advertisement
16 Port 10/100TX + 2 Port 10/100/1000T/Mini-GBIC
Combo Managed Industrial Redundant Ring Switch
AMG9162M-H
User Manual
www.amgsystems.com
FCC Warning
This Equipment has been tested and found to comply with the limits for a
Class-A digital device, pursuant to Part 15 of the FCC rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation. This equipment generates, uses, and can radiate radio frequency energy. It may cause harmful interference to radio communications if the equipment is not installed and used in accordance with the instructions. However, there is no guarantee that interference will not occur in a particular installation. If this equipment does cause harmful interference to radio or television reception, which can be determined by turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of the following measures:
Reorient or relocate the receiving antenna.
Increase the separation between the equipment and receiver.
Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.
Consult the dealer or an experienced radio/TV technician for help.
CE Mark Warning
This is a Class-A product. In a domestic environment this product may cause radio interference in which case the user may be required to take adequate measures.
Content
Introduction................................................................ 1
Features ................................................................... 1
Software Specifications............................................ 3
Package Contents.................................................... 5
Hardware Description ............................................... 1
Physical Dimensions ................................................ 1
Front Panel .............................................................. 1
Top View .................................................................. 2
LED Indicators ......................................................... 3
RJ-45 Pin Assignments............................................ 5
Cabling..................................................................... 8
SFP Connection....................................................... 9
Wiring the Power Inputs......................................... 12
Wiring the Fault Alarm Contacts ............................ 13
Installation................................................................ 14
DIN-Rail Mounting.................................................. 14
Wall Mounting ........................................................ 16
Installation Steps.................................................... 17
Console Management ............................................. 18
Connecting to the Console Port ............................. 18
Login in the Console Interface ............................... 19
CLI Management ................................................... 20
Commands Level ............................................................. 21
Commands Set List ......................................................... 22
System Commands Set ................................................... 22
Port Commands Set ........................................................ 25
Trunk Commands Set ...................................................... 27
VLAN Commands Set...................................................... 29
Spanning Tree Commands Set ....................................... 30
QOS Commands Set ....................................................... 33
IGMP Commands Set ...................................................... 34
Mac / Filter Table Commands Set ................................... 34
SNMP Commands Set..................................................... 35
Port Mirroring Commands Set ......................................... 38
802.1x Commands Set .................................................... 38
TFTP Commands Set ...................................................... 40
SystemLog, SMTP and Event Commands Set ................ 41
SNTP Commands Set ..................................................... 43
X-ring Commands Set ..................................................... 44
Web-Based Management ........................................ 46
About Web-based Management ............................ 46
Preparing for Web Management............................ 46
System Login ......................................................... 47
System Information ................................................ 48
IP Configuration ..................................................... 48
DHCP Server – System configuration.................... 49
DHCP Server – Client Entries................................ 51
DHCP Server - Port and IP Bindings ..................... 51
TFTP - Update Firmware ....................................... 52
TFTP – Restore Configuration ............................... 53
TFTP - Backup Configuration ................................ 53
System Event Log – Syslog Configuration............. 54
System Event Log - SMTP Configuration .............. 55
System Event Log - Event Configuration ............... 56
Fault Relay Alarm .................................................. 59
SNTP Configuration ............................................... 59
IP Security.............................................................. 62
User Authentication................................................ 63
Port Statistics ......................................................... 64
Port Control ............................................................ 65
Port Trunk .............................................................. 66
Aggregator setting ........................................................... 67
Aggregator Information .................................................... 68
State Activity .................................................................... 69
Port Mirroring ......................................................... 70
Rate Limiting .......................................................... 72
VLAN configuration ................................................ 74
VLAN configuration - Port-based VLAN........................... 74
802.1Q VLAN................................................................... 78
Rapid Spanning Tree ............................................. 82
RSTP - System Configuration.......................................... 82
RSTP - Port Configuration ............................................... 83
SNMP Configuration .............................................. 85
System Configuration ...................................................... 85
Trap Configuration ........................................................... 86
SNMPV3 Configuration.................................................... 87
QoS Configuration ................................................. 90
QoS Policy and Priority Type ........................................... 90
Port-based Priority ........................................................... 91
COS Configuration........................................................... 92
TOS Configuration ........................................................... 92
IGMP Configuration ............................................... 93
X-Ring .................................................................... 94
Security .................................................................. 97
802.1X/Radius Configuration ........................................... 97
MAC Address Table....................................................... 100
Factory Default..................................................... 103
Save Configuration .............................................. 103
System Reboot .................................................... 104
Troubleshooting .................................................... 105
Technical Specifications....................................... 106
Introduction
The managed industrial switch is a cost-effective solution and meets the high reliability requirements demanded by industrial applications. Using fiber port can extend the connection distance that increases the network elasticity and performance.
Features
System Interface/Performance
»
RJ-45 ports support Auto MDI/MDI-X Function
»
SFP (mini-GBIC) supports 100/1000 Dual Mode
»
Store-and-Forward Switching Architecture
»
Back-plane (Switching Fabric): 7.2Gbps
»
1Mbits Packet Buffer
»
8K MAC Address Table
»
Supports Wide Operating Temperature (-40 o
C ~ 75 o
C)
Case/Installation
»
IP-30 Protection
»
DIN-Rail and Wall Mount Design
Power Supply
»
Wide Range Redundant Power Design
»
Power Polarity Reverse Protect
»
Overload Current Protection
Spanning Tree
»
Supports IEEE 802.1d Spanning Tree
»
Supports IEEE 802.1w Rapid Spanning Tree
VLAN
»
Port Based VLAN
1
»
Support 802.1 Q Tag VLAN
»
GVRP
X-Ring
»
X-Ring, Dual Homing and Couple Ring Topology
2
»
Provide redundant backup feature and the recovery time below 20ms
Port Trunk with LACP
Support IEEE802.1ab LLDP
QoS (Quality of Service)
»
Support IEEE 802.1p Class of Service
»
Per port provides 4 priority queues
»
Port Base, Tag Base and Type of Service Priority
Bandwidth Control
»
Ingress Packet Filter and Egress Rate Limit
»
Broadcast/Multicast Packet Filter Control
Port Mirror: Monitor traffic in switched networks
»
TX Packet only
»
RX Packet only
»
Both of TX and RX Packet
System Event Log
»
System Log Server/Client
»
SMTP e-mail Alert
»
Relay Alarm Output System Events
Security
»
Port Security : MAC address entries/filter
»
IP Security: IP address security management to prevent unauthorized intruder
»
Login Security: IEEE802.1X/RADIUS
SNMP Trap
»
Device cold start, Power status
»
Authentication failure
»
X-Ring topology change
»
Port Link up/Link down
IGMP with Query mode for Multi Media Application
TFTP Firmware Update and System Configure Restore and Backup
3
Electrostatic Discharge test (ESD, IEC 61000-4-2)
»
Air Discharge: 8KV
»
Contact Discharge: 6KV
4
Software Specifications
Management
SNMP MIB
VLAN
Port Trunk with
LACP
LLDP
Spanning Tree
X-Ring
Quality of Service
Class of Service
SNMP v1, v2c and v3 management
Web interface management
Telnet interface management
Command Line Interface (CLI) management
RFC 1215 Trap
RFC 1213 MIBII
RFC 1157 SNMP MIB
RFC 1493 Bridge MIB
RFC 2674 VLAN MIB
RFC 1643
RFC 1757
RSTP MIB
Private MIB
Port based VLAN
IEEE802.1Q Tag VLAN (256 entries)/VLAN ID (up to 4k in number which can be assigned from 1 to 4096)
GVRP (256 groups)
LACP Port Trunk: 4 Trunk groups/Maximum 4 trunk members
Supports LLDP that allows the switch to advertise its identity and capabilities on the LAN
IEEE802.1d spanning tree
IEEE802.1w rapid spanning tree.
Supports X-Ring, Dual Homing and Couple Ring
Provides redundant backup feature and the recovery time below 20ms
The quality of service determined by port, Tag and IPv4
Type of Service, IPv4 Different Service
Supports IEEE 802.1p class of service, per port provides
4 priority queues
5
Port Security
Port Mirroring
IGMP
IP Security
Login Security
Bandwidth
Control
Flow Control
System Log
SMTP
SNMP Trap
DHCP
DNS
Supports 100 entries of MAC address for static MAC and another 100 for MAC filter
TX packet only
RX packet only,
Both of TX and RX packets
Supports IGMP snooping v1, v2 and v3
Up to 256 multicast groups and IGMP query
Supports 10 IP addresses that have permission to access the switch management and to prevent unauthorized intruder
Supports IEEE-802.1X Authentication/RADIUS
Supports ingress packet filter and egress packet limit
The egress rate control supports all of packet type and the limit rates are 100K ~ 250Mbps
Ingress filter packet type combination rules are
Broadcast/Multicast/Unknown Unicast packet,
Broadcast/Multicast, Broadcast packet only and all of packets
The packet filter rate can be set from 100k to 250Mbps
Supports Flow Control for Full-duplex and Back Pressure for Half-duplex
Supports System log record and remote system log server
Supports SMTP Server and 6 e-mail accounts for receiving event alert
Up to 3 Trap stations
Cold start, Port link up, Port link down, Authentication
Failure, Private Trap for power status, Power Alarm configuration, Fault Alarm, X-Ring topology change
Provides DHCP Client/DHCP Server function
Provides DNS client feature
6
SNTP
Firmware Update
Configuration
Upload and
Download
Supports Primary and Secondary DNS Server
Supports SNTP to synchronize system clock with an
Internet time server
TFTP firmware update
TFTP configuration backup/restoration
Supports binary configuration file for system quick installation
Package Contents
Please refer to the package content list below to verify them against the checklist.
16 10/100TX + 2 10/100/1000T/Mini-GBIC Combo w/ X-Ring L2 Managed Industrial
Switch x 1
Pluggable Terminal Block x 1
User Manual (CD-ROM) x 1
Mounting plate x 2
RJ-45 to DB9-Female cable x 1
Compare the contents of the industrial switch with the standard checklist above. If any item is damaged or missing, please contact the local dealer for service.
7
Hardware Description
In this paragraph, we will describe the Industrial switch’s hardware spec, port, cabling information, and wiring installation.
Physical Dimensions
16 10/100TX + 2 10/100/1000T/Mini-GBIC Combo w/ X-Ring L2 Managed Industrial
Switch dimensions (W x H x D) are 72mm x 152mm x 105mm
Front Panel
The front panel of the 16 10/100TX + 2 10/100/1000T/Mini-GBIC Combo w/ X-Ring L2
Managed Industrial Switch is shown as below:
Front Panel of the industrial switch
1
Top View
The top panel of the 16 10/100TX + 2 10/100/1000T/Mini-GBIC Combo w/ X-Ring L2
Managed Industrial Switch has one terminal block connector with six contacts.
Top Panel of the industrial switch
2
LED Indicators
The diagnostic LEDs located on the front panel of the industrial switch provide real-time information of system and optional status. The following table provides description of the
LED status and their meanings for the switch.
LED Status Meaning
PWR
Green
Off
System power on
No power inputs
R.M.
Green
Off
The industrial switch is the master device of the
X-Ring group
The industrial switch is not the master device of the X-Ring group
Power 1 is active
PWR1
Green
Off
Green
Power 1 is inactive
Power 2 is active
PWR2
P1 ~ P16
Off
Fault
(depends on the
Fault Relay Alarm
configuration)
Red
Off
Power 2 is inactive
Power or Ethernet port failure occurs
No failure occurs
Green
(Upper LED)
Connected to network
Blinking
(Upper LED)
Networking is active
Off
(Upper LED)
Not connected to network
3
P17 ~ P18
(10/100/1000T)
P17 ~ P18
Link/Active
(100/1000 SFP)
Yellow
(Lower LED)
Ethernet port full duplex
Blinking
(Lower LED)
Off
(Lower LED)
Collision of packets occurs
Ethernet port half duplex or not connected to network
Green
(Upper LED)
Connected to network
Blinking
(Upper LED)
Networking is active
Off
(Upper LED)
Not connected to network
Green
(Lower LED)
The port is operating at speed of 1000M
Off
(Lower LED)
The port is disconnected or operates at speed of 10/100M
Green SFP port is connected to network
Blinking
Off
Networking is active
Not connected to network
4
RJ-45 Pin Assignments
The UTP/STP ports will automatically sense for Fast Ethernet (10Base-T/100Base-TX) or
Gigabit Ethernet (10Base-T/100Base-TX/1000Base-T) connection. Auto MDI/MDIX means that the switch can connect to another switch or workstation without changing straight through or crossover cabling. See the illustrations below for straight through and crossover cable schema.
10/100Base-TX Pinouts
Pin Number
1
2
3
6
Assignment
Tx+
Tx-
Rx+
Rx-
Note “+” and “-” signs represent the polarity of the wires that make up each wire pair.
The table below shows the 10Base-T/100Base-TX MDI and MDI-X port pinouts.
Pin Number
1
2
3
6
MDI-X Signal Name MDI Signal Name
Receive Data plus (RD+) Transmit Data plus (TD+)
Receive Data minus (RD-) Transmit Data minus (TD-)
Transmit Data plus (TD+) Receive Data plus (RD+)
Transmit Data minus (TD-) Receive Data minus (RD-)
5
10/100Base-TX Cable Schema
Straight Through Cable
Schema
Crossover Cable Schema
10/100/1000Base-T Pinouts
The table below describes the gigabit Ethernet RJ-45 pinouts.
6
7
8
4
5
Pin
1
2
3
Signal name
BI_DA+
BI_DA-
BI_DB+
BI_DC+
BI_DC-
BI_DB-
BI_DD+
BI_DD-
Description
Bi-directional pair A+
Bi-directional pair A-
Bi-directional pair B+
Bi-directional pair C+
Bi-directional pair C-
Bi-directional pair B-
Bi-directional pair D+
Bi-directional pair D-
6
10/100/1000Base-T Cable Schema
The following two figures illustrate the 10/100/1000Base-T cable schema.
Straight Through Cable Schema
Crossover Cable Schema
7
Cabling
Use four twisted-pair, Category 5e or above cabling for RJ-45 port connection. The cable between the switch and the link partner (switch, hub, workstation, etc.) must be less than 100 meters (328 ft.) long.
Gigabit Copper/SFP (mini-GBIC) combo port:
The Industrial switch has the auto-detected Giga port—Gigabit Copper/SFP combo ports.
The Gigabit Copper (10/100/1000T) ports should use Category 5e or above UTP/STP cable for the connection speed up to 1000Mbps. The small form-factor pluggable (SFP) is a compact optical transceiver used in optical communications for both telecommunication and data communications. The SFP slots supporting dual mode can switch the connection speed between 100 and 1000Mbps. They are used for connecting to the network segment with single or multi-mode fiber. You can choose the appropriate
SFP transceiver to plug into the SFP socket. Then use proper multi-mode or singlemode fiber cable according to that transceiver.
Note
The particular SFP/Copper Combo port is deemed to be a single port that either the SFP or Copper port works; the SFP and Copper ports can’t both work at the same time.
The SFP port has the higher priority than the corresponding copper port; if you insert the
1000M
SFP transceiver (which has connected a fiber cable between that transceiver and the remote node) into the SFP port, the connection of the corresponding copper port will link down.
If you insert the
100M
SFP transceiver into the SFP port even without a fiber cable between that transceiver and the remote node, the connection of the corresponding copper port will link down immediately.
8
SFP Connection
To connect the transceiver and the LC cable, please follow the steps shown below:
First, insert the transceiver into the SFP slot. Notice that the triangle mark indicates the bottom of the slot.
Insert transceiver into the SFP slot
Transceiver Inserted
9
Second, insert LC connector of the fiber cable into the transceiver.
LC connector to the transceiver
10
SFP Disconnection
To remove the LC connector from the transceiver, please follow the steps below:
First, press down the latches and pull the LC connector out of the transceiver.
Press down the latches to remove the LC connector
Second, push down the metal loop and pull out the transceiver by the handle.
Pull the transceiver out of the slot
11
Wiring the Power Inputs
Please follow the steps below to insert the power wire.
1. Insert the positive and negative wires into the V+ and V- contacts on the terminal block connector.
2. Tighten the wire-clamp screws to prevent the DC wires from loosing.
12
Wiring the Fault Alarm Contacts
The fault alarm contact is in the middle of terminal block connector as the picture shows below. Inserting the wires, it will detect the fault status which the power is failure or port link failure (for managed model) and form an open circuit.
Note
Insert the wires into the fault alarm contacts (No. 3 & 4)
The wire gauge for the terminal block should be in the range between 12~ 24
AWG.
13
Installation
DIN-Rail Mounting
Assembling the DIN-Rail Clip
The DIN-rail clip is screwed on the industrial switch when out of factory. If not, please refer to the following steps to secure the DIN-rail clip on the switch.
1. Use the included screws to secure the DIN-rail clip on the industrial switch.
2. To remove the DIN-rail clip, reverse step 1.
Rear Side of the Switch
14
DIN-Rail Clip
Hanging the Industrial Switch
Follow the steps below to hang the industrial switch on the DIN rail.
1. First, position the rear side of the switch directly in front of the DIN rail. Make sure the top of the clip hooks over the top of the DIN rail.
2. Push the unit downward.
3. Check the DIN-Rail clip is tightly fixed on the DIN rail.
4. To remove the industrial switch from the track, reverse the steps above.
15
Wall Mounting
To hang the Ethernet switch on the wall, please follow the steps below.
1.
Remove the DIN-rail clip.
2.
Prepare the two wall-mount plates and six screws included .
3.
Align the screw holes bewteen the wall-mount plates and the unit as the figure illustrated
.
4.
Secure the plates to the unit with the accompanying screws
.
16
Installation Steps
1. Unpack the Industrial switch
2. Check if the DIN-rail clip is screwed on the Industrial switch or not. If the DIN-rail clip is not screwed on the Industrial switch, please refer to the DIN-Rail Mounting section for DIN-rail installation. If users want to wall-mount the Industrial switch, then please refer to Wall-Mount Plate Mounting section for wall-mount plate installation.
3. To hang the Industrial switch on the DIN-rail or wall, please refer to the Mounting
Installation section.
4. Power on the Industrial switch. Please refer to the Wiring the Power Inputs section for knowing the information about how to wire the power. The power LED on the
Industrial switch will light up. Please refer to the LED Indicators section for indication of LED lights.
5. Prepare the twisted-pair, straight through Category 5 cable for Ethernet connection.
6. Insert one side of RJ-45 cable (category 5) into the Industrial switch Ethernet port
(RJ-45 port) and another side of RJ-45 cable (category 5) to the network device’s
Ethernet port (RJ-45 port), ex: Switch PC or Server. The UTP port (RJ-45) LED on the Industrial switch will light up when the cable is connected with the network device.
Please refer to the LED Indicators section for LED light indication.
7. When all connections are set and LED lights all show in normal, the installation is complete.
17
Console Management
Connecting to the Console Port
One end of the supplied cable is RS-232 connector and the other end is RJ-45 connector. Attach the RS-232 connector to PC or terminal and the RJ-45 connector to the console port of the switch. The connected terminal or PC must support the terminal emulation program.
Pin Assignment
NC
5
NC
NC
NC
DB9 Connector RJ-45 Connector
NC
2
3
1
2
3
Orange/White
Orange
Green/White
4 Blue
5 Blue/White
6 Green
7 Brown/White
8 Brown
18
Login in the Console Interface
When the connection between Switch and PC is ready, turn on the PC and run a terminal emulation program or Hyper Terminal and configure its communication
parameters to match the following default characteristics of the console port:
Baud Rate: 9600 bps
Data Bits: 8
Parity: none
Stop Bit: 1
Flow control: None
The settings of communication parameters
After finishing the parameter settings, click ‘OK’ button. When the blank screen shows up, press Enter key to bring out the login prompt. Key in ‘root’ (default value) for both
User name and Password (use Enter key to switch), then press Enter key and the Main
Menu of console management appears.
19
Console login interface
CLI Management
The system supports the console management – CLI command. After you log in on to the system, you will see a command prompt. To enter CLI management interface, type in “enable” command.
CLI command interface
20
The following table lists the CLI commands and description.
Commands Level
Modes
User EXEC
Privileged
EXEC
Access
Method
Begin a session with your switch.
Enter the
enable
command while in User
EXEC mode.
Global
Configuration
VLAN database
Enter the
configure
command while in privileged
EXEC mode.
Enter the
vlan database
command while in switch
(vlan)#
Prompt
switch> switch# switch
(config)#
Exit
Method
About This Mode
Enter
logout or
quit.
Enter
disable to exit.
The user commands available at the user level are a subset of those available at the privileged level.
Use this mode to
• Perform basic tests.
• Display system information.
The privileged command is the advanced mode.
Use this mode to
• Display advanced function status
• Save configuration
To exit to privileged
EXEC mode, enter
exit or end
Use this mode to configure those parameters that are going to be applied to your switch.
To exit to user EXEC mode, enter
exit.
Use this mode to configure VLANspecific parameters.
21
Interface configuration privileged
EXEC mode.
Enter the interface of fast Ethernet command
(with a specific interface) while in global configuration mode switch
(config-if)#
To exit to global configuratio n mode, enter exit.
To exit to privileged
EXEC mode, enter
exit or end.
Use this mode to configure parameters for the switch and
Ethernet ports.
Commands Set List
User EXEC
Privileged EXEC
Global configuration
VLAN database
Interface configuration
I
G
V
E
P
System Commands Set
Commands show config show terminal write memory system name
Level Description
E
Show switch configuration
P
Show console information
P
Save user configuration into permanent memory
(flash rom)
G
Configure system
Example
switch>show config switch#show terminal switch#write memory switch(config)#system name xxx
22
[System Name] system location
[System Location] system description
[System Description] system contact
[System Contact] show system-info ip address
[Ip-address] [Subnetmask] [Gateway] ip dhcp show ip no ip dhcp reload default admin username
[Username] admin password
[Password] show admin dhcpserver enable
Dhcpserver disable dhcpserver lowip
[Low IP] dhcpserver highip
[High IP]
G
name
Set switch system location string
G
Set switch system description string
G
Set switch system contact window string
E
Show system information
G
Configure the IP address of switch switch(config)#system location
xxx
switch(config)#system
description xxx
switch(config)#system contact
xxx
switch>show system-info switch(config)#ip address
192.168.1.1 255.255.255.0
192.168.1.254
G
Enable DHCP client function of switch switch(config)#ip dhcp
P
Show IP information of switch#show ip switch switch(config)#no ip dhcp
G
Disable DHCP client function of switch
G
Halt and perform a cold restart
G
Restore to default switch(config)#reload
G
Changes a login username.
(maximum 10 words) switch(config)#default switch(config)#admin username
xxxxxx
G
Specifies a password
(maximum 10 words)
P
Show administrator information switch(config)#admin password
xxxxxx
switch#show admin
G
Enable DHCP Server switch(config)#dhcpserver enable
G
Disable DHCP Server switch(config)#no dhcpserver
G
Configure low IP switch(config)#dhcpserver lowip address for IP pool
192.168.1.100
G
Configure high IP address for IP pool switch(config)#dhcpserver highip
192.168.1.200
23
dhcpserver subnetmask
[Subnet mask] dhcpserver gateway
[Gateway] dhcpserver dnsip
[DNS IP] dhcpserver leasetime
[Hours] dhcpserver ipbinding
[IP address]
G
Configure subnet switch(config)#dhcpserver mask for DHCP clients
subnetmask 255.255.255.0
G
Configure gateway for switch(config)#dhcpserver
DHCP clients
gateway 192.168.1.254
G
Configure DNS IP for
DHCP clients
G
Configure lease time
(in hour) switch(config)#dhcpserver dnsip
192.168.1.1
switch(config)#dhcpserver
leasetime 1
I
Set static IP for DHCP switch(config)#interface clients by port
fastEthernet 2
switch(config)#dhcpserver
ipbinding 192.168.1.1
show dhcpserver configuration
P
Show configuration of
DHCP server
show dhcpserver clients P
Show client entries of
DHCP server switch#show dhcpserver
configuration
switch#show dhcpserver clients
show dhcpserver ipbinding
P
Show IP-Binding information of DHCP server switch#show dhcpserver ip-
binding no dhcpserver security enable security http security telnet security ip
[Index(1..10)] [IP
Address] show security
G
Disable DHCP server function
G
Enable IP security function
G
Enable IP security of
HTTP server
G
Enable IP security of telnet server switch(config)#no dhcpserver switch(config)#security enable switch(config)#security http switch(config)#security telnet
G
Set the IP security list switch(config)#security ip 1
192.168.1.55
switch#show security
no security
P
Show the information of IP security
G
Disable IP security switch(config)#no security
24
no security http no security telnet
function
G
Disable IP security of
HTTP server
G
Disable IP security of telnet server switch(config)#no security http switch(config)#no security telnet
Port Commands Set
Commands interface fastEthernet
[Portid] duplex
[full | half] speed
[10|100|1000|auto] no flowcontrol security enable no security
Level Description
G
Choose the port for modification.
I
Use the duplex configuration command to specify the duplex mode of operation for Fast
Ethernet.
I
Use the speed configuration command to specify the speed mode of operation for Fast
Ethernet., the speed can’t be set to 1000 if
Example
switch(config)#interface
fastEthernet 2
switch(config)#interface
fastEthernet 2
switch(config-if)#duplex full switch(config)#interface
fastEthernet 2
switch(config-if)#speed 100
I
the port isn’t a giga port..
I
Disable flow control of switch(config-if)#no flowcontrol interface
I
Enable security of interface
Disable security of interface switch(config)#interface
fastEthernet 2
switch(config-if)#security enable switch(config)#interface
fastEthernet 2
25
bandwidth type all bandwidth type broadcast-multicastflooded-unicast bandwidth type broadcast-multicast bandwidth type broadcast-only bandwidth in
[Value] bandwidth out
[Value]
switch(config-if)#no security
I
Set interface ingress limit frame type to
“accept all frame” switch(config)#interface
fastEthernet 2
switch(config-if)#bandwidth type
all
I
Set interface ingress limit frame type to switch(config)#interface
fastEthernet 2
“accept broadcast, multicast, and flooded
broadcast-multicast-flooded-
unicast frame” switch(config-if)#bandwidth type
unicast
I
Set interface ingress limit frame type to switch(config)#interface
fastEthernet 2
“accept broadcast and switch(config-if)#bandwidth type multicast frame”
broadcast-multicast
I
I
Set interface ingress limit frame type to switch(config)#interface
fastEthernet 2
“only accept broadcast switch(config-if)#bandwidth type frame”
broadcast-only
Set interface input bandwidth. Rate
Range is from 100 kbps to 102400 kbps or to 256000 kbps for giga ports, and zero means no limit.
switch(config)#interface
fastEthernet 2
switch(config-if)#bandwidth in 100
Set interface output bandwidth. Rate
Range is from 100 kbps to 102400 kbps or to 256000 kbps for giga ports, and zero means no switch(config)#interface
fastEthernet 2
switch(config-if)#bandwidth out
100
26
show bandwidth state
[Enable | Disable] show interface configuration show interface status show interface accounting no accounting
limit.
I
Show interfaces bandwidth control
I
Use the state interface switch(config)#interface configuration command to specify
fastEthernet 2
(config-if)#state Disable the state mode of operation for Ethernet ports. Use the disable form of this command to disable the port.
I
show interface configuration status switch(config)#interface
fastEthernet 2
switch(config-if)#show bandwidth switch(config)#interface
fastEthernet 2
switch(config-if)#show interface
configuration
I
show interface actual status switch(config)#interface
fastEthernet 2
(config-if)#show interface status
I
show interface statistic switch(config)#interface counter
fastEthernet 2
(config-if)#show interface
accounting
I
Clear interface switch(config)#interface accounting information
fastEthernet 2
switch(config-if)#no accounting
Trunk Commands Set
Commands aggregator priority
[1~65535] aggregator activityport
Level Description Example
G
Set port group system switch(config)#aggregator priority priority
22
G
Set activity port switch(config)#aggregator
27
[Group ID]
[Port Numbers] aggregator group
[GroupID] [Port-list] lacp workp
[Workport] aggregator group
[GroupID] [Port-list] nolacp show aggregator no aggregator lacp
[GroupID] activityport 2
G
Assign a trunk group with LACP active.
switch(config)#aggregator group
1 1-4 lacp workp 2
[GroupID] :1~3 or
[Port-list]:Member port switch(config)#aggregator group list, This parameter
2 1,4,3 lacp workp 3
could be a port range(ex.1-4) or a port list separate by a comma(ex.2, 3, 6)
[Workport]: The amount of work ports, this value could not be less than zero or be large than the amount of member ports.
G
Assign a static trunk list, This parameter could be a port switch(config)#aggregator group group.
[GroupID] :1~3
1 2-4 nolacp
or
[Port-list]:Member port switch(config)#aggregator group
1 3,1,2 nolacp
range(ex.1-4) or a port list separate by a comma(ex.2, 3, 6)
P
Show the information of trunk group switch#show aggregator 1 or switch#show aggregator 2 or switch#show aggregator 3
G
Disable the LACP switch(config)#no aggreator lacp function of trunk group
1
28
no aggregator group
[GroupID]
G
Remove a trunk group switch(config)#no aggreator
group 2
VLAN Commands Set
Commands vlan database
Vlanmode
[portbase| 802.1q | gvrp] no vlan
Level Description
V
No VLAN
Ported based VLAN configuration
Example
P
Enter VLAN configure switch#vlan database mode
V
To set switch VLAN mode.
switch(vlan)#vlanmode portbase or switch(vlan)#vlanmode 802.1q or switch(vlan)#vlanmode gvrp
Switch(vlan)#no vlan
vlan port-based grpname
[Group Name] grpid
[GroupID] port
[PortNumbers] show vlan [GroupID]
or
show vlan no vlan group
[GroupID]
V
Add new port based
VALN switch(vlan)#vlan port-based
grpname test grpid 2 port 2-4
or switch(vlan)#vlan port-based
grpname test grpid 2 port 2,3,4 vlan 8021q name
[GroupName] vid
[VID] vlan 8021q port
[PortNumber] access-link untag
V
Show VLAN information
V
Delete port base group ID
IEEE 802.1Q VLAN
switch(vlan)#show vlan 23 switch(vlan)#no vlan group 2
V
Change the name of
VLAN group, if the group didn’t exist, this command can’t be applied.
switch(vlan)#vlan 8021q name
test vid 22
V
Assign a access link switch(vlan)#vlan 8021q port 3 for VLAN by port, if the
access-link untag 33
29
[UntaggedVID] vlan 8021q port
[PortNumber] trunk-link tag
[TaggedVID List] vlan 8021q port
[PortNumber] hybrid-link untag
[UntaggedVID] tag
[TaggedVID List] vlan 8021q trunk
[PortNumber] access-link untag
[UntaggedVID] vlan 8021q trunk
[PortNumber] trunk-link tag
[TaggedVID List] vlan 8021q trunk
[PortNumber] hybrid-link untag
[UntaggedVID] tag
[TaggedVID List] show vlan [GroupID]
or
show vlan no vlan group
[GroupID]
V
port belong to a trunk group, this command can’t be applied.
Assign a trunk link for
VLAN by port, if the port belong to a trunk group, this command can’t be applied.
switch(vlan)#vlan 8021q port 3
trunk-link tag 2,3,6,99
or switch(vlan)#vlan 8021q port 3
trunk-link tag 3-20
V
Assign a hybrid link for switch(vlan)#vlan 8021q port 3
VLAN by port, if the port belong to a trunk
hybrid-link untag 4 tag 3,6,8
or group, this command can’t be applied.
switch(vlan)#vlan 8021q port 3
hybrid-link untag 5 tag 6-8
V
Assign a access link for VLAN by trunk group
V
Assign a trunk link for
VLAN by trunk group switch(vlan)#vlan 8021q trunk 3
access-link untag 33
V
Assign a hybrid link for switch(vlan)#vlan 8021q trunk 3
VLAN by trunk group
hybrid-link untag 4 tag 3,6,8
or switch(vlan)#vlan 8021q trunk 3
hybrid-link untag 5 tag 6-8
V
Show VLAN information
V
Delete port base group ID switch(vlan)#vlan 8021q trunk 3
trunk-link tag 2,3,6,99
or switch(vlan)#vlan 8021q trunk 3
trunk-link tag 3-20
switch(vlan)#show vlan 23 switch(vlan)#no vlan group 2
Spanning Tree Commands Set
Commands Level Description
30
Example
spanning-tree enable spanning-tree priority
[0~61440] spanning-tree max-age
[seconds] spanning-tree time [seconds] hellospanning-tree forwardtime [seconds]
G
Enable spanning tree switch(config)#spanning-tree
enable
G
Configure spanning switch(config)#spanning-tree tree priority parameter
priority 32767
G
Use the spanning-tree switch(config)#spanning-tree max-age global configuration
max-age 15
command to change the interval between messages the spanning tree receives from the root switch. If a switch does not receive a bridge protocol data unit
(BPDU) message from the root switch within this interval, it recomputed the
Spanning Tree
Protocol (STP) topology.
G
Use the spanning-tree switch(config)#spanning-tree hello-time global configuration
hello-time 3
command to specify the interval between hello bridge protocol data units (BPDUs).
G
Use the spanning-tree switch(config)#spanning-tree forward-time global configuration command to set the
forward-time 20
31
stp-path-cost
[1~200000000] stp-path-priority
[Port Priority]
forwarding-time for the specified spanningtree instances. The forwarding time determines how long each of the listening and learning states last before the port begins forwarding.
I
Use the spanning-tree switch(config)#interface cost interface configuration command to set the
fastEthernet 2
switch(config-if)#stp-path-cost 20 path cost for Spanning
Tree
Protocol (STP) calculations. In the event of a loop, spanning tree considers the path cost when selecting an interface to place into the forwarding state.
I
Use the spanning-tree switch(config)#interface port-priority interface configuration
fastEthernet 2
switch(config-if)#stp-path-priority command to configure
128
a port priority that is used when two switches tie for position as the root switch.
32
stp-admin-p2p
[Auto|True|False] stp-admin-edge
[True|False] stp-admin-non-stp
[True|False] show spanning-tree no spanning-tree
I
I
Admin P2P of STP priority on this interface.
Admin Edge of STP priority on this interface.
switch(config)#interface
fastEthernet 2
switch(config-if)#stp-admin-p2p
Auto
switch(config)#interface
fastEthernet 2
switch(config-if)#stp-admin-edge
True
I
Admin NonSTP of
STP priority on this interface.
switch(config)#interface
fastEthernet 2
switch(config-if)#stp-admin-non-
stp False
E
Displays a summary of switch>show spanning-tree the spanning-tree states.
G
Disable spanning-tree. switch(config)#no spanning-tree
QOS Commands Set
Commands qos policy
[weighted-fair|strict] qos prioritytype
[port-based|cosonly|tos-only|cosfirst|tos-first] qos priority portbased
[Port]
[lowest|low|middle|high]
Level Description
G
Select QOS policy scheduling
Example
switch(config)#qos policy
weighted-fair
G
Setting of QOS priority switch(config)#qos prioritytype type
G
Configure Port-based
Priority switch(config)#qos priority
portbased 1 low qos priority cos
[Priority][lowest|low|mid dle|high] qos priority tos
[Priority][lowest|low|mid dle|high]
G
Configure COS
Priority switch(config)#qos priority cos 0
middle
G
Configure TOS Priority switch(config)#qos priority tos 3
high
33
show qos no qos
P
Displays the information of QoS configuration
Switch#show qos
G
Disable QoS function switch(config)#no qos
IGMP Commands Set
Commands igmp enable
Igmp-query auto
Igmp-query force show igmp configuration show igmp multi no igmp no igmp-query
Level Description
G
Enable IGMP snooping function
G
Set IGMP query to auto mode
G
Set IGMP query to force mode
Example
switch(config)#igmp enable switch(config)#Igmp-query auto switch(config)#Igmp-query force
P
Displays the details of switch#show igmp configuration an IGMP configuration.
P
Displays the details of switch#show igmp multi an IGMP snooping entries.
G
Disable IGMP snooping function switch(config)#no igmp
G
Disable IGMP query switch#no igmp-query
Mac / Filter Table Commands Set
Commands mac-address-table static hwaddr
[MAC]
Level Description
I
Configure MAC address table of interface (static).
mac-address-table filter hwaddr
G
Configure MAC address table(filter)
Example
switch(config)#interface
fastEthernet 2
switch(config-if)#mac-address-
table static hwaddr
000012345678
switch(config)#mac-address-table
filter hwaddr 000012348678
34
[MAC] show mac-address-table P
Show all MAC address switch#show mac-address-table table
show mac-address-table static
P
Show static MAC address table switch#show mac-address-table
static show mac-address-table filter no mac-address-table static hwaddr
[MAC] no mac-address-table filter hwaddr
[MAC] no mac-address-table
P
I
Show filter MAC address table.
Remove an entry of
MAC address table of interface (static)
G
Remove an entry of
MAC address table
(filter) switch#show mac-address-table
filter
switch(config)#interface
fastEthernet 2
switch(config-if)#no mac-address-
table static hwaddr
000012345678
switch(config)#no mac-address-
table filter hwaddr 000012348678
G
Remove dynamic entry of MAC address switch(config)#no mac-address-
table
table
SNMP Commands Set
Commands snmp system-name
[System Name] snmp system-location
[System Location] snmp system-contact
[System Contact] snmp agent-mode
[v1v2c|v3|v1v2cv3] snmp communitystrings [Community] right
[RO/RW]
Level Description
G
Set SNMP agent system name
Example
switch(config)#snmp system-
name l2switch
G
Set SNMP agent system location
G
Set SNMP agent system contact switch(config)#snmp system-
location lab
switch(config)#snmp system-
contact where
G
Select the agent mode switch(config)#snmp agent-mode of SNMP
v1v2cv3
G
Add SNMP community switch(config)#snmp community- string.
strings public right rw
35
snmp-server host
[IP address] community
[Community-string] trap-version
[v1|v2c] snmpv3 context-name
[Context Name ] snmpv3 user
[User Name] group
[Group Name] password
[Authentication
Password] [Privacy
Password] snmpv3 access contextname [Context Name ] group
[Group Name ] securitylevel
[NoAuthNoPriv|AuthNoP riv|AuthPriv] match-rule
[Exact|Prifix] views
[Read View Name]
[Write View Name]
[Notify View Name] snmpv3 mibview view
[View Name] type
G
G
Configure the context
G
Configure the userprofile for
G
Configure SNMP server host information and community string name
SNMPV3 agent.
Privacy password could be empty.
Configure the access table of SNMPV3 agent switch(config)#snmp-server host
192.168.1.50 community public trap-version v1
(remove)
Switch(config)#
no snmp-server host
192.168.1.50
switch(config)#snmpv3 context-
name Test
switch(config)#snmpv3 user
test01 group G1 password
AuthPW PrivPW
switch(config)#snmpv3 access
context-name Test group G1 security-level AuthPriv match-rule Exact views V1 V1 V1
G
Configure the mibview switch(config)#snmpv3 mibview table of SNMPV3 agent
view V1 type Excluded sub-oid
1.3.6.1
36
[Excluded|Included] sub-oid
[OID] show snmp no snmp communitystrings [Community] no snmp-server host
[Host-address] no snmpv3 user
[User Name] no snmpv3 access context-name [Context
Name ] group
[Group Name ] securitylevel
[NoAuthNoPriv|AuthNoP riv|AuthPriv] match-rule
[Exact|Prifix] views
[Read View Name]
[Write View Name]
[Notify View Name] no snmpv3 mibview view
[View Name] type
[Excluded|Included] sub-oid
[OID]
P
Show SNMP configuration
G
Remove the SNMP server host.
G
Remove specified user of SNMPv3 agent.
switch#show snmp
G
Remove the specified community.
switch(config)#no snmp
community-strings public
switch(config)#no snmp-server
192.168.1.50
switch(config)#no snmpv3 user
Test
G
Remove specified access table of
SNMPv3 agent.
G
Remove specified mibview table of
SNMPV3 agent.
switch(config)#no snmpv3 access
context-name Test group G1 security-level AuthPr iv match-rule Exact views V1 V1
V1
switch(config)#no snmpv3
mibview view V1 type Excluded sub-oid 1.3.6.1
37
Port Mirroring Commands Set
Commands monitor
[RX|TX|Both] monitor rx [Port ID] monitor tx [Port ID] show monitor show monitor no monitor
Level Description
I
Configure source port of monitor function
Example
switch(config)#interface
fastEthernet 2
switch(config-if)#monitor RX switch(config)#monitor rx 2
G
Set RX destination port of monitor function
G
Set TX destination port of monitor function switch(config)#monitor tx 3
P
Show port monitor information
I
Show port monitor information switch#show monitor switch(config)#interface
fastEthernet 2
switch(config-if)#show monitor
I
Disable source port of switch(config)#interface monitor function
fastEthernet 2
switch(config-if)#no monitor
802.1x Commands Set
Commands
8021x enable
8021x system radiusip
[IP address]
Level Description Example
G
Use the 802.1x global switch(config)# 8021x enable configuration command to enable
802.1x protocols.
G
Use the 802.1x
system radius IP global configuration command to change the radius server IP.
switch(config)# 8021x system
radiusip 192.168.1.1
38
8021x system serverport
[port ID]
8021x system accountport
[port ID]
8021x system sharekey
[ID]
8021x system nasid
[words]
8021x misc quietperiod
[sec.]
8021x misc txperiod
[sec.]
8021x misc supportimeout [sec.]
G
Use the 802.1x
system server port global configuration command to change the radius server port
G
Use the 802.1x
system account port global configuration command to change the accounting port
G
Use the 802.1x
system share key global configuration command to change the shared key value.
G
Use the 802.1x
system nasid global configuration command to change the NAS ID switch(config)# 8021x system
serverport accountport
switch(config)# 8021x system
nasid test1
1815
switch(config)# 8021x system
1816
switch(config)# 8021x system
sharekey 123456
G
Use the 802.1x misc quiet period global configuration command to specify the quiet period value switch(config)# 8021x misc
quietperiod 10
of the switch.
G
Use the 802.1x misc
TX period global configuration command to set the
TX period.
G
Use the 802.1x misc supp timeout global switch(config)# 8021x misc
txperiod 5
switch(config)# 8021x misc
supportimeout 20
39
8021x misc servertimeout [sec.]
8021x misc maxrequest
[number]
8021x misc reauthperiod [sec.]
8021x portstate
[disable | reject | accept
| authorize] show 8021x no 8021x
configuration command to set the supplicant timeout.
G
Use the 802.1x misc server timeout global configuration command to set the server timeout.
G
Use the 802.1x misc max request global configuration command to set the
MAX requests.
G
Use the 802.1x misc reauth period global configuration command to set the reauth period.
I
Use the 802.1x port state interface configuration command to set the state of the selected port.
switch(config)#8021x misc
servertimeout 20
switch(config)# 8021x misc
maxrequest 3
switch(config)# 8021x misc
reauthperiod 3000
switch(config)#interface
fastethernet 3
switch(config-if)#8021x portstate
accept
E
Displays a summary of switch>show 8021x the 802.1x properties and also the port sates.
G
Disable 802.1x
function switch(config)#no 8021x
TFTP Commands Set
Commands Level Description
40
Defaults Example
backup flash:backup_cfg restore flash:restore_cfg upgrade flash:upgrade_fw
G
Save configuration to
TFTP and need to specify the IP of TFTP server and the file name of image.
switch(config)#backup
flash:backup_cfg
G
Get configuration from switch(config)#restore
TFTP server and need to
flash:restore_cfg
specify the IP of TFTP server and the file name of image.
G
Upgrade firmware by
TFTP and need to specify the IP of TFTP server and the file name of image.
switch(config)#upgrade
lash:upgrade_fw
SystemLog, SMTP and Event Commands Set
Commands systemlog ip
[IP address] systemlog mode
[client|server|both] show systemlog show systemlog no systemlog smtp enable smtp serverip
[IP address] smtp authentication
Level Description Example
G
Set System log server switch(config)# systemlog ip
IP address.
192.168.1.100
G
Specified the log mode switch(config)# systemlog mode
both
E
Displays system log.
Switch>show systemlog
P
Show system log client & server information switch#show systemlog
G
Disable systemlog functon switch(config)#no systemlog
G
Enable SMTP function switch(config)#smtp enable
G
Configure SMTP server IP
G
Enable SMTP authentication switch(config)#smtp serverip
192.168.1.5
switch(config)#smtp
authentication
41
smtp account
[account] smtp password
[password] smtp rcptemail
[Index] [Email address] show smtp no smtp
G
Configure switch(config)#smtp account authentication account
John
G
Configure authentication password switch(config)#smtp password
1234
G
Configure Rcpt e-mail switch(config)#smtp rcptemail 1
Address
P
Show the information of SMTP switch#show smtp switch(config)#no smtp
G
Disable SMTP function
G
Set cold start event type
G
Set Authentication failure event type switch(config)#event device-cold-
start both
switch(config)#event
authentication-failure both event device-cold-start
[Systemlog|SMTP|Both] event authenticationfailure
[Systemlog|SMTP|Both] event ring-topologychange
[Systemlog|SMTP|Both] event systemlog
[Link-UP|Link-
Down|Both]
G
Set X-ring topology changed event type switch(config)#event ring-
topology-change both event smtp
[Link-UP|Link-
Down|Both] show event no event device-coldstart no event authenticationfailure no event X-ringtopology-change
I
I
Set port event for system log
Set port event for
SMTP switch(config)#interface
fastethernet 3
switch(config-if)#event systemlog
both
switch(config)#interface
fastethernet 3
switch(config-if)#event smtp both
P
Show event selection switch#show event
G
Disable cold start event type switch(config)#no event device-
cold-start
G
Disable Authentication switch(config)#no event failure event typ
authentication-failure
G
Disable X-ring topology changed switch(config)#no event X-ring-
topology-change
42
no event systemlog no event smpt show systemlog
event type
I
Disable port event for system log
I
Disable port event for
SMTP switch(config)#interface
fastethernet 3
switch(config-if)#no event
systemlog
switch(config)#interface
fastethernet 3
switch(config-if)#no event smtp switch#show systemlog
P
Show system log client & server information
SNTP Commands Set
Commands sntp enable
Level Description Example
G
Enable SNTP function switch(config)#sntp enable
sntp daylight sntp daylight-period
[Start time] [End time] sntp daylight-offset
[Minute]
G
Enable daylight saving switch(config)#sntp daylight time, if SNTP function is inactive, this command can’t be applied.
G
Set period of daylight saving time, if SNTP switch(config)# sntp daylight-
period 20060101-01:01
function is inactive, this command can’t be
20060202-01:01
applied.
Parameter format:
[yyyymmdd-hh:mm]
G
Set offset of daylight saving time, if SNTP function is inactive, this command can’t be applied.
switch(config)#sntp daylight-
offset 3
43
sntp ip
[IP] sntp timezone
[Timezone] show sntp show sntp timezone no sntp no sntp daylight
G
Set SNTP server IP, if switch(config)#sntp ip 192.169.1.1
SNTP function is inactive, this command can’t be applied.
switch(config)#sntp timezone 22
G
Set timezone index, use “show sntp timzezone” command to get more information of index number
P
Show SNTP information switch#show sntp
P
Show index number of switch#show sntp timezone time zone list
G
Disable SNTP function switch(config)#no sntp
G
Disable daylight saving time switch(config)#no sntp daylight
X-ring Commands Set
Commands ring enable ring master ring couplering ring dualhoming ring ringport
[1st Ring Port] [2nd
Ring Port] ring couplingport
[Coupling Port] ring controlport
[Control Port]
Level Description
G
Enable X-ring
Example
switch(config)#ring enable
G
Enable ring master
G
Configure 1st/2nd
Ring Port switch(config)#ring master
G
Enable couple ring switch(config)#ring couplering
G
Enable dual homing switch(config)#ring dualhoming switch(config)#ring ringport 7 8
G
Configure Coupling
Port switch(config)#ring couplingport
1
G
Configure Control Port switch(config)#ring controlport 2
44
ring homingport
[Dual Homing Port] show ring no ring no ring master no ring couplering no ring dualhoming
G
Configure Dual
Homing Port
P
Show the information of X - Ring switch(config)#ring homingport 3 switch#show ring
G
Disable X-ring switch(config)#no ring
G
Disable ring master switch(config)# no ring master
G
Disable couple ring switch(config)# no ring
couplering
G
Disable dual homing switch(config)# no ring
dualhoming
45
Web-Based Management
This section introduces the configuration and functions of the Web-Based management.
About Web-based Management
There is an embedded HTML web site residing in flash memory on CPU board of the switch, which offers advanced management features and allows users to manage the switch from anywhere on the network through a standard browser such as Microsoft
Internet Explorer.
The Web-Based Management supports Internet Explorer 6.0 or later version. And, it is applied for Java Applets for reducing network bandwidth consumption, enhance access speed and present an easy viewing screen.
Preparing for Web Management
Before using the web management, install the industrial switch on the network and make sure that any one of the PCs on the network can connect with the industrial switch through the web browser. The industrial switch default value of IP, subnet mask, username and password are listed as below:
IP Address: 192.168.16.1
Subnet Mask: 255.255.255.0
Default Gateway: 192.168.16.254
User Name: root
Password: root
46
System Login
1.
Launch the Internet Explorer on the PC
2.
Key in “http:// “+” the IP address of the switch”, and then Press “Enter”.
3.
The login screen will appear right after
4.
Key in the user name and password. The default user name and password are the same as ‘root’
5.
Press ‘Enter‘ or click OK button, and then the home screen of the Web-based management appears.
Note: The web interface features shown below are introduced by the screen displays of 16 10/100 TX + 2 10/100/1000T/Mini-GBIC Combo model. Unless specifically identified, the all of the screen displays are suitable for the models in this manual.
47
System Information
Assign the system name and location and view the system information
System Name: Assign the system name of the switch (The maximum length is 64 bytes)
System Description: Describes the switch.
System Location: Assign the switch physical location (The maximum length is 64 bytes).
System Contact: Enter the name of contact person or organization.
Firmware Version: Displays the switch’s firmware version
Kernel Version: Displays the kernel software version
MAC Address: Displays the unique hardware address assigned by manufacturer
(default)
And than, click
Apply button.
System information interface
IP Configuration
User can configure the IP Settings and DHCP client function in here.
DHCP Client: Enable or disable the DHCP client function. When DHCP client function is enabled, the industrial switch will be assigned an IP address from the network DHCP server. The default IP address will be replaced by the assigned IP address on DHCP server. After user click Apply button, a popup dialog shows up. It
48
is to inform the user that when the DHCP client is enabled, the current IP will lose and user should find the new IP on the DHCP server.
IP Address: Assign the IP address that the network is using. If DHCP client function is enabled, and then the user doesn’t need to assign the IP address. And, the network DHCP server will assign the IP address displaying in this column for the industrial switch. The default IP is 192.168.16.1.
Subnet Mask: Assign the subnet mask to the IP address. If DHCP client function is enabled, and then the user does not need to assign the subnet mask.
Gateway: Assign the network gateway for the industrial switch. The default gateway is 192.168.16.254.
DNS1: Assign the primary DNS IP address.
DNS2: Assign the secondary DNS IP address.
And then, click Apply
IP configuration interface
DHCP Server – System configuration
DHCP is the abbreviation of Dynamic Host Configuration Protocol that is a protocol for assigning dynamic IP addresses to devices on a network. With dynamic addressing, a device can have a different IP address every time it connects to the network. In some systems, the device's IP address can even change while it is still connected. DHCP also supports a mix of static and dynamic IP addresses. Dynamic addressing simplifies
49
network administration because the software keeps track of IP addresses rather than requiring an administrator to manage the task. This means that a new computer can be added to a network without the hassle of manually assigning it a unique IP address.
The system provides the DHCP server function. Enable the DHCP server function, the switch system will be a DHCP server.
DHCP Server: Enable or Disable the DHCP Server function. Enable—the switch will be the DHCP server on your local network.
Low IP Address: Type in an IP address. Low IP address is the beginning of the dynamic IP range. For example, dynamic IP is in the range between 192.168.1.100
~ 192.168.1.200. In contrast, 192.168.1.100 is the Low IP address.
High IP Address: Type in an IP address. High IP address is the end of the dynamic
IP range. For example, dynamic IP is in the range between 192.168.1.100 ~
192.168.1.200. In contrast, 192.168.1.200 is the High IP address.
Subnet Mask: Type in the subnet mask of the IP configuration.
Gateway: Type in the IP address of the gateway in your network.
DNS: Type in the Domain Name Server IP Address in your network.
Lease Time (sec): It is the time period that system will reset the dynamic IP assignment to ensure the dynamic IP will not been occupied for a long time or the server doesn’t know that the dynamic IP is idle.
And then, click Apply
DHCP Server Configuration interface
50
DHCP Server – Client Entries
When the DHCP server function is active, the system will collect the DHCP client information and displays it at this tab.
DHCP Client Entries interface
DHCP Server - Port and IP Bindings
Assign the dynamic IP address to the port. When the device is connecting to the port and asks for IP assigning, the system will assign the IP address that has been assigned before to the connected device.
51
Port and IP Bindings interface
TFTP - Update Firmware
It provides the functions that allow user to update the switch firmware. Before updating, make sure the TFTP server is ready and the firmware image is located on the TFTP server.
1.
TFTP Server IP Address: Type in your TFTP server IP.
2.
Firmware File Name: Type in the name of firmware image.
3.
Click Apply .
52
Update Firmware interface
TFTP – Restore Configuration
You can restore the configuration from TFTP server. Before doing that, you must put the image file on TFTP server first and the switch will download back the flash image.
1.
TFTP Server IP Address: Type in the TFTP server IP.
2.
Restore File Name: Type in the correct file name for restoring.
3.
Click Apply .
Restore Configuration interface
TFTP - Backup Configuration
You can save the current configuration from flash ROM to TFTP server for restoring later.
1.
TFTP Server IP Address: Type in the TFTP server IP.
2.
Backup File Name: Type in the file name.
3.
Click
Apply
.
53
Backup Configuration interface
System Event Log – Syslog Configuration
Configure the system event mode to collect system log.
1.
Syslog Client Mode: Select the system log mode—Client Only, Server Only, or
Both.
2.
System Log Server IP Address: Assign the system log server IP.
3.
When Syslog Client Mode is set as Client Only, the system event log will only be sent to the client which has logged in on the switch. When Syslog Client Mode is set as Server Only, the system log will only be sent to the syslog server and you have to type the IP address in the Sysylog Server IP Address column. If the Syslog Client
Mode is set as Both, the system log will be sent to client and server.
4.
Click
Reload to refresh the events log.
5.
Click
Clear to clear all current events log.
5.
After configuring, Click Apply .
54
Syslog Configuration interface
System Event Log - SMTP Configuration
You can set up the mail server IP, mail account, password, and forwarded email account for receiving the event alert.
1.
Email Alert: Enable or disable the email alert function.
2.
SMTP Server IP: Set up the mail server IP address (when Email Alert enabled, this function will then be available).
3.
Sender: Type in an alias of the switch in complete email address format, e.g.
, to identify where the event log comes from.
4.
Authentication: Tick the checkbox to enable this function, configuring the email account and password for authentication (when Email Alert enabled, this function
55
will then be available).
5.
Mail Account: Set up the email account, e.g.
johnadmin , to receive the alert. It must be an existing email account on the mail server, which you had set up in
SMTP Server IP Address column.
6.
Password: Type in the password to the email account.
7.
Confirm Password: Reconfirm the password.
8.
Rcpt e-mail Address 1 ~ 6: You can also assign up to 6 e-mail accounts to receive the alert.
9.
Click Apply button.
SMTP Configuration interface
System Event Log - Event Configuration
When the Syslog/SMTP checkbox is marked, the event log will be sent to system log
56
server/SMTP server. Also, per port log (link up, link down, and both) events can be sent to the system log server/SMTP server with the respective checkbox ticked. After configuring, click Apply to have the setting taken effect.
System event selection: There are 4 event types—Device cold start, Device warm start, Authentication Failure, and X-ring topology change. Before you can tick the checkbox of each event type, the Syslog Client Mode column on the Syslog
Configuration tab/E-mail Alert column on the SMTP Configuration tab must be enabled first.
»
Device cold start: When the device executes cold start action, the system will issue a log event.
»
Device warm start: When the device executes warm start, the system will issue a log event.
»
Authentication Failure: When the SNMP authentication fails, the system will issue a log event.
»
X-ring topology change: When the X-ring topology has changed, the system will issue a log event.
Port event selection: Also, before the drop-down menu items are available, the
Syslog Client Mode column on the Syslog Configuration tab and the E-mail Alert column on the SMTP Configuration tab must be enabled first. Those drop-down menu items have 3 selections—Link UP, Link Down, and Link UP & Link Down.
Disable means no event will be sent to the system log server/SMTP server.
»
Link UP: The system will issue a log message when port connection is up only.
»
Link Down: The system will issue a log message when port connection is down only.
»
Link UP & Link Down: The system will issue a log message when port connection is up and down.
57
Event Configuration interface
58
Fault Relay Alarm
Power Failure: Tick the checkbox to enable the function of lighting up the FAULT
LED on the panel when power fails.
Port Link Down/Broken: Tick the checkbox to enable the function of lighting up
FAULT LED on the panel when Ports’ states are link down or broken.
Fault Relay Alarm interface
SNTP Configuration
You can configure the SNTP (Simple Network Time Protocol) settings. The SNTP allows you to synchronize switch clocks in the Internet.
1.
SNTP Client: Enable/disable SNTP function to get the time from the SNTP server.
2.
Daylight Saving Time: Enable/disable daylight saving time function. When daylight saving time is enabled, you need to configure the daylight saving time period.
3.
UTC Timezone: Set the switch location time zone. The following table lists the different location time zone for your reference.
59
Local Time Zone
November Time Zone
Oscar Time Zone
ADT - Atlantic Daylight
AST - Atlantic Standard
EDT - Eastern Daylight
EST - Eastern Standard
CDT - Central Daylight
CST - Central Standard
MDT - Mountain Daylight
MST - Mountain
Standard
PDT - Pacific Daylight
PST - Pacific Standard
ADT - Alaskan Daylight
ALA - Alaskan Standard
HAW - Hawaiian
Standard
Nome, Alaska
CET - Central European
FWT - French Winter
MET - Middle European
MEWT - Middle
European Winter
SWT - Swedish Winter
EET - Eastern
European, USSR Zone 1
Conversion from UTC Time at 12:00 UTC
- 1 hour 11am
-2 hours
-3 hours
-4 hours
-5 hours
-6 hours
-7 hours
-8 hours
-9 hours
-10 hours
-11 hours
+1 hour
+2 hours
10 am
9 am
8 am
7 am
6 am
5 am
4 am
3 am
2 am
1 am
1 pm
2 pm
60
BT - Baghdad, USSR
Zone 2
ZP4 - USSR Zone 3
ZP5 - USSR Zone 4
ZP6 - USSR Zone 5
WAST - West Australian
Standard
CCT - China Coast,
USSR Zone 7
JST - Japan Standard,
USSR Zone 8
EAST - East Australian
Standard GST
Guam Standard, USSR
Zone 9
IDLE - International Date
Line
NZST - New Zealand
Standard
NZT - New Zealand
+3 hours
+4 hours
+5 hours
+6 hours
+7 hours
+8 hours
+9 hours
+10 hours
+12 hours
3 pm
4 pm
5 pm
6 pm
7 pm
8 pm
9 pm
10 pm
Midnight
4.
SNTP Sever URL: Set the SNTP server IP address.
5.
Switch Timer: Displays the current time of the switch.
6.
Daylight Saving Period: Set up the Daylight Saving beginning time and Daylight
Saving ending time. Both will be different in every year.
7.
Daylight Saving Offset (mins): For non-US and European countries, specify the amount of time for day light savings.
8.
Click Apply .
61
SNTP Configuration interface
IP Security
IP security function allows the user to assign 10 specific IP addresses that have permission to access the switch through the web browser for the securing switch management.
IP Security Mode: When this option is in Enable mode, the Enable HTTP Server and Enable Telnet Server checkboxes will then be available.
Enable HTTP Server: When this checkbox is ticked, the IP addresses among
Security IP1 ~ IP10 will be allowed to access this switch via HTTP service.
Enable Telnet Server: When this checkbox is ticked, the IP addresses among
Security IP1 ~ IP10 will be allowed to access this switch via telnet service.
Security IP 1 ~ 10: The system allows the user to assign up to 10 specific IP addresses for access security. Only these 10 IP addresses can access and manage the switch through the HTTP/Telnet service.
And then, click Apply button to apply the configuration.
[NOTE]
Remember to execute the “Save Configuration” action, otherwise the new configuration will lose when the switch powers off.
62
IP Security interface
User Authentication
Change web management login user name and password for the management security issue.
1.
User name: Type in the new user name (The default is ‘root’)
2.
Password: Type in the new password (The default is ‘root’)
3.
Confirm password: Re-type the new password
4.
And then, click
Apply
User Authentication interface
63
Port Statistics
The following information provides the current port statistic information.
Port: Displays the port number.
Type: Displays the media type of the port.
Link: The status of linking—‘Up’ or ‘Down’.
State: The user can set the state of the port as ‘Enable’ or ‘Disable’ via Port Control.
When the state is disabled, the port will not transmit or receive any packet.
Tx Good Packet: The counts of transmitting good packets via this port.
Tx Bad Packet: The counts of transmitting bad packets (including undersize [less than 64 bytes], oversize, CRC Align errors, fragments and jabbers packets) via this port.
Rx Good Packet: The counts of receiving good packets via this port.
Rx Bad Packet: The counts of receiving good packets (including undersize [less than 64 bytes], oversize, CRC error, fragments and jabbers) via this port.
Tx Abort Packet: The aborted packet while transmitting.
Packet Collision: The counts of collision packet.
Packet Dropped: The counts of dropped packet.
Rx Bcast Packet: The counts of broadcast packet.
Rx Mcast Packet: The counts of multicast packet.
Click
Clear button to clean all counts.
64
Port Statistics interface
Port Control
In Port control, you can view and set the operation mode of each port.
1.
Port: Select the port that you want to configure.
2.
State: Current port status. The port can be set to disable or enable mode. If the port state is set as ‘Disable’, it will not receive or transmit any packet.
3.
Negotiation: Auto and Force. Being set as Auto, the speed and duplex mode are negotiated automatically. When you set it as Force, you have to assign the speed and duplex mode manually.
4.
Speed: It is available for selecting when the Negotiation column is set as Force.
When the Negotiation column is set as Auto, this column is read only.
5.
Duplex: It is available for selecting when the Negotiation column is set as Force.
When the Negotiation column is set as Auto, this column is read only.
6.
Flow Control: Set flow control function as Enable or Disable. When enabled, once the device exceed the input data rate of another device as a result the receiving device will send a PAUSE frame which halts the transmission of the sender for a
65
specified period of time. When disabled, the receiving device will drop the packet if too much to process.
7.
Security: Once the Security selection is set as ‘On’, any access from the device which connects to this port will be blocked unless the MAC address of the device is included in the static MAC address table. See the segment of Static MAC Table.
8.
Click Apply button to make the configuration effective.
Port Control interface
Port Trunk
The Link Aggregation Control Protocol (LACP) provides a standardized means for
66
exchanging information between Partner Systems on a link to allow their Link
Aggregation Control instances to reach agreement on the identity of the Link
Aggregation Group to which the link belongs, move the link to that Link Aggregation
Group, and enable its transmission and reception functions in an orderly manner. Link aggregation lets you group up to 4 ports into one dedicated connections. This feature can expand bandwidth to a device on the network. LACP operation requires full-
duplex mode, more detail information refers to IEEE 802.3ad.
Aggregator setting
1.
System Priority: A value which is used to identify the active LACP. The switch with the lowest value has the highest priority and is selected as the active LACP.
2.
Group ID: There are four trunk groups to be selected. Choose the "Group ID" and click Select button.
3.
LACP: When enabled, the trunk group is using LACP. A port which joins an LACP trunk group has to make an agreement with its member ports first. When disabled, the trunk group is a static trunk group. The advantage of having the LACP disabled is that a port joins the trunk group without any handshaking with its member ports.
But member ports won’t know that they should be aggregated together to form a logic trunk group.
4.
Work ports: This column field allows the user to type in the total number of active port up to four. With LACP static trunk group, e.g. you assign four ports to be the members of a trunk group whose work ports column field is set as two; the exceed ports are standby (the LACP State Activity will show ‘Passive’ on the tab of State
Activity) and can be aggregated if work ports fail. If it is a static trunk group, the number of work ports must equal the total number of group member ports.
5.
Select the ports to join the trunk group. The system allows four ports maximum to be aggregated in a trunk group. Click Add button to add the port which is focused to the left field. To remove unwanted ports, select the port and click
Remove button.
6.
When LACP enabled, you can configure LACP Active/Passive status for each port on State Activity page.
67
7.
Click Apply button.
8.
Use Delete button to delete Trunk Group. Select the Group ID and click Delete button.
Port Trunk—Aggregator Setting interface (four ports are added to the left field with LACP enabled)
Aggregator Information
When you have setup the aggregator setting with LACP disabled, you will see the local static trunk group information in here.
1.
Group Key: Displays the trunk group ID.
2.
Port Member: Displays the members of this static trunk group.
68
Port Trunk—Aggregator Setting interface (two ports are added to the left field with LACP disable)
Port Trunk – Aggregator Information interface
State Activity
Having set up the LACP aggregator on the tab of Aggregator Setting, you can configure the state activity for the members of the LACP trunk group. You can tick or cancel the checkbox beside the state display. When you remove the tick mark to the port and click
Apply button, the port state activity will change to Passive.
Active: The port automatically sends LACP protocol packets.
Passive: The port does not automatically send LACP protocol packets, and responds only if it receives LACP protocol packets from the opposite device.
[NOTE]
1. A link having either two active LACP nodes or one active node can perform dynamic LACP trunk.
2. A link having two passive LACP nodes will not perform dynamic
LACP trunk because both ports are waiting for an LACP protocol packet from the opposite device.
69
Port Trunk – State Activity interface
Port Mirroring
The Port mirroring is a method for monitoring traffic in switched networks. Traffic through ports can be monitored by one specific port which means traffic goes in or out monitored
(source) ports will be duplicated into mirroring (destination) port.
70
Port Trunk – Port Mirroring interface
Destination Port: There is only one port can be selected to be the destination
(mirroring) port for monitoring both RX and TX traffic which come from the source port. Or, use one of two ports for monitoring RX traffic only and the other one for TX traffic only. The user can connect the mirroring port to LAN analyzer or Netxray.
Source Port: The ports that the user wants to monitor. All monitored port traffic will be copied to mirroring (destination) port. The user can select multiple source ports by ticking the RX or TX checkboxes to be monitored.
And then, click Apply button.
71
Rate Limiting
You can set up every port’s frame limitation type and bandwidth rate.
Rate Limiting interface
Ingress Limit Frame type: Select the frame type you want to filter. The frame types have 4 options for selecting:
All, Broadcast/Multicast/Flooded Unicast,
Broadcast/Multicast, and Broadcast only.
The four frame type options are for ingress frames limitation. The egress rate only supports ‘All’ type.
All the ports support port ingress and egress rate control. For example, assume port
72
1 is 10Mbps; the user can set the effective egress rate of port 1 as 1Mbps, ingress rate 500Kbps. The switch performs the ingress rate by packet counter to meet the specified rate.
»
Ingress: Enter the port effective ingress rate (The default value is “0”).
»
Egress: Enter the port effective egress rate (The default value is “0”).
And then, click Apply to make the settings taken effect.
73
VLAN configuration
A Virtual LAN (VLAN) is a logical network grouping that limits the broadcast domain, which would allow you to isolate network traffic, so only the members of the same VLAN will receive traffic from the ones of the same VLAN. Basically, creating a VLAN from a switch is logically equivalent of reconnecting a group of network devices to another
Layer 2 switch. However, all the network devices are still plugged into the same switch physically.
The switch supports Port-based and 802.1Q (tagged-based) VLAN. The default configuration of VLAN operation mode is “Disable”.
VLAN Configuration interface
VLAN configuration - Port-based VLAN
Packets can go among only members of the same VLAN group. Note all unselected ports are treated as belonging to another single VLAN. If the port-based VLAN enabled, the VLAN-tagging is ignored.
In order for an end station to send packets to different VLAN groups, it itself has to be either capable of tagging packets it sends with VLAN tags or attached to a VLAN-aware bridge that is capable of classifying and tagging the packet with different VLAN ID based
74
on not only default PVID but also other information about the packet, such as the protocol.
VLAN – Port Based interface
Pull down the selection item and focus on Port Based then press Apply button to set the VLAN Operation Mode in Port Based mode.
Click
Add button to add a new VLAN group (The maximum VLAN group is up to
64 VLAN groups).
75
VLAN—Port Based Add interface
Enter the group name and VLAN ID. Add the port number having selected into the right field to group these members to be a VLAN group or remove any of them listed in the right field from the VLAN.
And then, click
Apply button to have the settings taken effect.
You will see the VLAN displays.
76
VLAN—Port Based Edit/Delete interface
Use
Delete button to delete the VLAN.
Use
Edit button to modify group name, VLAN ID, or add/remove the members of the existing VLAN group.
[NOTE]
Remember to execute the “Save Configuration” action, otherwise the new configuration will lose when switch power off.
77
802.1Q VLAN
Tagged-based VLAN is an IEEE 802.1Q specification standard. Therefore, it is possible to create a VLAN across devices from different switch venders. IEEE 802.1Q VLAN uses a technique to insert a “tag” into the Ethernet frames. Tag contains a VLAN Identifier (VID) that indicates the VLAN numbers.
You can create Tag-based VLAN, and enable or disable GVRP protocol. There are 256
VLAN groups to provide configuration. Enable 802.1Q VLAN, all ports on the switch belong to default VLAN of VID 1. The default VLAN can’t be deleted.
GVRP (GARP VLAN Registration Protocol) is a protocol that facilitates control of virtual local area networks (VLANs) within a larger network. GVRP conforms to the IEEE
802.1Q specification, which defines a method of tagging frames with VLAN configuration data. This allows network devices to dynamically exchange VLAN configuration information with other devices.
GVRP is based on GARP (Generic Attribute Registration Protocol), a protocol that defines procedures by which end stations and switches in a local area network (LAN) can register and de-register attributes, such as identifiers or addresses, with each other.
Every end station and switch thus has a current record of all the other end stations and switches that can be reached.
GVRP, like GARP, eliminates unnecessary network traffic by preventing attempts to transmit information to unregistered users. In addition, it is necessary to manually configure only one switch and all the other switches will be configured accordingly.
802.1Q Configuration
Pull down the selection item and focus on 802.1Q then press
Apply button to set the VLAN Operation Mode in 802.1Q mode.
Enable GVRP Protocol: Tick the checkbox to enable GVRP protocol. This checkbox is available while the VLAN Operation Mode is in 802.1Q mode.
Select the port you want to configure.
Link Type: There are 3 types of link type.
78
»
Access Link: Single switch only, it allows the user to group ports by assigning the same Untagged VID. While this link type is set, the Untagged VID column field is available but the Tagged VID column field is disabled.
»
Trunk Link: The extended application of Access Link. It allows the user to group ports by assigning the same Tagged VID across 2 or more switches.
Having set this link type, the Tagged VID column field is available but the
Untagged VID column field is disabled.
»
Hybrid Link: Both Access Link and Trunk Link are available.
Untagged VID: Assign the untagged frame VID.
Tagged VID: Assign the tagged frame VID.
Click
Apply button to have the settings taken effect.
You can see the link type, untagged VID, and tagged VID information of each port in the table below on the screen.
79
802.1Q VLAN interface
Group Configuration
Edit the existing VLAN Group.
Select the VLAN group in the table list.
Click Edit button.
80
Group Configuration interface
You can modify the VLAN group name and VLAN ID.
Click
Apply button.
Group Configuration interface
81
Rapid Spanning Tree
The Rapid Spanning Tree Protocol (RSTP) is an evolution of the Spanning Tree Protocol and provides for faster spanning tree convergence after a topology change. The system also supports STP and the system will auto-detect the connected device that is running
STP or RSTP protocol.
RSTP - System Configuration
The user can view spanning tree information of Root Bridge.
The user can modify RSTP state. After modification, click Apply button.
»
RSTP mode: The user must enable the RSTP function first before configuring
» the related parameters.
Priority (0-61440): The switch with the lowest value has the highest priority and is selected as the root. If the value is changed, the user must reboot the switch. The value must be a multiple of 4096 according to the protocol standard rule.
»
Max Age (6-40): The number of seconds a switch waits without receiving
Spanning-tree Protocol configuration messages before attempting a reconfiguration. Enter a value between 6 through 40.
»
Hello Time (1-10): The time that controls the switch to send out the BPDU packet to check RSTP current status. Enter a value between 1 through 10.
»
Forward Delay Time (4-30): The number of seconds a port waits before changing from its Rapid Spanning-Tree Protocol learning and listening states to the forwarding state. Enter a value between 4 through 30.
[NOTE]
Follow the rule as below to configure the MAX Age, Hello Time, and Forward
Delay Time.
2 x (Forward Delay Time value –1) > = Max Age value >= 2 x (Hello Time value +1)
82
RSTP System Configuration interface
RSTP - Port Configuration
You can configure path cost and priority of every port.
Select the port in the port column field.
Path Cost: The cost of the path to the other bridge from this transmitting bridge at the specified port. Enter a number 1 through 200,000,000.
Priority: Decide which port should be blocked by priority in LAN. Enter a number 0 through 240 (the port of the highest value will be blocked). The value of priority must be the multiple of 16.
Admin P2P: Some of the rapid state transactions that are possible within RSTP are dependent upon whether the port concerned can only be connected to exactly one other bridge (i.e. it is served by a point-to-point LAN segment), or can be connected to two or more bridges (i.e. it is served by a shared medium LAN segment). This function allows the P2P status of the link to be manipulated administratively. True is
83
Admin Edge: The port directly connected to end stations won’t create bridging loop in the network. To configure the port as an edge port, set the port to “True” status.
Admin Non Stp: The port includes the STP mathematic calculation. True is not including STP mathematic calculation. False is including the STP mathematic calculation.
Click Apply .
RSTP Port Configuration interface
84
SNMP Configuration
Simple Network Management Protocol (SNMP) is the protocol developed to manage nodes (servers, workstations, routers, switches and hubs etc.) on an IP network. SNMP enables network administrators to manage network performance, find and solve network problems, and plan for network growth. Network management systems learn of problems by receiving traps or change notices from network devices implementing SNMP.
System Configuration
Community Strings
Here you can define the new community string set and remove the unwanted community string.
»
String: Fill the name string.
»
RO: Read only. Enables requests accompanied by this community string to display MIB-object information.
»
RW: Read write. Enables requests accompanied by this community string to display MIB-object information and to set MIB objects.
»
Click Add button.
»
To remove the community string, select the community string that you have defined and click Remove button. You cannot edit the name of the default community string set.
Agent Mode: Select the SNMP version that you want to use and then click
Change button to switch to the selected SNMP version mode. The default value is ‘SNMP v1/v2c only’
85
SNMP System Configuration interface
Trap Configuration
A trap manager is a management station that receives the trap messages generated by the switch. If no trap manager is defined, no traps will be issued. Create a trap manager by entering the IP address of the station and a community string. To define a management station as a trap manager, assign an IP address, enter the SNMP community strings, and select the SNMP trap version.
IP Address: Enter the IP address of the trap manager.
Community: Enter the community string.
Trap Version: Select the SNMP trap version type—v1 or v2c.
Click
Add button.
To remove the community string, select the community string listed in the current managers field and click
Remove button.
86
Trap Managers interface
SNMPV3 Configuration
Configure the SNMP V3 function.
Context Table
Configure SNMP v3 context table. Assign the context name of context table. Click
Add to add context name. Click
Remove to remove the unwanted context name.
User Profile
Configure SNMP v3 user table..
User ID: Set up the user name.
Authentication Password: Set up the authentication password.
Privacy Password: Set up the private password.
Click
Add to add the context name.
Click Remove to remove the unwanted context name.
87
SNMP V3 configuration interface
Group Table
Configure SNMP v3 group table.
88
Security Name (User ID): Assign the user name that you have set up in user table.
Group Name: Set up the group name.
Click Add to add the context name.
Click Remove to remove the unwanted context name.
Access Table
Configure SNMP v3 access table.
Context Prefix: Set up the context name.
Group Name: Set up the group.
Security Level: Set up the access level.
Context Match Rule: Select the context match rule.
Read View Name: Set up the read view.
Write View Name: Set up the write view.
Notify View Name: Set up the notify view.
Click Add to add the context name.
Click
Remove to remove the unwanted context name.
MIBview Table
Configure MIB view table.
ViewName: Set up the name.
Sub-Oid Tree: Fill the Sub OID.
Type: Select the type—excluded or included.
Click
Add to add the context name.
Click
Remove to remove the unwanted context name.
89
QoS Configuration
Here you can configure Qos policy and priority setting, per port priority setting, COS and
TOS setting.
QoS Policy and Priority Type
Qos Policy: Select the QoS policy rule.
»
Using the 8,4,2,1 weight fair queue scheme: The switch will follow 8:4:2:1 rate to process priority queue from High to lowest queue. For example, while the system processing, 1 frame of the lowest queue, 2 frames of the low queue,
4 frames of the middle queue, and 8 frames of the high queue will be processed at the same time in accordance with the 8,4,2,1 policy rule.
»
Use a strict priority scheme: Always the higher queue will be processed first, except the higher queue is empty.
»
Priority Type: There are 5 priority type selections available—Port-based, TOS
only, COS only, TOS first, and COS first. Disable means no priority type is selected.
Click Apply button to make the settings effective.
90
QoS Configuration interface
Port-based Priority
Configure the priority level for each port. With the drop-down selection item of Priority
Type above being selected as Port-based, this control item will then be available to set
91
the queuing policy for each port.
Port x: Each port has 4 priority levels—High, Middle, Low, and Lowest—to be chosen.
Click
Apply button to make the settings effective.
COS Configuration
Set up the COS priority level. With the drop-down selection item of Priority Type above being selected as COS only/COS first, this control item will then be available to set the queuing policy for each port.
COS priority: Set up the COS priority level 0~7—High, Middle, Low, Lowest.
Click Apply .
TOS Configuration
Set up the TOS priority. With the drop-down selection item of Priority Type above being selected as TOS only/TOS first, this control item will then be available to set the queuing policy for each port.
TOS priority: The system provides 0~63 TOS priority level. Each level has 4 types of priority—High, Middle, Low, and Lowest. The default value is ‘Lowest’ priority for each level. When the IP packet is received, the system will check the TOS level value in the IP packet that has received. For example, the user sets the TOS level 25 as high, the system will check the TOS value of the received IP packet. If the TOS value of received IP packet is 25 (priority = high), and then the packet priority will have highest priority.
Click Apply button to make the settings effective.
92
IGMP Configuration
The Internet Group Management Protocol (IGMP) is an internal protocol of the Internet
Protocol (IP) suite. IP manages multicast traffic by using switches, routers, and hosts that support IGMP. Enabling IGMP allows the ports to detect IGMP queries, report packets, and manage IP multicast traffic through the switch. IGMP have three fundamental types of message shown as follows:
Message
Query
Report
Leave
Group
Description
A message sent from the querier (IGMP router or switch) asking for a response from each host belonging to the multicast group.
A message sent by a host to the querier to indicate that the host wants to be or is a member of a given group indicated in the report message.
A message sent by a host to the querier to indicate that the host has quit being a member of a specific multicast group.
The switch supports IP multicast. You can enable IGMP protocol via setting the IGMP
Configuration page to see the IGMP snooping information. IP multicast addresses are in the range of 224.0.0.0 through 239.255.255.255.
IGMP Protocol: Enable or disable the IGMP protocol.
IGMP Query: Select the IGMP query function as Enable or Auto to set the switch as a querier for IGMP version 2 multicast networks.
Click Apply button.
93
IGMP Configuration interface
X-Ring
X-Ring provides a faster redundant recovery than Spanning Tree topology. The action is similar to STP or RSTP, but the algorithms are different.
In the X-Ring topology, every switch should enable X-Ring function and assign two member ports for connecting to the ring. Only one switch in the X-Ring group would be set as the master switch that one of the member ports would be blocked, called backup port, and another port is called working port. Other switches in the X-Ring group are called working switches and their two member ports are called working ports. When the failure of network connection occurs, the backup port will automatically become a working port to recover from the failure.
The switch supports the function and interface for setting the switch as the ring master or slave mode. The ring master can negotiate and place command to other switches in the
X-Ring group. If there are 2 or more switches in master mode, then software will select the switch with lowest MAC address number as the ring master. The X-Ring master ring mode will be enabled by the X-Ring configuration interface. Also, user can identify the switch as the ring master from the R.M. LED panel of the LED panel on the switch.
94
The system also supports the coupling ring that can connect 2 or more X-Ring group for the redundant backup function and dual homing function that prevent connection lose between X-Ring group and upper level/core switch.
Enable X-Ring: To enable the X-Ring function. Marking the check box to enable the
X-Ring function.
Enable Ring Master: Mark the check box for enabling this machine to be a ring master.
1 st
& 2 nd
Ring Ports: Pull down the selection menu to assign two ports as the member ports. The 1
st
Ring Port and 2
nd
Ring Port are basically assigned to be forwarding ports except for the Ring Master switch. With the Ring Master switch, one of its two Ring Ports is the blocking port and another one is the forwarding port.
Once its forwarding port fails, the system will automatically upgrade its blocking port to be the forwarding port of the Ring Master switch.
Enable Coupling Ring: To enable the coupling ring function. Marking the check box to enable the coupling ring function.
Coupling port: Assign the member port which is connected to the other ring group.
Control port: When Couple Ring check box is marked, you have to assign the control port to form a couple-ring group between the two X-rings.
Enable Dual Homing: Set up one of the ports on the switch to be the Dual Homing port. For a switch, there is only one Dual Homing port. Dual Homing only works while the X-Ring function enabled.
And then, click
Apply to apply the configuration.
95
X-ring Interface
Note
When the X-Ring function enable, user must disable the RSTP. The X-Ring function and RSTP function cannot exist in a switch at the same time.
Remember to execute the ‘Save Configuration’ action, otherwise the new configuration will lose when switch power off.
96
Security
In this section, you can configure the 802.1x and MAC address table.
802.1X/Radius Configuration
802.1x is an IEEE authentication specification which prevents the client from connecting to a wireless access point or wired switch until it provides authority, like the user name and password that are verified by an authentication server (such as RADIUS server).
System Configuration
After enabling the IEEE 802.1X function, you can configure the parameters of this function.
IEEE 802.1x Protocol: Enable or disable 802.1x protocol.
Radius Server IP: Assign the RADIUS Server IP address.
Server Port: Set the UDP destination port for authentication requests to the specified RADIUS Server.
Accounting Port: Set the UDP destination port for accounting requests to the specified RADIUS Server.
Shared Key: Set an encryption key for using during authentication sessions with the specified RADIUS server. This key must match the encryption key used on the
RADIUS Server.
NAS, Identifier: Set the identifier for the RADIUS client.
Click Apply button.
97
802.1x System Configuration interface
802.1x Per Port Configuration
You can configure the 802.1x authentication state for each port. The state provides
Disable, Accept, Reject, and Authorize.
Reject: The specified port is required to be held in the unauthorized state.
Accept: The specified port is required to be held in the Authorized state.
Authorized: The specified port is set to the Authorized or Unauthorized state in accordance with the outcome of an authentication exchange between the
Supplicant and the authentication server.
Disable: When disabled, the specified port works without complying with 802.1x
protocol.
Click Apply button.
98
802.1x Per Port Setting interface
Misc Configuration
Quiet Period: Set the period which the port doesn’t try to acquire a supplicant.
TX Period: Set the period the port waits for retransmit next EAPOL PDU during an authentication session.
Supplicant Timeout: Set the period of time the switch waits for a supplicant response to an EAP request.
Server Timeout: Set the period of time the switch waits for a server response to an authentication request.
Max Requests: Set the number of authentication that must time-out before authentication fails and the authentication session ends.
99
Reauth period: Set the period of time which clients connected must be reauthenticated.
Click
Apply button.
802.1x Misc Configuration interface
MAC Address Table
Use the MAC address table to ensure the port security.
Static MAC Address
You can add a static MAC address; it remains in the switch's address table, regardless of whether the device is physically connected to the switch. This saves the switch from having to re-learn a device's MAC address when the disconnected or powered-off device is active on the network again. You can add / modify / delete a static MAC address.
Add the Static MAC Address
You can add static MAC address in the switch MAC table here.
MAC Address: Enter the MAC address of the port that should permanently forward traffic, regardless of the device network activity.
100
Port No.: Pull down the selection menu to select the port number.
Click
Add button.
If you want to delete the MAC address from filtering table, select the MAC address and click Delete button.
Static MAC Addresses interface
MAC Filtering
By filtering MAC address, the switch can easily filter the pre-configured MAC address and reduce the un-safety. You can add and delete filtering MAC address.
101
MAC Filtering interface
1.
MAC Address: Enter the MAC address that you want to filter.
2.
Click
Add button.
3.
If you want to delete the MAC address from the filtering table, select the MAC address and click
Delete button.
All MAC Addresses
You can view the port that connected device’s MAC address and the related devices’
MAC address.
1.
Select the port.
2.
The selected port of static & dynamic MAC address information will be displayed in here.
3.
Click Clear MAC Table to clear the current port static MAC address information on screen.
102
All MAC Address interface
Factory Default
Reset switch to default configuration. Click Reset button to reset all configurations to the default value.
Factory Default interface
Save Configuration
Save all configurations that you have made in the system. To ensure the all
103
configuration will be saved. Click
Save to save the all configuration to the flash memory.
Save Configuration interface
System Reboot
Reboot the switch in software reset. Click
Reboot to reboot the system.
System Reboot interface
104
Troubleshooting
Verify that you are using the correct power cord/adapter. Don’t use the power adapter with DC output higher than the power ratings of the equipment.
Select the proper UTP/STP cable to construct the user network. Use unshielded twisted-pair (UTP) or shield twisted-pair (STP) cable for RJ-45 connections: 100
Ω
Category 3, 4 or 5 cable for 10Mbps connections, 100
Ω Category 5 cable for
100Mbps connections, or 100
Ω
Category 5e/above cable for 1000Mbps connections. Also be sure that the length of any twisted-pair connection does not exceed 100 meters (328 feet).
Diagnosing LED Indicators: To assist in identifying problems, the switch can be easily monitored through panel indicators, which describe common problems the user may encounter and where the user can find possible solutions.
If the power indicator does not light up when the power cord is plugged in, you may have a problem with power cord. Then check for loose power connections, power losses or surges at power outlet. If you still cannot resolve the problem, contact the local dealer for assistance.
If the LED indicators are normal and the connected cables are correct but the packets still cannot be transmitted, please check the user system’s Ethernet devices’ configuration or status.
105
Technical Specifications
Standard
Protocol
Transfer Rate
MAC Address
Packet Buffer
LED
Network Cable
IEEE 802.3 10Base-T
IEEE 802.3u 100Base-TX
IEEE 802.3ab 1000Base-T
IEEE 802.3z Gigabit fiber
IEEE 802.3x Flow Control and Back-pressure
IEEE 802.3ad Port trunk with LACP
IEEE 802.1d Spanning Tree
IEEE 802.1w Rapid Spanning Tree
IEEE 802.1p Class of Service
IEEE 802.1Q VLAN Tag
IEEE 802.1x User Authentication (RADIUS)
IEEE 802.1ab LLDP**
CSMA/CD
14,880 pps for 10Base-T Ethernet port
148,800 pps for 100Base-TX/FX Fast Ethernet port
1,488,000 pps for Gigabit Fiber Ethernet port
8K MAC entries
1Mbits
Per unit: Power (Green), Power 1 (Green), Power 2 (Green),
Fault (Red), Master (Green)
16 10/100TX: Link/Activity (Green), Full duplex/Collision
(Yellow)
Gigabit Copper: Link/Activity (Green), Speed (1000M
Green)
SFP: Link/Activity (Green)
10Base-T: 2-pair UTP/STP Cat. 3, 4, 5 cable
EIA/TIA-568 100-ohm (100m)
100Base-TX: 2-pair UTP/STP Cat. 5 cable
106
Optical Cable
EIA/TIA-568 100-ohm (100m)
1000Base-T: 2-pair UTP/STP Cat. 5e or 6 cable
EIA/TIA-568 100-ohm (100m)
„
LC (Multi-mode): 50/125um or 62.5/125um
„
LC (Single-mode): 9/125um
7.2Gbps
Back-plane
Packet Throughput
Ability
10.7Mpps at 64bytes
Power Supply
12 ~ 48 V
DC
Redundant power with polarity reverse protection and removable terminal block
Power Consumption
11.2 Watts
Relay Alarm
Provides one relay output for port breakdown & power failure
Alarm relay current carrying ability: 1A @ DC24V
Installation
Operating Temp.
Operating Humidity
Storage
Temperature
Case Dimensions
EMI
DIN-rail and Wall-mount design
-10 o
C to 60 o
C (standard model)
-40 o
C to 75 o
C (wide operating temperature model)
5% to 95% (Non-condensing)
-40 o
C to 85 o
C
IP-30, 72 mm (W) x 152mm (H) x 105 mm (D)
FCC Class A
CE EN61000-4-2 (ESD)
CE EN61000-4-3 (RS)
CE EN61000-4-4 (EFT)
107
Safety
Stability Testing
CE EN61000-4-5 (Surge)
CE EN61000-4-6 (CS)
CE EN61000-4-8
CE EN61000-6-2
CE EN61000-6-4
UL cUL
CE/EN60950-1
Class I/ Division 2
IEC60068-2-32 (Free fall)
IEC60068-2-27 (Shock)
IEC60068-2-6 (Vibration)
108
advertisement
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Related manuals
advertisement