All rights reserved. No part of this publication may be reproduced without prior written permission from Allied Telesis, Inc.
Microsoft and Internet Explorer are registered trademarks of Microsoft Corporation. Netscape Navigator is a registered trademark of
Netscape Communications Corporation. All other product names, company names, logos or other designations mentioned herein are
trademarks or registered trademarks of their respective owners.
Allied Telesis, Inc. reserves the right to make changes in specifications and other information contained in this document without prior
written notice. The information provided herein is subject to change without notice. In no event shall Allied Telesis, Inc. be liable for any
incidental, special, indirect, or consequential damages whatsoever, including but not limited to lost profits, arising out of or related to this
manual or the information contained herein, even if Allied Telesis, Inc. has been advised of, known, or should have known, the possibility of
such damages.
How This Guide is Organized........................................................................................................................... 20
Where to Go First ............................................................................................................................................. 23
Starting a Management Session ...................................................................................................................... 24
Online Support ........................................................................................................................................... 27
Email and Telephone Support.................................................................................................................... 27
Configuring the Switch’s Name, Location, and Contact ................................................................................... 32
Changing the Manager and Operator Passwords ............................................................................................ 35
Changing the Manager or Operator Password .......................................................................................... 35
Resetting the Manager Password .............................................................................................................. 37
Setting the System Time .................................................................................................................................. 38
Setting the System Time Manually............................................................................................................. 39
Setting the System Time from an SNTP or NTP Server ............................................................................ 40
Rebooting the Switch........................................................................................................................................ 43
Configuring the Console Startup Mode ............................................................................................................ 45
Configuring the Console Timer......................................................................................................................... 46
Configuring the Telnet Server........................................................................................................................... 47
Setting the Baud Rate of the Serial Terminal Port............................................................................................ 48
Pinging a Remote System ................................................................................................................................ 49
Returning the AT-S63 Management Software to the Factory Default Values .................................................. 50
Displaying Hardware and Software Information ............................................................................................... 52
Displaying System Hardware Information ........................................................................................................ 55
Displaying Uplink Port Information ................................................................................................................... 57
Chapter 2: Port Parameters .......................................................................................................................... 61
Displaying Port Status ...................................................................................................................................... 62
Configuring Port Parameters ............................................................................................................................ 65
Configuring Head of Line Blocking ................................................................................................................... 69
Configuring Flow Control and Back Pressure................................................................................................... 71
Configuring Port Filtering.................................................................................................................................. 73
Setting Up Rate Limiting................................................................................................................................... 75
Resetting a Port................................................................................................................................................ 77
Forcing Port Renegotiation............................................................................................................................... 78
Resetting the Port Configuration to the Default Settings .................................................................................. 79
3
Contents
Displaying Port Statistics .................................................................................................................................. 80
Clearing Port Statistics...................................................................................................................................... 83
Setting a Switch’s Enhanced Stacking Status .................................................................................................. 86
Selecting a Switch in an Enhanced Stack......................................................................................................... 88
Returning to the Master Switch ......................................................................................................................... 91
Displaying the Enhanced Stacking Status ........................................................................................................ 92
Chapter 4: SNMPv1 and SNMPv2c ............................................................................................................... 93
Enabling or Disabling SNMP Management....................................................................................................... 94
Setting the Authentication Failure Trap............................................................................................................. 95
Creating an SNMP Community String .............................................................................................................. 96
Modifying a Community String .......................................................................................................................... 99
Deleting a Community String .......................................................................................................................... 103
Displaying the SNMP Community Strings....................................................................................................... 104
Chapter 5: MAC Address Table .................................................................................................................. 105
Displaying the MAC Address Tables .............................................................................................................. 106
Adding Static Unicast and Multicast MAC Addresses.....................................................................................110
Deleting Unicast and Multicast MAC Addresses............................................................................................. 112
Deleting All Dynamic MAC Addresses ............................................................................................................ 113
Changing the Aging Time ...............................................................................................................................114
Chapter 6: Static Port Trunks .....................................................................................................................115
Creating a Static Port Trunk............................................................................................................................ 116
Modifying a Static Port Trunk .......................................................................................................................... 120
Deleting a Static Port Trunk ............................................................................................................................ 123
Chapter 7: LACP Port Trunks ..................................................................................................................... 125
Enabling or Disabling LACP............................................................................................................................ 126
Setting the LACP System Priority ...................................................................................................................128
Creating an Aggregator................................................................................................................................... 129
Modifying an Aggregator................................................................................................................................. 132
Deleting an Aggregator ................................................................................................................................... 134
Displaying LACP Port and Aggregator Status ................................................................................................ 135
Chapter 8: Port Mirroring ............................................................................................................................ 137
Creating a Port Mirror .....................................................................................................................................138
Disabling a Port Mirror .................................................................................................................................... 140
Modifying a Port Mirror....................................................................................................................................141
Displaying the Port Mirror ...............................................................................................................................142
Chapter 9: File System ................................................................................................................................145
Working with Boot Configuration Files ............................................................................................................146
Creating a Boot Configuration File ...........................................................................................................146
Setting the Active Boot Configuration File ................................................................................................ 149
Viewing a Boot Configuration File ............................................................................................................ 151
Editing a Boot Configuration File .............................................................................................................. 152
Copying a System File .................................................................................................................................... 154
Renaming a System File................................................................................................................................. 156
Deleting a System File .................................................................................................................................... 158
Displaying System Files .................................................................................................................................. 159
4
AT-S63 Management Software Menus User’s Guide
Listing All Files ......................................................................................................................................... 159
Listing Files on the Compact Flash Card ................................................................................................. 161
Working with Flash Memory ........................................................................................................................... 162
Displaying Information about the Flash Memory...................................................................................... 162
Formatting the Flash Memory .................................................................................................................. 163
Working with the Compact Flash Card ........................................................................................................... 164
Downloading a System File ............................................................................................................................ 182
Downloading a System File from a Local Management Session ............................................................. 184
Downloading a System File from a Remote Management Session ......................................................... 187
Uploading a System File................................................................................................................................. 190
Uploading a System File from a Local Management Session.................................................................. 191
Uploading a System File from a Remote Management Session.............................................................. 194
Chapter 11: Event Logs and the Syslog Client ......................................................................................... 197
Working with the Event Logs .......................................................................................................................... 198
Enabling or Disabling the Event Logs ...................................................................................................... 198
Displaying an Event Log .......................................................................................................................... 199
Modifying the Event Log Full Action......................................................................................................... 205
Clearing an Event Log.............................................................................................................................. 206
Saving an Event Log to a File .................................................................................................................. 206
Creating a Classifier ....................................................................................................................................... 220
Modifying a Classifier ..................................................................................................................................... 224
Deleting a Classifier........................................................................................................................................ 226
Deleting All Classifiers.................................................................................................................................... 227
Chapter 13: Access Control Lists .............................................................................................................. 231
Creating an ACL ............................................................................................................................................. 232
Modifying an ACL ...............................................................................................................
............................ 235
Deleting an ACL ............................................................................................................................................. 237
Deleting All ACLs............................................................................................................................................ 239
Chapter 14: Class of Service ...................................................................................................................... 243
Displaying Port CoS Priorities ......................................................................................................................... 250
Chapter 15: Quality of Service .................................................................................................................... 251
Creating a Flow Group ............................................................................................................................. 252
Modifying a Flow Group............................................................................................................................ 255
Deleting a Flow Group.............................................................................................................................. 256
Creating a Traffic Class ............................................................................................................................261
Modifying a Traffic Class .......................................................................................................................... 265
Deleting a Traffic Class ............................................................................................................................ 267
Creating a Policy ......................................................................................................................................271
Modifying a Policy..................................................................................................................................... 274
Deleting a Policy....................................................................................................................................... 275
Enabling or Disabling IGMP Snooping............................................................................................................ 300
Displaying a List of Host Nodes ......................................................................................................................301
Displaying a List of Multicast Routers .............................................................................................................303
Enabling or Disabling MLD Snooping ............................................................................................................. 309
Displaying a List of Host Nodes ......................................................................................................................310
Displaying a List of Multicast Routers .............................................................................................................312
Configuring the CIST Priority .......................................................................................................................... 445
Displaying the CIST Priority ............................................................................................................................ 447
Creating, Deleting, and Modifying MSTI IDs ................................................................................................... 449
Creating an MSTI ID................................................................................................................................. 449
Deleting an MSTI ID ................................................................................................................................. 450
Modifying an MSTI ID ...............................................................................................................................450
Adding, Removing, and Modifying VLAN Associations to MSTI IDs............................................................... 452
Adding or Removing a VLAN from an MSTI ID ........................................................................................ 452
Associating a VLAN to an MSTI ID...........................................................................................................453
Removing a VLAN from an MSTI ID.........................................................................................................454
Associating VLANs to an MSTI ID and Deleting All Associated VLANs................................................... 455
Clearing VLAN to MSTI Associations ....................................................................................................... 456
Configuring MSTP Port Settings ..................................................................................................................... 457
Configuring Generic MSTP Port Settings ................................................................................................. 457
Configuring MSTI-specific Port Parameters ............................................................................................. 460
Displaying the MSTP Port Configuration ........................................................................................................ 463
Displaying the MSTP Port State .....................................................................................................................465
Resetting MSTP to the Defaults......................................................................................................................468
Deleting a Port-based or Tagged VLAN .........................................................................................................487
Deleting All VLANs.......................................................................................................................................... 490
Selecting a VLAN Mode .................................................................................................................................. 516
Displaying VLAN Information .......................................................................................................................... 518
Creating a Protected Ports VLAN ................................................................................................................... 522
Modifying a Protected Ports VLAN ................................................................................................................. 525
Displaying a Protected Ports VLAN ................................................................................................................ 528
Deleting a Protected Ports VLAN.................................................................................................................... 530
8
AT-S63 Management Software Menus User’s Guide
Chapter 28: MAC Address-based VLANs .................................................................................................. 533
Creating a MAC Address-based VLAN .......................................................................................................... 534
Adding and Deleting MAC Addresses ............................................................................................................ 536
Adding and Deleting Egress Ports.................................................................................................................. 538
Deleting a MAC Address-based VLAN........................................................................................................... 540
Displaying MAC Address-based VLANs......................................................................................................... 542
Section VII: Internet Protocol Routing ................................................................. 545
Chapter 29: Internet Protocol Version 4 Routing Interfaces ................................................................... 547
Creating a New Routing Interface .................................................................................................................. 548
Modifying a Routing Interface......................................................................................................................... 551
Deleting a Routing Interface ........................................................................................................................... 554
Displaying the IP Address of the Local Interface............................................................................................ 555
Setting the Default Route or Default Gateway................................................................................................ 556
Setting the Local Interface.............................................................................................................................. 557
Setting the ARP Cache Timeout..................................................................................................................... 558
Section VIII: Port Security ..................................................................................... 559
Chapter 30: MAC Address-based Port Security ....................................................................................... 561
Configuring MAC Address Port Security ........................................................................................................ 562
Displaying Port Security Levels ...................................................................................................................... 566
Chapter 31: 802.1x Port-based Network Access Control ........................................................................ 569
Setting Port Roles........................................................................................................................................... 570
Enabling or Disabling 802.1x Port-based Network Access Control................................................................ 572
Configuring Authenticator Port Parameters.................................................................................................... 573
Configuring Supplicant Port Parameters ........................................................................................................ 579
Displaying the Port Access Parameters ......................................................................................................... 582
Chapter 32: Web Server .............................................................................................................................. 589
Configuring the Web Server ........................................................................................................................... 590
General Steps for Configuring the Web Server for Encryption....................................................................... 593
General Steps for a Self-signed Certificate.............................................................................................. 593
General Steps for a Public or Private CA Certificate................................................................................ 593
Creating an Encryption Key............................................................................................................................ 596
Deleting an Encryption Key ............................................................................................................................ 600
Modifying an Encryption Key .......................................................................................................................... 601
Exporting an Encryption Key .......................................................................................................................... 602
Importing an Encryption Key .......................................................................................................................... 605
Displaying the Encryption Keys ...................................................................................................................... 608
Chapter 34: PKI Certificates and SSL ........................................................................................................ 611
Creating a Self-signed Certificate................................................................................................................... 612
Adding a Certificate to the Database.............................................................................................................. 616
Modifying a Certificate .................................................................................................................................... 619
Deleting a Certificate ...................................................................................................................................... 622
Viewing a Certificate....................................................................................................................................... 624
Generating an Enrollment Request ................................................................................................................ 627
9
Contents
Installing CA Certificates onto a Switch ..........................................................................................................630
Viewing and Configuring the Maximum Number of Certificates......................................................................631
Displaying SSH Information ............................................................................................................................637
Chapter 36: TACACS+ and RADIUS Protocols .........................................................................................639
Enabling or Disabling Server-based Management Authentication.................................................................. 640
Configuring the TACACS+ Client.................................................................................................................... 642
Displaying the TACACS+ Settings..................................................................................................................644
Configuring the RADIUS Client ....................................................................................................................... 645
Displaying RADIUS Status and Settings.........................................................................................................648
Chapter 37: Management Access Control List .......................................................................................... 651
Enabling or Disabling the Management ACL .................................................................................................. 652
Creating an ACE ............................................................................................................................................. 654
Modifying an ACE ........................................................................................................................................... 656
Deleting an ACE ............................................................................................................................................. 658
Displaying the ACEs ....................................................................................................................................... 659
Index .............................................................................................................................................................. 661
10
Figures
Figure 1: System Administration Menu.................................................................................................................................32
Figure 2: System Configuration Menu ..................................................................................................................................33
Figure 3: Authentication Configuration Menu .......................................................................................................................35
Figure 5: Configure System Time Menu...............................................................................................................................39
Figure 6: System Utilities Menu............................................................................................................................................43
Figure 7: Console (Serial/Telnet) Configuration Menu .........................................................................................................45
Figure 8: System Information Menu......................................................................................................................................52
Figure 9: System Hardware Information Menu.....................................................................................................................55
Figure 10: Uplink Information Menu......................................................................................................................................57
Figure 11: GBIC/SFP Information Menu (Page 1)................................................................................................................58
Figure 12: GBIC/SFP Information Menu (Page 2)................................................................................................................59
Figure 13: Port Configuration Menu......................................................................................................................................62
Figure 14: Port Status Menu.................................................................................................................................................62
Figure 15: Port Configuration (Port) Menu............................................................................................................................65
Figure 16: Head of Line Blocking .........................................................................................................................................69
Figure 17: Flow Control Menu ..............................................................................................................................................72
Figure 20: Port Statistics Menu.............................................................................................................................................80
Figure 21: Display Port Statistics Menu................................................................................................................................81
Figure 22: Enhanced Stacking Menu ...................................................................................................................................86
Figure 24: Stacking Services Menu With List of Switches....................................................................................................89
Figure 25: Enhanced Stacking Menu ...................................................................................................................................92
Figure 27: Configure SNMPv1 & SNMPv2c Community Menu ............................................................................................96
Figure 28: Modify SNMP Community Menu .........................................................................................................................99
Figure 29: Display SNMP Community Menu ......................................................................................................................104
Figure 30: MAC Address Tables Menu...............................................................................................................................106
Figure 31: Display Unicast MAC Addresses Menu.............................................................................................................106
Figure 32: Display All Menu - Unicast MAC Addresses......................................................................................................107
Figure 33: Display All Menu - Multicast MAC Addresses ...................................................................................................108
Figure 34: MAC Addresses Configuration Menu ................................................................................................................110
Figure 35: Port Trunking and LACP Menu..........................................................................................................................116
Figure 36: Static Port Trunking Menu.................................................................................................................................117
Figure 41: Modify LACP (IEEE 8023ad) Aggregator Menu ................................................................................................132
Figure 42: LACP (IEEE 802.3ad Port Status Menu............................................................................................................135
Figure 43: LACP (IEEE 802.3ad) Aggregator Status Menu................................................................................................136
Figure 44: Port Mirroring Menu #1......................................................................................................................................138
Figure 45: Port Mirroring Menu #2......................................................................................................................................138
Figure 46: Port Mirroring Menu...........................................................................................................................................142
Figure 47: File Operations Menu ........................................................................................................................................147
Figure 48: View File Menu with Sample Boot Configuration File........................................................................................152
Figure 49: List Files Menu for Flash Memory and a Compact Flash Card .........................................................................160
Figure 50: List Files Menu for a Compact Flash Card ........................................................................................................161
.........................126
11
Figures
Figure 51: Display Flash Information Menu ........................................................................................................................162
Figure 52: Display Compact Flash Information Menu.........................................................................................................164
Figure 53: Set/Change Compact Flash Directory Menu .....................................................................................................166
Figure 54: Downloads and Uploads Menu..........................................................................................................................170
Figure 63: Event Log Menu ................................................................................................................................................198
Figure 64: Event Log Example in Normal Mode .................................................................................................................203
Figure 65: Event Log Example in Full Mode.......................................................................................................................204
Figure 69: Configure Log Outputs Menu with a Syslog Output Definition...........................................................................215
Figure 70: Syslog Output Configuration Menu for Selected Output ID ...............................................................................217
Figure 71: Security and Services Menu ..............................................................................................................................220
Figure 73: Create Classifier Menu (Page 1) .......................................................................................................................221
Figure 74: Create Classifier Menu (Page 2) .......................................................................................................................222
Figure 75: Show Classifiers Menu ......................................................................................................................................228
Figure 76: Display Classifier Details Menu (Page 1) ..........................................................................................................229
Figure 77: Display Classifier Details Menu (Page 2) ..........................................................................................................230
Figure 78: Access Control Lists (ACL) Menu......................................................................................................................232
Figure 80: Modify ACL Menu ..............................................................................................................................................235
Figure 81: Destroy ACL Menu ............................................................................................................................................237
Figure 82: Show ACLs Menu..............................................................................................................................................240
Figure 84: Class of Service (CoS) Menu ............................................................................................................................244
Figure 85: Configure Port COS Priorities Menu..................................................................................................................245
Figure 86: Map CoS Priority to Egress Queue Menu..........................................................................................................247
Figure 87: Configure Egress Scheduling Menu ..................................................................................................................248
Figure 88: Show Port CoS Priorities Menu .........................................................................................................................250
Figure 89: Quality of Service (QoS) menu..........................................................................................................................252
Figure 90: Flow Group Configuration Menu........................................................................................................................253
Figure 91: Create Flow Group Menu ..................................................................................................................................253
Figure 92: Modify Flow Group Menu...................................................................................................................................256
Figure 93: Destroy Flow Group Menu.................................................................................................................................257
Figure 94: Show Flow Groups Menu ..................................................................................................................................258
Figure 95: Display Flow Group Detail Menu .......................................................................................................................259
Figure 96: Traffic Class Configuration Menu ......................................................................................................................261
Figure 97: Create Traffic Class Menu.................................................................................................................................262
Figure 98: Modify Traffic Class Menu .................................................................................................................................266
Figure 99: Destroy Traffic Class Menu ...............................................................................................................................267
Figure 100: Show Traffic Classes Menu.............................................................................................................................268
Figure 101: Display Traffic Class Details Menu ..................................................................................................................269
Figure 105: Show Policies Menu ........................................................................................................................................276
Figure 106: Display Policy Details Menu ............................................................................................................................277
Figure 107: Denial of Service (DoS) Menu .........................................................................................................................280
Figure 108: LAN IP Subnet Menu.......................................................................................................................................280
Figure 109: SYN Flood Configuration Menu .......................................................................................................................282
Figure 110: Power Over Ethernet Configuration Menu.......................................................................................................284
12
AT-S63 Management Software Menus User’s Guide
Figure 111: PoE Global Configuration Menu......................................................................................................................284
Figure 112: PoE Port Configuration Menu..........................................................................................................................286
Figure 113: PoE Status Menu ............................................................................................................................................288
Figure 114: PoE Global Status Menu .................................................................................................................................289
Figure 115: PoE Summary Ports Status Menu...................................................................................................................290
Figure 116: PoE Summary Ports Status Menu...................................................................................................................291
Figure 120: View IGMP Multicast Hosts List Menu.............................................................................................................301
Figure 121: View IGMP Multicast Routers List Menu .........................................................................................................303
Figure 122: MLD Snooping Configuration Menu ................................................................................................................306
Figure 123: View MLD Multicast Hosts List Menu ..............................................................................................................310
Figure 124: View MLD Multicast Routers List Menu...........................................................................................................312
Figure 127: Configure SNMPv3 User Table Menu .............................................................................................................322
Figure 128: Modify SNMPv3 User Table Menu ..................................................................................................................326
Figure 129: Configure SNMPv3 View Table Menu .............................................................................................................332
Figure 151: Display SNMPv3 Community Table Menu ......................................................................................................415
Figure 152: Spanning Tree Configuration Menu.................................................................................................................420
Figure 153: STP Menu .......................................................................................................................................................423
Figure 154: STP Port Parameters Menu ............................................................................................................................426
Figure 155: Configure STP Port Settings Menu .................................................................................................................426
Figure 156: Display STP Port Configuration Menu.............................................................................................................428
Figure 158: RSTP Port Parameters Menu..........................................................................................................................433
Figure 159: Configure RSTP Port Settings Menu...............................................................................................................434
Figure 160: Display RSTP Port Configuration Menu ..........................................................................................................436
Figure 161: Display RSTP Port State Menu .......................................................................................................................437
Figure 162: MSTP Configuration Menu ..............................................................................................................................441
Figure 163: CIST Menu ......................................................................................................................................................445
Figure 165: VLAN-MSTI Association Menu........................................................................................................................453
Figure 166: MSTP Port Parameters Menu .........................................................................................................................458
Figure 167: Configure MSTP Port Settings Menu ..............................................................................................................458
Figure 168: Configure Per Spanning Tree Port Settings Menu ..........................................................................................461
Figure 169: Display MSTP Port Configuration Menu..........................................................................................................463
Figure 170: Display MSTP Port State Menu.......................................................................................................................466
Figure 176: Show VLANs Menu..........................................................................................................................................485
Figure 179: Show PVIDs Menu...........................................................................................................................................492
Figure 180: GARP-GVRP Menu .........................................................................................................................................496
Figure 181: GVRP Port Parameters Menu .........................................................................................................................498
Figure 182: Configure GVRP Port Settings Menu ..............................................................................................................499
Figure 183: Display GVRP Port Configuration Menu..........................................................................................................501
Figure 184: Other GVRP Parameters Menu.......................................................................................................................502
Figure 185: GVRP Counters Menu (page 1).......................................................................................................................503
Figure 186: GVRP Counters Menu (page 2).......................................................................................................................504
Figure 187: GVRP Database Menu ....................................................................................................................................507
Figure 188: GIP Connected Ports Ring Menu ....................................................................................................................509
Figure 189: GVRP State Machine Menu (page 1) ..............................................................................................................511
Figure 190: Display GVRP State Machine Menu (page 2) .................................................................................................512
Figure 191: VLAN Configuration Menu (Multiple VLAN Mode)...........................................................................................518
Figure 192: Show VLANs Menu, Multiple VLANS ..............................................................................................................519
Figure 195: Show VLANs Menu..........................................................................................................................................528
Figure 196: Show VLANs Menu..........................................................................................................................................529
Figure 199: MAC Based VLANs Menu ...............................................................................................................................536
Figure 202: Show VLANs Menu with MAC Address-based VLANs....................................................................................542
Figure 203: Detail Information Display................................................................................................................................543
Figure 204: Configure Interface Menu ................................................................................................................................548
Figure 206: Modify Interface Menu .....................................................................................................................................552
Figure 207: Port Security Menu ..........................................................................................................................................562
Figure 208: Configure Port Security Menu #1.....................................................................................................................562
Figure 209: Configure Port Security Menu #2.....................................................................................................................564
Figure 210: Display Port Security Menu .............................................................................................................................566
Figure 211: Port Access Control (802.1X) Menu ................................................................................................................570
Figure 212: Configure Port Access Role Menu...................................................................................................................571
Figure 214: Configure Authenticator Port Access Parameters Menu .................................................................................574
Figure 215: Configure Supplicant Menu .............................................................................................................................579
Figure 216: Configure Supplicant Port Access Parameters Menu......................................................................................580
Figure 217: Display Port Access Status Menu....................................................................................................................582
Figure 219: Web Server Configuration Menu .....................................................................................................................590
Figure 220: Web Server Configuration Menu Configured for HTTPS.................................................................................591
Figure 221: Keys/Certificate Configuration Menu ...............................................................................................................596
Figure 224: Export Key to File Menu ..................................................................................................................................603
Figure 225: Import Key from File Menu ..............................................................................................................................606
Figure 227: Public Key Infrastructure (PKI) Configuration Menu ........................................................................................613
Figure 228: X509 Certificate Management Menu ...............................................................................................................613
Figure 229: Create Self-Signed Certificate Menu ...............................................................................................................614
Figure 230: Add Certificate Menu .......................................................................................................................................616
Figure 236: Secure Shell (SSH) Menu ...............................................................................................................................634
Figure 237: Show Server Information Menu.......................................................................................................................637
Figure 238: Authentication Configuration Menu .................................................................................................................640
Figure 239: TACACS+ Client Configuration Menu .............................................................................................................642
Figure 240: TACACS+ Client Configuration Menu .............................................................................................................644
Figure 242: RADIUS Server Configuration.........................................................................................................................646
Figure 243: Show Status Menu ..........................................................................................................................................648
Figure 244: Management ACL Configuration Menu ...........................................................................................................652
Table 4: Numerical Code and Facility Level Mappings ......................................................................................................213
Table 5: Bridge Priority Value Increments .........................................................................................................................424
Table 6: Port Priority Value Increments .............................................................................................................................427
Table 7: STP Auto-Detect Port Costs ................................................................................................................................427
Table 8: STP Auto-Detect Port Trunk Costs ......................................................................................................................427
Table 9: RSTP Auto-Detect Port Costs .............................................................................................................................434
Table 10: RSTP Auto-Detect Port Trunk Costs .................................................................................................................435
Table 11: Auto External Path Costs ..................................................................................................................................459
Table 12: Auto External Path Trunk Costs ........................................................................................................................459
Table 13: RSTP Auto-Detect Port Costs ...........................................................................................................................461
Table 14: RSTP Auto-Detect Port Trunk Costs .................................................................................................................462
Table 16: GVRP State Machine Parameters .....................................................................................................................512
17
Tables
18
Preface
This guide contains instructions on how to configure the AT-9400 Layer 2+
and Basic Layer 3 Gigabit Ethernet Switches from the menus of the
AT-S63 Management Software.
This preface contains the following sections:
“How This Guide is Organized” on page 20
“Product Documentation” on page 22
“Where to Go First” on page 23
“Starting a Management Session” on page 24
“Document Conventions” on page 25
“Where to Find Web-based Guides” on page 26
“Contacting Allied Telesis” on page 27
Caution
The software described in this documentation contains certain
cryptographic functionality and its export is restricted by U.S. law. As
of this writing, it has been submitted for review as a “retail encryption
item” in accordance with the Export Administration Regulations, 15
C.F.R. Part 730-772, promulgated by the U.S. Department of
Commerce, and conditionally may be exported in accordance with
the pertinent terms of License Exception ENC (described in 15
C.F.R. Part 740.17). In no case may it be exported to Cuba, Iran,
Iraq, Libya, North Korea, Sudan, or Syria. If you wish to transfer this
software outside the United States or Canada, please contact your
local Allied Telesis sales representative for current information on
this product’s export status.
19
Preface
How This Guide is Organized
This guide contains the following sections and chapters:
Section I: Basic Operations
Chapter 1, “Basic Switch Parameters” on page 31
Chapter 2, “Port Parameters” on page 61
Chapter 3, “Enhanced Stacking” on page 85
Chapter 4, “SNMPv1 and SNMPv2c” on page 93
Chapter 5, “MAC Address Table” on page 105
Chapter 6, “Static Port Trunks” on page 115
Chapter 7, “LACP Port Trunks” on page 125
Chapter 8, “Port Mirroring” on page 137
Section II: Advanced Operations
Chapter 9, “File System” on page 145
Chapter 10, “File Downloads and Uploads” on page 167
Chapter 11, “Event Logs and the Syslog Client” on page 197
Chapter 12, “Classifiers” on page 219
Chapter 13, “Access Control Lists” on page 231
Chapter 14, “Class of Service” on page 243
Chapter 15, “Quality of Service” on page 251
Chapter 16, “Denial of Service Defenses” on page 279
Chapter 17, “Power Over Ethernet” on page 283
Section III: Snooping Protocols
Chapter 18, “IGMP Snooping” on page 295
Chapter 19, “MLD Snooping” on page 305
Chapter 20, “RRP Snooping” on page 315
20
Section IV: SNMPv3
Chapter 21, “SNMPv3” on page 319
AT-S63 Management Software Menus User’s Guide
Section V: Spanning Tree Protocols
Chapter 22, “Spanning Tree and Rapid Spanning Tree Protocols” on
page 419
Chapter 23, “Multiple Spanning Tree Protocol” on page 439
Section VI: Virtual LANs
Chapter 24, “Port-based and Tagged VLANs” on page 471
Chapter 25, “GARP VLAN Registration Protocol” on page 495
Chapter 26, “Multiple VLAN Modes” on page 515
Chapter 27, “Protected Ports VLANs” on page 521
Chapter 28, “MAC Address-based VLANs” on page 533
Section VII: Internet Protocol Routing
Chapter 29, “Internet Protocol Version 4 Routing Interfaces” on page
547
Section VIII: Port Security
Chapter 30, “MAC Address-based Port Security” on page 561
Chapter 31, “802.1x Port-based Network Access Control” on page 569
Section IX: Management Security
Chapter 32, “Web Server” on page 589
Chapter 33, “Encryption Keys” on page 595
Chapter 34, “PKI Certificates and SSL” on page 611
Chapter 35, “Secure Shell (SSH)” on page 633
Chapter 36, “TACACS+ and RADIUS Protocols” on page 639
Chapter 37, “Management Access Control List” on page 651
21
Preface
Product Documentation
For overview information on the features of the AT-9400 Switch and the
AT-S63 Management Software, refer to:
AT-S63 Management Software Features Guide
(PN 613-001022)
For instructions on starting a local or remote management session on a
stand-alone AT-9400 Switch or a stack, refer to:
Starting an AT-S63 Management Session Guide
(PN 613-001023)
For instructions on installing or managing a stand-alone AT-9400 Switch,
refer to:
AT-S63 Management Software Command Line User’s Guide
(PN 613-001024)
AT-S63 Management Software Web Browser User’s Guide
(PN 613-001026)
For instructions on installing or managing a stack of AT-9400 Basic Layer
3 Switches, refer to:
AT-9400 Stack Installation Guide
(PN 613-000796)
AT-S63 Stack Command Line User’s Guide
(PN 613-001027)
AT-S63 Stack Web Browser User’s Guide
(PN 613-001028)
22
Where to Go First
AT-S63 Management Software Menus User’s Guide
Allied Telesis recommends that you read Chapter 1, Overview, in the
AT-S63 Management Software Features Guide before you begin to
manage the switch for the first time. There you will find a variety of basic
information about the unit and the management software, like the two
levels of manager access levels and the different types of management
sessions.
The AT-S63 Management Software Features Guide is also your resource
for background information on the features of the switch. You can refer
there for the relevant concepts and guidelines when you configure a
feature for the first time.
23
Preface
Starting a Management Session
For instructions on how to start a local or remote management session on
the AT-9400 Switch, refer to the Starting an AT-S63 Management Session Guide.
24
Document Conventions
This document uses the following conventions:
AT-S63 Management Software Menus User’s Guide
Note
Notes provide additional information.
Caution
Cautions inform you that performing or omitting a specific action may
result in equipment damage or loss of data.
Warning
Warnings inform you that performing or omitting a specific action
may result in bodily injury.
25
Preface
Where to Find Web-based Guides
The installation and user guides for all Allied Telesis products are
available in portable document format (PDF) on our web site at
www.alliedtelesis.com. You can view the documents online or download
them onto a local workstation or server.
26
AT-S63 Management Software Menus User’s Guide
Contacting Allied Telesis
This section provides Allied Telesis contact information for technical
support and for sales and corporate information.
Online SupportYou can request technical support online from the Allied Telesis
Knowledge Base at www.alliedtelesis.com/support/kb.aspx. You can
submit questions to our technical support staff from the Knowledge Base
and review answers to previously asked questions.
Email and
Telephone
Support
Returning
Products
Sales and
Corporate
Information
Management
Software Updates
For Technical Support by email or telephone, refer to the Allied Telesis
web site at www.alliedtelesis.com. Select your country from the list on
the web site and then select the appropriate tab.
Products for return or repair must be assigned Return Materials
Authorization (RMA) numbers. A product sent to Allied Telesis without an
RMA number will be returned to the sender at the sender’s expense.
To obtain an RMA number, contact the Allied Telesis Technical Support
group at www.alliedtelesis.com/support/rma.aspx.
You can contact Allied Telesis for sales or corporate information at our
web site at www.alliedtelesis.com.
New releases of the management software for our managed products are
available from the following Internet sites: