Planet Networking & Communication wgsw-28040 Скачать руководство пользователя страница 1

Страница: 1 / 316

User’s Manual of WGSW-28040

Содержание wgsw-28040

Страница 1: ...User s Manual of WGSW 28040 1 ...

Страница 2: ... Rules These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the Instruction manual may cause harmful interference to radio communications Operation of this equipment in a residential area ...

Страница 3: ... 2 1 3 Switch Rear Panel 20 2 2 Installing the Switch 21 2 2 1 Desktop Installation 21 2 2 2 Rack Mounting 22 2 2 3 Installing the SFP transceiver 23 3 SWITCH MANAGEMENT 26 3 1 Requirements 26 3 2 Management Access Overview 27 3 3 Administration Console 28 3 4 Web Management 29 3 5 SNMP based Network Management 30 3 6 PLANET Smart Discovery Utility 30 4 WEB CONFIGURATION 32 4 1 Main Web Page 35 4 ...

Страница 4: ...4 SNMP Access Group 58 4 2 7 5 SNMP Community 59 4 2 7 6 SNMP User 61 4 2 7 7 SNMPv1 2 Notification Recipients 63 4 2 7 8 SNMPv3 Notification Recipients 64 4 2 7 9 SNMP Engine ID 65 4 2 7 10 SNMP Remote Engine ID 66 4 3 Port Management 68 4 3 1 Port Configuration 68 4 3 2 Port Counters 70 4 3 3 Bandwidth Utilization 75 4 3 4 Port Mirroring 76 4 3 5 Jumbo Frame 78 4 3 6 Port Error Disabled Configur...

Страница 5: ...N 116 4 5 13 GVRP Statistics 117 4 5 14 VLAN setting example 119 4 5 14 1 Two separate 802 1Q VLANs 119 4 5 14 2 VLAN Trunking between two 802 1Q aware switch 122 4 6 Spanning Tree Protocol 125 4 6 1 Theory 125 4 6 2 STP Global Settings 131 4 6 3 STP Port Setting 133 4 6 4 CIST Instance Setting 136 4 6 5 CIST Port Setting 138 4 6 6 MST Instance Configuration 140 4 6 7 MST Port Setting 142 4 6 8 ST...

Страница 6: ...ity of Service 175 4 8 1 Understand QoS 175 4 8 2 General 176 4 8 2 1 QoS Properties 176 4 8 2 2 QoS Port Settings 176 4 8 2 3 Queue Settings 178 4 8 2 4 CoS Mapping 179 4 8 2 5 DSCP Mapping 180 4 8 2 6 IP Precedence Mapping 182 4 8 3 QoS Basic Mode 183 4 8 3 1 Global Settings 183 4 8 3 2 Port Settings 184 4 8 4 Rate Limit 185 4 8 4 1 Ingress Bandwidth Control 185 4 8 4 2 Egress Bandwidth Control ...

Страница 7: ...9 4 9 7 DHCP Snooping 220 4 9 7 1 DHCP Snooping Overview 220 4 9 7 2 Global Setting 221 4 9 7 3 VLAN Setting 222 4 9 7 4 Port Setting 224 4 9 7 5 Statistics 225 4 9 7 6 Database Agent 226 4 9 7 7 Rate Limit 228 4 9 7 8 Option82 Global Setting 229 4 9 7 9 Option82 Port Setting 230 4 9 7 10 Option82 Circuit ID Setting 232 4 9 8 Dynamic ARP Inspection 233 4 9 8 1 Global Setting 233 4 9 8 2 VLAN Setti...

Страница 8: ...g 270 4 11 3 Dynamic Address Setting 271 4 11 4 Dynamic Learned 272 4 12 LLDP 274 4 12 1 Link Layer Discovery Protocol 274 4 12 2 LLDP Global Setting 274 4 12 3 LLDP Port Setting 276 4 12 4 LLDP Local Device 279 4 12 5 LLDP Remove Device 281 4 12 6 MED Network Policy 282 4 12 7 MED Port Setting 285 4 12 8 LLDP Overloading 288 4 12 9 LLDP Statistics 289 4 13 Diagnostics 291 4 13 1 Cable Diagnistics...

Страница 9: ...ot Switch 307 4 15 3 Backup Manager 307 4 15 4 Upgrade Manager 308 4 15 5 Dual Image 308 5 SWITCH OPERATION 310 5 1 Address Table 310 5 2 Learning 310 5 3 Forwarding Filtering 310 5 4 Store and Forward 310 5 5 Auto Negotiation 311 6 TROUBLESHOOTING 312 APPENDIX A 314 A 1 Switch s RJ45 Pin Assignments 314 A 2 10 100Mbps 10 100Base TX 314 9 ...

Страница 10: ...s to the WGSW 28040 1 1 Packet Contents Open the box of the Managed Switch and carefully unpack it The box should contain the following items The Managed Switch x 1 Quick Installation Guide x 1 Rubber Feet x 4 Power Cord x 1 RS 232 to RJ45 Console Cable x 1 SFP Dust Cap x 4 Rack mount Accessory Kit x 1 If any item is found missing or damaged please contact your local reseller for replacement 10 ...

Страница 11: ...ed Layer 2 to Layer 4 data switching and Quality of Service traffic control Access Control List network access control and authentication and Secure Management features to protect building automation network connectivity with reliable switching recovery capability that is suitable for implementing fault tolerant and mesh network architectures Spanning Tree Protocol for High Available Network Syste...

Страница 12: ...aged Switch by Web interface Section 5 SWITCH OPERATION The chapter explains how to does the switch operation of the Managed Switch Section 6 TROUBSHOOTING The chapter explains how to trouble shooting of the Managed Switch Appendix A The section contains cable information of the Managed Switch 1 4 Product Features Physical Ports 28 Port 10 100 1000Base T Gigabit RJ45 copper 4 100 1000Base X mini G...

Страница 13: ...t bandwidth control Storm Control support Broadcast Unknown Unicast Unknown Multicast Traffic classification IEEE 802 1p CoS TOS DSCP IP Precedence of IPv4 IPv6 packets Strict priority and Weighted Round Robin WRR CoS policies Multicast Supports IGMP Snooping v2 and v3 Supports MLD Snooping v1 v2 IGMP Querier mode support IGMP Snooping port filtering MLD Snooping port filtering Security Authentica...

Страница 14: ...ss User Privilege Levels Control Built in Trivial File Transfer Protocol TFTP client BOOTP and DHCP for IP address assignment System Maintenance Firmware upload download via HTTP TFTP Configuration upload download through Web interface Dual Images Hardware reset button for system reboot or reset to factory default SNTP Network Time Protocol Cable Diagnostics Link Layer Discovery Protocol LLDP Prot...

Страница 15: ...es Reset Button 5 sec System reboot 5 sec Factory Default LED System Power Green Sys Green 10 100 1000T RJ45 Interfaces Port 1 to Port 28 1000Mbps Orange LNK ACT Green 100 1000Mbps SFP Interfaces Port 25 to Port 28 1000Mbps Orange LNK ACT Green Thermal Fan Fan less design No Fan Power Requirement AC 100 240V 50 60Hz Auto sensing ESD Protection 6KV DC Power Consumption Dissipation 21 4 watts 73 0 B...

Страница 16: ...ding MAC Filter Static MAC Address DHCP Snooping and DHCP Option82 STP BPDU Guard BPDU Filtering and BPDU Forwarding DoS Attack Prevention ARP Inspection IP Source Guard Management Functions Basic Management Interfaces Web browser Telnet SNMP v1 v2c Firmware upgrade by HTTP TFTP protocol through Ethernet network Remote Local Syslog System log LLDP protocol SNTP Secure Management Interfaces SSH SSL...

Страница 17: ...f Service IEEE 802 1Q VLAN Tagging IEEE 802 1x Port Authentication Network Control IEEE 802 1ab LLDP RFC 768 UDP RFC 793 TFTP RFC 791 IP RFC 792 ICMP RFC 2068 HTTP RFC 1112 IGMP version 1 RFC 2236 IGMP version 2 RFC 3376 IGMP version 3 RFC 2710 MLD version 1 RFC 3810 MLD version 2 Environment Operating Temperature 0 50 degrees C Relative Humidity 5 95 non condensing Storage Temperature 20 70 degre...

Страница 18: ...Pair Up to 100 meters 100 1000Base X SFP Slots Each of the SFP Small Form factor Pluggable slot supports Dual speed 1000Base SX LX or 100Base FX For 1000Base SX LX SFP transceiver module From 550 meters Multi mode fiber up to 10 30 50 70 120 kilometers Single mode fiber For 100Base FX SFP transceiver module From 2 kilometers Multi mode fiber up to 20 40 60 kilometers Single mode fiber Console Port...

Страница 19: ...panel LEDs indicates instant status of port links data activity and system power helps monitor and troubleshoot when needed Figure 2 1 2 shows the LED indications of these Managed Switches LED Indication Figure 2 1 2 WGSW 28040 LED panel System LED Color Function PWR Green Lights to indicate that the Switch has power SYS Green Lights to indicate the system is working Blink to indicate the system i...

Страница 20: ...f WGSW 28040 AC Power Receptacle For compatibility with electric service in most areas of the world the Managed Switch s power supply automatically adjusts to line power in the range of 100 240V AC and 50 60 Hz Plug the female end of the power cord firmly into the receptalbe on the rear panel of the Managed Switch Plug the other end of the power cord into an electric service outlet and the power w...

Страница 21: ...ep3 Keep enough ventilation space between the Managed Switch and the surrounding objects When choosing a location please keep in mind the environmental restrictions discussed in Chapter 1 Section 4 and specifications Step4 Connect the Managed Switch to network devices Connect one end of a standard network cable to the 10 100 1000 RJ45 ports on the front of the Managed Switch Connect the other end ...

Страница 22: ...igure 2 1 5 shows how to attach brackets to one side of the Managed Switch Figure 2 1 5 Attach Brackets to the Managed Switch You must use the screws supplied with the mounting brackets Damage caused to the parts by using incorrect screws would invalidate the warranty Step3 Secure the brackets tightly Step4 Follow the same steps to attach the second bracket to the opposite side Step5 After the bra...

Страница 23: ...ti mode SFP transceiver The following list of approved PLANET SFP transceivers is correct at the time of publication Gigabit SFP Transceiver Modules MGB GT SFP Port 1000Base T Module MGB SX SFP Port 1000Base SX mini GBIC module MGB LX SFP Port 1000Base LX mini GBIC module MGB L50 SFP Port 1000Base LX mini GBIC module 50KM MGB L70 SFP Port 1000Base LX mini GBIC module 70KM MGB L120 SFP Port 1000Bas...

Страница 24: ...r requirement To connect to 1000Base SX SFP transceiver please use the multi mode fiber cable with one side being the male duplex LC connector type To connect to 1000Base LX SFP transceiver please use the single mode fiber cable with one side being the male duplex LC connector type Connect the Fiber Cable 1 Insert the duplex LC connector into the SFP transceiver 2 Connect the other end of the cabl...

Страница 25: ...How to Pull Out the SFP Transceiver Never pull out the module without lifting up the lever of the module and turning it to a horizontal position Directly pulling out the module could damage the module and the SFP module slot of the Managed Switch ...

Страница 26: ... Administration Console Access Web Management Access SNMP Access Standards Protocols and Related Reading 3 1 Requirements Workstations running Windows 2000 XP 2003 Vista 7 8 2008 MAC OS9 or later Linux UNIX or other platforms are compatible with TCP IP protocols Workstation is installed with Ethernet NIC Network Interface Card Serial Port connect Terminal The above PC with COM Port DB9 RS 232 or U...

Страница 27: ...ionality and HyperTerminal built into Windows 95 98 NT 2000 ME XP operating systems Secure Must be near the switch or use dial up connection Not convenient for remote users Modem connection may prove to be unreliable or slow Web Browser Ideal for configuring the switch remotely Compatible with all popular browsers Can be accessed from any location Most visually appealing Security can be compromise...

Страница 28: ...tch s console port Figure 3 1 1 Console Management Direct Access Direct access to the administration console is achieved by directly connecting a terminal or a PC equipped with a terminal emulation program such as HyperTerminal to the Managed Switch console serial port When using this management method a straight RS 232 to RJ45 cable is required to connect the switch to the PC After making this co...

Страница 29: ...h offers management features that allow users to manage the Managed Switch from anywhere on the network through a standard browser such as Microsoft Internet Explorer After you set up your IP address for the switch you can access the Managed Switch s Web interface applications directly in your Web browser by entering the IP address of the Managed Switch Figure 3 1 3 Web Management You can then use...

Страница 30: ...nt Station only knows the set community string it can read and write to the MIBs However if it only knows the get community string it can only read MIBs The default gets and sets community strings for the Managed Switch are public Figure 3 1 5 SNMP management 3 6 PLANET Smart Discovery Utility For easily listing the Managed Switch in your Ethernet environment the Planet Smart Discovery Utility fro...

Страница 31: ... for the devices 2 After setup is completed press Update Device Update Multi or Update All button to take effect The meaning of the 3 buttons above are shown below Update Device use current setting on one single device Update Multi use current setting on choose multi devices Update All use current setting on whole devices in the list The same functions mentioned above also can be found in Option t...

Страница 32: ...ets to use network ports The Managed Switch can be configured through an Ethernet connection making sure the manager PC must be set on the same IP subnet address as the Managed Switch For example the default IP address of the Managed Switch is 192 168 0 100 then the manager PC should be set at 192 168 0 x where x is a number between 1 and 254 except 100 and the default subnet mask is 255 255 255 0...

Страница 33: ...in or the username password you have changed via console to login the main screen of Managed Switch The login screen in Figure 4 1 2 appears Figure 4 1 2 Login screen Default User name admin Default Password admin After entering the username and password the main screen appears as Figure 4 1 3 Figure 4 1 3 Default Main Page 33 ...

Страница 34: ...mmands and statistics the Managed Switch provides It is recommended to use Internet Explore 8 0 or above to access Managed Switch The changed IP address takes effect immediately after clicking on the Save button You need to use the new IP address to access the Web interface For security reason please change and memorize the new password after this first setup Only accept command in lowercase lette...

Страница 35: ...isplay The web agent displays an image of the Managed Switch s ports The Mode can be set to display different information for the ports including Link up or Link down Clicking on the image of a port opens the Port Statistics page The port states are illustrated as follows State Disabled Down Link RJ45 Ports SFP Ports Main Menu Using the onboard web agent you can define system parameters manage and...

Страница 36: ...r reset to default Click to logout the Managed Switch Click to reboot the Managed Switch Click to refresh the page 4 1 1 Save Button This save button allows save the running startup backup configuration or reset switch in default parameter The screen in Figure 4 1 6 appears Figure 4 1 6 Save Button screenshot 36 ...

Страница 37: ...ning configuration sequence running config can be saved from the RAM to FLASH by save Source File Running Configuration to Destination File Startup Configuration so that the running configuration sequence becomes the start up configuration file which is called configuration save To prevent illicit file upload and easier configuration switch mandates the name of running configuration file to be run...

Страница 38: ... FLASH function so that the running configuration sequence becomes the startup configuration file which is called configuration save To save all applied changes and set the current configuration as a startup configuration The startup configuration file will be loaded automatically across a system reboot 1 Click Save Save Configurations to FLASH to login Configuration Manager Page 2 Select Source F...

Страница 39: ...age User Configuration Configure new user name password on this page Time Settings Configure SNTP on this page Log Management The switch log information is provided here SNMP Management Configure SNMP on this page 4 2 1 System Information The System Info page provides information for the current device information System Info page helps a switch administrator to identify the hardware MAC address s...

Страница 40: ... of this Managed Switch Firmware Date The firmware date of this Managed Switch System Object ID The system object ID of the Managed Switch System Up Time The period of time the device has been operational PCN HW Version The hardware version of this Managed Switch Buttons Click to edit parameter 4 2 2 IP Configurations The IP Configuration includes the IP Address Subnet Mask and Gateway The Configu...

Страница 41: ...he configured IP address is non zero DHCP will stop and the configured IP settings will be used The DHCP client will announce the configured System Name as hostname to provide DNS lookup IP Address Provide the IP address of this switch in dotted decimal notation Subnet Mask Provide the subnet mask of this switch dotted decimal notation Gateway Provide the IP address of the router in dotted decimal...

Страница 42: ...e configured IPv6 address is zero The router may delay responding to a router solicitation for a few seconds the total time needed to complete auto configuration can be significantly longer IPv6 Address Provide the IPv6 address of this switch IPv6 address is in 128 bit records represented as eight fields of up to four hexadecimal digits with a colon separates each field For example fe80 215 c5ff f...

Страница 43: ...v6 server By default the Managed Switch does not perform DHCPv6 client actions DHCPv6 clients request the delegation of long lived prefixes that they can push to individual local hosts Buttons Click to apply changes Figure 4 2 5 IPv6 Information Page Screenshot The page includes the following fields Object Description Auto Configuration Display the current auto configuration state IPv6 In Use Addr...

Страница 44: ...gure 4 2 7 appear Figure 4 2 6 Local User Information Page Screenshot The page includes the following fields Object Description Username The name identifying the user Maximum length 32 characters Maximum number of users 8 Password Type The password type for the user Password Enter the user s new password here Range 0 32 characters plain text case sensitive Retype Password Please enter the user s n...

Страница 45: ...tings 4 2 5 1 System Time Configure SNTP on this page SNTP is an acronym for Simple Network Time Protocol a network protocol for synchronizing the clocks of computer systems You can specify SNTP Servers and set GMT Time zone The SNTP Configuration screens in Figure 4 2 8 Figure 4 2 9 appear Figure 4 2 8 SNTP Setup Page Screenshot The page includes the following fields Object Description Enable SNT...

Страница 46: ...nfiguration every year Select Non Recurring and configure the Daylight Saving Time duration for single time configuration Default Disabled Daylight Saving Time Offset Enter the number of minutes to add during Daylight Saving Time Range 1 to 1440 Recurring From Week Select the starting week number Day Select the starting day Month Select the starting month Hours Select the starting hour Minutes Sel...

Страница 47: ...lay the current SNTP state Time Zone Display the current time zone Daylight Saving Time Display the current daylight saving time state Daylight Saving Time Offset Display the current daylight saving time offset state From Display the current daylight saving time from To Display the current daylight saving time to 4 2 5 2 SNTP Server Settings The SNTP Server Configuration screens in Figure 4 2 10 F...

Страница 48: ...pe the IP address or domain name of the SNTP server Server Port Type the port number of the SNTP Buttons Click to apply changes Figure 4 2 11 SNTP Server Information Page Screenshot The page includes the following fields Object Description SNTP Server Address Display the current SNTP server address Server Port Display the current SNTP server port 48 ...

Страница 49: ...t significant condition such as cold start 4 Warning Warning conditions e g return false unexpected return 3 Error Error conditions e g invalid input default used 2 Critical Critical conditions e g memory allocation or free memory error resource exhausted 1 Alert Immediate action needed 0 Emergency System unusable 4 2 6 1 Local Log The switch system local log information is provided here The local...

Страница 50: ...arget types are supported Buffered Target the buffer of the local log File Target the file of the local log Severity The severuty of the local log entry The following severity types are supported emerg Emergency level of the system unsable for local log alert Alert level of the immediate action needed for local log crit Critical level of the critical conditions for local log error Error level of t...

Страница 51: ...ate Target Display the current local log target Severity Display the current local log severity Action Delete the current status 4 2 6 3 Remote Syslog Configure remote syslog on this page The Remote Syslog page allows you to configure the logging of messages that are sent to syslog servers or other management stations You can also limit the event messages sent to only those messages below a specif...

Страница 52: ... local log alert Alert level of the immediate action needed for local log crit Critical level of the critical conditions for local log error Error level of the error conditions for local log warning Warning level of the warning conditions for local log notice Notice level of the normal but significant conditions for local log info Informational level of the informational messages for local log deb...

Страница 53: ...the log view Severity The severity of the log view entry The following severity types are supported emerg Emergency level of the system unsable for log view alert Alert level of the immediate action needed for log view crit Critical level of the critical conditions for log view error Error level of the error conditions for log view warning Warning level of the warning conditions for log view notic...

Страница 54: ...Categery Display the current log categery Total Entries Display the current log entries Figure 4 2 20 Logging Messages Page Screenshot The page includes the following fields Object Description No This is the number for logs Timestamp Display the time of log Category Display the category type Severity Display the severity type Message Display the log message Buttons Click to clear the log Click to ...

Страница 55: ...formation such as the number of error packets received by a network element Management information base MIB A MIB is a collection of managed objects residing in a virtual information store Collections of related managed objects are defined in specific MIB modules network management protocol A management protocol is used to convey management information between agents and NMSs SNMP is the Internet ...

Страница 56: ...Indicates the SNMP mode operation Possible modes are Enabled Enable SNMP mode operation Disabled Disable SNMP mode operation Buttons Click to apply changes Figure 4 2 22 SNMP Information Page Screenshot The page includes the following fields Object Description SNMP Display the current SNMP status 4 2 7 3 SNMP View Configure SNMPv3 view table on this page The entry index keys are View Name and OID ...

Страница 57: ... the specified object identifier are to be regarded as wildcards for the purpose of pattern matching View Type Indicates the view type that this entry should belong to Possible view type are included An optional flag to indicate that this view subtree should be included excluded An optional flag to indicate that this view subtree should be excluded General if a view entry s view type is excluded i...

Страница 58: ...etting Page Screenshot The page includes the following fields Object Description Group Name A string identifying the group name that this entry should belong to The allowed string length is 1 to 16 Security Model Indicates the security model that this entry should belong to Possible security models are v1 Reserved for SNMPv1 v2c Reserved for SNMPv2c V3 Reserved for SNMPv3 or User based Security Mo...

Страница 59: ...lick to add a new access entry Check to delete the entry Figure 4 2 26 SNMP view Table Status Page Screenshot The page includes the following fields Object Description Group Name Display the current SNMP access group name Security Model Display the current security model Security Level Display the current security level Read View Name Display the current read view name Write View Name Display the ...

Страница 60: ...vanced Set SNMP community mode supported version 3 Group Name A string identifying the group name that this entry should belong to The allowed string length is 1 to 16 View Name A string identifying the view name that this entry should belong to The allowed string length is 1 to 16 Access Right Indicates the SNMP community type operation Possible types are RO Read Only Set access string type in re...

Страница 61: ...he page includes the following fields Object Description User Name A string identifying the user name that this entry should belong to The allowed string length is 1 to 16 Group The SNMP Access Group A string identifying the group name that this entry should belong to Privilege Mode Indicates the security model that this entry should belong to Possible security models are NoAuth None authenticatio...

Страница 62: ...rivacy protocol are None None privacy protocol DES An optional flag to indicate that this user using DES authentication protocol Encryption Key A string identifying the privacy pass phrase The allowed string length is 8 to 16 Buttons Click to add a new user entry Figure 4 2 30 SNMPv3 Users Status Page Screenshot The page includes the following fields Object Description User Name Display the curren...

Страница 63: ...1 2 34 SNMP Version Indicates the SNMP trap supported version Possible versions are SNMP v1 Set SNMP trap supported version 1 SNMP v2c Set SNMP trap supported version 2c Notify Type Set the notify type in traps or informs Community Name Indicates the community access string when send SNMP trap packet UDP Port Indicates the SNMP trap destination port SNMP Agent will send SNMP message via this port ...

Страница 64: ... 2 33 Figure 4 2 34 appear Figure 4 2 33 SNMPv3 Notification Recipients Page Screenshot The page includes the following fields Object Description Server Address Indicates the SNMP trap destination address It allows a valid IP address in dotted decimal notation x y z w It can also represent a legally valid IPv4 address For example 192 1 2 34 Notify Type Set the notify type in traps or informs User ...

Страница 65: ... current UDP port Time Out Display the current time out Retries Display the current retry times Action Delete the SNMPv3 host entry 4 2 7 9 SNMP Engine ID Configure SNMPv3 Engine ID on this page The entry index key is Engine ID The remote engine ID is used to compute the security digest for authenticating and encrypting packets sent to a user on the remote host The SNMPv3 Engine ID Setting screens...

Страница 66: ...Screenshot The page includes the following fields Object Description User Default Display the current status Engine ID Display the current engine ID 4 2 7 10 SNMP Remote Engine ID Configure SNMPv3 remote Engine ID on this page The SNMPv3 Remote Engine ID Setting screens in Figure 4 2 37 Figure 4 2 38 appear Figure 4 2 37 SNMPv3 Remote Engine ID Setting Page Screenshot The page includes the followi...

Страница 67: ...this entry should belong to Buttons Click to apply changes Figure 4 2 38 SNMPv3 Remote Engine ID Status Page Screenshot The page includes the following fields Object Description Remote IP Address Display the current remote IP address Engine ID Display the current engine ID Action Delete the remote IP address entry 67 ...

Страница 68: ...us Disable port error status Protected Ports Configures protected ports settings EEE Configures EEE settings SFP Module Information Display SFP module information 4 3 1 Port Configuration This page displays current port configurations and status Ports can also be configured here The table has one row for each port on the selected switch in a number of columns which are The Port Configuration scree...

Страница 69: ...etup Auto negotiation Full Force sets Full Duplex mode Half Force sets Half Duplex mode Flow Control When Auto Speed is selected for a port this section indicates the flow control capability that is advertised to the link partner When a fixed speed setting is selected that is what is used Current Rx column indicates whether pause frames on the port are obeyed Current Tx column indicates whether pa...

Страница 70: ...low Control Configuration Display the current flow control configuration of the port Flow Control Status Display the current flow control status of the port 4 3 2 Port Counters This page provides an overview of traffic and trunk statistics for all switch ports The Port Statistics screens in Figure 4 3 3 Figure 4 3 4 Figure 4 3 5 Figure 4 3 6 appear Figure 4 3 3 Port MIB Counters Page Screenshot Th...

Страница 71: ...Transmit Octets The total number of octets transmitted out of the interface including framing characters Transmit Unicast Packets The total number of packets that higher level protocols requested be transmitted to a subnetwork unicast address including those that were discarded or not sent Transmit Nuknown Unicast Packets The total number of packets that higher level protocols requested betransmit...

Страница 72: ...ronized data packets FCS Errors A count of frames received on a particular interface that are an integral number of octets in length but do not pass the FCS check This count does not include frames received with frame too long or frame too short error Single Collision Frames The number of successfully transmitted frames for which transmission isinhibited by exactly one collision Multiple Collision...

Страница 73: ... frames Out Pause Frames The number of transmitted pause frames Figure 4 3 6 RMON Counters Page Screenshot Object Description Drop Events The total number of events in which packets were dropped due to lack of resources Octets The total number of octets received and transmitted on the interface including framing characters Packets The total number of packets received and transmitted on the interfa...

Страница 74: ...4 octets in length excluding framing bits but including FCS octets and had either an FCS or alignment error Jabbers The total number of frames received that were longer than 1518 octets excluding framing bits but including FCS octets and had either an FCS or alignment error Collisions The best estimate of the total number of collisions on this Ethernet segment 64 Bytes Frames The total number of f...

Страница 75: ...h The Bandwidth Utilization screen in Figure 4 3 7 appears To view the port utilization click on the Port Management folder and then the Bandwidth Utilization link Figure 4 3 7 Port Bandwidth Utilization Page Screenshot The page includes the following fields Object Description Refresh Period This shows the period interval between last and next refresh Options 2 sec 5 sec 10 sec IFG Allow user to e...

Страница 76: ...port where a frame analyzer can be attached to analyze the frame flow The Managed Switch can unobtrusively mirror traffic from any port to a monitor port You can then attach a protocol analyzer or RMON probe to this port to perform traffic analysis and verify connection integrity Figure 4 3 8 Port Mirror Application The traffic to be copied to the mirror port is selected as follows All frames rece...

Страница 77: ...to mirror destination port Allow ingress Frames from ports that have either source rx or destination tx mirroring enabled are mirrored to this port Sniffer TX Ports Frames transmitted from these ports are mirrored to the mirroring port Frames received are not mirrored Sniffer RX Ports Frames received at these ports are mirrored to the mirroring port Frames transmitted are not mirrored Buttons Clic...

Страница 78: ...size allowed for the switch port The Jumbo Frame screen in Figure 4 3 11 Figure 4 3 12 appear Figure 4 3 11 Jumbo Frame Setting Page Screenshot The page includes the following fields Object Description Jumbo Frame Bytes Enter the maximum frame size allowed for the switch port including FCS The allowed range is 64 bytes to 9216 bytes Buttons Click to apply changes Figure 4 3 12 Jumbo Frame Informat...

Страница 79: ... to check status by BPDU guard Self Loop Enable or disable the port error disabled function to check status by self loop Broadcast Flood Enable or disable the port error disabled function to check status by broadcast flood Unknown Multicast Flood Enable or disable the port error disabled function to check status by unknown multicast flood Unicast Flood Enable or disable the port error disabled fun...

Страница 80: ...terval time BPDU Guard Display the current BPDU guard status Self Loop Display the current self loop status Broadcast Flood Display the current broadcst flood status Unknown Multicast Flood Display the current unknown multicast flood status Unicast Flood Display the current unicast flood status ACL Display the current ACL status Port Security Violation Display the current port security violation s...

Страница 81: ...bled reason of the port Time Left Seconds Display the time left 4 3 8 Protected Ports Overview When a switch port is configured to be a member of protected group also called Private VLAN communication between protected ports within that group can be prevented Two application examples are provided in this section Customers connected to an ISP can be members of the protected group but they are not a...

Страница 82: ...e private VLAN Ports which can receive traffic from only promiscuous ports in the private VLAN The configuration of promiscuous and isolated ports applies to all private VLANs When traffic comes in on a promiscuous port in a private VLAN the VLAN mask from the VLAN table is applied When traffic comes in on an isolated port the private VLAN mask is applied in addition to the VLAN mask from the VLAN...

Страница 83: ...s port and one or more isolated or host ports This VLAN conveys traffic between the isolated ports and a lone promiscuous port Unprotected A promiscuous port can communicate with all the interfaces within a private VLAN This is the default setting Buttons Click to apply changes Figure 4 3 17 Port Isolation Status Page Screenshot The page includes the following fields Object Description Protected P...

Страница 84: ...de where the port is negotiated to either 1G or 100 Mbit full duplex mode For ports that are not EEE capable the corresponding EEE checkboxes are grayed out and thus impossible to enable EEE for The EEE port settings relate to the currently unit as reflected by the page header When a port is powered down for saving power outgoing traffic is stored in a buffer until the port is powered up again Bec...

Страница 85: ...cal monitoring DOM You can check the physical or operational status of an SFP module via the SFP Module Information Page This Page shows the operational status such as the transceiver type speed wavelength optical output power optical input power temperature laser bias current and transceiver supply voltage in real time You can also use the hyperlink of port no to check the statistics on a spefici...

Страница 86: ...iption Port Select port number for this drop down list Figure 4 3 21 Fiber Port Status Page Screenshot The page includes the following fields Object Description OE Present Display the current SFP OE present LOS Display the current SFP LOS 86 ...

Страница 87: ...he logical port for the settings contained in the same row Temperature Display the current SFP temperature Voltage Display the current SFP voltage Current Display the current SFP current Output Power Display the current SFP output power Input Power Display the current SFP input power Transmit Faulit Display the current SFP transmits faulit Loss of Signal Display the current SFP loss of signal Rata...

Страница 88: ...e assigned manually Port Trunk or automatically by enabling Link Aggregation Control Protocol LACP on the relevant links Aggregated Links are treated by the system as a single logical port Specifically the Aggregated Link has similar port attributes to a non aggregated port including auto negotiation speed Duplex setting etc The device supports the following Aggregation links Static LAGs Port Trun...

Страница 89: ... ports None of the ports in a link aggregation can be configured as a mirror source port or a mirror target port All of the ports in a link aggregation have to be treated as a whole when moved from to added or deleted from a VLAN The Spanning Tree Protocol will treat all the ports in a link aggregation as a whole Enable the link aggregation prior to connecting any cable between the switches to avo...

Страница 90: ...ing fields Object Description Load Balance Algorithm Select load balance algorithm mode MAC Address The MAC address can be used to calculate the port for the frame IP MAC Address The IP and MAC address can be used to calculate the port for the frame Buttons Click to apply changes Figure 4 4 3 LAG Information Page Screenshot The page includes the following fields Object Description Load Balance Alg...

Страница 91: ...ist Name Indicates the per LAG name Type Indicates the trunk type Static Force aggregared selected ports to be a trunk group LACP LACP LAG negotiate Aggregated Port links with other LACP ports located on a different device If the other device ports are also LACP ports the devices establish a LAG between them Ports Select port number for this drop down list to esatablish Link Aggregation Figure 4 4...

Страница 92: ...4 4 6 Figure 4 4 7 appear Figure 4 4 6 LAG Port Setting Information Page Screenshot The page includes the following fields Object Description LAG Selet Select LAG number for this drop down list Enable Indicates the LAGt state operation Possible state are Enabled Start up the LAG manually Disabled Shutdown the LAG manually Speed Select any available link speed for the given switch port Draw the men...

Страница 93: ... determined by the result of the last Auto Negotiation Check the configured column to use flow control This setting is related to the setting for Configured Link Speed Buttons Click to apply changes Figure 4 4 7 LAG Port Status Page Screenshot The page includes the following fields Object Description LAG The LAG for the settings contained in the same row Description Display the current description...

Страница 94: ...ich is used to identify the active LACP The Managed Switch with the lowest value has the highest priority and is selected as the active LACP peer of the trunk group Buttons Click to apply changes Figure 4 4 9 LACP Information Page Screenshot The page includes the following fields Object Description System Priority Display the current system priority 4 4 5 LACP Port Setting This page is used to con...

Страница 95: ...LACP partner wants to form a larger group than is supported by this device then this parameter will control which ports will be active and which ports will be in a backup role Lower number means greater priority Timeout The Timeout controls the period between BPDU transmissions Short will transmit LACP packets each second while Long will wait for 30 seconds before sending a LACP packet Buttons Cli...

Страница 96: ...lays LAG status The LAG Status screens in Figure 4 4 12 Figure 4 4 13 appear Figure 4 4 12 LAG Status Page Screenshot The page includes the following fields Object Description LAG Display the current trunk entry Name Display the current LAG name Type Display the current trunk type Link State Display the current link state Active Member Display the current active member Standby Member Display the c...

Страница 97: ...achine status of the port INIT means the port is in initialize state PORTds means port disabled state EXPR means expired state LACPds means LACP disabled state DFLT means defaulted state CRRNT means current state PrdTx LACP periodic transmission state machine status of the port no PRD means the port is in no periodic state FstPRD means fast periodic state SlwPRD means slow periodic state PrdTX mea...

Страница 98: ...User s Manual of WGSW 28040 The contents could be true or false If the contents are false the web shows _ if the contents are true the web shows A T G S C D F and E for each content respectively 98 ...

Страница 99: ...that frequently communicate with each other are assigned to the same VLAN regardless of where they are physically on the network Logically a VLAN can be equated to a broadcast domain because broadcast packets are forwarded to only members of the VLAN on which the broadcast was initiated 1 No matter what basis is used to uniquely identify end nodes and assign these nodes VLAN membership packets can...

Страница 100: ...nd cleaner network environment An IEEE 802 1Q VLAN is a group of ports that can be located anywhere in the network but communicate as though they belong to the same physical segment VLANs help to simplify network management by allowing you to move devices to a new VLAN without having to change any physical connections VLANs can be easily organized to reflect departmental groups such as Marketing o...

Страница 101: ...LAN tag There are four additional octets inserted after the source MAC address Their presence is indicated by a value of 0x8100 in the Ether Type field When a packet s Ether Type field is equal to 0x8100 the packet carries the IEEE 802 1Q 802 1p tag The tag is contained in the following two octets and consists of 3 bits of user priority 1 bit of Canonical Format Identifier CFI used for encapsulati...

Страница 102: ...VID are different the switch will drop the packet Because of the existence of the PVID for untagged packets and the VID for tagged packets tag aware and tag unaware network devices can coexist on the same network A switch port can have only one PVID but can have as many VID as the switch has memory in its VLAN table to store them Because some devices on a network may be tag unaware a decision must...

Страница 103: ...identify the port broadcast domain of the frame Port Overlapping Port overlapping can be used to allow access to commonly shared network resources among different VLAN groups such as file servers or printers Note that if you implement VLANs which do not overlap but still need to communicate you can connect them by enabled routing on this switch Untagged VLANs Untagged or static VLANs are typically...

Страница 104: ...nt VLAN 4 5 4 Create VLAN Create delete VLAN on this page The screens in Figure 4 5 3 Figure 4 5 4 appear Figure 4 5 3 VLAN Setting Page Screenshot The page includes the following fields Object Description VLAN List Indicates the ID of this particular VLAN VLAN Action This column allowed users to add or delete VLAN s VLAN Name Prefix Indicates the name of this particular VLAN Buttons Click to appl...

Страница 105: ...Q compliant switch can be configured as tagged or untagged Tagged Ports with tagging enabled will put the VID number priority and other VLAN information into the header of all packets that flow into those ports If a packet has previously been tagged the port will not alter the packet thus keeping the VLAN information intact The VLAN information in the tag can then be used by other 802 1Q compliant...

Страница 106: ...mber of VLANs supported VLAN ranges required by different customers in the same service provider network might easily overlap and traffic passing through the infrastructure might be mixed Assigning a unique range of VLAN IDs to each customer would restrict customer configurations require intensive processing of VLAN mapping tables and could easily exceed the maximum VLAN limit of 4096 The Managed ...

Страница 107: ...runk means the port allows traffic of multiple VLAN Access indicates the port belongs to one VLAN only Hybrid means the port allows the traffic of multi VLANs to pass with tag or untag mode Tunnel configures IEEE 802 1Q tunneling for a downlink port to another device within the customer network PVID Allow assign PVID for selected port The PVID will be inserted into all untagged frames entering the...

Страница 108: ...k to apply changes Figure 4 5 6 Edit Interface Setting Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Interface VLAN Mode Display the current interface VLAN mode PVID Display the current PVID Accepted Frame Type Display the current access frame type Ingress Filtering Display the current ingress filtering Uplink Display the ...

Страница 109: ...Forbidden Interface is forbidden from automatically joining the VLAN via GVRP Excluded Interface is not a member of the VLAN Packets associated with this VLAN will not be transmitted by the interface Tagged Interface is a member of the VLAN All packets transmitted by the port will be tagged that is carry a tag and therefore carry VLAN or CoS information Membership Untagged Interface is a member of...

Страница 110: ... protocols cannot be easily grouped into a common VLAN This may require non standard devices to pass traffic between different VLANs in order to encompass all the devices participating in a specific protocol This kind of configuration deprives users of the basic benefits of VLANs including security and easy accessibility To avoid these problems you can configure this Managed Switch with protocol b...

Страница 111: ... 5 9 Add Protocol VLAN Group Page Screenshot The page includes the following fields Object Description Group ID Protocol Group ID assigned to the Special Protocol VLAN Group Frame Type Frame Type can have one of the following values Ethernet II IEEE802 3_LLC_Other RFC_1042 Note On changing the Frame type field valid value of the following text field will vary depending on the new frame type you se...

Страница 112: ... Group Name to a VLAN port for the switch The Protocol VLAN Port Setting State screens in Figure 4 5 11 Figure 4 5 12 appear Figure 4 5 11 Protocol VLAN Port Setting Page Screenshot The page includes the following fields Object Description Port Select port for this drop down list to assign protocol VLAN port Group Select group ID for this drop down list to protocol VLAN group VLAN VLAN ID assigned...

Страница 113: ...egistration Protocol GVRP defines a way for switches to exchange VLAN information in order to register VLAN members on ports across the network VLANs are dynamically configured based on join messages issued by host devices and propagated throughout the network GVRP must be enabled to permit automatic VLAN registration and to support VLANs which extend beyond the local switch The GVRP Global Settin...

Страница 114: ...han twice the join time This ensures that after a Leave or LeaveAll message has been issued the applicants can rejoin before the port actually leaves the group Range 45 32760 centiseconds Default 60 centiseconds LeaveAll Timeout The interval between sending out a LeaveAll query message for VLAN group participants and the port leaving the group This interval should be considerably larger than the L...

Страница 115: ...l Timeout Display the current leaveall timeout parameter 4 5 11 GVRP Port Setting The GVRP Port Setting Status screen in Figure 4 5 15 Figure 4 5 16 appear Figure 4 5 15 GVRP Global Setting Page Screenshot The page includes the following fields Object Description Port Select Select port for this drop down list to assign protocol VLAN port GVRP Enabled Controls whether GVRP is enabled or disabled o...

Страница 116: ... dynamically create VLANs on switches for trunking purposes By enabling GVRP dynamic VLAN creation a switch will add VLANs to its database when it receives GVRP join messages about VLANs it does not have Buttons Click to apply changes Figure 4 5 16 GVRP Port Status Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Enable Statu...

Страница 117: ...Display the current VLAN type 4 5 13 GVRP Statistics The GVRP Port Statistics and Error Statistics screens in Figure 4 5 18 Figure 4 5 19 appear Figure 4 5 18 GVRP Port Statistics Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Join Empty Rx Tx Display the current join empty TX RX packets Empty Rx Tx Display the current empt...

Страница 118: ...wing fields Object Description Port The switch port number of the logical port Invaild Protocol ID Display the current invalid protocol ID Invalid Attribute Type Display the current invalid attribute type Invalid Attribute Value Display the current invalid attribute value Invalid Attribute Length Display the current invalid attribute length Invalid Event Display the current invalid event Buttons C...

Страница 119: ...rk traffic so only members of the VLAN receive traffic from the same VLAN members The screen in Figure 4 5 20 appears and Table 4 5 2 describes the port configuration of the Managed Switches Figure 4 5 20 Two Separate VLAN Diagrams VLAN Group VID Untagged Members Tagged Members VLAN Group 1 1 Port 7 Port 8 N A VLAN Group 2 2 Port 1 Port 2 Port 3 VLAN Group 3 3 Port 4 Port 5 Port 6 Table 4 5 2 VLAN...

Страница 120: ...ceived the packet through Port 1 and Port 2 2 While the packet leaves Port 1 and Port 2 it will be stripped away it tag becoming an untagged packet Untagged packet entering VLAN 3 1 While PC 4 transmit an untagged packet enters Port 4 the switch will tag it with a VLAN Tag 3 PC 5 and PC 6 will received the packet through Port 5 and Port 6 2 While the packet leaves Port 5 it will be stripped away i...

Страница 121: ...nd Port 3 VLAN Mode Hybrid PVID 2 Port 4 Port 5 and Port 6 VLAN Mode Hybrid PVID 3 3 Assign Tagged Untagged for each port VLAN ID 2 Port 1 2 Untagged Port 3 Tagged Port 4 6 Excluded VLAN ID 3 Port 4 5 Untagged Port 6 Tagged Port 1 3 Excluded 121 ...

Страница 122: ...itch The most cases are used for Uplink to other switches VLANs are separated at different switches but they need to access with other switches within the same VLAN group The screen in Figure 4 5 21 appears Setup steps 1 Create VLAN Group 2 and 3 Add VLAN group 2 and group 3 122 ...

Страница 123: ...t 1 Port 2 and Port 3 VLAN Mode Hybrid PVID 2 Port 4 Port 5 and Port 6 VLAN Mode Hybrid PVID 3 Port 7 VLAN Mode Hybrid PVID 1 3 Assign Tagged Untagged for each port VLAN ID 1 Port 1 6 Untagged Port 7 Excluded VLAN ID 2 Port 1 2 Untagged Port 3 7 Tagged Port 4 6 Excluded 123 ...

Страница 124: ...User s Manual of WGSW 28040 VLAN ID 3 Port 4 5 Untagged Port 6 7 Tagged Port 1 3 Excluded 124 ...

Страница 125: ...a primary link failure is also accomplished automatically without operator intervention This automatic network reconfiguration provides maximum uptime to network users However the concepts of the Spanning Tree Algorithm and protocol are a complicated and complex subject and must be fully researched and understood It is possible to cause serious degradation of the performance of the network if the ...

Страница 126: ...gher speed links to a port that has a higher number than the current root port can cause a root port change STP Port States The BPDUs take some time to pass through a network This propagation delay can result in topology changes where a port that transitioned directly from a Blocking state to a Forwarding state could create temporary data loops Ports must wait for new network topology information ...

Страница 127: ... Operation Levels The Switch allows for two levels of operation the switch level and the port level The switch level forms a spanning tree consisting of links between one or more switches The port level constructs a spanning tree consisting of groups of one or more ports The STP operates in much the same way for both levels On the switch level STP calculates the Bridge Identifier for each switch a...

Страница 128: ...able STP parameters for the port or port group level Variable Description Default Value Port Priority A relative priority for each port lower numbers give a higher priority and a greater chance of a given port being elected as the root port 128 Port Cost A value used by STP to evaluate paths STP calculates path costs and selects the path with the minimum cost as the active path 200 000 100Mbps Fas...

Страница 129: ...obability the port will be chosen as the Root Port Port Cost A Port Cost can be set from 0 to 200000000 The lower the number the greater the probability the port will be chosen to forward packets 3 Illustration of STP A simple illustration of three switches connected in a loop is depicted in the below diagram In this example you can anticipate some major network problems if the STP assistance is n...

Страница 130: ...User s Manual of WGSW 28040 Figure 4 6 2 Before Applying the STA Rules In this example only the default STP values are used Figure 4 6 3 After Applying the STA Rules 130 ...

Страница 131: ...ting MST Instance Setting Configuration each MST instance settings MST Port Setting Configuration per port MST setting STP Statistics Display the STP statistics 4 6 2 STP Global Settings This page allows you to configure STP system settings The settings are used by all STP Bridge instances in the Switch The Managed Switch support the following Spanning Tree protocols Compatiable Spanning Tree Prot...

Страница 132: ... values should be assigned to ports attached to faster media and higher values assigned to ports with slower media Force Version The STP protocol version setting Valid values are STP Compatible RSTP Operation and MSTP Operation Configuration Name Identifier used to identify the configuration currently being used Configuration Revision Identifier used to identify the configuration currently being u...

Страница 133: ...ncludes the following fields Object Description Port Select Select port number for this drop down list External Cost 0 Auto Controls the path cost incurred by the port The Auto setting will set the path cost as appropriate by the physical link speed using the 802 1D recommended values Using the Specific setting a user defined value can be entered The path cost is used when establishing the active ...

Страница 134: ...manually re check the appropriate BPDU format RSTP or STP compatible to send on the selected interfaces Default Disabled Buttons Click to apply changes By default the system automatically detects the speed and duplex mode used on each port and configures the path cost according to the values shown below Path cost 0 is used to indicate auto configuration mode When the short path cost method is sele...

Страница 135: ...ath Costs Figure 4 6 7 STP Port Status Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical STP port Admin Enable Display the current STP port mode status External Cost Display the current external cost Edge Port Display the current edge port status BPDU Filter Display the current BPDU filter configuration BPDU Guard Display the curre...

Страница 136: ...idge Max Hops This defines the initial value of remaining Hops for MSTI information generated at the boundary of an MSTI region It defines how many bridges a root bridge can distribute its BPDU information Valid values are in the range 6 to 40 hops Forward Delay The delay used by STP Bridges to transition Root and Designated Ports to Forwarding used in STP compatible mode Valid values are in the r...

Страница 137: ...nter a value between 1 through 10 Buttons Click to apply changes Figure 4 6 9 CIST Instance Information Page Screenshot The page includes the following fields Object Description Priority Display the current CIST priority Max Hop Display the current Max hop Forward Delay Display the current forward delay Max Age Display the current Max age Tx Hold Count Display the current Tx hold count Hello Time ...

Страница 138: ...e used to control priority of ports having identical port cost See above Default 128 Range 0 240 in steps of 16 Internal Path Cost 0 Auto Controls the path cost incurred by the port The Auto setting will set the path cost as appropriate by the physical link speed using the 802 1D recommended values Using the Specific setting a user defined value can be entered The path cost is used when establishi...

Страница 139: ...nternal path cost oper Designated Root Bridge Display the current designated root bridge External Root Cost Display the current external root cost Regional Root Bridge Display the current regional root bridge Internal Root Cost Display the current internal root cost Designated Bridge Display the current designated bridge Internal Port Path Cost Display the current internal port path cost Edge Port...

Страница 140: ... VLAN list for special MSTI ID The range for the VLAN list is 1 4094 Priority Controls the bridge priority Lower numerical values have better priority The bridge priority plus the MSTI instance number concatenated with the 6 byte MAC address of the switch forms a Bridge Identifier Buttons Click to apply changes Figure 4 6 13 MSTI Instance Setting Information Page Screenshot The page includes the f...

Страница 141: ...y the current designated root bridge Internal Root Cost Display the current internal root cost Designated Bridge Display the current designated bridge Root Port Display the current root port Max Age Display the current max age Forward Delay Display the current forward delay Remaining Hops Display the current remaininging hops Last Topology Change Display the current last topology change 141 ...

Страница 142: ...rt Configuration Page Screenshot The page includes the following fields Object Description MST ID Enter the special MST ID to configure path cost priority Port Select Select port number for this drop down list Priority Controls the port priority This can be used to control priority of ports having identical port cost Internal Path Cost 0 Auto Controls the path cost incurred by the port The Auto se...

Страница 143: ...ay the current indentifier priority port ID Internal Path Cost Conf Oper Display the current internal path cost configuration operation Regional Root Bridge Display the current regional root bridget Internal Root Cost Display the current internal root cost Designated Bridge Display the current designated bridge Internal Path Cost Display the current internal path cost Port Role Display the current...

Страница 144: ...e switch port number of the logical STP port Configuration BPDUs Received Display the current configuration BPDUs received TCN BPDUs Received Display the current TCN BPDUs received MSTP BPDUs Received Display the current MSTP BPDUs received Configuration BPDUs Transmitted Display the configuration BPDUs transmitted TCN BPDUs Transmitted Display the current TCN BPDUs transmitted MSTP BPDUs Transmit...

Страница 145: ... throttling setting Multicast Filter Configures multicast filter 4 7 1 Properties This page provides multicast properties related configuration The multicast Properties and Information screen in Figure 4 7 1 Figure 4 7 2 appear Figure 4 7 1 Properties Setting Page Screenshot The page includes the following fields Object Description Unknow Multicast Action Unknown multicast traffic method Drop floo...

Страница 146: ...icast group About the Internet Group Management Protocol IGMP Snooping Computers and network devices that want to receive multicast transmissions need to inform nearby routers that they will become members of a multicast group The Internet Group Management Protocol IGMP is used to communicate this information IGMP is also used to periodically check the multicast group for members that are no longe...

Страница 147: ...User s Manual of WGSW 28040 Figure 4 7 3 Multicast Service Figure 4 7 4 Multicast Flooding 147 ...

Страница 148: ...cast routers to communicate when joining or leaving a multicast group IGMP version 1 is defined in RFC 1112 It has a fixed packet size and no optional data The format of an IGMP packet is shown below IGMP Message Format Octets 0 8 16 31 Type Response Time Checksum Group Address all zeros if this is a query The IGMP Type codes are shown below Type Meaning 0x11 Membership Query if Group Address is 0...

Страница 149: ... a leave report when it wants to leave a group for version 2 Multicast routers send IGMP queries to the all hosts group address 224 0 0 1 periodically to see whether any group members exist on their sub networks If there is no response from a particular group the router assumes that there are no group members on the network The Time to Live TTL field of query messages is set to 1 so that the queri...

Страница 150: ...g related configuration Most of the settings are global whereas the Router Port configuration is related to the current unit as reflected by the page header The IGMP Snooping Setting and Information screens in Figure 4 7 7 Figure 4 7 8 Figure 4 7 9 appear Figure 4 7 7 IGMP Snooping Page Screenshot The page includes the following fields Object Description IGMP Snooping Status Enable or disable the ...

Страница 151: ...ping Information Page Screenshot The page includes the following fields Object Description Entry No Display the current entry number VLAN ID Display the current VLAN ID IGMP Snooping Operation Status Display the current IGMP snooping operation status Router Ports Auto Learn Display the current router ports auto learning Query Robustness Display the current query robustness Query Interval sec Displ...

Страница 152: ...g screens in Figure 4 7 10 Figure 4 7 11 appear Figure 4 7 10 IGMP VLAN Setting Page Screenshot The page includes the following fields Object Description VLAN ID Select VLAN ID for this drop down list Querier State Enable or disable the querier state The default value is Disabled Querier Version Sets the querier version for compatibility with other devices on the network Version 2 or 3 Default 2 B...

Страница 153: ...ally configure a multicast service on the Managed Switch First add all the ports attached to participating hosts to a common VLAN and then assign the multicast service to that VLAN group Static multicast addresses are never aged out When a multicast address is assigned to an interface in a specific VLAN the corresponding traffic can only be forwarded to ports within that VLAN The IGMP Static Group...

Страница 154: ... Click to edit parameter 4 7 2 4 IGMP Group Table This page provides Multicast Database The IGMP Group Table screen in Figure 4 7 14 appears Figure 4 7 14 IGMP Group Table Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VID Group IP Address Display multicast IP address for a specific multicast service Member Port Display the current member port...

Страница 155: ...e IGMP Router Setting and Status screens in Figure 4 7 15 Figure 4 7 16 appear Figure 4 7 15 Add Router Port Page Screenshot The page includes the following fields Object Description VLAN ID Selects the VLAN to propagate all multicast traffic coming from the attached multicast router Type Sets the Router port type The types of Router port as below Static Forbid Static Ports Select Specify which po...

Страница 156: ... Forbidden Router Table screens in Figure 4 7 17 Figure 4 7 18 Figure 4 7 19 appear Figure 4 7 17 Dynamic Router Table Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Port Display the current dynamic router ports Expiry Time Sec Display the current expiry time Figure 4 7 18 Static Router Table Page Screenshot The page includes the follo...

Страница 157: ...The Forward All screen in Figure 4 7 20 appears Figure 4 7 20 Forward All Setting Page Screenshot The page includes the following fields Object Description VLAN ID Select VLAN ID for this drop down list to assign IGMP membership Port The switch port number of the logical port Select IGMP membership for each interface Forbidden Interface is forbidden from automatically joining the IGMP via MVR Memb...

Страница 158: ...IGMP Snooping Statics screen in Figure 4 7 20 appears Figure 4 7 20 Forward All Setting Page Screenshot The page includes the following fields Object Description Total RX Display current total RX Valid RX Display current valid RX Invalid RX Display current invalid RX Other RX Display current other RX Leave RX Display current leave RX Report RX Display current report RX General Query RX Display cur...

Страница 159: ... RX Leave TX Display current leave TX Report TX Display current report TX General Query TX Display current general query TX Special Group Query TX Display current special group query TX Special Group Source Query TX Display current special group source query TX Buttons Click to clear the IGMP Snooping Statistics Click to refresh the IGMP Snooping Statistics 159 ...

Страница 160: ...ng fields Object Description MLD Snooping Status Enable or disable the MLD snooping The default value is Disabled MLD Snooping Version Sets the MLD Snooping operation version Possible versions are v1 Set MLD Snooping supported MLD version 1 v2 Set MLD Snooping supported MLD version 2 MLD Snooping Report Suppression Limits the membership report traffic sent to multicast capable routers When you dis...

Страница 161: ...AN ID Display the current VLAN ID MLD Snooping Operation Status Display the current MLD snooping operation status Router Ports Auto Learn Display the current router ports auto learning Query Robustness Display the current query robustness Query Interval sec Display the current query interval Query Max Response Interval sec Display the current query max response interval Last Member Query conut Dis...

Страница 162: ...or this drop down list Group IP Address The IP address for a specific multicast service Member Ports Select port number for this drop down list Buttons Click to add IGMP router port entry Figure 4 7 25 MLD Static Groups Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Group IPv6 Address Display the current group IPv6 address Member Ports...

Страница 163: ...play the current life 4 7 4 4 MLD Router Setting Depending on your network connections MLD snooping may not always be able to locate the MLD querier Therefore if the MLD querier is a known multicast router switch connected over the network to an interface port or trunk on your Managed Switch you can manually configure the interface and a specified VLAN to join all the current multicast groups supp...

Страница 164: ...LD querier Forbid Port Select Specify which ports un act as router ports Buttons Click to add MLD router port entry Figure 4 7 28 Router Port Status Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Static Ports Display the current static ports Forbidden Ports Display the current forbidden ports Modify Click to edit parameter Click to del...

Страница 165: ...xpiry Time Sec Display the current expiry time Figure 4 7 30 Static Router Table Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Port Mask Display the current port mask Figure 4 7 31 Forbidden Router Table Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Port Mask Display the ...

Страница 166: ... membership Port The switch port number of the logical port Select MLD membership for each interface Forbidden Interface is forbidden from automatically joining the MLD via MVR None Interface is not a member of the VLAN Packets associated with this VLAN will not be transmitted by the interface Membership Static Interface is a member of the MLD Buttons Click to apply changes 4 7 5 MLD Snooping Stat...

Страница 167: ...nt invalid RX Other RX Display current other RX Leave RX Display current leave RX Report RX Display current report RX General Query RX Display current general query RX Special Group Query RX Display current special group query RX Special Group Source Query RX Display current special group source query RX Leave TX Display current leave TX Report TX Display current report TX General Query TX Display...

Страница 168: ...ial Group Query TX Display current special group query TX Special Group Source Query TX Display current special group source query TX Buttons Click to clear the MLD Snooping Statistics Click to refresh the MLD Snooping Statistics 168 ...

Страница 169: ...the multicast throttling number to limit the number of multicast groups an interface can join at the same time The MAX Group and Information screens in Figure 4 7 34 Figure 4 7 35 appear Figure 4 7 34 Max Groups and Action Setting Page Screenshot The page includes the following fields Object Description IP Type Select IPv4 or IPv6 for this drop down list Port Select Select port number for this dro...

Страница 170: ...roups that are permitted or denied on the port A multicast filter profile can contain one or more or a range of multicast addresses but only one profile can be assigned to a port When enabled multicast join reports received on the port are checked against the filter profile If a requested multicast group is permitted the multicast join report is forwarded as normal If a requested multicast group i...

Страница 171: ...ude in the profile Specify a multicast group range by entering a start IP address Group to Specifies multicast groups to include in the profile Specify a multicast group range by entering an end IP address Sets the access mode of the profile either permit or deny Permit Multicast join reports are processed when a multicast group falls within the controlled range Action Deny When the access mode is...

Страница 172: ... current action Modify Click to edit parameter Click to delete the MLD IGMP profile entry 4 7 7 2 IGMP Filter Setting The Filter Setting and Status screens in Figure 4 7 38 Figure 4 7 39 appear Figure 4 7 38 Filter Setting Page Screenshot The page includes the following fields Object Description Port Select Select port number for this drop down list Filter Profile ID Select filter profile ID for t...

Страница 173: ...isplay detail profile parameter Click to delete the IGMP filter profile entry 4 7 7 3 MLD Filter Setting The Filter Setting and Status screens in Figure 4 7 40 Figure 4 7 41 appear Figure 4 7 40 Filter Setting Page Screenshot The page includes the following fields Object Description Port Select Select port number for this drop down list Filter Profile ID Select filter profile ID for this drop down...

Страница 174: ...us Page Screenshot The page includes the following fields Object Description Port Display the current port Filter Profile ID Display the current filter profile ID Action Click to display detail profile parameter Click to delete the MLD filter profile entry 174 ...

Страница 175: ...pecific types of traffic and preserve performance as the amount of traffic grows Reduce the need to constantly add bandwidth to the network Manage network congestion To implement QoS on your network you need to carry out the following actions 1 Define a service level to determine the priority that will be applied to traffic 2 Apply a classifier to determine how the incoming traffic will be classif...

Страница 176: ...e Screenshot The page includes the following fields Object Description QoS Mode Enable or disable QoS mode Buttons Click to apply changes Figure 4 8 2 QoS Information Page Screenshot The page includes the following fields Object Description QoS Mode Display the current QoS mode 4 8 2 2 QoS Port Settings The QoS Port Settings and Status screen in Figure 4 8 2 Figure 4 8 3 appear 176 ...

Страница 177: ...S Remark DSCP Disable or enable remark DSCP Remark IP Precedence Disable or enable remark IP Precedence Buttons Click to apply changes Figure 4 8 3 QoS Port Status Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port CoS Value Display the current CoS value Remark CoS Display the current remark CoS Remark DSCP Display the current ...

Страница 178: ...e Display the current queue ID Strict Priority Controls whether the scheduler mode is Strict Priority on this switch port WRR Controls whether the scheduler mode is Weighted on this switch port Weight Controls the weight for this queue This value is restricted to 1 100 This parameter is only shown if Scheduler Mode is set to Weighted of WRR Bandwidth Display the current bandwith for each queue But...

Страница 179: ...isplay the current queue vlaue information 4 8 2 4 CoS Mapping The CoS to Queue and Queue to CoS Mapping screens in Figure 4 8 6 Figure 4 8 7 appear Figure 4 8 6 CoS to Queue and Queue to CoS Mapping Page Screenshot The page includes the following fields Object Description Queue Select Queue value for this drop down list Class of Service Select CoS value for this drop down list Buttons Click to ap...

Страница 180: ... Object Description CoS Display the current CoS value Mapping to Queue Display the current mapping to queue Queue Display the current queue value Mapping to CoS Display the current mapping to CoS 4 8 2 5 DSCP Mapping The DSCP to Queue and Queue to DSCP Mapping screens in Figure 4 8 8 Figure 4 8 9 appear 180 ...

Страница 181: ...e to DSCP Mapping Page Screenshot The page includes the following fields Object Description Queue Select Queue value for this drop down list DSCP Select DSCP value for this drop down list Buttons Click to apply changes Figure 4 8 9 DSCP Mapping Page Screenshot 181 ...

Страница 182: ... mapping to DSCP 4 8 2 6 IP Precedence Mapping The IP Precedence to Queue and Queue to IP Precedence Mapping screens in Figure 4 8 10 Figure 4 8 11 appear Figure 4 8 10 IP Precedence to Queue and Queue to IP Precedence Mapping Page Screenshot The page includes the following fields Object Description Queue Select Queue value for this drop down list IP Precedence Select IP Precedence value for this ...

Страница 183: ...CoS value Mapping to Queue Display the current mapping to queue Queue Display the current queue value Mapping to IP Precedence Display the current mapping to IP Precedence 4 8 3 QoS Basic Mode 4 8 3 1 Global Settings The Basic Mode Global Settings and QoS Information screen in Figure 4 8 12 Figure 4 8 13 appear Figure 4 8 12 Basic Mode Global Settings Page Screenshot 183 ...

Страница 184: ...e includes the following fields Object Description Trust Mode Display the current QoS mode 4 8 3 2 Port Settings The QoS Port Setting and Status screen in Figure 4 8 14 Figure 4 8 15 appear Figure 4 8 14 Basic Mode Global Settings Page Screenshot The page includes the following fields Object Description Port Select port number for this drop down list Trust Mode Enable or disable the trust mode 184...

Страница 185: ...logical port Trust Mode Display the current trust type 4 8 4 Rate Limit Configure the switch port rate limit for the switch port on this page 4 8 4 1 Ingress Bandwidth Control This page provides to select the ingress bandwidth preamble The Ingress Bandwidth Control Setting and Status screens in Figure 4 8 16 Figure 4 8 17 appear Figure 4 8 16 Ingress Bandwidth Control Settings Page Screenshot 185 ...

Страница 186: ...alid values are in the range 0 to 1000000 Buttons Click to apply changes Figure 4 8 17 Ingress Bandwidth Control Status Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Ingress Rate Limit Kbps Display the current ingress rate limit 4 8 4 2 Egress Bandwidth Control This page provides to select the egress bandwidth preamble The...

Страница 187: ... rate policer The default value is Disabled Rate Kbps Configure the rate for the port policer The default value is unlimited Valid values are in the range 0 to 1000000 Buttons Click to apply changes Figure 4 8 19 Egress Bandwidth Control Status Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Egress Rate Limit Kbps Display th...

Страница 188: ... this drop down list Queue Select queue number for this drop down list State Enable or disable the port rate policer The default value is Disabled CIR Kbps Configure the CIR for the port policer The default value is unlimited Valid values are in the range 0 to 1000000 Buttons Click to apply changes Figure 4 8 21 Egress Queue Status Page Screenshot The page includes the following fields Object Desc...

Страница 189: ...Voice VLAN when relocated physically The greatest advantage of the VLAN is the equipment can be automatically placed into Voice VLAN according to its voice traffic which will be transmitted at specified priority Meanwhile when voice equipment is physically relocated it still belongs to the Voice VLAN without any further configuration modification which is because it is based on voice equipment oth...

Страница 190: ...isable Voice VLAN mode operation Voice VLAN ID Indicates the Voice VLAN ID It should be a unique VLAN ID in the system and cannot equal each port PVID It is conflict configuration if the value equal management VID MVR VID PVID etc The allowed range is 1 to 4095 Remark CoS 802 1p Select 802 1p value for this drop down list 1p remark Enable or disable 802 1p remark Aging Time 30 65536 min The time a...

Страница 191: ...current 1p remark Aging Display the current aging time 4 8 5 3 Telephony OUI MAC Setting Configure VOICE VLAN OUI table on this Page The Telephony OUI MAC Setting screens in Figure 4 8 24 Figure 4 8 25 appear Figure 4 8 24 Voice VLAN OUI Settings Page Screenshot The page includes the following fields Object Description OUI Address A telephony OUI address is a globally unique identifier assigned to...

Страница 192: ...t voice VLAN OUI group parameter Click to delete voice VLAN OUI group parameter 4 8 5 4 Telephony OUI Port Setting The Voice VLAN feature enables voice traffic forwarding on the Voice VLAN then the switch can classify and schedule network traffic It is recommended that there be two VLANs on a port one for voice one for data Before connecting the IP device to the switch the IP phone should configur...

Страница 193: ...Enable or disable the voice VLAN port setting The default value is Disabled CoS Mode Select the CoS mode that depend on all or sorce Buttons Click to apply changes Figure 4 8 27 Voice VLAN Port State Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port State Display the current state CoS Mode Display the current CoS mode 193 ...

Страница 194: ...AP PDUs together with other attributes like the switch s IP address name and the supplicant s port number on the switch EAP is very flexible in that it allows for different authentication methods like MD5 Challenge PEAP and TLS The important thing is that the authenticator the switch doesn t need to know which authentication method the supplicant and the authentication server are using or how many...

Страница 195: ...er authenticates each client connected to a switch port before making available any services offered by the switch or the LAN Until the client is authenticated 802 1X access control allows only Extensible Authentication Protocol over LAN EAPOL traffic through the port to which the client is connected After authentication is successful normal traffic can pass through the port This section includes ...

Страница 196: ...hernet header is stripped and the remaining EAP frame is re encapsulated in the RADIUS format The EAP frames are not modified or examined during encapsulation and the authentication server must support EAP within the native frame format When the switch receives frames from the authentication server the server s frame header is removed leaving the EAP frame which is then encapsulated for Ethernet a...

Страница 197: ... network In contrast when an 802 1X enabled client connects to a port that is not running the 802 1X protocol the client initiates the authentication process by sending the EAPOL start frame When no response is received the client sends the request for a fixed number of times Because no response is received the client begins sending frames as if the port is in the authorized state If the client is...

Страница 198: ...y 802 1X Access Control 802 1X Setting page The IEEE802 1X standard defines port based operation but non standard variants overcome security limitations as shall be explored below The 802 1X Setting and Information screens in Figure 4 9 3 Figure 4 9 4 appear Figure 4 9 3 802 1X Setting Page Screenshot The page includes the following fields Object Description 802 1X Indicates if NAS is globally ena...

Страница 199: ...lable No Authentication Authentication Force Authorized In this mode the switch will send one EAPOL Success frame when the port link comes up and any client on the port will be allowed network access without authentication Force Unauthorized In this mode the switch will send one EAPOL Failure frame when the port link comes up and any client on the port will be disallowed network access Reauthentic...

Страница 200: ...d Sets the interval for the supplicant to re transmit EAP request identify frame Maximun Request Retries The number of times that the switch transmits an EAPOL Request Identity frame without response before considering entering the Guest VLAN is adjusted with this setting The value can only be changed if the Guest VLAN option is globally enabled Buttons Click to apply changes Figure 4 9 6 802 1X P...

Страница 201: ... the Guest VLAN If disabled the switch will first check its history to see if an EAPOL frame has previously been received on the port this history is cleared if the port link goes down or the port s Admin State is changed and if not the port will be placed in the Guest VLAN Otherwise it will not move to the Guest VLAN but continue transmitting EAPOL Request Identity frames at the rate given by EAP...

Страница 202: ...tor defined timeout The switch follows a set of rules for entering and leaving the Guest VLAN as listed below The Guest VLAN Enabled checkbox provides a quick way to globally enable disable Guest VLAN functionality When checked the individual ports ditto setting determines whether the port can be moved into Guest VLAN When unchecked the ability to move to the Guest VLAN is disabled for all ports G...

Страница 203: ... current guest VLAN 4 9 1 5 Authenticed Host The Authenticated Host Table screen in Figure 4 9 9 appears Figure 4 9 9 Authenticated Host Table Page Screenshot The page includes the following fields Object Description User Name Display the current user name Port Display the current port number Session Time Display the current session time Authentication Method Display the current authentication met...

Страница 204: ...DIUS request is retransmitted to a server that is not responding If the server has not responded after the last retransmit it is considered to be dead Dead Time The Dead Time which can be set to a number between 0 and 3600 seconds is the period during which the switch will not send new requests to a server that has failed to respond to a previous request This will stop the switch from continually ...

Страница 205: ...thentication Server and the switch Timeout for Reply The Timeout which can be set to a number between 1 and 30 seconds is the maximum time to wait for a reply from a server If the server does not reply within this timeframe we will consider it to be dead and continue with the next enabled server if any RADIUS servers are using the UDP protocol which is unreliable by design In order to cope with lo...

Страница 206: ... configured Usage Type Set the usage type The following modes are available Login 802 1X All Buttons Click to add Radius server setting Figure 4 9 12 Login Authentication List Page Screenshot The page includes the following fields Object Description IP Address Display the current IP address Auth Port Display the current auth port Acct Port Display the current acct port Key Display the current key ...

Страница 207: ...wing fields Object Description Key String The secret key up to 63 characters long shared between the TACACS server and the switch Timeout for Reply Retransmit is the number of times in the range 1 to 30 a TACACS request is retransmitted to a server that is not responding If the server has not responded after the last retransmit it is considered to be dead Buttons Click to apply changes Figure 4 9 ...

Страница 208: ... for a reply from the server before it resends the request Server Priority Set the server priority Buttons Click to add Radius server setting Figure 4 9 15 Login Authentication List Page Screenshot The page includes the following fields Object Description IP Address Display the current IP address Port Display the current port Key Display the current key Timeout Display the current timeout Retries ...

Страница 209: ... users that access the network through the Managed Switch Accounting for users that access management interfaces on the Managed Switch through the console and Telnet Accounting for commands that users enter at specific CLI privilege levels Authorization of users that access management interfaces on the Managed Switch through the console and Telnet To configure AAA on the Managed Switch you need to...

Страница 210: ...login authentication method Empty None Local TACACS RADIUS Enable Buttons Click to add authentication list Figure 4 9 18 Login Authentication List Screenshot The page includes the following fields Object Description List Name Display the current list name Method List Display the current method list Modify Click to edit login authentication list parameter Click to delete login authentication list e...

Страница 211: ...Name Defines a name for the authentication list Method 1 3 Set the login authentication method Empty None Enable TACACS RADIUS Buttons Click to add authentication list Figure 4 9 20 Login Authentication List Screenshot The page includes the following fields Object Description List Name Display the current list name Method List Display the current method list Modify Click to edit login authenticati...

Страница 212: ...creenshot The page includes the following fields Object Description Telnet Service Disable or enable telnet service Login Authentication List Select login authentication list for this drop down list Enable Authentication List Select enable authentication list for this drop down list Session Timeout Set the session timeout value Password Retry Count Set the password retry count value Silent Time Se...

Страница 213: ... SSH on this Page This Page shows the Port Security status Port Security is a module with no direct configuration Configuration comes indirectly from other modules the user modules When a user module has enabled port security on a port the port is set up for software based learning In this mode frames from unknown MAC addresses are passed on to the port security module which in turn asks all user ...

Страница 214: ...lect login authentication list for this drop down list Enable Authentication List Select enable authentication list for this drop down list Session Timeout Set the session timeout value Password Retry Count Set the password retry count value Silent Time Set the silent time value Buttons Click to apply changes Click to disconnect telnet communication Figure 4 9 24 SSH Information Page Screenshot 21...

Страница 215: ...Display the current password retry count Silent Time Display the current silent time Current SSH Session Count Display the current SSH session count 4 9 5 3 HTTP The HTTP Settings and Information screens in Figure 4 9 25 Figure 4 9 26 appear Figure 4 9 25 HTTP Settings Page Screenshot The page includes the following fields Object Description HTTP Service Disable or enable HTTP service Login Authen...

Страница 216: ...sion Timeout Display the current session timeout 4 9 5 4 HTTPs The HTTPs Settings and Information screen in Figure 4 9 27 Figure 4 9 28 appear Figure 4 9 27 HTTPs Settings Page Screenshot The page includes the following fields Object Description HTTPs Service Disable or enable HTTPs service Login Authentication List Select login authentication list for this drop down list Session Timeout Set the s...

Страница 217: ...list Session Timeout Display the current session timeout 4 9 6 Management Access Method 4 9 6 1 Profile Rules The Profile Rule Table Setting and Table screens in Figure 4 9 29 Figure 4 9 30 appear Figure 4 9 29 Profile Rule Table Setting Page Screenshot The page includes the following fields Object Description Access Profile Name 1 32 charaters Indicates the access profile name Priority 1 65535 Se...

Страница 218: ...ck to apply changes Figure 4 9 30 Profile Rule Table Page Screenshot The page includes the following fields Object Description Access Profile Name Display the current access profile name Priority Display the current priority Management Method Display the current management method Action Display the current action Port Display the current port list Source IPv4 Display the current source IPv4 addres...

Страница 219: ...t The page includes the following fields Object Description Access Profile Select access profile for this drop down list Buttons Click to apply changes Figure 4 9 32 Access Profile Table Page Screenshot The page includes the following fields Object Description Access Profile Display the current access profile Delete Click to delete access profile entry 219 ...

Страница 220: ...oping is used to filter DHCP messages received on a non secure interface from outside the network or firewall When DHCP snooping is enabled globally and enabled on a VLAN interface DHCP messages received on an untrusted interface from a device not listed in the DHCP snooping table will be dropped Table entries are only learned for trusted interfaces An entry is added or removed dynamically to the ...

Страница 221: ...CP packet is not a recognizable type it is dropped If a DHCP packet from a client passes the filtering criteria above it will only be forwarded to trusted ports in the same VLAN If a DHCP packet is from server is received on a trusted port it will be forwarded to both trusted and untrusted ports in the same VLAN If the DHCP snooping is globally disabled all dynamic bindings are removed from the bi...

Страница 222: ...ect Description DHCP Snooping Display the current DHCP snooping status 4 9 7 3 VLAN Setting Command Usage When DHCP snooping is enabled globally on the switch and enabled on the specified VLAN DHCP packet filtering will be performed on any untrusted ports within the VLAN When the DHCP snooping is globally disabled DHCP snooping can still be configured for specific VLANs but the changes will not ta...

Страница 223: ... Enable DHCP snooping mode operation When enable DHCP snooping mode operation the request DHCP messages will be forwarded to trusted ports and only allowed reply packets from trusted ports Disabled Disable DHCP snooping mode operation Buttons Click to apply changes Figure 4 9 36 DHCP Snooping VLAN Setting Page Screenshot The page includes the following fields Object Description VLAN List Display t...

Страница 224: ...s port are removed Set all ports connected to DHCP servers within the local network or firewall to trusted state Set all other ports outside the local network or firewall to untrusted state The DHCP Snooping Port Setting screen in Figure 4 9 37 Figure 4 9 38 appears Figure 4 9 37 DHCP Snooping Port Setting Page Screenshot The page includes the following fields Object Description Port Select port f...

Страница 225: ...tch port number of the logical port Type Display the current type Chaddr Check Display the current chaddr check 4 9 7 5 Statistics The DHCP Snooping Statistics screen in Figure 4 9 39 appears Figure 4 9 39 DHCP Snooping Statistics Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port 225 ...

Страница 226: ...the checksum value To keep the bindings when the switch reloads you must use the DHCP snooping database agent If the agent is disabled dynamic ARP or IP source guard is enabled and the DHCP snooping binding database has dynamic bindings the switch loses its connectivity If the agent is disabled and only DHCP snooping is enabled the switch does not lose its connectivity but DHCP snooping might not ...

Страница 227: ...te Delay Specify the duration for which the transfer should be delayed after the binding database changes The range is from 15 to 86400 seconds The default is 300 seconds 5 minutes Timeout Specify when to stop the database transfer process after the binding database changes The range is from 0 to 86400 Use 0 for an infinite duration The default is 300 seconds 5 minutes Buttons Click to apply chang...

Страница 228: ...ng DHCP snooping the switch will monitor all the DHCP messages and implement software transmission The DHCP Rate Limit Setting and Config screens in Figure 4 9 42 Figure 4 9 43 appear Figure 4 9 42 DHCP Rate Limit Setting Page Screenshot The page includes the following fields Object Description Port Select port for this drop down list State Set default or user define Rate Limit pps Configure the r...

Страница 229: ...lient DHCP packets to a DHCP server and remove the specific information from a DHCP reply packets when forwarding server DHCP packets to a DHCP client The DHCP server can use this information to implement IP address or other assignment policies Specifically the option works by setting two sub options Circuit ID option 1 Remote ID option2 The Circuit ID sub option is supposed to include information...

Страница 230: ...es the following fields Object Description Option82 Remote ID Display the current option82 remite ID 4 9 7 9 Option82 Port Setting This function is used to set the retransmitting policy of the system for the received DHCP request message which contains option82 The drop mode means that if the message has option82 then the system will drop it without processing keep mode means that the system will ...

Страница 231: ...ption82 function on port Allow Untrusted Select modes for this drop down list The following modes are available Drop Keep Replace Buttons Click to apply changes Figure 4 9 47 Option82 Global Setting Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Enable Display the current status Allow Untrusted Display the current untrusted...

Страница 232: ...eenshot The page includes the following fields Object Description Port Select port for this drop down list VLAN Indicates the ID of this particular VLAN Circuit ID Set the option1 Circuit ID content of option 82 added by DHCP request packets Buttons Click to apply changes Figure 4 9 49 Option82 Port Circuit ID Setting Page Screenshot The page includes the following fields Object Description Port D...

Страница 233: ...ion related configuration A Dynamic ARP prevents the untrust ARP packets based on the DHCP Snooping Database 4 9 8 1 Global Setting DAI Setting and Information screens in Figure 4 9 50 Figure 4 9 51 appear Figure 4 9 50 DAI Setting Page Screenshot The page includes the following fields Object Description DAI Enable the Global Dynamic ARP Inspection or disable the Global ARP Inspection Buttons Clic...

Страница 234: ... following fields Object Description VLAN ID Indicates the ID of this particular VLAN Status Enables Dynamic ARP Inspection on the specified VLAN Options Enable Disable Buttons Click to apply changes Figure 4 9 53 DAI VLAN Setting Page Screenshot The page includes the following fields Object Description VLAN List Display the current VLAN list Status Display the current status 234 ...

Страница 235: ...s in the Ethernet header against the sender MAC address in the ARP body This check is performed on both ARP requests and responses When enabled packets with different MAC addresses are classified as invalid and are dropped Dst Mac Chk Enable or disable to checks the destination MAC address in the Ethernet header against the target MAC address in ARP body This check is performed for ARP responses W...

Страница 236: ...urrent port type Src Mac Chk Display the current Src Mac Chk status Dst Mac Chk Display the current Dst Mac Chk status IP Chk Display the current IP Chk status IP Allow Zero Display the current IP allow zero status 4 9 8 4 Statistics Configures switch ports as DAI trusted or untrusted and check mode DAI Port Setting screen in Figure 4 9 56 appears Figure 4 9 56 DAI Port Setting Page Screenshot 236...

Страница 237: ...Failures Display the current DIP Validation failures IP MAC Mismatch Failures Display the current IP MAC mismatch dailures Buttons Click to clear the statistics Click to refresh the statistics 4 9 8 5 Rate Limit The ARP Rate Limit Setting and Config screens in Figure 4 9 57 Figure 4 9 58 appear Figure 4 9 57 ARP Rate Limit Setting Page Screenshot The page includes the following fields Object Descr...

Страница 238: ...based on the DHCP Snooping Table or manually configured IP Source Bindings It helps prevent IP spoofing attacks when a host tries to spoof and use the IP address of another host After receiving a packet the port looks up the key attributes including IP address MAC address and VLAN tag of the packet in the binding entries of the IP source guard If there is a matching entry the port will forward the...

Страница 239: ... IP Source Bindings It helps prevent IP spoofing attacks when a host tries to spoof and use the IP address of another host The IP Source Guard Port Setting and Information screens in Figure 4 9 60 Figure 4 9 61 appear Figure 4 9 60 IP Source Guard Port Setting Page Screenshot The page includes the following fields Object Description Port Select port for this drop down list Status Enable or disable...

Страница 240: ...inding Entry The maximum number of IP source guard that can be secured on this port Buttons Click to apply changes Figure 4 9 61 IP Source Guard Port Setting Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Status Display the current status Verify Source Display the current verify source Max Binding Entry Display the current ...

Страница 241: ...ss Source IP address is allowed Buttons Click to add authentication list Figure 4 9 63 IP Source Guard Binding Table Status Page Screenshot The page includes the following fields Object Description Port Display the current port VLAN ID Display the current VLAN MAC Address Display the current MAC address IP Address Display the current IP Address Type Display the current entry type Lease Time Displa...

Страница 242: ...Port Security Setting Page Screenshot The page includes the following fields Object Description Port Select port for this drop down list Security Enable or disable the port security Mac L2 Entry The maximum number of MAC addresses that can be secured on this port If the limit is exceeded the corresponding action is taken The switch is born with a total number of MAC addresses from which all ports ...

Страница 243: ...ber of the logical port Enable State Display the current per port security status L2 Entry Num Display the current L2 entry number Action Display the current aciotn 4 9 11 DoS The DoS is short for Denial of Service which is a simple but effective destructive attack on the internet The server under DoS attack will drop normal user data packet due to non stop processing the attacker s data packet le...

Страница 244: ...ce of the switch 4 9 11 1 Global DoS Setting The Global DoS Setting and Information screens in Figure 4 9 66 Figure 4 9 67 appear Figure 4 9 66 Global DoS Setting Page Screenshot The page includes the following fields Object Description DMAC SMAC Enable or disable DoS check mode by DMAC SMAC Land Enable or disable DoS check mode by land 244 ...

Страница 245: ...ize Ping Max Size Setting Set the max size for ping Smurf Attack Enable or disable DoS check mode by smurf attack TCP Min Hdr Size Enable or disable DoS check mode by TCP min hdr size TCP SYN SPORT 1024 Enable or disable DoS check mode by TCP syn sport 1024 Null Scan Attack Enable or disable DoS check mode by null scan attack X Mas Scan Attack Enable or disable DoS check mode by x mas scan attack ...

Страница 246: ...rrent ICMP fragment status IPv4 Ping Max Size Display the current IPv4 ping max size status IPv6 Ping Max Size Display the current IPv6 ping max size status Smurf Attack Display the current smurf attack status TCP Min Header Length Display the current TCP min header length TCP SYN SPORT 1024 Display the current TCP syn status Null Scan Attack Display the current null scan attack status X Mas Scan ...

Страница 247: ...ncludes the following fields Object Description Port Select Select port for this drop down list DoS Protection Enable or disable per port DoS protection Buttons Click to apply changes Figure 4 9 68 Port Security Setting Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port DoS Protection Display the current DoS protection 247 ...

Страница 248: ...al Setting and Information screens in Figure 4 9 69 Figure 4 9 70 appear Figure 4 9 69 Storm Control Global Setting Page Screenshot The page includes the following fields Object Description Unit Controls the unit of measure for the storm control rate as pps or bps The default value is bps Preamble IFG Set the excluded or included interframe gap Buttons Click to apply changes Figure 4 9 70 Storm Co...

Страница 249: ...n Figure 4 9 71 Figure 4 9 72 appear Figure 4 9 71 Storm Control Setting Page Screenshot The page includes the following fields Object Description Port Select port for this drop down list Port State Enable or disable the storm control status for the given storm type Action Configures the action performed when storm control is over rate on a port Valid values are Shutdown or Drop Type Enable The se...

Страница 250: ...e switch port number of the logical port Port State Display the current port state Broadcast Kbps pps Display the current brocast storm control rate Unknown Multicast Kbps pps Display the current unknown multicast storm control rate Unknown Unicast Kbps pps Display the current unknown unicast storm control rate Action Display the current action 250 ...

Страница 251: ...articular ACE ID There are three ACE frame types Ethernet Type ARP and IPv4 and two ACE actions permit and deny The ACE also contains many detailed different parameter options that are available for individual application The ACL page contains links to the following main topics MAC based ACL Configuration MAC based ACL setting MAC based ACE Add Edit Delete the MAC based ACE Access Control Entry se...

Страница 252: ... The page includes the following fields Object Description Delete Click to delete ACL name entry 4 10 2 MAC based ACE An ACE consists of several parameters Different parameter options are displayed depending on the frame type that you selected The MAC based ACE screen in Figure 4 10 3 Figure 4 10 4 appears 252 ...

Страница 253: ...Frames matching the ACE are dropped Shutdown Port shutdown is disabled for the ACE DA MAC Specify the destination MAC filter for this ACE Any No DA MAC filter is specified User Defined If you want to filter a specific destination MAC address with this ACE choose this value A field for entering a DA MAC value appears DA MAC Value When User Defined is selected for the DA MAC filter you can enter a s...

Страница 254: ... hits this ACE matches this SA MAC value SA MAC Mask Specify whether frames can hit the action according to their sender hardware address field SHA settings 0 ARP frames where SHA is not equal to the SA MAC address 1 ARP frames where SHA is equal to the SA MAC address VLAN ID Indicates the ID of this particular VLAN 802 1p Include or exclude the 802 1p value 802 1p Value Set the 802 1p value 802 1...

Страница 255: ...2 1p value 802 1p Mask Display the current 802 1p mask Ethertype Display the current Ethernet type Modify Click to edit MAC based ACL parameter Click to delete MAC based ACL entry 4 10 3 IPv4 based ACL This page shows the ACL status by different ACL users Each row describes the ACE that is defined It is a conflict if a specific ACE is not applied to the hardware due to hardware limitations IPv4 ba...

Страница 256: ... following fields Object Description Delete Click to delete ACL name entry 4 10 4 IPv4 based ACE An ACE consists of several parameters Different parameter options are displayed depending on the frame type that you selected The IPv4 based ACE screens in Figure 4 10 7 Figure 4 10 8 appear 256 ...

Страница 257: ...User s Manual of WGSW 28040 Figure 4 10 7 IP based ACE Page Screenshot 257 ...

Страница 258: ...ic source IP address The legal format is xxx xxx xxx xxx A frame that hits this ACE matches this source IP address value Source IP Wildcard Mask When User Defined is selected for the source IP filter you can enter a specific SIP mask in dotted decimal notation Destination IP Address Specify the Destination IP address filter for this ACE Any No destination IP address filter is specified User Define...

Страница 259: ...r entering a destination port value appears UGR Specify the TCP Urgent Pointer field significant URG value for this ACE Set TCP frames where the URG field is set must be able to match this entry Unset TCP frames where the URG field is set must not be able to match this entry Don t Care Any value is allowed don t care ACK Specify the TCP Acknowledgment field significant ACK value for this ACE Set T...

Страница 260: ...s this ACE matches this DSCP value IP Recedence If you want to filter a specific IP recedence with this ACE you can enter a specific IP recedence value A field for entering an IP recedence value appears The allowed range is 0 to 7 A frame that hits this ACE matches this IP recedence value ICMP Specify the ICMP for this ACE Any No specifc ICMP is specified destination port status is don t care List...

Страница 261: ...y the current source IP address wildcard mask Destination IP Address Display the current destination IP address Destination IP Address Wildcard Mask Display the current destination IP address wildcard mask Source Port Range Display the current source port range Destiantion Port Range Display the current destination port range Flag Set Display the current flag set DSCP Display the current DSCP IP P...

Страница 262: ...v6 based ACL Page Screenshot The page includes the following fields Object Description ACL Name Create a named IPv6 based ACL list Buttons Click to add ACL name list Figure 4 10 10 ACL Table Page Screenshot The page includes the following fields Object Description Delete Click to delete ACL name entry 4 10 6 IPv6 based ACE An ACE consists of several parameters Different parameter options are displ...

Страница 263: ...User s Manual of WGSW 28040 Figure 4 10 11 IP based ACE Page Screenshot The page includes the following fields 263 ...

Страница 264: ...hen User Defined is selected for the source IP filter you can enter a specific SIP prefix length in dotted decimal notation Destination IP Address Specify the Destination IP address filter for this ACE Any No destination IP address filter is specified User Defined If you want to filter a specific destination IP address with this ACE choose this value A field for entering a source IP address value ...

Страница 265: ... this ACE Set TCP frames where the URG field is set must be able to match this entry Unset TCP frames where the URG field is set must not be able to match this entry Don t Care Any value is allowed don t care ACK Specify the TCP Acknowledgment field significant ACK value for this ACE Set TCP frames where the ACK field is set must be able to match this entry Unset TCP frames where the ACK field is ...

Страница 266: ...a specific IP recedence with this ACE you can enter a specific IP recedence value A field for entering a IP recedence value appears The allowed range is 0 to 7 A frame that hits this ACE matches this IP recedence value ICMP Specify the ICMP for this ACE Any No specifc ICMP is specified destination port status is don t care List If you want to filter a specific list with this ACE you can select a s...

Страница 267: ...source IP address wildcard mask Destination IP Address Display the current destination IP address Destination IP Address Wildcard Mask Display the current destination IP address wildcard mask Source Port Range Display the current source port range Destination Port Range Display the current destination port range Flag Set Display the current flag set DSCP Display the current DSCP IP Precedence Disp...

Страница 268: ... Bibding Port Select port for this drop down list ACL Select Select ACL list for this drop down list Buttons Click to apply changes Figure 4 10 14 ACL Binding Table Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port MAC ACL Display the current MAC ACL IPv4 ACL Display the current IPv4 ACL IPv6 ACL Display the current IPv6 ACL M...

Страница 269: ...ment sending the frame The SMAC address is used by the switch to automatically update the MAC table with these dynamic MAC addresses Dynamic entries are removed from the MAC table if no frame with the corresponding SMAC address have been seen after a configurable age time 4 11 1 Static MAC Setting The static entries in the MAC table are shown in this table The MAC table is sorted first by VLAN ID ...

Страница 270: ...static MAC status entry 4 11 2 MAC Filtering By filtering MAC address the switch can easily filter the per configured MAC address and reduce the un safety The Static MAC Setting screens in Figure 4 11 3 Figure 4 11 4 appear Figure 4 11 3 MAC Filtering Setting Page Screenshot The page includes the following fields Object Description MAC Address Physical address associated with this interface VLAN 1...

Страница 271: ...e static MAC status entry 4 11 3 Dynamic Address Setting By default dynamic entries are removed from the MAC table after 300 seconds The Dynamic Address Setting Status screens in Figure 4 11 5 Figure 4 11 6 appear Figure 4 11 5 Dynamic Addresses Setting Page Screenshot The page includes the following fields Object Description Aging Time The time after which a learned entry is discarded Range 10 63...

Страница 272: ...s sorted first by VLAN ID then by MAC address The Dynamic Learned screens in Figure 4 11 6 Figure 4 11 7 appear Figure 4 11 6 Dynamic Learned Page Screenshot The page includes the following fields Object Description Port Select port for this drop down list VLAN Select VLAN for this drop down list MAC Address Physical address associated with this interface Buttons Refreshes the displayed table star...

Страница 273: ...creenshot Object Description MAC Address The MAC address of the entry VLAN The VLAN ID of the entry Type Indicates whether the entry is a static or dynamic entry Port The ports that are members of the entry Buttons Click to add dynamic MAC address to static MAC address 273 ...

Страница 274: ...int Discovery LLDP MED is an extension of LLDP intended for managing endpoint devices such as Voice over IP phones and network switches The LLDP MED TLVs advertise information such as network policy power inventory and device location details LLDP and LLDP MED information can be used by SNMP applications to simplify troubleshooting enhance network management and maintain an accurate network topolo...

Страница 275: ...a port is disabled LLDP is disabled or the switch is rebooted a LLDP shutdown frame is transmitted to the neighboring units signaling that the LLDP information isn t valid anymore Tx Reinit controls the amount of seconds between the shutdown frame and a new LLDP initialization Valid values are restricted to 1 10 seconds Transmit Delay If some configuration is changed e g the IP address a new LLDP ...

Страница 276: ...oldtime Multiplier Display the current holdtime multiplier Reinitialization Delay Display the current reinitialization delay Transmit Delay Display the current transmit delay LLDP MED Fast Start Repeat Count Display the current LLDP MED Fast Start Repeat Count 4 12 3 LLDP Port Setting Use the LLDP Port Setting to specify the message attributes for individual interfaces including whether messages a...

Страница 277: ...ld of advertised messages System Name When checked the System Name is included in LLDP information transmitted Port Description When checked the Port Description is included in LLDP information transmitted System Description When checked the System Description is included in LLDP information transmitted System Capability When checked the System Capability is included in LLDP information transmitte...

Страница 278: ...itted Buttons Click to apply changes Figure 4 12 4 LLDP Port Status Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port State Display the current LLDP status Selected Optional TLVs Display the current selected optional TLVs The VLAN Name TLV VLAN Selection and LLDP Port VLAN TLV Status screens in Figure 4 12 5 Figure 4 12 6 appe...

Страница 279: ...us Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Selected VLAN Display the current selected VLAN 4 12 4 LLDP Local Device Use the LLDP Local Device Information screen to display information about the switch such as its MAC address chassis ID management IP address and port information The Local Device Summary and Port Statu...

Страница 280: ...is ID subtype Chassis ID Display the current chassis ID System Name Display the current system name System Description Display the current system description Capabilities Supported Display the current capabilities supported Capabilities Enabled Display the current capabilities enabled Port ID Subtype Display the current port ID subtype Figure 4 12 8 Port Status Page Screenshot 280 ...

Страница 281: ...reen in Figure 4 12 9 appears Figure 4 12 9 LLDP Remote Device Page Screenshot The page includes the following fields Object Description Local Port Display the current local port Chassis ID Subtype Display the current chassis ID subtype Chassis ID The Chassis ID is the identification of the neighbor s LLDP frames Port ID Subtype Display the current port ID subtype Port ID The Remote Port ID is the...

Страница 282: ... application types supported on a given port The application types specifically addressed are 1 Voice 2 Guest Voice 3 Softphone Voice 4 Video Conferencing 5 Streaming Video 6 Control Signaling conditionally support a separate network policy for the media types above A large network may support multiple VoIP policies across the entire organization and different policies per application type LLDP ME...

Страница 283: ...ced security by isolation from data applications Voice Signaling for use in network topologies that require a different policy for the voice signaling than for the voice media This application type should not be advertised if all the same network policies apply as those advertised in the Voice application policy Guest Voice support a separate limited feature set voice service for guest users and v...

Страница 284: ...o Conferencing application policy VLAN ID VLAN identifier VID for the port as defined in IEEE 802 1Q 2003 Tag Tag indicating whether the specified application type is using a tagged or an untagged VLAN Untagged indicates that the device is using an untagged frame format and as such does not include a tag header as defined by IEEE 802 1Q 2003 In this case both the VLAN ID and the Layer 2 priority f...

Страница 285: ...N ID VLAN Tag Display the current VLAN tag status L2 Priertity Display the current L2 prierity DSCP Value Dusplay the current DSCP value Buttons Click to delete LLDP MED network policy table entry 4 12 7 MED Port Setting The Port LLDP MED Configuration Port Setting Table screens in Figure 4 12 12 Figure 4 12 13 appear Figure 4 12 12 Port LLDP MED Configuration Page Screenshot The page includes the...

Страница 286: ... This option advertises location identification details Inventory This option advertises device details useful for inventory management such as manufacturer model software version and other pertinent information MED Network Policy Select MED network policy for this drop down list Buttons Click to apply changes Figure 4 12 13 Port LLDP MED Configuration Page Screenshot The page includes the followi...

Страница 287: ...llowing fields Object Description Port Select port for this drop down list Location Coordinate A string identifying the Location Coordinate that this entry should belong to Location Civic Address A string identifying the Location Civic Address that this entry should belong to Location ESC ELIN A string identifying the Location ESC ELIN that this entry should belong to Buttons Click to apply change...

Страница 288: ... ESC ELIN 4 12 8 LLDP Overloading The LLDP Port Overloading screen in Figure 4 12 16 appears Figure 4 12 16 LLDP Port Overloading Table Page Screenshot The page includes the following fields Object Description Interface The switch port number of the logical port Toltal Bytes Total number of bytes of LLDP information that is normally sent in a packet Left to Send Bytes Total number of available byt...

Страница 289: ...erloaded MED Inventory Displays if the mandatory group of TLVs was transmitted or overloaded 802 1 TLVs Displays if the 802 1 TLVs were transmitted or overloaded 4 12 9 LLDP Statistics Use the LLDP Device Statistics screen to general statistics for LLDP capable devices attached to the switch and for LLDP protocol messages transmitted or received on all local interfaces The LLDP Global and Port Sta...

Страница 290: ... discarded This situation is known as Too Many Neighbors in the LLDP standard LLDP frames require a new entry in the table when the Chassis ID or Remote Port ID is not already contained within the table Entries are removed from the table when a given port links down an LLDP shutdown frame is received or when the entry ages out RX Frame Error The number of received LLDP frames containing some kind ...

Страница 291: ...Cable Diagnostics performs tests on copper cables These functions have the ability to identify the cable length and operating conditions and to isolate a variety of common faults that can occur on the Cat5 twisted pair cabling There might be two statuses as follow If the link is established on the twisted pair interface in 1000Base T mode the Cable Diagnostics can run without disruption of the lin...

Страница 292: ... Object Description Port Select port for this drop down list Buttons Click to run the diagnostics Figure 4 13 2 Test Results Page Screenshot The page includes the following fields Object Description Port The port where you are requesting Cable Diagnostics Channel A D Display the current channel status Cable Length A D Display the current cable length Result Display the test result 292 ...

Страница 293: ...shoot IP connectivity issues After you press Apply ICMP packets are transmitted and the sequence number and roundtrip time are displayed upon reception of a reply The page refreshes automatically until responses to all packets are received or until a timeout occurs The ICMP Ping screen in Figure 4 13 3 appears Figure 4 13 3 ICMP Ping Page Screenshot The page includes the following fields Object De...

Страница 294: ...ect gateway IP address 4 13 4 IPv6 Ping Test This page allows you to issue ICMPv6 PING packets to troubleshoot IPv6 connectivity issues After you press Apply 5 ICMPv6 packets are transmitted and the sequence number and roundtrip time are displayed upon reception of a reply The page refreshes automatically until responses to all packets are received or until a timeout occurs The ICMPv6 Ping screen ...

Страница 295: ...k accessibility and locate the network failure Execution procedure of the Traceroute function consists of first a data packet with TTL at 1 is sent to the destination address if the first hop returns an ICMP error message to inform this packet can not be sent due to TTL timeout a data packet with TTL at 2 will be sent Also the send hop may be a TTL timeout return but the procedure will carries on ...

Страница 296: ...the following fields Object Description IP Address The destination IP Address Max Hop The maximum gateway number allowed by traceroute function Trace Route Results Display the current trace route result Buttons Click to transmit ICMPv6 packets 296 ...

Страница 297: ...y the Agent History Record periodical statistic samples available from Statistics Alarm Allow management console users to set any count or integer for sample intervals and alert thresholds for RMON Agent records Event A list of all events generated by RMON Agent Alarm depends on the implementation of Event Statistics and History display some current or history subnet statistics Alarm and Event pro...

Страница 298: ...number of packets received that were longer than 1518 octets Fragements The number of frames which size is less than 64 octets received with invalid CRC Jabbbers The number of frames which size is larger than 64 octets received with invalid CRC Collisions The best estimate of the total number of collisions on this Ethernet segment 64 Bytes Frame The total number of packets including bad packets re...

Страница 299: ...le types are none The total number of octets received on the interface including framing characters log The number of uni cast packets delivered to a higher layer protocol SNMP Trap The number of broad cast and multi cast packets delivered to a higher layer protocol Log and Trap The number of inbound packets that are discarded even the packets are normal Community Specify the community when trap i...

Страница 300: ...y for SNMP trap Description Display the current event description Last Sent Time Display the current last sent time Owner Display the current event owner Action Click to delete RMON event entry 4 14 3 RMON Event Log This Page provides an overview of RMON Event Log The RMON Event Log Table screen in Figure 4 14 4 appears Figure 4 14 4 RMON Event Log Table Page Screenshot The Page includes the follo...

Страница 301: ...creenshot The Page includes the following fields Object Description Select Index Select index for this drop down list to create the new index or modify the index Index Indicates the index of the alarm entry Sample Port Select port for this drop down list Sample Variable Indicates the particular variable to be sampled the possible variables are DropEvents The total number of events in which packets...

Страница 302: ...onger than 1518 octets excluding framing bits but including FCS octets and had either an FCS or alignment error Collisions The best estimate of the total number of collisions on this Ethernet segment Pkts64Octets The total number of frames including bad packets received andtransmitted that were 64 octets in length excluding framing bits but including FCS octets Pkts64to172Octets The total number o...

Страница 303: ...eshold value 0 2147483647 Rising Event Event to fire when the rising threshold is crossed Falling Event Event to fire when the falling threshold is crossed Owner Specify an owner for the alarm Buttons Click to apply changes Figure 4 14 6 RMON Alarm Status Page Screenshot The Page includes the following fields Object Description Index Indicates the index of Alarm control entry Sample Port Display t...

Страница 304: ... Description Select Index Select index for this drop down list to create the new index or modify the index Index Indicates the index of the history entry Sample Port Select port for this drop down list Bucket Requested Indicates the maximum data entries associated this History control entry stored in RMON The range is from 1 to 50 default value is 50 Interval Indicates the interval in seconds for ...

Страница 305: ...d Display the current bucket requested Interval Display the current interval Owner Display the current owner Action Click to delete RMON history entry 4 14 6 RMON History Log This Page provides a detail of RMON history entries screen in Figure 4 14 9 appears Figure 4 14 9 RMON History Status Page Screenshot The Page includes the following fields Object Description History Index Select history inde...

Страница 306: ... reset the configuration of the switch on this page Only the IP configuration is retained The new configuration is available immediately which means that no restart is necessary The Factory Default screen in Figure 4 15 1 appears and click to reset the configuration to Factory Defaults Figure 4 15 1 Factory Default Page Screenshot After the Factory button is pressed and rebooted the system will lo...

Страница 307: ...Screenshot 4 15 3 Backup Manager This function allows backup of the current image or configuration of the Managed Switch to the local management station The Backup Manager screen in Figure 4 15 3 appears Figure 4 15 3 Backup Manager Page Screenshot The page includes the following fields Object Description Backup Method Select backup method for this drop down list Server IP Fill in your TFTP server...

Страница 308: ...drop down list Server IP Fill in your TFTP server IP address File Name The name of firmware image or configuration Upgrade Type Select upgrade type Image Select active or backup image Buttons Click to upgrade image or configuration 4 15 5 Dual Image This Page provides information about the active and backup firmware images in the device and allows you to revert to the backup image The web Page dis...

Страница 309: ...elect the active or backup image Buttons Click to apply active image Figure 4 15 6 Dual Image Information Page Screenshot The Page includes the following fields Object Description Flash Partition Display the current flash partition Image Name Display the current image name Image Size Display the current image size Created Time Display the created time 309 ...

Страница 310: ...acket will be filtered Thereby increasing the network throughput and availability 5 4 Store and Forward Store and Forward is one type of packet forwarding techniques A Store and Forward Ethernet Switching stores the incoming frame in an internal buffer do the complete error checking before transmission Therefore no error packets occurrence it is the best choice when a network needs efficiency and ...

Страница 311: ...r Reset This is done by detect the modes and speeds at the second of both device is connected and capable of both 10Base T and 100Base TX devices can connect with the port in either Half or Full Duplex mode If attached device is 100Base TX port will set to 10Mbps no auto negotiation 10Mbps 10Mbps with auto negotiation 10 20Mbps 10Base T Full Duplex 100Mbps no auto negotiation 100Mbps 100Mbps with ...

Страница 312: ...oor Please also check the in out rate of the port Why the Switch doesn t connect to the network Solution 1 Check the LNK ACT LED on the Managed Switch 2 Try another port on the Managed Switch 3 Make sure the cable is installed properly 4 Make sure the cable is the right type 5 Turn off the power After a while turn on power again 100Base TX port link LED is lit but the traffic is irregular Solution...

Страница 313: ...User s Manual of WGSW 28040 4 If that device works refer to the next step 5 If that device does not work check the AC power 313 ...

Страница 314: ...TX When connecting your 10 100Mbps Ethernet Switch to another switch a bridge or a hub a straight or crossover cable is necessary Each port of the Switch supports auto MDI MDI X detection That means you can directly connect the Switch to any Ethernet devices without making a crossover cable The following table and diagram show the standard RJ45 receptacle connector and their pin assignments RJ45 C...

Страница 315: ...ge 3 White Green 4 Blue 5 White Blue 6 Green 7 White Brown 8 Brown 1 White Orange 2 Orange 3 White Green 4 Blue 5 White Blue 6 Green 7 White Brown 8 Brown Crossover Cable SIDE 1 SIDE 2 SIDE 1 1 2 3 4 5 6 7 8 1 2 3 4 5 6 7 8 SIDE 2 1 White Orange 2 Orange 3 White Green 4 Blue 5 White Blue 6 Green 7 White Brown 8 Brown 1 White Green 2 Green 3 White Orange 4 Blue 5 White Blue 6 Orange 7 White Brown 8...

Страница 316: ...es relating to Electromagnetic Compatibility Directive on 2004 108 EC For the evaluation regarding the EMC the following standards were applied EN 55022 Class A 2010 EN 61000 3 2 2006 A1 2009 A2 2009 EN 61000 3 3 2013 EN 55024 2010 IEC 61000 4 2 2008 IEC 61000 4 3 2006 A1 2007 A2 2010 IEC 61000 4 4 2012 IEC 61000 4 5 2005 IEC 61000 4 6 2013 IEC 61000 4 8 2009 IEC 61000 4 11 2004 Responsible for ma...

Результаты поиска

Содержание wgsw-28040

Отзывы:

Бренды по названию

Популярные бренды

Planet Networking & Communication wgsw-28040, Руководство пользователя

Результаты поиска

Содержание wgsw-28040

Отзывы:

Бренды по названию

Популярные бренды