USER GUIDE
24-Port 10/100/1000 Gigabit Switch
with Webview and PoE
BUSINESS SERIES
WIRED
Model No. SRW2024P
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Table of Contents
Chapter 1: Introduction
Welcome
1
1
Chapter 2: Getting to Know the Switch
Front Panel
3
3
The Back Panel
The Side Panel
4
5
LAN Ports
5
The Gigabit Expansion Ports
The Console Port
5
6
Chapter 3: Connecting the Switch
Overview
7
7
8
9
Before You Install the Switch...
Placement Options
Connecting the Switch
Uplinking the Switch
9
10
11
11
11
12
13
25
25
25
26
27
28
29
31
33
34
35
35
Chapter 4: Using the Console Interface for Configuration
Overview
Configuring the HyperTerminal Application
Connecting to the Switch through a Telnet Session
Configuring the Switch through the Console Interface
Chapter 5: Using the Web-based Utility for Configuration
Overview
Accessing the Web-based Utility
Setup Tab - Summary
Setup Tab - Network Settings
Setup Tab - Time
Port Management Tab - Port Settings
Port Management Tab - Link Aggregation
Port Management Tab - LACP
Port Management Tab - PoE Power Settings
VLAN Management Tab - Create VLAN
VLAN Management Tab - Port Settings
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
VLAN Management Tab - Ports to VLAN
VLAN Management Tab - VLAN to Ports
Statistics Tab - RMON Statistics
Statistics Tab - RMON History
Statistics Tab - RMON Alarm
Statistics Tab - RMON Events
Statistics Tab - Port Utilization
Statistics Tab - 802.1x Statistics
ACL Tab - IP Based ACL
ACL Tab - MAC Based ACL
Security Tab - ACL Binding
Security Tab - Authentication Servers
Security Tab - 802.1x Settings
Security Tab - Ports Security
Security Tab - HTTPS Settings
Security Tab - SSH Settings
SSH Host-Key Settings
QoS Tab
QoS Tab - CoS Settings
QoS Tab - Queue Settings
QoS Tab - DSCP Settings
QoS Tab - Diffserv Settings
QoS Tab - Diffserv Port Binding
QoS Tab - Bandwidth
36
37
38
39
40
42
43
43
44
46
47
48
49
51
52
53
54
55
55
56
57
57
60
60
61
61
62
63
66
67
67
68
69
71
72
74
Spanning Tree Tab
Spanning Tree Tab - Global Settings
Spanning Tree Tab - STP Settings
Spanning Tree Tab - STP Port Settings
Multicast Tab - Global Settings
Multicast Tab - Static Member Ports
Multicast Tab - Static Router Ports
Multicast Tab - Member Ports Query
Admin Tab - User Authentication
Admin Tab - SNMP
Admin Tab - Log
Admin Tab - Port Mirroring
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Admin Tab - Cable Test
Admin Tab - Save Configuration
Admin Tab - Jumbo Frame
75
76
76
78
78
79
79
79
80
Admin Tab - Reboot
Admin Tab - Factory Default
Appendix A: About Gigabit Ethernet and Fiber Optic Cabling
Gigabit Ethernet
Fiber Optic Cabling
Appendix B: Windows Help
Appendix C: Downloading using Xmodem
Startup Menu Procedures
81
81
Appendix D: Glossary
83
Appendix E: Specifications
90
Appendix F: Warranty Information
Appendix G: Regulatory Information
Appendix H: Contact Information
94
95
101
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
List of Figures
Figure 2-1: Front Panel
3
4
Figure 2-2: Back Panel
Figure 2-3: Side Panel
5
Figure 3-1: Typical Network Configuration for the SRW2024P
Figure 3-2: Attach the Brackets to the Switch
Figure 3-3: Mount the Switch in the Rack
Figure 4-1: Finding HyperTerminal
Figure 4-2: Connection Description
Figure 4-3: Connect To
7
9
9
11
11
11
12
12
13
14
15
15
15
16
16
17
17
17
18
18
19
19
20
20
20
Figure 4-4: COM1 Properties
Figure 4-5: Telnet Login Screen
Figure 4-6: Switch Main Menu
Figure 4-7: System Configuration Menu
Figure 4-8: System Information Menu
Figure 4-9: Versions
Figure 4-10: General System Information
Figure 4-11: Management Settings Menu
Figure 4-12: Serial Port Configuration
Figure 4-13: User & Password Settings
Figure 4-14: IP Configuration Menu
Figure 4-15: IP Address Configuration
Figure 4-16: HTTP/HTTPS
Figure 4-17: SNMP
Figure 4-18: Ping Test
Figure 4-19: File Management
Figure 4-20: Restore System Default Settings
Figure 4-21: Reboot System
Figure 4-22: Back to Main Menu
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Figure 4-23: Port Status
Figure 4-24: Port Configuration
Figure 4-25: System PoE Configuration
Figure 4-26: Power Configuration
Figure 4-27: Power Port Status
Figure 4-28: Port PoE Configuration
Figure 4-29: Help
Figure 4-30: Log Out
Figure 5-1: Login Screen
Figure 5-2: Setup - Summary
21
21
22
22
22
23
23
23
25
26
27
28
29
30
32
32
32
33
34
35
35
36
37
37
38
39
40
40
42
42
Figure 5-3: Setup - Network Settings
Figure 5-4: Setup - Time
Figure 5-5: Port Management - Port Settings
Figure 5-6: Port Settings - Port Setting Detail
Figure 5-7: Port Management - Link Aggregration
Figure 5-8: Link Aggregation - Link Aggregation Select Member
Figure 5-9: Link Aggregation - Link Aggregation Detail
Figure 5-10: Port Management - LACP
Figure 5-11: Port Management - PoE Power Settings
Figure 5-12: VLAN Management - Create VLAN
Figure 5-13: VLAN Management - Port Settings
Figure 5-14: VLAN Management - Ports to VLAN
Figure 5-15: VLAN Management - VLAN to Ports
Figure 5-16: VLAN to Ports - Join VLAN
Figure 5-17: Statistics - RMON Statistics
Figure 5-18: Statistics - RMON History
Figure 5-19: RMON History Table
Figure 5-20: Statistics - RMON Alarm
Figure 5-21: Statistics - RMON Events
Figure 5-22: Statistics - RMON Events - Log Table
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Figure 5-23: Statistics - Port Utilization
Figure 5-24: Statistics - 802.1x Statistics
Figure 5-25: ACL - IP Based ACL
Figure 5-26: ACL - Mac Based ACL
Figure 5-27: Security - ACL Binding
Figure 5-28: Security - Athentication Servers
Figure 5-29: Security - 802.1x Settings
Figure 5-1: Security - 802.1x Settings - Port Settings
Figure 5-30: Security - Ports Security
Figure 5-31: Security - HTTPS Settings
Figure 5-32: Security - Management ACL
Figure 5-33: Security - SSH Settings
Figure 5-34: Security - SSH Host-Key Settings
Figure 5-35: QoS - CoS Settings
Figure 5-36: QoS - Queue Settings
43
43
44
46
47
48
49
50
51
52
52
53
54
55
56
57
57
58
59
60
60
61
62
63
66
67
67
68
68
69
Figure 5-37: QoS - DSCP Settings
Figure 5-38: QoS - Diffserv Settings
Figure 5-39: QoS - Diffserv Settings - Edit Class Element
Figure 5-40: QoS - Diffserv Settings - Edit Policy Element
Figure 5-41: QoS - Diffserv Port Binding
Figure 5-42: QoS - Bandwidth
Figure 5-43: Spanning Tree - Global Settings
Figure 5-44: Spanning Tree - STP Settings
Figure 5-45: Spanning Tree - STP Port Settings
Figure 5-46: Multicast - Global Settings
Figure 5-47: Multicast - Static Member Ports
Figure 5-48: Multicast - Static Router Ports
Figure 5-49: SNMP - Member Ports Query
Figure 5-50: Router Ports Query
Figure 5-51: Admin - User Authentication
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Figure 5-52: Admin - Forwarding Database
Figure 5-53: Admin - SNMP
Figure 5-54: Admin - Log
70
71
72
73
73
74
75
75
76
76
77
77
78
78
81
81
82
82
Figure 5-55: Admin - Log - Flash Logging
Figure 5-56: Admin - Log - Memory Logging
Figure 5-57: Admin - Port Mirroring
Figure 5-58: Admin - Cable Test
Figure 5-59: Admin - Ping
Figure 5-60: Admin - Save Configuration
Figure 5-61: Admin - Jumbo Frame
Figure 5-62: Admin - Firmware Upgrade
Figure 5-63: Admin - HTTP Upgrade
Figure 5-64: Admin - Reboot
Figure 5-65: Admin - Factory Defaults
Figure C-1: Interface
Figure C-2: Send File
Figure C-3: Browse
Figure C-4: Sending File
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Chapter 1: Introduction
Welcome
The Linksys WebView Managed Switch allows you to expand your network securely. Configuration of the switch
is secured using SSL for Web access. User control is secured using 802.1x security using a RADIUS
authentication mechanism and can also be controlled using MAC-based filtering.
Extensive QoS features makes the solution ideal for real-time applications like Voice and Video. The 4 priority
queues together with the Weighted Round Robin and Strict Priority scheduling techniques facilitate efficient co-
existence of real-time traffic with data traffic allowing them each to meet their QoS needs. Individual users or
applications can be prioritized above others using various Class of Service options - by port, layer 2 priority
(802.1p), and Layer 3 priority (TOS or DSCP). Intelligent Broadcast, and Multicast storm control minimizes and
contain the effect of these types of traffic on regular traffic. IGMP Snooping limits bandwidth-intensive video
traffic to only the requestors without flooding to all users. Incoming traffic can be policed and outgoing traffic can
be shaped allowing you to control network access and traffic flow.
There are features that allow you to expand and grow your network of switches. Link aggregation allows multiple
high-bandwidth trunks between switches to be setup. This also provides a level of reliability in that the system
continues to operate if one of the links break. Spanning Tree (STP), Fast Spanning Tree, and Rapid Spanning Tree
(RSTP) allow you to build a mesh of switches increasing the availability of the system.
The rich management functionality of the WebView switches includes SNMP, RMON, Telnet, and HTTP
Management options, allowing you to flexibly integrate and manage these devices in your network.
Chapter 1: Introduction
Welcome
1
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
What’s in this User Guide?
This user guide covers the steps for setting up and using the Switch.
•
•
•
•
•
•
•
Chapter 1: Introduction
This chapter describes the Switch’s applications and this User Guide.
Chapter 2: Getting to Know the Switch
This chapter describes the physical features of the Switch.
Chapter 3: Connecting the Switch
This chapter explains how to install and connect the Switch.
Chapter 4: Using the Console Interface for Configuration
This chapter instructs you on how to use the Switch’s console interface when you configure the Switch.
Chapter 5: Using the Web-based Utility for Configuration
This chapter shows you how to configure the Switch using the Web-based Utility.
Appendix A: About Gigabit Ethernet and Fiber Optic Cabling
This appendix gives a general description of Gigabit Ethernet and fiber optic cabling.
Appendix B: Windows Help
This appendix describes how you can use Windows Help for instructions about networking, such as installing
the TCP/IP protocol.
•
•
•
•
•
•
Appendix C: Downloading using Xmodem
This appendix describes how you can download software into the Switch using Xmodem.
Appendix D: Glossary
This appendix gives a brief glossary of terms frequently used in networking.
Appendix E: Specifications
This appendix provides the Switch’s technical specifications.
Appendix F: Warranty Information
This appendix supplies the Switch’s warranty information.
Appendix G: Regulatory Information
This appendix supplies the Switch’s regulatory information.
Appendix H: Contact Information
This appendix provides contact information for a variety of Linksys resources, including Technical Support.
Chapter 1: Introduction
Welcome
2
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Chapter 2: Getting to Know the Switch
Front Panel
The Switch's LEDs and ports are located on the front panel.
Figure 2-1: Front Panel
LEDs
System
Green. The System LED lights green to indicate the power is being supplied to the Switch.
Lights orange to indicate that the Switch’s power-on-self-test (POST) is in progress.
Flashes orange to indicate that the POST has failed.
Link/Act (1-24)
Orange. The Link/Act LED lights orange to indicate a functional 1000Mbps network link
through the corresponding port (1 through 24) with an attached device.
Green. The Link/Act LED lights green to indicate a functional 10/100Mbps network link.
Flashes to indicate that the Switch is actively sending or receiving data over that port.
PoE
Orange. The PoE LED lights orange to indicate a powered device is connected to the
corresponding port (1 through 24). Flashes to indicate that the Switch is actively sending
power over that port.
Chapter 2: Getting to Know the Switch
Front Panel
3
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Ports
LAN (1-24)
The LAN (Local Area Network) ports connect to Ethernet network devices, such as
other switches or routers.
MiniGBIC (12) /MiniGBIC (24)The Switch is equipped with two mini-GBIC ports. The miniGBIC (gigabit interface
converter) port is a connection point for a miniGBIC expansion module, so the
Switch can be uplinked via fiber to another switch. If a Gigabit mini-GBIC port is
being used, the associated LAN port (12 and/or 24) cannot be used. They link to
high-speed network peripheral system or clients at speeds of 1000Mbps.
Use the Linksys MGBT1, MGBSX1, or MGBLH1 miniGBIC modules with the Switch.
The MGBSX1 and the MGBLH1 require fiber cabling with LC connectors, while the
MGBT1 requires a Category 5e Ethernet cable with an RJ-45 connector.
Console
The Console port is where you can connect a serial cable to a PC’s serial port for
configuration using your PC’s HyperTerminal program. Refer to Chapter 4: Using
the Console Interface for Configuration for more information.
The Back Panel
The power port is located on the back panel of the Switch.
NOTE: If you need to reset the Switch, unplug
the power cord from the back of the Switch.
Wait a few seconds and then reconnect it.
Figure 2-2: Back Panel
Power
The Power port is where you connect the power cord.
Chapter 2: Getting to Know the Switch
The Back Panel
4
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
The Side Panel
The security slot is located on a side panel.
Figure 2-3: Side Panel
The security slot is where you can attach a lock so the Switch will be protected from theft.
Security Slot
LAN Ports
The Switch is equipped with twenty-four auto-sensing RJ-45 LAN ports. These RJ-45 ports support network
speeds of either 10Mbps, 100Mbps or 1000Mbps, and can operate in half and full-duplex modes. Auto-sensing
technology enables each port to automatically detect the speed of the device connected to it (10Mbps, 100Mbps
or 1000Mbps), and adjust its speed and duplex accordingly.
The Switch’s RJ-45 ports also support the IEEE 802.3af Power-over-Ethernet (PoE) standard that enables DC
power to be supplied to attached devices using wires in the connecting twisted-pair cable. Any 802.3af-
compliant device attached to a port can directly draw power from the Switch over the twisted-pair cable without
requiring its own separate power source. This capability gives network administrators centralized power control
for devices such as IP phones and wireless access points, which translates into greater network availability. For
each attached 802.3af-compliant device, the Switch automatically senses the load and dynamically supplies the
required power. The Switch delivers power to a device using the two data wire pairs in the twisted-pair cable.
Each port can provide up to 15.4 W of power at the standard -48 VDC voltage.To connect a device to a port, you
will need to use Category 5 (or better) network cable.
The Gigabit Expansion Ports
The Switch is equipped with two miniGBIC ports that have shared Gigabit Ethernet ports (12 and 24) which
provide for the installation of one expansion module. These ports provide links to high-speed network segments
or individual workstations at speeds of up to 1000Mbps (Gigabit Ethernet). To establish a Gigabit Ethernet
connection using a mini-GBIC port, you will need to install an MGBT1, MGBSX2, or MGBLH1 Gigabit expansion
Chapter 2: Getting to Know the Switch
The Side Panel
5
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
module and use Category 5e cabling or fiber optic cabling. For more information on fiber optic cabling, refer to
“Fiber Optic Cabling” in Appendix B.
The Console Port
The Switch is equipped with a serial port labeled Console (located on the front of the switch) that allows you to
connect to a computer’s serial port (for configuration purposes) using the provided serial cable. You can use
HyperTerminal to manage the Switch using the console port. With this and many other Linksys products, your
networking options are limitless. Go to the Linksys website at www.linksys.com for more information about
products that work with the Switch.
Chapter 2: Getting to Know the Switch
The Console Port
6
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Chapter 3: Connecting the Switch
Overview
This chapter will explain how to connect network devices to the Switch. For an example of a typical network
configuration, see the application diagram shown below.
Figure 3-1: Typical Network Configuration for the SRW2024P
When you connect your network devices, make sure you don’t exceed the maximum cabling distances, which are
listed in the following table:
Table 1: Maximum Cabling Distances
From
To
Maximum Distance
100 meters (328 feet)
5 meters (16.4 feet)
100 meters (328 feet)
Switch
Switch or Hub*
Hub
Hub
Switch or Hub
Computer
Chapter 3: Connecting the Switch
Overview
7
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
*A hub refers to any type of 100Mbps hub, including regular hubs and stackable hubs. A 10Mbps hub connected
to another 10Mbps hub can span up to 100 meters (328 feet).
Before You Install the Switch...
When you choose a location for the Switch, observe the following guidelines:
•
•
•
•
Make sure that the Switch will be accessible and that the cables can be easily connected.
Keep cabling away from sources of electrical noise, power lines, and fluorescent lighting fixtures.
Position the Switch away from water and moisture sources.
To ensure adequate air flow around the Switch, be sure to provide a minimum clearance of two inches
(50 mm).
•
Do not stack free-standing Switches more than four units high.
Chapter 3: Connecting the Switch
Before You Install the Switch...
8
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
IMPORTANT: Make sure you use the screws
supplied with the mounting brackets. Using the
wrong screws could damage the Switch and would
invalidate your warranty.
Placement Options
Before connecting cables to the Switch, first you will physically install the Switch. Either set the Switch on its four
rubber feet for desktop placement or mount the Switch in a standard-sized, 19-inch wide, 1U high rack for rack-
mount placement.
Desktop Placement
1. Attach the rubber feet to the recessed areas on the bottom of the Switch.
2. Place the Switch on a desktop near an AC power source.
3. Keep enough ventilation space for the Switch and check the environmental restrictions mentioned in the
specifications.
4. Proceed to the section, “Connecting the Switch.”
Figure 3-2: Attach the Brackets to the Switch
Rack-Mount Placement
To mount the Switch in any standard-sized, 19-inch wide, 1U high rack, follow these instructions:
1. Place the Switch on a hard flat surface with the front panel facing you.
2. Attach a rack–mount bracket to one side of the Switch with the supplied screws. Then attach the other
bracket to the other side.
3. Make sure the brackets are properly attached to the Switch.
4. Use the appropriate screws (not included) to securely attach the brackets to your rack.
5. Proceed to the section, “Connecting the Switch.”
Figure 3-3: Mount the Switch in the Rack
Connecting the Switch
To connect network devices to the Switch, follow these instructions:
1. Make sure all the devices you will connect to the Switch are powered off.
Chapter 3: Connecting the Switch
Placement Options
9
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
2. For 10/100Mbps devices, connect a Category 5 Ethernet network cable to one of the numbered ports on the
Switch. For a 1000Mbps device, connect a Category 5e Ethernet network cable to one of the numbered ports
on the Switch.
3. Connect the other end to a PC or other network device.
4. Repeat steps 2 and 3 to connect additional devices. If pre-standard or 802.3af-compliant PoE devices are
connected to the Switch’s 10/100/1000 ports, the Switch automatically supplies the required power.
5. If you are using a miniGBIC port, then connect a miniGBIC module to a miniGBIC port. For detailed instructions,
refer to the module’s documentation.
6. If you will use the Switch’s console interface to configure the Switch, then connect the supplied serial cable
to the Switch’s Console port, and tighten the captive retaining screws. Connect the other end to your PC’s
serial port. (This PC must be running a VT100 terminal emulation software, such as HyperTerminal.)
IMPORTANT: Make sure you use the power cord that is supplied with the Switch. Use of a
different power cord could damage the Switch.
7. Connect the supplied power cord to the Switch’s power port, and plug the other end into an electrical outlet.
8. Power on the network devices connected to the Switch. Each active port’s corresponding Link/Act LED will
light up on the Switch.
NOTE: If you need to reset the Switch, unplug the
power cord from the back of the Switch. Wait a
few seconds and then reconnect it.
Uplinking the Switch
To uplink the Switch, connect one end of a Category 5 (or better) Ethernet network cable into one of the 24 gigabit
ports, and then connect the other end of the cable into the peripheral device’s uplink port. MDI/MDIX will
automatically detect the speed and cable type.
If you will use the Switch’s console interface to configure the Switch, proceed to Chapter 4: Using the
Console Interface for Configuration for directions.
If you will use the Switch’s Web-based Utility to configure the Switch, proceed to Chapter 5: Using the
Web-based Utility for Configuration.
Chapter 3: Connecting the Switch
Uplinking the Switch
10
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Chapter 4: Using the Console Interface for Configuration
Overview
The Switch features a menu-driven console interface for basic configuration of the Switch and management of
your network. The Switch can be configured using CLI through the console interface or through a telnet
connection. This chapter describes console interface configuration. Configuration can also be performed through
the web utility, which is covered in the next chapter.
Configuring the HyperTerminal Application
Before you use the console interface, you will need to configure the HyperTerminal application on your PC.
Figure 4-1: Finding HyperTerminal
1. Click the Start button. Select Programs and choose Accessories. Select Communications. Select
HyperTerminal from the options listed in this menu.
2. On the Connection Description screen, enter a name for this connection. In the example, the name of
connection is SRW2048P. Select an icon for the application. Then, click the OK button.
3. On the Connect To screen, select a port to communicate with the Switch: COM1, COM2, or TCP/IP.
Figure 4-2: Connection Description
Figure 4-3: Connect To
Chapter 4: Using the Console Interface for Configuration
Overview
11
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
4. Set the serial port settings as follows:
Bits per second: 38400
Data bits: 8
Parity: None
Stop bits: 1
Flow control: None
Then, click the OK button.
Figure 4-4: COM1 Properties
Connecting to the Switch through a Telnet Session
Open a command line editor and enter telnet 192.168.1.254. Then, press the Enter key.
The Login screen will now appear. The first time you open the CLI interface, select Edit and hit Enter. Enter admin
in the User Name field. Leave the Password field blank.
Press the Esc button and you will return to the login screen. Use the right arrow button to navigate to Execute
and press the Enter button to enter the CLI interface.
Figure 4-5: Telnet Login Screen
Chapter 4: Using the Console Interface for Configuration
Connecting to the Switch through a Telnet Session
12
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Configuring the Switch through the Console Interface
The console screens consist of a series of menus. Each menu has several options, which are listed vertically. You
select a menu option when you highlight it; pressing the Enter key activates the highlighted option.
To navigate through the menus and actions of the console interface, use the up or down arrow keys to move up or
down, and use the left or right arrow keys to move left or right. Use the Enter key to select a menu option, and use
the Esc key to return to the previous selection. Menu options and any values entered or present will be
highlighted. The bottom of the screen lists the actions available.
Switch Main Menu
The System Main Menu screen displays these choices:
1. System Configuration Information Menu
2. Port Status
3. Port Configuration
4. PoE Configuration
Figure 4-6: Switch Main Menu
5. Help
0. Logout
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
13
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
System Configuration Menu
On the System Configuration Menu screen, you have these choices:
1. System Information
2. Management Settings
3. User & Password Settings
4. IP Configuration
5. File Management
6. Restore System Default Settings
7. Reboot System
Figure 4-7: System Configuration Menu
0. Back to Main Menu
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
14
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
System Information
Using this screen, you can check the Switch’s firmware versions and general system information.
Figure 4-8: System Information Menu
Versions
The Versions screen displays the Switch’s boot, software, loader, and hardware firmware versions.
Figure 4-9: Versions
General Information
The General System Information screen displays the Switch’s description, System Up Time, System MAC Address,
System Contact, System Name, and System Location.
Select Edit and press the Enter key to make changes. When your changes are complete, press the Esc key to
return to the Action menu. Select Save and press the Enter key to save your changes. To exit, select Quit and
press the Enter key.
Figure 4-10: General System Information
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
15
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Management Settings
From the Management Settings screen, you can set Serial Port Session Configuration.
Figure 4-11: Management Settings Menu
Serial Port Configuration
On the Serial Port Configuration screen, the Switch’s baud rate is displayed.
Select Edit and press the Enter key to make changes. Toggle to the desired speed and when your changes are
complete, press the Esc key to return to the Action menu. Select Save and press the Enter key to save your
changes. To exit, select Quit and press the Enter key.
Figure 4-12: Serial Port Configuration
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
16
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
User & Password Settings
From this screen, you can administer the user names and passwords of those accessing the Switch.
Select Edit and press the Enter key to make changes. When your changes are complete, press the Esc key to
return to the Action menu. Select Save and press the Enter key to save your changes. To exit, select Quit and
press the Enter key.
NOTE: The Username & Password Settings screen can also
be used to set passwords for other users.
Figure 4-13: User & Password Settings
IP Configuration
The IP Configuration screen displays these choices: the Switch’s IP Address Settings, HTTP/HTTPS, SNMP, and
Network Diagnostics.
IP Address Configuration
The Switch’s IP information is displayed here.
IP Address. The IP Address of the Switch is displayed. (The default IP address is 192.168.1.254.) Verify that the
address you enter is correct and does not conflict with another device on the network.
Figure 4-14: IP Configuration Menu
Subnet Mask. The subnet mask of the Switch is displayed.
Default Gateway. The IP address of your network’s default gateway is displayed.
Management VLAN. The VLAN ID number is displayed. Set the ID number of the Management VLAN. This is the
only VLAN through which you can gain management access to the Switch. By default, all ports on the Switch are
members of VLAN 1, so a management station can be connected to any port on the Switch. If other VLANs are
configured and you change the Management VLAN, you may lose management access to the Switch. In this case,
you should reconnect the management station to a port that is a member of the Management VLAN.
IP Mode. Choose to have either a user-defined IP address or to have it assigned by DHCP or BOOTP.
Select Edit to make changes. When your changes are complete, press the Esc key to return to the Action menu,
and select Save to save your changes.
Figure 4-15: IP Address Configuration
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
17
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
HTTP/HTTPS
The HTTP/HTTPS screen allows you to set the Hyper Text Transfer Protocol server (web server) information for the
Switch.
HTTP Server. Enable or disable the Switch’s HTTP server function.
HTTP Server port. Set the TCP port that HTTP packets are sent and received from.
HTTPS Server. Enable or disable the Secure HTTP server function of the Switch.
HTTPS Server port. Set the TCP port that the HTTPS packets are sent and received from.
Figure 4-16: HTTP/HTTPS
Select Edit and press the Enter key to make changes. When your changes are complete, press the Esc key to
return to the Action menu. Select Save and press the Enter key to save your changes. To exit, select Quit and
press the Enter key.
SNMP
The SNMP screen allows you to set the Switch’s SNMP settings.
SNMP Server. Enable or Disable the SNMP function for the Switch.
SNMP Server Port. Set the TCP port that will be used for sending and receiving SNMP packets.
Figure 4-17: SNMP
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
18
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Network Diagnostics
The Network Configuration Screen allows you to use Ping to test network connectivity. The Ping screen displays
the IP address of the location you want to contact.
Select Edit to change the IP address, and select Execute to begin the ping test.
After the ping test is complete, the Ping screen displays the IP address, status, and statistics of the ping test.
Select Edit and press the Enter key to make changes. When your changes are complete, press the Esc key to
return to the Action menu. Select Save and press the Enter key to save your changes. To exit, select Quit and
press the Enter key.
Figure 4-18: Ping Test
File Management
The File Management screen allows you to upload or download files, such as the startup configuration, boot, or
image file, using a TFTP server.
Select Edit to change the settings. When your changes are complete, press the Esc key to return to the Action
menu, and select Execute to upload or download the designated file.
If you are downloading a new boot image, please follow these steps:
1. Download the new boot code. DO NOT RESET THE DEVICE!
2. Download the new software image.
Figure 4-19: File Management
3. Reset the device now.
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
19
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Restore System Default Settings
To restore the Switch back to the factory default settings, select Restore System Default Settings and press the
Enter key. You will be asked if you want to continue. Press the y key to restore the Switch’s default settings, or
press the n key to cancel.
Figure 4-20: Restore System Default Settings
Reboot System
Select Reboot System and press the Enter key if you want to restart the Switch. You will be asked if you want to
continue. Press the y key to reboot the Switch, or press the n key to cancel. After the Switch has rebooted, the
Switch Main Menu screen will appear.
Figure 4-21: Reboot System
Back to Main Menu
Select Back to Main Menu and press the Enter key if you want to return to the Switch Main Menu screen.
Figure 4-22: Back to Main Menu
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
20
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Port Status
On the Switch Main Menu screen, select Port Status and press the Enter key if you want to view the status
information for the Switch’s ports.
The Port Status screen displays the port numbers, their status, Link status, speed and duplex mode, and status of
flow control, which is the flow of packet transmissions.
If you want to change any settings for a port, you must use the Port Configuration screen.
Port Configuration
On the Switch Main Menu screen, select Port Configuration and press the Enter key if you want to configure the
Switch’s ports.
Figure 4-23: Port Status
The Port Configuration screen displays the port numbers, their status, auto-negotiation status, speed and duplex
mode, and status of flow control, which is the flow of packet transmissions.
NOTE: When downloading a configuration file, be sure
that it is a valid configuration file. If you have edited the
file, ensure that only valid entries have been configured.
Select Edit and press the Enter key to make changes. When your changes are complete, press the Esc key to
return to the Action menu. Select Save and press the Enter key to save your changes. To exit, select Quit and
press the Enter key.
You can use the Port Configuration screen to enable or disable an interface, set auto-negotiation and the interface
capabilities to advertise or manually fix the speed, duplex mode, and flow control.
Enable. Allows you to manually enable or disable an interface. You can disable an interface due to abnormal
behavior (for example, excessive collisions), and then enable it again, once the problem has been resolved. You
may also disable an interface for security reasons.
Auto-negotiation (Port Capabilities). Allows auto-negotiation to be enabled/disabled. When auto-negotiation is
enabled, you need to specify the capabilities to be advertised. When auto-negotiation is disabled, you can force
the settings for speed, mode, and flow control. The following capabilities are supported:
• 10half – Supports 10 Mbps half-duplex operation
• 10full – Supports 10 Mbps full-duplex operation
• 100half – Supports 100 Mbps half-duplex operation
• 100full – Supports 100 Mbps full-duplex operation
Figure 4-24: Port Configuration
• 1000full – Supports 1000 Mbps full-duplex operation
(Default: Auto-negotiation enabled; Advertised capabilities for 100Base-TX – 10half, 10full, 100half, 100full;
1000Base-T – 10half, 10full, 100half, 100full, 1000full; 1000Base-SX/LX/LH (SFP) – 1000full;
100Base-FX (SFP) – 100full
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
21
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Speed/Duplex. Allows manual selection of port speed and duplex mode (that is, with auto-negotiation disabled).
Flow Control. Allows automatic or manual selection of flow control.
PoE Configuration
On the Switch Main Menu screen, select PoE Configuration and press the Enter key if you want to configure the
Switch’s ports.
PoE Main Menu
Figure 4-25: System PoE Configuration
The PoE Main Menu screen displays three menu choices: System PoE Configuration, Port PoE Status, and Port
PoE Configuration
System PoE Configuration
The Power Configuration screen allows you to set the PoE power allocation from the Switch to connected devices.
The Switch’s power management enables total Switch power and individual port power to be controlled within a
configured power budget. Port power can be automatically turned on and off for connected devices, and a per-
port power priority can be set so that the Switch never exceeds its allocated power budget. When a device is
connected to a port, its power requirements are detected by the Switch before power is supplied. If the power
required by a device exceeds the power budget of the port or the whole Switch, power is not supplied
Figure 4-26: Power Configuration
Port PoE Status
The Power Port Status screen allows you to view the current PoE settings for each port on the Switch.
Ports can be set to one of three power priority levels: critical, high, or low. To control the power supply within the
Switch’s budget, ports set at critical or high priority have power enabled in preference to those ports set at low
priority. For example, when a device is connected to a port set to critical priority, the Switch supplies the required
power, if necessary by dropping power to ports set for a lower priority. If power is dropped to some low-priority
Figure 4-27: Power Port Status
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
22
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
ports and later the power demands on the Switch fall back within its budget, the dropped power is automatically
restored.
Port PoE Configuration
The Power Port Configuration screen allows you to set the PoE settings for each port. Select the Edit action and
use the left-right and up-down arrows to select the attribute you would like to set. You can set the Admin Status,
the Priority, and the Power Allocation for each port. Use the Save action to save the new settings.
Figure 4-28: Port PoE Configuration
Help
Figure 4-29: Help
Select Help and press the Enter key if you want to view the help information. This screen explains how to
navigate the various screens of the console interface.
Log Out
Select Log Out to log out of the Console Configuration Utility.
Figure 4-30: Log Out
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
23
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Chapter 4: Using the Console Interface for Configuration
Configuring the Switch through the Console Interface
24
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Chapter 5: Using the Web-based Utility for Configuration
Overview
This chapter describes the features included in the Web-based Utility. All of the features shown in this chapter,
unless specifically identified, are included in the all of Fast Ethernet switches. Additional features for specific
switches are noted.
Accessing the Web-based Utility
NOTE: The Web-based Utility is optimized for viewing with a screen resolution of 1024 x 768.
Internet Explorer version 5.5 or above is recommended.
Open your web browser and enter 192.168.1.254 into the Address field. Press the Enter key and the login
screen will appear.
NOTE: The default IP address of the device is 192.168.1.254. If you have modified this address,
enter the correct IP address. The device should be on the same subnet as the management station
used to configure the device.
The first time you open the Web-based Utility, enter admin in the User Name field, and leave the Password field
blank. Click the OK button. For security purposes, it is recommended that later you set a password from the
System Password screen.
Figure 5-1: Login Screen
The first screen that appears is the Setup Summary screen. Twelve main tabs are accessible from the Web-based
Utility: Setup, Port Management, VLAN Management, Statistics, ACL, Security, QoS (Quality of Service), Spanning
Tree, Multicast, SNMP, Admin, and Logout. Click one of the main tabs to view additional tabs.
NOTE: After configuring values using the Web-based
Utility, you may be required to refresh the page to see
the updated configuration.
The LEDs on the Setup Summary screen display status information about their corresponding ports. A green
LED indicates a connection, while a grey LED indicates no connection. An orange LED indicates the port has
been closed down by the administrator. When you click a port’s LED, the statistics for that port are displayed.
NOTE: The LEDs displayed in the Web-based Utility are not the same as the LEDs on the front panel
of the Switch. The front panel LEDs display different status information, which is described in
Chapter 2: Getting to Know the Switch.
Chapter 5: Using the Web-based Utility for Configuration
Overview
25
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Setup Tab - Summary
The Summary screen provides device and system information about the Switch.
Device Information
System Name. Displays the name for the Switch, if one has been entered on the Setup - Network Settings tab.
IP Address.The IP address of the Switch is displayed here (configurable from Setup - Network Settings tab).
Subnet Mask. The Subnet Mask of the Switch is displayed here (configurable from Setup - Network Settings
tab).
DNS Servers.The DNS Servers are displayed here (configurable from Setup - Network Settings tab).
Default Gateway. The Default Gateway is displayed here (configurable from Setup - Network Settings tab).
Address Mode. Indicates whether the Switch is configured with a Static or Dynamic IP address (configurable
from Setup - Network Settings tab).
Figure 5-2: Setup - Summary
Base MAC Address. This is the MAC address of the Switch.
System Information
Serial Number. The product’s Serial Number is displayed here.
Model Name. This is the model number and name of the Switch.
Hardware Version. The version number of the Switch’s hardware is displayed here.
Boot Version. Indicates the system boot version currently running on the device.
Firmware Version. The Firmware (software) version number is displayed here.
System Location. The system name is displayed here (configurable from Setup - Network Settings tab).
System Contact. The contact person for this Switch is displayed here (configurable from Setup - Network
Settings tab).
System Up Time. This displays the amount of time that has elapsed since the Switch was last reset.
Current Time. The system time is displayed here (configurable from Setup - Time tab).
Chapter 5: Using the Web-based Utility for Configuration
Setup Tab - Summary
26
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
PoE Information
Maximum Available Power. Displays the maximum power that can be supplied to a connected PoE device.
System Operation Status. Displays whether the Switch can provide PoE power or not.
Mainpower Consumption. Displays the current number of watts that the Switch is providing to PoE devices.
Setup Tab - Network Settings
The Network Settings screen allows you to assign DHCP or static IP settings to interfaces and assign default
gateways.
Identification
System Name. This field allows you to assign a system name.
System Location. This field is used for entering a description of where the Switch is located, such as 3rd floor.
System Contact. Enter the administrative contact person in this field.
System Object ID. The system object identifier is displayed here.
Base MAC Address. This is the MAC address of the Switch.
Figure 5-3: Setup - Network Settings
IP Configuration
Management VLAN. This drop-down allows you to select the Management VLAN.
IP Address Mode. This drop-down allows you to select Static or Dynamic IP address configuration.
Host Name. Enter the DHCP Host Name here.
IP Address. If using a static IP address, enter the IP address here.
Subnet Mask. Enter the subnet mask of the currently configured IP address.
Default Gateway. Enter the IP address of the Default Gateway.
DNS Server. Enter the primary DNS Server information.
Chapter 5: Using the Web-based Utility for Configuration
Setup Tab - Network Settings
27
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
You can click Restart DHCP to assign a new IP address using DHCP.
Click the Save Settings button to save your changes or click Cancel Changes to discard the information.
Setup Tab - Time
The Time screen allows you to configure the time settings for the Switch. Simple Network Time Protocol (SNTP)
allows the Switch to set its internal clock based on periodic updates from a time server (SNTP or NTP).
Maintaining an accurate time on the Switch enables the system log to record meaningful dates and times for
event entries. If the clock is not set, the Switch will only record the time from the factory default set at the last
bootup. When the SNTP client is enabled, the Switch periodically sends a request for a time update to a
configured time server. You can configure up to two time server IP addresses. The Switch will attempt to poll
each server in the sequence.
Set Time
Set the system time manually. When this option is selected, the local hardware clock is utilized.
Figure 5-4: Setup - Time
Set the system time using Simple Network Time Protocol (SNTP) automatically. When this option is
selected, the time is synchronized to an SNTP server.
Manual
Hours. The hour can be entered here.
Minutes. The minutes can be entered here.
Seconds. The seconds can be entered here.
Month. The month can be entered here.
Day. The day can be entered here.
Year. The year can be entered here.
Automatic
Time Zone. Select your time zone from the drop-down menu.
Chapter 5: Using the Web-based Utility for Configuration
Setup Tab - Time
28
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Daylight Savings. Select Daylight Savings to enable it on the Switch. If the Switch should use US daylight
savings, then select USA. If the Switch should use EU daylight savings, then select European. If it should use
another kind of daylight savings, then select Custom and complete the From and To fields.
Time Set. For non-US and European countries, specify the amount of time for daylight savings. The default is 60
minutes. You may enter 1-1440 minutes.
From. If you selected Other for the Daylight Saving setting, then enter the date and time when daylight savings
begins.
To. If you selected Other for the Daylight Saving setting, then enter the date and time when daylight savings ends.
Recurring. If you selected Other for the Daylight Saving setting and daylight savings has the same start and end
dates and times every year, then select Recurring.
From. If you selected Recurring, then enter the date and time when daylight savings begins.
To. If you selected Recurring, then enter the date and time when daylight savings ends.
SNTP Servers
Server1. Enter the primary SNTP server here.
Server2. Enter a secondary SNTP server here.
SNTP Polling Interval. The value defined here determines the amount of time (in seconds) before the Switch
polls the SNTP server. The default value is every 1024 seconds (approx. 17 minutes). You may enter 60-86400
seconds.
Click the Save Settings button to save your changes or click Cancel Changes to discard the information.
Port Management Tab - Port Settings
The Port Management - Port Settings screen shows you the settings for each of the Switch’s ports.
Port. The number of the port. To use an SFP module, click on the Detail button of the appropriate port (g1, g2).
Description. Displays a brief description of the port (can be entered by clicking on the Detail button).
Administrative Status. The port can be taken offline by selecting the Disabled option. When Enabled is selected,
the port can be accessed normally.
Figure 5-5: Port Management - Port Settings
Chapter 5: Using the Web-based Utility for Configuration
Port Management Tab - Port Settings
29
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Link Status. Up indicates a port has an active connection, Down indicates there is no active connection or the
port has been taken offline by an Administrator.
Speed. The connection speed of the port is displayed here. The speed can be configured only when
auto-negotiation is disabled on that port.
Duplex. This is the port duplex mode, Full (transmission occurs in both directions simultaneously) or Half
(transmission occurs in only one direction at a time). This mode can be configured only when auto-negotiation is
disabled and port speed is set to 10Mbps or 100Mbps. It cannot be configured on Link Aggregation Groups
(LAGs).
MDI/MIDX. This is the MDI/MDIX status of the port. The MDI setting is used if the port is connected to an end
station. The MDIX setting is used if the port is connected to a hub or another switch.
Flow Control. This is the flow control status of the port. It is active when the port uses Full Duplex Mode.
Type. Displays the port type.
LAG. This indicates if the port is part of a LAG.
Detail. The Detail button will open the Port Setting screen.
Port Setting
Port. Select the number of the port from the drop-down menu.
Port Configuration
Description. Allows you to describe an interface. (Range: 1-64 characters)
Port Type. This is the port type.
Speed Duplex. Allows you to manually set the port speed and duplex mode. (i.e., with auto-negotiation disabled)
Figure 5-6: Port Settings - Port Setting Detail
Auto-negotiation (Port Capabilities). Allows auto-negotiation to be enabled/disabled. When auto-negotiation is
enabled, you need to specify the capabilities to be advertised. When auto-negotiation is disabled, you can force
the settings for speed, mode, and flow control. The following capabilities are supported.
•
•
10half - Supports 10 Mbps half-duplex operation
10full - Supports 10 Mbps full-duplex operation
Chapter 5: Using the Web-based Utility for Configuration
Port Management Tab - Port Settings
30
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
•
•
•
•
•
100half - Supports 100 Mbps half-duplex operation
100full - Supports 100 Mbps full-duplex operation
1000half - Supports 1000 Mbps half-duplex operation
1000full - Supports 1000 Mbps full-duplex operation
Sym (Gigabit only) - Check this item to transmit and receive pause frames, or clear it to auto-negotiate the
sender and receiver for asymmetric pause frames. (The current switch chip only supports symmetric pause
frames.)
Flow Control. Enables flow control. Flow control can eliminate frame loss by “blocking” traffic from end stations
or segments connected directly to the Switch when its buffers fill. When enabled, back pressure is used for half-
duplex operation and IEEE 802.3x for full-duplex operation. (Avoid using flow control on a port connected to a hub
unless it is actually required to solve a problem. Otherwise, back pressure jamming signals may degrade overall
performance for the segment attached to the hub.
(Default: Autonegotiation enabled; Advertised capabilities for 100Base-TX – 10half, 10full, 100half, 100full;
1000Base-T – 10half, 10full, 100half, 100full, 1000full; 1000Base-SX/LX/LH – 1000full)
Port Broadcast Control
You can protect your network from broadcast storms by setting a threshold for broadcast traffic for all ports. Any
broadcast packets exceeding the specified threshold will then be dropped.
Status. To enable broadcast control on a specified port, select Enabled for that port.
Threshold. Set the threshold using the Threshold field. You may enter 64-1000000 K/bits/sec.
After you modify the required port settings, click Apply.
Click the Save Settings button to save your changes.
Port Management Tab - Link Aggregation
LAG. This indicates if the port is part of a LAG.
Description. Description for this LAG.
Administrative Status. The admin status of the LAG. Up indicates that the LAG is available. Down indicates that
administrator has taken the port offline. When modifying the option, be sure to click the Save Settings option.
Chapter 5: Using the Web-based Utility for Configuration
Port Management Tab - Link Aggregation
31
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Type. The type of LAG is displayed here.
Link Status. The link status is displayed here.
Speed. The connection speed is displayed here.
Duplex. The connection duplex is displayed here.
Flow Control. This is the flow control status of the LAG. It is active when the port uses Full Duplex Mode.
Create. To create a new LAG, click the Create button in the Create column, then add members to the LAG by
clicking on the Select Member button. The select member screen for the Link Aggregation opens.
Detail button. To configure the LAG and the LAG broadcast control, click the Detail button. The detail screen for
the LAG opens. Assign up to 8 ports to the LAG by selecting the ports, then click Apply.
Figure 5-7: Port Management - Link Aggregration
Figure 5-8: Link Aggregation - Link Aggregation Select
Member
Figure 5-9: Link Aggregation - Link Aggregation Detail
Chapter 5: Using the Web-based Utility for Configuration
Port Management Tab - Link Aggregation
32
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Port Management Tab - LACP
Ports can be statically grouped into an aggregate link (that is, LAG) to increase the bandwidth of a network
connection or to ensure fault recovery. Or you can use the Link Aggregation Control Protocol (LACP) to
automatically negotiate a LAG link between the Switch and another network device. For static LAGs, the switches
have to comply with the Cisco EtherChannel standard. For dynamic LAGs, the switches have to comply with LACP.
This Switch supports up to eight LAGs. For example, a LAG consisting of two 1000 Mbps ports can support an
aggregate bandwidth of 4 Gbps when operating at full duplex.
To avoid creating a loop in the network, be sure you enable LACP before connecting the ports, and also
disconnect the ports before disabling LACP.
Global Setting
System Priority. Indicates the global LACP priority value. The possible range is 1- 65535. The default value is 1.
Port Setting
Set the System Priority and Port Priority for the Port Actor. After you have completed setting the port LACP
parameters, click Save Settings.
Port. Defines the port number to which timeout and priority values are assigned.
Status. Select Enabled to enable the port.
Figure 5-10: Port Management - LACP
Set Port Actor. This menu sets the local side of an aggregate link; that is, the ports on this Switch.
Port Priority. Defines the LACP priority value for the port. The field range is 1-65535.
LACP Timeout. Administrative LACP timeout. A short or long timeout value can be selected. Long is the default.
Chapter 5: Using the Web-based Utility for Configuration
Port Management Tab - LACP
33
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Port Management Tab - PoE Power Settings
If a device is connected to a Switch port and the Switch detects that it requires more than the power budget of
the port, no power is supplied to the device (that is, port power remains off).
If the power demand from devices connected to Switch ports exceeds the power budget set for the Switch, the
port power priority settings are used to control the supplied power.
Select Enabled to enable PoE power on selected ports, set the priority using the drop-down menu provided, and
set the power allocation for each port.
Port. Displays the port number.
Admin Status. Select Enabled to enable PoE power to be supplied to the connected device.
Priority. Set the priority of the supply using the drop-down menu.
Figure 5-11: Port Management - PoE Power Settings
Power Allocation (3000-15400 milliwatts). Set the maximum power that can be supplied to the port.
Mode. Displays whether the connected PoE device is on or off.
Power Consumption (milliwatts). Displays the power currently being used by the connected PoE device.
Chapter 5: Using the Web-based Utility for Configuration
Port Management Tab - PoE Power Settings
34
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
VLAN Management Tab - Create VLAN
The Create VLAN screen provides information and global parameters for configuring and working with VLANs.
Single VLAN
VLAN ID (2-4094). Indicates the ID number of the VLAN being configured. Up to 256 VLANs can be created. This
field is used to add VLANs one at a time. To add the defined VLAN ID number, press the Add button.
VLAN Name. Displays the user-defined VLAN name.
VLAN Range
VLAN Range. Indicates a range of VLANs being configured. To add the defined range of VLAN ID numbers, press
the Add Range button.
Figure 5-12: VLAN Management - Create VLAN
VLAN Table
NOTE: VLANs that are created dynamically using
GVRP are assigned a VLAN name “Undefined”.
The VLAN Table displays a list of all configured VLANs. The VLAN ID, VLAN Name, and status of the VLAN are
displayed here. To remove a VLAN, click the Remove button.
VLAN Management Tab - Port Settings
The VLAN Port Settings screen provides parameters for managing ports that are part of a VLAN. The port default
VLAN ID (PVID) is configured on the VLAN Port Settings screen. All untagged packets arriving to the device are
tagged by the ports PVID.
Port. The port number included in the VLAN.
Mode. Indicates the port mode. Possible values are:
•
General. The port belongs to VLANs, and each VLAN is user-defined as tagged or untagged (full 802.1Q
mode).
•
Access. The port belongs to a single untagged VLAN. When a port is in Access mode, the packet types
which are accepted on the port (packet type) cannot be designated. It is also not possible to enable/
disable ingress filtering on an access port.
Figure 5-13: VLAN Management - Port Settings
•
Trunk. The port belongs to VLANs in which all ports are tagged (except for an optional single native VLAN).
Chapter 5: Using the Web-based Utility for Configuration
VLAN Management Tab - Create VLAN
35
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Acceptable Frame Type. Packet type accepted on the port. Possible values are:
•
•
Admit Tag Only. Indicates that only tagged packets are accepted on the port.
Admit All. Indicates that both tagged and untagged packets are accepted on the port.
PVID. Assigns a VLAN ID to untagged packets. The possible values are 2 to 4094. VLAN 4095 is defined as per
standard and industry practice as the discard VLAN. Packets classified to the Discard VLAN are dropped.
Ingress Filtering. Enables or disables Ingress filtering on the port. Ingress filtering discards packets which do
not include an ingress port.
LAG. Indicates the LAG to which the VLAN is defined.
VLAN Management Tab - Ports to VLAN
Use the Port to VLAN screen to configure port members for the selected VLAN index. Assign ports as tagged if
they are connected to 802.1Q VLAN compliant devices, or untagged they are not connected to any VLAN-aware
devices.
Select VLAN. Select the VLAN number. from the drop-down menu.
Switch Port Mode
Indicates VLAN membership mode for an interface. (Default: Access
Access. Indicates the port belongs to a single untagged VLAN. When a port is in Access mode, the packet types
which are accepted on the port cannot be designated. Ingress filtering cannot be enabled/disabled on an access
port.
Trunk. Indicates the port belongs to VLANs in which all ports are tagged, except for one port that can be
untagged.
General. Indicates the port belongs to VLANs, and each VLAN is user-defined as tagged or untagged (full 802.1Q
mode).
Membership
Figure 5-14: VLAN Management - Ports to VLAN
Select VLAN membership for each interface by marking the appropriate radio button for a port or LAG:
Excluded. Excludes the interface from the VLAN. However, the interface can be added to the VLAN through GVRP.
Chapter 5: Using the Web-based Utility for Configuration
VLAN Management Tab - Ports to VLAN
36
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Untagged. Packets forwarded by the interface are untagged.
Tagged. Defines the interface as a tagged member of a VLAN. All packets forwarded by the interface are tagged.
The packets contain VLAN information.
VLAN Management Tab - VLAN to Ports
The VLAN to Ports screen contains fields for configuring VLANs to a ports.
Port. Displays the interface number.
Mode. Indicates the port to VLAN mode. The possible field values are:
•
General. Indicates the port belongs to VLANs, and each VLAN is user-defined as tagged or untagged (full
802.1Q mode).
Figure 5-15: VLAN Management - VLAN to Ports
•
Access. Indicates the port belongs to a single untagged VLAN. When a port is in Access mode, the packet
types which are accepted on the port cannot be designated. Ingress filtering cannot be enabled/disabled
on an access port.
•
Trunk. Indicates the port belongs to VLANs in which all ports are tagged, except for one port that can be
untagged.
Join VLAN. Defines the VLANs to which the interface is joined. Select the VLAN ID, then click Apply.
VLANs. Displays the PVID tag.
LAG. Indicates if the port is a member of a LAG. If it is a member of a LAG, it cannot be configured to a VLAN. The
LAG to which it belongs can be configured to a VLAN.
Figure 5-16: VLAN to Ports - Join VLAN
Chapter 5: Using the Web-based Utility for Configuration
VLAN Management Tab - VLAN to Ports
37
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Statistics Tab - RMON Statistics
The RMON Statistics screen contains fields for viewing information about device utilization and errors that
occurred on the device.
To view the interface statistics for a port, select the required interface from the drop-down menu and click Query.
To set a refresh rate or to update the interface statistics, select a time interval from the Refresh Rate drop-down
menu.
Refresh Rate. Defines the amount of time that passes before the interface statistics are refreshed. The possible
field values are:
•
•
•
•
No Refresh. Indicates that the RMON statistics are not refreshed.
15 Sec. Indicates that the RMON statistics are refreshed every 15 seconds.
30 Sec. Indicates that the RMON statistics are refreshed every 30 seconds.
60 Sec. Indicates that the RMON statistics are refreshed every 60 seconds.
Figure 5-17: Statistics - RMON Statistics
Interface. Indicates the device for which statistics are displayed. The possible field values are:
•
•
Port. Defines the specific port for which RMON statistics are displayed.
LAG. Defines the specific LAG for which RMON statistics are displayed.
Drop Events. Displays the number of dropped events that have occurred on the interface since the device was
last refreshed.
Received Bytes (Octets). Displays the number of octets received on the interface since the device was last
refreshed. This number includes bad packets and FCS octets, but excludes framing bits.
Received Packets. Displays the number of packets received on the interface, including bad packets, Multicast
and broadcast packets, since the device was last refreshed.
Broadcast Packets Received. Displays the number of good broadcast packets received on the interface since
the device was last refreshed. This number does not include Multicast packets.
Multicast Packets Received. Displays the number of good Multicast packets received on the interface since the
device was last refreshed.
Chapter 5: Using the Web-based Utility for Configuration
Statistics Tab - RMON Statistics
38
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
CRC & Align Errors. Displays the number of CRC and Align errors that have occurred on the interface since the
device was last refreshed.
Undersize Packets. Displays the number of undersized packets (less than 64 octets) received on the interface
since the device was last refreshed.
Oversize Packets. Displays the number of oversized packets (over 1518 octets) received on the interface since
the device was last refreshed.
Fragments. Displays the number of fragments (packets with less than 64 octets, excluding framing bits, but
including FCS octets) received on the interface since the device was last refreshed.
Jabbers. Displays the total number of received packets that were longer than 1518 octets. This number excludes
frame bits, but includes FCS octets that had either a bad Frame Check Sequence (FCS) with an integral number of
octets (FCS Error) or a bad FCS with a non-integral octet (Alignment Error) number. The field range to detect
jabbers is between 20 ms and 150 ms.
Collisions. Displays the number of collisions received on the interface since the device was last refreshed.
Frames of xx Bytes. Number of xx-byte frames received on the interface since the device was last refreshed.
Clear Counters button. This option will reset all of the statistic counts.
Refresh Now button. Use this option to refresh the statistics.
Statistics Tab - RMON History
The RMON History screen allows you to monitor your network for common errors and overall traffic rates. The
History Control Table allows you to add, edit and delete collection entries, or to select a specific index entry and
then view the historical data in table form.
History Control Table
Source Interface. Displays the interface from which the history samples were taken. The possible field values
are:
•
•
Port. Specifies the port from which the RMON information was taken.
LAG. Specifies the port from which the RMON information was taken.
Figure 5-18: Statistics - RMON History
Chapter 5: Using the Web-based Utility for Configuration
Statistics Tab - RMON History
39
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Sampling Interval. Indicates (in seconds) the time that samplings are taken from the ports. The field range is 1-
3600. The default is 1800 seconds (30 minutes).
Sampling Requested. Indicates the number of samples to save. (Range:1-65535)
Owner. The name of the person who created this entry in the Control Table. (Maximum 127 characters)
The Add to List button adds the configured RMON sampling to the Log Table at the bottom of the screen.
View History Table button. This button opens the History Table screen. The History Control Table allows you to
add, edit and delete collection entries, or to select a specific index entry and then view the historical data in table
form. The History Table lists the Index, Sample Index, Interval Start, Description, Octets, Packets, Broadcast
Packets, Multicast Packets, CRCA Align Errors, Undersize Packets, Oversize Packets, Fragments, Jabbers,
Collisions, and Utilization.
Figure 5-19: RMON History Table
Statistics Tab - RMON Alarm
The RMON Alarm screen contains fields for setting network alarms. Network alarms occur when a network
problem, or event, is detected. Rising and falling thresholds generate events.
The RMON Alarms screen allows you to record important events and critical network problems. The RMON Alarm
and Event Control Tables are used together to define specific criteria that will generate response events.
Alarms can be set to test data over any specified time interval and can monitor absolute or changing values, such
as a statistical counter reaching a specific value, or a statistic changing by a certain amount over a set interval.
Alarms can be set to respond to either rising or falling thresholds.
The Alarm Control Table allows you to add, update and delete specific index entries.Interface. The selected
interface on the Switch.
Interface. Displays the interface for which RMON statistics are displayed. The possible field values are:
•
•
Port. Displays the RMON statistics for the selected port.
LAG. Displays the RMON statistics for the selected LAG.
Statistics. The traffic statistics to be sampled. Select from the drop-down list.
Interval. The time interval in seconds over which data is sampled and compared with the rising or falling
threshold.
Figure 5-20: Statistics - RMON Alarm
Chapter 5: Using the Web-based Utility for Configuration
Statistics Tab - RMON Alarm
40
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Sample Type. Defines the sampling method for the selected variable and comparing the value against the
thresholds. The possible field values are:
•
•
Absolute. Compares the values directly with the thresholds at the end of the sampling interval.
Delta. Subtracts the last sampled value from the current value. The difference in the values is compared
to the threshold.
Startup Alarm. How the alarm is activated when the variable is compared to the thresholds. This can be set to
Rising, Falling, or Rising or Falling.
Rising Threshold. An alarm threshold for the sampled variable. If the current value is greater than or equal to the
threshold, and the last sample value was less than the threshold, then an alarm will be generated. (After a rising
event has been generated, another such event will not be generated until the sampled value has fallen below the
Rising Threshold and reaches the Falling Threshold.)
Falling Threshold. An alarm threshold for the sampled variable. If the current value is less than or equal to the
threshold, and the last sample value was greater than the threshold, then an alarm will be generated. (After a
falling event has been generated, another such event will not be generated until the sampled value has risen
above the Falling Threshold and reaches the Rising Threshold.)
Rising Event Index. Displays the mechanism in which the alarms are reported. The possible field values are:
•
LOG. Indicates there is not a saving mechanism for either the device or in the management system. If the
device is not reset, the entry remains in the Log Table.
•
TRAP. Indicates that an SNMP trap is generated, and sent via the Trap mechanism. The Trap can also be
saved using the Trap mechanism.
Both. Indicates that both the Log and Trap mechanism are used to report alarms.
Falling Event. The index of the Event that will be used if a falling alarm is triggered. If there is no corresponding
entry in the Event Control Table, or if this number is zero, then no event will be generated.Owner. The name of the
person who created this entry in the Control Table. (Maximum 127 characters)
Falling Event Index. Displays the mechanism in which the alarms are reported. The possible field values are:
•
LOG. Indicates there is not a saving mechanism for either the device or in the management system. If the
device is not reset, the entry remains in the Log Table.
•
TRAP. Indicates that a SNMP trap is generated, and sent via the Trap mechanism. The Trap can also be
saved using the Trap mechanism.
Chapter 5: Using the Web-based Utility for Configuration
Statistics Tab - RMON Alarm
41
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Both. Indicates that both the Log and Trap mechanism are used to report alarms.
•
Owner. Displays the device or user that defined the alarm.
The Add button adds the entry to the RMON Alarms Table.
Statistics Tab - RMON Events
The RMON Events screen contains fields for defining RMON events. An RMON Event determines the action to take
when an alarm is triggered. The response to an alarm can include logging the alarm or sending an SNMP trap
message.
Event Setting
Event Description. Displays the user-defined event description.
Type. Describes the event type. Possible values are:
•
•
•
•
None. Indicates that no event occurred.
Log. Indicates that the event is a log entry.
Trap. Indicates that the event is a trap.
Figure 5-21: Statistics - RMON Events
Log and Trap. Indicates that the event is both a log entry and a trap.
Community. Displays the community to which the event belongs.
Owner. Displays the device or user that defined the event. (Maximum 127 characters).
The Add button adds the configured RMON event to the Event Table at the bottom of the screen.
The Event Table area contains Index, Description, Type, Community, Last Time Sent, Owner.
To display each time an event was triggered by an alarm, first highlight an entry in the Event Control Table and
then click on the View Log Table button. The Log Table shows the log index number, the time of an event, and the
description of the event that activated the entry.
Figure 5-22: Statistics - RMON Events - Log Table
Chapter 5: Using the Web-based Utility for Configuration
Statistics Tab - RMON Events
42
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Statistics Tab - Port Utilization
The Port Utilization screen displays the amount of resources each interface is currently consuming. Ports in green
are functioning normally, while ports in red are currently transmitting an excessive amount of network traffic.
Click the View All Ports button to view all 24 ports on the screen.
Global Overloaded Setting.
Refresh Rate. Indicates the amount of time that passes before the port utilization statistics are refreshed. The
possible field values are:
•
•
•
•
No Refresh. Indicates that the statistics are not refreshed.
15 Sec. Indicates that the statistics are refreshed every 15 seconds.
30 Sec. Indicates that the statistics are refreshed every 30 seconds.
60 Sec. Indicates that the statistics are refreshed every 60 seconds.
Figure 5-23: Statistics - Port Utilization
Statistics Tab - 802.1x Statistics
The 802.1X Statistic screen contains information about EAP packets received on a specific port. To view the
statistics for a port, select the required interface from the drop-down menu and click Query.
Refresh Rate. Indicates the amount of time that passes before the EAP statistics are refreshed. The possible field
values are:
•
•
•
•
No Refresh. Indicates that the EAP statistics are not refreshed.
15 Sec. Indicates that the EAP statistics are refreshed every 15 seconds.
30 Sec. Indicates that the EAP statistics are refreshed every 30 seconds.
60 Sec. Indicates that the EAP statistics are refreshed every 60 seconds.
Interface. Indicates the port, which is polled for statistics.
Name. Displays the measured 802.1x statistic.
Description. Describes the measured 802.1x statistic.
Figure 5-24: Statistics - 802.1x Statistics
Chapter 5: Using the Web-based Utility for Configuration
Statistics Tab - Port Utilization
43
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Packet. Displays the amount of packets measured for the particular 802.1x statistic.
ACL Tab - IP Based ACL
The IP Based ACL (Access Control List) screen contains information for defining IP Based ACLs. Access Control
Lists (ACL) provide packet filtering for IP frames (based on address, protocol, Layer 4 protocol port number or TCP
control code) or any frames (based on MAC address or Ethernet type). To filter incoming packets, first create an
access list, add the required rules, specify a mask to modify the precedence in which the rules are checked, and
then bind the list to a specific port.
Target. Select the New ACL Name radio button and enter an ACL name in the text field provided (with up to 16
characters). Or to add rules to an existing ACL, select ACL Name and select an ACL from the dropdown menu.
ACL Name. Displays the user-defined IP based ACLs.
New ACL Name. Define a new user-defined IP based ACL, the name cannot include spaces.
Action. Indicates the action assigned to the packet matching the ACL. Packets are forwarded or dropped. In
addition, the port can be shut down, a trap can be sent to the network administrator, or a packet assigned rate
limiting restrictions for forwarding. The options are as follows:
•
•
•
Permit. Forwards packets which meet the ACL criteria.
Deny. Drops packets which meet the ACL criteria.
Figure 5-25: ACL - IP Based ACL
Shutdown. Drops packet that meets the ACL criteria, and disables the port to which the packet was
addressed. Ports are reactivated from the Port Management screen.
Protocol. Creates an ACE (Access Control Event) based on a specific protocol.
Select from List. Selects from a protocols list on which ACE can be based. The possible field values are:
•
•
•
Any. Matches the protocol to any protocol.
EIGRP. Indicates that the Enhanced Interior Gateway Routing Protocol (EIGRP) is used to classify network
flows.
•
•
•
ICMP. Indicates that the Internet Control Message Protocol (ICMP) is used to classify network flows.
IGMP. Indicates that the Internet Group Management Protocol (IGMP) is used to classify network flows.
TCP. Indicates that the Transmission Control Protocol is used to classify network flows.
Chapter 5: Using the Web-based Utility for Configuration
ACL Tab - IP Based ACL
44
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
•
•
OSPF. Matches the packet to the Open Shortest Path First (OSPF) protocol.
UDP. Indicates that the User Datagram Protocol is used to classify network flows.
•
Protocol ID To Match. Adds user-defined protocols to which packets are matched to the ACE. Each protocol
has a specific protocol number which is unique. The possible field range is 0-255.
TCP Flags. Filters packets by TCP flag. Filtered packets are either forwarded or dropped. Filtering packets by TCP
flags increases packet control, which increases network security. The values that can be assigned are:
•
•
•
Set. Enables filtering packets by selected flags.
Unset. Disables filtering packets by selected flags.
Don’t care. Indicates that selected packets do not influence the packet filtering process.
The TCP Flags that can be selected are:
Urg. Indicates the packet is urgent.
Ack. Indicates the packet is acknowledged.
Psh. Indicates the packet is pushed.
Rst. Indicates the connection is dropped.
Syn. Indicates request to start a session.
Fin. Indicates request to close a session.
Source Port. Defines the TCP/UDP source port to which the ACE is matched. This field is active only if 800/6-TCP
or 800/17-UDP are selected in the Select from List drop-down menu. The possible field range is 0 - 65535.
Destination Port. Defines the TCP/UDP destination port. This field is active only if 800/6-TCP or 800/17-UDP are
selected in the Select from List drop-down menu. The possible field range is 0 - 65535.
Source IP Address. Matches the source port IP address to which packets are addressed to the ACE.
Wildcard Mask. Defines the source IP address wildcard mask. Wildcard masks specify which bits are used and
which bits are ignored. A wild card mask of 255.255.255.255 indicates that no bit is important. A wildcard of
0.0.0.0 indicates that all the bits are important. For example, if the source IP address 149.36.184.198 and the
wildcard mask is 255.36.184.00, the first eight bits of the IP address are ignored, while the last eight bits are
used.
Chapter 5: Using the Web-based Utility for Configuration
ACL Tab - IP Based ACL
45
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Dest. IP Address. Matches the destination port IP address to which packets are addressed to the ACE.
Wildcard Mask. Defines the destination IP address wildcard mask.
Match DSCP. Matches the packet DSCP value to the ACE. Either the DSCP value or the IP Precedence value is
used to match packets to ACLs. The possible field range is 0-63.
Match IP Precedence. Matches the packet IP Precedence value to the ACE. Either the DSCP value or the IP
Precedence value is used to match packets to ACLs. The possible field range is 0-7.
The Add to List button adds the configured IP Based ACLs to the IP Based ACL Table at the bottom of the screen.
ACL Tab - MAC Based ACL
The MAC Based ACL screen allows a MAC based ACL to be defined. ACEs can be added only if the ACL is not
bound to an interface.
Target. Select the New ACL Name radio button and enter an ACL name in the text field provided (with up to 16
characters). Or to add rules to an existing ACL select the ACL Name radio button and select an ACL from the
dropdown menu.
ACL Name. Displays the user-defined MAC based ACLs.
New ACL Name. Specifies a new user-defined MAC based ACL name, the name cannot include spaces.
Action. Indicates the ACL forwarding action. Possible field values are:
•
•
•
Permit. Forwards packets which meet the ACL criteria.
Deny. Drops packets which meet the ACL criteria.
Shutdown. Drops packet that meet the ACL criteria, and disables the port to which the packet was
addressed.
Source MAC Address. Matches the source MAC address to which packets are addressed to the ACE.
Figure 5-26: ACL - Mac Based ACL
Wildcard Mask. Defines the source IP address wildcard mask. Wildcard masks specify which bits are used and
which bits are ignored. A wild card mask of 255.255.255.255 indicates that no bit is important. A wildcard of
0.0.0.0 indicates that all the bits are important. For example, if the source IP address 149.36.184.198 and the
wildcard mask is 255.36.184.00, the first eight bits of the IP address are ignored, while the last eight bits are
used.
Chapter 5: Using the Web-based Utility for Configuration
ACL Tab - MAC Based ACL
46
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Dest. MAC Address. Matches the destination MAC address to which packets are addressed to the ACE.
Wildcard Mask. Defines the destination IP address wildcard mask.
VLAN ID. Matches the packet’s VLAN ID to the ACE. The possible field values are 2 to 4094.
Ethernet Type. Specifies the packet’s Ethernet type. This option can only be used to filter Ethernet II formatted
packets. (Range: 0-65535) A detailed listing of Ethernet protocol types can be found in RFC 1060. A few of the
more common types include 0800 (IP), 0806 (ARP), 8137 (IPX)
The Add to List button adds the configured MAC Based ACLs to the MAC Based ACL Table at the bottom of the
screen.
To remove an ACL rule, select an ACL rule from the table and click Remove. When all rules are removed from the
ACL the ACL is also removed.
Security Tab - ACL Binding
After configuring Access Control Lists (ACL), you should bind them to the ports that need to filter traffic. You can
assign one IP or MAC access list to any port.
You must configure a mask for an ACL rule before you can bind it to a port.
This Switch only supports ACLs for ingress filtering. You can only bind one IP or one MAC ACL to any port, for
ingress filtering.
Mark the Enable checkbox for the port you want to bind to an ACL. Select the required ACL from the drop-down
menu.
Port. Fixed port or SFP module. (Range: 1-24).
IP (Input). Specifies the IP Access List to enable for a port.
MAC (Input). Specifies the MAC Access List to enable globally.
Click Save Settings to save the changes.
Figure 5-27: Security - ACL Binding
Chapter 5: Using the Web-based Utility for Configuration
Security Tab - ACL Binding
47
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Security Tab - Authentication Servers
Remote Authorization Dial-In User Service (RADIUS) servers provide additional security for networks. RADIUS
servers provide a centralized authentication method for web access.
This Switch uses the Extensible Authentication Protocol over LANs (EAPOL) to exchange authentication protocol
messages with the client, and a remote RADIUS authentication server to verify user identity and access rights.
When a client (i.e., Supplicant) connects to a switch port, the Switch (i.e., Authenticator) responds with an EAPOL
identity request. The client provides its identity (such as a user name) in an EAPOL response to the Switch, which
it forwards to the RADIUS server. The RADIUS server verifies the client identity and sends an access challenge
back to the client. The EAP packet from the RADIUS server contains not only the challenge, but the authentication
method to be used. The client can reject the authentication method and request another, depending on the
configuration of the client software and the RADIUS server. The authentication method must be MD5. The client
responds to the appropriate method with its credentials, such as a password or certificate. The RADIUS server
verifies the client credentials and responds with an accept or reject packet. If authentication is successful, the
Switch allows the client to access the network. Otherwise, network access is denied and the port remains
blocked.
RADIUS Server Setting. Index, Server IP Address, Server Port Number (1-65535), Secret Key Screen, Number of
Retries (1-30), Timeout for Reply (1-65535 sec).
TACACS Server Setting. Index, Server IP Address, Server Port Number (1-65535), Secret Key Screen.
Figure 5-28: Security - Athentication Servers
Click Save Settings to save the changes.
Chapter 5: Using the Web-based Utility for Configuration
Security Tab - Authentication Servers
48
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Security Tab - 802.1x Settings
Port based authentication enables authenticating system users on a per-port basis via an external server. Only
authenticated and approved system users can transmit and receive data. Ports are authenticated via the RADIUS
server using the Extensible Authentication Protocol (EAP).
The IEEE 802.1X (dot1X) standard defines a port-based access control procedure that prevents unauthorized
access to a network by requiring users to first submit credentials for authentication. Access to all switch ports in
a network can be centrally controlled from a server, which means that authorized users can use the same
credentials for authentication from any point within the network
The operation of 802.1X on the Switch requires the following:
•
•
•
•
•
•
The Switch must have an IP address assigned.
RADIUS authentication must be enabled on the Switch and the IP address of the RADIUS server specified.
802.1X must be enabled globally for the Switch.
Each Switch port that will be used must be set to dot1X “Auto” mode.
Each client that needs to be authenticated must have dot1X client software installed and properly configured.
Figure 5-29: Security - 802.1x Settings
The RADIUS server and 802.1X client support EAP. (The Switch only supports EAPOL in order to pass the EAP
packets from the server to the client.)
•
The RADIUS server and client also have to support the same EAP authentication type – MD5. (Some clients
have native support in Windows, otherwise the dot1x client must support it.)
To enable 802.1X System Authentication Control, select Radius.
When 802.1X is enabled, you need to configure the parameters for the authentication process that runs between
the client and the Switch (that is, authenticator), as well as the client identity lookup process that runs between
the Switch and authentication server. These parameters are described in this section.
Operation Mode. Allows single or multiple hosts (clients) to connect to an 802.1X-authorized port. (Options:
Single-Host, Multi-Host; Default: Single-Host)
Maximum Count. The maximum number of hosts that can connect to a port when the Multi-Host operation mode
is selected. (Range: 1-1024; Default: 5)
Mode. Sets the authentication mode to one of the following options:
Chapter 5: Using the Web-based Utility for Configuration
Security Tab - 802.1x Settings
49
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
•
•
•
Auto – Requires a dot1x-aware client to be authorized by the authentication server. Clients that are not dot1x-
aware will be denied access.
Force-Authorized – Forces the port to grant access to all clients, either dot1x-aware or otherwise. (This is the
default setting.)
Force-Unauthorized – Forces the port to deny access to all clients, either dot1x-aware or otherwise.
Authorized. Indicates the current status of the port:
•
•
•
Yes – A connected client is authorized.
No – No connected clients are authorized.
Blank – Displays nothing when there is no connection on a port.
Supplicant. Indicates the MAC address of a connected client.
Modify the parameters required using the drop-down menus and fields provided for each port, then click Detail
to configure the 802.1X settings for that port.
The 802.1x Port Settings screen allows configuration of the following parameters:
Reauthentication. To reauthenticate a client, select Enabled.
Maximum Request. Sets the maximum number of times the switch port will retransmit an EAP request packet to
the client before it times out the authentication session. (Range: 1-10; Default 2)
Quiet Period. Sets the time that a switch port waits after the Max Request Count has been exceeded before
attempting to acquire a new client. (Range: 1-65535 seconds; Default: 60 seconds)
Reauthentication Period. Sets the time period after which a connected client must be re-authenticated. (Range:
1-65535 seconds; Default: 3600 seconds)
Figure 5-1: Security - 802.1x Settings - Port Settings
Transmit Period. Sets the time period during an authentication session that the Switch waits before re-
transmitting an EAP packet. (Range: 1-65535; Default: 30 seconds)
Click Save Settings to apply the changes.
Enable 802.1x. Select this to enable 802.1x authentication.
Port. Indicates the port name.
Chapter 5: Using the Web-based Utility for Configuration
Security Tab - 802.1x Settings
50
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Status Port Control. Specifies the port authorization state. The possible field values are as follows:
•
•
Force-Authorized. The controlled port state is set to Force-Authorized (forward traffic).
Force-Unauthorized. The controlled port state is set to Force-Unauthorized (discard traffic).
Enable Periodic Reauthentication. Permits immediate port reauthentication.
The Setting Timer button opens the Setting Timer screen to configure ports for 802.1x functionality.
Security Tab - Ports Security
Port security is a feature that allows you to configure a switch port with one or more device MAC addresses that
are authorized to access the network through that port. When port security is enabled on a port, the Switch stops
learning new MAC addresses on the specified port when it has reached a configured maximum number. Only
incoming traffic with source addresses already stored in the dynamic or static address table will be accepted as
authorized to access the network through that port. If a device with an unauthorized MAC address attempts to
use the switch port, the intrusion will be detected and the Switch can automatically take action by disabling the
port and sending a trap message.
To use port security, specify a maximum number of addresses to allow on the port and then let the Switch
dynamically learn the <source MAC address, VLAN> pair for frames received on the port. When the port has
reached the maximum number of MAC addresses the selected port will stop learning. The MAC addresses already
in the address table will be retained and will not age out. Any other device that attempts to use the port will be
prevented from accessing the Switch.
Set the action to take when an invalid address is detected on a port, select Security Status to enable security for
a port, set the maximum number of MAC addresses allowed on a port.
Action. Indicates the Port Security action. Possible field values are:
Figure 5-30: Security - Ports Security
Click Save Changes to save the changes.
Chapter 5: Using the Web-based Utility for Configuration
Security Tab - Ports Security
51
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Security Tab - HTTPS Settings
You can configure the Switch to enable the Secure Hypertext Transfer Protocol (HTTPS) over the Secure Socket
Layer (SSL), providing secure access (that is, an encrypted connection) to the Switch’s web interface.
To enable HTTPS, select HTTPS Status and specify the port number.
Click Save Settings to save the changes.
Figure 5-31: Security - HTTPS Settings
Security Tab - Management ACL
Management ACL You can create a list of up to 16 IP addresses or IP address groups that are allowed access to
the Switch through the web interface, SNMP, or Telnet.
The management interfaces are open to all IP addresses by default. Once you add an entry to a filter list, access
to that interface is restricted to the specified addresses. If anyone tries to access a management interface on the
Switch from an invalid address, the Switch will reject the connection, enter an event message in the system log,
and send a trap message to the trap manager.
IP addresses can be configured for web, SNMP, and Telnet access. Each of these groups can include up to five
different sets of addresses, either individual addresses or address ranges. When entering addresses for the same
group (i.e., SNMP, web or Telnet), the Switch will not accept overlapping address ranges. When entering
addresses for different groups, the Switch will accept overlapping address ranges.
You cannot delete an individual address from a specified range. You must delete the entire range, and reenter the
addresses. You can delete an address range just by specifying the start address, or by specifying both the start
address and end address.
Figure 5-32: Security - Management ACL
Chapter 5: Using the Web-based Utility for Configuration
Security Tab - HTTPS Settings
52
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Security Tab - SSH Settings
The Secure Shell (SSH) includes server/client applications that can provide remote management access to the
Switch and act as a secure replacement for Telnet.
When the client contacts the Switch through the SSH protocol, the Switch generates a public-key that the client
uses along with a local user name and password for access authentication. SSH also encrypts all data transfers
passing between the Switch and SSH-enabled management station clients, and ensures that data traveling over
the network arrives unaltered.
Note that you need to install an SSH client on the management station to access the Switch for management
through the SSH protocol. The Switch supports both SSH Version 1.5 and 2.0.
SSH Server Status. Allows you to enable/disable the SSH server on the Switch. (Default: Disabled)
Version. The Secure Shell version number. Version 2.0 is displayed, but the Switch supports management access
via either SSH Version 1.5 or 2.0 clients.
Figure 5-33: Security - SSH Settings
SSH Authentication Timeout. Specifies the time interval in seconds that the SSH server waits for a response from
a client during an authentication attempt. (Range: 1-120 seconds; Default: 120 seconds)
SSH Authentication Retries. Specifies the number of authentication attempts that a client is allowed before
authentication fails and the client has to restart the authentication process. (Range: 1-5 times; Default: 3)
SSH Server-Key Size. Specifies the SSH server key size. The server key is a private key that is never shared
outside the Switch.The host key is shared with the SSH client, and is fixed at 1024 bits. (Range: 512-896 bits;
Default:768)
Chapter 5: Using the Web-based Utility for Configuration
Security Tab - SSH Settings
53
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
SSH Host-Key Settings
A host public/private key pair is used to provide secure communications between an SSH client and the Switch.
After generating this key pair, you must provide the host public key to SSH clients and import the client’s public
key to the Switch.
Public-Key of Host-Key. The public key for the host.
•
RSA (Version 1): The first field indicates the size of the host key (e.g., 1024), the second field is the encoded
public exponent (e.g., 65537), and the last string is the encoded modulus.
•
DSA (Version 2): The first field indicates that the encryption method used by SSH is based on the Digital
Signature Standard (DSS). The last string is the encoded modulus.
Host-Key Type. The key type used to generate the host key pair (i.e., public and private keys). (Range: RSA
(Version 1), DSA (Version 2), Both: Default: RSA) The SSH server uses RSA or DSA for key exchange when the
client first establishes a connection with the Switch, and then negotiates with the client to select either DES (56-
bit) or 3DES (168-bit) for data encryption.
Save Host-Key from Memory to Flash. Saves the host key from RAM (volatile memory) to flash memory.
Otherwise, the host key pair is stored to RAM by default. Note that you must select this item prior to generating
the host-key pair.
Figure 5-34: Security - SSH Host-Key Settings
Generate. This button is used to generate the host key pair. Note that you must first generate the host key pair
before you can enable the SSH server.
Clear. This button clears the host key from both volatile memory (RAM) and non-volatile memory (Flash).
Chapter 5: Using the Web-based Utility for Configuration
SSH Host-Key Settings
54
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
QoS Tab
Network traffic is usually unpredictable, and the only basic assurance that can be offered is best effort traffic
delivery. To overcome this challenge, Quality of Service (QoS) is applied throughout the network. This ensures that
network traffic is prioritized according to specified criteria, and that specific traffic receives preferential
treatment.
CoS provides varying Layer 2 traffic services. CoS refers to classification of traffic to traffic-classes, which are
handled as an aggregate whole, with no per-flow settings. CoS is usually related to the 802.1p service that
classifies flows according to their Layer 2 priority, as set in the VLAN header.
QoS refers to Layer 2 traffic and above. QoS handles per-flow settings, even within a single traffic class.
QoS Tab - CoS Settings
Class of Service (CoS) allows you to specify which data packets have greater precedence when traffic is buffered
in the Switch due to congestion. The Switch supports CoS with four priority queues for each port. Data packets in
a port’s high-priority queue will be transmitted before those in the lower-priority queues. You can set the default
priority for each interface, and configure the mapping of frame priority tags to the Switch’s priority queues.The
priority levels recommended in the IEEE 802.1p standard for various network applications are shown in the
following table. However, you can map the priority levels to the Switch’s output queues in any way that benefits
application traffic for your own network.
The CoS Settings screen contains fields for enabling or disabling CoS. In addition, the Trust mode can be selected.
The Trust mode relies on predefined fields within the packet to determine the egress queue settings.
Priority Level
Traffic Type
1
2
3
4
5
6
7
Background
(Spare)0(default) Best Effort
Excellent Effort
Controlled Load
Video, less than 100 milliseconds latency and jitter
Voice, less than 10 milliseconds latency and jitter
Network Control
Figure 5-35: QoS - CoS Settings
Chapter 5: Using the Web-based Utility for Configuration
QoS Tab
55
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
CoS to Queue
Assign priorities to the traffic classes (output queues) for the selected interface.
Class of Service. CoS value. (Range: 0-7, where 7 is the highest priority queue)
Queue (0-3). The output priority queue. (Range: 0-3, where 3 is the highest CoS priority queue)
Port to CoS
Modify the default priority for any interface using the text field provided.
Default CoS (0-7). The priority that is assigned to untagged frames received on the interface. (Range: 0-7, where
7 is the highest priority)
LAG. Indicates if ports are members of a LAG. To configure the default priority for LAGs, go to the table entry for
the LAG number, which is listed after port g24 at the end of the table.
Default settings can be restored using the Restore Defaults button.
Click Save Settings to save the changes.
QoS Tab - Queue Settings
The Queue Setting screen contains fields for defining the QoS queue forwarding types.
Queue. Displays the queue for which the queue settings are displayed. The possible field range is 1 - 4.
Strict Priority. Indicates that traffic scheduling for the selected queue is based strictly on the queue priority.
WRR. Indicates that traffic scheduling for the selected queue is based strictly on the WRR.
WRR Weight. Displays the WRR weights to queues.
Figure 5-36: QoS - Queue Settings
% of WRR Bandwidth. Displays the amount of bandwidth assigned to the queue. These values are fixed and are
not user defined.
Chapter 5: Using the Web-based Utility for Configuration
QoS Tab - Queue Settings
56
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
QoS Tab - DSCP Settings
The Switch supports a common method of prioritizing layer 3/4 traffic to meet application requirements. Traffic
priorities can be specified in the IP header of a frame using the priority bits in the Type of Service (ToS) octet. If
priority bits are used, the ToS octet may contain six bits for Differentiated Services Code Point (DSCP) service.
When these services are enabled, the priorities are mapped to a Class of Service value by the Switch and the
traffic then sent to the corresponding output queue. Because different priority information may be contained in
the traffic, the Switch maps priority values to the output queues in the following manner:
The precedence for priority mapping is DSCP Priority and then Default Port Priority.
To enable DSCP priority mapping, select DSCP Priority Status.
Priority Status. Enables the DSCP priority mapping. (Enabled is the default setting.)
DSCP to CoS. Maps Differentiated Services Code Point values to CoS values.
Click Save Settings to save the changes.
Figure 5-37: QoS - DSCP Settings
QoS Tab - Diffserv Settings
The commands described in this section are used to configure Quality of Service (QoS) classification criteria and
service policies. Differentiated Services (DiffServ) provides policy-based management mechanisms used for
prioritizing network resources to meet the requirements of specific traffic types on a per hop basis. Each packet
is classified upon entry into the network based on access lists, IP Precedence, DSCP values, or VLAN lists. Using
access lists allows you select traffic based on Layer 2, Layer 3, or Layer 4 information contained in each packet.
Based on configured network policies, different kinds of traffic can be marked for different kinds of forwarding.
All switches or routers that access the Internet rely on class information to provide the same forwarding
treatment to packets in the same class. Class information can be assigned by end hosts, or switches or routers
along the path. Priority can then be assigned based on a general policy, or a detailed examination of the packet.
However, note that detailed examination of packets should take place close to the network edge so that core
switches and routers are not overloaded.Switches and routers along the path can use class information to
prioritize the resources allocated to different traffic classes. The manner in which an individual device handles
traffic in the DiffServ architecture is called per-hop behavior. All devices along a path should be configured in a
consistent manner to construct a consistent end-to-end QoS solution.
Figure 5-38: QoS - Diffserv Settings
Chapter 5: Using the Web-based Utility for Configuration
QoS Tab - DSCP Settings
57
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Class Map
A class map is used for matching packets to a specified class. The class map uses the Access Control List
filtering engine, so you must also set an ACL to enable filtering for the criteria specified in the class map.
The class map is used with a policy map to create a service policy for a specific interface that defines packet
classification, service tagging, and bandwidth policing. Note that one or more class maps can be assigned to a
policy map.
Class Name. Name of the class map. (Range: 1-32 characters)
Type. Only one match command is permitted per class map, so the match-any field refers to the criteria specified
by the lone match command.
Description. A brief description of a class map. (Range: 1-256 characters)
Add. Creates a new class map using the entered class name and description.
Edit Class Element. Modifies the class map criteria used to classify ingress traffic.
Remove. Removes the selected class from the list.
Select the entry from the table that you wish to change, then click Edit Class Element. Add rules to a selected
class using the ACL list drop-down menu or the IP DSCP, IP Precedence and VLAN text fields provided, then click
Add.
Class Rule. Edits the rules for the class by specifying the type of traffic based on an access list, a DSCP or IP
Precedence value, or a VLAN.
•
ACL. Name of an access control list. Any type of ACL can be specified, including standard or extended IP ACLs
and MAC ACLs. (Range: 1-16 characters)
Figure 5-39: QoS - Diffserv Settings - Edit Class Element
•
•
•
IP DSCP. A DSCP value. (Range: 0-63)
IP Precedence. An IP Precedence value. (Range: 0-7)
VLAN. A VLAN value. (Range: 1-4094)
Add. Adds the specified criteria to the class. Only one entry is permitted per class.
Remove. Deletes the selected criteria from the class.
Chapter 5: Using the Web-based Utility for Configuration
QoS Tab - Diffserv Settings
58
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Policy Map
A policy map can contain multiple class statements that can be applied to the same interface with the Service
Policy Settings. You can configure up to 63 policers (that is, class maps) for Fast Ethernet and Gigabit Ethernet
ingress ports.
Policing is based on a token bucket, where bucket depth (that is, the maximum burst before the bucket
overflows) is by specified the “Burst” field, and the average rate tokens are removed from the bucket is by
specified by the “Rate” option.
After using the policy map to define packet classification, service tagging, and bandwidth policing, it must be
assigned to a specific interface by a service policy to take effect.
Policy name. The name of the policy map. (Range: 1-32 characters for the name)
Description. A brief description of the Policy. (Range 1-256 characters for the description)
Click Add to create a new policy, or select a policy and click “Edit Policy Element” to change the policy rules of
the selected policy, or Remove Policy to delete the policy.
Class Name. Name of class map. Use the drop-down menu to select a different policy.
Action. Configures the service provided to ingress traffic by setting a CoS, DSCP, or IP Precedence value in a
matching packet. (Range - CoS: 0-7, DSCP: 0-63, IP Precedence: 0-7)
Enable Meter. Check this to define the maximum throughput, burst rate, and the action that results from a policy
violation.
Figure 5-40: QoS - Diffserv Settings - Edit Policy Element
•
•
•
Rate (kbps) – Rate in kilobits per second. (Range: 1-100000 kbps or maximum port speed, whichever is
lower)
Burst (byte) – Burst in bytes. (Range: 64-1522)Exceed. Specifies whether the traffic that exceeds the
specified rate or burst will be dropped or the DSCP service level will be reduced.
Exceed Action – Specifies whether the traffic that exceeds the specified rate or burst will be dropped or the
DSCP service level will be reduced.
Set – Decreases DSCP priority for out of conformance traffic. (Range: 0-63).
Drop – Drops non-conforming traffic.
Add. Adds the specified criteria to the policy map.
Remove. Deletes a class from a policy.
Chapter 5: Using the Web-based Utility for Configuration
QoS Tab - Diffserv Settings
59
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Add classes to a selected policy and set the Action, Meter, Rate, Burst and Exceed values using the drop-down
menus and fields provided then click Add.
QoS Tab - Diffserv Port Binding
This function binds a policy map to the ingress queue of a particular interface. You must first define a class map,
set an ACL mask to match the criteria defined in the class map, then define a policy map, and finally bind the
service policy to the required interface. You can only bind one policy map to an interface. The current firmware
does not allow you to bind a policy map to an egress queue.
Select Policy Map for a port from the drop-down menu.
Click Save Settings to save the changes.
QoS Tab - Bandwidth
This function allows the network manager to control the maximum rate for traffic transmitted or received on an
interface. Rate limiting is configured on interfaces at the edge of a network to limit traffic coming out of the
Switch. Traffic that falls within the rate limit is transmitted, while packets that exceed the acceptable amount of
traffic are dropped.
Figure 5-41: QoS - Diffserv Port Binding
Rate limiting can be applied to individual ports or LAGs. When an interface is configured with this feature, the
traffic rate will be monitored by the hardware to verify conformity. Non-conforming traffic is dropped, conforming
traffic is forwarded without any changes.
Port. Displays the port or LAG number.
Status. Enables the rate limit (input or output) for the port or LAG. (Default: Disabled)
Rate Limit (Kbits/sec). Sets the rate limit level for the port or LAG. For Fast Ethernet ports the default is
100000Kbits/sec (Range: 64-100000). For Gigabit Ethernet ports the default is 1000000Kbits/sec (Range: 64-
1000000).
LAG. Indicates if ports are members of a LAG. To configure a rate limit for LAGs, go to the table entry for the LAG
number, which is listed after port g24 at the end of the table.
Set the Input Rate Limit Status or Output Rate Limit Status, then set the rate limit for individual interfaces or
LAGs, then click Save Settings.
Figure 5-42: QoS - Bandwidth
Chapter 5: Using the Web-based Utility for Configuration
QoS Tab - Diffserv Port Binding
60
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Spanning Tree Tab
The Spanning Tree Algorithm (STA) can be used to detect and disable network loops, and to provide backup links
between switches, bridges or routers. This allows the Switch to interact with other bridging devices (that is, an
STA-compliant switch, bridge or router) in your network to ensure that only one route exists between any two
stations on the network, and provide backup links which automatically take over when a primary link goes
down.Loops occur when alternate routes exist between hosts. Loops in an extended network can cause bridges
to forward traffic indefinitely, resulting in increased traffic and reducing network efficiency.
Spanning Tree Tab - Global Settings
You can display a summary of the current bridge STA information that applies to the entire Switch using the
Information screen.This screen displays the following information.
Spanning Tree State. Indicates if STA is enabled on the device.
Spanning Tree Mode. Indicates the STA mode by which STP is enabled on the device.
Bridge ID. Identifies the Bridge priority and MAC address.
Figure 5-43: Spanning Tree - Global Settings
Designated Root. Indicates the ID of the bridge with the lowest path cost to the instance ID.
Root Port. Indicates the port number that offers the lowest cost path from this bridge to the Root Bridge. It is
significant when the Bridge is not the Root. The default is zero.
Root Path Cost. The cost of the path from this bridge to the root.
Root Maximum Age. Indicates the device Maximum Age Time. The Maximum Age Time indicates the amount of
time in seconds a bridge waits before sending configuration messages. The default max age is 20 seconds. The
range is 6 to 40 seconds.
Root Hello Time. Indicates the device Hello Time. The Hello Time indicates the amount of time in seconds a root
bridge waits between configuration messages. The default is 2 seconds. The range is 1 to 10 seconds.
Root Forward delay. Indicates the device forward delay time. The Forward Delay Time indicates the amount of
time in seconds a bridge remains in a listening and learning state before forwarding packets. The default is 15
seconds. The range is 4 to 30 seconds.
Topology Changes Counts. Indicates the total amount of STP state changes that have occurred.
Chapter 5: Using the Web-based Utility for Configuration
Spanning Tree Tab
61
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Last Topology Change. Indicates the amount of time that has elapsed since the bridge was initialized or reset,
and the last topographic change occurred. The time is displayed in a day hour minute second format, for
example, 2 days 5 hours 10 minutes and 4 seconds.
Spanning Tree Tab - STP Settings
Configure the global settings for STP using this screen. Global settings apply to the entire Switch.
Spanning Tree State. Indicates if STP is enabled on the device.
Spanning Tree Type. Specifies the type of spanning tree used on the Switch:
•
STP: Spanning Tree Protocol (IEEE 802.1D); i.e., when this option is selected, the Switch will use RSTP set
to STP forced compatibility mode).
•
RSTP: Rapid Spanning Tree Protocol (IEEE 802.1w); RSTP is the default.
Priority. Specifies the bridge priority value. When switches or bridges are running STP, each is assigned a
priority. After exchanging BPDUs, the device with the lowest priority value becomes the Root Bridge. The default
value is 32768. The port priority value is provided in increments of 4096. For example, 4096, 8192, 12288, etc.
The range is 0 to 65535.
Hello Time. Specifies the device Hello Time. The Hello Time indicates the amount of time in seconds a root bridge
waits between configuration messages. The default is 2 seconds. The range is 1 to 10 seconds.
Figure 5-44: Spanning Tree - STP Settings
Maximum Age. The maximum time (in seconds) a device can wait without receiving a configuration message
before attempting to reconfigure. All device ports (except for designated ports) should receive configuration
messages at regular intervals. Any port that ages out STP information (provided in the last configuration
message) becomes the designated port for the attached LAN. If it is a root port, a new root port is selected from
among the device ports attached to the network. (References to “ports” in this section mean “interfaces,” which
includes both ports and LAGs.) The default max age is 20 seconds. The range is 6 to 40 seconds.
Forward Delay. The maximum time (in seconds) this device will wait before changing states (i.e., discarding to
learning to forwarding). This delay is required because every device must receive information about topology
changes before it starts to forward frames. In addition, each port needs time to listen for conflicting information
that would make it return to a discarding state; otherwise, temporary data loops might result. The default is 15
seconds. The range is 4 to 30 seconds.
Path Cost Method. The path cost is used to determine the best path between devices. The path cost method is
used to determine the range of values that can be assigned to each interface
Chapter 5: Using the Web-based Utility for Configuration
Spanning Tree Tab - STP Settings
62
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
•
•
Long: Specifies 32-bit based values that range from 1-200,000,000. (This is the default.
Short: Specifies 16-bit based values that range from 1-65535.
Transmission Limit. The maximum transmission rate for BPDUs is specified by setting the minimum interval
between the transmission of consecutive protocol messages. (Range: 1-10; Default: 3) Modify the required
attributes for STP.
Click Save Settings to save the changes.
Spanning Tree Tab - STP Port Settings
The Port Information and LAG Information screens display the current status of ports and LAGs in the Spanning
Tree.
State. Shows if Spanning Tree has been enabled on this interface.
Status. Displays current state of this port within the Spanning Tree:
•
•
Discarding - Port receives STA configuration messages, but does not forward packets.
Learning - Port has transmitted configuration messages for an interval set by the Forward Delay
parameter without receiving contradictory information. Port address table is cleared, and the port begins
learning addresses.
•
Forwarding - Port forwards packets, and continues learning addresses.
Forward Transitions. The number of times this port has transitioned from the Learning state to the Forwarding
state.
Figure 5-45: Spanning Tree - STP Port Settings
Operational Edge Port. This parameter is initialized to the setting for Administrative Edge Port in STP Port
Setting detail, but will be set to false if a BPDU is received indicating that another bridge is attached to this port.
Operational Link Type. The operational point-to-point status of the LAN segment attached to this interface. This
parameter is determined by manual configuration or by auto-detection, as described for Administrative Link Type
in the STP Port Setting detail.
LAG. Indicates if ports are members of a LAG. To configure STP port settings for LAGs, go to the table entry for the
LAG number, which is listed after port g24 at the end of the table.
Click Detail to configure STP Port Settings for an interface.
Chapter 5: Using the Web-based Utility for Configuration
Spanning Tree Tab - STP Port Settings
63
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Click Detail to configure Path Cost, Priority, Administrative Edge Port (Fast Forwarding), and Administrative Link
Type. Use the text fields provided to edit the values, then click Apply.
Designated Cost. The cost for a packet to travel from this port to the root in the current Spanning Tree
configuration. The slower the media, the higher the cost.
Designated Port. The port priority and number of the port on the designated port.
Designated Bridge. The bridge priority and MAC address of the device through which this port must
communicate to reach the root of the Spanning Tree.
Path Cost. This parameter is used by the STP to determine the best path between devices. Therefore, lower
values should be assigned to ports attached to faster media, and higher values assigned to ports with slower
media. (Path cost takes precedence over port priority.) Note that when the Path Cost Method is set to “short,” the
maximum path cost is 65,535.
•
Range –Ethernet: 200,000-20,000,000
Fast Ethernet: 20,000-2,000,000
Gigabit Ethernet: 2,000-200,000
•
Default –Ethernet – Half duplex: 2,000,000; full duplex: 1,000,000; LAG: 500,000
Fast Ethernet – Half duplex: 200,000; full duplex: 100,000; LAG: 50,000
Gigabit Ethernet – Full duplex: 10,000; LAG: 5,000
Priority. Defines the priority used for this port in the Spanning Tree Protocol. If the path cost for all ports on a
switch are the same, the port with the highest priority (i.e., lowest value) will be configured as an active link in the
Spanning Tree. This makes a port with higher priority less likely to be blocked if the Spanning Tree Protocol is
detecting network loops. Where more than one port is assigned the highest priority, the port with lowest numeric
identifier will be enabled.
•
•
Default: 128
Range: 0-240, in steps of 16
Administrative Edge Port (Fast Forwarding). You can enable this option if an interface is attached to a LAN
segment that is at the end of a bridged LAN or to an end node. Since end nodes cannot cause forwarding loops,
they can pass directly through to the spanning tree forwarding state. Specifying Edge Ports provides quicker
convergence for devices such as workstations or servers, retains the current forwarding database to reduce the
amount of frame flooding required to rebuild address tables during reconfiguration events, does not cause the
spanning tree to initiate reconfiguration when the interface changes state, and also overcomes other STA-related
Chapter 5: Using the Web-based Utility for Configuration
Spanning Tree Tab - STP Port Settings
64
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
timeout problems. However, remember that Edge Port should only be enabled for ports connected to an end-node
device. (Default: Disabled)
Administrative Link Type. The link type attached to this interface.
•
•
•
Point-to-Point – A connection to exactly one other bridge.
Shared – A connection to two or more bridges.
Auto – The Switch automatically determines if the interface is attached to a point-to-point link or to shared
media. (This is the default setting.)
Chapter 5: Using the Web-based Utility for Configuration
Spanning Tree Tab - STP Port Settings
65
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Multicast Tab - Global Settings
You can configure the Switch to forward multicast traffic intelligently. Based on the IGMP query and report
messages, the Switch forwards traffic only to the ports that request multicast traffic. This prevents the Switch
from broadcasting the traffic to all ports and possibly disrupting network performance.
IGMP Status. When enabled, the Switch will monitor network traffic to determine which hosts want to receive
multicast traffic. This is also referred to as IGMP Snooping. (Default: Enabled).
IGMP Querier Status. When enabled, the Switch can serve as the Querier, which is responsible for asking hosts
if they want to receive multicast traffic. (Default: Enabled).
IGMP Query Count. Sets the maximum number of queries issued for which there has been no response before
the Switch takes action to drop a client from the multicast group. (Range: 2-10; Default: 2)
IGMP Query Interval. Sets the frequency at which the Switch sends IGMP host-query messages. (Range: 60-125
seconds; Default: 125)
IGMP Report Delay. Sets the time between receiving an IGMP Report for an IP multicast address on a port before
the Switch sends an IGMP Query out of that port and removes the entry from its list. (Range: 5-25 seconds;
Default: 10)
IGMP Query Timeout. The time the Switch waits after the previous querier stops before it considers the router
port (i.e., the interface which had been receiving query packets) to have expired. (Range: 300-500 seconds;
Default: 300)
IGMP Version. Sets the protocol version for compatibility with other devices on the network. (Range: 1-2;
Default: 2)
Click Save Settings to save the changes.
Figure 5-46: Multicast - Global Settings
Chapter 5: Using the Web-based Utility for Configuration
Multicast Tab - Global Settings
66
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Multicast Tab - Static Member Ports
Multicast filtering can be dynamically configured using IGMP Snooping and IGMP Query messages. For certain
applications that require tighter control, you may need to statically configure a multicast service on the Switch.
First add all the ports attached to participating hosts to a common VLAN, and then assign the multicast service to
that VLAN group.
Specify the interface attached to a multicast service (via an IGMP-enabled switch or multicast router), indicate
the VLAN that will propagate the multicast service, specify the multicast IP address, and click Add.
Figure 5-47: Multicast - Static Member Ports
Multicast Tab - Static Router Ports
Depending on your network connections, IGMP snooping may not always be able to locate the IGMP querier.
Therefore, if the IGMP querier is a known multicast router/ switch connected over the network to an interface
(port or lag) on the Switch, you can manually configure the interface (and a specified VLAN) to join all the current
multicast groups supported by the attached router. This can ensure that multicast traffic is passed to all the
appropriate interfaces within the Switch.
Specify the interfaces attached to a multicast router, indicate the VLAN which will forward all the corresponding
multicast traffic, and then click Add.
Figure 5-48: Multicast - Static Router Ports
Chapter 5: Using the Web-based Utility for Configuration
Multicast Tab - Static Member Ports
67
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Multicast Tab - Member Ports Query
You can use the Member Port Query screen to display the ports on the Switch attached to a neighboring multicast
router/switch for each VLAN and multicast IP address.
Select a VLAN ID and the IP address for a multicast service from the drop-down menus. The Switch will display all
the interfaces that are propagating this multicast service
Figure 5-49: SNMP - Member Ports Query
Multicast Tab - Router Member Ports Query
Multicast routers that are attached to ports on the Switch use information obtained from IGMP to support IP
multicasting across the Internet. These routers may be dynamically discovered by the Switch or statically
assigned to an interface on the Switch.
You can use the Router Port Query screen to display the ports on the Switch attached to a neighboring multicast
router/switch for each VLAN ID.
Select a VLAN ID from the drop-down menus. The Switch will display all the interfaces that have attached
multicast routers dynamically discovered by the Switch, or those that have been statically assigned to an
interface on the Switch.
Figure 5-50: Router Ports Query
Chapter 5: Using the Web-based Utility for Configuration
Multicast Tab - Member Ports Query
68
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Admin Tab - User Authentication
The Switch supports up to 5 user names and passwords for management access (console and web interfaces).
The default user name is “admin” with no password. You should therefore assign a new password for the
“admin” user account and store it in a safe place. The default "admin" account cannot be deleted from the
system.
As well as the default “admin” account, up to five other user-defined accounts can be created on the Switch. To
create a new user account, enter a user name and password up to eight characters long, confirm the password,
and then click Add.
To change the password for a specific user, select the user name from the list, enter the new password, confirm
the password by entering it again, and then click Update.
User Name. Displays the user name.
Password. Specifies the new password. The password is not displayed. As it entered an “*” corresponding to
each character is displayed in the field. (Range: 1-159 characters)
Confirm Password. Confirms the new password. The password entered into this field must be exactly the same
as the password entered in the Password field.
The Add button adds the user configuration to the table. The Remove button removes a user configuration from
the table.
Figure 5-51: Admin - User Authentication
Authentication Type. Defines the user authentication methods. Combinations of all the authentication methods
can be selected. The possible field values are:
•
Local. Authenticates the user at the device level. The device checks the user name and password for
authentication.
•
•
RADIUS. Authenticates the user at the RADIUS server.
TACACS+. Authenticates the user at the TACACS+ server.
Chapter 5: Using the Web-based Utility for Configuration
Admin Tab - User Authentication
69
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Admin Tab - Forwarding Database
Switches store the addresses for all known devices in a forwarding database. This information is used to forward
traffic directly between the inbound and outbound ports. All the addresses learned by monitoring traffic are
stored in the dynamic address table. You can also manually configure static addresses that are bound to a
specific port.
Address Aging
Sets the aging time for entries in the forwarding database. The aging time is used to age out dynamically learned
forwarding information.
Aging Status. When enabled, dynamic MAC addresses are discarded after the Aging Interval has expired.
Aging Interval (secs) (10-1000000). This is the amount of time after which dynamic address table entries are
discarded.
Set the Aging Interval by entering the number of seconds into the text field provided.
Click Save Settings to save the changes.
Static Address Setting
A static address can be assigned to a specific interface on the Switch. Static addresses are bound to the
assigned interface and will not be moved. When a static address is seen on another interface, the address will be
ignored and will not be written to the address table.
Static Address Counts. The number of manually configured addresses. The Switch allows 1000 Static Address
Counts.
Interface. Port or LAG associated with the device assigned a static address.
MAC Address (XX-XX-XX-XX-XX-XX). Physical address of a device mapped to this interface.
VLAN. ID of a configured VLAN (1-4094).
Figure 5-52: Admin - Forwarding Database
Specify the interface, the static MAC address, and VLAN, then click Add. The current static addresses on the
Switch are all listed text box. To delete a static MAC address from the forwarding database, select the entry in the
displayed list, then click Remove.
Chapter 5: Using the Web-based Utility for Configuration
Admin Tab - User Authentication
70
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Dynamic Address Query
The Switch’s dynamic address table contains the MAC addresses learned by monitoring the source address for
traffic entering the Switch. When the destination address for inbound traffic is found in the database, the packets
intended for that address are forwarded directly to the associated port. Otherwise, the traffic is flooded to all
ports.
You can query the forwarding database to find specific dynamic MAC addresses, or view MAC addresses
associated with a specific interface or VLAN.
Dynamic Address Counts. The number of addresses dynamically learned on the Switch.
Interface. Indicates to display MAC addresses for a specific port or LAG.
MAC Address. Indicates to display details for a specific MAC address.
VLAN. Indicates to display MAC addresses for a specific configured VLAN (1-4094).
Address Table Sort Key. Sorts the information displayed based on MAC address, VLAN, or interface (port or LAG).
Specify the search type (that is, check the Interface, MAC Address, or VLAN checkbox), select the method of
sorting the displayed addresses, and then click Query. The dynamic addresses that conform to the search criteria
are listed in the text box. To delete a MAC address from the forwarding database, select the entry in the displayed
list, then click Remove.
Admin Tab - SNMP
Simple Network Management Protocol (SNMP) is a communication protocol designed specifically for managing
devices on a network. Equipment commonly managed with SNMP includes switches, routers and host
computers. SNMP is typically used to configure these devices for proper operation in a network environment, as
well as to monitor them to evaluate performance or detect potential problems.Traps indicating status changes are
issued by the Switch to specified trap managers. You must specify trap managers so that key events are reported
by the Switch to your management station (using network management platforms such as HP OpenView). You
can specify up to five management stations that will receive authentication failure messages and other
notification messages from the Switch.
You can add up to five new community strings. Enter a name and select the access rights from the Access Mode
drop-down menu. These strings act as passwords, they are case-sensitive and can be up to 32 characters long.
Strings can be specified for read-only or read/write access. Once this is entered, click Add.
Figure 5-53: Admin - SNMP
Chapter 5: Using the Web-based Utility for Configuration
Admin Tab - SNMP
71
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Enter the IP address and community string for each management station that will receive trap messages. Strings
are case-sensitive and can be up to 32 characters long. Specify the trap UDP port and version, then click Add.
Click Save Settings to save the changes.
Admin Tab - Log
The Switch allows you to configure and limit system messages that are logged to flash or RAM memory,
configure the logging of messages that are sent to remote System Log (Syslog) servers, and set an event-level
threshold for sending email alert messages to system administrators.
The following table describes the system event levels.
Level*
Severity Name
Debug
Description
Debugging messages
7
6
5
Informational
Notice
Informational messages only
Normal but significant condition, such as a cold start
Warning conditions, such as return false or unexpected
return
4
3
2
Warning
Error
Figure 5-54: Admin - Log
Error conditions, such as invalid input or default used
Critical conditions, such as memory allocation, free
memory error, or resource exhausted
Critical
1
0
Alert
Immediate action needed
System unusable
Emergency
* There are only Level 2, 5 and 6 event messages for the current firmware release
System Logging
The system allows you to enable or disable event logging, and specify which event levels are logged to RAM or
flash memory. Severe error messages that are logged to flash memory are permanently stored in the Switch to
assist in troubleshooting network problems.
System Log Status. Enables/disables the logging of debug or error messages to the logging process. (Default:
Enabled)
Chapter 5: Using the Web-based Utility for Configuration
Admin Tab - Log
72
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Flash Level (0-7). Limits log messages saved to the Switch’s permanent flash memory for all levels up to the
specified level. For example, if level 3 is specified, all messages from level 0 to level 3 will be logged to flash.
Note that the Flash Level must be equal to or less than the Ram Level. (Range: 0-7, Default: 3) R
Ram Level (0-7). Limits log messages saved to the Switch’s temporary RAM memory for all levels up to the
specified level. For example, if level 7 is specified, all messages from level 0 to level 7 will be logged to RAM.
(Range: 0-7, Default: 7)
View Flash Logging. Click the button to display log messages stored in the Switch’s flash memory.
View Memory Logging. Click the button to display log messages stored in the Switch’s RAM memory.
Enable the System Log Status, set the level of event messages to be logged to RAM and flash memory, then click
Save Settings.
Syslog
Allows you to configure the logging of messages that are sent to remote Syslog servers. You can limit the event
messages sent to only those messages at or above a specified level.
Figure 5-55: Admin - Log - Flash Logging
Remote Log Status. Enables/disables the logging of debug or error messages to the remote logging process.
(Default: Disabled)
Logging Facility. Sets the facility type for remote logging of Syslog messages. There are eight facility types
specified by values of 16 to 23. The facility type is used by the Syslog server to dispatch log messages to an
appropriate service. The attribute specifies the facility type tag sent in Syslog messages. (See RFC 3164.) This
type has no effect on the kind of messages reported by the Switch. However, it may be used by the Syslog server
to process messages, such as sorting or storing messages in the corresponding database. (Range: 16-23,
Default: 23)
Logging Trap. Limits log messages that are sent to the remote Syslog server for all levels up to the specified
level. For example, if level 3 is specified, all messages from level 0 to level 3 will be sent to the remote server.
(Range: 0-7, Default: 7)
Figure 5-56: Admin - Log - Memory Logging
Syslog Server. Displays the list of remote server IP addresses that will receive Syslog messages. The maximum
number of host IP addresses allowed is five.
Enable Remote Log Status, set the Logging Facility type number, and configure the level of event messages to be
sent to Syslog servers. Enter up to five Syslog server IP addresses in the server list. Click Save Settings.
SMTP Setting
Chapter 5: Using the Web-based Utility for Configuration
Admin Tab - Log
73
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
To alert system administrators of problems, the Switch can use SMTP (Simple Mail Transfer Protocol) to send
email messages when triggered by logging events of a specified level. The messages are sent to specified SMTP
servers on the network and can be retrieved using POP or IMAP clients.
Admin Status. Enables/disables the SMTP function. (Default: Enabled)
Severity. Sets the Syslog severity threshold level used to trigger alert messages. All events at this level or higher
are sent to the configured email recipients. For example, using Level 7 will report all events from level 7 to level
0. (Default: Level 7)
SMTP (1-3). Specifies a list of up to three recipient SMTP server IP addresses. The Switch attempts to connect to
the other listed servers if the first fails.
Source Email Address. Sets the email address used for the “From” field in alert messages. You may use a
symbolic email address that identifies the Switch, or the address of an administrator responsible for the Switch.
Destination Email Address (1-5). Specifies the email recipients of alert messages. You can specify up to five
recipients.
Enable Admin Status, select the minimum severity level, and specify a source email address. Add at least one IP
address to the SMTP server list and specify up to five email addresses to receive the alert messages. Click Save
Settings.
Admin Tab - Port Mirroring
You can mirror traffic from any source port to a target port for real-time analysis. You can then attach a logic
analyzer or RMON probe to the target port and study the traffic crossing the source port in a completely
unobtrusive manner.
The target port speed should match or exceed source port speed, otherwise traffic may be dropped from the
monitor port. The Switch supports only one mirror session. Set the following attributes for port mirroring using
the Port Mirroring screen.
Source Port. Defines the port to which traffic is mirrored.
Type. Indicates the port mode configuration for port mirroring. The possible field values are:
•
•
Receive. Defines the port mirroring on receiving ports. This is the default value.
Transmit. Defines the port mirroring on transmitting ports.
Figure 5-57: Admin - Port Mirroring
Chapter 5: Using the Web-based Utility for Configuration
Admin Tab - Port Mirroring
74
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Both. Defines the port mirroring on both receiving and transmitting ports.
•
Target Port. Defines the port from which traffic is mirrored.
Specify the source port, the traffic type to be mirrored, and the target port, then click Add. The mirror session is
displayed in the text box.
Admin Tab - Cable Test
To test the connection quality of an attached cable, click on the Test button for the port. Note that the cable needs
to be connected at both ends, otherwise the test will fail.
Port. This is the port to which the cable is connected.
Test Result. This is the test result. OK indicates that the cable passed the test. No Cable means there is no cable
connected to the port. Open Cable means the cable is connected on only one side. Short Cable indicates that a
short has occurred in the cable. Undefined indicates that the test could not be properly performed.
Cable Fault Distance. This is the distance from the port at which the cable error occurred.
Last Update. This is the last time the port was tested.
Figure 5-58: Admin - Cable Test
Test. Click the Test button to perform the test.
Admin Tab - Ping
You can use a ping to see if another site on the network can be reached. Ping sends ICMP echo request packets
to another node on the network. Enter the IP address or host name of the device you want to ping, then click Go.
The ping results are displayed in the Ping Status text box.
The following are some common displayed results of a ping:
•
•
•
•
Normal response - The normal response occurs in one to ten seconds, depending on network traffic.
Destination does not respond - If the host does not respond, a “timeout” appears in ten seconds.
Destination unreachable - The gateway for this destination indicates that the destination is unreachable.
Network or host unreachable - The gateway found no corresponding entry in the route table
Figure 5-59: Admin - Ping
Chapter 5: Using the Web-based Utility for Configuration
Admin Tab - Cable Test
75
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Admin Tab - Save Configuration
Downloads or uploads Switch configuration files from a TFTP server. The Switch allows the start-up configuration
to be saved or restored from a TFTP server. You must specify “Upgrade” to download a new configuration file or
“Backup” to save a configuration file to the server.
Select Upgrade or Backup. Enter the IP address of the TFTP server, specify the name of the configuration file on
the server, and then click Save Settings.
Figure 5-60: Admin - Save Configuration
Admin Tab - Jumbo Frame
The Switch provides more efficient throughput for large sequential data transfers by supporting jumbo frames up
to 10240 bytes on the Gigabit ports and mini jumbo frames on the 10/100Mbps ports. Compared to standard
Ethernet frames that run only up to 1.5 KB, using jumbo frames significantly reduces the per-packet overhead
required to process protocol encapsulation fields.
To use jumbo frames, both the source and destination end nodes (such as a computer or server) must support
this feature. Also, when the connection is operating at full duplex, all switches in the network between the two
end nodes must be able to accept the extended frame size. And for half-duplex connections, all devices in the
collision domain would need to support jumbo frames.
Enabling jumbo frames limits the maximum threshold for broadcast storm control to 64 packets per second.
Figure 5-61: Admin - Jumbo Frame
Chapter 5: Using the Web-based Utility for Configuration
Admin Tab - Save Configuration
76
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Admin Tab - Firmware Upgrade
Downloads or uploads Switch firmware files from a TFTP server. The Switch allows the runtime software and
diagnostic boot files to be upgraded. You must specify “Upgrade” to download a new firmware file or “Backup” to
save a firmware file to the server. Select the Upgrade or Backup radio button, then the file type from the drop-
down menu, either Software Image or Boot Code. Enter the IP address of the TFTP server, specify the file name of
the software on the server, and then click Save Settings.
Figure 5-62: Admin - Firmware Upgrade
Admin Tab - HTTP Upgrade
Download new Switch runtime software from the local web management PC. Enter the file name of the software
or use the Browse button to locate the file on the PC, then click Save Settings.
Figure 5-63: Admin - HTTP Upgrade
Chapter 5: Using the Web-based Utility for Configuration
Admin Tab - Jumbo Frame
77
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Admin Tab - Reboot
The Reboot screen resets the device. The device configuration is automatically saved before the device is
rebooted.
Figure 5-64: Admin - Reboot
Admin Tab - Factory Default
The Factory Reset screen restores the Switch’s factory default settings. Click the Reset to Factory Default
Configuration button, then click OK to confirm and restart the Switch.
NOTE: Restoring the factory defaults will erase all configuration settings that you have made.
You can save a backup of your current configuration settings from the Admin - Save Configuration
screen.
Figure 5-65: Admin - Factory Defaults
Chapter 5: Using the Web-based Utility for Configuration
Admin Tab - Reboot
78
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
AppendixA:AboutGigabitEthernetandFiberOpticCabling
Gigabit Ethernet
Gigabit Ethernet runs at speeds of 1Gbps (Gigabit per second), ten times faster than 100Mbps Fast Ethernet, but
it still integrates seamlessly with 100Mbps Fast Ethernet hardware. Users can connect Gigabit Ethernet hardware
with either fiber optic cabling or copper Category 5e cabling, with fiber optics more suited for network
backbones. As the Gigabit standard gradually integrates into existing networks, current computer applications
will enjoy faster access time for network data, hardware, and Internet connections.
Fiber Optic Cabling
Fiber optic cabling is made from flexible, optically efficient strands of glass and coated with a layer of rubber
tubing, fiber optics use photons of light instead of electrons to send and receive data. Although fiber is physically
capable of carrying terabits of data per second, the signaling hardware currently on the market can handle no
more than a few gigabits of data per second.
Fiber cables come with two main connector types. The most commonly used fiber optic cable is multi-mode fiber
cable (MMF), with a 62.5 micron fiber optic core. Single-mode fiber cabling is somewhat more efficient than
multi-mode but far more expensive, due to its smaller optic core that helps retain the intensity of traveling light
signals. A fiber connection always require two fiber cables: one transmits data, and the other receives it.
Each fiber optic cable is tipped with a connector that fits into a fiber port on a network adapter, hub, or switch. In
the USA, most cables use a square SC connector that slides and locks into place when plugged into a port or
connected to another cable. In Europe, the round ST connector is more prevalent.
You must use the Linksys MGBT1, MGBSX1, or MGBLH1 mini-GBIC modules with the Linksys Gigabit Switches.
The MGBSX1 and the MGBLH1 require fiber cabling with LC connectors, and the MGBT1 requires a Category 5e
Ethernet cable with an RJ-45 connector.
Appendix A: About Gigabit Ethernet and Fiber Optic Cabling
Gigabit Ethernet
79
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Appendix B: Windows Help
Almost all networking products require Microsoft Windows. Windows is the most used operating system in the
world and comes with many features that help make networking easier. These features can be accessed through
Windows Help and are described in this appendix.
TCP/IP
Before a computer can communicate within a network, TCP/IP must be enabled. TCP/IP is a set of instructions, or
protocol, all PCs follow to communicate over a network. This is true for wireless networks as well. Your PCs will
not be able to utilize wireless networking without having TCP/IP enabled. Windows Help provides complete
instructions on enabling TCP/IP.
Shared Resources
If you wish to share printers, folder, or files over your network, Windows Help provides complete instructions on
utilizing shared resources.
Network Neighborhood/My Network Places
Other PCs on your network will appear under Network Neighborhood or My Network Places (depending upon the
version of Windows you're running). Windows Help provides complete instructions on adding PCs to your
network.
Appendix B: Windows Help
80
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Appendix C: Downloading using Xmodem
Startup Menu Procedures
The Startup menu can be entered when booting the device. There is a two second window of time to enter the
Startup Menu immediately after the POST test. The menu can be accessed directly from a terminal connected to
the console port. The Startup menu procedures can be done using the ASCII terminal or Windows HyperTerminal.
The software download procedure is performed when a new version must be downloaded to replace corrupted
files, update or upgrade the system software. To download software from the Startup menu:
To enter the Startup menu:
1. Power off your computer and Switch.
2. Connect the provided null modem cable from the COM port on your computer to the Console port on the
Switch.
3. Power on your computer and launch HyperTerminal, follow the instructions in Chapter 4: Using the Console
Interface for Configuration to configure HyperTerminal to connect to the Switch.
4. Power on the Switch and watch for the POST done message: Done All Pass.
Figure C-1: Interface
5. When the POST done message appears, press and hold Ctrl and press the U key to access the Xmodem
interface.
6. Check that the switch has sufficient flash memory space for the new code file before starting the download.
You can store a maximum of only two runtime and two diagnostic code files in the switch’s flash memory. Use
the [D]elete File command to remove a runtime or diagnostic file.
7. Press <X> to start to download the new code file. If using Windows HyperTerminal, click the “Transfer”
button, and then click “Send File....” Select the XModem Protocol and then use the “Browse” button to select
the required firmware code file from your PC system. The “Xmodem file send” window displays the progress
of the download procedure. Note: The download file must be a valid binary software file from Linksys for the
target switch.
8. After the file has been downloaded, you are prompted with “Update Image File:” to specify the type of code
file. Press <R> for runtime code, <D> for diagnostic code, or,<L> for loader code.
Figure C-2: Send File
Appendix C: Downloading using Xmodem
Startup Menu Procedures
81
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Caution: If you select <L> for loader code, be sure the file is a valid loader code file for the switch. If you
download an invalid file, the switch will not be able to boot. Unless absolutely necessary, do not attempt to
download loader code files. Press Send and the software is downloaded.
9. Specify a name for the downloaded code file. File names are case-sensitive, should be from 1 to 31
characters, not contain slashes (\ or /), and the leading letter of the file name should not be a period (.). (Valid
characters: A-Z, a-z, 0-9, “.”, “-”, “_”)
10. To set the new downloaded file as the startup file, use the [S]et Startup File menu option.
11. Press <Q> to quit the firmware-download mode and boot the switch.
After quitting, the device will reboot automatically.
Figure C-3: Browse
Figure C-4: Sending File
Appendix C: Downloading using Xmodem
Startup Menu Procedures
82
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Appendix D: Glossary
This glossary contains some basic networking terms you may come across when using this product. For more
advanced terms, see the complete Linksys glossary at http://www.linksys.com/glossary.
Access Mode - Specifies the method by which user access is granted to the system.
Access Point - A device that allows wireless-equipped computers and other devices to communicate with a
wired network. Also used to expand the range of a wireless network.
Access Profiles - Allows network managers to define profiles and rules for accessing the device. Access to
management functions can be limited to user groups, which are defined by the following criteria:
•
•
Ingress interfaces.
Source IP address and/or Source IP subnets.
ACE - Filters in Access Control Lists (ACL) that determine which network traffic is forwarded. An ACE is based on
the following criteria:
•
•
•
•
•
•
•
Protocol
Protocol ID
Source Port
Destination Port
Wildcard Mask
Source IP Address
Destination IP Address
ACL (Access Control List) - Access Control Lists are used to grant, deny, or limit access devices, features, or
applications.
Auto-negotiation - Allows 10/100 Mbps or 10/100/1000 Mbps Ethernet ports to automatically establish the
optimal duplex mode, flow control, and speed.
Back Pressure - A mechanism used with Half Duplex mode that enables a port not to receive a message.
Appendix D: Glossary
83
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Bandwidth - The transmission capacity of a given device or network.
Bandwidth Assignments - Indicates the amount of bandwidth assigned to a specific application, user, and/or
interface.
Baud - Indicates the number of signaling elements transmitted each second.
Best Effort - Indicates that traffic is assigned to the lowest priority queue, and packet delivery is not guaranteed.
Bit - A binary digit.
Boot - To start a device and cause it to start executing instructions.
Browser - An application program that provides a way to look at and interact with all the information on the
World Wide Web.
Bridge - A device that connect two networks. Bridges are hardware specific, however they are protocol
independent. Bridges operate at Layer 1 and Layer 2 levels.
Broadcast Domain - Devices sets that receive broadcast frames originating from any device within a designated
set. Routers bind Broadcast domains, because routers do not forward broadcast frames.
Broadcast Storm - An excessive amount of broadcast messages simultaneously transmitted across a network
by a single port. Forwarded message responses are heaped onto the network, overloading network resources or
causing the network to time out.
Burst - A packet transmission at faster than normal rates. Bursts are limited in time and only occur under
specific conditions.
Burst Size - Indicates the burst size transmitted at a faster than normal rate.
Byte - A unit of data that is usually eight bits long
Cable Modem - A device that connects a computer to the cable television network, which in turn connects to the
Internet.
CBS (Committed Burst Size) - Indicates the maximum number of data bits transmitted within a specific time
interval.
CIR (Committed Information Rate) - The data rate is averaged over a minimum time increment.
Class Maps - An aspect of Quality of Service system that is comprised of an IP ACL and/or a MAC ACL. Class
maps are configured to match packet criteria, and are matched to packets in a first-fit fashion.
Appendix D: Glossary
84
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Combo Ports - A single logical port with two physical connections, including an RJ-45 connection and a SFP
connection.
Communities - Specifies a group of users which retain the same system access rights.
CoS (Class of Service) - The 802.1p priority scheme. CoS provides a method for tagging packets with priority
information. A CoS value between 0-7 is added to the Layer II header of packets, where zero is the lowest priority
and seven is the highest.
DDNS (Dynamic Domain Name System) - Allows the hosting of a website, FTP server, or e-mail server with a
fixed domain name (e.g., www.xyz.com) and a dynamic IP address.
Default Gateway - A device that forwards Internet traffic from your local area network.
DHCP (Dynamic Host Configuration Protocol) - A networking protocol that allows administrators to assign
temporary IP addresses to network computers by “leasing” an IP address to a user for a limited amount of time,
instead of assigning permanent IP addresses.
DHCP Clients - An Internet host using DHCP to obtain configuration parameters, such as a network address.
DHCP Server - An Internet host that returns configuration parameters to DHCP clients.
DNS (Domain Name Server) - The IP address of your ISP's server, which translates the names of websites into IP
addresses.
Domain - A specific name for a network of computers.
Download - To receive a file transmitted over a network.
DSL (Digital Subscriber Line) - An always-on broadband connection over traditional phone lines.
DSCP (DiffServe Code Point) provides a method of tagging IP packets with QoS priority information.
Dynamic IP Address - A temporary IP address assigned by a DHCP server.
EIGRP (Enhanced Interior Gateway Routing Protocol) - Provides fast convergence, support for variable-length
subnet mask, and supports multiple network layer protocols.
Encryption - Encoding data transmitted in a network.
Ethernet - IEEE standard network protocol that specifies how data is placed on and retrieved from a common
transmission medium.
Firmware - The programming code that runs a networking device.
Appendix D: Glossary
85
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Flow Control - Enables lower speed devices to communicate with higher speed devices. This is implemented by
the higher speed device refraining from sending packets.
FTP (File Transfer Protocol) - A protocol used to transfer files over a TCP/IP network.
Full Duplex - The ability of a networking device to receive and transmit data simultaneously.
GARP (General Attributes Registration Protocol) - Registers client stations into a multicast domain.
Gateway - A device that interconnects networks with different, incompatible communications protocols.
GBIC (GigaBit Interface Converter) - A hardware module used to attach network devices to fiber-based
transmission systems. GBIC converts the serial electrical signals to serial optical signals and vice versa.
GVRP (GARP VLAN Registration Protocol) - Registers client stations into a VLANs.
Half Duplex - Data transmission that can occur in two directions over a single line, but only one direction at a
time.
HTTP (HyperText Transport Protocol) - The communications protocol used to connect to servers on the World
Wide Web.
HTTPS (HyperText Transport Protocol Secure) - An extension to the standard HTTP protocol that provides
confidentiality by encrypting the traffic from the website. By default this protocol uses TCP port 443.
ICMP (Internet Control Message Protocol) - Allows the gateway or destination host to communicate with the
source host. For example, to report a processing error.
IGMP (Internet Group Management Protocol) - Allows hosts to notify their local switch or router that they want to
receive transmissions assigned to a specific multicast group.
IP (Internet Protocol) - A protocol used to send data over a network.
IP Address - The address used to identify a computer or device on a network.
IPCONFIG - A Windows 2000 and XP utility that displays the IP address for a particular networking device.
IPSec (Internet Protocol Security) - A VPN protocol used to implement secure exchange of packets at the IP layer.
ISP (Internet Service Provider) - A company that provides access to the Internet.
Jumbo Frames - Enable transporting identical data in fewer frames. Jumbo Frames reduce overhead, lower
processing time, and ensure fewer interrupts.
LAG (Link Aggregated Group) - Aggregates ports or VLANs into a single virtual port or VLAN.
Appendix D: Glossary
86
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
LAN - The computers and networking products that make up your local network.
MAC (Media Access Control) Address - The unique address that a manufacturer assigns to each networking
device.
Mask - A filter that includes or excludes certain values, for example parts of an IP address.
Mbps (MegaBits Per Second) - One million bits per second; a unit of measurement for data transmission.
MD5 (Message Digest 5) - An algorithm that produces a 128-bit hash. MD5 is a variation of MD4, and increases
MD4 security. MD5 verifies the integrity of the communication and authenticates the origin of the communication.
MDI (Media Dependent Interface) A cable used for end stations.
MDIX (Media Dependent Interface with Crossover) - A cable used for hubs and switches.
MIB (Management Information Base) - MIBs contain information describing specific aspects of network
components.
Multicast - Transmits copies of a single packet to multiple ports.
Network - A series of computers or devices connected for the purpose of data sharing, storage, and/or
transmission between users.
NMS (Network Management System) - An interface that provides a method of managing a system.
OID (Object Identifier) - Used by SNMP to identify managed objects. In the SNMP Manager/Agent network
management paradigm, each managed object must have an OID to identify it.
Packet - A unit of data sent over a network.
Ping (Packet INternet Groper) - An Internet utility used to determine whether a particular IP address is online.
Policing - Determines if traffic levels are within a specified profile. Policing manages the maximum traffic rate
used to send or receive packets on an interface.
Port - The connection point on a computer or networking device used for plugging in cables or adapters.
Port Mirroring - Monitors and mirrors network traffic by forwarding copies of incoming and outgoing packets
from one port to a monitoring port.
Power over Ethernet (PoE) - A technology enabling an Ethernet network cable to deliver both data and power.
Appendix D: Glossary
87
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
QoS (Quality of Service) -Provides policies that contain sets of filters (rules). QoS allows network managers to
decide how and what network traffic is forwarded according to priorities, application types, and source and
destination addresses.
RADIUS (Remote Authentication Dial-In User Service) - A protocol that uses an authentication server to control
network access.
RJ-45 (Registered Jack-45) - An Ethernet connector that holds up to eight wires.
RMON (Remote Monitoring) - Provides network information to be collected from a single workstation.
Router - A networking device that connects multiple networks together.
RSTP (Rapid Spanning Tree Protocol) - Detects and uses network topologies that allow a faster convergence of
the spanning tree, without creating forwarding loops.
Server - Any computer whose function in a network is to provide user access to files, printing, communications,
and other services.
SMTP (Simple Mail Transfer Protocol) - The standard e-mail protocol on the Internet.
SNMP (Simple Network Management Protocol) - A widely used network monitoring and control protocol.
SSH - Secure Shell. A utility that uses strong authentication and secure communications to log in to another
computer over a network.
SSL (Secure Socket Layer) - Encryption technology for the Internet used to provide secure transactions, such as
the transmission of credit card numbers for e-commerce.
Static IP Address - A fixed address assigned to a computer or device that is connected to a network.
STP (Spanning Tree Protocol) - Prevents loops in network traffic. The Spanning Tree Protocol (STP) provides tree
topography for any arrangement of bridges. STP provides one path between end stations on a network,
eliminating loops.
Subnet (Sub-network) - Subnets are portions of a network that share a common address component. In TCP/IP
networks, devices that share a prefix are part of the same subnet. For example, all devices with a prefix of
157.100.100.100 are part of the same subnet.
Subnet Mask - An address code that determines the size of the network.
Switch - Filters and forwards packets between LAN segments. Switches support any packet protocol type.
Appendix D: Glossary
88
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
TACACS+ (Terminal Access Controller Access Control System Plus) - Proprietary Cisco enhancement to Terminal
Access Controller Access Control System (TACACS). Provides additional support for authentication, authorization,
and accounting.
TCP (Transmission Control Protocol) - A network protocol for transmitting data that requires acknowledgement
from the recipient of data sent.
TCP/IP (Transmission Control Protocol/Internet Protocol) - A set of instructions PCs use to communicate over a
network.
Telnet - A user command and TCP/IP protocol used for accessing remote PCs.
TFTP (Trivial File Transfer Protocol) - A version of the TCP/IP FTP protocol that has no directory or password
capability.
Throughput - The amount of data moved successfully from one node to another in a given time period.
Trunking - Link Aggregation. Optimizes port usage by linking a group of ports together to form a single trunk
(aggregated groups).
TX Rate - Transmission Rate.
UDP (User Data Protocol) - Communication protocol that transmits packets but does not guarantee their delivery.
Upgrade - To replace existing software or firmware with a newer version.
Upload - To transmit a file over a network.
URL (Uniform Resource Locator) - The address of a file located on the Internet.
VLAN (Virtual Local Area Networks) - Logical subgroups that constitute a Local Area Network (LAN). This is done
in software rather than defining a hardware solution.
WAN (Wide Area Network) - Networks that cover a large geographical area.
Wildcard Mask - Specifies which IP address bits are used, and which bits are ignored. A wild card mask of
255.255.255.255 indicates that no bit is important. A wildcard of 0.0.0.0 indicates that all the bits are important.
For example, if the destination IP address is 149.36.184.198 and the wildcard mask is 255.36.184.00, the first
two bits of the IP address are used, while the last two bits are ignored.
Appendix D: Glossary
89
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Appendix E: Specifications
Model
SRW2024P
Ports
24 RJ-45 connectors for 10BASE-T, 100BASE-TX and 1000BASE-T with 4 shared SFP slots
UTP CAT 5 or better for 10BASE-T/100BASE-TX, UTP CAT 5e or better for 1000BASE-T
System, Link/Act, PoE
Cabling Type
LEDs
Performance
Switching Capacity
MAC table size
Number of VLANs
Management
Web User Interface
SNMP
48 Gbps, non-blocking
8K
256 - Static (Today) and Dynamic (Future)
Built-in Web UI for easy browser-based configuration (HTTP/HTTPS)
SNMP version v1, v2c with support for traps
SNMP MIBs
RFC1213 MIB-2, RFC2863 Interface MIB, RFC2665 Ether-like MIB, RFC1493 Bridge MIB,
RFC2674 Extended Bridge MIB (P-bridge, Q-bridge), RFC2819 RMON MIB (groups 1,2,3,9 only),
RFC2737 Entity MIB, RFC 2618 RADIUS Client MIB
RMON
Embedded Remote Monitoring (RMON) software agent supports four RMON groups
(history, statistics, alarms, and events) for enhanced traffic management, monitoring, and analysis
Firmware Upgrade
Web Browser upgrade (HTTP)
90
Appendix E: Specifications
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
TFTP upgrade
Port Mirroring
Traffic on a port can be mirrored to another port for analysis with a network analyzer or RMON probe
Other Management
RFC854 Telnet (Menu-driven configuration)
Secure Shell (SSH) and Telnet Management
Telnet Client
SSL security for Web UI
Switch Audit Log
DHCP Client
BootP
SNTP
Xmodem upgrade
Cable Diagnostics
PING
Security features
IEEE 802.1x
802.1x - RADIUS Authentication. MD5 Encryption
Access Control
IP and MAC ACLs
Management ACL
Port security (MAC filtering)
Availability
Link Aggregation
Link Aggregation using IEEE 802.3ad LACP
Up to 8 ports in up to 8 LAGs
Storm Control
Spanning Tree
Broadcast, Muticast, and Unknown Unicast
IEEE 802.1d Spanning Tree, IEEE 802.1w Rapid Spanning Tree
91
Appendix E: Specifications
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
IGMP Snooping
IGMP (v1/v2) snooping provides for fast client joins and leaves of multicast streams
and limits bandwidth-intensive video traffic to only the requestors
QoS
Priority levels
Scheduling
Class of Service
4 Hardware queues
Priority Queueing and Weighted Round Robin (WRR)
Port-based
802.1p VLAN priority based
IP TOS/DSCP based CoS
IPv6 Traffic Class based CoS
Rate Limiting
Layer 2
Ingress Policer, Egress Shaper
VLAN
Port-based and 802.1q based VLANs
Management VLAN
HOL Blocking
Jumbo frame
Standards
Head of line blocking prevention
Supports frames up to 10K byte frames
IEEE 802.3-2005 Ethernet, IEEE 802.3u Fast Ethernet, IEEE 802.3z Gigabit Ethernet, IEEE 802.ab Gigabit Ethernet, Flow Control
ENVIRONMENTAL
Device Dimensions
W x H x D
16.93" x 1.75" x 13.78"
430 x 44.45 x 350 mm
8.60 lb (4.47 kg)
Weight
92
Appendix E: Specifications
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Power
Internal switching power
Power Input
Certification
100 - 240V ~ 3A 50-60Hz
FCC Part 15 Class A, CE Class A, UL, cUL, CE mark, CB
Operating Temperature 32 to 104°F (0 to 50°C)
Storage Temperature -4 to 158°F (-20 to 70°C)
Operating Humidity
Storage Humidity
10% to 90%
10% to 95%
93
Appendix E: Specifications
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Appendix F: Warranty Information
LIMITED WARRANTY
Linksys warrants to You that, for a period of five years (the “Warranty Period”), your Linksys Product will be substantially
free of defects in materials and workmanship under normal use. Your exclusive remedy and Linksys' entire liability under
this warranty will be for Linksys at its option to repair or replace the Product or refund Your purchase price less any
rebates. This limited warranty extends only to the original purchaser.
If the Product proves defective during the Warranty Period call Linksys Technical Support in order to obtain a Return
Authorization Number, if applicable. BE SURE TO HAVE YOUR PROOF OF PURCHASE ON HAND WHEN CALLING. If You are
requested to return the Product, mark the Return Authorization Number clearly on the outside of the package and include a
copy of your original proof of purchase. RETURN REQUESTS CANNOT BE PROCESSED WITHOUT PROOF OF PURCHASE. You
are responsible for shipping defective Products to Linksys. Linksys pays for UPS Ground shipping from Linksys back to You
only. Customers located outside of the United States of America and Canada are responsible for all shipping and handling
charges.
ALL IMPLIED WARRANTIES AND CONDITIONS OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE ARE LIMITED
TO THE DURATION OF THE WARRANTY PERIOD. ALL OTHER EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND
WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF NON-INFRINGEMENT, ARE DISCLAIMED. Some jurisdictions do not
allow limitations on how long an implied warranty lasts, so the above limitation may not apply to You. This warranty gives
You specific legal rights, and You may also have other rights which vary by jurisdiction.
This warranty does not apply if the Product (a) has been altered, except by Linksys, (b) has not been installed, operated,
repaired, or maintained in accordance with instructions supplied by Linksys, or (c) has been subjected to abnormal
physical or electrical stress, misuse, negligence, or accident. In addition, due to the continual development of new
techniques for intruding upon and attacking networks, Linksys does not warrant that the Product will be free of
vulnerability to intrusion or attack.
TO THE EXTENT NOT PROHIBITED BY LAW, IN NO EVENT WILL LINKSYS BE LIABLE FOR ANY LOST DATA, REVENUE OR PROFIT,
OR FOR SPECIAL, INDIRECT, CONSEQUENTIAL, INCIDENTAL OR PUNITIVE DAMAGES, REGARDLESS OF THE THEORY OF
LIABILITY (INCLUDING NEGLIGENCE), ARISING OUT OF OR RELATED TO THE USE OF OR INABILITY TO USE THE PRODUCT
(INCLUDING ANY SOFTWARE), EVEN IF LINKSYS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. IN NO EVENT
WILL LINKSYS’ LIABILITY EXCEED THE AMOUNT PAID BY YOU FOR THE PRODUCT. The foregoing limitations will apply even if
any warranty or remedy provided under this Agreement fails of its essential purpose. Some jurisdictions do not allow the
exclusion or limitation of incidental or consequential damages, so the above limitation or exclusion may not apply to You.
Please direct all inquiries to: Linksys, P.O. Box 18558, Irvine, CA 92623.
94
Appendix F: Warranty Information
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Appendix G: Regulatory Information
FCC Statement
This product has been tested and complies with the specifications for a Class B digital device, pursuant to Part 15
of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a
residential installation. This equipment generates, uses, and can radiate radio frequency energy and, if not
installed and used according to the instructions, may cause harmful interference to radio communications.
However, there is no guarantee that interference will not occur in a particular installation. If this equipment does
cause harmful interference to radio or television reception, which is found by turning the equipment off and on,
the user is encouraged to try to correct the interference by one or more of the following measures:
•
•
•
•
Reorient or relocate the receiving antenna
Increase the separation between the equipment or devices
Connect the equipment to an outlet other than the receiver's
Consult a dealer or an experienced radio/TV technician for assistance
Safety Notices
Caution: To reduce the risk of fire, use only No.26 AWG or larger telecommunication line cord.
Do not use this product near water, for example, in a wet basement or near a swimming pool.
Avoid using this product during an electrical storm. There may be a remote risk of electric shock from lightning.
Industry Canada (Canada)
This device complies with Industry Canada ICES-003 rule.
Cet appareil est conforme à la norme NMB003 d'Industrie Canada.
IC Statement
Operation is subject to the following two conditions:
1. This device may not cause interference and
2. This device must accept any interference, including interference that may cause undesired operation of the
device.
Appendix G: Regulatory Information
95
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Règlement d’Industry Canada
Le fonctionnement est soumis aux conditions suivantes:
1. Ce périphérique ne doit pas causer d'interférences;
2. Ce périphérique doit accepter toutes les interférences reçues, y compris celles qui risquent d'entraîner un
fonctionnement indésirable.
User Information for Consumer Products Covered by EU Directive 2002/96/EC on Waste Electric and Electronic
Equipment (WEEE)
This document contains important information for users with regards to the proper disposal and recycling of
Linksys products. Consumers are required to comply with this notice for all electronic products bearing the
following symbol:
Appendix G: Regulatory Information
96
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Appendix G: Regulatory Information
97
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Appendix G: Regulatory Information
98
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Appendix G: Regulatory Information
99
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
For more information, visit www.linksys.com.
Appendix G: Regulatory Information
100
Download from Www.Somanuals.com. All Manuals Search And Download.
24-Port 10/100/1000 Gigabit Switch with Webview and PoE
Appendix H: Contact Information
Need to contact Linksys?
Visit us online for information on the latest products and updates
to your existing products at:
http://www.linksys.com or
ftp.linksys.com
Can't find information about a product you want to buy
on the web? Do you want to know more about networking
with Linksys products? Give our advice line a call at:
Or fax your request in to:
800-546-5797 (LINKSYS)
949-823-3002
If you experience problems with any Linksys product,
you can call us at:
800-326-7114
Don't wish to call? You can e-mail us at:
If any Linksys product proves defective during its warranty period,
you can call the Linksys Return Merchandise Authorization
department for obtaining a Return Authorization Number at:
(Details on Warranty and RMA issues can be found in the Warranty
Information section in this Guide.)
949-823-3000
101
Appendix H: Contact Information
Download from Www.Somanuals.com. All Manuals Search And Download.
|