Moxa Technologies EtherDevice EDS-728 Series Скачать руководство пользователя страница 67 | Manualshive

Страница: 67 / 98

background image

EDS-728 Series User’s Manual

Featured Functions

3-52

Using Port Access Control

The EDS-728 provides two kinds of Port-Base Access Control. One is IEE 802.1X and the other is
Static Port Lock.

IEEE 802.1X

The IEEE 802.1X standard defines a protocol for client/server-based access control and
authentication. The protocol restricts unauthorized clients from connecting to a LAN through ports
that are open to the Internet, and which otherwise would be readily accessible. The purpose of the
authentication server is to check each client that requests access to the port. The client is only
allowed access to the port if the client’s permission is authenticated.

Static Port Lock

The EDS-728 can also be configured to protect static MAC addresses for a specific port. With the
Port Lock function, these locked ports will not learn any additional addresses, but only allow
traffic from preset static MAC addresses, helping to block hackers and careless usage.

The IEEE802.1X Concept

Three components are used to create an authentication mechanism based on 802.1X standards:
Client/Supplicant, Authentication Server, and Authenticator.

Supplicant:

The end station that requests access to the LAN and switch services and responds to

the requests from the switch.

Authentication server:

The server that performs the actual authentication of the supplicant.

Authenticator:

Edge switch or wireless access point that acts as a proxy between the supplicant

and the authentication server, requesting identity information from the supplicant, verifying the
information with the authentication server, and relaying a response to the supplicant.

The EDS-728 acts as an authenticator in the 802.1X environment. A supplicant and an
authenticator exchange EAPOL (Extensible Authentication Protocol over LAN) frames with each
other. We can either use an external RADIUS server as the authentication server, or implement the
authentication server in the EDS-728 by using a Local User Database as the authentication look-up
table. When we use an external RADIUS server as the authentication server, the authenticator and
the authentication server exchange EAP frames between each other.

Authentication can be initiated either by the supplicant or the authenticator. When the supplicant
initiates the authentication process, it sends an “EAPOL-Start” frame to the authenticator. When
the authenticator initiates the authentication process or when it receives an “EAPOL Start” frame,
it sends an “EAP Request/Identity” frame to ask for the username of the supplicant. The following
actions are described below:

«
...
65
66
67
68
69
...
»

Содержание EtherDevice EDS-728 Series

Страница 1: ...EDS 728 Series User s Manual www moxa com product First Edition January 2008 Moxa Inc Tel 886 2 8919 1230 Fax 886 2 8919 1231 Web www moxa com Moxa Technical Support Worldwide support moxa com The Americas support usa moxa com ...

Страница 2: ...commitment on the part of Moxa Moxa provides this document as is without warranty of any kind either expressed or implied including but not limited to its particular purpose Moxa reserves the right to make improvements and or changes to this manual or to the products and or the programs described in this manual at any time Information provided in this manual is intended to be accurate and reliable...

Страница 3: ... System File Update By Remote TFTP 3 10 System File Update By Local Import Export 3 12 System File Update By Backup Media 3 12 Restart 3 13 Factory Default 3 13 Using Port Trunking 3 14 The Port Trunking Concept 3 14 Configuring Port Trunking 3 15 Configuring SNMP 3 17 SNMP Read Write Settings 3 18 Trap Settings 3 19 Private MIB information 3 19 Using Communication Redundancy 3 20 Gigabit Ethernet...

Страница 4: ...ing Relay Warning 3 61 Relay Alarm Events Settings 3 62 Relay Alarm List 3 63 Using Line Swap Fast Recovery 3 63 Configuring Line Swap Fast Recovery 3 63 Using Set Device IP 3 64 Configuring Set Device IP 3 65 Using Diagnosis 3 65 Mirror Port 3 65 Ping 3 66 Using Monitor 3 67 Monitor by Switch 3 67 Monitor by Port 3 67 Using the MAC Address Table 3 68 Using System Log 3 69 Event Log 3 69 Syslog Se...

Страница 5: ...erDevice Switch EDS 728 Series the modular managed Gigabit Ethernet Switch designed especially for connecting Ethernet enabled devices in industrial field applications The following topics are covered in this chapter Overview Package Checklist Features ...

Страница 6: ...ar switch system only y Moxa Product Warranty booklet y RJ45 to DB9 Console port cable NOTE Please notify your Moxa sales representative if any of the above items is missing or damaged Features Industrial Networking Capability y Redundant Gigabit Ethernet Ring Capability recovery time 50 ms at full load y Redundant Turbo Ring V2 Capability recovery time 20 ms at full load y IGMP Snooping and GMRP ...

Страница 7: ...integrate a sensor and alarm with an IP network y Automatic recovery of connected device IP addresses y Line swap fast recovery Useful Utility and Remote Configuration y Configurable by Web browser Telnet Serial console Windows utility y Send ping commands to identify network segment integrity Recommended Software and Accessories y EDS SNMP OPC Server Pro y DR 4524 DR 75 24 DR 120 24 DIN Rail 24 V...

Страница 8: ...s using a short serial cable to connect the EDS 728 to a PC s COM port can be used if you do not know the EDS 728 s IP address The Telnet console and web browser connection methods can be used to access the EDS 728 over an Ethernet LAN or over the Internet The following topics are covered RS 232 Console Configuration 115200 None 8 1 VT100 Configuration by Telnet Console Configuration by Web Browse...

Страница 9: ...w you to maintain better control over the configuration of your EDS 728 NOTE We recommend using Moxa PComm Terminal Emulator which can be downloaded free of charge from Moxa s website Before running PComm Terminal Emulator use an RJ45 to DB9 F or RJ45 to DB25 F cable to connect the EDS 728 s RS 232 Console port to your PC s COM port generally COM1 or COM2 depending on how your system is set up Aft...

Страница 10: ...erty window opens Select the appropriate COM port for Console Connection 115200 for Baud Rate 8 for Data Bits None for Parity and 1 for Stop Bits 4 Click on the Terminal tab and select VT100 for Terminal Type Click on OK to continue 5 Type 1 to select ansi VT100 terminal type and then press Enter ...

Страница 11: ... leave the Password field blank if a console password has not been set and then press Enter 7 The EDS 728 s Main Menu will be displayed NOTE To modify the appearance of the PComm Terminal Emulator window select Font under the Edit menu and then choose the desired formatting options 8 After entering the Main Menu use the following keys to move the cursor and to select options Key Function Up Down L...

Страница 12: ...xxx On the other hand if your PC host s subnet mask is 255 255 255 0 then its IP address must have the form 192 168 127 xxx NOTE To use the EDS 728 s management and monitoring functions from a PC host connected to the same LAN as the EDS 728 you must make sure that the PC host and the EDS 728 are on the same logical subnetwork NOTE Before accessing the console utility via Telnet first connect one ...

Страница 13: ... in monitoring and network administration functions The recommended web browser is Microsoft Internet Explorer 5 5 or 6 0 with JVM Java Virtual Machine installed NOTE To use the EDS 728 s management and monitoring functions from a PC host connected to the same LAN as the EDS 728 you must make sure that the PC host and the EDS 728 are on the same logical subnetwork NOTE If the EDS 728 is configured...

Страница 14: ...ct the login account Admin or User and enter the Password this is the same as the Console password and then click Login to continue Leave the Password field blank if a password has not been set NOTE By default the EDS 728 s password is not set i e is blank You may need to wait a few moments for the web page to be downloaded to your computer Use the menu tree on the left side of the window to open ...

Страница 15: ... you are connecting the EDS 728 to a public network but do not intend to use its management functions over the network then we suggest disabling both Telnet Console and Web Configuration from the RS 232 Console s Basic Settings Æ System Identification page as shown in the following figure ...

Страница 16: ...et LAN or over the Internet The Web Console is the most user friendly way to configure the EDS 728 In this chapter we use the Web Console interface to introduce the functions There are only a few differences between the Web Console Serial Console and Telnet Console The following topics are covered in this chapter Overview Configuring Basic Settings Using Port Trunking Configuring SNMP Using Commun...

Страница 17: ...ings The Basic Settings group includes the most commonly used settings required by administrators to maintain and control the EDS 728 System Identification The system identification items are displayed at the top of the web page and will be included in alarm emails Setting system identification items makes it easier to identify the different switches connected to your network ...

Страница 18: ...he EDS 728 unit None Maintainer Contact Info Setting Description Factory Default Max 30 Characters To provide information about whom to contact in order to resolve problems Use this space to record contact information of the person responsible for maintaining this EDS 728 None Maintainer Contact Info Setting Description Factory Default Disable To disable http and https connections both http or htt...

Страница 19: ...lege allows the user to modify all EDS 728 configurations user user privilege only allows viewing the EDS 728 configurations admin Password Setting Description Factory Default Old Password Max 16 Characters Type current password when changing the password None New Password Max 16 Characters Type new password when changing the password None Retype Password Max 16 Characters If you type a new passwo...

Страница 20: ...enter 192 168 1 1 255 255 255 255 to allow access to just the IP address 192 168 1 1 y Any host on a specific subnetwork can access the EDS 728 E g enter 192 168 1 0 255 255 255 0 to allow access to all IPs on the subnetwork defined by this IP address subnet mask combination y Any host can access the EDS 728 Disable this function by not checkmarking the Enable the accessible IP list checkbox The f...

Страница 21: ...ately shuts off port access enabled ATTENTION If a connected device or sub network is wreaking havoc on the rest of the network the Disable option under Advanced Settings Port gives the administrator a quick way to shut off access through this port immediately Description Setting Description Factory Default Media type Displays the media type for each module s port N A Name Setting Description Fact...

Страница 22: ... transmission speed setting is in auto mode The final result will be determined by the auto process between the EDS 728 and connected devices Setting Description Factory Default Enable Enables flow control for this port when in auto nego mode Disable Disables flow control for this port when in auto nego mode Disable Port Type Setting Description Factory Default Auto Allows the port to auto detect ...

Страница 23: ...s the type of network to which the EDS 728 is connected e g 255 255 0 0 for a Class B network or 255 255 255 0 for a Class C network 255 255 255 0 Default Gateway Setting Description Factory Default Default Gateway of the EDS 728 The IP address of the router that connects the LAN to an outside network None DNS IP Address Setting Description Factory Default 1st DNS Server s IP Address The IP addres...

Страница 24: ... there is no NTP server on the LAN Current Time Setting Description Factory Default User adjustable time The time parameter allows configuration of the local time in local 24 hour format None hh mm ss Current Date Setting Description Factory Default User adjustable date The date parameter allows configuration of the local date in yyyy mm dd format None yyyy mm dd Daylight Saving Time Daylight savi...

Страница 25: ...hould configure the time zone before setting the time Time Server IP Name Setting Description Factory Default 1st Time Server IP Name IP or Domain address e g 192 168 1 1 or time stdtime gov tw or time nist gov 2nd Time Server IP Name The EDS 728 will try to locate the 2nd NTP Server if the 1st NTP Server fails to connect None Time Server Query Period Setting Description Factory Default Query Peri...

Страница 26: ... s configuration file in the TFTP server None Firmware file path and name Setting Description Factory Default Max 40 Characters The path and file name of the EDS 728 s firmware file None Log file path and name Setting Description Factory Default Max 40 Characters The path and file name of the EDS 728 s log file None After setting up the desired path and file name click on Activate to save the sett...

Страница 27: ...d log file directly in the web page In such cases right click on the Export button to save a file Upgrade Firmware To import the firmware file of this EDS 728 click on Browse to select the firmware file already saved on your computer The upgrade procedure will proceed automatically after clicking on Import Upload Configure Data To import the configuration file of this EDS 728 click on Browse to se...

Страница 28: ... the ABC s configurations to the Switch To import the configuration file of the EDS 728 click on Load to load it to the Switch Restart This function is used to restart the Moxa EtherDevice Switch Factory Default The Factory Default function is included to give users a quick way of restoring the EDS 728 s configuration settings to their factory default values This function is available in the Conso...

Страница 29: ...partner and will result in Forwarding If all of the ports in the same group are Blocked or Disabled or Down link down the trunk group will not work and the user will see LACP Failed for that trunk group in the user interface Port Trunking applies to connections between backbone devices as well as to connections in other network areas where traffic bottlenecks exist Port Trunking provides the follo...

Страница 30: ...will be disabled y Multicast Filtering will be set to the factory default y Port Lock will be set to the factory default and will be disabled y Set Device IP will be set to the factory default y Mirror Port will be set to the factory default and will be disabled Configuring Port Trunking The Port Trunking Settings page is used to assign ports to a Trunk Group Step 1 Select Trk1 Trk2 Trk3 or Trk 4 ...

Страница 31: ...cked Port Port number N A Port description Displays the media type for each module s port N A Name Max 63 Characters N A Speed Indicates the transmission speed 100M Full 100M Half 10M Full or 10M Half N A FDX Flow Control Indicates if the FDX flow control of this port is Enabled or Disabled N A Up Add designated ports into trunk group from available ports N A Down Remove designated ports from trun...

Страница 32: ...rsion UI Setting Authentication Type Data Encryption Method V1 V2c Read Community Community string No Use a community string match for authentication SNMP V1 V2c V1 V2c Write Read Community Community string No Use a community string match for authentication No Auth No No Use account with admin or user to access objects MD5 or SHA Authentication based on MD5 or SHA No Provides authentication based ...

Страница 33: ...ns using the community string private private For SNMP V3 there are two levels of privilege for different accounts to access the EDS 728 Admin privilege allows access and authorization to read and write the MIB file User privilege only allows reading the MIB file but not authorization to write Admin Auth Type for SNMP V1 V2c V3 and V3 only Setting Description Factory Default No Auth Use admin acco...

Страница 34: ...2c V3 and V3 only Setting Description Factory Default Enable 8 character data encryption key is the minimum requirement for data encryption maximum of 30 characters No Disable No data encryption No Trap Settings There are two settings for the EDS 728 s redundant trap servers Trap Server IP Name Setting Description Factory Default IP or Name Enter the IP address or name of the Trap Server used by y...

Страница 35: ...20 ms 300 ms Up to 30 sec Up to 5 sec NOTE Most of Moxa s managed switches now support two proprietary Turbo Ring protocols 1 Turbo Ring refers to the original version of Moxa s proprietary redundant ring protocol which has a recovery time of under 300 ms 2 Turbo Ring V2 refers to the new generation Turbo Ring which has a recovery time of under 20 ms In this manual we use the terminology Turbo Rin...

Страница 36: ... of the switches as the master to use Turbo Ring or Turbo Ring V2 If none of the switches in the ring is configured as the master then the protocol will automatically assign master status to one of the switches In fact the master is only used to identify which segment in the redundant ring acts as the backup path In the following subsections we explain how the redundant path is selected for rings ...

Страница 37: ...ster See Configuring Turbo Ring V2 in the Configuring Turbo Ring and Turbo Ring V2 section below Ring Coupling Configuration For some systems it may not be convenient to connect all devices in the system to create one BIG redundant ring since some devices could be located in a remote area For these systems Ring Coupling can be used to separate the devices into different smaller redundant rings but...

Страница 38: ...etermine whether or not the coupling port s backup path should be recovered Ring Coupling for a Turbo Ring V2 Ring Note that the ring coupling settings for a Turbo Ring V2 ring are different from a Turbo Ring ring For Turbo Ring V2 Ring Coupling is enabled by configuring the Coupling Port Primary on Switch B and the Coupling Port Backup on Switch A only You do not need to set up a coupling control...

Страница 39: ...ration applies only to Turbo Ring V2 The dual ring option provides another ring coupling configuration in which two adjacent rings share one switch This type of configuration is ideal for applications that have inherent cabling difficulties Daul Ring for a Turbo Ring V2 Ring Dual Homing Configuration applies only to Turbo Ring V2 The dual homing option uses a single Ethernet switch to connect two ...

Страница 40: ... Turbo Ring V2 Note that configuration pages for these two protocols are different Configuring Turbo Ring Explanation of Current Status Items Now Active Shows which communication protocol is in use Turbo Ring Turbo Ring V2 RSTP or none Master Slave Indicates whether or not this EDS 728 is the Master of the Turbo Ring This field appears only when selected to operate in Turbo Ring or Turbo Ring V2 m...

Страница 41: ...Select this item to change to the Turbo Ring V2 configuration Page RSTP IEEE 802 1W 1D Select this item to change to the RSTP configuration page RSTP IEEE 802 1W 1D No ports are enabled Set as Master Setting Description Factory Default Enable Disable Select this EDS 728 as Master Disabled Do not select this EDS 728 as Master Not checked Redundant Ports Setting Description Factory Default 1st Port ...

Страница 42: ...ng V2 RSTP or none Ring 1 2 Status Shows Healthy if the ring is operating normally and shows Break if the ring s backup link is active Ring 1 2 Master Slave Indicates whether or not this EDS 728 is the Master of the Turbo Ring This field appears only when selected to operate in Turbo Ring or Turbo Ring V2 mode NOTE The user does not need to set the master to use Turbo Ring If no master is set the ...

Страница 43: ...Select this item to change to the RSTP configuration page RSTP IEEE 802 1W 1D No ports are enabled Enable Ring 1 Setting Description Factory Default Enable Enable the Ring 1 settings Disable Disable the Ring 1 settings Not checked Enable Ring 2 Setting Description Factory Default Enable Enable the Ring 2 settings Disable Disable the Ring 2 settings Not checked You should enable both Ring 1 and Rin...

Страница 44: ...lures in a network and provide protection from loops Networks that have a complicated architecture are prone to broadcast storms caused by unintended loops in the network The EDS 728 s STP feature is disabled by default To be completely effective you must enable RSTP STP on every EDS 728 connected to your network Rapid Spanning Tree Protocol RSTP implements the Spanning Tree Algorithm and Protocol...

Страница 45: ...system You must ensure that every VLAN configuration on your network takes into account the expected STP topology and alternative topologies that may result from link failures Port Speed Path Cost 802 1D 1998 Edition Path Cost 802 1w 2001 10 Mbps 100 2 000 000 100 Mbps 19 200 000 1000 Mbps 4 20 000 The following figure shows an example of a network that contains VLANs 1 and 2 The VLANs are connect...

Страница 46: ...It indicates whether or not this EDS 728 is the Root of the Spanning Tree the root is determined automatically At the bottom of this page the user can configure the Settings of this function For RSTP you can configure Protocol of Redundancy Setting Description Factory Default Turbo Ring Select this item to change to the Turbo Ring configuration page None RSTP IEEE 802 1W 1D Select this item to cha...

Страница 47: ...unt of time equal to Max Age then this device will reconfigure itself as a root Once two or more devices on the network are recognized as a root the devices will renegotiate to set up a new Spanning Tree topology 20 Enable STP per Port Setting Description Factory Default Enable Disable Select to enable the port as a node on the Spanning Tree topology Disabled NOTE We suggest not enabling the Spann...

Страница 48: ... of Eq 4 to get the upper limit for Max Age Step 3 Assign a value to Forwarding Delay that satisfies the conditions in Eq 3 and Eq 4 Using Traffic Prioritization The EDS 728 s traffic prioritization capability provides Quality of Service QoS to your network by making data delivery more reliable You can prioritize traffic on your network to ensure that high priority data is transmitted with minimum...

Страница 49: ...g immediately follows the destination MAC address and Source MAC address The IEEE Std 802 1D 1998 Edition priority marking scheme assigns an IEEE 802 1p priority level between 0 and 7 to each frame This determines the level of service that that type of traffic should receive Refer to the table below for an example of how different traffic types can be mapped to the eight IEEE 802 1p priority level...

Страница 50: ...d with it If it does not then it is given a default 802 1p tag which is usually 0 Alternatively the packet may be marked with a new 802 1p value which will result in all knowledge of the old 802 1p tag being lost 2 Because the 802 1p priority levels are fixed to the traffic queues the packet will be placed in the appropriate priority queue ready for transmission through the appropriate egress port...

Страница 51: ...etting Description Factory Default Weighted Fair The EDS 728 has 4 priority queues In the weight fair scheme an 8 4 2 1 weighting is applied to the four priorities This approach prevents the lower priority frames from being starved of opportunity for transmission with only a slight delay to the higher priority frames Strict In the Strict priority scheme all top priority frames egress a port until ...

Страница 52: ...ority queues If the received packets are not equipped with any tag information CoS TOS the default port priority will take effect Normal NOTE The priority of an ingress frame is determined in order by 1 Inspect TOS 2 Inspect CoS 3 Default Port Priority NOTE The designer can enable these classifications individually or in combination For instance if a hot higher priority port is required for a netw...

Страница 53: ...7 High TOS DiffServ Mapping Setting Description Factory Default Low Normal Medium High Set the mapping table of different TOS values to 4 different egress queues 1 to 16 Low 17 to 32 Normal 33 to 48 Medium 49 to 64 High Using Virtual LAN Setting up Virtual LANs VLANs on your EDS 728 increases the efficiency of your network by dividing the LAN into logical segments as opposed to physical segments I...

Страница 54: ...Ns also provides you with three other benefits y VLANs ease the relocation of devices on networks With traditional networks network administrators spend much of their time dealing with moves and changes If users move to a different subnetwork the addresses of each host must be updated manually With a VLAN setup if a host on VLAN Marketing for example is moved to a port in another part of the netwo...

Страница 55: ... use untagged and tagged membership of VLANs Simply put if a port is on a single VLAN it can be an untagged member but if the port needs to be a member of multiple VLANs tagged membership must be defined A typical host e g clients will be untagged members of one VLAN defined as Access Port in the EDS 728 while inter switch connections will be tagged members of all VLANs defined as Trunk Port in th...

Страница 56: ...igns it to VLAN 2 it should be configured as Access Port with PVID 2 y Port 5 connects a single untagged device and assigns it to VLAN 3 it should be configured as Access Port with PVID 3 y Port 6 connect a single untagged device and assigns it to VLAN 5 it should be configured as Access Port with PVID 5 y Port 7 connects a single untagged device and assigns it to VLAN 4 it should be configured as...

Страница 57: ...ort Settings To configure the EDS 728 s VLANs use the VLAN Port Setting page to configure the ports Port Type Setting Description Factory Default Access This port type is used to connect single devices without tags Trunk Select Trunk port type to connect another 802 1Q VLAN aware switch or another LAN that combines tagged and or untagged devices and or other switches hubs Access ATTENTION For comm...

Страница 58: ... None Port Forbidden VLAN List Setting Description Factory Default VID range from 1 to 4094 This field will be active only when selecting the Trunk port type Set the VLAN IDs that will not be supported by this trunk port Use commas to separate different VIDs None VLAN Table In this table you can review the VLAN groups that were created Joined Access Ports and Trunk Ports NOTE The physical network ...

Страница 59: ...veral copies of the same data y Makes efficient use of network bandwidth and scales well as the number of multicast group members increases y Works with other IP protocols and services such as Quality of Service QoS Multicast transmission makes more sense and is more efficient than unicast transmission for some applications For example multicasts are often used for video conferencing since high vo...

Страница 60: ...e same group Multicast Filtering and Moxa EtherDevice Switch The EDS 728 has three ways to achieve multicast filtering IGMP Internet Group Management Protocol Snooping GMRP GARP Multicast Registration Protocol and adding a static multicast MAC manually to filter multicast traffic automatically IGMP Internet Group Management Protocol Snooping Mode Snooping Mode allows your switch to forward multica...

Страница 61: ...rrives at a port on a switch with IGMP Snooping enabled the switch knows that the port should forward traffic for the multicast group and then proceeds to forward the packet to the router 4 When the router receives the report packet it registers that the LAN or VLAN requires traffic for the multicast groups 5 When the router forwards traffic for the multicast group to the LAN or VLAN the switches ...

Страница 62: ...at require that traffic thereby reducing the amount of traffic on the Ethernet LAN IGMP Snooping Settings Querier Interval Setting Description Factory Default Numerical value input by user Set the query interval of the Querier function globally Valid settings are from 20 to 600 seconds 125 seconds IGMP Snooping Enable Setting Description Factory Default Enable Disable Click the checkbox to enable ...

Страница 63: ...EDS 728 s querier function Enabled if IGMP Snooping is Enabled Globally NOTE At least one switch must be designated the querier or enable IGMP snooping and GMRP when enabling Turbo Ring and IGMP snooping simultaneously IGMP Table The EDS 728 displays the current active IGMP groups that were detected The information includes VID Auto learned Multicast Router Port Static Multicast Router Port Querie...

Страница 64: ... MAC based multicast management protocol whereas IGMP is IP based GMRP provides a mechanism that allows bridges and end stations to register or un register Group membership information dynamically Port Setting Description Factory Default x y Displays the module x and port No by module y of all ports that can enable the GMRP function None GMRP enable Setting Description Factory Default Enable Disab...

Страница 65: ...roup membership information dynamically Multicast Filtering Behavior Setting Description Factory Default Forward All Select to forward all multicast frames unless an explicit Static Filtering Entry specifies filtering see Add Static Multicast MAC Forward Unknown Select to forward the multicast frames unless 1 an explicit Static Filtering Entry specifies filtering see Add Static Multicast MAC or 2 ...

Страница 66: ...ll packets giving administrators full control of their limited bandwidth to prevent undesirable effects caused by unpredictable faults Configuring Bandwidth Management Broadcast Storm Protection Setting Description Factory Default Enable or disable the Broadcast Storm Protection for broadcast and unknown unicast packets globally Enable Disable Check the check box to include multicast packets when ...

Страница 67: ...LAN and switch services and responds to the requests from the switch Authentication server The server that performs the actual authentication of the supplicant Authenticator Edge switch or wireless access point that acts as a proxy between the supplicant and the authentication server requesting identity information from the supplicant verifying the information with the authentication server and re...

Страница 68: ...MD5 Challenge One Time Password and Generic Token Card Currently only MD5 Challenge is supported If the Local User Database is used this step is skipped 4 The authenticator sends an EAP Request MD5 Challenge frame to the supplicant If the RADIUS server is used the EAP Request MD5 Challenge frame is retrieved directly from the RADIUS Access Challenge frame 5 The supplicant responds to the EAP Reque...

Страница 69: ... the authentication database Local Radius Select this option to set an external RADIUS server as the authentication database The authentication mechanism is EAP MD5 Local Radius Local Select this option to make using an external RADIUS server as the authentication database the first priority The authentication mechanism is EAP MD5 The first priority is to set the Local User Database as the authent...

Страница 70: ...ct to require re authentication of the client after a preset time period of no activity has elapsed Disable Re Auth Setting Description Factory Default Numerical 60 65535 sec Specify how frequently the end stations need to reenter usernames and passwords in order to stay connected 3600 seconds 802 1X Re Authentication The EDS 728 can force connected devices to be re authorized manually 802 1X Re A...

Страница 71: ... the database first Local User Database Setup Setting Description Factory Default User Name Max 30 characters User Name for Local User Database None Password Max 16 characters Password for Local User Database None Description Max 30 characters Description for Local User Database None NOTE The user name for the Local User Database is case insensitive ...

Страница 72: ...tus will show authorized or unauthorized Static Port Lock The EDS 728 also supports adding multicast groups manually if required Setting Description Factory Default MAC Address Add the static unicast MAC address into the address table None Port Fix the static address with a dedicated port 1 1 ...

Страница 73: ...l and relay output It also supports two digital inputs to integrate sensors into your system to automate alarms by email and relay output Configuring Email Warning The Auto Email Warning function uses e mail to alert the user when certain user configured events take place Three basic steps are required to set up the Auto Warning function 1 Configuring Email Event Types Select the desired Event typ...

Страница 74: ...mask etc Power Transition OnÆOff The EDS 728 is powered down Power Transition OffÆOn The EDS 728 is powered up DI1 OnÆOff Digital Input 1 is triggered by on to off transition DI1 OffÆOn Digital Input 1 is triggered by off to on transition DI2 OnÆOff Digital Input 2 is triggered by on to off transition DI2 OffÆOn Digital Input 2 is triggered by off to on transition Configuration Change Activated An...

Страница 75: ...fic Duration seconds if the average Traffic Threshold is surpassed during that time period NOTE The Traffic Overload Traffic Threshold and Traffic Duration sec Port Event items are related If you Enable the Traffic Overload event then be sure to enter a nonzero Traffic Threshold percentage as well as a Traffic Duration between 1 and 300 seconds NOTE Warning e mail messages will have sender given i...

Страница 76: ...es to receive alarm emails from the EDS 728 None Send Test Email After finishing with the email settings you should first press the Activate button to activate those settings and then press the Send Test Email button to verify that the settings are correct NOTE Auto warning e mail messages will be sent through an authentication protected SMTP server that supports the CRAM MD5 LOGIN and PAIN method...

Страница 77: ...728 is powered down DI1 OnÆOff Digital Input 1 is triggered by on to off transition DI1 OffÆOn Digital Input 1 is triggered by off to on transition DI2 OnÆOff Digital Input 2 is triggered by on to off transition DI2 OffÆOn Digital Input 2 is triggered by off to on transition Port Event Warning e mail is sent when Link on The port is connected to another device Link off The port is disconnected e g...

Страница 78: ...The Line Swap Fast Recovery function which is enabled by default allows the EDS 728 to return to normal operation extremely quickly after devices are unplugged and then re plugged into different ports The recovery time is on the order of a few milliseconds compare this with standard commercial switches for which the recovery time could be on the order of several minutes To disable the Line Swap Fa...

Страница 79: ...red to obtain their IP address automatically The devices configuration utility should include a setup page that allows you to choose an option similar to Obtain an IP address automatically For example Windows TCP IP Properties window is shown at the right Although your device s configuration utility may look quite a bit different this figure should give you some idea of what to look for You also n...

Страница 80: ...two important tools for administrators to diagnose network systems Mirror Port The Mirror port function can be used to monitor data being transmitted through a specific port This is done by setting up another port the mirror port to receive the same data being transmitted from or both to and from the port under observation This allows the network administrator to sniff the observed port and thus k...

Страница 81: ...this option to monitor data packets both coming into and being sent out through the EDS 728 s port STEP 2 Be sure to activate your settings before exiting When using the Web Browser interface activate by clicking on the Activate button When using the Console utility activate by first highlighting the Activate menu option and then press Enter You should receive the Mirror port settings are now acti...

Страница 82: ...same graph Uni cast packets in red color Multi cast packets in green color and Broad cast packets in blue color The graph is updated every few seconds allowing the user to analyze data transmission activity in real time Monitor by Port Access the Monitor by Port function by selecting ALL Ports or Porti in which i 1 2 8 from the left pull down list The Porti options are identical to the Monitor by ...

Страница 83: ...elect this item to show all EDS 728 s MAC addresses ALL Learned Select this item to show all EDS 728 s Learned MAC addresses ALL Static Lock Select this item to show all EDS 728 s Static Lock MAC addresses ALL Static Select this item to show all EDS 728 s Static Static Lock Static Multicast MAC addresses ALL Static Multicast Select this item to show all EDS 728 s Static Multicast MAC addresses Por...

Страница 84: ...s to Priority This field shows the priority of this MAC address Using System Log Event Log Bootup This field shows how many times the EDS 728 has been rebooted or cold started Date The date is updated based on how the current date is set in the Basic Setting page Time The time is updated based on how the current time is set in the Basic Setting page System Startup Time The system startup time rela...

Страница 85: ...fault IP Address Enter the IP address of 1st Syslog Server used by your network None Port Destination 1 to 65535 Enter the UDP port of 1st Syslog Server 514 Syslog Server 2 Setting Description Factory Default IP Address Enter the IP address of 2nd Syslog Server used by your network None Port Destination 1 to 65535 Enter the UDP port of 2nd Syslog Server 514 Syslog Server 3 Setting Description Fact...

Страница 86: ...matched 8 DI 1 2 transition Off Æ On DI 1 2 transition On Æ Off 9 Port traffic overload 10 dot1x Auth Fail 11 Port link off on Using HTTPS SSL To secure your HTTP access the EDS 728 supports HTTPS SSL to encrypt all HTTP traffic Perform the following steps to access the EDS 728 s web browser interface via HTTPS SSL 1 Open Internet Explorer and type https EDS 728 s IP address in the address field P...

Страница 87: ...and access the web browser interface secured via HTTPS SSL NOTE Moxa provides a Root CA certificate After installing this certificate into your PC or notebook you can access the web browser interface directly and will not see any warning messages again You may download the certificate from the EDS 728A s CD ROM ...

Страница 88: ...witches whose IP address is known modify the network configurations of one or multiple EDS switches and update the firmware of one or more EDS switches EDS Configurator is designed to provide you with instantaneous control of all of your EDS switches regardless of location You may download the EDS Configurator software from Moxa s website free of charge This chapter includes the following sections...

Страница 89: ...The Moxa EtherDevice Server Configurator window will open as shown below Broadcast Search Use the Broadcast Search utility to search the LAN for all EDS switches that are connected to the LAN Note that since the search is done by MAC address Broadcast Search will not be able to locate Moxa EtherDevice Servers connected outside the PC host s LAN Start by clicking on the Broadcast Search icon or by ...

Страница 90: ... IP address icon or by selecting Specify IP address under the List Server menu The Search Server with IP Address window will open Enter the IP address of the switch you wish to search for and then click OK Once the search is complete the Configurator window will add the switch to the list of switches Upgrade Firmware Keep your EDS switch up to date with the latest firmware from Moxa Take the follo...

Страница 91: ...eds rom in the example shown below to select the file Click on Open to activate the upgrade process Modify IP Address You may use the Modify IP Address function to reconfigure the EDS s network settings Start by clicking on the Modify IP address icon or by selecting Modify IP address under the Configuration menu The Setup Configuration window will open Checkmark the box to the left of those items ...

Страница 92: ...Configurator window s left pane and then click on the Export toolbar icon or select Export Configuration from the Configuration menu Use the Open window to navigate to the folder in which you want to store the configuration and then type the name of the file in the File name input box Click on Open 2 Click on OK when the Export configuration to file OK message appears 3 You may use a standard text...

Страница 93: ...e following steps to import a configuration 1 Highlight the server from the Moxa EtherDevice Switch list in the Configurator window s left pane and then click on the Import toolbar icon or select Import Configuration from the Configuration menu 2 Use the Open window to navigate to the text file that contains the desired configuration Once the file is selected click on Open to initiate the import p...

Страница 94: ...is Configurator session activating various utilities for this switch will not require re entering the server password y Blank The switch is not password protected and Broadcast Search was used to locate it y Fixed The switch is not password protected and Search by IP address was used to locate it manually y Locked Fixed The switch is password protected Search by IP address was used to locate it ma...

Страница 95: ...nual EDS Configurator GUI 4 8 2 When the Unlock status window reports Progress as OK click on the Close button in the upper right corner of the window 3 The status of the switch will now read either Unlocked or Unlocked Fixed ...

Страница 96: ... 1213 MIB II The standard MIB groups that the EDS 728 series support are MIB II 1 System Group sysORTable MIB II 2 Interfaces Group ifTable MIB II 4 IP Group ipAddrTable ipNetToMediaTable IpGroup IpBasicStatsGroup IpStatsGroup MIB II 5 ICMP Group IcmpGroup IcmpInputStatus IcmpOutputStats MIB II 6 TCP Group tcpConnTable TcpGroup TcpStats MIB II 7 UDP Group udpTable UdpStats ...

Страница 97: ...ortTable dot1dStp dot1dStpPortTable dot1dTp dot1dTpFdbTable dot1dTpPortTable dot1dTpHCPortTable dot1dTpPortOverflowTable pBridgeMIB dot1dExtBase dot1dPriority dot1dGarp qBridgeMIB dot1qBase dot1qTp dot1qFdbTable dot1qTpPortTable dot1qTpGroupTable dot1qForwardUnregisteredTable dot1qStatic dot1qStaticUnicastTable dot1qStaticMulticastTable dot1qVlan dot1qVlanCurrentTable dot1qVlanStaticTable dot1qPor...

Страница 98: ...utility CD ROM Public Traps 1 Cold Start 2 Link Up 3 Link Down 4 Authentication Failure 5 dot1dBridge New Root 6 dot1dBridge Topology Changed Private Traps 1 Configuration Changed 2 Power On 3 Power Off 4 Traffic Overloaded 5 Turbo Ring Topology Changed 6 Turbo Ring Coupling Port Changed 7 Turbo Ring Master Mismatch 8 Module Inserted 9 Module Removed ...

Отзывы:

Нет отзывов

Похожие инструкции для EtherDevice EDS-728 Series

F-ZTAT H8/3048 Series

Бренд: Renesas Страницы: 34

Бренд: Q-See Страницы: 2

Бренд: Tripp Lite Страницы: 20

EK-Vector Radeon RX5700 + XT Backplate

Бренд: ekwb Страницы: 7

PARTNER Voice Messaging PC Card Release 2

Бренд: Lucent Technologies Страницы: 67

Бренд: IDT Страницы: 292

Бренд: Marani Страницы: 39

Бренд: Renesas Страницы: 4

Бренд: Aaeon Страницы: 57

Бренд: Juniper Страницы: 196

Бренд: ADTRAN Страницы: 4

i.LON SmartServer

Бренд: Echelon Страницы: 34

Бренд: SIIG Страницы: 8

Бренд: EVGA Страницы: 3

Бренд: ST Страницы: 37

Бренд: Kordis Страницы: 31

Бренд: Quatech Страницы: 5

WISENET XRN-1610

Бренд: Hanwha Techwin Страницы: 88

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды