manualshive.com logo in svg

Vivotek AW-GEV-264A Series, Руководство пользователя


Поделиться
Скачать
background image

 

 

 

User Manual rev. 1.2. Aug. 2015 

73 

port, the whole port is opened for network traffic. This allows other clients connected to the 
port (for instance through a hub) to piggy-back on the successfully authenticated client and 
get network access even though they really aren't authenticated. To overcome this security 
breach,  use  the  Single  802.1X  variant.  Single  802.1X  is  really  not  an  IEEE  standard,  but 
features many of the same characteristics as does port-based 802.1X. In Single 802.1X, at 
most one supplicant can get authenticated on the port at a time. Normal EAPOL frames are 
used  in  the  communication  between  the  supplicant  and  the  switch.  If  more  than  one 
supplicant is connected to a port, the one that comes first when the port's link comes up will 
be  the  first  one  considered.  If  that  supplicant  doesn't  provide  valid  credentials  within  a 
certain  amount  of  time,  another  supplicant  will  get  a  chance.  Once  a  supplicant  is 
successfully  authenticated,  only  that  supplicant  will  be  allowed  access.  This  is  the  most 
secure of all the supported modes. In this mode, the Port Security module is used to secure 
a supplicant's MAC address once successfully authenticated.   

 

Multi 802.1X : 

In port-based 802.1X authentication, once a supplicant is successfully  authenticated on a 
port, the whole port is opened for network traffic. This allows other clients connected to the 
port (for instance through a hub) to piggy-back on the successfully authenticated client and 
get network access even though they really aren't authenticated. To overcome this security 
breach, use the Multi 802.1X variant. 

Multi 802.1X is really not an IEEE standard, but features many of the same characteristics 
as does port-based 802.1X. Multi 802.1X is - like Single 802.1X - not an IEEE standard, but 
a  variant  that  features  many  of  the  same  characteristics.  In  Multi  802.1X,  one  or  more 
supplicants  can  get  authenticated  on  the  same  port  at  the  same  time. Each  supplicant  is 
authenticated individually and secured in the MAC table using the Port Security module. 

In  Multi  802.1X  it  is  not  possible  to  use  the  multicast  BPDU  MAC  address  as  destination 
MAC  address  for  EAPOL  frames  sent  from  the  switch  towards  the  supplicant,  since  that 
would cause all supplicants attached to the port to reply to requests sent from the switch. 
Instead,  the  switch  uses  the  supplicant's  MAC  address,  which  is  obtained  from  the  first 
EAPOL  Start  or  EAPOL  Response  Identity  frame  sent  by  the  supplicant.  An  exception  to 
this  is  when  no  supplicants  are  attached.  In  this  case,  the  switch  sends  EAPOL  Request 
Identity  frames  using  the  BPDU  multicast  MAC  address  as  destination  -  to  wake  up  any 
supplicants that might be on the port. 

The maximum number of supplicants that can be attached to a port can be limited using the 
Port Security Limit Control functionality.   

 

MAC-based Auth.: 

Unlike  port-based  802.1X,  MAC-based  authentication  is  not  a  standard,  but  merely  a 
best-practices  method  adopted  by  the  industry.  In  MAC-based  authentication,  users  are 
called  clients,  and  the  switch  acts  as  the  supplicant  on  behalf  of  clients.  The  initial  frame 
(any kind of frame) sent by a client is snooped by the switch, which in turn uses the client's 
MAC address as both username and password in the subsequent EAP exchange with the 
RADIUS  server.  The  6-byte  MAC  address  is  converted  to  a  string  on  the  following  form 
"xx-xx-xx-xx-xx-xx",  that  is,  a  dash  (-)  is  used  as  separator  between  the  lower-cased 
hexadecimal digits. The switch only supports the MD5-Challenge authentication method, so 
the RADIUS server must be configured accordingly. 

When authentication is complete, the RADIUS server sends a success or failure indication, 
which in turn causes the switch to open up or block traffic for that particular client, using the 
Port  Security  module.  Only  then  will  frames  from  the  client  be  forwarded  on  the  switch. 
There  are  no  EAPOL  frames  involved  in  this  authentication,  and  therefore,  MAC-based 
Authentication has nothing to do with the 802.1X standard. 

The advantage of MAC-based authentication over port-based 802.1X is that several clients 
can be connected to the same port (e.g. through a 3rd party switch or a hub) and still require 
individual  authentication,  and  that  the  clients  don't  need  special  supplicant  software  to 
authenticate.  The  advantage  of  MAC-based  authentication  over  802.1X-based 
authentication is that the clients don't need special supplicant software to authenticate. The 
disadvantage is that MAC addresses can be spoofed by malicious users - equipment whose 
MAC  address  is  a  valid  RADIUS  user  can  be  used  by  anyone.  Also,  only  the 
MD5-Challenge method is supported. The maximum number of clients that can be attached 
to a port can be limited using the Port Security Limit Control functionality.   

Содержание AW-GEV-264A Series

Страница 1: ...AW GEV 264A Series L2 Managed PoE Switch User Manual Copyright VIVOTEK Inc 2015 All rights reserved All brand and product names are trademarks or registered trademarks of their respective owners Rev...

Страница 2: ...acement parts can be obtained from your VIVOTEK Sales and Service Office authorized dealer Disclaimer VIVOTEK Inc does not warrant that the hardware will work properly in all environments and applicat...

Страница 3: ...erference received including interference that may cause undesired operation CE mark Warning This is a Class B device In a domestic environment this product may cause radio interference in which case...

Страница 4: ...31 3 4 DHCP 32 3 4 1 Server 32 3 4 1 1 Mode 32 3 4 1 2 Excluded IP 34 3 4 1 3 Pool 35 3 4 2 Snooping 37 3 5 Security 39 3 5 1 Switch 39 3 5 1 1 Users 39 3 5 1 2 Privilege Level 41 3 5 1 3 Authenticat...

Страница 5: ...3 14 2 Port Isolation 143 3 15 VCL 144 3 15 1 MAC based VLAN 144 3 15 2 Protocol based VLAN 146 3 15 2 1 Protocol to Group 146 3 15 2 2 Group to VLAN 148 3 15 3 IP Subnet based VLAN 149 3 16 VOICE VL...

Страница 6: ...y 209 4 5 1 Network 209 4 5 1 1 Port Security 209 4 5 1 2 NAS 214 4 5 1 3 ARP Inspection 221 4 5 1 4 IP Source Guard 222 4 5 2 AAA 224 4 5 2 1 RADIUS Overview 224 4 5 2 2 RADIUS Details 226 4 5 3 Swit...

Страница 7: ...5 6 3 1 Download 285 6 3 2 Software Image Select 286 6 4 Configuration 288 6 4 1 Save startup config 288 6 4 2 Upload 289 6 4 3 Download 290 6 4 5 Delete 292 CHAPTER 7 SURVEILLANCE MANAGEMENT 293 7 1...

Страница 8: ...SURVEILLANCE GRAPHIC VIEW 314 8 1 Topology View 314 8 4 Google Map 326 CHAPTER 9 SURVEILLANCE NETWORK 328 9 1 Security 328 9 2 Grouping 329 CHAPTER 10 SURVEILLANCE MONITOR 331 10 1 Traffic Chart 331...

Страница 9: ...es in device scan 4 Supports JPG PDF SVG export configuration file formats in Topology View 5 Supports JPG PDF SVG export file formats in the Floor View 6 Added Live Stream in devices quick access men...

Страница 10: ...MP managed switch provides 26 ports in a single device the specifications are highlighted as follows L2 features provide better manageability security QoS and performance Support IPv4 IPv6 dual stack...

Страница 11: ...n displaying Link ACT Speed status of Ethernet ports selected by the Mode button PoE Green Lit Green when displaying the PoE link status with powered devices Below are the LEDs below the Ethernet and...

Страница 12: ...and release the recessed reset button Wait for the PoE Switch to reboot Reset to factory default Press 10 seconds and release the recessed reset button Wait for the PoE Switch to reset to factory defa...

Страница 13: ...he configuration changes made on the Surveillance menus before leaving the web page Otherwise your configuration changes will be lost The save button is located on the upper right corner of the screen...

Страница 14: ...e please enter the default username and password and then click the Login button The login process now is completed In this login menu you have to input the complete username and password respectively...

Страница 15: ...ipv6 login to manage To optimize the display effect we recommend you using the below browser and OS combinations Chrome after v 39 Chrome Before v38 FireFox v 39 IE11 IE10 IE9 IE8 WinXP No Yes Yes No...

Страница 16: ...nd NTP 3 1 System You can identify the system by configuring the contact information name and location of the switch 3 1 1 Information The switch system s contact information is provided here Web inte...

Страница 17: ...for this managed node By convention this is the node s fully qualified domain name A domain name is a text string drawn from the alphabet A Za z digits 0 9 minus sign No space characters are permitted...

Страница 18: ...stations that exist on another network segment Configure the switch managed IP information on this page Configure IP basic settings control IP interfaces and IP routes The maximum number of interface...

Страница 19: ...ce This field is only available for input when creating an new interface IPv4 DHCP Enabled Enable the DHCP client by checking this box If this option is enabled the system will configure the IPv4 addr...

Страница 20: ...0 0 0or IPv6 notation Mask Length The destination IP network or host mask in number of bits prefix length It defines how much of a network address that must match in order to qualify for this route Va...

Страница 21: ...configurable time zone from 12 to 13 step 1 hour Default Time zone 8 Hrs Web Interface To configure NTP in the web interface 1 Click Configuration System NTP 2 Specify the Time parameter in manual par...

Страница 22: ...provides manual and automatic ways to set the system time via NTP Manual setting is simple and you just input Year Month Day Hour and Minute within the valid value range indicated in each item Web In...

Страница 23: ...rom the drop down and click Apply to set Acronym User can set the acronym of the time zone This is a User configurable acronym to identify the time zone Range Up to 16 characters Daylight Saving Time...

Страница 24: ...day Month Select the ending month Hours Select the ending hour Minutes Select the ending minute Offset settings Offset Enter the number of minutes to add during Daylight Saving Time Range 1 to 1440 N...

Страница 25: ...n the mode operation is enabled the syslog message will send out to syslog server The syslog protocol is based on UDP communication and received on UDP port 514 and the syslog server will not send ack...

Страница 26: ...the LLDP protocol EEE works for ports in auto negotiation mode where the port is negotiated to either 1G or 100 Mbit full duplex mode For ports that are not EEE capable the corresponding EEE checkbox...

Страница 27: ...E Controls whether EEE is enabled for this switch port For maximizing power savings the circuit isn t started at once transmit data is ready for a port but is instead queued until a burst of data is r...

Страница 28: ...function 3 3 1 Ports This page displays current port configurations Ports can also be configured here Web Interface To configure a Current Port Configuration in the web interface 1 Click Configuratio...

Страница 29: ...ight not be detectable The port is set in AMS mode Cu port is set in Auto mode 100 FX SFP port in 100 FX speed Cu port disabled 100 FX_AMS Port in AMS mode SFP port in 100 FX speed Cu port in Auto mod...

Страница 30: ...ser Manual rev 1 2 Aug 2015 30 Reset Click to undo any changes made locally and revert to previously saved values Upper right icon Refresh You can click them for refresh the Port link Status by manual...

Страница 31: ...eb interface 1 Click Configuration Port then Port Description 2 Specify the detail Port alias or description an alphanumeric string describing the full name and version identification for the system s...

Страница 32: ...etwork 3 4 1 Server 3 4 1 1 Mode This page configures global mode and VLAN mode to enable disable DHCP server per system and per VLAN Web Interface To configure DHCP server mode in the web interface 1...

Страница 33: ...n the other hand if you want to disable existed VLAN range then you can follow the steps 1 press ADD VLAN Range to add a new VLAN range 2 input the VLAN range that you want to disable 3 choose Mode to...

Страница 34: ...ange on the switch 3 Click Apply Figure 3 4 1 2 The DHCP server excluded IP Parameter description IP Range Define the IP range to be excluded IP addresses The first excluded IP must be smaller than or...

Страница 35: ...e pools Adding a pool and giving a name is to create a new pool with default configuration If you want to configure all settings including type IP subnet mask and lease time you can click the pool nam...

Страница 36: ...isplayed it means not defined Subnet Mask Display subnet mask of the DHCP address pool If is displayed it means not defined Lease Time Display lease time of the pool Buttons Add New Pool Click to add...

Страница 37: ...e web interface 1 Click Configuration DHCP Snooping 2 Select Enabled in the Mode of DHCP Snooping Configuration 3 Select Trusted of the specific port in the Mode of Port Mode Configuration 4 Click App...

Страница 38: ...igures the port as trusted source of the DHCP messages Untrusted Configures the port as untrusted source of the DHCP messages Buttons Apply Click to save changes Reset Click to undo any changes made l...

Страница 39: ...the only way to login as another user on the web server is to close and reopen the browser Web Interface To configure User in the web interface 1 Click Configuration Security Switch Users 2 Click Add...

Страница 40: ...roup By default setting most groups privilege level 5 has the read only access and privilege level 10 has the read write access And the system maintenance software upload factory defaults and etc need...

Страница 41: ...e web interface 1 Click SYSTEM Account Privilege Level 2 Specify the Privilege parameter 3 Click Apply Figure 3 5 1 2 The Privilege Level configuration Parameter description Group Name The name identi...

Страница 42: ...Debug Only present in CLI Privilege Levels Every group has an authorization Privilege level for the following sub groups configuration read only configuration execute read write status statistics rea...

Страница 43: ...following values none authentication is disabled and login is not possible local use the local user database on the switch for authentication radius use a remote RADIUS server for authentication tacac...

Страница 44: ...n the Mode of HTTPS Configuration 2 Select Enabled in the Automatic Redirect of HTTPS Configuration 3 Click Apply Figure 3 5 1 5 The HTTPS Configuration Parameter description Mode Indicates the HTTPS...

Страница 45: ...SNMP manager If the field SNMP is set Disable SNMP agent will be de activated the related Community Name Trap Host IP Address Trap and all MIB counters will be ignored 3 5 1 7 1 System This section de...

Страница 46: ...g a particular range of source addresses can be used to restrict source subnet Write Community Indicates the community write access string to permit access to SNMP agent The allowed string length is 0...

Страница 47: ...tings Configure SNMP trap on this page Web Interface To display the configure SNMP Trap Configuration in the web interface 1 Click Configuration Switch SNMP Trap 2 Click Add New Entry then you can cre...

Страница 48: ...stination address It allow a valid IP address in dotted decimal notation x y z w And it also allow a valid hostname A valid hostname is a string drawn from the alphabet A Za z digits 0 9 dot dash Spac...

Страница 49: ...s the SNMP trap security name SNMPv3 traps and informs using USM for authentication and privacy A unique security name is needed when traps and informs are enabled Configure SNMP trap on this page Sys...

Страница 50: ...or clear the setting then click Reset Figure 3 4 1 6 3 The SNMPv1 v2 Communities Security Configuration Parameter description Delete Check to delete the entry It will be deleted during the next save...

Страница 51: ...ring must contain an even number in hexadecimal format with number of digits between 10 and 64 but all zeros and all F s are not allowed The SNMPv3 architecture uses the User based Security Model USM...

Страница 52: ...optional flag to indicate that this user uses SHA authentication protocol The value of security level cannot be modified if entry already exists That means must first ensure that the value is set cor...

Страница 53: ...ation then check Save Max Group Number v1 2 v2 2 v3 10 Web Interface To display the configure SNMP Groups in the web interface 1 Click SNMP Groups 2 Specify the Privilege parameter 3 Click Apply Figur...

Страница 54: ...identifying the security name that this entry should belong to The allowed string length is 1 to 32 and the allowed content is ASCII characters from 33 to 126 Group Name A string identifying the grou...

Страница 55: ...ar the setting then click Reset Figure 3 5 1 6 6 The SNMP Views Configuration Parameter description Delete Check to delete the entry It will be deleted during the next save View Name A string identify...

Страница 56: ...tton and enter the access information then check Save Max Group Number 14 Web Interface To display the configure SNMP Access in the web interface 1 Click SNMP Accesses 2 Click Add new Access 3 Specify...

Страница 57: ...s are NoAuth NoPriv No authentication and no privacy Auth NoPriv Authentication and no privacy Auth Priv Authentication and privacy Read View Name The name of the MIB view defining the MIB objects for...

Страница 58: ...lect the Group name and Severity Level 3 Click the Apply to save the setting 4 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved values Figur...

Страница 59: ...RMON Statistics 2 Click Add New Entry 3 Specify the ID parameters 4 Click Apply Figure 3 5 1 7 1 The RMON Statics Configuration Parameter description These parameters are displayed on the RMON Statis...

Страница 60: ...1 2 Aug 2015 60 Indicates the maximum data entries associated this History control entry stored in RMON The range is from 1 to 3600 default value is 50 Buckets Granted The number of data shall be sav...

Страница 61: ...lete Check to delete the entry It will be deleted during the next save ID Indicates the index of the entry The range is from 1 to 65535 Data Source Indicates the port ID which wants to be monitored If...

Страница 62: ...on page Delete Check to delete the entry It will be deleted during the next save ID Indicates the index of the entry The range is from 1 to 65535 Interval Indicates the interval in seconds for samplin...

Страница 63: ...n The length of the output packet queue in packets Sample Type The method of sampling the selected variable and calculating the value to be compared against the thresholds possible sample types are Ab...

Страница 64: ...next save ID Indicates the index of the entry The range is from 1 to 65535 Desc Indicates this event the string length is from 0 to 127 default is a null string Type Indicates the notification of the...

Страница 65: ...Configuration of Limit Control in the web interface 1 Select Enabled in the Mode of System Configuration 2 Checked Aging Enabled 3 Set Aging Period Default is 3600 seconds To configure a Port Configur...

Страница 66: ...User Manual rev 1 2 Aug 2015 66...

Страница 67: ...assumed to be disconnected and the corresponding resources are freed on the switch Port Configuration The table has one row for each port on the selected switch and a number of columns which are Port...

Страница 68: ...ates that the limit is reached on this port This state can only be shown if Action is set to None or Trap Shutdown Indicates that the port is shut down by the Limit Control module This state can only...

Страница 69: ...web interface 1 Select Enabled in the Mode of Netwrok Access Server Configuration 2 Checked Reauthentication Enabled 3 Set Reauthentication Period Default is 3600 seconds 4 Set EAPOL Timeout Default...

Страница 70: ...he range 1 to 255 seconds This has no effect for MAC based ports Aging Period This setting applies to the following modes i e modes using the Port Security functionality to secure MAC addresses Single...

Страница 71: ...o globally enable disable RADIUS server assigned VLAN functionality When checked the individual ports ditto setting determine whether RADIUS assigned VLAN is enabled on that port When unchecked RADIUS...

Страница 72: ...ows for different authentication methods like MD5 Challenge PEAP and TLS The important thing is that the authenticator the switch doesn t need to know which authentication method the supplicant and th...

Страница 73: ...sent from the switch Instead the switch uses the supplicant s MAC address which is obtained from the first EAPOL Start or EAPOL Response Identity frame sent by the supplicant An exception to this is...

Страница 74: ...ansmitted by the RADIUS server when a supplicant is successfully authenticated If present and valid the port s Port VLAN ID will be changed to this VLAN ID the port will be set to be a member of that...

Страница 75: ...ccess frame when entering the Guest VLAN While in the Guest VLAN the switch monitors the link for EAPOL frames and if one such frame is received the switch immediately takes the port out of the Guest...

Страница 76: ...he policy number is 1 8 however each policy can be applied to any port This makes it very easy to determine what type of ACL policy you will be working with 3 5 2 3 1 Ports The section describes how t...

Страница 77: ...are mirrored Disabled Frames received on the port are not mirrored The default value is Disabled Logging Specify the logging operation of this port The allowed values are Enabled Frames received on th...

Страница 78: ...v 1 2 Aug 2015 78 Reset Click to undo any changes made locally and revert to previously saved values Upper right icon Refresh clear You can click them for refresh the ACL Port Configuration or clear t...

Страница 79: ...the range from 0 to 3276700 3 To scroll the Unit with pps or kbps 4 Click the Apply to save the setting 5 If you want to cancel the setting then you need to click the reset button It will revert to pr...

Страница 80: ...ned The maximum number of ACEs is 256 on each switch Click on the lowest plus sign to add a new ACE to the list The reserved ACEs used for internal protocol cannot be edited or deleted the order seque...

Страница 81: ...ype based ACE will not get matched by IP and ARP frames ARP The ACE will match ARP RARP frames IPv4 The ACE will match all IPv4 frames IPv4 ICMP The ACE will match IPv4 frames with ICMP protocol IPv4...

Страница 82: ...led If a frame matches the ACE the ingress port will be disabled Disabled Port shut down is disabled for the ACE Counter The counter indicates the number of times the ACE was hit by a frame Modificati...

Страница 83: ...is selected for the DMAC filter you can enter a specific destination MAC address The legal format is xx xx xx xx xx xx or xx xx xx xx xx xx or xxxxxxxxxxxx x is a hexadecimal digit A frame that hits...

Страница 84: ...d in the Mode of IP Source Guard Configuration 2 Select Enabled of the specific port in the Mode of Port Mode Configuration 3 Select Maximum Dynamic Clients 0 1 2 Unlimited of the specific port in the...

Страница 85: ...namic clients that can be learned on given port This value can be 0 1 2 or unlimited If the port mode is enabled and the value of max dynamic client is equal to 0 it means only allow the IP packets fo...

Страница 86: ...n the entry 3 Click Apply Figure 3 4 2 5 2 The Static IP Source Guard Table Parameter description Delete Check to delete the entry It will be deleted during the next save Port The logical port for the...

Страница 87: ...nspection Configuration 2 Select Enabled of the specific port in the Mode of Port Mode Configuration 3 Click Apply Figure 3 4 2 6 1 The ARP Inspection Configuration Parameter description Mode of ARP I...

Страница 88: ...heck VLAN are Enabled Enable check VLAN operation Disabled Disable check VLAN operation Only the Global Mode and Port Mode on a given port are enabled and the setting of Check VLAN is disabled the log...

Страница 89: ...entry of the currently displayed VLAN entry as a basis for the next lookup When the end is reached the warning message is shown in the displayed table Use the button to start over Web Interface To con...

Страница 90: ...ng Deny Log denied entries Permit Log permitted entries ALL Log all entries Buttons Add New Entry Click to add a new VLAN to the ARP Inspection VLAN table Apply Click to save changes Reset Click to un...

Страница 91: ...Apply Figure 3 4 2 6 3 The Static ARP Inspection Table Parameter description Delete Check to delete the entry It will be deleted during the next save Port The logical port for the settings VLAN ID The...

Страница 92: ...tion Table Clicking the button will update the displayed table starting from that or the closest next Dynamic ARP Inspection Table match In addition the two input fields will upon a button click assum...

Страница 93: ...this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Refreshes the displayed table starting from the input fields Save Click to save changes Reset Click to undo...

Страница 94: ...te and manage objects that contain settings for using AAA servers 3 5 3 1 RADIUS Web Interface To configure a Common Configuration of AAA RADIUS in the web interface Figure 3 4 3 2 The RADIUS Authenti...

Страница 95: ...of the outgoing interface is used NAS IPv6 Address Attribute 95 The IPv6 address to be used as attribute 95 in RADIUS Access Request packets If this field is left blank the IP address of the outgoing...

Страница 96: ...added to the table and the RADIUS server can be configured as needed Up to 5 servers are supported The button can be used to undo the addition of the new server Buttons Apply Click to save changes Re...

Страница 97: ...port can immediately become a member of a trunk group without any handshaking with its peer port This is also a disadvantage because the peer ports of your static trunk group may not know that they sh...

Страница 98: ...lt IP Address is enabled TCP UDP Port Number The TCP UDP port number can be used to calculate the destination port for the frame Check to enable the use of the TCP UDP Port Number or uncheck to disabl...

Страница 99: ...nked group Web Interface To configure the Trunk Aggregation LACP parameters in the web interface 1 Click Configuration LACP Configuration 2 Evoke to enable or disable the LACP on the port of the switc...

Страница 100: ...nt keys cannot Role The Role shows the LACP activity status The Active will transmit LACP packets each second while Passive will wait for a LACP packet from a partner speak if spoken to Timeout The Ti...

Страница 101: ...ocked port please find out the looping path and take off the looping path then select the resume the locked port and click on Resume to turn on the locked ports Web Interface To configure the Loop Pro...

Страница 102: ...es are 0 to 604800 seconds 7 days A value of zero will keep a port disabled until next device restart Port No The switch port number of the port Enable Controls whether loop protection is enabled on t...

Страница 103: ...ated ports and disables all other ports Network packets are therefore only forwarded between root ports and designated ports eliminating any possible network loops Once a stable network topology has b...

Страница 104: ...e CIST Otherwise this is the priority of the STP RSTP bridge Forward Delay The delay used by STP Bridges to transit Root and Designated Ports to Forwarding used in STP compatible mode Valid values are...

Страница 105: ...reception of a BPDU The port will enter the error disabled state and will be removed from the active topology Port Error Recovery Control whether a port in the error disabled state automatically will...

Страница 106: ...I e not having any VLANs mapped to it This section describes it allows the user to inspect the current STP MSTI bridge instance priority configurations and possibly change them as well Web Interface T...

Страница 107: ...e revision of the MSTI configuration named above This must be an integer between 0 and 65535 MSTI The bridge instance The CIST is not available for explicit mapping as it will receive the VLANs not ex...

Страница 108: ...ng Tree MSTI Priorities parameters in the web interface 1 Click Configuration Spanning Tree MSTI Priorities 2 Scroll the Priority maximum is 240 Default is 128 3 Click the save to save the setting 4 I...

Страница 109: ...ace To configure the Spanning Tree CIST Ports parameters in the web interface 1 Click Configuration Spanning Tree CIST Ports 2 Scroll and evoke to set all parameters of CIST Aggregated Port Configurat...

Страница 110: ...allows operEdge to be derived from whether BPDU s are received on the port or not Restricted Role If enabled causes the port not to be selected as Root Port for the CIST or any MSTI even if it has the...

Страница 111: ...ather than to a shared medium This can be automatically determined or forced either true or false Transition to the forwarding state is faster for point to point LANs than for shared media Buttons App...

Страница 112: ...uration options It contains MSTI port settings for physical and aggregated ports Web Interface To configure the Spanning Tree MSTI Port Configuration parameters in the web interface 1 Click Configurat...

Страница 113: ...ic setting a user defined value can be entered The path cost is used when establishing the active topology of the network Lower path cost ports are chosen as forwarding ports in favour of higher path...

Страница 114: ...a switch receives an IP multicast packet it will forward the packet to the members who joined in a specified IP multicast group before The packets will be discarded by the IGMP Snooping if the user t...

Страница 115: ...orwarding unnecessary leave messages to the router side Proxy Enabled Enable IGMP Proxy This feature can be used to avoid forwarding unnecessary join and leave messages to the router side Port It show...

Страница 116: ...gure the IGMP Snooping VLAN Configuration in the web interface 1 Click Configuration IPMC IGMP Snooping VLAN Configuration 2 Evoke to select enable or disable Snooping IGMP Querier Specify the paramet...

Страница 117: ...is the interval between General Queries sent by the Querier The allowed range is 1 to 31744 seconds default query interval is 125 seconds QRI Query Response Interval The Max Response Time used to cal...

Страница 118: ...cal area network principally wired Ethernet The protocol is formally referred to by the IEEE as Station and Media Access Control Connectivity Discovery specified in standards document IEEE 802 1AB 3 1...

Страница 119: ...lue Valid values are restricted to 1 8192 seconds Tx Reinit When a port is disabled LLDP is disabled or the switch is rebooted an LLDP shutdown frame is transmitted to the neighboring units signaling...

Страница 120: ...ities but the CDP capabilities cover capabilities that are not part of the LLDP These capabilities are shown as others in the LLDP neighbors table If all ports have CDP awareness disabled the switch f...

Страница 121: ...wer over Ethernet PoE end points Inventory management allowing network administrators to track their network devices and determine their characteristics manufacturer software and hardware versions ser...

Страница 122: ...in a second when a new LLDP MED neighbour has been detected in order share LLDP MED information as fast as possible to new neighbours Because there is a risk of an LLDP frame being lost during transmi...

Страница 123: ...North American Vertical Datum of 1988 NAVD88 This datum pair is to be used when referencing locations on land not near tidal water which would use Datum NAD83 MLLW NAD83 MLLW North American Datum 1983...

Страница 124: ...fier data format is defined to carry the ELIN identifier as used during emergency call setup to a traditional CAMA or ISDN trunk based PSAP This format consists of a numerical digit string correspondi...

Страница 125: ...s 2 Voice Signalling conditional for use in network topologies that require a different policy for the voice signalling than for the voice media This application type should not be advertised if all t...

Страница 126: ...Priority L2 Priority is the Layer 2 priority to be used for the specified application type L2 Priority may specify one of eight priority levels 0 through 7 as defined by IEEE 802 1D 2004 A value of 0...

Страница 127: ...presents a 0 25 4 mA load 7 10 Class 2 PSE outputs classification voltage again to indicate 802 3at capability 14 5 20 5 Mark 2 Signals PSE is 802 3at capable PD presents a 0 25 4 mA load 7 10 Startup...

Страница 128: ...ave no effect For all modes If a port uses more power than the reserved power for the port the port is shut down Power Management Mode There are 2 modes for configuring when to shut down the ports 1 A...

Страница 129: ...ables PoE IEEE 802 3af Class 4 PDs limited to 15 4W PoE Enables PoE IEEE 802 3at Class 4 PDs limited to 30W Priority The Priority represents the ports priority There are three levels of power priority...

Страница 130: ...power device 3 Specify the power providing delay time when reboot 4 Click Apply to apply the change Figure 3 11 2 The PoE Power Delay Parameter description Power Supply Configuration Port This is the...

Страница 131: ...o saves more energy Web Interface To Display Power Over Ethernet Scheduling in the web interface 1 Click Configuration PoE and Scheduling 2 Select the local port and enable 3 Select time and day to su...

Страница 132: ...User Manual rev 1 2 Aug 2015 132 PoE Scheduling Status Enabled Enable POE Scheduling Disabled Disable POE Scheduling Hour The time of PoE port provide power of a day...

Страница 133: ...ick Apply to apply the change Figure 3 11 2 The PoE Scheduling Parameter description Power Supply Configuration Ping Check Enable Ping Check function can detects the connection between PoE port and po...

Страница 134: ...unter Failure Action The action when the third fail detection Nothing Keep Ping the remote PD but does nothing further Reboot Remote PD Cut off the power of the PoE port make PD rebooted Power OFF Tim...

Страница 135: ...equipment sending the frame The SMAC address is used by the switch to automatically update the MAC table with these dynamic MAC addresses Dynamic entries are removed from the MAC table if no frames w...

Страница 136: ...he link used for managing the switch is added to the Static Mac Table before changing to secure learning mode otherwise the management link is lost and can only be restored by using another non secure...

Страница 137: ...e a connection between your management station and a port in the new management VLAN or connect to the new management VLAN through a multi VLAN route Web Interface To configure VLAN membership configu...

Страница 138: ...t a member of will be discarded by default all frames but frames classified to the Port VLAN a k a Native VLAN get tagged on egress Frames classified to the Port VLAN do not get C tagged on egress egr...

Страница 139: ...e port whether ingress filtering is enabled or not This is useful in scenarios where a cloud of intermediary switches must bridge VLANs that haven t been created By configuring the ports that connect...

Страница 140: ...ented from dynamically adding ports to VLANs The trick is to mark such VLANs as forbidden on the port in question The syntax is identical to the syntax used in the Existing VLANs field By default the...

Страница 141: ...N entry check this box The entry will be deleted during the next save PVLAN ID Indicates the ID of this particular private VLAN Port Members A row of check boxes for each port is displayed for each VL...

Страница 142: ...Manual rev 1 2 Aug 2015 142 The button can be used to undo the addition of new VLANs Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved va...

Страница 143: ...data packet based upon the destination address on the data packet The data packet is then sent to the plurality of ports pursuant to the forwarding map generated based upon whether the ingress port w...

Страница 144: ...use the resources in the old VLAN On the other hand if Port A and Port B belong to the same VLAN after terminal devices access the network through Port B they will have access to the same resources a...

Страница 145: ...is added to the table and the MAC based VLAN entry can be configured as needed Any unicast MAC address can be configured for the MAC based VLAN entry No broadcast or multicast MAC addresses are allow...

Страница 146: ...vice Access Point SAP fields SNAP supports identifying protocols by Ethernet type field values it also supports vendor private protocol identifier spaces It is used with IEEE 802 3 IEEE 802 4 IEEE 802...

Страница 147: ...imal 000000 the protocol ID is the Ethernet type EtherType field value for the protocol running on top of SNAP if the OUI is an OUI for a particular organization the protocol ID is a value assigned by...

Страница 148: ...in Protocol to Group mapping table and must not be preused by any other existing mapping entry on this page VLAN ID Indicates the ID to which Group Name will be mapped A valid VLAN ID ranges from 1 40...

Страница 149: ...bnet based VLAN entry check this box and press save The entry will be deleted on the selected switch in the stack VCE ID Indicates the index of the entry It is user configurable It s value ranges from...

Страница 150: ...figured for the IP subnet based VLAN entry Legal values for a VLAN ID are 1 through 4095 The IP subnet based VLAN entry is enabled on the selected stack switch unit when you click on Save The Delete b...

Страница 151: ...Voice VLAN then the switch can classify and schedule network traffic It is recommended that there be two VLANs on a port one for voice one for data Before connecting the IP device to the switch the I...

Страница 152: ...the Voice VLAN port mode When the port mode isn t equal disabled we must disable MSTP feature before we enable Voice VLAN It can avoid the conflict of ingress filtering Possible port modes are Disabl...

Страница 153: ...N OUI Table Parameter description Delete Check to delete the entry It will be deleted during the next save Telephony OUI A telephony OUI address is a globally unique identifier assigned to a vendor by...

Страница 154: ...advanced memory control mechanisms providing excellent performance of all QoS classes under any traffic scenario including jumbo frame A super priority queue with dedicated memory and strict highest p...

Страница 155: ...ult DPL The classified DPL can be overruled by a QCL entry PCP Controls the default PCP value All frames are classified to a PCP value If the port is VLAN aware and the frame is tagged then the frame...

Страница 156: ...l rev 1 2 Aug 2015 156 Source Enable SMAC SIP matching Destination Enable DMAC DIP matching Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously sa...

Страница 157: ...icers and type the Rate limit condition 3 Scroll to select the Rate limit Unit with kbps Mbps fps and kfps 4 Click Apply to save the configuration Figure 3 17 2 The QoS Ingress Port Policers Configura...

Страница 158: ...User Manual rev 1 2 Aug 2015 158 Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values...

Страница 159: ...d the ports belong to the currently selected stack unit as reflected by the page header Web Interface To display the QoS Port Schedulers in the web interface 1 Click Configuration QoS Port Schedulers...

Страница 160: ...rity or Weighted on this switch port Queue Shaper Enable Controls whether the queue shaper is enabled for this queue on this switch port Queue Shaper Rate Controls the rate for the queue shaper The de...

Страница 161: ...eter is only shown if Scheduler Mode is set to Weighted Port Shaper Enable Controls whether the port shaper is enabled for this switch port Port Shaper Rate Controls the rate for the port shaper The d...

Страница 162: ...get all detail information ot the ports belong to the currently selected stack unit as reflected by the page header Web Interface To display the QoS Port Shapers in the web interface 1 Click Configura...

Страница 163: ...e is Strict Priority or Weighted on this switch port Queue Shaper Enable Controls whether the queue shaper is enabled for this queue on this switch port Queue Shaper Rate Controls the rate for the que...

Страница 164: ...This parameter is only shown if Scheduler Mode is set to Weighted Port Shaper Enable Controls whether the port shaper is enabled for this switch port Port Shaper Rate Controls the rate for the port sh...

Страница 165: ...arking for all switch ports Others the ports belong to the currently selected stack unit as reflected by the page header Web Interface To display the QoS Port Tag Remarking in the web interface 1 Clic...

Страница 166: ...s the tag remarking mode for this port Classified Use classified PCP DEI values Default Use default PCP DEI values Mapped Use mapped versions of QoS class and DP level PCP DEI Configuration Controls t...

Страница 167: ...ping Controls the mapping of the classified QoS class DP level to PCP DEI values when the mode is set to Mapped Buttons Apply Click to save changes Reset Click to undo any changes made locally and rev...

Страница 168: ...cel the setting then you need to click the Reset button It will revert to previously saved values Figure 3 16 7 The QoS Port DSCP Configuration Parameter description Port The Port coulmn shows the lis...

Страница 169: ...er is remapped and frame is remarked with remapped DSCP value Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Auto refresh To evo...

Страница 170: ...To configure the DSCP Based QoS Ingress Classification parameters in the web interface 1 Click Configuration QoS DSCP Based QoS 2 Evoke to enable or disable the DSCP for Trust 3 Scroll to select QoS...

Страница 171: ...be any of 0 7 DPL Drop Precedence Level 0 3 Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Auto refresh To evoke the auto refre...

Страница 172: ...To configure the DSCP Translation parameters in the web interface 1 Click Configuration QoS DSCP Translation 2 Scroll to set the Ingress Translate and Egress Remap DP0 and Remap DP1 Parameters 3 Evoke...

Страница 173: ...gress side 1 Remap DP0 Select the DSCP value from select menu to which you want to remap DSCP value ranges form 0 to 63 2 Remap DP1 Select the DSCP value from select menu to which you want to remap DS...

Страница 174: ...as reflected by the page header Web Interface To configure the DSCP Classification parameters in the web interface 1 Click Configuration QoS DSCP Translation 2 Scroll to set the DSCP Parameters 3 Cli...

Страница 175: ...elect DSCP value 0 63 from DSCP menu to map DSCP to corresponding QoS Class and DPL value Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously save...

Страница 176: ...add a new QCE to the list Web Interface To configure the QoS Control List parameters in the web interface 1 Click Configuration QoS QoS Contol List 2 Click the to add a new QoS Control List 3 Scroll a...

Страница 177: ...ss or Any If a port is configured to match on DMAC DIP this field indicates the DMAC Tag Type Indicates tag type Possible values are Any Match tagged and untagged frames Untagged Match untagged frames...

Страница 178: ...an modify each QCE QoS Control Entry in the table using the following buttons Inserts a new QCE before the current row Edits the QCE Moves the QCE up the list Moves the QCE down the list Deletes the Q...

Страница 179: ...imal numbers between 0 and 255 When Mask is converted to a 32 bit binary string and read from left to right all bits following the first zero must also be zero DSCP Diffserv Code Point value DSCP It c...

Страница 180: ...ss 0 7 default basic classification DP Valid DP Level can be 0 3 default basic classification DSCP Valid dscp value can be 0 63 BE CS1 CS7 EF or AF11 AF43 Buttons Apply Click to save changes Reset Cli...

Страница 181: ...storm control 3 Scroll to set the Rate Parameters 4 Click the save to save the setting 5 If you want to cancel the setting then you need to click the Reset button It will revert to previously saved v...

Страница 182: ...ume that Port A and Port B are Monitoring Port and Monitored Port respectively thus the traffic received by Port B will be copied to Port A for monitoring Web Interface To configure the Mirror in the...

Страница 183: ...port are mirrored on the mirror port Frames transmitted are not mirrored Tx only Frames transmitted on this port are mirrored on the mirror port Frames received are not mirrored Disabled Neither frame...

Страница 184: ...de operation Disabled Disable UPnP mode operation When the mode is enabled two ACEs are added automatically to trap UPNP related packets to CPU The ACEs are automatically removed when the mode is disa...

Страница 185: ...User Manual rev 1 2 Aug 2015 185 values...

Страница 186: ...ation System Up Time Firmware Version Host Mac Address Device Port With this information you will know the software version used MAC address serial number how many ports good and so on This is helpful...

Страница 187: ...in System System Information Configuration System Name System Date The current GMT system time and date The system time is obtained through the Timing server running on the switch if any System Uptim...

Страница 188: ...IP protocol layer The status is defined by the IP interfaces the IP routes and the neighbour cache ARP cache status Web Interface To display the log configuration in the web interface 1 Click Monitor...

Страница 189: ...and or address IP Routes Network Show the destination IP network or host address of this route Gateway Show the gateway address of this route Status Show the status flags of the route Neighbour cache...

Страница 190: ...on Auto refresh To evoke the auto refresh icon then the device will refresh the log automatically Level level of the system log entry The following level types are supported Information level of the s...

Страница 191: ...starting from the current entry ID Clear Flushes the selected log entries Updates the system log entries starting from the first available entry ID Updates the system log entries ending at the last e...

Страница 192: ...D The ID 1 of the system log entry Message The detailed message of the system log entry Upper right icon Refresh clear You can click them for refresh the system log or clear them by manual others for...

Страница 193: ...for this row Link Shows if the link is up for the port green link up red link down EEE Shows if EEE is enabled for the port reflects the settings at the Port Power Savings configuration page LP EEE c...

Страница 194: ...c statistics for all switch ports Web Interface To Display the Port Statistics Overview in the web interface 1 Click Monitor Port then Traffic Overview 2 If you want to auto refresh then you need to e...

Страница 195: ...ed due to ingress or egress congestion Filtered The number of received frames filtered by the forwarding Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs...

Страница 196: ...then you need to evoke the Auto refresh 3 Click Refresh to refresh the Queuing Counters or clear all information when you click Clear Figure 4 3 2 The Queuing Counters Overview Parameter description...

Страница 197: ...User Manual rev 1 2 Aug 2015 197 Clear Clears the counters for all ports...

Страница 198: ...n entry of the MVR Statistics Information Figure 4 3 3 The QoS Control List Status Parameter description User Indicates the QCL user QCE Indicates the index of QCE Frame Type Indicates the type of fra...

Страница 199: ...ources required to add a QCE may not available in that case it shows conflict status as Yes otherwise it is always No Please note that conflict can be resolved by releaseing the H W resources required...

Страница 200: ...mit and the error counters for receive and transmit Web Interface To Display the per Port detailed Statistics Overview in the web interface 1 Click Monitor Ports then Detailed Port Statistics 2 Scroll...

Страница 201: ...d and transmitted good and bad packets Rx and Tx Octets The number of received and transmitted good and bad bytes Includes FCS but excludes framing bits Rx and Tx Unicast The number of received and tr...

Страница 202: ...frames received with invalid CRC Rx Jabber The number of long 2 frames received with invalid CRC Rx Filtered The number of received frames filtered by the forwarding process Short frames are frames t...

Страница 203: ...nters and the number of DHCP messages sent and received by DHCP server Web Interface Display the DHCP server Statistics Overview in the web interface Click Protocol based VLAN configuration and add ne...

Страница 204: ...essages received REQUEST Number of DHCP REQUEST messages received DECLINE Number of DHCP DECLINE messages received RELEASE Number of DHCP RELEASE messages received INFORM Number of DHCP INFORM message...

Страница 205: ...nding 4 4 1 3 Declined IP This page displays declined IP addresses Web Interface To Display DHCP Server Declined IP in the web interface Click DHCP Server and Declined IP Figure 4 4 1 3 The Declined I...

Страница 206: ...Dynamic DHCP snooping Table are shown on this page Web Interface To monitor an DHCP in the web interface Click Monitor DHCP Snooping table Figure 4 4 2 The DHCP snooping table Parameter description M...

Страница 207: ...ics in the web interface Click Monitor DHCP Detailed Statistics Figure 4 4 3 The DHCP Detailed Statistics Parameter description Server Statistics Rx and Tx Discover The number of discover option 53 wi...

Страница 208: ...lue 10 packets received and transmitted Rx and Tx Lease Unassigned The number of lease unassigned option 53 with value 11 packets received and transmitted Rx and Tx Lease Unknown The number of lease u...

Страница 209: ...odules whether to allow this new MAC address to forward or block it For a MAC address to be set in the forwarding state all enabled user modules must unanimously agree on allowing the MAC address to f...

Страница 210: ...can take one of four values Disabled No user modules are currently using the Port Security service Ready The Port Security service is in use by at least one user module and is awaiting frames from un...

Страница 211: ...rned MAC addresses forwarding as well as blocked on the port If no user modules are enabled on the port a dash will be shown Buttons Auto refresh Check this box to refresh the page automatically Autom...

Страница 212: ...efresh 4 Click Refresh to refresh the port detailed statistics Figure 4 5 1 1 2 The Port Security Port Status Parameter description MAC Address VLAN ID The MAC address and VLAN ID that is seen on this...

Страница 213: ...User Manual rev 1 2 Aug 2015 213 Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page...

Страница 214: ...rk Access Server Switch Status Parameter description Port The switch port number Click to navigate to detailed NAS statistics for this port Admin State The port s current administrative state Refer to...

Страница 215: ...N ID that NAS has put the port in The field is blank if the Port VLAN ID is not overridden by NAS If the VLAN ID is assigned by the RADIUS server RADIUS assigned is appended to the VLAN ID Read more a...

Страница 216: ...Refer to NAS Admin State for a description of possible values Port State The current state of the port Refer to NAS Port State for a description of the individual states QoS Class The QoS class assign...

Страница 217: ...d in the Response Identity EAPOL frame Clicking the link causes the supplicant s EAPOL and Backend Server counters to be shown in the Selected Counters table If no supplicants are attached it shows No...

Страница 218: ...is available in the following modes Force Authorized Force Unauthorized Port based 802 1X Single 802 1X Clear All Click to clear the counters for the selected port This button is available in the foll...

Страница 219: ...dicates the ACL user Ingress Port Indicates the ingress port of the ACE Possible values are All The ACE will match any ingress port Port The ACE will match a specific ingress port Frame Type Indicates...

Страница 220: ...r When Disabled is displayed the port copy operation is disabled Mirror Specify the mirror operation of this port The allowed values are Enabled Frames received on the port are mirrored Disabled Frame...

Страница 221: ...the entries per page input field When first visited the web page will show the first 20 entries from the beginning of the Dynamic ARP Inspection Table The Start from port address VLAN MAC address and...

Страница 222: ...ress and then by MAC address Web Interface To configure a Dynamic IP Source Guard Table Configuration in the web interface 1 Click Security Network IP Source Guard 2 Checked Auto refresh 3 Click Refre...

Страница 223: ...User Manual rev 1 2 Aug 2015 223 Refresh Click to refresh the page Updates the system log entries to the first available entry ID Updates the system log entry to the next available entry ID...

Страница 224: ...curity AAA then RADIUS Overview 2 Checked Auto refresh 3 Click Refresh to refresh the port detailed statistics Figure 4 5 2 1 The RADIUS Authentication Server Status Overview Parameter description The...

Страница 225: ...umber Click to navigate to detailed statistics for this server IP Address The IP address and UDP port number in IP Address UDP Port notation of this server State The current state of the server This f...

Страница 226: ...terface To configure a RADIUS Details Configuration in the web interface 1 Specify Port which want to check 2 Click Security AAA then RADIUS Overview 3 Checked Auto refresh 4 Click Refresh to refresh...

Страница 227: ...he server Rx Malformed Access Responses radiusAuthClientExtMalform edAccessResponses The number of malformed RADIUS Access Response packets received from the server Malformed packets include packets w...

Страница 228: ...ady The server is enabled but IP communication is not yet up and running Ready The server is enabled IP communication is up and running and the RADIUS module is ready to accept access attempts Dead X...

Страница 229: ...and decremented due to receipt of a Response timeout or retransmission Tx Timeouts radiusAccClientExtTimeouts The number of accounting timeouts to the server After a timeout the client may retry to th...

Страница 230: ...s 100 ms A value of 0 ms indicates that there hasn t been round trip communication with the server yet Buttons Auto refresh Check this box to enable an automatic refresh of the page at regular interva...

Страница 231: ...ntry of the currently displayed entry as a basis for the next lookup When the end is reached the text No more entries is shown in the displayed table Use the button to start over Web Interface To conf...

Страница 232: ...stimate of the total number of collisions on this Ethernet segment 64 The total number of packets including bad packets received that were 64 octets in length 65 127 The total number of packets includ...

Страница 233: ...isplayed entry as a basis for the next lookup When the end is reached the text No more entries is shown in the displayed table Use the button to start over Web Interface To configure a RMON history Co...

Страница 234: ...al number of packets received that were longer than 1518 octets Frag The number of frames which size is less than 64 octets received with invalid CRC Jabb The number of frames which size is larger tha...

Страница 235: ...n the end is reached the text No more entries is shown in the displayed table Use the button to start over Web Interface To configure a RMON Alarm Overview in the web interface 1 Specify Port which wa...

Страница 236: ...Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page immediately Updates the table starting from the first...

Страница 237: ...played entry as a basis for the next lookup When the end is reached the text No more entries is shown in the displayed table Use the button to start over Web Interface To configure a RMON Event Overvi...

Страница 238: ...User Manual rev 1 2 Aug 2015 238 Updates the table starting with the entry after the last entry currently displayed...

Страница 239: ...Status Parameter description Aggr ID The Aggregation ID associated with this aggregation instance For LLAG the id is shown as isid aggr id and for GLAGs as aggr id Partner System ID The system ID MAC...

Страница 240: ...2 The LACP Status Parameter description Port The switch port number LACP Yes means that LACP is enabled and the port link is up No means that LACP is not enabled or that the port link is down Backup m...

Страница 241: ...al rev 1 2 Aug 2015 241 Partner Prio The partner s port priority Buttons Auto refresh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh...

Страница 242: ...u need to evoke the Auto refresh 3 3 Click Refresh to refresh the LACP Statistics Figure 4 6 3 The LACP Statistics Parameter description Port The switch port number LACP Received Shows how many LACP f...

Страница 243: ...User Manual rev 1 2 Aug 2015 243 Refresh Click to refresh the page...

Страница 244: ...P Statistics Figure 4 7 Loop Protection Status Parameter description Port The switch port number of the logical port Action The currently configured port action Transmit The currently configured port...

Страница 245: ...ST to next page STP Detailed Bridge Status Figure 4 8 1 The STP Bridges status Parameter description MSTI The Bridge Instance This is also a link to the STP Detailed Bridge Status Bridge ID The Bridge...

Страница 246: ...Auto refresh 3 Click Refresh to refresh the STP Bridges Figure 4 8 2 The STP Port status Parameter description Port The switch port number of the logical STP port CIST Role The current STP port role...

Страница 247: ...ription Port The switch port number of the logical STP port MSTP The number of MSTP Configuration BPDU s received transmitted on the port RSTP The number of RSTP Configuration BPDU s received transmit...

Страница 248: ...ce To display the IGMP Snooping status in the web interface 1 Click Monitor IGMP Snooping Status 2 If you want to auto refresh the information then you need to evoke the Auto refresh 3 Click Refresh t...

Страница 249: ...Leaves Router Port Display which ports act as router ports A router port is a port on the Ethernet switch that leads towards the Layer 3 multicast device or IGMP querier Static denotes the specific po...

Страница 250: ...4 9 1 2 The IGMP Snooping Groups Information Parameter description Navigating the IGMP Group Table Each page shows up to 99 entries from the IGMP Group table default being 20 selected through the entr...

Страница 251: ...esh Check this box to refresh the page automatically Automatic refresh occurs every 3 seconds Refresh Click to refresh the page Updates the system log entries to the first available entry ID Updates t...

Страница 252: ...TE If your network without any device supports LLDP then the table will show No LLDP neighbour information found Parameter description Local Port The port on which the LLDP frame was received Chassis...

Страница 253: ...ed the capability is followed by Management Address Management Address is the neighbour unit s address that is used for higher layer entities to assist discovery by the network management This could f...

Страница 254: ...Network Connectivity Device Definition LLDP MED Network Connectivity Devices as defined in TIA 1057 provide access to the IEEE 802 based LAN infrastructure for LLDP MED Endpoint Devices An LLDP MED Ne...

Страница 255: ...covery LLDP MED Communication Endpoint Class III The LLDP MED Communication Endpoint Class III definition is applicable to all endpoint products that act as end user communication appliances supportin...

Страница 256: ...fied application type is using a tagged or an untagged VLAN Can be Tagged or Untagged Untagged The device is using an untagged frame format and as such does not include a tag header as defined by IEEE...

Страница 257: ...or Power Device PD If the Power Type is unknown it is represented as Reserved Power Source The Power Source represents the power source being utilized by a PSE or PD device If the device is a PSE devi...

Страница 258: ...a PD device from a PSE device or the minimum power a PSE device is capable of sourcing over a maximum length cable based on its current configuration The maximum allowed value is 102 3 W If the device...

Страница 259: ...tted Tx Tw The link partner s maximum time that transmit path can hold off sending data after reassertion of LPI Rx Tw The link partner s time that receiver would like the transmitter to hold off to a...

Страница 260: ...nged via LLDP Resolved Rx Tw The resolved Rx Tw for this link Note NOT the link partner The resolved value that is the actual tx wakeup time used for this link based on EEE information exchanged via L...

Страница 261: ...r manual update web screen 3 Click Auto refresh for auto update web screen 4 Click Clear to clear all counters Figure 4 10 5 The LLDP Port Statistics information Parameter description Global Counters...

Страница 262: ...standard LLDP frames require a new entry in the table when the Chassis ID or Remote Port ID is not already contained within the table Entries are removed from the table when a given port s link is do...

Страница 263: ...lasses are defined Class 0 Max power 15 4 W Class 1 Max power 4 0 W Class 2 Max power 7 0 W Class 3 Max power 15 4 W Class 4 Max power 30 0 W Power Requested The Power Requested shows the requested am...

Страница 264: ...rt s with the lowest priority is are powered down No PD detected No PD detected for the port PoE turned OFF PD overload The PD has requested or used more power than the port can deliver and is powered...

Страница 265: ...be the one with the lowest VLAN ID and the lowest MAC address found in the MAC Table The Start from MAC address and VLAN input fields allow the user to select the starting point in the MAC Table Click...

Страница 266: ...es the system log entries to the first available entry ID Updates the system log entry to the next available entry ID NOTE 00 02 D1 73 01 29 your switch MAC address for IPv4 33 33 00 00 00 01 Destinat...

Страница 267: ...and an Authentication Server MVRP Multiple VLAN Registration Protocol MVRP allows dynamic registration and deregistration of VLANs on ports on a VLAN bridged network Voice VLAN Voice VLAN is a VLAN c...

Страница 268: ...ries per page input field When first visited the web page will show the first 20 entries from the beginning of the VLAN Table The first displayed will be the one with the lowest VLAN ID found in the V...

Страница 269: ...ng VLAN User types CLI Web SNMP These are referred to as static NAS NAS provides port based authentication which involves communications between a Supplicant Authenticator and an Authentication Server...

Страница 270: ...untagged frames received on that port are discarded Port VLAN ID Shows the Port VLAN ID PVID that a given user wants the port to have The field is empty if not overridden by the selected user Tx Tag...

Страница 271: ...Authentication Server Web Interface To Display MAC based VLAN configuration in the web interface 1 Click Monitor MAC based VLAN Status 2 Specify the Static NAS Combined 3 Display MAC based information...

Страница 272: ...ext field depends on the option selected from the preceding Frame Type selection menu Below is the criteria for three different Frame Types 1 For Ethernet Values in the text field when Ethernet is sel...

Страница 273: ...of PID will be any value from 0x0000 to 0xffff Group Name A valid Group Name is a unique 16 character long string for every entry which consists of a combination of alphabets a z or A Z and integers 0...

Страница 274: ...tegers 0 9 no special character is allowed whichever Group name you try map to a VLAN must be present in Protocol to Group mapping table and must not be pre used by any other existing mapping entry on...

Страница 275: ...0 application will auto generate the VCE ID for that entry Deletion and lookup of IP subnet based VLAN are based on VCE ID IP Address Indicates the IP address Mask Length Indicates the network mask le...

Страница 276: ...nnectivity issues Web Interface To configure an ICMP PING Configuration in the web interface 1 Specify ICMP PING IP Address 2 Specify ICMP PING Size 3 Click Start Figure 5 1 The ICMP Ping Parameter de...

Страница 277: ...k the Start button then the switch will start to ping the device using ICMP packet size what set on the switch After you press 5 ICMP packets are transmitted and the sequence number and roundtrip time...

Страница 278: ...to 30 seconds Egress Interface Only for IPv6 The VLAN ID VID of the specific egress IPv6 interface which ICMP packet goes The given VID ranges from 1 to 4094 and will be effective only when the corres...

Страница 279: ...es from 10 10 132 20 icmp_seq 1 time 0ms 64 bytes from 10 10 132 20 icmp_seq 2 time 0ms 64 bytes from 10 10 132 20 icmp_seq 3 time 0ms 64 bytes from 10 10 132 20 icmp_seq 4 time 0ms Sent 5 packets rec...

Страница 280: ...urate for cables of length 7 140 meters 10 and 100 Mbps ports will be linked down while running VeriPHY Therefore running VeriPHY on a 10 or 100 Mbps management port will cause the switch to stop resp...

Страница 281: ...r A Short B Cross pair short to pair B Short C Cross pair short to pair C Short D Cross pair short to pair D Cross A Abnormal cross pair coupling with pair A Cross B Abnormal cross pair coupling with...

Страница 282: ...eter description Protocol The protocol ICMP UDP TCP packets to send IP Address The destination IP Address Wait Time Set the time in seconds to wait for a response to a probe default 5 0 sec Values ran...

Страница 283: ...o restart switch for any maintenance needs Any configuration files or scripts that you saved in the switch should still be available afterwards Web Interface To configure a Restart Device Configuratio...

Страница 284: ...ill recover to factory default values Web Interface To configure a Factory Defaults Configuration in the web interface 1 Chick Factory Defaults 2 Click Yes Figure 6 2 1 The Factory Defaults Parameter...

Страница 285: ...e Browse button to search the Firmware URL and filename NOTE This page facilitates an update of the firmware controlling the switch Uploading software will update all managed switches to the location...

Страница 286: ...f the alternate image is active due to a corruption of the primary image or by manual intervention uploading a new firmware image to the device will automatically use the primary image slot and activa...

Страница 287: ...irmware image Date The date where the firmware was produced Buttons Activate Alternate Image Click to use the Activate Alternate Image This button may be disabled depending on system state Cancel Canc...

Страница 288: ...stem is restored to default settings It is also possible to store up to two other files and apply them to running config thereby switching configuration 6 4 1 Save startup config This copy running con...

Страница 289: ...ce 2 Click upload Select Figure 6 4 2 Configuration upload There are three system files 1 running config A virtual file that represents the currently active configuration on the switch This file is vo...

Страница 290: ...s fully replaced with the configuration in the downloaded file Merge mode The downloaded file is merged into running config If the file system is full i e contains the three system files mentioned abo...

Страница 291: ...iguration in the web interface 5 Chick Browser to select Maintenance Configuration in you device 6 Click Activate Select Figure 6 4 4 Configuration Activation There are two system files 1 default conf...

Страница 292: ...ion Web Interface To delete configuration in the web interface 7 Chick Browser to select Maintenance Configuration in you device 8 Click Delete Select Figure 6 4 5 Delete Configuration There is one sy...

Страница 293: ...a tabbed menu and the configuration changes made in its window have a higher priority than those in the Switch configuration menus 3 You should save the configuration changes made on the Surveillance...

Страница 294: ...configure a VLAN that span across multiple switches Configuration is made on the root switch only In this way the configuration of the entire surveillance network is made easy The QoS and Mac Lock fu...

Страница 295: ...rev 1 2 Aug 2015 295 4 Make configuration changes and then click the Apply button Figure 7 1 1 Surveillance Information See below for the parameters of all surveillance related information Parameter...

Страница 296: ...IP Address In the Manual mode enter a starting address for the address scan e g 192 168 1 1 Device Scan Ending IP Address In the Manual mode enter an end address for the address scan e g 192 168 4 254...

Страница 297: ...o a network that is already managed by a DHCP server IP conflicts will occur You should then disable the onboard DHCP server first 2 If you have a 264A switch up and running and enabled its DHCP funct...

Страница 298: ...ime via NTP Manual setting is simple and you just input Year Month Day Hour and Minute within the valid value range indicated in each item Web Interface To configure Time in the web interface 1 Click...

Страница 299: ...ions set below for a defined Daylight Saving Time duration Select Disable to disable the Daylight Saving Time configuration Select Recurring and configure the Daylight Saving Time duration to repeat t...

Страница 300: ...VTK NVR CMS You can identify the system by configuring switch contact information name and location Web interface To configure Surveillance VVTK NVR CMS on the web interface 1 Click Surveillance Manag...

Страница 301: ...vice Name NVR CMS device name Edit Device Name NVR CMS device name edit function MAC NVR CMS device MAC address IP Address NVR CMS device IP address It is also a hyper link that directly opens a web s...

Страница 302: ...a Encoder in the web interface 1 Click Surveillance Management Camera Encoder Device List 2 Click to configure the Batch Account Setting web page for a common user name and password for multiple manag...

Страница 303: ...dit MAC Camera Encoder device MAC address It is also a hyper link that opens the device s General Network Setting page IP Address Camera Encoder device IP address It is also a hyper link that opens a...

Страница 304: ...ount window In there you can enter a common User name and Password and apply them to multiple cameras for ease of management Remove Select the checkbox in front of a device and then click the Remove b...

Страница 305: ...To configure Surveillance Camera Upgrade in the web interface 1 Click Surveillance Management Camera Encoder Camera Upgrade 2 Click Select Device to enter the selected page 3 Click Choose File to sele...

Страница 306: ...iguration profile 128KB in size to the client computer or to the switch itself Note that if you choose to export to the switch you can store up to 39 copies of camera configuration profile The Search...

Страница 307: ...Click Surveillance Management Camera Encoder Camera Configure Config Import 2 Select the Device to import the configuration file from i e client PC or the switch itself 3 Select the IP camera to load...

Страница 308: ...ou need to export the configuration to a client computer a TFTP server is required in your network The configuration file is transported via a TFTP server Figure 7 6 3 Config File 7 7 VVTK Switch VIVO...

Страница 309: ...e device cannot be removed Status Device link state On Off Line Device Name NVR CMS device name Edit Device Type Manual modification to Un Managed NVR CMS Camera Encoder or Other Device into different...

Страница 310: ...link state On Off Line Device Name Camera Encoder device name Edit Device Type Manual modification to Un Managed NVR CMS Camera Encoder or Other Device into different IP Device or Un managed Devices p...

Страница 311: ...fferent IP Device or Un managed Devices page MAC NVR CMS device MAC address IP Address NVR CMS device IP address It is also a hyper link that directly opens a web session with the device Note that if...

Страница 312: ...naged NVR CMS Camera Encoder or Other Device into different IP Device or Un managed Devices page MAC NVR CMS device MAC address IP Address NVR CMS device IP address It is also a hyper link that direct...

Страница 313: ...anagement Unmanaged Devices VVTK Camera 2 Enter a Password blank also applies 3 Click the Apply button Figure 7 9 2 Surveillance Un managed Devices VVTK Camera Parameter description Administrator User...

Страница 314: ...ingle switch or across multiple switches using the configurable options in the Topology View The Auto Sync Feature In a network deployment consisting of multiple surveillance switches you can select o...

Страница 315: ...4 76 xx VLAN2 140 114 77xx Grouping devices IP cameras with a common set of requirements regardless of their physical location by VLAN can greatly simplify network design A VLAN has the same attribute...

Страница 316: ...t compromised by the traffic demands for other applications In terms of surveillance applications the connections of an adequate number of IP cameras can be configured into a VLAN and span across diff...

Страница 317: ...vailable on the Floor View and Google Map The Live Stream feature applies in the following browser versions Chrome V39 above Chrome V38 under Firefox v39 IE11 IE10 IE9 IE8 WinXP No Yes Yes No Win7 No...

Страница 318: ...can use the Troubleshooting function to figure out whether there is a link problem to a device The switch sends test packets to verify the link connectivity between switch port and camera This helps w...

Страница 319: ...rs you prefer from the topology Select by checking their circles 3 Enter a Group name Description and a unique VLAN ID See the previous chapter for details VLAN ID is the VLAN identifier VID for the p...

Страница 320: ...User Manual rev 1 2 Aug 2015 320 A VLAN can also span across multiple switches Select devices on multiple switches to join them into the same VLAN They will be automatically tagged into a VLAN...

Страница 321: ...e will be limited You can mouse over the PoE switch to quickly view the total PoE output The same information is also shown on each network camera Below are statuses for the quick access menu for devi...

Страница 322: ...kers in the device list You can upload up to 20 map files with the limitation of 256KB in file size each Web interface To configure the surveillance Floor View in the web interface 1 Click Surveillanc...

Страница 323: ...User Manual rev 1 2 Aug 2015 323 6 Click the Save button to save your configuration...

Страница 324: ...hen the configuration is done use the Export Floor View function on the upper right of the screen to export your configuration The file format can be SVG PNG or PDF Chrome and Firefox Note that if usi...

Страница 325: ...ed to the switch Web interface To configure the Floor Image in the web interface 1 Click Surveillance Floor Plan Floor Image 2 Click Browse to select Floor image from the client computer Enter a name...

Страница 326: ...k and hold down your left mouse button to move to a preferred direction You can also key in the address you have in mind in the Search box e g Sunset Boulevard Los Angeles etc The GPS location of your...

Страница 327: ...disappear from map The quick access menu is also available on the Google Map 1 Opens the device Network Setting page 2 Opens the web console with the camera 3 Restores firmware default 4 Reboot the c...

Страница 328: ...dded to the switch will require that you manually add their MAC addresses to the list This feature is automatically synchronized to all subordinate PoE switches in the network Configuration is necessa...

Страница 329: ...guration aims to simplify the process of VLAN settings The program will automatically configure spanning tree loopback detection and other associated settings in the background Web interface To config...

Страница 330: ...D Enter a number ranging from 2 to 4095 as the VLAN ID Member Setting Single click to select an NVR CMS device or camera from the device list You can also use the combination of Shift key and mouse cl...

Страница 331: ...witch ports or a specific port 1 Click Surveillance Monitor and Traffic Chart 2 Click on specific port on the traffic chart to reveal its traffic during the day You can select to display a summary of...

Страница 332: ...Mbit s Web interface To view the throughput through a specific port 1 Click Surveillance Monitor and Instant Throughput 2 Click on a specific device on the device list to reveal its instant throughpu...

Страница 333: ...st the link routes between the switch and the IP device Note that the topology of network needs to be saved for this function to work properly Web interface To configure Surveillance Information in th...

Страница 334: ...and Device info to CSV 2 Click Export Figure 12 1 1 Device info to CSV 12 2 Surveillance Config You can save or clear surveillance configuration on this page Web interface To save or clear surveillanc...

Отзывы:

Нет отзывов

Похожие инструкции для AW-GEV-264A Series

H3C S9500E Series Manual preview
S9500E Series
Бренд: H3C Страницы: 38
H3C S9500E Series Interface Configuration Manual preview
S9500E Series
Бренд: H3C Страницы: 36
H3C S9500E Series Quick Start Manual preview
S9500E Series
Бренд: H3C Страницы: 9
H3C S9500E Series Command Reference Manual preview
S9500E Series
Бренд: H3C Страницы: 36
H3C S12500X-AF Series Configuration Examples preview
S12500X-AF Series
Бренд: H3C Страницы: 21
H3C S12500X-AF Series Quick Start Manual preview
S12500X-AF Series
Бренд: H3C Страницы: 42
H3C H3C S7500E-X Configuration Examples preview
H3C S7500E-X
Бренд: H3C Страницы: 16
H-Tronic TS 1000 Manual preview
TS 1000
Бренд: H-Tronic Страницы: 32
Qlogic SilverStorm 9000 Hardware Installation Manual preview
SilverStorm 9000
Бренд: Qlogic Страницы: 50
Black Box SW730A Manual preview
SW730A
Бренд: Black Box Страницы: 26
Hama Data Switch Operating Instruction preview
Data Switch
Бренд: Hama Страницы: 10
StarTech.com MSTCDP122DP Quick Start Manual preview
MSTCDP122DP
Бренд: StarTech.com Страницы: 2
Advantech EKI-7659CPI User Manual preview
EKI-7659CPI
Бренд: Advantech Страницы: 101
Maipu S12800 Installation Manual preview
S12800
Бренд: Maipu Страницы: 135
Intellinet 523769 User Manual preview
523769
Бренд: Intellinet Страницы: 48
Control 4 LSZ-101-W Installation And User Manual preview
LSZ-101-W
Бренд: Control 4 Страницы: 2
Transition Networks SM24-1000SFP-AH Installation Manual preview
SM24-1000SFP-AH
Бренд: Transition Networks Страницы: 76
Allied Telesis AT-GS903SX Installation Manual preview
AT-GS903SX
Бренд: Allied Telesis Страницы: 44

Бренды по названию

Популярные бренды

Загрузить еще бренды