays the user defined group to which access control rules are applied The field range is up to 30 characters Security Model Defines the SNMP version attached to the group The possible field values are SNMPv1 SNMPv1 is defined for the group SNMPv2c SNMPv2c is defined for the group SNMPv3 SNMPv3 is defined for the group Secur...

Страница 168: ...anges can be made to the assigned SNMP view Notify Sends traps for the assigned SNMP view Remove Removes SNMP groups The possible field values are Checked Removes the selected SNMP group Unchecked Maintains the SNMP groups 2 Click The Add SNMP Group Profile Page opens Figure 104 Add SNMP Group Profile Page 3 Define the Group Name Security Model Security Level and Operation fields 4 Click The SNMP ...

Страница 169: ...10FA GA User Guide Page 168 Figure 105 SNMP Group Profile Settings Page 3 Modify the Group Name Security Model Security Level and Operation fields 4 Click The SNMP group profile is modified and the device is updated ...

Страница 170: ...Engine ID Displays either the local or remote SNMP entity to which the user is connected Changing or removing the local SNMP Engine ID deletes the SNMPv3 user database Local Indicates that the user is connected to a local SNMP entity Remote Indicates that the user is connected to a remote SNMP entity If the Engine ID is defined remote devices receive inform messages Authentication Displays the met...

Страница 171: ... 16 bytes are defined If both privacy and authentication are required 32 bytes are defined Each byte in hexadecimal character strings is two hexadecimal digits Each byte can be separated by a period or a colon Privacy Key Defines the privacy key LSB If only authentication is required 20 bytes are defined If both privacy and authentication are required 36 bytes are defined Each byte in hexadecimal ...

Страница 172: ...rity Page 171 Figure 108 SNMP Group Membership Settings Page 3 Modify the Group Name Engine ID Authentication Method Password Authentication Key and Privacy Key fields 4 Click The SNMP group membership is modified and the device is updated ...

Страница 173: ... the following tables Basic Table Advanced Table SNMP Communities Basic Table The SNMP Communities Basic Table contains the following fields Management Station Displays the management station IP address for which the basic SNMP community is defined Community String Defines the password used to authenticate the management station to the device Access Mode Defines the access rights of the community ...

Страница 174: ... which the advanced SNMP com munity is defined Community String Defines the password used to authenticate the management station to the device Group Name Defines advanced SNMP community group names Remove Removes a community The possible field values are Checked Removes the selected SNMP communities Unchecked Maintains the SNMP communities 2 Click The Add SNMP Community Page opens Figure 110 Add S...

Страница 175: ...10FA GA User Guide Page 174 Figure 111 SNMP Community Settings Page 3 Modify the SNMP Management Station Community String and Basic or Advanced fields 4 Click The SNMP community is modified and the device is updated ...

Страница 176: ...175 Configuring SNMP Notifications This section contains information for configuring SNMP Notifications and contains the following topics Defining SNMP Notification Global Parameters Defining SNMP Notification Filters Defining SNMP Notification Recipients ...

Страница 177: ...e SNMP Notifications Specifies whether the device can send SNMP notifications The possible field values are Enable Enables SNMP notifications Disable Disables SNMP notifications Enable Authentication Notifications Specifies whether SNMP authentication failure notification is enabled on the device The possible field values are Enable Enables the device to send authentication failure notifications D...

Страница 178: ...The SNMP Notification Filter Page contains the following fields Filter Name Contains a list of user defined notification filters Object ID Subtree Displays the OID for which notifications are sent or blocked If a filter is attached to an OID traps or informs are generated and sent to the trap recipients OIDs are selected from either the Select from field or the Object ID field Filter Type Indicate...

Страница 179: ...A GA User Guide Page 178 Figure 114 Add SNMP Notification Filter Page 3 Define the Filter Name New Object Identifier Tree and Filter Type fields 4 Click The SNMP notification filter is defined and the device is updated ...

Страница 180: ... filters provide the following services Identifying Management Trap Targets Trap Filtering Selecting Trap Generation Parameters Providing Access Control Checks To define SNMP notification filters 1 Click System SNMP Notification Notification Receiver The SNMP Notification Receiver Page opens Figure 115 SNMP Notification Receiver Page The SNMP Notification Receiver Page is divided into the followin...

Страница 181: ...lues are SNMP V1 Indicates that SNMP Version 1 traps are sent SNMP V2c Indicates that SNMP Version 2 traps are sent UDP Port Displays the UDP port used to send notifications The default is 162 Filter Name Indicates if the SNMP filter for which the SNMP Notification filter is defined Timeout Indicates the amount of time in seconds the device waits before re sending informs The default is 15 seconds...

Страница 182: ... that the packet is neither authenticated nor encrypted Authentication Indicates that the packet is authenticated UDP Port The UDP port used to send notifications The field range is 1 65535 The default is 162 Filter Name Includes or excludes SNMP filters Timeout The amount of time seconds the device waits before resending informs The field range is 1 300 The default is 10 seconds Retries The amoun...

Страница 183: ...ated To modify SNMP notification recipients 1 Click System SNMP Notification Notification Receiver The SNMP Notification Receiver Page opens 2 Click The SNMP Notification Receiver Settings Page opens Figure 117 SNMP Notification Receiver Settings Page 3 Modify the Notification Type SNMPV1 v2c or SNMPv3 UPD Port Filter Name TImeout and Retries fields 4 Click The SNMP notification recipients are def...

Страница 184: ...ket field values such as VLAN Priority Tag VPT and DiffServ Code Point DSCP VPT Classification Information VLAN Priority Tags VPT are used to classify packets by mapping packets to one of the egress queues VPT to queue assignments are user definable Packets arriving untagged are assigned a default VPT value which is set on a per port basis The assigned VPT is used to map the packet to the egress q...

Страница 185: ... before FTP or e mail SMTP traffic Weighted Round Robin Ensures that a single application does not dominate the device forwarding capacity Weighted Round Robin WRR forwards entire queues in a round robin order All queues can partic ipate in WRR expect SP queues SP queues are serviced before WRR queues If the traffic flow is minimal and SP queues do not occupy the whole bandwidth allocated to a por...

Страница 186: ...General Settings Page contains fields for enabling or disabling CoS In addition the Trust mode can be selected The Trust mode relies on predefined fields within the packet to determine the egress queue settings To define the QoS settings 1 Click Basic Setup Quality of Service General Settings General Settings The QoS General Settings Page opens Figure 118 QoS General Settings Page The QoS General ...

Страница 187: ... field is mapped according to the relevant trust modes table Traffic not containing a predefined packet field is mapped to best effort The possible Trust Mode field values are CoS Classifies traffic based on the CoS tag value DSCP Classifies traffic based on the DSCP tag value 2 Select Enable in the Quality of Service field 3 Define the Trust Mode field 4 Click Quality of Service is enabled on the...

Страница 188: ...s Figure 119 Bandwidth Settings Page The Bandwidth Settings Page displays the following fields Status Indicates if rate limiting is enabled on the interface The possible field values are Enable Indicates that rate limiting is enabled on the interface Disable Indicates that rate limiting is disabled on the interface Rate Limit Configures the rate to which traffic is limited The range is 70 285 000 ...

Страница 189: ...S Interface Page contains the following fields Interface The port or LAG for which the default CoS policy is defined Trust Mode Indicates whether or not Trust Mode is enabled on the interface The possible field values are Not enabled Trust mode is not enabled on the interface Enabled Trust mode is enabled on the interface Default CoS for Incoming Traffic The default CoS value for incoming packets ...

Страница 190: ...vice Defining Bandwidth Settings Page 189 Figure 121 Edit Interface Settings Page 3 Define the Disable Trust Mode Default CoS and Restore Defaults fields 4 Click The QoS Interface settings are modified and the device is updated ...

Страница 191: ...ntains the following fields Strict Priority Specifies whether traffic scheduling is based strictly on the queue priority WRR Assigns WRR weights to queues This field is enabled only for queues in WRR queue mode If a queue is set to 0 weight the queue is not operational and is effectively closed Each queue has a weight range queues 1 3 have the range 0 255 and queue 4 has the range 1 255 2 Select S...

Страница 192: ... Queue Mapping CoS to Queue The CoS to Queue Page opens Figure 123 CoS to Queue Page The CoS to Queue Page contains the following fields Class of Service Specifies the CoS priority tag values where zero is the lowest and 7 is the highest Queue Defines the traffic forwarding queue to which the CoS priority is mapped Four traffic priority queues are supported Restore Defaults Restores the device fac...

Страница 193: ...uality of Service Queue Mapping DSCP to Queue The DSCP to Queue Page opens Figure 124 DSCP to Queue Page The DSCP to Queue Page contains the following fields DSCP In Displays the incoming packet s DSCP value Queue Specifies the traffic forwarding queue to which the DSCP priority is mapped Four traffic priority queues are supported 2 Define the queue number in the Queue field next to the required D...

Страница 194: ...16 Managing System Files File maintenance includes both configuration file management as well as device access This section contains the following topics File Management Overview Downloading System Files Uploading System Files Copying Files ...

Страница 195: ...n the Run ning Configuration file are lost During the startup process all commands in the Startup file are copied to the Running Configuration File and applied to the device During the session all new commands entered are added to the commands existing in the Running Configuration file Commands are not overwritten To update the Startup file before powering down the device the Running Configuration...

Страница 196: ...age The File Download Page is divided into the following sections Firmware Download Configuration Download Firmware Download The Firmware Download section contains the following fields Firmware Download Indicates that the download is for firmware If Firmware Download is selected the Configuration Download fields are grayed out TFTP Server IP Address Specifies the TFTP Server IP Address from which ...

Страница 197: ...ress Specifies the TFTP Server IP Address from which the configuration files are downloaded Source File Name Specifies the configuration files to be downloaded Destination File Specifies the destination file to which to the configuration file is downloaded The possi ble field values are Running Configuration Downloads commands into the Running Configuration file Startup Configuration Downloads the...

Страница 198: ...ile Upload Page The File Upload Page is divided into the following sections Software Image Upload Configuration Upload Upload Type The Upload Type section contains the following fields Firmware Upload Specifies that the software image file is uploaded If Firmware Upload is selected the Configuration Upload fields are grayed out Configuration Upload Specifies that the Configuration file is uploaded...

Страница 199: ...ollowing fields TFTP Server IP Address Specifies the TFTP Server IP Address to which the Configuration file is uploaded Destination File Name Specifies the file name to which the Startup Configuration file is uploaded Transfer file name Specifies the Configuration file name that is uploaded The possible field values are Running Configuration Uploads the Running Configuration file Startup Configura...

Страница 200: ...nning Configuration file is selected Destination Indicates the Startup Configuration file is selected Restore Configuration Factory Defaults Resets the Configuration file to the factory defaults The factory defaults are reset after the device is reset When unselected the device maintains the current Configu ration file 2 Select Copy Configuration 3 Click The file is copied Restoring the Default Co...

Страница 201: ... based on their urgency or relevancy Each message severity determines the set of event logging devices that are sent per each event message The following table lists the log severity levels This section includes the following topics Enabling System Logs Viewing the Device Memory Logs Viewing the FLASH Logs Defining Servers Log Parameters Table 18 System Log Severity Levels Severity Level Message E...

Страница 202: ...t The possible field values are Checked Enables device logs Unchecked Disables device logs Severity The following are the available log severity levels Emergency The highest warning level If the device is down or not functioning properly an emergency log message is saved to the specified logging location Alert The second highest warning level An alert log is saved if there is a serious device malf...

Страница 203: ...on are selected automatically Console Defines the minimum severity level from which logs are sent to the console RAM Logs Defines the minimum severity level from which logs are sent to the RAM Log kept in RAM Cache Log File Defines the minimum severity level from which logs are sent to the log file kept in FLASH memory 2 Define the Logging Enable and Severity fields 3 Click The global log paramete...

Страница 204: ...g Page opens Figure 129 Device Memory Log Page The Device Memory Log Pagecontains the following fields Log Index Displays the log number Log Time Displays the time at which the log was generated Severity Displays the log severity Description Displays the log message text Clearing Device Memory Logs Message logs can be cleared from the Device Memory Log Page To clear message logs 1 Click System Sys...

Страница 205: ...the message logs Click System Syslog Flash The Syslog Flash Page opens Figure 130 Syslog FLASH Page The Syslog Flash Page contains the following fields Log Index Displays the log number Log Time Displays the time at which the log was generated Severity Displays the log severity Description Displays the log message text Clearing FLASH Logs Message logs can be cleared from the Syslog Flash Page To c...

Страница 206: ... are sent to the remote server Only one facility can be assigned to a single server If a second facility level is assigned the first facility is overridden All applica tions defined for a device utilize the same facility on a server The field default is Local 7 The possible field values are Local 0 Local 7 Description A user defined server description Minimum Severity Indicates the minimum severit...

Страница 207: ...GA User Guide Page 206 Section 18 Managing Device Diagnostics This section contains the following topics Configuring Port Mirroring Viewing Integrated Cable Tests Viewing Optical Transceivers Viewing the CPU Utilization ...

Страница 208: ...e opens Figure 132 Port Mirroring Page The Port Mirroring Page contains the following fields Destination Port Defines the port number to which port traffic is copied Transmit Packets Defines the how the packets are mirrored The possible field values are Untagged Mirrors packets as untagged VLAN packets This is the default value Tagged Mirrors packets as tagged VLAN packets Source Port Indicates th...

Страница 209: ...lick The Add Port Mirroring Page opens Figure 133 Add Port Mirroring Page 3 Select a port in the Source Port field 4 Select a port type in the Type field 5 Click The port mirroring session is defined and the device is updated To edit the port mirroring settings 1 Click System Diagnostics Port Mirroring The Port Mirroring Page opens 2 Click The Port Mirroring Settings Page opens Figure 134 Port Mir...

Страница 210: ...To test cables 1 Click System Diagnostics Copper Cable The Cable Tests Page opens Figure 135 Cable Tests Page The Cable Tests Page contains the following fields Port Specifies the port to which the cable is connected Test Result Displays the cable test results Possible values are No Cable Indicates that a cable is not connected to the port Open Cable Indicates that a cable is connected on only one...

Страница 211: ...ains the field Port Displays the port IP address on which the cable is tested Temperature Displays the temperature C at which the cable is operating Voltage Displays the voltage at which the cable is operating Current Displays the current at which the cable is operating Output Power Indicates the rate at which the output power is transmitted Input Power Indicates the rate at which the input power ...

Страница 212: ...on Click System Diagnostics CPU Utilization The CPU Utilization Page opens Figure 137 CPU Utilization Page The CPU Utilization Page contains the following fields Refresh Rate Amount of time that passes before the statistics are refreshed Usage Percentages Indicates the percentage of the CPU s resources consumed by the device Time Indicates the time in 15 second intervals the usage samples are take...

Страница 213: ...nk DES 3010FA GA User Guide Page 212 Section 19 Configuring System Time This section provides information for configuring system time parameters including Configuring Daylight Savings Time Configuring SNTP ...

Страница 214: ... first Sunday in April until the last Sunday of October Daylight Saving Time is usually regulated by provincial and territorial governments Exceptions may exist in certain municipalities Cuba From the last Sunday of March to the last Sunday of October Cyprus From the last weekend of March until the last weekend of October Denmark From the last weekend of March until the last weekend of October Egy...

Страница 215: ...e last weekend of October Russia From the last weekend of March until the last weekend of October Serbia From the last weekend of March until the last weekend of October Slovak Republic From the last weekend of March until the last weekend of October South Africa South Africa does not use Daylight Saving Time Spain From the last weekend of March until the last weekend of October Sweden From the la...

Страница 216: ... the device s location There are two types of daylight settings either by a specific date in a particular year or a recurring setting irrespective of the year For a specific setting in a particular year complete the Daylight Savings area and for a recurring setting complete the Recurring area The possible field values are USA Enables switching to DST at 2 00 a m on the first Sunday of April and re...

Страница 217: ... and Europe From The time that DST begins each year In the example DST begins locally every first Sunday in April at midnight The possible field values are Day The day of the week from which DST begins every year The possible field range is Sunday Saturday Week The week within the month from which DST begins every year The possible field range is 1 5 Month The month of the year in which DST begins...

Страница 218: ...ed by the following time levels T1 The time at which the original request was sent by the client T2 The time at which the original request was received by the server T3 The time at which the server sent the client a reply T4 The time at which the client received the server s reply Polling for Unicast Time Information Polling for Unicast information is used for polling a server for which the IP add...

Страница 219: ...D Link DES 3010FA GA User Guide Page 218 This section contains the following topics Defining SNTP Global Settings Defining SNTP Authentication Defining SNTP Servers Defining SNTP Interface Settings ...

Страница 220: ...n the selected interfaces The possible values are Enable Enables the device to receive Broadcast server updates Disable Disables the device from receiving Broadcast server updates Enable Receive Anycast Servers Updates Defines whether or not the device polls the SNTP server for Anycast server time information If both the Enable Receive Anycast Servers Update and the Enable Receive Broadcast Server...

Страница 221: ... Servers Defines whether or not the device sends SNTP Unicast forwarding informa tion to the SNTP server The possible values are Enable Enables the device to receive Poll Unicast server updates Disable Disables the device from receiving Poll Unicast server updates 2 Define the Poll Interval Enable Receive Broadcast Servers Update Enable Receive Anycast Servers Update Enable Receive Unicast Servers...

Страница 222: ...ticates SNTP sessions between the device and SNTP server Unchecked Disables authenticating SNTP sessions between the device and SNTP server Encryption Key ID Indicates if the encryption key identification is used to authenticate the SNTP server and device The field value is up to 4294967295 Authentication Key Indicates the key used for authentication Trusted Key Indicates the encryption key used U...

Страница 223: ...TP authentication parameters 1 Click The Add SNTP Authentication page opens Figure 141 Add SNTP Authentication 2 Define the Encryption Key ID Authentication Key and Trusted Key fields 3 Click The SNTP Authentication Key is added and the device is updated ...

Страница 224: ...dicates whether or not the device polls the selected SNTP server for system time informa tion Encryption Key ID Displays the encryption key identification used to communicate between the SNTP server and device The field range is 1 4294967295 Preference Status Displays the SNTP server operating status Last Response Displays the last time a response was received from the SNTP server Offset Indicates...

Страница 225: ...ser Guide Page 224 2 Click The Add SNTP Server Page opens Figure 143 Add SNTP Server Page 3 Define the SNTP Server Enable Poll Interval and Encryption Key ID fields 4 Click The SNTP Server is added and the device is updated ...

Страница 226: ...ngs Page contains the following fields Interface Indicates the interface on which SNTP can be enabled The possible field values are Port Indicates the specific port number on which SNTP is enabled LAG Indicates the specific LAG number on which SNTP is enabled VLAN Indicates the specific VLAN number on which SNTP is enabled Receive Servers Updates Enables the server to receive or not receive update...

Страница 227: ...D Link DES 3010FA GA User Guide Page 226 Figure 145 Add SNTP Interface Page 3 Define the Interface and Receive Server Updates fields 4 Click The SNTP interface is added and the device is updated ...

Страница 228: ... RMON interfaces GVRP EAP and Etherlike statistics This section contains the following topics Viewing Interface Statistics Managing RMON Statistics Viewing Interface Statistics This section contains the following topics Viewing Device Interface Statistics Viewing Etherlike Statistics Viewing GVRP Statistics Viewing EAP Statistics ...

Страница 229: ... before the interface statistics are refreshed The possible field values are 15 Sec Indicates that the Interface statistics are refreshed every 15 seconds 30 Sec Indicates that the Interface statistics are refreshed every 30 seconds 60 Sec Indicates that the Interface statistics are refreshed every 60 seconds No Refresh Indicates that the Interface statistics are not refreshed Receive Statistics T...

Страница 230: ...e number of Broadcast packets transmitted from the selected interface 2 Select an interface in the Interface field The interface statistics are displayed Resetting Interface Statistics Counters 1 Open the Interface Statistics Page 2 Click The interface statistics counters are cleared Viewing Etherlike Statistics The Etherlike Statistics Page contains interface statistics To view Etherlike Statisti...

Страница 231: ...nterface Single Collision Frames Displays the number of single collision frames received on the selected interface Late Collisions Displays the number of late collision frames received on the selected interface Excessive Collisions Displays the number of excessive collisions received on the selected interface Internal MAC Transmit Errors Displays the number of internal MAC transmit errors on the s...

Страница 232: ...tes the amount of time that passes before the GVRP statistics are refreshed The pos sible field values are 15 Sec Indicates that the GVRP statistics are refreshed every 15 seconds 30 Sec Indicates that the GVRP statistics are refreshed every 30 seconds 60 Sec Indicates that the GVRP statistics are refreshed every 60 seconds No Refresh Indicates that the GVRP statistics are not refreshed Join Empty...

Страница 233: ...P statistics counters are cleared Viewing EAP Statistics The EAP Statistics Page contains information about EAP packets received on a specific port To view the EAP Statistics Click Advanced Setup Interface Statistics EAP The EAP Statistics Page opens Figure 149 EAP Statistics Page The EAP Statistics Page contains the following fields Port Indicates the port which is polled for statistics Refresh R...

Страница 234: ...rt Request ID Frames Transmit Indicates the number of EAP Req Id frames transmitted via the port Request Frames Transmit Indicates the number of EAP Request frames transmitted via the port Invalid Frames Receive Indicates the number of unrecognized EAPOL frames that have been received by on this port Length Error Frames Receive Indicates the number of EAPOL frames with an invalid Packet Body Lengt...

Страница 235: ...fresh Rate Defines the amount of time that passes before the interface statistics are refreshed The possible field values are 15 Sec Indicates that the RMON statistics are refreshed every 15 seconds 30 Sec Indicates that the RMON statistics are refreshed every 30 seconds 60 Sec Indicates that the RMON statistics are refreshed every 60 seconds Drop Events Displays the number of dropped events that ...

Страница 236: ... last refreshed Fragments Displays the number of fragments packets with less than 64 octets excluding framing bits but including FCS octets received on the interface since the device was last refreshed Jabbers Displays the total number of received packets that were longer than 1518 octets This number excludes frame bits but includes FCS octets that had either a bad Frame Check Sequence FCS with an...

Страница 237: ...igure 151 RMON History Control Page The RMON History Control Page contains the following fields History Entry No Displays the entry number for the History Control Table page Source Interface Displays the interface from which the history samples were taken The possible field values are Port Specifies the port from which the RMON information was taken LAG Specifies the port from which the RMON infor...

Страница 238: ...oves History Control entries The possible field values are Checked Removes the selected History Control entry Unchecked Maintains the current History Control entries 2 Click The RMON History Control Settings Page opens Figure 152 RMON History Control Settings Page 3 Complete the History Entry No Source Interface Owner Samples Requested and Current Sampling fields 4 Click The entry is added to the ...

Страница 239: ...Number Indicates the sample number from which the statistics were taken Drop Events Displays the number of dropped events that have occurred on the interface since the device was last refreshed Received Bytes Octets Displays the number of octets received on the interface since the device was last refreshed This number includes bad packets and FCS octets but excludes framing bits Received Packets D...

Страница 240: ...of undersized packets less than 64 octets received on the interface since the device was last refreshed Oversize Packets Displays the number of oversized packets over 1518 octets received on the interface since the device was last refreshed Fragments Displays the number of fragments packets with less than 64 octets excluding framing bits but including FCS octets received on the interface since the...

Страница 241: ...llisions Displays the number of collisions received on the interface since the device was last refreshed Utilization Displays the percentage of the interface utilized 2 Select an entry in the History Entry field The Statistics are displayed Configuring RMON Events This section includes the following topics Defining RMON Events Control Viewing the RMON Events Logs Defining RMON Events Control The R...

Страница 242: ...escribes the event type Possible values are Log Indicates that the event is a log entry Trap Indicates that the event is a trap Log and Trap Indicates that the event is both a log entry and a trap None Indicates that no event occurred Time Displays the time that the event occurred Owner Displays the device or user that defined the event Remove Removes a RMON event The possible field values are Che...

Страница 243: ...s Click Advanced Setup RMON Events Events Logs The RMON Events Logs Page opens Figure 155 RMON Events Logs Page The RMON Events Logs Page contains the following fields Event Displays the RMON Events Log entry number Log No Displays the log number Log Time Displays the time when the log entry was entered Description Displays the log entry description ...

Страница 244: ...led value from the current value The difference in the values is compared to the threshold Absolute Compares the values directly with the thresholds at the end of the sampling interval Rising Threshold Displays the rising counter value that triggers the rising threshold alarm The rising threshold is presented on top of the graph bars Each monitored variable is designated a color Rising Event Displ...

Страница 245: ...erval Defines the alarm interval time in seconds Owner Displays the device or user that defined the alarm Remove Removes the RMON Alarms Table entry 2 Click The RMON Alarms Definition Page opens Figure 157 RMON Alarms Definition Page 3 Complete Sample Type Rising Threshold Rising Event Falling Threshold Falling Event Startup Alarm Interval and Owner fields 4 Click The RMON alarm is added and the d...

Страница 246: ...se when installing the and how to resolve these issue This section includes the following topics Problem Management Provides information about problem management with DES 3010FA GA Troubleshooting Solutions Provides a list of troubleshooting issues and solutions for using DES 3010FA GA ...

Страница 247: ... open Lost password Problems Possible Cause Solution Cannot connect to man agement using RS 232 serial connection Be sure the terminal emulator program is set to VT 100 compatible 9600 baud rate no parity 8 data bits and one stop bit Use the included cable or be sure that the pin out complies with a standard null modem cable Cannot connect to switch management using Telnet HTTP SNMP etc Be sure th...

Страница 248: ...tion with IP protocol Replace the cable Replace the module Replace the module Erase the connection and reconfigure the port Device is in a reboot loop Software fault Download and install a working or previous software version from the console No connection and the port LED is off Incorrect ethernet cable e g crossed rather than straight cable or vice versa split pair incorrect twisting of pairs Fi...

Страница 249: ... message is displayed Console reload Are you sure you want to reboot the system y n n 2 Enter Y The device reboots After the POST when the text Autoboot in 2 seconds press RETURN or Esc to abort and enter prom is displayed press Enter The Startup Menu is displayed 1 Download software 2 Erase flash file 3 Erase flash sectors 4 Password Recovery Procedure 5 Enter Diagnostic Mode 6 Back 3 Enter 4 wit...

Страница 250: ...tware updates and user documentation can be found on the D Link website D Link provides free technical support for customers within the United States and within Canada for the warranty duration For more information on locating the D Link office in your region see International Offices ...

Страница 251: ...D Link DES 3010FA GA User Guide Page 250 ...

Страница 252: ...Contacting D Link Technical Support Page 251 ...

Страница 253: ...D Link DES 3010FA GA User Guide Page 252 ...

Страница 254: ...Contacting D Link Technical Support Page 253 ...

Страница 255: ...D Link DES 3010FA GA User Guide Page 254 ...

Страница 256: ...Contacting D Link Technical Support Page 255 ...

Страница 257: ...D Link DES 3010FA GA User Guide Page 256 ...

Страница 258: ...Contacting D Link Technical Support Page 257 ...

Страница 259: ...D Link DES 3010FA GA User Guide Page 258 ...

Страница 260: ...Contacting D Link Technical Support Page 259 ...

Страница 261: ...D Link DES 3010FA GA User Guide Page 260 ...

Страница 262: ...Contacting D Link Technical Support Page 261 ...

Страница 263: ...D Link DES 3010FA GA User Guide Page 262 ...

Страница 264: ...Contacting D Link Technical Support Page 263 ...

Страница 265: ...D Link DES 3010FA GA User Guide Page 264 ...

Страница 266: ...Contacting D Link Technical Support Page 265 ...

Страница 267: ...D Link DES 3010FA GA User Guide Page 266 ...

Страница 268: ...Contacting D Link Technical Support Page 267 ...

Страница 269: ...D Link DES 3010FA GA User Guide Page 268 ...

Страница 270: ...Contacting D Link Technical Support Page 269 ...

Страница 271: ...D Link DES 3010FA GA User Guide Page 270 ...

Страница 272: ...Contacting D Link Technical Support Page 271 ...

Страница 273: ...D Link DES 3010FA GA User Guide Page 272 ...

Страница 274: ...Contacting D Link Technical Support Page 273 ...

Страница 275: ...D Link DES 3010FA GA User Guide Page 274 ...

Страница 276: ...Contacting D Link Technical Support Page 275 ...

Страница 277: ...ardware will be refunded by D Link upon return to D Link of the defective Hardware All Hardware or part thereof that is replaced by D Link or for which the purchase price is refunded shall become the property of D Link upon replacement or refund Limited Software Warranty D Link warrants that the software portion of the product Software will substantially conform to D Link s then current functional...

Страница 278: ...l be prepaid by D Link if you use an address in the United States otherwise we will ship the product to you freight collect Expedited shipping is available upon request and provided shipping charges are prepaid by the customer D Link may reject or return any product that is not packaged and shipped in strict compliance with the foregoing requirements or for which an RMA number is not visible from ...

Страница 279: ...istered trademarks are the property of their respective owners Copyright Statement No part of this publication or documentation accompanying this product may be reproduced in any form or by any means or used to make any derivative such as translation transformation or adaptation without permission from D Link Corporation D Link Systems Inc as stipulated by the United States Copyright Act of 1976 a...

Страница 280: ... 279 Product Registration D Link products can be registered online at http support dlink com register Product registration is entirely voluntary and failure to complete or return this form will not diminish your warranty rights ...

Страница 281: ...ffnock Avenue North Ryde NSW 2113 Australia TEL 61 2 8899 1800 FAX 61 2 8899 1868 URL www dlink com au India D Link House Kurla Bandra Complex Road Off CST Road Santacruz East Mumbai 400098 India TEL 91 022 26526696 56902210 FAX 91 022 26528914 URL www dlink co in Middle East Dubai P O Box 500376 Office No 103 Building 3 Dubai Internet City Dubai United Arab Emirates Tel 971 4 3916480 Fax 971 4 39...

Отзывы:

Нет отзывов

Похожие инструкции для 3010F - DES Switch

DGS-1024D - Switch

Бренд: D-Link Страницы: 16

DGS-1016D - Switch

Бренд: D-Link Страницы: 44

DES-6000 Series

Бренд: D-Link Страницы: 3

DES-5024 - Switch

Бренд: D-Link Страницы: 2

DES-3828 - xStack Switch - Stackable

Бренд: D-Link Страницы: 3

Бренд: D-Link Страницы: 192

Бренд: D-Link Страницы: 9

Бренд: D-Link Страницы: 110

Бренд: D-Link Страницы: 10

Бренд: D-Link Страницы: 17

Бренд: D-Link Страницы: 4

Бренд: D-Link Страницы: 9

Бренд: D-Link Страницы: 4

DGS-105 - Switch

Бренд: D-Link Страницы: 4

Бренд: D-Link Страницы: 2

Бренд: D-Link Страницы: 2

Бренд: H3C Страницы: 55

Бренд: H3C Страницы: 111

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды