Black Box Hardened Managed Ethernet Switch
Hardened Managed
Ethernet Switch
LEH8814,
LEH813 Series,
LEH812 Series,
LEH808 Series
CUSTOMER
SUPPORT
INFORMATION
User’s Manual 1
Order toll-free in the U.S. 24 hours, 7 A.M. Monday to midnight Friday: 877-877-BBOX
FREE technical support, 24 hours a day, 7 days a week: Call 724-746-5500 or Fax
724-746-0746
Mail order: Black Box Corporation, 1000 Park Drive, Lawrence, PA 15055-1018
Web site: www.blackbox.com • E-mail: info@blackbox.com
Black Box Hardened Managed Ethernet h Switc
Quick Start Guide
This quick start guide describes how to install and use the
Hardened Managed Ethernet Switch. This is th
choice for harsh environments constrained by spa
Physical Description
The Port Status LEDs and Power Inputs
e switch of
ce.
LED State Indication
10/100Base-TX, 100Base-FX
Link/ACT
10/100
10/100/1000Base-TX, 1000Base-SX/LX
Link/ACT
1000
SFP Link
2 User’s Manual
Steady A valid network connection established.
Flashing
Steady Communication speed is 100Mbps.
Off Communication speed is 10Mbps.
Steady A valid network connection established.
Flashing
Steady Communication speed is 1000Mbps.
Off Communication speed is 10/100Mbps.
Steady A valid network connection established.
Off No valid network connection established.
Transmitting or receiving data.
ACT stands for ACTIVITY.
Transmitting or receiving data.
ACT stands for ACTIVITY.
Black Box Hardened Managed Ethernet Switch
Power Input Assignment
Power3 12VDC DC Jack
+
12-32VDC
-
Power Ground
+
12-32VDC
Earth Ground
Terminal Block
s: There are two pairs of
o power up this switch. Redundant
.
Power1
Power2
DC Terminal Block Power Input
power inputs can be used t
power supplies function is supported
Functional Description
z Meets NEMA TS1/TS2 Environmental requirements such as
temperature, shock, and vibration for traffic control equipment.
z Meets EN61000-6-2 EMC Generic Standard Immunity for industrial
environment.
z Manageable via SNMP, Web-based, Telnet, and RS-232 console port.
z Support 802.3/802.3u/802.3ab/802.3z/802.3x. Auto-negotiation:
10/100/1000Mbps, full/half-duplex; Auto MDI/MDIX.
z 100Base-FX: Multi mode SC or ST type; Single mode SC or ST type;
WDM Single mode SC type.
z 1000Base-SX/LX: Multi mode or Single mode SC type; WDM Single
mode SC type.
z Support 8192 MAC addresses. Provides 2M bits memory buffer.
z Operating voltage and Max. current consumption: 1.25A @ 12VDC,
0.625A @ 24VDC. Power consumption: 15W Max.
z Power Supply: Redundant DC Terminal Block power inputs or 12VDC
DC JACK with 100-240VAC external power supply.
z -40 to 75 (-40℉ to 167℉) operating temperature range.
Tested for functional operation @ -40 to 85 (-40℉ to 185℉).
z Supports Din-Rail, Panel, or Rack Mounting installation.
User’s Manual 3
Black Box Hardened Managed Ethernet Switch
Console Configuration
z Connect to the switch console:
Connect the DB9 null-modem or cross over cable to the RS-232 serial
port of the device and the RS-232 serial port of the terminal or computer
running the terminal emulation application. Direct access to the
administration console is achieved by directly connecting a terminal or a
PC equipped with a terminal-emulation program (such as HyperTerminal)
to the switch console port.
z Configuration settings of the terminal-emulation program:
Baud rate: 115,200bps
Data bits: 8
Parity: none
Stop bit: 1
Flow control: none.
z Press the “Enter” key. The Command Line Interface (CLI) screen should
appear as below:
z Logon to Exec Mode (View Mode):
At the “switch_a login:” prompt just type in “root” and press <Enter> to
logon to Exec Mode (or View Mode). And the “switch_a>” prompt will
show on the screen.
4 User’s Manual
Black Box Hardened Managed Ethernet Switch
z Logon to Privileged Exec Mode (Enable Mode):
At the “switch_a>” prompt just type to
logon to Privileged Exec Mode (or Enable Mode)
prompt will show on the screen.
z Logon to Configure Mode
At the “switch_a#” prompt just type in “
<Enter> to logon to Configure Mode (or C
the “switch_a(config)#” prompt will show on the screen.
(Configure Terminal Mode):
in “enable” and press <Enter>
. And the “switch_a#”
configure terminal” and press
onfigure Terminal Mode). And
Web Configuration
z Login the switch:
Specify the default IP address (192.168.1.10) of the switch in the web
browser. A login window will be shown as below:
User’s Manual 5
Black Box Hardened Managed Ethernet Switch
z Enter the factory default login ID: root.
Enter the factory default password (no password).
Then click on the “Login” button to log on to the switch.
6 User’s Manual
Black Box Hardened Managed Ethernet Switch
Preface
This manual describes how to install and use the Blakc Box
Hardened Managed Ethernet Switch. This switch introduced
here is designed to deliver full scalability with SNMP/RMON
web-based management functions by providing:
To get the most out of this manual, you should have an
understanding of Ethernet networking concepts.
In this manual, you will find:
Features on the Hardened Managed Ethernet Switch
z Illustrative LED functions
z Installation instructions
z Management Configuration
z SNMP, DHCP, IGMP…
z Specifications
User’s Manual 7
Black Box Hardened Managed Ethernet Switch
Table of Contents
QUICK START GUIDE ..................
PHYSICAL DESCRIPTION ..................................
The Port Status LEDs and Power Inputs ........................
FUNCTIONAL DESCRIPTION.....................
C
ONSOLE CONFIGURATION ....................
W
EB CONFIGURATION .................................
PREFACE ....................................
T
ABLE OF CONTENTS.................
PRODUCT OVERVIEW .................
BLACK BOX HARDENED MANAGED ETHER
ACKAGE CONTENTS .............................
P
RODUCT HIGHLIGHTS ............................................................................................
P
Basic Features......................................................................................................................... 11
Management Support..............................................................................................................11
FRONT PANEL DISPLAY ...........................................................................................
P
HYSICAL PORTS....................................................................................................
WITCH MANAGEMENT............................................................................................
S
Web-based browser interface.................................................................................................. 15
Administration console via RS-232 serial port (CLI).................................................................15
External SNMP-based network management application........................................................ 15
...................................2
........................................................
...........................................................2
.................................................................
.................................................................
............................................................
....................................7
....................................8
... .. 0 .............. ...............1
NET SWITCH.............................................
.................................................................
INSTALLATION ..............................................................16
SELECTING A SITE FOR THE SWITCH........................................................................
C
ONNECTING TO POWER .........................................................................................
12VDC DC Jack.......................................................................................................................16
DC Terminal Block power input................................................................................................ 16
CONNECTING TO YOUR NETWORK ...........................................................................
Cable Type & Length...............................................................................................................17
Cabling.....................................................................................................................................19
SWITCH MANAGEMENT ................................................20
MANAGEMENT ACCESS OVERVIEW ..........................................................................
A
DMINISTRATION CONSOLE (CLI) ............................................................................
Direct Access...........................................................................................................................21
Modem Access ........................................................................................................................22
WEB MANAGEMENT ................................................................................................
SNMP-B
P
M
ASED NETWORK MANAGEMENT .................................................................
ROTOCOLS ...........................................................................................................
ANAGEMENT ARCHITECTURE ................................................................................
WEB-BASED BROWSER MANAGEMENT......................24
8 User’s Manual
Black Box Hardened Managed Ethernet Switch
SNMP & RMON MANAGEMENT
OVERVIEW..................................................
SNMP
AGENT AND MIB-2 (RFC 1213) .......
MIB (RFC 1757) AND BRIDGE MIB (
RMON
RMON Groups Supported.........................................
Bridge Groups Supported.........................................
WEB-BASED BROWSER MANAG
LOGGING ON TO THE SWITCH ..................
U
NDERSTANDING THE BROWSER INTERFACE ...................
S
YSTEM.................................................
ORT .....................................................................................................................
P
S
WITCHING ............................................
T
RUNKING .............................................
/ RING.............................................................................................................
STP
.................................25
............................................................
............................................................
RFC
1493) ..........................................
...............................................................26
...............................................................27
EMENT......................28
.................................................................
.................................................................
.................................................................
.................................................................
........................................
VLAN.....................................................................................................................
Q
OS.......................................................................................................................
SNMP....................................................................................................................
802.1
X ...................................................................................................................
O
THER PROTOCOLS................................................................................................
COMMAND LINE CONSOLE MANAGEMENT ..................79
ADMINISTRATION CONSOLE .....................................................................................
Exec Mode (View Mode)..........................................................................................................80
Privileged Exec Mode (Enable Mode)......................................................................................84
Configure Mode (Configure Terminal Mode)............................................................................88
SYSTEM..................................................................................................................
P
ORT .....................................................................................................................
S
WITCHING .............................................................................................................
RUNKING ..............................................................................................................
T
STP
/ RING.............................................................................................................
VLAN.....................................................................................................................
Q
OS.......................................................................................................................
SNMP....................................................................................................................
802.1
X ...................................................................................................................
THER PROTOCOLS................................................................................................
O
SPECIFICATIONS.........................................................152
APPENDIX A...............................................................154
APPENDIX B...............................................................155
User’s Manual 9
Black Box Hardened Managed Ethernet Switch
Product Overview
Black Box Hardened Managed Ethernet Switch
Front View
Package Contents
When you unpack the product package, you shall find the
items listed below. Please inspect the contents, and report
any apparent damage or missing items immediately to your
authorized reseller.
•
The Black Box Hardened Managed Ethernet Switch
User’s Manual
•
RS232 cable
•
Panel-mount brackets with screws
•
10 User’s Manual
Black Box Hardened Managed Ethernet Switch
Product Highlights
Basic Features
z Complies with NEMA TS1
control equipment
z Complies with EN61000-6-2 EMC immunity for
Industrial environment
z Supports 8192 MAC addresses
z Provides 2M bits memory
z Auto-negotiation for speed and duplexity on all TX ports
z Auto-MDIX on all TX ports
z Full wire-speed forwarding rate
z Store-and-forward mechanism
z Half-duplex back-pressure and IEE
control
z Redundant power inputs: 12VDC (DC Jack) and 12 to 32VDC (Terminal
Block)
z -40 to 75 (-40 to 167) operating temperature range
Tested for functional operation @ -40 to 85 (-40 to 185)
z Front panel reset button
z Front panel port status LEDs
z Hardened aluminum case
z Supports DIN-Rail, Panel, or Rack Mounting installation
& TS2 Environmental requirements for Traffic
Generic standard
buffer
E802.3x full-duplex compliant flow
Management Support
VLAN
z Port-based VLAN
z IEEE802.1Q tagged VLAN
TRUNKING
z MAC-based Trunking with automatic link fail-over
PORT-SECURITY
z Per-port programmable MAC address locking
z Up to 24 Static Secure MAC addresses per port
z IEEE802.1x Port-based Network Access Control
PORT-MIRRORING
z Port-mirroring
QOS (IEEE802.1p Quality of Service)
z 4 priority queues
User’s Manual 11
Black Box Hardened Managed Ethernet Switch
INTERNETWORKING PROTOCOLS
z Bridging:
z IP Multicast:
z Rate Control
z NTP
NETWORK MANAGEMENT METHODS
z Console port access via RS-232 cable (CLI, Command Line Interface)
z Telnet remote access
z SNMP agent:
z Web browser
z TFTP software-upgrade capability
IEEE802.1w Rapid Spanning Tree
IEEE802.1D Spanning Tree compatible
IEEE802.1Q – GVRP
Ring
IGMP Snooping
MIB-2 (RFC1213)
Bridge MIB (RFC1493)
RMON MIB (RFC1757) – statistics, history, alarm and events
VLAN MIB (IEEE802.1Q/RFC2674)
Private MIB
12 User’s Manual
Black Box Hardened Managed Ethernet Switch
Front Panel Display
cPOWER This LED comes on when the switch is properly connected to power and turned on.
dPort Status LEDs The LEDs are located at the left side of the front panel, displaying status for each respective port. Please refer to the following table for more details.
LED State Indication
10/100TX
On A valid network connection established
Link/ACT
10/100
10/100/1000TX, 1000SX/LX
Link/ACT
1000
SFP Link
User’s Manual 13
Flashing
On Communication speed is 100Mbps
Off Communication speed is 10Mbps
On A valid network connection established
Flashing
On Communication speed is 1000Mbps
Off Communication speed is 10/100Mbps
On A valid network connection established
Off No valid network connection established
Transmitting or receiving data
ACT stands for ACTIVITY
Transmitting or receiving data
ACT stands for ACTIVITY
Black Box Hardened Managed Ethernet Switch
Physical Ports
The Black Box Hardened
14-port 10/100Base-TX Hardened
13-port 10/100Base-TX + 1-port 1
Hardened Managed Ethernet Sw
12-port 10/100Base-TX + 2-port 100Base-FX
Hardened Managed Ethernet Switch
8-port 10/100Base-TX + 2-port 100Base-FX
Hardened Managed Ethernet Switch
12-port 10/100Base-TX + 2-port SFP/RJ-45 combo Gigabit
Hardened Managed Ethernet Switch
12-port 10/100Base-TX + 1-port Gigabit
Hardened Managed Ethernet Switch
12-port 10/100Base-TX + 2-port Gigabit
Hardened Managed Ethernet Switch
8-port 10/100Base-TX + 1-port Gigabit
Hardened Managed Ethernet Switch
8-port 10/100Base-TX + 2-port Gigabit
Hardened Managed Ethernet Switch
Managed Ethernet Switch provides:
Managed Ethernet Switch
00Base-FX
itch
CONNECTIVITY
z
SC connectors on 1000SX/LX ports
z SC and ST connectors on 100FX ports
z RJ-45 connectors on TX ports
MODE SELECTION
10Base-T full-duplex mode
z
z 10Base-T half-duplex mode
z 100Base-TX/FX full-duplex mode
z 100Base-TX half-duplex mode
z 1000Base-T/SX/LX full-duplex mode
z Auto-negotiating mode
14 User’s Manual
Black Box Hardened Managed Ethernet Switch
Switch Management
Web-based browser interface
The switch also boasts a point-and-click browser-based interface that
lets user access full switch configuration and functionality from a
Netscape or Internet Explorer browser.
Administration console via RS-232 serial port (CLI)
The switch provides an onboard serial port, which allows the switch to be
configured via a directly connected terminal.
External SNMP-based network management
application
The switch can also be configured via SNMP.
User’s Manual 15
Black Box Hardened Managed Ethernet Switch
Installation
This chapter gives step-by-step in
structions about how to
install the switch:
Selecting a Site for the Sw ch
As with any electric device, yo
where it will not be subjected
humidity, or electromagnetic interferenc
site you select should meet the following r
-The ambient temperature should be betw
-The relative humidity should be less than 95 percent, non-condensing.
-Surrounding electrical devices should not exceed the electromagnetic field
(RFC) standards.
-Make sure that the switch receives adequate ventilation. Do not block the
ventilation holes on each side of the switch.
it
u should place the switch
to extreme temperatures,
e. Specifically, the
equirements:
een -40°C to 75℃ (-40 to 167).
Connecting to Power
12VDC DC Jack
Step 1: Connect the supplied AC to DC power adapter to the receptacle on
Step 2: Connect the power cord to the AC to DC power adapter and attach
the back of the switch.
the plug into a standard AC outlet with the appropriate AC voltage.
DC Terminal Block power input
Step 1: Connect the supplied DC power cord to the terminal block on the
Step 2: Turn off the DC power supply if you want to shut down the switch.
16 User’s Manual
back of the switch, and then plug it into a standard DC outlet with a
voltage range from 12 to 32 VDC. Turn on the DC power supply.
Black Box Hardened Managed Ethernet Switch
Rear view
Connecting to Your Network
Cable Type & Length
It is necessary to follow the cable specifications below when connecting
the switch to your network. Use appropriate cables that meet your speed
and cabling requirements.
Cable Specifications
User’s Manual 17
Black Box Hardened Managed Ethernet Switch
Speed Connector
Port
Spee
Half/F
Duple
10Base-T RJ-45 10/20 Mbps 2-pair
100Base-TX RJ-45 100/200
1000Base-T RJ-45 2000 Mbps 4-pair
100Base-FX
(*Wavelength of
1300nm)
100Base-FX
(*Wavelength of
1300nm)
1000Base-SX
(*Wavelength of
850nm)
1000Base-LX
(*Wavelength of
1300nm)
ST, SC 200 Mbps 50 or
SC 200 Mbps 9 or
SC 2000 Mbps 50 or
SC 2000 Mbps 9 or
Mbps
Cable
d
ull
x
UTP/STP
Cat. 3, 4, 5
2-pair
UTP/STP
Cat. 5
UTP/STP
Cat. 5
62.5/125µm
multi-mode
fiber
10/125µm
single-mode
fiber
62.5/125µm
multi-mode
fiber
10/125µm
single-mode
fiber
Ma
x.
Distan
100 m
100 m
100 m
2 km
75 km
550 m
50 km
ce
18 User’s Manual
Black Box Hardened Managed Ethernet Switch
Cabling
Step 1: First, ensure the power of the switch and end devices are turned off.
<Note> Always ensure that the power is off before any installation.
Step 2: Prepare cable with corresponding connectors for each type of port
Step 3: Consult Cable Specifications Table on previous page for cabling
Step 4: Connect one end of the cable to the switch and the other end to a
Step 5: Once the connections between two end devices are made
in use.
requirements based on connectors and speed.
desired device.
successfully, turn on the power and the switch is operational.
User’s Manual 19
Black Box Hardened Managed Ethernet Switch
Switch Management
This chapter explains the meth
configure management access to
types of management applicatio and the communication
and management protocols that
management device (workstation
the system. It also contains inform
options.
This chapter covers the following topics:
ods that you can use to
the switch. It describes the
ns
deliver data between your
or personal computer) and
ation about port connection
• Management Access Overview
• Key Concepts
• Key Guidelines for Implementation
• Web Management Access
• Administration Console Access
• SNMP Access
• Standards, Protocols, and Related Reading
Management Access Overview
The switch gives you the flexibility to access and manage the
switch using any or all of the following methods.
The web browser interface and administration console (CLI)
support are embedded in the switch software and are
available for immediate use.
20 User’s Manual
Black Box Hardened Managed Ethernet Switch
Administration Console (C
The administration cons riented,
Command Line Interface g system
administration such as di ging option
ole is an internal, character-o
splaying statistics or chan
LI)
(CLI) for performin
settings.
Using this method, you can view
from a terminal, personal comp
workstation connected to the swit
the administration console
uter, Apple Macintosh, or
ch’s console port.
There are two ways to use this m
access or modem access. The
anagement method: direct
following sections describe
these methods.
Direct Access
Direct access to the administration console is achieved by directly
connecting a terminal or a PC equipped with a terminal-emulation
program (such as HyperTerminal) to the switch console port.
When using the management method, configure the terminal-emulation
program to use the following parameters (you can change these settings
after login):
[DEFAULT PARAMETERS]
♦ 115,200bps
♦ 8 data bits
♦ No parity
♦ 1 stop bit
This management method is often preferred because you can remain
connected and monitor the system during system reboots. Also, certain
error messages are sent to the serial port, regardless of the interface
through which the associated action was initiated. A Macintosh or PC
attachment can use any terminal-emulation program for connecting to
the terminal serial port. A workstation attachment under UNIX can use
an emulator such as TIP.
User’s Manual 21
Black Box Hardened Managed Ethernet Switch
Modem Access
You can access the switch’s adminis
Macintosh using an external modem a
switch management program provides Co
from the Basic Management screen that lets
for modem access.
When you have configured the external
console, the switch transmits character
on the modem port. The switch echoe
input on the modem port to the curren
The console appears to be directly conn
tration console from a PC or
ttached to the console port. The
nsole Port screen, accessible
you configure parameters
modem from the administration
s that you have entered as output
s characters that it receives as
t administration console session.
ected to the external modem.
Web Management
The switch provides a browse
configure and manage the switch re
After you set up your IP address for the switch, you can
access the switch’s web interface applications directly in your
web browser by entering the IP address of the switch. You
can then use your web browser to list and manage switch
configuration parameters from one central location, just as if
you were directly connected to the switch’s console port.
r interface that lets you
motely.
SNMP-Based Network Management
You can use an external SNMP-based application to
configure and manage the switch. This management method
requires the SNMP agent on the switch and the SNMP
Network Management Station to use the same community
string. This management method, in fact, uses two
community strings: the get community string and the set
community string. If the SNMP Network management station
only knows the set community string, it can read and write to
the MIBs. However, if it only knows the get community string,
it can only read MIBs. The default get and set community
strings for the switch are public.
22 User’s Manual
Protocols
Black Box Hardened Managed Ethernet Switch
The switch supports the following
protocols:
VIRTUAL TERMINAL PROTOCOLS, SUCH
A virtual terminal protocol is a software p
you to establish a management session f
workstation. Because Telnet runs over TC
address configured on the switch before y
virtual terminal protocol.
<Note> Terminal emulation is different from a virtual terminal protocol in that you
must connect a terminal directly to the console port.
SIMPLE NETWORK MANAGEMENT PROTOCOL (SNMP)
SNMP is the standard management protocol for multivendor IP networks.
SNMP supports transaction-based queries that allow the protocol to format
messages and to transmit information between reporting devices and
data-collection programs. SNMP runs on top of the User Datagram Protocol
(UDP), offering a connectionless-mode service.
AS TELNET
rogram, such as Telnet, that allows
rom a Macintosh, a PC, or a UNIX
P/IP, you must have at least one IP
ou can establish access to it with a
Management Architecture
All of the management application modules use the same
Messaging Application Programming Interface (MAPI). By
unifying management methods with a single MAPI,
configuration parameters set using one method (e.g. console
port) are immediately displayed the other management
methods (e.g. SNMP agent of web browser).
The management architecture of the switch adheres to the
IEEE open standard. This compliance assures customers that
the switch is compatible with, and will interoperate with other
solutions that adhere to the same open standard.
User’s Manual 23
Black Box Hardened Managed Ethernet Switch
Web-Based Browser Management
The switch provides a web-based browser interface for
configuring and managing the switch. This interface allows
you to access the switch using a preferred web browser.
This chapter describes how to configure the switch using its
web-based browser interface.
24 User’s Manual
Black Box H ra d ned Managed Ethernet Switch e
SNMP & RMON M
This chapter describes the
Management Protocol (SNMP)
anagement
switch’s Simple Network
and Remote Monitoring
(RMON) capabilities.
Overview
RMON is an abbreviation for the Remote Monitoring MIB
(Management Information Base).
by the Internet Engineering Task
1757, which defines how networks can be monitored
remotely.
RMONs typically consist of two components: an RMON probe
and a management workstation:
- The RMON probe is an intelligent device or software agent that continually
collects statistics about a LAN segment or VLAN. The RMON probe
transfers the collected data to a management workstation on request or
when a pre-defined threshold is reached.
- The management workstation collects the statistics that the RMON probe gathers. The workstation can reside on the same network as the probe, or it can have an in-band or out-of-band connection to the probe.
The switch provides RMON capabilities that allow network
administrators to set parameters and view statistical counters
defined in MIB-II, Bridge MIB, and RMON MIB. RMON
activities are performed at a Network Management Station
running an SNMP network management application with
graphical user interface.
RMON is a system defined
Force (IETF) document RFC
SNMP Agent and MIB-2 (RFC 1213)
The SNMP Agent running on the switch manager CPU is
responsible for:
User’s Manual 25
Black Box Hardened Managed Etherne witch t S
- Retrieving MIB counters from various lay
to the SNMP GET/GET NEXT frame me
- Setting MIB variables according to the SNMP SET frame message.
- Generating an SNMP TRAP frame mes
Station if the threshold of a certain MIB
conditions (such as the following) are m
WARM START
COLD START
LINK UP
LINK DOWN
AUTHENTICATION FAILURE
RISING ALARM
FALLING ALARM
TOPOLOGY ALARM
ers of software modules according
ssages.
sage to the Network Management
counter is reached or if other trap
et:
MIB-II defines a set of manageable objects in various layers
of the TCP/IP protocol suites. MIB-II covers all manageable
objects from layer 1 to layer 4, and, as a result, is the major
SNMP MIB supported by all vendors in the networking
industry. The switch supports a complete implementation of
SNMP Agent and MIB-II.
RMON MIB (RFC 1757) and Bridge MIB (RFC
1493)
The switch provides hardware-based RMON counters in the
switch chipset. The switch manager CPU polls these counters
periodically to collect the statistics in a format that complies
with the RMON MIB definition.
RMON Groups Supported
The switch supports the following RMON MIB groups defined in RFC 1757:
- RMON Statistics Group – maintains utilization and error statistics for the switch port being monitored.
26 User’s Manual
Black Box Hardened Managed Ethernet Switch
- RMON History Group – gathers and stores tical samples from
the previous Statistics Group.
- RMON Alarm Group – allow
thresholds for any MIB variable.
Threshold, High Threshold, or both. A trigger can trigger an alarm when the
value of a specific MIB variable exceeds a threshold, falls below a threshold,
or exceeds or falls below a threshold.
- RMON Event Group – allows a network administrator to define actions based on alarms. SNMP Traps are generated when RMON Alarms are triggered. The action taken in the Network Management Station depends on the specific network management application.
s a network administrator to define alarm
An alarm can be associated with Low
periodic statis
Bridge Groups Supported
The switch supports the following four groups of Bridge MIB (RFC 1493):
- The dot1dBase Group – a mandatory group that contains the objects applicable to all types of bridges.
- The dot1dStp Group – contains objects that denote the bridge’s state with
respect to the Spanning Tree Protocol. If a node does not implement the
Spanning Tree Protocol, this group will not be implemented. This group is
applicable to any transparent only, source route, or SRT bridge that
implements the Spanning Tree Protocol.
- The dot1dTp Group – contains objects that describe the entity’s transparent bridging status. This group is applicable to transparent operation only and SRT bridges.
- The dot1dStatic Group – contains objects that describe the entity’s destination-address filtering status. This group is applicable to any type of bridge which performs destination-address filtering.
User’s Manual 27
Black Box Hardened Managed Ethernet Switch
Web-Based Browser Management
The switch provides a web-based browser interface for
configuring and managing the switch. This interface allows
you to access the switch using a preferred web browser.
This chapter describes how to configure the switch using its
web-based browser interface.
Logging on to the switch
SWITCH IP ADDRESS
In your web browser, specify the IP address of the switch. Default IP address
is 192.168.1.10.
LOGIN
Enter the factory default login ID: root.
28 User’s Manual
Black Box Hardened Managed Ethernet Switch
PASSWORD
Enter the factory default password (no password).
Or enter a user-defined password if you followed the instructions later and
changed the factory default password.
Then click on the “Login” button to log on to the switch.
User’s Manual 29
Black Box Hardened Managed Ethernet Switch
Understanding the Browser Interface
The web browser interface provid ups of point-and-click
buttons at the left field of the
es gro
screen for configuring and
managing the switch.
SYSTEM
System Information, System/Password, IP Address, Save Configuration, Firmware Upgrade, Reboot, Logout
PORT
Configuration, Port Status, Rate Control, RMON Statistics, Per Port Vlan Activities
SWITCHING
Bridging, Static MAC Entry, Port Mirroring
TRUNKING
Port Trunking
STP
Global Configuration, RSTP Port Setting, Ring Setting
30 User’s Manual
Black Box Hardened Managed Ethernet Switch
VLAN
VLAN Mode Setting, 802.1Q VLAN Port Setting, 802.1Q Port Setting, Port Based VLAN
QOS
Global Configuration, 802.1p priority, DSCP
SNMP
SNMP General Setting, SNMP v1/v2c, SNMP v3
802.1X
Radius Configuration, Port-Based Authentication
OTHER PROTOCOLS
GVRP, IGMP Snooping, NTP
User’s Manual 31
Black Box Hardened Managed Ethernet Switch
System
System Information
View System information, VLAN ID, IP Address, and IP Subnet Mask of the
Switch.
32 User’s Manual
Black Box Hardened Managed Ethernet Switch
System Name/Password
1. System Name: Click in “System Name” text box. Type a system name if
it is blank, or replace the current system name with a new one.
2. Updating setting: Click “Updating setting” button to update your settings.
3. Password: Click in “Password” text box. Type a password.
4. Retype Password: Click in “Retype Password” text box. Type the same
password in “Password” text box again to verify it.
5. Updating setting: Click “Updating setting” button to update your settings.
User’s Manual 33
Black Box Hardened Managed Ethernet Switch
IP Address
1. IP Address: Click in “IP Address” text box and type a new address to
change the IP Address.
2. IP Subnet Mask: Click in “IP Subnet Mask” text box and type a new
address to change the IP Subnet Mask.
3. Submit: Click “Submit” button when you finished these selections.
4. You need to enter the new IP address on the browser and reconnect to
the switch after IP or subnet mask are changed.
5. Default Gateway: Click “Default Gateway” drop-down menu to choose
“Disable” or “Enable” from the “Default Gateway” drop-down list to
disable or enable Default Gateway Setting for the switch.
Click the text box and type a new address to change the Default
Gateway. (Need to choose “Enable” from the “Default Gateway”
drop-down menu.)
6. Submit: Click “Submit” button when you finished Default Gateway.
7. DNS Server: Click “DNS Server” drop-down menu to choose “Disable”
or “Enable” from the “DNS Server” drop-down list to disable or enable
DNS Server Setting for the switch.
Click the text box and type a new address to change the DNS Server.
(Need to choose “Enable” from the “DNS Server” drop-down menu.)
8. Submit: Click “Submit” button when you finished DNS Server.
34 User’s Manual
Black Box Hardened Managed Ethernet Switch
Save Configuration
1. Load config from TFTP server:
Click in “TFTP Server” text box and type the TFTP server IP address
from where the file will be obtained.
Click in “FILE” text box and type the name of the file that will be
obtained.
Click “Load” button to load the file from the TFTP server.
2. Backup config to TFTP server:
Click in “TFTP Server” text box and type the TFTP server IP address to
where the file will be back upped.
Click in “FILE” text box and type the name of the file that will be back
upped.
Click “Backup” button to backup the file to the TFTP server.
3. Save Configuration: Click “Save Configuration” button to save your
configuration settings.
4. Restore Default: Click “Restore Default” button to restore the default
settings of the switch.
5. Auto save: Click “Auto save” drop-down menu to choose “Disable” or
“Enable” from the “Auto save” drop-down list to disable or enable Auto
save for the switch.
6. Auto save interval (5~65536 sec): Click in “Auto save interval” text box
and type a decimal number between 5 and 65536.
7. Submit: Click “Submit” button when you finished Auto save
configuration.
User’s Manual 35
Black Box Hardened Managed Ethernet Switch
Firmware Upgrade
1. Filename: Click in “Filename” text box and type the name of the file that
you intend to upgrade it to the switch.
2. TFTP server IP: Click in “TFTP server IP” text box and type the TFTP
server IP address from where the file will be obtained.
3. Upgrade: Click “upgrade” button to upgrade firmware to the switch.
Please follow the message on the screen during the firmware upgrade
process. Do not turn off the power or perform other functions during this
period of time. Reboot the switch after completing the upgrade process.
36 User’s Manual
Black Box Hard Ethernet Switch ened Managed
Please follow the message on the screen during the firmware upgrade
process. Do not turn off the power or perform other functions during this
period of time.
User’s Manual 37
Black Box Hardened Managed Ethernet Switch
38 User’s Manual
Black Box Hardened Managed Ethernet Switch
Firmware has been upgraded successfully to the switch. Reboot the switch
after completing the upgrade process.
User’s Manual 39
Black Box Hardened Managed Etherne witch t S
Reboot
Reboot: Click “Reboot” button to restart the switch.
40 User’s Manual
Black Box Hardened Managed Ethernet Switch
Logout
Logout: Click “Logout” button to logout of the switch.
User’s Manual 41
Black Box Hardened Managed Ethernet Switch
Port
Configuration
1. Admin Setting: Click “Admin Setting” drop-down menu to choose “Link
down” or “Link up” from the “Admin Setting” drop-down list to disable or
enable Admin Setting for the port.
2. Speed: Click “Speed” drop-down menu to change the line speed and
duplex settings from the “Speed” drop-down list for the port.
3. Flow control: Click “Flow control” drop-down menu to choose “Disable”
or “Enable” from the “Flow control” drop-down list to disable or enable
Flow control for the port.
4. Submit: Click “Submit” button when you finished configurations.
42 User’s Manual
Black Box Hardened Managed Ethernet Switch
Port Status
View the Link Status, Speed, Duplex, and Flow control status for all ports.
User’s Manual 43
Black Box Hardened Managed Ethernet Switch
Rate Control
1. Ingress: Click in “Ingress” text box and type a new Rate to change the
Ingress Rate Control for the port.
Rate Values: 64kbps, 128kbps, 192kbps, … , 1.792mbps; 2mbps,
3mbps, 4mbps, … , 100mbps; 104mbps, 112mbps, 120mbps, … ,
1000mbps.
2. Egress: Click in “Egress” text box and type a new Rate to change the
Egress Rate Control for the port.
Rate Values: 64kbps, 128kbps, 192kbps, … , 1.792mbps; 2mbps,
3mbps, 4mbps, … , 100mbps; 104mbps, 112mbps, 120mbps, … ,
1000mbps.
3. Update setting: Click “Update setting” button when you finished these
Rate Control settings.
44 User’s Manual
Black Box Hardened Managed Ethernet Switch
RMON Statistics
Click Port 1 ~ Port 14 to view corresponding RMON Statistics.
User’s Manual 45
Black Box Hardened Managed Ethernet Switch
Per Port Vlan Activities
Click Port 1 ~ Port 14 to view corresponding vlan activities.
46 User’s Manual
Switching
Black Box Hardened Managed Ethernet Switch
Bridging
1. Aging Time (seconds): Click the text box and type a decimal number as
Bridging Aging Time in seconds.
2. Update setting: Click “update setting” button when you finished Aging
Time settings.
3. Threshold level (0-100): Click in “Level” text box and type a decimal
number for the port. Need to choose “Broadcast” and/or
“DFL-Multicast“ from “Storm-control enabled type” for the port. DLF
(Destination Lookup Failure).
4. Storm-control enabled type: Choose “Broadcast” and/or “DLF-Multicast”
from “Storm-control enabled type” for the port.
5. Update Setting: Click “Update Setting” button when you finished
Threshold level and Storm-control enabled type settings.
User’s Manual 47
Black Box Hardened Managed Ethernet Switch
Static MAC Entry
Static-MAC-Entry Forward:
1. Add MAC address: Click in “Add MAC address” text box and type a
locked forwarding MAC address for the port.
2. VLAN ID: Click “VLAN ID” drop-down menu and choose a VLAN ID from
the “VLAN ID” drop-down list.
3. Delete MAC address: Click “Delete MAC address” drop-down menu and
choose a locked forwarding MAC address from the “Delete MAC
address” drop-down list to be deleted from the port.
4. Submit: Click “Submit” button when you finished Static-MAC-Entry
Forward settings.
Static-MAC-Entry Discard:
1. Add MAC address: Click in “Add MAC address” text box and type a
MAC address to be discarded for the port.
2. VLAN ID: VLAN ID: Click “VLAN ID” drop-down menu and choose a
VLAN ID from the “VLAN ID” drop-down list.
48 User’s Manual
Black Box Hardened Managed Ethernet Switch
3. Delete MAC address: Click “Delete MAC address” drop-down menu and
choose a MAC address from the “Delete MAC address” drop-down list
to be discarded from the port.
4. Submit: Click “Submit” button when you finished Static-MAC-Entry
Discard settings.
Port Mirroring
1. Mirror From: Choose Mirror From port from Port 1 ~ Port 14.
2. Mirror To: Click “Mirror To” drop-down menu to Choose Mirror To port
(Port 1 ~ Port 14) from “Mirror To” drop-down list.
3. Mirror Mode: Click “Mirror Mode” drop-down menu to Choose “Tx/Rx”,
“Tx”, or “Rx” from “Mirror Mode” drop-down list.
4. Submit: Click “Submit” button when you finished Port Mirroring settings.
User’s Manual 49
Black Box Hardened Managed Ethernet Switch
Trunking
Port Trunking
Static Channel Group:
1. Trunk 1: Click Port 1 ~ Port 12 to assign ports to Trunk 1. (Maximum 4
ports in Trunk 1.)
GE Trunking:
1. Trunk 3: Click “Static” or “Disable” for Trunk 3.
2. Submit: Click “Submit” button when you finished Port Trunking settings.
50 User’s Manual
STP / Ring
Black Box Hardened Managed Ethernet Switch
Global Configuration
1. Spanning Tree Protocol: Click “Spanning Tree Protocol” drop-down
menu to Choose “Enable” or “Disable” from “Spanning Tree Protocol”
drop-down list to enable or disable Spanning Tree Protocol.
2. Bridge Priority (0..61440): Click in “Bridge Priority” text box and type a
decimal number between 0 and 61440.
3. Hello Time (sec) (1..9): Click in “Hello Time” text box and type a decimal
number between 1 and 9.
4. Max Age (sec) (6..28): Click in “Max Age” text box and type a decimal
number between 6 and 28.
5. Forward Delay (sec) (4..30): Click in “Forward Delay” text box and type
a decimal number between 4 and 30.
6. STP Version: Click “STP Version” drop-down menu to choose “RSTP” or
“STP compatible” from “STP Version” drop-down list.
7. Update setting: Click “Update setting” button when you finished Global
User’s Manual 51
Black Box Hardened Managed Ethernet Switch
Configuration.
RSTP Port Setting
1. STP Version: Click “STP Version” drop-down menu to choose “RSTP”
from “STP Version” drop-down list.
2. Port: Click “Port” drop-down menu to Choose Port 1 ~ Port 14 from
“Port” drop-down list.
3. Priority(Granularity 16): Click in “Priority” text box and enter a value
between 0 and 240 to set the priority for the port. A higher priority will
designate the port to forward packets first. A lower number denotes a
higher priority. This entry must be divisible by 16. The default priority
setting is 128.
4. Admin. Path Cost: Click in “Admin. Path Cost” text box and enter a value
between 0 and 2000000 to set the Admin. Path Cost for the port. 0 (auto)
- Setting 0 for the Admin. Path Cost will automatically set the speed for
forwarding packets to the port for optimal efficiency. Default port cost:
100Mbps port = 200000. Gigabit port = 20000.
5. Point to Point Link: Click “Point to Point Link” drop-down menu to
Choose “Enable” or “Disable” from “Point to Point Link” drop-down list to
enable or disable Point to Point Link for the port.
6. Edge Port: Click “Edge Port” drop-down menu to Choose “Enable”,
“Disable”, or “Auto” from “Edge Port” drop-down list to set Enable,
Disable, or Auto Edge Port for the port.
7. Update setting: Click “Update setting” button when you finished RSTP
52 User’s Manual
Port Setting.
Black Box Hardened Managed Ethernet Switch
Ring Setting
Ring state
1. Click “Ring state” drop-down menu from “Ring state” drop-down list to
choose “Enable” or “Disable” to enable or disable Ring state.
2. Update setting: Click “Update setting” button when you finished Ring
state setting.
Set ring port
1. Ring port 1: Click “Ring port 1” drop-down menu to choose Ring port 1
from “Ring port 1” drop-down list.
2. Ring port 2: Click “Ring port 2” drop-down menu to choose Ring port 2
from “Ring port 2” drop-down list.
3. Update setting: Click “Update setting” button when you finished Set ring
port.
User’s Manual 53
Black Box Hardened Managed Etherne witch t S
VLAN
VLAN Mode Setting
1. VLAN Mode Setting: Click “VLAN Mode Setting” drop-down menu to
Choose “Tag-based VLAN” or “Port-based VLAN” from “VLAN Mode
Setting” drop-down list.
2. Update Setting: Click “Update Setting” button when you finished VLAN
Mode Setting.
54 User’s Manual
Black Box Hardened Managed Ethernet Switch
User’s Manual 55
Black Box Hardened Managed Etherne witch t S
802.1Q VLAN Setting
Add VLAN:
1. VLAN setting: Click “VLAN setting”. The “VLAN Setting” window
appears.
2. Add VLAN: Click “Add VLAN” button to create a new VLAN from “VLAN
Setting” window.
3. VLAN ID(2-4094): Click in the “VLAN ID” textbox and specify a new
VLAN ID number from 2 ~ 4094.
4. VLAN Name: Click in the “VLAN Name” textbox and type a name for this
newly created VLAN.
Add port to or delete port from VLAN:
1. VLAN Member: Choose the port to be added to or deleted from the
VLAN.
2. Tag or Untag: Click “Tag or Untag” drop-down menu to Choose “Tag” or
“Untag” from “Tag or Untag” drop-down list for a “Hybrid” port.
3. Submit: Click “Submit” button when you finished VLAN setting.
56 User’s Manual
Black Box Hardened Managed Ethernet Switch
Delete VLAN:
1. VLAN setting: Click “VLAN setting”. The “VLAN Setting” window
appears.
2. Delete VLAN: Click “Delete VLAN” button.
3. Select a VLAN ID: Click “Select a VLAN ID” drop-down menu from
“Select a VLAN ID” drop-down list to choose the VLAN to be deleted.
4. Submit: Click “Submit” button when you finished VLAN setting.
User’s Manual 57
Black Box Hardened Managed Ethernet Switch
802.1Q Port Setting
1. VLAN Port Setting: Click “VLAN Port Setting”. The “VLAN Port Setting”
window appears.
2. Mode: Click “Mode” drop-down menu to Choose “Access”, “Trunk”, or
“Hybrid” from “Mode” drop-down list for the port. The port will be Tag port
if you choose “Trunk” Mode for the port. And the port will be Tag or
Untag port if you choose “Hybrid” Mode for the port.
3. PVID: Click in the “PVID” textbox and specify a new PVID number for
the port.
4. Update Setting: Click “Update Setting” button when you finished VLAN
Port Setting.
58 User’s Manual
Black Box Hardened Managed Ethernet Switch
Port Based VLAN
1. VLAN: Choose the port to be added to or deleted from the VLAN.
User’s Manual 59
Black Box Hardened Managed Ethernet Switch
2. Select all: Click “select all” button to choose Port 1 ~ Port 14 all to be
added to the VLAN.
3. Delete all: Click “delete all” button to choose Port 1 ~ Port 14 all to be
deleted from the VLAN.
4. Submit: Click “Submit” button when you finished Port Based VLAN
setting.
60 User’s Manual
QoS
Black Box Hardened Managed Ethernet Switch
Global Configuration
1. QoS: Click “QoS” drop-down menu from “QoS” drop-down list to choose
“Enable” or “Disable” to enable or disable QoS.
2. Trust: Enable or disable the switch port to trust the CoS (Class of
Service) labels of all traffic received on that port. Enable or disable a
routed port to trust the DSCP (Differentiated Service Code Point) labels
of all traffic received on that port.
3. Policy: Choose “Strict Priority(Queue3) + WRR(Queue0-2)” or
“WRR(Queue0-3)”. A strict priority queue is always emptied first. The
queues that are used in the WRR (Weighted Round Robin) are emptied
in a round−robin fashion, and you can configure the weight for each
queue.
4. Weighted Round Robin: Click in the “Weight(1~55)” textbox and specify
a new number from 1 ~ 55 for Queue 0 ~ 3.
5. Submit: Click “Submit” button when you finished Global Configuration.
User’s Manual 61
Black Box Hardened Managed Ethernet Switch
802.1p Priority
1. Priority: Click “Priority” drop-down menu from “Priority” drop-down list to
choose 0 ~ 3 for VLAN Priority 0 ~ 7.
2. Submit: Click “Submit” button when you finished 802.1p priority.
62 User’s Manual
Black Box Hardened Managed Ethernet Switch
DSCP
1. Priority: Click “Priority” drop-down menu from “Priority” drop-down list to
choose 0 ~ 3 for DSCP Priority 0 ~ 63.
2. Submit: Click “Submit” button when you finished DSCP.
User’s Manual 63
Black Box Hardened Managed Ethernet Switch
SNMP
SNMP General Setting
1. SNMP Status: Click “SNMP Status” drop-down menu from “SNMP
Status” drop-down list to choose “Enable” or “Disable” to enable or
disable SNMP.
2. Description: Click in the “Description” textbox and specify a new
description for SNMP.
3. Location: Click in the “Location” textbox and specify a new location for
SNMP.
4. Contact: Click in the “Contact” textbox and specify a new contact for
64 User’s Manual
Black Box Hardened Managed Ethernet Switch
SNMP.
5. Trap Community Name: For each “Trap Community Name”, Click in the
“Trap Community Name” textbox and specify a trap community name.
6. Trap Host IP Address: For each “Trap Host IP Address”, Click in the
“Trap Host IP Address” textbox and specify a trap host IP address.
7. Cold Start Trap: Click “Cold Start Trap” drop-down menu from “Cold
Start Trap” drop-down list to choose “Enable” or “Disable” to enable or
disable cold start trap.
8. Warm Start Trap: Click “Warm Start Trap” drop-down menu from “Warm
Start Trap” drop-down list to choose “Enable” or “Disable” to enable or
disable warm start trap.
9. Link Down Trap: Click “Link Down Trap” drop-down menu from “Link
Down Trap” drop-down list to choose “Enable” or “Disable” to enable or
disable link down trap.
10. Link Up Trap: Click “Link Up Trap” drop-down menu from “Link Up Trap”
drop-down list to choose “Enable” or “Disable” to enable or disable link
up trap.
11. Authentication Failure Trap: Click “Authentication Failure Trap”
drop-down menu from “Authentication Failure Trap” drop-down list to
choose “Enable” or “Disable” to ena
trap.
12. Topology Change Trap: Click “Topology Change Trap” drop-down menu
from “Topology Change Trap” drop-down list to choose “Enable” or
“Disable” to enable or disable topology change trap.
13. Update Setting: Click “Update Setting” button when you finished SNMP
General Setting.
ble or disable authentication failure
User’s Manual 65
Black Box Hardened Managed Ethernet Switch
SNMP v1/v2c
1. Get Community Name: Click in the “Get Community Name” textbox and
specify a get community name.
2. Set Community Name: Click in the “Set Community Name” textbox and
specify a set community name.
3. Update Setting: Click “Update Setting” button when you finished SNMP
V1/V2c Setting.
66 User’s Manual
Black Box Hardened Managed Ethernet Switch
SNMP v3
Add User:
1. Add User: Click “Add User” button. The “SNMP V3 Setting” window
appears.
2. SNMP Version: Click “SNMP Version” drop-down menu from “SNMP
Version” drop-down list to choose “SNMPv3 No-Auth”, “SNMPv3
Auth-MD5”, “SNMPv3 Auth-SHA”, “SNMPv3 Priv Auth-MD5”, or
“SNMPv3 Priv Auth-SHA”.
y SNMPv3 No-Auth: Add a user using SNMP v3 without authentication.
y SNMPv3 Auth-MD5: Add a user using SNMP v3 with authentication.
Click in the “Auth. Password” textbox and specify an authentication
password.
y SNMPv3 Auth-SHA: Add a user using SNMP v3 with authentication.
Click in the “Auth. Password” textbox and specify an authentication
password.
y SNMPv3 Priv Auth-MD5: Add a user using SNMP v3 with
authentication and privacy. Click in the “Auth. Password” textbox and
specify an authentication password. Click in the “Privacy
PassPhrase” textbox and specify a privacy pass phrase.
y SNMPv3 Priv Auth-SHA: Add a user using SNMP v3 with
authentication and privacy. Click in the “Auth. Password” textbox and
specify an authentication password. Click in the “Privacy
PassPhrase” textbox and specify a privacy pass phrase.
3. User Name: Click in the “User Name” textbox and specify a user name
for user using SNMP v3.
4. Access Mode: Click “Access Mode” drop-down menu from “Access
Mode” drop-down list to choose “Read Only” or “Read/Write”.
y Read Only: Add a user using SNMP v3 with read-only access mode.
User’s Manual 67
Black Box Hardened Managed Ethernet Switch
y Read/Write: Add an
mode
5. Sumit: Click “Sumit” button
Delete User:
1. Delete User: Click “Delete User” button. The “Select User Name”
window appears.
2. Select User Name: Click “Select User Name” drop-down menu from
“Select User Name” drop-down list to choose the user to be deleted
from using SNMP v3.
3. Sumit: Click “Sumit” button when you finished user deletion.
user using SNMP v3 with read-write access
when you finished SNMP V3 Setting.
68 User’s Manual
802.1x
Black Box Hard et Switch ened Managed Ethern
Radius Configuration
1. Radius Status: Click “Radius Status” drop-down menu from “Radius
Status” drop-down list to choose “Enable” or “Disable” to globally enable
or disable authentication.
2. Update Setting: Click “Update Setting” button when you finished Radius
Status Setting.
User’s Manual 69
Black Box Hardened Managed Ethernet Switch
Add Radius:
1. Add Radius: Click “Add Radius” button. The “Radius Server Setting”
window appears.
2. Radius Server IP: Click in the “Radius Server IP” textbox and specify the
IP address of the remote radius server host.
3. Radius Server Port: Click in the “Radius Server Port” textbox and
specify the UDP destination port for authentication requests. The host is
not used for authentication if set to 0.
4. Secret Key: Click in the “Secret Key” textbox and specify the
authentication and encryption key for all radius communications
between the Switch and radius server. This key must match the
encryption used on the radius daemon. All leading spaces are ignored,
but spaces within and at the end of the key are used. If spaces are used
in the key, do not enclose the key in quotaion marks unless the
quotation marks themselves are part of the key.
5. Timeout <1-1000>: Click in the “Timeout” textbox and specify the time
interval (in seconds) that the Switch waits for the radius server to reply
before retransmitting. Enter a value in the range 1 to 1000.
6. Retransmit <1-100>: Click in the “Retransmit” textbox and specify the
number of times a radius request is resent to a server if that server is not
responding or responding slowly. Enter a value in the range 1 to 100.
7. Sumit: Click “Sumit” button when you finished Radius Server Setting.
70 User’s Manual
Black Box Hardened Managed Ethernet Switch
Delete Radius:
1. Delete Radius: Click “Delete Radius” button. The “Select Radius Server
IP” window appears.
2. Select Radius Server IP: Click “Select Radius Server IP” drop-down
menu from “Select Radius Server IP” drop-down list to choose the IP
address of the remote radius server host to be deleted.
3. Sumit: Click “Sumit” button when you finished radius server deletion.
User’s Manual 71
Black Box Hardened Managed Ethernet Switch
Port-Based Authentication
1. Interface: Click “Interface” drop-down menu from “Interface” drop-down
list to choose the port to be set port-based authentication.
2. Authentication State: Click “Authentication State” drop-down menu from
“Authentication State” drop-down list to choose “Enable” or “Disable” to
enable or disable authentication state.
3. Port Control: Click “Port Control” drop-down menu from “Port Control”
drop-down list to choose “Auto”, “Force Authorized”, or “Force
Unauthorized” to force a port state. “Auto” specifies to enable
authentication on port. “Force Authorized” specifies to force a port to
always be in an authorized state. “Force Unauthorized” specifies to
force a port to always be in an unauthorized state.
4. Periodic Reauthentication: Click “Periodic Reauthentication” drop-down
menu from “Periodic Reauthentication” drop-down list to choose
“Enable” or “Disable” to enable or disable periodic reauthentication.
5. Reauthentication Period <1-4294967295>: Click in the
“Reauthentication Period” textbox and specify the seconds between
reauthorization attempts. The default time is 3600 seconds.
72 User’s Manual
Black Box Hardened Managed Ethernet Switch
6. Update Setting: Click “Update Setting” button when you finished
port-based authentication setting.
User’s Manual 73
Black Box Hardened Managed Ethernet Switch
Other Protocols
GVRP
GVRP Global Setting:
1. GVRP: Click “GVRP” drop-down menu from “GVRP” drop-down list to
choose “Enable” or “Disable” to enable or disable GVRP (GARP VLAN
Registration Protocol).
2. Dynamic VLAN creation: Click “Dynamic VLAN creation” drop-down
menu from “Dynamic VLAN creation” drop-down list to choose “Enable”
or “Disable” to enable or disable Dynamic VLAN creation. GARP
(Generic Attribute Registration Protocol) provides IEEE802.1Q
compliant VLAN pruning and dynamic VLAN creation on IEEE802.1Q
trunk ports.
74 User’s Manual
Black Box Hardened Managed Ethernet Switch
3. Update Setting: Click “Update Setting” button when you finished GVRP
Global Setting.
Per port setting (include LAG):
1. GVRP: Click “GVRP” drop-down menu from “GVRP” drop-down list to
choose “Enable” or “Disable” to enable or disable GVRP for the port.
2. GVRP applicant: Click “GVRP applicant” drop-down menu from “GVRP
applicant” drop-down list to choose “Active” or “Normal” to the port.
Ports in the GVRP active applicant state send GVRP VLAN declarations
when they are in the STP (Spanning Tree Protocol) blocking state,
which prevents the STP bridge protocol data units (BPDUs) from being
pruned from the other port. Ports in the GVRP normal applicant state do
not declare GVRP VLANs when in the STP blocking state.
3. GVRP registration: Click “GVRP registration” drop-down menu from
“GVRP registration” drop-down list ” to
enable or disable GVRP registration to the nfiguring an
IEEE802.1Q trunk port in registratio
dynamic VLAN creation is enable
VLANs on the trunk port.
4. Update Setting: Click “Update
port setting.
to choose “Enable” or “Disable
port. Co
n mode allows dynamic creation (if
d), registration, and deregistration of
Setting” button when you finished Per
IGMP Snooping
1. IGMP mode: Click “IGMP mode” drop-down menu from “IGMP mode”
drop-down list to choose “Disable”, “Passive”, or “querier” for the switch.
Disable: Disable IGMP on the switch. Passive: The switch with only
multicast-data-forwarding capability. Querier: The switch acts as the
User’s Manual 75
Black Box Hardened Managed Ethernet Switch
querier for the network. There is onl
time.
2. Update Setting: Click “Update Se
mode settings.
3. VLAN ID: Click “VLAN ID” drop
list to choose the VLAN under con
4. IGMP version: Click “IGMP ve
version” drop-down list to choose
5. Fast-leave: Click “fast-leave”
drop-down list to choose “Enable”
function will allow members of group
immediately when an IGMP Leave Report Packet is received by the
Switch.
IGMP querier:
1. Query-interval: Click in the “query-interval” textbox and specify a new
number from 1 ~ 18000. The query-interval field is used to set the time
(in seconds) between transmitting IGMP queries. Entries between 1 and
18000 seconds are allowed. Default = 125.
2. Max-response-time: Click in the “max-response-time” textbox and
specify a new number from 1 ~ 124. This determines the maximum
amount of time in seconds allowed before sending an IGMP response
report. The max-response-time field allows an entry between 1 and 124
(seconds). Default = 10.
IGMP passive snooping:
1. Report suppression: Click “report suppression” drop-down menu from
“report suppression” drop-down list to choose “Enable” or “Disable” for
the switch. Use this command to enable report suppression for IGMP
version 1 and version 2. Report suppression does not apply to IGMP
version 3, and is turned off by default for IGMP versionn1 and IGMP
version 2 reports. The switch uses IGMP report suppression to forward
only one IGMP report per multicast router query to multicast devices.
When IGMP router suppression is enabled, the switch sends the first
IGMP report from all hosts for a group to all the multicast routers. The
switch does not send the remaining IGMP reports for the group to the
multicast routers. This feature prevents duplicate reports from being
sent to the multicast devices.
2. Update Setting: Click “Update Setting” button when you finished IGMP
Snooping.
y one querier on a network at any
tting” button when you finished IGMP
-down menu from “VLAN ID” drop-down
figuration for the switch.
rsion” drop-down menu from “IGMP
“1”, “2”, or “3” for the switch.
own menu from “fast-leave” drop-d
or “Disable” for the switch. Enable this
a multicast group to leave the
76 User’s Manual
Black Box Hardened Managed Ethernet Switch
NTP
NTP Setting:
1. NTP Status: Click “NTP Status” drop-down menu from “NTP Status”
drop-down list to choose “Enable” or “Disable” to enable or disable NTP
for the Switch.
2. NTP Server (IP Address or Domain name): Click in the “NTP Server”
textbox and specify the IP address or Domain name of NTP server.
3. Sync Time: Click “Sync Time” button to synchronize time with NTP
server.
4. Time Zone: Click “Tmie Zone” drop-down menu from “Tmie Zone”
drop-down list to set time zone.
5. Polling Interval (1-10080 min): Click in the “Polling Interval” textbox and
specify the polling interval.
6. Update Setting: Click “Update Setting” button when you finished NTP
Setting.
Daylight Saving Setting:
1. Daylight Saving Mode: Click “Daylight Saving Mode” drop-down menu
from “Daylight Saving Mode” drop-down list to choose “Disable”,
User’s Manual 77
Black Box Hardened Managed Ethernet Switch
“Weekday”, or “Date” to choose disable, weekday, or date daylight
saving for the Switch.
2. Time Set Offset (1-1440 min): Click in the “Time Set Offset” textbox and
specify the offset time of daylight saving.
3. Daylight Saving Tmiezone: Click in the “Daylight Saving Tmiezone”
textbox and specify the daylight saving timezone.
4. Weekday: Click in the textboxes and specify the daylight saving period.
5. Date: Click in the textboxes and specify the daylight saving period.
6. Update Setting: Click “Update Setting” button when you finished
Daylight Saving Setting.
78 User’s Manual
Black Box Hardened Managed Ethernet Switch
Command Line Conso anagement
The switch provides a comman r
configuration purposes. The swit configured either
le M
d line console interface fo
ch can be
locally through its RS-232 port or remotely via a Telnet
session. For the later, you must s IP address for the
pecify an
switch first.
This chapter describes how to configure the switch using its
console by Commend Line.
Administration Console
Connect the DB9 null-modem or cross over cable to the RS-232 serial port of
the device to the RS-232 serial port of the terminal or computer running the
terminal emulation application.
Direct access to the administration console is achieved by directly connecting
a terminal or a PC equipped with a terminal-emulation program (such as
HyperTerminal) to the switch console port.
When using the management method, configure the terminal-emulation
program to use the following parameters (you can change these settings after
login):
[Default parameters]
115,200bps
8 data bits
No parity
1 stop bit
User’s Manual 79
Black Box Hardened Managed Ethernet Switch
Exec Mode (View Mode)
Logon to Exec Mode (View Mode)
At the switch_a login: prompt just type in “root” and press <Enter> to logon
to Exec Mode (or View Mode).
switch_a login: root
80 User’s Manual
Black Box Hardened Managed Ethernet Switch
Basic commands
Exec Mode (or View Mode) is the base mode from where users can perform
basic commands like:
clear, debug, disable, enable, exit, help, logout, no, quit, show, terminal
The CLI contains a text-based help facilit
full or partial command string then typi
displays the command keywords or ort
description.
At the switch_a> prompt just press <?> to list the above basic commands.
switch_a>?
y. Access this help by typing in the
ng a question mark “?”. The CLI
parameters along with a sh
At the switch_a> prompt just type in the full or partial command string then
typing a question mark “?” to display the command keywords or parameters
along with a short description.
switch_a>show ?
User’s Manual 81
Black Box Hardened Managed Ethernet Switch
Login timed out
The login session to Exec Mode (or View Mode) has timed out due to an
extended period of inactivity (60 seconds) to indicate authentication attempt
timed out. And the switch_a login: prompt will show on the screen.
Logon back to Exec Mode (View Mode)
At the switch_a login: prompt just type in “root” and press <Enter> to logon
82 User’s Manual
Black Box Harden thernet Switch ed Managed E
back to Exec Mode (or View Mode).
switch_a login: root
Exit from Exec Mode (View Mode)
At the switch_a> prompt just type in “exit” and press <Enter> to exit from
Exec Mode (or View Mode).
switch_a>exit
User’s Manual 83
Black Box Hardened Managed Ethernet Switch
Privileged Exec Mode (Enab
Logon to Privileged Exec Mode (Enable
At the switch_a> prompt just type in “ena
Privileged Exec Mode (or Enable Mode). prompt will
show on the screen.
switch_a>enable
Commands
Privileged Exec Mode (or Enable Mode) allows users to run commands as
following.
At the switch_a# prompt just press <?> to list the commands.
switch_a#?
le Mode)
Mode)
ble” and press <Enter> to logon to
And the switch_a#
84 User’s Manual
Black Box Hardened Managed Ethernet Switch
At the switch_a# prompt just type in the full or partial command string then
typing a question mark “?” to display the command keywords or parameters
along with a short description.
switch_a#show ?
User’s Manual 85
Black Box Hardened Managed Ethernet Switch
Login timed out
The login session to Privileged Exec Mode (or Enable Mode) has timed out
due to an extended period of inactivity (60 seconds) to indicate authentication
attempt timed out. And the switch_a login: prompt will show on the screen.
Logon back to Exec Mode (View Mode)
At the switch_a login: prompt just type in “root” and press <Enter> to logon
86 User’s Manual
Black Box Harden thernet Switch ed Managed E
back to Exec Mode (or View Mode).
switch_a login: root
Exit from Privileged Exec Mode (or Enable Mode)
At the switch_a# prompt just type in “exit” and press <Enter> to exit from
Privileged Exec Mode (or Enable Mode).
switch_a#exit
User’s Manual 87
Black Box Hardened Managed Ethernet Switch
Configure Mode (Configure Terminal Mode)
Logon to Configure Mode (Configure T
At the switch_a# prompt just type in “con
to logon to Configure Mode (or Config ). And the
switch_a(config)# prompt will show on the screen.
switch_a#configure terminal
Commands
Configure Mode (or Configure Terminal Mode) serves as a gateway into the
modes as following.
At the switch_a(config)# prompt just press <?> to list the commands.
switch_a(config)#?
erminal Mode)
figure terminal” and press <Enter>
ure Terminal Mode
88 User’s Manual
Black Box Hardened Managed Ethernet Switch
At the switch_a(config)# prompt just type in the full or partial command
string then typing a question mark “?” to display the command keywords or
parameters along with a short description.
switch_a(config)#show ?
User’s Manual 89
Black Box Hardened Managed Ethernet Switch
Login timed out
The login session to Configure Mode (or Configure Terminal Mode) has timed
out due to an extended period of inactivity (60 seconds) to indicate
authentication attempt timed out. And the switch_a login: prompt will show
on the screen.
Logon back to Exec Mode (View Mode)
At the switch_a login: prompt just type in “root” and press <Enter> to logon
back to Exec Mode (or View Mode).
switch_a login: root
90 User’s Manual
Black Box Hardened Managed Ethernet Switch
Exit from Configure Mode (or Configure Terminal Mode)
At the switch_a(config)# prompt just type in “exit” and press <Enter> to exit
from Configure Mode (or Configure Terminal Mode).
switch_a(config)#exit
User’s Manual 91
Black Box Hardened Managed Ethernet Switch
System
System Information, System Name/
Configuration, Firmware Upgrade, Reboot, L
System Name/Password
System Name:
1. Command Mode: Configure mode
Logon to Configure Mode (Configure Terminal Mode).
The switch_a(config)# prompt w
switch_a(config)#
2. Usage:
Use hostname command to set o r name.
Use the no hostname command to disab
3. Command Syntax:
(no) hostname HOSTNAME
HOSTNAME specifies the network name of the system.
4. Example:
The following example sets the hostname to switch, and shows the change
in the prompt:
switch_a(config)#hostname switch
switch(config)#
Password:
1. Command Mode: Configure mode
Logon to Configure Mode (Configure Terminal Mode).
The switch_a(config)# prompt will show on the screen.
switch_a(config)#
2. Usage:
Use enable password command to modify or create a password to be used
when entering the Enable mode.
3. Command Syntax:
enable password PASSWORD
PASSWORD specifies the new password of the system.
4. Example:
The following example sets the new password mypasswd to switch:
switch_a(config)#enable password mypasswd
switch_a(config)#
92 User’s Manual
Password, IP Address, Save
ogout.
ill show on the screen.
r change the network serve
le this function.
Black Box H thernet Switch ardened Managed E
IP Address
IP Address/IP Subnet Mask:
1. Command Mode: Interface mode
Logon to Configure Mode (Configure Terminal Mode).
Then logon to Interface mode.
vlan1.1 means vlan 1.
The switch_a(config-if)# prompt will sho
switch_a(config)#interface vlan1.1
switch_a(config-if)#
2. Usage:
Use ip address command to set the IP ad
Use the no ip address command to remove the IP address from an
interface.
3. Command Syntax:
ip address IP-ADDRESS
ip address IP-ADDRESS
no ip address IP-ADDRESS
no ip address IP-ADDRESS
no ip address
no ip address
IP-ADDRESS A.B.C.D/M specifies the IP address and prefix length of an
IP-ADDRESS A.B.C.D/M specifies the IP address and prefix length of an
interface.
interface.
M specifies IP subnet mask, 8: 255.0.0.0, 16:255.255.0.0, 24:
M specifies IP subnet mask, 8: 255.0.0.0, 16:255.255.0.0, 24:
255.255.255.0.
255.255.255.0.
4. Example:
4. Example:
The following example sets the new IP address 192.168.1.10 and new IP
The following example sets the new IP address 192.168.1.10 and new IP
subnet mask 255.255.255.0 to switch:
subnet mask 255.255.255.0 to switch:
switch_a(config)#interface vlan1.1
switch_a(config)#interface vlan1.1
switch_a(config-if)#ip address 192.168.1.10/24
switch_a(config-if)#ip address 192.168.1.10/24
switch_a(config-if)#
switch_a(config-if)#
Default Gateway:
1. Command Mode: Configure mode
Logon to Configure Mode (Configure Terminal Mode).
The switch_a(config)# prompt will show on the screen.
switch_a(config)#
2. Usage:
Use ip default-gateway command to set the IP address of the default
gateway.
Use the no ip default-gateway command to remove the IP address of the
default gateway.
3. Command Syntax:
:
w on the screen.
dress of an interface.
User’s Manual 93
Black Box Hardened Managed Ethernet Switch
ip default-gateway IP-ADDRESS
no ip default-gateway
IP-ADDRESS A.B.C.D specifies the IP address of the default gateway.
4. Example:
The following example sets the default ga
switch_a(config)#ip default-gate
switch_a(config)#
DNS Server:
1. Command Mode: Configure mode
Logon to Configure Mode (Configure Terminal Mode).
The switch_a(config)# prompt will show on
switch_a(config)#
2. Usage:
Use ip dns command to set the IP address
Use the no ip dns command to remove the IP address of the DNS server.
3. Command Syntax:
3. Command Syntax:
ip dns IP-ADDRESS
ip dns IP-ADDRESS
no ip dns
no ip dns
IP-ADDRESS A.B.C.D specifies the IP address of the DNS server.
IP-ADDRESS A.B.C.D specifies the IP address of the DNS server.
4. Example:
4. Example:
The following example sets the DNS server 192.168.1.100 to switch:
The following example sets the DNS server 192.168.1.100 to switch:
switch_a(config)#ip dns 192.168.1.100
switch_a(config)#ip dns 192.168.1.100
switch_a(config)#
switch_a(config)#
Save Configuration
Load config from TFTP server:
1. Command Mode: Privileged Exec mode
Logon to Privileged Exec Mode (Enable Mode).
The switch_a# prompt will show on the screen.
switch_a#
2. Usage:
Use install image command to load configuration file from tftp server to
switch.
3. Command Syntax:
install image IP-ADDRESS WORD
IP-ADDRESS specifies the IP address of tftp server.
WORD specifies the file name to be loaded to switch.
94 User’s Manual
teway 192.168.1.254 to switch:
way 192.168.1.254
the screen.
of the DNS server.
Black Box Hardened Managed Ethernet Switch
4. Example:
The following example specifies loadi
from tftp server (IP address: 192.168.1.10
switch_a#install image 192.168.1.100 W
switch_a#
Load config to TFTP server:
1. Command Mode: Privileged Exec mo
Logon to Privileged Exec Mode (Enable Mode).
The switch_a# prompt will show
switch_a#
2. Usage:
Use write config-file command to backup
3. Command Syntax:
write config-file IP-ADDRESS
IP-ADDRESS specifies the IP address of tftp server.
4. Example:
The following example backups configuration file to tftp server (IP address:
192.168.1.100):
switch_a#write config-file 192.168.1.100
switch_a#
Save Configuration:
1. Command Mode: Privileged Exec mode
Logon to Privileged Exec Mode (Enable Mode).
The switch_a# prompt will show on the screen.
switch_a#
2. Usage:
Use copy running-config startup-config command to write configurations
to the file to be used at startup. This is the same as the write memory
command.
3. Command Syntax:
copy running-config startup-config
4. Example:
The following example specifies writing configurations to the file to be used at
startup to switch:
switch_a#copy running-config startup-config
switch_a#
User’s Manual 95
ng confi uration file (file name: WORD) g
0) to switch:
ORD
de
on the screen.
configuration file to tftp server.
Black Box Hardened Managed Ethernet Switch
Restore Default:
1. Command Mode: Privileged Exec mode
Logon to Privileged Exec Mode
The switch_a# prompt will show on the s
switch_a#
2. Usage:
Use restore default command to restore
3. Command Syntax:
restore default
4. Example:
The following example restores default setting of the switch:
switch_a#restore default
switch_a#
Auto Save:
1. Command Mode: Configure mode
Logon to Configure Mode (Configure Terminal Mode).
The switch_a(config)# prompt will show on the screen.
switch_a(config)#
2. Usage:
Use this command to enable auto save configuration function. The
configuration will be automatically saved at every configured interval while
this command is enabled. Use the no form of this command to disable this
feature.
3. Command Syntax:
service auto-config enable
no service auto-config enable
4. Example:
The following example enables or disables auto save configuration to switch:
switch_a(config)#service auto-config enable
switch_a(config)#no service auto-config enable
switch_a(config)#
Auto Save Interval (5~65536 sec):
1. Command Mode: Configure mode
Logon to Configure Mode (Configure Terminal Mode).
The switch_a(config)# prompt will show on the screen.
96 User’s Manual
(Enable Mode).
creen.
default setting of the switch.
Black Box Hardened Managed Ethernet Switch
switch_a(config)#
2. Usage:
Use this command to set the interval en the configuration would be
automatically saved. The range
default value is 30 seconds.
3. Command Syntax:
service auto-config interval WORD
WORD specifies the interval value.
4. Example:
The following example sets the interval W n the configuration
would be automatically saved to switch:
switch_a(config)#service auto-config interval 10
switch_a(config)#
Firmware Upgrade
1. Command Mode: Privileged Exec mode
Logon to Privileged Exec Mode (Enable Mode).
The switch_a# prompt will show on the screen.
switch_a#
2. Usage:
Use install image command to upgrade firmware from tftp server to switch.
3. Command Syntax:
install image IP-ADDRESS WORD
IP-ADDRESS specifies the IP address of tftp server.
WORD specifies the file name to be upgraded to switch.
4. Example:
The following example specifies upgrading firmware (file name: flash.tgz)
from tftp server (IP address: 192.168.1.100) to switch:
switch_a#install image 192.168.1.100 flash.tgz
switch_a#
Please follow the message on the screen during the firmware upgrade
process. Do not turn off the power or perform other functions during this
period of time.
of interval value is from 5 to 65535. And the
wh
ORD (10) whe
User’s Manual 97
Black Box Hardened Managed Ethernet Switch
At the “switch_a#” prompt just type in “reload” and press <Enter> to reboot
the switch after completing the upgrade process.
98 User’s Manual
Black Box H Ethernet Switch ardened Managed
Reboot
1. Command Mode: Privileg
Logon to Privileged Exec Mode (Enable M
The switch_a# prompt will show on the screen.
switch_a#
2. Usage:
Use reload command to restart switch.
3. Command Syntax:
reload
4. Example:
The following example specifies restarting switch:
switch_a#reload
switch_a login:
Logout
1. Command Mode: Exec mode or Privileged Exec mode
Logon to Exec Mode (View Mode) or Privileged Exec Mode (Enable Mode).
The switch_a> or switch_a# prompt will show on the screen.
switch_a>
switch_a#
2. Usage:
Use logout command to exit from the Exec mode or Privileged Exec mode.
3. Command Syntax:
logout
4. Example:
The following example specifies to exit from the Exec mode or Privileged
Exec mode.
switch_a>logout
switch_a login:
ed Exec mode
ode).
User’s Manual 99
Black Box Hardened Managed Ethernet Switch
Port
Configuration, Port Status, Rate Control, RMON Statistics, Per Port Vlan Activities.
Configuration
Admin Setting:
1. Command Mode: Interface mode
Logon to Configure Mode (Configure Termin
Then logon to Interface mode.
fe1 means port 1.
The switch_a(config-if)# prompt
switch_a(config)#interface fe1
switch_a(config-if)#
2. Usage:
Use the shutdown command to shut do
Use the no shutdown to disable this function.
3. Command Syntax:
(no) shutdown
4. Example:
The following example shows the use of the shutdown command to shut
down the interface fe1 (port 1):
switch_a(config)#interface fe1
switch_a(config-if)#shutdown
switch_a(config-if)#
Duplex:
1. Command Mode: Interface mode
Logon to Configure Mode (Configure Terminal Mode).
Then logon to Interface mode.
fe1 means port 1.
The switch_a(config-if)# prompt will show on the screen.
switch_a(config)#interface fe1
switch_a(config-if)#
2. Usage:
Use duplex command to specify the duplex mode to be used for each
interface.
Use the no duplex to disable this function.
3. Command Syntax:
100 User’s Manual
will show on the screen.
al Mode).
wn the selected interface.
Loading...