D-Link DGS-3700 User Manual

User Manual

Product Model:

Layer 2 Managed Gigabit Ethernet Switch

Release 1.00

DGS-3700 Series

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

_________________________________________________________________________________

Information in this document is subject to change without notice. © 2009 D-Link Corporation. All rights reserved. Reproduction in any manner whatsoever without the written permission of D-Link Corporation is strictly forbidden. Trademarks used in this text: D-Link and the D-LINK logo are trademarks of D-Link Corporation; Mic rosoft and Windows are regist ered tradem arks

of Microsoft Corporation. Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and nam es or their products.

D-Link Corporation disclaims any proprietary interest in trademarks and trade names other than its own. July 2009 P/N

651370012005G

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Preface ......................................................................................................................................................................... xi

Intended Readers ......................................................................................................................................................... 1

Typographical Conventions........................................................................................................................................................ 1

Notes, Notices, and Cautions ....................................................................................................................................... 1

Web-based Switch Configuration ................................................................................................. 2

Introduction ................................................................................................................................................................... 2

Login to Web Manager ............................................................................................................................................................... 2

Web-based User Interface ......................................................................................................................................................... 3

Web Pages ................................................................................................................................................................................ 4

Configuration ................................................................................................................................. 6

Device Information ........................................................................................................................................................ 7

System Information ....................................................................................................................................................... 7

Serial Port Settings ....................................................................................................................................................... 8

IP Address .................................................................................................................................................................... 9

Setting the Swith’s IP Address using the Console Interface .................................................................................................... 11

Interface Settings ........................................................................................................................................................ 11

IPv6 Route Settings .................................................................................................................................................... 13

IPv6 Neighbor Settings ............................................................................................................................................... 13

Port Configuration ....................................................................................................................................................... 14

Port Settings ............................................................................................................................................................................ 14

Port Description ....................................................................................................................................................................... 15

Port Error Disabled .................................................................................................................................................................. 16

Static ARP Settings .................................................................................................................................................... 16

User Accounts ............................................................................................................................................................ 17

System Log Configuration .......................................................................................................................................... 20

System Log Settings ................................................................................................................................................................ 20

System Log Server .................................................................................................................................................................. 20

System Severity Settings ............................................................................................................................................ 22

DHCP Relay................................................................................................................................................................ 23

DHCP Relay Global Settings ................................................................................................................................................... 23

DHCP Relay Interface Settings ................................................................................................................................................ 26

DHCP Relay Option 60 Default Settings .................................................................................................................................. 26

DHCP Relay Option 60 Settings .............................................................................................................................................. 27

DHCP Relay Option 61 Default Settings .................................................................................................................................. 27

DHCP Relay Option 61 Settings .............................................................................................................................................. 28

Out of Band Management Settings ............................................................................................................................ 28

External Alarm Settings .............................................................................................................................................. 29

DHCP Auto Configuration Sett ings ............................................................................................................................. 29

MAC Address Aging Time .......................................................................................................................................... 30

Web Settings .............................................................................................................................................................. 30

iii

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Telnet Settings ............................................................................................................................................................ 30

Password Encryption .................................................................................................................................................. 31

Clipaging Settings ....................................................................................................................................................... 31

Firmware Information .................................................................................................................................................. 31

Dual Configuration Settings ........................................................................................................................................ 32

Ping Test ..................................................................................................................................................................... 33

Local Loopback Ports Settings ................................................................................................................................... 34

VLAN Counter Settings ............................................................................................................................................... 35

SNTP Settings ............................................................................................................................................................ 36

Time Settings ........................................................................................................................................................................... 36

TimeZone Settings ................................................................................................................................................................... 37

MAC Notification Settings ........................................................................................................................................... 38

MAC Notification Global Settings ............................................................................................................................................. 38

MAC Notification Port Settings ................................................................................................................................................. 39

SNMP Settings ........................................................................................................................................................... 40

SNMP Global State Settings .................................................................................................................................................... 41

SNMP View Table .................................................................................................................................................................... 41

SNMP Group Table .................................................................................................................................................................. 42

SNMP User Table .................................................................................................................................................................... 43

SNMP Community Table.......................................................................................................................................................... 44

SNMP Host Table .................................................................................................................................................................... 45

SNMP v6Host Table ................................................................................................................................................................ 45

SNMP Engine ID ...................................................................................................................................................................... 46

SNMP Trap Configuration ........................................................................................................................................................ 47

Time Range Settings .................................................................................................................................................. 47

sFlow ........................................................................................................................................................................... 48

sFlow Global State Settings ..................................................................................................................................................... 48

sFlow Analyzer Server Settings ............................................................................................................................................... 48

sFlow Flow Sampler Settings ................................................................................................................................................... 49

sFlow Counter Poller Settings .................................................................................................................................................. 50

Single IP Management ............................................................................................................................................... 51

Single IP Settings ..................................................................................................................................................................... 52

Topology .................................................................................................................................................................................. 53

Tool Tips .................................................................................................................................................................................. 56

Right-Click................................................................................................................................................................................ 57

Menu Bar ................................................................................................................................................................................. 59

Firmware Upgrade ................................................................................................................................................................... 60

Configuration File Backup/Restore .......................................................................................................................................... 60

Upload Log File ........................................................................................................................................................................ 61

DDM ............................................................................................................................................................................ 61

Browse DDM Status List .......................................................................................................................................................... 61

DDM Settings ........................................................................................................................................................................... 61

DDM Temperature Threshold S etting s .................................................................................................................................... 62

DDM Voltage Threshold Settings ............................................................................................................................................. 63

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

DDM Bias Current Threshold Settings ..................................................................................................................................... 63

DDM Tx Power Threshold Settings .......................................................................................................................................... 64

DDM Rx Power Threshold Settings ......................................................................................................................................... 64

L2 Features ................................................................................................................................... 66

Jumbo Frame .............................................................................................................................................................. 66

VLANs ......................................................................................................................................................................... 67

Understanding IEEE 802.1p Priority ........................................................................................................................................ 67

VLAN Description ..................................................................................................................................................................... 67

IEEE 802.1Q VLANs ................................................................................................................................................................ 68

Double VLANs ......................................................................................................................................................................... 72

802.1Q VLAN .............................................................................................................................................................. 74

Subnet VLAN .............................................................................................................................................................. 78

Subnet VLAN Settings ............................................................................................................................................................. 78

VLAN Precedence Settings...................................................................................................................................................... 78

Q-in-Q ......................................................................................................................................................................... 79

Q-in-Q Settings ........................................................................................................................................................................ 79

VLAN Translation Settings ....................................................................................................................................................... 80

Q-in-Q and VLAN Translation Rules ........................................................................................................................................ 81

802.1v Protocol VLAN ................................................................................................................................................ 82

802.1v Protocol Group Settings ............................................................................................................................................... 82

802.1v Protocol VLAN Settings ................................................................................................................................................ 83

RSPAN Settings ......................................................................................................................................................... 84

GVRP Settings ............................................................................................................................................................ 84

GVRP Global Settings ................................................................................................................................................ 85

MAC-based VLAN Settings ........................................................................................................................................ 86

PVID Auto Assign Settings ......................................................................................................................................... 86

Port Trunking .............................................................................................................................................................. 87

LACP Port Settings ..................................................................................................................................................... 89

Traffic Segmentation ................................................................................................................................................... 90

BPDU Tunneling Settings ........................................................................................................................................... 91

IGMP Snooping .......................................................................................................................................................... 92

IGMP Snooping Settings .......................................................................................................................................................... 92

IGMP Snooping Rate Limit Settings ......................................................................................................................................... 94

IGMP Snooping Static Group Settings ..................................................................................................................................... 94

IGMP Multicast Group Profile Settings ..................................................................................................................................... 95

IGMP Snooping Multicast VLAN Settings ................................................................................................................................ 95

IPv4 Multicast Profile Settings .................................................................................................................................................. 96

IPv4 Limited Multicast Range Settings ..................................................................................................................................... 97

IPv4 Max Multicast Group Settings .......................................................................................................................................... 97

MLD Snooping ............................................................................................................................................................ 98

MLD Snooping Settings ........................................................................................................................................................... 98

MLD Snooping Rate Limit Settings ........................................................................................................................................ 100

MLD Snooping Static Group Settings .................................................................................................................................... 101

MLD Mul ticast Group Profile Settings .................................................................................................................................... 101

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

MLD Snooping Multicast VLAN Settings ................................................................................................................................ 102

IPv6 Multicast Profile Settings ................................................................................................................................................ 103

IPv6 Limited Multicast Range Settings ................................................................................................................................... 104

IPv6 Max Multicast Group Settings ........................................................................................................................................ 104

Port Mirror ................................................................................................................................................................. 105

Loopback Detection Settings .................................................................................................................................... 106

Spanning Tree .......................................................................................................................................................... 107

STP Bridge Global Settings ................................................................................................................................................... 109

STP Port Settings .................................................................................................................................................................. 111

MST Configuration Identification ............................................................................................................................................ 112

STP Instance Settings ........................................................................................................................................................... 113

MSTP Port Information .......................................................................................................................................................... 114

Forwarding & Filtering ............................................................................................................................................... 115

Unicast Forwarding ................................................................................................................................................................ 115

Multicast Forwarding .............................................................................................................................................................. 115

Multicast Filtering Mode ......................................................................................................................................................... 116

LLDP ......................................................................................................................................................................... 116

LLDP Global Settings ............................................................................................................................................................. 117

LLDP Port Settings ................................................................................................................................................................ 118

LLDP Management Address List ........................................................................................................................................... 119

LLDP Basic TLVs Settings ..................................................................................................................................................... 119

LLDP Dot1 TLVs Settings ...................................................................................................................................................... 120

LLDP Dot3 TLVs Settings ...................................................................................................................................................... 121

LLDP Statistics System .......................................................................................................................................................... 121

LLDP Local Port Information .................................................................................................................................................. 122

LLDP Remote Port Information .............................................................................................................................................. 123

CFM .......................................................................................................................................................................... 123

CFM Port Settings .................................................................................................................................................................. 123

CFM CCM PDUs Forwarding Mode ....................................................................................................................................... 124

CFM MPs Reply LTRs ........................................................................................................................................................... 124

CFM MIPCCM Lis t ................................................................................................................................................................. 124

Connectivity Fault Management Settings ............................................................................................................................... 125

CFM Loopback Settings ......................................................................................................................................................... 126

CFM Linktrace Settings .......................................................................................................................................................... 127

Ethernet OAM ........................................................................................................................................................... 128

Ethernet OAM Settings .......................................................................................................................................................... 128

Ethernet OAM Configuration Settings .................................................................................................................................... 129

QoS ............................................................................................................................................. 130

Advantages of QoS ................................................................................................................................................... 130

Understanding QoS .................................................................................................................................................. 131

HOL Blocking Pevention ........................................................................................................................................... 133

Bandwidth Control .................................................................................................................................................... 133

Traffic Control ........................................................................................................................................................... 134

802.1p Default Priority .............................................................................................................................................. 136

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

802.1p User Priority .................................................................................................................................................. 137

QoS Scheduling Mechanism .................................................................................................................................... 137

QoS Scheduling ........................................................................................................................................................ 138

In Band Manage Settings ......................................................................................................................................... 139

SRED ........................................................................................................................................................................ 140

SRED Settings ....................................................................................................................................................................... 140

SRED Drop Counter .............................................................................................................................................................. 142

DSCP Trust Settings .............................................................................................................................................................. 142

DSCP Map Settings ............................................................................................................................................................... 142

802.1p Map Settings .............................................................................................................................................................. 144

Security ....................................................................................................................................... 145

Safeguard Engine ..................................................................................................................................................... 145

Trusted Host ............................................................................................................................................................. 147

IP-MAC-Port Binding ................................................................................................................................................ 147

IMP Binding Global Settings .................................................................................................................................................. 147

IMP Binding Port Settings ...................................................................................................................................................... 148

IMP Binding Entry Settings .................................................................................................................................................... 150

DHCP Snooping Entries ........................................................................................................................................................ 151

MAC Block List ....................................................................................................................................................................... 151

Port Security ............................................................................................................................................................. 151

Port Security Port Settings ..................................................................................................................................................... 151

Port Security VLAN Settings .................................................................................................................................................. 152

Port Security Entries .............................................................................................................................................................. 153

DHCP Server Screening Settings ............................................................................................................................. 153

DHCP Screening Port Settings .............................................................................................................................................. 154

DHCP Offer Filtering .............................................................................................................................................................. 154

802.1X ....................................................................................................................................................................... 155

802.1X Port-Based and Host-Based Access Control ............................................................................................................. 155

Understanding 802.1X Port-ba sed and Host-based Network Access Control........................................................................ 158

Port-Based Network Access Control ...................................................................................................................................... 158

Host-Based Network Access Control ..................................................................................................................................... 159

802.1X Global Settings .......................................................................................................................................................... 160

802.1X Port Settings .............................................................................................................................................................. 160

802.1X User ........................................................................................................................................................................... 162

Authentication RADIUS Server .............................................................................................................................................. 162

Initialize Port(s) ...................................................................................................................................................................... 163

Reauthenticate Port(s) ........................................................................................................................................................... 163

Guest VLAN Configuration ..................................................................................................................................................... 164

Guest VLAN ........................................................................................................................................................................... 165

SSL Settings ............................................................................................................................................................. 165

Download Certificate .............................................................................................................................................................. 166

Ciphersuite ............................................................................................................................................................................. 166

SSH ........................................................................................................................................................................... 168

SSH Settings .......................................................................................................................................................................... 168

vii

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

SSH Authmode and Algorithm Settings ................................................................................................................................. 169

SSH User Authentication Lists ............................................................................................................................................... 170

Access Authentication Control .................................................................................................................................. 171

Authentication Policy Settings ................................................................................................................................................ 173

Application Authentication Settings ........................................................................................................................................ 173

Authentication Server Group .................................................................................................................................................. 174

Authentication Server ............................................................................................................................................................. 175

Login Method Lists ................................................................................................................................................................. 176

Enable Method Lists .............................................................................................................................................................. 177

Local Enable Password Settings ............................................................................................................................................ 178

RADIUS Accounting Settings ................................................................................................................................................. 179

MAC-based Access Control...................................................................................................................................... 180

Notes About MAC-based Access Control .............................................................................................................................. 180

MAC-based Access Control Settings ..................................................................................................................................... 180

MAC-based Access Control Local Settings............................................................................................................................ 182

Web Authentication ................................................................................................................................................... 183

Conditions and Limitations ..................................................................................................................................................... 184

Web-based Access Control Settings ...................................................................................................................................... 184

Web-based Access Control User Settings ............................................................................................................................. 185

NetBIOS Filtering ...................................................................................................................................................... 186

NetBIOS Filtering Settings ..................................................................................................................................................... 186

ACL ............................................................................................................................................. 187

ACL Configuration Wizard ........................................................................................................................................ 187

Access Profile List .................................................................................................................................................... 188

CPU Interface Filtering ............................................................................................................................................. 205

CPU Access Prof ile List ............................................................................................................................................ 206

ACL Finder ................................................................................................................................................................ 217

ACL Flow Meter ........................................................................................................................................................ 217

Monitoring .................................................................................................................................. 220

Device Status ............................................................................................................................................................ 220

Cable Diagnostic ....................................................................................................................................................... 220

CPU Utilization .......................................................................................................................................................... 221

Port Utilization ........................................................................................................................................................... 222

Packet Size ............................................................................................................................................................... 222

Memory Utilization .................................................................................................................................................... 224

Packets ..................................................................................................................................................................... 224

Received (RX) ........................................................................................................................................................................ 224

UMB_cast (RX) ...................................................................................................................................................................... 226

Transmitted (TX) .................................................................................................................................................................... 227

Errors ........................................................................................................................................................................ 230

Received (RX) ........................................................................................................................................................................ 230

Transmitted (TX) .................................................................................................................................................................... 231

Port Access Control .................................................................................................................................................. 233

viii

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

RADIUS Authentication .......................................................................................................................................................... 233

RADIUS Account Client ......................................................................................................................................................... 234

Authenticator State ................................................................................................................................................................ 236

Authenticator Statistics .......................................................................................................................................................... 237

Authenticator Session Statistics ............................................................................................................................................. 238

Authenticator Diagnostics ...................................................................................................................................................... 239

Browse ARP Table ................................................................................................................................................... 241

VLAN ......................................................................................................................................................................... 242

Browse VLAN ......................................................................................................................................................................... 242

Show VLAN Ports ..................................................................................................................................................... 243

IGMP Snooping ........................................................................................................................................................ 243

Browse IGMP Router Port...................................................................................................................................................... 243

IGMP Snooping Group ........................................................................................................................................................... 243

IGMP Snooping Forwarding Table ......................................................................................................................................... 244

Browse IGMP Snooping Counter ........................................................................................................................................... 244

MLD Snooping .......................................................................................................................................................... 245

Browse MLD Router Port ....................................................................................................................................................... 245

MLD Snooping Group ............................................................................................................................................................ 245

MLD Snooping Forwarding Table .......................................................................................................................................... 246

Browse MLD Snooping Counter ............................................................................................................................................. 247

Browse Session Table .............................................................................................................................................. 247

CFM .......................................................................................................................................................................... 247

CFM Packet Counter List ....................................................................................................................................................... 247

CFM Packet Counter CCM List .............................................................................................................................................. 248

Browse CFM Fault MEP......................................................................................................................................................... 248

Browse CFM Port MP List ...................................................................................................................................................... 248

MAC Address Table .................................................................................................................................................. 249

Browse VLAN Counter Statistics .............................................................................................................................. 249

Ethernet OAM ........................................................................................................................................................... 250

Browse Ethernet OAM Event Log .......................................................................................................................................... 250

Browse Ethernet OAM Stati stics ............................................................................................................................................ 250

Historical Counter & Utilization ................................................................................................................................. 252

Browse Historical Counter...................................................................................................................................................... 252

Browse Historical Utilization ................................................................................................................................................... 253

System Log ............................................................................................................................................................... 253

Save Services and Tools ........................................................................................................... 255

Save Configuration ID 1 ............................................................................................................................................ 255

Save Configuration ID 2 ............................................................................................................................................ 256

Save Log ................................................................................................................................................................... 256

Save All ..................................................................................................................................................................... 256

Configuration File Backup & Restore ....................................................................................................................... 257

Upload Log File ......................................................................................................................................................... 257

Reset ......................................................................................................................................................................... 257

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Download Firmware .................................................................................................................................................. 258

Reboot System ......................................................................................................................................................... 258

Mitigating ARP Spoofing Attacks Using Packet Content ACL ............................................... 259

System Log Entries ................................................................................................................... 267

Glossary...................................................................................................................................... 278

Password Recovery Procedure ................................................................................................ 280

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Preface

The DGS-3700 Series User Manual is divided into sections that describe the system installation and operating instructions with examples.

Section 1, Introduction to Web-based Switch Management – Describes how to connect to and use the W ebbased switch management feature on the Switch.

Section 2, Configuration – A detailed discussion about configuring some of the basic functions of the Switch, including accessing the System information, Serial Port Settings, IP Address, Interface Settings, IPv6 Route Settings, IPv6 Neighbor Settings, Port Configuration, Static ARP Settings, User Accounts, System Log Configuration, S ystem Sev erity Set tings , DH CP Re la y, Out of B and Managem ent Setti ngs, Extern al Alar m Setti ngs, DHCP Auto Configurati on Sett ings , MAC Addr es s Aging Time, Web Settings, Tel net S etti ngs , P as sw ord E nc ryption, Clipaging Settings, Firmware Information, Dual Configuration Settings, Ping Test, Local Loopback Port Settings, VLAN Counter Settings , SNTP Settings, MAC Notificat ion Settings, SNMP Settings, T ime Range Settings, sFlow, Single IP Management and DDM.

Section 3, L2 Features – A discussion of the Layer 2 features on the Switch, including Jumbo Frame, 802.1Q VLAN, Subnet VLAN, QinQ, 802.1v Protoc ol VLAN , R SP AN Sett in gs , GVRP Settings, GVRP G lo bal Set tings, MACbased VLAN Settings, PVID Auto Ass ign Settings , Port Trunk ing, LACP Port Set tings, Traff ic Segmentation, BPDU Tunneling Settings, IGMP Snooping, MLD Snooping, Port Mirror, Loopback Detection Settings, Spanning Tree, Forwarding & Filtering, LLDP, CFM and Ethernet OAM.

Section 4, QoS – F eatures information on Switch QoS f unctions, including HOL Blocking Pre vention, Bandwidth Control, Traffic Control, 802.1P Default Priority, 802.1P User Priority, QoS Scheduling Mechanism, QoS Scheduling, In Band Manage Settings and SRED.

Section 5, Security – Fe atures information on S witch security functions, inc lud ing Saf eguard Engine, Trus ted Hos t, IP-MAC-Port Bindin g, Port Security, DHCP S erver Screening, 802. 1X, SSL Settings, SSH, Access Authentication Control, MAC-based Access Control, Web Authentication, and NetBIOS Filtering Settings.

Section 6, ACL – Discussion on the ACL functions of the Switch, including ACL Configuration Wizard, Access Profile List, CPU Access Prof ile List, ACL Find er , and ACL Flo w Met er.

Section 7, Monitoring – Features information about the monitoring functions on the Switch including, Cable Diagnostic, CPU Utilization, Port Utilizat ion, Packet Size, Memory Utilization, Packets , Errors, Port Access Control, Browse ARP Table, Bro wse VLAN, IGMP Snooping, MLD Snoo ping, Browse Session Table, CFM, MAC Addr ess Table, Browse VLAN Counter Statistics, Ethernet OAM and Historical Counter & Utilization.

Section 8, Save Services and Tools – Save Configuration ID 1, Save Configuration ID 2, Save Log, Save All, Configuration File Backup and Restore, Upload Log File, Reset, Download Firmware, and Reboot System.

Appendix A, Mitigating ARP Spoofing Attacks Using Packet Content ACL – This section introduces ARP protocol, ARP spoof ing attacks, and the counter measure br ought by D-Link's switches to counter ARP spoofing attacks.

Appendix B, System Log Entries – This table lists all the possible entr ies and the ir correspondin g meanings tha t will appear in the System Log of this Switch.

Appendix C, Glossary – Lists definitions for terms and acronyms used in this document. Appendix D, Passw ord R ecover y Proced ure - This section describes the procedure for resetting passwords on D-

Link Switches.

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Boldface Typewriter

Menu Name > Menu

Intended Readers

The DGS-3700 Series Man ual contains information for setup and management of the Switch. This manual is intended for network managers familiar with network management concepts and terminology.

Typographical Con venti ons

Convention Description

[ ] In a command line, square brackets indicate an optional entry. For example: [copy

filename] means that optionally you can type copy followed by the name of the file. Do not type the brackets.

Bold font Indicates a button, a toolbar icon, menu, or menu i tem. For example: Ope n t he File menu

and choose Cancel. Used for em phasis. Ma y also in dicate s ystem messages or prom pts appearing on your screen. For example: You have mail. Bold font is also used to represent filenames, program names and commands. For example: use the copy command.

Indicates comm ands and responses to prompts that must be typed exactl y as printed in

Font

the manual.

Initial capital letter Indicates a window name. Names of keys on the keyboard have initial capitals. For

example: Click Enter.

Italics Indicates a window n ame or a field. Also can indicate a variables or parameter that is

replaced with an appropr iate word or string. For exam ple: type filename means that you should type the actual filenam e instead of the word sh o wn in italic.

Menu Name > Menu Option Indicates the menu structure. Device > Port > Port

Option

Properties means the Port Properties menu option u nder the Port menu option that is

located under the Device menu.

Notes, Notices, and Cautions

A NOTE indicates important information that helps you make better use of your device.

A NOTICE i ndicates either potential dam age to hardware or loss of data and te lls you how to avoid the problem.

A CAUTION indicates a potential for property damage, personal injury, or death.

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Section 1

Web-based Switch Configuration

Introduction Login to Web Manager Web-based User Interface Web Pages

Introduction

All software functions of the Switch can be m anag ed, configured and m onitore d via the embedde d we b-bas e d (H T ML) interface. The Switch c an be managed from remote s tations anywhere on the network thr ough a standard browser such as Opera, Netscape Navigator/Communicator, or Micros oft Internet Explorer. The browser acts as a uni versal access tool and can communicate directly with the Switch using the HTTP protocol.

The Web-based m anagement module and the Cons ole program (and Telnet) are dif ferent ways to access the sam e internal switching s oftware and conf igure it. Thus, al l settings encount ered in web-based management ar e the same as those found in the console program.

Login to Web Manager

To begin managing the Switch, simply run the browser you have installed on your com puter and point it to the IP address you have defined for the device. The URL in the address bar should read something like: http://123.123.123.123, where the numbers 123 represent the IP address of the Switch.

NOTE: The Factory default IP address for the Switch is 10.90.90.90.

This opens the management module's user authentication window, as seen below.

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Figure 1 - 1 Enter Network Password dialog

Enter “admin” in bo th the Us er Nam e and Pass word fields and clic k OK. T his will open t he W eb-based user interface. The Switch management features available in the web-based manager are explained below.

Web-based User Interface

The user interface provides access to various Switch configuration and m anagement windows, allows you to view performance statistics, and permits you to graphically monitor the system status.

Areas of the User Interface

The figure below shows the us er interface. The user interface is di vided into three distinct areas as desc ribed in the table.

Area 1

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Area 2

Area 3

Area Function

Area 1

Area 2

Area 3

Select the folder or window to be displayed. T he folder icons can be ope ned to display the h yperlinked window buttons and subfolders conta ined within them. Click the D-Link logo to go to the DLink website.

Presents a graphical near real-time im age of the front panel of the Switch. T his area displays the Switch's ports and expansion modules, showing port activity, duplex mode, or flow control, depending on the specified mode.

Various areas of the graphic can be selected for performing managem ent functions, including port configuration.

Presents switch information based on your selection and the entry of configuration data.

Figure 1 - 2 Main Web-Manager page

NOTICE: Any changes made to the Switch configuration during the

current session mus t be s a ved in th e S ave Changes web m enu (ex pl ain ed below) or use the command line interface (CLI) command save.

Web Pages

When you connect to the management m ode of the Switch with a web br owser, a login windo w is displayed. E nter a user name and password to access the Switch's management mode.

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Below is a list and description of the main folders available in the web interface:

Configuration – A detaile d discussion about configur ing some of the basic functions of the Switch, accessing the System information, Serial Port Settings, IP Address, Interface Settings, IPv6 Route Settings, IPv6 Neighbor Settings, Port Configuration, Static ARP Settings, User Accounts, System Log Configuration, System Severity Settings, DHCP Relay, Out of Band Management Settings, External Alarm Settings, DHCP Auto Configuration Settings, MAC Address Aging Time, Web Settings, Telnet Settings, Password Encryption, Clipaging Settings, Firmware Information, Dual Configuration Settings, Ping Test, Local Loopback Port Settings, VLAN Counter Settings, SNTP Settings, MAC Notification Settings, SNMP Settings, Time Range Settings, sFlow, Single IP Management and DDM.

L2 Features – A discussion of the Layer 2 features on the Switch, includ ing Jum bo Frame, 802.1Q VLAN, Sub net VLAN, QinQ, 802.1v Protoc ol VLAN, RSPAN Settings, GVR P Settings, GVRP Global Settings, MAC-based VLAN Settings, PVID Auto Assign Settings, Port Trunking, LACP Port Settings, Traffic Segmentation, BPDU Tunneling Settings, IGMP Snooping, MLD Snooping, Port Mirror, Loopb ack Detection Settings, Spa nning Tree, For warding & Filtering, LLDP, CFM and Ethernet OAM.

QoS – Features information on Switch QoS functions, including HOL Blocking Prevention, Bandwidth Control, Traffic Control, 802.1P Default Priority, 802.1P User Priority, QoS Sc he dul in g Me chani s m, QoS Scheduling, In Band Manage Settings and SRED.

Security – Features inf ormation on Switch securit y functions, including S afeguard Engine, Trusted H ost, IP-MACPort Binding, Port Security, DHCP Server Scr eening, 802.1X, SSL Settings, SSH, Access Authentication Cont rol, MAC-based Access Control, Web Authentication, and NetBIOS Filtering Settings.

ACL – Discussion on the ACL functions of the Switch, including ACL Configuration Wizard, Access Profile List, CPU Access Profile List, ACL Finder, and ACL Flow Meter.

Monitoring – Features inform ation about the monitoring func tions on the Switch inclu ding, Cable Diagnosti c, CPU Utilization, Port Utilization, Packet Size, Memory Utilization, Packets, Errors, Port Access Control, Browse ARP Table, Browse VLAN, IGMP Sno oping, MLD Snooping, Br owse Session Table, CFM, MAC Address Table, Browse VLAN Counter Statistics, Ethernet OAM and Historical Counter & Utilization and System Log.

NOTE: Be sure to configure the user name and password in the User Accounts window before connecting the Switch to the greater network.

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Configuration

Device Information System Information Serial Port Settings IP Address Interface Settings IPv6 Route Settings IPv6 Neighbor Settings Port Configuration Static ARP Settings User Accounts System Log Configuration

Section 2

System Severity Settings DHCP Relay Out of Band Management Settings External Alarm Settings DHCP Auto Configuration Settings MAC Address Aging Time Web Settings Telnet Settings Password Encryption Clipaging Settings Firmware Information Dual Configuration Settings Ping Test Local Loopback Ports Settings VLAN Counter Settings SNTP Settings MAC Notification Settings SNMP Settings Time Range Settings sFlow Single IP Management DDM

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Device Information

This window con tains the m ain settings for all m ajor functions on the S witch and appear s automaticall y when you log on. To return to the Device Information window, click the DGS-3700-12/DGS-3700-12G Web Management Tool folder. The Device Information window shows the Switch’s MAC Address (assigned by the factory and unchangeable), the Boot PROM Version, Firmware Version, Hardware Version and Serial Number as well as other information about different settings on the Switch. This information is helpful to keep track of PROM and firmware updates and t o obtain the Switch's MAC address f or entry into another network device's addr ess table, if necessary. In addit io n, this window displays the status of f unc tions on th e S witc h t o q uic k l y as ses s the i r current global status. Some func tions are hyper-link ed to their configurati on window for eas y access from the Device Information window.

Figure 2 - 1 Device Information window

System Information

This window contains the System Information details. The user may enter a System N ame, System Location and System Contact to aid in defining the Switch, to the user's preference. This window displays the MAC Address, Firmware Version and Hardware Version.

To view this window, click Configuration > System Information as shown below:

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

the default setting.

Figure 2 - 2 System Information window

The fields that can be configured are described below:

Parameter Description System Name

System Location System Contact

Click Apply to implement changes made.

Enter a system name for the Switch, if so desired. This name will identify it in the Switch network.

Enter the location of the Switch, if so desired. Enter a contact name for the Switch, if so desired.

Serial Port Settings

The following window co nta ins infor mation about the Serial Port Sett in gs inclu di ng the B aud Rate and the Auto Log out settings.

To view this window, click Configuration > Serial Port Settings as shown below:

Figure 2 - 3 Serial Port Settings window

The fields that can be configured are described below:

Parameter Description Baud Rate

Auto Logout

Click Apply to implement changes made.

This field specifies the baud rate for the serial port on the Switch. There are four possible baud rates to choose f rom, 9600, 19200, 38400 and 115200. For a conn ection to the Switch using the CLI interface, the baud rate must be set to 115200, which is the default setting.

Select the logout tim e us ed f or the cons ol e in terface. This automatic all y logs t h e u ser out af ter an idle period of tim e, as defined. Choose from the following options : 2 Minutes, 5 Minutes, 1 0 Minutes, 15 Minutes or Never. The default setting is 10 minutes.

NOTE: If a user configures the serial port’s baud rate, the baud rate will take ef fect and save immediate ly. B aud rat e set tings wi ll no t chan ge e ven if the us er r esets or r eboo ts th e Swi tch. T he Baud rate will only change when the user configures it again. The serial port’s baud rate setting is not stored in th e Switch’s conf iguration fil e. Resetting t he Switch will no t restore the bau d rate to

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

IP Address

The IP address ma y initially be set using the console interface prior to connecting to it throug h the Ethernet. If the Switch IP address has not yet been change d, read the introduction of the DGS-3700 Series CLI Manual for more information.

To view this window, click Configuration > IP Address as shown below:

Figure 2 - 4 IP Address Settings window

The upper part of the pag e allows you to manual ly assign the S witch's IP a ddress , subnet m ask, and defaul t gatewa y address:

1. Select Static at the top of the screen.

2. Enter the appropriate IP Address and Subnet Mas k .

3. If you want to access the Switch from a dif fer ent subn et fr om the on e it is insta lled on, enter the I P addr ess of the Gateway. If you will m anage t he Switc h fr om the subne t on which it is insta lled, you can leave th e defaul t address (0.0.0.0) in this field.

4. If no VLANs have been pre vious ly configured on the Sw itch, you can use the default VLAN Name. The default VLAN c ontains all of the Switch p orts as m embers. If VLANs have been pr eviously conf igured on the S witch, you will need to enter the Management VLAN Name of the VLAN that contains the port connected to the management station th at will acc ess the Switc h. The S witch will a llow managem ent acc ess fr om stations wi th the same VID listed here.

NOTE: The Switch's factory default IP address is 10.90.90.90 with a subnet mask of 255.0.0.0 and a default gateway of 0.0.0.0.

To use the BOOTP or DHCP protocols to assign the Switch an IP address, subnet mask, and default gateway address:

Select BOOTP or DHCP, this will determine how the Switch will be assigned an IP address.

The lower part of the page is to display the Out-of-band management information that has been configured in Configuration > Out of Band Management Settings window.

The IP Address Settings options are:

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Interface Admin

Parameter Description

Static

DHCP

BOOTP

IP Interface

Management VLAN Name

State

Allows the entry of an IP address, Subnet Mask, and a Def ault Gateway for the Switch. Thes e fields should be of the form xxx. xxx.xxx.xxx , where each x xx is a num ber (represente d in decim al form) between 0 and 2 55. This address should be a unique addr ess on the n etwork assigned for use by the network administrator.

The Switch will sen d out a DHCP broadcas t request when it is powered up. T he DHCP pro tocol allows IP address es, network masks, and defaul t gateways to be assigned b y a DHCP server . If this option is set, the Sw itch will first look for a DHCP server to provide it with this information before using the default or previously entered settings.

The Switch will send out a BOOTP broadcast request when it is powered up. The BOOTP protocol allows IP addr esses, network masks , and default gateways to be assigned b y a central BOOTP server. If t his optio n is set, the S witch will first lo ok f or a BOOT P server t o provide it with this information before using the default or previously entered settings.

This field displays the IP Interface that is currently being used on the Switch. This allows the entry of a VLAN Name from which a management station will be allowed to

manage the Switch usin g TCP/IP (in-band via web manager or Telne t). M anagement stations th at are on VLANs other than the one entered here will not be able to m anage the Switch in-band unless their IP address es are entered in the Securit y IP Management window. If VLANs have not yet been configur ed for the Switch, t he default VL AN contains all of the Switc h's ports. Ther e are no entries in th e Security IP Mana gement table, by d efault, so any m anagement station that can connect to the Switch can access the Switch until a management VLAN is specified or Management Station IP Addresses are assigned.

This field enables or disables the Interface Admin State. When the state is enabled, the IPv4 processing will be start ed when the IPv4 addr ess is configured on t he IPIF. The IPv6 proc essing will be started when the IPv6 address is explicitly configured on the IPIF.

IPv4 Address

The address should specify a host address and length of the network prefix. There can be multiple IPv4 addresses defined on an interface. Thus, as a new address is defined, it is added on this IP Interface.

Subnet Mask

A Bitmask that determ ines the extent of the subnet that the S witch is on. Shoul d be of the form xxx.xxx.xxx.xx x, where each xxx is a number (repr esented in decimal) bet ween 0 and 255. The value should be 255.0.0.0 for a Class A network, 255.255.0.0 for a Class B network, and

255.255.255.0 for a Class C network, but custom subnet masks are allowed.

Gateway

IP address that determ ines where pack ets with a destination a ddress outside th e current subnet should be sent. This is usually the address of a rout er or a host ac ting as an IP gate way. If your network is not part of an Intranet, or you do not want the S witch to be accessible outside your local network, you can leave this field unchanged.

Click Apply to implement changes made.

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Setting the Swith’s IP Address using the Console Interface

Each Switch must be ass igned its own I P Address, which is used for c omm unication with an SN MP network m anager or other TCP/IP application (for example BOOTP, TFTP). The Switch’s default IP address is 10.90.90.90. You can change the default Switch IP address to meet the specification of your networking address scheme. The IP address for the Switch must be set before it can be managed with the W eb-based manager. The Swit ch IP address can be aut omaticall y set usin g BOOT P or DHCP protocols , in wh ich cas e the actu al addres s assigned to the Switch must be known. T he IP address may be set using the C ommand Line Interfac e (CLI) over the console serial port as follows: Starting at the command line prompt, enter the commands config ipif System ipaddress xxx.xxx.xxx.xxx/yyy.yyy.yyy.yyy, where the x’s represent the IP address to be assigned to the IP interface named System and the y’s represent the corresponding subnet mask. Alternatively, you can enter config ipif System ipaddress xxx.xxx.xxx.xxx/z, where the x’s represents the corresponding number of subnets in CIDR notation. The IP interface named System on the Switch can be assigned an IP address and subnet mask which can then be used to connect a management station to the Switch’s Telnet or Web-based management agent. The system message Success indicated that the command was executed successfully. The Switch can now be configured and managed via Telnet and the CLI or via the Web-based management ag ent us ing th e abo ve ip addr ess to connect to the Switch.

Interface Setti ngs

This window allows the user to create and configure interfaces on the Switch. To view this window, click Configuration > Interface Settings as shown below:

Figure 2 - 5 Interface Settings window

The following parameters can be configured:

Parameter Description

Interface Name

VLAN Name

Interface Admin. State

Click Create to create the entry or D elete All to delete all the current IP Interface entries.

Enter the name you wish to give the IP Interface. Enter the name of the VLAN corresponding to the System interface. Allows the user to enable or disable the interface administration state.

To edit the VLAN Name or Admin. State click the IPv4 Edit or IPv6 Edit button as shown below.

Figure 2 - 6 Interface Settings Edit window

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

IPv6 Network

NS Retransmit

Enter the new VLAN Name and Admin. State and click Apply. To edit an entry for IPv4 features click the corresponding IPv4 Edit button.

Figure 2 - 7 IPv4 Interface Settings Edit window

The following parameters can be configured:

Parameter Description

Interface Name

VLAN Name

IPv4 Address

Displays the interface being edited. Enter the name of the VLAN corresponding to the interface. Enter an alternative IPv4 address. Currently an interface can only have one IPv4 address defined.

Therefore multinetting configuration of IPv4 must be done through creation of a secondary interface on the sam e VLAN, instead of dir ectly config uring multiple I Pv4 addresses on the same interface.

Subnet Mask

IPv4 State

Enter the corresponding subnet mask. This function allows user to enable the IPv4 address on the IP interface.

Click Apply to implement changes made. To edit an entry for IPv6 features click the corresponding IPv6 Edit button.

The following parameters can be configured:

Parameter Description

Interface Name

VLAN Name

Address

IPv6 State

time (0-

4294967295)

Figure 2 - 8 IPv6 Interface Settings Edit window

Displays the interface being edited. Enter the name of the VLAN corresponding to the interface.

Enter the IPv6 Network Address to be configured. The interface can have multiple IPv6 addresses defined. Configuration of IPv6 addresses must be done through the command config ipif.

Allows the user to enable or disable the IPv6 state on the interface. This field is used to set the interval, in milliseconds that the Switch will produce neighbor

solicitation pack ets to be s ent out over the local net work . This is use d to disc over IP v6 neigh bors on the local network. The user may select a time between 0 and 4294967295 milliseconds. The default is 0.

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Automatic Link

Enables or disables the automatic configurat ion of link local addresses when there are no IPv6

Local Address

Click Apply to implement changes made.

addresses explicitly configured. When an IPv6 address is explicitly configured, the link local address will be aut omatically configur ed, and the IPv6 processing will be started. When there is no IPv6 address explicitl y configure d, by default, li nk local ad dress is not c onfigured and th e IPv6 processing will b e disab le d. By enabling this aut omatic configuration, the link local ad dr ess will b e automatically configured and IPv6 processing will be started.

IPv6 Route Settings

This window allows the user to create and configure IPv6 Route interfaces to the Switch’s IP routing table. To view this window, click Configuration > IPv6 Route Settings as shown below:

Figure 2 - 9 IPv6 Route Settings window

The following parameters can be configured:

Parameter Description

Interface Name

Nexthop Address

Metric (1-65535)

Backup State

Click Apply to implement changes made. To remove any entry, click the Delete All button.

Enter the name you wish to give the IPv6 Route Interface. Enter the IPv6 address for the next hop router.

Allows the entr y of a ro uti n g pr ot oc ol metric entry repres enti ng the n umber of routers betw ee n t he Switch and the IP address above. The default setting is 1.

The user may choose b etween Prim ary and Back up. If the Prim ary Static/Def ault Route f ails, the Backup Route will support the entry.

IPv6 Neighbor Settings

This window allows the user to creat e and config ure IPv6 Neig hbor settings on the Switch . The Switch ’s current IPv6 neighbor settings will be displayed in the table at the bottom of this window.

To view this window, click Configuration > IPv6 Neighbor Settings as shown below:

The following parameters can be configured:

Figure 2 - 10 IPv6 Neighbor Settings window

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Neighbor IPv6

neighbors of the IP interface previously created.

Parameter Description

Interface Name

Address

Link Layer MAC Address

Interface Name

State

Click Add to add a new entry, click Find to search for a specific entry or click Clear to remove an entry.

Enter the interface name of the IPv6 neighbor you wish to configure. Enter the neighbor IPv6 address of the entry you wish to configure.

Enter the MAC address of the neighbor device to be added as an IPv6 neighbor on the IP interface.

In order to search f or a previously configured Interfac e name enter the appropriate inform ation and click Find. To remove a prev iously configured Interface enter the I nterface name and click Clear.

To find or delete specific entries use the pull down menu to select All, Address, Static, or

Dynamic. All – Select All to view all configured neighbor devices which are IPv6 neighbors of the IP

interface previously created.

Address – Select Address and enter the IPv6 address of the entry you wish to find. Static – Select Static to view all statically entered IPv6 neighbors on the Switch. Dynamic – Select Dynamic to view all dynamically configured neighbor devices which are IPv6

Port Configuration

This section contains information for configuring various attributes and properties for individual physical ports, including port speed and flow control.

Port Settings

To view this window, click Configuration > Port Configuration > Port Settings as shown below:

To configure switch ports:

Choose the port or sequential range of ports using the From Port / To Port port pull-down menus. Use the remaining pull-down menus to configure the parameters described below:

The following parameters can be configured:

Figure 2 - 11 Port Settings window

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

will allow the port to

Parameter Description

From Port / To Port State Speed/Duplex

Flow Control

Use the pull-down menus to select the port or range of ports to be configured. Toggle this field to either enable or disable a given port or group of ports. Toggle the Speed/Duplex field to either se lect the s peed an d duplex/ half-dup lex s tate of th e

port. Auto denot es aut o-negotiation between 1 0 an d 1 00 Mb ps de vices , i n f ull- or half-duplex. The Auto sett in g al lo ws t he port to automatically determine the f as test setti ngs th e d ev ic e t he port is connected to can ha ndle, and then to use thos e settings. The other options are Auto, 10M/Half, 10M/Full, 100M/Half and 100M/Full, 1000M/Full_M, 1000M/Full_S and 1000M/Full. There is no automatic adjustment of port settings with any option other than Auto.

The Switch allows the us er to config ure two types of gigabit connec tions; 1000M/Full_M and 1000M/Full_S. G igabit connections on ly support full duplex connect ions and take on certain characteristics that are different from the other choices listed.

The 1000M/Full_M (master) and 1000M/Full_S (slave) parameters refer to connections running a 1000BASE-T cable for connection between the Switch port and other device capable of a gigabit connection. The master setting (1000M/Full_M) advertise capabilities r elat e d to du pl ex, s peed and physical layer type. T he master setting will also determine the m aster and sla ve relat ionship b etween th e t wo connected ph ysical la yers. This relationship is necessary for establishing the timing control between the two physical layers. The timing control is set on a master physical layer by a local source. The slave setting (1000M/Full_S) uses loop timing, where the timing comes form a data stream received from the m aster. If one connection is set f or 1000M/Full_M, the other side of the connection mus t be set for 1000M/Full_S. An y other configuration will result in a link down status for both ports.

Displays the flo w control scheme used for the various port configurations . Ports configured for full-duplex use 802 .3x flow control, half-dup lex ports use backpressur e flow control, and Auto ports use an automatic selection of the two. The default is Disabled.

Address Learning When Enabled, destination and source MAC addresses are automatically listed in the

forwarding table. The default setting is Enabled.

Medium Type

Click Apply to implement the new settings on the Switch. Click Refresh to reload the page.

This applies onl y to the Co mbo ports. If configuring the Combo p orts this def ines the t ype of transport medium used. SFP ports shou ld be set at Fiber and t he Combo 10 00BASE-T ports should be set at Copper.

Port Description

The Switch supports a port description feature where the user may assign names to various ports on the Switch. Use the From Port / To Port pull-down menu to choose a port or range of ports to describe, and then enter a

description of the port(s). Click Apply to set the descriptions in the Port Description Table. The Medium Type applies only to the Combo ports. If configuring the Combo ports this defines the type of tranport

medium used. SFP ports should be nominated Fiber and the Combo 1000BASE-T ports should be nominated Copper. The result will be displayed in the appropriate switch port number slot (C for copper ports and F for fiber ports).

To view this window, click Configuration > Port Configuration > Port Description as shown below:

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Figure 2 - 12 Port Description window

Port Error Disabled

The following window will display the information about ports that have had their connection status disabled, for reasons such as Loopback Detection or link down status.

To view this window, click Configuration > Port Configuration > Port Error Disabled as shown below.

Figure 2 - 13 Port Error Disabled window

The following parameters are displayed:

Parameter Description

Port Port State Describes the current running state of the port, whether Enabled or Disabled. Connection Status Reason

Displays the port that has been error disabled.

This field will read the uplink status of the individual ports, whether enabled or Disabled. Describes the reason why the port has been error-disabled, such as a STP loopback

occurrence.

Static ARP Settings

The Address Resolutio n Protoc ol (ARP) is a TC P/IP pr otocol t hat con verts I P addres ses into ph ysica l addres ses. T his table allows network managers to view, define, m odify and delete ARP inf ormation for spec ific devices. Sta tic entries can be defined in the ARP Table. When static entries are defined, a permanent entry is entered and is used to translate IP address to MAC addresses.

To view this window, click Configuration > Static ARP Settings as shown below:

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

available to users with Admin privileges m ay not be available to those with User or Operator

The following fields can be set:

Parameter Description

Figure 2 - 14 Static ARP Settings window

ARP Aging Time (0-65535)

IP Address

MAC Address

After entering the IP Addr ess and MAC Addres s of the Static ARP e ntry, click Apply to im plement the new entr y. To completely clear the Static ARP Settings, click the Delete All button.

The user may globally set the maximum amount of time, in minutes, that an Address Resolution Protocol (ARP) entry can remain in the Switch’s ARP table, without being accessed, before it is dro pped from the tabl e. The value m ay be set in the range of 0-65535 minutes with a default setting of 20 minutes.

The IP address of the ARP entry. The MAC address of the ARP entry.

NOTE: The Switch supports up to 255 static ARP entries.

User Accounts

Use the User Account Management window to control user privileges, create new users and view existing User Accounts.

To view this window, click Configuration > User Accounts as shown below:

Figure 2 - 15 User Accounts window

The following fields can be set:

Parameter Description

User Name Access Right There are three levels of user privileges, Admin, Operator and User. Some menu selections

The name of the user, an alphanumeric string of up to 15 characters.

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

level privileges.

There are 3 leve ls of securit y offered on the Switch, the Operator level privilege will allow us ers to configure and view conf igurations on the Switch, except f or those involving security features, which are still left to the Admin level privilege. Operator le vel user s c an be a uth e ntic at ed thr o ugh either the local authe nticati on m ethod of the Switc h, or through t he Acc ess Auth entic ation Contr ol feature, discussed later in this document. Once the user has logged in to the Switch in the Operator level, c ertain security screens and windows wi ll not be made available to view, or to configure. Only Admin level users have access to these features.

(Table 2 - 1 below summarizes Admin, Operator and User level privileges)

New Password

Confirm New Password

To add a new user, enter the appropriat e information and click Apply. To del ete an account cl ick the correspond ing Delete button. To modify an existing user account, click Edit as shown below.

Enter the Old Pass word for the account, the Ne w Password you wish to use, and retype the new passw ord in the Confirm Password field. Us e the drop-down m enu to select the type of enc ryption (Default, Plain T ext or Sha 1), and click Apply.

Enter a password for the new user. Retype the new password.

Figure 2 - 16 User Accounts window

Admin, Operator and User Pri vileges

Recently added to the levels of security offered on the Switch, the Operator level priv ilege will allow users to configure and view conf igurations on the S witch, except for those in volving security features , which are still left t o the Admin privilege. Operator us ers c an be auth ent ic ate d thr o ug h eit her th e loc a l au the ntication method of the Sw itch, or thr oug h the Access Authentication Control feature, discussed later in this document. Once the user has logged in to the Switch in the Operator level, cer tain security screens and windows will not be made availab le to view, or to configure. Onl y Admin level users have access to these features.

There are three lev els of user privileges, Admin, Operator and User. Som e menu selections available to users with Admin privileges may not be available to those with User or Operator privileges.

The following table summarizes the Admin, Operator and User privileges:

Management Admin Operator User

Configuration Yes Yes Read-only Network Monitoring Yes Yes Read-only

NOTICE: In case of lost passwords or password c orruption, please refer to the D-Link website an d the White Paper entitled “Pass word Recovery Procedure”, which will guide you through the steps necessary to resolve this issue.

DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual

Community Strings and Trap Stations Yes Yes Read-only Update Firmware and Configuration Files Yes No No System Utilities Yes Yes No Factory Reset Yes No No

User Account Management

Add/Update/Delete User Accounts Yes No No View User Accounts Yes No No

Table 2 - 1 Admin, Operator and User Privileges

+ 262 hidden pages

D-Link DGS-3700 User Manual

Table of Contents

Preface

Intended Readers

Typographical Con venti ons

Notes, Notices, and Cautions

Web-based Switch Configuration

Introduction

Login to Web Manager

Web-based User Interface

Areas of the User Interface

Web Pages

Configuration

Device Information

System Information

Serial Port Settings

IP Address

Setting the Swith’s IP Address using the Console Interface

Interface Setti ngs

IPv6 Route Settings

IPv6 Neighbor Settings

Port Configuration

Port Settings

Port Description

Port Error Disabled

Static ARP Settings

User Accounts

Admin, Operator and User Pri vileges