Edimax IGS-5208 operation manual

IGS-5208

User Manual

01-2019 / v1.0

FCC Warning

This Equipment has been tested and found to comply with the limits for a Class-A digital device,
pursuant to Part 15 of the FCC rules. These limits are designed to provide reasonable protection against
harmful interference in a residential installation. This equipment generates, uses, and can radiate radio
frequency energy. It may cause harmful interference to radio communications if the equipment is not
installed and used in accordance with the instructions. However, there is no guarantee that interference
will not occur in a particular installation. If this equipment does cause harmful interference to radio or
television reception, which can be determined by turning the equipment off and on, the user is
encouraged to try to correct the interference by one or more of the following measures:

 Reorient or relocate the receiving antenna.
 Increase the separation between the equipment and receiver.
 Connect the equipment into an outlet on a circuit different from that to which the receiver is

connected.

 Consult the dealer or an experienced radio/TV technician for help.

Table of Contents

Intended Readers .................................................................................................................... 1

Icons for Note, Caution, and Warning .................................................................................... 1

I. Product Overview ........................................................................................... 2

I-1 Product Brief Description............................................................................... 2

I-2 Product Specification ........................................................................................................ 2

I-3. Hardware Description ..................................................................................................... 5

I-4. DIN-Rail Mounting ........................................................................................................... 9

I-5. Console Connection ..................................................................................................... 10

I-6. Connecting Cable ......................................................................................................... 10

II.

Preparing for Management ........................................................................... 11

II-1. Preparation for Web Interface ..................................................................................... 11

III. Web Management ......................................................................................... 12

III-1. Web Management - Overview .................................................................................... 12

III-2. Web Management - System ........................................................................................ 14

III-3. Web Management – IPv4 Settings ............................................................................. 15

III-4. Web Management – IPv6 Settings ............................................................................. 17

III-5. Web Management – System Time .............................................................................. 19

III-6. Web Management – RSTP Configuration .................................................................. 21

III-7. Web Management – ERPS .......................................................................................... 27

III-8. Web Management – SNMP ......................................................................................... 30

III-9. Web Management – DHCP ......................................................................................... 35

III-10. Web Management – ModBUS/TCP ........................................................................... 41

III-11. Web Management – UPnP ........................................................................................ 47

III-12. Web Management – Port Management .................................................................... 48

III-13. Web Management – IGMP Snooping ....................................................................... 51

III-14. Web Management – 802.1Q VLAN ........................................................................... 53

III-15. Web Management – Quality of Service (QoS) ......................................................... 59

III-16. Web Management – Port Trunk ................................................................................ 65

III-17. Web Management – Storm Control .......................................................................... 67

III-18. Web Management – 802.1X ......................................................................................... 69

III-19. Web Management – Port Mirroring .......................................................................... 73

III-20. Web Management – Ping .......................................................................................... 74

III-21. Web Management – LLDP ........................................................................................ 75

III-22. Web Management – System Warning ...................................................................... 77

III-23. Web Management – MAC Table ............................................................................... 83

III-24. Web Management – Authorization ........................................................................... 85

III-25. Web Management – Firmware Upgrade .................................................................. 86

III-26. Web Management – Config Backup......................................................................... 91

III-27. Web Management – Config Restore ........................................................................ 92

III-28. Web Management – USB Auto-Load &Auto-Backup .............................................. 93

Appendix A: IP Configuration for Your PC .......................................................................... 94

Appendix B: CLI Command Reference ................................................................................ 97

Federal Communication Commission Interference Statement ....................................................... 118

R&TTE Compliance Statement ................................................................................................... 11 8

icon indicates important information which will guide you to use this

icon indicates either a potential for hardware damage or data loss,

Intended Readers

This manual provides information regarding to all the aspects and functions needed to install, configure,
use, and maintain the product you’ve purchased.

This manual is intended for technicians who are familiar with in-depth concepts of networking
management and terminologies.

Icons for Note, Caution, and Warning

To install, configure, use, and maintain this product properly, please pay attention when you see these
icons in this manual:

A Note
product properly.

A Caution
including information that will guide you to avoid these situations.

A Warning icon indicates potentials for property damage and personal injury.

If you have any questions, please contact our technical support via email:

service@edimax.com.tw.

1

Interface

10/100/1000 Base RJ45 Ports

8

1000Base-X SFP Slot

2

Console Port for CLI Management

1

1x USB 2.0 storage for firmware update,

I. Product Overview

This section will give you an overview of this product, including its feature functions and hardware/software
specifications.

 Product Brief Description
 Product Specification
 Hardware Description
 Hardware Installation

I-1 Product Brief Description

Introduction

This switch is a DIN Rail type industrial Gigabit managed Switch is designed with eight 10/100/1000M RJ45
ports and two Gigabit SFP slots for highly critical applications such as real time IP video surveillance, WiMAX
systems and Wireless APs.

Ethernet Ring Protection Switching (ERPSv2)

Ring network topology ensures the reliability of the connections among all the switches in the network. This
switch supports ERPSv2 with easy to set up user interface, which allows it to recover from network
disconnection in less than 20ms with 250 switches connected in a ring network topology while
transmitting/receiving data at full network speed. Also, this switch supports multiple ERPS instances, allowing
different VLANs have their own ERPS instances.

USB Port for Save/Restore Configuration & System Log/Firmware Storage

This switch comes with a USB port for connecting a USB storage device to the industrial switch. Configuration
files, switch system log and firmware can be stored in the USB storage device for the switch to access. When a
USB storage device is connected to the switch, it will load the configuration file in the storage device and apply
all the settings, saving on-site installation time and effort.

Redundant Power Inputs & Embedded Protecting Circuit

This switch provides two power inputs that can be connected simultaneously to live DC power source. If one of
the power input fails, the other live source acts as a backup to automatically support the switch’s power needs
without compromising network service qualities. Also, it supports automatic protection switching and load
balance, while its embedded protecting circuit can protect your system from over input/output voltages and
rectifier malfunctions.

Outstanding Management and Enhanced Security

This switch provides various network control and security features to ensure the reliable and secure network
connection. To optimize the industrial network environment the switch supports advanced network features,
such as Tag VLAN, IGMP Snooping, Quality of Service (QoS), Link Aggregation Control Protocol (LACP), Rate
Control, etc. The switch can be smartly configured through Web Browser, SNMP Telnet and RS-232 local console
with its command like interface. The failure notifications are sent through e-mail, SNMP trap, Local/Remote
system log, multiple event alarm relay.

I-2 Product Specification

USB Port

configuration backup, restore, boot up and
system log

2

System Performance

Packet Buffer

12Mbits

MAC Address Table Size

16K

Switching Capacity

20Gbps

Forwarding Rate

14.88Mpps

L2 Features

Auto-negotiation

Auto MDI/MDIX

Flow Control

802.3x (Full)

Back-Pressure

IEEE 802.1D

IEEE 802.1w

IEEE 802.1s
VLAN Group

4K

Tagged Based

Port-based

Voice VLAN

Link

IEEE 802.3ad

IGMP Snooping

IGMP Static

Querier,

Storm Control



G.8032 - Ethernet Ring Protection
Jumbo Frame Support

9.6KB

QoS Features

CoS  DSCP



WRR/SPQ Queuing



Security

Management System User
IEEE 802.1x Port-based Access Control



RADIUS (Authentication, Authorization,
HTTP & SSL (Secure Web)



SSH v2.0 (Secured Telnet Session)



Management

Command Line Interface (CLI)



Web Based Management



Telnet



Firmware Upgrade via HTTP







(duplex)

Spanning Tree

VLAN

Aggregation

IGMP Snooping

(Half)

(STP)

(RSTP)

(MSTP)

with LACP

v1/v2/v3

Multicast
Addresses

Immediate
Leave















Supports 1023 IGMP groups





Switching (ERPS)

Name/Password Protection

Accounting)







3

Configuration Download/Upload

SNMP (v1/v2c/v3)

RMON (1,2,3,&9 groups)

DHCP (Client/Relay/Option82)

System Event/Error Log



NTP/LLDP



Port Mirroring



Industrial Profiles

Ethernet/IP, Modbus TCP

Mechanical

Input Power

DC12~48V, Dual Redundant

Power Connection

1 removable 4-contact terminal block

Max. Power Consumption

17W

Dimension (H*W*D)

72.2 x 145 x 113 mm

Weight

0.85KG

Per unit: PWR1, PWR2, Fault, Ring Master,

Link/Active with highest speed

Button

1 mulltiple function reset button

Operating Temperature

-40 to 75°C

Storage Temperature

-40 ~ 85°C

Operating Humidity

5~95% (non-condensing)

MTBF

>100,000 Hours

Industrial Standard

1 relay output with current carrying capacity
Reverse Polarity Protection

Overload Current Protection

Casing

IP30 protection, aluminum alloy case

FCC Part 15 Subpart B Class A, CE EN 55022

IEC61000-4-2 (ESD Level 4), IEC61000-4-3 (RS

Shock

IEC60068-2-27

Free Fall

IEC60068-2-32

Vibration

IEC60068-2-6

Green

RoHS Compliant

Installation

DIN-Rail mounting or optional wall mounting

Standard

IEEE 802.3 – 10BaseT

IEEE 802.3u – 100BaseTX

IEEE 802.3ab – 1000BaseT



IEEE 802.3z 1000BaseSX/LX



IEEE 802.3x – Flow Control



IEEE 802.1Q – VLAN



IEEE 802.1p – Class of Service



IEEE 802.1D – Spanning Tree



IEEE 802.1w – Rapid Spanning Tree








LED

Alarm Contact

EMI

EMS

Ring State
Ports:
(Green), low speed (Amber)

of 1A @ 24 VDC




Class A

Level 3)
IEC61000-4-4 (EFT Level 4), IEC61000-4-5
(Surge Level 4)
IEC61000-4-6 (CS Level 3), IEC61000-4-8
(Magnetic Field Level 4)




4

IEEE 802.1s – Multiple Spanning Tree



IEEE 802.3ad – Link Aggregation Control

IEEE 802.1AB – LLDP (Link Layer Discovery
IEEE 802.1X – Access Control

ITU-T G.8032/Y.1344 - Ethernet Ring

Protocol (LACP)

Protocol)

Protection Switching (ERPS)









I-3. Hardware Description

This section mainly describes the hardware of this switch and gives a physical and functional overview on the
certain switch.

Dimension

The dimension of this Switch is 145 mm (H) x 72.20 mm (W) x 113 mm (D). The figure down below is the
drawing of detail mechanical design:

5

Wiring Power Inputs

1. Insert the positive and negative wires into the PWR1 (+,-) and PWR2 (+,-) on the 4-contact

terminal block connector.

2. 2. Tighten the screws to prevent the wires from loosening.

Wiring Fault Alarm

1. Insert the wires into the left two contacts of the 4-contact terminal block (Fault Alarm

Relay).

2. Tighten the screws to prevent the wires from loosening.

3. The relay will detect the power and link failure.

4. Users can connect the relay to an alarm and buzzer so that when the relay forms an open

circuit, the users will be notified.

Wiring Digital Inputs

1. Insert the positive and negative wires into the right two contacts (+,-) of the 4-contact

terminal block (DI).

2. Tighten the screws to prevent the wires from loosening.

3. The system will detect the voltage go through the DI.

• +13 to +30V for state "1"

• -30 to +3V for state "0"

• Max. input current: 8mA

6

Double-Secure Power Input Fault Alarm

The power inputs are designed as a "common negative", which implies that the negative input is connected, but
"double-secure" is supported to prevent the un-notified failure of power from one of the negative inputs. If one
of the negative power input fails, the system will detect it and the system will trigger the event if the users set
the fault alarm or event log for powers.

7

LED

Color

Status

Description

On

Power is supplied on the power input 1.

Off

Power is not supplied on the power input 1.

On

Power is supplied on the power input 2.

Off

Power is not supplied on the power input 2.

On

The system boots up and in normal operation.

Off

The system is powered off or during booting.

Red

On

The configured event of failure is triggered.

On

This device has the Ring Master.

Off

The Ring Master is not on the device.

On

The Ring protocol is enabled and works normally.

Flickering

The Ring protocol is enabled, but works abnormally.

Off

The Ring protocol is disabled.

On

The 1000Mbps link of the fiber port is active.

Flickering

Data is transmitted on the fiber port at 1000Mbps.

Off

The 1000Mbps link of the fiber port is inactive.

LAN Port

On

The 1000Mbps link of the port is active.

Flickering

Data is transmitted on the port at 1000Mbps.

Off

The 1000Mbps link of the port is inactive.

On

The 10/100Mbps link of the port is active.

Flickering

Data is transmitted on the port at 10/100Mbps.

Off

The 10/100Mbps link of the port is inactive.

Press Time (Sec)

Action

Save the running configuration to the USB device named

4

Reboot the system.

More than 7

Reset the system to factory default and reboot it.

LED Status

PWR1 Green

PWR2 Green

Fault

RM Green

Ring Green

SFP Slot

P9 to P10

Green

Green

(1000M)

P1 to P8

Green

(1000M)
LAN Port

P1 to P8

Green

(10/100M)

Reset Button

A multifunctional reset button is provided. Use a pointed object such as toothpick or paper clip
(straightened) to press the reset button.

1

"running-config".

8

I-4. DIN-Rail Mounting

The DIN-Rail clip is already attached on the rear side of the switch supports EN 50022 standard DIN Rail, in the
following diagram includes the dimension of EN 50022 DIN Rail.

Follow the steps below to mount the switch on the DIN-Rail track.

1. Insert the upper end of the DIN-Rail clip into the back of the DIN-Rail track from its upper side

2. Lightly push the bottom of the DIN-Rail clip into the track.

3. Check if the DIN-Rail clip is tightly attached to the track.

4. To remove the switch from the track, reverse the steps above.

9

I-5. Console Connection

The Console port is for local management by using a terminal emulator or a computer with terminal emulation
software.

 DB9 connector connect to computer COM port

 Baud rate: 115200bps

 8 data bits, 1 stop bit

 None Priority

 None flow control

I-6. Connecting Cable

The port 1~4 is the copper ports, it requests UTP/STP cable.
The port 5 ~ 6 are the SFP slots, purchase the suitable fiber transceiver from your supplier and connect the fiber
cable for the link.

Ethernet cable Request

The wiring cable types for data transmission are as below.

10 Base-T: 2 -pair UTP/STP Cat. 3, 4, 5 cable, EIA/TIA-568 100-ohm (Max. 100m)

100 Base-TX: 2-pair UTP/STP Cat. 5 cable, EIA/TIA-568 100-ohm (Max. 100m)

1000 Base-T: 4 -pair UTP/STP Cat. 5 cable, EIA/TIA-568 100-ohm (Max. 100m)

The wiring cable types for data transmission and power delivery in any speed are Cat. 5 or above.

SFP Installation

While install the SFP transceiver, make sure the SFP type of the 2 ends is the same and the transmission
distance, wavelength, fiber cable can meet your request. It is suggested to purchase the SFP transceiver with
the switch provider to avoid any incompatible issue.

The way to connect the SFP transceiver is to Plug in SFP fiber transceiver fist. The SFP transceiver has 2 plug for
fiber cable, one is TX (transmit), the other is RX (receive). Cross-connect the transmit channel at each end to
the receive channel at the opposite end.

The switch is equipped with one dry relay output for port link fails or power fails. This session introduces how to
enable the event alarm DIP switch to alert field technician once the failure event is occurred. The new
configuration is activated immediately without system reset when DIP SWITCH is changed.

On the bottom side of the switch, there is one 9-Pin DIP SWITCH for alarm control. By inserting the port and
power wiring to set up the alarm, the DIP SWITCH of the intended Alarm is switched to “ON”. The relay output
will form a short circuit if the alarm occurred.

10

II. Preparing for Management

This section will guide your how to manage this product via serial console, management web page, and
Telnet/SSH interface.

The switch provides in-band managements.

In-Band Management: In-band management allows you to manage your switch with a web browser (such as
Microsoft IE, Mozilla Firefox, or Google Chrome) as long as your PC and the switch are connected to the same
network.

 Preparation for Web Interface

II-1. Preparation for Web Interface

The management web page allows you to use a web browser (such as Microsoft IE, Google Chrome, or Mozilla
Firefox) to configure and monitor the switch from anywhere on the network.

Before using the web interface to manage your switch, please verify that your switch and your PC are on the
same network. Please follow the steps down below to configure your PC properly:

1. Verify that the network interface card (NIC) of your PC is operational and properly installed, and

that your operating system supports TCP/IP protocol.

2. Connect your PC with the switch via an RJ45 cable.

3. The default IP address of the switch is 192.168.2.1. The switch and your PC should locate within

the same IP Subnet. Change your PC's IP address to 192.168.2.X, where X can be any number from
2 to 254. Please make sure that the IP address you’ve assigned to your PC cannot be the same with
the switch.

4. Launch the web browser (IE, Firefox, or Chrome) on your PC.

5. Type 192.168.2.1 (or the IP address of the switch) in the web browser’s URL field, and press Enter.

6. The web browser will prompt you to sign in. The default username/password is admin/admin.

For more information, please refer to

Appendix A: IP Configuration for Your PC.

11

III. Web Management

As mentioned in II-1. Preparation for Web Interface, This switch provides a web-based management interface.
You can make all settings and monitor system status with this management web page.

III-1. Web Management - Overview

When you log in, the configuration web page will display current system status.

1. Hide/Show Model Information

When a low-resolution environment is used to configure the system via the web console, the "Model
Information" field can be hidden to have a better view.

Show Model Information:

Hide Model Information:

12

2. Save Configuration

After configuring, click the icon to save the configurations to the "startup-config" file. The configurations
are retained in the system until a factory reset default is done.

3. Restore Factory Default

Removes the configurations saved in the system. After restoring factory default, all the settings will be
set to default values.

4. Reboot System

Reboots the device and restarts the system.

5. System Logout

This option enables you to sign out from the system. Users have to login again if they want to configure
the settings.
The system will auto-logout after the "timeout" timer expires. The "timeout" timer is configured in the
CLI mode by using the "exec-timeout" command.
The maximum value of the timer in the web console is 30 mins.

A USER-FRIENDLY DATA TABLE

A user-friendly data table is provided on the“IPv6 Neighbor Table”, “IGMP Snooping Table”, “ VLAN
Table”, “ LLDP Neighbor Table”, and “MAC Address Table”. The following section details how to use the

data table functions to help the users to observe the information easily.
The following example is “MAC Address Table”.

•

Users will be able to select a value to display the numberof entries in one page. The following values can
be selected - “10”, “25”, “ 50”, and “100” selections. By default, “10” is selected.

•

The search option enables you to search a key word in the data. It will search all the columns and
identify the data rows that match the search criteria.

•

It displays the total number of entries and the current entry number.

13

•

and

This option orders the field from smaller to larger or from larger to smaller.

•

Changes to “First”, “Previous”, “Next”, or “Last” page.
In addition to the above functions, “Refresh” and “Auto Refresh” function are available for all status
page including “IPv6 Neighbor Table”, “RSTP Port Status”, “ Port Status”, “ IGMP Snooping Table”, “ VLAN
Table”, “ Trunking Status”, “LLDP Neighbor Table”, and “MAC Address Table”.

•

Selecting this checkbox enablesthe “Auto Refresh” function and deselecting the checkbox disables
the“Auto Refresh” function.

•

The Refresh Rate option is a global configurable variable. When the Auto Refresh option is enabled, the
status will refresh automatically based on the Refresh Rate interval.
The range of theRefresh Rate is from 5 to 300 second(s).
The default Refresh Rate is 5 seconds.

•

(Refresh Button)

You can click the “Refresh” button to manually refresh the status.

III-2. Web Management - System

For more information, move the mouse over the icon in the system.

• Host Name

It is useful to identify the difference between the switches, for example: CoreSwitch01.
The max. length for the Host Name is 32 characters.
Note: #, \, ', ", ? are invalid characters.

• Device Description

The Device Description is fixed and defined by the system.
It contains the copper port number, fiber port number, and PoE information (if supported).

14

• Switch Location

It is useful to find the location of the switches, for example: Area01.
The max. length for the Switch Location is 32 characters.
Note: #, \, ', ", ? are invalid characters.

• Contact Information

Records the information of the person responsible for this device and also the contact details.

Note: #, \, ', ", ? are invalid characters.

•

After configuring above fields, click "Apply" button to make the changes effective.

(Apply Button)

III-3. Web Management – IPv4 Settings

Internet Protocol Version 4 (IPv4) is the fourth version of the Internet Protocol. It is used on the

packet-switched networks and with connectionless communication. IPv4 has four bytes (32 bits) address and
the address space is limited to 4,294,967,296 (232) unique addresses. On the local area network (LAN), the
“Private Network” is used. It starts from 192.168.0.0 and the address space contains 65,025 (216) IP addresses.
The frames can only be sent to the host in the same subnet. For example, the default IP Address of the switch is
“192.168.10.1”.When the users want to connect to the web console of the switch, an IP address from
“192.168.10.2” to “192.168.10.254” must be assigned to the host.

CONFIGURE IPV4 INFORMATION

• IPv4 Mode

There are 2 ways to configure IPv4 address - one is to configure a static IP address manually and
another one is to get an IP address by DHCP.
If the IPv4 mode is "DHCP Client", IPv4 information fields will be set to "Disabled".

• IP Address

Assigns an unique static IP Address in the subnet to access the system.
The default IP Address is "192.168.2.1".

15

• Subnet Mask

Defines the type of network, to which this device is connected to.

• Default Gateway

The IP address of the router used to connect a LAN to a WAN.

• DNS Server

Specifies the IP address of the DNS Server so that the users can connect to another device based on the
URL instead of the IP address.

•

(Apply Button)

After configuring above fields, click "Apply" button to make the changes effective.

16

III-4. Web Management – IPv6 Settings

Internet Protocol Version 6 (IPv6) is a solution to deal with the address space limitation of IPv4 and it is the

most recent version of Internet Protocol. It is intended to replace IPv4. IPv6 is a Layer 3 (Internet Layer) protocol,
which is used on the packet-switched networks and with connectionless communication. There are 16 bytes
(128 bits) for an IPv6 address and the address space is up to 2
represented in hexadecimal digits, 8 groups of 4 digits, and each group is separated by a “:” (colon). For
example, the DNS server address in IPv6 is “2001:4860:4860:0000:0000:0000:0000:8888”.

CONFIGURE IPV6 INFORMATION

128

unique addresses. The IPv6 address is usually

• IPv6 Mode

"Enable" or "Disable" IPv6. When the IPv6 Mode is enabled, other devices can connect to this unit.
The default IPv6 Mode is "Enable".

• Default Address

This is the Default IPv6 Address for this device. It is a Link-Local address and is automatically generated
from the MAC Address of the device.

• IPv6 Addresses

Enables the users to define other IPv6 addresses for this device.
The IPv6 address contains 2 section - IPv6 address and prefix. The default Prefix is 64-bit.

: Click the plus icon to add a IPv6 Address row.

: Click the remove icon to delete the IPv6 Address row.

•

After configuring above fields, click "Apply" button to make the changes effective.

(Apply Button)

IPV6 NEIGHBOR TABLE

17

• IPv6 Address

This filed displays the IPv6 address of the neighbor.

• MAC Address

This filed displays the MAC address of the neighbor.

• State

The connection state can be “DELAY”, “REACHABLE”, “STALE”, “FAILED”, or “PROBE”.

18

III-5. Web Management – System Time

The System Time represents the date and time. The system uptime defines the passing time after the system
boots up. There is no battery on the switch and hence the system time cannot be saved in the system. Users can
configure the time zone and system time manually by synchronizing the time with the browser or by enabling
the “NTP” service to get the time from a NTP Server.

NTP

Network Time Protocol (NTP) is a clock synchronization protocol, which is used to synchronize the system time

with the NTP server. NTP is one of the oldest Internet Protocols in use from 1985 until now. It works based on a
client-server model, but it can also be used in peer-to-peer relationships. The NTP application on the switch is
follows the client-server model and the switch plays a role in the NTP Client.

CONFIGURE SYSTEM TIME INFORMATION

• System Time Information

。 Current Time: The current date time of the system.
。 System Uptime: The system boot up duration.

• NTP Settings

。 NTP Mode

"Enable" or "Disable" NTP Service. If NTP Mode is enabled, the system will sync time with NTP
Server on an hourly basis.

。 NTP Server

This field displays the URL or the IP address of the host that provides the NTP Service.

19

• Manual Time Settings

。 Time Zone

Select the Time Zone to define the local time offset from GMT.

。 Date Selector

Select the system date manually. The format is "year/month/day".

。 Time Setting

Define the system time manually. The format is "hour:minute:second".

。 Sync with Browser

Select the checkbox to synchronize the system time with the browser time.

•

(Apply Button)

After configuring above fields, click "Apply" button to make the changes effective.

20

III-6. Web Management – RSTP Configuration

The Spanning-Tree Protocol is a standard protocol that is defined in IEEE 802.1D. It is used to build a logical
loop-free topology for layer-2 Networks. The basic function of the protocol is to prevent loops and broadcast

flooding around the switches. STP allows spare links in the network design to provide backup paths when the
active link fails and requires a convergence time of 30-50 seconds to recover the topology when the topology is
changed. This prompted the use of Rapid Spanning-Tree Protocol as it provides a faster convergence when the
topology is changed.
RSTP was introduced by IEEE as 802.1w. It can respond within 3 x "Hello Time" when a topology is changed.
The "Hello Time" is a configurable value and it is very important for RSTP. The default RSTP value is 2 seconds
and typically, the convergence time for RSTP is under 6 seconds. This is much better than STP and makes RSTP
to be the mainstream.

CONFIGURE RSTP BASICINFORMATION

For more information, move the mouse over the icon in the system.

• System Time Information

RSTP: Enable STP and run "RSTP" for redundancy.
Disable: Disable STP. Users have to enable another protocol to prevent from loop.

• Root Priority

It is used to define the "Root Bridge". The bridge with the lowest Root Priority is the "Root Bridge". If all
the bridges are set to the same Root Priority value, the system will select the Root Bridge based on
the MAC Addresses.
The range of Root Priority is from 0 to 61440(multiple of 4096).
The default Root Priority is 32768.

• Hello Time

It is very important and used to determine the interval to send BPDU (management frame) to check the
RSTP topology and status.
The range of Hello Time is from 1 to 10 second(s).
The default Hello Time is 2 seconds.

• Forward Delay

A delay/timer is used to determine when to change the Path State from Learning/Listening to
Forwarding.
The range of Forward Delay is from 4 to 30 seconds.
The default Forward Delay is 15 seconds.

21

• Maximum Age

A timer that is used to wait for the Hello BPDU from the Root Bridge. If this device receives the BPDU
before the timer expires, the timer will be reset. Else, the device will send the topology changed BPDU
to notify other devices.
The range of Maximum Age is from 6 to 40 seconds.
The default Maximum Age is 20 seconds

The relationship between "Hello Time", "Forward Delay", and "Maximum Age" is:

2 x (Forward Delay - 1 sec) >= Max Age >= 2 x (Hello Time + 1 sec)

22

CONFIGURE RSTP PORT INFOR MATION

For more information, move the mouse over the icon in the system.

• No.

Port1 to PortN, where N is based on the total port number.

• Path Cost

The costfrom the current node to another device.
The range of Path Cost is from 0 to 200000000.
The default Path Cost is 0. This implies that the Path Cost is decided by the system.

• Port Priority

Used to decide the port to be blocked in the Ring topology.
The range of Root Priority is from 0 to 240 and are in multiple of 16.
The default Root Priority is 128.

• Admin P2P

The Admin P2P is the link-type for each port.
P2P: It is a full-duplex link.
Shared: It is a half-duplex link.

23

• Edge

A port that can connect to a non-STP device is called an Edge port. Users can manually fix a port to
non-Edge or Edge.
Auto: The system automatically identifies an Edge or Non-Edge.
Edge: The port is forced to be an Edge port. An edge port will directly be transitioned to the
"Forwarding" state and is not required to wait for the "Forward Delay". If a port is directly connected to
a non-STP device, users can manually set it to "Edge" and enable it to transmit faster.
Non-Edge: The port is forced to be a Non-Edge port. This implies that the port will go through
Learning/Listening to Forwarding state even though it is connected to an end device or not.

• Admin STP

"Enable" or "Disable" the Spanning-tree protocol that is running on the specific port.

•

(Apply Button)

After configuring above fields, click "Apply" button to make the changes effective.

24

RSTP STAT US

• Bridge ID

This field shows the unique identity of this node when it is part of a network. It contains 8 bytes - the
first 2 bytes are for Bridge Priority (configurable) and the remaining 6 bytes are for the MAC Address
(unique).

• Root Bridge

It is elected from the switches in the STP topology via several STP messages (BPDU). The Root Bridge is
the node with the lowest Root Priority. If all of the nodes are with the same Root Priority, the Root
Bridge will be selected based on their MAC Addresses.

• Root Priority

It is used to define the "Root Bridge". The bridge with the lowest Root Priority is the "Root Bridge". If all
bridges are set to the same Root Priority value, the system will select the Root Bridge based on the MAC
Addresses.

• Root Port

It is the port that is connected to the Root Bridge and with the lowest cost. If the Root Port shows
"none", it implies this node is the Root Bridge.

• Root Path Cost

It is the cost from the current node to the Root Bridge.

• Hello Time

It is used to determine the interval to send BPDU (management frame) to check the RSTP topology and
status.

• Forward Delay

It is used to determine when to change the Path State from Learning/Listening to Forwarding.

• Max Age

It is used during waiting for Hello BPDU from the Root Bridge.

25

Speed

RSTP Path Cost

Speed

RSTP Path Cost

4 Mbps

5,000,000

1000 Mbps (1Gbps)

20,000

10 Mbps

2,000,000

2000 Mbps (2 Gbps)

10,000

16 Mbps

1,250,000

10000 Mbps (10 Gbps)

2,000

100 Mbps

200,000

• No.

Port1 to PortN, N is based on the total port number.

• Role

This field shows the role of the STP port.
Root: This is the root port, which is connected to the Root Bridge with the lowest cost.
Designated: This is the designated port, which can send the best BPDU on the segment to other
connected nodes.
Alternate: This is the alternate port, which is blocked. This port can still receive useful BPDU from
another bridge. When it receives a useful BPDU, it will help to forward it on the segment.
Backup: This is the backup port, which is blocked. It corresponds with “Alternate Port” to the blocking
state. This port also receives useful BPDU, but the BPDU is from the same bridge. When it receives a
useful BPDU, it will help to forward it on the segment.
Disabled: The port is not linked up.

• Path State

This field shows the path state of this STP port.
Discarding: The port state can be “Disabled”, “Blocking”, or “Listening”. The incoming frames are
dropped and learning MAC addresses are stopped.
Learning: The port is learning MAC addresses, but the incoming frames are dropped.
Forwarding: The port in the forwarding state forwards the incoming frames based on the learned MAC
address table.

• Port Cost

This is the cost from the port to the Root Bridge. Spanning-tree Protocol assumes the path cost is
determined by the access speeds of the links. The default RSTP path cost is shown in the following
table:

• Port Priority

The Port Priority is used to determine the Root Port on a non-root bridge. The port with the lowest Port
Priority value gets the higher priority.

• Oper. P2P

This field shows the link-type of the STP port. P2P means “point-to-point” and Shared means
“point-to-multiple”.

• Oper. Edge

This field shows the edge state of this STP port.

26

III-7. Web Management – ERPS

Ethernet Ring Protection Switching (ERPS) applies the protection switching mechanism for Ethernet traffic in a
ring topology. This mechanism is defined in ITU-T G8032. You can avoid the possible loops in a network by
implementing the ERPS function. This is done by blocking the flow of traffic to the Ring Protection Link (RPL)
there by protecting the entire Ethernet ring.

When an ERPS is implemented in a ring topology, only one switch is allocated as the owner. This switch is in
charge of blocking the traffic in the RPL to avoid loops. The switch adjacent to the RPL owner is called the RPL
neighbor node and it is responsible for blocking the end of the RPL during normal condition. The participating
switches that are adjacent to the RPL owner or neighbor in a ring are called the members or RPL next-neighbor
nodes. The primary function of these switches is to forward the received traffic.

To make sure that a ring is up and loop-free, Ring Automatic Protection Switching message is sent regularly as
control messages by nodes on the ring. The RPL owner identifies a signal failure (SF) in a ring when the RPL
owner misses the poll packets or reads from the fault detection packets. When the fault is identified, the RPL
owner unblocks the ring protection link (RPL) and permits the protected VLAN traffic through.

ERPS, similar to STP, provides a loop-free network by using polling packets to detect faults. If a fault occurs,
ERPS restores itself by sending traffic over a protected reverse path rather than making a calculation to identify
the forwarding path. The fault detection mechanism in the ERPS enables the ERPS to join in less than 50
milliseconds and recovers quickly to forward traffic.

27