manualshive.com logo in svg

ORiNG RGPS-92222GCP-NP, Руководство пользователя

"ORiNG RGPS-92222GCP-NP" - это высокоточный продукт, предлагающий надежное и удобное решение для вашей работы. Получите бесплатное руководство по эксплуатации manualshive.com, чтобы узнать как использовать его на полную мощность. Скачайте свой экземпляр сегодня и начните работу сегодня.

Поделиться
Скачать
background image

 

 

 

 

 

RGPS-92222GCP-NP  Series  User  Manual 

 

ORing Industrial Networking Corp. 

120 

limited using the Port Security Limit Control functionality.   

MAC-based Auth. 

Unlike port-based 802.1X,  MAC-based authentication is not a standard, but 

merely  a  best-practices  method  adopted  by  the  industry.  In  MAC-based 

authentication, users are called clients, and the switch acts as the supplicant 

on  behalf  of  clients.  The  initial  frame  (any  kind  of  frame)  sent  by  a  client  is 

snooped by the switch, which in turn uses the client's MAC address as both 

username and password in the subsequent EAP exchange with the RADIUS 

server. The 6-byte MAC address is converted to a string in the following form 

"xx-xx-xx-xx-xx-xx",  that  is,  a  dash  (-)  is  used  as  separator  between  the 

lower-cased 

hexadecimal 

digits. 

The 

switch 

only 

supports 

the 

MD5-Challenge  authentication  method,  so  the  RADIUS  server  must  be 

configured accordingly. 

When  authentication  is  complete,  the  RADIUS  server  sends  a  success  or 

failure indication, which in turn causes the switch to open up or block traffic 

for that particular client, using the Port Security module. Only then will frames 

from  the  client  be  forwarded  on  the  switch.  There  are  no  EAPOL  frames 

involved in this authentication, and therefore, MAC-based authentication has 

nothing to do with the 802.1X standard. 

The advantage of MAC-based authentication over port-based 802.1X is that 

several clients can be connected to the same port (e.g. through a 3rd party 

switch or a hub) and still require individual authentication, and that the clients 

don't  need  special  supplicant  software  to  authenticate.  The  advantage  of 

MAC-based  authentication  over  802.1X-based  authentication  is  that  the 

clients  do  not  need  special  supplicant  software  to  authenticate.  The 

disadvantage  is  that  MAC  addresses  can  be  spoofed  by  malicious  users  - 

equipment  whose  MAC  address  is  a  valid  RADIUS  user  can  be  used  by 

anyone. Also, only the MD5-Challenge method is supported. The  maximum 

number of clients that can be attached to a port can be limited using the Port 

Security Limit Control functionality. 

Port State 

The current state of the port. It can undertake one of the following values: 

Globally Disabled

: NAS is globally disabled. 

Link Down

: NAS is globally enabled, but there is no link on the port. 

Authorized

: the port is in Force Authorized or a single-supplicant mode and 

the supplicant is authorized. 

Unauthorized:

 the port is in Force Unauthorized or a single-supplicant mode 

and the supplicant is not successfully authorized by the RADIUS server. 

Содержание RGPS-92222GCP-NP

Страница 1: ...RGPS 92222GCP NP Series Industrial Rack Mount Ethernet Switch User Manual Version 1 1 Nov 2015 www oring networking com...

Страница 2: ...expenses apportioned by ORing and the distributor This warranty does not cover product modifications or repairs done by persons other than ORing approved personnel and this warranty does not apply to...

Страница 3: ...Rear Panel 9 Hardware Installation 10 3 1 Rack mount Installation 10 3 2 Wiring 11 3 2 1 AC Power Connection 11 3 3 Connection 11 3 3 1 Cables 11 3 3 2 SFP 14 3 3 3 O Ring O Chain 14 Redundancy 18 4 1...

Страница 4: ...DHCP Server 44 5 2 1 Basic Settings 44 5 2 2 Dynamic Client List 45 5 2 3 Client List 45 5 2 4 Relay Agent 45 5 3 Port Setting 48 5 3 1 Port Control 48 5 3 2 Port Trunk 49 5 3 4 Loop Gourd 54 5 4 VLA...

Страница 5: ...us 87 5 7 Multicast 88 5 7 1 IGMP Snooping 88 5 7 2 VLAN Configurations of IGMP Snooping 89 5 7 3 IGMP Snooping Status 89 5 7 4 Groups Information of IGMP Snooping 90 5 8 Security 91 5 8 1 Remote Cont...

Страница 6: ...r Manual ORing Industrial Networking Corp 5 5 11 2 Status 140 5 11 3 PoE Schedule 141 5 11 4 PoE Auto Ping 141 5 12 Troubleshooting 142 5 12 1 Factory Defaults 142 5 12 2 System Reboot 143 Command Lin...

Страница 7: ...recovery technology Featuring a wide operating temperature from 40oC to 60oC the device can be managed centrally and conveniently via Open Vision web browsers Telnet and console CLI configuration mak...

Страница 8: ...rdware Specifications 19 inch rack mountable design 22 x 10 100 1000Base T X RJ 45 ports with PoE function 2xGigabit combo ports with PoE function 2x100 1000Base X SFP ports Supports PoE scheduled con...

Страница 9: ...set button Press the button for 3 seconds to reset and 5 seconds to return to factory default 2 1 2 LED LED Color Status Description PWR Green On System power on Green Blinking Upgrading firmware R M...

Страница 10: ...On PoE enabled 100 1000Base X SFP port Link Act Green On Port connected Blinking Transmitting data 2 2 Rear Panel On the rear panel of the switch sits two panel module slots and one terminal block Th...

Страница 11: ...to allow you to fasten the switch to a rack in any environments Follow the following steps to install the switch to a rack Step 1 Install the mounting brackets to the left and right front sides of the...

Страница 12: ...stics should be routed separately 6 You can use the type of signal transmitted through a wire to determine which wires should be kept separate The rule of thumb is that wiring sharing similar electric...

Страница 13: ...ceiving data 10 100Base T X P S E RJ 45 port Pin Number Assignment 1 TD with PoE Power input 2 TD with PoE Power input 3 RD with PoE Power input 6 RD with PoE Power input 10 100Base T RJ 45 Pin Assign...

Страница 14: ...I and MDI X port pin outs 10 100 Base T X MDI MDI X Pin Assignments Pin Number MDI port MDI X port 1 TD transmit RD receive 2 TD transmit RD receive 3 RD receive TD transmit 4 Not used Not used 5 Not...

Страница 15: ...ly PC pin out male assignment RS 232 with DB9 female connector DB9 to RJ 45 Pin 2 RD Pin 2 TD Pin 2 Pin 3 TD Pin 3 RD Pin 3 Pin 5 GD Pin 5 GD Pin 5 3 3 2 SFP The switch comes with fiber optical ports...

Страница 16: ...gy Coupling Ring If you already have two O Ring topologies and would like to connect the rings you can form them into a coupling ring All you need to do is select two switches from each ring to be con...

Страница 17: ...h A B from the ring for connecting to the switches in the RSTP network backbone switches The connection of one of the switches Switch A or B will act as the primary path while the other will act as th...

Страница 18: ...n the ring Switch C D 2 In correspondence to the ports connected to the ring configure an edge port for both of the connected switches in the chain by checking the box in the management page see 4 1 2...

Страница 19: ...proprietary redundant ring technology with recovery time of less than 10 milliseconds and up to 250 nodes The ring protocols identify one switch as the master of the network and then automatically bl...

Страница 20: ...an divide a big ring into two smaller rings to avoid network topology changes affecting all switches It is a good method for connecting two rings Coupling Port Ports for connecting multiple rings A co...

Страница 21: ...esigned for distributed and complex industrial networks enables the network to recover in less than 10ms for up to 250 switches if at any time a segment of the chain fails O Chain allows multiple redu...

Страница 22: ...es in ring configuration to recover from failure rapidly to ensure seamless data transmission A MRP ring IEC 62439 can support up to 50 devices and will enable a back up link in 80ms adjustable to max...

Страница 23: ...ination broadcast packets may get in to an infinite loop and hence causing congestion in the network STP can identify the best path to the destination and block all other paths The blocked links will...

Страница 24: ...e valid value is between 4 through 30 Max Age Time 6 40 The number of seconds a bridge waits without receiving Spanning tree Protocol configuration messages before attempting a reconfiguration The val...

Страница 25: ...matically will be enabled after a certain time If recovery is not enabled ports have to be disabled and re enabled for normal STP operation The condition is also cleared by a system reboot Port Error...

Страница 26: ...rom whether BPDU s are received on the port or not Restricted Role If enabled causes the port not to be selected as Root Port for the CIST or any MSTI even if it has the best spanning tree priority ve...

Страница 27: ...dia Apply Click to apply the configurations 4 4 2 MSTP Since the recovery time of STP and RSTP takes seconds which is unacceptable in industrial applications MSTP was developed The technology supports...

Страница 28: ...idge that supports RSTP to operate in an STP compatible manner Configuration Name The name which identifies the VLAN to MSTI mapping Bridges must share the name and revision see below as well as the V...

Страница 29: ...gle value applies to all STP within an MST region the CIST and all MSTIs for which the bridge is the regional root Apply Click to apply the configurations Bridge Port Label Description Port No The num...

Страница 30: ...o apply the configurations Instance Setting This page allows you to change the configurations of current MSTI bridge instance Label Description Instance Set the instance from 1 to 15 State Enables or...

Страница 31: ...st incurred by the port The path cost is used when establishing an active topology for the network Lower path cost ports are chosen as forwarding ports in favor of higher path cost ports The range of...

Страница 32: ...ial Networking Corp 31 Label Description Active Activate fast recovery mode Port Ports can be set to 12 priorities Only the port with the highest priority will be the active port 1st Priority is the h...

Страница 33: ...er friendly viewing screen By default IE5 0 or later version do not allow Java applets to open sockets You need to modify the browser setting separately in order to enable Java applets for network por...

Страница 34: ...links to access the configuration pages of different functions 5 1 Basic Settings Basic Settings allow you to configure the basic functions of the switch 5 1 1 System Information This page shows the...

Страница 35: ...tion of the contact person for this managed node together with information on how to contact this person The allowed string length is 0 to 255 and only ASCII characters from 32 to 126 are allowed Save...

Страница 36: ...ation is disabled and login is not possible Local local user database on the switch is used for authentication Radius a remote RADIUS server is used for authentication Fallback Check to enable fallbac...

Страница 37: ...sign the subnet mask IP Router Assigns the network gateway for the switch The default gateway is 192 168 10 254 VLAN ID Provides the managed VLAN ID The allowed range is 1 through 4095 DNS Server Prov...

Страница 38: ...r hexadecimal digits with a colon separating each field For example in fe80 215 c5ff fe03 4dc7 the symbol is a special syntax that can be used as a shorthand way of representing multiple 16 bit groups...

Страница 39: ...Time duration Select Disable to disable the configuration or Recurring to configure the duration to repeat every year Select Non Recurring to configure the duration for single time configuration Defau...

Страница 40: ...me The time is measured by minute 5 1 7 HTTPS You can configure HTTPS settings in the following page Label Description Mode Indicates the selected HTTPS mode When the current connection is HTTPS disab...

Страница 41: ...DP LLDP Configurations This page allows you to examine and configure LLDP port settings Label Description Port The switch port number to which the following settings will be applied Mode Indicates the...

Страница 42: ...r of the neighbor sending out the LLDP frames Remote Port ID The identification of the neighbor port System Name The name advertised by the neighbor Port Description The description of the port advert...

Страница 43: ...ot Total Neighbors Entries Deleted Shows the number of new entries deleted since switch reboot Total Neighbors Entries Dropped Shows the number of LLDP frames dropped due to full entry table Total Nei...

Страница 44: ...TLVs received Age Outs Each LLDP frame contains information about how long the LLDP information is valid age out time If no new LLDP frame is received during the age out time the LLDP information wil...

Страница 45: ...vides DHCP server functions By enabling DHCP the switch will become a DHCP server and dynamically assigns IP addresses and related IP information to network clients 5 2 1 Basic Settings This page allo...

Страница 46: ...to the port and requests for dynamic IP assigning the switch will assign the IP address that has previously been assigned to the connected device 5 2 4 Relay Agent DHCP relay is used to forward and tr...

Страница 47: ...e option 82 remote ID value equals to the switch MAC address The modes include Enabled activate DHCP relay information When DHCP relay information is enabled the agent inserts specific information opt...

Страница 48: ...ith the Remote ID option missing Receive Bad Circuit ID The number of packets whose Circuit ID do not match the known circuit ID Receive Bad Remote ID The number of packets whose Remote ID do not matc...

Страница 49: ...hich the following settings will be applied Link The current link state is shown by different colors Green indicates the link is up and red means the link is down Current Link Speed Indicates the curr...

Страница 50: ...he Configured column allows you to change power saving parameters for each port Disabled all power savings functions are disabled ActiPHY link down and power savings enabled PerfectReach link up and p...

Страница 51: ...f each aggregation group Normal means no aggregation Only one group ID is valid per port Port Members Lists each switch port for each group ID Select a radio button to include a port in an aggregation...

Страница 52: ...full duplex ports can join an aggregation and the ports must be in the same speed in each group Key The Key value varies with the port ranging from 1 to 65535 Auto will set the key according to the ph...

Страница 53: ...Partner System ID System ID MAC address of the aggregation partner Partner Key The key assigned by the partner to the aggregation ID Last Changed The time since this aggregation changed Last Channged...

Страница 54: ...e partner s system ID MAC address Partner Port The partner s port number associated with the port Refresh Click to refresh the page immediately Auto refresh Check to enable an automatic refresh of the...

Страница 55: ...ansmission Time The interval between each loop protection PDU sent on each port The valid value is 1 to 10 seconds Shutdown Time The period in seconds for which a port will be kept disabled when a loo...

Страница 56: ...he number of loops detected on this port Status The current loop protection status of the port Loop Whether a loop is currently detected on the port Time of Last Loop The time of the last loop event d...

Страница 57: ...95 After clicking Save the new VLAN will be enabled on the selected switch stack but contains no port members A VLAN without any port members on any stack will be deleted when you click Save Click Del...

Страница 58: ...d in frames transmitted on the port This mode is normally used for ports connected to VLAN aware switches Tx tag should be set to Untag_pvid when this mode is used If Specific the default value is sel...

Страница 59: ...e forwarded 2 If the TPID of tagged frame is not 0x8100 ex 0x88A8 it will be discarded The TPID of a frame transmitted by C port will be set to 0x8100 S port When the port receives untagged frames an...

Страница 60: ...RGPS 92222GCP NP Series User Manual ORing Industrial Networking Corp 59...

Страница 61: ...RGPS 92222GCP NP Series User Manual ORing Industrial Networking Corp 60...

Страница 62: ...Series User Manual ORing Industrial Networking Corp 61 Examples of VLAN Settings VLAN Access Mode Switch A Port 7 is VLAN Access mode Untagged 20 Port 8 is VLAN Access mode Untagged 10 Below are the...

Страница 63: ...S 92222GCP NP Series User Manual ORing Industrial Networking Corp 62 VLAN 1Q Trunk Mode Switch B Port 1 VLAN 1Qtrunk mode tagged 10 20 Port 2 VLAN 1Qtrunk mode tagged 10 20 Below are the switch settin...

Страница 64: ...RGPS 92222GCP NP Series User Manual ORing Industrial Networking Corp 63 VLAN Hybrid Mode Port 1 VLAN Hybrid mode untagged 10 Tagged 10 20 Below are the switch settings...

Страница 65: ...de VLAN QinQ mode is usually adopted when there are unknown VLANs as shown in the figure below VLAN X Unknown VLAN 9000 Series Port 1 VLAN Settings VLAN ID Settings When setting the management VLAN on...

Страница 66: ...to be able to forward packets By default all ports are VLAN unaware and members of VLAN 1 and private VLAN 1 A VLAN unaware port can only be a member of one VLAN but it can be a member of multiple pri...

Страница 67: ...ted and a warning message appears Click OK to discard the incorrect entry or click Cancel to return to the editing and make a correction The private VLAN is enabled when you click Save The Delete butt...

Страница 68: ...2c SNMPv3 uses USM for authentication and privacy and the community string will be associated with SNMPv3 community table Write Community Indicates the write community string to permit access to SNMP...

Страница 69: ...shorthand way of representing multiple 16 bit groups of contiguous zeros but it can only appear once It also uses a following legally IPv4 address For example 192 1 2 34 Trap Authentication Failure I...

Страница 70: ...r table The entry index keys are Engine ID and User Name Label Description Delete Check to delete the entry It will be deleted during the next save Engine ID An octet string identifying the engine ID...

Страница 71: ...clude None no authentication protocol MD5 an optional flag to indicate that this user is using MD5 authentication protocol SHA an optional flag to indicate that this user is using SHA authentication p...

Страница 72: ...USM Security Name A string identifying the security name that this entry should belong to The allowed string length is 1 to 32 and only ASCII characters from 33 to 126 are allowed Group Name A string...

Страница 73: ...he root of the subtree to add to the named view The allowed OID length is 1 to 128 The allowed string content is digital number or asterisk 5 5 6 SNMP Access Configurations This page allows you to con...

Страница 74: ...control and a broadcast storm rate control These only affect flooded frames i e frames with a VLAN ID DMAC pair not present on the MAC Address table The rate is 2 n where n is equal to or less than 1...

Страница 75: ...of 0 zero has the lowest priority If the port is VLAN aware and the frame is tagged then the frame is classified to a QoS class that is based on the PCP value in the tag as shown below Otherwise the f...

Страница 76: ...frame is tagged then the frame is classified to the PCP value in the tag Otherwise the frame is classified to the default PCP value DEI Controls the default DEI value All frames are classified to a DE...

Страница 77: ...gs will be applied Click on the port number to configure tag remarking Mode Shows the tag remarking mode for this port Classified use classified PCP DEI values Default use default PCP DEI values Mappe...

Страница 78: ...se classification is enabled as specified in DSCP Translation window for the specific DSCP All classify all DSCP Egress Port egress rewriting can be one of the following options Disable no Egress rewr...

Страница 79: ...policer for individual switch ports Rate Configures the rate of each policer The default value is 500 This value is restricted to 100 to 1000000 when the Unit is kbps or fps and is restricted to 1 to...

Страница 80: ...t is kbps and is restricted to 1 to 3300 when the Unit is Mbps This field is only shown if at least one of the queue policers is enabled Unit Configures the unit of measurement for each queue policer...

Страница 81: ...haper The default value is 500 This value is restricted to 100 to 1000000 when the Unit is kbps and it is restricted to 1 to 3300 when the Unit is Mbps Queue Shaper Excess Allows the queue to use exce...

Страница 82: ...Configures the weight of each queue The default value is 17 This value is restricted to 1 to 100 This parameter is only shown if Scheduler Mode is set to Weighted Queue Scheduler Percent Shows the we...

Страница 83: ...he port number to configure the shapers Mode Shows disabled or actual queue shaper rate e g 800 Mbps Qn Shows disabled or actual port shaper rate e g 800 Mbps 5 6 10 DSCP Based QoS This page allows yo...

Страница 84: ...SCP for QoS class and DPL map There are two configuration parameters for DSCP Translation 1 Translate DSCP can be translated to any of 0 63 DSCP values 2 Classify check to enable ingress classificatio...

Страница 85: ...lass Actual QoS class DPL Actual Drop Precedence Level DSCP Select the classified DSCP value 0 63 5 6 13 QoS Control List This page allows you to edit or insert a single QoS control entry at a time A...

Страница 86: ...rames Ethernet Valid Ethernet values can range from 0x600 to 0xFFFF or Any but excluding 0x800 IPv4 and 0x86DD IPv6 The default value is Any LLC SSAP Address valid SSAP Source Service Access Point val...

Страница 87: ...LS bits DSCP Differentiated Code Point can be a specific value a range or Any DSCP values are in the range 0 63 including BE CS1 CS7 EF or AF11 AF43 Sport Source TCP UDP port 0 65535 or Any specific...

Страница 88: ...QCL user QCE Indicates the index of QCE Frame Type Indicates the type of frame to look for incoming frames Possible frame types are Any the QCE will match all frame type Ethernet Only Ethernet frames...

Страница 89: ...ase note that conflict can be resolved by releasing the hardware resources required to add the QCL entry by pressing Resolve Conflict button 5 7 Multicast 5 7 1 IGMP Snooping This page provides IGMP S...

Страница 90: ...he starting point in the VLAN Table Clicking the Refresh button will update the displayed table starting from that or the next closest VLAN Table match The will use the last entry of the currently dis...

Страница 91: ...eceive The number of received V2 reports V3 Reports Receive The number of received V3 reports V2 Leave Receive The number of received V2 leave packets Refresh Click to refresh the page immediately Cle...

Страница 92: ...trol Security allows you to limit the remote access to the management interface When enabled requests of the client which is not in the allow list will be rejected Label Description Port Port number o...

Страница 93: ...Alive Check Active Check to enable alive check When enabled switch will ping the device continually Alive Check Status Indicates alive check status Possible statuses are disable Got Reply receive pin...

Страница 94: ...es IP address of the device Device MAC Address Specifies MAC address of the device Advanced Configurations Alias IP Address This page provides Alias IP Address configuration Some devices might have mo...

Страница 95: ...les or enables PoE power DDoS Prevention This page provides DDOS Prevention configurations The switch can monitor ingress packets and perform actions when DDOS attack occurred on this port You can con...

Страница 96: ...ype is UDP or TCP please choose the socket direction Destination Source Action Indicates the action to take when DDOS attacks occur Possible actions are no action Blocking 1 minute blocks the forwardi...

Страница 97: ...types Possible types are no specification IP Camera IP Phone Access Point PC PLC and Network Video Recorder Location Address Indicates location information of the device The information can be used f...

Страница 98: ...ll be applied Policy ID Select to apply a policy to the port The allowed values are 1 to 8 The default value is 1 Action Select to Permit to permit or Deny to deny forwarding The default value is Perm...

Страница 99: ...switch Label Description Rate Limiter ID The rate limiter ID for the settings contained in the same row Rate The rate unit is packet per second pps which can be configured as 1 2 4 8 16 32 64 128 256...

Страница 100: ...rames can match the ACE Notice the ARP frames will not match the ACE with Ethernet type IPv4 only IPv4 frames can match the ACE Notice the IPv4 frames will not match the ACE with Ethernet type Action...

Страница 101: ...a specific source MAC address with the ACE choose this value A field for entering an SMAC value appears SMAC Value When Specific is selected for the SMAC filter you can enter a specific source MAC ad...

Страница 102: ...can enter a specific VLAN ID number The allowed range is 1 to 4095 Frames matching the ACE will use this VLAN ID value Tag Priority Specifies the tag priority for the ACE A frame matching the ACE wil...

Страница 103: ...field greater than zero must be able to match this entry Any any value is allowed don t care IP Fragment Specifies the fragment offset settings for the ACE This includes settings of More Fragments MF...

Страница 104: ...Specify the destination IP address and destination IP mask in the DIP Address and DIP Mask fields that appear DIP Address When Host or Network is selected for the destination IP filter you can enter...

Страница 105: ...ddress in the Target IP Address field that appears Network target IP filter is set to Network Specify the target IP address and target IP mask in the Target IP Address and Target IP Mask fields that a...

Страница 106: ...t match this entry Any any value is allowed don t care Ethernet Specifies whether frames will meet the action according to their ARP RARP protocol address space PRO settings 0 ARP RARP frames where th...

Страница 107: ...ill use this ICMP code value Label Description TCP UDP Source Filter Specifies the TCP UDP source filter for the ACE Any no TCP UDP source filter is specified TCP UDP source filter status is don t car...

Страница 108: ...fic is selected for the TCP UDP destination filter you can enter a specific TCP UDP destination value The allowed range is 0 to 65535 A frame matching the ACE will use this TCP UDP destination value T...

Страница 109: ...RG urgent pointer field significant value for the ACE 0 TCP frames where the URG field is set must not be able to match this entry 1 TCP frames where the URG field is set must be able to match this en...

Страница 110: ...etermined as dead Setting the dead time to a value greater than 0 zero will enable this feature but only if more than one server has been configured 5 8 5 RADIUS Authentication and Accounting Server C...

Страница 111: ...accounting server If the port is set to 0 zero the default port 1813 is used on the RADIUS accounting server Secret The secret up to 29 characters long shared between the RADIUS accounting server and...

Страница 112: ...e this occurs is displayed in parentheses This state is only reachable when more than one server is enabled Label Description The RADIUS server number Click to navigate to detailed statistics of the s...

Страница 113: ...ore than one server is enabled Authentication and Accounting Server Statistics The statistics map closely to those specified in RFC4668 RADIUS Authentication Client MIB Use the server drop down list t...

Страница 114: ...Networking Corp 113 Other Info This section contains information about the state of the server and the latest round trip time Label Description Packet Counters RADIUS accounting server packet counter...

Страница 115: ...end server As intruders can create counterfeit MAC addresses MAC based authentication is less secure than 802 1X authentication Overview of 802 1X Port Based Authentication In an 802 1X network enviro...

Страница 116: ...mission rate Overview of MAC Based Authentication Unlike 802 1X MAC based authentication is not a standard but merely a best practices method adopted by the industry In MAC based authentication users...

Страница 117: ...bled all ports are allowed to forward frames Reauthenti cation Enabled If checked clients are reauthenticated after the interval specified by the Reauthentication Period Reauthentication for 802 1X en...

Страница 118: ...the client is still attached or not and the only way to free any resources is to age the entry Hold Time This setting applies to the following modes i e modes using the Port Security functionality to...

Страница 119: ...ncapsulates the EAP part of the frame into the relevant type EAPOL or RADIUS and forwards it When authentication is complete the RADIUS server sends a special packet containing a success or failure in...

Страница 120: ...ully authenticated on a port the whole port is opened for network traffic This allows other clients connected to the port for instance through a hub to piggy back on the successfully authenticated cli...

Страница 121: ...ch There are no EAPOL frames involved in this authentication and therefore MAC based authentication has nothing to do with the 802 1X standard The advantage of MAC based authentication over port based...

Страница 122: ...enticated clients on the port and will not cause the clients to be temporarily unauthorized Reinitialize forces a reinitialization of the clients on the port and hence a reauthentication immediately T...

Страница 123: ...itch port using port based authentication For MAC based ports only selected backend server RADIUS Authentication Server statistics is showed Use the port drop down list to select which port details to...

Страница 124: ...backend RADIUS frame counters are available for the following administrative states 802 1X MAC based Auth Last Supplicant Clie nt Info Information about the last supplicant client that attempts to au...

Страница 125: ...ies User Manual ORing Industrial Networking Corp 124 5 9 Alerts 5 9 1 Fault Alarm When any selected fault event happens the Fault LED on the switch panel will light up and the electric relay will sign...

Страница 126: ...received on UDP port 514 and the syslog server will not send acknowledgments back to the sender since UDP is a connectionless protocol and it does not provide acknowledgments The syslog packet will a...

Страница 127: ...ication username Password the authentication password Confirm Password re enter password Recipient E mail Address The recipient s e mail address A mail allows for 6 recipients Apply Click to activate...

Страница 128: ...restarted Power Status Sends out alerts when power is up or down SNMP Authentication Failure Sends out alert when SNMP authentication fails O Ring Topology Change Sends out alerts when O Ring topology...

Страница 129: ...is called aging You can configure aging time by entering a value in the box of Age Time The allowed range is 10 to 1000000 seconds You can also disable the automatic aging of dynamic entries by checki...

Страница 130: ...ill be lost and can only be restored by using another non secure port or by connecting to the switch via the serial interface Static MAC Table Configurations The static entries in the MAC table are sh...

Страница 131: ...e with a default value of 20 selected by the Entries Per Page input field When first visited the web page will show the first 20 entries from the beginning of the MAC Table The first displayed will be...

Страница 132: ...eceived and transmitted packets per port Bytes The number of received and transmitted bytes per port Errors The number of frames received in error and the number of incomplete transmissions per port D...

Страница 133: ...ted good and bad packets Rx and Tx Octets The number of received and transmitted good and bad bytes including FCS except framing bits Rx and Tx Unicast The number of received and transmitted good and...

Страница 134: ...Tx Late Exc Coll The number of frames dropped due to excessive or late collisions 1 Short frames are frames smaller than 64 bytes 2 Long frames are frames longer than the maximum frame length configu...

Страница 135: ...frames are mirrored to the mirror port Note for a given port a frame is only transmitted once Therefore you cannot mirror Tx frames to the mirror port In this case mode for the selected mirror port is...

Страница 136: ...diagnostics Press Start to run the diagnostics This will take approximately 5 seconds If all ports are selected this can take approximately 15 seconds When completed the page refreshes automatically a...

Страница 137: ...manage and set up event alarms through DDM Web interface 5 10 7 Ping This page allows you to issue ICMP PING packets to troubleshoot IP connectivity issues After you press Start five ICMP packets wil...

Страница 138: ...d ICMP packets Label Description IP Address The destination IP Address Ping Size The payload size of the ICMP packet Values range from 8 to 1400 bytes IPv6 Ping PING6 server 192 168 10 1 sendto sendto...

Страница 139: ...much power to reserve according to the class the connected power device belongs to and then reserves the power accordingly Four different port classes are available including 4 7 15 4 and 30 Watts In...

Страница 140: ...urce and one as a backup If the switch does not support backup power supply only the primary power supply settings will be shown If the primary power source fails the backup power source will take ove...

Страница 141: ...W Class 3 Max power 15 4 W Class 4 Max power 30 0 W Power Requested Shows the amount of power requested by the power device Power Allocated Shows the amount of power the switch has allocated for the...

Страница 142: ...is not working correctly 5 11 3 PoE Schedule You can appoint a date and time as well as enable or disable PoE functions The switch will perform PoE functions based on your configurations SNTP functio...

Страница 143: ...Enter an IP address Interval Time Assigns a time interval for the check 10 120 seconds Retry Time Set up the number of times for which the function will perform repeatedly Failure Log Note down failed...

Страница 144: ...o factory defaults No Click to return to the Port State page without resetting 5 12 2 System Reboot You can reset the stack switch on this page After reset the system will boot normally as if you have...

Страница 145: ...use console or telnet to manage the switch by CLI CLI Management by RS 232 Serial Console 115200 8 none 1 none Before configuring RS 232 serial console connect the RS 232 port of the switch to your P...

Страница 146: ...User Manual ORing Industrial Networking Corp 145 Step 2 Input a name for the new connection Step 3 Select a COM port in the drop down list Step 4 A pop up window that indicates COM port properties app...

Страница 147: ...bits parity stop bits and flow control Step 5 The console login screen will appear Use the keyboard to enter the Username and Password same as the password for Web browsers then press Enter CLI Manag...

Страница 148: ...User Name admin Password admin Follow the steps below to access console via Telnet Step 1 Telnet to the IP address of the switch from the Run window by inputting commands or from the MS DOS prompt as...

Страница 149: ...RGPS 92222GCP NP Series User Manual ORing Industrial Networking Corp 148 Commander Groups...

Страница 150: ...DHCP enable disable Setup ip_addr ip_mask ip_router vid Ping ip_addr_string ping_length SNTP ip_addr_string Port port Configuration port_list up down Mode port_list auto 10hdx 10fdx 100hdx 100fdx 1000...

Страница 151: ...st untag_pvid untag_all tag_all PortType port_list unaware c port s port s custom port EtypeCustomSport etype Add vid name ports_list Forbidden Add vid name port_list Delete vid name Forbidden Delete...

Страница 152: ...nsole telnet ssh web none local radius enable disable Security Switch SSH Security switch ssh Configuration Mode enable disable Security Switch HTTPS Security switch ssh Configuration Mode enable disa...

Страница 153: ...e port_list auto authorized unauthorized macbased Reauthentication enable disable ReauthPeriod reauth_period EapolTimeout eapol_timeout Agetime age_time Holdtime hold_time Authenticate port_list now S...

Страница 154: ...onflicts Port State port_list enable disable Security Network DHCP Security Network DHCP Configuration Mode enable disable Server ip_addr Information Mode enable disable Information Policy replace kee...

Страница 155: ...Port Edge port_list enable disable Port AutoEdge port_list enable disable Port P2P port_list enable disable auto Port RestrictedRole port_list enable disable Port RestrictedTcn port_list enable disabl...

Страница 156: ...mode class_con class_res al_con al_res lldp_res lldp_con Maximum_Power port_list port_power Status Primary_Supply supply_power Schedule Configuration port_list Schedule Mode port_list enable disable S...

Страница 157: ...LLC DSAP SSAP control SNAP PID ipv4 protocol sip dscp fragment sport dport ipv6 protocol sip_v6 dscp sport dport class dp classified_dscp QCL Delete qce_id QCL Lookup qce_id QCL Status combined stati...

Страница 158: ...guration port_list Action port_list permit deny rate_limiter port_copy logging shutdown Policy port_list policy Rate rate_limiter_list packet_rate Add ace_id ace_id_next switch port port policy policy...

Страница 159: ...y Engine ID enable disable Trap Security Engine ID engineid Trap Security Name security_name Engine ID engineid Community Add community ip_addr ip_mask Community Delete index Community Lookup index Us...

Страница 160: ...ckinst Timingproperties clockinst utcoffset valid leap59 leap61 timetrac freqtrac ptptimescale timesource PTP PortDataSet clockinst port_list announceintv announceto syncintv delaymech minpdelayreqint...

Страница 161: ...shut_log log Port Transmit port_list enable disable Status port_list IPMC IPMC Configuration igmp Mode igmp enable disable Flooding igmp enable disable VLAN Add igmp vid VLAN Delete igmp vid State igm...

Страница 162: ...SMTP Port port_list disable linkup linkdown both DHCPServer DHCPServer Mode enable disable Setup ip_start ip_end ip_mask ip_router ip_dns ip_tftp lease bootfile Ring Ring Mode enable disable Master en...

Страница 163: ...DDOS Low port_list socket_number Port DDOS High port_list socket_number Port DDOS Filter port_list source destination Port DDOS Action port_list do_nothing block_1_min block_10_mins block shutdown on...

Страница 164: ...Manager enable disable React enable disable 1stRingPort mrp_port 2ndRingPort mrp_port Parameter MRP_TOPchgT value Parameter MRP_TOPNRmax value Parameter MRP_TSTshortT value Parameter MRP_TSTdefaultT...

Страница 165: ...222GCP NP Total power budget is 720Watts and based on external power supply spec MAC Table 8k Priority Queues 8 Processing Store and Forward Switch Properties Switching latency 7 us Switching bandwidt...

Страница 166: ...lor LED for Speed Link Act indicator Green 1000Mbps Link Act Amber 10 100Mbps Link Act 100 1000Base X SFP Port Indicator Green for port Link Act PoE Indicator Green PoE enabled LED x 24 Power Power In...

Страница 167: ...RGPS 92222GCP NP Series User Manual ORing Industrial Networking Corp 2 Vibration IEC60068 2 6 Safety EN60950 1 Warranty 5 years...

Отзывы:

Нет отзывов

Похожие инструкции для RGPS-92222GCP-NP

Abocom FW200 Specifications preview
FW200
Бренд: Abocom Страницы: 1
Paradyne MCC Installation Instructions Manual preview
MCC
Бренд: Paradyne Страницы: 11
Paradyne Hotwire 8784 Installation Instructions Manual preview
Hotwire 8784
Бренд: Paradyne Страницы: 19
Paradyne Hotwire 7995 Installation Instructions Manual preview
Hotwire 7995
Бренд: Paradyne Страницы: 32
Paradyne COMSPHERE 3550 Series User Manual preview
COMSPHERE 3550 Series
Бренд: Paradyne Страницы: 153
Paradyne Jetstream CPX-1000 Reference Manual preview
Jetstream CPX-1000
Бренд: Paradyne Страницы: 141
Paradyne FrameSaver 9783 Installation Instructions Manual preview
FrameSaver 9783
Бренд: Paradyne Страницы: 28
Paradyne COMSPHERE 6800 Series Installation And Enabling/Disabling Instructions preview
COMSPHERE 6800 Series
Бренд: Paradyne Страницы: 7
Paradyne Hotwire 6341 Installation Instructions Manual preview
Hotwire 6341
Бренд: Paradyne Страницы: 23
Draytek Vigor 2760 Series Quick Start Manual preview
Vigor 2760 Series
Бренд: Draytek Страницы: 54
Gbord EN-101 User Manual preview
EN-101
Бренд: Gbord Страницы: 8
Ubiquiti PowerBeam PBE-5AC-400-ISO Quick Start Manual preview
PowerBeam PBE-5AC-400-ISO
Бренд: Ubiquiti Страницы: 23
iGateWeb.com iGate User Manual preview
iGate
Бренд: iGateWeb.com Страницы: 6
Axis P3365-V Installation Manual preview
P3365-V
Бренд: Axis Страницы: 98
PairGain PG-Flex FLC-704 Manual preview
PG-Flex FLC-704
Бренд: PairGain Страницы: 20
Tripp Lite N201-001-BL Specification Sheet preview
N201-001-BL
Бренд: Tripp Lite Страницы: 3
ZyXEL Communications XGS4600 Series User Manual preview
XGS4600 Series
Бренд: ZyXEL Communications Страницы: 645
ZyXEL Communications ONU5100-B22 User Manual preview
ONU5100-B22
Бренд: ZyXEL Communications Страницы: 2

Бренды по названию

Популярные бренды

Загрузить еще бренды