Allied Telesis AT-S63 User Manual

Download

Management Software

AT-S63

◆

Web Browser Interface

User’s Guide

AT-9424T/SP AND AT-9424T/GB LAYER 2+ GIGABIT ETHERNET SWITCHES

VERSION 1.0.0

PN 613-50592-00 Rev A

Microsoft and Internet Explorer are registered trademarks of Microsoft Corporation. Netscape Navigator is a registered trademark of Netscape Communications Corporation. All other product names, company names, logos or other designations mentioned herein are trademarks or registered trademarks of their respective owners.

Allied Telesyn, Inc. reserves the right to make changes in specifications and other information contained in this document without prior written notice. The information provided herein is subject to change without notice. In no event shall Allied Telesyn, Inc. be liable for any incidental, special, indirect, or consequential damages whatsoever, including but not limited to lost profits, arising out of or related to this manual or the information contained herein, even if Allied Telesyn, Inc. has been advised of, known, or should have known, the possibility of such damages.

Figures .......................................................................................................................................................................................................................9

Tables ...................................................................................................................................................................................................................... 13

Preface .................................................................................................................................................................................................................... 15

How This Guide is Organized .......................................................................................................................................................................... 15

Document Conventions .................................................................................................................................................................................... 17

Where to Find Web-based Guides ................................................................................................................................................................ 18

Contacting Allied Telesyn .................................................................................................................................................................................19

Online Support ........................................................................................................................................................................................... 19

Email and Telephone Support .............................................................................................................................................................. 19

For Sales or Corporate Information ..................................................................................................................................................... 19

Management Software Updates .................................................................................................................................................................... 20

Chapter 1

Overview ............................................................................................................................................................................................................... 21

Management Overview .................................................................................................................................................................................... 22

Local Management Session ............................................................................................................................................................................. 24

Telnet Management Session ........................................................................................................................................................................... 25

Web Browser Management Session ............................................................................................................................................................. 26

SNMP Management Session ........................................................................................................................................................................... 27

Management Access Levels ............................................................................................................................................................................. 28

Section I

Basic Features .................................................................................................................................. 29

Chapter 2

Starting a Web Browser Management Session .................................................................................................................................. 31

Starting a Web Browser Management Session ........................................................................................................................................ 32

Web Browser Tools ............................................................................................................................................................................................. 35

Saving Your Parameter Changes ................................................................................................................................................................... 36

Quitting a Web Browser Management Session ........................................................................................................................................ 37

Chapter 3

Basic Switch Parameters ................................................................................................................................................................................39

Configuring an IP Address and Switch Name ........................................................................................................................................... 40

Activating the BOOTP and DHCP Client Software ................................................................................................................................... 43

Displaying System Information ...................................................................................................................................................................... 44

Configuring the Manager and Operator Passwords ............................................................................................................................... 46

Contents

Rebooting a Switch .............................................................................................................................................................................................48

Pinging a Remote System .................................................................................................................................................................................49

Returning the AT-S63 Management Software to the Factory Default Values ...............................................................................50

Chapter 4

SNMPv1 and SNMPv2c ....................................................................................................................................................................................53

Enabling or Disabling SNMP Management ................................................................................................................................................54

Creating a New SNMPv1 and SNMPv2c Community ..............................................................................................................................56

Modifying an SNMPv1 and SNMPv2c Community ..................................................................................................................................59

Deleting an SNMPv1 and SNMPv2c Community ......................................................................................................................................61

Displaying the SNMPv1 and SNMPv2c Communities .............................................................................................................................62

Chapter 5

Enhanced Stacking ............................................................................................................................................................................................65

Setting a Switch’s Enhanced Stacking Status ............................................................................................................................................66

Selecting a Switch in an Enhanced Stack ....................................................................................................................................................68

Returning to the Master Switch ......................................................................................................................................................................71

Displaying the Enhanced Stacking Status ...................................................................................................................................................72

Chapter 6

Port Parameters ..................................................................................................................................................................................................73

Configuring Port Parameters ...........................................................................................................................................................................74

Displaying Port Status ........................................................................................................................................................................................81

Displaying Port Statistics ...................................................................................................................................................................................85

Resetting a Port to the Default Settings ......................................................................................................................................................88

Chapter 7

MAC Address Table ...........................................................................................................................................................................................89

Adding Static Unicast and Multicast MAC Addresses .............................................................................................................................90

Deleting Unicast and Multicast MAC Addresses .......................................................................................................................................92

Deleting All Dynamic MAC Addresses ..........................................................................................................................................................93

Displaying the MAC Address Tables ..............................................................................................................................................................94

Changing the Aging Time .................................................................................................................................................................................97

Chapter 8

Port Trunking .......................................................................................................................................................................................................99

Creating a Port Trunk ....................................................................................................................................................................................... 100

Modifying a Port Trunk ................................................................................................................................................................................... 103

Deleting a Port Trunk ....................................................................................................................................................................................... 105

Displaying the Port Trunks ............................................................................................................................................................................ 106

Chapter 9

Port Mirroring ...................................................................................................................................................................................................109

Creating a Port Mirror ...................................................................................................................................................................................... 110

Modifying a Port Mirror ................................................................................................................................................................................... 113

Disabling a Port Mirror .................................................................................................................................................................................... 114

Deleting a Port Mirror ...................................................................................................................................................................................... 115

Displaying the Port Mirror .............................................................................................................................................................................. 116

Section II

Advanced Features ......................................................................................................................119

Chapter 10

File Downloads and Uploads .................................................................................................................................................................... 121

Downloading a File ........................................................................................................................................................................................... 122

Uploading a File ................................................................................................................................................................................................. 125

AT-S63 Management Software Web Browser Interface User’s Guide

Chapter 11

Event Log ............................................................................................................................................................................................................127

Enabling or Disabling the Event Log ..........................................................................................................................................................128

Displaying Events ..............................................................................................................................................................................................130

Disabling the Event Log ..................................................................................................................................................................................137

Clearing the Event Log ....................................................................................................................................................................................138

Saving the Event Log to a File .......................................................................................................................................................................139

Chapter 12

Quality of Service ............................................................................................................................................................................................141

Configuring CoS .................................................................................................................................................................................................142

Mapping CoS Priorities to Egress Queues ................................................................................................................................................145

Configuring Egress Scheduling ....................................................................................................................................................................148

Displaying the CoS Settings ..........................................................................................................................................................................150

Displaying the QoS Schedule ........................................................................................................................................................................152

Chapter 13

IGMP Snooping ................................................................................................................................................................................................153

Configuring IGMP Snooping .........................................................................................................................................................................154

Displaying a List of Host Nodes ....................................................................................................................................................................157

Displaying a List of Multicast Routers ........................................................................................................................................................160

Chapter 14

STP and RSTP .....................................................................................................................................................................................................163

Enabling or Disabling a Spanning Tree Protocol ...................................................................................................................................164

Configuring STP .................................................................................................................................................................................................166

Displaying the STP Settings ................................................................................................................................................................. 170

Resetting STP to the Default Settings .............................................................................................................................................. 172

Configuring RSTP ...............................................................................................................................................................................................174

Resetting RSTP to the Default Settings ............................................................................................................................................ 178

Displaying RSTP Settings ...................................................................................................................................................................... 178

Chapter 15

MSTP ......................................................................................................................................................................................................................181

Enabling MSTP ....................................................................................................................................................................................................182

Configuring MSTP .............................................................................................................................................................................................184

Configuring MSTP Parameters ............................................................................................................................................................ 184

Configuring the CIST Priority ............................................................................................................................................................... 187

Creating, Deleting, or Modifying MSTI IDs ...............................................................................................................................................189

Creating an MSTI ID ................................................................................................................................................................................ 189

Deleting an MSTI ID ................................................................................................................................................................................ 190

Modifying an MSTI ID ............................................................................................................................................................................. 190

Adding, Removing, or Modifying VLAN Associations to MSTIs ........................................................................................................192

Adding a VLAN Association ................................................................................................................................................................. 192

Removing a VLAN Association ............................................................................................................................................................ 192

Modifying a VLAN Association ............................................................................................................................................................ 193

Configuring MSTP Port Parameters ............................................................................................................................................................195

Displaying the MSTP Port Configuration ..................................................................................................................................................197

Displaying the MSTP Port Status ..................................................................................................................................................................200

Resetting MSTP to the Default Settings ....................................................................................................................................................202

Chapter 16

SNMPv3 ................................................................................................................................................................................................................203

Configuring the SNMPv3 Protocol ..............................................................................................................................................................204

Enabling or Disabling SNMP Management ..............................................................................................................................................205

Configuring the SNMPv3 User Table .............................................................................................

.............................................................207

Creating a User Table Entry .................................................................................................................................................................. 207

Deleting a User Table Entry .................................................................................................................................................................. 210

Contents

Modifying a User Table Entry .............................................................................................................................................................. 211

Configuring the SNMPv3 View Table ......................................................................................................................................................... 214

Creating a View Table Entry ................................................................................................................................................................. 214

Deleting a View Table Entry ................................................................................................................................................................. 217

Modifying a View Table Entry ............................................................................................................................................................. 218

Configuring the SNMPv3 Access Table ..................................................................................................................................................... 220

Creating an Access Table ...................................................................................................................................................................... 220

Deleting an Access Table Entry .......................................................................................................................................................... 224

Modifying an Access Table Entry ....................................................................................................................................................... 224

Configuring the SNMPv3 SecurityToGroup Table ................................................................................................................................. 227

Creating a SecurityToGroup Table Entry ........................................................................................................................................ 227

Deleting a SecurityToGroup Table Entry ........................................................................................................................................ 230

Modifying a SecurityToGroup Table Entry ..................................................................................................................................... 230

Configuring the SNMPv3 Notify Table ......................................................................................................................................................233

Creating a Notify Table Entry .............................................................................................................................................................. 233

Deleting a Notify Table Entry .............................................................................................................................................................. 235

Modifying a Notify Table Entry ........................................................................................................................................................... 236

Configuring the SNMPv3 Target Address Table .................................................................................................................................... 238

Creating a Target Address Table Entry ............................................................................................................................................ 238

Deleting a Target Address Table Entry ............................................................................................................................................ 241

Modifying Target Address Table Entry ............................................................................................................................................ 242

Configuring the SNMPv3 Target Parameters Table .............................................................................................................................. 245

Creating a Target Parameters Table Entry ...................................................................................................................................... 245

Deleting a Target Parameters Table Entry ...................................................................................................................................... 248

Modifying a Target Parameters Table Entry .................................................................................................................................. 249

Configuring the SNMPv3 Community Table ........................................................................................................................................... 252

Creating an SNMPv3 Community Table Entry .............................................................................................................................. 252

Deleting an SNMPv3 Community Table Entry .............................................................................................................................. 255

Modifying an SNMPv3 Community Table Entry ........................................................................................................................... 255

Displaying SNMPv3 Tables ............................................................................................................................................................................ 258

Displaying User Table Entries .............................................................................................................................................................. 259

Displaying View Table Entries ............................................................................................................................................................. 261

Displaying Access Table Entries ......................................................................................................................................................... 262

Displaying SecurityToGroup Table Entries ..................................................................................................................................... 263

Displaying Notify Table Entries .......................................................................................................................................................... 264

Displaying Target Address Table Entries ........................................................................................................................................ 265

Displaying Target Parameters Table Entries .................................................................................................................................. 266

Displaying SNMPv3 Community Table Entries ............................................................................................................................. 267

Section III

VLANs .................................................................................................................................................269

Chapter 17

Virtual LANs ....................................................................................................................................................................................................... 271

Creating a New Port-Based or Tagged VLAN .......................................................................................................................................... 272

Modifying a VLAN ............................................................................................................................................................................................. 276

Deleting a VLAN ................................................................................................................................................................................................. 278

Selecting a VLAN Mode ................................................................................................................................................................................... 279

Displaying VLANs .............................................................................................................................................................................................. 281

Specifying a Management VLAN ................................................................................................................................................................. 283

Chapter 18

GARP VLAN Registration Protocol (GVRP) .........................................................................................................................................285

Configuring GVRP ............................................................................................................................................................................................. 286

Enabling or Disabling GVRP on a Port ....................................................................................................................................................... 288

Displaying the GVRP Configuration ........................................................................................................................................................... 289

AT-S63 Management Software Web Browser Interface User’s Guide

Displaying the GVRP Port Configuration ..................................................................................................................................................291

Displaying the GVRP Database .....................................................................................................................................................................292

Displaying the GVRP State Machine ...........................................................................................................................................................293

Displaying the GVRP Counters .....................................................................................................................................................................296

Displaying the GIP Connected Ports Ring ................................................................................................................................................300

Section IV

Security .............................................................................................................................................303

Chapter 19

Port Security ......................................................................................................................................................................................................305

Displaying the MAC Address Security Level ............................................................................................................................................306

Chapter 20

Encryption Keys, PKI, and SSL ...................................................................................................................................................................309

Displaying the Encryption Keys ....................................................................................................................................................................310

Displaying the PKI Settings and Certificates ............................................................................................................................................312

Displaying the SSL Settings ...........................................................................................................................................................................315

Chapter 21

Secure Shell (SSH) ...........................................................................................................................................................................................317

Configuring SSH .................................................................................................................................................................................................318

Displaying the SSH Settings ..........................................................................................................................................................................320

Chapter 22

TACACS+ and RADIUS ...................................................................................................................................................................................323

Enabling or Disabling TACACS+ or RADIUS .............................................................................................................................................324

Configuring TACACS+ .....................................................................................................................................................................................325

Displaying the TACACS+ Settings ...............................................................................................................................................................327

Configuring RADIUS .........................................................................................................................................................................................329

Displaying the RADIUS Settings ................................................................................................................................................................... 331

Chapter 23

802.1x Port-based Network Access Control .......................................................................................................................................333

Setting Port Roles ..............................................................................................................................................................................................334

Enabling or Disabling 802.1x Port-based Network Access Control ................................................................................................336

Configuring Authenticator Port Parameters ...........................................................................................................................................337

Configuring Supplicant Port Parameters ..................................................................................................................................................340

Displaying the Port-based Network Access Control Parameters .....................................................................................................342

Displaying the Port Status .................................................................................................................................................................... 342

Displaying the Port Settings ................................................................................................................................................................ 343

RADIUS Accounting ..........................................................................................................................................................................................346

Configuring RADIUS Accounting ....................................................................................................................................................... 346

Displaying the RADIUS Accounting Settings ................................................................................................................................. 347

Chapter 24

Denial of Service Defense ...........................................................................................................................................................................351

Configuring Denial of Service Defense ......................................................................................................................................................352

Displaying the DoS Settings ..........................................................................................................................................................................355

Appendix A

AT-S63 Default Settings ...............................................................................................................................................................................357

Basic Switch Default Settings ........................................................................................................................................................................359

Boot Configuration File Default Setting .......................................................................................................................................... 359

Management Access Default Settings ............................................................................................................................................. 359

Management Interface Default Settings ......................................................................................................................................... 359

RJ-45 Serial Terminal Port Default Settings .................................................................................................................................... 360

SNTP Default Settings ............................................................................................................................................................................ 360

Contents

Switch Administration Default Settings .......................................................................................................................................... 361

System Software Default Settings ..................................................................................................................................................... 361

Enhanced Stacking Default Setting ............................................................................................................................................................ 362

SNMP Default Settings .................................................................................................................................................................................... 363

Port Configuration Default Settings ........................................................................................................................................................... 364

Event Log Default Settings ............................................................................................................................................................................ 365

IGMP Snooping Default Settings ................................................................................................................................................................. 367

Denial of Service Prevention Default Settings ........................................................................................................................................ 368

STP, RSTP, and MSTP Default Settings ....................................................................................................................................................... 369

Spanning Tree Switch Settings ........................................................................................................................................................... 369

STP Default Settings ............................................................................................................................................................................... 369

RSTP Default Settings ............................................................................................................................................................................ 369

MSTP Default Settings ........................................................................................................................................................................... 370

VLAN Default Settings ..................................................................................................................................................................................... 371

GVRP Default Settings ..................................................................................................................................................................................... 372

Port Security Default Settings ...................................................................................................................................................................... 373

802.1x Port-Based Network Access Control Default Settings ...........................................................................................................374

Web Server Default Settings ......................................................................................................................................................................... 375

SSL Default Settings ......................................................................................................................................................................................... 376

PKI Default Settings .......................................................................................................................................................................................... 377

SSH Default Settings ........................................................................................................................................................................................ 378

Server-Based Authentication Default Settings ....................................................................................................................................... 379

Server-Based Authentication Default Settings ............................................................................................................................. 379

RADIUS Default Settings ....................................................................................................................................................................... 379

TACACS+ Client Default Settings ...................................................................................................................................................... 379

Management Access Control List Default Setting ................................................................................................................................ 380

Index ..................................................................................................................................................................................................................... 381

Figures

Figure 1: Entering a Switch’s IP Address in the URL Field ..................................................................................................................... 32

Figure 2: AT-S63 Login Page ............................................................................................................................................................................ 33

Figure 3: Home page .......................................................................................................................................................................................... 34

Figure 4: Save Changes Button in the General Tab (Configuration) ................................................................................................. 36

Figure 5: General Tab (Configuration) ......................................................................................................................................................... 40

Figure 6: General Tab (Monitoring) ............................................................................................................................................................... 44

Figure 7: Ping Client Tab (Monitoring) ........................................................................................................................................................ 49

Figure 8: System Utilities Tab (Configuration) .......................................................................................................................................... 51

Figure 9: SNMP Tab (Configuration) ............................................................................................................................................................. 54

Figure 10: SNMPv1 & SNMPv2c Communities Tab ................................................................................................................................. 56

Figure 11: Add New SNMPv1 & SNMPv2c Community Page ............................................................................................................... 57

Figure 12: Modify SNMPv1 & SNMPv2c Community Page ................................................................................................................... 59

Figure 13: SNMP Tab (Monitoring) ................................................................................................................................................................ 62

Figure 14: SNMPv1 & SNMPv2c Communities Tab (Monitoring) ....................................................................................................... 63

Figure 15: Enhanced Stacking Tab (Configuration) ................................................................................................................................ 67

Figure 16: Stacking Switches Page ................................................................................................................................................................ 69

Figure 17: Enhanced Stacking Tab (Monitoring) ...................................................................................................................................... 72

Figure 18: Port Settings Tab (Configuration) ............................................................................................................................................. 74

Figure 19: Port Configuration Page .............................................................................................................................................................. 75

Figure 20: Port Settings Tab (Monitoring) .................................................................................................................................................. 81

Figure 21: Port Status Page .............................................................................................................................................................................. 82

Figure 22: Port Statistics Page ......................................................................................................................................................................... 85

Figure 23: MAC Address Tab (Configuration) ............................................................................................................................................ 90

Figure 24: Add MAC Address Page ............................................................................................................................................................... 91

Figure 25: MAC Address Tab (Monitoring) ................................................................................................................................................. 94

Figure 26: View MAC Addresses Page .......................................................................................................................................................... 96

Figure 27: Port Trunking Tab (Configuration) .........................................................................................................................................100

Figure 28: Add New Trunk Page ...................................................................................................................................................................101

Figure 29: Modify Trunk Page ....................................................................................................................................................................... 104

Figure 30: Port Trunking Tab (Monitoring) ..............................................................................................................................................106

Figure 31: Port Mirroring Tab (Configuration) ........................................................................................................................................110

Figure 32: Modify Mirror Page ......................................................................................................................................................................111

Figure 33: Example of a Modify Mirror Page ............................................................................................................................................112

Figure 34: Port Mirroring Tab (Monitoring) ..............................................................................................................................................116

Figure 35: System Utilities Tab (Configuration) ......................................................................................................................................123

Figure 36: Event Log Tab (Configuration) ................................................................................................................................................128

Figure 37: Event Log Tab (Monitoring) ......................................................................................................................................................130

Figures

Figure 38: Event Log Example Displayed in Normal Mode ................................................................................................................ 134

Figure 39: Event Log Example Displayed in Full Mode ....................................................................................................................... 135

Figure 40: CoS Tab (Configuration) ............................................................................................................................................................142

Figure 41: CoS Setting for Port Page .......................................................................................................................................................... 143

Figure 42: QoS Scheduling Tab (Configuration) .................................................................................................................................... 146

Figure 43: CoS Tab (Monitoring) ..................................................................................................................................................................150

Figure 44: CoS Setting for Port Page .......................................................................................................................................................... 150

Figure 45: QoS Scheduling Tab (Monitoring) .......................................................................................................................................... 152

Figure 46: IGMP Tab (Configuration) .......................................................................................................................................................... 154

Figure 47: IGMP Tab (Monitoring) ............................................................................................................................................................... 157

Figure 48: View Multicast Hosts List Page ................................................................................................................................................ 158

Figure 49: View Multicast Routers List Page ............................................................................................................................................ 160

Figure 50: View (Static) Multicast Routers List Page ............................................................................................................................. 161

Figure 51: Spanning Tree Tab (Configuration) ....................................................................................................................................... 164

Figure 52: Configure STP Parameters Tab (Configuration) ................................................................................................................ 167

Figure 53: STP Settings - Port(s) Page ........................................................................................................................................................ 169

Figure 54: Spanning Tree Tab (Monitoring) ............................................................................................................................................ 171

Figure 55: Monitor STP Parameters Tab (Monitoring) ......................................................................................................................... 171

Figure 56: STP Settings Page ......................................................................................................................................................................... 172

Figure 57: Configure RSTP Parameters Tab (Configuration) ............................................................................................................. 175

Figure 58: RSTP Settings - Port(s) Page .....................................................................................................................................................177

Figure 59: Monitor RSTP Parameters Tab (Monitoring) ....................................................................................................................... 179

Figure 60: RSTP Settings Page ...................................................................................................................................................................... 179

Figure 61: Spanning Tree Tab (Configuration) ....................................................................................................................................... 182

Figure 62: Configure MSTP Parameters Tab (Configuration) ............................................................................................................185

Figure 63: Add New MSTI Page .................................................................................................................................................................... 189

Figure 64: Modify MSTI Page ......................................................................................................................................................................... 191

Figure 65: MSTP Settings - Port(s) Page .................................................................................................................................................... 195

Figure 66: Monitor MSTP Parameters Tab (Monitoring) ..................................................................................................................... 198

Figure 67: MSTP Settings - Port(s) Page .................................................................................................................................................... 198

Figure 68: MSTP Port Status - Port(s) Page ............................................................................................................................................... 200

Figure 69: SNMP Tab (Configuration) ........................................................................................................................................................ 205

Figure 70: SNMPv3 User Table Tab (Configuration) .............................................................................................................................208

Figure 71: Add New SNMPv3 User Page ................................................................................................................................................... 208

Figure 72: Modify SNMPv3 User Page ........................................................................................................................................................ 211

Figure 73: SNMPv3 View Table Tab (Configuration) ............................................................................................................................. 215

Figure 74: Add New SNMPv3 View Page .................................................................................................................................................. 215

Figure 75: Modify SNMPv3 View Page ....................................................................................................................................................... 218

Figure 76: SNMPv3 Access Table Tab (Configuration) ......................................................................................................................... 221

Figure 77: Add New SNMPv3 Access Page ............................................................................................................................................... 221

Figure 78: Modify SNMPv3 Access Page ...................................................................................................................................................225

Figure 79: SNMPv3 SecurityToGroup Table Tab (Configuration) .................................................................................................... 228

Figure 80: Add New SNMPv3 SecurityToGroup Page .......................................................................................................................... 228

Figure 81: Modify SNMPv3 SecurityToGroup Page ............................................................................................................................... 231

Figure 82: SNMPv3 Notify Table Tab (Configuration) .......................................................................................................................... 234

Figure 83: Add New SNMPv3 Notify Page ................................................................................................................................................ 234

Figure 84: Modify SNMPv3 Notify Page .................................................................................................................................................... 236

Figure 85: SNMPv3 Target Address Table Tab (Configuration) ........................................................................................................239

Figure 86: Add New SNMPv3 Target Address Page .............................................................................................................................. 239

Figure 87: Modify SNMPv3 Target Address Page .................................................................................................................................. 242

Figure 88: SNMPv3 Target Parameters Table Tab (Configuration) .................................................................................................. 245

Figure 89: Add New SNMPv3 Target Parameters Page ....................................................................................................................... 246

Figure 90: Modify SNMPv3 Target Parameter Page .............................................................................................................................. 249

Figure 91: SNMPv3 Community Table Tab (Configuration) .............................................................................................................. 253

Figure 92: Add New SNMPv3 Community Page .................................................................................................................................... 253

AT-S63 Management Software Web Browser Interface User’s Guide

Figure 93: Modify SNMPv3 Community Page .........................................................................................................................................256

Figure 94: SNMP Tab (Monitoring) ..............................................................................................................................................................259

Figure 95: SNMPv3 User Table Tab (Monitoring) ...................................................................................................................................260

Figure 96: SNMPv3 View Table Tab (Monitoring) ..................................................................................................................................261

Figure 97: SNMPv3 Access Table Tab (Monitoring) ..............................................................................................................................262

Figure 98: SNMPv3 SecurityToGroup Table Tab (Monitoring) ..........................................................................................................263

Figure 99: SNMPv3 Notify Table Tab (Monitoring) ................................................................................................................................264

Figure 100: SNMPv3 Target Address Table Tab (Monitoring) ...........................................................................................................265

Figure 101: SNMPv3 Target Parameters Table Tab (Monitoring) .....................................................................................................266

Figure 102: SNMPv3 Community Table Tab (Monitoring) ..................................................................................................................267

Figure 103: VLAN Tab (Configuration) .......................................................................................................................................................272

Figure 104: Add New VLAN Page .................................................................................................................................................................273

Figure 105: VLAN Tab (Monitoring) ............................................................................................................................................................281

Figure 106: GVRP Tab (Configuration) .......................................................................................................................................................286

Figure 107: GVRP Port Configuration Page ..............................................................................................................................................288

Figure 108: GVRP Tab (Monitoring) ............................................................................................................................................................289

Figure 109: GVRP Port Configuration Page ..............................................................................................................................................291

Figure 110: GVRP Database Page ................................................................................................................................................................292

Figure 111: GVRP State Machine for VLAN Page ....................................................................................................................................293

Figure 112: GVRP Counters Page .................................................................................................................................................................296

Figure 113: GIP Connected Ports Ring Page ............................................................................................................................................300

Figure 114: Port Security Tab (Monitoring) ..............................................................................................................................................306

Figure 115: Security for Port(s) Page ..........................................................................................................................................................307

Figure 116: 802.1x Port Access Tab (Monitoring) ..................................................................................................................................310

Figure 117: Keys Tab (Monitoring) ..............................................................................................................................................................311

Figure 118: PKI Tab (Monitoring) .................................................................................................................................................................312

Figure 119: X509 Certificate Details Page .................................................................................................................................................313

Figure 120: SSL Tab (Monitoring) ................................................................................................................................................................315

Figure 121: Secure Shell Tab (Configuration) ..........................................................................................................................................318

Figure 122: Secure Shell Tab (Monitoring) ...............................................................................................................................................320

Figure 123: Server-based Authentication Tab (Configuration) ........................................................................................................324

Figure 124: TACACS+ Client Configuration Page .................................................................................................................................. 325

Figure 125: Server-Based Authentication Tab (Monitoring) ..............................................................................................................327

Figure 126: TACACS+ Client Configuration Page .................................................................................................................................. 328

Figure 127: RADIUS Client Configuration Page ......................................................................................................................................329

Figure 128: RADIUS Client Configuration Page ......................................................................................................................................331

Figure 129: 802.1x Port Access Tab (Configuration) .............................................................................................................................334

Figure 130: Port Role Configuration Page ................................................................................................................................................335

Figure 131: Authenticator Parameters Page ...........................................................................................................................................337

Figure 132: Supplicant Parameters Page ..................................................................................................................................................340

Figure 133: 802.1x Port Access Tab (Monitoring) ..................................................................................................................................342

Figure 134: Port Access Port Status Page .................................................................................................................................................343

Figure 135: Authenticator Port Parameters Page ..................................................................................................................................344

Figure 136: Supplicant Port Parameters Page .........................................................................................................................................345

Figure 137: 802.1x Port Access Tab (Configuration) .............................................................................................................................346

Figure 138: 802.1x Port Access Tab (Monitoring) ..................................................................................................................................348

Figure 139: DoS Tab (Configuration) ..........................................................................................................................................................352

Figure 140: DoS Configuration for Ports Page ........................................................................................................................................353

Figure 141: DoS Tab (Monitoring) ...............................................................................................................................................................355

Figure 142: DoS Monitor for Ports Page ....................................................................................................................................................356

Figures

Tables

Table 1: AT-S63 Software Modules .............................................................................................................................................................132

Table 2: Event Severity Levels ......................................................................................................................................................................134

Table 3: Default Mappings of IEEE 802.1p Priority Levels to Priority Queues ............................................................................. 143

Table 4: Example of Weighted Round Robin Priority ..........................................................................................................................148

Table 5: Bridge Priority Value Increments ...............................................................................................................................................168

Table 6: Port Priority Value Increments ....................................................................................................................................................169

Table 7: GVRP State Machine Parameters ................................................................................................................................................293

Table 8: GVRP Counters ..................................................................................................................................................................................297

Tables

Preface

This guide contains instructions on how to configure an AT-9400 Series Layer 2+ Gigabit Ethernet Switch using the AT-S63 management software and the web browser user interface.

How This Guide is Organized

This manual is divided into three sections.

Section I: Basic Features

The chapters in this section explain how to start a local management session and perform some basic tasks such as configuring switch and port parameters, port trunking, and enhanced stacking.

Section II: Advanced Features

The Advanced Features section includes procedures for working with the file system, spanning tree, IGMP, Quality of Service, the event log, and VLANs.

Section III: Security

The chapters in this section explain how to use a wide variety of switch security features including management ACLs, encryption, web server, port-based access control, denial of service defense, TACACS+, and RADIUS.

For information about managing an AT-9400 Series switch using the menus interface, refer to the AT-S63 Management Software Menus Interface User’s Guide.

Preface

To manage the switch using the command line interface, refer to the

AT-S63 Management Software Command Line Interface User’s Guide.

Caution

The software described in this documentation contains certain cryptographic functionality and its export is restricted by U.S. law. As of this writing, it has been submitted for review as a “retail encryption item” in accordance with the Export Administration Regulations, 15 C.F.R. Part 730-772, promulgated by the U.S. Department of Commerce, and conditionally may be exported in accordance with the pertinent terms of License Exception ENC (described in 15 C.F.R. Part 740.17). In no case may it be exported to Cuba, Iran, Iraq, Libya, North Korea, Sudan, or Syria. If you wish to transfer this software outside the United States or Canada, please contact your local Allied Telesyn sales representative for current information on this product’s export status.

Document Conventions

This document uses the following conventions:

Note

Notes provide additional information.

Caution

Cautions inform you that performing or omitting a specific action may result in equipment damage or loss of data.

Warning

Warnings inform you that performing or omitting a specific action may result in bodily injury.

AT-S63 Management Software Web Browser Interface User’s Guide

Preface

Where to Find Web-based Guides

The installation and user guides for all Allied Telesyn products are available in portable document format (PDF) from on our web site at www.alliedtelesyn.com. You can view the documents online or download them onto a local workstation or server.

AT-S63 Management Software Web Browser Interface User’s Guide

Contacting Allied Telesyn

This section provides Allied Telesyn contact information for technical support as well as sales or corporate information.

Online Support You can request technical support online by accessing the Allied Telesyn

Knowledge Base at www.alliedtelesyn.com/kb. You can use the Knowledge Base to submit questions to our technical support staff and review answers to previously asked questions.

Email and

Telephone

Support

For Sales or

Corporate

Information

For Technical Support via email or telephone, refer to the Support & Services section of the Allied Telesyn web site, www.alliedtelesyn.com.

You can contact Allied Telesyn for sales or corporate information at our web site: www.alliedtelesyn.com. To find the contact information for your country, select Contact Us -> Worldwide Contacts.

Preface

Management Software Updates

New releases of management software for our managed products can be downloaded from either of the following Internet sites:

❑ Allied Telesyn web site: www.alliedtelesyn.com

❑ Allied Telesyn FTP server: ftp://ftp.alliedtelesyn.com

If you prefer to download new software from the Allied Telesyn FTP server using your workstation’s command prompt, you need the FTP client software and you must log in to the server. Enter “anonymous” as the user name and your email address for the password.

Chapter 1 Overview

This chapter describes the AT-S63 software functions, the types of sessions you can use to access the software, and the management access levels. This chapter contains the following sections:

❑ ”Management Overview” on page 22

❑ ”Local Management Session” on page 24

❑ ”Telnet Management Session” on page 25

❑ ”Web Browser Management Session” on page 26

❑ ”SNMP Management Session” on page 27

❑ ”Management Access Levels” on page 28

Chapter 1: Overview

Management Overview

The AT-S63 management software is intended for the AT-9400 Series switches. You use the software to monitor and adjust the switch’s operating parameters. Some of the functions you can perform with the software include:

❑ Enable and disable ports

❑ Configure port parameters, such as speed and duplex mode

❑ Create virtual LANs (VLANs)

❑ Create port trunks and port mirrors

❑ Assign an Internet Protocol (IP) address and subnet mask

❑ Activate and configure the Spanning Tree Protocol (STP), Rapid

Spanning Tree Protocol (RSTP), or Multiple Spanning Tree Protocol (MSTP)

❑ Activate enhanced stacking functions

❑ Configure Quality of Service (QoS)

❑ Enable and configure Internet Group Management Protocol

(IGMP) snooping

❑ Download and upload image, configuration, and system files

❑ Configure port security

The AT-S63 management software is preinstalled on the switch with default settings for all operating parameters. If the default settings are adequate for your network, you can use the device as an unmanaged switch by connecting it to your network, as explained in the hardware installation guide, and powering on the switch.

Note

The default settings for the management software can be found in Appendix A, ”AT-S63 Default Settings” on page 357.

To actively manage a switch by adjusting its operating parameters, you must access the AT-S63 management software. The AT-S63 management software provides a menu interface that makes it very easy to use (see the AT-S63 Management Software Menus Interface User’s Guide), and an interface for managing a switch using a web browser (described in this guide). It also features a command line interface (see the AT-S63 Management Software Command Line Interface User’s Guide).

AT-S63 Management Software Web Browser Interface User’s Guide

There are four ways to access the management software on an AT-9400 Series switch. These methods are referred to in this guide as management sessions. They are:

❑ Local management session

❑ Telnet management session

❑ Web browser management session

❑ SNMP management session

The following sections in this chapter briefly describe each type of management session.

Chapter 1: Overview

Local Management Session

You establish a local management session with an AT-9400 Series switch by connecting a terminal or a PC with a terminal emulator program to the terminal port on the switch, using the RJ-45 to RS-232 management cable included with the switch. The terminal port is located on the front panel of the AT-9400 Series switch.

This type of management session is referred to as “local” because you must be physically close to the switch, such as in the wiring closet where the switch is located.

After the session starts, a menu is displayed from which you can make selections to configure and monitor the switch. You can configure all of a switch’s operating parameters from a local management session using the menus or CLI interface.

Note

For instructions on starting a local management session, refer to Chapter 2, “Starting a Local or Telnet Management Session” in the AT-S63 Management Software Menus Interface User’s Guide.

A switch does not need an Internet Protocol (IP) address for you to manage it locally. You can start a local management session on a switch at any time. It does not affect the forwarding of frames by the device.

Assigning an AT-9400 Series switch an IP address and designating it as a master switch allows you to manage more than that switch. You can manage all of the switches that support enhanced stacking that reside in the same subnet, all from the same local management session.

Note

For further information on enhanced stacking, refer to Chapter 5, “Enhanced Stacking,” in the AT-S63 Management Software Menus

Interface User’s Guide.

Telnet Management Session

You can use any management station on your network that has the Telnet application to manage an AT-9400 Series switch. This type of management session is referred to in this guide as a remote management session because you do not need to be in the wiring closet where the switch is located. You can manage the switch from any workstation on the network that has the application protocol.

To establish a Telnet management session with a switch, there must be at least one enhanced stacking switch in the subnet to which you assigned an IP address. Only one switch in a subnet needs to have an IP address. After you have established a Telnet management session with the switch that has an IP address, you can use the enhanced stacking feature of the management software to access all other switches that support enhanced stacking that reside in the same subnet.

Note

For further information on enhanced stacking, refer to Chapter 5, “Enhanced Stacking,” in the AT-S63 Management Software Menus

Interface User’s Guide.

AT-S63 Management Software Web Browser Interface User’s Guide

Note

For instructions on how to start a Telnet management session, refer to Chapter 2, “Starting a Local or Telnet Management Session” in the

AT-S63 Management Software Menus Interface User’s Guide.

A Telnet management session provides access to nearly all of a switch’s operating parameters. You can perform nearly all the same functions from a Telnet management session as you can from a local management session.

Chapter 1: Overview

Web Browser Management Session

You can also use a web browser to manage a switch. This too is referred to as remote management, just like a Telnet management session. You can manage a switch from any workstation on your network that has a web browser. It also uses the enhanced stacking feature. This means there needs to be just one switch on the subnet with an Internet Protocol (IP) address for you to be able to manage all the switches with a web browser. For instructions on starting this type of management session, refer to Chapter 2, ”Starting a Web Browser Management Session” on page 31.

SNMP Management Session

Another way to remotely manage the switch is with an SNMP management program. A familiarity with using management information base (MIB) objects is necessary for this type of management.

The AT-S63 software supports the following MIBs:

❑ SNMP MIB-II (RFC 1213)

❑ Bridge MIB (RFC 1493)

❑ Interface Group MIB (RFC 1573)

❑ Ethernet MIB (RFC 1643)

❑ Remote Network MIB (RFC 1757)

❑ Allied Telesyn managed switch MIBs

You must download the Allied Telesyn managed switch MIBs (atistackinfo.mib and atiswitch.mib) file from the Allied Telesyn web site and compile the files with your SNMP program. For instructions, refer to your SNMP management documentation.

AT-S63 Management Software Web Browser Interface User’s Guide

Note

SNMP management does not use the enhanced stacking feature of the switch. Therefore, you must assign an IP address to each switch that you want to manage with an SNMP program.

Chapter 1: Overview

Management Access Levels

There are two levels of management access in the AT-S63 management software: manager and operator. When you log in as a manager, you can view and configure all of a switch’s operating parameters. When you log in as an operator, you can only view the operating parameters; you cannot change any values.

You log in as a manager or an operator by entering the appropriate username and password when you start an AT-S63 management session. To log in as a manager, type “manager” as the login name. The default password is “friend.” The username for operator is “operator” and the default password is also “operator.” The usernames and passwords are case sensitive.

To change the passwords, refer to ”Configuring the Manager and Operator Passwords” on page 46.

Section I

Basic Features

The chapters in this section provide information and procedures for basic switch setup and include:

❑ Chapter 2, ”Starting a Web Browser Management Session” on

page 31

❑ Chapter 3, ”Basic Switch Parameters” on page 39

❑ Chapter 4, ”SNMPv1 and SNMPv2c” on page 53

❑ Chapter 5, ”Enhanced Stacking” on page 65

❑ Chapter 6, ”Port Parameters” on page 73

❑ Chapter 7, ”MAC Address Table” on page 89

❑ Chapter 8, ”Port Trunking” on page 99

❑ Chapter 9, ”Port Mirroring” on page 109

Chapter 2 Starting a Web Browser Management Session

This chapter contains the procedure for starting, saving, and quitting a web browser management session on an AT-9400 Series switch. Sections in the chapter include:

❑ ”Starting a Web Browser Management Session” on page 32

❑ ”Web Browser Tools” on page 35

❑ ”Saving Your Parameter Changes” on page 36

❑ ”Quitting a Web Browser Management Session” on page 37

Section I: Basic Features 31

Chapter 2: Starting a Web Browser Management Session

Starting a Web Browser Management Session

To establish a web browser management session with an AT-9400 Series switch, there must be at least one switch in the subnet that has been assigned an IP address and whose stacking status has been changed to master switch. After you start a web browser management session on the master switch, you can manage all the enhanced stacking switches that reside in the same subnet.

If the subnet does not contain an enhanced stacking switch with an IP address, then you must use the menus or the command line interface (CLI) to give the switch an IP address and subnet mask. Then you can connect to that switch and start a web browser management session.

Note

For background information on enhanced stacking, refer to Chapter 5, “Enhanced Stacking,” in the AT-S63 Management Software Menus Interface User’s Guide.

Switch’s IP Address

To start a web browser management session, perform the following procedure:

1. Start your web browser.

Note

If your PC with the web browser is connected directly to the switch to be managed or is on the same side of a firewall as the switch, you must configure your browser’s network options not to use proxies. Consult your web browser’s documentation on how to configure the switch’s web browser not to use proxies.

2. In the URL field of the browser, enter the IP address of the switch you want to manage or of the master switch of the enhanced stack.

Figure 1. Entering a Switch’s IP Address in the URL Field

32 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

The AT-S63 management software displays the login page, as shown in Figure 2.

Figure 2. AT-S63 Login Page

3. Enter a user name and password. For manager access, enter “manager” as the user name. The default password is “friend.” For operator access, enter “operator” as the user name. The default password is “operator.” Login names and passwords are casesensitive. (For information on the two access levels, refer to “Management Access” in Chapter 1, “Overview,” of the AT-S63 Management Software Menus Interface User’s Guide.)

You cannot change the user names. To change a password, refer to ”Configuring the Manager and Operator Passwords” on page

46.

Section I: Basic Features 33

Chapter 2: Starting a Web Browser Management Session

The home page is shown in Figure 3.

Figure 3. Home page

The main menu is on the left side of the home page. It consists of the following selections:

❑ Enhanced Stacking

❑ Configuration

❑ Monitoring

❑ Logout

Note

The Enhanced Stacking selection is included in the menu only if the switch is a master switch.

A web browser management session remains active even if you link to other sites. You can return to the management web pages anytime as long as you do not quit the browser.

34 Section I: Basic Features

Web Browser Tools

You can use the web browser tools to move around the management pages. Selecting Back on your browser’s toolbar returns you to the previous display. You can also use the browser’s bookmark feature to save the link to the switch.

AT-S63 Management Software Web Browser Interface User’s Guide

Section I: Basic Features 35

Chapter 2: Starting a Web Browser Management Session

Saving Your Parameter Changes

When you make a change to a switch parameter, the change is, in most cases, immediately activated as soon as you click the Apply button on the page. However, a change to a switch parameter is initially saved only to temporary memory. It is lost the next time you reset or power cycle the unit. To permanently save a change, you must click the Save Changes button. This button is located on the General tab.

To locate the button, from the home page click Configuration. The General tab is displayed. The Save Changes button is at the bottom of the page. If the button is not displayed, there are no changes for the switch to save.

Save Changes Button

Figure 4. Save Changes Button in the General Tab (Configuration)

36 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

Quitting a Web Browser Management Session

To exit a web browser management session, select the Logout option from the main menu.

Section I: Basic Features 37

Chapter 2: Starting a Web Browser Management Session

38 Section I: Basic Features

Chapter 3 Basic Switch Parameters

This chapter contains the following sections:

❑ ”Configuring an IP Address and Switch Name” on page 40

❑ ”Activating the BOOTP and DHCP Client Software” on page 43

❑ ”Displaying System Information” on page 44

❑ ”Configuring the Manager and Operator Passwords” on page 46

❑ ”Rebooting a Switch” on page 48

❑ ”Pinging a Remote System” on page 49

❑ ”Returning the AT-S63 Management Software to the Factory

Default Values” on page 50

Section I: Basic Features 39

Chapter 3: Basic Switch Parameters

Configuring an IP Address and Switch Name

Note

For guidelines about when to assign an IP address, subnet address, and gateway address to an AT-9400 Series switch, refer to “When Does a Switch Need an IP Address?” in Chapter 3, “Basic Switch Parameters,” in the AT-S63 Management Software Menus Interface User’s Guide.

To set basic switch parameters for an AT-9400 Series switch, perform the following procedure:

1. From the home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5.

Figure 5. General Tab (Configuration)

40 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

Note

This procedure describes the parameters in the Administration section of the tab. The Passwords section is described in ”Configuring the Manager and Operator Passwords” on page 46. The DHCP/BOOTP option is described in ”Activating the BOOTP and DHCP Client Software” on page 43. The maximum aging timer option is described in ”Changing the Aging Time” on page 97.

Note

The Defaults button returns all parameters in this tab to their default settings. The Reset button resets the switch. For instructions, refer to ”Rebooting a Switch” on page 48.

2. Adjust the following parameters as necessary:

System Name

This parameter specifies a name for the switch (for example, Sales Ethernet switch). The name is displayed at the top of the AT-S63 management pages and tabs. The name can be from 1 to 39 characters. The name can include spaces and special characters, such as exclamation points and asterisks. The default is no name. This parameter is optional.

Note

Allied Telesyn recommends assigning each switch a name. Names make it easier for you to identify the various switches when you manage them, and they can help you avoid performing a configuration procedure on the wrong switch.

Administrator

This parameter specifies the name of the network administrator responsible for managing the switch. The name can be from 1 to 20 characters. It can include spaces and special characters, such as dashes and asterisks. The default is no name. This parameter is optional.

Comments

This parameter specifies the location of the switch, (for example, 4th Floor - rm 402B). The location can be from 1 to 20 characters. The location can include spaces and special characters, such as dashes and asterisks. The default is no location. This parameter is optional.

Section I: Basic Features 41

Chapter 3: Basic Switch Parameters

IP Address

This parameter specifies the IP address of the switch. You must specify an IP address if you want the switch to function as the Master switch of an enhanced stack. The IP address must be entered in the format: xxx.xxx.xxx.xxx. The default value is 0.0.0.0.

Subnet Mask

This parameter specifies the subnet mask for the switch. You must specify a subnet mask if you assigned an IP address to the switch. The subnet mask must be entered in the format: xxx.xxx.xxx.xxx. The default value is 255.255.0.0.

Default Gateway

This parameter specifies the default router’s IP address. This address is required if you intend to remotely manage the switch from a management station that is separated from the switch by a router. The address must be entered in the format: xxx:xxx:xxx:xxx. The default value is 0.0.0.0.

3. Click Apply to activate your changes on the switch.

Note

A change to any of the above parameters is immediately activated on the switch.

A change to the IP address of the switch results in the loss of a remote management session. You can restart the management session using the switch’s new IP address.

4. Click Save Changes to permanently save your changes. (This button is not displayed if there are no changes to save.)

42 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

Activating the BOOTP and DHCP Client Software

For background information on BOOTP and DHCP, refer to Chapter 3, “Basic Switch Parameters,” in the AT-S63 Management Software Menus Interface User’s Guide.

To activate or deactivate the BOOTP and DHCP client software on the switch from a web browser management session, perform the following procedure:

1. From the home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. In the BOOTP/DHCP section, click either Enable to activate the client software or Disable to disable it. The default is disabled.

3. Click Apply to activate your change on the switch.

Note

If you activated BOOTP/DHCP, the switch immediately begins to query the network for a BOOTP or DHCP server. The switch continues to query the network for its IP configuration until it receives a response. If you manually assigned the switch and IP address, that address is deleted and replaced by the IP address received from the BOOTP/DHCP server.

4. Click Save Changes to permanently save your changes. (This button is not displayed if there are no changes to save.)

Section I: Basic Features 43

Chapter 3: Basic Switch Parameters

Displaying System Information

To view basic information about the switch, perform the following procedure:

1. From the Home page, select Monitoring.

The Monitoring System page is displayed with the General tab selected by default, as shown in Figure 6.

Figure 6. General Tab (Monitoring)

The General section displays the following information:

System Name

The name of the switch.

Administrator

The name of the network administrator responsible for managing the switch.

Comments

The location of the switch, (for example, 4th Floor - rm 402B).

44 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

DHCP/BOOTP

The status of the DHCP and BOOTP client software. If enabled, the switch is obtaining its IP information from a DHCP and BOOTP server on the network. If disabled, the IP address must be manually entered.

MAC Address Aging Timer

The time interval an inactive dynamic MAC address can remain in the MAC address table before it is deleted.

IP Address

The switch’s IP address.

Subnet Mask

The switch’s subnet mask.

Default Gateway

The IP address of a router for remote management.

System Up Time

The length of time since the switch was last reset or power cycled.

The System Software section displays the following information:

Application Software

The version number and build date of the AT-S63 management software.

Bootloader

The version number and build date of the AT-S63 bootloader.

The Hardware section displays the following information:

Model Name

The model name.

Serial Number

The switch serial number.

Temperature (Deg.C)

The current system temperature.

Upper Temp. Threshold (Deg C)

The upper threshold for the switch temperature.

Fan 1 Speed RPM Fan 2 Speed RPM

The speed of the system fan(s).

The Voltage section provides the current voltage of the six power supplies in the switch, identified as 2.5 V, 3.3 V, 5 V, 1.8 V, 1.25 V, and 12 V.

Section I: Basic Features 45

Chapter 3: Basic Switch Parameters

Configuring the Manager and Operator Passwords

There are two levels of management access on an AT-9400 Series switch: manager and operator. When you log in as a manager, you can view and configure all of a switch’s operating parameters. When you log in as an operator, you can only view the operating parameters; you cannot change any values.

You log in as a manager or an operator by entering the appropriate username and password when you start an AT-S63 management session. The default password for manager access is “friend.” The default password for operator access is “operator.” Passwords are case sensitive.

To change the manager or operator password, perform the following procedure:

1. From the home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. In the Passwords section, enter the new values. The parameters are described below.

Manager Password Confirm Manager Password

You use these parameters to change the manager’s login password for the switch. The password can be from 0 to 16 characters in length. The same password is used for both local and remote management sessions. To create a new password, enter the new password into both fields. The default password is “friend.” The password is case sensitive.

Caution

Do not use spaces or special characters, such as asterisks (*) and exclamation points (!), in a password if you are managing the switch from a web browser. Many web browsers cannot handle special characters in passwords.

46 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

Operator Password Confirm Operator Password

Use these parameters to change the operator’s login password for the switch. The password can be from 0 to 16 characters in length. The same password is used for both local and remote management sessions. To create a new password, enter the new password into both fields. The default password for operator is “operator.” The password is case sensitive.

Caution

Note

A change to a password is immediately activated on the switch. You are prompted for the new password the next time you log in.

3. Click Apply to activate your change on the switch.

4. Click Save Changes to permanently save your change. (This button is not displayed if there are no changes to save.)

Section I: Basic Features 47

Chapter 3: Basic Switch Parameters

Rebooting a Switch

To reboot a switch, perform the following procedure:

1. From the home page, select Configuration.

2. Click Reset.

3. Click OK to reset the switch or Cancel to cancel the procedure:

Note

Any parameters changes that have not been saved are discarded when a system is reset. To save parameter changes, refer to ”Saving Your Parameter Changes” on page 36.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

A confirmation prompt is displayed.

Note

The switch does not forward packets while it reloads the AT-S63 management software, a process that takes approximately 20 seconds to complete.

Resetting the switch ends your web browser management session. You must restart the session to continue managing the switch.

48 Section I: Basic Features

Pinging a Remote System

You can instruct the switch to ping a node on your network. This procedure is useful in determining whether a valid link exists between the switch and another device.

To ping a network device, perform the following procedure:

1. From the home page, select Monitoring.

The Monitoring System page is displayed with the General tab selected by default, as shown in Figure 6 on page 44.

2. Select the Ping Client tab.

The Ping Client tab is shown in Figure 7.

AT-S63 Management Software Web Browser Interface User’s Guide

Figure 7. Ping Client Tab (Monitoring)

3. Enter the IP address of the end node you want the switch to ping.

4. Click OK.

The results of the ping are displayed in a popup window.

5. To stop the ping, click OK.

Section I: Basic Features 49

Chapter 3: Basic Switch Parameters

Returning the AT-S63 Management Software to the Factory Default Values

The procedure in this section returns all AT-S63 management software parameters to their default values. Please note the following before you perform this procedure:

❑ Returning all parameter settings to their default values also

deletes any port-based or tagged VLANs you created on the switch.

❑ This procedure does not delete files from the AT-S63 file system.

To delete files, refer to Chapter 10, “File System,” in the AT-S63 Management Software Menus Interface User’s Guide.

❑ This procedure does not delete any encryption keys stored in the

key database. To delete encryption keys, refer to “Deleting a Key,” in Chapter 26, “Encryption Keys,” in the AT-S63 Management Software Menus Interface User’s Guide.

❑ Returning a switch to its default values deletes all configuration

commands in the active boot configuration file. If you want to keep the file, you should either create a copy of it, as explained in Chapter 10, “File System,” in the AT-S63 Management Software Menus Interface User’s Guide. Or, you can assign another configuration file, one whose configuration you do not want to retain, as the active boot configuration file. The latter procedure is described in the same chapter.

Note

The AT-S63 management software default values are listed in Appendix A, ”AT-S63 Default Settings” on page 357.

To return the AT-S63 management software to the default settings, perform the following procedure:

1. From the home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. Select the System Utilities tab.

50 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

The System Utilities tab is shown in Figure 8.

Figure 8. System Utilities Tab (Configuration)

3. Click the Reboot Switch After Setting Defaults checkbox.

4. Click Apply.

The web browser displays the following prompt:

This page may no longer be available while the switch reboots. Do you want to continue?

5. Click OK to continue, or Cancel to cancel the procedure:

Section I: Basic Features 51

Chapter 3: Basic Switch Parameters

52 Section I: Basic Features

Chapter 4 SNMPv1 and SNMPv2c

This chapter explains how to activate SNMP management on the switch and how to create, modify, and delete SNMPv1 and SNMPv2c community strings. This chapter contains the following procedures:

❑ ”Enabling or Disabling SNMP Management” on page 54

❑ ”Creating a New SNMPv1 and SNMPv2c Community” on page 56

❑ ”Modifying an SNMPv1 and SNMPv2c Community” on page 59

❑ ”Deleting an SNMPv1 and SNMPv2c Community” on page 61

❑ ”Displaying the SNMPv1 and SNMPv2c Communities” on page 62

Note

For background information about SNMPv1 and SNMPv2c, refer to Chapter 4, “SNMPv1 and SNMPv2c,” in the AT-S63 Management

Software Menus Interface User’s Guide.

Section I: Basic Features 53

Chapter 4: SNMPv1 and SNMPv2c

Enabling or Disabling SNMP Management

To enable or disable SNMP management on the switch, perform the following procedure:

1. From the Home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. Select the SNMP tab.

The SNMP tab is shown in Figure 9.

Figure 9. SNMP Tab (Configuration)

3. Click the Enable SNMP Access checkbox to enable or disable SNMP management. A check in the box indicates that the feature is enabled, meaning that the switch can be managed from an SNMP management station. No check indicates that the feature is disabled. The default is disabled.

4. If you want the switch to send authentication failure traps, click the Enable Authentication Failure Traps checkbox. A check in the box indicates that the switch sends the trap.

54 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

5. Click Apply.

A change to SNMP access is immediately activated on the switch.

The community strings that already exist on the switch are displayed in a table.

6. To permanently save the change, return to the General tab on the System page and click Save Changes.

Section I: Basic Features 55

Chapter 4: SNMPv1 and SNMPv2c

Creating a New SNMPv1 and SNMPv2c Community

To create a new SNMPv1 and SNMPv2c community, perform the following procedure:

1. From the Home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. Select the SNMP tab.

The SNMP tab is shown in Figure 9 on page 54.

3. In the SNMPv1 & SNMPv2c section, click Configure.

The SNMPv1 & SNMPv2c Communities tab is shown in Figure 10.

Figure 10. SNMPv1 & SNMPv2c Communities Tab

4. Click Add.

56 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

The Add New SNMPv1 & SNMPv2c Community page is shown in Figure 11.

Figure 11. Add New SNMPv1 & SNMPv2c Community Page

5. Configure the following parameters:

Community Name

Enter an SNMP community name that consists of up to 15 alphanumeric characters.

Status

Click Enable to enable the SNMP community. Click Disable to disable the SNMP community.

Access Mode

Click Read Only to allow read access to the SNMP community. To allow read-write access to the SNMP community, click Read-Write.

Allow Any Station

Click this option to allow any SNMP manager to access the switch. When you click this option, a warning message appears on the screen. Click OK to continue.

Section I: Basic Features 57

Chapter 4: SNMPv1 and SNMPv2c

Manager IP Address1 through Manager IP Address 8 Enter an IP Address of a switch that is permitted SNMP manager access to the current switch. You can enter up to 8 Manager IP Addresses.

Trap Receiver IP Address 1 through Trap Receiver IP Address 8 Use the above selections to specify the IP addresses of up to 8 trap receivers on your network that can receive traps from the switch.

6. Click Apply.

7. To save your changes, return to the General tab and click Save Changes.

58 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

Modifying an SNMPv1 and SNMPv2c Community

To modify an SNMPv1 and SNMPv2c community, perform the following procedure:

1. From the Home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. Select the SNMP tab.

The SNMP tab is shown in Figure 9 on page 54.

3. In the SNMPv1 & SNMPv2c section, click Configure.

The SNMPv1 & SNMPv2c Communities tab is shown in Figure 10 on page 56.

4. Click the button next to the community name and click Modify.

The Modify SNMPv1 & SNMPv2c Community page is shown in Figure 12.

Figure 12. Modify SNMPv1 & SNMPv2c Community Page

Section I: Basic Features 59

Chapter 4: SNMPv1 and SNMPv2c

5. Modify the following parameters:

Community Name

This field is not configurable from this page. It is the name of the SNMP community.

Status

Click Enable to enable the SNMP community. Click Disable to disable the SNMP community.

Access Mode

Click Read Only to allow read access to the SNMP community. Click Read-Write to allow read-write access to the SNMP community.

Allow Any Station

Click this option to allow any SNMP manager to access the switch. When you click this option, a warning message appears on the screen. Click OK to continue.

Manager IP Address1 through Manager IP Address 8 Enter an IP Address of a switch that is permitted SNMP manager access to the current switch. You can enter up to 8 Manager IP Addresses.

Trap Receiver IP Address 1 through Trap Receiver IP Address 8 Use the above selections to specify the IP addresses of up to 8 trap receivers on your network that can receive traps from the switch.

6. Click Apply.

7. To save your changes, return to the General tab and click Save Changes.

60 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

Deleting an SNMPv1 and SNMPv2c Community

To delete an existing SNMPv1 and SNMPv2c community, perform the following procedure:

1. From the home page, select Configuration.

The Configuration System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. Select the SNMP tab.

The SNMP tab is shown in Figure 9 on page 54.

3. In the SNMPv1 & SNMPv2c section, click Configure.

The SNMPv1 & SNMPv2c Communities tab is shown in Figure 10 on page 56.

4. Click the button next to the community name and click Remove.

A warning message is displayed.

5. Click OK.

6. To save your changes, return to the General tab and click Save Changes.

Section I: Basic Features 61

Chapter 4: SNMPv1 and SNMPv2c

Displaying the SNMPv1 and SNMPv2c Communities

To display the SNMPv1 and SNMPv2c communities, perform the following procedure:

1. From the Home page, select Monitoring.

The Monitoring System page is displayed with the General tab selected by default, as shown in Figure 6 on page 44.

2. Select the SNMP tab.

The SNMP tab is shown in Figure 13.

Figure 13. SNMP Tab (Monitoring)

3. In the SNMPv1 & SNMPv2c section, click View.

62 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

The SNMPv1 & SNMPv2c Communities tab is shown in Figure 14.

Figure 14. SNMPv1 & SNMPv2c Communities Tab (Monitoring)

The SNMPv1 & SNMPv2c Communities tab displays a table that contains the following columns of information:

Community Name

The SNMP community name.

Access Mode

The access mode for access to that community. The possible settings are Read Only and Read/Write.

Manager Stations

The IP addresses of the management stations that are allowed SNMP access to the switch.

Trap Receivers

The IP addresses of up to 8 trap receivers on your network that can receive traps from the switch.

Open Access

The status of access to the SNMP community by a management station, one of the following settings:

Yes - Any management station can access the SNMP community.

No - Access to the SNMP community is only available to a management station configured within this community.

Section I: Basic Features 63

Chapter 4: SNMPv1 and SNMPv2c

Status

The community status, one of the following settings:

Enabled - The community is enabled.

Disabled - The community is disabled.

64 Section I: Basic Features

Chapter 5 Enhanced Stacking

This chapter contains the following procedures for setting up enhanced stacking:

❑ ”Setting a Switch’s Enhanced Stacking Status” on page 66

❑ ”Selecting a Switch in an Enhanced Stack” on page 68

❑ ”Returning to the Master Switch” on page 71

❑ ”Displaying the Enhanced Stacking Status” on page 72

Note

For background information on enhanced stacking, refer to Chapter 5, “Enhanced Stacking,” in the AT-S63 Management Software Menus

Interface User’s Guide.

Section I: Basic Features 65

Chapter 5: Enhanced Stacking

Setting a Switch’s Enhanced Stacking Status

The enhanced stacking status of the switch can be master, slave, or unavailable. Each status is described below:

❑ Master - A master switch of a stack can be used to manage other

enhanced stacking switches in a subnet. After you have established a local or remote management session with the master switch, you can access and manage the other enhanced stacking switches in the subnet.

A master switch must have a unique IP address. You can manually assign a master switch an IP address or activate the BOOTP and DHCP client software on the switch so that the switch automatically obtains an IP address from a BOOTP or DHCP server on your network.

❑ Slave - A slave switch can be remotely managed through a master

switch. It does not need an IP address or subnet mask.

❑ Unavailable - A switch with an unavailable stacking status cannot

be remotely managed through a master switch. A switch with this designation can be managed locally. To be managed remotely, a switch with an unavailable stacking status must be assigned a unique IP address.

Note

The default setting for a switch is slave.

To adjust a switch’s enhanced stacking status, perform the following procedure:

1. From the Home page, select Configuration.

The Configuration System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. From the Configuration menu, select the Layer 2 option.

The Layer 2 page is displayed with the MAC Address tab selected by default, as shown in Figure 23 on page 90.

3. Select the Enhanced Stacking tab.

66 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

The Enhanced Stacking tab is shown in Figure 15.

Figure 15. Enhanced Stacking Tab (Configuration)

4. Click the desired enhanced stacking status for the switch. The default is Slave.

5. Click Apply.

The new enhanced stacking status is immediately activated on the switch.

6. To permanently save the change, return to the General tab on the System page and click Save Changes.

For more information about what the Save Changes button does, refer to ”Saving Your Parameter Changes” on page 36.

Section I: Basic Features 67

Chapter 5: Enhanced Stacking

Selecting a Switch in an Enhanced Stack

Before you perform any procedure on a switch in an enhanced stack, check to be sure that you are performing it on the correct switch. If you assigned system names to your switches, identifying your switches is easy. The AT-S63 management software displays the name of the switch being managed at the top of every management menu.

When you start a web browser management session on the master switch of the enhanced stack, you are by default addressing that particular switch. The management tasks that you perform affect only the master switch.

To manage a slave switch or another master switch in the same stack, you need to select it from the management software.

To select a switch to manage in an enhanced stack, perform the following procedure:

1. From the home page, select Enhanced Stacking.

Note

If the Home page does not have an Enhanced Stacking menu option, the switch’s enhanced stacking status is either slave or unavailable. For instructions on how to change a switch’s stacking status, refer to the previous procedure:

68 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

The master switch polls the network for the slave and master enhanced stacking switches in the subnet and displays a list of the switches in the Stacking Switches page. An example is shown in Figure 16.

Figure 16. Stacking Switches Page

Note

The master switch on which you started the management session is not included in the list, nor are any switches with an enhanced stacking status of Unavailable.

You can sort the switches in the list by switch name or MAC address by clicking on the column headers. By default, the list is sorted by MAC address.

To refresh the list, click Refresh. This instructs the master switch to again poll the subnet for all switches.

2. To manage another switch in an enhanced stack, click the button to the left of the appropriate switch in the list. You can select only one switch at a time.

Note

If the web server on the master switch is operating in the secure HTTPS mode, you can manage only those enhanced stacking switches that are also operating HTTPS. You cannot manage a switch whose web server is operating in the non-secure HTTP mode.

3. Click Connect.

Section I: Basic Features 69

Chapter 5: Enhanced Stacking

4. Enter a user name and password for the switch when prompted.

The home page of the selected switch is displayed. You can now manage the switch.

70 Section I: Basic Features

Returning to the Master Switch

When you are finished managing a slave switch and want to manage another switch in the stack, return to the Home page of the switch and select Disconnect from the menu. This returns you to the Enhanced Stacking page in Figure 16 on page 69. When you see that page, you are again addressing the master switch from which you started the management session.

You can select another switch in the list to manage or, if you want to manage the master switch, select Home to return to the master switch’s home page.

AT-S63 Management Software Web Browser Interface User’s Guide

Section I: Basic Features 71

Chapter 5: Enhanced Stacking

Displaying the Enhanced Stacking Status

To display the enhanced stacking status of the switch, perform the following procedure:

1. From the Home page, select Monitoring.

The Monitoring System page is displayed with the General tab selected by default, as shown in Figure 6 on page 44.

2. From the Monitoring menu, select Layer 2.

The Layer 2 page is displayed with the MAC Address tab selected by default, as shown in Figure 25 on page 94.

3. From the Layer 2 page, select the Enhanced Stacking tab.

The Enhanced Stacking tab is shown Figure 17.

Figure 17. Enhanced Stacking Tab (Monitoring)

The information in the tab states the current enhanced stacking status of the switch as master, slave, or unavailable.

72 Section I: Basic Features

Chapter 6 Port Parameters

This chapter explains how to view and change the parameter settings for the individual ports on a switch. Examples of the parameters that you can adjust include port speed and duplex mode.

This chapter contains the following procedures:

❑ ”Configuring Port Parameters” on page 74

❑ ”Displaying Port Status” on page 81

❑ ”Displaying Port Statistics” on page 85

❑ ”Resetting a Port to the Default Settings” on page 88

Note

For further information about port parameters, refer to Chapter 6, “Port Parameters,” in the AT-S63 Management Software Menus Interface User’s Guide.

Section I: Basic Features 73

Chapter 6: Port Parameters

Configuring Port Parameters

To configure the parameter settings of a port on the switch, perform the following procedure:

1. From the Home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. From the Configuration menu, select the Layer 1 option.

3. Select the Port Settings tab.

The Port Settings tab is shown in Figure 18.

Figure 18. Port Settings Tab (Configuration)

4. Click the port in the graphical switch image that you want to configure. The selected port turns white. You can select more than one port at a time to configure. (To deselect a port, click it again.)

5. Click Modify. To configure all the ports, click Modify All.

Note

If you select Modify All, you cannot configure the port name or set the speed and duplex mode. The speed and duplex mode are set to autonegotiate.

74 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

The Port Configuration page is shown Figure 19.

Figure 19. Port Configuration Page

6. Adjust the following parameters as necessary.

Port Name

Use this selection to assign a name to a port. The name can be from one to fifteen alphanumeric characters. Spaces are allowed, but you should not use special characters, such as asterisks or exclamation points. (You cannot assign a name when you are configuring more than one port.)

Status

Use this selection to enable or disable a port. When disabled, a port does not accept or forward frames.

You might want to disable a port and prevent packets from being forwarded if a problem occurs with the node or cable connected to the port. After the problem has been fixed, you can enable the port again to resume normal operation.

You might also want to disable a port that is not being used to secure it from unauthorized connections.

The possible settings are:

Enabled - The port receives and forwards packets. This is the default setting.

Section I: Basic Features 75

Chapter 6: Port Parameters

Disabled - The port does not receive or forward packets.

Speed and Duplex

You use this selection to configure a port for autonegotiation or to manually set a port’s speed and duplex mode.

If you select Auto-Negotiate for autonegotiation, which is the default setting, the switch sets both speed and duplex mode for the port automatically.

Note the following about the operation of autonegotiation on the switch port:

❑ In order for a switch port to successfully autonegotiate its duplex

mode with an end node, the end node should also be using autonegotiation. Otherwise, a duplex mode mismatch can occur. A switch port using autonegotiation defaults to half-duplex if it detects that the end node is not using autonegotiation. This results in a mismatch if the end node is operating at a fixed duplex mode of full-duplex.

To avoid this problem, when connecting an end node with a fixed duplex mode of full-duplex to a switch port, you should disable autonegotiation on the port and set the port’s speed and duplex mode manually.

❑ If you disable autonegotiation on a port, the auto-MDI/MDI-X

feature on a port is also disabled, and the port defaults to the MDIX configuration. Consequently, if you disable autonegotiation and set a port’s speed and duplex mode manually, you might also need to set the port’s MDI/MDI-X setting as well.

Auto-Negotiate: The port autonegotiates both speed (10/100/1000 Mbps) and duplex mode. This is the default.

The other possible settings are:

10Mbps - Half Duplex

10Mbps - Full Duplex

100Mbps - Half Duplex

100Mbps - Full Duplex

Note

When a transceiver is inserted into an uplink slot and a link is established, that slot becomes a primary uplink port and the corresponding backup port, 23R or 24R, automatically transitions to redundant uplink status. The speed and duplex mode of the

76 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

redundant port automatically transitions to Auto-Negotiate to match the speed of the primary uplink port and you cannot configure the MDI/MDIX crossover parameter.

Note

1000 Mbps speed is only available when you set the port to autonegotiate. You cannot set this manually.

If you select all ports, the Speed and Duplex setting displays “Not Configurable,” because all ports are set to autonegotiate.

Broadcast Filter

Use this parameter to limit the number of ingress broadcast packets the port receives. The possible settings are:

Enabled - The port does not receive any broadcast packets.

Disabled - The port receives broadcast packets. This is the default setting.

For further information about filters, refer to Chapter 6, “Port Parameters,” in the AT-S63 Management Software Menus Interface User’s Guide.

Unknown Unicast Filter

Use this parameter to limit the number of ingress unknown unicast packets the port receives. The possible settings are:

Enabled - The port does not receive any unknown unicast packets.

Disabled - The port receives unknown unicast packets. This is the default setting.

Unknown Multicast Filter

Use this parameter to limit the number of ingress unknown multicast packets the port receives. The possible settings are:

Enabled - The port does not receive any unknown multicast packets.

Disabled - The port receives unknown multicast packets. This is the default setting.

Flow Control

Sets flow control on a port. This option only applies to ports operating in full-duplex mode. A switch port uses back pressure to control the flow of ingress packets. The switch sends a special pause packet to stop the end node from sending frames. The

Section I: Basic Features 77

Chapter 6: Port Parameters

pause packet notifies the end node to stop transmitting for a specified period of time. The possible settings are:

Auto - The port uses flow control if it detects that the end node is using it.

Disabled - No flow control on the port. This is the default.

Enabled - Flow control is activated.

For further information about flow control, refer to Chapter 6, “Port Parameters,” in the AT-S63 Management Software Menus Interface User’s Guide.

Back Pressure

Use this parameter to set back pressure on a port. This option only appears for ports operating in half-duplex mode. A switch port uses back pressure to control the flow of ingress packets. The possible settings are:

Enabled - Back pressure is enabled.

Disabled - Back pressure is disabled. This is the default.

For further information about back pressure, refer to Chapter 6, “Port Parameters,” in the AT-S63 Management Software Menus Interface User’s Guide.

Flow Control/Back Pressure Limit

Use this parameter to specify the maximum number of ingress packets that a port receives within a one second period before initiating flow control or back pressure. The range is 1 to 7935 cells. The default is 561.

The following three parameters allow you to set rate limiting, the maximum number of ingress packets a port accepts each second. Packets exceeding the threshold are discarded.

Broadcast Rate Limit

Use this parameter to enable or disable ingress broadcast packet limits and specify a rate limit for the ingress broadcast packets. The possible settings are:

Enabled - Broadcast packet ingress rate limiting is enabled.

Disabled - Broadcast packet ingress rate limiting is disabled. This is the default.

You can also set the rate limit in packets per second. The range is 0 to 262143. The default is 262143.

78 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

Unknown Unicast Rate Limit

Use this parameter to enable or disable ingress unknown unicast packet limits and specify a rate limit for the ingress unknown unicast packets. The possible settings are:

Enabled - Unknown unicast packet ingress rate limiting is enabled.

Disabled - Unknown unicast packet ingress rate limiting is disabled. This is the default.

You can also set the rate limit in packets per second. The range is 0 to 262143. The default is 262143.

Multicast Rate Limit

Use this parameter to enable or disable ingress multicast packet limits and specify a rate limit for the ingress multicast packets. The possible settings are:

Enabled - Multicast packet ingress rate limiting is enabled.

Disabled - Multicast packet ingress rate limiting is disabled. This is the default.

You can also set the rate limit in packets per second. The range is 0 to 262143. The default is 262143.

HOL Blocking

HOL blocking sets a threshold on the utilization of a port’s egress queue. When the threshold for a port is exceeded, the switch signals other ports to discard packets to the oversubscribed port. The possible settings are:

Enabled - HOL blocking prevention is activated.

Disabled - HOL blocking is inactivated on this port.

You also set the rate limit in number of cells. The range is 1 to

8191. The default is 8191. For more information about HOL blocking, refer to Chapter 6, “Port Parameters,” in the AT-S63 Management Software Menus Interface User’s Guide.

MDI/MDIX Crossover

The wiring configuration of the port. The possible settings are:

Auto - The port automatically configures itself as MDI or MDIX, depending upon the end node. This is the default.

MDI - The port uses straight through cable.

MDIX - The port uses a crossover cable.

Section I: Basic Features 79

Chapter 6: Port Parameters

Note

Ports 23 and 24 are always set to Auto, and you cannot change the setting.

Note

The Auto setting is not available if you set a port’s speed and duplex mode manually.

7. After you have made the desired changes, click Apply.

The switch activates the parameter changes on the port.

8. To permanently save the change, return to the General tab on the System page and click Save Changes.

For more information about what the Save Changes button does, refer to ”Saving Your Parameter Changes” on page 36.

80 Section I: Basic Features

Displaying Port Status

To display the status of a switch port, perform the following procedure:

1. From the Home page, select Monitoring.

The Monitoring System page is displayed with the General tab selected by default, as shown in Figure 6 on page 44.

2. From the Monitoring menu, select the Layer 1 option.

The Layer 1 page is displayed with the Port Settings tab selected by default, as shown in Figure 20.

AT-S63 Management Software Web Browser Interface User’s Guide

Figure 20. Port Settings Tab (Monitoring)

The Port Settings tab displays a graphical image of the front of the switch. Ports with valid links to end nodes have a green light.

3. Click a port. You can select more than one port at a time when you want to display port status. However, you can select only one port when displaying statistics. A selected port turns white. (To deselect a port, click it again.)

4. Click Status.

Section I: Basic Features 81

Chapter 6: Port Parameters

The Port Status page is shown in Figure 21.

Figure 21. Port Status Page

The Port Status page displays a table that contains the following columns of information:

Port

The port number.

Name

The name of the port.

Link

The status of the link between the port and the end node connected to the port. The possible settings are:

Up - A valid link exists between the port and the end node.

Down - The port and the end node have not established a valid link.

Neg

The status of autonegotiation on the port. The possible settings are:

Auto - Indicates that the port is using autonegotiation to set operating speed and duplex mode.

Manua - Indicates that the operating speed and duplex mode have been set manually.

MDI/X

The operating configuration of the port. The possible settings are MDI and MDI-X.

82 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

Speed

The operating speed of the port. The possible settings are:

0010 - 10 Mbps

0100 - 100 Mbps

1000 - 1000 Mbps

Duplex

The duplex mode of the port. The possible settings are halfduplex and full-duplex.

PVID

The VLAN

identifier (VID) of the VLAN in which the port is an untagged member. This column does not include the VIDs of the VLANs where the port is a tagged member.

Flow Control

The port’s flow control setting. The possible settings are:

Enabled - Flow control is enabled on the port.

Disabled - Flow control is disabled on the port.

STP State

The operating status of the port. The possible settings are Forwarding and Disabled.

Filtering

Enables or disables filtering which discards ingress packets of a particular type. The possible settings are:

B-Bcast (Broadcast packet filtering) - The possible settings are enabled or disabled.

UM-Unknown Multicast (Unknown multicast packet filtering) The possible settings are enabled or disabled.

UU-Unknown Unicast (Unknown unicast packet filtering) - The possible settings are enabled or disabled.

HOL Blocking

HOL blocking state. The possible settings are:

Enabled or disabled

# of cells - Threshold number of cells.

Section I: Basic Features 83

Chapter 6: Port Parameters

Rate Limiting

The limit on the number of ingress packets of a particular type that the port accepts per second. The possible settings are:

B-Broadcast - Status of broadcast packet rate limit (enabled or disabled) and number of packets per second.

UM-Unknown Multicast - Status of unknown multicast packet filtering (enabled or disabled) and number of packets per second.

UU-Unknown Unicast - Status of unknown unicast packet filtering (enabled or disabled) and number of packets per second.

84 Section I: Basic Features

Displaying Port Statistics

To display the statistics of a switch port, perform the following procedure:

1. From the Home page, select Monitoring.

The Monitoring System page is displayed with the General tab selected by default, as shown in Figure 6 on page 44.

2. From the Monitoring menu, select the Layer 1 option.

The Layer 1 page is displayed with the Port Settings tab selected by default, as shown in Figure 20 on page 81.

The Port Setting tab displays a graphical image of the front of the switch. Ports with valid links to end nodes have a green light.

AT-S63 Management Software Web Browser Interface User’s Guide

4. Click Statistics.

The Port Statistics page is shown in Figure 22.

Figure 22. Port Statistics Page

The Port Statistics page displays a table that contains the following columns of information:

Bytes Received

Number of bytes received on the port.

Section I: Basic Features 85

Chapter 6: Port Parameters

Bytes Sent

Number of bytes transmitted from the port.

Frames Received

Number of frames received on the port.

Frames Sent

Number of frames transmitted from the port.

Broadcast Frames Received

Number of broadcast frames received on the port.

Broadcast Frames Sent

Number of broadcast frames transmitted from the port.

Multicast Frames Received

Number of multicast frames received on the port.

Multicast Frames Sent

Number of multicast frames transmitted from the port.

Frames 64 Bytes Frames 65 - 127 Bytes Frames 128 - 255 Bytes Frames 256 - 511 Bytes Frames 512 - 1023 Bytes Frames > 1024 Bytes

Number of frames transmitted from the port, grouped by size.

CRC Error

Number of frames with a cyclic redundancy check (CRC) error but with the proper length (64-1518 bytes) received on the port.

Jabber

Number of occurrences of corrupted data or useless signals appearing on the port.

No. of Rx Errors

Total number of frames received on the port containing errors.

Undersize Frames

Number of frames that were less than the minimum length specified by IEEE 802.3 (64 bytes including the CRC) received on the port.

Oversize Frames

Number of frames exceeding the maximum specified by IEEE

802.3 (1518 bytes including the CRC) received on the port.

Fragments

Number of undersized frames, frames with alignment errors, and

86 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

frames with frame check sequence (FCS) errors (CRC errors) received on the port.

Dropped Frames

Number of frames successfully received and buffered by the port, but discarded and not forwarded.

5. To clear all the counters for the selected port, click Clear. To clear the counters for all ports on the switch, click Clear All.

Section I: Basic Features 87

Chapter 6: Port Parameters

Resetting a Port to the Default Settings

To reset a port to the default settings, perform the following procedure:

1. From the Home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. From the Configuration menu, select the Layer 1 option.

3. Select the Port Settings tab.

The Port Settings tab is shown in Figure 18 on page 74.

5. Click Modify. To configure all of the ports, click Modify All.

The Port Configuration page is shown Figure 19 on page 75.

6. Click Defaults.

The port(s) are returned to the default settings listed in Appendix A, ”AT-S63 Default Settings” on page 357.

88 Section I: Basic Features

Chapter 7 MAC Address Table

This chapter contains instructions on how to add and view the dynamic and static addresses in the MAC address table of the switch. This chapter contains the following procedure:

❑ ”Adding Static Unicast and Multicast MAC Addresses” on page 90

❑ ”Deleting Unicast and Multicast MAC Addresses” on page 92

❑ ”Deleting All Dynamic MAC Addresses” on page 93

❑ ”Displaying the MAC Address Tables” on page 94

❑ ”Changing the Aging Time” on page 97

Note

For background information on MAC address tables, refer to Chapter 7, “MAC Address Table,” in the AT-S63 Management

Software Menus Interface User’s Guide.

Section I: Basic Features 89

Chapter 7: MAC Address Table

Adding Static Unicast and Multicast MAC Addresses

This section contains the procedure for assigning a static unicast or multicast address to a port on the switch. You can assign up to 255 static MAC addresses per port.

To add a static address to the MAC address table, perform the following procedure:

1. From the Home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. From the Configuration menu, select the Layer 2 option.

The Layer 2 page opens with the MAC Address tab selected by default, as shown in Figure 23.

Figure 23. MAC Address Tab (Configuration)

90 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

3. To add a static unicast address, in the View/Add Unicast MAC Addresses section, click Add. To add a static multicast address, in the View/Add Multicast MAC Addresses section, click Add.

The Add MAC Address page is shown in Figure 24.

Figure 24. Add MAC Address Page

4. Adjust the following parameters as necessary.

MAC Address

The new static unicast or multicast MAC address.

Port Number

The number of the port on the switch where you want to assign the static address. If you are adding a static unicast address, you can enter only one port.

If you are entering a static multicast address, you must specify the port when the multicast application is located as well as the ports where the host nodes are connected. Assigning the address only to the port where the multicast application is located results in the failure of the multicast packets to be properly forwarded to the host nodes. You can specify the ports individually (e.g., 1,4,5), as a range (e.g., 11-14) or both (e.g., 15-17,22,24).

VLAN ID

The VLAN ID where the port is a member.

5. Click Apply.

6. Repeat this procedure to add other static addresses to the switch.

7. To permanently save the change, return to the General tab on the System page and click Save Changes.

For more information about what the Save Changes button does, refer to ”Saving Your Parameter Changes” on page 36.

Section I: Basic Features 91

Chapter 7: MAC Address Table

Deleting Unicast and Multicast MAC Addresses

To delete a static or dynamic unicast or multicast MAC address from the switch, perform the following procedure:

1. From the Home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. From the Configuration menu, select the Layer 2 option.

The Layer 2 page opens with the MAC Address tab selected by default, as shown in Figure 23 on page 90.

3. Display the MAC addresses on the switch by selecting one of the options.

For detailed instructions, refer to ”Displaying the MAC Address Tables” on page 94.

4. Click the button next to the MAC address that you want to delete from the switch.

5. Click Remove.

Note

You cannot delete a switch’s MAC address, an STP BPDU MAC address, or a broadcast address.

6. To permanently save the change, return to the General tab on the System page and click Save Changes.

For more information about what the Save Changes button does, refer to ”Saving Your Parameter Changes” on page 36.

92 Section I: Basic Features

Deleting All Dynamic MAC Addresses

To delete all the dynamic MAC addresses, unicast or multicast, perform the following procedure:

1. From the Home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. From the Configuration menu, select the Layer 2 option.

The Layer 2 page opens with the MAC Address tab selected by default, as shown in Figure 23 on page 90.

3. In the Delete All Dynamic MAC Addresses section, click Delete.

AT-S63 Management Software Web Browser Interface User’s Guide

Section I: Basic Features 93

Chapter 7: MAC Address Table

Displaying the MAC Address Tables

To view the MAC address table, perform the following procedure:

1. From the Home page, select Monitoring.

The System page is displayed with the General tab selected by default, as shown in Figure 6 on page 44.

2. From the Monitoring menu, select the Layer 2 option.

The Layer 2 page is displayed with the MAC Address tab displayed by default, as shown in Figure 25.

Figure 25. MAC Address Tab (Monitoring)

The tab contains two sections. The upper section displays unicast addresses; the lower part displays multicast addresses. The options function the same in both sections, and are described below. You can select only one option at a time.

View All

Displays all dynamic addresses learned on the ports of the switch and all static addresses that have been assigned to the ports.

94 Section I: Basic Features

AT-S63 Management Software Web Browser Interface User’s Guide

View Static

Displays just the static addresses assigned to the ports on the switch.

View Dynamic

Displays only the dynamic addresses learned on the ports on the switch.

View MAC Addresses on Port

Displays the dynamic and static MAC addresses of a particular port. You can specify more than one port at a time.

View MAC Addresses for VLAN

Displays the static and dynamic addresses learned on the tagged and untagged ports of a specific VLAN. You specify the VLAN by entering the VLAN ID number. You can specify only one VLAN at a time.

View MAC Address

Displays the port number on which a MAC address was assigned or learned.

In some situations, you might want to know on which port a particular MAC address was learned. You could display the MAC address table and scroll through the list looking for the MAC address. But if the switch is part of a large network, finding the address could prove difficult.

The View MAC Address option allows you to specify the MAC address and let the AT-S63 management software automatically locate the port on the switch where the device is connected.

3. After you select an option, click View.

Section I: Basic Features 95

Chapter 7: MAC Address Table

Figure 26 shows an example of viewing all unicast MAC addresses.

Figure 26. View MAC Addresses Page

The View MAC Addresses page displays a table that contains the following columns of information:

VLAN ID

The ID number of the VLAN where the port is a member.

MAC Address

The static or dynamic unicast MAC address.

Port(s)

The port on which the address was learned or assigned. The MAC address with port “CPU” is the address of the switch.

Type

The type of the address: static or dynamic.

96 Section I: Basic Features

Changing the Aging Time

The switch uses the aging time to delete inactive dynamic MAC addresses from the MAC address table. When the switch detects that no packets have been sent to or received from a particular MAC address in the table after the period specified by the aging time, the switch deletes the address. This prevents the table from becoming full of addresses of nodes that are no longer active.

The default setting for the aging time is 300 seconds (5 minutes).

To adjust the aging time, perform the following procedure:

1. From the Home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. In the Configuration section, for the MAC Address Aging Time item, enter a new value in seconds. The range is 8 to 512 seconds. The default is 300 seconds (5 minutes).

AT-S63 Management Software Web Browser Interface User’s Guide

3. Click Apply.

4. To permanently save the change, click Save Changes.

Section I: Basic Features 97

Chapter 7: MAC Address Table

98 Section I: Basic Features

Chapter 8 Port Trunking

This chapter contains the procedure for creating, modifying, or deleting a port trunk. The sections in this chapter are:

❑ ”Creating a Port Trunk” on page 100

❑ ”Modifying a Port Trunk” on page 103

❑ ”Deleting a Port Trunk” on page 105

❑ ”Displaying the Port Trunks” on page 106

Note

For background information on port trunking, refer to Chapter 8, “Port Trunking,” in the AT-S63 Management Software Menus Interface User’s Guide.

Section I: Basic Features 99

Chapter 8: Port Trunking

Creating a Port Trunk

Caution

Do not connect the cables of a port trunk to the ports on the switch until after you have configured the ports on both the switch and the end node. Connecting the cables prior to configuring the ports can create loops in your network topology. Loops can result in broadcast storms, which can adversely effect the operation of your network.

If you are deleting a port trunk, disconnect the cables from the ports before you delete the trunk. Deleting the trunk without first disconnecting the data cables can create a loop in your network topology, which can result in broadcast storms.

To create a port trunk, perform the following procedure:

1. From the home page, select Configuration.

The System page is displayed with the General tab selected by default, as shown in Figure 5 on page 40.

2. From the Configuration menu, select the Layer 1 option.

The Layer 1 page opens with the Port Settings tab displayed by default, as shown in Figure 18 on page 74.

3. Select the Port Trunking tab.

The Port Trunking tab is shown in Figure 27.

Figure 27. Port Trunking Tab (Configuration)

Any existing trunks are shown in a table.

4. Click Add.

100 Section I: Basic Features

Allied Telesis AT-S63 User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual

Contents

Section I

Section II

Section III

Section IV

Figures

Tables

Preface

How This Guide is Organized

Document Conventions

Where to Find Web-based Guides

Contacting Allied Telesyn

Online Support You can request technical support online by accessing the Allied Telesyn

Management Software Updates

Chapter 1

Overview

Management Overview

Local Management Session

Telnet Management Session

Web Browser Management Session

SNMP Management Session

Management Access Levels

Basic Features

Chapter 2

Starting a Web Browser Management Session

Starting a Web Browser Management Session

Web Browser Tools

Saving Your Parameter Changes

Quitting a Web Browser Management Session

Chapter 3

Basic Switch Parameters

Configuring an IP Address and Switch Name

Activating the BOOTP and DHCP Client Software

Displaying System Information

Configuring the Manager and Operator Passwords

Rebooting a Switch

Pinging a Remote System

Returning the AT-S63 Management Software to the Factory Default Values

Chapter 4

SNMPv1 and SNMPv2c

Enabling or Disabling SNMP Management

Creating a New SNMPv1 and SNMPv2c Community

Modifying an SNMPv1 and SNMPv2c Community

Deleting an SNMPv1 and SNMPv2c Community

Displaying the SNMPv1 and SNMPv2c Communities

Chapter 5

Enhanced Stacking

Setting a Switch’s Enhanced Stacking Status

Selecting a Switch in an Enhanced Stack

Returning to the Master Switch

Displaying the Enhanced Stacking Status

Chapter 6

Port Parameters

Configuring Port Parameters

Displaying Port Status

Displaying Port Statistics

Resetting a Port to the Default Settings

Chapter 7

MAC Address Table

Adding Static Unicast and Multicast MAC Addresses

Deleting Unicast and Multicast MAC Addresses

Deleting All Dynamic MAC Addresses

Displaying the MAC Address Tables

Changing the Aging Time

Chapter 8

Port Trunking

Creating a Port Trunk