LevelOne GSW-4876 Скачать руководство пользователя страница 1

Страница: 1 / 314

LevelOne

User Manual

GSW-4876

48 GE + 2 GE SFP Web Smart Switch

Ver. 1.0

Содержание GSW-4876

Страница 1: ...LevelOne User Manual GSW 4876 48 GE 2 GE SFP Web Smart Switch Ver 1 0...

Страница 2: ......

Страница 3: ...MANAGEMENT GUIDE GSW 4876 WEB SMART SWITCH Layer 2 Gigabit Ethernet Switch with 48 10 100 1000BASE T Ports RJ 45 and 2 Gigabit Combination RJ 45 SFP Ports GSW 4876 E082012 ST R01...

Страница 4: ......

Страница 5: ...ur attention to related features or instructions CAUTION Alerts you to a potential hazard that could cause loss of data or damage the system or equipment WARNING Alerts you to a potential hazard that...

Страница 6: ...ABOUT THIS GUIDE 6...

Страница 7: ...N II WEB CONFIGURATION 33 3 USING THE WEB INTERFACE 35 Navigating the Web Browser Interface 35 Home Page 35 Configuration Options 36 Panel Display 36 Main Menu 36 4 CONFIGURING THE SWITCH 45 Configuri...

Страница 8: ...DHCP Snooping 108 Configuring DHCP Relay and Option 82 Information 111 Configuring IP Source Guard 112 Configuring ARP Inspection 116 Specifying Authentication Servers 119 Creating Trunk Groups 121 C...

Страница 9: ...ng Protocol Groups to Ports 177 Configuring IP Subnet based VLANs 178 Managing VoIP Traffic 179 Configuring VoIP Traffic 180 Configuring Telephony OUI 182 Quality of Service 183 Configuring Port Class...

Страница 10: ...isplaying Information About Learned MAC Addresses 228 Displaying Port Status for Authentication Services 229 Displaying Port Statistics for 802 1X or Remote Authentication Service 230 Displaying ACL S...

Страница 11: ...atus 262 Showing MLD Snooping Group Information 263 Showing IPv6 SFM Information 264 Displaying LLDP Information 265 Displaying LLDP Neighbor Information 265 Displaying LLDP MED Neighbor Information 2...

Страница 12: ...ON III APPENDICES 289 A SOFTWARE SPECIFICATIONS 291 Software Features 291 Management Features 292 Standards 293 Management Information Bases 293 B TROUBLESHOOTING 295 Problems Accessing the Management...

Страница 13: ...Authentication Server Operation 63 Figure 15 Authentication Method for Management Access 64 Figure 16 SSH Configuration 65 Figure 17 HTTPS Configuration 67 Figure 18 Access Management Configuration 68...

Страница 14: ...e 47 STA Bridge Configuration 131 Figure 48 Adding a VLAN to an MST Instance 133 Figure 49 Configuring STA Bridge Priorities 134 Figure 50 STP RSTP CIST Port Configuration 138 Figure 51 MSTI Port Conf...

Страница 15: ...ed QoS Ingress Classification 194 Figure 82 Configuring DSCP Translation and Re mapping 195 Figure 83 Mapping DSCP to CoS Values 196 Figure 84 QoS Control List Configuration 200 Figure 85 Storm Contro...

Страница 16: ...RMON Alarm Overview 248 Figure 120 RMON Event Overview 248 Figure 121 LACP System Status 249 Figure 122 LACP Port Status 250 Figure 123 LACP Port Statistics 251 Figure 124 Spanning Tree Bridge Status...

Страница 17: ...Figure 144 Showing MAC based VLAN Membership Status 275 Figure 145 Showing sFlow Statistics 277 Figure 146 ICMP Ping 280 Figure 147 VeriPHY Cable Diagnostics 281 Figure 148 Restart Device 283 Figure...

Страница 18: ...FIGURES 18...

Страница 19: ...upport 66 Table 6 SNMP Security Models and Levels 69 Table 7 Dynamic QoS Profiles 91 Table 8 QCE Modification Buttons 102 Table 9 Recommended STA Path Cost Range 135 Table 10 Recommended STA Path Cost...

Страница 20: ...TABLES 20...

Страница 21: ...view of the switch and introduces some basic concepts about network switches It also describes the basic settings required to access the management interface This section includes these chapters Intro...

Страница 22: ...SECTION I Getting Started 22...

Страница 23: ...Port Authentication Port Security DHCP Snooping with Option 82 relay information IP Source Guard Access Control Lists Supports up to 256 rules DHCP Client DNS Client and Proxy service Port Configurati...

Страница 24: ...authentication server i e RADIUS or TACACS Port based authentication is also supported via the IEEE 802 1X protocol This protocol uses Extensible Authentication Protocol over LANs EAPOL to request use...

Страница 25: ...E LIMITING This feature controls the maximum rate for traffic transmitted or received on an interface Rate limiting is configured on interfaces at the edge of a network to limit traffic into or out of...

Страница 26: ...ed by using the STP backward compatible mode provided by RSTP STP provides loop detection When there are multiple physical paths between segments this protocol will choose a single path and disable al...

Страница 27: ...ecified interfaces based on protocol type IEEE 802 1Q TUNNELING QINQ This feature is designed for service providers carrying traffic for multiple customers across their networks QinQ tunneling is used...

Страница 28: ...Query to manage multicast group registration for IPv4 traffic and MLD Snooping for IPv6 traffic It also supports Multicast VLAN Registration MVR which allows common multicast traffic such as televisio...

Страница 29: ...t Enabled 1 kpps Multicast disabled Unknown unicast disabled Spanning Tree Algorithm Status Enabled RSTP Defaults RSTP standard Edge Ports Enabled Address Table Aging Time 300 seconds Virtual LANs Def...

Страница 30: ...Gateway 0 0 0 0 DHCP Client Disabled Snooping Disabled DNS Proxy service Disabled Multicast Filtering IGMP Snooping Snooping Disabled Querier Disabled MLD Snooping Disabled Multicast VLAN Registratio...

Страница 31: ...8 1 x If the PC and switch are not on the same subnet you must manually set the PC s IP address to 192 168 1 x where x is any number from 2 to 254 4 Open your web browser and enter the address http 19...

Страница 32: ...CHAPTER 2 Initial Switch Configuration 32 admin from the User Configuration list fill in the Password fields and then click Save...

Страница 33: ...detailed description of how to configure each feature via a web browser This section includes these chapters Using the Web Interface on page 35 Configuring the Switch on page 45 Monitoring the Switch...

Страница 34: ...SECTION II Web Configuration 34...

Страница 35: ...the web browser interface you must first enter a user name and password The administrator has Read Write access to all configuration parameters and statistics The default user name and password for t...

Страница 36: ...an define system parameters manage and control the switch and all its ports or monitor network conditions The following table briefly describes the selections available from this program Table 3 Web P...

Страница 37: ...e mirroring 204 Advanced Configuration System2 Information Configures system contact name and location 45 IP Configures IPv4 and SNTP settings 46 IPv6 Configures IPv6 and SNTP settings 48 NTP Enables...

Страница 38: ...Configures global and port settings for IEEE 802 1X 87 ACL Access Control Lists 98 Ports Assigns ACL rate limiter and other parameters to ports 98 Rate Limiters Configures rate limit policies 100 Acce...

Страница 39: ...figures IGMP snooping per VLAN interface 148 Port Group Filtering Configures multicast groups to be filtered on specified port 150 MLD Snooping Multicast Listener Discovery Snooping 151 Basic Configur...

Страница 40: ...Provides overview of QoS Egress Port Shapers including the rate for each queue and port also configures egress queue mode queue shaper rate and access to excess bandwidth and port shaper 188 Port Tag...

Страница 41: ...h Shows information about MAC address learning for each port including the software module requesting port security services the service state the current number of learned addresses and the maximum n...

Страница 42: ...ch local port 249 Port Statistics Displays statistics for LACP protocol messages 250 Spanning Tree 251 Bridge Status Displays global bridge and port settings for STA 251 Port Status Displays STA role...

Страница 43: ...he current port members for all VLANs configured by a selected software module 272 VLAN Port Shows the VLAN attributes of port members for all VLANs configured by a selected software module which uses...

Страница 44: ...286 Upload Restores configuration settings from a file on the management station 286 1 The Basic Configuration menu is a subset of Advanced Configuration The following configuration chapter is therefo...

Страница 45: ...ETERS These parameters are displayed System Contact Administrator responsible for the system Maximum length 255 characters System Name Name assigned to the switch system Maximum length 255 characters...

Страница 46: ...ined via DHCP by default If the switch does not receive a response from a DHCP server it will default to the IP address 192 168 1 1 and subnet mask 255 255 255 0 You can manually configure a specific...

Страница 47: ...ame Server to which client requests for mapping host names to IP addresses are forwarded IP DNS Proxy Configuration DNS Proxy If enabled the switch maintains a local database based on previous respons...

Страница 48: ...ros required to fill the undefined fields When configuring a link local address note that the prefix length is fixed at 64 bits and the host portion of the default address is based on the modified EUI...

Страница 49: ...f the address comprise the prefix i e the network portion of the address Default 96 bits Note that the default prefix length of 96 bits specifies that the first six colon separated values comprise the...

Страница 50: ...the switch periodically sends a request for a time update to a configured time server You can configure up to five time server IP addresses The switch will attempt to poll each server in the configur...

Страница 51: ...t and mornings have less This is known as Daylight Savings Time or Summer Time Typically clocks are adjusted forward one hour at the start of spring and then adjusted backward in autumn PATH Basic Adv...

Страница 52: ...me basis From Start time for summer time To End time for summer time Offset The number of minutes to add during Daylight Saving Time Range 1 1440 WEB INTERFACE To set the time zone or Daylight Savings...

Страница 53: ...e to send log messages to syslog servers or other management stations You can also limit the event messages sent to specified types PATH Basic Advanced Configuration System Log COMMAND USAGE When remo...

Страница 54: ...ver which will be sent syslog messages Syslog Level Limits log messages that are sent to the remote syslog server for the specified types Messages options include the following Info Send informations...

Страница 55: ...es must agree upon the value of the wakeup time in order to make sure that both the receiving and transmitting devices have all circuits powered up when traffic is transmitted The devices can exchange...

Страница 56: ...or manual selection The following options are supported Disabled Disables the interface You can disable an interface due to abnormal behavior e g excessive collisions and then re enable it after the p...

Страница 57: ...ise back pressure jamming signals may degrade overall performance for the segment attached to the hub Maximum Frame Size Sets the maximum transfer unit for traffic crossing the switch Packets exceedin...

Страница 58: ...y methods of segregating traffic for clients attached to each of the data ports and for ensuring that only authorized clients gain access to the network Private VLANs and port based authentication usi...

Страница 59: ...stem maintenance software upload factory defaults etc the user s privilege level should be set to 15 Generally the privilege level 15 can be used for an administrator account privilege level 10 for a...

Страница 60: ...URING USER PRIVILEGE LEVELS Use the Privilege Levels page to set the privilege level required to read or configure specific software modules or system settings PATH Advanced Configuration Security Swi...

Страница 61: ...group can be configured to access the following modules or system settings Configuration Read only Configuration Execute Read write Status Statistics Read only and Status Statistics Read write e g cl...

Страница 62: ...d on the switch or can be controlled with a RADIUS or TACACS remote access authentication server Note that the RADIUS servers used to authenticate client access for IEEE 802 1X port authentication are...

Страница 63: ...thentication server is used you must specify the authentication method and the corresponding parameters for the remote authentication protocol on the Network Access Server Configuration page Local and...

Страница 64: ...ication method Options None Local RADIUS TACACS Default Local Selecting the option None disables access through the specified management interface Fallback Uses the local user database for authenticat...

Страница 65: ...or management via the SSH protocol The switch supports both SSH Version 1 5 and 2 0 clients SSH service on this switch only supports password authentication The password can be authenticated either lo...

Страница 66: ...The client and server establish a secure encrypted connection A padlock icon should appear in the status bar for Internet Explorer 5 x or above Netscape 6 2 or above and Mozilla Firefox 2 0 0 0 or ab...

Страница 67: ...ch Access Management PARAMETERS These parameters are displayed Mode Enables or disables filtering of management access based on configured IP addresses Default Disabled Start IP Address The starting a...

Страница 68: ...ation of the information controlled by the agent SNMP defines both the format of the MIB specifications and the protocol used to access this information over the network The switch includes an onboard...

Страница 69: ...SNMP System Configuration Mode Enables or disables SNMP service Default Disabled Table 6 SNMP Security Models and Levels Model Level Community String Group Read View Write View Security v1 noAuth NoPr...

Страница 70: ...against message replay delay and redirection The engine ID is also used in combination with user passwords to generate the security keys for authenticating and encrypting SNMPv3 packets A local engin...

Страница 71: ...raffic You should consider these effects when deciding whether to issue notifications as traps or informs Trap Inform Timeout The number of seconds to wait for an acknowledgment before resending an in...

Страница 72: ...o enable SNMP service on the switch specify the SNMP version to use change the community access strings if required and set the engine ID if SNMP version 3 is used 3 In the SNMP Trap Configuration tab...

Страница 73: ...to authorize access by SNMP v1 and v2c clients should be listed in the SNMPv3 Communities Configuration table For security reasons you should consider removing the default strings PATH Advanced Config...

Страница 74: ...these strings for security reasons 3 Add any new community strings required for SNMPv1 or v2 clients that need to access the switch along with the source address and address mask for each client 4 Cl...

Страница 75: ...of user connecting to the SNMP agent Range 1 32 characters ASCII characters 33 126 only Security Level The security level assigned to the user NoAuth NoPriv There is no authentication or encryption us...

Страница 76: ...odel The user security model Options SNMP v1 v2c or the User based Security Model usm Security Name The name of a user connecting to the SNMP agent Range 1 32 characters ASCII characters 33 126 only T...

Страница 77: ...t user access to specified portions of the MIB tree The predefined view default_view includes access to the entire MIB tree CLI REFERENCES SNMP Commands on page 330 PARAMETERS These parameters are dis...

Страница 78: ...rity Switch SNMP Access PARAMETERS These parameters are displayed Group Name The name of the SNMP group Range 1 32 characters ASCII characters 33 126 only Security Model The user security model Option...

Страница 79: ...ect to the management agent it will continue to perform any specified tasks and pass data back to the management station the next time it is contacted The switch supports mini RMON which consists of t...

Страница 80: ...Configuration CONFIGURING RMON HISTORY SAMPLES Use the RMON History Configuration page to collect statistics on a physical interface to monitor network utilization packet types and errors A historica...

Страница 81: ...ing interval and maximum number of buckets requested 4 Click Save Figure 26 RMON History Configuration CONFIGURING RMON ALARMS Use the RMON Alarm Configuration page to define specific criteria that wi...

Страница 82: ...e thresholds Value The value of the statistic during the last sampling period Startup Alarm The method of sampling the selected variable and calculating the value to be compared against the thresholds...

Страница 83: ...event will be generated Range 1 65535 WEB INTERFACE To configure an RMON alarm 1 Click Advanced Configuration Security Switch RMON Alarm 2 Click Add New Entry 3 Enter an index number the polling inter...

Страница 84: ...SNMP trap configuration page see Setting SNMPv3 Community Access Strings on page 73 prior to configuring it here Range 0 127 characters Last Event Time The value of sysUpTime when an event was last g...

Страница 85: ...rity will use the shortest requested aging period of all modules that use this functionality Range 10 10 000 000 seconds Default 3600 seconds Port Configuration Port Port identifier Mode Controls whet...

Страница 86: ...ontrol is either globally disabled or disabled on the port Ready The limit is not yet reached This can be shown for all Actions Limit Reached Indicates that the limit is reached on this port This stat...

Страница 87: ...he 802 1X standard defines a port based access control procedure that prevents unauthorized access to a network by requiring users to first submit credentials for authentication Access to all switch p...

Страница 88: ...ed authentication is MD5 The client responds to the appropriate method with its credentials such as a password or certificate The RADIUS server verifies the client credentials and responds with an acc...

Страница 89: ...nabled or disabled on the switch If globally disabled all ports are allowed to forward frames Reauthentication Enabled Sets clients to be re authenticated after an interval specified by the Re authent...

Страница 90: ...tch will ignore new frames coming from the client during the hold time RADIUS Assigned QoS Enabled RADIUS assigned QoS provides a means to centrally control the traffic class to which traffic coming f...

Страница 91: ...attribute then only the first profile is used For example if the attribute is service policy in p1 service policy in p2 then the switch applies only the DiffServ profile p1 Any unsupported profiles in...

Страница 92: ...ings determine whether RADIUS assigned VLAN is enabled for that port When unchecked RADIUS server assigned VLAN is disabled for all ports When RADIUS Assigned VLAN is both globally enabled and enabled...

Страница 93: ...are placed after a network administrator defined timeout The switch follows a set of rules for entering and leaving the Guest VLAN as listed below The Guest VLAN Enabled checkbox provides a quick way...

Страница 94: ...ransmits an EAPOL Request Identity frame without receiving a response before adding a port to the Guest VLAN The value can only be changed if the Guest VLAN option is globally enabled Range 1 255 Allo...

Страница 95: ...st MAC address as the destination to wake up any supplicants that might be on the port The maximum number of supplicants that can be attached to a port can be limited using the Port Security Limit Con...

Страница 96: ...cally learned on this port are removed from the common address table Authenticated MAC addresses are stored as dynamic entries in the switch s secure MAC address table Configured static MAC addresses...

Страница 97: ...MAC Based mode Clicking these buttons will not cause settings changed on the page to take effect Reauthenticate Schedules reauthentication to whenever the quiet period of the port runs out EAPOL based...

Страница 98: ...ny rule If no rules match the frame is accepted Other actions can also be invoked when a matching packet is found including rate limiting copying matching packets to another port or to the system log...

Страница 99: ...r All logging levels Shutdown Shuts down a port when a macthing frame is seen Default Disabled State Specify the port state Enabled To reopen ports by changing the port configuration in the ACL config...

Страница 100: ...splayed Rate Limiter ID Rate limiter identifier Range 0 14 Default 1 Rate The threshold above which packets are dropped Options 0 100 pps or 0 100 2 100 3 100 1000000 kbps Due to an ASIC limitation th...

Страница 101: ...d order from top to bottom A packet will be accepted as soon as it matches a permit rule or dropped as soon as it matches a deny rule If no rules match the frame is accepted The maximum number of ACL...

Страница 102: ...ion Shows whether a frame is permitted or denied when it matches an ACL rule Rate Limiter Shows if rate limiting will be enabled or disabled when matching frames are found Port Redirect Port to which...

Страница 103: ...This option can only be used to filter Ethernet II formatted packets Options Any Specific 600 ffff hex Default Any A detailed listing of Ethernet protocol types can be found in RFC 1060 A few of the...

Страница 104: ...ir target hardware address THA field settings Options Any any value is allowed 0 RARP frames where THA is not equal to the DMAC address 1 RARP frames where THA is equal to the DMAC address Default Any...

Страница 105: ...s the UDP source filter for this rule Options Any Specific 0 65535 Range 0 65535 Default Any Dest Port Filter Specifies the UDP destination filter for this rule Options Any Specific 0 65535 Range 0 65...

Страница 106: ...tings for this rule Options Any any value is allowed Non zero IPv4 frames with a TTL field greater than zero must match this entry Zero IPv4 frames with a TTL field greater than zero must not match th...

Страница 107: ...any of the rules defined for this ACL VLAN Parameters 802 1Q Tagged Specifies whether or not frames should be 802 1Q tagged Options Any Disabled Enabled Default Any VLAN ID Filter Specifies the VLAN t...

Страница 108: ...ows a switch to protect a network from rogue DHCP servers or other devices which send port related information to a DHCP server This information can be useful in tracking an IP address back to a physi...

Страница 109: ...opped If a DHCP DECLINE or RELEASE message is received from a client the switch forwards the packet only if the corresponding entry is found in the binding table If a DHCP DISCOVER REQUEST or INFORM m...

Страница 110: ...y packets only allowed from trusted ports Default Disabled Port Port identifier Mode Enables or disables a port as a trusted source of DHCP messages Default Trusted WEB INTERFACE To configure DHCP Sno...

Страница 111: ...o which they are connected rather than just their MAC address DHCP client server exchange messages are then forwarded directly between the server and client without having to flood them to the entire...

Страница 112: ...ddress of a neighbor to access the network CONFIGURING GLOBAL AND PORT SETTINGS FOR IP SOURCE GUARD Use the IP Source Guard Configuration page to filter traffic on an insecure port which receives mess...

Страница 113: ...inding the packet will be forwarded If IP source guard if enabled on an interface for which IP source bindings have not yet been configured neither by static configuration in the IP source guard bindi...

Страница 114: ...Source Guard CONFIGURING STATIC BINDINGS FOR IP SOURCE GUARD Use the Static IP Source Guard Table to bind a static address to a port Table entries include a port identifier VLAN identifier IP address...

Страница 115: ...o static IP source guard binding Only unicast addresses are accepted for static bindings PARAMETERS These parameters are displayed Port The port to which a static entry is bound VLAN ID ID of a config...

Страница 116: ...tion is controlled on a global and port basis By default ARP Inspection is disabled both globally and on all ports If ARP Inspection is globally enabled then it becomes active only on the ports where...

Страница 117: ...Default Disabled Translate dynamic to static Click to translate all dynamic entries to static entries Port Mode Configuration Port Port identifier Mode Enables Dynamic ARP Inspection on a given port O...

Страница 118: ...packets to any entries specified in the static ARP table If no static entry matches the packets then the DHCP snooping bindings database determines their validity PATH Advanced Configuration Security...

Страница 119: ...equest Range 3 3600 seconds Default 15 seconds Dead Time The time after which the switch considers an authentication server to be dead if it does not reply Range 0 3600 seconds Default 300 seconds Set...

Страница 120: ...ement access in the web interface 1 Click Advanced Configuration Security AAA 2 Configure the authentication method for management client types the common server timing parameters and address UDP port...

Страница 121: ...e standby ports will automatically be activated to replace it USAGE GUIDELINES Besides balancing the load across each port in the trunk the other ports provide redundancy by taking over the load if a...

Страница 122: ...e a balanced load across all links in a trunk the switch uses a hash algorithm to calculate an output link number in the trunk However depending on the device to which a trunk is connected and the tra...

Страница 123: ...nt hosts Do not use this mode for switch to server trunk links where the destination IP address is the same for all traffic One of the defaults TCP UDP Port Number All traffic with the same source and...

Страница 124: ...target switch has also enabled LACP on the connected ports the trunk will be activated automatically A trunk formed with another switch using LACP will automatically be assigned the next available tru...

Страница 125: ...Default Auto Select the Specific option to manually configure a key Use the Auto selection to automatically set the key based on the actual link speed where 10Mb 1 100Mb 2 and 1Gb 3 Role Configures ac...

Страница 126: ...h include these versions STP Spanning Tree Protocol IEEE 802 1D RSTP Rapid Spanning Tree Protocol IEEE 802 1w MSTP Multiple Spanning Tree Protocol IEEE 802 1s STP STP uses a distributed algorithm to s...

Страница 127: ...ng an alternate route that can be used when a node or port fails and retaining the forwarding database for ports insensitive to changes in the tree structure when reconfiguration occurs MSTP When usin...

Страница 128: ...STP protocols Once you specify the VLANs to include in a Multiple Spanning Tree Instance MSTI the protocol will automatically build an MSTI tree to maintain connectivity among each of the VLANs MSTP m...

Страница 129: ...lowing for faster convergence of a new topology for the failed instance To allow multiple spanning trees to operate over the network you must configure a related set of bridges with the same MSTP conf...

Страница 130: ...becomes the designated port for the attached LAN If it is a root port a new root port is selected from among the device ports attached to the network Note that references to ports in this section mean...

Страница 131: ...uthorized device The BPDU guard feature provides a secure response to invalid configurations because an administrator must manually enable the port Default Disabled Port Error Recovery Controls whethe...

Страница 132: ...l area of your network However remember that you must configure all bridges that exist within the same MSTI Region with the same set of instances and the same instance on each bridge with the same set...

Страница 133: ...pped VLANs to assign to this MST instance The VLANs must be separated with comma and or space A VLAN can only be mapped to one MSTI Range 1 4094 WEB INTERFACE To add VLAN groups to an MSTP instance 1...

Страница 134: ...16 32 48 64 80 96 112 128 144 160 176 192 208 224 240 Default 128 Bridge priority is used in selecting the root device root port and designated port The device with the highest priority becomes the ST...

Страница 135: ...ation settings can be applied to all trunks STP Enabled Sets the interface to enable STA disable STA or disable STA with BPDU transparency Default Enabled BPDU transparency is commonly used to support...

Страница 136: ...looding required to rebuild address tables during reconfiguration events does not cause the spanning tree to initiate reconfiguration when the interface changes state and also overcomes other STA rela...

Страница 137: ...eceiving BPDUs It can prevent loops by shutting down an port when a BPDU is received instead of putting it into the spanning tree discarding state The BPDU guard feature provides a secure response to...

Страница 138: ...the same media type to indicate the preferred path References to ports in this section means interfaces which includes both ports and trunks PATH Basic Advanced Configuration Spanning Tree MSTI Ports...

Страница 139: ...ric identifier will be enabled Range 0 240 in steps of 16 Default 128 WEB INTERFACE To configure settings for MSTP interfaces 1 Click Configuration Spanning Tree MIST Ports 2 Modify the required attri...

Страница 140: ...General Configuration Guidelines for MVR 1 Enable MVR globally on the switch and select the MVR VLAN 2 Set the interfaces that will join the MVR as source ports or receiver ports 3 If you are sure th...

Страница 141: ...MVR allows dynamic MVR membership reports on source ports This is the default Compatible MVR membership reports are forbidden on source ports Tagging Specifies whether the traversed IGMP MLD control...

Страница 142: ...an MVR receiver Just remember that only IGMP version 2 or 3 hosts can issue multicast leave messages If a version 1 host is receiving multicast traffic the switch can only remove the interface from th...

Страница 143: ...issue multicast join or leave messages If MVR must be configured for an IGMP version 1 host the multicast groups must be statically assigned using this configuration page The IPv4 address range from 2...

Страница 144: ...e 54 Configuring MVR Channel Settings IGMP SNOOPING Multicasting is used to support real time applications such as videoconferencing or streaming audio A multicast server does not have to establish a...

Страница 145: ...rt messages the switch forwards traffic only to the ports that request multicast traffic This prevents the switch from broadcasting the traffic to all ports and possibly disrupting network performance...

Страница 146: ...clude a specific address when requested Only IGMPv3 hosts can request service from a specific multicast source When downstream hosts request service from a specific source for a multicast service thes...

Страница 147: ...e attached router switch to ensure that multicast traffic is passed to all appropriate interfaces within the switch Fast Leave Immediately deletes a member port of a multicast service if a leave packe...

Страница 148: ...e Figure 55 Configuring Global and Port related Settings for IGMP Snooping CONFIGURING VLAN SETTINGS FOR IGMP SNOOPING AND QUERY Use the IGMP Snooping VLAN Configuration page to configure IGMP snoopin...

Страница 149: ...the robustness value from the most recently received query If the querier s robustness variable QRV is zero indicating that the QRV field does not contain a declared robustness value the switch will...

Страница 150: ...tream interface should transmit unsolicited IGMP reports when report suppression proxy reporting is enabled Range 0 31744 seconds Default 1 second WEB INTERFACE To configure VLAN settings for IGMP sno...

Страница 151: ...oping for IPv4 That is MLD snooping dynamically configures switch ports to limit IPv6 multicast traffic so that it is forwarded only to ports with users that want to receive it This reduces the floodi...

Страница 152: ...ulticast traffic into the attached VLAN Default Enabled Once the table used to store multicast entries for MLD snooping is filled no new entries are learned If no router port is configured in the atta...

Страница 153: ...uter Port Sets a port to function as a router port which leads towards a Layer 3 multicast device or MLD querier Default Disabled If MLD snooping cannot locate the MLD querier you can manually designa...

Страница 154: ...the same time When the maximum number of groups is reached on a port any new MLD listener reports will be dropped WEB INTERFACE To configure global and port related settings for MLD Snooping 1 Click C...

Страница 155: ...this IPv6 address as the query source address The querier will not start or will disable itself after having started if it detects an IPv6 multicast router on the network Compatibility Compatibility i...

Страница 156: ...en the leave message is received by the switch it checks to see if this host is the last to leave the group by sending out an MLD group specific or group and source specific query message and starts a...

Страница 157: ...port are checked against the these groups If a requested multicast group is denied the MLD report is dropped WEB INTERFACE To configure MLD Snooping Port Group Filtering 1 Click Configuration IPMC ML...

Страница 158: ...ells the receiving LLDP agent how long to retain all information pertaining to the sending LLDP agent if it does not transmit updates in a timely manner TTL in seconds is based on the following rule T...

Страница 159: ...n as others in the LLDP neighbors table If all ports have CDP awareness disabled the switch forwards CDP frames received from neighbor devices If at least one port has CDP awareness enabled all CDP fr...

Страница 160: ...umber and OID are included to assist SNMP applications in the performance of network discovery by indicating enterprise specific or other starting points for the search such as the Interface or Entity...

Страница 161: ...in mind LLDP MED defines an LLDP MED Fast Start interaction between the protocol and the application layers on top of the protocol in order to achieve these related properties Initially a Network Con...

Страница 162: ...Datum used for the coordinates given in this Option WGS84 Geographical 3D World Geodesic System 1984 CRS Code 4327 Prime Meridian Name Greenwich NAD83 NAVD88 North American Datum 1983 CRS Code 4269 Pr...

Страница 163: ...Call Service e g 911 and others such as defined by TIA or NENA ELIN identifier data format is defined to carry the ELIN identifier as used during emergency call setup to a traditional CAMA or ISDN tr...

Страница 164: ...uto generated and will be used when selecting the polices that will be mapped to the specific ports Application Type Intended use of the application types Voice For use by dedicated IP Telephony hands...

Страница 165: ...802 1Q 2003 In this case both the VLAN ID and the Layer 2 priority fields are ignored and only the DSCP value has relevance Tagged indicates that the device is using the IEEE 802 1Q tagged frame form...

Страница 166: ...evice and policies applied to selected ports 4 Click Save Figure 62 LLDP MED Configuration CONFIGURING THE MAC ADDRESS TABLE Use the MAC Address Table Configuration page to configure dynamic address l...

Страница 167: ...ames are dropped Make sure that the link used for managing the switch is added to the Static MAC Table before changing to secure learning mode Otherwise the management link will be lost and can only b...

Страница 168: ...to separate broadcast domains VLANs confine broadcast traffic to the originating group and can eliminate broadcast storms in large networks This also provides a more secure and cleaner network environ...

Страница 169: ...ts VLANs Then assign ports on the other VLAN aware network devices along the path that will carry this traffic to the same VLAN s either manually or dynamically using GVRP However if you want a port o...

Страница 170: ...orts PARAMETERS These parameters are displayed Ethertype for Custom S ports When Port Type is set to S custom port the EtherType also called the Tag Protocol Identifier or TPID of all frames received...

Страница 171: ...f ingress filtering is enabled and a port receives frames tagged for VLANs for which it is not a member these frames will be discarded If ingress filtering is disabled and a port receives frames tagge...

Страница 172: ...are devices including the destination host the switch should first strip off the VLAN tag before forwarding the frame Port VLAN ID VLAN ID assigned to untagged frames received on the interface Range 1...

Страница 173: ...ck Configuration Private VLANs Port Isolation 2 Mark the ports which are to be isolated from each other 3 Click Save Figure 66 Port Isolation Configuration CONFIGURING MAC BASED VLANS Use the MAC base...

Страница 174: ...a specific VLAN The MAC address must be specified in the format xx xx xx xx xx xx VLAN ID VLAN to which ingress traffic matching the specified source MAC address is forwarded Range 1 4093 Port Member...

Страница 175: ...want to use page 169 Although not mandatory we suggest configuring a separate VLAN for each major protocol running on your network Do not add port members at this time 2 Create a protocol group for e...

Страница 176: ...0x0600 0xffff and if value of the OUI is other than 00 00 00 then valid value of the PID will be any value from 0x0000 to 0xffff Group Name The name assigned to the Protocol VLAN Group This name must...

Страница 177: ...rules applied to tagged frames If the frame is untagged and the protocol type matches the frame is forwarded to the appropriate VLAN If the frame is untagged but the protocol type does not match the...

Страница 178: ...no IP subnet is matched the untagged frames are classified as belonging to the receiving port s VLAN ID PVID PATH Advanced Configuration VCL IP Subnet based VLAN COMMAND USAGE Each IP subnet can be ma...

Страница 179: ...ic Traffic isolation can provide higher voice quality by preventing excessive packet delays packet loss and jitter This is best achieved by assigning all VoIP traffic to a single Voice VLAN The use of...

Страница 180: ...ers on page 170 Aging Time The time after which a port is removed from the Voice VLAN when VoIP traffic is no longer received on the port Range 10 10 000 000 seconds Default 86400 seconds Traffic Clas...

Страница 181: ...OUI numbers are assigned to manufacturers and form the first three octets of a device MAC address MAC address OUI numbers must be configured in the Telephony OUI list so that the switch recognizes th...

Страница 182: ...rs for VoIP equipment can be configured on the switch so that traffic from these devices is recognized as VoIP NOTE Making any changes to the OUI table will restart the auto detection process for atta...

Страница 183: ...classes The manner in which an individual device handles traffic is called per hop behavior All devices along a path should be configured in a consistent manner to construct a consistent end to end Q...

Страница 184: ...fault QoS class i e the QoS class for frames not classified in any other way There is a one to one mapping between QoS class queue and priority A QoS class of 0 zero has the lowest priority Range 0 7...

Страница 185: ...ded without any changes PATH Advanced Configuration QoS Port Policing PARAMETERS These parameters are displayed Port Port identifier Enabled Enables or disables port policing on a port Rate Controls t...

Страница 186: ...ch queue Options Strict Weighted Default Strict DWRR services the queues in a manner similar to WRR but the next queue is serviced only when the queue s Deficit Counter becomes smaller than the packet...

Страница 187: ...per The default value is 500 This value is restricted to 100 1000000 kbps or 1 3300 Mbps Unit Controls the unit of measure for the port shaper rate as kbps or Mbps Default kbps WEB INTERFACE To show a...

Страница 188: ...oS Egress Port Shapers including the rate for each queue and port Click on any of the entries in the Port field to configure egress queue mode queue shaper rate and access to excess bandwidth and port...

Страница 189: ...hapers CONFIGURING PORT REMARKING MODE Use the QoS Egress Port Tag Remarking page to show an overview of QoS Egress Port Tag Remarking mode Click on any of the entries in the Port field to configure t...

Страница 190: ...arks matching egress frames with the specified Priority Code Point or User Priority value Range 0 7 Default 0 DEI Remarks matching egress frames with the specified Drop Eligible Indicator Range 0 1 De...

Страница 191: ...CHAPTER 4 Configuring the Switch Quality of Service 191 Figure 79 Configuring Port Tag Remarking Mode...

Страница 192: ...see page 194 All Classify all DSCP Egress Rewrite Configures port egress rewriting of DSCP values Disable Egress rewriting is not performed Enable Egress rewriting is performed without remapping Rema...

Страница 193: ...es with trusted DSCP values are mapped to a specific QoS class and drop level DPL Frames with untrusted DSCP values are treated as non IP frames QoS Class QoS value to which the corresponding DSCP val...

Страница 194: ...s ingress translation of DSCP values based on the specified classification method Ingress Classify Enable Classification at ingress side as defined in the QoS Port DSCP Configuration table see page 19...

Страница 195: ...SCP values to a QoS class PATH Advanced Configuration QoS DSCP Classification PARAMETERS These parameters are displayed QoS Class Shows the mapping options for QoS class values DSCP DSCP value Range 0...

Страница 196: ...CEs are classified to the default QoS Class for the port PATH Advanced Configuration QoS QoS Control List PARAMETERS These parameters are displayed QoS Control List QCE Quality Control Entry index Por...

Страница 197: ...identifier Options Any Specific 1 4095 Range Default Any PCP Priority Code Point User Priority Options a specific value of 0 1 2 3 4 5 6 7 a range of 0 1 2 3 4 5 6 7 0 3 4 7 or Any Default 0 DEI Drop...

Страница 198: ...r organization the protocol ID is a value assigned by that organization to the protocol running on top of SNAP In other words if value of the OUI field is 00 00 00 then value of the PID will be etherT...

Страница 199: ...E it will be put in the queue corresponding to the specified QoS class or placed in a queue based on basic classification rules Options 0 7 Default use basic classification Default setting 0 DPL The d...

Страница 200: ...fic storms caused by any of these problems can severely degrade performance or bring your network to a complete halt You can protect your network from traffic storms by setting a threshold for broadca...

Страница 201: ...oves above a specified minimum threshold and then at a more aggressive rate when it reaches drop probabilities DP1 DP3 If the source is using TCP it will automatically decrease its transmission rate o...

Страница 202: ...ever dropped While the drop probability for frames marked with DP level n increases linearly from zero at Min Threshold average queue level up to Max DP n at 100 average queue level Figure 86 WRED Dro...

Страница 203: ...GEMENT Use the Congestion Management page to forward traffic only if the destination port is not congested This is the most aggressive mode of traffic management However note that it is only be applie...

Страница 204: ...he Mirroring RSPAN Configuration page mirroring will occur regardless of any configuration settings made on the ACL Ports Configuration page see Filtering Traffic with Access Control Lists on page 98...

Страница 205: ...ation port to which all mirrored traffic will be sent 5 Click Save Figure 89 Mirror Configuration CONFIGURING REMOTE PORT MIRRORING Use the Mirroring RSPAN Configuration page to mirror traffic from re...

Страница 206: ...tch on the Mirroring RSPAN configuration page by specifying switch type Destination the RSPAN VLAN intermediate ports and the destination port s where the mirrored traffic will be received RSPAN Limit...

Страница 207: ...y mirrored traffic Source port s reflector port and intermediate port s are located on this switch Intermediate Specifies this device as an intermediate switch transparently passing mirrored traffic f...

Страница 208: ...configure remote port mirroring for an RSPAN source switch 1 Click Basic Advanced Configuration Mirroring RSPAN 2 Set the Mode to Enabled and the Type to Source 3 Set the Remote VLAN ID the Reflector...

Страница 209: ...RSPAN 2 Set the Mode to Enabled and the Type to destination 3 Select the intermediate ports to add to the RSPAN VLAN which will then pass traffic on to the destination ports 4 Select the destination p...

Страница 210: ...URL for the service provided in the device description When a device is known to the control point periodic event notification messages are sent A UPnP description for a service includes a list of ac...

Страница 211: ...gent samples 1 out of n packets from all data traversing the switch re encapsulates the samples as sFlow datagrams and transmits them to the sFlow Collector This sampling occurs at the internal hardwa...

Страница 212: ...s disabled if sFlow is currently unconfigure If configured through SNMP the release must be confirmed a confirmation request will appear IP Address Hostname The IP address or host name of the sFlow re...

Страница 213: ...of the sFlow datagram header Range 14 200 bytes Default 128 bytes If the maximum datagram size does not take into account the maximum header size samples may be dropped Counter Poller The following pa...

Страница 214: ...CHAPTER 4 Configuring the Switch Configuring sFlow 214 Figure 95 sFlow Configuration...

Страница 215: ...splaying the device name location and contact information PATH Monitor System Information PARAMETERS These parameters are displayed System To configure the following items see Configuring System Infor...

Страница 216: ...ation Figure 96 System Information DISPLAYING CPU UTILIZATION Use the CPU Load page to display information on CPU utilization The load is averaged over the last 100ms 1sec and 10 seconds intervals The...

Страница 217: ...the logged system and event messages PATH Monitor System Log PARAMETERS These parameters are displayed Display Filter Level Specifies the type of log messages to display Info Informational messages on...

Страница 218: ...splay per page 3 Use Auto refresh to automatically refresh the page at regular intervals Refresh to update system log entries starting from the current entry ID or Clear to flush all system log entrie...

Страница 219: ...S You can use the Monitor Port menu to display a graphic image of the front panel which indicates the connection status of each port basic statistics on the traffic crossing each port the number of pa...

Страница 220: ...of frames received with errors and the number of incomplete transmissions Drops Received Transmitted The number of frames discarded due to ingress or egress congestion Filtered Received The number of...

Страница 221: ...try index Frame Type Indicates the type of frame to look for in incoming frames Possible frame types are Any Ethernet LLC SNAP IPv4 IPv6 Port Port identifier Action Indicates the classification action...

Страница 222: ...s a faulty port or unusually heavy loading All values displayed have been accumulated since the last system reboot and are shown as counts per second Statistics are refreshed every 60 seconds by defau...

Страница 223: ...han 64 octets long excluding framing bits but including FCS octets and were otherwise well formed Rx Oversize The total number of frames received that were longer than the configured maximum frame len...

Страница 224: ...CHAPTER 5 Monitoring the Switch Displaying Information About Ports 224 WEB INTERFACE To display the detailed port statistics click Monitor Ports Detailed Statistics Figure 104 Detailed Port Statistics...

Страница 225: ...Management Statistics USAGE GUIDELINES Statistics will only be displayed on this page if access management is enabled on the Access Management Configuration menu see page 67 and traffic matching one o...

Страница 226: ...es to block it it will be blocked until that user module decides otherwise The status page is divided into two sections one with a legend of user modules that may request port security services and on...

Страница 227: ...ed on the port until it is administratively re opened on the Limit Control configuration Web page MAC Count The two columns indicate the number of currently learned MAC addresses forwarding as well as...

Страница 228: ...ive traffic Time of Addition Shows the date and time when this MAC address was first seen on the port Age Hold If at least one user module has decided to block this MAC address it will stay in the blo...

Страница 229: ...rame for EAPOL based authentication and the most recently received frame from a new client for MAC based authentication Last ID The user name supplicant identity carried in the most recently received...

Страница 230: ...RADIUS Authentication Server PATH Monitor Security Network NAS Port PARAMETERS These parameters are displayed Port State Admin State The port s current administrative state Refer to NAS Admin State f...

Страница 231: ...number of EAPOL frames of any type that have been transmitted by the switch Request ID The number of EAPOL Request Identity frames that have been transmitted by the switch Requests The number of valid...

Страница 232: ...Server Counters Responses 802 1X based Counts the number of times that the switch attempts to send a supplicant s first response packet to the backend server Indicates the switch attempted communicati...

Страница 233: ...C based Auth this column holds the MAC address of the attached client Clicking the link causes the client s Backend Server counters to be shown in the Selected Counters table If no clients are attache...

Страница 234: ...ayed User Indicates the ACL user see Configuring User Privilege Levels on page 60 for a list of software modules Ingress Port Indicates the ingress port to which the ACE applies Possible values are An...

Страница 235: ...The allowed range is 1 to 15 Port Redirect Indicates the port redirect operation implemented by the ACE Frames matching the ACE are redirected to the listed port Mirror Indicates the port mirror oper...

Страница 236: ...ber of ACK option 53 with value 5 packets received and transmitted Rx Tx NAK The number of NAK option 53 with value 6 packets received and transmitted Rx Tx Release The number of release option 53 wit...

Страница 237: ...re displayed Server Statistics Transmit to Server The number of packets relayed from the client to the server Transmit Error The number of packets containing errors that were sent to clients Receive f...

Страница 238: ...eived where the DHCP client packet information was replaced with the switch s relay information Keep Agent Option The number of packets received where the DHCP client packet information was retained D...

Страница 239: ...ard Table to display entries sorted first by port then VLAN ID MAC address and finally IP address Each page shows up to 999 entries from the Dynamic IP Source Guard table default being 20 selected thr...

Страница 240: ...mber of this server Status The current state of the server This field takes one of the following values Disabled The server is disabled Not Ready The server is enabled but IP communication is not yet...

Страница 241: ...formed packets include packets with an invalid length Bad authenticators or Message Authenticator attributes or unknown types are not included as malformed access responses Bad Authenticators The numb...

Страница 242: ...onds left Access attempts were made to this server but it did not reply within the configured timeout The server has been temporarily disabled but will be re enabled when the dead time expires The num...

Страница 243: ...server is counted as a retransmit as well as a timeout A send to a different server is counted as a Request as well as a timeout Other Info IP Address IP address and UDP port for the accounting serve...

Страница 244: ...the Switch Displaying Information on Authentication Servers 244 WEB INTERFACE To display statistics for configured authentication and accounting servers click Monitor Security AAA RADIUS Details Figur...

Страница 245: ...events in which packets were dropped by the probe due to lack of resources Octets The total number of octets of data including those in bad packets received on the network Pkts The total number of pac...

Страница 246: ...statistics on a physical interface including network utilization packet types and errors PATH Monitor Security Switch RMON History PARAMETERS These parameters are displayed History Index Index of Hist...

Страница 247: ...mpared against the thresholds For more information see Configuring RMON Alarms on page 81 Value The value of the statistic during the last sampling period Startup Alarm The alarm that may be triggered...

Страница 248: ...T SETTINGS Use the RMON Alarm Event page to display configured event settings PATH Monitor Security Switch RMON Event PARAMETERS These parameters are displayed Event Index Index of the event entry Log...

Страница 249: ...up LAG Partner System ID LAG partner s system ID MAC address Partner Key The Key that the partner has assigned to this LAG Partner Priority This priority is used to determine LAG membership and to ide...

Страница 250: ...he LACP protocol i e its MAC address Partner Port The partner port connected to this local port Partner Priority The partner port priority used to select a backup link WEB INTERFACE To display LACP st...

Страница 251: ...e parameters are displayed STA Bridges MSTI The Bridge Instance This is also a link to the STP Detailed Bridge Status Bridge ID A unique identifier for this bridge consisting of the bridge priority an...

Страница 252: ...gured during a one second interval CIST Ports Aggregations State Port Port Identifier Port ID The port identifier as used by the RSTP protocol This consists of the priority part and the logical port i...

Страница 253: ...s a connection to exactly one other bridge The flag may be automatically computed or explicitly configured The point to point properties of a port affect how fast it can transition RSTP states Uptime...

Страница 254: ...opology connecting the bridge to the root bridge i e root port connecting a LAN through the bridge to the root bridge i e designated port or is an alternate or backup port that may provide connectivit...

Страница 255: ...otocol packets crossing each port PATH Monitor Spanning Tree Port Statistics PARAMETERS These parameters are displayed Port Port Identifier MSTP The number of MSTP Configuration BPDU s received transm...

Страница 256: ...or MVR Statistics PARAMETERS These parameters are displayed VLAN ID Identifier of the VLAN that serves as the channel for streaming multicast services using MVR IGMP MLD Queries Received Number of rec...

Страница 257: ...ETERS These parameters are displayed Statistics VLAN ID Identifier of the VLAN that serves as the channel for streaming multicast services using MVR V1 Reports Received The number of IGMP V1 reports r...

Страница 258: ...p The IP address of a multicast group detected on this interface Port Port identifier Mode The filtering mode maintained per VLAN ID port number and Group Address It can be either Include or Exclude S...

Страница 259: ...er Host Version IGMP version used when used by this switch when serving as a host in IGMP proxy mode Querier Status Shows the Querier status as ACTIVE or IDLE When enabled the switch can serve as the...

Страница 260: ...page to display the port members of each service group PATH Monitor IPMC IGMP Snooping Group Information PARAMETERS These parameters are displayed VLAN ID VLAN Identifier Groups The IP address for a s...

Страница 261: ...ode The filtering mode maintained per VLAN ID port number and Group Address It can be either Include or Exclude Source Address IP Address of the source Currently the system limits the total number of...

Страница 262: ...s the MLD querier Host Version MLD version used when used by this switch when serving as a host in MLD proxy mode Querier Status Shows the Querier status as ACTIVE or IDLE When enabled and selected th...

Страница 263: ...age to display the port members of each service group PATH Monitor IPMC MLD Snooping Group Information PARAMETERS These parameters are displayed VLAN ID VLAN Identifier Groups The IP address for a spe...

Страница 264: ...de The filtering mode maintained per VLAN ID port number and Group Address It can be either Include or Exclude Source Address IP Address of the source Currently the system limits the total number of I...

Страница 265: ...lar chassis in this system Remote Port ID A string that contains the specific identifier for the port from which this LLDPDU was transmitted System Name A string that indicates the system s assigned n...

Страница 266: ...MED Neighbors PARAMETERS These parameters are displayed Port Local port identifier Device Type LLDP MED devices are comprised of two primary types LLDP MED Network Connectivity Devices as defined in T...

Страница 267: ...Generic Endpoint Class Class I and are extended to include aspects related to media streaming Example product categories expected to adhere to this class include but are not limited to Voice Media Ga...

Страница 268: ...d value rather than by auto negotiation Auto negotiation Capabilities Shows the link partners MAC PHY capabilities MAU Type The operational MAU type of the sending device WEB INTERFACE To display info...

Страница 269: ...its echoed values from the remote link partner it can determine whether or not the remote link partner has received registered and processed its most recent values For example if the local link partne...

Страница 270: ...d The number of times which the remote database on this switch dropped an LLDPDU because the entry table was full Total Neighbors Entries Aged Out The number of times that a neighbor s information has...

Страница 271: ...se the MAC Address Table to display dynamic and static address entries associated with the CPU and each port PATH Monitor MAC Address Table PARAMETERS These parameters are displayed Start from VLAN an...

Страница 272: ...t services to configure VLAN membership and VLAN port settings such as the PVID or untagged VLAN ID This switch supports the following VLAN user modules Static Ports statically assigned to a VLAN thro...

Страница 273: ...r to the preceding section for a description of the software modules that use VLAN management services PATH Monitor VLANs VLAN Port PARAMETERS These parameters are displayed VLAN User A software modul...

Страница 274: ...ed or untagged UVID Shows the untagged VLAN ID A port s UVID determines the packet s behavior at the egress side If the VID of Ethernet frames leaving a port match the UVID these frames will be sent u...

Страница 275: ...dresses statically assigned to a VLAN and member port through the CLI Web or SNMP NAS Provides port based authentication which involves communications between a Supplicant Authenticator and an Authent...

Страница 276: ...identifying the sFlow receiver IP Address Hostname The IP address or host name of the sFlow receiver Timeout The number of seconds remaining before sampling stops and the current sFlow owner is releas...

Страница 277: ...e port and Tx flow samples contains the number of packets that were sampled upon transmission egress on the port Counter Samples The total number of counter samples sent to the sFlow receiver originat...

Страница 278: ...CHAPTER 5 Monitoring the Switch Displaying Information About Flow Sampling 278...

Страница 279: ...IPv4 address consists of 4 numbers 0 to 255 separated by periods An IPv6 address consists of 8 colon separated 16 bit hexadecimal values One double colon may be used in the address to indicate the app...

Страница 280: ...IPv4 or IPv6 Address 280 After you press Start the sequence number and round trip time are displayed upon reception of a reply The page refreshes automatically until responses to all packets are recei...

Страница 281: ...faults that can occur on Category 5 twisted pair cabling WEB INTERFACE To run cable diagnostics 1 Click Diagnostics VeriPHY 2 Select all ports or indicate a specific port for testing 3 Click Start If...

Страница 282: ...CHAPTER 6 Performing Basic Diagnostics Running Cable Diagnostics 282...

Страница 283: ...aving configuration settings and resetting the switch RESTARTING THE SWITCH Use the Restart Device page to restart the switch PATH Maintenance Restart Device WEB INTERFACE To restart the switch 1 Clic...

Страница 284: ...ck Yes The factory defaults are immediately restored which means that no reboot is necessary Figure 149 Factory Defaults UPGRADING FIRMWARE Use the Software Upload page to upgrade the switch s system...

Страница 285: ...a frequency of 10 Hz while the firmware update is in progress Do not reset or power off the device at this time or the switch may fail to function afterwards Figure 150 Software Upload ACTIVATING THE...

Страница 286: ...ent station PATH Maintenance Configuration Save WEB INTERFACE To save your current configuration settings 1 Click Maintenance Configuration Save 2 Click the Save configuration button 3 Specify the dir...

Страница 287: ...nfiguration settings to the switch from a file on your local management station PATH Maintenance Configuration Upload WEB INTERFACE To restore your current configuration settings 1 Click Maintenance C...

Страница 288: ...CHAPTER 7 Performing System Maintenance Managing Configuration Files 288...

Страница 289: ...289 SECTION III APPENDICES This section provides additional information and includes these items Software Specifications on page 291 Troubleshooting on page 295 License Information on page 297...

Страница 290: ...SECTION III Appendices 290...

Страница 291: ...0 Mbps at half full duplex 1000 Mbps at full duplex 1000BASE SX LX LH 1000 Mbps at full duplex SFP FLOW CONTROL Full Duplex IEEE 802 3 2005 Half Duplex Back pressure STORM CONTROL Broadcast multicast...

Страница 292: ...traffic policing and egress traffic shaping MULTICAST FILTERING IGMP Snooping IPv4 MLD Snooping IPv6 Multicast VLAN Registration ADDITIONAL FEATURES DHCP Client Relay Option 82 DNS Client Proxy Flow S...

Страница 293: ...E 802 3 2005 Ethernet Fast Ethernet Gigabit Ethernet Link Aggregation Control Protocol LACP Full duplex flow control ISO IEC 8802 3 IEEE 802 3ac VLAN tagging ARP RFC 826 DHCP Client RFC 2131 DHCPv6 Cl...

Страница 294: ...636 MIB II RFC 1213 P Bridge MIB RFC 2674P Port Access Entity MIB IEEE 802 1X Port Access Entity Equipment MIB Power Ethernet MIB RFC 3621 Private MIB Q Bridge MIB RFC 2674Q Quality of Service MIB RAD...

Страница 295: ...t been disabled Be sure you have configured the VLAN interface through which the management station is connected with a valid IP address subnet mask and default gateway Be sure the management station...

Страница 296: ...witch follow these steps 1 Enable logging 2 Set the error messages reported to include all categories 3 Enable SNMP 4 Enable SNMP traps 5 Designate the SNMP host that is to receive the error messages...

Страница 297: ...of free software and charge for this service if you wish that you receive source code or can get it if you want it that you can change the software or use pieces of it in new free programs and that yo...

Страница 298: ...you distribute or publish that in whole or in part contains or is derived from the Program or any part thereof to be licensed as a whole at no charge to all third parties under the terms of this Lice...

Страница 299: ...These actions are prohibited by law if you do not accept this License Therefore by modifying or distributing the Program or any work based on the Program you indicate your acceptance of this License...

Страница 300: ...k for permission For software which is copyrighted by the Free Software Foundation write to the Free Software Foundation we sometimes make exceptions for this Our decision will be guided by the two go...

Страница 301: ...according to the port default the packet s priority bit in the VLAN tag TCP UDP port number IP Precedence bit or DSCP priority bit DHCP Dynamic Host Control Protocol Provides a framework for passing...

Страница 302: ...and password is requested by the switch and then passed to an authentication server e g RADIUS for verification EAPOL is implemented as part of the IEEE 802 1X Port Authentication standard EUI Extend...

Страница 303: ...1S An IEEE standard for the Multiple Spanning Tree Protocol MSTP which provides independent spanning trees for VLAN groups IEEE 802 1W An IEEE standard for the Rapid Spanning Tree Protocol RSTP which...

Страница 304: ...by this switch can pass multicast traffic along to participating hosts IP PRECEDENCE The Type of Service ToS octet in the IPv4 header includes three precedence bits defining eight different priority l...

Страница 305: ...egion and prevents VLAN members from being segmented from the rest of the group MULTICAST SWITCHING A process whereby the switch filters incoming multicast frames for services for which no attached ho...

Страница 306: ...rity of one flow or limiting the priority of another flow RADIUS Remote Authentication Dial in User Service RADIUS is a logon authentication protocol that uses software running on a central server to...

Страница 307: ...T Defines a remote communication facility for interfacing to a terminal device over TCP IP TFTP Trivial File Transfer Protocol A TCP IP protocol commonly used for software downloads UDP User Datagram...

Страница 308: ...GLOSSARY 308...

Страница 309: ...11 relay information option policy 111 DHCP snooping 108 DNS server 47 Domain Name Service See DNS downloading software 284 using HTTP 284 using TFTP 284 drop precedence QoS 184 DSCP classification Qo...

Страница 310: ...log traps 54 to syslog servers 54 log in web interface 35 logon authentication 58 encryption keys 119 RADIUS client 119 RADIUS server 119 settings 119 TACACS client 62 TACACS server 62 119 M main menu...

Страница 311: ...ion 192 194 egress port scheduler 186 ingress classification 193 ingress port classification 184 port classification 184 port policier 185 port remarking 189 port shaper 186 188 QCE 197 QCL status 221...

Страница 312: ...tatic 122 Type Length Value See LLDP TLV See LLDP MED TLV U unknown unicast storm threshold 200 upgrading software 284 UPnP advertisements 210 configuration 210 enabling advertisements 210 user accoun...

Страница 313: ......

Страница 314: ...GSW 4876 E082012 ST R01...

Результаты поиска

Содержание GSW-4876

Отзывы:

LevelOne GSW-4876, Руководство пользователя, Страница: 1 / 314

Результаты поиска

Содержание GSW-4876

Отзывы: