GE Multilink ML3000 Скачать руководство пользователя страница 1

Страница: 1 / 356

Multilink ML3000
Ethernet Communications
Switch

Instruction Manual

Firmware Revision 5.0

Manual P/N: 1601-0049-A1

Publication Number: GEK-113632

GE Digital Energy

650 Markland Street
Markham, Ontario
Canada L6C 0M1
Tel: +1 905 927 7070 Fax: +1 905 927-5098
Internet:

http://www.gedigitalenergy.com

*1601-0220-A1*

GE Multilin's Quality

Management System is

registered to ISO 9001:2008

QMI # 005094

UL # A3775

GE
Digital Energy

Содержание Multilink ML3000

Страница 1: ...tion Number GEK 113632 Copyright 2012 GE Digital Energy GE Digital Energy 650 Markland Street Markham Ontario Canada L6C 0M1 Tel 1 905 927 7070 Fax 1 905 927 5098 Internet http www gedigitalenergy com 1601 0220 A1 GE Multilin s Quality Management System is registered to ISO 9001 2008 QMI 005094 UL A3775 GE Digital Energy ...

Страница 2: ...istered trademark of GE Digital Energy The contents of this manual are the property of GE Multilin Inc This documentation is furnished on license and may not be reproduced in whole or in part without the permission of GE Multilin The manual is for informational use only and is subject to change without notice Part number 1601 0049 A1 October 2012 ...

Страница 3: ...en tested and found to comply with the limits for a Class A computing device in accordance with the specifications in Subpart J of Part 15 of FCC rules which are designed to provide reasonable protection against such interference when operated in a commercial environment Operation of this equipment in a residential area is likely to cause interference in which case the user at their own expense wi...

Страница 4: ...followed Before performing visual inspections tests or periodic maintenance on this device or associated circuits isolate or disconnect all hazardous live circuits and sources of electric power Failure to shut equipment off prior to removing the power connections could expose you to dangerous voltages causing injury or death All recommended equipment that should be grounded and must have a reliabl...

Страница 5: ...ía que no se pueda eliminar como basura normal sin clasificar en la Unión Europea Examine la documentación del producto para la información específica de la batería La batería se marca con este símbolo que puede incluir siglas para indicar el cadmio Cd el plomo Pb o el mercurio Hg Para el reciclaje apropiado devuelva este producto a su distribuidor ó deshágase de él en los puntos de reciclaje desi...

Страница 6: ...rotulação para indicar o cádmio Cd chumbo Pb ou o mercúrio hg Para uma reciclagem apropriada envie a bateria para o seu fornecedor ou para um ponto de recolha designado Para mais informação veja www recyclethis info RU Утилизация батарей Согласно европейской директиве об отходах электрического и электронного оборудования продукты содержащие батареи нельзя утилизировать как обычные отходы на террит...

Страница 7: ...ollowing conditions Note Indicates a hazardous situation which if not avoided will result in death or serious injury Note Indicates a hazardous situation which if not avoided could result in death or serious injury Note Indicates a hazardous situation which if not avoided could result in minor or moderate injury Note Indicates practices not related to personal injury ...

Страница 8: ...0 8 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL CHAPTER 0 ...

Страница 9: ... SETTING THE IP PARAMETERS 1 13 PRIVILEGE LEVELS 1 15 USER MANAGEMENT 1 15 HELP 1 16 EXITING 1 18 ENERVISTA SECURE WEB MANAGEMENT 1 19 LOGGING IN FOR THE FIRST TIME 1 19 PRIVILEGE LEVELS 1 20 USER MANAGEMENT 1 20 MODIFYING THE PRIVILEGE LEVEL 1 24 HELP 1 25 EXITING 1 26 ML3000 FIRMWARE UPDATES 1 27 UPDATING MULTILINK FIRMWARE 1 27 SELECTING THE PROPER VERSION 1 27 UPDATING THROUGH THE COMMAND LINE...

Страница 10: ...Y 2 12 3 INSTALLATION PREPARATION 3 1 PRECAUTIONS 3 1 LOCATING THE ML3000 3 1 CONNECTING ETHERNET MEDIA 3 3 DESCRIPTION 3 3 CONNECTING ST TYPE FIBER OPTICS TWIST LOCK 3 3 CONNECTING SC TYPE FIBER OPTICS SNAP IN 3 4 CONNECTING SINGLE MODE FIBER OPTICS 3 4 CONNECTING RJ45 TWISTED PAIR 3 4 CONNECTING GIGABIT MEDIA USING GBICS 3 5 MECHANICAL INSTALLATION 3 6 RACK MOUNTING 3 6 RACK MOUNTING REVERSE MOU...

Страница 11: ...E 5 23 HOST NAMES 5 25 ERASING CONFIGURATION 5 27 IPV6 5 31 INTRODUCTION TO IPV6 5 31 WHAT S CHANGED IN IPV6 5 31 IPV6 ADDRESSING 5 32 CONFIGURING IPV6 5 32 LIST OF COMMANDS IN THIS CHAPTER 5 34 6 ACCESS CONSIDERATIONS SECURING ACCESS 6 1 DESCRIPTION 6 1 PASSWORDS 6 1 PORT SECURITY FEATURE 6 2 CONFIGURING PORT SECURITY THROUGH THE COMMAND LINE INTERFACE 6 3 COMMANDS 6 3 ALLOWING MAC ADDRESSES 6 4 ...

Страница 12: ...NAGEMENT SOFTWARE 9 12 COMMANDS 9 12 PORT SETUP 9 13 BROADCAST STORMS 9 16 10 VLAN VLAN DESCRIPTION 10 1 OVERVIEW 10 1 TAG VLAN VS PORT VLAN 10 3 CONFIGURING PORT VLANS THROUGH THE COMMAND LINE INTERFACE 10 4 DESCRIPTION 10 4 COMMANDS 10 4 CONFIGURING PORT VLANS WITH ENERVISTA SECURE WEB MANAGEMENT SOFTWARE 10 6 DESCRIPTION 10 6 CONFIGURING TAG VLANS THROUGH THE COMMAND LINE INTERFACE 10 10 DESCRI...

Страница 13: ... SERVICE QOS OVERVIEW 14 1 DESCRIPTION 14 1 QOS CONCEPTS 14 1 DIFFSERV AND QOS 14 2 IP PRECEDENCE 14 2 CONFIGURING QOS THROUGH THE COMMAND LINE INTERFACE 14 4 COMMANDS 14 4 EXAMPLE 14 6 CONFIGURING QOS WITH ENERVISTA SECURE WEB MANAGEMENT SOFTWARE 14 8 DESCRIPTION 14 8 15 IGMP OVERVIEW 15 1 DESCRIPTION 15 1 IGMP CONCEPTS 15 1 IP MULTICAST FILTERS 15 4 RESERVED ADDRESSES EXCLUDED FROM IP MULTICAST ...

Страница 14: ...ENERVISTA SECURE WEB MANAGEMENT SOFTWARE 18 9 SERIAL CONNECTIVITY 18 11 DESCRIPTION 18 11 HISTORY 18 12 COMMANDS 18 12 PING 18 13 PING THROUGH THE COMMAND LINE INTERFACE 18 13 PING THROUGH ENERVISTA SECURE WEB MANAGEMENT SOFTWARE 18 13 PROMPT 18 14 CHANGING THE COMMAND LINE PROMPT 18 14 SYSTEM EVENTS 18 15 DESCRIPTION 18 15 COMMAND LINE INTERFACE EXAMPLE 18 15 ENERVISTA EXAMPLE 18 16 COMMAND REFER...

Страница 15: ...uld contain MultiLink ML3000 Ethernet Switch base unit configured with user selected port module options installed Set of metal ears for 19 inch rack mounting Installation and user guide this manual Remove the items from the shipping container Be sure to keep the shipping container should you need to re ship the unit at a later date To validate the product warranty please complete and return the e...

Страница 16: ...onnector mm Fiber 550m C C 2 x 1000 Mbit SFP LC Connector sm Fiber 2km D D 2 x 1000 Mbit SFP LC Connector sm Fiber 10km E E 2 x 1000 Mbit SFP LC Connector sm Fiber 25km F F 2 x 1000 Mbit SFP LC Connector sm Fiber 40km G G 2 x 1000 Mbit SFP LC Connector sm Fiber 70km H H 2 x 1000 Mbit SFP ports no transceivers empty cage J J 2 x 1000 Mbit RJ 45 Fixed Ports with 1588 timing K K 2 x 1000 Mbit SFP LC ...

Страница 17: ...no transceivers empty cage P P P P P P P P 4 x 10 100Mbit RJ45 Copper with 1588 Timing Q Q Q Q Q Q Q Q 2 x 100Mbit ST mm Fiber with 1588 Timing R R R R R R R R 2 x 100Mbit SC mm Fiber with 1588 Timing S S S S S S S S 4 x 100Mbit LC mm Fiber with 1588 Timing T T T T T T T T 4 x 100Mbit MTRJ mm Fiber with 1588 Timing U U U U U U U U 4 x 100Mbit LC sm Fiber 20km with 1588 Timing W W W W W W W W 2 x 1...

Страница 18: ... time max TX TX TX FX FX FX TX G G G System aggregate forward and filter rate 11 9 Mpps NETWORK STANDARDS AND COMPLIANCE HARDWARE Ethernet V1 0 V2 0 IEEE 802 3 10Base T IEEE 802 3u 100Base TX 100Base FX IEEE 802 3z 1000Base X Ethernet Auto negotiation IEEE 802 3ab 1000Base X Ethernet IEEE 802 1p Priority protocol IEEE 802 1d Spanning tree protocol IEEE 802 1w Rapid spanning tree protocol IEEE 802 ...

Страница 19: ...le 550 m 1804 ft 1000BASE LX full duplex multi mode 50 62 5 μm cable 550 m 1804 ft 1000BASE LX full duplex single mode 9 μm cable 5 km 16 4 K ft 1000BASE ZX full duplex single mode 9 μm cable 70 km 229 6 K ft FIBER MULTI MODE CONNECTOR TYPES SUPPORTED Fiber Port LC type plug in SFF fiber multi mode 100BASE FX Fiber Port MTRJ type plug in SFF fiber multi mode 100BASE FX Fiber Port SC type plug in m...

Страница 20: ...s 60 watts typical with 32 fully loaded fiber ports ALARM RELAY CONTACTS Max 220 VDC 0 27 A Form C One NC indicating internal power one NC software controllable MANAGEMENT CONSOLE Connector RJ45 1 3 2 Environmental Specifications OPERATING ENVIRONMENT Ambient Temperature 40 to 140 F 40 to 60 C for UL 60950 and Component Parts rating 40 to 195 F 40 to 85 C for IEC 60068 Type Test short term rating ...

Страница 21: ... A Radiated Conducted Emissions FCC Part 15 Subpart B Class A Random Vibration EN61373 Class A Shock EN61373 30g Safety EN60950 1 standard Power Interruption NEMA TS2 1500 msce 450 msec interrupts Power Transients high repetition NEMA TS2 2 1 6 1 2003 300V 2500W Power Transients low repetition high energy NEMA TS2 2 1 6 2 2003 600V 1 ohm impedance Transients I O terminals NEMA TS2 2 1 7 1 2003 300...

Страница 22: ...NG TO CE Compliance Low voltage directive EN60950 1 EMC Directive EN61000 6 2 EN61000 6 4 North America cULus UL60950 1 C22 2 No 60950 1 IEC EMI and operating conditions class C for power substations IEC61850 3 FCC FCC part 15 subpart B Class A IEEE IEEE1613 environmental standard for Electric Power ISO Manufactured under a registered quality program ISO9001 ...

Страница 23: ...r 2 can be used optionally only if parameter 1 is specified parameter 3 is mandatory Whenever the word PC is used it implies a UNIX Linux Windows or any other operating system based workstation computer personal computer laptop notebook or any other computing device Most of the manual uses Windows XP based examples While effort has been made to indicate other operating system interactions it is be...

Страница 24: ...cide on a manager level account name and password 6 IP address netmask default gateway for the switch being configured As a default the switch has no IP Internet Protocol address and subnet mask For first time use the IP address has to be assigned This can only be done by using the console interface provided The same procedure can also be used for other configuration changes or updates for example...

Страница 25: ...telnet as well as the serial port Access to the switch can be either through the console interface or remotely over the network Simultaneous access that is through the console port as well as through the network to the MultiLink switch is not permitted The Command Line Interface CLI enables local or remote unit installation and maintenance The MultiLink family of switches provides a set of system ...

Страница 26: ...ress as well as change user passwords or create new users 1 5 5 Automatic IP Address Configuration The ML3000 is operational immediately after it is powered up The advanced management and configuration capabilities of the ML3000 allows you to easily configure manage and secure your devices and network Before starting ensure you have the following items RJ45 Ethernet cable PC with an Ethernet port ...

Страница 27: ...prompt The default login is Username manager Password manager 1 5 6 Setting the IP Parameters To setup the switch the IP address and other relevant TCP IP parameters have to be specified The IP address on the MultiLink switch is set to 192 168 1 2 from the factory The switch is fully operational as a Layer 2 switch as a default Setting a default IP address can potentially cause duplicate IP addres...

Страница 28: ...oceed on rebooting the switch Y or N Y Do you wish to save current configuration Y or N Y ML3000 The ML3000 forces an answer by prompting with a Y or a N to prevent accidental keystroke errors and loss of work The parameters can be viewed at any time by using the show command The show command will be covered in more detail later in various sections throughout the document The example below illustr...

Страница 29: ... from an operator level to manager level using the enable command is shown below ML3000 enable manager Password ML3000 Note the prompt changes with the new privilege level Operator privileges allow views of the current configurations but do not allow changes to the configuration A character delimits the operator level prompt Manager privileges allow configuration changes The changes can be done at...

Страница 30: ...ivileges ML3000 user chlevel user peter level 1 Access Permission Modified ML3000 user The syntax to set the access privileges for telnet and Web services is shown below useraccess user name service telnet web enable disable The following example sets the access privileges for telnet and Web services ML3000 user useraccess user peter service telnet disable Telnet Access Disabled 1 5 9 Help Typing ...

Страница 31: ... options for the show command are ML3000 show Enter Usage show active stp show active snmp show active vlan show address table show age show alarm show arp show auth config ports show backpressure show bootmode more Other ways to display help specifically with reference to a command or a set of commands use the TAB key The following syntax applies TAB Command string TAB First character of the comm...

Страница 32: ...TAB key completes the command ML3000 se TAB password timeout vlan ML3000 set 1 5 10 Exiting To exit from the CLI interface and terminate the console session use the logout command This command prompts to ensure that the logout was not mistakenly typed The following syntax applies logout The following example illustrates logging out from a session ML3000 logout Logging out from the current session ...

Страница 33: ... switch NOTE Note Make sure you use HTTPS secure HTTP and not HTTP in the URL In the example shown in the previous section the URL is https 3 94 247 41 If your site uses name services you can use a name instead of the IP address Please make sure that the name is resolved to the IP address assigned to the switch The secure site will issue the certificate check shown below FIGURE 1 2 Security certif...

Страница 34: ...me screen 1 6 2 Privilege Levels Operator privilege users operator privileges allow views of the current configurations but do not allow changes to the configuration Manager privilege users manager privileges allow configuration changes The changes can be done at the manager prompt or for global configuration as well as specific configuration 1 6 3 User Management A maximum of five users can be ad...

Страница 35: ...21 To add a user use the add button The username must be a unique name The password is recommended to be at least 8 characters long with a mix of upper case lower case numbers and special characters In the following example below the user peter was added with manager privilege after clicking the add button ...

Страница 36: ... COMMUNICATIONS SWITCH INSTRUCTION MANUAL INTRODUCTION CHAPTER 1 INTRODUCTION After successfully adding a user the added user is displayed in the list of users as shown below To delete a user click on the delete icon as shown below ...

Страница 37: ... INTRODUCTION MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 1 23 The firmware will prompt to verify the delete command To modify the password view the users as described above and click on the edit icon ...

Страница 38: ... example the user ID peter was selected for modification The password for peter will be modified after the new password is entered 1 6 4 Modifying the Privilege Level Privilege levels cannot be changed from the EnerVista Secure Web Management SWM firmware This can only be done through the CLI interface or alternately by deleting the user and adding the same user with the proper privilege level ...

Страница 39: ...DUCTION INTRODUCTION MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 1 25 1 6 5 Help Help for the EnerVista Secure Web Management software can be obtained by clicking on the Help icon as shown below ...

Страница 40: ...LINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL INTRODUCTION CHAPTER 1 INTRODUCTION 1 6 6 Exiting To exit or logout click on the logout button Confirm the logout by selecting OK in the pop up window ...

Страница 41: ...space 5 Manager level account name and password of the switch being upgraded 6 An internet connection Ensure the connection does not block ftp file transfers 1 7 2 Selecting the Proper Version Ensure that the proper version of the MultiLink Switch Software is installed The latest version of the firmware is available at http www GEmultilin com Connect to the ML3000 and login as manager Enter the sh...

Страница 42: ... Return to the HyperTerminal window used in step 5 Select the Transfer Send File menu item As shown below enter the location of the new firmware file Select the Xmodem protocol Select the Send button and to begin the file transfer Once the file transfer is completed reboot the switch with the reboot command or by cycling power Login to the switch and use the show version command to verify and uplo...

Страница 43: ...ollowing URL https IP address of the switch If using FTP save the configuration before proceeding GE Multilin recommends a two step update first save the configuration to the ftp server then load the new image and restart the switch refer to Saving Configuration on page 5 20 for details on saving the configuration Load the new firmware as shown below As the file is being loaded the firmware will d...

Страница 44: ...server then load the new image and restart the switch refer to Saving Configuration on page 5 20 for details on saving the configuration Load the new firmware as shown below As the file is being loaded the firmware will display the transfer in progress window Reboot the switch when the transfer is complete After reboot the firmware is ready for use ...

Страница 45: ...E 1588v2 timing synchronization with precision as low as single digit nanoseconds The ML3000 provides an advanced level of 1588v2 timing features and accuracy using integrated hardware and software Advanced timing is supported on 100 Mb and Gb ports and is configurable on both fiber and copper port types The ten port slots in the ML3000 provide the configuration flexibility for network designers t...

Страница 46: ...dware and industry standard managed networks software functionality all in convenient 1 U rack mount packages The ML3000 is a 19 rack mountable Ethernet switch with three eight port slots A B and C and one Gb only slot D Slots A B and C may be configured with a selection of fiber and copper ports Slot D may be configured with a Gb module that accepts GBICs These configurable ports allow the ML3000...

Страница 47: ...er media connections with 10 and 100Mbps capability NOTE Note The ML3000 Port Modules are not identical to the port modules used in other Multilink ML2400 switch products For information about other General Electric products please see the applicable product manual For a list of ML3000 Modules refer to Section 1 2 1 Order Codes Each ML3000 Port Module is individually described in the following sec...

Страница 48: ...rovide valid indications of operating conditions on that port Using the Multilink ML3000 software the user may disable auto negotiation and fix the desired operation of each RJ 45 port The user may select 10Mb or 100Mb speed and full or half duplex mode per port as required A module similar to Module A is also available with IEEE 1588v2 Timing Synchronization as Module P NOTE Note For Power Substa...

Страница 49: ...e same functions as the Multimode version see Section 2 2 3 for more details The Module M 4 port Fiber module provides four 100Mb Singlemode LC Long Reach Fiber ports supporting distances up to 40km This module provides the same functions as the Multimode version see Section 2 2 3 for more details Modules similar to Module K and Module M are also available with IEEE 1588v2 Timing Synchronization a...

Страница 50: ...device when lit and blinking Activity indicating packets being received A module similar to Module E is also available with IEEE 1588v2 Timing Synchronization as Module F 2 2 7 Module J Module L 100 Mb use in Slots 3 10 Two SC Singlemode The Module J two port fiber module provides two 100Mb Singlemode SC Fiber ports supporting distances up to 20km This module provides the same functions as the Mul...

Страница 51: ...ach Gigabit port Each Copper Gigabit port has LEDs that indicate Link Activity L A and Full Half Duplex F H 2 2 10 Module H Gb two Gigabit SFPs use in Slots 1 and 2 only The Module H two port Fiber Gigabit module provides two SFP open transceiver ports in slot 1 and or 2 SFP Transceivers are available with both multimode 850 nm 550 m 1310 nm 2km singlemode 1310 nm 10km and 25 km and singlemode 155...

Страница 52: ... out to the Ethernet segments connected The cut through technique permits collision fragment frames which are a result of late collisions to be forwarded which add to the network traffic Since there is no way to filter frames with a bad CRC the entire frame must be present in order for CRC to be calculated the result of indiscriminate cut through forwarding is greater traffic congestion especially...

Страница 53: ...supplies 2 3 5 Additional Features and Benefits IEEE 1588 Precision Timing Synchronization The ML3000 offers high precision IEEE 1588v2 timing Synchronization with precision as low as single digit nanoseconds Managed switching for high performance Ethernet LANs ML3000 Switches provide non blocking all ports can run at full speed at once performance with standard Managed Network Software Switching ...

Страница 54: ...re dual rating is 60 C per UL methods and 85 C per IEC 60068 2 1 and IEC 60608 2 2 for 16 hours RSTP 2004 for rings and meshes fastest fault recovery interoperability RSTP 2004 provides reliable fast recovery from a fault in a redundant LAN which may include Multilink switches and routers as well as other vendors industry standard RSTP products Redundant topologies may include rings dual rings and...

Страница 55: ...rk administrator determines which ports and nodes are in which broadcast domains by setting membership profiles for each of them The ML3000 VLAN capability can be configured for use in standard Tag based VLAN networks The modularity of the ML3000 switch makes it an attractive choice for use in applications with LAN connections to a large organization s multiple site industrial facilities The diffe...

Страница 56: ... ML3000 switch helps create a database of all the network subnets to easily manage the network 2 4 4 ML3000 in a Redundant ring topology A managed network is needed to provide a redundant ring topology for maximum reliability In a network where any faulty cable cable disconnection or power failure could bring down communication to the whole system a ring topology can be configured to provide conti...

Страница 57: ... application The ML3000 Ethernet Switch with RSTP 2004 fault recovery fulfills the redundancy requirements for reliable industrial networks with fast reconfiguration time typically 20 to 40 milliseconds for cable breaks or similar network faults when set up in a ring topology The Gigabit ports option boosts the bandwidth for high speed to support high traffic loads and minimize congestion ...

Страница 58: ...2 14 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL PRODUCT DESCRIPTION CHAPTER 2 PRODUCT DESCRIPTION ...

Страница 59: ... s electrical circuits 5 Verify that the equipment has a reliable and uncompromised earthing path 6 Esnure equipment is to be installed by service personnel in a restricted operation area This chapter describes installation of the MultiLink ML3000 Ethernet Switch as well as connection of the various Ethernet media types 3 1 2 Locating the ML3000 For mounting instructions refer to Mechanical Instal...

Страница 60: ...NSTRUCTION MANUAL INSTALLATION CHAPTER 3 INSTALLATION When connecting the Ethernet cabling there is no need to power down the unit Individual cable segments can be connected or disconnected without concern for power related problems or damage to the unit ...

Страница 61: ...t free lens tissue dampened in alcohol Ensure the connectors are clean before proceeding Note One strand of the duplex fiber optic cable is coded using color bands at regular intervals The color coded strand must be used on the associated ports at each end of the fiber optic segment Connect the transmit TX port on the module light colored post to the receive RX port of the remote device Begin with...

Страница 62: ... should be used when making 100Base TX connections When the ports are used as 10Base T ports CAT 3 may be used In either case the maximum distance for unshielded twisted pair cabling is 100 m 328 ft NOTE Note Use high quality CAT 5 cables which work with 10 Mb and 100 Mb whenever possible to provide flexibility in a mixed speed network as dual speed ports are auto sensing for 10 and 100 Mb s The f...

Страница 63: ...ert either end of the cable with an RJ45 plug into the RJ45 connector on the module Although the connector is shielded either unshielded or shielded cables may be used Connect the other end of the cable to the corresponding device Use the LINK LED to ensure connectivity by noting that the LED will be illuminated when the unit is powered and connection is established 3 2 6 Connecting Gigabit Media ...

Страница 64: ...me typically accessed in operation from both sides The bracket mounting holes in the sides of the Multilink ML3000 permits the installation of all three types 19 ETSI and 23 of available brackets The optional 23 brackets and the ETSI 21 brackets each come as a pair in a package along with the necessary screws for attaching the brackets to the sides of the ML3000 switch unit They must be ordered as...

Страница 65: ...must be connected to the safety ground except during dielectric testing Ensure that each lead is securely tightened FIGURE 3 1 Power connection and alarm contacts Note Always use a voltmeter to measure the voltage of the incoming power supply and properly determine the positive and negative leads Note The GND should be connected first When power is applied the green PWR LED will illuminate The ML3...

Страница 66: ... normally closed NC contacts to which the user can attach two sets of status monitoring wires at the alarms terminal block see Fig 3 4 1a above or Fig 3 5a below The first NC alarm contact is a software alarm labeled S W operated by user settings in the ML3000 software The user can disable the software alarm feature with a software configuration command if desired When the software alarm is enable...

Страница 67: ... color as shown in the picture Figure 3 2 Alarm Contacts Alarm contacts in 1 2 are hardware operated and 3 4 are software operated 3 4 4 Dielectric Strength hi pot Testing The shorting link between the and safety ground must be removed prior to the dielectric strength test as shown below to protect the transient suppression circuitry of the power supply FIGURE 3 2 Dielectric strength testing Pin 1...

Страница 68: ...3 10 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL INSTALLATION CHAPTER 3 INSTALLATION ...

Страница 69: ...ribed below 4 1 2 Filtering and Forwarding Each time a packet arrives on one of the switched ports the decision is taken to either filter or to forward the packet Packets whose source and destination addresses are on the same port segment will be filtered constraining them to that one port and relieving the rest of the network from having to process them A packet whose destination address is on an...

Страница 70: ...copper port to other devices Operation is according to the IEEE 802 3u standard The Managed ML3000 s Fast Ethernet copper ports can be set for either fixed 100Mb speed or for 10 100 F H N way auto negotiation per the IEEE802 3u standard The selection is made via MNS software The factory default setting is for auto negotiation At 10Mb or 100Mb fixed speed the user may select half or full duplex mod...

Страница 71: ...es and cable lengths within that domain For Multilink ML3000 Fast Ethernet switched ports operating at 100Mb half duplex the bit time delay is 50BT 4 1 7 Flow Control IEEE 802 3x The ML3000 incorporates a flow control mechanism for full duplex mode Flow control reduces the risk of data loss if a long burst of activity causes the switch to save frames until its buffer memory is full This is most li...

Страница 72: ...B km LXSC70 OPB Pt min PR min OPBworst OPB 1dB LED aging 1dB insertion loss distanceworst worst case OPB in dB cable loss in dB km Table 4 1 Power budget values for various modules Fiber Module Speed Std Mode Std km fdx hdx Wave length nm Cable Size ìm X mitr OutputPT dBm R cvr Sens PR dBm Worst OPB dBm Worst distance Km fdx typical OPB dBm typical distance Km fdx D 10 Mb FL Multi 2 2 850 62 5 125...

Страница 73: ...reater than the fiber cable s passive attenuation where attenuation is the sum of cable loss LED aging loss insertion loss and safety factor D 1000 Mb LX Gigabit Single 10 1310 9 125 10 0 22 10 22 11 24 E 1000 Mb LX Gigabit Single 25 1310 9 125 3 0 21 16 40 18 45 F 1000 Mb ZX Gigabit Single 40 1550 9 125 5 0 22 15 60 17 68 G 1000 Mb ZX Gigabit Single 70 1550 9 125 2 0 22 18 90 20 100 Table 4 1 Pow...

Страница 74: ...nstallation about 90 of network downtime can be attributed to wiring and connector problems 3 If the problem is isolated to a network device other than the ML3000 it is recommended that the problem device be replaced with a known good device Verify whether or not the problem is corrected If not go to the next step If the problem is corrected the ML3000 and its associated cables are functioning pro...

Страница 75: ...an NTP server to synchronize the time on the switch Use TFTP or FTP to download the configurations or upload software updates Run ping tests to test connectivity To set the IP address please refer to Setting the IP Parameters on page 1 13 Once the IP address is set the CLI can be accessed via telnet as well as the console interface From now on all commands discussed are accessible from the command...

Страница 76: ...ITCH INSTRUCTION MANUAL IP ADDRESSING CHAPTER 5 IP ADDRESSING Edit the IP address information Besides manually assigning IP addresses there are other means to assign an IP address automatically The two most common procedures are using DHCP and bootp ...

Страница 77: ...y which the bootp software will look up the database and update the IP address and subnet mask of the switch would be as follows ML3000 ht ether ha 002006250065 ip 3 94 247 41 sm 255 255 252 0 gw 3 94 244 1 hn vm rfc1048 where ML3000 is a user defined symbolic name for the switch ht is the hardware type For the MultiLink family of switches set this to ether for Ethernet This tag must precede the h...

Страница 78: ...ed bootp server The following example changes the boot mode of the switch ML3000 set bootmode type bootp bootimg enable bootcfg disable Network application image download is enabled Network application config download is disabled Save Configuration and Restart System ML3000 Alternatively the DHCP bootp manual can be enabled through the EnerVista Secure Web Management software as shown below Select...

Страница 79: ...ient can be disabled through the command line interface by using the telnet disable command with the following syntax telnet enable disable Telnet can also be disabled for specific users with the useraccess command Refer to Setting the IP Parameters on page 1 13 for details Multiple telnet sessions started from the CLI interface or the command line are serviced by the ML3000 in a round robin fashi...

Страница 80: ...Serial Link Inbound Telnet Enabled Yes Outbound Telnet Enabled Yes Web Console Enabled Yes SNMP Enabled Yes Terminal Type VT100 Screen Refresh Interval sec 3 Baud Rate 38400 Flow Control None Session Inactivity Time min 10 ML3000 Users can telnet to a remote host from the MultiLink family of switches using the following syntax telnet ipaddress port port number The default port for telnet is 23 To ...

Страница 81: ...ession id 3 Session Terminated ML3000 In the above example the user with username peter is given telnet access Then multiple users telnet into the switch This is shown using the show session command The user operator session is then terminated using the kill session command NOTE Note A maximum of four simultaneous telnet sessions are allowed at any time on the switch The commands in these telnet w...

Страница 82: ... connectivity The terminal software parameters e g HyperTerminal will also have to be changed to match the new settings To see the current settings of the serial port use the show serial command to query the serial port settings as illustrated below ML3000 show serial Baud Rate 38400 Data 8 Parity No Parity Stop 1 Flow Control None 5 3 2 System Parameters The system parameters can be queried and c...

Страница 83: ...a list of system variables which GE recommends changing System Name Using a unique name helps you to identify individual devices in a network System Contact and System Information This is helpful for identifying the administrator responsible for the switch and for identifying the locations of individual switches To set these variables change the mode to be SNMP configuration mode from the manager ...

Страница 84: ...Time 8 10 04 ML3000 show timezone Timezone GMT 05hours 00minutes ML3000 set date year 2005 month 5 day 11 Success in setting device date ML3000 show date System Date Wednesday 15 11 2005 in mm dd yyyy format ML3000 The syntax for other date and time commands are set timeformat format 12 24 set daylight country country name The following command sequence sets the daylight location ML3000 set daylig...

Страница 85: ...nc hour 0 24 min 0 59 default 24 hours sntp enable disable To set the SNTP server to be 3 94 210 5 with a time out of 3 seconds and a number of retries set to 3 times allowing the synchronization to be ever 5 hours the following sequence of commands are used ML3000 sntp ML3000 sntp setsntp server 3 94 210 5 timeout 3 retry 3 SNTP server is added to SNTP server database ML3000 sntp sync hour 5 ML30...

Страница 86: ...hanges made To add an SNTP server click the add button on the Configuration SNTP menu The menu prompts you to add IP address of an SNTP server the time out in seconds and the number of retries before the time synchronization effort is aborted The Sync Now button allows synchronization as soon as the server information is added NOTE Note If your site has internet access there are several SNTP serve...

Страница 87: ...INSTRUCTION MANUAL 5 13 The Time Out value is in seconds Note the time server can be a NTP server available on the Internet Ensure the IP parameters are configured for the switch and the device can be pinged by the switch Once the server is added it is listed with the other SNTP servers ...

Страница 88: ...the filename must be a unique since overwriting files is not permitted by most ftp and tftp servers or services Only alphanumeric characters are allowed in the filename The following example illustrated how to save the configuration on a tftp server ML3000 saveconf mode tftp 3 94 240 9 file ML3000set Do you wish to upload the configuration Y or N Y The saveconf and loadconf commands are often used...

Страница 89: ...nfiguration of GE MultiLink switches settings GE Multilin Inc recommends that modifications of this file and the commands should be verified by the User in a test environment prior to use in a live production network All modifications are made at the User s own risk and are subject to the limitations of the GE MultiLink software End User License Agreement EULA Incorrect usage may result in network...

Страница 90: ...hed Should you want to edit edit the System portion of the file only GE Multilin Inc recommends editing the script file see below 2 File names cannot have special characters such as space and control characters SYSTEM Edit below this line only system_name ML3000 system_contact support gemultilin com system_location Markham Ontario boot_mode manual system_ip 192 168 5 5 system_subnet 0 0 0 0 system...

Страница 91: ...uration or to view specific modules configured the show config command is used as described below Syntax show config module module name Where module name can be If the module name is not specified the whole configuration is displayed Name Areas affected system IP Configuration Boot mode Users settings e g login names passwords event Event Log and Alarm settings port Port settings Broadcast Protect...

Страница 92: ...ut System Manager This area configures System related information SYSTEM Edit below this line only system_name Main system_contact someone joe com system_location Markham Ontario boot_mode manual system_ip 192 168 1 15 system_subnet 0 0 0 0 system_gateway 192 168 1 11 idle_timeout 10 telnet_access enable snmp_access enable web_access enable more ...

Страница 93: ...w config command ML3000 show config module snmp HARDWARE type ML3000 slotB 8 Port TP Module Network Management This area configures the SNMPv3 agent SNMP engineid LE_v3Engine defreadcomm public defwritecomm private deftrapcomm public authtrap disable com2sec_count 0 group_count 0 view_count 1 view1_name all view1_type included view1_subtree 1 view1_mask ff more ...

Страница 94: ...iguration Without a reboot the ML3000 used the previous configuration When reboot is selected the user is prompted as follows Reboot Y or N Select Y The ML3000 will prompt Save Current Configuration Select N ML3000 show config module snmp system HARDWARE type ML3000 slotB 8 Port TP Module System Manager This area configures System related information SYSTEM Edit below this line only system_name Ma...

Страница 95: ... old v2 format and new v3 format The v3 format must be used to utilize the ASCII and CLI Script capability save format v2 v3 Note With release 1 7 and higher the configuration can be saved in the older format binary object or in a new format as an ASCII file The new format is recommended by GE Multilin Use the old format only if there are multiple MultiLink switches on the network running differen...

Страница 96: ...uplication or disclosure is subject to U S Government restrictions as set forth in Sub division b 3 ii of the rights in Technical Data and Computer Software clause at 52 227 7013 This file is provided as a sample template to create a backup of GE MultiLink switches configurations As such this script provides insights into the configuration of GE MultiLink switch s settings GE Multilin Inc recommen...

Страница 97: ...dress on the receiving Switch before connecting to the network After configuration changes are made all the changes are automatically saved It is a good practice to save the configuration on another server on the network using the tftp or ftp protocols Once the configuration is saved the saved configuration can be reloaded to restore the settings At this time the saved or loaded configuration para...

Страница 98: ...d or Config Upload Save the configuration of the switch on the server or load the saved configuration from the server to the switch This option is used to save a backup of the ML3000 configuration or restore the configuration in case of a disaster 3 Script Download or Script Upload Save the necessary CLI commands used for configuration of the switch or upload the necessary CLI commands needed to c...

Страница 99: ...de after adding an SNTP server This is done by clicking on the Save icon to save current configuration 5 4 7 Host Names Instead of typing in IP addresses of commonly reached hosts the ML3000 allows hosts to be created with the necessary host names IP addresses user names and passwords Use the Configuration Access Host menu to create host entries as shown below ...

Страница 100: ... MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL IP ADDRESSING CHAPTER 5 IP ADDRESSING To add a host click the Add button Fill in all the fields below to create the necessary host entries ...

Страница 101: ...y shown above 5 4 8 Erasing Configuration Kill Config option using SWM To erase the configuration and reset the configurations to factory defaults you can use the kill config option from Administration tab by selecting kill config NOTE Note User also has the option to save one module from defaulting back to factory defaults by checking the module box before issuing kill Config command ...

Страница 102: ...d is issued by pressing the OK button the Switch will perform a factory dump restoring all the Switch settings back to factory defaults except for the System settings which will be retained When the OK button is pressed the Switch will issue the following warning messages and reboot the switch for it to revert back to the factory default settings with the exceptions of modules opted not to be defa...

Страница 103: ...ig save module command The kill Config command will default all the Switch settings back to factory defaults while the kill config save module will default all with the exception of module selected Available modules are system user acces port vlan ps mirror lacp slp and igmp Name Areas affected System IP Configuration Boot mode User Users settings e g login names passwords Port Port settings Broad...

Страница 104: ...s configuration using the kill config command and the second example illustrates how to erase all the Switch s configuration with the exception of system configuration ML3000 kill config Do you want to erase the configuration Y or N Y Successfully erased configuration Please reboot ML3000 kill config save system Do you want to erase the configuration Y or N Y Successfully erased configuration Plea...

Страница 105: ...igabit Ethernet OC 12 ATM etc and at the same time still be efficient on low bandwidth networks e g wireless In addition it provides a platform for the new level of internet functionality that will be required in the near future IPv6 includes a transition mechanism designed to allow users to adopt and deploy it in a highly diffuse fashion and to provide direct interoperability between IPv4 and IPv...

Страница 106: ...dentifier for the node A single interface may be assigned multiple IPv6 addresses of any type There are three types of IPv6 addresses These are unicast anycast and multicast Unicast addresses identify a single interface Anycast addresses identify a set of interfaces such that a packet sent to an anycast address will be delivered to one member of the set Multicast addresses identify a group of inte...

Страница 107: ...t to an IPv6 station Example telnet fe80 220 6ff fe25 ed80 Besides if the end station supports IPv6 addressing as most Linux and Windows systems do one can access the switch using the IPv6 addressing as shown in the example below http fe80 220 6ff fe25 ed80 ML3000 ipconfig ipconfig Configures the system IP address subnet mask and gateway Usage ipconfig ip ipaddress mask subnet mask dgw gateway ML3...

Страница 108: ... dgw gateway add del configure an IPv6 address The add delete option can be used to add or delete IPv4 IPv6 addresses Syntax show ipconfig display the IP configuration information including IPv6 address Syntax ping6 IPv6 address pings an IPv6 station Syntax show ipv6 displays the IPv6 information Syntax ftp IPv6 address ftp to an IPv6 station Syntax telnet IPv6 address telnet to an IPv6 station ...

Страница 109: ...miliar with issues concerning security as well as securing access for users and computers on a network Secure access on a network can be provided by authenticating against an allowed MAC address as well as IP address 6 1 2 Passwords The GE MultiLink family of switches have a factory default password for the manager as well as the operator account Passwords can be changed from the user ID by using ...

Страница 110: ...ces connected to the MultiLink family of switches If there is an insecure access on the secondary device the MultiLink family of switches allow the authorized users to continue to access the network the unauthorized packets are dropped preventing access to the network NOTE Note Network security hinges on the ability to allow or deny access to network resources This aspect of secure network service...

Страница 111: ...gured to 1 Auto learn the MAC addresses 2 Specify individual MAC addresses to allow access to the network 3 Validate or change the settings The command syntax for the above actions are allow mac address list range port num list range learn port number list enable disable show port security action port num list range none disable drop signal port num list range none log trap logandtrap ps enable di...

Страница 112: ... Note that a maximum of 200 MAC addresses can be learned per port to a maximum of 500 per switch Also the action on the port must be set to none before the port learns the MAC address information ML3000 port security action port 9 10 none ML3000 port security learn port 9 10 enable The following command sequence enables and disables port security ML3000 port security ps enable Port Security is alr...

Страница 113: ... 00 e0 29 22 15 85 00 03 47 ca ac 45 00 30 48 70 71 23 10 ENABLE NONE NONE DISABLE 0 Not Configured 11 ENABLE NONE NONE DISABLE 0 Not Configured 12 ENABLE NONE NONE DISABLE 0 Not Configured 13 ENABLE NONE NONE DISABLE 0 Not Configured 14 ENABLE NONE NONE DISABLE 0 Not Configured 15 ENABLE NONE NONE DISABLE 0 Not Configured 16 ENABLE NONE NONE DISABLE 0 Not Configured ML3000 port security Example 6...

Страница 114: ...port security commands use the port security command Enable port security use the enable ps command Enable learning on the required ports for example use the learn port 11 enable command for port 11 Verify learning is enables and MAC addresses are being learnt on required ports use the show port security port 11 command Save the port security configuration use the save command Example 6 3 Allowing...

Страница 115: ...designated devices to access the network use the add mac 00 c1 00 7f ec 00 port 11 15 command Disable access to the network for unauthorized devices Use action port 11 disable drop depending on whether the port should be disabled or the packed dropped Follow that with a show port security command to verify the setting Optional step Set the notification to notify the management station on security ...

Страница 116: ...bled on selected port s ML3000 port security show port security PORT STATE SIGNAL ACTION LEARN COUNT MAC ADDRESS 9 ENABLE LOG NONE ENABLE 6 00 e0 29 2a f1 bd 00 01 03 e2 27 89 00 07 50 ef 31 40 00 e0 29 22 15 85 00 03 47 ca ac 45 00 30 48 70 71 23 10 ENABLE NONE NONE DISABLE 0 Not Configured 11 ENABLE NONE NONE ENABLE 0 00 c1 00 7f ec 00 12 ENABLE NONE NONE DISABLE 0 Not Configured 13 ENABLE NONE ...

Страница 117: ...change the log size use the set logsize command When the switch detects an intrusion attempt on a port it records the date and time stamp the MAC address the port on which the access was attempted and the action taken by ML3000 software The event log lists the most recently detected security violation attempts This provides a chronological entry of all intrusions attempted on a specific port Examp...

Страница 118: ...0 software can allow or block specific IP addresses or a range of IP addresses to access the switch The access command allows access to configuration mode access The allow ip command allows specified services for specified IP addresses IP addresses can be individual stations a group of stations or subnets The range is determined by the IP address and netmask settings allow ip ipaddress mask netmas...

Страница 119: ...s allow ip 3 94 245 10 mask 255 255 255 0 service telnet Service s allowed for specified address ML3000 access allow ip 3 94 245 25 mask 255 255 255 255 service telnet Service s allowed for specified address ML3000 access remove ip 3 94 245 15 mask 255 255 255 255 Access entry removed ML3000 access exit ML3000 show ip access IP Address Mask Telnet Web SNMP 3 94 245 10 255 255 255 0 ALLOWED DENIED ...

Страница 120: ... EnerVista Secure Web Management software Select the Configuration Port Security menu item to configure port security as shown below From the menu shown above each individual port can be configured for the proper action on the port auto learn MAC addresses and specify individual MAC addresses To edit each port click on the edit icon To enable or disable port security use the Status drop down menu ...

Страница 121: ...ort can be specified to create a log entry or send a trap do both or do nothing This is done through the Signal Status drop down menu 2 The port can be specified to drop the connection disable the port or do nothing This is indicated by the Action Status drop down menu 3 The port can be put in the learn mode or the learning can be disabled This is indicated by the Learn Status drop down menu Addit...

Страница 122: ...he entry of a specific MAC address Once port security is setup it is important to manage the log and review it often If the signals are sent to the trap receiver the traps should also be reviewed for intrusion and other infractions 6 3 2 Logs All events occurring on the Managed MultiLink switch are logged The events can be informational e g login STP synchronization etc debugging logs for debuggin...

Страница 123: ...ts an intrusion attempt on a port it records the date and time stamp the MAC address the port on which the access was attempted and the action taken by the MultiLink switches The event log lists the most recently detected security violation attempts This provides a chronological entry of all intrusions attempted on a specific port The event log records events as single line entries listed in chron...

Страница 124: ... Access this functionality via the Configuration Access IP Access menu item The window above show the authorized access list for managing the switch Note specific services can be authorized Also note that individual stations or a group of stations with IP addresses can be authorized NOTE Note It is assumed that users are familiar with IP addressing schemes e g class A B C etc subnet masking and ma...

Страница 125: ...CHAPTER 6 ACCESS CONSIDERATIONS ACCESS CONSIDERATIONS MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 6 17 ...

Страница 126: ...6 18 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL ACCESS CONSIDERATIONS CHAPTER 6 ACCESS CONSIDERATIONS ...

Страница 127: ... access A RADIUS server is well suited for controlling access into a network by managing the users who can access the network on a RADIUS server Interacting with the server and taking corrective action s is not possible on all switches This capability is provided on the MultiLink family of switches RADIUS servers and its uses are also described by one or more RFCs 7 1 2 802 1x Protocol There are t...

Страница 128: ...he supplicant wanting to access these services starts with an EAPOL Start frame 2 The authenticator MultiLink switch upon receiving an EAPOL start frame sends a response with an EAP Request Identity frame back to the supplicant This will inform the supplicant to provide its identity 3 The supplicant then sends back its own identification using an EAP Response Identity frame to the authenticator Mu...

Страница 129: ...e authenticator supports both EAPOL and EAP over RADIUS to communicate to a standard 802 1x supplicant and RADIUS authentication server The ML3000 software authenticator has the following characteristics Allows control on ports using STP based hardware functions EAPOL frames are Spanning Tree Protocol STP link Bridge PDUs BPDU with its own bridge multicast address Relays MD5 challenge although not...

Страница 130: ...s the timeout in seconds the authenticator waits for the supplicant to respond back The default value is 30 seconds and values can range from 1 to 240 seconds The servertimeout argument is optional and represents the timeout in seconds the authenticator waits for the back end RADIUS server to respond The default value is 30 seconds and can range from 1 to 240 seconds The maxreq argument is optiona...

Страница 131: ... be configured The status argument is optional and enables disables re authentication The period argument is optional and represents the re authentication period This is the time in seconds the authenticator waits before a re authentication process will be performed again to the supplicant The default value is 3600 seconds 1 hour and values range from 10 to 86400 seconds The show stats command dis...

Страница 132: ...Enabled Auto Deasserted Authorized 4 Enabled Auto Deasserted Unauthorized 5 Enabled Auto Deasserted Unauthorized 6 Enabled Auto Deasserted Unauthorized 7 Enabled Auto Deasserted Unauthorized 8 Enabled Auto Deasserted Unauthorized 9 Enabled Auto Deasserted Unauthorized 10 Enabled Auto Deasserted Unauthorized 11 Enabled Auto Deasserted Unauthorized 12 Enabled Auto Deasserted Unauthorized 13 Enabled ...

Страница 133: ...7 60 2 30 8 60 2 30 9 60 2 30 10 60 2 30 11 60 2 30 12 60 2 30 13 60 2 30 14 60 2 30 15 60 2 30 16 60 2 30 continued on following page This command sets timeout characteristics and the number of requests before access is denied The authenticator waits for the supplicant to respond back for 45 seconds the authenticator waits for 60 seconds for the back end RADIUS server to respond back and the auth...

Страница 134: ...hEntersConnecting 3 authEapLogoffsWhileConnecting 0 authEntersAuthenticating 3 authAuthSuccessesWhileAuthenticating 2 authAuthTimeoutsWhileAuthenticating 0 authAuthFailWhileAuthenticating 0 authAuthReauthsWhileAuthenticating 0 authAuthEapStartsWhileAuthenticating 1 authAuthEapLogoffWhileAuthenticating 0 authAuthReauthsWhileAuthenticated 0 authAuthEapStartsWhileAuthenticated 0 authAuthEapLogoffWhil...

Страница 135: ...select the server Do not enable RADIUS capabilities until you have ensured that the ports are configured properly After the ports are configured enable RADIUS Also ensure that the port connected to the RADIUS server or the network where the RADIUS server is connected to is not an authenticated port The following window shows the configuration of a RADIUS Server Initially the RADIUS Services are di...

Страница 136: ... and the default port 1812 is used After configuring the server information specific port information is configured Select the Configuration Radius Port Set menu item to configure the RADIUS characteristics of each port To edit the port settings click on the edit icon Ensure that the port which has the RADIUS server is force authorized and asserted For other ports user ports it is best to leave th...

Страница 137: ... Radius Port Access menu item The Quiet Period column represents the time in seconds the supplicant is held after an authentication failure before the authenticator retries the supplicant for connection The value ranges from 0 to 65535 seconds with a default of 60 The Max Reauth column shows the permitted reauthentication attempts before the port becomes unauthorized Values are integers ranging fr...

Страница 138: ... RADIUS Server are defined through the Configuration Radius Port Access Backend menu item The Supp Timeout column represents the timeout the authenticator waits for the supplicant to respond The values range from 1 to 240 seconds with a default of 30 The Server Timeout column represents the timeout the authenticator waits for the backend RADIUS server to respond The values range from 1 to 240 seco...

Страница 139: ...n Radius Port Access Reauth menu item The Reauth Period represents the time the authenticator waits before a re authentication process will be done again to the supplicant Values range from 10 to 86400 seconds with a default of 3600 1 hour The Configuration Radius Port Stats menu item illustrates the radius statistics for each port After all the port characteristics are enabled Do not forget to sa...

Страница 140: ...7 14 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL ACCESS USING RADIUS CHAPTER 7 ACCESS USING RADIUS ...

Страница 141: ...P based access control protocol originally developed by BBN for the MILNET Military Network XTACACS is now replaced by TACACS TACACS is a TCP based access control protocol TCP offers a reliable connection oriented transport while UDP offers best effort delivery TACACS improves on TACACS and XTACACS by separating the functions of authentication authorization and accounting and by encrypting all tra...

Страница 142: ...d stage is authorization where it is determined whether the user has operator access or manager privileges 8 1 3 TACACS Packet Packet encryption is a supported and is a configurable option for the ML3000 software When encrypted all authentication and authorization TACACS packets are encrypted and are not readable by protocol capture and sniffing devices such as EtherReal or others Packet data is h...

Страница 143: ...ds compatibility Packet type Possible values are TAC_PLUS_AUTHEN 0x01 authentication TAC_PLUS_AUTHOR 0x02 authorization TAC_PLUS_ACCT 0x03 accounting Sequence number The sequence number of the current packet for the current session Flags This field contains various flags in the form of bitmaps The flag values signify whether the packet is encrypted Session ID The ID for this TACACS session Length ...

Страница 144: ...cserver command creates a list of up to five TACACS servers tacserver The add delete argument is mandatory and specifies whether to add or delete a TACACS server The id argument is mandatory and sets the order to poll the TACACS servers for authentication The ip argument is mandatory for adding and defines the IP address of the TACACS server The port argument is mandatory for deleting and defines ...

Страница 145: ...CHAPTER 8 ACCESS USING TACACS ACCESS USING TACACS MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 8 5 ...

Страница 146: ...ACACS with EnerVista Secure Web Management software To access the TACACS servers select the Configuration TACACS menu item By default no TACACS servers are defined To add a server click on the Add button as shown below Note that the TCP port field can be left blank port 49 is used as a default port Up to five TACACS servers can be defined ...

Страница 147: ...SING TACACS ACCESS USING TACACS MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 8 7 After the configuration is completed Save the settings Enable the TACACS services by using the Status drop down menu ...

Страница 148: ...8 8 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL ACCESS USING TACACS CHAPTER 8 ACCESS USING TACACS ...

Страница 149: ...ion thresholds An Ethernet switch sends traffic from one port to another port Unlike a switch a hub or a shared network device the traffic is broadcast on each and every port Capturing traffic for protocol analysis or intrusion analysis can be impossible on a switch unless all the traffic from a specific port is reflected on another port typically a monitoring port The MultiLink family of switches...

Страница 150: ...t mirroring prtmr enable disable The sequence below illustrates how port 11 is mirrored on port 13 Any traffic on port 11 is also sent on port 13 ML3000 show port mirror Sniffer Port 0 Monitor Port 0 Mirroring State disabled ML3000 port mirror ML3000 port mirror setport monitor 11 sniffer 13 Port 11 set as Monitor Port Port 13 set as Sniffer Port ML3000 port mirror prtmr enable Port Mirroring Enab...

Страница 151: ...tatus enable disable lla enable disable The arguments for the setport command are defined as follows The device argument sets up the MultiLink switch in the device configuration mode The name argument assigns a specific name to the port This name is a designated name for the port and can be a server name user name or any other name The speed argument sets the speed to be 10 or 100 Mbps This works ...

Страница 152: ...10HDx 10 Mbps half duplex 10FDx 10 Mbps full duplex 100HDx 100 Mbps half duplex 100FDx 100 Mbps full duplex Possible port settings for 100FX fiber ports are 100FDx default 100 Mbps full duplex 100HDx 100 Mbps half duplex Possible port settings for 10FL fiber ports are 10HDx default 10 Mbps half duplex 10FDx 10 Mbps full duplex Gigabit fiber optic ports Gigabit SX and Gigabit LX 1000FDx default 100...

Страница 153: ...trol xonlimit value xofflimit value where xonlimit can be from 3 to 127 default value is 4 and xofflimit ranges from 3 to 127 default value is 6 9 3 3 Back Pressure The backpressure command disables enables back pressure based flow control mechanisms The default state is disabled When enabled the port uses 802 3 Layer 2 back off algorithms Back pressure based congestion control is possible only on...

Страница 154: ...xample 9 2 Back pressure and flow control ML3000 device ML3000 device show flowcontrol XOnLimit 4 XOffLimit 6 ML3000 device flowcontrol xonlimit 10 xofflimit 15 XOn Limit set successfully XOff Limit set successfully ML3000 device show flowcontrol XOnLimit 10 XOffLimit 15 ML3000 device show backpressure Rx Buffer Threshold 28 ...

Страница 155: ...1 E H 10Tx UP 10 No E 1 10 B2 E H 10Tx DOWN 10 No E 1 11 JohnDoe E H 10Tx DOWN 10 No E 1 12 JaneDoe E H 10Tx DOWN 10 No E 1 13 B5 E F 100Tx UP 100 No E 1 14 B6 E H 10Tx DOWN 10 No E 1 15 B7 E H 10Tx DOWN 10 No E 1 16 B8 E H 10Tx DOWN 10 No E 1 ML3000 device show port 11 Configuration details of port 11 Port Name JohnDoe Port Link State DOWN Port Type TP Port Port Admin State Enable Port VLAN ID 1 ...

Страница 156: ...ed until the storm is determined to be over The storm is determined to be over when a one second period elapses with no broadcast packets received Back pressure and flow control continued ML3000 device show port Keys E Enable D Disable H Half Duplex F Full Duplex M Multiple VLAN s NA Not Applicable LI Listening LE Learning F Forwarding B Blocking Port Name Control Dplx Media Link Speed Part Auto V...

Страница 157: ...pabilities broadcast protect enable disable The rate threshold command set the rate limit in frames per second rate threshold port port list range rate frames sec The show broadcast protect command displays the broadcast storm protection settings show broadcast protect In Example 9 3 the broadcast protection is turned on The threshold for port 11 is then set to a lower value of 3500 broadcast fram...

Страница 158: ...ML3000 device show broadcast protect PORT STATUS THRESHOLD frms sec CURR RATE frms sec ACTIVE 9 Disabled 19531 0 NO 10 Disabled 19531 0 NO 11 Disabled 19531 0 NO 12 Disabled 19531 0 NO 13 Disabled 19531 0 NO 14 Disabled 19531 0 NO 15 Disabled 19531 0 NO 16 Disabled 19531 0 NO ML3000 device broadcast protect enable Broadcast Storm Protection enabled ML3000 device show broadcast protect PORT STATUS ...

Страница 159: ...L3000 device ML3000 device setport port 11 lla disable ML3000 device show port 11 Configuration details of port 11 Port Name JohnDoe Port Link State DOWN Port Type TP Port Port Admin State Enable Port VLAN ID 1 Port Speed 10Mbps Port Duplex Mode half duplex Port Auto negotiation State Enable Port STP State NO STP Port GVRP State No GVRP Port Priority Type None Port Security Enable Port Flow Contro...

Страница 160: ...Management software 9 4 1 Commands Monitoring a specific port can be done by port mirroring Mirroring traffic from one port to another port allows analysis of the traffic on that port To enable port mirroring as well as setting up the ports to be sniffed Select the Configuration Port Mirroring menu item Set the sniffer port and the port on which the traffic is reflected ...

Страница 161: ...he port mirroring be disabled using the Edit button and setting the Mirror Status to off once port monitoring is completed Note that 1 Only one port can be set to port mirror at a time 2 Both the ports monitored port and mirrored port have to belong to the same VLAN 3 The mirrored port shows both incoming as well as outgoing traffic 9 4 2 Port Setup With the ML3000 the specific characteristics of ...

Страница 162: ... in the Configuration Port Settings menu Click the edit icon to open the following window In these windows Port Number represents the port number on the switch Port Name assigns a specific name to the port This name is a designated name for the port and can be a server name user name or any other name Admin Status indicates whether the port can be administered remotely ...

Страница 163: ... displays the Tag settings on the port This value cannot be edited in this window The GVRP State displays the GVRP settings on the port This value cannot be edited in this window The LLA indicates the state of the Link Loss Alert feature The Auto default value for the Port Speed senses the speed and negotiates with the port at the other end of the link for data transfer operation half duplex or fu...

Страница 164: ... performance and cause bridges routers workstations servers and PCs to slow down or even crash The GE MultiLink switch is capable of detecting and limiting storms on each port A network administrator can also set the maximum rate of broadcast packets frames that are permitted from a particular interface If the maximum number is exceeded a storm condition is declared Once it is determined that a st...

Страница 165: ... COMMUNICATIONS SWITCH INSTRUCTION MANUAL 9 17 See details in Broadcast Storms on page 9 8 to determine the threshold level After changes are made do not forget to save the changes using the save icon If the switch is rebooted before the changes are made the changes will be lost ...

Страница 166: ...9 18 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL PORT MIRRORING SETUP CHAPTER 9 PORT MIRRORING SETUP ...

Страница 167: ...ames VLANs provide the capability of having two or more Ethernet segments co exist on common hardware The reason for creating multiple segments in Ethernet is to isolate broadcast domains VLANs can isolate groups of users or divide up traffic for security bandwidth management etc VLANs are widely used today and are here to stay VLANs need not be in one physical location They can be spread across g...

Страница 168: ... shown in the figure FIGURE 10 2 Ports assigned to multiple VLANs By default on the MultiLink family of switches VLAN support is enabled and all ports on the switch belong to the default VLAN DEFAULT VLAN This places all ports on the switch into one physical broadcast domain If VLANs are entirely separate segments or traffic domains how can the VLANs route traffic or talk to each other This can be...

Страница 169: ... more VLAN broadcast domain can be extended across a large network 802 1Q compliant switch ports such as those on the MultiLink family of switches can be configured to transmit tagged or untagged frames A tag field containing VLAN information can be inserted into an Ethernet frame If a port has an 802 1Q compliant device attached such as another switch these tagged frames can carry VLAN membership...

Страница 170: ...s Include consideration for the interaction between VLANs 2 Configure at least one VLAN in addition to the default VLAN 3 Assign the desired ports to the VLANs 4 Decide on trunking strategy how will the VLAN information be propagated from one switch to another and also what VLAN information will be propagated across 5 Layer 3 consideration check to see if the routing between the VLANs is working b...

Страница 171: ...mand sequence shows how to configure VLANs on a MultiLink switch ML3000 vlan type port ML3000 port vlan add id 2 name test port 1 10 ML3000 port vlan start vlan all ML3000 port vlan save Saving current configuration Configuration saved To move Management Control on any VLAN add id vlan Id name vlan name port number list range Forbid number list range mgt nomgt To enable or disable Management Contr...

Страница 172: ...figuring VLANs Include consideration for the interaction between VLANs 2 Configure at least one VLAN in addition to the default VLAN 3 Assign the desired ports to the VLANs 4 Decide on trunking strategy how will the VLAN information be propagated from one switch to another and also what VLAN information will be propagated across 5 Layer 3 consideration check to see if the routing between the VLANs...

Страница 173: ...CHAPTER 10 VLAN VLAN MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 10 7 The currently assigned Port VLANs are displayed as follows Select the Configuration VLAN Port Based menu item ...

Страница 174: ...ER 10 VLAN As discussed above ports 1 2 3 4 5 6 7 8 13 14 15 16 still belong to default VLAN We will now add another VLAN with VID 40 and VLAN name Support Add the ports Define the VLAN Click OK After adding the VLAN the VLAN is not active Activating the VLAN has to be done manually ...

Страница 175: ...on A specific VLAN can be activated or all VLANs can be activated or disabled Click OK to activate VLAN After activation note that ports 13 to 16 belong to the new VLAN The VLAN membership of the ports assigned to VLAN 40 now indicates that they are only members of VLAN 40 The default VLAN membership has been terminated on VLAN activation ...

Страница 176: ... range default id number The filter parameter enables or disables the VLAN filtering function When enabled the switch will drop the packets coming in through a port if the port is not a member of the VLAN For example if port 1 is a member of VLANs 10 20 and 30 if a packet with VLAN id 40 arrives at port 1 it will be dropped set port port number list range filter status enable disable The tagging i...

Страница 177: ...s are plugged into ports 14 16 as a result the status of the ports show the port status as DOWN 1 A word of caution when Tag VLAN filtering is enabled there can be serious connectivity repercussions the only way to recover from that it is to reload the switch without saving the configuration or by modifying the configuration from the console serial port 2 There can be either Tag VLAN or Port VLAN ...

Страница 178: ...ORT STATUS 14 DOWN VLAN ID 20 Name sales Status Active PORT STATUS 15 DOWN VLAN ID 30 Name markteting Status Active PORT STATUS 16 DOWN ML3000 port vlan stop vlan all All active VLAN s stopped ML3000 port vlan exit ML3000 set vlan type tag VLAN set to Tag based ML3000 show active vlan Tag VLAN is currently active continued on next page To switch to Tag VLAN the port VLAN has to be disabled or stop...

Страница 179: ...ML3000 tag vlan edit id 10 name engineering port 14 16 Tag based vlan Added Successfully VLAN ID 10 VLAN Name engineering Ports 14 16 ML3000 tag vlan add id 20 name sales port 14 16 Tag based vlan Added Successfully VLAN ID 20 VLAN Name sales Ports 14 16 ML3000 tag vlan add id 20 name marketing port 14 16 ERROR Duplicate Vlan Id ML3000 tag vlan add id 30 name marketing port 14 16 Tag based vlan Ad...

Страница 180: ... 15 UNTAGGED DOWN 16 UNTAGGED DOWN VLAN ID 10 Name engineering Status Pending PORT MODE STATUS 14 UNTAGGED DOWN 15 UNTAGGED DOWN 16 UNTAGGED DOWN VLAN ID 20 Name sales Status Pending PORT MODE STATUS 14 UNTAGGED DOWN 15 UNTAGGED DOWN 16 UNTAGGED DOWN VLAN ID 30 Name marketing Status Pending PORT MODE STATUS 14 UNTAGGED DOWN 15 UNTAGGED DOWN 16 UNTAGGED DOWN ML3000 tag vlan start vlan all All pendi...

Страница 181: ...re using telnet session on this port setting ingress might stop the session Do you want to continue Y or N Y Ingress Filter Enabled ML3000 tag vlan show vlan type tag VLAN ID 1 Name Default VLAN Status Active PORT MODE STATUS 9 UNTAGGED UP 10 UNTAGGED DOWN 11 UNTAGGED DOWN 12 UNTAGGED DOWN 13 UNTAGGED UP VLAN ID 10 Name engineering Status Active PORT MODE STATUS 14 UNTAGGED DOWN 15 UNTAGGED DOWN 1...

Страница 182: ...00 tag vlan set port port 14 16 tagging id 30 status tagged Port tagging enabled ML3000 tag vlan show vlan type tag VLAN ID 1 Name Default VLAN Status Active PORT MODE STATUS 9 UNTAGGED UP 10 UNTAGGED DOWN 11 UNTAGGED DOWN 12 UNTAGGED DOWN 13 UNTAGGED UP VLAN ID 10 Name engineering Status Active PORT MODE STATUS 14 TAGGED DOWN 15 TAGGED DOWN 16 TAGGED DOWN VLAN ID 20 Name sales Status Active PORT ...

Страница 183: ...s such the port status is shown as DOWN There can be serious connectivity repercussions when Tag VLAN filtering is enabled The only way to recover from this it is to reload the switch without saving the configuration or by modifying the configuration from the console serial port The ML3000 can be configured for either Tag VLAN or Port VLAN Both VLANs cannot co exit at the same time There can only ...

Страница 184: ...LANs needed To do that Click On Configuration vlan tag based Settings Menu Click on the Add button Now add the necessary VLANs In the example below add the VLANs in the following manner VLAN 1 All ports default VLAN VLAN 10 Engineering VLAN ports 13 14 VLAN 20 Support VLAN ports 13 14 15 note that port 13 belongs to VLAN 10 20 ...

Страница 185: ...TCH INSTRUCTION MANUAL 10 19 VLAN 30 Marketing VLAN ports 15 16 note that port 15 belongs to VLAN 20 30 After adding the ports and defining the VLAN click OK Click on Port Settings in the Configuration VLAN Tag Based Settings menu and enable the tagging for each port ...

Страница 186: ...Repeat the last two steps for each of the ports and each of the VLANs click on port settings and enable the tag on the port After all the ports are tagged the tagged column should change to Yes for all VLANs To check the status of the tagging Select the Configuration VLAN Tag Based Tagging menu ...

Страница 187: ...Status menu Click OK Tagged VLANs can be viewed from the Configuration VLAN Tag Based Tagging menu To add or delete specific ports from a VLAN Click on Join Leave button from the Configuration VLAN Tag Based Settings menu and specify the action In the example below we will take port 15 and assign it to leave VLAN 30 After the action is completed note that port 15 will belong to VLAN 1 only ...

Страница 188: ...STRUCTION MANUAL VLAN CHAPTER 10 VLAN To enable the filter capability for each port use the Configuration VLAN Tag Based Settings Port Settings menu as shown below Use the Configuration VLAN Tag Based Filter menu to view the filter information for the ports ...

Страница 189: ...ained With GVRP this process can be automated It is critical that all switches share a common VLAN This VLAN typically is the default VLAN VID 1 on most switches and other devices GVRP uses GVRP Bridge Protocol Data Units GVRP BPDUs to advertise static VLANs We refer to GVRP BPDU is as an advertisement GVRP enables the MultiLink family of switches to dynamically create 802 1q compliant VLANs on li...

Страница 190: ...port FIGURE 11 1 GVRP operation Switch 1 with static VLANs VID 1 2 and 3 Port 2 is a member of VIDs 1 2 and 3 1 Port 2 advertises VIDs 1 2 and 3 2 On Switch 2 Port 1 receives advertisement of VIDs 1 2 and 3 AND becomes a member of VIDs 1 2 and 3 3 As discussed above a GVRP enabled port can forward advertisement for a VLAN it learnt about So port 3 advertises VIDs 1 2 and 3 but port 3 is NOT a memb...

Страница 191: ...to allow tagged packets to pass through A GVRP aware port receiving advertisements has these options If there is no static VLAN with the advertised VID on the receiving port then dynamically create a VLAN with the same VID as in the advertisement and allow that VLAN s traffic If the switch already has a static VLAN with the same VID as in the advertisement and the port is configured to learn for t...

Страница 192: ...s the port to forward the advertisement it receives Block Prevents the port from dynamically joining a VLAN that is not statically configured on the switch The port will still forward advertisements that were received by the switch on other ports Block should typically be used on ports in insecure networks where there is exposure to attack such as ports where intruders can connect Disable Causes t...

Страница 193: ...on a port for as long as the port continues to receive advertisements of that VLAN from another device connected to that port or until you Convert the VLAN to a static VLAN Reconfigure the port to Block or Disable Disable GVRP Reboot the switch The time to live for dynamic VLANs is 10 seconds That is if a port has not received an advertisement for an existing dynamic VLAN during the last 10 second...

Страница 194: ...LAN must be converted to a static VLAN before it can have an IP address After converting a dynamic VLAN to a static VLAN use the save command to save the changes made on a reboot the changes can be lost without the save command Within the same broadcast domain a dynamic VLAN can pass through a device that is not GVRP aware This is because a hub or a switch that is not GVRP aware will flood the GVR...

Страница 195: ...gvrp disable GVRP is now disabled ML3000 gvrp gvrp enable GVRP enabled ML3000 gvrp show vlan VLAN ID NAME VLAN STATUS 1 Default VLAN Static Active 2 Blue Static Active 10 dyn10 Dynamic Active ML3000 gvrp static vlan 10 ML3000 gvrp show vlan VLAN ID NAME VLAN STATUS 1 Default VLAN Static Active 2 Blue Static Active 10 dyn10 Static Active ML3000 gvrp set forbid vlan 2 forbid 11 15 ML3000 gvrp show f...

Страница 196: ...he VLAN context Since dynamic VLANs operate as tagged VLANs and it is possible that a tagged port on one device may not communicate with an untagged port on another device GE Multilin recommends that you use tagged VLANs for the static VLANs A dynamic VLAN continues to exist on a port for as long as the port continues to receive advertisements of that VLAN from another device connected to that por...

Страница 197: ... all redundant paths Enabling STP is necessary to avoid loops and duplicate messages This duplication leads to a broadcast storm or other erratic behavior that can bring down the network As recommended in the IEEE 802 1Q VLAN standard the MultiLink family of switches uses single instance STP This means a single spanning tree is created to make sure there are no network loops associated with any of...

Страница 198: ...detailed explanation on the variables By default STP is disabled To use STP it has to be manually enabled Table 12 1 STP default values Variable or attribute Default value STP capabilities Disabled Reconfiguring general operation priority 32768 Bridge maximum age 20 seconds Hello time 2 seconds Forward delay 15 seconds Reconfiguring per port STP path cost 0 Priority 32768 Mode Normal Monitoring of...

Страница 199: ... default value of 32768 Bridge Forward Delay Indicates the duration the switch waits from listening to learning states and from learning to forwarding states The value ranges from 4 to 30 seconds with a default of 15 Bridge Hello Time When the switch is the root device this is the time between messages being transmitted The value is from 1 to 10 seconds with a default of 2 Bridge Max Age This is t...

Страница 200: ...umber of ports in the switch Example 12 1 Viewing STP configuration ML3000 show stp config STP CONFIGURATION Spanning Tree Enabled Global NO Spanning Tree Enabled Ports YES 9 10 11 12 13 14 15 16 Protocol Normal STP Bridge ID 80 00 00 20 06 25 ed 80 Bridge Priority 32768 Bridge Forward Delay 15 Bridge Hello Time 2 Bridge Max Age 20 Root Port 0 Root Path Cost 0 Designated Root 80 00 00 20 06 25 ed ...

Страница 201: ...enter the STP configuration mode via the stp command and use the stp enable or stp disable command To stp command enters STP configuration mode stp The enable and disable parameters start enable or stop disable STP stp enable disable The stp and rstp parameters set the spanning tree protocol to be IEEE 802 1d or 802 1w Rapid Spanning Tree Protocol set stp type stp rstp The show active stp command ...

Страница 202: ...00 00 20 06 25 ed 80 Bridge Priority 32768 Bridge Forward Delay 15 Bridge Hello Time 2 Bridge Max Age 20 Root Port 0 Root Path Cost 0 Designated Root 80 00 00 20 06 25 ed 80 Designated Root Priority 32768 Root Bridge Forward Delay 15 Root Bridge Hello Time 2 Root Bridge Max Age 20 RSTP CONFIGURATION Rapid STP STP Enabled Global NO ML3000 stp show stp ports STP Port Configuration Port Type Priority...

Страница 203: ...alue of 32768 cost port number list range value 0 65535 The port command assigns ports to STP If you are unsure let the software make the decisions The status parameter enables or disables a port from participating in STP discovery Its best to only allow trunk ports to participate in STP End stations need not participate in STP process port port number list range status enable disable The timers c...

Страница 204: ...y 32768 Root Bridge Forward Delay 15 Root Bridge Hello Time 2 Root Bridge Max Age 20 RSTP CONFIGURATION Rapid STP STP Enabled Global NO ML3000 stp show stp ports STP Port Configuration Port Type Priority Path Cost State Des Bridge Des Port 09 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 09 10 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 0a 11 TP 10 100 128 100 Disabled 80 00 00 2...

Страница 205: ...0 00 20 06 25 ed 80 80 09 10 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 0a 11 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 0b 12 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 0c 13 TP 10 100 128 19 Forwarding 80 00 00 20 06 25 ed 80 80 0d 14 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 0e 15 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 0f 16 TP 10 100 ...

Страница 206: ...ority Path Cost State Des Bridge Des Port 09 TP 10 100 128 100 Forwarding 80 00 00 20 06 25 ed 80 80 09 10 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 0a 11 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 0b 12 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 0c 13 TP 10 100 20 20 Forwarding 80 00 00 20 06 25 ed 80 80 0d 14 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80...

Страница 207: ...P 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 0f 16 TP 10 100 128 100 Disabled 80 00 00 20 06 25 ed 80 80 10 ML3000 stp show stp config STP CONFIGURATION Spanning Tree Enabled Global YES Spanning Tree Enabled Ports YES 9 10 11 12 13 14 15 16 Protocol Normal STP Bridge ID 80 00 00 20 06 25 ed 80 Bridge Priority 15535 Bridge Forward Delay 15 Bridge Hello Time 2 Bridge Max Age 20 Root Port 0 R...

Страница 208: ...Spanning Tree Enabled Global YES Spanning Tree Enabled Ports YES 9 10 11 12 13 14 15 16 Protocol Normal STP Bridge ID 80 00 00 20 06 25 ed 80 Bridge Priority 15535 Bridge Forward Delay 20 Bridge Hello Time 5 Bridge Max Age 30 Root Port 0 Root Path Cost 0 Designated Root 80 00 00 20 06 25 ed 80 Designated Root Priority 15535 Root Bridge Forward Delay 20 Root Bridge Hello Time 5 Root Bridge Max Age ...

Страница 209: ...802 1d recommended values this period lasts 30 seconds The Rapid Spanning Tree Protocol IEEE 802 1w is a further evolution of the 802 1d Spanning Tree Protocol It replaces the settling period with an active handshake between switches bridges that guarantees topology information to be rapidly propagated through the network RSTP converges in less than one second RSTP also offers a number of other si...

Страница 210: ...network The IEEE 802 1w Rapid reconfiguration of Spanning Tree significantly reduces the amount of time it takes to establish the network path The result is reduced network downtime and improved network robustness In addition to faster network reconfiguration RSTP also implements greater ranges for port path costs to accommodate the higher connection speeds that are being implemented Proper implem...

Страница 211: ...P is the implementation of a larger range of port path costs that accommodates higher network speeds New default values have been implemented for path costs associated with the different network speeds This may create incompatibility between devices running the older implementations of STP a switch running RSTP 3 At any given time the software can support either STP or RSTP but not both ...

Страница 212: ...r is set for all ports connected to devices such as hubs bridges and switches known to support IEEE 802 1d STP services but not RSTP services The show active stp command displays whether STP or RSTP is running show active stp The show stp command display the RSTP or STP parameters show stp config ports NOTE Note Users may notice extended recovery time if there is a mix of firmware revisions in the...

Страница 213: ... equal more traffic and a tree which takes a long time to converge resulting in a slower system Designated Root Shows the MAC address of the bridge in the network elected or designated as the root bridge Designated Root Priority Shows the designated root bridge s priority The default value is 0 Root Bridge Forward Delay Indicates the designated root bridge s forward delay This is the time the swit...

Страница 214: ...tocol Normal RSTP Bridge ID 80 00 00 20 06 25 ed 89 Bridge Priority 0 Bridge Forward Delay 15 Bridge Hello Time 2 Bridge Max Age 20 Root Port 0 Root Path Cost 0 Designated Root 80 00 00 20 06 25 ed 89 Designated Root Priority 0 Root Bridge Forward Delay 15 Root Bridge Hello Time 2 Root Bridge Max Age 20 Topology Change Count 0 Time Since Topology Chg 12 ML3000 rstp show stp config RSTP CONFIGURATI...

Страница 215: ...ding Blocking and Disabled Des Bridge This is the port s designated root bridge Des Port This is the port s designated root port Another example of the same command from a larger network with several switches is shown in Example 13 3 Note the show stp ports command can be executed from the manager level prompt or from RSTP configuration state as shown in the screen captures earlier Table 13 1 Path...

Страница 216: ...o individual ports for the switch to determine which ports are the forwarding points A higher cost means the link is more expensive to use and falls in the passive mode compared to the link with a lower cost The value of the cost command ranges from 0 to 65535 with a default of 32768 cost port number list range value 0 65535 The port command assigns ports for RSTP Note that specific ports may not ...

Страница 217: ...tch will wait from listening to learning states and from learning to forwarding states The value ranges from 4 to 30 seconds with a default of 15 The hello parameter represents the time between messages being transmitted when the switch is the root device The value is 1 to 10 seconds with a default of 2 The age parameter is the maximum time a message with STP information is allowed by the switch b...

Страница 218: ... Hello Time 02 Bridge Max Age 20 Root Port 0 Root Path Cost 0 Designated Root 80 00 00 20 06 25 ed 89 Designated Root Priority 0 Root Bridge Forward Delay 15 Root Bridge Hello Time 02 Root Bridge Max Age 20 Topology Change Count 0 Time Since Topology Chg 33 ML3000 rstp show stp ports RSTP Port Configuration Port Type Priority Path Cost State Des Bridge Des Port 09 TP 10 100 128 2000000 Forwarding ...

Страница 219: ...Time Since Topology Chg 100 ML3000 rstp forceversion rstp ML3000 rstp show forceversion Force Version Normal RSTP ML3000 rstp show stp config RSTP CONFIGURATION Rapid STP STP Enabled Global YES RSTP STP Enabled Ports 9 10 11 12 13 14 15 16 Protocol Normal RSTP Bridge ID 80 00 00 20 06 25 ed 89 Bridge Priority 0 Bridge Forward Delay 15 Bridge Hello Time 02 Bridge Max Age 20 Root Port 0 Root Path Co...

Страница 220: ...te Des Bridge Des Port 09 TP 10 100 128 2000000 Forwarding 80 00 00 20 06 25 ed 89 00 09 10 TP 10 100 128 2000000 Disabled 00 0a 11 TP 10 100 128 2000000 Disabled 00 0b 12 TP 10 100 128 2000000 Disabled 00 0c 13 TP 10 100 100 200000 Forwarding 80 00 00 20 06 25 ed 89 00 0d 14 TP 10 100 128 2000000 Disabled 00 0e 15 TP 10 100 128 2000000 Disabled 00 0f 16 TP 10 100 128 2000000 Disabled 00 10 ML3000...

Страница 221: ...Port 09 TP 10 100 128 2000000 Forwarding 80 00 00 20 06 25 ed 89 00 09 10 TP 10 100 128 2000000 Disabled 00 0a 11 TP 10 100 128 2000000 Disabled 00 0b 12 TP 10 100 128 2000000 Disabled 00 0c 13 TP 10 100 100 250000 Forwarding 80 00 00 20 06 25 ed 89 00 0d 14 TP 10 100 128 2000000 Disabled 00 0e 15 TP 10 100 128 2000000 Disabled 00 0f 16 TP 10 100 128 2000000 Disabled 00 10 ML3000 rstp timers forwa...

Страница 222: ...shown below 5 All switches in the ring must use the same firmware revision The ring structure can demonstrate fast recovery times typically faster than what RSTP can recover from a single fault In many situations RSTP will recover in seconds whereas smart RSTP ring only mode will recover in milliseconds To configure Ring Only mode ensure the first three of the four situations described above are m...

Страница 223: ...ple Example 13 5 Configuring smart RSTP ring only mode ML3000 rstp ML3000 rstp rstp enable Successfully set the RSTP status ML3000 rstp romode show RO MODE status Disabled RO MODE set on ports NONE ML3000 rstp romode add port 1 2 Added Ports 1 2 ML3000 rstp romode enable RSTP Ring Only Mode Enabled ML3000 rstp romode show RO MODE status Enabled RO MODE set on ports 1 2 ML3000 rstp romode disable R...

Страница 224: ...led the switch designates itself as the root switch Root Path Cost A path cost is assigned to individual ports for the switch to determine which ports are the forwarding points A higher cost means more loops a lower cost fewer loops More loops equal more traffic and a tree which takes a long time to converge resulting in a slower system Root Port Indicates the port number which is elected as the r...

Страница 225: ...lue ranges from 6 to 40 seconds with a default 20 Hold Time This is the minimum time period to elapse between the transmissions of configuration BPDUs through a given LAN Port At most one configuration BPDU shall be transmitted in any hold time period This parameter is a fixed parameter with values as specified in RSTP standard 3 seconds Topology Change A counter indicating the number of times top...

Страница 226: ... 13 RAPID SPANNING TREE PROTOCOL Once again if you are not familiar with the STP or RSTP parameter settings is best to use the default values Simply enable RSTP or STP and let the system default values prevail After RSTP is enabled the fields are updated Note the Status Time since TC and Designated Root values ...

Страница 227: ...ned off Values can be Listening Learning Forwarding Blocking and Disabled Path Cost This is the assigned port cost value used for the switch to determine the forwarding points Values range from 1 to 2000000 The lower the value the lower the cost and hence the preferred route The costs for different Ethernet speeds are shown below The STP path cost is compared to the RSTP path cost Priority STP use...

Страница 228: ...s normally enabled in certain cases the Status can be set to disabled to turn off RSTP or STP on that port 13 3 2 Smart RSTP Ring Only Mode with EnerVista Secure Web Management Software 13 3 2 1 For Switches Running on Firmware Version 3 x A ring is a special case mesh structure In many networks network managers prefer to create a ring structure for topological redundancy and simplicity In a ring ...

Страница 229: ...gure ring only mode ensure the first three of the four situations described above are met To enable ring only mode first Enable RSTP by setting the STP Type to RSTP in the Administration Set STP Type menu Select the Configuration RSTP Bridge RSTP menu as shown below Click the Edit button to configure RSTP Once in Edit mode change the Status to Enable ...

Страница 230: ...OTOCOL Save Configuration To reset RSTP back to normal mode select Normal RSTP for the Protocol setting Save the configuration by clicking on the icon Select the Configuration RSTP RO Mode menu as shown below Click the Edit button to configure RO Mode Select the desired ports as shown below then click OK to exit ENABLE STATUS THEN SAVE ...

Страница 231: ...Enabled option for the Status setting as shown below Save the configuration by clicking on the icon 13 3 2 2 For One or More Switches Running on Firmware Version 2 x or Lower A ring is a special case mesh structure In many networks network managers prefer to create a ring structure for topological redundancy and simplicity In a ring structure special case 1 All switches in the network are GE Multi...

Страница 232: ...g only mode as shown below The ring structure can demonstrate fast recovery times typically faster than what RSTP can recover from a single fault In many situations RSTP will recover in seconds whereas smart RSTP ring only mode will recover in milliseconds To configure ring only mode ensure the first three of the four situations described above are met To enable ring only mode first Enable RSTP by...

Страница 233: ...TION MANUAL 13 25 Select the Configuration RSTP Bridge RSTP menu as shown below Click the Edit button to configure RSTP Select the Ring Only Mode RO Mode option for the Protocol setting as shown below To reset RSTP back to normal mode select Normal RSTP for the Protocol setting Save the configuration by clicking on the icon ...

Страница 234: ...13 26 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL RAPID SPANNING TREE PROTOCOL CHAPTER 13 RAPID SPANNING TREE PROTOCOL ...

Страница 235: ...e there are time critical applications such as voice transmission or video conferencing which can be adversely effected by packet transfer delays or other latency in a network Most switches today implement buffers to queue incoming packets as well as outgoing packets In a queue mechanism normally the packet which comes in first leaves first FIFO and all the packets are serviced accordingly Imagine...

Страница 236: ...sed in the LAN MAN and WAN DiffServ works by tagging each packet at the originating device or an intermediate switch for the requested level of service it requires across the network FIGURE 14 1 ToS and DSCP DiffServ inserts a 6 bit DiffServ code point DSCP in the Type of Service ToS field of the IP header as shown in the picture above Information in the DSCP allows nodes to determine the Per Hop ...

Страница 237: ...rticular tag setting on a packet allows each queue to have different service levels MultiLink QoS implementations provide mapping of ToS or IP precedence to Class of Service CoS A CoS setting in an Ethernet Frame is mapped to the ToS byte of the IP packet and vice versa A ToS level of 1 equals a CoS level of 1 This provides end to end priority for the traffic flow when MultiLink switches are deplo...

Страница 238: ...alculated from the IP precedence setting for a packet This weight is used in an algorithm to determine when the packet will be serviced The show portweight command displays the weight settings on a port show portweight As mentioned previously the switch is capable of detecting higher priority packets marked with precedence by the IP forwarder and can schedule them faster providing superior respons...

Страница 239: ...mitted as tagged from the priority queue set untag port port list range priority high normal medium low tag 0 7 Table 14 1 Port weight settings Value Hardware traffic queue behavior 0 No priority traffic is sent alternately from each queue and packets are queued alternately in each queue 1 Two packets are sent from the HIGH priority queue and one packet from LOW priority queue 2 Four packets are s...

Страница 240: ...14 6 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL QUALITY OF SERVICE CHAPTER 14 QUALITY OF SERVICE 14 2 2 Example The following example shows how to configure QoS ...

Страница 241: ...CHAPTER 14 QUALITY OF SERVICE QUALITY OF SERVICE MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 14 7 ...

Страница 242: ...h EnerVista Secure Web Management software 14 3 1 Description To access QoS settings Select the Configuration QoS menu items Select the Port and the port number then edit to set up the Priority The following window illustrates the setting of port 13 for port based QoS with a priority Note the sections on Tag and TOS are ignored for Port settings ...

Страница 243: ...UALITY OF SERVICE MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 14 9 After the port QoS settings are completed the changes are reflected on the QoS menu screen The port 13 QoS settings indicate high priority set ...

Страница 244: ...RVICE Next to enable a tag based QoS on port 14 select edit port 14 then enable tag QoS status Note that only the menu area for the tag setting is relevant To set the tag level settings select Edit in the Tag settings screen After the Tag QoS settings are completed the changes are reflected on the QoS tag menu screen ...

Страница 245: ...NICATIONS SWITCH INSTRUCTION MANUAL 14 11 In the following window a ToS is enabled on Port 8 As before only the ToS level settings are relevant Select the edit to set ToS level settings in the ToS level setting screen After all changes are made save the changes using the save icon ...

Страница 246: ...14 12 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL QUALITY OF SERVICE CHAPTER 14 QUALITY OF SERVICE ...

Страница 247: ...CHAPTER 14 QUALITY OF SERVICE QUALITY OF SERVICE MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 14 13 ...

Страница 248: ...14 14 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL QUALITY OF SERVICE CHAPTER 14 QUALITY OF SERVICE ...

Страница 249: ...ination address A multicast datagram is delivered to all members of its destination host group with the same best efforts reliability as regular unicast IP datagrams i e the datagram is not guaranteed to arrive at all members of the destination group or in the same order relative to other datagrams The membership of a host group is dynamic that is hosts may join and leave groups at any time There ...

Страница 250: ...cate Query A message sent from the querier multicast router or switch asking for a response from each host belonging to the multicast group If a multicast router supporting IGMP is not present then the switch must assume this function in order to elicit group membership information from the hosts on the network if you need to disable the querier feature you can do so using the IGMP configuration M...

Страница 251: ...n members Thus sends large amounts of unwanted multicast traffic to PCs 2 and 3 Switch 2 is recognizing IGMP traffic and learns that PC 4 is in the IP multicast group receiving multicast data from the video server PC X Switch 2 then sends the multicast data only to PC 4 thus avoiding unwanted multicast traffic on the ports for PCs 5 and 6 The next figure below shows a network running IP multicasti...

Страница 252: ...ters IP multicast addresses occur in the range from 224 0 0 0 through 239 255 255 255 which corresponds to the Ethernet multicast address range of 01005e 000000 through 01005e 7fffff in hexadecimal Devices such as the MultiLink family of switches having static Traffic Security filters configured with a Multicast filter type and a Multicast Address in this range will continue in effect unless IGMP ...

Страница 253: ...een Version 1 and Version 2 is that version 1 does not have a Leave mechanism for the host The MultiLink family of switches do pruning when there is a leave message or a time expires on a port we prune the multicast group membership on that port 1 The MultiLink switch supports only the default VLAN It can be enabled within a port VLAN tagged VLAN or no VLAN It can snoop up to 256 multi cast Groups...

Страница 254: ...e Disabled Querier Enabled Querier Interval 125 Querier Response Interval 10 Multicasting Unknown Streams Enable ML3000 igmp The output of the show igmp command provides the following useful information IGMP State shows if IGMP is turned on Enable or off Disable Immediate Leave provides a mechanism for a particular host that wants to leave a multicast group It disables the port where the leave mes...

Страница 255: ...c To set the port characteristics use the set port command in the IGMP configuration mode set port port port list range mode auto forward block The show port command displays the port characteristics for IGMP show port The show router command displays detected IGMP enabled router ports show router The set leave command enables or disables the switch to immediately process a host sending a leave me...

Страница 256: ...ample shows how to configure IGMP Example 15 1 Configuring IGMP ML3000 igmp set port port 10 12 mode forward Port mode is set ML3000 igmp show port Port Mode 09 Auto 10 Forwarding 11 Forwarding 12 Forwarding 13 Auto 14 Auto 15 Auto 16 Auto ML3000 igmp show router RouterIp PortNo Timer 10 21 1 250 9 25 continued on next page ...

Страница 257: ...ticasting Unknown Streams Enabled ML3000 igmp set querier enable IGMP querier status is enabled ML3000 igmp show igmp IGMP State Enabled ImmediateLeave Disabled Querier Enabled Querier Interval 125 Querier Response Interval 10 Multicasting Unknown Streams Enabled ML3000 igmp set querier disable IGMP querier status is disabled ML3000 igmp show igmp IGMP State Enabled ImmediateLeave Disabled Querier...

Страница 258: ... Querier Response Interval 11 Multicasting Unknown Streams Enabled ML3000 igmp mcast disable MCAST is disabled ML3000 igmp show igmp IGMP State Enabled ImmediateLeave Disabled Querier Disabled Querier Interval 127 Querier Response Interval 11 Multicasting Unknown Streams Disabled ML3000 igmp mcast enable MCAST is enabled ML3000 igmp show igmp IGMP State Enabled ImmediateLeave Disabled Querier Disa...

Страница 259: ...ure Web Management software 15 3 1 Example For configuring IGMP Select the Configuration IGMP menu item The menu allows the IGMP parameters to be set and provides information on IGMP groups and routers The menu allows the IGMP parameters described earlier to be set It also provides the necessary information of IGMP groups and routers ...

Страница 260: ...k on the Edit button to edit the IGMP parameters This screen also enables and disables IGMP Changes are reflected on the Configuration IGMP Information screen The groups and routers screen displays the IGMP Groups and IGMP Routers information All edits to IGMP are done through the Information screen ...

Страница 261: ...ards for SNMP are SNMP v1 the original version of SNMP SNMP v2 and finally SNMP v3 SNMP is a poll based mechanism SNMP manager polls the managed device for information and display the information retrieved in text or graphical manner Some definitions related to SNMP are Authentication The process of ensuring message integrity and protection against message replays It includes both data integrity a...

Страница 262: ...th auth and priv noauth authenticates a packet by a string match of the user name auth authenticates a packet by using either the HMAC MD5 algorithms priv authenticates a packet by using either the HMAC MD5 algorithms and encrypts the packet using the CBC DES DES 56 algorithm Security model The security strategy used by the SNMP agent Currently ML3000 supports three security models SNMPv1 SNMPv2c ...

Страница 263: ...tual Conventions for Version 2 of the Simple Network Management Protocol SNMPv2 SNMPv2 Working Group RFC 1904 Conformance Statements for Version 2 of the Simple Network Management Protocol SNMPv2 SNMPv2 Working Group RFC 1905 Protocol Operations for Version 2 of the Simple Network Management Protocol SNMPv2 SNMPv2 Working Group RFC 1906 Transport Mappings for Version 2 of the Simple Network Manage...

Страница 264: ...figures a default VACM view based access control model This allows any manager station to access the ML3000 either via SNMP v1 v2c or v3 The community name is public This command is only intended for first time users and values can be changed by administrators who want more strict access quickcfg The engineid command allows the user to change the engine ID Every agent has to have an engineID name ...

Страница 265: ...onal and is the number corresponding to the group entry number in the table show group id id The view command defines a manager or group or manager stations what it can access inside the MIB object tree Up to 10 entries can be specified This part of the View based Access Control Model VACM as defined in RFC 2275 view add delete id id viewname name type included excluded subtree oid mask hex string...

Страница 266: ...Configuration Information System Name ML3000 System Location Markham ON System Contact multilin tech ge com Authentication Trap Disabled Default Trap Comm public V3 Engine ID ML_V3 Engine ML3000 snmpv3 ML3000 snmpv3 setvar sysname ML3000 syscontact admin syslocatio ML3000 snmpv3 quickcfg This will enable default VACM Do you wish to proceed Y or N Y Quick configuration done default VACM enabled ML3...

Страница 267: ...L3000 snmpv3 com2sec add id 1 secname public source default community pub Entry is added successfully ML3000 snmpv3 com2sec add id 2 ERROR secname parameter is required for add directive ML3000 snmpv3 com2sec add id 2 secname BCM Entry is added successfully ML3000 snmpv3 show com2sec ID Sec Name Source Community 1 public default public 2 BCM default public 3 4 5 6 7 8 9 10 ML3000 snmpv3 show com2s...

Страница 268: ... Group ID 1 Group Name v1 Model v1 Com2Sec ID 1 ML3000 snmpv3 view add id 1 viewname all type included subtree 1 Entry is added successfully ML3000 snmpv3 show view ID View Name Type Subtree Mask 1 all included 1 ff 2 3 4 5 6 7 8 9 10 ML3000 snmpv3 show view id 1 View ID 1 View Name all Type included Subtree 1 Mask ff ML3000 snmpv3 access add id 1 accessname v1 model v1 level noauth read 1 write n...

Страница 269: ...l noauth Read View ID 1 Write View ID none Notify View ID none Context Prefix exact ML3000 snmpv3 user add id 1 username jsmith usertype readwrite authpass something Entry is added successfully ML3000 snmpv3 show user ID User Name UType AuthPass PrivPass AType Level Subtree 1 jsmith RW something MD5 auth 2 3 4 5 ML3000 snmpv3 show user id 2 ERROR Entry is not active ML3000 snmpv3 show user id 1 Us...

Страница 270: ...a Secure Web Management software For SNMP v2 and v3 parameters please refer to Configuring SNMP through the Command Line Interface on page 16 4 SNMP variables are used in conjunction with Alert definitions Alert Definitions are covered in the next chapter To configure SNMP Select the Configuration SNMP menu item Use the Edit button to change the SNMP community parameters Use the Add buttons to add...

Страница 271: ...ecommended to change the community strings from the default values of public and private to other values When done changing the community strings click OK Multiple managers can be added as shown below When adding SNMP manager stations click on the Add button on the SNMP menu screen Make sure that each station can be pinged from the switch by using the Configuration Ping menu ...

Страница 272: ... OK When adding SNMP trap receivers click on the Add button on the SNMP menu screen Make sure that each station can be pinged from the switch by using the Administration Ping menu Determine which sorts of traps each station will receive as shown above If not sure select all three types When done adding trap receivers click OK ...

Страница 273: ...ANUAL 16 13 Note the different types of trap receivers added Stations can be deleted using the delete icon To change the stations characteristics or IP addresses it is recommended to delete the station and add a new one After all changes are made save the changes using the save icon ...

Страница 274: ...16 14 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL SNMP CHAPTER 16 SNMP ...

Страница 275: ...r any MIB variable Log and event group allows a network administrator to define actions based on alarms SNMP traps are generated when RMON alarms are triggered 16 4 2 Commands The following RMON communities when defined enable the specific RMON group as show above The rmon command enter the RMON configuration mode to setup RMON groups and communities rmon The history command defines the RMON histo...

Страница 276: ...and sequence illustrates how to configure RMON groups ML3000 rmon rmon ML3000 rmon event def owner test def comm somestring RMON Event Default Owner is set RMON Event Default Community is set ML3000 rmon show rmon event RMON Event Default Owner test RMON Event Default Community somestring ML3000 rmon exit ML3000 ...

Страница 277: ...ated link Link Aggregation provides the following important benefits Higher link availability in case a link fails the other links continue to operate Increased link capacity the effective throughput is increased Better port utilization allows unused ports to be used as trunk ports allowing better throughput and availability Interoperability being a standard allows LACP to work across different ha...

Страница 278: ...group should be members of the same VLAN Each port can be a member of multiple VLANs but each port should have at least one VLAN that is common to both the port groups The LACPDU packets are sent out every 30 seconds It is possible that in configuring LACP a loop can be created until LACP notification is completed It is recommended to configure LACP first and then physically connect the ports to a...

Страница 279: ... Should trunks be created so as to span multiple ports a trunk mismatch error message is printed on the console An example of an incorrect configuration is shown below Figure 17 2 Incorrect LACP Connection All LACP trunk ports must be on the same module and cannot span different modules Another example is highlighted below where some ports belong to VLAN 10 shown in red and other ports belong to V...

Страница 280: ...ver on each switch the set of ports can belong to same VLANs as shown in the figure below While the ports belong to the same VLANs there is no common VLAN between the switches and hence the LACPDU cannot be transmitted This configuration does not work in the LACP mode Figure 17 4 No Common VLAN Between 2 Ports In the figure above there is no common VLAN between the two sets of ports so packets fro...

Страница 281: ...ecture with RSTP and LACP In the architecture above using RSTP and LACP allows multiple switches to be configured together in meshed redundant link architecture First define the RSTP Configuration on the switches Then define the LACP ports Then finally connect the ports together to form the meshed redundant link topology as shown above Using the Magnum edge switch with dual homing allows the edge ...

Страница 282: ... MANUAL LACP CHAPTER 17 LACP Figure 17 7 Redundancy using LACP RSTP and STP LACP along with RSTP STP brings redundancy to the network core or backbone Using this reliable core with a dual homed edge switch brings reliability and redundancy to the edge of the network ...

Страница 283: ...TIONS SWITCH INSTRUCTION MANUAL 17 7 NOTE Note Do not to use LACP with S Ring at this time Since S Ring and LACP use the same BPDUs called LACPDUs the architecture shown below is not supported in this release Figure 17 8 S Ring Architecture is Not Supported ...

Страница 284: ...ich specific traffic like Multicast IGMP unknown Unicast and broadcast traffic is transmitted As shown by the add port command the port with the lowest priority value has the highest priority and is designated as the primary port If traffic analysis is required it is recommended to mirror the primary port and physically disconnect the other ports if all traffic needs to be captured If multiple por...

Страница 285: ...ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 17 9 For the LACP menu use Configuration LACP Port as shown below Figure 17 10 Enable LACP Enable LACP first Figure 17 11 Add Ports Add the necessary ports to define the trunk ...

Страница 286: ...s 12 and 13 as the set of ports for the first trunk see figure below Figure 17 12 Add Ports to the Trunk Add the ports which make up the trunk The priorities are automatically assigned this field can be left blank The priorities can be changed to manipulate on which links the Ethernet traffic traverses on ...

Страница 287: ...LTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 17 11 Figure 17 13 Edit Port Values After the ports are added the values can be edited if needed or the ports deleted using the edit or delete icons on the menu ...

Страница 288: ...ing the Configuration LACP Trunk menu as shown below Figure 17 14 Check the Trunk Status One would expect the trunk status to display the trunk which was just added However in this situation no trunk is displayed Clicking on the Orphan Port s status as shown above l displays the status of the orphan ports or ports which are not members of any LACP trunks ...

Страница 289: ...ed After the other switch is configured with the proper LACP settings the RJ 45 cables should be plugged in to enable LACP Figure 17 15 Orphan Status Display Only after the other switch is configured with the proper LACP settings the Ethernet cables should be plugged into both the switches to enable LACP After that is done the Trunk menu displays the LACP trunks which are active Finally save the c...

Страница 290: ...17 14 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL LACP CHAPTER 17 LACP ...

Страница 291: ...ing an external relay to electrically trigger any circuit desired These could be an indicator light a flashing strobe light an audible alarm or other devices The MultiLink family of switches has a software optional controlled relay contact that can be use to report alarm conditions The relay is held closed in normal circumstances and will go to the open position during alarm conditions Two types o...

Страница 292: ...to the behavior of the circuit or relay The time is in seconds with a default of 3 period time 1 10 The del command disables alarm action in response to the specified event ID del event event id list range all The alarm command globally enables or disables the alarm action alarm enable disable The show alarm command displays the current status of alarm system show alarm An example of setting up th...

Страница 293: ...CHAPTER 18 MISCELLANEOUS COMMANDS MISCELLANEOUS COMMANDS MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 18 3 ...

Страница 294: ...18 4 MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL MISCELLANEOUS COMMANDS CHAPTER 18 MISCELLANEOUS COMMANDS ...

Страница 295: ...Secure Web Management software To customize the alarm relays Select the Configuration Alarms menu item Each alarm can be enabled or disabled form the screen shown above All alarms can be enabled or disabled using the Alarm Status drop down menu Relay closure times can be set using the drop down menu After changing the Alarm settings save the configuration using the save icon ...

Страница 296: ...tically stored in a folder or redirected to the necessary administrators The SMTP alerts can be configured using the MultiLink Switch Software for the following Send e mail alert according to the configuration rules when a specific event category happens Send e mail alert according to the configuration rules when a specific trap SNMP trap category happens Provide configuration and customization co...

Страница 297: ... address This is the SMTP server to connect to for this particular user If this option is not defined the global default SMTP server is used The optional port parameter specifies the TCP port of the SMTP server If this is not defined the global default TCP port is used The optional domain parameter specifies the domain name of the SMTP server If this is not defined the global default domain name i...

Страница 298: ...P Server Port 25 Retry Count 3 ML3000 smtp add id 1 email jsmith ge com traps s events CF Recipient successfully added ML3000 smtp add id 2 email xyz abc com traps all events all ip 3 30 154 28 port 2 domain abc com Recipient successfully added ML3000 smtp show smtp recipients ID E mail Address SMTP Server From Domain Port Traps Events 1 jsmith ge com 3 94 210 25 ge com 25 S FC 2 xyz abc com 3 30 ...

Страница 299: ...oftware The EnerVista Secure Web Management software allows for the display of several statistics in a graphical format These are described below To view statistics Select the Configuration Statistics menu item To view port specific statistics Select the Configuration Statistics Port Statistics menu item Each port can be viewed by clicking on the back or forward buttons Each group represents diffe...

Страница 300: ...ERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL MISCELLANEOUS COMMANDS CHAPTER 18 MISCELLANEOUS COMMANDS The following figure displays the port statistics for group 2 The following figure displays the port statistics for group 3 ...

Страница 301: ...IFO buffer used in the MultiLink switches is not overrun The important parameters to set for any serial connectivity software is to set the line delay to be 500 ms and the character delay to be 50 ms For example using HyperTerminal this can be set under File Properties When the Properties window is open click on the ASCII Setup button and in the Line Delay entry box enter in 500 and in the Charact...

Страница 302: ...mmand repeats the last command The 1 2 n commands repeat the nth command as indicated by a show history n The show history command displays the last 25 executed commands If less than 25 commands were executed only those commands executed are shown show history The history is cleared if the user logs out or if the switch times out The history count restarts when the user logs in The show version co...

Страница 303: ...s alive count 1 time 20ms 3 94 248 61 is alive count 2 time 20ms 3 94 248 61 is alive count 3 time 40ms ML3000 Many devices do not respond to ping or block ping commands Make sure that the target device responds or the network allows the ping packets to propagate 18 6 2 Ping through EnerVista Secure Web Management software The ping command can be used from EnerVista Secure Web Management software ...

Страница 304: ...an be used to set the prompt These are n system name c system contact l system location i system IP address m system MAC address v version the dollar sign character r new line b space A few examples on how the system prompt can be setup are shown below ML3000 snmp ML3000 snmp setvar sysname Core System variable s set successfully ML3000 snmp exit ML3000 set prompt n Core set prompt n b i Core 192 ...

Страница 305: ...ion level severity only each time a new line is received The event log window contains 22 log entry lines and can be positioned to any location in the log 18 8 2 Command Line Interface Example The following example illustrates a typical event log Event logs can be exported to a ftp or a tftp server on the network for further analysis The CLI command is used to facilitate the export of the event lo...

Страница 306: ... the event logs Y or N Y Successfully uploaded the event log file ML3000 exportlog mode tftp 192 168 5 2 file eventlog txt doctype raw Do you wish to export the event logs Y or N Y Successfully uploaded the event log file 18 8 3 EnerVista Example The EnerVista Secure Web Management software provides and overview of the type of Logs by reviewing the statistics Each specific log can be viewed by vie...

Страница 307: ... can be viewed by using the drop down menu as shown below In this example only informational logs are displayed The Clear button clears all the logs To prevent accidental erasures you will be prompted again if the logs should be deleted The Event Log records operating events as single line entries listed in chronological order For details on event log records refer to Description on page 18 15 ...

Страница 308: ...m protection parameters show config displays the saved configuration as a whole or by module show console displays console serial link settings show date displays system date show daylight displays the configured daylight savings settings show dualhome show flowcontrol show fans show hwrev show ftp show gateway displays the gateway of the system show gvrp displays the GVRP parameters show host dis...

Страница 309: ...bnet displays the Subnet Mask of the system show ssl show sysconfig displays system configurable parameters show syscontact displays the current system contact show syslocation displays the current system location show sysname displays the current system name show time displays the system time show timeout displays the system inactivity time out show timezone displays the configured time zone of t...

Страница 310: ...xportlog mode ftp help ipconfig kill kill session id logout logs out from the current user ping to send the ping requests tftp telnet connects to the remote system through telnet terminal to set the terminal size xmodem 18 9 2 Configuration commands The access commands are shown below allow allows the IP address deny denies the IP address modbus enables or disables access to Modbus map remove remo...

Страница 311: ...t configuration The VLAN registration over GARP GVRP commands are shown below Refer to Configuring GVRP through the Command Line Interface on page 11 6 for details gvrp help gvrp configures GVRP parameters for dynamic VLAN set forbid sets forbidden ports for a tag based VLAN show ports show ports current GVRP state show forbid show forbidden ports for tag based VLAN set ports set GVRP port state u...

Страница 312: ...t help port security learn enables disables security for a single port or group of ports ps enables disables security in system remove removes MAC addressing per port signal sets the signal type of the secured port The quality of service QoS commands are shown below Refer to Commands on page 14 4 for additional details map setpoint help qos setqos configures QOS configuration usage set untag set w...

Страница 313: ...es SMTP e mail alert The Simple Network Management Protocol SNMP commands are shown below Refer to Configuring SNMP through the Command Line Interface on page 16 4 for additional details authentraps enable disables the authentication traps community configures SNMP community names help snmp mgrip adds or deletes the SNMP manager IP setvar configures system name contact or location traps adds or de...

Страница 314: ...w user chlevel changes the user access permissions delete deletes an existing user help user passwd change the user password tacplus tacserver userauthorder The VLAN commands are shown below Refer to VLAN on page 10 1 for additional details add delete edit save set egress set ingress set port show egress show ingress show port start stop vlan ...

Страница 315: ...at the layer 7 of the OSI 7 layer stack Additional information on Modbus can be found at http www modbus org and other related sites RFC 1122 Requirements for Internet Hosts Communication Layers defines how Modbus packets can be carried over a TCP IP transport and how Modicon controllers or other PLC devices can communicate over a TCP IP network To facilitate this communications the GE Multilink s...

Страница 316: ...ss to Modbus ML3000 access show modbus Access to Modbus enabled Modbus is Using Port 502 Modbus is Using Device 5 ML3000 access modbus port 602 Modbus Port is set ML3000 access show modbus Access to Modbus enabled Modbus is Using Port 602 Modbus is Using Device 5 ML3000 access modbus port default Modbus Port Set to Default ML3000 access show modbus Access to Modbus enabled Modbus is Using Port 502...

Страница 317: ...CHAPTER 19 MODBUS PROTOCOL MODBUS PROTOCOL MULTILINK ML3000 ETHERNET COMMUNICATIONS SWITCH INSTRUCTION MANUAL 19 3 ...

Страница 318: ... 0 0030 Netmask byte 2 1 to 254 1 F1 0 0031 Netmask byte 3 1 to 254 1 F1 0 0032 Gateway byte 0 1 to 254 1 F1 0 0033 Gateway byte 1 1 to 254 1 F1 0 0034 Gateway byte 2 1 to 254 1 F1 0 0035 Gateway byte 3 1 to 254 1 F1 0 0036 MAC address 3 registers String Varies 0039 Order code 16 registers String Varies 0049 Power alarm 1 0 to 1 1 F2 0 004A Power alarm 2 0 to 1 1 F2 0 004B Stp State 0 to 1 1 F3 0 ...

Страница 319: ...tatus 0 to 1 1 F3 0 0077 Port 2 link status 0 to 1 1 F3 0 0078 Port 3 link status 0 to 1 1 F3 0 0079 Port 4 link status 0 to 1 1 F3 0 007A Port 5 link status 0 to 1 1 F3 0 007B Port 6 link status 0 to 1 1 F3 0 007C Port 7 link status 0 to 1 1 F3 0 007D Port 8 link status 0 to 1 1 F3 0 007E Port 9 link status 0 to 1 1 F3 0 007F Port 10 link status 0 to 1 1 F3 0 0080 Port 11 link status 0 to 1 1 F3 ...

Страница 320: ... to 1 1 F3 0 00A4 Port 15 STP state 0 to 1 1 F3 0 00A5 Port 16 STP state 0 to 1 1 F3 0 00A6 Port 17 STP state 0 to 1 1 F3 0 00A7 Port 18 STP state 0 to 1 1 F3 0 00A8 Port 19 STP state 0 to 1 1 F3 0 00A9 Port 20 STP state 0 to 1 1 F3 0 00AA Port 21 STP state 0 to 1 1 F3 0 00AB Port 22 STP state 0 to 1 1 F3 0 00AC Port 23 STP state 0 to 1 1 F3 0 00AD Port 24 STP state 0 to 1 1 F3 0 00AE Port 25 STP ...

Страница 321: ...vity 0 to 1 1 F3 0 00D3 Port 30 activity 0 to 1 1 F3 0 00D4 Port 31 activity 0 to 1 1 F3 0 00D5 Port 32 activity 0 to 1 1 F3 0 00D6 Port 1 Number of bytes received 0 to 4294967295 1 F9 0 00D8 Port 1 Number of bytes sent 0 to 4294967295 1 F9 0 00DA Port 1 Number of frames received 0 to 4294967295 1 F9 0 00DC Port 1 Number of frames sent 0 to 4294967295 1 F9 0 00DE Port 1 Total bytes received 0 to 4...

Страница 322: ...th good CRC 0 to 4294967295 1 F9 0 0108 Port 2 Number of bytes received 0 to 4294967295 1 F9 0 010A Port 2 Number of bytes sent 0 to 4294967295 1 F9 0 010C Port 2 Number of frames received 0 to 4294967295 1 F9 0 010E Port 2 Number of frames sent 0 to 4294967295 1 F9 0 0110 Port 2 Total bytes received 0 to 4294967295 1 F9 0 0112 Port 2 Total frames received 0 to 4294967295 1 F9 0 0114 Port 2 Number...

Страница 323: ...ames sent 0 to 4294967295 1 F9 0 0142 Port 3 Total bytes received 0 to 4294967295 1 F9 0 0144 Port 3 Total frames received 0 to 4294967295 1 F9 0 0146 Port 3 Number of broadcast frames received 0 to 4294967295 1 F9 0 0148 Port 3 Number of multicast frames received 0 to 4294967295 1 F9 0 014A Port 3 Number of frames with CRC error 0 to 4294967295 1 F9 0 014C Port 3 Number of oversized frames receiv...

Страница 324: ...er of multicast frames received 0 to 4294967295 1 F9 0 017C Port 4 Number of frames with CRC error 0 to 4294967295 1 F9 0 017E Port 4 Number of oversized frames received 0 to 4294967295 1 F9 0 0180 Port 4 Number of bad fragments received 64 bytes 0 to 4294967295 1 F9 0 0182 Port 4 Number of jabber frames received 0 to 4294967295 1 F9 0 0184 Port 4 Number of collisions occurred 0 to 4294967295 1 F9...

Страница 325: ...ad fragments received 64 bytes 0 to 4294967295 1 F9 0 01B4 Port 5 Number of jabber frames received 0 to 4294967295 1 F9 0 01B6 Port 5 Number of collisions occurred 0 to 4294967295 1 F9 0 01B8 Port 5 Number of late collisions occurred 0 to 4294967295 1 F9 0 01BA Port 5 Number of 64 byte frames received sent 0 to 4294967295 1 F9 0 01BC Port 5 Number of 65 to 127 byte frames received sent 0 to 429496...

Страница 326: ...rt 6 Number of late collisions occurred 0 to 4294967295 1 F9 0 01EC Port 6 Number of 64 byte frames received sent 0 to 4294967295 1 F9 0 01EE Port 6 Number of 65 to 127 byte frames received sent 0 to 4294967295 1 F9 0 01F0 Port 6 Number of 128 to 255 byte frames received sent 0 to 4294967295 1 F9 0 01F2 Port 6 Number of 256 to 511 byte frames received sent 0 to 4294967295 1 F9 0 01F4 Port 6 Number...

Страница 327: ...frames received sent 0 to 4294967295 1 F9 0 0222 Port 7 Number of 128 to 255 byte frames received sent 0 to 4294967295 1 F9 0 0224 Port 7 Number of 256 to 511 byte frames received sent 0 to 4294967295 1 F9 0 0226 Port 7 Number of 512 to 1023 byte frames received sent 0 to 4294967295 1 F9 0 0228 Port 7 Number of 1023 to maximum byte frames received sent 0 to 4294967295 1 F9 0 022A Port 7 Number of ...

Страница 328: ... 4294967295 1 F9 0 0258 Port 8 Number of 512 to 1023 byte frames received sent 0 to 4294967295 1 F9 0 025A Port 8 Number of 1023 to maximum byte frames received sent 0 to 4294967295 1 F9 0 025C Port 8 Number of MAC error packets 0 to 4294967295 1 F9 0 025E Port 8 Number of dropped received packets 0 to 4294967295 1 F9 0 0260 Port 8 Number of multicast frames sent 0 to 4294967295 1 F9 0 0262 Port 8...

Страница 329: ...r packets 0 to 4294967295 1 F9 0 0290 Port 9 Number of dropped received packets 0 to 4294967295 1 F9 0 0292 Port 9 Number of multicast frames sent 0 to 4294967295 1 F9 0 0294 Port 9 Number of broadcast frames sent 0 to 4294967295 1 F9 0 0296 Port 9 Number of 64 byte fragments with good CRC 0 to 4294967295 1 F9 0 0298 Port 10 Number of bytes received 0 to 4294967295 1 F9 0 029A Port 10 Number of by...

Страница 330: ... sent 0 to 4294967295 1 F9 0 02C8 Port 10 Number of 64 byte fragments with good CRC 0 to 4294967295 1 F9 0 02CA Port 11 Number of bytes received 0 to 4294967295 1 F9 0 02CC Port 11 Number of bytes sent 0 to 4294967295 1 F9 0 02CE Port 11 Number of frames received 0 to 4294967295 1 F9 0 02D0 Port 11 Number of frames sent 0 to 4294967295 1 F9 0 02D2 Port 11 Total bytes received 0 to 4294967295 1 F9 ...

Страница 331: ...Port 12 Number of frames received 0 to 4294967295 1 F9 0 0302 Port 12 Number of frames sent 0 to 4294967295 1 F9 0 0304 Port 12 Total bytes received 0 to 4294967295 1 F9 0 0306 Port 12 Total frames received 0 to 4294967295 1 F9 0 0308 Port 12 Number of broadcast frames received 0 to 4294967295 1 F9 0 030A Port 12 Number of multicast frames received 0 to 4294967295 1 F9 0 030C Port 12 Number of fra...

Страница 332: ... Number of broadcast frames received 0 to 4294967295 1 F9 0 033C Port 13 Number of multicast frames received 0 to 4294967295 1 F9 0 033E Port 13 Number of frames with CRC error 0 to 4294967295 1 F9 0 0340 Port 13 Number of oversized frames received 0 to 4294967295 1 F9 0 0342 Port 13 Number of bad fragments received 64 bytes 0 to 4294967295 1 F9 0 0344 Port 13 Number of jabber frames received 0 to...

Страница 333: ... oversized frames received 0 to 4294967295 1 F9 0 0374 Port 14 Number of bad fragments received 64 bytes 0 to 4294967295 1 F9 0 0376 Port 14 Number of jabber frames received 0 to 4294967295 1 F9 0 0378 Port 14 Number of collisions occurred 0 to 4294967295 1 F9 0 037A Port 14 Number of late collisions occurred 0 to 4294967295 1 F9 0 037C Port 14 Number of 64 byte frames received sent 0 to 429496729...

Страница 334: ... Port 15 Number of collisions occurred 0 to 4294967295 1 F9 0 03AC Port 15 Number of late collisions occurred 0 to 4294967295 1 F9 0 03AE Port 15 Number of 64 byte frames received sent 0 to 4294967295 1 F9 0 03B0 Port 15 Number of 65 to 127 byte frames received sent 0 to 4294967295 1 F9 0 03B2 Port 15 Number of 128 to 255 byte frames received sent 0 to 4294967295 1 F9 0 03B4 Port 15 Number of 256 ...

Страница 335: ...to 4294967295 1 F9 0 03E2 Port 16 Number of 65 to 127 byte frames received sent 0 to 4294967295 1 F9 0 03E4 Port 16 Number of 128 to 255 byte frames received sent 0 to 4294967295 1 F9 0 03E6 Port 16 Number of 256 to 511 byte frames received sent 0 to 4294967295 1 F9 0 03E8 Port 16 Number of 512 to 1023 byte frames received sent 0 to 4294967295 1 F9 0 03EA Port 16 Number of 1023 to maximum byte fra...

Страница 336: ...8 Port 17 Number of 256 to 511 byte frames received sent 0 to 4294967295 1 F9 0 041A Port 17 Number of 512 to 1023 byte frames received sent 0 to 4294967295 1 F9 0 041C Port 17 Number of 1023 to maximum byte frames received sent 0 to 4294967295 1 F9 0 041E Port 17 Number of MAC error packets 0 to 4294967295 1 F9 0 0420 Port 17 Number of dropped received packets 0 to 4294967295 1 F9 0 0422 Port 17 ...

Страница 337: ...ames received sent 0 to 4294967295 1 F9 0 0450 Port 18 Number of MAC error packets 0 to 4294967295 1 F9 0 0452 Port 18 Number of dropped received packets 0 to 4294967295 1 F9 0 0454 Port 18 Number of multicast frames sent 0 to 4294967295 1 F9 0 0456 Port 18 Number of broadcast frames sent 0 to 4294967295 1 F9 0 0458 Port 18 Number of 64 byte fragments with good CRC 0 to 4294967295 1 F9 0 045A Port...

Страница 338: ...ames sent 0 to 4294967295 1 F9 0 0488 Port 19 Number of broadcast frames sent 0 to 4294967295 1 F9 0 048A Port 19 Number of 64 byte fragments with good CRC 0 to 4294967295 1 F9 0 048C Port 20 Number of bytes received 0 to 4294967295 1 F9 0 048E Port 20 Number of bytes sent 0 to 4294967295 1 F9 0 0490 Port 20 Number of frames received 0 to 4294967295 1 F9 0 0492 Port 20 Number of frames sent 0 to 4...

Страница 339: ...294967295 1 F9 0 04C0 Port 21 Number of bytes sent 0 to 4294967295 1 F9 0 04C2 Port 21 Number of frames received 0 to 4294967295 1 F9 0 04C4 Port 21 Number of frames sent 0 to 4294967295 1 F9 0 04C6 Port 21 Total bytes received 0 to 4294967295 1 F9 0 04C8 Port 21 Total frames received 0 to 4294967295 1 F9 0 04CA Port 21 Number of broadcast frames received 0 to 4294967295 1 F9 0 04CC Port 21 Number...

Страница 340: ... 0 04FA Port 22 Total frames received 0 to 4294967295 1 F9 0 04FC Port 22 Number of broadcast frames received 0 to 4294967295 1 F9 0 04FE Port 22 Number of multicast frames received 0 to 4294967295 1 F9 0 0500 Port 22 Number of frames with CRC error 0 to 4294967295 1 F9 0 0502 Port 22 Number of oversized frames received 0 to 4294967295 1 F9 0 0504 Port 22 Number of bad fragments received 64 bytes ...

Страница 341: ...rames with CRC error 0 to 4294967295 1 F9 0 0534 Port 23 Number of oversized frames received 0 to 4294967295 1 F9 0 0536 Port 23 Number of bad fragments received 64 bytes 0 to 4294967295 1 F9 0 0538 Port 23 Number of jabber frames received 0 to 4294967295 1 F9 0 053A Port 23 Number of collisions occurred 0 to 4294967295 1 F9 0 053C Port 23 Number of late collisions occurred 0 to 4294967295 1 F9 0 ...

Страница 342: ...4 Number of jabber frames received 0 to 4294967295 1 F9 0 056C Port 24 Number of collisions occurred 0 to 4294967295 1 F9 0 056E Port 24 Number of late collisions occurred 0 to 4294967295 1 F9 0 0570 Port 24 Number of 64 byte frames received sent 0 to 4294967295 1 F9 0 0572 Port 24 Number of 65 to 127 byte frames received sent 0 to 4294967295 1 F9 0 0574 Port 24 Number of 128 to 255 byte frames re...

Страница 343: ... 0 05A2 Port 25 Number of 64 byte frames received sent 0 to 4294967295 1 F9 0 05A4 Port 25 Number of 65 to 127 byte frames received sent 0 to 4294967295 1 F9 0 05A6 Port 25 Number of 128 to 255 byte frames received sent 0 to 4294967295 1 F9 0 05A8 Port 25 Number of 256 to 511 byte frames received sent 0 to 4294967295 1 F9 0 05AA Port 25 Number of 512 to 1023 byte frames received sent 0 to 42949672...

Страница 344: ... 128 to 255 byte frames received sent 0 to 4294967295 1 F9 0 05DA Port 26 Number of 256 to 511 byte frames received sent 0 to 4294967295 1 F9 0 05DC Port 26 Number of 512 to 1023 byte frames received sent 0 to 4294967295 1 F9 0 05DE Port 26 Number of 1023 to maximum byte frames received sent 0 to 4294967295 1 F9 0 05E0 Port 26 Number of MAC error packets 0 to 4294967295 1 F9 0 05E2 Port 26 Number ...

Страница 345: ... sent 0 to 4294967295 1 F9 0 0610 Port 27 Number of 1023 to maximum byte frames received sent 0 to 4294967295 1 F9 0 0612 Port 27 Number of MAC error packets 0 to 4294967295 1 F9 0 0614 Port 27 Number of dropped received packets 0 to 4294967295 1 F9 0 0616 Port 27 Number of multicast frames sent 0 to 4294967295 1 F9 0 0618 Port 27 Number of broadcast frames sent 0 to 4294967295 1 F9 0 061A Port 27...

Страница 346: ...eceived packets 0 to 4294967295 1 F9 0 0648 Port 28 Number of multicast frames sent 0 to 4294967295 1 F9 0 064A Port 28 Number of broadcast frames sent 0 to 4294967295 1 F9 0 064C Port 28 Number of 64 byte fragments with good CRC 0 to 4294967295 1 F9 0 064E Port 29 Number of bytes received 0 to 4294967295 1 F9 0 0650 Port 29 Number of bytes sent 0 to 4294967295 1 F9 0 0652 Port 29 Number of frames...

Страница 347: ... good CRC 0 to 4294967295 1 F9 0 0680 Port 30 Number of bytes received 0 to 4294967295 1 F9 0 0682 Port 30 Number of bytes sent 0 to 4294967295 1 F9 0 0684 Port 30 Number of frames received 0 to 4294967295 1 F9 0 0686 Port 30 Number of frames sent 0 to 4294967295 1 F9 0 0688 Port 30 Total bytes received 0 to 4294967295 1 F9 0 068A Port 30 Total frames received 0 to 4294967295 1 F9 0 068C Port 30 N...

Страница 348: ...mes sent 0 to 4294967295 1 F9 0 06BA Port 31 Total bytes received 0 to 4294967295 1 F9 0 06BC Port 31 Total frames received 0 to 4294967295 1 F9 0 06BE Port 31 Number of broadcast frames received 0 to 4294967295 1 F9 0 06C0 Port 31 Number of multicast frames received 0 to 4294967295 1 F9 0 06C2 Port 31 Number of frames with CRC error 0 to 4294967295 1 F9 0 06C4 Port 31 Number of oversized frames r...

Страница 349: ...r of multicast frames received 0 to 4294967295 1 F9 0 06F4 Port 32 Number of frames with CRC error 0 to 4294967295 1 F9 0 06F6 Port 32 Number of oversized frames received 0 to 4294967295 1 F9 0 06F8 Port 32 Number of bad fragments received 64 bytes 0 to 4294967295 1 F9 0 06FA Port 32 Number of jabber frames received 0 to 4294967295 1 F9 0 06FC Port 32 Number of collisions occurred 0 to 4294967295 ...

Страница 350: ...ion port type 0 Giga GBIC 1 Copper TP 2 Fiber 10 3 Fiber 100 4 Giga 10 100 1000 triple speed 5 Giga Copper 1000 TP 6 Giga SFP F9 32 bit unsigned long String A sequence of octets packed 2 to one register in sequence 0710 Port 32 Number of multicast frames sent 0 to 4294967295 1 F9 0 0712 Port 32 Number of broadcast frames sent 0 to 4294967295 1 F9 0 0714 Port 32 Number of 64 byte fragments with goo...

Страница 351: ...UCTION MANUAL 20 1 Multilink ML3000 Ethernet Communications Switch Chapter 20 Appendix GE Energy Appendix 20 1 Revision History 20 1 1 Change Notes Table 20 1 Revision history Part Number Revision Release Date 1601 0049 A1 New Manual 5 0 20 September 2012 ...

Страница 352: ...fective and it is returned with all transportation charges prepaid to an authorized service centre or the factory Repairs or replacement under warranty will be made without charge Warranty shall not apply to any relay which has been subject to misuse negligence accident incorrect installation or use not in accordance with instructions nor any unit that has been altered outside a GE Multilin author...

Страница 353: ...NAGERS 6 10 B BACK PRESSURE 9 5 BOOTP 5 3 BRODCAST STORMS 9 8 C CABLE LOSSES 4 4 D DATE 5 10 DESIGN ASPECTS 2 2 DHCP 5 3 DIFFSERV 14 2 E ELECTRICAL INSTALLATION 3 7 E MAIL NOTIFICATION 16 2 18 8 ENVIRONMENTAL SPECIFICATIONS 1 6 ETHERNET connecting 3 3 modules 2 3 power budget calculations 4 4 EVENT LOG 18 15 F FEATURES 2 8 FILTERING 4 1 FLOW CONTROL 2 8 4 3 9 5 FORWARDING 4 1 FRAME BUFFERING 2 8 ...

Страница 354: ...TALLATION 3 6 MEMORY MAP 19 4 MODBUS configuration 19 1 memory map 19 4 Module A 1 Gb Communications Module 2 7 Module A 100 Mb Communications Module 2 4 Module E Communications Module 2 6 Module F Communications Module 2 6 Module G 100 Mb Communications Module 2 4 2 5 Module H 1 Gb Communications Module 2 7 Module H 100 Mb Communications Module 2 5 Module J Communications Module 2 6 Module L Comm...

Страница 355: ...ESCRIPTION 2 1 Q QOS 2 8 14 1 14 4 14 8 R RADIUS 7 1 REDUNDANT POWER SUPPLY 2 9 REVISION HISTORY 20 1 RSTP 13 1 13 4 13 7 13 10 S SAVING CONFIGURATION 5 14 SECURITY 6 1 6 3 6 5 SECURITY LOGS 6 9 SERIAL CONNECTIVITY 18 11 SERIAL PORT parameters 5 8 SMART RSTP 13 15 SMTP 18 6 SNMP 16 1 16 6 SNTP 5 10 SOFTWARE 2 8 SPECIFICATIONS 1 4 STP 12 1 12 3 12 8 SWITCHING FUNCTIONALITY 4 1 SYSTEM EVENTS 18 15 S...

Страница 356: ...ET COMMUNICATIONS SWITCH INSTRUCTION MANUAL INDEX CHAPTER I INDEX TELNET 5 5 TIME 5 10 TROUBLESHOOTING 4 6 U UL REQUIREMENTS FOR DC UNITS 3 8 UNPACKING THE SWITCH 1 1 UP LINK SWITCH 4 2 V VLAN 10 1 10 4 10 10 W WARRANTY 1 1 20 2 ...

Результаты поиска

Содержание Multilink ML3000

Отзывы:

Бренды по названию

Популярные бренды

GE Multilink ML3000, Инструкция по эксплуатации

Результаты поиска

Содержание Multilink ML3000

Отзывы:

Бренды по названию

Популярные бренды