Reproduction in any manner whatsoever without the written permission of D-Link Computer Corporation is strictly forbidden.
Trademarks used in this text: D-Link and the D-Link logo are trademarks of D-Link Computer Corporation; Microsoft and Windows are registered trademarks of
Microsoft Corporation.
Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products. D-Link Computer
Corporation disclaims any proprietary interest in trademarks and trade names other than its own.
Notes, Notices, and Cautions ......................................................................................................................vi
Safety Instructions .................................................................................................................................... vii
General Precautions for Rack-Mountable Products ................................................................................ viii
Protecting Against Electrostatic Discharge ............................................................................................. viii
Fast Ethernet Technology...............................................................................................................................1
Performance Features ..................................................................................................................................... 1
Software Features ........................................................................................................................................... 2
CoS ............................................................................................................................................................. 2
IP Multicast................................................................................................................................................. 2
Port Configuration and Monitoring ............................................................................................................ 3
Port Trunking.............................................................................................................................................. 3
Access Control List support (ACL)............................................................................................................3
Unpacking and Setup......................................................................................................................................... 5
Power on......................................................................................................................................................... 6
Power Failure..............................................................................................................................................6
Front Panel...................................................................................................................................................... 7
Side Panels ...................................................................................................................................................... 7
LED Indicators................................................................................................................................................ 8
Connecting the Switch ........................................................................................................................................9
Switch to End Node........................................................................................................................................9
Switch to Hub or Switch................................................................................................................................. 9
IP Address Assignment.................................................................................................................................14
Connecting Devices to the Switch................................................................................................................ 15
Login to Web Manager ................................................................................................................................. 16
User Accounts Management ......................................................................................................................... 16
Admin and User Privileges.......................................................................................................................17
Save Changes................................................................................................................................................17
Areas of the User Interface ........................................................................................................................... 18
Web Pages .................................................................................................................................................... 19
IP Address..................................................................................................................................................... 20
Switch Information ....................................................................................................................................... 22
Port Description............................................................................................................................................ 23
Port Configuration........................................................................................................................................24
Port Mirroring...............................................................................................................................................26
STP Port Settings......................................................................................................................................31
Port VLAN ID(PVID) .............................................................................................................................. 38
Port Bandwidth............................................................................................................................................. 41
Current Time Settings ............................................................................................................................... 43
Time Zone and DST.................................................................................................................................43
Port Security.............................................................................................................................................44
QOS (Quality of Service) ............................................................................................................................. 46
802.1p User Priority.................................................................................................................................. 48
Link Aggregation...................................................................................................................................... 50
LACP Port ................................................................................................................................................ 53
Port Capability Settings ............................................................................................................................ 75
Initialize Ports for Po rt Based 802.1x....................................................................................................... 76
Initializing Ports for MAC Based 802.1x ................................................................................................. 77
Reauthenticate Ports for Port Based 802.1x ............................................................................................. 78
Reauthenticate Ports for MAC -based 802.1x........................................................................................... 78
RADIUS Server ........................................................................................................................................ 79
Security IP .................................................................................................................................................... 80
User Accounts............................................................................................................................................... 80
SNMP User Table ..................................................................................................................................... 81
Layer 3 IP Networking ...................................................................................................................................... 88
IP Interface Settings...................................................................................................................................... 88
Layer 3 Global Settings ................................................................................................................................ 90
OSPF General Settings ........................................................................................................................... 109
OSPF Area Setting.................................................................................................................................. 110
DNS Relay.................................................................................................................................................. 117
DNS Relay Information.......................................................................................................................... 118
DNS Relay Static Settings ...................................................................................................................... 118
IP Multicast Routing Protocol....................................................................................................................119
CPU Utilization..........................................................................................................................................125
Port Utilization............................................................................................................................................ 126
Received (RX) ........................................................................................................................................ 127
Received (RX) ........................................................................................................................................ 131
MAC Address ............................................................................................................................................. 136
IGMP Snooping Group ............................................................................................................................... 138
VLAN Status .............................................................................................................................................. 139
Power Status ............................................................................................................................................... 140
Port Access Control....................................................................................................................................140
Authenticator State ................................................................................................................................. 140
Layer 3 Features ......................................................................................................................................... 141
IP Address............................................................................................................................................... 141
IP Multicast Forwarding Table...................................................................................................................142
IGMP Group Table ..................................................................................................................................... 142
Save Changes..............................................................................................................................................149
Warranty and Registration............................................................................................................................. 160
v
D-Link DES-3350SR Standalone Layer 3 Switch
Preface
The DES-3350SR Manual is divided into sections that describe the system installation and operating instructions with examples.
Section 1, Introduction - Describes the Switch and its features.
Section 2, Unpacking and Setup- Helps you get started with the basic installation of the Switch and also describes the front panel,
rear panel, side panels, and LED indicators of the Swi tch.
Section 3, Identifying External Components - Tells how you can connect the Switch to your Ethernet network.
Section 4, Connecting The Switch - This chapter describes how to connect the DES-3350SR to your Ethernet/Fast
Ethernet/Gigabit Ethernet network.
Section 5, Introduction to Switch Management- This chapter discusses many of the concepts and features used to manage the
switch, as well as the concepts necessary for the user to understand the functioning of the switch.
Section 6, Web-Based Switch Management - Introduces basic Switch management features, including password protection,
SNMP Settings, IP Address assignment and connecting devices to the Switch.
Section 7, Configuration - A detailed discussion about configuring some of the basic functions of the Switch, including accessing
the Switch information, using the Switch's utilities and setting up network configurations, such as Quality of Service, Access
Profile Table, Port Mirroring and configuring the Spanning Tree.
Section 8, Management – A detailed discussion regarding the Simple Network Management Protocol including description of
features and a brief introduction to SNMP.
Section 9 Layer 3 IP Management - A detailed discussion of Layer3 features including IP Interface Settings, Layer 3 Global
Settings, MD5 Key Table Settings, Route Redistribution Settings, Static/Default Route Settings, Static ARP Settings, RIP, OSPF,
DHCP/Bootp Relay, DNS Relay, and IP Multicast Routing Protocol
Section 10, Monitoring - Features graphs and screens used in monitoring features and packets on the Switch.
Section 11, Maintenance - Features information on Switch utility functions, including TFTP Services, Switch History, Ping Test,
Save Changes and Rebooting Services.
Appendix A, Technical Specifications - The technical specifications of the Switch.
Appendix B, Understanding and Troubleshooting Spanning Tree Protocol - A detailed description of Spanning tree Protocol.
Intended Readers
The DES-3350SR User’s Guide contains information for setup and management of the DES-3350SR switch. This guide is intended
for network managers familiar with network management concepts and terminology.
Notes, Notices, and Cautions
NOTE: A NOTE indicates important information that helps you make
better use of your device.
NOTICE: A NOTICE indicates either potential damage to hardware or loss
of data and tells you how to avoid the problem.
CAUTION: A CAUTION indicates a potential for property damage,
personal injury, or death.
vi
D-Link DES-3350SR Standalone Layer 3 Switch
Safety Instructions
Use the following safety guidelines to ensure your own personal safety and to help protect your system from potential damage.
Throughout this safety section, the caution icon is used to indicate cautions and precautions that you need to review and follow.
Safety Cautions
To reduce the risk of bodily injury, electrical shock, fire, and damage to the equipment, observe the following precautions.
Observe and follow service markings. Do not service any product except as explained in your system documentation. Opening or
removing covers that are marked with the triangular symbol with a lightning bolt may expose you to electrical shock. Only a
trained service technician should service components inside these compartments.
If any of the following conditions occur, unplug the product from the electrical outlet and replace the part or contact your trained
service provider:
• The power cable, extension cable, or plug is damaged.
• An object has fallen into the product.
• The product has been exposed to water.
• The product has been dropped or damaged.
• The product does not operate correctly when you follow the operating instructions.
• Keep your system away from radiators and heat sources. Also, do not block cooling vents.
• Do not spill food or liquids on your system components, and never operate the product in a wet environment. If the system
gets wet, see the appropriate section in your troubleshooting guide or contact your trained service provider.
• Do not push any objects into the openings of your system. Doing so can cause fire or electric shock by shorting out
interior components.
• Use the product only with approved equipment.
• Allow the product to cool before removing covers or touching internal components.
• Operate the product only from the type of external power source indicated on the electrical ratings label. If you are not
sure of the type of power source required, consult your service provider or local power company.
• To help avoid damaging your system, be sure the voltage selection switch (if provided) on the power supp ly is set to
match the power available at your location:
• 115 volts (V)/60 hertz (Hz) in most of North and South America and some Far Eastern countries such as South Korea and
Taiwan
• 100 V/50 Hz in eastern Japan and 100 V/60 Hz in western Japan
• 230 V/50 Hz in most of Europe, the Middle East, and the Far East
• Also be sure that attached devices are electrically rated to operate with the power available in your location.
• Use only approved power cable(s). If you have not been provided with a power cable for your system or for any AC-
powered option intended for your system, purchase a power cable that is approved for use in your country. The power
cable must be rated for the product and for the voltage and current marked on the product's electrical ratings label. The
voltage and current rating of the cable should be greater than the ratings marked on the product.
• To help prevent electric shock, plug the system and peripheral power cables into properly grounded electrical outlets.
These cables are equipped with thre e-prong plugs to help ensure proper grounding. Do not use adapter plugs or remove
the grounding prong from a cable. If you must use an extension cable, use a 3-wire cable with properly grounded plugs.
• Observe extension cable and power strip ratings. Make sure that the total ampere rating of all products plugged into the
extension cable or power strip does not exceed 80 percent of the ampere ratings limit for the extension cable or power
strip.
• To help protect your system from sudden, transient increases and decreases in electrical power, use a surge suppressor,
line conditioner, or uninterruptible power supply (UPS).
• Position system cables and power cables carefully; route cables so that they cannot be stepped on or tripped over. Be sure
that nothing rests on any cables.
• Do not modify power cables or plugs. Consult a licensed electrician or your power company for site modifications.
Always follow your local/national wiring rules.
• When connecting or disconnecting power to hot-pluggable power supplies, if offered with your system, observe the
following guidelines:
• Install the power supply before connecting the power cable to the power supply.
• Unplug the power cable before removing the power supply.
vii
D-Link DES-3350SR Standalone Layer 3 Switch
• If the system has multiple sources of power, disconnect power from the system by
• Unplug all power cables from the power supplies.
• Move products with care; ensure that all casters and/or stabilizers are firmly connected to the system. Avoid sudden stops
and uneven surfaces.
General Precautions for Rack-Mountable Products
Observe the following precautions for rack stability and safety. Also refer to the rack installation documentation accompanying the
system and the rack for specific caution statements and procedures.
Systems are considered to be components in a rack. Thus, "component" refers to any system as well as to various peripherals or
supporting hardware.
CAUTION: Installing systems in a rack without the front and side
stabilizers installed could cause the rack to tip over, potentially resulting in
bodily injury under certain circumstances. Therefore, always install the
stabilizers before installing components in the rack.
After installing system/components in a rack, never pull more than one
component out of the rack on its slide assemblies at one time. The wei ght
of more than one extended component could cause the rack to tip over
• Before working on the rack, make sure that the stabilizers are secured to the rack, extended to the floor, and that the full
weight of the rack rests on the floor. Install front and side stabilizers on a single rack or front stabilizers for joined
multiple racks before working on the rack. Always load the rack from the bottom up, and load the heaviest item in the
rack first.
and may result in serious injury.
• Make sure that the rack is level and stable before extending a component from the rack.
• Use caution when pressing the component rail release latches and sliding a component into or out of a rack; the slide rails
can pinch your fingers.
• After a component is inserted into the rack, carefully extend the rail into a locking position, and then slide the component
into the rack.
• Do not overload the AC supply branch circuit that provides power to the rack. The total rack load should not exceed 80
percent of the branch circuit rating.
• Ensure that proper airflow is provided to components in the rack.
• Do not step on or stand on any component when servicing other components in a rack.
NOTE: A qualified electrician must perform all connections to DC power
and to safety grounds. All electrical wiring must comply with applicable
local or national codes and practices.
CAUTION: Never defeat the ground conductor or operate the equipment
in the absence of a suitably installed ground conductor. Contact the
appropriate electrical inspection authority or an electrician if you are
uncertain that suitable grounding is available.
CAUTION: The system chassis must be positively grounded to the rack
cabinet frame. Do not attempt to connect power to the system until
grounding cables are connected. Completed power and safety ground
wiring must be inspected by a qualified electrical inspector. An energy
hazard will exist if the safety ground cable is omitted or disconnected.
Protecting Against Electrostatic Discharge
Static electricity can harm delicate components inside your system. To prevent static damage, discharge static electricity from your
body before you touch any of the electronic components, such as the microprocessor. You can do so by periodically touching an
unpainted metal surface on the chassis.
You can also take the following steps to prevent damage from electrostatic discharge (ESD):
viii
D-Link DES-3350SR Standalone Layer 3 Switch
1. When unpacking a static-sensitive component from its shipping carton, do not remove the component from the
antistatic packing material until you are ready to install the component in your system. Just before unwrapping
the antistatic packaging, be sure to discharge static electricity from your body.
2. When transporting a sensitive component, first place it in an antistatic container or packaging.
3. Handle all sensitive components in a static-safe area. If possible, use antistatic floor pads and workbench pads
and an antistatic grounding strap.
ix
D-Link DES-3350SR Standalone Layer 3 Switch
Section 1
Introduction
Fast Ethernet Technology
Gigabit Ethernet Technology
Switch Stacking
Performance Features
Ports
This section describes the functionality features of the DES-3350SR.
Fast Ethernet Technology
100Mbps Fast Ethernet (or 100BASE-T) is a standard specified by the IEEE 802.3 LAN committee. It is an extension of the
10Mbps Ethernet standard with the ability to transmit and receive data at 100Mbps, while maintaining the Carrier Sense Multiple
Access with Collision Detection (CSMA/CD) Ethernet protocol.
Gigabit Ethernet Technology
Gigabit Ethernet is an extension of IEEE 802.3 Ethernet utilizing the same packet structure, format, and support for full duplex and
management objects, but with a tenfold increase in theoretical throughput over 100Mbps Fast Ethernet and a one hundred-fold
increase over 10Mbps Ethernet. Since it is compatible with all 10Mbps and 100Mbps Ethernet environments, Gigabit Ethernet
provides a straightforward upgrade without wasting a company’s existing investment in hardware, software, and trained personnel.
Switching Technology
Another key development pushing the limits of Ethernet technology is in the field of switching technology. A switch bridges
Ethernet packets at the MAC address level of the Ethernet protocol transmitting among connected Ethernet or Fast Ethernet LA N
segments.
Switching is a cost -effective way of increasing the total network capacity available to users on a local area network. A switch
increases capacity and decreases network loading by making it possible for a local area network to be divided into different
segments, which are not competing with each other for network transmission capacity, and therefore decreasing the load on each
segment.
The Switch acts as a high-speed selective bridge between the individual segments. Traffic that needs to go from one segment to
another (from one port to another) is automatically forwarded by the Switch, without interfering with any other segments (ports).
This allows the total network capacity to be multiplied, while still maintaining the same network cabling and adapter cards.
For Fast Ethernet or Gigabit Ethernet networks, a switch is an effective way of eliminating problems of chaining hubs beyond the
"two-repeater limit." A switch can be used to split parts of the network into different collision domains, for example, making it
possible to expand your Fast Ethernet network beyond the 205 -meter network diameter limit for 100BASE-TX networks. Switches
supporting both traditional 10Mbps Ethernet and 100Mbps Fast Ethernet are also ideal for bridging between existi ng 10Mbps
networks and new 100Mbps networks.
Switching LAN technology is a marked improvement over the previous generation of network bridges, which were characterized
by higher latencies. Routers have also been used to segment local area networks, but the cost of a router and the setup and
maintenance required make routers relatively impractical. Today's switches are an ideal solution to most kinds of local area
network congestion problems.
Performance Features
Switch performance features include:
• 64 Byte system packet forwarding rate (up to 10.1 million packets per second)
• Full-wire speed (full -duplex) operation on all ports including Gigabit ports.
• 4 Priority Queues per port
• MAC Address Table supports 8K MAC addresses
• IP Address Table supports 2K IP entries
• Packet Buffer Memory supports 64 M bytes buffer memory per device
1
D-Link DES-3350SR Standalone Layer 3 Switch
Software Features
Switch software features include:
CoS
• Classification based on 802.1P Priority
• Number of priority queues supported
• Based on TOS field on IP header
• DSCP
• Classification based on IP Destination and Source Addresses (Based on Layer 3 information)
• Classification based on TCP/UDP port number
• Classification based on MAC SA/DA
Spanning Tree
• 802.1D Spanning tree compatible
• 802.1w Rapid Spanning Tree support
VLAN
• 802.1Q support
• GARP/GVRP
• Number of VLANs supported per device
IP Multicast
• IGMP Snooping
• IGMP v2
• DVMRP
• PIM Dense mode support
Configuration
• Telnet Server
• TFTP Client
• BootP Client
• DHCP Client
• DHCP/BootP Relay
• DNS Relay support
Management
• Password enabled
• Web-based support
• SNMP v1 support
• SNMP v2c support
• SNMP v3 support
• TFTP upgrade
• Command Line Interface
• SNTP support
• Traffic Segmentation
• Bandwidth control
• Broadcast storm control
2
D-Link DES-3350SR Standalone Layer 3 Switch
• Support Port Security function
• Support Cisco-like Port Security function
• Web GUI Traffic Monitoring
• Web MAC address browsing
• SNMP Trap on MAC Notification
• Delete individual IP address by dynamic learning (ARP table editing)
• Port Description
• CPU Utilization Monitoring
• Add ‘Show Config’ command
• Enlarge static ARP entries to 255
MIB Support
• RFC1213 MIB II
• RFC1493 Bridge
• RFC1757 RMON
• RFC 1643 Ether-like MIB
• Private MIB
• IGMP MIB
• 802.1p RFC2674
• RFC 2233 – Evolution of the Interfaces Group of MIB II (Receive Address Group is not supported)
• RIP MIB
• OSPF RFC1850
• CIDR MIB RFC2096
RMON
• 4 Groups of RMON (Statistic s, History, Alarms, Events)
Port Configuration and Monitoring
• Auto-Negotiation Support
• Port Mirroring
Port Trunking
• Static mode trunking
• 802.3ad LACP
Routing Protocol
• RIP I/II
• OSPF support
• Floating static route
Security
• Supports 802.1X Port-based Access Control
• Supports 802.1X MAC-based Access Control
• Radius Client for 802.1x support
Access Control List support (ACL)
• Based on MAC address
• Based on VLAN
3
D-Link DES-3350SR Standalone Layer 3 Switch
• Based on IP address
• Based on TCP/UDP port number
• Based on 802.1p priority
• Based on DSCP
4
D-Link DES-3350SR Standalone Layer 3 Switch
Section 2
Unpacking and Setup
Unpacking
Installation
Power On
This chapter provides unpacking and setup information for the Switch.
Unpacking
Open the shipping carton of the Switch and carefully unpack its contents. The carton should contain the following items:
• One DES-3350SR Stackable layer 3 Switch
• Mounting kit: 2 mounting brackets and screws
• Four rubber feet with adhesive backing
• One AC power cord
• This User’s Guide with Registration Card
If any item is found missing or damaged, please contact your local D -Link reseller for replacement.
Installation
Use the following guidelines when choosing a place to install the Switch:
• The surface must support at least 5 kg
• The power outlet should be within 1.82 meters (6 feet) of the device
• Visually inspect the power cord and see that it is secured to the AC power connector
• Make sure that there is proper heat dissipation from and adequate ventilation around the switch.
• Do not place heavy objects on the switch
Desktop or Shelf Installation
When installing the Switch on a desktop or shelf, the rubber feet included with the device should first be attached. Attach these
cushioning feet on the bottom at each corner of the device. Allow adequate space for ventilation between the device and the objects
around it.
Figure 2 - 1. Installing rubber feet for desktop installation
Rack Installation
The DES-3350SR can be mounted in an EIA standard-sized, 19-inch rack, which can be placed in a wiring closet with other
equipment. To install, attach the mounting brackets on the switch’s side panels (one on each side) and secure them with the screws
provided.
5
D-Link DES-3350SR Standalone Layer 3 Switch
Figure 2 - 2. Attaching the mounting brackets to the switch
Then, use the screws provided with the equipment rack to mount the switch on the rack.
Figure 2 - 3. Installing the switch on an equipment rack
Power on
The DES-3350SR switch can be used with AC power supply 100 - 240 VAC, 50 - 60 Hz. The power switch is located at the rear of
the unit adjacent to the AC power connector and the system fan. The switch’s power supply will adjust to the local power source
automatically and may be turned on without having any or all LAN segment cables connected.
After the power switch is turned on, the LED indicators should respond as follows:
• All LED indicators will momentarily blink. This blinking of the LED indicators represents a reset of the system
• The power LED indicator is always on after the power is turned ON
• The console LED indicator will blink while the Switch loads onboard software and performs a self-test. It will remain ON
if there is a connection at the RS-232 port, otherwise this LED indicator is OFF
Power Failure
As a precaution in the event of a power failure, unplug the switch. When the power supply is restored, plug the switch back in.
6
D-Link DES-3350SR Standalone Layer 3 Switch
Section 3
Identifying External Components
Front Panel
Rear Panel
Side Panels
Gigabit Combo Ports
LED Indicators
This chapter describes the front panel, rear panel, side panels, and optional plug-in module, and LED indicators of the DES3350SR.
Front Panel
The front panel of the Switch consists of LED indicators, an RS -232 communication port, 48 (10/100 Mbps) Ethernet/Fast Ethernet
ports , and a pair of Gigabit Ethernet Combo ports for 1000BASE-T (plug-in module provided) and Mini GBIC connections
(optional plug-in module).
Figure 3 - 1. Front panel view of the Switch
Comprehensive LED indicators display the status of the switch and the network (see the LED Indicators section below).
• An RS-232 DCE console port for setting up and managing the switch via a connection to a console terminal or PC using a
terminal emulation program.
• Forty-eight high-performance NWay Ethernet ports, all of which operate at 10/100 Mbps for connections to end stations,
servers and hubs. All ports can auto-negotiate between 10Mbps or 100Mbps and full or half duplex.
• Two Gigabit Ethernet Combo ports for making 1000BASE-T and Mini GBIC connections.
Rear Panel
The rear panel of the switch consists of two fans and an AC power connector.
Figure 3 - 2. Rear panel view of the Switch
The system fans are used to dissipate heat. The sides of the system also provide heat vents to serve the same purpose. Do not block
these openings, and leave at least 6 inches of space at the rear and sides of the switch for proper ventilation. Be reminded that
without proper heat dissipation and air circulation, system components might overheat, which could lead to system failure. The AC
power connector is a standard three-pronged connector that supports the power cord. Plug-in the female connector of the provided
power cord into this socket, and the male side of the cord into a power outlet. Supported input voltages range from 100 ~ 240 VAC
at 50 ~ 60 Hz.
Side Panels
Each side panel contains heat vents to help to dissipate heat.
Figure 3 - 3. Side panel views of the Switch
The system fans are used to dissipate heat. The sides of the system also provide heat vents to serve the same purpose. Do not block
these openings, and leave at least 6 inches of space at the rear and sides of the switch for proper ventilation. Be reminded that
without proper heat dissipation and air circulation, system components might overheat, which could lead to system failure.
7
D-Link DES-3350SR Standalone Layer 3 Switch
Gigabit Combo Ports
In addition to the 48 10/100 Mbps ports, the Switch features two Gigabit Ethernet Combo ports. These two ports are 1000BASE-T
copper ports (provided) and Mini -GBIC ports (optional). See the diagram below to view the two Mini-GBIC port modules being
plugged into the Switch. Please note that although these two front panel modules can be used simultaneously, the ports must be
different. The GBIC port will always have the highest priority.
Figure 3 - 4. Mini-GBIC modules plug-in to the Switch
LED Indicators
The LED indicators of the Switch include Power, Console, and Link/Act. The following shows the LED indicators for the Switch
along with an explanation of each indicator.
Figure 3 - 5. The LED Indicators
Power – This indicator on the front panel should be lit during the Power-On Self Test (POST). It will light green
approximately 2 seconds after the switch is powered on to indicate the ready state of the device.
Console – This indicator is lit green when the switch is being managed via local console management through the RS-232
console port.
Link/Act – These indicators are located to the left and right of each port. They are lit when there is a secure connection (or
link) to a device at any of the ports. The LEDs blink whenever there is reception or transmission (i.e. Activity--Act) of data
occurring at a port.
8
D-Link DES-3350SR Standalone Layer 3 Switch
Section 4
Connecting the Switch
Switch to End Node
Switch to Hub or Switch
10BASE-T Device
100BASE-TX Device
This chapter describes how to connect the DES-3350SR to your Ethernet/Fast Ethernet/Gigabit Ethernet network. The Switch’s
auto-detection feature allows all 48 10/100 ports to support both MDI-II and MDI-X connections.
Switch to End Node
End nodes include PCs outfitted with a 10, 100, or 10/100 Mbps RJ-45 Ethernet/Fast Ethernet Network Interface Card (NIC) and
most routers.
An end node can be connected to the Switch via a two-pair Category 3, 4, or 5 UTP/STP cable. The end node should be connected
to any of the ports (1x - 48x) on the switch.
Figure 4 - 1. Switch connected to an End Node
The Link/Act LEDs in the top row for each UTP port light green when the link is valid. A blinking LED in the top row indicates
packet activity on that port.
Switch to Hub or Switch
These connections can be accomplished in a number of ways using a normal cable.
• A 10BASE -T hub or switch can be connected to the Switch via a two-pair Category 3, 4 or 5 UTP/STP cable.
• A 100BASE -TX hub or switch can be connected to the Switch via a two-pair Category 5 UTP/STP cable.
Figure 4 - 2. Switch connected to a port on a hub or switch using a straight or crossover cable
10BASE-T Device
For a 10BASE-T device, the Switch’s LED indicators should display the following:
• Link/Act indicator is ON.
100BASE-TX Device
For a 100BASE-TX device, the Switch’s LED indicators should display the following:
• Link/Act is ON.
9
D-Link DES-3350SR Standalone Layer 3 Switch
Introduction to Switch Management
Management Options
Web-based Management Interface
SNMP-Based Management
Managing User Accounts
Command Line Console Interface through the Serial Port
Connecting the Console Port (RS-232 DCE)
First Time Connecting to The Switch
Password Protection
SNMP Settings
IP Address Assignment
Connecting Devices to the Switch
Management Options
Section 5
This system may be managed out-of-band through the console port on the front panel or in-band using Telnet. The user may also
choose the web-based management, accessible through a web browser.
Web-based Management Interface
After you have successfully installed the Switch, you can configure the Switch, monitor the LED panel, and display statistics
graphically using a web browser, such as Netscape Navigator (version 6.2 and higher) or Microsoft® Internet Explorer (version
5.0).
SNMP-Based Management
You can manage the Switch with an SNMP-compatible console program. The Switch supports SNMP version 1.0, version 2.0 and
version 3.0. The SNMP agent decodes the incoming SNMP messages and responds to requests with MIB objects stored in the
database. The SNMP agent updates the MIB objects to generate statistics and counters.
Command Line Console Interface Through the Serial Port
You can also connect a computer or terminal to the serial console port to access the Switch. The command-line-driven interface
provides complete access to all Switch management features.
Connecting the Console Port (RS-232 DCE)
The Switch provides an RS-232 serial port that enables a connection to a computer or terminal for monitoring and configuring the
Switch. This port is a female DB-9 connector, implemented as a data terminal equipment (DTE) connection.
To use the console port, you need the following equipment:
A terminal or a computer with both a serial port and the ability to emulate a terminal.
A null modem or crossover RS-232 cable with a female DB-9 connector for the console port on the Switch.
To connect a terminal to the console port:
1. Connect the female connector of the RS-232 cable directly to the console port on the Switch, and tighten the captive
retaining screws.
2. Connect the other end of the cable to a terminal or to the serial connector of a computer running terminal emulation
software. Set the terminal emulation software as follows:
3. Select the appropriate serial port (COM port 1 or COM port 2).
4. Set the data rate to 9600 baud.
5. Set the data format to 8 data bits, 1 stop bit, and no parity.
6. Set flow control to none.
7. Under Properties , select VT100 for Emulation mode.
8. Select Terminal keys for Function, Arrow, and Ctrl keys. Ensure that you select Terminal keys (not Windows keys).
NOTE: When you use HyperTerminal with the Microsoft® Windows® 2000
operating system, ensure that you have Windows 2000 Service Pack 2 or
later installed. Windows 2000 Service Pack 2 allows you to use arrow keys
in HyperTerminal's VT100 emulation. See www.microsoft.com for
information on Windows 2000 service packs.
10
D-Link DES-3350SR Standalone Layer 3 Switch
9. After you have correctly set up the terminal, plug the power cable into the power receptacle on the back of the Switch.
The boot sequence appears in the terminal.
10. After the boot sequence completes, the console login screen displays.
11. Usernames and Passwords are not required on the initial screen after the first connection. Any additional user names and
passwords must first be created by the administrator. If you have previously set up user accounts, log in and continue to
configure the Switch.
12. Enter the commands to complete your desired tasks. Many commands require administrator -level access privileges. Read
the next section for more information on setting up user accounts. See the DES-3350SR Command Line Interface
Reference Manual on the documentation CD for a list of all commands and additional information on using the CLI.
13. When you have completed your tasks, exit the session with the logout command or close the emu lator program.
Make sure the terminal or PC you are using to make this connecti on is configured to match these settings.
If you are having problems making this connection on a PC, make sure the emulation is set to VT-100. You will be able to set the
emulation by clicking on the File menu in you HyperTerminal window, clicking on Properties in the drop-down menu, and then
clicking the Settings tab. This is where you will find the Emulation options. If you still do not see anything, try rebooting the
Switch by disconnecting its power supply.
Once connected to the console, the screen below will appear on your console screen. This is where the user will enter commands to
perform all the available management functions. The Switch will prompt the user to enter a user name and a password. Upon the
initial connection, the user name and password are not required. These can be changed or deleted later.
Figure 5 - 1. Initial screen after first connection
First Time Connecting to The Switch
The Switch supports user -based security that can allow you to prevent unauthorized users from accessing the Switch or changing
its settings. This section tells how to log onto the Switch.
NOTE: The passwords used to access the Switch are case-sensitive; therefore,
"S" is not the same as "s."
When you first connect to the Switch, you will be presented with the first login screen (shown below).
NOTE: Press Ctrl+R to refresh the screen. This command can be used at any time
to force the console program in the Switch to refresh the console screen.
11
D-Link DES-3350SR Standalone Layer 3 Switch
Figure 5 - 2. Initial screen, first time connecting to the Switch
Usernames and Passwords are not required on the initial screen after the first connection. Any additional user names and passwords
must first be created by the administrator. You will be given access to the command prompt local> shown below:
Figure 5 - 3. Command Prompt
NOTE: The first user automatically gets Administrator level privileges. It is
recommended to create at least one Admin-level user account for the
Switch.
Password Protection
The DES-3350SR does not have a default user name and password. One of the first tasks when set tings up the Switch is to create
user accounts. If you log in using a predefined administrator -level user name, you have privileged access to the Switch's
management software.
After your initial login, define new passwords for both default user names to prevent unauthorized access to the Switch, and record
the passwords for future reference.
To create an administrator -level account for the Switch, do the following:
• At the CLI login prompt, enter create account admin followed by the <user name> and press the Enter key.
• You will be asked to provide a password. Type the <password> used for the administrator account being created and press
the Enter key.
• You will be prompted to enter the same password again to verify it. Type the same password and press the Enter key.
Successful creation of the new administrator account will be verified by a Success message.
NOTE: Passwords are case sensitive. User names and passwords can be
up to 15 characters in length.
The sample below illustrates a successful creation of a new administrator -level account with the user name "newmanager".
12
D-Link DES-3350SR Standalone Layer 3 Switch
Figure 5 - 4.Creation of a new Admin level account
NOTICE: CLI configuration commands only modify the running
configuration file and are not saved when the Switch is rebooted. To save
all your configuration changes in nonvolatile storage, you must use the
save command to copy the running configuration file to the startup
configuration.
SNMP Settings
Simple Network Management Protocol (SNMP) is an OSI Layer 7 (Application Layer) designed specifically for managing and
monitoring network devices. SNMP enables network management stations to read and modify the settings of gateways, routers,
switches, and other network devices. Use SNMP to configure system features for proper operation, monitor performance and detect
potential problems in the Switch, switch group or network.
Managed devices that support SNMP include software (referred to as an agent), which runs locally on the device. A defined set of
variables (managed objects) is maintained by the SNMP agent and used to manage the device. These objects are defined in a
Management Information Base (MIB), which provides a standard presentation of the information controlled by the on-board
SNMP agent. SNMP defines both the format of the MIB specifications and the protocol used to access this information over the
network.
The DES-3350SR supports SNMP versions 1, 2c, and 3. You can specify which version of SNMP you want to use to monitor and
control the Switch. The three versions of SNMP vary in the level of security provided between the management station and the
network device.
In SNMP v.1 and v.2, user authentication is accomplished using 'community strings', which function like passwords. The remote
user SNMP application and the Switch SNMP must use the same community string. SNMP packets from any station that has not
been authenticated are ignored (dropped).
The default community strings for the Switch used for SNMP v.1 and v.2 management access are:
• public - Allows authorized management stations to retrieve MIB objects.
• private - Allows authorized management stations to retrieve and modify MIB objects.
SNMP v.3 uses a more sophisticated authentication process that is separated into two parts. The first part is to maintain a list of
users and their attributes that are allowed to act as SNMP managers. The second part describes what each user on that list can do as
an SNMP manager.
The Switch allows groups of users to be listed and configured with a shared set of privileges. The SNMP version may also be set
for a listed group of SNMP managers. Thus, you may create a group of SNMP managers that are allowed to view read-only
information or receive traps using SNMP v.1 while assigning a higher level of security to another group, granting read/write privi leges using SNMP v.3.
Using SNMP v.3 individual users or groups of SNMP managers can be allowed to perform or be restricted from performing
specific SNMP management functions. The functions allowed or restricted are defined using the Object Identifier (OID) associated
with a specific MIB. An additional layer of security is available for SNMP v.3 in that SNMP messages may be encrypted. To read
more about how to configure SNMP v.3 settings for the Switch read the section entitled Management.
Traps
Traps are messages that alert network personnel of events that occur on the Switch. The events can be as serious as a reboot
(someone accidentally turned OFF the Switch), or less serious like a port status change. The Switch generates traps and sends them
to the trap recipient (or network manager). Typical traps include trap messages for Authentication Failure, Topology Change and
Broadcast\Multicast Storm.
13
D-Link DES-3350SR Standalone Layer 3 Switch
MIBs
Management and counter information are stored by the Switch in the Management Information Base (MIB). The Switch uses the
standard MIB-II Management Information Base module. Con sequently, values for MIB objects can be retrieved from any SNMPbased network management software. In addition to the standard MIB-II, the Switch also supports its own proprietary enter prise
MIB as an extended Management Information Base. The proprietary MIB may also be retrieved by specifying the MIB Object
Identifier. MIB values can be either read-only or read-write.
IP Address Assignment
Each Switch must be assigned its own IP Address, which is used for communication with an SNMP network manager or other
TCP/IP application (for example BOOTP, TFTP). The Switch's default IP address is 10.90.90.90. You can change the default
Switch IP address to meet the spec ification of your networking address scheme.
The Switch is also assigned a unique MAC address by the factory. This MAC address cannot be changed, and can be found by
entering the command "show switch" into the command line interface, as shown below.
Figure 5 - 5. Show switch command
The Switch's MAC address can also be found from the Web management program on the Switch Information (Basic Settings)
window on the Configuration menu.
The IP address for the Switch must be set before it can be managed with the Web-based manager. The Switch IP address can be
automatically set using BOOTP or DHCP protocols, in which case the actual address assigned to the Switch must be known.
The IP address may be set using the Command Line Interface (CLI) over the console serial port as follows:
Starting at the command line prompt, enter the commands config ipif System ipaddress xxx.xxx.xxx.xxx/yyy.yyy.yyy.yyy. Where
the x's represent the IP address to be assigned to the IP interface named System and the y's represent the corresponding subnet
mask.
Alternatively, you can enter config ipif Syst em ipaddress xxx.xxx.xxx.xxx/z. Where the x's represent the IP address to be
assigned to the IP interface named System and the z represents the corresponding number of subnets in CIDR notation.
The IP interface named System on the Switch can be assigned an IP address and subnet mask that can then be used to connect a
management station to the Switch's Telnet or Web-based management agent.
Figure 5 - 6. Assigning the Switch an IP Address
14
D-Link DES-3350SR Standalone Layer 3 Switch
In the above example, the Switch was assigned an IP address of 10.58.44.221 with a subnet mask of 255.0.0.0. The system
message Success indicates that the command was executed successfully. The Switch can now be configured and managed via
Telnet and the CLI or via the Web-based management.
Connecting Devices to the Switch
After you assign IP addresses to the Switch, you can connect devices to the Switch.
To connect a device to an SFP transceiver port:
• Use your cabling requirements to select an appropriate SFP transceiver type.
• Insert the SFP transceiver (sold separately) into the SFP transceiver slot.
• Use the appropriate network cabling to connect a device to the connectors on the SFP transceiver.
NOTICE: When the SFP transceiver acquires a link, the associated
integrated 10/100/1000BASE-T port is disabled.
15
D-Link DES-3350SR Standalone Layer 3 Switch
Section 6
Web-based Switch Management
Introduction
Login to Web Manager
User Accounts Management
Admin and User Privileges
Save Changes
Areas of the User Interface
Web Pages
Introduction
The DES-3350SR offers an embedded Web-based (HTML) interface allowing users to manage the switch from anywhere on the
network through a standard browser such as Netscape Navigator/Communicator or Microsoft Internet Explorer. The Web browser
acts as a universal access tool and can communicate directly with the Switch using the HTTP protocol.
The Web-based management module and the Console program (and Telnet) are different ways to access the same internal
switching software and configure it. Thus, all settings encountered in web-based management are the same as those found in the
console program.
Note: This Web-based Management Module does not accept Chinese language input (or other languages requiring 2 bytes per
character).
Login to Web Manager
The first step in getting started in using Web-based management for your Switch is to secure a browser. A Web browser is a
program that allows a person to read hypertext, for example, Opera, Netscape Navigator, or Microsoft Internet Explorer. Follow the
installation instructions for your browser.
The second step is to give the switch an IP address. This can be done manually through the console or automatically using
BOOTP/DHCP.
To begin managing your Switch simply run the browser you have installed on your computer and point it to the IP address you
have defined for the device. The URL in the address bar should read something like: http://123.123.123.123, where the numbers
123 represent the IP address of the switch.
Note: The Factory default IP address for the switch is 10.90.90.90.
In the page that opens, click on the Login to make a setup button:
Figure 6 - 1. Login button
This opens the management module’s main page.
The switch management features available in the Web-based manager are explained below.
User Accounts Management
From the Management menu, click User Accounts and then the User Account Management window appears.
Figure 6 - 2. User Account Management window
Click Add to add a user.
16
D-Link DES-3350SR Standalone Layer 3 Switch
Figure 6 - 3. User Account Modify Table window
1. Enter the new user name, assign an initial password, and then confirm the new password. Determine whether the new user
should have Admin or User privileges.
2. Click Apply to make the user addition effective.
3. A listing of all user accounts and access levels is shown in the User Account Management window. This list is updated
when Apply is executed. Click Show All User Account Entries to access this window.
4. Please remember that Apply makes changes to the switch configuration for the current session only. All changes
(including User additions or updates) must be entered into non-volatile ram using the Save Changes command on the
Main Menu - if you want these changes to be permanent.
Admin and User Privileges
There are two levels of user privileges: Admin and User. Some menu selections available to users with Admin privileges may not
be available to those with User privileges.
The following table summarizes the Admin and User privileges:
Switch Configuration Privilege
Management Admin User
Configuration Yes Read Only
Network Monitoring Yes Read Only
Community Strings and Trap Stations Yes Read Only
Update Firmware and Configuration Files Yes Read Only
System Utilities Yes Ping Only
Factory Reset Yes No
Reboot Switch Yes No
User Account Management
Add/Update/Delete User Accounts Yes No
View User Accounts Yes No
Table 6-1. Admin and User Privileges
After establishing a User Account with Admin-level privileges, go to the Maintenance menu and click Save Changes . Next click
Save Configuration. The switch will now save any changes to its non-volatile ram and reboot. You can logon again and are now
ready to continue configuring the Switch.
Save Changes
The DES-3350SR has two levels of memory; normal RAM and non-volatile or NV-RAM. Configuration changes are made
effective by clicking the Apply button. When this is done, the settings will be immediately applied to the switching software in
RAM, and will immediately take effect.
Some settings, though, require you to restart the switch before they will take effect. Restarting the switch erases all settings in
RAM and reloads the stored settings from the NV -RAM. Thus, it is necessary to save all setting changes to NV-RAM before
rebooting the switch.
To retain any configuration changes permanently, click Save Changes from the Maintenance menu. The following window
will appear:
17
D-Link DES-3350SR Standalone Layer 3 Switch
Area 2
Area 1
Area
3
Figure 6 - 4. Save Configuration window
Click the Save Configuration button to save the current switch configuration in NV -RAM. The following dialog box will confirm
that the configuration has been saved:
Figure 6 - 5. Save Configuration Confirmation dialog box
Click the OK button to continue.
Once the switch configuration settings have been saved to NV-RAM, they become the default settings for the switch. These
settings will be used every time the switch is rebooted.
Areas of the User Interface
The user interface provides access to various switch configuration and management screens, allows you to view performance
statistics, and permits you to graphically monitor the system status. The figure below shows the user interface. The user interface is
divided into 3 distinct areas as described in the table.
Figure 6 - 6. Main Web-Manager window
Area Function
1
Presents a graphical near real-time image
of the front panel of the switch. This area
displays the switch’s ports and expansion
modules, showing port activity, or duplex
mode, depending on the specified mode.
Various areas of the graphic can be
selected for performing management
18
D-Link DES-3350SR Standalone Layer 3 Switch
functions, including the ports, expansion
modules, management module, or the
case.
2
Allows the selection of commands.
3
NOTICE: Any changes made to the Switch configuration during the
current session must be saved in the Save Changes web menu
(explained below) or use the command line interface (CLI) command
save.
Presents switch information based on your
selection and the entry of configuration
data.
Web Pages
When you connect to the management mode of the Switch with a web browser, a login window is displayed. Enter a user name
and password to access the Switch's management mode.
Below is a list and description of the main folders available in the web interface:
Configuration – Contains windows concerning configurations for IP Address, Switch Information, Advanced Settings, Port
Description, Port Configuration, Port Mirroring, IGMP, Spanning Tree, Forwarding Filtering, VLANs, Port Bandwidth, SNTP
Settings, Port Security, QoS, LACP, Access Profile Table, IP -MAC Binding, PAE Access Entity, and Layer 3 IP Networking.
Management – Contains windows concerning configurations for Security IP, User Accounts, and SNMP V3.
Layer 3 IP networking - Contains windows concerning configurations for IP Interface Settings, Layer 3 Global Settings, MD5
Key Table Settings, Route Redistribution Settings, Static/Default Route Settings, Static ARP Settings, RIP, OSPF, DHCP/Bootp
Relay, DNS Relay, and IP Multicast Routing Protocol
Monitoring – Contains windows concerning monitoring the Switch pertaining to CPU Utilization, Port Utilization, Packets, Errors
Size, MAC Address, IGMP Snooping Group, IGMP Snooping Forwarding, VLAN Status, Router Port, Port Access Control and
Layer 3 Feature.
Maintenance – Contains windows concerning configurations and information about Switch maintenance, including TFTP Services,
Switch History, Ping Test, Save Changes, Reboot Services, and Logout.
.
NOTE: Be sure to configure the user name and password in the User
Accounts menu before con necting the Switch to the greater network.
19
D-Link DES-3350SR Standalone Layer 3 Switch
Section 7
Configuration
IP Address
Switch Information
Advanced Settings
Port Description
Port Configuration
Port Mirroring
IGMP
Spanning Tree
Forwarding Filtering
VLANs
Port Bandwidth
SNTP Settings
Port Security
QoS
LACP
Access Profile Table
IP-MAC Binding
PAE Access Entity
This section, arranged by topic, describes how to perform common configuration tasks on the DES-3350SR switch using the Webbased Manager.
IP Address
The Switch needs to have an IP address assigned to it so that an In-Band network management system (for example, the Web
Manager or Telnet) client can find it on the network. The IP Address Settings window allows you to change the settings for the
Ethernet interface used for in-band communication.
To set the switch’s IP address:
Click IP Address on the Configuration menu to open the following window:
Figure 7 - 1. IP Address Settings window
Note: The switch’s factory default IP address is 10.90.90.90 with a subnet mask of 255.0.0. 0 and a default gateway of 0.0.0.0.
To manually assign the switch’s IP address, subnet mask, and default gateway address:
Select Manual from the Get IP From drop-down menu. Enter the appropriate IP address and subnet mask. If you want to access
the switch from a different subnet from the one it is installed on, enter the IP address of the gateway. If you will manage the switch
from the subnet on which it is installed, you can leave the default address in this field. If no VLANs have been previously
configured on the switch, you can use the default VLAN − named “default.” The default VLAN contains all of the switch ports as
members. If VLANs have been previously configured on the switch, you will need to enter the VLAN name of the VLAN that
contains the port that the management station will access the switch on.
To use the BOOTP or DHCP protocols to assign the switch an IP address, subnet mask, and default gateway address:
Use the Get IP From pull-down menu to choose from Manual, BOOTP, or DHCP. This selects how the switch will be assigned an
IP address on the next reboot (or startup).
The following fields can be set:
20
Loading...
+ 154 hidden pages
You need points to download manuals.
1 point = 1 manual.
You can buy points or you can get point for every manual you upload.