Niveo Professional NGSME16T2H Скачать руководство пользователя страница 223

Страница: 223 / 368

Chapter 4: Feature Configuration - CLI

Featuring Configuration – CLI

NGSME16T2H User Manual | 223

digit) or 'any'

<dmac> : Destination MAC address

('xx-xx-xx-xx-xx-xx' or 'xx.xx.xx.xx.xx.xx' or 'xxxxxxxxxxxx', x is

a hexadecimal digit) or 'any'

arp : ARP keyword

<sip> : Source IP address (a.b.c.d/n) or 'any'

<dip> : Destination IP address (a.b.c.d/n) or 'any'

<arp_opcode> : ARP operation code: any|arp|rarp|other

[0|1|any]

ip : IP keyword

<protocol> : IP protocol number (0-255) or 'any'

<ip_flags> : IP flags: ttl|options|fragment [0|1|any]

icmp : ICMP keyword

<icmp_type> : ICMP type number (0-255) or 'any'

<icmp_code> : ICMP code number (0-255) or 'any'

udp : UDP keyword

<sport> : Source UDP/TCP port range (0-65535) or

'any'

<dport> : Destination UDP/TCP port range (0-65535)

or 'any'

tcp : TCP keyword

<tcp_flags> : TCP flags: fin|syn|rst|psh|ack|urg [0|1|any]

permit : Permit forwarding (default)

deny : Deny forwarding

<rate_limiter> : Rate limiter number (1-15) or 'disable'

<port_redirect> : Port list for copy of frames or 'disable'

<mirror> : Mirror of frames: enable|disable

<logging> : System logging of frames: log|log_disable

<shutdown> : Shut down ingress port: shut|shut_disable

Example:

Add one ACE:

Security/Network/ACL>add 2 port 6-10 policy 3 8 ip

Содержание NGSME16T2H

Страница 1: ...Version 1 0 Niveo Professional NGSME16T2H 16 Port 10 100 1000Base T PoE 2 Gigabit SFP Advanced Web Management PoE Switch...

Страница 2: ...nce will not occur in a particular installation If this equipment does cause harmful interference to radio or television reception which can be determined by turning the equipment off and on the user...

Страница 3: ...uring Configuration Web UI 26 System Configuration 27 System Information 27 Configuration 28 IPv6 Configuration 30 NTP Configuration 32 System Log Configuration 33 Power Reduction 35 LED Power Reducti...

Страница 4: ...iorities 120 Spanning Tree CIST Ports 121 Spanning Tree MSTI Ports 124 MVR Multicast VLAN Registration 125 IPMC IP Multicast 127 IGMP Snooping Configuration 127 Basic Configuration 127 IGMP Snooping V...

Страница 5: ...180 QoS DSCP based QoS Ingress Classification 182 QoS DSCP Translation 183 QoS DSCP Classification 185 QoS Control List Configuration 186 QoS Storm Control Configuration 189 Mirroring Configuration 1...

Страница 6: ...stem Information 267 CPU Load 269 System Log Information 270 System Detailed Log 272 Monitor Port State 273 Port State 273 Traffic Overview 274 QoS Statistics 275 QCL Status 276 Detailed Port Statisti...

Страница 7: ...PoE 343 LLDP EEE 345 LLDP Statistics 347 Dynamic MAC Table 349 VLAN Membership Status 351 VCL MAC Based VLAN Status 355 sFlow 356 Diagnostic 357 Ping 357 Ping6 358 VeriPHY Cable Diagnostic 359 Mainte...

Страница 8: ...NGSME16T2H User Manual 8 Before Starting In Before Starting This section contains introductory information which includes Intended Readers Icons for Note Caution and Warning Product Package Contents...

Страница 9: ...management and terminologies Icons for Note Caution and Warning To install configure use and maintain this product properly please pay attention when you see these icons in this manual A Note icon in...

Страница 10: ...check and verify the contents of the product package which should include the following items One Network Switch One Power Cord One User Manual CD One pair Rack mount kit 8 Screws Note If any item li...

Страница 11: ...Overview In Product Overview This section will give you an overview of this product including its feature functions and hardware software specifications Product Brief Description Product Specification...

Страница 12: ...s The switch features 16 IEEE 802 3at Power over Ethernet PoE ports supplying up to 30 watts per port This product can convert standard 100 240V AC power into low voltage DC that runs over existing LA...

Страница 13: ...rator can set up VLANs to segregate traffic QoS to prioritize mission critical data RSTP Loop Protection to avoid network loop link aggregation to create fat traffic pipelines bandwidth control to lim...

Страница 14: ...ning Tree Protocol IEEE 802 1p Class of Service Priority Protocols IEEE 802 1X Port based Network Access Control Interface Number of Port 18 All Ethernet Port are on the Rear 10 100 1000Base RJ 45 Por...

Страница 15: ...ery LLDP IEEE 802 1ab Link Layer Discovery Protocol MAC Address Table Ageing Time Static Secure MAC Table VLAN IEEE 802 1Q VLAN up to 4K groups Private VLAN Private VLAN and Port Isolation QoS 8 Prior...

Страница 16: ...Chapter 1 Product Overview Product Overview NGSME16T2H User Manual 16 Humidity 5 90 non condensing Certification CE FCC Class A Safety UL UL60950 1 CE IEC60950 1...

Страница 17: ...ors are also located on the front panel LED Indicators The LED Indicators present real time information of systematic operation status The following table provides description of LED status and their...

Страница 18: ...00 ohm Max 100m 100 Base TX 2 pair UTP STP Cat 5 cable EIA TIA 568 100 ohm Max 100m 1000 Base T 4 pair UTP STP Cat 5 cable EIA TIA 568 100 ohm Max 100m PoE To delivery power without problem the Cat 5e...

Страница 19: ...ure the switch via RS232 console cable if you don t attach your admin PC to your network or if you lose network connection to your switch It wouldn t be affected by network performance This is so call...

Страница 20: ...oose the COM name 4 Select correct serial settings The serial settings of the switch are as below Baud Rate 115200 Parity None Data Bit 8 Stop Bit 1 5 After connected you can see Switch login request...

Страница 21: ...Chapter 2 Preparing for Management Preparing for Management NGSME16T2H User Manual 21 Figure 3 2 Putty Configuration Figure 3 3 Putty Login Screen...

Страница 22: ...t your Switch is properly installed on your network and that every PC on this network can access the switch via the web browser 1 Verify that your network interface card NIC is operational and that yo...

Страница 23: ...will appear next 9 Key in the password Default user name and password are both admin If you can t login the switch the following steps can help you to identify the problem 1 Switch to DOS command mod...

Страница 24: ...SSH console can be treated as secured Telnet connection need to enable the SSH feature in Security Switch SSH Tradition way for Telnet Connection 1 Go to Start Run cmd And then press Enter 2 Type the...

Страница 25: ...ion in the popup screen Press Yes to accept the Security Alert If you choose Telnet connection there is no such cipher information and window It goes to next step directly 3 After few seconds the Teln...

Страница 26: ...Configuration Web UI The switch provides abundant software features after login the switch you can start configuring the settings or monitoring the status This is one question market on the right top...

Страница 27: ...e s fully qualified domain name A domain name is a text string drawn from the alphabet A Za z digits 0 9 minus sign No space characters are permitted as part of a name The first character must be an a...

Страница 28: ...will be used The DHCP client will announce the configured System Name as hostname to provide DNS lookup IP Address Provide the IP address of this switch in dotted decimal notation IP Mask Provide the...

Страница 29: ...uring Configuration Web UI NGSME16T2H User Manual 29 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Renew Click to renew DHCP Thi...

Страница 30: ...ed as eight fields of up to four hexadecimal digits with a colon separating each field For example fe80 215 c5ff fe03 4dc7 The symbol is a special syntax that can be used as a shorthand way of represe...

Страница 31: ...figuration Web UI NGSME16T2H User Manual 31 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Renew Click to renew IPv6 AUTOCONF Thi...

Страница 32: ...s NTP messages between the clients and the server when they are not on the same subnet domain Disable NTP mode operation Server Provide the NTP IPv4 or IPv6 address of this switch IPv6 address is in 1...

Страница 33: ...the cause of the issues The switch Web UI allows you to Enable the Syslog Server assign the IP address and assign the syslog level Server Mode Indicates the server mode operation When the mode operat...

Страница 34: ...yslog Level Indicates what kind of message will send to syslog server Possible modes are Info Send information warnings and errors Warning Send warnings and errors Error Send errors Buttons Save Click...

Страница 35: ...ntensity shall be set The time setting is step by one hour Intensity The LEDs intensity 100 Full power 0 LED off Maintenance Time When a network administrator does maintenance of the switch e g adding...

Страница 36: ...that both the receiving and transmitting device has all circuits powered up when traffic is transmitted The devices can exchange information about the devices wakeup time using the LLDP protocol For...

Страница 37: ...Controls whether EEE is enabled for this switch port EEE Urgent Queues Queues set will activate transmision of frames as soon as any data is available Otherwise the queue will postpone the transmsion...

Страница 38: ...e Full Duplex Mode Configured Link Speed Select any available link speed for the given switch port Auto Speed selects the highest speed that is compatible with a link partner Disabled disables the swi...

Страница 39: ...imum Frame Size Enter the maximum frame size allowed for the switch port including FCS The switch supports up to 9K Jumbo Frame Excessive Collision Mode Configure port transmit collision behavior Disc...

Страница 40: ...ntly the only way to login as another user on the web server is to close and reopen the browser This page configures a user This is also a link to Add User Edit User Add New User Edit User Click Add N...

Страница 41: ...e same or greater than the group privilege level to have the access of that group By default setting most groups privilege level 5 has the read only access and privilege level 10 has the read write ac...

Страница 42: ...n one The following description defines these privilege level groups in details System Contact Name Location Timezone Log Security Authentication System Access Management Port contains Dot1x port MAC...

Страница 43: ...for clearing of statistics User Privilege should be same or greater than the authorization Privilege level to have the access to that group Insufficient Privilege Level If you login with lower level p...

Страница 44: ...set to one of the following values none authentication is disabled and login is not possible local use the local user database on the switch for authentication RADIUS use a remote RADIUS server for a...

Страница 45: ...switch by SSH you should install SSH client on you computer such as PuTTy console tool In the switch side the switch acts as SSH server for user login and you can Enable or Disable SSH on this page P...

Страница 46: ...This page allows you to configure HTTPS mode Mode Indicates the HTTPS mode operation Possible modes are Enable Enable HTTPS mode operation Disabled Disable HTTPS mode operation Automatic Redirect Indi...

Страница 47: ...access to the switch Example of the below figure only the IP Addresses range from 192 168 2 101 to 192 168 2 200 can access the switch s management interface The available services are HTTP HTTPS SNM...

Страница 48: ...IP address matches the IP address range provided in the entry TELNET SSH Indicates that the host can access the switch from TELNET SSH interface if the host IP address matches the IP address range pro...

Страница 49: ...ation Disabled Disable SNMP mode operation Version Indicates the SNMP supported version Possible versions are SNMPv1 Set SNMP supported version 1 SNMPv2c Set SNMP supported version 2c SNMPv3 Set SNMP...

Страница 50: ...MPv2c If SNMP version is SNMPv3 the community string will be associated with SNMPv3 communities table It provides more flexibility to configure security name than a SNMPv1 or SNMPv2c community string...

Страница 51: ...ty Indicates the community access string when sending SNMP trap packet The allowed string length is 0 to 255 and the allowed content is ASCII characters from 33 to 126 Trap Destination Address Indicat...

Страница 52: ...orm retry times The allowed range is 0 to 255 Trap Probe Security Engine ID Indicates the SNMP trap probe security engine ID mode of operation Possible values are Enable Enable SNMP trap probe securit...

Страница 53: ...t access to SNMPv3 agent The allowed string length is 1 to 32 and the allowed content is ASCII characters from 33 to 126 The community string will be treated as security name and map a SNMPv1 or SNMPv...

Страница 54: ...ine ID and usm User Name are the entry s keys In a simple agent usm User Engine ID is always that agent s own snmp Engine ID value The value can also take the value of the snmp Engine ID of a remote S...

Страница 55: ...ring identifying the authentication password phrase For MD5 authentication protocol the allowed string length is 8 to 32 For SHA authentication protocol the allowed string length is 8 to 40 The allowe...

Страница 56: ...v1 Reserved for SNMPv1 v2c Reserved for SNMPv2c usm User based Security Model USM Security Name A string identifying the security name that this entry should belong to The allowed string length is 1 t...

Страница 57: ...ould belong to Possible view types are Included An optional flag to indicate that this view sub tree should be included excluded An optional flag to indicate that this view sub tree should be excluded...

Страница 58: ...should belong to The allowed string length is 1 to 32 and the allowed content is ASCII characters from 33 to 126 Security Model Indicates the security model that this entry should belong to Possible s...

Страница 59: ...to 32 and the allowed content is ASCII characters from 33 to 126 Write View Name The name of the MIB view defining the MIB objects for which this request may potentially set new values The allowed st...

Страница 60: ...s Packets dropped packets sent bytes sent octets broadcast packets multicast packets CRC errors undersize packets oversize packets fragments jabbers collisions and counters for packets ranging from 64...

Страница 61: ...deleted during the next save ID Indicates the index of the entry The range is from 1 to 65535 Data Source Indicates the port ID which wants to be monitored If in stacking switch the value must add 10...

Страница 62: ...h the value must add 1000 switch ID 1 for example if the port is switch 3 port 5 the value is 2005 Interval Indicates the interval in seconds for sampling the history statistics data The range is from...

Страница 63: ...The total number of octets received on the interface including framing characters InUcastPkts The number of uni cast packets delivered to a higher layer protocol InNUcastPkts The number of broad cast...

Страница 64: ...e thresholds possible sample types are Absolute Get the sample directly Delta Calculate the difference between samples default Value The value of the statistic during the last sampling period Startup...

Страница 65: ...er Manual 65 Falling Threshold Falling threshold value 2147483648 2147483647 Falling Index Falling event index 1 65535 Buttons Add new entry Click to add a new community entry Save Click to save chang...

Страница 66: ...umber of octets received on the interface including framing characters Log The number of uni cast packets delivered to a higher layer protocol Snmptrap The number of broad cast and multi cast packets...

Страница 67: ...f users on a given port A user is identified by a MAC address and VLAN ID If Limit Control is enabled on a port the limit specifies the maximum number of users on the port If this number is exceeded a...

Страница 68: ...period of all modules that use the functionality The Aging Period can be set to a number between 10 and 10 000 000 seconds To understand why aging may be desired consider the following scenario Suppo...

Страница 69: ...otice that other modules may still use the underlying port security features without enabling Limit Control on a given port Limit The maximum number of MAC addresses that can be secured on this port T...

Страница 70: ...addresses is seen on the port both the Trap and the Shutdown actions described above will be taken State This column shows the current state of the port as seen from the Limit Control s point of view...

Страница 71: ...s allowed access to the network These backend RADIUS servers are configured on the Configuration Security AAA page The IEEE802 1X standard defines port based operation but non standard variants overco...

Страница 72: ...ted This is only active if the Reauthentication Enabled checkbox is checked Valid values are in the range 1 to 3600 seconds EAPOL Timeout Determines the time for retransmission of Request Identity EAP...

Страница 73: ...a number between 10 and 1000000 seconds RADIUS Assigned QoS Enabled RADIUS assigned QoS provides a means to centrally control the traffic class to which traffic coming from a successfully authenticat...

Страница 74: ...bled on all ports Guest VLAN ID This is the value that a port s Port VLAN ID is set to if a port is moved into the Guest VLAN It is only changeable if the Guest VLAN option is globally enabled Valid v...

Страница 75: ...g modes are available Force Authorized In this mode the switch will send one EAPOL Success frame when the port link comes up and any client on the port will be allowed network access without authentic...

Страница 76: ...ted to the supplicant Note Suppose two backend servers are enabled and that the server timeout is configured to X seconds using the AAA configuration page and suppose that the first server in the list...

Страница 77: ...sent from the switch towards the supplicant since that would cause all supplicants attached to the port to reply to requests sent from the switch Instead the switch uses the supplicant s MAC address w...

Страница 78: ...ed QoS is both globally enabled and enabled checked on a given port the switch reacts to QoS Class information carried in the RADIUS Access Accept packet transmitted by the RADIUS server when a suppli...

Страница 79: ...ut affecting the RADIUS assigned This option is only available for single client modes i e Port based 802 1X Single 802 1X For trouble shooting VLAN assignments use the Monitor VLANs VLAN Membership a...

Страница 80: ...Request Identity frames is configured with EAPOL Timeout If Allow guest VLAN if EAPOL Seen is enabled the port will now be placed in the Guest VLAN If disabled the switch will first check its history...

Страница 81: ...he buttons are only enabled when authentication is globally enabled and the port s Admin State is in an EAPOL based or MAC based mode Clicking these buttons will not cause settings changed on the page...

Страница 82: ...E of each switch port These parameters will affect frames received on a port unless the frame matches a specific ACE The settings relate to the currently selected stack unit as reflected by the page h...

Страница 83: ...on the port are not mirrored The default value is Disabled Logging Specify the logging operation of this port The allowed values are Enabled Frames received on the port are stored in the System Log Di...

Страница 84: ...switch Rate Limiter ID The rate limiter ID for the settings contained in the same row Rate The allowed values are 0 3276700 in pps Or 0 100 200 300 1000000 in kbps Unit Specify the rate unit The allow...

Страница 85: ...erved ACEs used for internal protocol cannot be edited or deleted the order sequence cannot be changed and the priority is highest Ingress Port Indicates the ingress port of the ACE Possible values ar...

Страница 86: ...ayed the rate limiter operation is disabled Port Copy Indicates the port copy operation of the ACE Frames matching the ACE are copied to the port number The allowed values are Disabled or a specific p...

Страница 87: ...H User Manual 87 Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs at regular intervals Refresh Click to refresh the page Note that non committed changes w...

Страница 88: ...of the switch port You can select one port or select multiple ports for the entry Policy Filter Specify the policy number filter for this ACE The policy ID should be the same when you want apply it to...

Страница 89: ...t match the ACE with ethernet type IPv4 Only IPv4 frames can match this ACE Notice the IPv4 frames won t match the ACE with ethernet type IPv6 Only IPv6 frames can match this ACE Notice the IPv6 frame...

Страница 90: ...Port shut down is disabled for the ACE Counter The counter indicates the number of times the ACE was hit by a frame MAC Parameters SMAC Filter Only displayed when the frame type is Ethernet Type or A...

Страница 91: ...this value A field for entering a VLAN ID number appears VLAN ID When Specific is selected for the VLAN ID filter you can enter a specific VLAN ID number The allowed range is 1 to 4095 A frame that hi...

Страница 92: ...can enter a specific sender IP mask in dotted decimal notation Target IP Filter Specify the target IP filter for this specific ACE Any No target IP filter is specified Target IP filter is don t care H...

Страница 93: ...rames where the HLN is not equal to Ethernet 0x06 or the PLN is not equal to IPv4 0x04 1 ARP RARP frames where the HLN is equal to Ethernet 0x06 and the PLN is equal to IPv4 0x04 Any Any value is allo...

Страница 94: ...defining TCP parameters will appear These fields are explained later in this help file IP Protocol Value When Specific is selected for the IP protocol value you can enter a specific value The allowed...

Страница 95: ...Address When Host or Network is selected for the source IP filter you can enter a specific SIP address in dotted decimal notation SIP Mask When Network is selected for the source IP filter you can en...

Страница 96: ...de value A field for entering an ICMP code value appears ICMP Code Value When Specific is selected for the ICMP code filter you can enter a specific ICMP code value The allowed range is 0 to 255 A fra...

Страница 97: ...ter you can enter a specific TCP UDP destination value The allowed range is 0 to 65535 A frame that hits this ACE matches this TCP UDP destination value TCP UDP Destination Range When Range is selecte...

Страница 98: ...t care TCP ACK Specify the TCP Acknowledgment field significant ACK value for this ACE 0 TCP frames where the ACK field is set must not be able to match this entry 1 TCP frames where the ACK field is...

Страница 99: ...DHCP snooping mode operation is enabled the DHCP request messages will be forwarded to trusted ports and only allow reply packets from trusted ports Disabled Disable DHCP snooping mode operation Port...

Страница 100: ...ration Relay Server Indicates the DHCP relay server IP address A DHCP relay agent is used to forward and to transfer DHCP messages between the clients and the server when they are not in the same subn...

Страница 101: ...tes the DHCP relay information option policy When DHCP relay information mode operation is enabled if agent receives a DHCP message that already contains relay agent information it will enforce the po...

Страница 102: ...which ports Only when both Global Mode and Port Mode on a given port are enabled IP Source Guard is enabled on this given port Max Dynamic Clients Specify the maximum number of dynamic clients that ca...

Страница 103: ...al port for the settings VLAN ID The vlan id for the settings IP Address Allowed Source IP address usedMAC address Allowed Source MAC address Adding new entry Click to add a new entry to the Static IP...

Страница 104: ...ring Configuration Web UI NGSME16T2H User Manual 104 ARP Inspection ARP Inspection This page provides ARP Inspection related configuration Mode of ARP Inspection Configuration Enable the Global ARP In...

Страница 105: ...n is enabled on which ports Only when both Global Mode and Port Mode on a given port are enabled ARP Inspection is enabled on this given port Buttons Save Click to save changes Reset Click to undo any...

Страница 106: ...s VLAND ID The vlan id for the settings MAC Address Allowed Source MAC address in ARP request packets IP Address Allowed Source IP address in ARP request packets Adding new entry Click to add a new en...

Страница 107: ...ng the UDP protocol which is unreliable by design In order to cope with lost frames the timeout interval is divided into 3 subintervals of equal length If a reply is not received within the subinterva...

Страница 108: ...fault port 1812 is used on the RADIUS Authentication Server Secret The secret up to 29 characters long shared between the RADIUS Authentication Server and the switch RADIUS Accounting Server Configura...

Страница 109: ...ntication Server by checking this box IP Address Hostname The IP address or hostname of the TACACS Authentication Server IP address is expressed in dotted decimal notation Port The TCP port to use on...

Страница 110: ...group The aggregation hash mode settings are global whereas the aggregation group relate to the currently selected stack unit as reflected by the page header Hash Code Contributors Source MAC Address...

Страница 111: ...D for the settings contained in the same row Group ID Normal indicates there is no aggregation Only one group ID is valid per port Port Members Each switch port is listed for each group ID Select a ra...

Страница 112: ...llows the user to inspect the current LACP port configurations and possibly change them as well Port The switch port number LACP Enabled Controls whether LACP is enabled on this switch port LACP will...

Страница 113: ...Specific setting a user defined value can be entered Ports with the same Key value can participate in the same aggregation group while ports with different keys cannot Role The Role shows the LACP ac...

Страница 114: ...hen the switch do detect the network loop After the port is shutdown it may hard to manually reconnect it so that there is a shutdown time timeout design can help re enable the port link automatically...

Страница 115: ...med when a loop is detected on a port The valid values are Shutdown Port Shutdown the port until the Shutdown Time timeout Shutdown Port and Log Shutdown the port and log the status Log Only Only log...

Страница 116: ...ovide an independent spanning tree for different VLANs With the Spanning Tree and VLAN mapping each VLAN has its own root and blocking path the STP region size becomes lower the convergence time of to...

Страница 117: ...is the priority of the STP RSTP bridge Forward Delay The delay used by STP Bridges to transit Root and Designated Ports to Forwarding used in STP compatible mode Valid values are in the range 4 to 30...

Страница 118: ...port will enter the error disabled state and will be removed from the active topology Port Error Recovery Control whether a port in the error disabled state automatically will be enabled after a certa...

Страница 119: ...are spanning trees for MSTI s Intra region The name is at most 32 characters Configuration Revision The revision of the MSTI configuration named above This must be an integer between 0 and 65535 MSTI...

Страница 120: ...ibly change them as well MSTI The bridge instance The CIST is the default instance which is always active Priority Controls the bridge priority Lower numeric values have better priority The bridge pri...

Страница 121: ...y the page header Port The switch port number of the logical STP port STP Enabled Controls whether STP is enabled on this switch port Path Cost Controls the path cost incurred by the port The Auto set...

Страница 122: ...ses the port not to be selected as Root Port for the CIST or any MSTI even if it has the best spanning tree priority vector Such a port will be selected as an Alternate Port after the Root Port has be...

Страница 123: ...ing error disabled state due to this setting is subject to the bridge Port Error Recovery setting as well Point2Point Controls whether the port connects to a point to point LAN rather than to a shared...

Страница 124: ...ttings also relate to the currently selected stack unit as reflected by the page header Port The switch port number of the corresponding STP CIST and MSTI port Path Cost Controls the path cost incurre...

Страница 125: ...er after MVR enabled the client subscriber VLANs are registered to the same source VLAN then there is only one source stream will be delivered to the registered VLANs This page provides MVR related co...

Страница 126: ...Enable Disable the Global MVR VLAN ID Specify the Multicast VLAN ID Mode Enable MVR on the port Type Specify the MVR port type on the port Immediate Leave Enable the fast leave on the port Buttons Sa...

Страница 127: ...2 devices to manage and control multicast groups By listening to and analyzing IGMP messages a Layer 2 device running IGMP Snooping establishes mappings between ports and multicast MAC addresses and...

Страница 128: ...owards the Layer 3 multicast device or MLD querier Normally the router port is the uplink port to the upper L3 Router or IGMP Querier For example in below figure the green port of the 2 switches are R...

Страница 129: ...figuration Web UI NGSME16T2H User Manual 129 Throttling Enable to limit the number of multicast groups to which a switch port can belong Buttons Save Click to save changes Reset Click to undo any chan...

Страница 130: ...he will use the last entry of the currently displayed entry as a basis for the next lookup When the end is reached the text No more entries is shown in the displayed table Use the button to start over...

Страница 131: ...ented by the Last Member Query Interval multiplied by the Last Member Query Count The allowed range is 0 to 31744 in tenths of seconds default last member query interval is 10 in tenths of seconds 1 s...

Страница 132: ...The logical port for the settings Filtering Groups The IP Multicast Group that will be filtered Adding New Filtering Group Click to add a new entry to the Group Filtering table Specify the Port and Fi...

Страница 133: ...nable unregistered IPMCv6 traffic flooding Please note that disabling unregistered IPMCv6 traffic flooding may lead to failure of Neighbor Discovery SSM Range SSM Source Specific Multicast Range allow...

Страница 134: ...16T2H User Manual 134 Fast Leave Enable the fast leave on the port Throttling Enable to limit the number of multicast groups to which a switch port can belong Buttons Save Click to save changes Reset...

Страница 135: ...t lookup When the end is reached the text No more entries is shown in the displayed table Use the button to start over MLD Snooping VLAN Table Columns VLAN ID The VLAN ID of the entry MLD Snooping Ena...

Страница 136: ...Done messages It is also the Maximum Response Delay used to calculate the Maximum Response Code inserted into Multicast Address and Source Specific Query messages The allowed range is 0 to 31744 in t...

Страница 137: ...entry It will be deleted during the next save Port The logical port for the settings Filtering Groups The IP Multicast Group that will be filtered Adding New Filtering Group Click to add a new entry...

Страница 138: ...urrent LLDP port settings LLDP Configuration Tx Interval The switch periodically transmits LLDP frames to its neighbors for having the network discovery information up to date The interval between eac...

Страница 139: ...ation received from neighbors but will send out LLDP information Disabled The switch will not send out LLDP information and will drop LLDP information received from neighbors Enabled The switch will s...

Страница 140: ...terminated by the switch Note When CDP awareness on a port is disabled the CDP information isn t removed immediately but gets removed when the hold time is exceeded Port Descr Optional TLV When checke...

Страница 141: ...nappropriate knowledge of the network policy With this in mind LLDP MED defines an LLDP MED Fast Start interaction between the protocol and the application layers on top of the protocol in order to ac...

Страница 142: ...ithin 0 180 degrees with a maximum of 4 digits It is possible to specify the direction the either East of the prime meridian or West of the prime meridian Altitude Altitude SHOULD be normalized to wit...

Страница 143: ...ry code The two letter ISO 3166 Country code in capital ASCII letters Example DK DE or US State National subdivisions state canton region province prefecture County County perish gun Japan district Ci...

Страница 144: ...ample 450F Place type Place type Example Office Postal community name Postal community name Example Leonia P O Box Post office box P O Box Example 12345 Additional code Additional code Example 1320300...

Страница 145: ...e Policies are only intended for use with applications that have specific real time network policy requirements such as interactive voice and or video services The network policy attributes advertised...

Страница 146: ...policy It will be deleted during the next save Policy ID ID for the policy This is auto generated and shall be used when selecting the polices that shall be mapped to the specific ports Application T...

Страница 147: ...specific network policy treatment Video applications relying on TCP with buffering would not be an intended use of this application type 8 Video Signalling conditional for use in network topologies t...

Страница 148: ...3 A value of 0 represents use of the default DSCP value as defined in RFC 2475 Adding a new policy Click to add a new policy Specify the Application type Tag VLAN ID L2 Priority and DSCP for the new p...

Страница 149: ...ch port PDs specified in the Maximum Power fields 2 Class mode In this mode each port automatically determines how much power to reserve according to the class the connected PD belongs to and reserves...

Страница 150: ...ration Primary Power Supply W Some switches support having two PoE power supplies One is used as primary power source and one as backup power source If the switch doesn t support backup power supply o...

Страница 151: ...ces requires more power than the power supply can deliver In this case the port with the lowest priority will be turn off starting from the port with the highest port number Maximum Power The Maximum...

Страница 152: ...gure aging time by entering a value here in seconds for example Age time seconds The allowed range is 10 to 1000000 seconds Disable the automatic aging of dynamic entries by checking Disable automatic...

Страница 153: ...to secure learning mode otherwise the management link is lost and can only be restored by using another non secure port or by connecting to the switch via the serial interface Static MAC Table Configu...

Страница 154: ...indicate which ports are members of the entry Check or uncheck as needed to modify the entry Adding a New Static Entry Click to add a new entry to the static MAC table Specify the VLAN ID MAC address...

Страница 155: ...to next switch and whole network depends on how you configuring the switch settings VLAN Membership Configuration The VLAN membership configuration for theswitch can be monitored and modified here Up...

Страница 156: ...ries or it can be added to the new entries Port Members A row of check boxes for each port is displayed for each VLAN ID To include a port in a VLAN check the box as To include a port in a forbidden p...

Страница 157: ...ck to save changes Reset Click to undo any changes made locally and revert to previously saved values Refreshes Refreshes the displayed the table starting from the VLAND ID input fields Updates the ta...

Страница 158: ...S ports Port This is the logical port number of this row Port Type Port can be one of the following types Unaware Customer port C port Service port S port Custom Service port S custom port If Port Ty...

Страница 159: ...pecific the default value is selected a Port VLAN ID can be configured see below Untagged frames received on the port are classified to the Port VLAN ID If VLAN awareness is disabled all frames receiv...

Страница 160: ...ty The switch ports assigned to an Isolated VLAN can send traffic to the primary VLAN but CANNOT see traffic from other devices in the same Isolated VLAN In this section the switch allows you to assig...

Страница 161: ...lt no ports are members and all boxes are unchecked Adding a New Private VLAN Click to add a new private VLAN ID An empty row is added to the table and the private VLAN can be configured as needed The...

Страница 162: ...nd Private VLAN The port settings relate to the currently selected stack unit as reflected by the page header This feature works across the stack Configuration Port Members A check box is provided for...

Страница 163: ...ayed for each MAC based VLAN entry To include a port in a MAC based VLAN check the box To remove or exclude the port from the MAC based VLAN make sure the box is unchecked By default no ports are memb...

Страница 164: ...ck to undo any changes made locally and revert to previously saved values Refreshes Refreshes the displayed the table starting from the VLAND ID input fields Updates the table starting from the first...

Страница 165: ...pe Frame Type can have one of the following values 1 Ethernet 2 LLC 3 SNAP Note On changing the Frame type field valid value of the following text field will vary depending on the new frame type you s...

Страница 166: ...unning on top of SNAP In other words if value of OUI field is 00 00 00 then value of PID will be etype 0x0600 0xffff and if value of OUI is other than 00 00 00 then valid value of PID will be any valu...

Страница 167: ...a VLAN must be present in Protocol to Group mapping table and must not be preused by any other existing mapping entry on this page VLAD ID Indicates the ID to which Group Name will be mapped A valid...

Страница 168: ...3 Featuring Configuration Web UI Featuring Configuration Web UI NGSME16T2H User Manual 168 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously save...

Страница 169: ...es the IP address Mask Length Indicates the network mask length VLAN ID Indicates the VLAN ID VLAN ID can be changed for the existing entries Port Members A row of check boxes for each port is display...

Страница 170: ...T2H User Manual 170 Buttons Save Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Auto refresh Check this box to refresh the page automatically...

Страница 171: ...e Voice VLAN It can avoid the conflict of ingress filtering Possible modes are Enabled Enable Voice VLAN mode operation Disabled Disable Voice VLAN mode operation VLAN ID Indicates the Voice VLAN ID I...

Страница 172: ...will be blocked for 10 seconds Possible port modes are Enabled Enable Voice VLAN security mode operation Disabled Disable Voice VLAN security mode operation Port Discovery Protocol Indicates the Voice...

Страница 173: ...ned to a vendor by IEEE It must be 6 characters long and the input format is xx xx xx x is a hexadecimal digit Description The description of OUI address Normally it describes which vendor telephony d...

Страница 174: ...ader The displayed settings are Port The port number for which the configuration below applies QoS class Controls the default QoS class i e the QoS class for frames not classified in any other way The...

Страница 175: ...sabled Use default QoS class and DP level for tagged frames Enabled Use mapped versions of PCP and DEI for tagged frames Click on the mode in order to configure the mode and or mapping DSCP Based Clic...

Страница 176: ...number for which the configuration below applies Enabled Controls whether the policer is enabled on this switch port Rate Controls the rate for the policer The default value is 500 This value is rest...

Страница 177: ...ort Schedulers for all switch ports The ports belong to the currently selected stack unit as reflected by the page header The displayed settings are Port The logical port for the settings contained in...

Страница 178: ...s for all switch ports The ports belong to the currently selected stack unit as reflected by the page header The displayed settings are Port The logical port for the settings contained in the same row...

Страница 179: ...ports belong to the currently selected stack unit as reflected by the page header The displayed settings are Port The logical port for the settings contained in the same row Click on the port number i...

Страница 180: ...e dscp ingress and egress settings Ingress In Ingress settings you can change ingress translation and classification settings for individual ports There are two configuration parameters available in I...

Страница 181: ...d DSCP value The remapped DSCP value is always taken from the DSCP Translation Egress Remap DP0 table Remap DP Aware DSCP from analyzer is remapped and frame is remarked with remapped DSCP value Depen...

Страница 182: ...ings are DSCP Maximum number of supported DSCP values are 64 Trust Controls whether a specific DSCP value is trusted Only frames with trusted DSCP values are mapped to a specific QOs class and Drop Pr...

Страница 183: ...gress The displayed settings are DSCP Maximum number of supported DSCP values are 64 and valid DSCP value ranges from 0 to 63 Ingress Ingress side DSCP can be first translated to new DSCP before using...

Страница 184: ...with DP level 0 2 Remap DP1 Controls the remapping for frames with DP level 1 1 Remap DP0 Select the DSCP value from select menu to which you want to remap DSCP value ranges form 0 to 63 2 Remap DP1...

Страница 185: ...ss and Drop Precedence Level to DSCP value The settings relate to the currently selected stack unit as reflected by the page header The displayed settings are QoS Class Actual QoS class DPL Actual Dro...

Страница 186: ...nfigured with the QCE Frame Type Indicates the type of frame to look for incomming frames Possible frame types are Any The QCE will match all frame type Ethernet Only Ethernet frames with Ether Type 0...

Страница 187: ...I Drop Eligible Indicator Valid value of DEI can be any of values between 0 1 or Any Conflict Displays QCE status It may happen that resources required to add a QCE may not available in that case it s...

Страница 188: ...in the table using the following buttons Inserts a new QCE before the current row Edits the QCE Moves the QCE up the list Moves the QCE down the list Deletes the QCE The lowest plus sign adds a new e...

Страница 189: ...switch Note Frames which are sent to the CPU of the switch are always limited to approximately 4 kpps For example broadcasts in the management VLAN are limited to this rate The management VLAN is conf...

Страница 190: ...mirroring Port to mirror on Port to mirror also known as the mirror port Frames from ports that have either source rx or destination tx mirroring enabled are mirrored on this port Disabled disables mi...

Страница 191: ...ven port a frame is only transmitted once It is therefore not possible to mirror Tx frames on the mirror port Because of this mode for the selected mirror port is limited to Disabled or Rx only Button...

Страница 192: ...ion The duration carried in SSDP packets is used to inform a control point or control points how often it or they should receive an SSDP advertisement message from this switch If a control point does...

Страница 193: ...into sFlow packets The sFlow agent then sends the packet to a specified sFlow collector the IP Address you assigned in the switch UI The sFlow collector analyzes the sFlow packets and displays the re...

Страница 194: ...rting the sampled datagram for analysis The attributes associated with the flow sampling are sampler type sampling rate maximum header size Sampler Type Configured sampler type on the port and could b...

Страница 195: ...nfiguration Web UI NGSME16T2H User Manual 195 Polling Interval Configured polling interval for the counter sampling Editing Button You can modify each port s sampler configuration the table using the...

Страница 196: ...In Feature Configuration CLI The Command Line Interface CLI is the user interface to the switch s embedded software system You can view the system information show the status configure the switch and...

Страница 197: ...or to go to root level Type logout in root level to leave the command line interface Click Enter key after finish the command Click Up key to repeat the previous commands Commands may be abbreviated e...

Страница 198: ...stem Type up to move up one level or to go to root level System System Contact Syntax System Name name Parameters name System name string 1 255 Example Contact Name Orwell System contact Orwell System...

Страница 199: ...s offset Time zone offset in minutes 720 to 720 relative to UTC Example Time Zone 100 poeswitch System time 100 IP Configuration IP Group Enter the IP Configuration Group poeswitch ip Type up to move...

Страница 200: ...below command Syntax IP NTP Server Add server_index ip_addr_string IP NTP Server Ipv6 Add server_index server_ipv6 IP NTP Server Delete server_index Example poeswitch IP ntp ser add 1 192 168 100 1 p...

Страница 201: ...ax IP IPv6 AUTOCONFIG enable disable IP IPv6 Setup ipv6_addr ipv6_prefix ipv6_router IP IPv6 State ipv6_addr enable disable IP IPv6 Ping6 ipv6_addr Length ping_length Count ping_count Interval ping_in...

Страница 202: ...rver Address Setting Syntax Type the NTP Server address settings by below command IP NTP Server Add server_index ip_addr_string IP NTP Server Ipv6 Add server_index server_ipv6 IP NTP Server Delete ser...

Страница 203: ...ver mode en Server Address Syntax System Log Server Address ip_addr_string Example poeswitch System log server add 192 168 2 100 Syslog Level Syntax System Log Level info warning error Information poe...

Страница 204: ...n CLI Featuring Configuration CLI NGSME16T2H User Manual 204 System Log Configuration poeswitch System log conf System Log Configuration System Log Server Mode Enabled System Log Server Address 192 16...

Страница 205: ...timer 2 30 Maintenance Syntax led_power maintenance maintenance_time on_at_errors leave_at_errors Parameters maintenance_time Time in seconds 0 65535 that the LEDs shall be turned on when any port cha...

Страница 206: ...t All ports enable Enable EEE disable Disable EEE Example Enable Port 1 5 EEE mode 1 5 en Urgent Queue of Port Syntax EEE Urgent_queues port_list queue_list Parameters port_list Port list or all defau...

Страница 207: ...State After port 1 disabled the port can t access the switch Port state 1 en Port state 1 dis Link Speed and Duplex Syntax Port Mode port_list auto 10hdx 10fdx 100hdx 100fdx 1000fdx sfp_auto_ams 100 0...

Страница 208: ...rt maxf 1 24 9600 Port Status Port Status Port conf 1 2 Port Configuration Port State Mode Flow Control MaxFrame Power Excessive Link 1 Enabled Auto Disabled 9600 Disabled Discard Down 2 Enabled Auto...

Страница 209: ...iscard 1Gfdx 3 Enabled Auto Disabled 9600 Disabled Discard Down Status of Link UP ports poeswitch Port conf all up Port Configuration Port State Mode Flow Control MaxFrame Power Excessive Link 2 Enabl...

Страница 210: ...SSH Secure Shell Security Switch HTTPS Hypertext Transfer Protocol over Secure Socket Layer Security Switch Access Access management Security Switch SNMP Simple Network Management Protocol Security Sw...

Страница 211: ...sers del Orwell User Name Database Security Switch users conf Users Configuration User Name Privilege Level admin 15 Orwell 15 Privilege Level Syntax Security Switch Privilege Level Group group_name c...

Страница 212: ...bug 15 15 15 15 Diagnostics 5 10 5 10 Authentication Method Syntax Security Switch Auth Method console telnet ssh web none local radius tacacs enable disable Example Configure Telnet Authentication me...

Страница 213: ...e disable Security Switch https mode en Security Switch https mode dis Security Switch HTTPS Redirect enable disable Security Switch https mode en Must enabled HTTPS Security Switch https redi en Resu...

Страница 214: ...n 1 2c 3 Security Switch SNMP Read Community community Security Switch SNMP Write Community community Example Security Switch snmp mode en Security Switch snmp ver 2c Security Switch SNMP read com abc...

Страница 215: ...rap Mode enable disable Security Switch SNMP Trap Version 1 2c 3 Security Switch SNMP Trap Community community Security Switch SNMP Trap Destination ip_addr_string Security Switch SNMP Trap IPv6 Desti...

Страница 216: ...p en Security Switch SNMP trap info mode en Security Switch SNMP trap info time 5 Security Switch SNMP trap info ret times 5 Result Trap Authentication Failure Enabled Trap Link up and Link down Enabl...

Страница 217: ...stics Add stats_id data_source Security Switch RMON Statistics Delete stats_id Security Switch RMON Statistics Lookup stats_id Histroy Security Switch RMON History Add history_id data_source interval...

Страница 218: ...etwork Limit Mode enable disable Security Network Limit Aging enable disable Security Network Limit Agetime age_time Example Security Network limit mode enable Security Network limit agin enable Secur...

Страница 219: ...on enable disable Time Settings Security Network NAS ReauthPeriod reauth_period Security Network NAS EapolTimeout eapol_timeout Security Network NAS Agetime age_time Security Network NAS Holdtime hold...

Страница 220: ...d MAC_Based Authentication Example Security Network nas state 2 auto ACL Access Control List ACL Port Configuration Syntax Security Network ACL Action port_list permit deny rate_limiter port_redirect...

Страница 221: ...bled Enabled Enabled 0 Rate Limiter Syntax Security Network ACL Rate rate_limiter_list rate_unit rate Parameters rate_limiter_list Rate limiter list 1 16 default All rate limiters rate_unit IP flags p...

Страница 222: ...e_limiter port_redirect mirror logging shutdown Parameters ace_id ACE ID 1 256 default Next available ID ace_id_next Next ACE ID 1 256 default Add ACE last port Port ACE keyword port_list Port list or...

Страница 223: ...gs IP flags ttl options fragment 0 1 any icmp ICMP keyword icmp_type ICMP type number 0 255 or any icmp_code ICMP code number 0 255 or any udp UDP keyword sport Source UDP TCP port range 0 65535 or an...

Страница 224: ...Snooping Syntax Security Network DHCP Snooping Mode enable disable Security Network DHCP Snooping Port Mode port_list trusted untrusted Security Network DHCP Snooping Statistics port_list clear Examp...

Страница 225: ...e enable disable Security Network IP Source Guard Port Mode port_list enable disable Security Network IP Source Guard limit port_list dynamic_entry_limit unlimited Security Network IP Source Guard Ent...

Страница 226: ...on Configuration Security Network ARP Inspection Mode enable disable Security Network ARP Inspection Port Mode port_list enable disable Security Network ARP Inspection Entry port_list add delete vid a...

Страница 227: ...ex enable disable ip_addr_string secret server_port Example Security aaa radi 1 en 192 168 2 200 password 1812 RADIUS Accounting Server Syntax Security AAA ACCT_RADIUS server_index enable disable ip_a...

Страница 228: ...ess Secret Port 1 Enabled 192 168 2 200 1812 2 Disabled 1812 3 Disabled 1812 4 Disabled 1812 5 Disabled 1812 RADIUS Accounting Server Configuration Server Mode IP Address Secret Port 1 Enabled 192 168...

Страница 229: ...Chapter 4 Feature Configuration CLI Featuring Configuration CLI NGSME16T2H User Manual 229 4 Disabled 49 5 Disabled 49 Security...

Страница 230: ...o Group 1 aggr add 5 8 1 aggr del 1 Delete the group 1 Hash Code Contributors Syntax Aggr Mode smac dmac ip port enable disable smac Source MAC Address dmac Destination MAC Address ip IP Address port...

Страница 231: ...GSME16T2H User Manual 231 LACP Key port_list key LACP Role port_list active passive LACP Status port_list LACP Statistics port_list clear Example Configure port 5 8 to a LACP group lacp mode 5 8 en Mo...

Страница 232: ...ime Example loop protect mode en Transmission Time loop protect trans 10 10 seconds Shutdown Time loop protect shut 200 200 seconds Port Configuration Loop Protection Port Configuration Syntax Loop Pr...

Страница 233: ...on mstp rstp stp Example STP ver rstp Bridge Priority Syntax STP Msti Priority msti priority Example STP msti pri MSTI Bridge Priority CIST 32768 STP msti pri 4096 The available priority parameter inc...

Страница 234: ...holdcount Valid values are in the range 1 to 10 BPDU s per second Advanced Setting Syntax STP bpduFilter enable disable STP bpduGuard enable disable STP recovery timeout After recovery timeout time i...

Страница 235: ...Guard port_list enable disable STP Port Statistics port_list clear Example STP port mode 1 24 dis Disable STP on port 1 24 STP port edge 1 24 en Enable Edge port on port 1 24 STP port autoedge 1 24 en...

Страница 236: ...y Parameters msti STP bridge instance no 0 7 CIST 0 MSTI1 1 port_list Port list or all Port zero means aggregations priority STP port priority 0 16 32 48 224 240 Example Configure CIST 0 Port Priority...

Страница 237: ...setup 2 add Name Source2 MVR Port Role Syntax MVR VLAN Port vid mvr_name port_list source receiver inactive Example Port 2 Source Port Port 6 7 Receiver Port MVR vlan port 2 2 source MVR vlan port 2 6...

Страница 238: ...g of Source2 VID 2 Source Port 2 Receiver Port 6 7 Inactive Port 1 3 5 8 26 Channel Setting of Source2 VID 2 Empty Channel Table MVR Immediate Leave Setting Port Immediate Leave 1 Enabled 2 Enabled 3...

Страница 239: ...ed Syntax IPMC Flooding mld igmp enable disable Example IPMC flood igmp en IGMP SSM Range Source Specific Multicast Syntax IPMC SSM mld igmp Range prefix mask_len Example IPMC ssm igmp range 239 0 0 0...

Страница 240: ...figuration Syntax IPMC State mld igmp vid enable disable IPMC Querier mld igmp vid enable disable IPMC Compatibility mld igmp vid auto v1 v2 v3 IPMC Parameter RV mld igmp vid ipmc_param_rv IPMC Parame...

Страница 241: ...Chapter 4 Feature Configuration CLI Featuring Configuration CLI NGSME16T2H User Manual 241 mld igmp in the syntax The IP Address should be IPv6 format for sure...

Страница 242: ...delay 2 LLDP reini 2 LLDP Mode Syntax LLDP Mode port_list enable disable rx tx rx RX Only tx TX Only Example Enable LLDP on Ports LLDP mode 1 10 en Port 1 10 are enabled LLDP mode 1 26 en Port 1 26 a...

Страница 243: ...ture Configuration CLI Featuring Configuration CLI NGSME16T2H User Manual 243 LLDP option 1 3 port en LLDP option 1 3 sys_name en LLDP option 1 3 sys_desc en LLDP option 1 3 sys_capa en LLDP option 1...

Страница 244: ...p_res LLDP MED Reserved Power Example PoE mgmt class_con PoE Power Supply Configuration Warning The default value is for reference only If the value is not comfort to your product specification please...

Страница 245: ...bles PoE IEEE 802 3af Class 4 limited to 15 4W poe Enables PoE IEEE 802 3at Class 4 limited to 30W default Show PoE s mode Example Set Port 1 24 ro PoE mode PoE mode 1 24 poe PoE Status Primary Power...

Страница 246: ...AC age 100 change aging time to 100 seconds the aging time range is 10 1000000 MAC age 0 0 Disable Aging time MAC Learning Configuration Syntax MAC Learning port_list auto disable secure Example MAC l...

Страница 247: ...Chapter 4 Feature Configuration CLI Featuring Configuration CLI NGSME16T2H User Manual 247 VID MAC Address Ports 1 00 10 15 02 25 2a 1 5 1 0b 16 21 2c 37 42 1 10...

Страница 248: ...me vid Example VLAN add 3 5 8 Add port 5 8 to VLAN 3 VLAN name add vlan3 3 vlan3 is the name of VLAN 3 Port Configuration Syntax VLAN FrameType port_list all tagged untagged VLAN IngressFilter port_li...

Страница 249: ...figuration PVLAN Configuration Syntax PVLAN Configuration port_list PVLAN Add pvlan_id port_list PVLAN Delete pvlan_id PVLAN Lookup pvlan_id PVLAN Isolate port_list enable disable Example PVLAN add 10...

Страница 250: ...22334455 10 1 4 Result VCL Macvlan conf MAC Address VID Ports 00 0b 16 21 2c 37 10 1 4 Protocol based VLAN Configuration Protocol to Group Syntax VCL ProtoVlan Protocol Add Eth2 ether_type arp ip ipx...

Страница 251: ...1 8 E1 10 5 8 IP Subnet based VLAN Configuration IP Subnet based VLAN Configuration Syntax VCL IPVlan Add vce_id ip_addr_mask vid port_list Parameters vce_id Unique VCE ID for each VCL entry ip_addr_m...

Страница 252: ...mode en Voice vlan id 100 Voice vlan age 86400 Voice vlan traff class 7 Result Voice VLAN Configuration Voice VLAN Mode Enabled Voice VLAN VLAN ID 100 Voice VLAN Age Time seconds 86400 Voice VLAN Tra...

Страница 253: ...e VLAN OUI Add oui_addr description Voice VLAN OUI Delete oui_addr Voice VLAN OUI Clear Voice VLAN OUI Lookup oui_addr Example Voice VLAN oui add 00 12 08 hello Result Voice VLAN oui lookup Voice VLAN...

Страница 254: ...cp_list dei_list class dpl QoS Port Classification DSCP port_list enable disable Range of the Value class QoS class 0 7 dpl Drop Precedence Level 0 1 pcp Priority Code Point 0 7 dei Drop Eligible Indi...

Страница 255: ...QoS Port Policer mode 1 2 en QoS Port Policer rate 1 2 300 QoS Port Policer unit 1 2 kbps QoS Port Policer flow 1 2 en Port Scheduler Syntax Syntax QoS Port Scheduler Mode port_list strict weighted E...

Страница 256: ...S Port QueueShaper Mode port_list queue_list enable disable QoS Port QueueShaper Rate port_list queue_list bit_rate QoS Port QueueShaper Excess port_list queue_list enable disable Parameters port_list...

Страница 257: ...nced QoS setting please follow the DSCP table of upper access core switch to configure the table The table of the whole network must be unified Storm Configuration Strom Control Syntax QoS Storm Unica...

Страница 258: ...ure Command Line Mirroring Configuration Mirror Configuration Syntax Mirror Port port disable Mirror Mode port_cpu_list enable disable rx tx Example Mirror port 5 Mirror mode 6 8 en Result Mirror Conf...

Страница 259: ...Feature Command Line UPnP Configuration UPnp Configuration Syntax UPnP Configuration UPnP Mode enable disable UPnP TTL ttl UPnP AdvertisingDuration duration Example UPnP mode en UPnP ttl 5 Default 4 U...

Страница 260: ...0 6343 1400 Result Receiver Configuration Owner none Receiver 192 168 2 100 UDP Port 6343 Max Datagram 1400 bytes Time left 0 seconds Receiver Release sFlow receiver Port Configuration Syntax sFlow Re...

Страница 261: ...iguration CLI NGSME16T2H User Manual 261 rate 10 max size 128 sFlow coun 1 2 5 Enable CounterPoller of port 1 2 and set interval to 5 sFlow statistic sample 1 2 Per Port Statistics Port Rx Flow Sample...

Страница 262: ...Count keyword ping_count Transmit ECHO_REQUEST packet count 1 60 Default is 5 interval PING Interval keyword ping_interval Ping interval 0 30 Default is 0 Example Ping IP 192 168 2 100 IP ping 192 168...

Страница 263: ...CLI NGSME16T2H User Manual 263 poeswitch IP ipv6 ping6 2001 DB8 250 8bff fee8 f800 VeriPHY Syntax Port VeriPHY port_list Example Port veriphy 24 Starting VeriPHY please wait Port Pair A Length Pair B...

Страница 264: ...Example Software Firmware Firmware Version Firmware Swapping Firmware Update Syntax Firmware Information Firmware Swap Firmware Load ip_addr_string file_name Parameters of Firmware Load ip_addr_string...

Страница 265: ...ote 1 The switch process the firmware upgrading through TFTP protocol When running firmware upgrading please open the TFTP tool as TFTP server for the switch For example TFTPd32 is a freeware TFTP ser...

Страница 266: ...5 Web Configuration Monitor Diagnostic Maintenance In Web Configuration Monitor Diagnostic Maintenance The following chapter will guide you to this switch s configuration webpage regarding to Monitor...

Страница 267: ...in Configuration System Information System Name Location The system location configured in Configuration System Information System Location MAC Address The MAC Address of this switch Chip ID The Chip...

Страница 268: ...ance Monitor Diagnostic Maintenance NGSME16T2H User Manual 268 Buttons Auto refresh Check this box to enable an automatic refresh of the page at regular intervals Refresh Click to refresh the page any...

Страница 269: ...ls The last 120 samples are graphed and the last numbers are displayed as text as well In order to display the SVG graph your browser must support the SVG format Consult the SVG Wiki for more informat...

Страница 270: ...tion is provided here ID The ID 1 of the system log entry Level The level of the system log entry The following level types are supported Info Information level of the system log Warning Warning level...

Страница 271: ...sh Updates the system log entries starting from the current entry ID Clear Flushes all system log entries Updates the system log entries starting from the first available entry ID Updates the system l...

Страница 272: ...k this box to enable an automatic refresh of the page at regular intervals Refresh Updates the system log entries starting from the current entry ID Clear Flushes all system log entries Updates the sy...

Страница 273: ...ge provides an overview of the current switch port states The port states are illustrated as follows RJ45 ports SFP ports State Disabled Down Link Buttons Auto refresh Check this box to refresh the pa...

Страница 274: ...transmitted packets per port Bytes The number of received and transmitted bytes per port Errors The number of frames received in error and the number of incomplete transmissions per port Drops The nu...

Страница 275: ...ayed counters are Port The logical port for the settings contained in the same row Qn There are 8 QoS queues per port Q0 is the lowest priority queue Rx Tx The number of received and transmitted packe...

Страница 276: ...net Only Ethernet frames with Ether Type 0x600 0xFFFF are allowed LLC Only LLC frames are allowed SNAP Only SNAP frames are allowed IPv4 The QCE will match only IPV4 frames IPv6 The QCE will match onl...

Страница 277: ...therwise it is always No Please note that conflict can be resolved by releaseing the H W resources required to add QCL entry on pressing Resolve Conflict button Buttons Select the QCL status from this...

Страница 278: ...ceive Total and Transmit Total Rx and Tx Packets The number of received and transmitted good and bad packets Rx and Tx Octets The number of received and transmitted good and bad bytes Includes FCS but...

Страница 279: ...received with CRC or alignment errors Rx Undersize The number of short 1 frames received with valid CRC Rx Oversize The number of long 2 frames received with valid CRC Rx Fragments The number of short...

Страница 280: ...er Manual 280 Buttons The port select box determines which port is affected by clicking the buttons Refresh Click to refresh the page immediately Clear Clears the counters for the selected port Auto r...

Страница 281: ...tch Received Packets Number of received packets from the interface when access management mode is enabled Allowed Packets Number of allowed packets from the interface when access management mode is en...

Страница 282: ...asks all user modules whether to allow this new MAC address to forward or block it For a MAC address to be set in the forwarding state all enabled user modules must unanimously agree on allowing the M...

Страница 283: ...unknown MAC addresses to arrive Limit Reached The Port Security service is enabled by at least the Limit Control user module and that module has indicated that the limit is reached and no more MAC add...

Страница 284: ...it will be blocked until that user module decides otherwise MAC Address VLAN ID The MAC address and VLAN ID that is seen on this port If no MAC addresses are learned a single row stating No MAC addres...

Страница 285: ...resh Click to refresh the page immediately Auto refresh Click this box to enable an automatic refresh of the page at regular intervals Security Network NAS This page provides an overview of the curren...

Страница 286: ...ned to the port by the RADIUS server if enabled Port VLAN ID The VLAN ID that NAS has put the port in The field is blank if the Port VLAN ID is not overridden by NAS If the VLAN ID is assigned by the...

Страница 287: ...1X Multi 802 1X EAPOL Counters Direction Name IEEE Name Description Rx Total dot1xAuthEapolFramesRx The number of valid EAPOL frames of any type that have been received by the switch Rx Response ID d...

Страница 288: ...amesTx The number of valid EAPOL Request frames other than Request Identity frames that have been transmitted by the switch Backend Server Counters These backend RADIUS frame counters are available fo...

Страница 289: ...hat the supplicant client has successfully authenticated to the backend server Rx Auth Failures dot1xAuthBackendAuthFails 802 1X and MAC based Counts the number of times that the switch receives a fai...

Страница 290: ...802 1X MAC based Auth Last Supplicant Client Info Name IEEE Name Description MAC Address dot1xAuthLastEapolFrameSource The MAC address of the last supplicant client VLAN ID The VLAN ID on which the la...

Страница 291: ...ched it shows No supplicants attached This column is not available for MAC based Auth MAC Address For Multi 802 1X this column holds the MAC address of the attached supplicant For MAC based Auth this...

Страница 292: ...ble an automatic refresh of the page at regular intervals Click to refresh the page immediately This button is available in the following modes Force Authorized Force Unauthorized Port based 802 1X Si...

Страница 293: ...e values are All The ACE will match all ingress port Port The ACE will match a specific ingress port Frame Type Indicates the frame type of the ACE Possible values are Any The ACE will match any frame...

Страница 294: ...is displayed the port copy operation is disabled Mirror Specify the mirror operation of this port The allowed values are Enabled Frames received on the port are mirrored Disabled Frames received on t...

Страница 295: ...st The number of request option 53 with value 3 packets received and transmitted Rx and Tx Decline The number of decline option 53 with value 4 packets received and transmitted Rx and Tx ACK The numbe...

Страница 296: ...ion 53 with value 12 packets received and transmitted Rx and Tx Lease Active The number of lease active option 53 with value 13 packets received and transmitted Buttons Auto refresh Click this box to...

Страница 297: ...ent Option The number of packets received without agent information options Receive Missing Circuit ID The number of packets received with the Circuit ID option missing Receive Missing Remote ID The n...

Страница 298: ...tains up to 1024 entries and is sorted first by port then by VLAN ID then by MAC address and then by IP address Navigating the ARP Inspection Table Each page shows up to 99 entries from the Dynamic AR...

Страница 299: ...itted MAC Address User MAC address of the entry IP Address User IP address of the entry Buttons Auto refresh Click this box to enable an automatic refresh of the page at regular intervals Refresh Clic...

Страница 300: ...The Start from port address VLAN and IP address input fields allow the user to select the starting point in the Dynamic IP Source Guard Table Clicking the button will update the displayed table starti...

Страница 301: ...uto refresh Click this box to enable an automatic refresh of the page at regular intervals Refresh Click to refresh the page immediately Clear Flushes all dynamic entries Updates the table starting fr...

Страница 302: ...bled Not Ready The server is enabled but IP communication is not yet up and running Ready The server is enabled IP communication is up and running and the RADIUS module is ready to accept access attem...

Страница 303: ...and the RADIUS module is ready to accept accounting attempts Dead X seconds left Accounting attempts were made to this server but it did not reply within the configured timeout The server has tempora...

Страница 304: ...8 Name Description Rx Access Accepts radiusAuthClientExtAccess Accepts The number of RADIUS Access Accept packets valid or invalid received from the server Rx Access Rejects radiusAuthClientExtAccess...

Страница 305: ...ExtAccess Requests The number of RADIUS Access Request packets sent to the server This does not include retransmissions Tx Access Retransmission s radiusAuthClientExtAcc essRetransmissions The number...

Страница 306: ...odule is ready to accept access attempts Dead X seconds left Access attempts were made to this server but it did not reply within the configured timeout The server has temporarily been disabled but wi...

Страница 307: ...id received from the server Rx Malformed Responses radiusAccClientExtMalform edResponses The number of malformed RADIUS packets received from the server Malformed packets include packets with an inval...

Страница 308: ...eipt of a Response timeout or retransmission Tx Timeouts radiusAccClientExtTimeout s The number of accounting timeouts to the server After a timeout the client may retry to the same server send to a d...

Страница 309: ...Time radiusAccClientExtRoun dTripTime The time interval measured in milliseconds between the most recent Response and the Request that matched it from the RADIUS accounting server The granularity of...

Страница 310: ...of octets of data including those in bad packets received on the network Pkts The total number of packets including bad packets broadcast packets and multicast packets received Broad cast The total n...

Страница 311: ...Chapter 5 Monitor Diagnostic Maintenance Monitor Diagnostic Maintenance NGSME16T2H User Manual 311 The total number of packets received that were longer than 1518 octets...

Страница 312: ...including bad packets received that were between 65 to 127 octets in length 128 255 The total number of packets including bad packets received that were between 128 to 255 octets in length 256 511 Th...

Страница 313: ...the probe due to lack of resources Drops The total number of events in which packets were dropped by the probe due to lack of resources Octets The total number of octets of data including those in bad...

Страница 314: ...Chapter 5 Monitor Diagnostic Maintenance Monitor Diagnostic Maintenance NGSME16T2H User Manual 314 including FCS octets of between 64 and 1518 octets...

Страница 315: ...64 octets received with invalid CRC Jabb The number of frames which size is larger than 64 octets received with invalid CRC Coll The best estimate of the total number of collisions on this Ethernet s...

Страница 316: ...ng and falling threshold Variable Indicates the particular variable to be sampled Sample Type The method of sampling the selected variable and calculating the value to be compared against the threshol...

Страница 317: ...nt entries The displayed fields are Event Index Indicates the index of the event entry Log Index Indicates the index of the log entry Log TIme Indicates Event log time Log Description Indicates the Ev...

Страница 318: ...id is shown as isid aggr id and for GLAGs as aggr id Partner System ID The system ID MAC address of the aggregation partner Partner Key The Key that the partner has assigned to this aggregation ID La...

Страница 319: ...means that the port could not join the aggregation group but will join if other port leaves Meanwhile it s LACP status is disabled Key The key assigned to this port Only ports with the same key can a...

Страница 320: ...ceived Shows how many LACP frames have been received at each port LACP Transmitted Shows how many LACP frames have been sent from each port Discarded Shows how many unknown or illegal LACP frames have...

Страница 321: ...action Transmit The currently configured port transmit mode Loops The number of loops detected on this port Status The current loop protection status of the port Loop Whether a loop is currently dete...

Страница 322: ...e Bridge ID of the currently elected root bridge Root Port The switch port currently assigned the root port role Root Cost Root Path Cost For the Root Bridge it is zero For all other Bridges it is the...

Страница 323: ...nt STP port role of the CIST port The port role can be one of the following values AlternatePort BackupPort RootPort DesignatedPort Disabled CIST State The current STP port state of the CIST port The...

Страница 324: ...ber of RSTP Configuration BPDU s received transmitted on the port STP The number of legacy STP Configuration BPDU s received transmitted on the port TCN The number of legacy Topology Change Notificati...

Страница 325: ...V1 Reports Received The number of Received V1 Reports V2 Reports Received The number of Received V2 Reports V3 Reports Received The number of Received V3 Reports V2 Leaves Received The number of Recei...

Страница 326: ...rom that or the closest next MVR Group Table match In addition the two input fields will upon a Refresh button click assume the value of the first displayed entry allowing for continuous refresh with...

Страница 327: ...Querier Version currently Host Version Working Host Version currently Querier Status Shows the Querier status is ACTIVE or IDLE DISABLE denotes the specific interface is administratively disabled Quer...

Страница 328: ...at leads towards the Layer 3 multicast device or IGMP querier Static denotes the specific port is configured to be a router port Dynamic denotes the specific port is learnt to be a router port Both de...

Страница 329: ...AN and group input fields allow the user to select the starting point in the IGMP Group Table Clicking the Refresh button will update the displayed table starting from that or the closest next IGMP Gr...

Страница 330: ...belong to the same group are treated as single entry Navigating the IGMP SFM Information Table Each page shows up to 99 entries from the IGMP SFM Information table default being 20 selected through t...

Страница 331: ...basis It can be either Include or Exclude Source Address IP Address of the source Currently system limits the total number of IP source addresses for filtering to be 128 Type Indicates the Type It can...

Страница 332: ...ently Host Version Working Host Version currently Querier Status Show the Querier status is ACTIVE or IDLE DISABLE denotes the specific interface is administratively disabled Queries Transmitted The n...

Страница 333: ...3 multicast device or IGMP querier Static denotes the specific port is configured to be a router port Dynamic denotes the specific port is learnt to be a router port Both denotes the specific port is...

Страница 334: ...cking the Refresh button will update the displayed table starting from that or the next closest MLD Group Table match In addition the two input fields will upon a Refresh button click assume the value...

Страница 335: ...st visited the web page will show the first 20 entries from the beginning of the MLD SFM Information Table The Start from VLAN and group input fields allow the user to select the starting point in the...

Страница 336: ...tly system limits the total number of IP source addresses for filtering to be 128 Type Indicates the Type It can be either Allow or Deny Buttons Auto refresh Check this box to enable an automatic refr...

Страница 337: ...ion of the neighbor s LLDP frames Remote Port ID The Remote Port ID is the identification of the neighbor port System Name System Name is the name advertised by the neighbor unit Port Description Port...

Страница 338: ...t Address is the neighbor unit s address that is used for higher layer entities to assist discovery by the network management This could for instance hold the neighbor s IP address Buttons Refresh Cli...

Страница 339: ...evices as defined in TIA 1057 provide access to the IEEE 802 based LAN infrastructure for LLDP MED Endpoint Devices An LLDP MED Network Connectivity Device is a LAN access device based on any of the f...

Страница 340: ...ration device location network policy power management and inventory management LLDP MED Media Endpoint Class II The LLDP MED Media Endpoint Class II definition is applicable to all endpoint products...

Страница 341: ...w 1 Voice for use by dedicated IP Telephony handsets and other similar appliances supporting interactive voice services These devices are typically deployed on a separate VLAN for ease of deployment a...

Страница 342: ...ed or an untagged VLAN Can be Tagged or Untagged Untagged The device is using an untagged frame format and as such does not include a tag header as defined by IEEE 802 1Q 2003 Tagged The device is usi...

Страница 343: ...r Source or its Backup Power Source it is indicated as Unknown If the device is a PD device it can either run on its local power supply or it can use the PSE as power source It can also use both its l...

Страница 344: ...nostic Maintenance Monitor Diagnostic Maintenance NGSME16T2H User Manual 344 Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Clic...

Страница 345: ...layed table contains a row for each port The columns hold the following information Local Port The port on which LLDP frames are received or transmitted Tx Tw The link parther s maximum time that tran...

Страница 346: ...ink partners request was based on stale information Echo Rx Tw The link partner s Echo Rx Tw value Resolved Tx Tw The resolved Tx Tw for this link Note NOT the link parther The resolved value that is...

Страница 347: ...t deleted or added It also shows the time elapsed since the last change was detected Total Neighbors Entries Added Shows the number of new entries added since switch reboot Total Neighbors Entries Del...

Страница 348: ...port s link is down an LLDP shutdown frame is received or when the entry ages out TLVs Discarded Each LLDP frame can contain multiple pieces of information known as TLVs TLV is short for Type Length V...

Страница 349: ...and VLAN input fields allow the user to select the starting point in the MAC Table Clicking the button will update the displayed table starting from that or the closest next MAC Table match In additi...

Страница 350: ...the page at regular intervals Refresh Refreshes the displayed table starting from the Start from MAC address and VLAN input fields Clear Flushes all dynamic entries Updates the table starting from th...

Страница 351: ...n ports on a VLAN bridged network Voice VLAN Voice VLAN is a VLAN configured specially for voice traffic typically originating from IP phones MVR MVR is used to eliminate the need to duplicate multica...

Страница 352: ...g from that or the closest next VLAN Table match The will use the last entry of the currently displayed VLAN entry as a basis for the next lookup When the end is reached the text No more entries is sh...

Страница 353: ...Protocol MVRP allows dynamic registration and deregistration of VLANs on ports on a VLAN bridged network Voice VLAN Voice VLAN is a VLAN configured specially for voice traffic typically originating fr...

Страница 354: ...accepts all frames or only tagged frames This parameter affects VLAN ingress processing If the port only accepts tagged frames untagged frames received on that port are discarded Tx Tag Shows egress f...

Страница 355: ...sers Currently we support following VLAN User types CLI Web SNMP These are referred to as static NAS NAS provides port based authentication which involves communications between a Supplicant Authentic...

Страница 356: ...the sampled datagram for analysis The attributes associated with the flow sampling are sampler type sampling rate maximum header size Counter Sampling Counter sampling performs periodic time based sam...

Страница 357: ...eption of a reply The page refreshes automatically until responses to all packets are received or until a timeout occurs ICMP Ping Output Result PING server 192 168 2 100 56 bytes of data 64 bytes fro...

Страница 358: ...all packets are received or until a timeout occurs ICMPv6 Ping Output PING6 server 10 10 132 20 64 bytes from 10 10 132 20 icmp_seq 0 time 0ms 64 bytes from 10 10 132 20 icmp_seq 1 time 0ms 64 bytes...

Страница 359: ...linked down while running VeriPHY Therefore running VeriPHY on a 10 or 100 Mbps management port will cause the switch to stop responding until VeriPHY is complete Port The port where you are requesti...

Страница 360: ...ctory Defaults You can reset the configuration of the switch on this page Only the IP configuration is retained The new configuration is available immediately which means that no restart is necessary...

Страница 361: ...the Browse command Click Upload to start the process After the software image is uploaded a page announces that the firmware update is initiated After about a minute the firmware is updated and the sw...

Страница 362: ...d 2 If the alternate image is active due to a corruption of the primary image or by manual intervention uploading a new firmware image to the device will automatically use the primary image slot and a...

Страница 363: ...module controlling specific parts of the configuration Group tags port table vlan table etc These tags identify a group of parameters typically a table Parameter tags mode entry etc These tags identif...

Страница 364: ...e Monitor Diagnostic Maintenance NGSME16T2H User Manual 364 mac global switch sid 1 mac entry port 1 24 learn mode auto entry mac switch configuration Save Click to save the configuration file Upload...

Страница 365: ...e changes even within the product s operating temperature range may cause malfunctions DO NOT install this product in a location near any sources of water or liquid DO NOT stack this product with othe...

Страница 366: ...ill guide you to set the IP address properly in a Microsoft Windows 8 environment Setting IP address in other Microsoft operating system such as Windows Vista or Windows 7 is quite the same and can be...

Страница 367: ...ME16T2H User Manual 367 3 An Ethernet Status window will pop up Please click on the Properties button as shown in the figure down below 4 An Ethernet Properties window will pop up Please double click...

Страница 368: ...hown in the figure down below By default your product s IP address should be 192 168 2 1 You can set any IP address as long as it s not the same with your product s IP address and is in the same netwo...

Результаты поиска

Содержание NGSME16T2H

Отзывы:

Бренды по названию

Популярные бренды

Niveo Professional NGSME16T2H, Руководство пользователя

Результаты поиска

Содержание NGSME16T2H

Отзывы:

Бренды по названию

Популярные бренды