Allied Telesis AT-GS950-16PS, AT-S112 User Manual

Download

AT-GS950/16PS

Gigabit Ethernet PoE+ Switch

AT-GS950/16PS Switch Web Interface User’s Guide AT-S112

613-001779 Rev A

[1.00.010]

Allied Telesis and the Allied Telesis logo are trademarks of Allied Telesis, Incorporated. All other product names, company names, logos or other designations mentioned herein are trademarks or registered trademarks of their respective owners.

Allied Telesis, Inc. reserves the right to make changes in specifications and other information contained in this document without prior written notice. The information provided herein is subject to change without notice. In no event shall Allied Telesis, Inc. be liable for any incidental, special, indirect, or consequential damages whatsoever, including but not limited to lost profits, arising out of or related to this manual or the information contained herein, even if Allied Telesis, Inc. has been advised of, known, or should have known, the possibility of such damages.

List of Figures .................................................................................................................................................. 9

List of Tables ................................................................................................................................................. 13

Preface ............................................................................................................................................................ 15

Document Conventions.............................................................................................................................. 16

Allied Telesis Contact Information.............................................................................................................. 17

Getting Started ................................................................................................................................................ 19

Chapter 1: Starting a Web Browser Session ................................................................................................ 21

Establishing a Remote Connection to the Web Browser Interface ............................................................ 22

Web Browser Tools.................................................................................................................................... 25

Quitting a Web Browser Management Session ......................................................................................... 26

Chapter 2: System Configuration .................................................................................................................. 27

System Management Information .............................................................................................................. 28

Configuration of IP Address, Subnet Mask and Gateway Address ............................................................ 30

IP Access List Configuration ...................................................................................................................... 32

Create an IP Access List ..................................................................................................................... 32

Delete an IP Address List Entry........................................................................................................... 33

User Name and Password Configuration................................................................................................... 34

Add New User Name and Password ................................................................................................... 34

Modify User Name and Password ....................................................................................................... 35

Delete User Name and Password ....................................................................................................... 36

User Interface Configuration ...................................................................................................................... 37

SNMP Interface ................................................................................................................................... 37

User Interface Timeout ........................................................................................................................ 38

System Time .............................................................................................................................................. 39

Manually Setting System Time ............................................................................................................ 39

Setting SNTP....................................................................................................................................... 40

Setting Daylight Savings Parameters .................................................................................................. 41

SSL Settings .............................................................................................................................................. 42

Configuring SSL .................................................................................................................................. 42

DHCP and ATI Web Discovery Tool .......................................................................................................... 44

DHCP Client Configuration ........................................................................................................................ 45

DHCP Auto Configuration .......................................................................................................................... 47

System Information Display ....................................................................................................................... 48

System Log Configuration.......................................................................................................................... 50

Bridge Configuration ........................................................................................................................................ 53

Chapter 3: Port Configuration ....................................................................................................................... 55

Overview .................................................................................................................................................... 56

Displaying and Configuring Ports............................................................................................................... 57

Chapter 4: STP and RSTP ............................................................................................................................ 61

Overview .................................................................................................................................................... 62

Bridge Priority and the Root Bridge ..................................................................................................... 63

Contents

Forwarding Delay and Topology Changes...........................................................................................65

Mixed STP and RSTP Networks ..........................................................................................................67

Spanning Tree and VLANs .................................................................................................................. 68

Basic STP and RSTP Configuration...........................................................................................................70

Configure RSTP Port Settings .................................................................................................................... 73

Configure the Basic RSTP Port Settings.............................................................................................. 73

Configure the Advanced RSTP Port Settings ......................................................................................75

Spanning Tree Topology ............................................................................................................................ 78

Chapter 5: Multiple Spanning Tree Protocol ................................................................................................. 79

Multiple Spanning Tree Configuration ........................................................................................................80

Port Configuration....................................................................................................................................... 83

VLAN Mapping ...........................................................................................................................................86

Open MSTP VLAN Mapping Page.......................................................................................................86

Create VLAN Mapping to MST Instance ..............................................................................................86

Modify MST Instance ........................................................................................................................... 87

Delete MST Instance............................................................................................................................87

Port Settings ...............................................................................................................................................88

Topology Information.................................................................................................................................. 90

Chapter 6: Static Port Trunking ..................................................................................................................... 93

Overview.....................................................................................................................................................94

Create a Port Trunk .................................................................................................................................... 97

Modify a Port Trunk .................................................................................................................................... 99

Disable a Port Trunk................................................................................................................................. 101

Chapter 7: LACP Port Trunks ......................................................................................................................103

Overview...................................................................................................................................................104

System Priority ......................................................................................................................................... 105

Port Priority Value..................................................................................................................................... 106

General Guidelines................................................................................................................................... 107

Group Status ............................................................................................................................................ 109

Configuration Example.......................................................................................................................110

Port Priority Configuration ........................................................................................................................ 112

Chapter 8: Port Mirroring ............................................................................................................................. 113

Overview...................................................................................................................................................114

Port Mirroring Configuration ..................................................................................................................... 115

Disable Port Mirroring............................................................................................................................... 117

Chapter 9: Loopback Protection .................................................................................................................. 119

Configuration ............................................................................................................................................ 120

Status ....................................................................................................................................................... 122

Chapter 10: MAC Address Table ................................................................................................................ 123

Overview...................................................................................................................................................124

Static Unicast MAC Address Configuration .............................................................................................. 126

Modify Static Unicast Address..................................................................................................................128

Delete Static Unicast Address .................................................................................................................. 129

Static Multicast Address Configuration..................................................................................................... 130

Modify Static Multicast Address................................................................................................................133

Delete Static Multicast Address................................................................................................................134

Chapter 11: IGMP Snooping ....................................................................................................................... 135

Overview...................................................................................................................................................136

IGMP Snooping Configuration..................................................................................................................138

Chapter 12: Storm Control .......................................................................................................................... 141

Overview...................................................................................................................................................142

AT-GS950/16PS Switch Web Interface User’s Guide

Ingress Rate Limiting......................................................................................................................... 143

Egress Rate Limiting ......................................................................................................................... 143

Configuration............................................................................................................................................ 144

Ingress Rate Limiting ............................................................................................................................... 146

Egress Rate Limiting ................................................................................................................................ 148

Chapter 13: Virtual LANs ............................................................................................................................ 149

VLAN Overview........................................................................................................................................ 150

Port-based VLAN Overview............................................................................................................... 151

Tagged VLAN Overview .................................................................................................................... 152

General Rules for Creating a Tagged VLAN ..................................................................................... 154

Assign Ports to a VLAN Mode.................................................................................................................. 155

Tagged VLAN Configuration .................................................................................................................... 157

Create a Tagged VLAN ..................................................................................................................... 157

Modify a Tagged VLAN ..................................................................................................................... 158

Delete a Tagged VLAN...................................................................................................................... 160

Tagged VLAN Port Settings ..................................................................................................................... 162

Port-Based VLAN Configuration .............................................................................................................. 164

Create a Port-Based VLAN ............................................................................................................... 164

Modify a Port-Based VLAN................................................................................................................ 165

Chapter 14: GVRP ...................................................................................................................................... 167

Overview and Guidelines ......................................................................................................................... 168

General Configuration .............................................................................................................................. 169

Port Settings............................................................................................................................................. 170

Time Settings ........................................................................................................................................... 172

Chapter 15: Quality of Service and Cost of Service ................................................................................... 175

Overview .................................................................................................................................................. 176

Packet Priority ................................................................................................................................... 176

Egress Queue vs Packet Priority Mapping ........................................................................................ 177

Prioritizing Untagged Packets ........................................................................................................... 178

Scheduling......................................................................................................................................... 178

Mapping CoS Priorities to Egress Queues............................................................................................... 180

Associate Ports to CoS Priorities ............................................................................................................. 182

Associate DSCP Classes to Egress Queues ........................................................................................... 183

Queue Scheduling Algorithm ................................................................................................................... 185

Advanced Features ....................................................................................................................................... 187

Chapter 16: SNMPv1 and v2c .................................................................................................................... 189

SNMPv1 and SNMPv2c Overview ........................................................................................................... 190

Trap Receiver Attributes .......................................................................................................................... 191

Activate SNMP Interface .......................................................................................................................... 192

SNMPv1 and SNMPv2c User and Group Names .................................................................................... 193

Create User and Group Names......................................................................................................... 193

Modify User and Group Names ......................................................................................................... 194

Delete User and Group Names ......................................................................................................... 195

SNMP Community Strings ....................................................................................................................... 196

Create SNMP Community Strings ..................................................................................................... 196

Modify SNMP Community Strings ..................................................................................................... 197

Delete SNMP Community Strings ..................................................................................................... 197

SNMP Traps............................................................................................................................................. 198

Create Trap Host Table Entry............................................................................................................ 198

Modify a Trap Host Table Entry......................................................................................................... 199

Delete a Trap Host Table Entry ......................................................................................................... 199

Chapter 17: SNMPv3 .................................................................................................................................. 201

Contents

Overview...................................................................................................................................................202

SNMPv3 Authentication Protocols .....................................................................................................202

SNMPv3 Privacy Protocol .................................................................................................................. 203

SNMPv3 MIB Views ...........................................................................................................................203

SNMPv3 Configuration Process.........................................................................................................204

SNMPv3 User and Group Names ............................................................................................................ 206

Creating SNMPv3 User and Group Names ....................................................................................... 206

Modifying SNMPv3 User and Group Names...................................................................................... 207

Deleting SNMPv3 User and Group Names........................................................................................ 207

SNMPv3 View Names .............................................................................................................................. 209

Creating SNMPv3 View Names ......................................................................................................... 209

Modifying SNMPv3 View Names .......................................................................................................211

Deleting SNMPv3 View Names.......................................................................................................... 211

SNMPv3 View Table................................................................................................................................. 212

Creating SNMPv3 View Table Entries ...............................................................................................212

Modifying SNMPv3 View Table Entries.............................................................................................. 213

Deleting SNMPv3 View Table Entries................................................................................................ 213

SNMPv3 Traps ......................................................................................................................................... 215

Chapter 18: Access Control Configuration ..................................................................................................217

Overview...................................................................................................................................................218

Classifier................................................................................................................................................... 219

Creating a Classifier...........................................................................................................................219

Modifying a Classifier ......................................................................................................................... 221

Deleting a Classifier ........................................................................................................................... 222

Profile Action ............................................................................................................................................224

Creating a Profile Action ....................................................................................................................224

Modifying Profile Action...................................................................................................................... 225

Deleting a Profile Action.....................................................................................................................226

In-Profile Action ........................................................................................................................................ 227

Creating an In-Profile Action ..............................................................................................................227

Modifying an In-Profile Action ............................................................................................................229

Deleting an In-Profile Action...............................................................................................................230

Out-Profile Action ..................................................................................................................................... 231

Creating a Out-Profile Action .............................................................................................................231

Modify Out-Profile Action ...................................................................................................................233

Delete Out-Profile Action....................................................................................................................234

Port List ....................................................................................................................................................235

Create Port List .................................................................................................................................. 235

Modify Port List .................................................................................................................................. 236

Delete Port List...................................................................................................................................237

Policy ........................................................................................................................................................ 238

Create Policy......................................................................................................................................238

Modify Policy ......................................................................................................................................240

Delete Policy ...................................................................................................................................... 241

Policy Sequence Status............................................................................................................................ 243

Chapter 19: RMON .....................................................................................................................................245

Overview...................................................................................................................................................246

Enable and Disable RMON ...................................................................................................................... 247

Port Statistics............................................................................................................................................248

Histories....................................................................................................................................................250

Events.......................................................................................................................................................252

Alarms ...................................................................................................................................................... 254

Chapter 20: Voice VLAN ............................................................................................................................. 257

AT-GS950/16PS Switch Web Interface User’s Guide

Overview .................................................................................................................................................. 258

CoS with Voice VLAN........................................................................................................................ 258

Organization Unique Identifier (OUI) ................................................................................................. 258

Dynamic Auto-Detection vs Static Ports ............................................................................................ 259

General Guidelines .................................................................................................................................. 261

Configuration............................................................................................................................................ 262

OUI Setting............................................................................................................................................... 265

Create OUI Setting ............................................................................................................................ 265

Modify OUI Setting ............................................................................................................................ 266

Delete OUI Setting............................................................................................................................. 266

Chapter 21: Security ................................................................................................................................... 267

Port Access Control ................................................................................................................................. 268

Overview............................................................................................................................................ 268

Port Access Control Configuration .................................................................................................... 269

RADIUS Client ......................................................................................................................................... 273

Overview............................................................................................................................................ 273

General Guidelines............................................................................................................................ 273

Radius Client Configuration............................................................................................................... 274

Dial-in User— Local Authentication ......................................................................................................... 276

Overview............................................................................................................................................ 276

Dial-in User Configuration ................................................................................................................. 276

Destination MAC Filter ............................................................................................................................. 279

Overview............................................................................................................................................ 279

Destination MAC Filter Configuration ................................................................................................ 279

Delete Destination MAC Filter ........................................................................................................... 280

Chapter 22: Power Over Ethernet (PoE) .................................................................................................... 283

Overview .................................................................................................................................................. 284

Power Sourcing Equipment (PSE) .................................................................................................... 284

Powered Device (PD) ........................................................................................................................ 284

PD Classes........................................................................................................................................ 284

Power Budget .................................................................................................................................... 284

Port Prioritization ............................................................................................................................... 285

PoE Configuration .................................................................................................................................... 286

Chapter 23: Chapter 23: DHCP Snooping ............................................................................................... 290

Overview .................................................................................................................................................. 291

Trusted Ports ..................................................................................................................................... 291

Untrusted Ports.................................................................................................................................. 291

Unauthorized DHCP Servers............................................................................................................. 291

DHCP with Option 82 ........................................................................................................................ 292

General Guidelines .................................................................................................................................. 293

General Configuration .............................................................................................................................. 294

VLAN Setting............................................................................................................................................ 296

Creating a VLAN................................................................................................................................ 296

Modifying a VLAN.............................................................................................................................. 297

Deleting a VLAN ................................................................................................................................ 297

Trusted and Untrusted Port Configuration ............................................................................................... 298

Binding Database..................................................................................................................................... 300

Static IP Addresses ........................................................................................................................... 300

Viewing .............................................................................................................................................. 301

Chapter 24: LLDP ....................................................................................................................................... 303

Overview .................................................................................................................................................. 304

Global Configuration ................................................................................................................................ 305

Enabling or Disabling LLDP............................................................................................................... 306

Contents

Displaying System Information........................................................................................................... 307

Setting Port States .............................................................................................................................307

Neighbors Information .............................................................................................................................. 309

Chapter 25: Network Statistics .................................................................................................................... 311

Overview...................................................................................................................................................312

Traffic Comparison Statistics.................................................................................................................... 313

Error Group Statistics ...............................................................................................................................316

Historical Status Charts ............................................................................................................................ 318

Tools .............................................................................................................................................................. 321

Chapter 26: Software/Configuration Updates .............................................................................................323

Overview...................................................................................................................................................324

Upgrade Firmware Image via HTTP.........................................................................................................325

Upgrade Firmware Image via TFTP ......................................................................................................... 327

Upload or Download a Configuration File via HTTP.................................................................................329

Configuration File Upload................................................................................................................... 329

Configuration File Download ..............................................................................................................331

Download or Upload a Configuration File via TFTP .................................................................................332

Configuration File Upload................................................................................................................... 332

Configuration File Download ..............................................................................................................333

Chapter 27: Cable Diagnostics ................................................................................................................... 335

Chapter 28: Rebooting the AT-GS950/16PS .............................................................................................. 337

Switch Reboot ..........................................................................................................................................338

Configure Factory Default Values............................................................................................................. 340

Password Protection of Factory Reset ..................................................................................................... 342

Disabling Factory Default Reset Feature ........................................................................................... 342

Enabling Factory Default Reset .........................................................................................................344

Chapter 29: Pinging a Remote System .......................................................................................................347

Appendix A: MSTP Overview ....................................................................................................................... 349

Overview...................................................................................................................................................350

Multiple Spanning Tree Instance (MSTI) ..................................................................................................352

Resolving VLAN Fragmentation.........................................................................................................352

Multiple VLANs Assigned to an MSTI ................................................................................................ 353

General Guidelines................................................................................................................................... 355

VLAN and MSTI Associations .................................................................................................................. 356

Ports in Multiple MSTIs............................................................................................................................. 357

Multiple Spanning Tree Regions .............................................................................................................. 358

MST Region Guidelines ..................................................................................................................... 360

Common and Internal Spanning Tree (CIST) .................................................................................... 362

MSTP with STP and RSTP ................................................................................................................362

Associating VLANs to MSTIs....................................................................................................................363

VLANs Across Different Regions..............................................................................................................365

Summary of Guidelines ............................................................................................................................ 367

Appendix B: AT-GS950/16PS Default Parameters ...................................................................................... 369

List of Figures

Figure 1. Entering a Switch’s IP Address in the URL Field................................................................................................ 22

Figure 2. Management Login Dialog Box .......................................................................................................................... 22

Figure 3. AT-GS950/16PS Switch Information Page......................................................................................................... 23

Figure 4. Front Panel Page ............................................................................................................................................... 24

Figure 5. AT-GS950/16PS Management Page ................................................................................................................. 28

Figure 6. IP Setup Page .................................................................................................................................................... 30

Figure 7. IP Access List Page ........................................................................................................................................... 32

Figure 8. Administration Page ........................................................................................................................................... 34

Figure 9. Modify Administration Page................................................................................................................................ 35

Figure 10. User Interface Page ......................................................................................................................................... 37

Figure 11. System Time Page ........................................................................................................................................... 39

Figure 12. SSL Settings Page ........................................................................................................................................... 42

Figure 13. DHCP Auto Configuration Settings Page ......................................................................................................... 47

Figure 14. AT-GS950/16PS Switch Information Page....................................................................................................... 48

Figure 15. System Log Configuration Page....................................................................................................................... 50

Figure 16. AT-GS950/16PS Physical Interface Page ........................................................................................................ 57

Figure 17. Point-to-Point Ports .......................................................................................................................................... 67

Figure 18. Edge Port ......................................................................................................................................................... 67

Figure 19. STP and VLAN Fragmentation with Untagged Ports........................................................................................ 68

Figure 20. STP and VLAN Compatibility with Tagged Ports.............................................................................................. 69

Figure 21. Rapid Spanning Tree Configuration Page........................................................................................................ 70

Figure 22. AT-GS950/16PS RSTP Basic Port Configuration Page ................................................................................... 73

Figure 23. AT-GS950/16PS RSTP Advanced Port Configuration Page............................................................................ 75

Figure 24. AT-GS950/16PS Designated Topology Information Page ............................................................................... 78

Figure 25. Multiple Spanning Tree Configuration Page..................................................................................................... 80

Figure 26. AT-GS950/16PS MSTP Port Configuration Page ............................................................................................ 83

Figure 27. MSTP VLAN Mapping Page ............................................................................................................................. 86

Figure 28. MSTP Port Settings Page............................................................................................

Figure 29. AT-GS950/16PS Topology Information Page................................................................................................... 90

Figure 30. Static Port Trunk Example................................................................................................................................ 94

Figure 31. Trunking Page .................................................................................................................................................. 97

Figure 32. LACP Group Status Page .............................................................................................................................. 109

Figure 33. LACP Group Status Page with No Cables Connected ................................................................................... 110

Figure 34. LACP Group Status Page with Three Cables Connected .............................................................................. 111

Figure 35. AT-GS950/16PS Port Priority Page................................................................................................................ 112

Figure 36. AT-GS950/16PS Mirroring Page .................................................................................................................... 115

Figure 37. AT-GS950/16PS Loopback Detection Page................................................................................................... 120

Figure 38. AT-GS950/16PS Static Unicast Address Table Page.................................................................................... 126

Figure 39. Static Unicast Address Table with Port-Base VLAN Example........................................................................ 127

Figure 40. Modify Static Unicast Address Page .............................................................................................................. 128

Figure 41. AT-GS950/16PS Static Multicast Address Table Page .................................................................................. 130

Figure 42. Static Multicast Address Table Example ........................................................................................................ 131

Figure 43. Modify Static Multicast Address Page ............................................................................................................ 133

Figure 44. IGMP Snooping Page..................................................................................................................................... 138

Figure 45. IGMP Snooping Page with MAC Addresses .................................................................................................. 139

Figure 46. AT-GS950/16PS Storm Control Page ............................................................................................................ 144

Figure 47. AT-GS950/16PS Ingress Rate Limiting Page................................................................................................. 146

Figure 48. AT-GS950/16PS Egress Rate Limiting Page ................................................................................................. 148

Figure 49. AT-GS950/16PS VLAN Mode Page............................................................................................................... 155

Figure 50. AT-GS950/16PS Tagged VLAN Page............................................................................................................ 157

..................................... 88

Figures

Figure 51. Example of AT-GS950/16PS Tagged VLAN Page ......................................................................................... 159

Figure 52. AT-GS950/16PS Modify VLAN Page.............................................................................................................. 159

Figure 53. AT-GS950/16PS VLAN Port Setting Page ..................................................................................................... 162

Figure 54. Port-Based VLAN Page.................................................................................................................................. 164

Figure 55. Example of AT-GS950/16PS Port Based VLAN Page ................................................................................... 165

Figure 56. GVRP Global Configuration Page .................................................................................................................. 169

Figure 57. GVRP Port Setting Page ................................................................................................................................ 170

Figure 58. AT-GS950/16PS GVRP Time Setting Page ................................................................................................... 172

Figure 59. CoS Page ....................................................................................................................................................... 180

Figure 60. AT-GS950/16PS Port Priority Page................................................................................................................ 182

Figure 61. DSCP Class Mapping Page............................................................................................................................ 183

Figure 62. Scheduling Algorithm Page ............................................................................................................................ 185

Figure 63. SNMP User/Group Page ................................................................................................................................ 193

Figure 64. SNMP User/Group Page Example ................................................................................................................. 194

Figure 65. Community Table Page .................................................................................................................................. 196

Figure 66. SNMP Community Table Page Example........................................................................................................ 197

Figure 67. Trap Management Page................................................................................................................................. 198

Figure 68. Trap Management Page Example.................................................................................................................. 199

Figure 69. MIB Tree......................................................................................................................................................... 203

Figure 70. SNMPv3 Table Relationships......................................................................................................................... 205

Figure 71. SNMP User Group, SNMPv3 Example........................................................................................................... 207

Figure 72. SNMP Group Access Table............................................................................................................................ 209

Figure 73. SNMP Group Access Table Example for SNMPv3 ........................................................................................210

Figure 74. SNMP View Table........................................................................................................................................... 212

Figure 75. SNMP View Table Page Example .................................................................................................................. 213

Figure 76. Create Classifier Page.................................................................................................................................... 219

Figure 77. Create Classifier Example Page..................................................................................................................... 221

Figure 78. Modify Classifier Page.................................................................................................................................... 222

Figure 79. Create Profile Action Page ............................................................................................................................. 224

Figure 80. Example of Profile Action Entry ...................................................................................................................... 225

Figure 81. Modify Profile Action Page.............................................................................................................................. 226

Figure 82. Create In-Profile Action Page Example .......................................................................................................... 227

Figure 83. Example of In-Profile Action Entry .................................................................................................................. 228

Figure 84. Modify In-Profile Action Page ......................................................................................................................... 229

Figure 85. Create Out-Profile Action Page .....................................................................................

Figure 86. Example of Out-Profile Action Entry ............................................................................................................... 232

Figure 87. Modify Out-Profile Action Page....................................................................................................................... 233

Figure 88. Create Port List Page ..................................................................................................................................... 235

Figure 89. Example of Port List Entry .............................................................................................................................. 236

Figure 90. Modify Port List Page...................................................................................................................................... 236

Figure 91. Create Policy Page......................................................................................................................................... 238

Figure 92. Example of Policy Entry.................................................................................................................................. 240

Figure 93. Modify Policy Page ......................................................................................................................................... 241

Figure 94. Policy Sequence Page.................................................................................................................................... 243

Figure 95. Policy Sequence Page with Display by Index Selected.................................................................................. 243

Figure 96. RMON Basic Settings Page............................................................................................................................ 247

Figure 97. Ethernet Statistics Configuration Page........................................................................................................... 248

Figure 98. Ethernet Statistics Configuration Example ..................................................................................................... 249

Figure 99. History Control Configuration Page ................................................................................................................ 250

Figure 100. History Control Configuration Example Page ............................................................................................... 251

Figure 101. RMON Event Configuration Page................................................................................................................. 252

Figure 102. RMON Event Configuration Example Page.................................................................................................. 253

Figure 103. RMON Alarm Configuration Page................................................................................................................. 255

Figure 104. RMON Alarm Configuration Example Page (To be provided) ...................................................................... 256

Figure 105. AT-GS950/16PS Voice VLAN Setting Page ................................................................................................. 262

Figure 106. Voice VLAN OUI Setting Page. .................................................................................................................... 265

Figure 107. Port Access Control Configuration Page ...................................................................................................... 269

Figure 108. Expanded Port Access Control Configuration Page ..................................................................................... 270

Figure 109. RADIUS Page...............................................................................................................................................274

Figure 110. Dial-In User Page ......................................................................................................................................... 277

.................................231

AT-GS950/16PS Switch Web Interface User’s Guide

Figure 111. Dial-In User Page Example .......................................................................................................................... 277

Figure 112. Destination MAC Filter Page ........................................................................................................................ 280

Figure 113. Destination MAC Filter Page Example ......................................................................................................... 280

Figure 114. Power Over Ethernet Configuration Page .................................................................................................... 286

Figure 115. General Settings Page ................................................................................................................................. 294

Figure 116. DHCP Snooping VLAN Settings Page. ........................................................................................................ 296

Figure 117. AT-GS950/16PS Trusted Interfaces Page ................................................................................................... 298

Figure 118. Trusted Interfaces Page Example ................................................................................................................ 299

Figure 119. AT-GS950/16PS Binding Database Page .................................................................................................... 300

Figure 120. Binding Database Page Example................................................................................................................. 301

Figure 121. AT-GS950/16PS LLDP Global Settings Page .............................................................................................. 305

Figure 122. LLDP Neighbors Information Page............................................................................................................... 309

Figure 123. Traffic Comparison Page.............................................................................................................................. 313

Figure 124. Error Group Chart Page ............................................................................................................................... 316

Figure 125. Historical Status Chart Page ........................................................................................................................ 318

Figure 126. Firmware Upgrade via HTTP Page .............................................................................................................. 326

Figure 127. Firmware Upgrade via TFTP Page............................................................................................................... 328

Figure 128. Configuration File Upload/Download via HTTP Page................................................................................... 329

Figure 129. Result Page.................................................................................................................................................. 330

Figure 130. File Download with HTTP............................................................................................................................. 331

Figure 131. Configuration Upload/Download via TFTP Page.......................................................................................... 332

Figure 132. Cable Diagnostics Page ............................................................................................................................... 335

Figure 133. Factory Default Reset/Reboot Page.................................................................................

Figure 134. Factory Default Reset/Reboot Page with Password Entry ........................................................................... 343

Figure 135. Factory Default Reset Disabled Page .......................................................................................................... 344

Figure 136. Factory Default Reset/Reboot Page with Password Entry ........................................................................... 345

Figure 137. Ping Test Configuration Page....................................................................................................................... 347

Figure 138. Ping Test Results Page................................................................................................................................ 348

Figure 139. VLAN Fragmentation with STP or RSTP...................................................................................................... 352

Figure 140. MSTP Example of Two Spanning Tree Instances ....................................................................................... 353

Figure 141. Multiple VLANs in a MSTI............................................................................................................................. 354

Figure 142. CIST and VLAN Guideline - Example 1........................................................................................................ 363

Figure 143. CIST and VLAN Guideline - Example 2........................................................................................................ 364

Figure 144. Spanning Regions - Example 1 .................................................................................................................... 365

Figure 145. Spanning Regions without Blocking ............................................................................................................. 366

............................ 338

Figures

List of Tables

Table 1. Bridge Priority Value Increments ...................................................................................... 63

Table 2. Valid Port Priority Values .................................................................................................. 65

Table 3. Default Mappings Priority Levels to Priority Queues ...................................................... 177

Table 4. Customized Mappings Priority Levels to Priority Queues ............................................... 177

Table 5. Example of Weighted Round Robin Priority .................................................................... 179

Table 6. IEEE Powered Device Classes ....................................................................................... 284

Table 7. PoE Port Priorities ........................................................................................................... 285

Table 8. Traffic Comparison Options ............................................................................................ 314

Table 9. Historical Status Options ................................................................................................. 319

Table 10. MSTP Region ................................................................................................................ 359

Table 11. Regional Bridge Priority Value Increments ................................................................... 360

Table 12. AT-S112 Management Software Default Settings ........................................................ 369

List of Tables

Preface

This guide contains instructions on how to use the AT-S112 Management Software to manage and monitor the AT-GS950/16PS Gigabit Ethernet PoE+ Switch.

The AT-S112 Management software has a web browser interface that you can access from any management workstation on your network that has a web browser application.

This preface contains the following sections:

 “Document Conventions” on page 16

 “Allied Telesis Contact Information” on page 17

Preface

Note

Caution

Warning

Document Conventions

This document uses the following conventions:

Notes provide additional information.

Cautions inform you that performing or omitting a specific action may result in equipment damage or loss of data.

Warnings inform you that performing or omitting a specific action may result in bodily injury.

AT-GS950/16PS Switch Web Interface User’s Guide

Allied Telesis Contact Information

If you need assistance with this product, you may contact Allied Telesis technical support by going to the Support & Services section of the Allied Telesis web site at www.alliedtelesis.com/support. You can find links for the following services on this page:

 24/7 Online Support - Enter our interactive support

center to search for answers to your questions in our knowledge database, check support tickets, learn about RMAs, and contact Allied Telesis technical experts.

 USA and EMEA phone support - Select the phone

number that best fits your location and customer type.

 Hardware warranty information - Learn about Allied

Telesis warranties and register your product online.

 Replacement Services - Submit a Return Merchandise

Authorization (RMA) request via our interactive support center.

 Documentation - View the most recent installation

guides, user guides, software release notes, white papers and data sheets for your product.

 Software Updates - Download the latest software

releases for your product.

For sales or corporate contact information, go to www.alliedtelesis.com/purchase and select your region.

Preface

Section I

Getting Started

This section contains the following chapters:

 Chapter 1, “Starting a Web Browser Session” on page 21

 Chapter 2, “System Configuration” on page 27

Chapter 1

Starting a Web Browser Session

This chapter contains the procedures for starting, using, and quitting a web browser management session on the AT-GS950/16PS switch. This chapter includes the following sections:

 “Establishing a Remote Connection to the Web Browser Interface” on

page 22

 “Web Browser Tools” on page 25

 “Quitting a Web Browser Management Session” on page 26

Chapter 1: Starting a Web Browser Session

Switch’s IP Address

Establishing a Remote Connection to the Web Browser Interface

The AT-GS950/16PS switch is shipped with a pre-assigned IP address of

192.168.1.1. After your initial login, Allied Telesis suggests that you assign a new IP address to your switch. To manually assign an IP address to the switch, refer to “Configuration of IP Address, Subnet Mask and Gateway Address” on page 30. To configure the switch to obtain its IP configuration from a DHCP server, refer to “DHCP Client Configuration” on page 45.

Whether you use the pre-assigned IP address or assign a new one, you must set your local PC to the same subnet as the switch.

To start a web browser management session, perform the following procedure:

1. Start your web browser.

2. In the URL field of the browser, enter 192.168.1.1.

This is the default IP address of the switch. See Figure 1.

Figure 1. Entering a Switch’s IP Address in the URL Field

The AT-S112 Management Software displays the login dialog box. See Figure 2.

Figure 2. Management Login Dialog Box

3. Enter the AT-S112 management login user name and password.

AT-GS950/16PS Switch Web Interface User’s Guide

Note

The default user name is “manager” and the default password is “friend.” The login name and password are case-sensitive.

4. Press OK.

The AT-GS950/16PS Switch Information page is displayed. See Figure

To change the user name and password, refer to “User Name and Password Configuration” on page 34.

Figure 3. AT-GS950/16PS Switch Information Page

The main menu appears on the left side and is common for all of the management pages discussed in this manual. It consists of the following folders and web pages:

 Switch Info

 Front Panel

 System

 Physical Interface

 Bridge

 SNMP

 Access Control

 RMON

Chapter 1: Starting a Web Browser Session

5. To see the front panel of the switch, select Front Panel from the main

 Voice VLAN

 Security

 LLDP

 Statistics Chart

 Tools

 Save Configuration

menu on the left side of the page.

The AT-S112 Management software displays the front of the switch. Ports are green that have a link to an end node. Ports without a link are grey. The AT-GS950/16PS switch front panel page is shown in Figure 4.

Figure 4. Front Panel Page

A web browser management session remains active even if you link to other sites. You can return to the management web pages anytime as long as you do not quit your browser session or the management session does not time out. The default time-out is 10 minutes.

Web Browser Tools

You can use the web browser tools to move around the management pages. Selecting Back on your browser’s toolbar returns you to the previous display. You can also use the browser’s Bookmark feature to save the link to the switch.

AT-GS950/16PS Switch Web Interface User’s Guide

Chapter 1: Starting a Web Browser Session

Quitting a Web Browser Management Session

To exit a web browser management session, close the web browser.

Chapter 2

Note

System Configuration

This chapter provides procedures to configuring basic system parameters for the AT-GS950/16PS switch and contains information for the following sections:

 “System Management Information” on page 28

 “Configuration of IP Address, Subnet Mask and Gateway Address” on

page 30

 “IP Access List Configuration” on page 32

 “User Name and Password Configuration” on page 34

 “User Interface Configuration” on page 37

 “System Time” on page 39

 “SSL Settings” on page 42

 “DHCP and ATI Web Discovery Tool” on page 44

 “DHCP Client Configuration” on page 45

 “DHCP Auto Configuration” on page 47

 “System Log Configuration” on page 50

 “System Information Display” on page 48

To permanently save your new settings or any changes to the configuration file, select Save Configuration to Flash from the main menu on the left side of the page.

Chapter 2: System Configuration

Note

System Management Information

This section explains how to assign a name, location, and contact information for the AT-GS950/16PS switch. This information helps in identifying each specific AT-GS950/16PS switch among other switches in the same local area network. Entering this information is optional.

Allied Telesis recommends that you assign a name to the switch. Naming each switch can help you identify the specific switch you want to manage among others. It can also help to avoid performing a configuration procedure on the wrong switch.

To set a switch’s administration information, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select Management. The Management Page is displayed. See Figure 5 for the AT-GS950/16PS Management Page.

Figure 5. AT-GS950/16PS Management Page

3. Configure the following parameters as necessary:

System Description - Specifies the Allied Telesis switch model. You cannot change this parameter.

System Object ID - Indicates the unique SNMP MIB object identifier that identifies the switch model. You cannot change this parameter.

AT-GS950/16PS Switch Web Interface User’s Guide

System Name - Specifies a name for the switch, for example, Sales. The name is optional and may contain up to 15 characters.

System Location - Specifies the location of the switch. The location is optional and may contain up to 30 characters.

System Contact - Specifies the name of the network administrator responsible for managing the switch. This contact name is optional and may contain up to 30 characters.

4. Click Apply.

5. From the main menu on the left side of the page, click on Switch Info. The Switch Information page is displayed. See “AT-GS950/8 Switch Information Page” on page 21 for more information.

6. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 2: System Configuration

Configuration of IP Address, Subnet Mask and Gateway Address

This procedure explains how to change the IP address, subnet mask, and gateway address of the switch. Before performing the procedure, note the following:

 A gateway address is only required if you want to

remotely manage the device from a management station that is separated from the switch by a router.

 To configure the switch to automatically obtain its IP

configuration from a DHCP server on your network, go to “DHCP Client Configuration” on page 45.

To change the switch’s IP configuration, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select IP Setup. The IP Setup Page is displayed. See Figure 6.

Figure 6. IP Setup Page

3. Change the IP configuration parameters by observing or entering new information in the following fields:

System MAC Address - This parameter displays the MAC address of the switch. You cannot change this parameter.

System IP Address - Displays the current IP address of the switch. To change the IP address, enter a new IP address. When DHCP is enabled, you cannot change this parameter.

System Subnet Mask - Displays the current subnet mask of the switch. To change the subnet mask, enter a new subnet mask. When DHCP is enabled, you cannot change this parameter.

AT-GS950/16PS Switch Web Interface User’s Guide

Note

Caution

System Default Gateway - Displays the default gateway of the

switch. To change the default gateway, enter a new gateway. When DHCP is enabled, you cannot change this parameter.

DHCP Mode - For information about setting this parameter, refer to “DHCP Client Configuration” on page 45.

4. Click Apply.

Changing the IP address ends your management session. To resume managing the device, enter the new IP address of the switch in the web browser’s URL field, as shown in Figure 1 on page 20.

5. After you log on to the switch with the new IP address, select Save Configuration to Flash from the main menu on the left side of the page to save the new IP address to memory.

If you do not select Save Configuration to Flash, the IP address will revert to its original setting when you power cycle or reboot the switch.

Chapter 2: System Configuration

Note

IP Access List Configuration

When the IP Access List feature is enabled, remote access to the AT-S112 management software is restricted to the IP addresses entered into the IP Access List.

The procedures in this section describe how to enable or disable the IP Access List feature and how to add or remove IP addresses from the list. See the following sections:

 “Create an IP Access List” on page 32

 “Delete an IP Address List Entry” on page 33

To modify IP address that has already been created, it must first be deleted and them re-created using the following procedures.

Create an IP

Access List

To create a list of accessible IP addresses, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select IP Access List. The IP Access List Page is displayed. See Figure 7.

Figure 7. IP Access List Page

3. Enter an IP address in the IP Address field using a xxx.xxx.xxx.xxx format.

4. Click Add. The IP address is added to the IP Access List table in the Accessible IP column.

You can add up to 10 IP address to the IP Access List table.

AT-GS950/16PS Switch Web Interface User’s Guide

5. From the IP Restriction Status field, select one of the following choices from the pull-down menu:

Enable - This selection restricts the access to the AT-S112 management software to the IP addresses in the table listed under

Accessible IP.

Disable - This selection allows unrestricted access to the AT-S112

management software.

6. Click Apply. Access to the management software is now restricted to those IP addresses listed in the IP Access List table.

7. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Delete an IP

Address List

Entry

To delete an IP address from the IP Access List, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select IP Access List. The IP Access List Page is displayed. See Figure 7 on page 32.

3. Select Delete next to the IP address that you want to remove. The IP address is removed from the IP Access List table. If you remove the last IP address from the table, the IP Restriction Status field is set to Disable.

4. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 2: System Configuration

User Name and Password Configuration

Password protection is always enabled for access to the AT-S112 Management software. This section explains how to create new users names and passwords and how to modify or delete existing users for the web interface. See the following sections:

 “Add New User Name and Password” on page 34

 “Modify User Name and Password” on page 35

 “Delete User Name and Password” on page 36

Add New User

Name and

Password

The default User Name and Password is “manager” and “friend” - both without the quotes. To configure new User Name and Password information, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select Administration. The Administration Page is displayed. See Figure 8.

Figure 8. Administration Page

3. To create a user name, enter a user name in the box next to the User Name field.

You can enter a value of up to 12 alphanumeric characters. The User Name field is case sensitive.

AT-GS950/16PS Switch Web Interface User’s Guide

Note

4. To add a password that corresponds to the user name entered in step 3, enter a password of up to 12 alphanumeric characters in the box next to the Password field. The Password field is case sensitive.

5. To confirm the password entry, retype the password in the box next to the Confirm Password field.

6. Click Add to activate your changes on the switch.

7. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Modify User

Name and

Password

To modify the a user name password, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select Administration. The Administration Page is shown in Figure 8 on page 34.

3. Identify the user name that you want to change and click Modify in the Action column. The Modify Administration Page is displayed. See Figure 9.

The default user name cannot be modified or deleted. The default password can be modified.

Figure 9. Modify Administration Page

4. To change a password, enter a password of up to 12 alphanumeric characters in the box next to the Password field.

5. To confirm the above password, retype the password in the box next to the Confirm Password field.

6. Click Apply to activate your changes on the switch.

7. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 2: System Configuration

Note

Delete User Name

and Password

To delete a user name that you have previously added, perform the following procedure.

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select Administration. The Administration Page is shown in Figure 8 on page 34.

3. Identify the user name that you want to delete and click Delete. The user name is removed from the Administration table.

The default user name cannot be modified or deleted. The default password can be modified.

4. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

AT-GS950/16PS Switch Web Interface User’s Guide

Note

User Interface Configuration

This procedure explains how to enable and disable the user interfaces on the switch. With this procedure you can enable or disable the AT-GS950/ 16PS SNMP Agent. For more information about SNMP, go to Chapter 20, “Simple Network Management Protocol SNMPv1 and v2c” on page 263 and Chapter 21, “Simple Network Management Protocol SNMPv3” on page 273.

The Web Server Status is displayed as Enabled for your information only. The Web Server cannot be disabled.

SNMP Interface To enable or disable the AT-GS950/16PS SNMP interface, perform the

following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select User Interface. The User Interface Page is displayed. See Figure 10.

Figure 10. User Interface Page

3. Choose Enable or Disable from the pull down list for the SNMP Agent parameter.

Enabled - When you enable this parameter, the SNMP agent is active. You can manage the AT-GS950/16PS switch with Network Management Software and the switch’s private MIB.

Disabled - When you enable this parameter, the SNMP agent is inactive.

Chapter 2: System Configuration

Note

See Chapter 20, “Simple Network Management Protocol SNMPv1 and v2c” on page 263 and Chapter 21, “Simple Network Management Protocol SNMPv3” on page 273 to configure the remaining SNMP parameters.

4. Click Apply located under the Web Server Status Enable/Disable field.

5. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

User Interface

Timeout

To set the Web Idle Timeout, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select User Interface. The User Interface Page is displayed. See Figure 10 on page 37.

3. Refer to the bottom portion of the web page. Enter the Web Idle Timeout parameter. The range is from 3 to 60 minutes.

4. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

System Time

AT-GS950/16PS Switch Web Interface User’s Guide

The procedures in this section describe how to configure the system time by manually entering the time or through SNTP and how to configure the daylight savings time feature. See the following sections:

 “Manually Setting System Time” on page 39

 “Setting SNTP” on page 40

 “Setting Daylight Savings Parameters” on page 41

Manually Setting

System Time

To set the system time manually, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select System Time. The System Time Page is displayed. See Figure 11.

Figure 11. System Time Page

3. Use the pull down menu to set the Clock Mode parameter to Local time.

Chapter 2: System Configuration

4. In the Local Time Settings section, set the Date Setting (YYYY:MM:DD) to the current date in the YYYY:MM:DD format.

5. In the Local Time Settings section, set the Time Settings (HH:MM:SS) to the current time in the HH:MM:SS format.

6. Click the Apply button at the bottom of the page. The time will take effect immediately.

7. Save your new settings or any changes to the configuration file by selecting Save Configuration to Flash from the main menu on the left side of the page.

Setting SNTP To configure SNTP, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select System Time. The System Time Page is displayed. See Figure 11 on page 39.

3. Use the pull down menu to set the Clock Mode parameter to SNTP.

4. Enter the IP address of the SNTP Primary Server. The format is xxx.xxx.xxx.xxx.

5. Enter the IP address of the SNTP Secondary Server. The format is xxx.xxx.xxx.xxx.

6. Enter the SNTP Poll Interval. The range is 1 - 60 minutes.

7. Enter the local Time Zone from the pull down menu.

8. Click the Apply button at the bottom of the page. The switch will immediately start polling the SNTP primary server for time information.

9. Save your new settings or any changes to the configuration file by selecting Save Configuration to Flash from the main menu on the left side of the page.

AT-GS950/16PS Switch Web Interface User’s Guide

Setting Daylight

Savings

Parameters

If you want to configure the switch for daylight savings time, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select System Time. The System Time Page is displayed. See Figure 11 on page 39.

3. In the Daylight Savings Time Status field, select Enabled.

4. Specify the Month, Day, Hour and Minute when Daylight Savings will take effect in the From time fields.

5. Specify the Month, Day, Hour and Minute when Daylight Savings will end in the To time fields.

6. Using the pull down menu, specify the Daylight Savings offset in the DST Offset field. You can select either 1 hr or 1/2 hr.

7. Save your new settings or any changes to the configuration file by selecting Save Configuration to Flash from the main menu on the left side of the page.

Chapter 2: System Configuration

SSL Settings

The AT-GS950/16PS switch has a web browser server for remote management of the unit with a web browser application from management workstations on your network. By default, the server operates in a non-secure HTTP mode and can be configured to communicate in a secure HTTPS mode with SSL protocol.

In many situations, the communication with the switch will be in a controlled environment and it is acceptable to communicate with the management software in the HTTP mode.

However, you may find that your management communications are subject to outside security risks and web sessions conducted in the nonsecure HTTP mode are vulnerable to security issues because the packets are sent in clear text. Web browser management sessions that use the secure HTTPS mode with SSL protocol are protected against snooping because the packets exchanged between the switch and your management workstations are encrypted. When operating in this mode, only the AT-GS950/16PS switch and the web browser are able to decipher the packets sent and received between them.

Configuring SSL To enable or disable the SSL protocol feature, perform the following

procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select SSL Settings. The SSL Settings Page is displayed. See Figure 12.

Figure 12. SSL Settings Page

3. From the SSL Settings field, select one of the following choices from the pull-down menu:

Enable - The secure SSL mode is active. You must log in to the switch’s management using the HTTPS mode on your browser.

Disable - The secure SSL mode is inactive. You must log in to the switch’s management using the HTTP mode on your browser.

AT-GS950/16PS Switch Web Interface User’s Guide

4. Click Apply. The SSL setting that you have selected is now active.

5. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 2: System Configuration

Note

DHCP and ATI Web Discovery Tool

The AT-GS950/16PS Gigabit Ethernet Smart switch is managed through a web browser interface only. The factory default IP address is 192.168.1.1.

The switch does not have a local console connector, which means that you cannot learn what the switch’s management IP address is on a web browser without first knowing what the address is. Once the IP address is known, you can enter it in the browser.

When the DHCP feature is enabled, a DHCP server automatically assigns an IP address which is not advertised over the network. As a consequence, you do not know what IP address has been assigned to the switch.

The new IP address assignment from the DHCP server may take one to two minutes before the process is completed.

Fortunately, there is an ATI Web Discovery Tool available that resolves this issue. It detects the MAC address, IP address and other information of the AT-GS950 series switches that are present on your local area network.

The ATI Web Discovery Tool is available for download on the ATGS950/16PS product page at alliedtelesis.com.

DHCP Client Configuration

Caution

This procedure explains how to activate and deactivate the DHCP client on the AT-GS950/16PS switch. When the client is activated, the switch obtains its IP configuration including an IP address and subnet mask from a DHCP server on your network. Before performing the procedure, note the following:

 By default, the DHCP client is disabled on the switch.

 The DHCP client supports DHCP Auto Configuration

Settings or BOOTP. See “DHCP Auto Configuration” on page 47 for more information.

 After you enable DHCP, your current management

session ends because a different IP address is assigned to the switch by the DHCP server. The new IP address can be discovered using the ATI Discovery Tool. See “DHCP and ATI Web Discovery Tool” on page 44 for more information.

AT-GS950/16PS Switch Web Interface User’s Guide

To activate or deactivate the DHCP client on the switch, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select IP Setup. The IP Setup Page is shown in Figure 6 on page 30.

3. From the pull-down menu next to the DHCP Mode field, select Enable or Disable.

4. Click Apply. When the DHCP client is Enabled, the web server connection to the switch is lost because a different IP address is assigned to the switch by the DHCP server.

Enabling DHCP may end your current management session.

5. Use the ATI Web Discovery Tool to find the new IP address assigned to the switch by the DHCP server. See “DHCP and ATI Web Discovery Tool” on page 44 for more information.

Chapter 2: System Configuration

Note

The ATI Web Discovery Tool is available for download on the ATGS950/16PS product page at alliedtelesis.com.

6. Follow the procedure to log on with the new IP address provided by the DHCP Server as described in “Establishing a Remote Connection to the Web Browser Interface” on page 20.

7. Save your new settings or any changes to the configuration file by selecting Save Configuration to Flash from the main menu on the left side of the page.

If you do not save the new configuration when DHCP is enabled, the software reverts to the previously saved IP address value when the switch is power cycled or rebooted. If no IP address has been previously saved, the IP address value reverts to 192.168.1.1.

If you enable DHCP and then save your configuration, you are saving the DHCP setting (Enabled). The next time the switch boots up, it will use the DHCP process to establish the IP address used to manage the AT-GS950/16PS switch.

If you enter a new IP address after disabling DHCP and save your configuration, the DHCP setting (Disabled) and the new IP address on the switch is saved. The next time the switch boots up, it will respond to the IP address that you entered when you re-establish contact with the AT-S112 Management software.

DHCP Auto Configuration

Note

If you need to automatically update the switch’s configuration files via a remote server, the DHCP Auto Configuration feature is available for this purpose via the DHCP server.

You must enable the DHCP client so that this feature can operate with the DHCP server. See “DHCP Client Configuration” on page 45 for more information.

To configure this feature on the switch, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select System. The DHCP Auto Configuration Settings Page is shown in Figure 13.

AT-GS950/16PS Switch Web Interface User’s Guide

Figure 13. DHCP Auto Configuration Settings Page

3. From the Auto Configuration State field, select one of the following choices from the pull-down menu:

Enable - The DHCP Auto Configuration feature is active.

You must enable the DHCP client so that this feature can operate with the DHCP server. See “DHCP Client Configuration” on page 45 for more information.

Disable - The DHCP Auto Configuration feature is inactive.

4. Click Apply. The DHCP Auto Configuration setting that you have selected is now active.

5. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 2: System Configuration

System Information Display

The Switch Information page is initially displayed when you first log into the AT-GS950/16PS switch. It provides general information about the switch. To view this information, perform the following procedure:

1. From the main menu on the left side of the page, select Switch Info. The Switch Information Page is displayed. See Figure 14.

Figure 14. AT-GS950/16PS Switch Information Page

The Switch Information Page displays the following information:

System Up For - The number of days, hours, and minutes that the switch has been running since it was last rebooted.

Runtime Image - The version number of the runtime firmware.

Boot Loader - The version number of the bootloader firmware.

Hardware Information Section:

Version - The hardware version number.

DRAM Size - The size of the DRAM, in megabytes.

Flash Size - The size of the flash memory, in megabytes.

AT-GS950/16PS Switch Web Interface User’s Guide

Administration Information Section:

Switch Name - This parameter displays the name assigned to the switch. To assign the switch a name, refer to “System Management Information” on page 28.

Switch Location - This parameter displays the location of the switch. To assign the location, refer to “System Management Information” on page 28.

Switch Contact - This parameter displays the contact person responsible for managing the switch. To assign the name of a contact, refer to “System Management Information” on page 28.

System MAC Address, IP Address, Subnet Mask, and Gateway Section:

MAC Address - This parameter displays the MAC address of the switch.

IP Address - This parameter displays the system IP address. Refer to “Configuration of IP Address, Subnet Mask and Gateway Address” on page 30 to manually assign an IP address or “DHCP Client Configuration” on page 45 to activate the DHCP client.

Subnet Mask - This parameter displays the subnet mask for the switch. Refer to “Configuration of IP Address, Subnet Mask and Gateway Address” on page 30 to manually assign a subnet mask or “DHCP Client Configuration” on page 45 to activate the DHCP client.

Default Gateway - This parameter displays the default gateway IP address. Refer to “Configuration of IP Address, Subnet Mask and Gateway Address” on page 30 to manually assign a gateway address or “DHCP Client Configuration” on page 45 to activate the DHCP client.

Automatic Network Features Section:

DHCP Mode - This parameter displays the status of the DHCP client on the switch. For information about setting this parameter, refer to “DHCP Client Configuration” on page 45.

Chapter 2: System Configuration

System Log Configuration

The System log is designed to monitor the operation the AT-GS950/16PS switch by recording the event messages it generates during normal operation. These events may provide vital information about system activity that can help in the identification and solutions of system problems.

To configure the System log, perform the following procedure:

1. From the main menu on the left side of the page, click the System folder. The System folder expands.

2. From the System folder, select System Log Configuration. The System Log Configuration Page is displayed. See Figure 15.

Figure 15. System Log Configuration Page

AT-GS950/16PS Switch Web Interface User’s Guide

3. From the Syslog Status field, select one of the following choices from the pull-down menu:

Enable - The System log is active.

Disable - The System log is inactive.

4. From the Time Stamp field, select one of the following choices from the pull-down menu:

Enable - Each event message recorded in the log will have a time stamp recorded with it.

Disable - No time stamp will be recorded with the event messages.

5. Enter the Messages Buffer Size.The range is between 1 and 200.

6. Enter the Syslog Server IP Address. The format is xxx.xxx.xxx.xxx. If the address is left at the default setting of 0.0.0.0, no server is specified.

7. In the Facility field, enter the Facility local from the pull-down menu. The choices range from local0 through local7.

8. Select the Logging Level. This parameter specifies what level of event messages will be logged into the System log. Your choices are as follows:

0 Emergency - The system is unusable.

1 Alert - Action must be taken immediately.

2 Critical - Critical conditions are displayed.

3 Error - Error conditions are displayed.

4 Warning - Warning conditions are displayed.

5 Notice - Normal but significant conditions are displayed.

6 Informational - Informational messages are displayed

7 Debug - Debug-level messages are displayed.

9. Click Apply. The System log is now active.

10. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 2: System Configuration

Section II

Bridge Configuration

This section contains the following chapters:

 Chapter 3, “Port Configuration” on page 55

 Chapter 4, “STP and RSTP” on page 61

 Chapter 5, “Multiple Spanning Tree Protocol” on page 79

 Chapter 6, “Static Port Trunking” on page 93

 Chapter 7, “LACP Port Trunks” on page 103

 Chapter 8, “Port Mirroring” on page 113

 Chapter 9, “Loopback Protection” on page 119

 Chapter 10, “MAC Address Table” on page 123

 Chapter 11, “IGMP Snooping” on page 135

 Chapter 12, “Storm Control” on page 141

 Chapter 13, “Virtual LANs” on page 149

 Chapter 14, “GVRP” on page 167

 Chapter 15, “Quality of Service and Cost of Service” on page 175

Chapter 3

Note

Port Configuration

This chapter provides a description of the physical characteristics of the ports and a procedure that explains how to view and change the port settings. This chapter includes the following sections:

 “Overview” on page 56

 “Displaying and Configuring Ports” on page 57

To permanently save your new settings or any changes to the configuration file, select Save Configuration to Flash from the main menu on the left side of the page.

Chapter 3: Port Configuration

Overview

This chapter describes how to display and modify the physical characteristics of an AT-GS950/16PS switch. You can display and modify the settings of all the ports on one web page. The port characteristics that are displayed are:

 Trunk Group Number

 Port type

 Link Status

 Admin Status

 Duplex Mode

 Jumbo frame

 Flow control

 EAP Pass

 BPDU frame

These characteristics are described in the next section.

Displaying and Configuring Ports

Note

This procedure explains how to configure the ports on the AT-GS950/16PS switch using the Port Configuration Page. This page allows you to view and configure the parameter settings of individual or all the switch ports at one time.

To configure the ports, perform the following procedure:

1. From the main menu on the left side of the page, select Physical Interface.

AT-GS950/16PS Switch Web Interface User’s Guide

Figure 16. AT-GS950/16PS Physical Interface Page

2. Adjust the port settings as needed. Not all parameters are adjustable. The parameters are defined as follows:

Port - Specifies the port number. The All value indicates ports 1 through 16 on the AT-GS950/16PS switch. You cannot change this parameter.

You can use the All row value in the Port column to set the Admin. Status, Mode, Jumbo, Flow Ctrl, EAP Pass, and BPDU fields to the same values for all ports at the same time. In the All row when you select Ignore, Enable or Disable in one of these columns, it applies to all of the AT-GS950/16PS switch ports.

Trunk - This parameter indicates the trunk group number. A number in this column indicates that the port has been added to a trunk. This parameter can not be configured on this page, However, for information about configuring a trunk, refer to Chapter 6, “Static Port Trunking” on page 93.

Type - Indicates the port type. On the AT-GS950/16PS, the port type is 1000TX for 10/100/1000Base-T twisted-pair ports (1 through 14, 15R and 16R) and 100FX or 1000TX for the SFP ports

Chapter 3: Port Configuration

Note

(15 and 16) for copper or fiber SFP type.

Link Status - This parameter indicates the status of the link between the port and the end node connected to the port. The possible values are:

Up -This parameter i Indicates a valid link exists between the port and the end node.

Down -This parameter i Indicates the port and the end node have not established a valid link.

Admin. Status -This parameter indicates the operating status of the port. You can use this parameter to enable or disable a port. You may want to disable a port and prevent packets from being forwarded if a problem occurs with the node or cable connected to the port. You can enable the port to resume normal operation after the problem has been fixed. You can also disable an unused port to secure it from unauthorized connections. The possible values are:

Ignore -This parameter applies to the All row only and i Indicates that the Admin. Status field must be set individually for each port.

Enabled - This parameter indicates the port is able to send and receive Ethernet frames.

Disabled - This parameter indicates the port is not able to send and receive Ethernet frames.

Jumbo -This parameter i Indicates whether or not jumbo frames can be accepted by the switch. You may want to activate jumbo frames when your switch will transmit video and audio files. The possible values are:

Ignore -This parameter i Indicates that the All setting does not apply to the Jumbo field. In other words, each port is set individually.

Enabled -This parameter i Indicates the port is permitted to accept jumbo frames.

Disabled -This parameter i Indicates the port is not permitted to accept jumbo frames.

When QoS is enabled on a port, the Jumbo frame parameter can not be enabled. To enable or disable QoS, see “Mapping CoS Priorities to Egress Queues,” next and “CoS Page” on page 180

Mode -This parameter i Indicates the speed and duplex mode

AT-GS950/16PS Switch Web Interface User’s Guide

settings for the port. You can use this parameter to set the speed and duplex mode of a port. The possible settings are:

Ignore -This parameter i Indicates that the All setting does not apply to the Mode field. In other words, each port is set individually.

Auto -This parameter i Indicates the port is using AutoNegotiation to set the operating speed and duplex mode. The actual operating speed and duplex mode of the port are displayed in parentheses (for example, “1000F” for 1000 Mbps full duplex mode) after a port establishes a link with an end node.

Auto (1000F) -This parameter i Indicates the port is configured for 1000Mbps operation in Auto-Negotiation mode.

1000/Full -This parameter i Indicates the port is configured for 1000Mbps operation in full-duplex mode.

100/Full -This parameter i Indicates the port is configured for 100Mbps operation in full-duplex mode.

10/Full -This parameter i Indicates the port is configured for 10Mbps operation in full-duplex mode.

1000/Half -This parameter i Indicates the port is configured for 1000Mbps operation in half-duplex mode.

100/Half -This parameter i Indicates the port is configured for 100Mbps operation in half-duplex mode.

10/Half -This parameter i Indicates the port is configured for 10Mbps operation in half-duplex mode.

When selecting a Mode setting, the following points apply:

 When a twisted-pair port is set to Auto-Negotiation, the

end node should also be set to Auto-Negotiation to prevent a duplex mode mismatch. A switch port using Auto-Negotiation defaults to half-duplex if it detects that the end node is not using Auto-Negotiation. This can result in a mismatch if the end node is operating at a fixed duplex mode of full-duplex. To avoid this problem when connecting an end node with a fixed duplex mode of full-duplex to a switch port, disable Auto-Negotiation on the port and set the port’s speed and duplex mode manually.

 The only valid setting for the SFP ports is Auto-

Negotiation.

Flow Control - This parameter reflects the current flow control setting on the port. The switch uses a special pause packet to

Chapter 3: Port Configuration

notify the end node to stop transmitting for a specified period of time. The possible values are:

Ignore - This parameter indicates that the All setting does not apply to the Flow Control field. In other words, each port is set individually.

Enabled - This parameter indicates that the port is permitted to use flow control.

Disabled - This parameter indicates that the port is not permitted to use flow control.

EAP Pass - This parameter reflects the current Extensible Authentication Protocol (EAP) setting on the port. The possible values are:

Ignore - This parameter indicates that the All setting does not apply to the EAP Pass field. In other words, each port is set individually.

Enabled - This parameter indicates that the port is able to send and receive EAP packets.

Disabled - This parameter indicates that the port is disabled and is not able to send or receive EAP packets.

BPDU - This parameter reflects the current BPDU setting on the port.The possible values are:

Ignore - This parameter indicates that the All setting does not apply to the BPDU field. In other words, each port is set individually.

Enabled - This parameter indicates that the switch will pass BPDU frames through the switch and broadcast them through all other ports.

Disabled - This parameter indicates that the switch will not pass BPDU frames through the switch, With RSTP or STP enabled, the switch will receive BPDU frames and process them according to the spanning tree protocol.

3. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 4

Note

STP and RSTP

This chapter provides background information about the Spanning Tree Protocol (STP) and the Rapid Spanning Tree Protocol (RSTP). In addition, there are procedures to configure STP and RSTP. The sections in the chapter include:

 “Overview” on page 62

 “Basic STP and RSTP Configuration” on page 70

 “Configure RSTP Port Settings” on page 73

 “Spanning Tree Topology” on page 78

For detailed information about STP, refer to IEEE Std 802.1D. For detailed information about RSTP, refer to IEEE Std 802.1w.

To permanently save your new settings or any changes to the configuration file, select Save Configuration to Flash from the main menu on the left side of the page.

Chapter 4: STP and RSTP

Overview

The performance of a Ethernet network can be negatively impacted by the formation of a data loop in the network topology. A data loop exists when two or more nodes on a network can transmit data to each other over more than one data path. The problem that data loops pose is that data packets can become caught in repeating cycles, referred to as broadcast storms, that needlessly consume network bandwidth and can significantly reduce network performance.

STP and RSTP prevent data loops from forming by ensuring that only one path exists between the end nodes in your network. Where multiple paths exist, these protocols place the extra paths in a standby or blocking mode, leaving only one main active path.

In addition, STP and RSTP can activate a redundant path if the main path goes down. So not only do these protocols guard against multiple links between segments and the risk of broadcast storms, but they can also maintain network connectivity by activating a backup redundant path in case a main link fails.

Where the two protocols differ is in the time each takes to complete the process referred to as convergence. When a change is made to the network topology, such as the addition of a new bridge, a spanning tree protocol must determine whether there are redundant paths that must be blocked to prevent data loops, or activated to maintain communications between the various network segments. This is the process of convergence.

With STP, convergence can take up to a minute or more to complete in a large network. This can result in the loss of communication between various parts of the network during the convergence process, and the subsequent lost of data packets.

RSTP is much faster. It can complete a convergence in seconds, and so greatly diminish the possible impact the process can have on your network. The STP implementation in the AT-S112 Management software complies with the IEEE 802.1d standard.

Only one spanning tree at a time can be active on the switch. The default protocol is RSTP. The RSTP implementation complies with the IEEE

802.1w standard.

The following subsections provide a basic overview on how STP and RSTP operate and define the different parameters that you can adjust.

AT-GS950/16PS Switch Web Interface User’s Guide

Bridge Priority

and the Root

Bridge

The first task that bridges perform when a spanning tree protocol is activated on a network is the selection of a root bridge. A root bridge distributes network topology information to the other network bridges and is used by the other bridges to determine if there are redundant paths in the network.

A root bridge is selected by the bridge priority number, also referred to as the bridge identifier, and sometimes the bridge’s MAC address. The bridge with the lowest bridge priority number in the network is selected as the root bridge. If two or more bridges have the same lowest bridge priority number, the one with the lowest MAC address is designated as the root bridge.

You can change the bridge priority number in the AT-S112 Management software. You can designate which switch on your network as the root bridge by giving it the lowest bridge priority number. You may also consider which bridge should function as the backup root bridge in the event you need to take the primary root bridge off line and assign that bridge the second lowest bridge identifier number.

The bridge priority has a range 0 to 61440 in increments of 4096. To make this easier for you, the AT-S112 Management software divides the range into increments. You specify the increment that represents the desired bridge priority value. The range is divided into sixteen increments, as shown in Table 1.

Table 1 Bridge Priority Value Increments

Increment

0x0000 0 0x8000 32768

0x1000 4096 0x9000 36864

0x2000 8192 0xA000 40960

0x3000 12288 0xB000 45056

0x4000 16384 0xC000 49152

0x5000 20480 0xD000 53248

0x6000 24576 0xE000 57344

0x7000 28672 0xF000 61440

Bridge

Priority

Increment

Bridge

Priority

Chapter 4: STP and RSTP

Path Costs and Port Costs

After the root bridge has been selected, the bridges determine if the network contains redundant paths and, if one is found, select a preferred path while placing the redundant paths in a backup or blocking state.

Where there is only one path between a bridge and the root bridge, the bridge is referred to as the designated bridge and the port through which the bridge is communicating with the root bridge is referred to as the root port.

If redundant paths exist, the bridges that are a part of the paths must determine which path is the primary, active path, and which path(s) are placed in the standby, blocking mode. This is accomplished by an determination of path costs. The path offering the lowest cost to the root bridge becomes the primary path and all other redundant paths are placed into blocking state.

Path cost is determined by evaluating port costs. Every port on a bridge participating in STP has a cost associated with it. The cost of a port on a bridge is typically based on port speed. The faster the port, the lower the port cost. The exception to this is the ports on the root bridge, where all ports have a port cost of 0.

Path cost is the sum of the port costs between a bridge and the root bridge.

The port cost of a port on the switch is adjustable through the AT-S112 Management software. For STP and RSTP, the range is from 0 to 200,000,000.

Port Priority

If two paths have the same port cost, the bridges must select a preferred path. In some instances this can involve the use of the port priority parameter which is used as a tie breaker when two paths have the same cost.

The range for port priority is 0 to 240. As with bridge priority, this range is broken into increments, in this case multiples of 16. To select a port priority for a port, you enter the desired value. Table 2 on page 65 lists the values that are valid.

AT-GS950/16PS Switch Web Interface User’s Guide

Table 2. Valid Port Priority Values

Step

Port

Priority

216

332

448

564

680

796

8112

9 128

10 144

11 160

Forwarding

Delay and

Topology

Changes

12 176

13 192

14 208

15 224

16 240

If there is a change in the network topology due to a failure, removal, or addition of any active components, the active topology also changes. This may trigger a change in the state of some blocked ports. However, a change in a port state is not activated immediately.

It may take time for the root bridge to notify all bridges that a topology change has occurred, especially if it is a large network. A temporary data loop could occur if a topology change is made before all bridges have been notified and that could adversely impact network performance.

To forestall the formation of temporary data loops during topology changes, a port designated to change from blocking to forwarding passes through two additional states - listening and learning - before it begins to forward frames. The amount of time a port spends in these states is set by the forwarding delay value. This value states the amount of time that a port spends in the listening and learning states prior to changing to the forwarding state.

Chapter 4: STP and RSTP

Note

The forwarding delay value is adjustable in the AT-S112 Management software. The appropriate value for this parameter depends on a number of variables; the size of your network is a primary factor. For large networks, you should specify a value large enough to allow the root bridge sufficient time to propagate a topology change throughout the entire network. For small networks, you should specify a smaller value so that the time for a topology change is optimized for minimum data loss.

The forwarding delay parameter applies only to ports on the switch that are operating STP-compatible mode.

Hello Time and Bridge Protocol Data Units (BPDU)

The bridges that are part of a spanning tree domain communicate with each other using a bridge broadcast frame that contains a special section devoted to carrying STP or RSTP information. This portion of the frame is referred to as the bridge protocol data unit (BPDU). When a bridge is brought online, it issues a BPDU in order to determine whether a root bridge has already been selected on the network, and if not, whether it has the lowest bridge priority number of all the bridges and should therefore become the root bridge.

The root bridge periodically transmits a BPDU to determine whether there have been any changes to the network topology and to inform other bridges of topology changes. The frequency with which the root bridge sends out a BPDU is called the hello time. This is a value that you can set in the AT-S112 Management software. The interval is measured in seconds. Consequently, if the switch is selected as the root bridge of a spanning tree domain, it transmits a BPDU every two seconds.

Point-to-Point and Edge Ports

This section applies only to RSTP. Part of the task of configuring RSTP is defining the port types on the bridge, which is directly related to the device(s) connected to the port. With the port types defined, RSTP can reconfigure a network much quicker than STP when a change in network topology is detected.

There are two possible selections:

 Point-to-point port

 Edge port

If a bridge port is connected to another bridge or router port, it normally operates in full-duplex mode and is functioning as a point-to-point port. Figure 17 on page 67 illustrates two switches that are connected with one data link. This link is operating between two point-to-point ports.

AT-GS950/16PS Switch Web Interface User’s Guide

Point-to-Point Ports

Workstation

Edge Port

Figure 17. Point-to-Point Ports

A port operates as an edge port when it is connected to a network terminal device such as a workstation or a server. An edge port on a bridge should not have any STP or RSTP devices connected to it either directly or through another device connected to that port. In this configuration since the port has no STP or RSTP devices connected to it, it will always forward network traffic. Figure 18 illustrates a port functioning as an edge port.

Mixed STP and

RSTP Networks

Figure 18. Edge Port

RSTP IEEE 802.1w is fully compliant with STP IEEE 802.1d. Your network can consist of bridges running both protocols. STP and RSTP in the same network can operate together to create a single spanning tree domain.

If you decide to activate spanning tree on the switch, Allied Telesis recommends RSTP instead of STP even when all of other switches in the network are running STP. The AT-GS950/16PS switch can combine RSTP with the STP of the other switches. The switches monitors the traffic on each port for BPDU packets. Ports that receive RSTP BPDU packets operate in RSTP mode while ports receiving STP BPDU packets operate in STP mode.

Chapter 4: STP and RSTP

UUU

Ports blocked by STP

Blocked Data Links

Spanning Tree

and VLANs

The spanning tree implementation in the AT-S112 Management software can be a single-instance spanning tree as described in this chapter. If you choose to define multiple spanning trees on this switch, go to Chapter 5, “Multiple Spanning Tree Protocol” on page 79.

The single spanning tree encompasses all ports on the switch. If the ports are divided into different VLANs, the spanning tree crosses the VLAN boundaries. This can pose a problem in networks containing multiple VLANs that span two bridges and are connected with untagged ports. In this situation, spanning tree blocks a data link because it detects a suspected data loop. This can cause fragmentation of your VLANs.

This issue is illustrated in Figure 42. VLANs 1 – 3 span two switches. One link consisting of untagged ports connect each VLAN. If STP or RSTP is activated on the switches, two of the links are disabled. As a direct result, two VLANs are disconnected between the bridges. In this example, the ports (on the non-root switch) that link the two parts of the VLANs 2 - 3 are changed to the blocking state, which disrupts these VLAN connections.

Figure 19. STP and VLAN Fragmentation with Untagged Ports

You can avoid this problem by connecting the switches using tagged instead of untagged ports when you plan to have STP or RSTP enabled on your network. If each port connecting the two bridges is a tagged member of all three VLANs, then traffic for each of the VLANs can still flow through one the data links if the other two are blocked by Spanning Tree. The second and third data links act as redundant links in case the primary, unblocked data link becomes disabled. See Figure 20 for an example of this solution.

AT-GS950/16PS Switch Web Interface User’s Guide

Note

TTT

Ports blocked by STP

Blocked Data Links

VLAN

1-3

VLAN

1-3

VLAN

1-3

VLAN

1-3

VLAN

1-3

VLAN

1-3

Figure 20. STP and VLAN Compatibility with Tagged Ports

For information about tagged and untagged ports, refer to Chapter 13, “VLAN Overview” on page 150.

Chapter 4: STP and RSTP

Basic STP and RSTP Configuration

To configure the basic STP and RSTP settings, perform the following procedure:

1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands.

2. From the Bridge folder, select the Spanning Tree folder. The Spanning Tree folder expands.

3. From the Spanning Tree folder, select the RSTP folder. The RSTP folder expands.

4. Form the RSTP folder, select RSTP. The Rapid Spanning Tree Configuration Page is displayed. See Figure

21.

Figure 21. Rapid Spanning Tree Configuration Page

AT-GS950/16PS Switch Web Interface User’s Guide

Note

The RSTP Configuration page allows you to configure basic STP (STP-Compatible) or RSTP protocols as well as to view current settings of the feature.

 In the upper portion of the page, you can set the

following parameters:

Global RSTP Status - Set this field to activate or de-activate the RSTP feature on the switch. From the Global RSTP Status field at the top of the page, select one of the following choices from the pull-down menu:

Enable - The RSTP feature is active. The other parameter fields on the web page become active and are eligible for data to be entered.

Disable - The RSTP feature is inactive. The other parameter fields on the web page become inactive and are greyed out so that data cannot be entered.

Protocol Version - Set this field to activate RSTP or STP on the switch. To activate this field, select RSTP or STP-compatible and then click Apply at the top of the page.

 In the middle section of the page, the following fields

are listed:

You cannot change these fields.

Root Port - The active port on the switch that is communicating with the root bridge. If the switch is the root bridge for the LAN, then there is no root port and the root port parameter is set to 0.

Root Path Cost - The sum of all the root port costs of all the bridges between the switch’s root port and the root bridge including the switch’s root port cost.

Time Since Topology Change - The time in seconds since the last topology change took place. When RSTP detects a change to the LAN’s topology or when the switch is rebooted, this parameter is reset to 0 seconds and begins incrementing until the next topology change is detected.

To update the Time Since Topology Change parameter, you must refresh your browser.

Topology Change Count - An integer that reflects the number of times RSTP has detected a topology change on the LAN since the switch was initially powered on or rebooted.

Chapter 4: STP and RSTP

 The following parameters refer to the designated root

bridge. You cannot change these fields.

Designated Root - This parameter includes two fields: the root bridge priority and the MAC address of the root bridge. For example, 1000 00C08F1211BB shows the root bridge priority as 1000, and 00C08F1211BB as the MAC address.

Hello Time - This parameter is the Hello Me. See “Hello Time and Bridge Protocol Data Units (BPDU)” on page 66. This parameter affects only the root bridge.

Maximum Age - The parameter displays the maximum amount of time that BPDU’s are stored before being deleted on the root bridge.

Forward Delay - The parameter displays the time interval between generating and sending configuration messages by the root bridge.

 The bottom section of the web page provides

information about the bridge. The following parameters appear in the bottom third of the web page:

Bridge ID - The Bridge ID is the MAC address of the bridge. The bridge identifier is used as a tie breaker in the selection of the root bridge when two or more bridges have the same bridge priority. You cannot change this parameter.

Bridge Priority - The priority number for the bridge, in hexadecimal format. This number is used to determine the root bridge for RSTP. The bridge with the lowest priority number is selected as the root bridge. If two or more bridges have the same priority value, that is, the lowest value of all the other bridges, then the bridge with the numerically lowest MAC address becomes the root bridge. When a root bridge goes offline, the bridge with the lowest priority number automatically takes over as the root bridge. This parameter can be from 0X0000 to 0XF000, with 0XF000 being the highest priority.

Bridge Hello Time - This is the time interval between generating and sending configuration messages by the bridge. This parameter is active only when the switch is the root bridge.

Bridge Maximum Age - The length of time after which stored bridge protocol data units (BPDU’s) are deleted by the bridge.

Bridge Forward Delay - This is the time interval between generating and sending configuration messages by the bridge.

5. Once you have configured the parameters, click Apply.

6. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Configure RSTP Port Settings

This section contains the following topics:

 “Configure the Basic RSTP Port Settings,” next

 “Configure the Advanced RSTP Port Settings” on page 75

AT-GS950/16PS Switch Web Interface User’s Guide

Configure the

Basic RSTP Port

Settings

To configure the basic RSTP port settings, perform the following procedure:

1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands.

2. From the Bridge folder, select the Spanning Tree folder. The Spanning Tree folder expands.

3. From the Spanning Tree folder, select the RSTP folder. The RSTP folder expands.

4. From the RSTP folder, select the RSTP Basic Port. The AT-GS950/16PS RSTP Basic Port Configuration Page is displayed. See Figure 22 for a partial view of this page.

Figure 22. AT-GS950/16PS RSTP Basic Port Configuration Page

This page displays the following information about the ports:

Port - Indicates ports 1 through 16 on the AT-GS950/16PS switch. You can select the All row to apply the same setting to all ports of your switch for the STP Status, Priority, and Path Cost fields.

Trunk - Indicates the trunk assignment of a port.

Link Status - Indicates if the port link status is active (Up) or

inactive (Down).

Port State - Indicates one of the following port states:

Blocking - A blocking state does not allow network traffic to be

Chapter 4: STP and RSTP

sent or received on a the port except for BPDU data. A port with a higher path cost to the root bridge than another on the switch will cause a switching loop and is placed in the blocking state by the Spanning Tree algorithm. The port’s state may change to the forwarding state if the other links in use fail and the Spanning Tree algorithm determines the port may transition to the forwarding state.

Listening - This state occurs on a port during the convergence process. The port in the listening state processes BPDUs and awaits new information that would cause the port to return to the blocking state.

Learning - While the port does not yet forward frames (packets) in this state, the port does learn source addresses from frames received and adds them to the filtering (switching) database.

Forwarding - A port that both receives and sends data. This indicates normal operation. STP continues to monitor the port for incoming BPDUs that indicate the port should return to the blocking state to prevent a loop.

Disabled - This state is not strictly part of STP. However, a network administrator can manually disable a port.

Role - Indicates one of the following port roles:

Disabled - The Disabled Port role is assigned if the port is not

operational or is excluded from the active topology by management or it is a network access port (IEEE Std 802.1X) and it is Unauthorized, or its Administrative Bridge Port state is Disabled.

Root - If the least cost path to the root is through this port, then it becomes the root port for this bridge.

Designated - If this is the designated bridge for the LAN and if the root path cost information received on this port is greater than the root port's path cost and less than any other port's received information, then this port becomes the designated port.

Backup - Any operational Bridge Port that is not a Root or Designated Port is a Backup Port if the Bridge is the Designated Bridge for the attached LAN.

Alternate - Any operational Bridge Port that is not a Root or a Designated Port is an Alternate Port if that Bridge is not the Designated Bridge for the attached LAN.

STP Status - Indicates if spanning tree protocol (either RSTP or STP-Compatible) is active or not on the port. Select one of the following choices from the pull-down menu:

AT-GS950/16PS Switch Web Interface User’s Guide

Enable - The spanning tree protocol (both RSTP or STPCompatible) is enabled on the port.

Disabled - The spanning tree protocol (both RSTP or STPCompatible) is disabled on the port.

Priority - Indicates the port priority. See “Port Priority” on page 64 for more information.

Path Cost - Indicates the Path Cost assigned to each port. For STP, the range is from 0 to 65,535. For RSTP, the range is from 0 to 200,000,000. The Path cost is described in “Path Costs and Port Costs” on page 64.

5. Click Apply for the port you are configuring.

6. To configure all of the ports to the same settings, in the All row, configure one, two, or all of the following settings: STP Status, Priority and Port Cost.

7. Click Apply.

Configure the

Advanced RSTP

Port Settings

8. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

To configure the advanced RSTP port settings, perform the following procedure:

1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands.

2. From the Bridge folder, select the Spanning Tree folder. The Spanning Tree folder expands.

3. From the Spanning Tree folder, select the RSTP folder. The RSTP folder expands.

4. From the RSTP folder, select RSTP Advanced Port folder. The AT-GS950/16PS RSTP Advanced Port Configuration Page is displayed. See Figure 23 on page 75 for a partial view of this page.

Figure 23. AT-GS950/16PS RSTP Advanced Port Configuration Page

Chapter 4: STP and RSTP

This page displays the following information about the ports:

Port - Indicates ports 1 through 16 on the AT-GS950/16PS switch. You can select the All row to apply the same setting to all ports of your switch for the AdminOperEdge, Admin/OperPtoP, and

Migration fields.

Trunk - Indicates the trunk assignment of a port.

Link - Indicates that the port’s link is active (Up) or inactive

(Down).

State - Indicates one of the following port states:

Blocking - A blocking state does not allow network traffic to be

sent or received on a the port except for BPDU data. A port with a higher path cost to the root bridge than another on the switch causes a switching loop and is placed in the blocking state by the Spanning Tree algorithm. The port’s state may change to the forwarding state if the other links in use fail and the Spanning Tree algorithm determines the port may transition to the forwarding state.

Learning - While the port does not yet forward frames (packets), in this state the port does learn source addresses from frames received and adds them to the filtering (switching) database.

Disabled - This state is not strictly part of STP. However, a network administrator can manually disable a port.

Role - Indicates one of the following port roles:

Disabled - The Disabled Port role is assigned if the port is not

operational or is excluded from the active topology by management or it is a network access port (IEEE Std 802.1X) and it is Unauthorized, or its Administrative Bridge Port state is Disabled.

Root - If the least cost path to the root is through this port, then it becomes the root port for this bridge.

Designated - If this is the designated bridge for the LAN and if

AT-GS950/16PS Switch Web Interface User’s Guide

this port receives root path cost information that is greater than the root port's path cost and less than any other port's received information, then this port becomes the designated port.

Backup - Any operational Bridge Port that is not a Root or Designated Port is a Backup Port if the Bridge is the Designated Bridge for the attached LAN.

Alternate - Any operational Bridge Port that is not a Root or a Designated Port is an Alternate Port if that Bridge is not the Designated Bridge for the attached LAN.

Admin/OperEdge - Indicates if a port is connected to an edge device in the network topology or not.

True - The port is connected to an edge device and the port will always be in a forwarding state.

False - The port is not connected to an edge device.

Admin/OperPtoP - Indicates if the port is connected to another

network device (point-to-point) in the network topology.

True - The port is connected to a network device in the network topology.

False - The port is not connected to a network device in the network topology.

Migration - Indicates if the port is configured to accept RSTP and STP BPDUs

5. Click Apply for the port you are configuring.

6. To configure all of the ports to the same settings, in the All row, configure one, two, or all of the following settings: Admin/OperEdge, Admin/OperPtoP, and Migration.

7. Click Apply.

8. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 4: STP and RSTP

Spanning Tree Topology

To view the current spanning tree topology, perform the following procedure:

1. From the main menu on the left side of the page, select Bridge. This folder expands.

2. From the Bridge folder, select the Spanning Tree folder.

3. From the Spanning Tree folder, select Topology Info. The AT-GS950/16PS Designated Topology Information Page is displayed. See Figure 24 for a partial view of this page.

Figure 24. AT-GS950/16PS Designated Topology Information Page

This page is contains status information only and there are no parameters to configure. The following information is displayed about the ports:

Port - Indicates ports 1 through 16 on the AT-GS950/16PS switch.

Trunk - The trunk of which the port is a member.

Link Status - Whether the link on the port is up or down.

Designated Root - The designated root bridge to which the

switch’s root port is actively connected.

Designated Cost - The sum of all the root port costs on all bridges, including the switch, between the switch and the root bridge.

Designated Bridge - An adjacent bridge to which the root port of the switch is actively connected.

Designated Port - The root bridge to which the root port of the switch is actively connected.

Chapter 5

Multiple Spanning Tree Protocol

This chapter provides the procedures for configuring Multiple Spanning Tree Protocol (MSTP). You can find an overview and configuration guidelines for this feature in “MSTP Overview” on page 349.

When you configure MSTP, the information should be entered in order on the following web pages:

 “Multiple Spanning Tree Configuration” on page 80

 “Port Configuration” on page 83

 “VLAN Mapping” on page 86

 “Port Settings” on page 88

 “Topology Information” on page 90

Chapter 5: Multiple Spanning Tree Protocol

Multiple Spanning Tree Configuration

To configure the MSTP settings, perform the following procedure:

1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands.

2. From the Bridge folder, select the Spanning Tree folder. The Spanning Tree folder expands.

3. From the Spanning Tree folder, select the MSTP folder. The MSTP folder expands.

4. From the MSTP folder, select MSTP.

The Multiple Spanning Tree Configuration Page is displayed. See Figure 25 on page 80.

Figure 25. Multiple Spanning Tree Configuration Page

The MSTP Configuration page allows you to configure the MSTP parameters as well as to view current settings of the feature.

 In the upper portion of the page, you can set the

AT-GS950/16PS Switch Web Interface User’s Guide

Note

Caution

following parameters:

Global MSTP Status - Set this field to Enable or Disable the MSTP feature on the switch. The Global MSTP Status must be set to Enable before the other MSTP configuration parameters can be set.

Both RSTP and BPDU Passthrough must be disabled before you enable MSTP.

Enabling or disabling MSTP causes the switch to temporarily stop switching Ethernet network traffic.

Maximum MST Instances - This specifies the maximum number of Multiple Spanning Tree Instances (MSTIs) that can be configured. The range is 1 - 31.

Bridge Priority - This parameter specifies the priority used in determining the regional root for a particular MSTI. For more information about Bridge Priority, see Table 11 on page 360.

Region Name - This parameter specifies the region’s name where the bridge is a member. This name must be identical to the regional names specified on other switches in the same MSTP region. See “Multiple Spanning Tree Regions” on page 358 for more information.

Region Revision - The parameter indicates the region’s revision and must be identical to the regional names specified on other switches in the same MSTP region. See “Multiple Spanning Tree Regions” on page 358 for more information.

Dynamic Path Cost Calculation - This parameter is either True or False. When set to True, the path cost of each port on the bridge is dynamically calculated based on the port speed. If the parameter is set to False, the path cost of the bridge is based on the initial value of the port speed.

 In the middle section of the page, the status of the

MSTP bridge parameters are shown. The bottom section of the page is where you can adjust the values of these parameters. The following fields are listed:

Maximum Age - The Maximum Age defines the amount of time a port will wait for STP/RSTP information. MSTP uses this parameter when interacting with STP/RSTP domains on the boundary ports. Its range is 6 - 40 seconds.

Chapter 5: Multiple Spanning Tree Protocol

5. Once you have configured the parameters, click Apply.

6. From the main menu on the left side of the page, select Save

Forward Delay - The Forward Delay defines the time that the bridge spends in the listening and learning states. Its range is 4 - 30 seconds.

Maximum Hop Count - The Maximum Hop Count is a parameter set in a BPDU packet when it originates. It is decremented by 1 each time it is retransmitted by the next bridge. When the Hop Count value reaches zero, the bridge drops the BPDU packet. Its range is 6 - 40 hops.

Transmit Hold Count - The Transmit Hold Count specifies the maximum number of BPDUs that the bridge can send per second. Its range is 1 - 10.

Configuration to Flash to permanently save your changes.

Port Configuration

AT-GS950/16PS Switch Web Interface User’s Guide

To configure the MSTP parameters for each of the ports, perform the following procedure:

1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands.

2. From the Bridge folder, select the Spanning Tree folder. The Spanning Tree folder expands.

3. From the Spanning Tree folder, select the MSTP folder. The MSTP folder expands.

4. From the MSTP folder, select MSTP Port Configuration. The AT-GS950/16PS MSTP Port Configuration Page is displayed. See Figure 26 for a partial view of this page.

Figure 26. AT-GS950/16PS MSTP Port Configuration Page

You may choose a port and configure its MSTP parameters on this page. The following information is displayed:

Port - Indicates ports 1 through 16 on the AT-GS950/16PS switch. You can select the All row to apply the same setting to all ports of your switch for the Point-to-Point Status, Edge Port, MSTP

Status, Protocol Migration, AutoEdge Status, Restricted Role, Restricted TCN fields.

Path Cost - Specifies the cost of a port to the root.

Priority - Specifies the spanning tree port priority.

PointToPoint Status - Indicates if the port is connected to another

network device (point-to-point) in the network topology. See “Pointto-Point and Edge Ports” on page 66 for more information.

Chapter 5: Multiple Spanning Tree Protocol

ForcedTrue - The port is connected to a network device in the network topology.

ForcedFalse - The port is not connected to a network device in the network topology.

Auto - The switch will automatically determine the port type.

Edge Port - Indicates if a port is connected to an edge device in

the network topology or not. See “Point-to-Point and Edge Ports” on page 66 for more information.

True - The port is connected to an edge device and the port will always be in a forwarding state.

False - The port is not connected to an edge device.

MSTP Status - Indicates if MSTP is Enabled or Disabled.

Enabled - MSTP is active on the port.

Disabled - MSTP is inactive on the port.

Protocol Migration - A switch running MSTP supports a built-in

protocol migration mechanism that enables it to inter-operate with legacy 802.1D switches.

True - The switch is able to inter-operate with 802.1D BPDU packets.

False - This switch can only operate with RSTP and MSTP packets.

Hello Time - The Hello Time is frequency with which the root bridge sends out a BPDU. See “Hello Time and Bridge Protocol Data Units (BPDU)” on page 66 for more information.

AutoEdge Status - This parameter allows the switch to detect if the port functioning as an edge port.

Restricted Role - This parameter prevents the port from becoming a root port.

True - The port is prevented from being a root port or a port that is used to communicate with the root bridge.

False - This switch can only operate with RSTP and MSTP packets.

The net effect of setting all ports on the switch to True is that it forces the switch into the role of the root bridge regardless of other path costs in the network.

AT-GS950/16PS Switch Web Interface User’s Guide

Restricted TCN - The Restricted TCN parameter does not allow Topology Change Notification (TCN) BPDUs to be processed on the port.

True - The port cannot process receive/transmit TCN BPDUs.

False - The port can process receive/transmit TCN BPDU

packets.

5. Once you have configured the parameters, click Apply in the Action column.

6. If you choose to change the MSTP port configuration for other ports, repeat steps 4 and 5.

7. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 5: Multiple Spanning Tree Protocol

VLAN Mapping

You can create, modify and delete MSTP settings with the procedures in the following sections:

 ”Open MSTP VLAN Mapping Page”

 ”Create VLAN Mapping to MST Instance”.

 “Modify MST Instance” on page 87.

 “Delete MST Instance” on page 87.

Open MSTP

VLAN Mapping

Page

1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands.

2. From the Bridge folder, select the Spanning Tree folder. The Spanning Tree folder expands.

3. From the Spanning Tree folder, select the MSTP folder. The MSTP folder expands.

4. From the MSTP folder, select MSTP VLAN Mapping. The MSTP VLAN Mapping Page is displayed. See Figure 27.

Figure 27. MSTP VLAN Mapping Page

Create VLAN

Mapping to MST

Instance

1. Enter the MSTP Instance ID. You can enter any number of MSTP IDs up to the maximum MSTP ID. See “Multiple Spanning Tree Configuration” on page 80 for more information.

2. Enter an existing VLAN ID in the ADD VLAN field that you want to associate with the MSTI ID entered in step 4.

3. Click Add. The Instance ID and the Mapped VLAN will be displayed in the table on the page.

4. You may add as many VLANs to one MST Instance by repeating steps 4 through 6.

AT-GS950/16PS Switch Web Interface User’s Guide

5. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Modify MST

Instance

Delete MST

Instance

If you wish to modify a MST Instance, you must first delete the instance and then redefine it. Refer to “Create VLAN Mapping to MST Instance” on page 86 for more information.

1. In the Action column of the table, click on Delete for the MST Instance that want to delete. The instance is deleted along with the mapped associations to the VLANs that are listed.

2. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 5: Multiple Spanning Tree Protocol

Port Settings

To configure the MSTP port settings, perform the following procedure:

1. From the main menu on the left side of the page, select Bridge.

2. From the Bridge folder, select the Spanning Tree folder.

3. From the Spanning Tree folder, select the MSTP folder.

4. From the MSTP folder, select MSTP Port Settings.

The Bridge folder expands.

The Spanning Tree folder expands.

The MSTP folder expands.

The MSTP Port Settings Page is displayed. See Figure 28.

Figure 28. MSTP Port Settings Page

You may choose a port and configure its MSTP parameters on this page. The following information is displayed:

Port - Indicates ports 1 through 16 on the AT-GS950/10PS switch. You can select the All row to apply the same settings to all ports on your switch for the Port State field.

MSTP Instance ID - Indicates the MSTP Instance that associated with this port.

Port State - This parameter activates or deactivates the port. Select one of the following choices from the pull-down menu:

Enable - Allows the port to forward packets.

Disable - Does not allows the port to forward packets.

Priority - This is the port priority used by MSTP in calculating path

costs when two ports on the switch have the same port cost.

Cost - This is the port cost used by MSTP when calculating path cost to the root bridge.

5. Once you have configured the parameters, click Apply in the Action column.

AT-GS950/16PS Switch Web Interface User’s Guide

6. If you choose to change the MSTP port settings for other ports, repeat steps 4 and 5.

7. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 5: Multiple Spanning Tree Protocol

Topology Information

To configure the MSTP port settings, perform the following procedure:

1. From the main menu on the left side of the page, select Bridge.

2. From the Bridge folder, select the Spanning Tree folder.

3. From the Spanning Tree folder, select the MSTP folder.

4. From the MSTP folder, select MSTP Port Settings.

The Bridge folder expands.

The Spanning Tree folder expands.

The MSTP folder expands.

The AT-GS950/16PS Topology Information Page is displayed. See Figure 29. A partial view of the AT-GS950/16PS Topology Information Page is displayed. See Figure 29.

Figure 29. AT-GS950/16PS Topology Information Page

The following information displayed on this page shows the current status of MSTP for each port:

Port - Indicates ports 1 through 16 on the AT-GS950/16PS switch.

Designated Root - The designated root bridge to which the

switch’s root port is actively connected.

Root Priority - This parameter specifies the priority used in determining the regional root for a particular MSTI. For more information, see Table 11 on page 360.

Designated Bridge - The bridge providing the least cost path to the root bridge from a network segment.

Designated Port - The port providing the least cost path to the root bridge from a network segment.

Designated Cost - The cost from the designated bridge to the root bridge.

AT-GS950/16PS Switch Web Interface User’s Guide

Regional Root - The root bridge of the MST instance.

Regional Root Priority - The priority of the regional root port.

Regional Path Cost - The path cost from the regional root port to

the regional root bridge.

Type - This specifies the regional port type which can be either a point-to-point or an edge type port. See “Point-to-Point and Edge Ports” on page 66 for more information.

Role - Indicates the port’s role which may be Disabled, Root, Designated, Backup, or Alternate. See the parameter definitions described for Role under “Configure the Basic RSTP Port Settings” on page 73 for more information.

Port State - Indicates the ports spanning tree state which may be Blocking, Listening, Learning, Forwarding, Disabled. See the parameter definitions described for Port State under “Configure the Basic RSTP Port Settings” on page 73 for more information.

Chapter 5: Multiple Spanning Tree Protocol

Chapter 6

Note

Static Port Trunking

This chapter contains a description of port trunking and the procedures for creating, modifying, and deleting a static port trunk. The following topics are discussed:

 “Overview” on page 94

 “Create a Port Trunk” on page 97

 “Modify a Port Trunk” on page 99

 “Disable a Port Trunk” on page 101

For information about Link Aggregation Control Protocol (LACP) port trunking, see Chapter 11, “LACP Port Trunks” on page 155.

To permanently save your new settings or any changes to the configuration file, select Save Configuration to Flash from the main menu on the left side of the page.

Chapter 6: Static Port Trunking

Static Trunk

Overview

A port trunk is an economical way for you to increase the bandwidth between the Ethernet switch and another networking device, such as a network server, router, workstation, or another Ethernet switch. A port trunk is a group of ports that have been grouped together to function as one logical path. A port trunk increases the bandwidth between the switch and another network device and is useful in situations where a single physical link between the devices is insufficient to handle the traffic load.

A static port trunk consists of two to eight ports on the switch that function as a single virtual link between the switch and another device. A static port trunk improves performance by distributing the traffic across multiple ports between the devices and enhances reliability by reducing the reliance on a single physical link.

A static trunk is easy to configure. You designate the ports on the switch that are in the trunk and the AT-S112 Management software on the switch automatically groups them together.

The example in Figure 30 illustrates a static port trunk of four links between two AT-GS950/16PS switches.

Figure 30. Static Port Trunk Example

AT-GS950/16PS Switch Web Interface User’s Guide

Note

Network equipment vendors tend to employ different techniques to implement static trunks. Consequently, a static trunk on one device may be incompatible with the same feature on a device from a different manufacturer. For this reason static trunks are typically employed only between devices from the same vendor. That is not to say that an Allied Telesis Layer 2 managed switch cannot form a static trunk with a device from another manufacturer; however, the implementations of static trunking on the two devices may be incompatible.

Also, note that a static trunk does not provide for redundancy or link backup. If a port in a static trunk loses its link, the trunk’s total bandwidth is diminished. Although the traffic carried by the lost link is shifted to one of the remaining ports in the trunk, the bandwidth remains reduced until the lost link is re-established or you reconfigure the trunk by adding another port to it.

General Guidelines

Following are the guidelines for creating a static trunk:

 Allied Telesis recommends setting static port trunks

between Allied Telesis networking devices to ensure compatibility.

 A static trunk can contain up to eight ports.

 The ports of a static trunk must be of the same medium

type. They can be all twisted-pair ports or all fiber optic ports, but not a combination of the two.

 The ports of a trunk can be either consecutive (for

example, Ports 2 through 4) or nonconsecutive (for example, ports 3, 5, and 7).

 Before creating a port trunk, verify that the settings are

the same for all ports in the trunk including speed (1000/Full), duplex mode, flow control, back pressure settings and VLAN membership. If these settings are not the same, then the switch does not allow you to create the trunk.

When a trunk group is formed with only combo ports as members, all port members are configured to the forced port mode at 1000/Full. The trunk ports on the connecting network switch should also be configured for 1000/Full to insure speed and duplex compatibility between the switches.

 After you have created a port trunk, a change to the

speed, duplex mode, flow control, or back pressure of any port in the trunk automatically implements the same change on all the other member ports.

Chapter 6: Static Port Trunking

 A port can belong to only one static trunk at a time.

 The ports of a static trunk can be configured to be

members of more than one VLAN.

 The ports of a static trunk can be either untagged or

untagged members of the same VLAN.

The switch selects a port in the trunk to handle broadcast packets and packets of unknown destination. The switch makes this choice based on a hash algorithm, depending upon the source and destination MAC addresses.

Create a Port Trunk

Caution

This procedure explains how to create a static port trunk.

To create a port trunk, perform the following procedure:

1. Select the Bridge folder.

AT-GS950/16PS Switch Web Interface User’s Guide

Do not connect the cables of a port trunk to the ports on the switch until you have configured the ports on both the switch and the end nodes. Connecting the cables prior to configuring the ports can create loops in your network topology. Loops can result in broadcast storms which can severely limited the effective bandwidth of your network.

The Bridge folder expands.

2. From the Bridge folder, select the Trunk Config folder. The Trunk Config folder expands.

3. From the Trunk Config folder, select Trunking. A partial view of the Trunking Page is displayed in Figure 31.

Figure 31. Trunking Page

If the switch does not contain a port trunk, all of the ports on the switch are unchecked. If there is a port trunk, the ports in the trunk are checked.

4. Click the dialog boxes of the ports that will make up the port trunk.

Chapter 6: Static Port Trunking

A check in a box indicates the port is a member of the trunk. No check means the port is not a member. A port trunk can contain up to eight ports.

5. Change the Trunk Status from Disable to another setting. The choice in the status field are the following:

Active - The specific aggregator will broadcast and respond to LACPDU (LACP Data Unit) packets. This setting enables the LACP feature for the trunk.

Passive - The specific aggregator will not broadcast LACPDU packets, but it will respond to them. This setting disables the LACP feature for the trunk.

Manual - Enables static port trunking and disables the LACP feature for the trunk.

Disable - Disables the static port trunk and disables the LACP feature for the trunk.

6. Click Apply.

7. If you did not select the trunk mode Disabled, the trunk is now operational on the switch.

8. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

9. Configure the port trunk on the other switch.

10. Connect the Ethernet cables between trunk ports on the AT-GS950/ 16PS switch and the trunk ports on the other switch.

Modify a Port Trunk

Caution

This procedure explains how to change the status of a port trunk and add or remove ports from a port trunk.

To add or remove ports from a trunk, perform the following procedure:

1. Disconnect all of the Ethernet cables from the ports of the trunk.

2. Select the Bridge folder.

AT-GS950/16PS Switch Web Interface User’s Guide

Before you disable or modify a port trunk, disconnect all of the cables from the ports of the trunk. Leaving the cables connected during the reconfiguration of a trunk can create loops in your network topology. Loops can result in broadcast storms which can severely limited the effective bandwidth of your network.

The Bridge folder expands.

3. From the Bridge folder, select the Trunk Config folder. The Trunk Config folder expands.

4. From the Trunk Config folder, select Trunking. The Trunking Page is shown in Figure 31 on page 97.

5. Click the status of the port trunk you want to modify and change the status to one of the following options:

Disable - Disables the port trunk.

Active - The aggregator will broadcast and respond to LACPDU

(LACP Data Unit) packets. This setting enables the LACP feature.

Passive - The aggregator will not broadcast LACPDU packets, but it will respond to them. This setting enables the LACP feature.

Manual - Enables static port trunking and disables the LACP feature.

6. To add or remove a port from a trunk, click the dialog box for the port in the corresponding trunk row. A check in a box indicates the port is a member of the trunk. No check means the port is not a member. A port trunk can contain up to eight ports.

7. Click Apply.

8. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.

Chapter 6: Static Port Trunking

9. Configure the port trunk on the other switch with the same parameters.

10. Connect the Ethernet cables between trunk ports on the AT-GS950/ 16PS switch and the trunk ports on the other switch.

100

Allied Telesis AT-GS950-16PS, AT-S112 User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual

Contents

List of Figures

List of Tables

Preface

Document Conventions

Allied Telesis Contact Information

Section I

Getting Started

Chapter 1

Starting a Web Browser Session

Establishing a Remote Connection to the Web Browser Interface

Web Browser Tools

Quitting a Web Browser Management Session

Chapter 2

System Configuration

System Management Information

Configuration of IP Address, Subnet Mask and Gateway Address

IP Access List Configuration

User Name and Password Configuration

User Interface Configuration

SNMP Interface To enable or disable the AT-GS950/16PS SNMP interface, perform the

System Time

Setting SNTP To configure SNTP, perform the following procedure:

SSL Settings

Configuring SSL To enable or disable the SSL protocol feature, perform the following

DHCP and ATI Web Discovery Tool

DHCP Client Configuration

DHCP Auto Configuration

System Information Display

System Log Configuration

Section II

Bridge Configuration

Chapter 3

Port Configuration

Overview

Displaying and Configuring Ports

Chapter 4

STP and RSTP

Overview

Basic STP and RSTP Configuration

Configure RSTP Port Settings

Spanning Tree Topology

Chapter 5

Multiple Spanning Tree Protocol

Multiple Spanning Tree Configuration

Port Configuration

VLAN Mapping

Port Settings

Topology Information

Chapter 6

Static Port Trunking

Overview

Create a Port Trunk

Modify a Port Trunk