Planet LRP-822CS Скачать руководство пользователя страница 328

Страница: 328 / 346

User’s Manual of LRP-822CS

328

4.15.2 System Configuration

In a power over Ethernet system, operating power is applied from a power source (PSU-power supply unit) over the LAN

infrastructure to

powered devices (PDs)

, which are connected to ports. Under some conditions, the total output power required

by PDs can exceed the maximum available power provided by the PSU. The system with a PSU is capable of supplying less

power than the total potential power consumption of all the PoE ports in the system. In order to maintain the function of the

majority of the ports, power management is implemented.

The PSU input power consumption is monitored by measuring voltage and current .The input power consumption is equal to the

system’s aggregated power consumption .The power management concept allows all ports to be active and activates additional

ports, as long as the aggregated power of the system is lower than the power level at which additional PDs cannot be

connected .When this value is exceeded, ports will be deactivated, according to user-defined priorities. The power budget is

managed according to the following user-definable parameters: maximum available power, ports priority and maximum

allowable power per port.

Reserved Power

There are five modes for configuring how the ports/PDs may reserve power and when to shut down ports.



Allocation mode

In this mode, the user allocates the amount of power that each port may reserve. The allocated/reserved power for each

port/PD is specified in the Maximum Power fields. The ports are shut down when total reserved power exceeds the amount

of power that the power supply can deliver.

In this mode, the port power is not turned on if the PD requests more available power.

4.15.3 Power over Ethernet Configuration

This section allows the user to inspect and configure the current PoE configuration setting

as screen in

Figure 4-16-1

appears.

Figure 4-16-1:

PoE Configuration Screenshot

Содержание LRP-822CS

Страница 1: ...User s Manual of LRP 822CS 1 ...

Страница 2: ...its are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the Instruction manual may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cau...

Страница 3: ... Panel 25 2 2 Installing the Switch 25 2 2 1 Desktop Installation 25 2 2 2 Rack Mounting 26 2 2 3 Installing the SFP transceiver 27 2 2 4 Installing the Long Reach PoE Communication 30 3 SWITCH MANAGEMENT 35 3 1 Requirements 35 3 2 Management Access Overview 36 3 3 Administration Console 37 3 4 Web Management 38 3 5 SNMP based Network Management 39 3 6 PLANET Smart Discovery Utility 39 4 WEB CONFI...

Страница 4: ...View 66 4 2 7 4 SNMP Access Group 68 4 2 7 5 SNMP Community 69 4 2 7 6 SNMP User 71 4 2 7 7 SNMPv1 2 Notification Recipients 72 4 2 7 8 SNMPv3 Notification Recipients 74 4 2 7 9 SNMP Engine ID 75 4 2 7 10 SNMP Remote Engine ID 76 4 3 Port Management 78 4 3 1 Port Configuration 78 4 3 2 LRP Port Configuration 80 4 3 3 Port Counters 81 4 3 4 Bandwidth Utilization 86 4 3 5 Port Mirroring 87 4 3 6 Jum...

Страница 5: ...124 4 5 10 GVRP Setting 126 4 5 11 GVRP Port Setting 128 4 5 12 GVRP VLAN 130 4 5 13 GVRP Statistics 130 4 5 14 VLAN setting example 132 4 5 14 1 Two Separate 802 1Q VLANs 132 4 5 14 2 VLAN Trunking between Two 802 1Q Aware Switches 135 4 6 Spanning Tree Protocol 138 4 6 1 Theory 138 4 6 2 STP Global Settings 144 4 6 3 STP Port Setting 146 4 6 4 CIST Instance Setting 149 4 6 5 CIST Port Setting 15...

Страница 6: ...cast Profile Setting 185 4 7 7 2 IGMP Filter Setting 186 4 7 7 3 MLD Filter Setting 187 4 8 Quality of Service 189 4 8 1 Understand QoS 189 4 8 2 General 190 4 8 2 1 QoS Properties 190 4 8 2 2 QoS Port Settings 191 4 8 2 3 Queue Settings 192 4 8 2 4 CoS Mapping 193 4 8 2 5 DSCP Mapping 195 4 8 2 6 IP Precedence Mapping 197 4 8 3 QoS Basic Mode 198 4 8 3 1 Global Settings 198 4 8 3 2 Port Settings ...

Страница 7: ...5 4 9 6 Management Access Method 236 4 9 6 1 Profile Rules 236 4 9 6 2 Access Rules 237 4 9 7 DHCP Snooping 239 4 9 7 1 DHCP Snooping Overview 239 4 9 7 2 Global Setting 240 4 9 7 3 VLAN Setting 241 4 9 7 4 Port Setting 243 4 9 7 5 Statistics 244 4 9 7 6 Database Agent 245 4 9 7 7 Rate Limit 247 4 9 7 8 Option 82 Global Setting 249 4 9 7 9 Option 82 Port Setting 250 4 9 7 10 Option 82 Circuit ID S...

Страница 8: ...nding 289 4 11 MAC Address Table 290 4 11 1 Static MAC Setting 290 4 11 2 MAC Filtering 291 4 11 3 Dynamic Address Setting 292 4 11 4 Dynamic Learned 293 4 12 LLDP 295 4 12 1 Link Layer Discovery Protocol 295 4 12 2 LLDP Global Setting 295 4 12 3 LLDP Port Setting 298 4 12 4 LLDP Local Device 301 4 12 5 LLDP Remote Device 302 4 12 6 MED Network Policy 304 4 12 7 MED Port Setting 307 4 12 8 LLDP Ov...

Страница 9: ...3 Power over Ethernet Configuration 328 4 15 4 PoE Schedule 331 4 15 5 PoE Alive Check Configuration 334 4 16 Maintenance 336 4 16 1 Factory Default 336 4 16 2 Reboot Switch 337 4 16 3 Backup Manager 337 4 16 4 Upgrade Manager 338 4 16 5 Dual Image 339 5 SWITCH OPERATION 340 5 1 Address Table 340 5 2 Learning 340 5 3 Forwarding Filtering 340 5 4 Store and Forward 340 5 5 Auto Negotiation 341 6 TRO...

Страница 10: ... the LRP 822CS 1 1 Packet Contents Open the box of the LRP Managed Switch and carefully unpack it The box should contain the following items The LRP Managed Switch x 1 Quick Installation Guide x 1 Rubber Feet x 4 Power Cord x 1 RS232 to RJ45 Console Cable x 1 SFP Dust Cap x 2 BNC Female Dust Cap x 8 Warning Sticker x 8 Rack mount Accessory Kit x 1 If any item is found missing or damaged please con...

Страница 11: ...and 2 extra 100 1000BASE X SFP fiber slots Each of the eight BNC ports provides 36 watts of power with a total power budget of up to 240 watts As an advanced PoE switch the LRP 822CS features intelligent PoE functions to improve the availability of critical applications It provides a quick safe and cost effective PoE network solution to upgrading the existing coaxial cable infrastructure from the ...

Страница 12: ...es PLANET Long Reach PoE solution can easily build a power system for centrally controlled IP cameras in a high availability network infrastructure It gives users the flexibility to expand small area network with BNC T connector for sharing four nodes per port when needed making the LRP 822CS with 8 BNC Long Reach PoE Ports an ideal support for up to 32 IP cameras Built in Unique PoE Functions for...

Страница 13: ...eras or PoE wireless access points via the LRP 101CE to reboot at a specific time each week Therefore it will reduce the chance of IP camera or wireless AP crash resulting from buffer overflow PoE Schedule for Energy Saving Under the trend of energy saving worldwide and contributing to environmental protection the LRP 822CS can effectively control the power supply besides its capability of giving ...

Страница 14: ...mperature of the PoE switch for optimal power output capability The LRP 822CS is able to operate reliably stably and quietly in any environment without affecting its performance IPv6 IPv4 Dual Stack Supporting both IPv6 and IPv4 protocols the LRP 822CS helps the SMBs to step in the IPv6 era with the lowest investment as its network facilities need not be replaced or overhauled if the IPv6 FTTx edg...

Страница 15: ... than before Friendly and Secure Management For efficient management the LRP 822CS is equipped with console Web Telnet and SNMP management interfaces With the built in Web based management interface the LRP 822CS offers an easy to use platform independent management and configuration facility By supporting the standard Simple Network Management Protocol SNMP the switch can be managed via any stand...

Страница 16: ... female ports with Long Reach PoE Injector function 2 10 100 1000BASE T Gigabit RJ45 copper ports 2 100 1000BASE X mini GBIC SFP slots RJ45 console interface for switch basic management and setup Long Reach Power over Ethernet Supports PoE power up to 36 watts for each PoE port Remote power feeding up to 1 kilometer with 5C2V RG6 75Ω coaxial cable Long Reach PoE Management Total Long Reach PoE pow...

Страница 17: ...ast loops Quality of Service Ingress Egress rate limit per port bandwidth control Storm control support Broadcast Unknown unicast Unknown multicast Traffic classification IEEE 802 1p CoS ToS DSCP IP Precedence of IPv4 IPv6 packets Strict priority and Weighted Round Robin WRR CoS policies Multicast Supports IGMP snooping v2 and v3 Supports MLD snooping v1 v2 IGMP querier mode support IGMP snooping ...

Страница 18: ...v1 v2c and v3 SSH SSL secure access User privilege levels control Built in Trivial File Transfer Protocol TFTP client BOOTP and DHCP for IP address assignment System maintenance Firmware upload download via HTTP TFTP Configuration upload download through Web interface Dual images Hardware reset button for system reboot or reset to factory default SNTP Network Time Protocol Cable diagnostics Link L...

Страница 19: ...m RG 6 U cable Recommended Maximum Distance Max 200m with PoE output 1 640ft Max 400m with PoE output 2 624ft Max 1200m without PoE output 3 937ft Long Reach Ethernet Standard IEEE 1901 Modulation Type Wavelet OFDM Security 128 bit AES encryption Frequency Band 2 28MHz Long Reach PoE Interfaces Performance Data Rate RG 6 U Distance TX RX LRP 101CE PoE Output 25 degrees C 200m 93 2Mbps 92 0Mbps 22 ...

Страница 20: ...00 LNK ACK Fan 1 Alert Fan 2 Alert PoE PWR Alert Dimensions W x D x H 440 x 300 x 44 5 mm 1U height Weight 4282g Power Requirements AC 100 240V 50 60Hz auto sensing ESD Protection 6KV DC Power Consumption 320 watts 1091 8 BTU Enclosure Metal Layer 2 Functions Port Mirroring TX RX both Many to 1 monitor VLAN 802 1Q tagged based VLAN Up to 256 VLAN groups out of 4094 VLAN IDs 802 1ad Q in Q tunnelin...

Страница 21: ...og LLDP protocol SNTP Secure Management Interfaces SSH SSL SNMP v3 SNMP MIBs RFC 1213 MIB II RFC 1215 Generic Traps RFC 1493 Bridge MIB RFC 2674 Bridge MIB Extensions RFC 2737 Entity MIB Version 2 RFC 2819 RMON 1 2 3 9 RFC 2863 Interface Group MIB RFC 3635 Ethernet like MIB Standards Conformance Regulation Compliance FCC Part 15 Class A CE Standards Compliance IEEE 1901 Broadband Power Line IEEE 8...

Страница 22: ... yourself with its display indicators and ports Front panel illustrations in this chapter display the unit LED indicators Before connecting any network device to the LRP Managed Switch please read this chapter completely 2 1 Hardware Description 2 1 1 Switch Front Panel The front panel provides a simple interface monitoring of the LRP Managed Switch Figure 2 1 1 shows the front panel of the LRP Ma...

Страница 23: ...ix Winterm and so on to enter the startup screen of the device Reset Button On the left of the front panel the reset button is designed to reboot the LRP Managed Switch without turning off and on the power The following is the summary table of the Reset button functions Reset Button Pressed and Released Function 5 sec System Reboot Reboot the LRP Managed Switch 5 sec Factory Default Reset the LRP ...

Страница 24: ...lor Function Lights To indicate the link through that port is successfully established LNK ACT Green Blink To indicate that the switch is actively sending or receiving data over that port Lights To indicate that the port is operating at 1000Mbps Lights When LNK ACT LED lights up it indicates that the port is operating at 10 100Mbps 1000 Orange Off When LNK ACT LED is Off it indicates that the port...

Страница 25: ...If your networks should be active all the time please consider using UPS Uninterrupted Power Supply for your device It will prevent you from network data loss or network downtime Power Notice In some areas installing a surge suppression device may also help to protect your LRP Managed Switch from being damaged by unregulated surge or current to the LRP Managed Switch 2 2 Installing the Switch This...

Страница 26: ...LRP Managed Switch requires UTP Category 5 network cabling with RJ45 tips For more information please see the Cabling Specification in Appendix A Step 5 Supply power to the LRP Managed Switch Connect one end of the power cable to the LRP Managed Switch Connect the power plug of the power cable to a standard wall outlet When the LRP Managed Switch receives power the Power LED should remain solid Gr...

Страница 27: ...d Switch use suitable screws to securely attach the brackets to the rack as shown in Figure 2 1 6 Figure 2 1 6 Mounting LRP Managed Switch in a Rack Step 6 Proceeds with Steps 4 and 5 of session 2 2 1 Desktop Installation to connect the network cabling and supply power to the LRP Managed Switch 2 2 3 Installing the SFP transceiver The sections describe how to insert an SFP transceiver into an SFP ...

Страница 28: ...120 SFP Port 1000BASE LX mini GBIC module 120km MGB LA10 SFP Port 1000BASE LX WDM TX 1310nm 10km MGB LA20 SFP Port 1000BASE LX WDM TX 1310nm 20km MGB LB20 SFP Port 1000BASE LX WDM TX 1550nm 20km MGB LA40 SFP Port 1000BASE LX WDM TX 1310nm 40km MGB LB40 SFP Port 1000BASE LX WDM TX 1550nm 40km Fast Ethernet SFP Transceiver Modules MFB FX SFP Port 100BASE FX Transceiver 2km MFB F20 SFP Port 100BASE F...

Страница 29: ...t to 1000BASE LX SFP transceiver please use the single mode fiber cable with one side being the male duplex LC connector type Connect the Fiber Cable 1 Insert the duplex LC connector into the SFP transceiver 2 Connect the other end of the cable to a device with SFP transceiver installed 3 Check the LNK ACT LED of the SFP slot on the front of the LRP Managed Switch Ensure that the SFP transceiver i...

Страница 30: ...cable into a BNC female port You can plug in and out the coaxial cable to from any BNC female port port without having to power down the LRP Managed Switch Approved PLANET Long Reach PoE Extenders The following list of approved PLANET Long Reach PoE extenders is correct at the time of publication Long Reach Ethernet Coaxial Extenders LRP 101CE 1 Port 10 100TX PoE PSE 1 Port Coax Long Reach PoE Ext...

Страница 31: ...type Because there are various resistance values in the category of RG 59 U or RG 6 U cables please take care of the conditions of the resistance value of cables as follows Coaxial Cable Type RG 59 U Less than 30Ω 1000 ft RG 6 U Less than 12Ω 1000 ft In the installation steps below this Manual uses Long Reach Ethernet coaxial extender as an example Connect the Coaxial Cable 1 Insert the coaxial ca...

Страница 32: ... on the front of the LRP LRP Managed Switch Remove the connected the Coaxial Cable for the all LRP ports from WebUI 5 Ensure that the Long Reach Power over Ethernet interface is operating correctly 1 Make sure there is no network activity anymore 2 Disable Long Reach Power over Ethernet function ...

Страница 33: ...User s Manual of LRP 822CS 33 3 Loosen the BNC male connector gently 4 Pull out the coaxial cable gently Figure 2 1 8 How to pull out the coaxial cable from LRP Managed Switch ...

Страница 34: ...emale connector of the LRP Managed Switch 1 The package contains eight warning stickers which should be stuck on the coaxial cable connector before using PLANET LRP 822CS and LRP extender If connected with non PLANET LRP series extender equipment it might cause damage to the equipment 2 After the LRP PoE port is enabled the pin center of the coaxial cable has electricity Do not touch the pin cente...

Страница 35: ...iew Administration Console Access Web Management Access SNMP Access Standards Protocols and Related Reading 3 1 Requirements Workstations running Windows 2000 XP 2003 Vista 7 8 2008 MAC OS9 or later Linux UNIX or other platforms are compatible with TCP IP protocols Workstation is installed with Ethernet NIC Network Interface Card Serial Port connect Terminal The above PC with COM Port DB9 RS232 or...

Страница 36: ...functionality and HyperTerminal built into Windows 95 98 NT 2000 ME XP operating systems Secure Must be near the switch or use dial up connection Not convenient for remote users Modem connection may prove to be unreliable or slow Web Browser Ideal for configuring the switch remotely Compatible with all popular browsers Can be accessed from any location Most visually appealing Security can be compr...

Страница 37: ...Switch s console port Figure 3 1 1 Console Management Direct Access Direct access to the administration console is achieved by directly connecting a terminal or a PC equipped with a terminal emulation program such as HyperTerminal to the LRP Managed Switch console serial port When using this management method a straight RS232 to RJ45 cable is required to connect the switch to the PC After making t...

Страница 38: ... management features that allow users to manage the LRP Managed Switch from anywhere on the network through a standard browser such as Microsoft Internet Explorer After you set up your IP address for the switch you can access the LRP Managed Switch s Web interface applications directly in your Web browser by entering the IP address of the LRP Managed Switch Figure 3 1 3 Web Management You can then...

Страница 39: ...ent Station only knows the set community string it can read and write to the MIBs However if it only knows the get community string it can only read MIBs The default gets and sets community strings for the LRP Managed Switch are public Figure 3 1 5 SNMP management 3 6 PLANET Smart Discovery Utility For easily listing the LRP Managed Switch in your Ethernet environment the Planet Smart Discovery Ut...

Страница 40: ... the devices 2 After setup is completed press the Update Device Update Multi or Update All button to take effect The meaning of the 3 buttons above are shown below Update Device use the current setting on one single device Update Multi use the current setting on multi devices Update All use the current setting on whole devices in the list The same functions mentioned above also can be found in Opt...

Страница 41: ...s to use network ports The LRP Managed Switch can be configured through an Ethernet connection making sure the manager PC must be set on the same IP subnet address as the LRP Managed Switch For example the default IP address of the LRP Managed Switch is 192 168 0 100 then the manager PC should be set at 192 168 0 x where x is a number between 1 and 254 except 100 and the default subnet mask is 255...

Страница 42: ...min or the username password you have changed via console to login the main screen of LRP Managed Switch The login screen in Figure 4 1 2 appears Figure 4 1 2 Login screen Default User Name admin Default Password admin After entering the username and password the main screen appears as Figure 4 1 3 Figure 4 1 3 Default Main Page ...

Страница 43: ...ommands and statistics the LRP Managed Switch provides It is recommended to use Internet Explore 8 0 or above to access LRP Managed Switch The changed IP address takes effect immediately after clicking on the Save button You need to use the new IP address to access the Web interface For security reason please change and memorize the new password after this first setup Only accept command in lowerc...

Страница 44: ...anel Display The Web agent displays an image of the LRP Managed Switch s ports The Mode can be set to display different information for the ports including Link up or Link down Clicking on the image of a port opens the Port Statistics page The port states are illustrated as follows State Disabled Down Link LRP Ports RJ45 Ports SFP Ports Main Menu Using the onboard Web agent you can define system p...

Страница 45: ...ick to logout the LRP Managed Switch Click to reboot the LRP Managed Switch Click to refresh the page 4 1 1 Save Button This save button allows save the running startup backup configuration or reset switch in default parameter The screen in Figure 4 1 6 appears Figure 4 1 6 Save Button Screenshot The page includes the following fields ...

Страница 46: ...an be saved from the RAM to FLASH by saving Source File Running Configuration to Destination File Startup Configuration so that the running configuration sequence becomes the startup configuration file which is called configuration save To prevent illicit file upload and easier configuration switch mandates the name of running configuration file to be running config Startup Configuration Refers to...

Страница 47: ... the running configuration sequence becomes the startup configuration file which is called configuration save To save all applied changes and set the current configuration as a startup configuration The startup configuration file will be loaded automatically across a system reboot 1 Click Save Save Configurations to FLASH to login the Configuration Manager page 2 Select Source File Running Configu...

Страница 48: ...ed IPv6 information on this page User Configuration Configure new user name and password on this page Time Settings Configure SNTP on this page Log Management The switch log information is provided here SNMP Management Configure SNMP on this page 4 2 1 System Information The System Info page provides information for the current device information System Info page helps a switch administrator to id...

Страница 49: ...mware version of this LRP Managed Switch Firmware Date The firmware date of this LRP Managed Switch System Object ID The system object ID of the LRP Managed Switch System Up Time The period of time the device has been operational PCN HW Version The hardware version of this LRP Managed Switch Buttons Click to edit parameter 4 2 2 IP Configurations The IP Configuration includes the IP Address Subnet...

Страница 50: ...s will be used The DHCP client will announce the configured System Name as hostname to provide DNS lookup IP Address Provide the IP address of this switch in dotted decimal notation Subnet Mask Provide the subnet mask of this switch in dotted decimal notation Gateway Provide the IP address of the router in dotted decimal notation DNS Server 1 2 Provide the IP address of the DNS Server in dotted de...

Страница 51: ...onger IPv6 Address Provide the IPv6 address of this switch IPv6 address is in 128 bit records represented as eight fields of up to four hexadecimal digits with a colon separating each field For example fe80 215 c5ff fe03 4dc7 The symbol is a special syntax that can be used as a shorthand way of representing multiple 16 bit groups of contiguous zeros but it can only appear once It also uses the fol...

Страница 52: ...ription Auto Configuration Display the current auto configuration state IPv6 In Use Address Display the current IPv6 in use address IPv6 In Use Router Display the current in use gateway IPv6 Static Address Display the current IPv6 static address IPv6 Static Router Display the current IPv6 static gateway DHCPv6 Client Display the current DHCPv6 client status ...

Страница 53: ... 4 2 6 Figure 4 2 7 appear Figure 4 2 6 Local User Information Page Screenshot The page includes the following fields Object Description Username The name identifying the user Maximum length 32 characters Maximum number of users 8 Password Type The password type for the user Password Enter the user s new password here Range 0 32 characters plain text case sensitive Retype Password Please enter the...

Страница 54: ...ettings 4 2 5 1 System Time Configure SNTP on this page SNTP is an acronym for Simple Network Time Protocol a network protocol for synchronizing the clocks of computer systems You can specify SNTP Servers and set GMT Time zone The SNTP Configuration screens in Figure 4 2 8 Figure 4 2 9 appear Figure 4 2 8 SNTP Setup Page Screenshot The page includes the following fields Object Description Enable S...

Страница 55: ... the configuration every year Select Non Recurring and configure the Daylight Saving Time duration for single time configuration Default Disabled Daylight Saving Time Offset Enter the number of minutes to add during Daylight Saving Time Range 1 to 1440 Recurring From Week Select the starting week number Day Select the starting day Month Select the starting month Hours Select the starting hour Minu...

Страница 56: ...rrent Data Time Display the current data time SNTP Display the current SNTP state Time Zone Display the current time zone Daylight Saving Time Display the current daylight saving time state Daylight Saving Time Offset Display the current daylight saving time offset state From Display the current daylight saving time from To Display the current daylight saving time to ...

Страница 57: ...lowing fields Object Description SNTP Server Address Type the IP address or domain name of the SNTP server Server Port Type the port number of the SNTP Buttons Click to apply changes Figure 4 2 11 SNTP Server Information Page Screenshot The page includes the following fields Object Description SNTP Server Address Display the current SNTP server address Server Port Display the current SNTP server p...

Страница 58: ...rmal but significant condition such as cold start 4 Warning Warning conditions e g return false unexpected return 3 Error Error conditions e g invalid input default used 2 Critical Critical conditions e g memory allocation or free memory error resource exhausted 1 Alert Immediate action needed 0 Emergency System unusable 4 2 6 1 Local Log The switch system local log information is provided here Th...

Страница 59: ... local log entry The following target types are supported Buffered Target the buffer of the local log File Target the file of the local log Severity The severity of the local log entry The following severity types are supported emerg Emergency level of the system unsable for local log alert Alert level of the immediate action needed for local log crit Critical level of the critical conditions for ...

Страница 60: ...Display the current local log state Target Display the current local log target Severity Display the current local log severity Action Delete the current status 4 2 6 3 Remote Syslog Configure remote syslog on this page The Remote Syslog page allows you to configure the logging of messages that are sent to syslog servers or other management stations You can also limit the event messages sent to on...

Страница 61: ...g entry The following severity types are supported emerg Emergency level of the system unsable for local log alert Alert level of the immediate action needed for local log crit Critical level of the critical conditions for local log error Error level of the error conditions for local log warning Warning level of the warning conditions for local log notice Notice level of the normal but significant...

Страница 62: ...ity Action Delete the remote server entry 4 2 6 4 Log Message The switch log view is provided here The Log View screens in Figure 4 2 18 Figure 4 2 19 Figure 4 2 20 appear Figure 4 2 18 Log Information Select Page Screenshot The page includes the following fields Object Description Target The target of the log view entry The following target types are supported Buffered Target the buffered of the ...

Страница 63: ... view debug Debug level of the debugging messages for log view Category The category of the log view includes AAA ACL CABLE_DIAG DAI DHCP_SNOOPING Dot1X GVRP IGMP_SNOOPING IPSG L2 LLDP Mirror MLD_SNOOPING Platform PM Port PORT_SECURITY QoS Rate SNMP and STP Buttons Click to view log Figure 4 2 19 Logging Information Page Screenshot The page includes the following fields Object Description Target D...

Страница 64: ...anagement stations NMSs Sometimes called consoles these devices execute management applications that monitor and control network elements Physically NMSs are usually engineering workstation caliber computers with fast CPUs megapixel color displays substantial memory and abundant disk space At least one NMS must be present in each managed environment Agents Agents are software modules that reside i...

Страница 65: ...An SNMP device or agent may belong to more than one SNMP community It will not respond to requests from management stations that do not belong to one of its communities SNMP default communities are Write private Read public 4 2 7 2 SNMP System Information Configure SNMP setting on this page The SNMP System global setting screens in Figure 4 2 21 Figure 4 2 22 appear Figure 4 2 21 SNMP Global Setti...

Страница 66: ...w Table Setting Page Screenshot The page includes the following fields Object Description View Name A string identifying the view name that this entry should belong to The allowed string length is 1 to 16 Subtree OID The OID defining the root of the subtree to add to the named view The allowed string content is digital number or asterisk Subtree OID Mask The bitmask identifies which positions in t...

Страница 67: ... view entry in which view type is included and its OID subtree oversteps the excluded view entry Buttons Click to add a new view entry Figure 4 2 24 SNMP View Table Status Page Screenshot The page includes the following fields Object Description View Name Display the current SNMP view name Subtree OID Display the current SNMP subtree OID OID Mask Display the current SNMP OID mask View Type Display...

Страница 68: ...r SNMPv1 v2c Reserved for SNMPv2c V3 Reserved for SNMPv3 or User based Security Model USM Security Level Indicates the security model that this entry should belong to Possible security models are Noauth None authentication and none privacy security levels are assigned to the group auth Authentication and none privacy priv Authentication and privacy Note The Security Level applies to SNNPv3 only Re...

Страница 69: ...curity Model Display the current security model Security Level Display the current security level Read View Name Display the current read view name Write View Name Display the current write view name Notify View Name Display the current notify view name Action Delete the access group entry 4 2 7 5 SNMP Community Configure SNMP Community on this page The SNMP Community screens in Figure 4 2 27 Figu...

Страница 70: ... allowed string length is 1 to 16 View Name A string identifying the view name that this entry should belong to The allowed string length is 1 to 16 Access Right Indicates the SNMP community type operation Possible types are RO Read Only Set access string type in read only mode RW Read Write Set access string type in read write mode Buttons Click to apply changes Figure 4 2 28 Community Status Pag...

Страница 71: ...ssible security models are NoAuth None authentication and none privacy Auth Authentication and none privacy Priv Authentication and privacy The value of security level cannot be modified if entry already exists That means you must first ensure that the value is set correctly Authentication Protocol Indicates the authentication protocol that this entry should belong to Possible authentication proto...

Страница 72: ... Description User Name Display the current user name Group Display the current group Privilege Mode Display the current privilege mode Authentication Protocol Display the current authentication protocol Encryption Protocol Display the current encryption protocol Access Right Display the current access right Action Delete the user entry 4 2 7 7 SNMPv1 2 Notification Recipients Configure SNMPv1 and ...

Страница 73: ... SNMP trap packet UDP Port Indicates the SNMP trap destination port SNMP Agent will send SNMP message via this port the port range is 1 65535 Time Out Indicates the SNMP trap inform timeout The allowed range is 1 to 300 Retries Indicates the SNMP trap inform retry times The allowed range is 1 to 255 Buttons Click to add a new SNMPv1 2 host entry Figure 4 2 32 SNMPv1 2 Host Status Page Screenshot T...

Страница 74: ...allows a valid IP address in dotted decimal notation x y z w It can also represent a legally valid IPv4 address For example 192 1 2 34 Notify Type Set the notify type in traps or informs User Name Indicates the user string when send SNMP trap packet UDP Port Indicates the SNMP trap destination port SNMP Agent will send SNMP message via this port the port range is 1 65535 Time Out Indicates the SNM...

Страница 75: ... Engine ID on this page The entry index key is Engine ID The remote engine ID is used to compute the security digest for authenticating and encrypting packets sent to a user on the remote host The SNMPv3 Engine ID Setting screens in Figure 4 2 35 Figure 4 2 36 appear Figure 4 2 35 SNMPv3 Engine ID Setting Page Screenshot The page includes the following fields Object Description Engine ID An octet ...

Страница 76: ...nfigure SNMPv3 remote Engine ID on this page The SNMPv3 Remote Engine ID Setting screens in Figure 4 2 37 Figure 4 2 38 appear Figure 4 2 37 SNMPv3 Remote Engine ID Setting Page Screenshot The page includes the following fields Object Description Remote IP Address Indicates the SNMP remote engine ID address It allows a valid IP address in dotted decimal notation x y z w Engine ID An octet string i...

Страница 77: ...es Figure 4 2 38 SNMPv3 Remote Engine ID Status Page Screenshot The page includes the following fields Object Description Remote IP Address Display the current remote IP address Engine ID Display the current engine ID Action Delete the remote IP address entry ...

Страница 78: ...s port error disable settings Port Error Disabled Status Disables port error status Protected Ports Configures protected ports settings EEE Configures EEE settings SFP Module Information Displays SFP module information 4 3 1 Port Configuration This page displays current port configurations and status Ports can also be configured here The table has one row for each port on the selected switch in a ...

Страница 79: ...lect the mode Auto Setup Auto negotiation Full Force sets Full Duplex mode Half Force sets Half Duplex mode Flow Control When Auto Speed is selected for a port this section indicates the flow control capability that is advertised to the link partner When a fixed speed setting is selected that is what is used Current Rx column indicates whether pause frames on the port are obeyed Current Tx column ...

Страница 80: ...ort Flow Control Status Display the current flow control status of the port 4 3 2 LRP Port Configuration This page displays current LRP port configurations and status Ports can also be configured here The table has one row for each port on the selected switch in a number of columns which are The Port Configuration screens in Figure 4 3 1B Figure 4 3 2B appear Figure 4 3 1B LRP Port Settings Page S...

Страница 81: ...number for this row Description Click to indicate the port name Enable State Display the current port state Link Status Display the current link status 4 3 3 Port Counters This page provides an overview of traffic and trunk statistics for all switch ports The Port Statistics screens in Figure 4 3 3 Figure 4 3 4 Figure 4 3 5 Figure 4 3 6 appear Figure 4 3 3 Port MIB Counters Page Screenshot ...

Страница 82: ...number of subnetwork unicast packets delivered to a higher layer protocol Received Unknown Unicast Packets The number of packets received via the interface which is discarded because of an unknown or unsupported protocol Received Discarded Packets The number of inbound packets which were chosen to be discarded even though no errors had been detected to prevent their being deliverable to a higher l...

Страница 83: ... higher sub layer is addressed to a multicast address at this sub layer Received Broadcast Packets The number of packets delivered by this sub layer to a higher sub layer addressed to a broadcast address at this sub layer Transmit Multicast Packets The total number of packets that higher level protocols requested is transmitted and is addressed to a multicast address at this sub layer including th...

Страница 84: ...The number of times that a collision is detected later than 512 bit times into the transmission of a packet Excessive Collision A count of frames for which transmission on a particular interface fails due to excessive collisions This counter does not increase when the interface is operating in full duplex mode Frame Too Long A count of frames received on a particular interface that exceeds the max...

Страница 85: ...e Packets The total number of frames received that were longer than 1518 octets excluding framing bits but including FCS octets and were otherwise well formed Fragments The total number of frames received that were less than 64 octets in length excluding framing bits but including FCS octets and had either an FCS or alignment error Jabbers The total number of frames received that were longer than ...

Страница 86: ...aph The Bandwidth Utilization screen in Figure 4 3 7 appears To view the port utilization click on the Port Management folder and then the Bandwidth Utilization link Figure 4 3 7 Port Bandwidth Utilization Page Screenshot The page includes the following fields Object Description Refresh Period This shows the period interval between last and next refresh Options 2 sec 5 sec 10 sec IFG Allow user to...

Страница 87: ... port where a frame analyzer can be attached to analyze the frame flow The LRP Managed Switch can unobtrusively mirror traffic from any port to a monitor port You can then attach a protocol analyzer or RMON probe to this port to perform traffic analysis and verify connection integrity Figure 4 3 8 Port Mirror Application The traffic to be copied to the mirror port is selected as follows All frames...

Страница 88: ... Port Select the port to mirror destination port Allow ingress Frames from ports that have either source RX or destination TX mirroring enabled are mirrored to this port Sniffer TX Ports Frames transmitted from these ports are mirrored to the mirroring port Frames received are not mirrored Sniffer RX Ports Frames received at these ports are mirrored to the mirroring port Frames transmitted are not...

Страница 89: ...ect the maximum frame size allowed for the switch port The Jumbo Frame screens in Figure 4 3 11 Figure 4 3 12 appear Figure 4 3 11 Jumbo Frame Setting Page Screenshot The page includes the following fields Object Description Jumbo Frame Bytes Enter the maximum frame size allowed for the switch port including FCS The allowed range is 64 bytes to 9216 bytes Buttons Click to apply changes Figure 4 3 ...

Страница 90: ... or disable the port error disabled function to check status by self loop Broadcast Flood Enable or disable the port error disabled function to check status by broadcast flood Unknown Multicast Flood Enable or disable the port error disabled function to check status by unknown multicast flood Unicast Flood Enable or disable the port error disabled function to check status by unicast flood ACL Enab...

Страница 91: ... guard status Self Loop Display the current self loop status Broadcast Flood Display the current broadcst flood status Unknown Multicast Flood Display the current unknown multicast flood status Unicast Flood Display the current unicast flood status ACL Display the current ACL status Port Security Violation Display the current port security violation status DHCP Rate Limit Display the current DHCP ...

Страница 92: ...isabled reason of the port Time Left Seconds Display the time left 4 3 9 Protected Ports Overview When a switch port is configured to be a member of protected group also called Private VLAN communication between protected ports within that group can be prevented Two application examples are provided in this section Customers connected to an ISP can be members of the protected group but they are no...

Страница 93: ...in the private VLAN Ports which can receive traffic from only promiscuous ports in the private VLAN The configuration of promiscuous and isolated ports applies to all private VLANs When traffic comes in on a promiscuous port in a private VLAN the VLAN mask from the VLAN table is applied When traffic comes in on an isolated port the private VLAN mask is applied in addition to the VLAN mask from the...

Страница 94: ...uous port and one or more isolated or host ports This VLAN conveys traffic between the isolated ports and a lone promiscuous port Unprotected A promiscuous port can communicate with all the interfaces within a private VLAN This is the default setting Buttons Click to apply changes Figure 4 3 17 Port Isolation Status Page Screenshot The page includes the following fields Object Description Protecte...

Страница 95: ... auto negotiation mode where the port is negotiated to either 1G or 100 Mbit full duplex mode For ports that are not EEE capable the corresponding EEE checkboxes are grayed out and thus impossible to enable EEE for The EEE port settings relate to the currently unit as reflected by the page header When a port is powered down for saving power outgoing traffic is stored in a buffer until the port is ...

Страница 96: ...s also known as digital optical monitoring DOM You can check the physical or operational status of an SFP module via the SFP Module Information Page This Page shows the operational status such as the transceiver type speed wavelength optical output power optical input power temperature laser bias current and transceiver supply voltage in real time You can also use the hyperlink of port no to check...

Страница 97: ...ng fields Object Description Port Select port number from this drop down list Figure 4 3 21 Fiber Port Status Page Screenshot The page includes the following fields Object Description OE Present Display the current SFP OE present LOS Display the current SFP LOS ...

Страница 98: ...ription Port The logical port for the settings contained in the same row Temperature Display the current SFP temperature Voltage Display the current SFP voltage Current Display the current SFP current Output Power Display the current SFP output power Input Power Display the current SFP input power Transmit Fault Display the current SFP transmit fault Loss of Signal Display the current SFP loss of ...

Страница 99: ...n be assigned manually Port Trunk or automatically by enabling Link Aggregation Control Protocol LACP on the relevant links Aggregated Links are treated by the system as a single logical port Specifically the Aggregated Link has similar port attributes to a non aggregated port including auto negotiation speed suplex setting etc The device supports the following Aggregation links Static LAGs Port T...

Страница 100: ...ation ports None of the ports in a link aggregation can be configured as a mirror source port or a mirror target port All of the ports in a link aggregation have to be treated as a whole when moved from to added or deleted from a VLAN The Spanning Tree Protocol will treat all the ports in a link aggregation as a whole Enable the link aggregation prior to connecting any cable between the switches t...

Страница 101: ...lowing fields Object Description Load Balance Algorithm Select load balance algorithm mode MAC Address The MAC address can be used to calculate the port for the frame IP MAC Address The IP and MAC address can be used to calculate the port for the frame Buttons Click to apply changes Figure 4 4 3 LAG Information Page Screenshot The page includes the following fields Object Description Load Balance ...

Страница 102: ...trunk type Static Force aggregated selected ports to be a trunk group LACP LACP LAG negotiate Aggregated Port links with other LACP ports located on a different device If the other device ports are also LACP ports the devices establish a LAG between them Ports Select port number from this drop down list to establish Link Aggregation Figure 4 4 5 LAG Management Information Page Screenshot The page ...

Страница 103: ...ed Start up the LAG manually Disabled Shut down the LAG manually Speed Select any available link speed for the given switch port Draw the menu bar to select the mode Auto Set up Auto negotiation Auto 10M Set up 10M Auto negotiation Auto 100M Set up 100M Auto negotiation Auto 1000M Set up 1000M Auto negotiation Auto 10 100M Set up 10 100M Auto negotiation 10M Set up 10M Force mode 100M Set up 100M ...

Страница 104: ...ges Figure 4 4 7 LAG Port Status Page Screenshot The page includes the following fields Object Description LAG The LAG for the settings contained in the same row Description Display the current description Port Type Display the current port type Enable State Display the current enable state Speed Display the current speed Duplex Display the current duplex mode Flow Control Config Display the curre...

Страница 105: ...ncludes the following fields Object Description System Priority A value which is used to identify the active LACP The LRP Managed Switch with the lowest value has the highest priority and is selected as the active LACP peer of the trunk group Buttons Click to apply changes Figure 4 4 9 LACP Information Page Screenshot The page includes the following fields Object Description System Priority Displa...

Страница 106: ...P port setting Priority The Priority controls the priority of the port If the LACP partner wants to form a larger group than is supported by this device then this parameter will control which ports will be active and which ports will be in a backup role Lower number means greater priority Timeout The Timeout controls the period between BPDU transmissions Short will transmit LACP packets each secon...

Страница 107: ...isplays LAG status The LAG Status screens in Figure 4 4 12 Figure 4 4 13 appear Figure 4 4 12 LAG Status Page Screenshot The page includes the following fields Object Description LAG Display the current trunk entry Name Display the current LAG name Type Display the current trunk type Link State Display the current link state Active Member Display the current active member Standby Member Display th...

Страница 108: ...state machine status of the port INIT means the port is in initialize state PORTds means port disabled state EXPR means expired state LACPds means LACP disabled state DFLT means defaulted state CRRNT means current state PrdTx LACP periodic transmission state machine status of the port no PRD means the port is in no periodic state FstPRD means fast periodic state SlwPRD means slow periodic state Pr...

Страница 109: ... s Manual of LRP 822CS 109 Expired The contents could be true or false If the contents are false the web will show _ if the contents are true the Web shows A T G S C D F and E for each content respectively ...

Страница 110: ...hat frequently communicate with each other are assigned to the same VLAN regardless of where they are physically on the network Logically a VLAN can be equated to a broadcast domain because broadcast packets are forwarded to only members of the VLAN on which the broadcast was initiated 1 No matter what basis is used to uniquely identify end nodes and assign these nodes VLAN membership packets cann...

Страница 111: ...te broadcast storms in large networks This also provides a more secure and cleaner network environment An IEEE 802 1Q VLAN is a group of ports that can be located anywhere in the network but communicate as though they belong to the same physical segment VLANs help to simplify network management by allowing you to move devices to a new VLAN without having to change any physical connections VLANs ca...

Страница 112: ...of putting 802 1Q VLAN information into the header of a packet Untagging The act of stripping 802 1Q VLAN information out of the packet header 802 1Q VLAN Tags The figure below shows the 802 1Q VLAN tag There are four additional octets inserted after the source MAC address Their presence is indicated by a value of 0x8100 in the Ether Type field When a packet s Ether Type field is equal to 0x8100 t...

Страница 113: ...are forwarded according to the VID contained within the tag Tagged packets are also assigned a PVID but the PVID is not used to make packet forwarding decisions the VID is Tag aware switches must keep a table to relate PVID within the switch to VID on the network The switch will compare the VID of a packet to be transmitted to the VID of the port that is to transmit the packet If the two VID are d...

Страница 114: ...oes not support VLAN tagging VLAN Classification When the switch receives a frame it classifies the frame in one of two ways If the frame is untagged the switch assigns the frame to an associated VLAN based on the default VLAN ID of the receiving port But if the frame is tagged the switch uses the tagged VLAN ID to identify the port broadcast domain of the frame Port Overlapping Port overlapping c...

Страница 115: ...t VLAN State Page Screenshot The page includes the following fields Object Description Management VLAN Display the current management VLAN 4 5 4 Create VLAN Create delete VLAN on this page The screens in Figure 4 5 3 Figure 4 5 4 appear Figure 4 5 3 VLAN Setting Page Screenshot The page includes the following fields Object Description VLAN List Indicates the ID of this particular VLAN ...

Страница 116: ... Type Display the current VLAN ID type Modify Click to modify VLAN configuraiton 4 5 5 Interface Settings This page is used for configuring the LRP Managed Switch port VLAN The VLAN per Port Configuration Page contains fields for managing ports that are part of a VLAN The port default VLAN ID PVID is configured on the VLAN Port Configuration Page All untagged packets arriving to the device are tag...

Страница 117: ...ave port is tagged Frame remains tagged Tag is inserted Leave port is untagged Tag is removed Frame remain untagged Table 4 5 1 Ingress Egress Port with VLAN VID Tag Untag Table IEEE 802 1Q Tunneling Q in Q IEEE 802 1Q Tunneling QinQ is designed for service providers carrying traffic for multiple customers across their networks QinQ tunneling is used to maintain customer specific VLAN and Layer 2 ...

Страница 118: ...d the original VLAN tag with the customer related VID is again available This provides a tunneling mechanism to connect remote costumer VLANs through a common MAN space without interfering with the VLAN tags All tags use EtherType 0x8100 or 0x88A8 where 0x8100 is used for customer tags and 0x88A8 are used for service provider tags In cases where a given service VLAN only has two member ports on th...

Страница 119: ...LAN ID that the port belongs to VLAN group or the untagged traffic will be dropped The range for the PVID is 1 4094 Accepted Type Determines whether the port accepts all frames or only tagged frames This parameter affects VLAN ingress processing If the port only accepts tagged frames untagged frames received on the port are discarded Options All Tag Only Untag Only By default the field is set to A...

Страница 120: ... fields Object Description Port The switch port number of the logical port Interface VLAN Mode Display the current interface VLAN mode PVID Display the current PVID Accepted Frame Type Display the current access frame type Ingress Filtering Display the current ingress filtering Uplink Display the current uplink mode TPID Display the current TPID ...

Страница 121: ...terface VLAN Mode Display the current interface VLAN mode Select VLAN membership for each interface by marking the appropriate radio button for a port or trunk Forbidden Interface is forbidden from automatically joining the VLAN via GVRP Excluded Interface is not a member of the VLAN Packets associated with this VLAN will not be transmitted by the interface Tagged Interface is a member of the VLAN...

Страница 122: ...verview of membership status for VLAN users The VLAN Membership Status screen in Figure 4 5 8 appears Figure 4 5 8 Port VLAN Membership Table Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Mode Display the current VLAN mode Administrative VLANs Display the current administrative VLANs Operational VLANs Display the current o...

Страница 123: ...rotocols you want to use Although not mandatory we suggest configuring a separate VLAN for each major protocol running on your network Do not add port members at this time 2 Create a protocol group for each of the protocols you want to assign to a VLAN using the Protocol VLAN Configuration page 3 Then map the protocol for each interface to the appropriate VLAN using the Protocol VLAN Port Configur...

Страница 124: ...ing fields Object Description Group ID Display the current group ID Frame Type Display the current frame type Protocol Value Display the current protocol value Delete Click to delete the group ID entry 4 5 9 Protocol VLAN Port Setting This page allows you to map an already configured Group Name to a VLAN port for the switch The Protocol VLAN Port Setting State screens in Figure 4 5 11 Figure 4 5 1...

Страница 125: ...p down list to protocol VLAN group VLAN VLAN ID assigned to the Special Protocol VLAN Group Buttons Click to add protocol VLAN port entry Figure 4 5 12 Protocol VLAN Port State Page Screenshot The page includes the following fields Object Description Port Display the current port Group ID Display the current group ID VLAN ID Display the current VLAN ID Delete Click to delete the group ID entry ...

Страница 126: ...s across the network VLANs are dynamically configured based on join messages issued by host devices and propagated throughout the network GVRP must be enabled to permit automatic VLAN registration and to support VLANs which extend beyond the local switch The GVRP Global Setting Information screens in Figure 4 5 13 Figure 4 5 14 appear Figure 4 5 13 GVRP Global Setting Page Screenshot ...

Страница 127: ...r a Leave or LeaveAll message has been issued the applicants can rejoin before the port actually leaves the group Range 45 32760 centiseconds Default 60 centiseconds LeaveAll Timeout The interval between sending out a LeaveAll query message for VLAN group participants and the port leaving the group This interval should be considerably larger than the Leave Time to minimize the amount of traffic ge...

Страница 128: ...otocol VLAN port GVRP Enabled Controls whether GVRP is enabled or disabled on port Registration Mode By default GVRP ports are in normal registration mode These ports use GVRP join messages from neighboring switches to prune the VLANs running across the 802 1Q trunk link If the device on the other side is not capable of sending GVRP messages or if you do not want to allow the switch to prune any o...

Страница 129: ...s Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Enable Status Display the current GVRP port staste Registration Mode Display the current registration mode VLAN Creation Status Display the current VLAN creation status ...

Страница 130: ... Ports Display the current member ports Dynamic Ports Display the current dynamic ports VLAN Type Display the current VLAN type 4 5 13 GVRP Statistics The GVRP Port Statistics and Error Statistics screens in Figure 4 5 18 Figure 4 5 19 appear Figure 4 5 18 GVRP Port Statistics Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port ...

Страница 131: ... Error Statistics Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Invaild Protocol ID Display the current invalid protocol ID Invalid Attribute Type Display the current invalid attribute type Invalid Attribute Value Display the current invalid attribute value Invalid Attribute Length Display the current invalid attribute len...

Страница 132: ...The screen in Figure 4 5 20 appears and Table 4 5 2 describes the port configuration of the LRP Managed Switches Figure 4 5 20 Two Separate VLAN Diagrams VLAN Group VID Untagged Members Tagged Members VLAN Group 1 1 Port 7 Port 8 N A VLAN Group 2 2 Port 1 Port 2 Port 3 VLAN Group 3 3 Port 4 Port 5 Port 6 Table 4 5 2 VLAN and Port Configuration The scenario described as follows Untagged packet ente...

Страница 133: ...an untagged packet Untagged packet entering VLAN 3 1 While PC 4 transmits an untagged packet enters Port 4 the switch will tag it with a VLAN Tag 3 PC 5 and PC 6 will receive the packet through Port 5 and Port 6 2 While the packet leaves Port 5 it will be stripped away its tag becoming an untagged packet 3 While the packet leaves Port 6 it will be kept as a tagged packet with VLAN Tag 3 In this ex...

Страница 134: ...User s Manual of LRP 822CS 134 3 Assign Tagged Untagged to each port VLAN ID 2 Port 1 2 Untagged Port 3 Tagged Port 4 6 Excluded VLAN ID 3 Port 4 5 Untagged Port 6 Tagged Port 1 3 Excluded ...

Страница 135: ... Switches In most cases they are used for Uplink to other switches VLANs are separated at different switches but they need to access other switches within the same VLAN group The screen in Figure 4 5 21 appears Setup steps 1 Create VLAN Group 2 and 3 Add VLAN group 2 and group 3 ...

Страница 136: ... Port 1 Port 2 and Port 3 VLAN Mode Hybrid PVID 2 Port 4 Port 5 and Port 6 VLAN Mode Hybrid PVID 3 Port 7 VLAN Mode Hybrid PVID 1 3 Assign Tagged Untagged to each port VLAN ID 1 Port 1 6 Untagged Port 7 Excluded VLAN ID 2 Port 1 2 Untagged Port 3 7 Tagged Port 4 6 Excluded ...

Страница 137: ...User s Manual of LRP 822CS 137 VLAN ID 3 Port 4 5 Untagged Port 6 7 Tagged Port 1 3 Excluded ...

Страница 138: ... blocked links at the time of a primary link failure is also accomplished automatically without operator intervention This automatic network reconfiguration provides maximum uptime to network users However the concepts of the Spanning Tree Algorithm and protocol are a complicated and complex subject and must be fully researched and understood It is possible to cause serious degradation of the perf...

Страница 139: ...n a switched network might not be ideal For instance connecting higher speed links to a port that has a higher number than the current root port can cause a root port change STP Port States The BPDUs take some time to pass through a network This propagation delay can result in topology changes where a port that transitioned directly from a Blocking state to a Forwarding state could create temporar...

Страница 140: ...arded from or received by STP enabled ports until the forwarding state is enabled for that port 2 STP Parameters STP Operation Levels The Switch allows for two levels of operation the switch level and the port level The switch level forms a spanning tree consisting of links between one or more switches The port level constructs a spanning tree consisting of groups of one or more ports The STP oper...

Страница 141: ...urn the port to the blocking state 15 seconds The following are the user configurable STP parameters for the port or port group level Variable Description Default Value Port Priority A relative priority for each port lower numbers give a higher priority and a greater chance of a given port being elected as the root port 128 Port Cost A value used by STP to evaluate paths STP calculates path costs ...

Страница 142: ... probability the port will be chosen as the Root Port Port Cost A Port Cost can be set from 0 to 200000000 The lower the number the greater the probability the port will be chosen to forward packets 3 Illustration of STP A simple illustration of three switches connected in a loop is depicted in the below diagram In this example you can anticipate some major network problems if the STP assistance i...

Страница 143: ...User s Manual of LRP 822CS 143 Figure 4 6 2 Before Applying the STA Rules In this example only the default STP values are used Figure 4 6 3 After Applying the STA Rules ...

Страница 144: ...rt setting MST Instance Setting Configures each MST instance setting MST Port Setting Configures per port MST setting STP Statistics Displays the STP statistics 4 6 2 STP Global Settings This page allows you to configure STP system settings The settings are used by all STP Bridge instances in the Switch The LRP Managed Switch support the following Spanning Tree Protocols Compatible Spanning Tree P...

Страница 145: ...wer values should be assigned to ports attached to faster media and higher values assigned to ports with slower media Force Version The STP protocol version setting Valid values are STP Compatible RSTP Operation and MSTP Operation Configuration Name Identifier used to identify the configuration currently being used Configuration Revision Identifier used to identify the configuration currently bein...

Страница 146: ...e includes the following fields Object Description Port Select Select port number from this drop down list External Cost 0 Auto Controls the path cost incurred by the port The Auto setting will set the path cost as appropriate by the physical link speed using the 802 1D recommended values Using the Specific setting a user defined value can be entered The path cost is used when establishing the act...

Страница 147: ...to manually re check the appropriate BPDU format RSTP or STP compatible to send on the selected interfaces Default Disabled Buttons Click to apply changes By default the system automatically detects the speed and duplex mode used on each port and configures the path cost according to the values shown below Path cost 0 is used to indicate auto configuration mode When the short path cost method is s...

Страница 148: ...P Path Costs Figure 4 6 7 STP Port Status Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical STP port Admin Enable Display the current STP port mode status External Cost Display the current external cost Edge Port Display the current edge port status BPDU Filter Display the current BPDU filter configuration BPDU Guard Display the cu...

Страница 149: ...erwise this is the priority of the STP RSTP bridge Max Hops This defines the initial value of remaining Hops for MSTI information generated at the boundary of an MSTI region It defines how many bridges a root bridge can distribute its BPDU information Valid values are in the range 6 to 40 hops Forward Delay The delay used by STP Bridges to transition Root and Designated Ports to Forwarding used in...

Страница 150: ...the BPDU packet to check STP current status Enter a value between 1 through 10 Buttons Click to apply changes Figure 4 6 9 CIST Instance Information Page Screenshot The page includes the following fields Object Description Priority Display the current CIST priority Max Hop Display the current max hop Forward Delay Display the current forward delay Max Age Display the current max age Tx Hold Count ...

Страница 151: ...an be used to control priority of ports having identical port cost See above Default 128 Range 0 240 in steps of 16 Internal Path Cost 0 Auto Controls the path cost incurred by the port The Auto setting will set the path cost as appropriate by the physical link speed using the 802 1D recommended values Using the Specific setting a user defined value can be entered The path cost is used when establ...

Страница 152: ...nt internal path cost oper Designated Root Bridge Display the current designated root bridge External Root Cost Display the current external root cost Regional Root Bridge Display the current regional root bridge Internal Root Cost Display the current internal root cost Designated Bridge Display the current designated bridge Internal Port Path Cost Display the current internal port path cost Edge ...

Страница 153: ...llow to assign MSTI ID The range for the MSTI ID is 1 15 VLAN List 1 4096 Allow to assign VLAN list to special MSTI ID The range for the VLAN list is 1 4094 Priority Controls the bridge priority Lower numerical values have better priority The bridge priority plus the MSTI instance number concatenated with the 6 byte MAC address of the switch forms a Bridge Identifier Buttons Click to apply changes...

Страница 154: ...owing fields Object Description MSTI ID Display the MSTI ID Regional Root Bridge Display the current designated root bridge Internal Root Cost Display the current internal root cost Designated Bridge Display the current designated bridge Root Port Display the current root port Max Age Display the current max age Forward Delay Display the current forward delay Remaining Hops Display the current rem...

Страница 155: ...ure 4 6 15 MST Port Configuration Page Screenshot The page includes the following fields Object Description MST ID Enter the special MST ID to configure path cost and priority Port Select Select port number from this drop down list Priority Controls the port priority This can be used to control priority of ports having identical port cost Internal Path Cost 0 Auto Controls the path cost incurred b...

Страница 156: ...ority Port ID Display the current indentifier priority port ID Internal Path Cost Conf Oper Display the current internal path cost configuration operation Regional Root Bridge Display the current regional root bridget Internal Root Cost Display the current internal root cost Designated Bridge Display the current designated bridge Internal Path Cost Display the current internal path cost Port Role ...

Страница 157: ...t The switch port number of the logical STP port Configuration BPDUs Received Display the current configuration BPDUs received TCN BPDUs Received Display the current TCN BPDUs received MSTP BPDUs Received Display the current MSTP BPDUs received Configuration BPDUs Transmitted Display the configuration BPDUs transmitted TCN BPDUs Transmitted Display the current TCN BPDUs transmitted MSTP BPDUs Tran...

Страница 158: ...Configures multicast throttling setting Multicast Filter Configures multicast filter 4 7 1 Properties This page provides multicast properties related configuration The multicast Properties and Information screen in Figure 4 7 1 Figure 4 7 2 appear Figure 4 7 1 Properties Setting Page Screenshot The page includes the following fields Object Description Unknown Multicast Action Unknown multicast tra...

Страница 159: ... Page Screenshot The page includes the following fields Object Description Unknown Multicast Action Display the current unknown multicast action status Forward Method For IPv4 Display the current IPv4 multicast forward method Forward Method For IPv6 Display the current IPv6 multicast forward method ...

Страница 160: ...t they will become members of a multicast group The Internet Group Management Protocol IGMP is used to communicate this information IGMP is also used to periodically check the multicast group for members that are no longer active In the case where there is more than one multicast router on a sub network one router is elected as the queried This router then keeps track of the membership of the mult...

Страница 161: ...User s Manual of LRP 822CS 161 Figure 4 7 4 Multicast Flooding Figure 4 7 5 IGMP Snooping Multicast Stream Control ...

Страница 162: ...packets enable multicast routers to keep track of the membership of multicast groups on their respective sub networks The following outlines what is communicated between a multicast router and a multicast group member using IGMP A host sends an IGMP report to join a group A host will never send a report when it wants to leave a group for version 1 A host will send a leave report when it wants to l...

Страница 163: ...hey want to receive multicast traffic If there is more than one router switch on the LAN performing IP multicasting one of these devices is elected querier and assumes the role of querying the LAN for group members It then propagates the service requests on to any upstream multicast switch router to ensure that it will continue to receive the multicast service Multicast routers use this informatio...

Страница 164: ...llowing fields Object Description IGMP Snooping Status Enable or disable the IGMP snooping The default value is Disabled IGMP Snooping Version Sets the IGMP Snooping operation version Possible versions are v2 Set IGMP Snooping supported IGMP version 2 v3 Set IGMP Snooping supported IGMP version 3 IGMP Snooping Report Suppression Limits the membership report traffic sent to multicast capable router...

Страница 165: ...lay the current entry number VLAN ID Display the current VLAN ID IGMP Snooping Operation Status Display the current IGMP snooping operation status Router Ports Auto Learn Display the current router ports auto learning Query Robustness Display the current query robustness Query Interval sec Display the current query interval Query Max Response Interval sec Display the current query max response int...

Страница 166: ...e or disable the querier state The default value is Disabled Querier Version Sets the querier version for compatibility with other devices on the network Version 2 or 3 Default 2 Buttons Click to apply changes Figure 4 7 11 IGMP Querier Status Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Querier State Display the current querier stat...

Страница 167: ...p Static multicast addresses are never aged out When a multicast address is assigned to an interface in a specific VLAN the corresponding traffic can only be forwarded to ports within that VLAN The IGMP Static Group configuration screens in Figure 4 7 12 Figure 4 7 13 appear Figure 4 7 12 Add IGMP Static Group Page Screenshot The page includes the following fields Object Description VLAN ID Select...

Страница 168: ... Table This page provides Multicast Database The IGMP Group Table screen in Figure 4 7 14 appears Figure 4 7 14 IGMP Group Table Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VID Group IP Address Display multicast IP address for a specific multicast service Member Port Display the current member port Type Member types displayed include Static...

Страница 169: ...aces within the LRP Managed Switch The IGMP Router Setting and Status screens in Figure 4 7 15 Figure 4 7 16 appear Figure 4 7 15 Add Router Port Page Screenshot The page includes the following fields Object Description VLAN ID Selects the VLAN to propagate all multicast traffic coming from the attached multicast router Type Sets the Router port type The types of Router port as below Static Forbid...

Страница 170: ...the group ID entry 4 7 2 6 IGMP Router Table This page provides Router Table The Dynamic Static and Forbidden Router Table screens in Figure 4 7 17 Figure 4 7 18 Figure 4 7 19 appear Figure 4 7 17 Dynamic Router Table Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Port Display the current dynamic router ports Expiry Time Sec Display th...

Страница 171: ... port mask Figure 4 7 19 Forbidden Router Table Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Port Mask Display the current port mask 4 7 2 7 IGMP Forward All This page provides IGMP Forward All The Forward All screen in Figure 4 7 20 appears Figure 4 7 20 Forward All Setting Page Screenshot ...

Страница 172: ...Forbidden Interface is forbidden from automatically joining the IGMP via MVR None Interface is not a member of the VLAN Packets associated with this VLAN will not be transmitted by the interface Membership Static Interface is a member of the IGMP Buttons Click to apply changes 4 7 3 IGMP Snooping Statics This page provides IGMP Snooping Statics The IGMP Snooping Statics screen in Figure 4 7 20 app...

Страница 173: ...lay current general query RX Special Group Query RX Display current special group query RX Special Group Source Query RX Display current special group source query RX Leave TX Display current leave TX Report TX Display current report TX General Query TX Display current general query TX Special Group Query TX Display current special group query TX Special Group Source Query TX Display current speci...

Страница 174: ...ge includes the following fields Object Description MLD Snooping Status Enable or disable the MLD snooping The default value is Disabled MLD Snooping Version Sets the MLD Snooping operation version Possible versions are v1 Set MLD Snooping supported MLD version 1 v2 Set MLD Snooping supported MLD version 2 MLD Snooping Report Suppression Limits the membership report traffic sent to multicast capab...

Страница 175: ...current entry number VLAN ID Display the current VLAN ID MLD Snooping Operation Status Display the current MLD snooping operation status Router Ports Auto Learn Display the current router ports auto learning Query Robustness Display the current query robustness Query Interval sec Display the current query interval Query Max Response Interval sec Display the current query max response interval Last...

Страница 176: ...D from this drop down list Group IP Address The IP address for a specific multicast service Member Ports Select port number from this drop down list Buttons Click to add IGMP router port entry Figure 4 7 25 MLD Static Groups Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Group IPv6 Address Display the current group IPv6 address Member ...

Страница 177: ...ptions Life Sec Display the current life 4 7 4 4 MLD Router Setting Depending on your network connections MLD snooping may not always be able to locate the MLD querier Therefore if the MLD querier is a known multicast router switch connected over the network to an interface port or trunk on your LRP Managed Switch you can manually configure the interface and a specified VLAN to join all the curren...

Страница 178: ...orts A router port is a port on the Ethernet switch that leads towards the Layer 3 multicast device or MLD querier Forbid Port Select Specify which ports un act as router ports Buttons Click to add MLD router port entry Figure 4 7 28 Router Port Status Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Static Ports Display the current stat...

Страница 179: ...Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Port Display the current dynamic router ports Expiry Time Sec Display the current expiry time Figure 4 7 30 Static Router Table Page Screenshot The page includes the following fields Object Description VLAN ID Display the current VLAN ID Port Mask Display the current port mask Figure 4 7 31 For...

Страница 180: ...d All Setting Page Screenshot The page includes the following fields Object Description VLAN ID Select VLAN ID from this drop down list to assign MLD membership Port The switch port number of the logical port Select MLD membership for each interface Forbidden Interface is forbidden from automatically joining the MLD via MVR None Interface is not a member of the VLAN Packets associated with this VL...

Страница 181: ...age Screenshot The page includes the following fields Object Description Total RX Display the current total RX Valid RX Display the current valid RX Invalid RX Display the current invalid RX Other RX Display the current other RX Leave RX Display the current leave RX Report RX Display the current report RX General Query RX Display the current general query RX Special Group Query Display the current...

Страница 182: ...leave TX Report TX Display the current report TX General Query TX Display the current general query TX Special Group Query TX Display the current special group query TX Special Group Source Query TX Display the current special group source query TX Buttons Click to clear the MLD Snooping Statistics Click to refresh the MLD Snooping Statistics ...

Страница 183: ...ch Also you can set the multicast throttling number to limit the number of multicast groups an interface can join at the same time The MAX Group and Information screens in Figure 4 7 34 Figure 4 7 35 appear Figure 4 7 34 Max Groups and Action Setting Page Screenshot The page includes the following fields Object Description IP Type Select IPv4 or IPv6 from this drop down list Port Select Select por...

Страница 184: ... filtering enables you to assign a profile to a switch port that specifies multicast groups that are permitted or denied on the port A multicast filter profile can contain one or more or a range of multicast addresses but only one profile can be assigned to a port When enabled multicast join reports received on the port are checked against the filter profile If a requested multicast group is permi...

Страница 185: ...s drop down list Profile Index Indicates the ID of this particular profile Group from Specifies multicast groups to include in the profile Specify a multicast group range by entering a start IP address Group to Specifies multicast groups to include in the profile Specify a multicast group range by entering an end IP address Sets the access mode of the profile either permit or deny Permit Multicast...

Страница 186: ...ype Group from Display the current group from Group to Display the current group to Action Display the current action Modify Click to edit parameter Click to delete the MLD IGMP profile entry 4 7 7 2 IGMP Filter Setting The Filter Setting and Status screens in Figure 4 7 38 Figure 4 7 39 appear Figure 4 7 38 Filter Setting Page Screenshot The page includes the following fields Object Description P...

Страница 187: ... page includes the following fields Object Description Port Display the current port Filter Profile ID Display the current filter profile ID Action Click to display detail profile parameter Click to delete the IGMP filter profile entry 4 7 7 3 MLD Filter Setting The Filter Setting and Status screens in Figure 4 7 40 Figure 4 7 41 appear Figure 4 7 40 Filter Setting Page Screenshot ...

Страница 188: ...elect filter profile ID from this drop down list Buttons Click to apply changes Figure 4 7 41 Port Filter Status Page Screenshot The page includes the following fields Object Description Port Display the current port Filter Profile ID Display the current filter profile ID Action Click to display detail profile parameter Click to delete the MLD filter profile entry ...

Страница 189: ...pecific types of traffic and preserve performance as the amount of traffic grows Reduce the need to constantly add bandwidth to the network Manage network congestion To implement QoS on your network you need to carry out the following actions 1 Define a service level to determine the priority that will be applied to traffic 2 Apply a classifier to determine how the incoming traffic will be classif...

Страница 190: ...igure 4 8 2 appear Figure 4 8 1 QoS Global Setting Page Screenshot The page includes the following fields Object Description QoS Mode Enable or disable QoS mode Buttons Click to apply changes Figure 4 8 2 QoS Information Page Screenshot The page includes the following fields Object Description QoS Mode Display the current QoS mode ...

Страница 191: ...he page includes the following fields Object Description Port Select Select port number from this drop down list CoS Value Select CoS value from this drop down list Remark CoS Disable or enable remark CoS Remark DSCP Disable or enable remark DSCP Remark IP Precedence Disable or enable remark IP Precedence Buttons Click to apply changes Figure 4 8 3 QoS Port Status Page Screenshot ...

Страница 192: ...rk DSCP Display the current remark DSCP Remark IP Precedence Display the current remark IP precedence 4 8 2 3 Queue Settings The Queue Table and Information screens in Figure 4 8 4 Figure 4 8 5 appear Figure 4 8 4 Queue Table Page Screenshot The page includes the following fields Object Description Queue Display the current queue ID Strict Priority Controls whether the scheduler mode is Strict Pri...

Страница 193: ...y the current bandwith for each queue Buttons Click to apply changes Figure 4 8 5 Queue Information Page Screenshot The page includes the following fields Object Description Information Name Display the current queue method information Information Value Display the current queue value information 4 8 2 4 CoS Mapping The CoS to Queue and Queue to CoS Mapping screens in Figure 4 8 6 Figure 4 8 7 app...

Страница 194: ... value from this drop down list Class of Service Select CoS value from this drop down list Buttons Click to apply changes Figure 4 8 7 CoS Mapping Page Screenshot The page includes the following fields Object Description CoS Display the current CoS value Mapping to Queue Display the current mapping to queue ...

Страница 195: ...he DSCP to Queue and Queue to DSCP Mapping screens in Figure 4 8 8 Figure 4 8 9 appear Figure 4 8 8 DSCP to Queue and Queue to DSCP Mapping Page Screenshot The page includes the following fields Object Description Queue Select Queue value from this drop down list DSCP Select DSCP value from this drop down list Buttons Click to apply changes ...

Страница 196: ...ng Page Screenshot The page includes the following fields Object Description DSCP Display the current CoS value Mapping to Queue Display the current mapping to queue Queue Display the current queue value Mapping to DSCP Display the current mapping to DSCP ...

Страница 197: ... in Figure 4 8 10 Figure 4 8 11 appear Figure 4 8 10 IP Precedence to Queue and Queue to IP Precedence Mapping Page Screenshot The page includes the following fields Object Description Queue Select Queue value from this drop down list IP Precedence Select IP Precedence value from this drop down list Buttons Click to apply changes ...

Страница 198: ...urrent mapping to queue Queue Display the current queue value Mapping to IP Precedence Display the current mapping to IP Precedence 4 8 3 QoS Basic Mode 4 8 3 1 Global Settings The Basic Mode Global Settings and QoS Information screens in Figure 4 8 12 Figure 4 8 13 appear Figure 4 8 12 Basic Mode Global Settings Page Screenshot The page includes the following fields Object Description Trust Mode ...

Страница 199: ... Mode Display the current QoS mode 4 8 3 2 Port Settings The QoS Port Setting and Status screens in Figure 4 8 14 Figure 4 8 15 appear Figure 4 8 14 Basic Mode Global Settings Page Screenshot The page includes the following fields Object Description Port Select port number from this drop down list Trust Mode Enable or disable the trust mode Buttons Click to apply changes ...

Страница 200: ...h port number of the logical port Trust Mode Display the current trust type 4 8 4 Rate Limit Configure the switch port rate limit for the switch port on this page 4 8 4 1 Ingress Bandwidth Control This page provides to select the ingress bandwidth preamble The Ingress Bandwidth Control Setting and Status screens in Figure 4 8 16 Figure 4 8 17 appear ...

Страница 201: ...ort rate policer The default value is Disabled Rate Kbps Configure the rate for the port policer The default value is unlimited Valid values are in the range 0 to 1000000 Buttons Click to apply changes Figure 4 8 17 Ingress Bandwidth Control Status Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Ingress Rate Limit Kbps Displ...

Страница 202: ...andwidth Control Settings Page Screenshot The page includes the following fields Object Description Port Select port number from this drop down list State Enable or disable the port rate policer The default value is Disabled Rate Kbps Configure the rate for the port policer The default value is unlimited Valid values are in the range 0 to 1000000 Buttons Click to apply changes Figure 4 8 19 Egress...

Страница 203: ...n Figure 4 8 20 Figure 4 8 21 appear Figure 4 8 20 Egress Queue BandwidthSettings Page Screenshot The page includes the following fields Object Description Port Select port number from this drop down list Queue Select queue number from this drop down list State Enable or disable the port rate policer The default value is Disabled CIR Kbps Configure the CIR for the port policer The default value is...

Страница 204: ...al of LRP 822CS 204 Figure 4 8 21 Egress Queue Status Page Screenshot The page includes the following fields Object Description Queue ID Display the current queue ID Rate Limit Kbps Display the current rate limit ...

Страница 205: ...to Voice VLAN when relocated physically The greatest advantage of the VLAN is the equipment can be automatically placed into Voice VLAN according to its voice traffic which will be transmitted at specified priority Meanwhile when voice equipment is physically relocated it still belongs to the Voice VLAN without any further configuration modification which is because it is based on voice equipment ...

Страница 206: ...d Disable Voice VLAN mode operation Voice VLAN ID Indicates the Voice VLAN ID It should be a unique VLAN ID in the system and cannot equal each port PVID It is conflict configuration if the value equal management VID MVR VID PVID etc The allowed range is 1 to 4095 Remark CoS 802 1p Select 802 1p value from this drop down list 1p Remark Enable or disable 802 1p remark Aging Time 30 65536 min The ti...

Страница 207: ... the current voice VLAN ID Remark CoS 802 1p Display the current remark CoS 802 1p 1p Remark Display the current 1p remark Aging Display the current aging time 4 8 5 3 Telephony OUI MAC Setting Configure VOICE VLAN OUI table on this Page The Telephony OUI MAC Setting screens in Figure 4 8 24 Figure 4 8 25 appear Figure 4 8 24 Voice VLAN OUI Settings Page Screenshot The page includes the following ...

Страница 208: ...exadecimal digit Description User defined text that identifies the VoIP devices Buttons Click to add voice VLAN OUI setting Figure 4 8 25 Voice VLAN OUI Group Page Screenshot The page includes the following fields Object Description OUI Address Display the current OUI address Description Display the current description Modify Click to edit voice VLAN OUI group parameter Click to delete voice VLAN ...

Страница 209: ...phone should configure the voice VLAN ID correctly It should be configured through its own GUI The Telephony OUI MAC Setting screens in Figure 4 8 26 Figure 4 8 27 appear Figure 4 8 26 Voice VLAN Port Setting Page Screenshot The page includes the following fields Object Description Port Select port number for this drop down list State Enable or disable the voice VLAN port setting The default value...

Страница 210: ...er s Manual of LRP 822CS 210 The page includes the following fields Object Description Port The switch port number of the logical port State Display the current state CoS Mode Display the current CoS mode ...

Страница 211: ...the supplicant s port number on the switch EAP is very flexible in that it allows for different authentication methods like MD5 Challenge PEAP and TLS The important thing is that the authenticator the switch doesn t need to know which authentication method the supplicant and the authentication server are using or how many information exchange frames are needed for a particular method The switch si...

Страница 212: ...r LAN EAPOL traffic through the port to which the client is connected After authentication is successful normal traffic can pass through the port This section includes this conceptual information Device Roles Authentication Initiation and Message Exchange Ports in Authorized and Unauthorized States Device Roles With 802 1X port based authentication the devices in the network have specific roles as...

Страница 213: ...mes from the authentication server the server s frame header is removed leaving the EAP frame which is then encapsulated for Ethernet and sent to the client Authentication Initiation and Message Exchange The switch or the client can initiate authentication If you enable authentication on a port by using the dot1x port control auto interface configuration command the switch must initiate authentica...

Страница 214: ...ol the client initiates the authentication process by sending the EAPOL start frame When no response is received the client sends the request for a fixed number of times Because no response is received the client begins sending frames as if the port is in the authorized state If the client is successfully authenticated receives an Accept frame from the authentication server the port state changes ...

Страница 215: ...rity 802 1X Access Control 802 1X Setting page The IEEE802 1X standard defines port based operation but non standard variants overcome security limitations as shall be explored below The 802 1X Setting and Information screens in Figure 4 9 3 Figure 4 9 4 appear Figure 4 9 3 802 1X Setting Page Screenshot The page includes the following fields Object Description 802 1X Indicates if NAS is globally ...

Страница 216: ...tication mode The following modes are available No Authentication Authentication Force Authorized In this mode the switch will send one EAPOL Success frame when the port link comes up and any client on the port will be allowed network access without authentication Force Unauthorized In this mode the switch will send one EAPOL Failure frame when the port link comes up and any client on the port wil...

Страница 217: ... silent on supplicant authentication failure Supplicant Period Sets the interval for the supplicant to re transmit EAP request identify frame Maximum Request Retries The number of times that the switch transmits an EAPOL Request Identity frame without response before considering entering the Guest VLAN is adjusted with this setting The value can only be changed if the Guest VLAN option is globally...

Страница 218: ... will now be placed in the Guest VLAN If disabled the switch will first check its history to see if an EAPOL frame has previously been received on the port this history is cleared if the port link goes down or the port s Admin State is changed and if not the port will be placed in the Guest VLAN Otherwise it will not move to the Guest VLAN but continue transmitting EAPOL Request Identity frames at...

Страница 219: ... network administrator defined timeout The switch follows a set of rules for entering and leaving the Guest VLAN as listed below The Guest VLAN Enabled checkbox provides a quick way to globally enable disable Guest VLAN functionality When checked the individual ports ditto setting determines whether the port can be moved into Guest VLAN When unchecked the ability to move to the Guest VLAN is disab...

Страница 220: ...age Screenshot The page includes the following fields Object Description Port Name The switch port number of the logical port Enable State Display the current state In Guest VLAN Display the current guest VLAN 4 9 1 5 Authenticated Host The Authenticated Host Table screen in Figure 4 9 9 appears ...

Страница 221: ...he current authentication method MAC Address Display the current MAC address 4 9 2 RADIUS Server This page is to configure the RADIUS server connection session parameters The RADIUS Settings screens in Figure 4 9 10 Figure 4 9 11 Figure 4 9 12 appears Figure 4 9 10 Use Default Parameters Page Screenshot The page includes the following fields Object Description Retries Timeout is the number of seco...

Страница 222: ...s the period during which the switch will not send new requests to a server that has failed to respond to a previous request This will stop the switch from continually trying to contact a server that it has already determined as dead Setting the Dead Time to a value greater than 0 zero will enable this feature but only if more than one server has been configured Key String The secret key up to 63 ...

Страница 223: ...ng the UDP protocol which is unreliable by design In order to cope with lost frames the timeout interval is divided into 3 subintervals of equal length If a reply is not received within the subinterval the request is transmitted again This algorithm causes the RADIUS server to be queried up to 3 times before it is considered to be dead Retries Timeout is the number of seconds in the range 1 to 10 ...

Страница 224: ...ay the current timeout Retries Display the current retry times Priority Display the current priority Dead Time Display the current dead time Usage Type Display the current usage type Modufy Click to edit login authentication list parameter Click to delete login authentication list entry 4 9 3 TACACS Server This page is to configure the RADIUS server connection session parameters The RADIUS Setting...

Страница 225: ... is considered to be dead Buttons Click to apply changes Figure 4 9 14 New Radius Server Page Screenshot The page includes the following fields Object Description Server Definition Set the server definition Server IP Address of the TACACS server IP name Server Port Network TCP port of TACACS server used for authentication messages Range 1 65535 Default 49 Server Key The key shared between the TACA...

Страница 226: ...following fields Object Description IP Address Display the current IP address Port Display the current port Key Display the current key Timeout Display the current timeout Retries Display the current retry times Priority Display the current priority Modify Click to edit login authentication list parameter Click to delete login authentication list entry ...

Страница 227: ...following AAA features Accounting for IEEE 802 1X authenticated users that access the network through the LRP Managed Switch Accounting for users that access management interfaces on the LRP Managed Switch through the console and Telnet Accounting for commands that users enter at specific CLI privilege levels Authorization of users that access management interfaces on the LRP Managed Switch throug...

Страница 228: ...Name Defines a name for the authentication list Method 1 4 Set the login authentication method Empty None Local TACACS RADIUS Enable Buttons Click to add authentication list Figure 4 9 18 Login Authentication List Screenshot The page includes the following fields Object Description List Name Display the current list name Method List Display the current method list Modify Click to edit login authen...

Страница 229: ...ist Name Defines a name for the authentication list Method 1 3 Set the login authentication method Empty None Enable TACACS RADIUS Buttons Click to add authentication list Figure 4 9 20 Login Authentication List Screenshot The page includes the following fields Object Description List Name Display the current list name Method List Display the current method list Modify Click to edit login authenti...

Страница 230: ...age Screenshot The page includes the following fields Object Description Telnet Service Disable or enable Telnet service Login Authentication List Select login authentication list from this drop down list Enable Authentication List Select enable authentication list from this drop down list Session Timeout Set the session timeout value Password Retry Count Set the password retry count value Silent ...

Страница 231: ... Telnet session count 4 9 5 2 SSH Configure SSH on this page This page shows the Port Security status Port Security is a module with no direct configuration Configuration comes indirectly from other modules the user modules When a user module has enabled port security on a port the port is set up for software based learning In this mode frames from unknown MAC addresses are passed on to the port s...

Страница 232: ...ervice Disable or enable SSH service Login Authentication List Select login authentication list from this drop down list Enable Authentication List Select enable authentication list from this drop down list Session Timeout Set the session timeout value Password Retry Count Set the password retry count value Silent Time Set the silent time value Buttons Click to apply changes Click to disconnect Te...

Страница 233: ...tion list Enable Authentication List Display the current enable authentication list Session Timeout Display the current session timeout Password Retry Count Display the current password retry count Silent Time Display the current silent time Current SSH Session Count Display the current SSH session count 4 9 5 3 HTTP The HTTP Settings and Information screens in Figure 4 9 25 Figure 4 9 26 appear F...

Страница 234: ...ion list from this drop down list Session Timeout Set the session timeout value Buttons Click to apply changes Figure 4 9 26 HTTP Information Page Screenshot The page includes the following fields Object Description HTTP Service Display the current HTTP service Login Authentication List Display the current login authentication list Session Timeout Display the current session timeout ...

Страница 235: ...able HTTPs service Login Authentication List Select login authentication list from this drop down list Session Timeout Set the session timeout value Buttons Click to apply changes Figure 4 9 28 HTTPs Information Page Screenshot The page includes the following fields Object Description HTTPs Service Display the current HTTPs service Login Authentication List Display the current login authentication...

Страница 236: ... Priority 1 65535 Set priority The allowed value is from 1 to 65535 Management Method Indicates the host can access the switch from HTTP HTTPs telnet SSH SNMP All interface that the host IP address matched the entry Action An IP address can contain any combination of permit or deny rules Default Permit rules Sets the access mode of the profile either permit or deny Port Select port from this drop ...

Страница 237: ...lay the current source IPv4 address Source IPv4 Mask Display the current source IPv4 mask Source IPv6 Display the current source IPv6 address Source IPv6 Prefix Display the current source IPv6 prefix Modify Click to edit profile rule parameter Click to delete profile rule entry 4 9 6 2 Access Rules The access profile screens in Figure 4 9 31 Figure 4 9 32 appear Figure 4 9 31 Access Profile Page S...

Страница 238: ...Buttons Click to apply changes Figure 4 9 32 Access Profile Table Page Screenshot The page includes the following fields Object Description Access Profile Display the current access profile Delete Click to delete access profile entry ...

Страница 239: ... snooping is used to filter DHCP messages received on a non secure interface from outside the network or firewall When DHCP snooping is enabled globally and enabled on a VLAN interface DHCP messages received on an untrusted interface from a device not listed in the DHCP snooping table will be dropped Table entries are only learned for trusted interfaces An entry is added or removed dynamically to ...

Страница 240: ...hernet header If the DHCP packet is not a recognizable type it is dropped If a DHCP packet from a client passes the filtering criteria above it will only be forwarded to trusted ports in the same VLAN If a DHCP packet is from server is received on a trusted port it will be forwarded to both trusted and untrusted ports in the same VLAN If the DHCP snooping is globally disabled all dynamic bindings ...

Страница 241: ...ation Page Screenshot The page includes the following fields Object Description DHCP Snooping Display the current DHCP snooping status 4 9 7 3 VLAN Setting Command Usage When DHCP snooping is enabled globally on the switch and enabled on the specified VLAN DHCP packet filtering will be performed on any untrusted ports within the VLAN When the DHCP snooping is globally disabled DHCP snooping can st...

Страница 242: ...ode operation Possible modes are Enabled Enable DHCP snooping mode operation When DHCP snooping mode operation is enabled the request DHCP messages will be forwarded to trusted ports and only allowed reply packets from trusted ports Disabled Disable DHCP snooping mode operation Buttons Click to apply changes Figure 4 9 36 DHCP Snooping VLAN Setting Page Screenshot The page includes the following f...

Страница 243: ...h this port are removed Set all ports connected to DHCP servers within the local network or firewall to trusted state Set all other ports outside the local network or firewall to untrusted state The DHCP Snooping Port Setting screens in Figure 4 9 37 Figure 4 9 38 appear Figure 4 9 37 DHCP Snooping Port Setting Page Screenshot The page includes the following fields Object Description Port Select p...

Страница 244: ...udes the following fields Object Description Port The switch port number of the logical port Type Display the current type Chaddr Check Display the current chaddr check 4 9 7 5 Statistics The DHCP Snooping Statistics screen in Figure 4 9 39 appears Figure 4 9 39 DHCP Snooping Statistics Page Screenshot ...

Страница 245: ...ce to which the binding applies and the VLAN to which the interface belongs A checksum value the end of each entry is the number of bytes from the start of the file to end of the entry Each entry is 72 bytes followed by a space and then the checksum value To keep the bindings when the switch reloads you must use the DHCP snooping database agent If the agent is disabled dynamic ARP or IP source gua...

Страница 246: ... 40 DHCP Snooping Database Setting Page Screenshot The page includes the following fields Object Description Database Type Select database type File Name The name of file image Remote Server Fill in your remote server IP address Write Delay Specify the duration for which the transfer should be delayed after the binding database changes The range is from 15 to 86400 seconds The default is 300 secon...

Страница 247: ...ile Name Display the current file name Remote Server Display the current remote server Write Delay Display the current write delay Timeout Display the current timeout 4 9 7 7 Rate Limit After enabling DHCP snooping the switch will monitor all the DHCP messages and implement software transmission The DHCP Rate Limit Setting and Config screens in Figure 4 9 42 Figure 4 9 43 appear Figure 4 9 42 DHCP...

Страница 248: ...ate Limit pps Configure the rate limit for the port policer The default value is unlimited Valid values are in the range 1 to 300 Buttons Click to apply changes Figure 4 9 43 DHCP Rate Limit Setting Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Rate Limit pps Display the current rate limit ...

Страница 249: ...ns Circuit ID option 1 Remote ID option 2 The Circuit ID sub option is supposed to include information specific to which circuit the request came in on The Remote ID sub option was designed to carry information relating to the remote host end of the circuit The definition of Circuit ID in the switch is 4 bytes in length and the format is vlan_id module_id port_no The parameter of vlan_id is the fi...

Страница 250: ...equest message which contains option 82 The drop mode means that if the message has option 82 then the system will drop it without processing keep mode means that the system will keep the original option 82 segment in the message and forward it to the server to process replace mode means that the system will replace the option 82 segment in the existing message with its own option 82 and forward t...

Страница 251: ... Allow Untrusted Select modes from this drop down list The following modes are available Drop Keep Replace Buttons Click to apply changes Figure 4 9 47 Option 82 Global Setting Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Enable Display the current status Allow Untrusted Display the current untrusted mode ...

Страница 252: ...e Screenshot The page includes the following fields Object Description Port Select port for this drop down list VLAN Indicates the ID of this particular VLAN Circuit ID Set the option1 Circuit ID content of option 82 added by DHCP request packets Buttons Click to apply changes Figure 4 9 49 Option 82 Port Circuit ID Setting Page Screenshot The page includes the following fields Object Description ...

Страница 253: ...ction related configuration A Dynamic ARP prevents the untrusted ARP packets based on the DHCP Snooping Database 4 9 8 1 Global Setting DAI Setting and Information screens in Figure 4 9 50 Figure 4 9 51 appear Figure 4 9 50 DAI Setting Page Screenshot The page includes the following fields Object Description DAI Enable the Global Dynamic ARP Inspection or disable the Global ARP Inspection Buttons ...

Страница 254: ...the following fields Object Description VLAN ID Indicates the ID of this particular VLAN Status Enables Dynamic ARP Inspection on the specified VLAN Options Enable Disable Buttons Click to apply changes Figure 4 9 53 DAI VLAN Setting Page Screenshot The page includes the following fields Object Description VLAN List Display the current VLAN list Status Display the current status ...

Страница 255: ...he source MAC address in the Ethernet header against the sender MAC address in the ARP body This check is performed on both ARP requests and responses When enabled packets with different MAC addresses are classified as invalid and are dropped Dst Mac Chk Enable or disable to checks the destination MAC address in the Ethernet header against the target MAC address in ARP body This check is performed...

Страница 256: ...des the following fields Object Description Port The switch port number of the logical port Type Display the current port type Src Mac Chk Display the current Src Mac Chk status Dst Mac Chk Display the current Dst Mac Chk status IP Chk Display the current IP Chk status IP Allow Zero Display the current IP allow zero status ...

Страница 257: ... The switch port number of the logical port Forwarded Display the current forwarded Source MAC Failures Display the current source MAC failures Dest MAC Failures Display the current source MAC failures SIP Validation Failures Display the current SIP Validation failures DIP Validation Failures Display the current DIP Validation failures IP MAC Mismatch Failures Display the current IP MAC mismatch f...

Страница 258: ...ds Object Description Port Select port from this drop down list State Set default or user define Rate Limit pps Configure the rate limit for the port policer The default value is unlimited Buttons Click to apply changes Figure 4 9 58 ARP Rate Limit Setting Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Rate Limit pps Displa...

Страница 259: ...en a host tries to spoof and use the IP address of another host After receiving a packet the port looks up the key attributes including IP address MAC address and VLAN tag of the packet in the binding entries of the IP source guard If there is a matching entry the port will forward the packet Otherwise the port will abandon the packet IP source guard filters packets based on the following types of...

Страница 260: ... 60 IP Source Guard Port Setting Page Screenshot The page includes the following fields Object Description Port Select port from this drop down list Status Enable or disable the IP source guard Verify Source Configures the switch to filter inbound traffic based IP address or IP address and MAC address None Disables IP source guard filtering on the LRP Managed Switch IP Enables traffic filtering ba...

Страница 261: ... of the logical port Status Display the current status Verify Source Display the current verify source Max Binding Entry Display the current max binding entry Current Binding Entry Display the current binding entry 4 9 9 2 Binding Table The IP Source Guard Static Binding Entry and Table Status screens in Figure 4 9 62 Figure 4 9 63 appear Figure 4 9 62 IP Source Guard Static Binding Entry Page Scr...

Страница 262: ...owed Buttons Click to add authentication list Figure 4 9 63 IP Source Guard Binding Table Status Page Screenshot The page includes the following fields Object Description Port Display the current port VLAN ID Display the current VLAN MAC Address Display the current MAC address IP Address Display the current IP Address Type Display the current entry type Lease Time Display the current lease time Ac...

Страница 263: ...Port Security Setting Page Screenshot The page includes the following fields Object Description Port Select port from this drop down list Security Enable or disable the port security Mac L2 Entry The maximum number of MAC addresses that can be secured on this port If the limit is exceeded the corresponding action is taken The switch is born with a total number of MAC addresses from which all ports...

Страница 264: ... If Limit 1 MAC addresses is seen on the port it will trigger the action that do not learn the new MAC and drop the package Buttons Click to apply changes Figure 4 9 65 Port Security Status Page Screenshot The page includes the following fields Object Description Port Name The switch port number of the logical port Enable State Display the current per port security status L2 Entry Num Display the ...

Страница 265: ...ak of sensitive data of the server Security feature refers to applications such as protocol check which is for protecting the server from attacks such as DoS The protocol check allows the user to drop matched packets based on specified conditions The security features provide several simple and effective protections against Dos attacks while acting no influence on the linear forwarding performance...

Страница 266: ...es the following fields Object Description DMAC SMAC Enable or disable DoS check mode by DMAC SMAC Land Enable or disable DoS check mode by land UDP Blat Enable or disable DoS check mode by UDP blat TCP Blat Enable or disable DoS check mode by TCP blat POD Enable or disable DoS check mode by POD ...

Страница 267: ...de by smurf attack TCP Min Hdr Size Enable or disable DoS check mode by TCP min hdr size TCP SYN SPORT 1024 Enable or disable DoS check mode by TCP syn sport 1024 Null Scan Attack Enable or disable DoS check mode by null scan attack X Mas Scan Attack Enable or disable DoS check mode by x mas scan attack TCP SYN FIN Attack Enable or disable DoS check mode by TCP syn fin attack TCP SYN RST Attack En...

Страница 268: ...Ping Max Size Display the current IPv6 ping max size status Smurf Attack Display the current smurf attack status TCP Min Header Length Display the current TCP min header length TCP SYN SPORT 1024 Display the current TCP syn status Null Scan Attack Display the current null scan attack status X Mas Scan Attack Display the current x mas scan attack status TCP SYN FIN Attack Display the current TCP sy...

Страница 269: ...m this drop down list DoS Protection Enable or disable per port DoS protection Buttons Click to apply changes Figure 4 9 68 Port Security Setting Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port DoS Protection Display the current DoS protection ...

Страница 270: ...lobal Setting and Information screens in Figure 4 9 69 Figure 4 9 70 appear Figure 4 9 69 Storm Control Global Setting Page Screenshot The page includes the following fields Object Description Unit Controls the unit of measure for the storm control rate as pps or bps The default value is bps Preamble IFG Set the excluded or included interframe gap Buttons Click to apply changes Figure 4 9 70 Storm...

Страница 271: ...iguration screens in Figure 4 9 71 Figure 4 9 72 appear Figure 4 9 71 Storm Control Setting Page Screenshot The page includes the following fields Object Description Port Select port for this drop down list Port State Enable or disable the storm control status for the given storm type Action Configures the action performed when storm control is over rate on a port Valid values are Shutdown or Drop...

Страница 272: ...escription Port The switch port number of the logical port Port State Display the current port state Broadcast Kbps pps Display the current broadcast storm control rate Unknown Multicast Kbps pps Display the current unknown multicast storm control rate Unknown Unicast Kbps pps Display the current unknown unicast storm control rate Action Display the current action ...

Страница 273: ...ID There are three ACE frame types Ethernet Type ARP and IPv4 and two ACE actions permit and deny The ACE also contains many detailed different parameter options that are available for individual application The ACL page contains links to the following main topics MAC based ACL Configure MAC based ACL setting MAC based ACE Add Edit Delete the MAC based ACE Access Control Entry setting IPv4 based A...

Страница 274: ... Object Description Delete Click to delete ACL name entry 4 10 2 MAC based ACE An ACE consists of several parameters Different parameter options are displayed depending on the frame type that you select The MAC based ACE screens in Figure 4 10 3 Figure 4 10 4 appear Figure 4 10 3 MAC based ACE Page Screenshot ...

Страница 275: ...re SHA is not equal to the DA MAC address 1 ARP frames where SHA is equal to the DA MAC address SA MAC Specify the source MAC filter for this ACE Any No SA MAC filter is specified User Defined If you want to filter a specific source MAC address with this ACE choose this value A field for entering a SA MAC value appears SA MAC Value When User Defined is selected for the SA MAC filter you can enter ...

Страница 276: ...dress Display the current destination MAC address Destination MAC Address Mask Display the current destination MAC address mask Source MAC Address Display the current source MAC address Source MAC Address Mask Display the current source MAC address mask VLAN ID Display the current VLAN ID 802 1p Display the current 802 1p value 802 1p Mask Display the current 802 1p mask Ethertype Display the curr...

Страница 277: ...IPv4 based ACL Page Screenshot The page includes the following fields Object Description ACL Name Create a name from IPv4 based ACL list Buttons Click to add ACL name list Figure 4 10 6 ACL Table Page Screenshot The page includes the following fields Object Description Delete Click to delete ACL name entry 4 10 4 IPv4 based ACE An ACE consists of several parameters Different parameter options are ...

Страница 278: ...User s Manual of LRP 822CS 278 Figure 4 10 7 IP based ACE Page Screenshot ...

Страница 279: ... address The legal format is xxx xxx xxx xxx A frame that hits this ACE matches this source IP address value Source IP Wildcard Mask When User Defined is selected for the source IP filter you can enter a specific SIP mask in dotted decimal notation Destination IP Address Specify the Destination IP address filter for this ACE Any No destination IP address filter is specified User Defined If you wan...

Страница 280: ...ue appears UGR Specify the TCP Urgent Pointer field significant URG value for this ACE Set TCP frames where the URG field is set must be able to match this entry Unset TCP frames where the URG field is set must not be able to match this entry Don t Care Any value is allowed don t care ACK Specify the TCP Acknowledgment field significant ACK value for this ACE Set TCP frames where the ACK field is ...

Страница 281: ...e IP Recedence If you want to filter a specific IP recedence with this ACE you can enter a specific IP recedence value A field for entering an IP recedence value appears The allowed range is 0 to 7 A frame that hits this ACE matches this IP recedence value ICMP Specify the ICMP for this ACE Any No specifc ICMP is specified destination port status is don t care List If you want to filter a specific...

Страница 282: ...nt source IP address wildcard mask Destination IP Address Display the current destination IP address Destination IP Address Wildcard Mask Display the current destination IP address wildcard mask Source Port Range Display the current source port range Destiantion Port Range Display the current destination port range Flag Set Display the current flag set DSCP Display the current DSCP IP Precedence D...

Страница 283: ...Pv6 based ACL Page Screenshot The page includes the following fields Object Description ACL Name Create a name from IPv6 based ACL list Buttons Click to add ACL name list Figure 4 10 10 ACL Table Page Screenshot The page includes the following fields Object Description Delete Click to delete ACL name entry 4 10 6 IPv6 based ACE An ACE consists of several parameters Different parameter options are ...

Страница 284: ...User s Manual of LRP 822CS 284 Figure 4 10 11 IP based ACE Page Screenshot The page includes the following fields ...

Страница 285: ... IP address value Source IP Prefix Length When User Defined is selected for the source IP filter you can enter a specific SIP prefix length in dotted decimal notation Destination IP Address Specify the Destination IP address filter for this ACE Any No destination IP address filter is specified User Defined If you want to filter a specific destination IP address with this ACE choose this value A fi...

Страница 286: ... destination port value appears UGR Specify the TCP Urgent Pointer field significant URG value for this ACE Set TCP frames where the URG field is set must be able to match this entry Unset TCP frames where the URG field is set must not be able to match this entry Don t Care Any value is allowed don t care ACK Specify the TCP Acknowledgment field significant ACK value for this ACE Set TCP frames wh...

Страница 287: ... hits this ACE matches this DSCP value IP Recedence If you want to filter a specific IP recedence with this ACE you can enter a specific IP recedence value A field for entering a IP recedence value appears The allowed range is 0 to 7 A frame that hits this ACE matches this IP recedence value ICMP Specify the ICMP for this ACE Any No specifc ICMP is specified destination port status is don t care L...

Страница 288: ...splay the current source IP address wildcard mask Destination IP Address Display the current destination IP address Destination IP Address Wildcard Mask Display the current destination IP address wildcard mask Source Port Range Display the current source port range Destination Port Range Display the current destination port range Flag Set Display the current flag set DSCP Display the current DSCP ...

Страница 289: ...on Binding Port Select port from this drop down list ACL Select Select ACL list from this drop down list Buttons Click to apply changes Figure 4 10 14 ACL Binding Table Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port MAC ACL Display the current MAC ACL IPv4 ACL Display the current IPv4 ACL IPv6 ACL Display the current IPv6 A...

Страница 290: ...equipment sending the frame The SMAC address is used by the switch to automatically update the MAC table with these dynamic MAC addresses Dynamic entries are removed from the MAC table if no frame with the corresponding SMAC address has been seen after a configurable age time 4 11 1 Static MAC Setting The static entries in the MAC table are shown in this table The MAC table is sorted first by VLAN...

Страница 291: ...ort Delete Click to delete static MAC status entry 4 11 2 MAC Filtering By filtering MAC address the switch can easily filter the per configured MAC address and reduce the un safety The Static MAC Setting screens in Figure 4 11 3 Figure 4 11 4 appear Figure 4 11 3 MAC Filtering Setting Page Screenshot The page includes the following fields Object Description MAC Address Physical address associated...

Страница 292: ...VLAN ID for the entry Delete Click to delete static MAC status entry 4 11 3 Dynamic Address Setting By default dynamic entries are removed from the MAC table after 300 seconds The Dynamic Address Setting Status screens in Figure 4 11 5 Figure 4 11 6 appear Figure 4 11 5 Dynamic Addresses Setting Page Screenshot The page includes the following fields Object Description Aging Time The time after whi...

Страница 293: ... Dynamic MAC Table Dynamic Learned MAC Table is shown on this page The MAC Table is sorted first by VLAN ID then by MAC address The Dynamic Learned screens in Figure 4 11 6 Figure 4 11 7 appear Figure 4 11 6 Dynamic Learned Page Screenshot The page includes the following fields Object Description Port Select port from this drop down list VLAN Select VLAN from this drop down list MAC Address Physic...

Страница 294: ...hes all dynamic entries Figure 4 11 7 MAC Address Information Page Screenshot Object Description MAC Address The MAC address of the entry VLAN The VLAN ID of the entry Type Indicates whether the entry is a static or dynamic entry Port The ports that are members of the entry Buttons Click to add dynamic MAC address to static MAC address ...

Страница 295: ...dpoint Discovery LLDP MED is an extension of LLDP intended for managing endpoint devices such as Voice over IP phones and network switches The LLDP MED TLVs advertise information such as network policy power inventory and device location details LLDP and LLDP MED information can be used by SNMP applications to simplify troubleshooting enhance network management and maintain an accurate network top...

Страница 296: ...en a port is disabled LLDP is disabled or the switch is rebooted a LLDP shutdown frame is transmitted to the neighboring units signaling that the LLDP information isn t valid anymore TX Reinit controls the amount of seconds between the shutdown frame and a new LLDP initialization Valid values are restricted to 1 10 seconds Transmit Delay If some configuration is changed e g the IP address a new LL...

Страница 297: ...LDP status LLDP PDU Disable Action Display the current LLDP PDU disable action Transmission Interval Display the current transmission interval Holdtime Multiplier Display the current holdtime multiplier Reinitialization Delay Display the current reinitialization delay Transmit Delay Display the current transmit delay LLDP MED Fast Start Repeat Count Display the current LLDP MED Fast Start Repeat C...

Страница 298: ...port from this drop down list State Enables LLDP messages transmit and receive modes for LLDP Protocol Data Units Options TX only RX only Tx RX Disabled Port Select Select port from this drop down list Optional TLV Select Configures the information included in the TLV field of advertised messages System Name When checked the System Name is included in LLDP information transmitted Port Description ...

Страница 299: ...ed in LLDP information transmitted Management Address When checked the Management Address is included in LLDP information transmitted 802 1 PVID When checked the 802 1 PVID is included in LLDP information transmitted Buttons Click to apply changes Figure 4 12 4 LLDP Port Status Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port...

Страница 300: ...The page includes the following fields Object Description Port Select Select port from this drop down list VLAN Select Select VLAN from this drop down list Buttons Click to apply changes Figure 4 12 6 LLDP Port VLAN TLV Status Page Screenshot The page includes the following fields Object Description Port The switch port number of the logical port Selected VLAN Display the current selected VLAN ...

Страница 301: ...8 appear Figure 4 12 7 Local Device Summary Page Screenshot The page includes the following fields Object Description Chassis ID Subtype Display the current chassis ID subtype Chassis ID Display the current chassis ID System Name Display the current system name System Description Display the current system description Capabilities Supported Display the current capabilities supported Capabilities E...

Страница 302: ...ort LLDP Status Display the current LLDP status LLDP MED Status Display the current LLDP MED Status 4 12 5 LLDP Remote Device This page provides a status overview for all LLDP remote devices The displayed table contains a row for each port on which an LLDP neighbor is detected The LLDP Remote Device screen in Figure 4 12 9 appears Figure 4 12 9 LLDP Remote Device Page Screenshot ...

Страница 303: ...sis ID The Chassis ID is the identification of the neighbor s LLDP frames Port ID Subtype Display the current port ID subtype Port ID The Remote Port ID is the identification of the neighbor port System Name System Name is the name advertised by the neighbor unit Time to Live Display the current time to live Buttons Click to delete LLDP remote device entry Click to refresh LLDP remote device ...

Страница 304: ...s of application types supported on a given port The application types specifically addressed are 1 Voice 2 Guest Voice 3 Softphone Voice 4 Video Conferencing 5 Streaming Video 6 Control Signaling conditionally support a separate network policy for the media types above A large network may support multiple VoIP policies across the entire organization and different policies per application type LLD...

Страница 305: ...nhanced security by isolation from data applications Voice Signaling for use in network topologies that require a different policy for the voice signaling than for the voice media This application type should not be advertised if all the same network policies apply as those advertised in the Voice application policy Guest Voice support a separate limited feature set voice service for guest users a...

Страница 306: ...ertised in the Video Conferencing application policy VLAN ID VLAN identifier VID for the port as defined in IEEE 802 1Q 2003 Tag Tag indicating whether the specified application type is using a tagged or an untagged VLAN Untagged indicates that the device is using an untagged frame format and as such does not include a tag header as defined by IEEE 802 1Q 2003 In this case both the VLAN ID and the...

Страница 307: ...lication Display the current application VLAN ID Display the current VLAN ID VLAN Tag Display the current VLAN tag status L2 Priertity Display the current L2 prierity DSCP Value Dusplay the current DSCP value Buttons Click to delete LLDP MED network policy table entry 4 12 7 MED Port Setting The Port LLDP MED Configuration Port Setting Table screens in Figure 4 12 12 Figure 4 12 13 appear Figure 4...

Страница 308: ...igurations frequently result in voice quality degradation or complete service disruption Location This option advertises location identification details Inventory This option advertises device details useful for inventory management such as manufacturer model software version and other pertinent information MED Network Policy Select MED network policy from this drop down list Buttons Click to appl...

Страница 309: ...ion Page Screenshot The page includes the following fields Object Description Port Select port from this drop down list Location Coordinate A string identifying the Location Coordinate that this entry should belong to Location Civic Address A string identifying the Location Civic Address that this entry should belong to Location ESC ELIN A string identifying the Location ESC ELIN that this entry s...

Страница 310: ...ent ESC ELIN 4 12 8 LLDP Overloading The LLDP Port Overloading screen in Figure 4 12 16 appears Figure 4 12 16 LLDP Port Overloading Table Page Screenshot The page includes the following fields Object Description Interface The switch port number of the logical port Toltal Bytes Total number of bytes of LLDP information that is normally sent in a packet Left to Send Bytes Total number of available ...

Страница 311: ... overloaded MED Inventory Displays if the mandatory group of TLVs was transmitted or overloaded 802 1 TLVs Displays if the 802 1 TLVs were transmitted or overloaded 4 12 9 LLDP Statistics Use the LLDP Device Statistics screen to general statistics for LLDP capable devices attached to the switch and for LLDP protocol messages transmitted or received on all local interfaces The LLDP Global and Port ...

Страница 312: ...and discarded This situation is known as Too Many Neighbors in the LLDP standard LLDP frames require a new entry in the table when the Chassis ID or Remote Port ID is not already contained within the table Entries are removed from the table when a given port links down an LLDP shutdown frame is received or when the entry ages out RX Frame Error The number of received LLDP frames containing some ki...

Страница 313: ...s The Cable Diagnostics performs tests on copper cables These functions have the ability to identify the cable length and operating conditions and to isolate a variety of common faults that can occur on the Cat5 twisted pair cabling There might be two statuses as follows If the link is established on the twisted pair interface in 1000BASE T mode the Cable Diagnostics can run without disruption of ...

Страница 314: ...lds Object Description Port Select port from this drop down list Buttons Click to run the diagnostics Figure 4 13 2 Test Results Page Screenshot The page includes the following fields Object Description Port The port where you are requesting Cable Diagnostics Channel A D Display the current channel status Cable Length A D Display the current cable length Result Display the test result ...

Страница 315: ...ts are transmitted and the sequence number and roundtrip time are displayed upon reception of a reply The page refreshes automatically until responses to all packets are received or until a timeout occurs The ICMP Ping screen in Figure 4 13 3 appears Figure 4 13 3 ICMP Ping Page Screenshot The page includes the following fields Object Description IP Address The destination IP Address Count Number ...

Страница 316: ...dtrip time are displayed upon reception of a reply The page refreshes automatically until responses to all packets are received or until a timeout occurs The ICMPv6 Ping screen in Figure 4 13 4 appears Figure 4 13 4 ICMPv6 Ping Page Screenshot The page includes the following fields Object Description IP Address The destination IPv6 Address Count Number of echo requests to send Interval in sec Send...

Страница 317: ...cket with TTL at 2 will be sent Also the send hop may be a TTL timeout return but the procedure will carries on till the data packet is sent to its destination These procedures is for recording every source address which returned ICMP TTL timeout message so to describe a path the IP data packets traveled to reach the destination The Trace Route Setting screen in Figure 4 13 5 appears Figure 4 13 5...

Страница 318: ...ed by the Agent History Record periodical statistic samples available from Statistics Alarm Allow management console users to set any count or integer for sample intervals and alert thresholds for RMON Agent records Event A list of all events generated by RMON Agent Alarm depends on the implementation of Event Statistics and History display some current or history subnet statistics Alarm and Event...

Страница 319: ...tal number of packets received that were longer than 1518 octets Fragements The number of frames which size is less than 64 octets received with invalid CRC Jabbers The number of frames which size is larger than 64 octets received with invalid CRC Collisions The best estimate of the total number of collisions on this Ethernet segment 64 Bytes Frame The total number of packets including bad packets...

Страница 320: ...ssible types are none The total number of octets received on the interface including framing characters log The number of uni cast packets delivered to a higher layer protocol SNMP Trap The number of broad cast and multi cast packets delivered to a higher layer protocol Log and Trap The number of inbound packets that are discarded even the packets are normal Community Specify the community when tr...

Страница 321: ...cription Last Sent Time Display the current last sent time Owner Display the current event owner Action Click to delete RMON event entry 4 14 3 RMON Event Log This page provides an overview of RMON Event Log The RMON Event Log Table screen in Figure 4 14 4 appears Figure 4 14 4 RMON Event Log Table Page Screenshot The page includes the following fields Object Description Select Index Select index ...

Страница 322: ... the alarm entry Sample Port Select port from this drop down list Sample Variable Indicates the particular variable to be sampled the possible variables are DropEvents The total number of events in which packets were dropped due to lack of resources Octets The number of received and transmitted good and bad bytes Includes FCS but excludes framing bits Pkts The total number of frames bad broadcast ...

Страница 323: ...total number of frames including bad packets received andtransmitted that were 64 octets in length excluding framing bits but including FCS octets Pkts64to172Octets The total number of frames including bad packets received andtransmitted where the number of octets fall within the specified range excluding framing bits but including FCS octets Pkts158to255Octets The total number of frames including...

Страница 324: ...is crossed Owner Specify an owner for the alarm Buttons Click to apply changes Figure 4 14 6 RMON Alarm Status Page Screenshot The page includes the following fields Object Description Index Indicates the index of Alarm control entry Sample Port Display the current sample port Sample Variable Display the current sample variable Sample Interval Display the current interval Sample Type Display the c...

Страница 325: ...index or modify the index Index Indicates the index of the history entry Sample Port Select port from this drop down list Bucket Requested Indicates the maximum data entries associated this History control entry stored in RMON The range is from 1 to 50 default value is 50 Interval Indicates the interval in seconds for sampling the history statistics data The range is from 1 to 3600 default value i...

Страница 326: ... Interval Display the current interval Owner Display the current owner Action Click to delete RMON history entry 4 14 6 RMON History Log This page provides a detail of RMON history entries screen in Figure 4 14 9 appears Figure 4 14 9 RMON History Status Page Screenshot The page includes the following fields Object Description History Index Select history index from this drop down list Buttons Cli...

Страница 327: ... 36 watts max Long Reach Power over Ethernet Extenders Enterprise can extend IP Ethernet transmission and inject power over an existing coaxial cable for distance up to 1000m 3280ft to PoE IP camera PoE wireless AP and any 802 3af at complied powered device PD Approved PLANET Long Reach PoE Extenders The following list of approved PLANET Long Reach PoE extenders is correct at the time of publicati...

Страница 328: ...ggregated power of the system is lower than the power level at which additional PDs cannot be connected When this value is exceeded ports will be deactivated according to user defined priorities The power budget is managed according to the following user definable parameters maximum available power ports priority and maximum allowable power per port Reserved Power There are five modes for configur...

Страница 329: ...ve PoE power to PD Temperature Threshold Allows setting over temperature protection threshold value If the system temperature is overly high the system will lower the total PoE power budget automatically PoE Temperature Display the PoE Chip Temperature This section displays the PoE Power Usage of Current Power Consumption as Figure 4 16 2 shows Figure 4 16 2 Current Power Consumption Screenshot Th...

Страница 330: ... port with the lowest priority will be turned off and offer power for the port of higher priority Current Used mA The Power Used shows how much current the PD currently is using Power Used W The Power Used shows how much power the PD currently is using Power Allocation It can limit the port PoE supply watts Per port maximum value must be less than 30 8 watts Total port values must be less than the...

Страница 331: ...nmental protection on the Earth the Managed PoE switch can effectively control the power supply besides its capability of giving high watts power The PoE schedule function helps you to enable or disable PoE power feeding for each PoE port during specified time intervals and it is a powerful function to help SMB or Enterprise save power and money Scheduled Power Recycling The Managed PoE switch all...

Страница 332: ...r port PoE Mode option to enable you to indicate which schedule profile could be applied to the PoE port The page includes the following fields Object Description Profile Set the schedule profile mode Possible profiles are Profile1 Profile2 Profile3 Profile4 Week Day Allows user to set week day for defining PoE function by enabling it on the day Start Hour Allows user to set what hour PoE function...

Страница 333: ... function offers administrator to reboot PoE device at an indicated time if administrator has this kind of requirement Reboot Only Allows user to reboot PoE function by PoE reboot schedule Please note that if administrator enables this function PoE schedule will not set time to profile This function is just for PoE port to reset at an indicated time Reboot Hour Allows user to set what hour PoE reb...

Страница 334: ...Once the PD stops working and without response the PoE Switch is going to restart PoE port port power and bring the PD back to work It will greatly enhance the reliability and reduces administrator management burden This page provides you with how to configure PD Alive Check The screen in Figure 4 16 5 appears Figure 4 15 5 PD Alive Check Configuration Screenshot ...

Страница 335: ...e PoE port will be reset Action Allows user to set which action will be applied if the PD is without any response The WGSW 48040HP PoE Switch offers the following 3 actions PD Reboot It means system will reset the PoE port that is connected to the PD PD Reboot Alarm It means system will reset the PoE port and issue an alarm message via Syslog SMTP Alarm It means system will issue an alarm message ...

Страница 336: ... can reset the configuration of the switch on this page Only the IP configuration is retained The new configuration is available immediately which means that no restart is necessary The Factory Default screen in Figure 4 15 1 appears and click to reset the configuration to Factory Defaults Figure 4 15 1 Factory Default Page Screenshot After the Factory button is pressed and rebooted the system wil...

Страница 337: ...Screenshot 4 16 3 Backup Manager This function allows backup of the current image or configuration of the LRP Managed Switch to the local management station The Backup Manager screen in Figure 4 16 3 appears Figure 4 16 3 Backup Manager Page Screenshot The page includes the following fields Object Description Backup Method Select backup method from this drop down list Server IP Fill in your TFTP s...

Страница 338: ... in Figure 4 16 4 appears Figure 4 16 4 Upgrade Manager Page Screenshot The page includes the following fields Object Description Upgrade Method Select upgrade method from this drop down list Server IP Fill in your TFTP server IP address File Name The name of firmware image or configuration Upgrade Type Select upgrade type Image Select active or backup image Buttons Click to upgrade image or confi...

Страница 339: ...creens in Figure 4 16 5 Figure 4 16 6 appear Figure 4 15 5 Dual Image Configuration Page Screenshot The page includes the following fields Object Description Active Image Select the active or backup image Buttons Click to apply active image Figure 4 16 6 Dual Image Information Page Screenshot The page includes the following fields Object Description Flash Partition Display the current flash partit...

Страница 340: ... this packet will be filtered thereby increasing the network throughput and availability 5 4 Store and Forward Store and Forward is one type of packet forwarding techniques A Store and Forward Ethernet Switching stores the incoming frame in an internal buffer and does the complete error checking before transmission Therefore no error packets occur It is the best choice when a network needs efficie...

Страница 341: ...Power On or Reset This is done by detecting the modes and speeds when both devices are connected Both 10BASE T and 100BASE TX devices can connect with the port in either half or full duplex mode If attached device is 100BASE TX port will set to 10Mbps without auto negotiation 10Mbps 10Mbps with auto negotiation 10 20Mbps 10BASE T full duplex 100Mbps without auto negotiation 100Mbps 100Mbps with au...

Страница 342: ...duplex then the performance will be poor Please also check the in out rate of the port Why the Switch doesn t connect to the network Solution 1 Check the LNK ACT LED on the LRP Managed Switch 2 Try another port on the LRP Managed Switch 3 Make sure the cable is installed properly 4 Make sure the cable is the right type 5 Turn off the power After a while turn on power again 100BASE TX port link LED...

Страница 343: ...User s Manual of LRP 822CS 343 connecting a different device in place of the switch 4 If that device works refer to the next step 5 If that device does not work check the AC power ...

Страница 344: ...r 10 100Mbps Ethernet Switch to another switch a bridge or a hub a straight or crossover cable is necessary Each port of the Switch supports auto MDI MDI X detection That means you can directly connect the Switch to any Ethernet devices without making a crossover cable The following table and diagram show the standard RJ45 receptacle connector and their pin assignments RJ45 Connector pin assignmen...

Страница 345: ...White Blue 6 Green 7 White Brown 8 Brown 1 White Orange 2 Orange 3 White Green 4 Blue 5 White Blue 6 Green 7 White Brown 8 Brown Crossover Cable SIDE 1 SIDE 2 SIDE 1 1 2 3 4 5 6 7 8 1 2 3 4 5 6 7 8 SIDE 2 1 White Orange 2 Orange 3 White Green 4 Blue 5 White Blue 6 Green 7 White Brown 8 Brown 1 White Green 2 Green 3 White Orange 4 Blue 5 White Blue 6 Orange 7 White Brown 8 Brown Figure A 1 Straight...

Страница 346: ...EN 61000 3 2 2006 A1 2009 A2 2009 EN 61000 3 3 2008 EN 55024 2010 EN 61000 4 2 2009 EN 61000 4 3 2006 A2 2010 EN 61000 4 4 2012 EN 61000 4 5 2006 EN 61000 4 6 2009 EN 61000 4 8 2010 EN 61000 4 11 2004 EN60950 1 2006 A11 2009 A1 2010 A12 2011 A2 2013 Responsible for marking this declaration if the Manufacturer Authorized representative established within the EU Authorized representative established...

Результаты поиска

Содержание LRP-822CS

Отзывы:

Бренды по названию

Популярные бренды

Planet LRP-822CS, Руководство пользователя

Результаты поиска

Содержание LRP-822CS

Отзывы:

Бренды по названию

Популярные бренды