EtherWAN EX72129A Скачать руководство пользователя страница 194 | Manualshive

Страница: 194 / 297

background image

194

EtherWAN Managed Switch Users Guide

ACL (ACCESS CONTROL LIST)

This section applies only to specific models of EtherWAN Switches.

The settings in the ACL feature of the EtherWAN switch can be used to control which
packets are allowed to enter the switch (Packet Filtering), as well as to control the amount of
bandwidth that can be allocated for those packets (Bandwidth Policing).

General Overview

The ACL feature on the EtherWAN Managed Switch filters packets through access control
lists. Any combination of 4 different types of access control lists (called Access Lists) can be
used for this purpose. These four different types of access control lists are explained below:

IP Access List:

This Access List can b

e used to filter IP packets based on the packet’s source IP

address only.

IP Access List (Extended):

This Access List can be used to filter IP packets based on the packet’s source and
destination IP addresses, as well as the packet’s source and destination transport
layer protocol port numbers.

MAC Access List:

This Access List can be used to filter Ethernet packets based on the packet’s source
and destination Ethernet addresse

s as well as the packet’s Ethernet payload protocol

number (EtherType).

Layer 4:

This Access List, if it is used by itself, can only be used to classify IP packets based
only on the IP packet’s source and destination transport layer protocol port numbers.
Use this Access List in conjunction with another type of Access List mentioned
above, if you wish to filter any packet from entry to the switch that did not match the
classification rules from this Access Lists, otherwise all packets that did not match
the classification rules of this Access List will also be allowed entry into the switch.

Note:

You can use any combination of the above four types of Access Lists to

filter packets through the ACL feature, the switch will apply these Access Lists in the
order that they were configured. Since Access List filters allow packets through, there
must be at least one catch all deny rule that can deny all types of packets from entry
to the switch in the very last Access List, This will ensure that only packets specified
in the access list will be allowed.

«
...
192
193
194
195
196
...
»

Содержание EX72129A

Страница 1: ...1 EtherWAN Managed Switch Users Guide User s Guide FastFind Links Unpacking and Installation Computer Setup Setting the initial IP address EtherWAN Managed Switch V1 94 2 1...

Страница 2: ...r for resulting damage in connection with the information provided in this manual Registered Trademarks The following words and phrases are registered Trademarks of EtherWAN Systems Inc EtherOS Ethern...

Страница 3: ...Setup 20 Management Methods and Protocols 20 Default IP 21 Login Process and Default Credentials 21 Setting the initial IP address 22 Simple IP Addressing 22 CLI Command Usage 23 Navigating the CLI H...

Страница 4: ...ling HTTP and or HTTPS 41 Save Configuration Page 43 Save Configuration 43 Load Configuration 43 Backup Configuration 43 Restore Default 44 Auto Save 44 Save Configuration Page using the CLI 45 Saving...

Страница 5: ...Status 71 Rate Control 72 RMON Statistics 73 Per Port VLAN Activities 74 Port Security 75 Port Configuration Examples Using CLI Commands 76 Setting the Port Description 76 Enable or Disable a Port 76...

Страница 6: ...g 97 PoE Port Setting 98 PoE Scheduling 100 Switch Configuration Examples Using CLI Commands 102 Setting the Aging Time Value 102 Enabling Port Isolation 102 Enabling Block Multicast 103 Setting Storm...

Страница 7: ...Bridge Backup Root Bridge 132 Setting the MAX Age Forward Delay and Hello Timer 134 RSTP Port Setting Page 136 Spanning Tree Port Roles 136 Path Cost Port Priority 137 Point to Point Link 139 Edge Por...

Страница 8: ...Connecting two Ring Networks together 164 Advanced Setting 165 Advanced Bridge Configuration 165 Advanced Per Port Configuration 166 Configuring Spanning Tree Advanced Settings using CLI commands 167...

Страница 9: ...List 194 General Overview 194 Configuring ACL 195 ACL Policy Map 197 IP Access List 198 IP Access List Extended 199 Mac Access List 201 Layer 4 203 Bandwidth Limiting 204 Applying a Policy Map to a P...

Страница 10: ...ver 235 Enabling 802 1X on a Port 237 LLDP 239 LLDP General Settings 240 Enable Disable LLDP 240 Holdtime Multiplier 240 Global TLV Setting 241 LLDP Ports Settings 243 Enabling LLDP transmission for a...

Страница 11: ...ands 270 Network Time Protocol 278 Enabling NTP 278 Setting the NTP Server IP Address 278 Setting the Timezone 278 Setting the Polling Period 278 Manually Syncing Time 279 Daylight Savings Time Weekda...

Страница 12: ...gger Enable 68 Figure 21 Port Configuration 70 Figure 22 Port Status 71 Figure 23 Rate Control 72 Figure 24 RMON Page 73 Figure 25 Port VLAN Activities 74 Figure 26 Port Security 75 Figure 27 Bridging...

Страница 13: ...ion 152 Figure 62 VLAN Instance ID 152 Figure 63 Setting the MSTI Regional Root Bridge 153 Figure 64 Port Cost Priority 155 Figure 65 Port Instance Configuration 156 Figure 66 Port Instance Adding Por...

Страница 14: ...Name V1 V2c 225 Figure 106 Add User 226 Figure 107 SNMP v3 Settings 227 Figure 108 User name Access Mode 227 Figure 109 Auth Password 228 Figure 110 Privacy PassPhrase 228 Figure 111 Delete User 229...

Страница 15: ...r Mode Forwarding 268 Figure 133 Current Multicast Groups 269 Figure 134 NTP Settings 279 Figure 135 Daylight Savings Weekday Mode 280 Figure 136 Daylight Savings Date Mode 281 Figure 137 GMRP Global...

Страница 16: ...revision changes to this document Revision Document Version Date Description B Version 1 12 3 2014 Updated for Firmware version 1 94 2 Changes in this Revision Updated Setting the initial IP address S...

Страница 17: ...opriate precautions such as not opening or touching hazardous areas of the equipment could result in injury or death Typographic Conventions This guide also uses the following typographic conventions...

Страница 18: ...you will find the items listed below Please inspect the contents and report any apparent damage or missing items immediately to your authorized reseller This Managed Switch Product CD Quick Installati...

Страница 19: ...Ethernet cable of at least Category 5 rating is required to connect your computer to the switch The cable can be configured as straight through or crossover TFTP Server Software Trivial file transfer...

Страница 20: ...esults as described in that section The methods available to manage the EtherWAN Managed Switch include SSH Secure Shell CLI that is accessible over TCP IP networks which and is generally regarded as...

Страница 21: ...10 with a subnet mask of 255 255 0 0 Login Process and Default Credentials Once a compatible IP address has been assigned to the management computer the user is ready to log in to the switch To log in...

Страница 22: ...ing See Add an IP to the Management VLAN on page 179 Simple IP Addressing A new IP address can now be assigned to the switch From the System Information screen go to the left hand navigation menu 1 Cl...

Страница 23: ...g the CLI Hierarchy The CLI is organized into a hierarchy of levels Each level has a group of commands for a specific purpose For example to configure a setting for the VLAN server one would navigate...

Страница 24: ...EtherWAN Managed Switch to General configuration mode run the following commands from the CLI 1 enable 2 configure terminal Example switch_a enable switch_a configure terminal switch_a config MSTP Co...

Страница 25: ...le 1 configures 100mb port 1 switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if Example 2 configures VLAN ID 9 switch_a enable switch_a configure terminal swi...

Страница 26: ...enabled on the switch the Firmware version can be found using MIB II in the sysDesc property System Time o System time can be change using NTP MAC Address o The hardware MAC address of the Management...

Страница 27: ...27 EtherWAN Managed Switch Users Guide Figure 3 System Information...

Страница 28: ...Password see Figure 4 3 Use your mouse to place the cursor in the System Name text box 4 Replace the existing name with the name you want to assign to the switch 5 Click on the Update Setting button...

Страница 29: ...tname switch_a enable switch_a configure terminal switch_a config hostname switch_a switch_a config q switch_a Usage Example 2 Removing a Hostname switch_a enable switch_a configure terminal switch_a...

Страница 30: ...tting can be used when using a Static IP address To enable the default gateway 1 Use the dropdown box to enable the default gateway 2 Type in the default gateway in the Default Gateway text box 3 Clic...

Страница 31: ...31 EtherWAN Managed Switch Users Guide Figure 5 IP Address...

Страница 32: ...e most commonly used Network Prefixes are 8 Known as Class A Also known in dotted decimal as 255 0 0 0 16 Known as Class B Also known in dotted decimal as 255 255 0 0 24 Known as Class C Also known in...

Страница 33: ...D no ip default gateway Usage Example 1 Setting the Gateway switch_a enable switch_a configure terminal switch_a config ip default gateway 169 254 0 1 switch_a config q switch_a write memory Building...

Страница 34: ...no ip dns Usage Example switch_a enable switch_a configure terminal switch_a config ip dns 169 254 0 253 switch_a config q switch_a write memory Building configuration OK switch_a q switch_a Usage Exa...

Страница 35: ...get ip dhcp enable switch_a config if q switch_a config q switch_a write memory Building configuration OK switch_a q switch_a Enable Disable Static IP on a VLAN To set the IP address use the following...

Страница 36: ...able DHCP Client on VLAN2 switch_a enable switch_a configure terminal switch_a config interface vlan1 2 switch_a config if no ip address 169 254 1 11 switch_a config if q switch_a config q switch_a wr...

Страница 37: ...ger function As a safety precaution the configuration is not saved by default Rebooting the EtherWAN Managed Switch will restore the Web Console To save the configuration connect using the new IP addr...

Страница 38: ...d devices such as a computer and the EtherWAN Managed Switch SSH is disabled by default on the V1 94 2 EtherWAN Managed Switch To enable or disable SSH 1 Click the Enable or Disable radio button in th...

Страница 39: ...le 1 Enabling Telnet switch_a enable switch_a configure terminal switch_a config ip telnet switch_a config q switch_a write memory Building configuration OK switch_a q switch_a Usage Example 2 Disabli...

Страница 40: ...erminal switch_a config ip ssh switch_a config q switch_a write memory Building configuration OK switch_a q switch_a Usage Example 2 Disabling SSH switch_a enable switch_a configure terminal switch_a...

Страница 41: ...server no ip http server no ip http secure server Usage Example 1 Enabling HTTP switch_a enable switch_a configure terminal switch_a config ip http server switch_a config q switch_a write memory Buil...

Страница 42: ...itch_a config ip http secure server switch_a config q switch_a write memory Building configuration OK switch_a q switch_a Usage Example 4 Disabling HTTPS switch_a enable switch_a configure terminal sw...

Страница 43: ...s achieved using a TFTP server To load a configuration 1 Enter the IP address of your TFTP server in the TFTP Server text box 2 Enter the name of the configuration file in the FILE text box 3 Click on...

Страница 44: ...o flash If the saved configuration is the same as the running configuration then a save is not made The Auto Save interval is used to determine how often the running configuration is checked for chang...

Страница 45: ...onfiguration Mode CLI Command Syntax write memory Usage Example 1 Saving a Configuration switch_a enable switch_a write memory Building configuration OK switch_a q switch_a Restore Default Settings To...

Страница 46: ...Example Loading a Configuration switch_a enable switch_a install config file 169 254 1 100 file_name txt switch_a q switch_a Save Configuration to a TFTP Server To Save a Configuration to a TFTP serv...

Страница 47: ...ntax service auto config enable no service auto config enable service auto config interval number Usage Example 1 Enabling Auto Save and setting the interval switch_a enable switch_a service auto conf...

Страница 48: ...1 Copy the firmware file to the correct directory for your TFTP server The correct directory depends on your TFTP server settings 2 Enter the filename of the firmware in the Filename text box 3 Enter...

Страница 49: ...LI Command Usage CLI Command Mode Privileged Exec Mode CLI Command Syntax install image tftpserver_ipaddress filename Usage Example switch_a enable switch_a install image 169 254 1 100 flash tgz switc...

Страница 50: ...essage Reboot using the CLI For more information on CLI command usage see CLI Command Usage CLI Command Mode Privileged Exec Mode CLI Command Syntax reload Usage Example switch_a enable switch_a reloa...

Страница 51: ...s privileges to the switch There are two modes that can be used Single User or Multi User Changing the User Mode To set the user mode see Figure 9 1 Select Single User or Multi User in the dropdown bo...

Страница 52: ...user in the User Name text box 3 Enter a Password for the new user in the Password text box 4 Re enter the Password in the Confirm Password text box 5 Select a Privilege Level from the dropdown list n...

Страница 53: ...r from the dropdown list next to the User Account row heading see Figure 11 2 Change the password and or access level following the steps in Creating a New User 3 To delete an existing user select the...

Страница 54: ...onfiguration page allows specific configuration and or administration levels to be assigned or removed from the Technician and Operator user roles Note For each function an operator s privilege cannot...

Страница 55: ...55 EtherWAN Managed Switch Users Guide Figure 13 User Privilege Page...

Страница 56: ...ig line console 0 switch_a config line login local Switching Single Multi User mode need to reboot the switch to take effect switch_a config line q switch_a config q switch_a Single User Mode To enabl...

Страница 57: ...o specify that the password should be displayed in encrypted form in the configuration file Usage Example switch_a enable switch_a configure terminal switch_a config username user1 privilege operator...

Страница 58: ...ng Loopback Detect Static MAC Entry Port Mirroring Link State Tracking Port Trunking LACP Trunking Global Configuration RSTP Port Setting MSTP Prties MSTP Instance Setting MSTP Port Setting Ring Setti...

Страница 59: ...s Guide Usage Example switch_a enable switch_a configure terminal switch_a config multiuser access IP Address tech read write oper read only switch_a config multiuser access System Log tech show oper...

Страница 60: ...ation To navigate to the Utilization page 1 Click on the next to Diagnostics 2 Click on Utilization The Utilization page shows see Figure 14 CPU Utilization Current and Max Utilization Memory Utilizat...

Страница 61: ...The System Log shows the data and time of port links going up or down see Figure 15 Figure 15 System Log System log using CLI command For more information on CLI command usage see CLI Command Usage CL...

Страница 62: ...led as well as management of a list of Syslog servers to report to see Figure 16 To configure the Remote Logging on the EtherWAN Managed Switch 1 Click on the Enable or Disable radio button under Remo...

Страница 63: ...63 EtherWAN Managed Switch Users Guide Figure 16 Remote Logging Page...

Страница 64: ...log enable switch_a q switch_a Usage Example 2 Disable Remote Logging switch_a enable switch_a no remote log enable switch_a q switch_a Add Delete a Remote Logging Host CLI Command Mode General Confi...

Страница 65: ...are stored in the Switches ARP Table This is useful for System Administrators for troubleshooting purposes The information shown is IP Address of the listed device Hardware Address For Ethernet device...

Страница 66: ...ation on CLI command usage see CLI Command Usage CLI Command Mode General Configuration Mode CLI Command Syntax show arp table Usage Example switch_a enable switch_a show arp table IP address HW type...

Страница 67: ...outes The Route Table contains information about the topology of the network around it Figure 18 Route Table Route Table Using CLI Commands For more information on CLI command usage see CLI Command Us...

Страница 68: ...ting page allows users to define Ethernet port Link down and Power failure alarms for triggering an alarm using the relay on the switch To configure an Ethernet port or Power input 1 Select an Etherne...

Страница 69: ...without loss of data or clarity The Configuration page shows see Figure 21 Port Number fe n for 100mb ports and ge n for Gigabit ports Link Status Operational State of the Port s Link Read Only Port...

Страница 70: ...ill have the same options For example 100Mb fiber ports will typically be limited to a single option of 100M FD 100Mbps and Full Duplex while running 1Gb UTP ports will have six options for speed dupl...

Страница 71: ...e user intends to do is read the values of the port settings not modify the port settings The Port Status page shows see Figure 22 Port Number fe n for 100mb ports and ge n for Gigabit ports Link Stat...

Страница 72: ...the Egress text box controls the rate of data leaving the port Note Entries will be rounded down to the nearest acceptable rate value If the value entered is below the lowest acceptable value then the...

Страница 73: ...he EtherWAN Managed Switch 1 Click on the link to the port at the top of the RMON Statistics page To clear the RMON statistics for a particular port on the EtherWAN Managed Switch 1 Click on the link...

Страница 74: ...to see what devices are connected to a particular port and the vlan associated with that device and port To clear the MAC addresses for a particular port on the EtherWAN Managed Switch see Figure 25 1...

Страница 75: ...ource MAC addresses of the network devices To Add a MAC Address to a port 1 Select the Enable or Disable from the Mode column for the port you want to configure 2 Enter the MAC Address of the device y...

Страница 76: ...Usage Example switch_a enable switch_a configure terminal switch_a config int fe1 switch_a config if description A_Port_Description switch_a config q switch_a config q switch_a Enable or Disable a Po...

Страница 77: ...I Command Syntax bandwidth 1 10000000000 bits usable units k m g Usage Example switch_a enable switch_a configure terminal switch_a config int fe1 switch_a config if bandwidth 100m switch_a config q s...

Страница 78: ...y Port Status To display the port status for a port use the CLI commands below CLI Command Mode Privileged Exec Mode CLI Command Syntax show interface ifname Usage Example switch_a enable switch_a sho...

Страница 79: ...port s VLAN activities use the CLI commands below CLI Command Mode Privileged Exec Mode CLI Command Syntax show bridge interface interface name Usage Example switch_a enable switch_a show bridge inte...

Страница 80: ...Command Syntax port security allowed address value in hex format Ex 00aa 0062 c609 Usage Example switch_a enable switch_a configure terminal switch_a config int fe1 switch_a config if port security al...

Страница 81: ...received When the destination node receives the flooded traffic it sends an acknowledgment packet back to the switch allowing the switch to learn the MAC address of the node and to add the address to...

Страница 82: ...lood the LAN creating excessive traffic and degrading network performance The traffic storm control feature prevents LAN ports from being disrupted by a broadcast or multicast traffic storm on physica...

Страница 83: ...own box 3 Click on the Update Setting button 4 Repeat as necessary for all ports that are to be isolated Block Multicast The Block Multicast setting is a per port value Block Multicast is a straight f...

Страница 84: ...84 EtherWAN Managed Switch Users Guide Figure 27 Bridging...

Страница 85: ...opback Detect Loopback Detection Global To globally enable the Loopback Detect feature of the EtherWAN Managed Switch see Figure 28 1 Click on the Loopback Detect drop down box 2 Select Enable from th...

Страница 86: ...g Interval To change the polling interval of the Loopback Detect function see Figure 28 1 Enter a value in the text box next to Interval Valid values range from 1 to 65535 seconds 2 Click on the Updat...

Страница 87: ...o enable Loopback Detection for a particular port or ports on the EtherWAN Managed Switch see Figure 29 1 Select the value Enable from the Mode drop down list for a port on the Loopback Detect page 2...

Страница 88: ...a number between 2 and 65535 seconds The Default value is 10 seconds 3 Set the Storm Detect errdisable recovery time to value between 0 and 65535 seconds The Default is 0 disabled This value determin...

Страница 89: ...89 EtherWAN Managed Switch Users Guide 6 Set the number of packets per second to a value between 0 and 1000000 packets The default is 0 not limited Figure 31 Storm Detect Per Port...

Страница 90: ...e offered under the Static MAC Entry menu To navigate to the Static MAC Entry menu 1 Click on the next to Switching 2 Click on Static MAC Entry Adding a Static MAC Address to a Port To add a static MA...

Страница 91: ...tatic MAC Entry Discard Table To add a MAC address to the Static MAC Entry Discard table see Figure 34 1 Enter a MAC address in the form 0000 1234 abdc in the Add MAC Address text box of the Static MA...

Страница 92: ...tic MAC Entry Discard Table To remove a MAC address from the Static MAC Entry Discard table see Figure 35 1 From the drop down box underneath Delete MAC Address select the MAC address to be deleted 2...

Страница 93: ...cular port without disrupting normal network operations on the port that is being mirrored To navigate to the Port Mirroring menu 1 Click on the next to Switching 2 Click on Port Mirroring To configur...

Страница 94: ...oring To disable port mirroring for a port or ports on the EtherWAN Managed Switch see Figure 37 1 Under the Current Settings section the current port mirroring configuration should be displayed 2 Cli...

Страница 95: ...the secondary interface To navigate to the Link State Tracking menu 1 Click on the next to Switching 2 Click on Link State Tracking Enable Disable Link State Tracking To enable Link State Tracking for...

Страница 96: ...96 EtherWAN Managed Switch Users Guide 2 Select if the port is upstream or downstream from the Up Down Stream drop down box 3 Click on Update Setting Figure 39 Link State Tracking Port Settings...

Страница 97: ...o Switching 2 Click on PoE PoE System Setting The PoE Page provides access to PoE System Setting information and configuration The information provided is See Figure 40 1 Main Supply Voltage 2 System...

Страница 98: ...ation column The default is checked Enabled This is a per port setting see Figure 41 7 Fixed Power Limit Provides a fixed Wattage to the attached PoE PD device This setting is only enabled after the P...

Страница 99: ...99 EtherWAN Managed Switch Users Guide Figure 41 PoE Port Setting...

Страница 100: ...t to Scheduling on the PoE settings page see PoE Port Setting To navigate to the PoE Scheduling page 1 Click on the next to Switching 2 Click on PoE Scheduling Each PoE port on the switch can be sched...

Страница 101: ...101 EtherWAN Managed Switch Users Guide Figure 43 PoE Power Scheduling...

Страница 102: ...ridge 1 ageing time time in ms Usage Example switch_a enable switch_a configure terminal switch_a config bridge 1 ageing time 300 switch_a config q switch_a Enabling Port Isolation To enable Port Isol...

Страница 103: ...switch_a config switchport block multicast switch_a config q switch_a config q switch_a Setting Storm Control To set the value for the Broadcast and or DLF Multicast Storm Control value of a port on...

Страница 104: ...use the CLI commands below CLI Command Mode General Configuration Mode CLI Command Syntax bridge 1 loopback detect action err disable none Usage Example switch_a enable switch_a configure terminal sw...

Страница 105: ...ple switch_a enable switch_a configure terminal switch_a config bridge 1 loopback detect interval 5 switch_a config q switch_a Enabling Loopback Detect Port To enable Loopback Detection on a port on t...

Страница 106: ...al switch_a config bridge 1 storm detect errdisable switch_a config q switch_a Usage Example Disabling storm detect switch_a enable switch_a configure terminal switch_a config no bridge 1 storm detect...

Страница 107: ...e Enable this port s storm detect by detect number of broadcast or broadcast plus multicast packets per second Unit is packets per second Set to 0 to disable this feature To set the storm detect packe...

Страница 108: ...ntax storm detect utilization 0 100 Default 0 Disabled Usage Example switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if storm detect utilization 80 switch_a c...

Страница 109: ...ollowing CLI commands CLI Command Mode Interface Mode CLI Command Syntax no storm detect port enable Usage Example switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a co...

Страница 110: ...able switch_a configure terminal switch_a config bridge 1 address 00e0 abcd 1245 forward fe1 vlan 1 switch_a config q switch_a Adding a MAC Address for Static MAC Entry Discarding To add a MAC address...

Страница 111: ..._a enable switch_a configure terminal switch_a interface ge1 switch_a config mirror interface fe1 direction both switch_a config q switch_a config q switch_a Enabling a Link State Tracking Group To en...

Страница 112: ...tream Usage Example switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if link state group 4 downstream switch_a config if q switch_a config q switch_a Setting P...

Страница 113: ...heduling Enable Scheduling schedule time Sets schedule time to power PoE ports schedule time hour Schedule time hour enable To enable or disable PoE on a port use the following CLI commands CLI Comman...

Страница 114: ...ch_a config if poe fixed power limit 7 5 switch_a config if q switch_a config q switch_a power classification This setting tells the switch to negotiate with the attached PoE device to determine the W...

Страница 115: ...enable or disable the power down alarm use the following CLI commands CLI Command Mode Interface Configuration Mode CLI Command Syntax poe power down alarm enable no poe power down alarm enable Usage...

Страница 116: ...rity medium switch_a config if q switch_a config q switch_a PoE Scheduling PoE Scheduling allows PoE ports to have their power up time scheduled by hour of the day and day of the week scheduling To en...

Страница 117: ...be defined using a dash ex 1 23 To disable PoE scheduling on a port use the no poe enable command Usage Example 1 switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a co...

Страница 118: ...ace Configuration Mode CLI Command Syntax poe schedule time day hour Day 0 Sunday to 6 Saturday Hour 1 to 23 To disable PoE scheduling on a port use the no poe enable command Usage Example switch_a en...

Страница 119: ...more Ethernet links to form a virtual link equivalent in bandwidth to the sum of its individual links For example if one had four 100Mbps Ethernet links composing a single static channel the overall b...

Страница 120: ...configuration mistake could go undetected and cause undesirable network behavior Port Trunking To navigate to the Port Trunking menu 1 Click on the next to Trunking 2 Click on Port Trunking There are...

Страница 121: ...nk consisting of 100Mbps ports 3 Click on the checkbox for each desired port in a particular trunk 4 Click on the Submit button To create a static trunk consisting of 1000Mbps ports see Figure 45 3 In...

Страница 122: ...122 EtherWAN Managed Switch Users Guide Figure 45 Port Trunking Version 2...

Страница 123: ...trunk 2 Select LACP from the Trunk Type dropdown box for this port 3 Enter an admin key for this port in the Admin Key textbox 100Mbps ports admin keys must be 1 and 1Gbps ports must be 3 4 Select th...

Страница 124: ...124 EtherWAN Managed Switch Users Guide Figure 46 LACP Trunking Version 1...

Страница 125: ...ox for this port 3 Enter an admin key for this port in the Admin Key textbox 100Mbps ports admin keys must be between 1 6 and 1Gbps ports must be between 7 8 4 Select the LACP Mode to either Active or...

Страница 126: ...126 EtherWAN Managed Switch Users Guide Figure 47 LACP Trunking Version 2...

Страница 127: ...mple switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config static channel group 1 switch_a config q switch_a config q switch_a Adding an Interface to a LACP Trunk T...

Страница 128: ...nfigure terminal switch_a config interface fe1 switch_a config lacp port priority 1 switch_a config q switch_a config q switch_a Setting the LACP Timeout To set the timeout for an interface attached t...

Страница 129: ...Rapid Spanning Tree protocol RSTP The RSTP protocol is the new enhanced version of the original STP protocol It uses an enhanced negotiation mechanism to directly synchronize any topology changes betw...

Страница 130: ...see The Root Bridge Backup Root Bridge o Default is 32768 Range is 0 to 61440 Hello Time This tells how often a BPDU Bridge Protocol Data Unit is sent see Bridge Protocol Data Units Default is 2 secon...

Страница 131: ...131 EtherWAN Managed Switch Users Guide Figure 48 STP Ring Global Configuration...

Страница 132: ...s are the same will be used to determine the Root and Backup Root Bridge See below Figure 49 Bridge ID Bridge ID is a concatenation of 3 values a 4 bit Bridge Priority most significant a 12 bit Syste...

Страница 133: ...133 EtherWAN Managed Switch Users Guide Figure 50 Bridge ID Display...

Страница 134: ...nt limit on how far the Spanning Tree protocol packet can propagate throughout the network topology therefore it must be configured with a value that is greater than the network diameter Relationship...

Страница 135: ...135 EtherWAN Managed Switch Users Guide Figure 51 Max Age Hello Timer Forward Delay...

Страница 136: ...the next to STP Ring 2 Click on RSTP Port Setting Spanning Tree Port Roles In a stable RSTP topology each port on a switch can function in any one of 4 different Spanning Tree port roles These Spanni...

Страница 137: ...By default each port on a Spanning Tree switch will be assigned a Port Priority of 128 according to the IEEE standard This Port Priority is part of the Port ID which is a concatenation of 2 values Por...

Страница 138: ...w 2 Enter the proper value under the Priority Granularity 16 a The Port Priority range is between 0 and 240 in multiples of 16 3 Enter the proper value under the Admin Path Cost text entry box a The P...

Страница 139: ...STP protocol To manually force a port to be a Shared Port or a Point to Point Link 1 Choose the correct port from the drop down list under Port and choose Enable or Disable under Point to Point Link s...

Страница 140: ...down 1 switch_a config bridge 1 protocol rstp vlan bridge switch_a config q switch_a Bridge Priority Max Age Forward Delay and Hello Time To configure the Bridge Priority Max Age Forward Delay and Hel...

Страница 141: ...lly Setting a Port to be a Shared or Point to Point Link To manually force a port to be a shared link or Point to point link use the below CLI commands CLI Command Mode Interface Configuration Mode CL...

Страница 142: ...eport no spanning tree spanning tree edgeport Usage Example 1 Enabling edge port on port 1 switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if spanning tree ed...

Страница 143: ...cing among the switches Between Regions the MSTP runs a single instance of Spanning Tree similar to and is backward compatible with the RSTP protocol Global Configuration Page Enabling the MSTP Protoc...

Страница 144: ...144 EtherWAN Managed Switch Users Guide Figure 55 Enabling MSTP...

Страница 145: ...t System ID less significant and the 48 bit MAC address of the local switch least significant see below Figure 56 Bridge ID Setting Bridge Priority To set the Bridge Priority 1 Enter the Bridge Priori...

Страница 146: ...146 EtherWAN Managed Switch Users Guide Figure 57 Bridge ID Display...

Страница 147: ...MAX Age Forward Delay and Hello Timer Navigate to the STP Ring Global Configuration page 1 Click on the next to STP Ring 2 Click on Global Configuration Relationship between Max Age Forward Delay and...

Страница 148: ...below Two of the parameters can be configured directly the third parameter Configuration Digest will be automatically calculated by the switch based on the VLAN to MSTI Multiple Spanning Tree Instanc...

Страница 149: ...e MSTP Region see below 1 Enter the Region Name of the Region that the switch will belong to in the Region Name text entry box 2 Enter the Revision Level value for the corresponding Region in the Revi...

Страница 150: ...de of a MSTP Region therefore it must be configured with a value that is greater than the network diameter of the IST MSTI topology The Max Hops parameters should be configured correctly on the CIST R...

Страница 151: ...the VLAN Instance Configuration button see Figure 61 2 Choose the VLAN that you want to map to a MSTI instance from the VLAN ID drop down box see Figure 62 3 Enter the Instance ID that you want the V...

Страница 152: ...STP Instance Setting To load balance switches within a MSTP Region set different switches within the MSTP Region to be the Root Bridge for different MSTI instances A Root Bridge in a particular MSTI i...

Страница 153: ...Instance ID drop down list for which the switch will be a MSTI Regional Root Bridge 2 Enter the desired value in the Bridge Priority text box 3 Click on the Update Setting button The valid values for...

Страница 154: ...locking port between two switches Modify the Port Cost adjusts the location of the blocking port in a MSTP loop To modify the Port Priority and the Path Cost of the ports on a MSTP switch for the MSTI...

Страница 155: ...155 EtherWAN Managed Switch Users Guide Figure 64 Port Cost Priority...

Страница 156: ...I port membership for the MSTI instance that the VLAN maps to To reconfigure the MSTI instance port membership 1 Click on the Port Instance Configuration button see Figure 65 2 Choose the correct MSTI...

Страница 157: ...Usage Enabling Spanning Tree for MSTP To enable the Spanning Tree function on a switch use the below CLI commands CLI Command Mode General Configuration Mode CLI Command Syntax no bridge shutdown 1 br...

Страница 158: ...idge 1 hello time 1 10 Usage Example switch_a enable switch_a configure terminal switch_a config bridge 1 priority 4096 switch_a config bridge 1 max age 20 switch_a config bridge 1 forward time 15 swi...

Страница 159: ...terminal switch_a config spanning tree mst configuration switch_a config mst bridge 1 region R1 switch_a config mst bridge 1 revision 0 switch_a config mst q switch_a config q switch_a Creating an MST...

Страница 160: ...rity 0 switch_a config q switch_a Modifying CIST Port Priority and Port Path Cost To modify the CIST Port Priority and CIST Port Path Cost on a switch use the below CLI commands CLI Command Mode Inter...

Страница 161: ...config if bridge group 1 instance 1 path cost 20000 switch_a config if bridge group 1 instance 1 priority 128 switch_a config if q switch_a config q switch_a Adding a Port to an MSTI Instance To add...

Страница 162: ...15 milliseconds Flexibility for Network Deployment Coexistence with STP RSTP and MSTP Ring Coupling Smaller rings coupled together to increase network efficiency Implementing a Simple Ring 1 Change th...

Страница 163: ...163 EtherWAN Managed Switch Users Guide Figure 67 Ring Settings...

Страница 164: ...s is called Ring coupling and uses two additional Ethernet ports on the switch To setup Ring coupling see Figure 68 1 Change the Ring coupling state to Enable 2 Click on the Update Setting button next...

Страница 165: ...onfiguration When the BPDU Guard feature is set for a bridge all portfast enabled ports of the bridge that have bpdu guard set to default shut down the port on receiving a BPDU In this case the BPDU i...

Страница 166: ...ling this for Edge ports ports connecting to an end device as opposed to another switch protect the BPDU Guard Configuration When set to Default the port will default to the Advanced Bridge Configurat...

Страница 167: ...fast bpdu guard Usage Example switch_a enable switch_a configure terminal switch_a config bridge 1 spanning tree portfast bpdu guard switch_a config q switch_a Enabling BPDU Guard on a Port To enable...

Страница 168: ...tch_a enable switch_a configure terminal switch_a config bridge 1 spanning tree errdisable timeout enable switch_a config bridge 1 spanning tree errdisable timeout interval 300 switch_a config q switc...

Страница 169: ...ter it travels to another switch This is done by tagging inserting information inside a packet a packet with the VLAN ID that the packet belongs to when the packet exits the switch The VLAN associatio...

Страница 170: ...configure a port to be a member for a single VLAN or multiple VLANs By default all the ports on the switch are all members of a single VLAN VLAN 1 below is an example on how to configure two groups o...

Страница 171: ...ore can communicate with all ports that are in any of the VLANs that they share membership with Figure 73 Port Based VLAN Example 2 To add or remove ports from a specific VLAN 1 Select or deselect the...

Страница 172: ...a single VLAN switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if switchport portbase add vlan 1 switch_a config if q switch_a config q switch_a Usage Example...

Страница 173: ...a port is configured to be an Access Port then this port can only be a member of a single VLAN based on the Access Port s PVID VLAN setting and this port s outgoing packets cannot be modified to conta...

Страница 174: ...LAN Mode Setting page 1 Click on the next to VLAN 2 Click on VLAN Mode Setting To enable 802 1Q Tagged Based VLAN on the switch 1 Select Tag based VLAN from the dropdown box see below 2 Click on the S...

Страница 175: ...Add VLAN button see Figure 75 Figure 75 Add VLAN 2 Enter the VLAN ID 3 Enter the VLAN Name 4 Select Attach or Detach for the CPU Port a Attaching the CPU to a VLAN is typically done on the Management...

Страница 176: ...vlan database switch_a config vlan vlan 100 bridge 1 name Management state enable switch_a config vlan vlan 200 bridge 1 name Accounting state enable switch_a config vlan vlan 300 bridge 1 name Sales...

Страница 177: ...100 switch_a config if no ip address switch_a config if q switch_a config q switch_a Configuring an Access Port To configure an Access Port use the following CLI commands CLI Command Mode Interface C...

Страница 178: ...CLI Command Syntax switchport trunk allowed vlan add 100 200 300 CLI Command Syntax switchport trunk native vlan 1 Usage Example switch_a enable switch_a configure terminal switch_a config interface...

Страница 179: ...ck on the Submit button see below 3 Save the configuration see the Save Configuration Page Figure 77 Management VLAN IP Address To delete an IP from a VLAN the default VLAN for an example 1 Delete the...

Страница 180: ...rview for port type details 2 Enter the PVID VLAN for each port see below 3 Enter the Priority Level optional 4 Click on the Update Setting button 5 Save the configuration see the Save Configuration P...

Страница 181: ...ure 79 VLAN Links 2 Check the check box next to the port number that should be the egress member port for this VLAN 3 Click on the Submit button see Figure 80 Note If an egress member port for a VLAN...

Страница 182: ...If any of the egress member ports are Hybrid ports you must also configure the Tag action on this port see Figure 81 4 Select the correct Tag option in the drop down list under Tag or Untag for this p...

Страница 183: ...ferentiate traffic Although this technique is commonly referred to as IEEE 802 1p there is no standard or amendment by that name published by the IEEE Rather the technique is incorporated into the IEE...

Страница 184: ...ion 2 Choose CoS and or DSCP next to the Trust option 3 Select the desired option next to Policy a Strict Priority Queue0 3 Packets must be emptied from the queues in order Starting with queue 3 and e...

Страница 185: ...the Weight Round Robin section 5 Click on the Submit button 6 Save the configuration see the Save Configuration Page Note Weighted Round Robin There are four text fields one for each queue 0 3 A numbe...

Страница 186: ...on For more information on CLI command usage see CLI Command Usage Enabling Disabling QoS To get to the CLI level to configure QoS CLI Command Mode Interface Configuration Mode CLI Command Syntax mls...

Страница 187: ...e QoS Trust switch_a enable switch_a configure terminal switch_a config no mls qos trust switch_a config q switch_a Configuring the Egress Expedite Queue CLI Command Mode General Configuration Mode CL...

Страница 188: ...ity switch_a enable switch_a configure terminal switch_a config no priority queue out switch_a config q switch_a Usage Example The following example specifies the bandwidth ratios of the four transmit...

Страница 189: ...expressed as the three bit PCP field in the 802 1Q header discussed previously The values shown above are the default values with the higher VLAN priorities corresponding to the higher priority queue...

Страница 190: ...eral Configuration Mode CLI Command Syntax wrr queue cos map QUEUE_ID COS_VALUE Queue ID Range is 0 3 COS_VALUE CoS values Up to 8 values separated by spaces Usage Example The following example shows...

Страница 191: ...any more DSCP priorities to choose from and they are all assigned to the lowest priority queue 0 For each DSCP priority the user can change the value of the queue to between 0 and 3 See Figure 3 for m...

Страница 192: ...Mode CLI Command Syntax mls qos map dscp queue dscp_value to queue_ID dscp_value Up to 8 values separated by spaces Range is 0 63 queue_ID Range is 0 3 Usage Example The following example shows mappi...

Страница 193: ...Priority to an Interface CLI Command Mode Interface Configuration Mode CLI Command Syntax user priority 0 7 Usage Example The following example shows mapping DSCP values 0 to 3 to queue 1 on the swit...

Страница 194: ...mbers MAC Access List This Access List can be used to filter Ethernet packets based on the packet s source and destination Ethernet addresses as well as the packet s Ethernet payload protocol number E...

Страница 195: ...2 Next you will need to create and configure an ACL Class Map 3 Associate the previously created ACL Access Lists to this ACL Class Map 4 Next create and configure an ACL Policy Map 5 Associate all th...

Страница 196: ...196 EtherWAN Managed Switch Users Guide Figure 85 Enabling QoS...

Страница 197: ...be creating a new ACL Access List which is necessary to create an ACL Class Map From the information listed below you will find the configuration steps necessary for all of the four available ACL Acce...

Страница 198: ...ed from the drop down list next to Access List 4 To give the new IP access list an ID enter a number in the range from 1 99 or from 1300 1999 into the text entry box next to the Create option drop dow...

Страница 199: ...packet from entry to the switch that did not match any of the previous rules from all the previous access control lists otherwise these additional IP packets will also be allowed entry into the switc...

Страница 200: ...om the Destination Wildcard Bits column 10 Next click on the Add button 11 You can also filter the IP packet using the packet s source and destination Transport Layer protocol port numbers in addition...

Страница 201: ...ccess List If you want to create a new MAC Access List insure that the Create option is selected from the drop down list next to Access List 3 To give this particular MAC Access List an ID enter a num...

Страница 202: ...source and destination Ethernet addresses Just enter the EtherType number of the Ethernet packet into the text entry box under the Ether type column 11 Next you can also enter a comparison mask for th...

Страница 203: ...xt entry box next to TCP UDP Port No 1 65535 4 After you have finished configuring just one ACL Access List from the previous step you must now create a name for the new ACL Class Map that will be ass...

Страница 204: ...eing allowed under this new ACL Class can also be limited To do this enter the bandwidth amount that you want to allocate for the traffic in the text entry box under Police Rate 1 1000000Kbps see Figu...

Страница 205: ...s Guide Figure 92 Police Rate 3 Next please enter a name in the text entry box next to Policy Map Name for the new ACL Policy Map that you are currently creating and click on the submit button see Fig...

Страница 206: ...w the instructions below 1 Select the correct ACL Policy Map from the drop down list next to Policy Map see Figure 94 2 Next check the boxes below Attach Class Map to Policy Map next to all the ports...

Страница 207: ...ports by deselecting the check boxes below Attach Class Map to Policy Map for the ports you would like to remove the policy map 3 Click on the Attach button Figure 95 Modifying a Policy Map Adding a...

Страница 208: ...New ACL Class to an Existing Policy Map Adding an Existing ACL Class to an Existing Policy Map If you would like to add an existing ACL Class to this ACL Policy Map see Figure 97 1 Select the correct...

Страница 209: ...Name 3 You can confirm that the ACL Class has been added correctly to this Policy Map by checking the dropdown list under Class Name If you see the newly added ACL Class in the list above the dash li...

Страница 210: ...t under Class Name see Figure 99 2 Next click on the Remove button under Attach Class Map to Policy Map Figure 99 Removing an ACL Class 3 You can confirm that the ACL Class has been removed from this...

Страница 211: ...ns below 1 Select the correct ACL Policy Map that you want to remove entirely from the drop down list next to Policy Map see Figure 101 2 Next detach the Policy Map from all the ports by deselecting a...

Страница 212: ...212 EtherWAN Managed Switch Users Guide Figure 101 Removing a Policy Map...

Страница 213: ...reate option is selected from the drop down list next to Policy Map see Figure 102 3 Next select the correct ACL Class from the drop down list under Class Name and then wait for the GUI to update itse...

Страница 214: ...e see CLI Command Usage Enabling QoS To enable the ACL feature on the EtherWAN switch by enabling the QoS feature on the switch just follow the steps below CLI Command Mode General Configuration Mode...

Страница 215: ...nfig q switch_a Creating an Extended IP Access List To create a new Extended IP Access List to allow or deny an source IP address range and destination IP address range pair access to the switch use t...

Страница 216: ...mac access list 2000 2699 deny source MAC address source bit mask destination MAC address destination bit mask encapsulation format 1 Ethernet II 2 SNAP 4 802 3 8 LLC ether type EtherType EtherType b...

Страница 217: ...r any packet that did not match the classification rules from this Access List Note The bandwidth policing capabilities of the ACL Class cannot be configured here it can only be configured during the...

Страница 218: ...ting Standard Extended IP Access List or MAC Access List to the ACL Class Map by referencing its Access list ID Note The bandwidth policing capabilities of the ACL Class cannot be configured here it c...

Страница 219: ...Mode General Configuration Mode Policy Map Configuration Mode Policy Map Class Configuration Mode CLI Command Syntax policy map ACL Policy Name class ACL Class Name police 1 1000000 1 20000 exceed act...

Страница 220: ...x interface Interface Name service policy input ACL Policy Name Usage Example switch_a enable switch_a configure terminal switch_a config interface fe1 switch_a config if service policy input IP_Polic...

Страница 221: ...the below CLI commands to delete an existing ACL Policy CLI Command Mode General Configuration Mode CLI Command Syntax no policy map ACL Policy Name Usage Example switch_a enable switch_a configure te...

Страница 222: ...NMP Status 2 Enter a short description up to 256 characters into the text entry box next to Description for the purpose of switch identification 3 Enter a name into the text entry box next to Location...

Страница 223: ...rts of the switch 10 Set the interval between the MAC notification traps that you want the switch to send by entering the interval in number of seconds from 1 to 65535 into the text entry box next to...

Страница 224: ...224 EtherWAN Managed Switch Users Guide Figure 104 SNMP General Settings...

Страница 225: ...me into the text entry box next to Get Community Name This will allow the NMS to poll status information from the switch read only 2 Enter the SNMP community name into the text entry box next to Set C...

Страница 226: ...uthentication or data encryption will be used b SNMPv3 Auth MD5 User authentication will be required using the MD5 hashing algorithm but no data encryption will be used c SNMPv3 Auth SHA User authenti...

Страница 227: ...SNMP v3 Settings 3 Next enter the desired username in the text entry box next to User Name 4 Next please select the desired access authorization for the user from the drop down list next to Access Mo...

Страница 228: ...inside this text entry box See Figure 109 Figure 109 Auth Password 6 Next if both authentication and privacy are required for this user and you have chosen both an authentication and privacy protocol...

Страница 229: ...P SNMP v3 you should see a list of previously configured users Next click on the Delete User button See below Figure 111 Delete User 2 Next select the user that you wish to delete from the drop down l...

Страница 230: ...ore information on CLI command usage and typographic conventions please click here CLI Command Mode General Configuration Mode CLI Command Syntax snmp server enable snmp server description 1 256 chara...

Страница 231: ...ver trap community 4 1 256 characters snmp server trap community 5 1 256 characters snmp server trap ipaddress 1 IP Address snmp server trap ipaddress 2 IP Address snmp server trap ipaddress 3 IP Addr...

Страница 232: ...dress 2 169 254 1 100 switch_a config snmp server trap ipaddress 3 169 254 1 100 switch_a config snmp server trap ipaddress 4 169 254 1 100 switch_a config snmp server trap ipaddress 5 169 254 1 100 s...

Страница 233: ...et private switch_a config q switch_a Adding SNMP v3 Users To add SNMP v3 Users to the switch and maximize the security for the SNMP feature you must use the following CLI commands CLI Command Mode Ge...

Страница 234: ...switch will request authentication credentials from the Supplicant in the end device that has just connected to the port After the switch receives the proper authentication credentials from the Suppli...

Страница 235: ...gure 114 3 Enter the password for RADIUS server in the text entry box next to Secret Key 4 Optionally the UDP port number for the RADIUS server if it is different from the standard default 1812 can be...

Страница 236: ...se to configure the maximum number of times that the switch can attempt to retransmit a message to the RADIUS server To do this please enter a number from 1 to 100 into the text entry box next to Retr...

Страница 237: ...desired port from the drop down list next to Interface to have the 802 1X feature applied to that port 2 Next make sure Enabled is selected from the drop down list next to Authentication State this w...

Страница 238: ...tion 5 After you have enabled periodic re authentication you must also configure the time period interval for the re authentication of the end station To do this enter the number of seconds 1 42949672...

Страница 239: ...as well as learn the same information from the devices connected to it LLDP advertises this information over Logical Link Layer Control frames and the information received from other agents in IEEE d...

Страница 240: ...aintain the information in its MIB To compute the TTL value the system multiplies the LLDP transmit TX interval by the holdtime multiplier For example if the LLDP transmit TX interval is 30 and the ho...

Страница 241: ...em Capabilities Management Address Port VLAN ID MAC PHY Configuration Status Port And Protocol VLAN ID VLAN Name Protocol Identity Power Via MDI Link Aggregation Maximum Frame Size To enable specific...

Страница 242: ...242 EtherWAN Managed Switch Users Guide Figure 117 LLDP Global Settings...

Страница 243: ...able from the Drop Down box under the Transmit field for each port for which the transmission of LLDP information should be enabled 2 Click on the Submit button Enabling LLDP Reception for a specific...

Страница 244: ...244 EtherWAN Managed Switch Users Guide Figure 118 LLDP Ports Settings...

Страница 245: ...enabled devices is displayed in a tabular format The columns displayed are Port The local switch port to which the remote device is connected Chassis ID The MAC address of the remote device Port ID Th...

Страница 246: ...The information collected on this page includes Port switch port number TX Total Total LLDP packets sent RX Total Total LLDP packets received Discards Number of LLDP packets discarded Errors LLDP erro...

Страница 247: ...he EtherWAN Managed Switch use the CLI commands below CLI Command Mode General Configuration Mode CLI Command Syntax lldp enable no lldp enable Usage Example Enabling LLDP switch_a enable switch_a con...

Страница 248: ...Usage Example switch_a enable switch_a configure terminal switch_a config lldp holdtime multiplier 4 switch_a config q switch_a LLDP Transmit Interval To modify LLDP Transmit Interval use the CLI com...

Страница 249: ...scription sys name System Name TLV sys descr System Description TLV sys cap System Capabilities mgmt addrs Management Address port vlan id Port VLAN ID mac phy MAC PHY Configuration Status port and pr...

Страница 250: ...ch_a configure terminal switch_a interface fe1 switch_a config lldp tx pkt switch_a config q switch_a config q switch_a Enabling LLDP Receive on a Port To enable LLDP Receive for a port use the CLI co...

Страница 251: ...e fe1 switch_a config lldp notification switch_a config q switch_a config q switch_a Enabling Transmission of the Management IP To enable the transmission of the management IP address through a port u...

Страница 252: ...the CLI commands below CLI Command Mode Interface Configuration Mode CLI Command Syntax lldp tlv select TLV ID see TLV Parameters on page 249 Usage Example switch_a enable switch_a configure terminal...

Страница 253: ...n IEEE 802 1Q GVRP is a protocol used to dynamically create VLANs on a switch Any IEEE 802 1Q compliant switch must implement this protocol To navigate to the Other Protocols GVRP page see Figure 121...

Страница 254: ...PVID have been configured for all the ports of the switch All the member Trunk ports for all the user VLANs have been configured The GVRP protocol has been globally enabled and GVRP is locally enabled...

Страница 255: ...own list next to GVRP 2 Choose the Enable option from the drop down list next to Dynamic VLAN Creation 3 Click on the Update Setting button Figure 122 GVRP Configuration Distribution Switch To enable...

Страница 256: ...RP column 2 For all the Trunk Ports under the Per Port Setting include LAG section choose the Active or Normal option from the drop down list under the GVRP Applicant column o Active Use this option i...

Страница 257: ...dge 1 Usage Example switch_a enable switch_a configure terminal switch_a config set gvrp enable bridge 1 switch_a config set gvrp disable bridge 1 switch_a config q switch_a To enable the dynamic VLAN...

Страница 258: ...ich means that the GVRP protocol will not send out any PDUs from a port if the port is being blocked by STP When you enable the GVRP Applicant to run in Active mode on a port the GVRP protocol will co...

Страница 259: ...port by issuing the following CLI commands CLI Command Mode General Configuration Mode CLI Command Syntax set gvrp registration normal port id set gvrp registration forbidden port id Usage Example swi...

Страница 260: ...Forced Forwarding Port setting based on the following rule When there is no Querier Port a port that receives IGMP queries present all unknown multicast packets will be forwarded to the port specifie...

Страница 261: ...MP Snooping page 1 Click on the next to Other Protocols 2 Click on IGMP Snooping To put the IGMP Snooping feature in the correct Mode follow the steps below Choose the appropriate choice from the drop...

Страница 262: ...rsion to be run on this VLAN This setting must match the IGMP version being used by the IGMP querier and the IGMP client on the network 3 Choosing the appropriate choice Enable or Disable from the dro...

Страница 263: ...le in the dropdown list next to Report Suppression Note if the switch is not in Passive mode then this feature will have no effect Note If you are using IGMP version 1 or 2 the Query Interval and the...

Страница 264: ...time interval in seconds between any two queries that the switch scents on to the network It is recommended that you use the default setting of 125 seconds that are according to the IGMP standard 2 I...

Страница 265: ...rt section of the IGMP Snooping configuration page to control how the switch will forward these unknown multicast packets under different IGMP Snooping modes of the switch see Figure 129 Disabled Mode...

Страница 266: ...ds unknown multicast packets when the switch is in IGMP Passive mode follow the steps below No IGMP Querier port present 1 Under the Passive Mode Forwarding Port section select the PassiveForwardMode...

Страница 267: ...o have the unknown multicast packets forwarded to 3 Click on the Update Setting button Note The settings according to the ForceForwardMode will always be in effect both with and without the presence o...

Страница 268: ...ive Mode Forwarding Port section select the ForceForwardMode radio button 2 Select the checkbox under the ports that you would like to have the unknown multicast packets forwarded to 3 Click on the Up...

Страница 269: ...each port as well as the location of the IGMP Querier port see Figure 133 All the registered multicast Groups will be listed in the Group Address column The port where each registered Group ID was re...

Страница 270: ...igmp snooping Usage Example switch_a enable switch_a configure terminal switch_a config no ip igmp snooping switch_a config q switch_a To put the IGMP Snooping feature in Passive Mode use the CLI com...

Страница 271: ...ch_a enable switch_a configure terminal switch_a config ip igmp snooping enable switch_a config ip igmp snooping querier switch_a config q switch_a To set the IGMP version per VLAN use the following C...

Страница 272: ...ge Example Disabling the IGMP fast leave feature switch_a enable switch_a configure terminal switch_a config interface vlan1 1 switch_a config if no ip igmp snooping fast leave switch_a config q switc...

Страница 273: ...LI Command Mode VLAN Interface Configuration Mode CLI Command Syntax ip igmp query interval 10 18000 ip igmp query max response time 1 240 Usage Example Configuring the IGMP query interval parameter s...

Страница 274: ...ame Usage Example Flood all unknown multicast packets switch_a enable switch_a configure terminal switch_a config ip igmp snooping passive forward all switch_a config q switch_a Usage Example Drop all...

Страница 275: ...orward ifname ifname ifname Usage Example Flood all unknown multicast packets switch_a enable switch_a configure terminal switch_a config ip igmp snooping passive forward all switch_a config q switch_...

Страница 276: ...orward ifname ifname ifname Usage Example Flood all unknown multicast packets switch_a enable switch_a configure terminal switch_a config ip igmp snooping force forward all switch_a config q switch_a...

Страница 277: ...fname Usage Example Flood all unknown multicast packets switch_a enable switch_a configure terminal switch_a config ip igmp snooping force forward all switch_a config q switch_a Usage Example Drop all...

Страница 278: ...client follow the steps below see Figure 134 1 Choose Enable from the dropdown list next to NTP Status 2 Click on the Update Setting button Setting the NTP Server IP Address To provide a time source f...

Страница 279: ...ings Time using the weekday mode follow the steps below 1 Select the option Weekday from the Daylight Saving Mode dropdown box 2 Enter the value for the time offset in the Time Set Offset textbox 3 En...

Страница 280: ...e Daylight Saving Mode dropdown box 2 Enter the value for the time offset in the Time Set Offset textbox 3 Enter the name of the Daylight Saving Timezone 4 In the Date section select the month and ent...

Страница 281: ...281 EtherWAN Managed Switch Users Guide Figure 136 Daylight Savings Date Mode...

Страница 282: ...tch_a To set the NTP server on the EtherWAN Managed Switch use the CLI commands below CLI Command Mode General Configuration Mode CLI Command Syntax ntp server IP Address or Host Name of NTP Server Us...

Страница 283: ...Usage Example switch_a enable switch_a configure terminal switch_a config ntp sync time switch_a config q switch_a To set the current time zone for the EtherWAN Managed Switch use the CLI commands be...

Страница 284: ...switch_a configure terminal switch_a config clock summer time CDT weekday 2 Sun March 2 0 1 Sun November 2 0 60 switch_a config q switch_a To set the Daylight Savings Time settings using date mode fo...

Страница 285: ...al switch To navigate to the Other Protocols GMRP page 1 Click on the next to Other Protocols 2 Click on GMRP General Overview The ports on the EtherWAN switch can be configured with the GMRP feature...

Страница 286: ...be registered to this port so the switch will be forwarding all the multicast packets that belong to these groups to this port and this port will also be propagating all the registered multicast grou...

Страница 287: ...the ports that are connected to multicast clients You can also further configure each GMRP enabled port with the particular application modes described in the below configuration To allow a port to d...

Страница 288: ...the drop down list under the GMRP Forward All column Click on the Update Setting button If you do not wish to transmit any multicast packets on a port based on the received GMRP multicast group regist...

Страница 289: ...each port that you wish to apply this application select the Enable option from the drop down list under the GMRP Forward All column Click on the Update Setting button If you do not want a port to pa...

Страница 290: ...1 Usage Example switch_a enable switch_a configure terminal switch_a config set gmrp enable bridge 1 switch_a config set gmrp disable bridge 1 switch_a config q switch_a To enable GMRP locally on a p...

Страница 291: ...figure terminal switch_a config set gmrp registration normal fe1 switch_a config set gmrp registration fixed fe1 switch_a config set gmrp registration forbidden fe1 switch_a config q switch_a By defau...

Страница 292: ...es default gateway and DNS servers which will allow the switch to use the dynamic configuration function of the DHCP protocol to provide any TCP IP device that is a DHCP client to dynamically obtain a...

Страница 293: ...d End IP 3 Enter the Subnet Mask in the text box next to Subnet Mask 4 Enter the IP address for the DHCP Client default router in the text entry box next to Gateway 5 Enter the IP addresses for the DH...

Страница 294: ...has been allocated to which DHCP clients 1 Click on the DHCP Binding Table link see Figure 139 2 Click on the DHCP General Setting link to get back to the previous DHCP configuration Web GUI page see...

Страница 295: ...gure terminal switch_a config dhcp server range 169 254 0 100 169 254 0 107 switch_a config dhcp server subnet mask 255 255 255 0 switch_a config dhcp server gateway 169 254 0 1 switch_a config dhcp s...

Страница 296: ...sses has been allocated CLI Command Mode enable CLI Command Syntax show dhcp server binding Usage Example switch_a enable switch_a show dhcp server binding Mac Address IP Address Expires in a4 ba db d...

Страница 297: ...akes no express warranties except as may be stated in its written agreement with and for its customers EtherWAN shall not be held liable to anyone for any indirect special or consequential damages due...

Отзывы:

Нет отзывов

Похожие инструкции для EX72129A

DGS-1224TP - Web Smart Switch

Бренд: D-Link Страницы: 52

Бренд: D-Link Страницы: 8

DES-3225G Series

Бренд: D-Link Страницы: 3

DES-1228 - Web Smart Switch

Бренд: D-Link Страницы: 69

Бренд: D-Link Страницы: 109

Бренд: Barco Страницы: 2

Бренд: Painless Performance Products Страницы: 2

Бренд: Datavideo Страницы: 2

Бренд: S&C Страницы: 28

Бренд: S&C Страницы: 12

Бренд: S&C Страницы: 24

Бренд: S&C Страницы: 24

Бренд: S&C Страницы: 24

Бренд: S&C Страницы: 28

Бренд: S&C Страницы: 37

Бренд: FS Страницы: 23

PU-8H8HBTPL-4K22

Бренд: CYP Страницы: 24

S3100-SI Series

Бренд: H3C Страницы: 58

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды