User Manual
Product Model: DGS-3700 Series
Layer 2 Managed Gigabit Ethernet Switch
Release 1.00
©Copyright 2009. All rights reserved
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
_________________________________________________________________________________
Information in this document is subject to change without notice. © 2009 D-Link Corporation. All rights reserved.
Reproduction in any manner whatsoever without the written permission of D-Link Corporation is strictly forbidden.
Trademarks used in this text: D-Link and the D-LINK logo are trademarks of D-Link Corporation; Microsoft and Windows are registered trademarks of Microsoft Corporation.
Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products. D-Link Corporation disclaims any proprietary interest in trademarks and trade names other than its own.
July 2009 P/N 651370012005G
ii
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual |
|
|
Table of Contents |
Preface......................................................................................................................................................................... |
xi |
Intended Readers ......................................................................................................................................................... |
1 |
Typographical Conventions........................................................................................................................................................ |
1 |
Notes, Notices, and Cautions ....................................................................................................................................... |
1 |
Web-based Switch Configuration................................................................................................. |
2 |
Introduction ................................................................................................................................................................... |
2 |
Login to Web Manager............................................................................................................................................................... |
2 |
Web-based User Interface ......................................................................................................................................................... |
3 |
Web Pages ................................................................................................................................................................................ |
4 |
Configuration ................................................................................................................................. |
6 |
Device Information........................................................................................................................................................ |
7 |
System Information....................................................................................................................................................... |
7 |
Serial Port Settings ....................................................................................................................................................... |
8 |
IP Address .................................................................................................................................................................... |
9 |
Setting the Swith’s IP Address using the Console Interface |
.................................................................................................... 11 |
Interface Settings........................................................................................................................................................ |
11 |
IPv6 Route Settings .................................................................................................................................................... |
13 |
IPv6 Neighbor Settings ............................................................................................................................................... |
13 |
Port Configuration....................................................................................................................................................... |
14 |
Port Settings ............................................................................................................................................................................ |
14 |
Port Description ....................................................................................................................................................................... |
15 |
Port Error Disabled .................................................................................................................................................................. |
16 |
Static ARP Settings .................................................................................................................................................... |
16 |
User Accounts ............................................................................................................................................................ |
17 |
System Log Configuration .......................................................................................................................................... |
20 |
System Log Settings ................................................................................................................................................................ |
20 |
System Log Server .................................................................................................................................................................. |
20 |
System Severity Settings............................................................................................................................................ |
22 |
DHCP Relay................................................................................................................................................................ |
23 |
DHCP Relay Global Settings ................................................................................................................................................... |
23 |
DHCP Relay Interface Settings................................................................................................................................................ |
26 |
DHCP Relay Option 60 Default Settings.................................................................................................................................. |
26 |
DHCP Relay Option 60 Settings .............................................................................................................................................. |
27 |
DHCP Relay Option 61 Default Settings.................................................................................................................................. |
27 |
DHCP Relay Option 61 Settings .............................................................................................................................................. |
28 |
Out of Band Management Settings ............................................................................................................................ |
28 |
External Alarm Settings .............................................................................................................................................. |
29 |
DHCP Auto Configuration Settings............................................................................................................................. |
29 |
MAC Address Aging Time .......................................................................................................................................... |
30 |
Web Settings .............................................................................................................................................................. |
30 |
|
iii |
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Telnet Settings............................................................................................................................................................ |
30 |
Password Encryption .................................................................................................................................................. |
31 |
Clipaging Settings....................................................................................................................................................... |
31 |
Firmware Information.................................................................................................................................................. |
31 |
Dual Configuration Settings ........................................................................................................................................ |
32 |
Ping Test..................................................................................................................................................................... |
33 |
Local Loopback Ports Settings ................................................................................................................................... |
34 |
VLAN Counter Settings............................................................................................................................................... |
35 |
SNTP Settings ............................................................................................................................................................ |
36 |
Time Settings........................................................................................................................................................................... |
36 |
TimeZone Settings................................................................................................................................................................... |
37 |
MAC Notification Settings ........................................................................................................................................... |
38 |
MAC Notification Global Settings............................................................................................................................................. |
38 |
MAC Notification Port Settings................................................................................................................................................. |
39 |
SNMP Settings ........................................................................................................................................................... |
40 |
SNMP Global State Settings.................................................................................................................................................... |
41 |
SNMP View Table.................................................................................................................................................................... |
41 |
SNMP Group Table.................................................................................................................................................................. |
42 |
SNMP User Table .................................................................................................................................................................... |
43 |
SNMP Community Table.......................................................................................................................................................... |
44 |
SNMP Host Table .................................................................................................................................................................... |
45 |
SNMP v6Host Table ................................................................................................................................................................ |
45 |
SNMP Engine ID...................................................................................................................................................................... |
46 |
SNMP Trap Configuration........................................................................................................................................................ |
47 |
Time Range Settings .................................................................................................................................................. |
47 |
sFlow........................................................................................................................................................................... |
48 |
sFlow Global State Settings..................................................................................................................................................... |
48 |
sFlow Analyzer Server Settings ............................................................................................................................................... |
48 |
sFlow Flow Sampler Settings................................................................................................................................................... |
49 |
sFlow Counter Poller Settings.................................................................................................................................................. |
50 |
Single IP Management ............................................................................................................................................... |
51 |
Single IP Settings..................................................................................................................................................................... |
52 |
Topology .................................................................................................................................................................................. |
53 |
Tool Tips .................................................................................................................................................................................. |
56 |
Right-Click................................................................................................................................................................................ |
57 |
Menu Bar ................................................................................................................................................................................. |
59 |
Firmware Upgrade ................................................................................................................................................................... |
60 |
Configuration File Backup/Restore .......................................................................................................................................... |
60 |
Upload Log File........................................................................................................................................................................ |
61 |
DDM............................................................................................................................................................................ |
61 |
Browse DDM Status List .......................................................................................................................................................... |
61 |
DDM Settings........................................................................................................................................................................... |
61 |
DDM Temperature Threshold Settings .................................................................................................................................... |
62 |
DDM Voltage Threshold Settings............................................................................................................................................. |
63 |
|
iv |
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual |
|
DDM Bias Current Threshold Settings ..................................................................................................................................... |
63 |
DDM Tx Power Threshold Settings.......................................................................................................................................... |
64 |
DDM Rx Power Threshold Settings ......................................................................................................................................... |
64 |
L2 Features................................................................................................................................... |
66 |
Jumbo Frame.............................................................................................................................................................. |
66 |
VLANs......................................................................................................................................................................... |
67 |
Understanding IEEE 802.1p Priority ........................................................................................................................................ |
67 |
VLAN Description..................................................................................................................................................................... |
67 |
IEEE 802.1Q VLANs................................................................................................................................................................ |
68 |
Double VLANs ......................................................................................................................................................................... |
72 |
802.1Q VLAN.............................................................................................................................................................. |
74 |
Subnet VLAN .............................................................................................................................................................. |
78 |
Subnet VLAN Settings ............................................................................................................................................................. |
78 |
VLAN Precedence Settings...................................................................................................................................................... |
78 |
Q-in-Q ......................................................................................................................................................................... |
79 |
Q-in-Q Settings ........................................................................................................................................................................ |
79 |
VLAN Translation Settings....................................................................................................................................................... |
80 |
Q-in-Q and VLAN Translation Rules ........................................................................................................................................ |
81 |
802.1v Protocol VLAN ................................................................................................................................................ |
82 |
802.1v Protocol Group Settings ............................................................................................................................................... |
82 |
802.1v Protocol VLAN Settings................................................................................................................................................ |
83 |
RSPAN Settings ......................................................................................................................................................... |
84 |
GVRP Settings............................................................................................................................................................ |
84 |
GVRP Global Settings ................................................................................................................................................ |
85 |
MAC-based VLAN Settings ........................................................................................................................................ |
86 |
PVID Auto Assign Settings ......................................................................................................................................... |
86 |
Port Trunking .............................................................................................................................................................. |
87 |
LACP Port Settings..................................................................................................................................................... |
89 |
Traffic Segmentation................................................................................................................................................... |
90 |
BPDU Tunneling Settings ........................................................................................................................................... |
91 |
IGMP Snooping .......................................................................................................................................................... |
92 |
IGMP Snooping Settings.......................................................................................................................................................... |
92 |
IGMP Snooping Rate Limit Settings......................................................................................................................................... |
94 |
IGMP Snooping Static Group Settings..................................................................................................................................... |
94 |
IGMP Multicast Group Profile Settings..................................................................................................................................... |
95 |
IGMP Snooping Multicast VLAN Settings ................................................................................................................................ |
95 |
IPv4 Multicast Profile Settings.................................................................................................................................................. |
96 |
IPv4 Limited Multicast Range Settings..................................................................................................................................... |
97 |
IPv4 Max Multicast Group Settings .......................................................................................................................................... |
97 |
MLD Snooping ............................................................................................................................................................ |
98 |
MLD Snooping Settings ........................................................................................................................................................... |
98 |
MLD Snooping Rate Limit Settings ........................................................................................................................................ |
100 |
MLD Snooping Static Group Settings .................................................................................................................................... |
101 |
MLD Multicast Group Profile Settings .................................................................................................................................... |
101 |
v |
|
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual |
|
MLD Snooping Multicast VLAN Settings................................................................................................................................ |
102 |
IPv6 Multicast Profile Settings................................................................................................................................................ |
103 |
IPv6 Limited Multicast Range Settings................................................................................................................................... |
104 |
IPv6 Max Multicast Group Settings ........................................................................................................................................ |
104 |
Port Mirror ................................................................................................................................................................. |
105 |
Loopback Detection Settings.................................................................................................................................... |
106 |
Spanning Tree .......................................................................................................................................................... |
107 |
STP Bridge Global Settings ................................................................................................................................................... |
109 |
STP Port Settings .................................................................................................................................................................. |
111 |
MST Configuration Identification............................................................................................................................................ |
112 |
STP Instance Settings ........................................................................................................................................................... |
113 |
MSTP Port Information .......................................................................................................................................................... |
114 |
Forwarding & Filtering............................................................................................................................................... |
115 |
Unicast Forwarding ................................................................................................................................................................ |
115 |
Multicast Forwarding.............................................................................................................................................................. |
115 |
Multicast Filtering Mode ......................................................................................................................................................... |
116 |
LLDP ......................................................................................................................................................................... |
116 |
LLDP Global Settings............................................................................................................................................................. |
117 |
LLDP Port Settings ................................................................................................................................................................ |
118 |
LLDP Management Address List ........................................................................................................................................... |
119 |
LLDP Basic TLVs Settings..................................................................................................................................................... |
119 |
LLDP Dot1 TLVs Settings ...................................................................................................................................................... |
120 |
LLDP Dot3 TLVs Settings ...................................................................................................................................................... |
121 |
LLDP Statistics System.......................................................................................................................................................... |
121 |
LLDP Local Port Information.................................................................................................................................................. |
122 |
LLDP Remote Port Information.............................................................................................................................................. |
123 |
CFM .......................................................................................................................................................................... |
123 |
CFM Port Settings.................................................................................................................................................................. |
123 |
CFM CCM PDUs Forwarding Mode....................................................................................................................................... |
124 |
CFM MPs Reply LTRs ........................................................................................................................................................... |
124 |
CFM MIPCCM List ................................................................................................................................................................. |
124 |
Connectivity Fault Management Settings............................................................................................................................... |
125 |
CFM Loopback Settings......................................................................................................................................................... |
126 |
CFM Linktrace Settings.......................................................................................................................................................... |
127 |
Ethernet OAM ........................................................................................................................................................... |
128 |
Ethernet OAM Settings .......................................................................................................................................................... |
128 |
Ethernet OAM Configuration Settings .................................................................................................................................... |
129 |
QoS ............................................................................................................................................. |
130 |
Advantages of QoS................................................................................................................................................... |
130 |
Understanding QoS .................................................................................................................................................. |
131 |
HOL Blocking Pevention........................................................................................................................................... |
133 |
Bandwidth Control .................................................................................................................................................... |
133 |
Traffic Control ........................................................................................................................................................... |
134 |
802.1p Default Priority .............................................................................................................................................. |
136 |
vi |
|
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
802.1p User Priority .................................................................................................................................................. |
137 |
QoS Scheduling Mechanism .................................................................................................................................... |
137 |
QoS Scheduling........................................................................................................................................................ |
138 |
In Band Manage Settings ......................................................................................................................................... |
139 |
SRED ........................................................................................................................................................................ |
140 |
SRED Settings....................................................................................................................................................................... |
140 |
SRED Drop Counter .............................................................................................................................................................. |
142 |
DSCP Trust Settings.............................................................................................................................................................. |
142 |
DSCP Map Settings ............................................................................................................................................................... |
142 |
802.1p Map Settings .............................................................................................................................................................. |
144 |
Security....................................................................................................................................... |
145 |
Safeguard Engine ..................................................................................................................................................... |
145 |
Trusted Host ............................................................................................................................................................. |
147 |
IP-MAC-Port Binding ................................................................................................................................................ |
147 |
IMP Binding Global Settings .................................................................................................................................................. |
147 |
IMP Binding Port Settings ...................................................................................................................................................... |
148 |
IMP Binding Entry Settings .................................................................................................................................................... |
150 |
DHCP Snooping Entries ........................................................................................................................................................ |
151 |
MAC Block List....................................................................................................................................................................... |
151 |
Port Security ............................................................................................................................................................. |
151 |
Port Security Port Settings..................................................................................................................................................... |
151 |
Port Security VLAN Settings .................................................................................................................................................. |
152 |
Port Security Entries .............................................................................................................................................................. |
153 |
DHCP Server Screening Settings............................................................................................................................. |
153 |
DHCP Screening Port Settings .............................................................................................................................................. |
154 |
DHCP Offer Filtering .............................................................................................................................................................. |
154 |
802.1X....................................................................................................................................................................... |
155 |
802.1X Port-Based and Host-Based Access Control............................................................................................................. |
155 |
Understanding 802.1X Port-based and Host-based Network Access Control........................................................................ |
158 |
Port-Based Network Access Control...................................................................................................................................... |
158 |
Host-Based Network Access Control ..................................................................................................................................... |
159 |
802.1X Global Settings .......................................................................................................................................................... |
160 |
802.1X Port Settings .............................................................................................................................................................. |
160 |
802.1X User........................................................................................................................................................................... |
162 |
Authentication RADIUS Server .............................................................................................................................................. |
162 |
Initialize Port(s) ...................................................................................................................................................................... |
163 |
Reauthenticate Port(s) ........................................................................................................................................................... |
163 |
Guest VLAN Configuration..................................................................................................................................................... |
164 |
Guest VLAN........................................................................................................................................................................... |
165 |
SSL Settings ............................................................................................................................................................. |
165 |
Download Certificate.............................................................................................................................................................. |
166 |
Ciphersuite............................................................................................................................................................................. |
166 |
SSH........................................................................................................................................................................... |
168 |
SSH Settings.......................................................................................................................................................................... |
168 |
vii |
|
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual |
|
SSH Authmode and Algorithm Settings ................................................................................................................................. |
169 |
SSH User Authentication Lists............................................................................................................................................... |
170 |
Access Authentication Control.................................................................................................................................. |
171 |
Authentication Policy Settings................................................................................................................................................ |
173 |
Application Authentication Settings........................................................................................................................................ |
173 |
Authentication Server Group.................................................................................................................................................. |
174 |
Authentication Server............................................................................................................................................................. |
175 |
Login Method Lists................................................................................................................................................................. |
176 |
Enable Method Lists .............................................................................................................................................................. |
177 |
Local Enable Password Settings............................................................................................................................................ |
178 |
RADIUS Accounting Settings................................................................................................................................................. |
179 |
MAC-based Access Control...................................................................................................................................... |
180 |
Notes About MAC-based Access Control .............................................................................................................................. |
180 |
MAC-based Access Control Settings ..................................................................................................................................... |
180 |
MAC-based Access Control Local Settings............................................................................................................................ |
182 |
Web Authentication................................................................................................................................................... |
183 |
Conditions and Limitations..................................................................................................................................................... |
184 |
Web-based Access Control Settings...................................................................................................................................... |
184 |
Web-based Access Control User Settings ............................................................................................................................. |
185 |
NetBIOS Filtering...................................................................................................................................................... |
186 |
NetBIOS Filtering Settings ..................................................................................................................................................... |
186 |
ACL ............................................................................................................................................. |
187 |
ACL Configuration Wizard ........................................................................................................................................ |
187 |
Access Profile List .................................................................................................................................................... |
188 |
CPU Interface Filtering ............................................................................................................................................. |
205 |
CPU Access Profile List............................................................................................................................................ |
206 |
ACL Finder................................................................................................................................................................ |
217 |
ACL Flow Meter ........................................................................................................................................................ |
217 |
Monitoring .................................................................................................................................. |
220 |
Device Status............................................................................................................................................................ |
220 |
Cable Diagnostic....................................................................................................................................................... |
220 |
CPU Utilization.......................................................................................................................................................... |
221 |
Port Utilization........................................................................................................................................................... |
222 |
Packet Size............................................................................................................................................................... |
222 |
Memory Utilization .................................................................................................................................................... |
224 |
Packets ..................................................................................................................................................................... |
224 |
Received (RX)........................................................................................................................................................................ |
224 |
UMB_cast (RX) ...................................................................................................................................................................... |
226 |
Transmitted (TX) .................................................................................................................................................................... |
227 |
Errors ........................................................................................................................................................................ |
230 |
Received (RX)........................................................................................................................................................................ |
230 |
Transmitted (TX) .................................................................................................................................................................... |
231 |
Port Access Control .................................................................................................................................................. |
233 |
viii |
|
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual |
|
RADIUS Authentication.......................................................................................................................................................... |
233 |
RADIUS Account Client ......................................................................................................................................................... |
234 |
Authenticator State ................................................................................................................................................................ |
236 |
Authenticator Statistics .......................................................................................................................................................... |
237 |
Authenticator Session Statistics............................................................................................................................................. |
238 |
Authenticator Diagnostics ...................................................................................................................................................... |
239 |
Browse ARP Table ................................................................................................................................................... |
241 |
VLAN......................................................................................................................................................................... |
242 |
Browse VLAN......................................................................................................................................................................... |
242 |
Show VLAN Ports ..................................................................................................................................................... |
243 |
IGMP Snooping ........................................................................................................................................................ |
243 |
Browse IGMP Router Port...................................................................................................................................................... |
243 |
IGMP Snooping Group........................................................................................................................................................... |
243 |
IGMP Snooping Forwarding Table......................................................................................................................................... |
244 |
Browse IGMP Snooping Counter ........................................................................................................................................... |
244 |
MLD Snooping .......................................................................................................................................................... |
245 |
Browse MLD Router Port ....................................................................................................................................................... |
245 |
MLD Snooping Group ............................................................................................................................................................ |
245 |
MLD Snooping Forwarding Table .......................................................................................................................................... |
246 |
Browse MLD Snooping Counter............................................................................................................................................. |
247 |
Browse Session Table .............................................................................................................................................. |
247 |
CFM .......................................................................................................................................................................... |
247 |
CFM Packet Counter List....................................................................................................................................................... |
247 |
CFM Packet Counter CCM List.............................................................................................................................................. |
248 |
Browse CFM Fault MEP......................................................................................................................................................... |
248 |
Browse CFM Port MP List...................................................................................................................................................... |
248 |
MAC Address Table.................................................................................................................................................. |
249 |
Browse VLAN Counter Statistics .............................................................................................................................. |
249 |
Ethernet OAM ........................................................................................................................................................... |
250 |
Browse Ethernet OAM Event Log .......................................................................................................................................... |
250 |
Browse Ethernet OAM Statistics............................................................................................................................................ |
250 |
Historical Counter & Utilization ................................................................................................................................. |
252 |
Browse Historical Counter...................................................................................................................................................... |
252 |
Browse Historical Utilization................................................................................................................................................... |
253 |
System Log............................................................................................................................................................... |
253 |
Save Services and Tools........................................................................................................... |
255 |
Save Configuration ID 1............................................................................................................................................ |
255 |
Save Configuration ID 2............................................................................................................................................ |
256 |
Save Log................................................................................................................................................................... |
256 |
Save All..................................................................................................................................................................... |
256 |
Configuration File Backup & Restore ....................................................................................................................... |
257 |
Upload Log File......................................................................................................................................................... |
257 |
Reset......................................................................................................................................................................... |
257 |
ix |
|
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Download Firmware.................................................................................................................................................. |
258 |
Reboot System ......................................................................................................................................................... |
258 |
Mitigating ARP Spoofing Attacks Using Packet Content ACL............................................... |
259 |
System Log Entries ................................................................................................................... |
267 |
Glossary...................................................................................................................................... |
278 |
Password Recovery Procedure ................................................................................................ |
280 |
x
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
The DGS-3700 Series User Manual is divided into sections that describe the system installation and operating instructions with examples.
Section 1, Introduction to Web-based Switch Management – Describes how to connect to and use the Webbased switch management feature on the Switch.
Section 2, Configuration – A detailed discussion about configuring some of the basic functions of the Switch, including accessing the System information, Serial Port Settings, IP Address, Interface Settings, IPv6 Route Settings, IPv6 Neighbor Settings, Port Configuration, Static ARP Settings, User Accounts, System Log Configuration, System Severity Settings, DHCP Relay, Out of Band Management Settings, External Alarm Settings, DHCP Auto Configuration Settings, MAC Address Aging Time, Web Settings, Telnet Settings, Password Encryption, Clipaging Settings, Firmware Information, Dual Configuration Settings, Ping Test, Local Loopback Port Settings, VLAN Counter Settings, SNTP Settings, MAC Notification Settings, SNMP Settings, Time Range Settings, sFlow, Single IP Management and DDM.
Section 3, L2 Features – A discussion of the Layer 2 features on the Switch, including Jumbo Frame, 802.1Q VLAN, Subnet VLAN, QinQ, 802.1v Protocol VLAN, RSPAN Settings, GVRP Settings, GVRP Global Settings, MACbased VLAN Settings, PVID Auto Assign Settings, Port Trunking, LACP Port Settings, Traffic Segmentation, BPDU Tunneling Settings, IGMP Snooping, MLD Snooping, Port Mirror, Loopback Detection Settings, Spanning Tree, Forwarding & Filtering, LLDP, CFM and Ethernet OAM.
Section 4, QoS – Features information on Switch QoS functions, including HOL Blocking Prevention, Bandwidth Control, Traffic Control, 802.1P Default Priority, 802.1P User Priority, QoS Scheduling Mechanism, QoS Scheduling, In Band Manage Settings and SRED.
Section 5, Security – Features information on Switch security functions, including Safeguard Engine, Trusted Host, IP-MAC-Port Binding, Port Security, DHCP Server Screening, 802.1X, SSL Settings, SSH, Access Authentication Control, MAC-based Access Control, Web Authentication, and NetBIOS Filtering Settings.
Section 6, ACL – Discussion on the ACL functions of the Switch, including ACL Configuration Wizard, Access Profile List, CPU Access Profile List, ACL Finder, and ACL Flow Meter.
Section 7, Monitoring – Features information about the monitoring functions on the Switch including, Cable Diagnostic, CPU Utilization, Port Utilization, Packet Size, Memory Utilization, Packets, Errors, Port Access Control, Browse ARP Table, Browse VLAN, IGMP Snooping, MLD Snooping, Browse Session Table, CFM, MAC Address Table, Browse VLAN Counter Statistics, Ethernet OAM and Historical Counter & Utilization.
Section 8, Save Services and Tools – Save Configuration ID 1, Save Configuration ID 2, Save Log, Save All, Configuration File Backup and Restore, Upload Log File, Reset, Download Firmware, and Reboot System.
Appendix A, Mitigating ARP Spoofing Attacks Using Packet Content ACL – This section introduces ARP protocol, ARP spoofing attacks, and the counter measure brought by D-Link's switches to counter ARP spoofing attacks.
Appendix B, System Log Entries – This table lists all the possible entries and their corresponding meanings that will appear in the System Log of this Switch.
Appendix C, Glossary – Lists definitions for terms and acronyms used in this document.
Appendix D, Password Recovery Procedure - This section describes the procedure for resetting passwords on D- Link Switches.
xi
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
The DGS-3700 Series Manual contains information for setup and management of the Switch. This manual is intended for network managers familiar with network management concepts and terminology.
Convention |
|
Description |
|
|
|
[ ] |
|
In a command line, square brackets indicate an optional entry. For example: [copy |
|
|
filename] means that optionally you can type copy followed by the name of the file. Do not |
|
|
type the brackets. |
|
|
|
Bold font |
|
Indicates a button, a toolbar icon, menu, or menu item. For example: Open the File menu |
|
|
and choose Cancel. Used for emphasis. May also indicate system messages or prompts |
|
|
appearing on your screen. For example: You have mail. Bold font is also used to |
|
|
represent filenames, program names and commands. For example: use the copy |
|
|
command. |
|
|
|
Boldface |
Typewriter |
Indicates commands and responses to prompts that must be typed exactly as printed in |
Font |
|
the manual. |
|
|
|
Initial capital letter |
Indicates a window name. Names of keys on the keyboard have initial capitals. For |
|
|
|
example: Click Enter. |
|
|
|
Italics |
|
Indicates a window name or a field. Also can indicate a variables or parameter that is |
|
|
replaced with an appropriate word or string. For example: type filename means that you |
|
|
should type the actual filename instead of the word shown in italic. |
|
|
|
Menu Name > Menu |
Menu Name > Menu Option Indicates the menu structure. Device > Port > Port |
|
Option |
|
Properties means the Port Properties menu option under the Port menu option that is |
|
|
located under the Device menu. |
|
|
|
A NOTE indicates important information that helps you make better use of your device.
A NOTICE indicates either potential damage to hardware or loss of data and tells you how to avoid the problem.
A CAUTION indicates a potential for property damage, personal injury, or death.
1
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Section 1
Web-based User Interface
Web Pages
Introduction
All software functions of the Switch can be managed, configured and monitored via the embedded web-based (HTML) interface. The Switch can be managed from remote stations anywhere on the network through a standard browser such as Opera, Netscape Navigator/Communicator, or Microsoft Internet Explorer. The browser acts as a universal access tool and can communicate directly with the Switch using the HTTP protocol.
The Web-based management module and the Console program (and Telnet) are different ways to access the same internal switching software and configure it. Thus, all settings encountered in web-based management are the same as those found in the console program.
Login to Web Manager
To begin managing the Switch, simply run the browser you have installed on your computer and point it to the IP address you have defined for the device. The URL in the address bar should read something like: http://123.123.123.123, where the numbers 123 represent the IP address of the Switch.
NOTE: The Factory default IP address for the Switch is 10.90.90.90.
This opens the management module's user authentication window, as seen below.
2
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Figure 1 - 1 Enter Network Password dialog
Enter “admin” in both the User Name and Password fields and click OK. This will open the Web-based user interface. The Switch management features available in the web-based manager are explained below.
The user interface provides access to various Switch configuration and management windows, allows you to view performance statistics, and permits you to graphically monitor the system status.
The figure below shows the user interface. The user interface is divided into three distinct areas as described in the table.
3
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Area 2
Area 1
Area 3
|
|
Figure 1 - 2 Main Web-Manager page |
|
|
|
|
|
|
Area |
Function |
|
|
|
|
|
|
Area 1 |
Select the folder or window to be displayed. The folder icons can be opened to display the hyper- |
|
|
|
linked window buttons and subfolders contained within them. Click the D-Link logo to go to the D- |
|
|
|
Link website. |
|
|
|
|
|
|
Area 2 |
Presents a graphical near real-time image of the front panel of the Switch. This area displays the |
|
|
|
Switch's ports and expansion modules, showing port activity, duplex mode, or flow control, |
|
|
|
depending on the specified mode. |
|
|
|
Various areas of the graphic can be selected for performing management functions, including port |
|
|
|
configuration. |
|
|
|
|
|
|
Area 3 |
Presents switch information based on your selection and the entry of configuration data. |
|
|
|
|
|
|
|
NOTICE: Any changes made to the Switch configuration during the |
|
|
|
current session must be saved in the Save Changes web menu (explained |
|
|
|
below) or use the command line interface (CLI) command save. |
When you connect to the management mode of the Switch with a web browser, a login window is displayed. Enter a user name and password to access the Switch's management mode.
4
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Below is a list and description of the main folders available in the web interface:
Configuration – A detailed discussion about configuring some of the basic functions of the Switch, accessing the System information, Serial Port Settings, IP Address, Interface Settings, IPv6 Route Settings, IPv6 Neighbor Settings, Port Configuration, Static ARP Settings, User Accounts, System Log Configuration, System Severity Settings, DHCP Relay, Out of Band Management Settings, External Alarm Settings, DHCP Auto Configuration Settings, MAC Address Aging Time, Web Settings, Telnet Settings, Password Encryption, Clipaging Settings, Firmware Information, Dual Configuration Settings, Ping Test, Local Loopback Port Settings, VLAN Counter Settings, SNTP Settings, MAC Notification Settings, SNMP Settings, Time Range Settings, sFlow, Single IP Management and DDM.
L2 Features – A discussion of the Layer 2 features on the Switch, including Jumbo Frame, 802.1Q VLAN, Subnet VLAN, QinQ, 802.1v Protocol VLAN, RSPAN Settings, GVRP Settings, GVRP Global Settings, MAC-based VLAN Settings, PVID Auto Assign Settings, Port Trunking, LACP Port Settings, Traffic Segmentation, BPDU Tunneling Settings, IGMP Snooping, MLD Snooping, Port Mirror, Loopback Detection Settings, Spanning Tree, Forwarding & Filtering, LLDP, CFM and Ethernet OAM.
QoS – Features information on Switch QoS functions, including HOL Blocking Prevention, Bandwidth Control, Traffic Control, 802.1P Default Priority, 802.1P User Priority, QoS Scheduling Mechanism, QoS Scheduling, In Band Manage Settings and SRED.
Security – Features information on Switch security functions, including Safeguard Engine, Trusted Host, IP-MAC- Port Binding, Port Security, DHCP Server Screening, 802.1X, SSL Settings, SSH, Access Authentication Control, MAC-based Access Control, Web Authentication, and NetBIOS Filtering Settings.
ACL – Discussion on the ACL functions of the Switch, including ACL Configuration Wizard, Access Profile List, CPU Access Profile List, ACL Finder, and ACL Flow Meter.
Monitoring – Features information about the monitoring functions on the Switch including, Cable Diagnostic, CPU Utilization, Port Utilization, Packet Size, Memory Utilization, Packets, Errors, Port Access Control, Browse ARP Table, Browse VLAN, IGMP Snooping, MLD Snooping, Browse Session Table, CFM, MAC Address Table, Browse VLAN Counter Statistics, Ethernet OAM and Historical Counter & Utilization and System Log.
NOTE: Be sure to configure the user name and password in the User
Accounts window before connecting the Switch to the greater network.
5
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Section 2
Device Information
System Information
Serial Port Settings IP Address Interface Settings IPv6 Route Settings
IPv6 Neighbor Settings Port Configuration Static ARP Settings User Accounts
System Log Configuration
System Severity Settings DHCP Relay
Out of Band Management Settings External Alarm Settings
DHCP Auto Configuration Settings MAC Address Aging Time
Web Settings
Telnet Settings Password Encryption Clipaging Settings Firmware Information
Dual Configuration Settings Ping Test
Local Loopback Ports Settings VLAN Counter Settings
SNTP Settings
MAC Notification Settings SNMP Settings
Time Range Settings sFlow
Single IP Management DDM
6
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
This window contains the main settings for all major functions on the Switch and appears automatically when you log on. To return to the Device Information window, click the DGS-3700-12/DGS-3700-12G Web Management Tool folder. The Device Information window shows the Switch’s MAC Address (assigned by the factory and unchangeable), the Boot PROM Version, Firmware Version, Hardware Version and Serial Number as well as other information about different settings on the Switch. This information is helpful to keep track of PROM and firmware updates and to obtain the Switch's MAC address for entry into another network device's address table, if necessary. In addition, this window displays the status of functions on the Switch to quickly assess their current global status. Some functions are hyper-linked to their configuration window for easy access from the Device Information window.
Figure 2 - 1 Device Information window
This window contains the System Information details. The user may enter a System Name, System Location and System Contact to aid in defining the Switch, to the user's preference. This window displays the MAC Address, Firmware Version and Hardware Version.
To view this window, click Configuration > System Information as shown below:
7
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
|
Figure 2 - 2 System Information window |
The fields that can be configured are described below: |
|
|
|
Parameter |
Description |
System Name |
Enter a system name for the Switch, if so desired. This name will identify it in the Switch |
|
network. |
|
|
System Location |
Enter the location of the Switch, if so desired. |
|
|
System Contact |
Enter a contact name for the Switch, if so desired. |
|
|
Click Apply to implement changes made.
The following window contains information about the Serial Port Settings including the Baud Rate and the Auto Logout settings.
To view this window, click Configuration > Serial Port Settings as shown below:
|
Figure 2 - 3 Serial Port Settings window |
The fields that can be configured are described below: |
|
|
|
Parameter |
Description |
Baud Rate |
This field specifies the baud rate for the serial port on the Switch. There are four possible |
|
baud rates to choose from, 9600, 19200, 38400 and 115200. For a connection to the Switch |
|
using the CLI interface, the baud rate must be set to 115200, which is the default setting. |
|
|
Auto Logout |
Select the logout time used for the console interface. This automatically logs the user out after |
|
an idle period of time, as defined. Choose from the following options: 2 Minutes, 5 Minutes, 10 |
|
Minutes, 15 Minutes or Never. The default setting is 10 minutes. |
|
|
Click Apply to implement changes made.
NOTE: If a user configures the serial port’s baud rate, the baud rate will take effect and save immediately. Baud rate settings will not change even if the user resets or reboots the Switch. The Baud rate will only change when the user configures it again. The serial port’s baud rate setting is not stored in the Switch’s configuration file. Resetting the Switch will not restore the baud rate to the default setting.
8
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
The IP address may initially be set using the console interface prior to connecting to it through the Ethernet. If the Switch IP address has not yet been changed, read the introduction of the DGS-3700 Series CLI Manual for more information.
To view this window, click Configuration > IP Address as shown below:
Figure 2 - 4 IP Address Settings window
The upper part of the page allows you to manually assign the Switch's IP address, subnet mask, and default gateway address:
1.Select Static at the top of the screen.
2.Enter the appropriate IP Address and Subnet Mask.
3.If you want to access the Switch from a different subnet from the one it is installed on, enter the IP address of the Gateway. If you will manage the Switch from the subnet on which it is installed, you can leave the default address (0.0.0.0) in this field.
4.If no VLANs have been previously configured on the Switch, you can use the default VLAN Name. The default VLAN contains all of the Switch ports as members. If VLANs have been previously configured on the Switch, you will need to enter the Management VLAN Name of the VLAN that contains the port connected to the management station that will access the Switch. The Switch will allow management access from stations with the same VID listed here.
NOTE: The Switch's factory default IP address is 10.90.90.90 with a subnet mask of 255.0.0.0 and a default gateway of 0.0.0.0.
To use the BOOTP or DHCP protocols to assign the Switch an IP address, subnet mask, and default gateway address:
Select BOOTP or DHCP, this will determine how the Switch will be assigned an IP address.
The lower part of the page is to display the Out-of-band management information that has been configured in
Configuration > Out of Band Management Settings window.
The IP Address Settings options are:
9
|
|
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual |
|
|
|
|
|
|
Parameter |
Description |
|
|
|
|
|
|
Static |
Allows the entry of an IP address, Subnet Mask, and a Default Gateway for the Switch. These |
|
|
|
fields should be of the form xxx.xxx.xxx.xxx, where each xxx is a number (represented in decimal |
|
|
|
form) between 0 and 255. This address should be a unique address on the network assigned for |
|
|
|
use by the network administrator. |
|
|
DHCP |
The Switch will send out a DHCP broadcast request when it is powered up. The DHCP protocol |
|
|
|
allows IP addresses, network masks, and default gateways to be assigned by a DHCP server. If |
|
|
|
this option is set, the Switch will first look for a DHCP server to provide it with this information |
|
|
|
before using the default or previously entered settings. |
|
|
BOOTP |
The Switch will send out a BOOTP broadcast request when it is powered up. The BOOTP |
|
|
|
protocol allows IP addresses, network masks, and default gateways to be assigned by a central |
|
|
|
BOOTP server. If this option is set, the Switch will first look for a BOOTP server to provide it with |
|
|
|
this information before using the default or previously entered settings. |
|
|
IP Interface |
This field displays the IP Interface that is currently being used on the Switch. |
|
|
|
|
|
|
Management |
This allows the entry of a VLAN Name from which a management station will be allowed to |
|
|
VLAN Name |
manage the Switch using TCP/IP (in-band via web manager or Telnet). Management stations that |
|
|
|
are on VLANs other than the one entered here will not be able to manage the Switch in-band |
|
|
|
unless their IP addresses are entered in the Security IP Management window. If VLANs have |
|
|
|
not yet been configured for the Switch, the default VLAN contains all of the Switch's ports. There |
|
|
|
are no entries in the Security IP Management table, by default, so any management station that |
|
|
|
can connect to the Switch can access the Switch until a management VLAN is specified or |
|
|
|
Management Station IP Addresses are assigned. |
|
|
|
|
|
|
Interface Admin |
This field enables or disables the Interface Admin State. When the state is enabled, the IPv4 |
|
|
State |
processing will be started when the IPv4 address is configured on the IPIF. The IPv6 processing |
|
|
|
will be started when the IPv6 address is explicitly configured on the IPIF. |
|
|
|
|
|
|
IPv4 Address |
The address should specify a host address and length of the network prefix. There can be |
|
|
|
multiple IPv4 addresses defined on an interface. Thus, as a new address is defined, it is added on |
|
|
|
this IP Interface. |
|
|
|
|
|
|
Subnet Mask |
A Bitmask that determines the extent of the subnet that the Switch is on. Should be of the form |
|
|
|
xxx.xxx.xxx.xxx, where each xxx is a number (represented in decimal) between 0 and 255. The |
|
|
|
value should be 255.0.0.0 for a Class A network, 255.255.0.0 for a Class B network, and |
|
|
|
255.255.255.0 for a Class C network, but custom subnet masks are allowed. |
|
|
|
|
|
|
Gateway |
IP address that determines where packets with a destination address outside the current subnet |
|
|
|
should be sent. This is usually the address of a router or a host acting as an IP gateway. If your |
|
|
|
network is not part of an Intranet, or you do not want the Switch to be accessible outside your |
|
|
|
local network, you can leave this field unchanged. |
|
|
|
|
|
Click Apply to implement changes made.
10
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Each Switch must be assigned its own IP Address, which is used for communication with an SNMP network manager or other TCP/IP application (for example BOOTP, TFTP). The Switch’s default IP address is 10.90.90.90. You can change the default Switch IP address to meet the specification of your networking address scheme.
The IP address for the Switch must be set before it can be managed with the Web-based manager. The Switch IP address can be automatically set using BOOTP or DHCP protocols, in which case the actual address assigned to the Switch must be known. The IP address may be set using the Command Line Interface (CLI) over the console serial port as follows:
Starting at the command line prompt, enter the commands config ipif System ipaddress xxx.xxx.xxx.xxx/yyy.yyy.yyy.yyy, where the x’s represent the IP address to be assigned to the IP interface named System and the y’s represent the corresponding subnet mask.
Alternatively, you can enter config ipif System ipaddress xxx.xxx.xxx.xxx/z, where the x’s represents the corresponding number of subnets in CIDR notation.
The IP interface named System on the Switch can be assigned an IP address and subnet mask which can then be used to connect a management station to the Switch’s Telnet or Web-based management agent.
The system message Success indicated that the command was executed successfully. The Switch can now be configured and managed via Telnet and the CLI or via the Web-based management agent using the above ip address to connect to the Switch.
This window allows the user to create and configure interfaces on the Switch.
To view this window, click Configuration > Interface Settings as shown below:
|
Figure 2 - 5 Interface Settings window |
The following parameters can be configured: |
|
|
|
Parameter |
Description |
|
|
Interface Name |
Enter the name you wish to give the IP Interface. |
|
|
VLAN Name |
Enter the name of the VLAN corresponding to the System interface. |
|
|
Interface Admin. |
Allows the user to enable or disable the interface administration state. |
State |
|
|
|
Click Create to create the entry or Delete All to delete all the current IP Interface entries.
To edit the VLAN Name or Admin. State click the IPv4 Edit or IPv6 Edit button as shown below.
Figure 2 - 6 Interface Settings Edit window
11
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Enter the new VLAN Name and Admin. State and click Apply. To edit an entry for IPv4 features click the corresponding IPv4 Edit button.
|
Figure 2 - 7 IPv4 Interface Settings Edit window |
The following parameters can be configured: |
|
|
|
Parameter |
Description |
|
|
Interface Name |
Displays the interface being edited. |
|
|
VLAN Name |
Enter the name of the VLAN corresponding to the interface. |
|
|
IPv4 Address |
Enter an alternative IPv4 address. Currently an interface can only have one IPv4 address defined. |
|
Therefore multinetting configuration of IPv4 must be done through creation of a secondary |
|
interface on the same VLAN, instead of directly configuring multiple IPv4 addresses on the same |
|
interface. |
|
|
Subnet Mask |
Enter the corresponding subnet mask. |
|
|
IPv4 State |
This function allows user to enable the IPv4 address on the IP interface. |
|
|
Click Apply to implement changes made.
To edit an entry for IPv6 features click the corresponding IPv6 Edit button.
|
|
Figure 2 - 8 IPv6 Interface Settings Edit window |
The following parameters can be configured: |
||
|
|
|
Parameter |
Description |
|
|
|
|
Interface Name |
Displays the interface being edited. |
|
|
|
|
VLAN Name |
Enter the name of the VLAN corresponding to the interface. |
|
|
|
|
IPv6 |
Network |
Enter the IPv6 Network Address to be configured. The interface can have multiple IPv6 addresses |
Address |
defined. Configuration of IPv6 addresses must be done through the command config ipif. |
|
|
|
|
IPv6 State |
Allows the user to enable or disable the IPv6 state on the interface. |
|
|
|
|
NS |
Retransmit |
This field is used to set the interval, in milliseconds that the Switch will produce neighbor |
time |
(0- |
solicitation packets to be sent out over the local network. This is used to discover IPv6 neighbors |
4294967295) |
on the local network. The user may select a time between 0 and 4294967295 milliseconds. The |
|
|
|
default is 0. |
|
|
12 |
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Automatic Link
Local Address
Enables or disables the automatic configuration of link local addresses when there are no IPv6 addresses explicitly configured. When an IPv6 address is explicitly configured, the link local address will be automatically configured, and the IPv6 processing will be started. When there is no IPv6 address explicitly configured, by default, link local address is not configured and the IPv6 processing will be disabled. By enabling this automatic configuration, the link local address will be automatically configured and IPv6 processing will be started.
Click Apply to implement changes made.
This window allows the user to create and configure IPv6 Route interfaces to the Switch’s IP routing table. To view this window, click Configuration > IPv6 Route Settings as shown below:
|
Figure 2 - 9 IPv6 Route Settings window |
The following parameters can be configured: |
|
|
|
Parameter |
Description |
|
|
Interface Name |
Enter the name you wish to give the IPv6 Route Interface. |
|
|
Nexthop |
Enter the IPv6 address for the next hop router. |
Address |
|
|
|
Metric (1-65535) |
Allows the entry of a routing protocol metric entry representing the number of routers between the |
|
Switch and the IP address above. The default setting is 1. |
Backup State |
The user may choose between Primary and Backup. If the Primary Static/Default Route fails, the |
|
Backup Route will support the entry. |
Click Apply to implement changes made. To remove any entry, click the Delete All button.
This window allows the user to create and configure IPv6 Neighbor settings on the Switch. The Switch’s current IPv6 neighbor settings will be displayed in the table at the bottom of this window.
To view this window, click Configuration > IPv6 Neighbor Settings as shown below:
Figure 2 - 10 IPv6 Neighbor Settings window
The following parameters can be configured:
13
|
|
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual |
|
|
|
|
|
|
Parameter |
Description |
|
|
|
|
|
|
Interface Name |
Enter the interface name of the IPv6 neighbor you wish to configure. |
|
|
|
|
|
|
Neighbor IPv6 |
Enter the neighbor IPv6 address of the entry you wish to configure. |
|
|
Address |
|
|
|
|
|
|
|
Link Layer MAC |
Enter the MAC address of the neighbor device to be added as an IPv6 neighbor on the IP |
|
|
Address |
interface. |
|
|
|
|
|
|
Interface Name |
In order to search for a previously configured Interface name enter the appropriate information |
|
|
|
and click Find. To remove a previously configured Interface enter the Interface name and click |
|
|
|
Clear. |
|
|
State |
To find or delete specific entries use the pull down menu to select All, Address, Static, or |
|
|
|
Dynamic. |
|
|
|
All – Select All to view all configured neighbor devices which are IPv6 neighbors of the IP |
|
|
|
interface previously created. |
|
|
|
Address – Select Address and enter the IPv6 address of the entry you wish to find. |
|
|
|
Static – Select Static to view all statically entered IPv6 neighbors on the Switch. |
|
|
|
Dynamic – Select Dynamic to view all dynamically configured neighbor devices which are IPv6 |
|
|
|
neighbors of the IP interface previously created. |
|
Click Add to add a new entry, click Find to search for a specific entry or click Clear to remove an entry.
This section contains information for configuring various attributes and properties for individual physical ports, including port speed and flow control.
To view this window, click Configuration > Port Configuration > Port Settings as shown below:
To configure switch ports:
Choose the port or sequential range of ports using the From Port / To Port port pull-down menus. Use the remaining pull-down menus to configure the parameters described below:
Figure 2 - 11 Port Settings window
The following parameters can be configured:
14
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
|
Parameter |
Description |
|
|
|
|
|
|
From Port / To Port |
Use the pull-down menus to select the port or range of ports to be configured. |
|
|
|
|
|
|
State |
Toggle this field to either enable or disable a given port or group of ports. |
|
|
|
|
|
|
Speed/Duplex |
Toggle the Speed/Duplex field to either select the speed and duplex/half-duplex state of the |
|
|
|
port. Auto denotes auto-negotiation between 10 and 100 Mbps devices, in fullor half-duplex. |
|
|
|
The Auto setting allows the port to automatically determine the fastest settings the device the |
|
|
|
port is connected to can handle, and then to use those settings. The other options are Auto, |
|
|
|
10M/Half, 10M/Full, 100M/Half and 100M/Full, 1000M/Full_M, 1000M/Full_S and 1000M/Full. |
|
|
|
There is no automatic adjustment of port settings with any option other than Auto. |
|
|
|
The Switch allows the user to configure two types of gigabit connections; 1000M/Full_M and |
|
|
|
1000M/Full_S. Gigabit connections only support full duplex connections and take on certain |
|
|
|
characteristics that are different from the other choices listed. |
|
|
|
The 1000M/Full_M (master) and 1000M/Full_S (slave) parameters refer to connections |
|
|
|
running a 1000BASE-T cable for connection between the Switch port and other device |
|
|
|
capable of a gigabit connection. The master setting (1000M/Full_M) will allow the port to |
|
|
|
advertise capabilities related to duplex, speed and physical layer type. The master setting will |
|
|
|
also determine the master and slave relationship between the two connected physical layers. |
|
|
|
This relationship is necessary for establishing the timing control between the two physical |
|
|
|
layers. The timing control is set on a master physical layer by a local source. The slave |
|
|
|
setting (1000M/Full_S) uses loop timing, where the timing comes form a data stream |
|
|
|
received from the master. If one connection is set for 1000M/Full_M, the other side of the |
|
|
|
connection must be set for 1000M/Full_S. Any other configuration will result in a link down |
|
|
|
status for both ports. |
|
|
|
|
|
|
Flow Control |
Displays the flow control scheme used for the various port configurations. Ports configured |
|
|
|
for full-duplex use 802.3x flow control, half-duplex ports use backpressure flow control, and |
|
|
|
Auto ports use an automatic selection of the two. The default is Disabled. |
|
|
|
|
|
|
Address Learning |
When Enabled, destination and source MAC addresses are automatically listed in the |
|
|
|
forwarding table. The default setting is Enabled. |
|
|
|
|
|
|
Medium Type |
This applies only to the Combo ports. If configuring the Combo ports this defines the type of |
|
|
|
transport medium used. SFP ports should be set at Fiber and the Combo 1000BASE-T ports |
|
|
|
should be set at Copper. |
|
|
|
|
|
Click Apply to implement the new settings on the Switch. Click Refresh to reload the page.
The Switch supports a port description feature where the user may assign names to various ports on the Switch.
Use the From Port / To Port pull-down menu to choose a port or range of ports to describe, and then enter a description of the port(s). Click Apply to set the descriptions in the Port Description Table.
The Medium Type applies only to the Combo ports. If configuring the Combo ports this defines the type of tranport medium used. SFP ports should be nominated Fiber and the Combo 1000BASE-T ports should be nominated Copper. The result will be displayed in the appropriate switch port number slot (C for copper ports and F for fiber ports).
To view this window, click Configuration > Port Configuration > Port Description as shown below:
15
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Figure 2 - 12 Port Description window
The following window will display the information about ports that have had their connection status disabled, for reasons such as Loopback Detection or link down status.
To view this window, click Configuration > Port Configuration > Port Error Disabled as shown below.
|
|
Figure 2 - 13 Port Error Disabled window |
|
The following parameters are displayed: |
|
|
|
|
|
Parameter |
Description |
|
Port |
Displays the port that has been error disabled. |
|
|
|
|
Port State |
Describes the current running state of the port, whether Enabled or Disabled. |
|
|
|
|
Connection Status |
This field will read the uplink status of the individual ports, whether enabled or Disabled. |
|
|
|
|
Reason |
Describes the reason why the port has been error-disabled, such as a STP loopback |
|
|
occurrence. |
The Address Resolution Protocol (ARP) is a TCP/IP protocol that converts IP addresses into physical addresses. This table allows network managers to view, define, modify and delete ARP information for specific devices. Static entries can be defined in the ARP Table. When static entries are defined, a permanent entry is entered and is used to translate IP address to MAC addresses.
To view this window, click Configuration > Static ARP Settings as shown below:
16
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
|
Figure 2 - 14 Static ARP Settings window |
The following fields can be set: |
|
|
|
Parameter |
Description |
|
|
ARP Aging Time |
The user may globally set the maximum amount of time, in minutes, that an Address |
(0-65535) |
Resolution Protocol (ARP) entry can remain in the Switch’s ARP table, without being |
|
accessed, before it is dropped from the table. The value may be set in the range of 0-65535 |
|
minutes with a default setting of 20 minutes. |
|
|
IP Address |
The IP address of the ARP entry. |
|
|
MAC Address |
The MAC address of the ARP entry. |
|
|
After entering the IP Address and MAC Address of the Static ARP entry, click Apply to implement the new entry. To completely clear the Static ARP Settings, click the Delete All button.
NOTE: The Switch supports up to 255 static ARP entries.
Use the User Account Management window to control user privileges, create new users and view existing User Accounts.
To view this window, click Configuration > User Accounts as shown below:
|
Figure 2 - 15 User Accounts window |
The following fields can be set: |
|
|
|
Parameter |
Description |
|
|
User Name |
The name of the user, an alphanumeric string of up to 15 characters. |
|
|
Access Right |
There are three levels of user privileges, Admin, Operator and User. Some menu selections |
|
available to users with Admin privileges may not be available to those with User or Operator |
|
17 |
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
level privileges.
There are 3 levels of security offered on the Switch, the Operator level privilege will allow users to configure and view configurations on the Switch, except for those involving security features, which are still left to the Admin level privilege. Operator level users can be authenticated through either the local authentication method of the Switch, or through the Access Authentication Control feature, discussed later in this document. Once the user has logged in to the Switch in the Operator level, certain security screens and windows will not be made available to view, or to configure. Only Admin level users have access to these features.
(Table 2 - 1 below summarizes Admin, Operator and User level privileges)
New Password Enter a password for the new user.
Confirm New Retype the new password.
Password
To add a new user, enter the appropriate information and click Apply. To delete an account click the corresponding Delete button. To modify an existing user account, click Edit as shown below.
Figure 2 - 16 User Accounts window
Enter the Old Password for the account, the New Password you wish to use, and retype the new password in the Confirm Password field. Use the drop-down menu to select the type of encryption (Default, Plain Text or Sha 1), and click Apply.
NOTICE: In case of lost passwords or password corruption, please refer to the D-Link website and the White Paper entitled “Password Recovery Procedure”, which will guide you through the steps necessary to resolve this issue.
Recently added to the levels of security offered on the Switch, the Operator level privilege will allow users to configure and view configurations on the Switch, except for those involving security features, which are still left to the Admin privilege. Operator users can be authenticated through either the local authentication method of the Switch, or through the Access Authentication Control feature, discussed later in this document. Once the user has logged in to the Switch in the Operator level, certain security screens and windows will not be made available to view, or to configure. Only Admin level users have access to these features.
There are three levels of user privileges, Admin, Operator and User. Some menu selections available to users with Admin privileges may not be available to those with User or Operator privileges.
The following table summarizes the Admin, Operator and User privileges:
Management |
Admin |
Operator |
User |
|
|
|
|
Configuration |
Yes |
Yes |
Read-only |
|
|
|
|
Network Monitoring |
Yes |
Yes |
Read-only |
|
|
|
|
|
18 |
|
|
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
Community Strings and Trap Stations |
Yes |
Yes |
Read-only |
|
|
|
|
|
|
Update Firmware and Configuration Files |
Yes |
No |
No |
|
|
|
|
|
|
System Utilities |
Yes |
Yes |
No |
|
|
|
|
|
|
Factory Reset |
Yes |
No |
No |
|
|
|
|
|
|
|
|
|
|
|
User Account Management |
|
|
|
|
|
|
|
|
|
Add/Update/Delete User Accounts |
Yes |
No |
No |
|
|
|
|
|
|
View User Accounts |
Yes |
No |
No |
|
|
|
|
|
|
Table 2 - 1 Admin, Operator and User Privileges |
|
|
19