Enterasys Networks 2200 User Manual

SmartSwitch 2200 Series

Standalone Switches

(2E25x and 2H25x)

Local Management User’s Guide

9033069-01

ELECTRICAL HAZARD:Only qualified personnel should perform installation procedures.

NOTICE

Enterasys Networks and its licensors reserve the right to make cha nges in specific ations and other in formatio n contain ed in this document without prior notice. The reader should in all cases consult Enterasys Networks to determine whether any such changes have been made.

The hardware, firmware, or software described in this manual is subject to change without notice. IN NO EVENT SHALL ENTERASYS NETWORKS AND ITS LICENSORS BE LIABLE FOR ANY INCIDENTAL,

INDIRECT, SPECIAL, OR CONSEQUENTIAL DAMAGES WHATSOEVER (INCLUDING BUT NOT LIMITED TO LOST PROFITS) ARISING OUT OF OR RELATED TO THIS MANUAL OR THE INFORMATION CONTAINED IN IT, EVEN IF ENTERASYS NETWORKS AND ITS LICENSORS HAVE BEEN ADVISED OF, KNOWN, OR SHOULD HAVE KNOWN, THE POSSIBILITY OF SUCH DAMAGES.

Enterasys Networks, Inc. 35 Industrial Way Rochester, NH 03866-5005

Enterasys Networks, Inc. is a subsidiary of Cabletron Systems, Inc.  2001 by Enterasys Networks, Inc.

Order Number:9033069-01February2001

LANVIEW is a registered trademark of Enterasys Networks or its licensors; SmartSwitch and Enterasys Networks are trademarks of Enterasys Networks or its licensors. SPE C TRUM is a registered trademark of Aprisma Management Technologies or its licensors.

All other product names mentioned in this manual may be trademarks or registered trademarks of their respective companies.

ENTERASYS NETWORKS, INC.

PROGRAM LICENSE AGREEMENT

BEFORE OPENING OR UTILIZING THE ENCLOSED PRODUCT,

CAREFULLY READ THIS LICENSE AGREEMENT.

This document is an agreement (“Agreement”) between You, the end user, and Enterasys Networks, Inc. (“Enterasys”) that sets forth your rights and obligations with respect to the Enterasys software program (“Program”) in the package. The Program may be contained in firmware, chips or other media. UTILIZING THE ENCLOSED PRODUCT, YOU ARE AGREEING TO BECOME BOUND BY THE TERMS OF THIS AGREEMENT, WHICH INCLUDES THE LICENSE AND THE LIMITATION OF WARRANTY AND DISCLAIMER OF LIABILITY. IF YOU DO NOT AGREE TO THE TERMS OF THIS AGREEMENT, RETURN THE UNOPENED PRODUCT TO ENTERASYS OR YOUR DEALER, IF ANY, WITHIN TEN (10) DAYS FOLLOWING THE DATE OF RECEIPT FOR A FULL REFUND.

IF YOU HAVE ANY QUESTIONS ABOUT THIS AGREEMENT, CONTACT ENTERASYS NETWORKS (603) 332-9400. Attn: Legal Department.

1. LICENSE. You have the right to use only the one (1) copy of the Program provided in this package subject to the terms and conditions of this License Agreement.

You may not copy, reproduce or transmit any part of the Program except as permitted by the Copyright Act of the

United States or as authorized in writing by Enterasys.

2. OTHER RESTRICTIONS. You may not reverse engineer, decompile, or disassemble the Program.

3. APPLICABLE LAW. This License Agreement shall be interpreted and governed under the laws and in the state

and federal courts of New Hampshire. You accept the personal jurisdiction and venue of the New Hampshire courts.

4. EXPORT REQUIREMENTS. You understand that Enterasys and its Affiliates are subject to regulation by agencies of the U.S. Government, including the U.S. Department of Commerce, which prohibit export or diversion of certain technical pro ducts to certain co untries, unless a licen se to export the p roduct is obta ined from the U.S. Go vernment or an exception from obtaining such license may be relied upon by the exporting party.

If the Program is exported from the United States pursuant to the License Exception CIV under the U.S. Export Administration Regulations, You agree that You are a civil end user of the Program and agree that You will use the Program for civil end uses only and not for milita ry purpose s .

If the Program is exported from the United States pursuant to the License Exception TSR under the U.S. Export Administration Regulations, in addition to the restriction on transfer set forth in Sections 1 or 2 of this Agreement, You agree not to (i) reexport or release the Program, the source code for the Program or technology to a national of a country in Country Groups D:1 or E:2 (Albania, Armenia, Azerbaijan, Belarus, Bulgaria, Cambodia, Cuba, Estonia, Georgia, Iraq, Kazakhstan, Kyrgyzstan, Laos, Latvia, Libya, Lithuania, Moldova, North Korea, the People’s Republic of China, Romania, Russia, Rwanda, Tajikistan, Turkmenistan, Ukraine, Uzbekistan, Vietnam, or such other countries as may be designated by the United States Government), (ii) export to Country Groups D:1 or E:2 (as defined herein) the direct product of the Program or t he te c hnolo g y, if such foreign produced dire c t p rod uc t is su bj ect to na tional security controls as identified on the U.S. Commerce Control List, or (iii) if the direct product of the technology is a complete plant or any major component of a plant, export to Country Groups D:1 or E:2 the direct product of the plant or a major component thereof, if such foreign produced direct product is subject to national security controls as identified on the U.S. Commerce Control List or is subject to State Department controls under the U.S. Munitions List.

5. UNITED STATES GOVERNMENT RESTRICTED RIGHTS. The enclosed Product (i) was developed solely

at private expense; (ii) contains “restricted computer software” submitted with restricted rights in accordance with section

52.227-19 (a) through (d) of the Commercial Computer Software-Restricted Rights Clause and its successors, and (iii) in all respects is proprietary data belonging to Enterasys and/or its suppliers. For Department of Defense units, the Product is considered commercial computer software in accordance with DFARS section 227.7202-3 and its successors, and use, duplication, or disclosure by the Government is subject to restrictions set forth herein.

6. EXCLUSION OF WARRANTY. Except as may be specifically provided by Enterasys in writing, Enterasys makes no warranty, expressed or implied, concerning the Program (including it s documentation and media).

ENTERASYS DISCLAIMS ALL WARRANTIES, OTHER THAN THOSE SUPPLIED TO YOU BY ENTERASYS IN WRITING, EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE, WITH RESPECT TO THE PROGRAM, THE ACCOMPANYING WRITTEN MATERIALS, AND ANY ACCOMPANYING HARDWARE.

7. NO LIABILITY FOR CONSEQUENTIAL DAMAGES. IN NO EVENT SHALL ENTERASYS OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER (INCLUDING, WITHOUT LIMITATION, DAMAGES FOR LOSS OF BUSINESS, PROFITS, BUSINESS INTERRUPTION, LOSS OF BUSINESS INFORMATION, SPECIAL, INCIDENTAL, CONSEQUENTIAL, OR RELIANCE DAMAGES, OR OTHER LOSS) ARISING OUT OF THE USE OR INABILITY TO USE THIS ENTERASYS PRODUCT, EVEN IF ENTERASYS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. BECAUSE SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES, OR IN THE DURATION OR LIMITATION OF IMPLIED WARRANTIES IN SOME INSTANCES, THE ABOVE LIMITATION AND EXCLUSIONS MAY NOT APPLY TO YOU.

Figures ...........................................................................................................................................xii

Tables.............................................................................................................................................xv

ABOUT THIS GUIDE

Using This guide ....................... ...... ....... ...... ....... ...... ....... ...... ......................................xvii

Structure of This Guide ................................................................................................xvii

Related Documents.......................................................................................................xix

Document Conventions.................................................................................................xix

Typographical and Keystroke Conventions....................................................................xx

INTRODUCTION

1.1 Overview.........................................................................................................1-1

1.1.1 The Management Agent .................................................................1-2

1.1.2 In-Band vs. Out-of-Band ................................. ....... ...... ....... ...... ......1-2

1.2 Navigating Local Management Screens .........................................................1-3

1.3 Local Management Requirements..................................................................1-3

1.4 Local Management Screen Elements.............................................................1-4

1.5 Local Management Keyboard Conventions ....................................................1-7

1.6 Getting Help ....................................................................................................1-8

LOCAL MANAGEMENT REQUIREMENTS

2.1 Management Terminal Setup..........................................................................2-1

2.1.1 Console Cable Connection.............................................................2-2

2.1.2 Management Terminal Setup Parameters......................................2-3

2.2 Telnet Connections .........................................................................................2-4

2.3 Monitoring an Uninterruptible Power Supply...................................................2-4

ACCESSING LOCAL MANAGEMENT

3.1 Navigating Local Management Screens .........................................................3-2

3.1.1 Selecting Local Management Menu Screen Items .........................3-4

3.1.2 Exiting Local Management Screens ...............................................3-4

3.1.3 Using the NEXT and PREVIOUS Commands ................................3-5

3.1.4 Using the CLEAR COUNTERS Command.....................................3-5

3.2 Password Screen......................................... ....... ...... ...... ....... ...... ....... ............3-6

3.3 Device Menu Screen.......................................................................................3-8

Contents v

3.4 Overview of Security Methods . ....... ...... ....... ...... ....... ...... ...... ....... ...... ...........3-10

3.4.1 Host Access Control Authentication (HACA) ................................3-10

3.5 Security Menu Screen.............. ....... ...... ....... ...... ....... ....................................3-13

3.6 Passwords Screen ........................................................................................3-15

3.6.1 Setting the Login Password..........................................................3-17

3.7 RADIUS Configuration Screen......................................................................3-17

3.7.1 Setting the Last Resort Authentication..........................................3-20

3.7.2 Setting the Local and Remote Servers .........................................3-20

DEVICE CONFIGURATION MENU SCREENS

4.1 Device Configuration Menu Screen ................................................................4-2

4.2 General Configuration Screen.........................................................................4-4

4.2.1 Setting the IP Address ....................................................................4-8

4.2.2 Setting the Subnet Mask.................................................................4-9

4.2.3 Setting the Default Gateway .........................................................4-10

4.2.4 Setting the TFTP Gateway IP Address.........................................4-11

4.2.5 Setting the Device Date ................................................................4-11

4.2.6 Setting the Device Time................................................................4-12

4.2.7 Entering a New Screen Refresh Time ..........................................4-13

4.2.8 Setting the Screen Lockout Time..................................................4-13

4.2.9 Setting the Operational Mode.......................................................4-14

4.2.10 Configuring the COM Port.............................................................4-15

4.2.10.1 Changing the COM Port Application .............................4-17

4.2.11 Clearing NVRAM...........................................................................4-17

4.2.12 Enabling/Disabling IP Fragmentati on.................... ....... ...... ....... ....4-18

4.3 SNMP Configuration Menu Screen...............................................................4-19

4.4 SNMP Community Names Configuration Screen .........................................4-21

4.4.1 Establishing Community Names...................................................4-23

4.5 SNMP Traps Configuration Screen...............................................................4-24

4.5.1 Configuring the Trap Table ...........................................................4-25

4.6 Access Control List Screen...........................................................................4-26

4.6.1 Entering IP Addresses ..................................................................4-29

4.6.2 Enable/Disable ACL......................................................................4-29

4.7 System Resources Information Screen.........................................................4-30

4.7.1 Setting the Reset Peak Switch Utilization.....................................4-31

4.8 FLASH Download Configuration Screen.......................................................4-32

4.8.1 Image File Download Using Runtime............................................4-36

4.8.2 Configuration File Download Using TFTP.....................................4-37

4.8.3 Configuration File Upload Using TFTP .........................................4-38

vi Contents

PORT CONFIGURATION MENU SCREENS

5.1 Port Configuration Menu Screen.....................................................................5-1

5.2 Ethernet Interface Configuration Screen.........................................................5-3

5.3 Ethernet Port Configuration Screen................................................................5-7

5.3.1 Selecting Settings .........................................................................5-11

5.3.2 Setting the Advertised Ability........................................................5-11

5.4 HSIM/VHSIM Configuration Screen..............................................................5-12

5.5 Redirect Configuration Menu Screen............................................................5-12

5.6 Port Redirect Configuration Screen ..............................................................5-14

5.6.1 Changing Source and Destination Ports.......................................5-16

5.7 VLAN Redirect Configuration Screen............................................................5-18

5.7.1 Changing Source VLAN and Destination Ports ............................5-20

5.8 Broadcast Suppression Configuration Screen ..............................................5-22

5.8.1 Setting the Threshold....................................................................5-23

5.8.2 Setting the Reset Peak .................................................................5-24

802.1 CONFIGURATION MENU SCREENS

6.1 802.1 Configuration Menu Screen ..................................................................6-2

6.2 Switch Configuration Screen...........................................................................6-4

6.2.1 Setting the STA...............................................................................6-7

6.2.2 Setting the Age Time Field..............................................................6-7

6.2.3 Setting (Enabling or Disabling) the Port Status...............................6-7

6.3 802.1 Priority Configuration Menu Screen ......................................................6-8

6.4 Port Priority Configuration Screen.................................................................6-10

6.4.1 Setting Switch Port Priority Port-by-Port.......................................6-12

6.4.2 Setting Switch Port Priority on All Ports........................................6-12

6.5 Advanced Port Priority Configuration Screen................................................6-13

6.5.1 Setting the TX Mapping Queues...................................................6-17

6.5.2 Setting the TX Regeneration Priorities..........................................6-17

6.5.3 Setting the Default Priority ............................................................6-17

6.6 Transmit Queues Configuration Screen........................................................6-18

6.6.1 Setting the Current Queueing Mode.............................................6-21

6.7 Priority Classification Configuration Screen..................................................6-22

6.7.1 Classification Precede nc e Rules ........................... ...... ....... ..........6 -32

6.7.2 About the IP Rewrite Function ............ ...... ...... ..............................6-36

6.7.3 Displaying the Current PID/Classification Assignments................6-36

6.7.4 Assigning a Classification to a PID ...............................................6-37

6.7.5 Deleting PID/Classification/Description Line Items.......................6-38

Contents vii

6.8 Protocol Port Configuration Screen...............................................................6-38

6.8.1 Assigning Ports to a PID/Classification.........................................6-40

6.9 Example, Prioritizing Traffic According to Classification Rule.......................6-41

6.9.1 Solving the Problem......................................................................6-41

6.10 Rate Limiting Configuration Screen ..............................................................6-43

6.10.1 Configuring a Port.........................................................................6-47

6.10.2 Changing/Deleting Port Line Items...............................................6-48

6.10.3 More About Rate Limiting .............................................................6-49

802.1Q VLAN CONFIGURATION MENU SCREENS

7.1 Summary of VLAN Local Management...........................................................7-2

7.1.1 Preparing for VLAN Configuration ..................................................7-2

7.2 802.1Q VLAN Configuration Menu Screen .....................................................7-3

7.3 Device VLAN Configuration Screen................................................................7-6

7.3.1 Defining a VLAN .............................................................................7-8

7.3.2 Changing the VLAN to FID Association..........................................7-9

7.3.3 Renaming a VLAN ..........................................................................7-9

7.3.4 Deleting a VLAN ...........................................................................7-10

7.3.5 Enabling VLANs............................................................................7-10

7.3.6 Disabling VLANs...........................................................................7-10

7.3.7 Changing the Forwarding Mode....................................................7-11

7.3.8 Paging Through the VLAN List .....................................................7-11

7.4 Port Assignment Configuration Screen.........................................................7-11

7.4.1 Changing the Port Mode...............................................................7-13

7.4.2 Assigning a VLAN ID ....................................................................7-14

7.4.3 Paging Through the Port List ........................................................7-14

7.5 Port Filtering Configuration Screen...............................................................7-15

7.5.1 Displaying VLAN IDs Associated with a Port................................7-16

7.5.2 Selecting the Type of Filtering for a Port.......................................7-17

7.6 VLAN Forwarding Configuration Screen.......................................................7-18

7.6.1 Viewing Current VLAN Ports.........................................................7-19

7.6.2 Paging Through VLAN Forwarding List Entries ............................7-20

7.6.3 Adding Forwarding List Entries.....................................................7-20

7.6.4 Deleting Forwarding List Entries...................................................7-20

7.6.5 Changing the Frame Format.........................................................7-21

7.7 VLAN Classification Configuration Screen....................................................7-21

7.7.1 Classification Precedence Rules ..................................................7-28

7.7.2 Displaying the Current Classification Rule Assignments ..............7-31

7.7.3 Assigning a Classification to a VID ...............................................7-32

7.7.4 Deleting Line Items .......................................................................7-33

7.8 Protocol Port Configuration Screen...............................................................7-34

7.8.1 Assigning Ports to a VID/Classification.........................................7-36

viii Contents

GARP CONFIGURATION MENU SCREENS

8.1 GARP Configuration Menu Screen.................................................................8-2

8.2 GARP Configuration Screen ...........................................................................8-4

8.2.1 Setting a Port to Operate Using GMRP or GVRP...........................8-7

8.2.2 Setting All Ports on the Switch........................................................8-7

8.3 GMRP Configuration Screen...........................................................................8-8

8.3.1 Setting a Mode, Port-by-Port ..........................................................8-9

8.3.2 Setting a Mode for All Ports..........................................................8-10

LAYER 3 EXTENSIONS MENU SCREENS

9.1 Layer 3 Extensions Menu Screen...................................................................9-1

9.2 IGMP/VLAN Configuration Screen.. ....... ...... ....... ...... ...... ................................9-3

9.3 IGMP/VLAN Configuration Procedure............................. ....... ...... ...................9-7

DEVICE STATISTICS MENU SCREENS

10.1 Device Statistics Menu Screen .....................................................................10-2

10.2 Switch Statistics Screen................................................................................10-4

10.3 Interface Statistics Screen ............................................................................10-6

10.3.1 Displaying Interface Statistics.......................................................10-8

10.4 RMON Statistics Screen ...............................................................................10-9

10.4.1 Displaying RMON Statistics........................................................10-12

NETWORK TOOLS SCREENS

11.1 Network Tools ...............................................................................................11-1

11.2 Built-in Commands........................................................................................11-4

11.3 Example 7, Dynamic Egress and Aging Time.............................................11-24

11.4 Example 8, Using Dynamic Egress to Control Traffic .................................11-25

11.5 Special Commands.....................................................................................11-26

VLAN OPERATION AND NETWORK APPLICATIONS

12.1 Defining VLANs.............................................................................................12-1

12.2 Types of VLANs ............................................................................................12-3

12.2.1 802.1Q VLANs..............................................................................12-3

12.2.2 SecureFast VLANs .......................................................................12-3

12.2.3 Other VLAN Strategies .................................................................12-4

12.3 Benefits and Restrictions ..............................................................................12-4

12.4 VLAN Terms................. ...... ....... ...... ....... ...... ....... ...... ...... ....... ...... .................12-4

12.5 VLAN Operation........................................... ....... ...... ...... ....... ...... ....... ...... ....12-6

12.5.1 Description.......................................... ...... ....................................12-6

12.5.2 VLAN Components ......... ....... ...... .................................................1 2-6

Contents ix

12.6 Configuration Process...................................................................................12-7

12.6.1 Defining a VLAN ...........................................................................12-7

12.6.2 Classifying Frames to a VLAN......................................................12-7

12.6.3 Customizing the VLAN Forwarding List........................................12-7

12.7 VLAN Switch Operation ................................................................................12-8

12.7.1 Receiving Frames from VLAN Ports.............................................12-9

12.7.2 Forwarding Decisions ...................................................................12-9

12.7.2.1 Broadcasts, Multicasts, and Unknown Unicasts............12-9

12.7.2.2 Known Unicasts...........................................................12-10

12.8 VLAN Configuration ....................................................................................12-10

12.8.1 Managing the Switch....... ...... ....... ...... ....... ...... ............................12-10

12.8.2 Switch Without VLANs................................................................12-11

12.8.3 Switch with VLANs......................................................................12-11

12.9 Summary of VLAN Local Management.......................................................12-14

12.9.1 Preparing for VLAN Configuration ..............................................12-14

12.10 Quick VLAN Walkthrough ...........................................................................12-15

12.11 Examples ....................................................................................................12-21

12.12 Example 1, Single Switch Operation...........................................................12-21

12.12.1 Solving the Problem....................................................................12-22

12.12.2 Frame Handling ..........................................................................12-23

12.13 Example 2, VLANs Across Multiple Switches .............................................12-24

12.13.1 Solving the Problem....................................................................12-26

12.13.2 Frame Handling ..........................................................................12-28

12.14 Example 3, 1D Trunk Connection to 802.1Q VLAN Network......................12-31

12.14.1 Solving the Problem....................................................................12-33

12.14.2 Frame Handling ..........................................................................12-34

12.15 Example 4, Isolating Network Traffic According to Protocol .......................12-37

12.15.1 Solving the Problem....................................................................12-39

12.16 Example 5, Filtering Traffic According to a Layer 4 Classification Rule......12-42

12.16.1 Solving the Problem....................................................................12-42

12.17 Example 6, Securing Sensitive Information According to Subnet...............12-43

12.17.1 Solving the Problem....................................................................12-44

12.18 Example 7, Using Dynamic Egress to Control Traffic .................................12-44

12.19 Example 8, Locking a MAC Address to a Port Using Classification Rules .12-46

12.19.1 Solving the Problem....................................................................12-47

x Contents

GENERIC ATTRIBUTE REGISTRATION PROTOCOL (GARP)

A.1 GARP Switch Operation..................................................................................A-1

A.1.1 GARP VLAN Registration Protocol (GVRP) ...................................A-1

A.1.2 GARP Multicast Registration Protocol (GMRP)..............................A-3

INDEX

ABOUT IGMP

B.1 IGMP Overview...............................................................................................B-1

B.2 Supported Features and Functions.................................................................B-2

B.3 Detecting Multicast Routers............................................................................B-3

Contents xi

Figures

Figure Page

1-1 Example of a Local Management Screen....................................................................... 1-4

2-1 Management Terminal Connection................................................................................. 2-2

2-2 Uninterruptible Power Supply (UPS) Connection ........................................................... 2-5

3-1 802.1Q Switching Mode, LM Screen Hierarchy.............................................................. 3-3

3-2 SecureFast VLAN Mode, LM Screen Hierarchy ............................................................. 3-4

3-3 Local Management Password Screen............................................................................ 3-6

3-4 Device Menu Screen....................................................................................................... 3-8

3-5 Security Menu Screen................................................................................................... 3-14

3-6 Module Login Passwords Screen ................................................................................. 3-15

3-7 Radius Configuration Screen........................................................................................ 3-18

4-1 Device Configuration Menu Screen ................................................................................ 4-2

4-2 General Confi gu ratio n Scree n ............ ...... ....... ...... ............................................. ............ 4-5

4-3 Configuration Warning Screen, IP Address.................................................................... 4-9

4-4 Configuration Warning Screen, Subnet Mask............................................................... 4-10

4-5 Configuration Warning, Operational Mode.................................................................... 4-14

4-6 COM Port Warning .... ...... ....... ...... ....... ...... ....... ...... ............................................. .......... 4-16

4-7 Clear NVRAM Warning................................................................................................. 4-18

4-8 SNMP Configuration Menu Screen............................................................................... 4-19

4-9 SNMP Community Names Configuration Screen......................................................... 4-21

4-10 SNMP Traps Configuration Screen............................................................................... 4-24

4-11 Access Control List Screen........................................................................................... 4-27

4-12 System Resources Information Screen ........................................................................ 4-30

4-13 Flash Download Configuration Screen ......................................................................... 4-33

5-1 Port Configuration Menu Screen..................................................................................... 5-2

5-2 Ethernet Interface Configuration Screen......................................................................... 5-4

5-3 Ethernet Port Configuration Screen................................................................................ 5-7

5-4 Redirect Configuration Menu Screen............................................................................ 5-13

5-5 Port Redirect Configuration Screen .............................................................................. 5-15

5-6 VLAN Redirect Configuration Screen ........................................................................... 5-19

5-7 Broadcast Suppression Configuration Screen.............................................................. 5-22

6-1 802.1 Conf igu ra tio n Menu Scr een ...................................... ....... ...... ...... ....... .................. 6-2

6-2 Switch Confi gu ratio n Scree n.. ...... ....... ...... ....... ...... ....... ...... ....... ...... ...... ......................... 6-5

6-3 802.1 Priority Configuration Menu Screen...................................................................... 6-9

6-4 Port Priority Configuration Screen ................................................................................ 6-11

6-5 Advanc ed Po rt Priority Config urati on Screen .. ...... ....... ...... ....... ...... ...... ....... ................ 6-14

xii

Figure Page

6-6 Transmit Queues Configuration Screen........................................................................6-19

6-7 Priority Classification Configuration Screen..................................................................6-23

6-8 Datagram, Layer 2 and Layer 3.....................................................................................6-36

6-9 Protocol Port Configuration Screen...............................................................................6-39

6-10 Prioritizing Network Traffic According to Classification Rule.........................................6-41

6-11 Rate Limiting Configuration Screen...............................................................................6-44

7-1 802.1Q VLAN Screen Hierarchy .....................................................................................7-2

7-2 802.1Q VLAN Configuration Menu Screen .....................................................................7-4

7-3 Device VLAN Configuration Screen ................................................................................7-6

7-4 Port Assignment Configuration Screen.........................................................................7-12

7-5 Port Filtering Configuration Screen ...............................................................................7-15

7-6 VLAN Forwarding Configuration Screen .......................................................................7-18

7-7 VLAN Classification Configuration Screen....................................................................7-22

7-8 Protocol Port Configuration Screen...............................................................................7-35

8-1 GARP Configuration Menu Screen .................................................................................8-2

8-2 GARP Configuration Screen ...........................................................................................8-4

8-3 GMRP Configuration Screen...........................................................................................8-8

9-1 Layer 3 Extensions Menu Screen ...................................................................................9-2

9-2 IGMP/VL AN Confi gu ratio n Screen.................. ....... ...... ....... ...... ...... ....... ...... ....... ............9-4

10-1 Device Statistics Menu Screen......................................................................................10-2

10-2 Switch Statistics Screen................................................................................................10-4

10-3 Interface Statistics Screen.............................................................................................10-6

10-4 RMON Statistics Screen................................................................................................10-9

11-1 Network Tools Help Screen...........................................................................................11-2

11-2 Exam ple 7, Dynamic Egre ss Applic ati on............................. ...... ...... ....... ...... ....... ...... ..11-25

12-1 Example of a VLAN.......................................................................................................12-2

12-2 View from Inside the Switch ..........................................................................................12-8

12-3 Switch Management with Only Default VLAN .............................................................12-11

12-4 Switch Management with VLANs ................................................................................12-12

12-5 802.1Q VLAN Screen Hierarchy .................................................................................12-14

12-6 Walkthrough Stage One, Static VLAN Configuration Screen......................................12-16

12-7 Walkthrough Stage Two,Port Assignment Configuration Screen................................12-17

12-8 Walkthrough Stage Three, Test VLAN Assigned to Port 3..........................................12-18

12-9 Walkthrough Stage Four, Activating Test VLAN .........................................................12-19

12-10 TEST VLAN Enabled...................................................................................................12-19

12-11 Final Walkthrough Stage, Display Port 10 VLAN List and Set Its Filtering..................12-21

12-12 Example 1, Single Switch Operation...........................................................................12-22

12-13 Switch Configured for VLANs......................................................................................12-23

12-14 Example 2, VLANs Across Multiple Switches .............................................................12-25

12-15 Bridge 1 Broadcasts Frames.......................................................................................12-28

12-16 Transmitting to Switch 4..............................................................................................12-29

12-17 Transmitting to Bridge 4..............................................................................................12-30

xiii

Figure Page

12-18 Example 3, 1D Trunk Connection to 802.1Q VLAN Network ......................................12-32

12-19 Bridge 1 Broadcasts Frames .......................................................................................12-35

12-20 Switch 2 Forwards to 1Q Trunk ...................................................................................12-35

12-21 Switch 1 Forwards to 1D Trunk ...................................................................................12-36

12-22 Example 4, Isolating Traffic According to Protocol ......................................................12-38

12-23 Example 5, Filtering Traffic According to a Classification............................................12-42

12-24 Example 6, Securing Traffic to One Subnet ................................................................12-43

12-25 Example 7, Dynamic Egress Application.....................................................................12-45

12-26 Locking Ports According to Classification Rule ...........................................................12-46

A-1 Example of VLAN Propagation via GVRP ...................................................................... A-2

xiv

Tables

Table Page

1-1 Event Messages...........................................................................................................1-5

1-2 Keyboard Conventions .................................................................................................1-7

2-1 VT Terminal Setup........................................................................................................2-3

3-1 Device Menu Screen Menu Item Descriptions .............................................................3-9

3-2 Security Menu Screen Descriptions ...........................................................................3-14

3-3 Module Login Passwords Screen Field Descriptions .................................................3-16

3-4 Radius Configuration Screen Field Descriptions ........................................................3-18

4-1 Device Configuration Menu Screen Menu Item Descriptions.......................................4-3

4-2 General Configuration Screen Field Descriptions ........................................................4-5

4-3 COM Port Application Settings...................................................................................4-17

4-4 SNMP Configuration Menu Screen Menu Item Descriptions......................................4-20

4-5 SNMP Community Names Configuration Screen Field Descriptions .........................4-22

4-6 SNMP Traps Configuration Screen Field Descriptions...............................................4-25

4-7 Access Control List Screen Field Descriptions...........................................................4-28

4-8 System Resources Information Screen Field Descriptions ........................................4-31

4-9 Flash Download Configuration Screen Field Descriptions .........................................4-34

5-1 Port Configuration Menu Screen Menu Item Descriptions ..........................................5-2

5-2 Ethernet Interface Configuration Screen Field Descriptions ........................................5-4

5-3 Ethernet Port Configuration Screen Field Descriptions ................................................5-8

5-4 Redirect Configuration Menu Screen Menu Item Descriptions...................................5-13

5-5 Port Redirect Configuration Screen Field Descriptions ..............................................5-15

5-6 VLAN Redirect Configuration Screen Field Descriptions ...........................................5-19

5-7 Broadcast Suppression Configuration Screen Field Descriptions..............................5-23

6-1 802.1 Configuration Menu Screen Menu Item Descriptions.........................................6-3

6-2 Switch Configuration Screen Field Descriptions...........................................................6-5

6-3 802.1 Priority Configuration Menu Screen Menu Item Descriptions.............................6-9

6-4 Port Priority Configuration Screen Field Descriptions ................................................6-11

6-5 Advanced Port Priority Configuration Screen Field Descriptions ...............................6-15

6-6 Transmit Queues Configuration Screen Field Descriptions........................................6-20

6-7 Priority Classification Configuration Screen Field Descriptions .................................6-23

6-8 Classification List........................................................................................................6-25

6-9 Classification Precedence ..........................................................................................6-33

6-10 Protocol Port Configuration Screen Field Descriptions ..............................................6-39

6-11 Rate Limiting Configuration Screen Field Descriptions ..............................................6-44

7-1 802.1Q VLAN Configuration Menu Screen Menu Item Descriptions............................7-5

Tables xv

Table Page

7-2 Device VLAN Configuration Screen Field Descriptions ................................................7-7

7-3 Port Assignment Configuration Screen Field Descriptions .........................................7-12

7-4 Port Filtering Configuration Screen Field Descriptions ...............................................7-16

7-5 VLAN Forwarding Configuration Screen Field Descriptions .......................................7-19

7-6 VLAN Classification Configuration Screen Field Descriptions....................................7-22

7-7 Classification List ................ ...... ....... ...... ....... ...... ............................................. ...........7-24

7-8 Classification Precede nc e...................... ....... ...... ....... ...... ....... ....................................7-2 9

7-9 Protocol Port Configuration Screen Field Descriptions...............................................7-35

8-1 GARP Configuration Menu Screen Menu Item Descriptions ........................................8-3

8-2 GARP Configuration Screen Field Descriptions ...........................................................8-5

8-3 GMRP Configuration Screen Field Descriptions...........................................................8-9

9-1 Layer 3 Extensions Menu Screen Menu Item Descriptions .........................................9-2

9-2 IGMP/VLAN Configuration Screen Field Descriptions ..................................................9-5

10-1 Device Statistics Menu Screen Menu Item Descriptions ............................................10-3

10-2 Switch Statistics Screen Field Descriptions................................................................10-5

10-3 Interface Statistics Screen Field Descriptions.............................................................10-7

10-4 RMON Statistics Screen Field Descriptions..............................................................10-10

xvi Tables

About This Guide

Welcome to the Cabletron Sy stems SmartSwitch 2200 Series Standalone Switches (2E25x and 2H25x) Local Management User’s Guide for SmartSwitch devices with firm ware revision

4.08.11 and higher. This manual explains how to access and use Cabletron Systems Local Management for the SmartSwitch device. Local Management is a series of screens that enable the user to monitor and control the SmartSwitch device and its attached segments.

Important Notice

Depending on the firmware version used in the SmartSwitch device, some features described in this document may not be supported. Refer to the Release Notes shipped with the SmartSwitch device to determine which features are supported.

USING THIS GUIDE

A general working knowledge of basic network operations and an understanding of management applications is helpful prior to using Local Management.

This manual describes how to do the following:

• Access the Local Management application

• Identify and operate the types of fields used by Local Management

• Navigate through Local Management fields and menus

• Use Local Management screens to perform management operations

• Establish and manage Virtual Local Area Networks (VLANs)

STRUCTURE OF THIS GUIDE

The guide is organized as follows: Chapter 1, Introduction, provides an overview of the ta sks tha t may be accompl ished usi ng Local

Management (LM), and an introduction to LM screen navigation, in-band and out-of-band network management, screen elements, and LM keyboard conventions.

Chapter 2, Local Management Requirements, provides the setup requirements for accessing Local Management, the instructions to configure and connect a management terminal to the SmartSwitch device, and the instructions for connecting the SmartSwitch device to an Uninterruptible Power Supply (UPS) to monitor the UPS power status.

About This Guide xvii

Structure of This Guide

Chapter 3, Accessing Local Management, describes how to access the Main Menu screen and navigate the Local Management screens. This chapter also describes the Security screens that allow you to configure the level of access security for the device.

Chapter 4, Device Configuration Menu Screens, describes the Device Configuration Menu screen and the screens that can be selected from it. These screens are used to control access to the SmartSwitch device by assigning community names, configure the SmartSwitch device to send SNMP trap messages to multiple network manag ement stations, download a new firmware image to the SmartSwitch device, access system resource information, provide access t o men u s creens to configure ports, and configure the SmartSwitch device for 802.1 and layer 3 operations.

Chapter 5, Port Configur ation Menu Scre ens, introdu ces and de scrib es ho w to use the s creens to configure the ports for various operations.

Chapter 6, 802.1 Configuration Menu Screens, introduces and describes how to use the screens to customize the operation of the SmartSwitch device in the network; access the VLAN Local Management screens; and se t port priori ties, por t transmit que ues, port pr otocol pr iorities, a nd port traffic rate limiting.

Chapter 7, 802.1Q VLAN Configuration Menu Screens, int roduces and describes how to us e the screens to create VLANs, select the mode of operation for each port, filter frames according to VLAN, establish VLAN forwarding lists, route frames according to VLAN ID, and display the current ports and port types associated with a VLAN and protocol. VLAN classification and classification rules are also discussed.

Chapter 8, GARP Configuration Menu Scr ee ns, i ntroduce s and des cribe s ho w to use the scree ns to set each port to operat e as a GVRP- and/or GMRP-aware port, and also apply one of four modes of operation according to, or regardless of, the multicast address registration.

Chapter 9, Layer 3 Extensions Menu Screens, introduces and describes how to enable or disable IGMP (Internet Group Management Protocol, RFC 2236) on selected VLANs, or globally on all VLANs that are available.

Chapter 10, Device Statistics Menu Screens, introduces and describes how to use the statistics screens to gather statistics about the switch, interfaces, RMON, and HSIM/VHSIM and, if the device is a repeater, repeater statistics.

Chapter 11, Network Tools Screens, describes how to access and use the Network Tool screens. This chapter also includes examples for each command.

Chapter 12, VLAN Operation and Network Applications, introduces VLANs, describes how they operate, and how to configure them using the Local Management screens described in Chapter 7. Examples are als o provi ded to sho w ho w VLANs are con fi gured to sol ve a pr oblem and how the VLAN frames travel through the network.

xviii About This Guide

DOCUMENT CONVENTIONS

The guide uses the following conventions:

NOTE: Calls the reader’s attention to any item of information that may be of special importance.

TIP: Conveys helpful hints concerning procedures or actions.

CAUTION: Contains information essential to avoid damage to the equipment.

About This Guide xix

Typographical and Keystroke Conventions

TYPOGRAPHICAL AND KEYSTROKE CONVENTIONS

bold type Bold type can denote either a user input or a highlighted screen selection. RETURN Indicates either the ENTER or RETURN key, depending on your keyboard. ESC Indicates the keyboard Escape key. SPACE bar Indicates the keyboard space bar key. BACKSPACE Indicates the keyboard backspace key. arrow keys Refers to the four keyboard arrow keys. [-] Indicates the keyboard – key.

DEL Indicates the keyboard delete key. italic type Italic type indicates complete document titles. n.nn A period in numerals signals the decimal point indicator (e.g., 1.75 equals

one and three fourths). Or, periods used in numerals signal the decimal point in Dotted Decimal Notation (DDN) (e.g., 000.000.000.000 in an IP address).

x A lowercase italic x indicates the generic use of a letter (e.g., xxx indicates

any combination of three alphabetic characters).

n A lowercase italic n indicates the generic use of a number (e.g., 19nn

indicates a four-digit number in which the last two digits are unknown).

[ ] In the Local Management screens, the square brackets indicate that a value

may be selected. In the format descriptions in the Network Tools section, required arguments are enclosed in square brackets, [ ].

< > In the format descriptions in the Network Tools section, optional arguments

are enclosed in angle brackets, < >.

xx About This Guide

Introduction

This chapter provid es an ov ervie w of the tasks that may be ac complished usin g Local Management (LM), and an introduction to LM screen navigation, in-band and out-of-band network management, screen elements, and LM keyboard conventions.

Important Notice

1.1 OVERVIEW

Local Management is a management tool that allows a network manager to perform the following tasks:

• Select the operational mode of the device.

• Assign IP address and subnet mask.

• Select a def au lt gateway.

• Control access by establishing community names.

• Download a new firmware image.

• Upload or download a configuration file to or from a TFTP server.

• Designate which Network Management Workstations receive SNMP traps from the device.

• View switch, interface, and RMON statistics.

• Assign ports to operate in the standard or full duplex mode.

• Configure ports to perform load sharing using SmartTrunking. Refer to the SmartTrunk User’s

Guide for details.

• Control the number of receive broadcasts that are switched to the other interfaces.

Introduction 1-1

Overview

• Set flow control on a port-by-port basis.

• Configure ports to prioritize incoming frames.

• Clear NVRAM.

• Set 802.1Q VLAN memberships and port configurations.

• Redirect f rames accor ding to por t or VLAN and tra nsmit them on a presele cted dest ination p ort.

• T r ansmit frames on preselected destination port s according to protocol and priority or protocol

and VLAN.

• Conf i gure the swi tc h to ope rate as a Generic Attribute Registration Protocol (GARP) device to

dynamically create VLANs across a switched network.

• Conf igure the devic e to cont rol the ra te of tra ff ic from/ to the netw ork on a per port/p riority ba sis.

• Configure an optional HSIM or VHSIM installed in the device.

• Conf igure the de vice to dynamically swi tch frames according t o a characterist ic rule and VLAN.

• Configure ports on the SmartSwitch device as Router Redundancy Protocol (VRRP) ports.

• Provide additional security by configuring a physical port to lock on an attached device

according to a classification rule so that no other device can be used on that port.

There are three ways to access Local Management:

• Locally using a VT type terminal connected to the COM port.

• Remotely using a VT type terminal connected through a modem.

• In-band through a Telnet connection.

1.1.1 The Management Agent

The management agent is a process within the SmartSwitch device that collects statistical information (e.g., frames received, errors detected) about the operational performance of the managed network. Local Management communicates with the management agent for the purpose of viewing statist ics or iss uing man agement commands . Local Management pro vide s a wid e rang e of screens used to monitor and configure the SmartSwitch device.

1.1.2 In-Band vs. Out-of-Band

Network management systems are often classified as either in-band or out-of-band. In-band network management passes data along the same medium (cables, frequencies) used by all other stations on the network.

1-2 Introduction

Navigating Local Management Screens

Out-of-band network management passes data along a medium that is entirely separate from the common data carrier of the netw ork, for e xample, a cable connectio n between a dumb terminal and a SmartSwitch device COM port. Cabletron Systems Local Management is an out-of-band network management system.

A device connected out-of-band to the management agent is not connected to the LAN. This type of connection allows you to communicate with a network device even when that device is unable to communi cate throug h the network , for example, at the time of installation.

1.2 NAVIGATING LOCAL MANAGEMENT SCREENS

To navigate within a Local Management screen, use the arrow keys of the terminal or the workstation pr ovidi ng terminal e mulation s ervices. The Loc al Management screen curs or respond s to the LEFT, RIGHT, UP, and DOWN arrow keys. Each time you press an arrow key, the Local Management screen cursor moves to the next available field in the direction of the arrow key.

The Local Management screen cursor only moves to fields that can be selected or used for input. This means that the cursor jumps over display fields and empty lines on the Local Management screen.

The Local Management screen cursor provides wrap-around operation. This means that a cursor

located at the edge of a screen, when moved in the direction of that edge, “wraps around” to the outermost selectable item on the opposite side of the screen which is on the same line or column.

1.3 LOCAL MANAGEM ENT REQUIREMEN TS

The SmartSwitch device provides one communication port, labeled COM, which supports a management terminal connection. To access Local Management, connect one of the following systems to the COM port:

• Digital Equipment Corporation VT series terminal.

• VT type terminal running emulation programs for the Digital Equipment Corporation

VT series.

• IBM or compatible PC running a VT series emulation software package. You can also access Local Management using a Telnet connection through one of the network

ports of the SmartSwitch device.

NOTE: For details on how to connect a console to the SmartSwitch, the setup parameters for the console, or how to make a telnet connection, refer to Chapter 2.

Introduction 1-3

Local Management Screen Elements

1.4 LOCAL MANAGEMENT SCREEN ELEMENTS

There are six types of screens used in Local Management: password, menu, statistics, configuration, status, and warning screens. Each type of screen can consist of one to five basic elements, or fields. Figure 1-1 shows an example of the fields in a screen. A description of each field follows the figur e.

NOTE: The following definitions apply to most of the Local Management screens. Exceptions to these definitions may occur in the Local Management screens of some devices.

Figure 1-1 Example of a Local Management Screen

Event Message Field

Event Message Line

MAC Address:

IP Address:

Subnet Mask:

Default Gateway:

TFTP Gateway IP Addr:

Operational Mode: [802.1Q SWITCHING]

Clear NVRAM [NO]

IP Fragmentation [ENABLED]

Display Fields

Heading

XXXX-XX LOCAL MANAGEMENT

General Configuration

00-00-ID-00-00-00

0.0.0.0

255.255.0.0

NONE DEFINED

0.0.0.0

25042_14w

EXIT

Display Field

Input Fields

Firmware Revision: XX.XX.XX BOOTPROM Revision: XX.XX.XX

Device Date:

Device Time:

Screen Refresh Time:

Screen Lockout Time:

Device Uptime XX D XX H XX M

10/11/97

14:23:00

30 sec.

15 min.

RETURNSAVE

See Note

Selection Field

Note:

This shows the location of the cut away that is used in most of the screen graphics in this document. The top portion of the screen is cut away to eliminate repeating the same information in each graphic.The screen title is contained in its figure title.

1-4 Introduction

Command Fields

25042_14w

Local Management Screen Elements

The following list explains each of the Local Management fields:

Event Message Field

This field briefly displays messages that indicate if a Local Management procedure was executed correctly or incorrectly, that changes were saved or not saved to Non-Volatile Random Access Memory (NVRAM), or that a user did not have access privileges to an application.

Table 1-1 describes the most common event messages. Event messages related to specific Local

Management applications are described with those applications throughout this manual.

Table 1-1 Event Messages

Message What it Means

SAVED OK One or more fields were modified, and saved to NVRAM. NOT

SAVED--PRESS SAVE TO KEEP CHANGES

NOTHING TO SAVE

Attempting to exit the LM screen after one or more fiel ds were modified, but not saved to NVRAM.

The SAVE command was e x ecut ed, b ut nothi ng was sa v ed to NVRAM because there were no configuration changes since the data was last saved.

Heading Field

Indicates the model of the device.

Display Fields

Display fields cannot be edited. These fields may display information that never changes, or information that may change as a result of Local Management operations, user selections, or network monitoring information. In the sc reens shown in this guide, the cha racters in the display fields are in plain type (not bold). In the field description, the field is identified as being

“read-only”.

Introduction 1-5

Local Management Screen Elements

Input Fields

Input Fields require the entry of keyboard characters. IP addresses, subnet mask, default gateway and device time are examples of input fields. In the screens shown in this guide, the characters in the input fields are in bold type. In the field description, the field is identified as being

“modifiable”.

Selection Fields

Selection fields provide a series of possible values. Only applicable values appear in a selection field. In the screens shown in this guide, the selections display within brackets and are in bold type. In the f ield descript ion, t he f ield is identif ied as bei ng eithe r “selec table” wh en there are mor e than two possible values, or “toggle” when there are only two possible values.

Command Fields

Command fields (located at the bottom of Local Management screens) are used to exit Local Management screens, save Local Management entries, or navigate to another display of the same screen. In the screens shown in this guide, the characters in t his field are all upper ca se and in bold type. In the field description, the field is identified as being a “command” field.

1-6 Introduction

Local Management Keyboard Conventions

1.5 LOCAL MANAGEMENT KEYBOARD CONVENTIONS

All key names appear as capital l etters i n this man ual. Table 1-2 explains the key board c on v ention s and the key functions that are used.

Table 1-2 Keyboard Conventions

Key Function

ENTER Key RETURN Key

These are selection keys that perform the same Local Management

function. For e xample, “Press ENTER” means t hat you can press ei ther ENTER or RETURN, unless this manual specifically instructs you otherwise.

ESCAPE (ESC) Key This key allows an escape from a Local Management screen without

saving changes. For example, “Press ESC twice” means the ESC key must be pressed quickly two times.

SPACE Bar BACKSPACE Key

These keys cycle through selections in s ome Loc al Mana gement f iel ds. Use the SPACE bar to cycle forward through selections and use the BACKSPACE key to cycle backward through selections.

Arrow Keys These are navigation keys. Use the UP-ARROW, DOWN-ARROW,

LEFT-ARROW, and RIGHT-ARROW keys to move the screen cursor. For example, “Use the arrow keys” means to press whichever arrow key moves the cursor to the desired field on the Local Management screen.

DEL Key The DEL (Delete) key removes characters from a Local Management

field. For example, “Press DEL” means to press the Delete key.

Introduction 1-7

1.6 GETTING HELP

For additional support related to the device or this document, contact Enterasys Networks using one of the following methods:

World Wide Web http://www.enterasys.com/ Phone (603) 332-9400 Internet mail support@enterasys.com FTP ftp://ftp.enterasys.com

To send comments or suggestions concerning this document, contact the Technical Writing Department via the following email address: TechWriting@enterasys.com

Make sure to include the document Part Number in the email message.

Before contacting Enterasys Networks, have the following information ready:

• Your Enterasys Networks service contract number

• A description of the failure

• A description of any action(s) already taken to resolve the problem (e.g., changing mode

switches, rebooting the unit, etc.)

• The serial and revision numbers of all involved Enterasys Networks products in the network

• A description of your network environment (layout, cable type, etc.)

• Network load and frame size at the time of trouble (if known)

• The device history (i.e., have you returned the device before, is this a recurring problem, etc.)

• Any previous Return Material Authorization (RMA ) numbers

+ 300 hidden pages

Enterasys Networks 2200 User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual

NOTICE

Contents

Figures

Tables

About This Guide

USING THIS GUIDE

STRUCTURE OF THIS GUIDE

Related Documents

DOCUMENT CONVENTIONS

Typographical and Keystroke Conventions

Introduction

1.1 OVERVIEW

1.1.1 The Management Agent

1.1.2 In-Band vs. Out-of-Band

1.2 NAVIGATING LOCAL MANAGEMENT SCREENS

1.3 LOCAL MANAGEM ENT REQUIREMEN TS

1.4 LOCAL MANAGEMENT SCREEN ELEMENTS

1.5 LOCAL MANAGEMENT KEYBOARD CONVENTIONS

1.6 GETTING HELP