How it Works
Intel
Loading...
AXXSW1GB
User Manual
220 pgs5.2 Mb0
Table of contents
Loading...

Intel AXXSW1GB User Manual

Intel® Gigabit Ethernet Switch AXXSW1GB User Guide
A Guide for System Administrators of Intel® Server Products
Intel Order Number D95362-004
Disclaimer
Information in this document is provided in connection with Intel® products. No license, express or implied, by estoppel or otherwise, to any intellectual property rights is granted by this document. Except as provided in Intel's Terms and Conditions of Sale for such products, Intel assumes no liability whatsoever, and Intel disclaims any express or implied warranty, relating to sale and/or use of Intel products including liability or warranties relating to fitness for a particular purpose, merchantability, or infringement of any patent, copyright or other intellectual property right. Intel products are not intended for use in medical, life saving, or life sustaining applications.
Intel may make changes to specifications and product descriptions at any time, without notice. Intel and Intel Xeon are trademarks or registered trademarks of Intel Corporation or its subsidiaries in the United
States and other countries. Other names and brands may be claimed as the property of others. Copyright © 2007, Intel Corporation. All Rights Reserved.
ii Intel® Gigabit Ethernet Switch AXXSW1GB User Guide

Safety Information

Important Safety Instructions

Read all caution and safety statements in this document before performing any of the instructions. See also Intel® Server Boards and Server Chassis Safety Information at http://support.intel.com/support/motherboards/server/sb/cs-010770.htm.

Wichtige Sicherheitshinweise

Lesen Sie zunächst sämtliche Warnund Sicherheitshinweise in diesem Dokument, bevor Sie eine der Anweisungen ausführen. Beachten Sie hierzu auch die el Server Boards and Server Chassis Safety Information unter http://support.intel.com/support/motherboards/ server/sb/cs-010770.htm.

Consignes de sécurité

Lisez attention toutes les consignes de sécurité et les mises en garde indiquées dans ce document avant de suivre toute instruction. Consultez Intel Server Boards and Server Chassis Safety Information sur le site http://support.intel.com/support/motherboards/ server/sb/cs-010770.htm.

Instrucciones de seguridad importantes

Lea todas las declaraciones de seguridad y precaución de este documento antes de realizar cualquiera de las instrucciones. Vea Intel Server Boards and Server Chassis Safety Information en http://support.intel.com/support/motherboards/server/sb/cs-010770.htm.
重要安全指导
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide iii

Warnings

These warnings and cautions apply whenever you remove the server compute module enclosure cover to access components inside the system. Only a technically qualified person should maintain or configure the system.
Heed safety instructions: Before working with your server product, whether you are using this guide or any other resource as a reference, pay close attention to the safety instructions. You must adhere to the assembly instructions in this guide to ensure and maintain compliance with existing product certifications and approvals. Use only the described, regulated components specified in this guide. Use of other products / components will void the UL listing and other regulatory approvals of the product and will most likely result in noncompliance with product regulations in the region(s) in which the product is sold.
System power on/off: The power button DOES NOT turn off the system AC power. To remove power from the system, you must unplug the AC power cord from the wall outlet or the chassis. Make sure the AC power cord is unplugged before you open the chassis, add, or remove any components.
Hazardous conditions, devices and cables: Hazardous electrical conditions may be present on power, telephone, and communication cables. Turn off the system and disconnect the power cord, telecommunications systems, networks, and modems attached to the system before opening it. Otherwise, personal injury or equipment damage can result.
Electrostatic discharge (ESD) and ESD protection: ESD can damage disk drives, boards, and other parts. We recommend that you perform all procedures in this document only at an ESD workstation. If one is not available, provide some ESD protection by wearing an anti-static wrist strap attached to chassis ground (any unpainted metal surface) on your system when handling parts.
ESD and handling electronic devices: Always handle electronic devices carefully. They can be extremely sensitive to ESD. Do not touch the connector contacts.
Installing or removing jumpers: A jumper is a small plastic encased conductor that slips over two jumper pins. Some jumpers have a small tab on top that you can grip with your fingertips or with a pair of fine needle nosed pliers. If your jumpers do not have such a tab, take care when using needle nosed pliers to remove or install a jumper; grip the narrow sides of the jumper with the pliers, never the wide sides. Gripping the wide sides can damage the contacts inside the jumper, causing intermittent problems with the function controlled by that jumper. Take care to grip with, but not squeeze, the pliers or other tool you use to remove a jumper, or you may bend or break the pins on the board.
Reinstalling enclosure cover: To protect internal components and for proper cooling and airflow, the server compute module should not be inserted into the chassis with the cover removed; operating it without the enclosure cover in place can damage system parts.
iv Intel® Gigabit Ethernet Switch AXXSW1GB User Guide

Preface

The Embedded Web System (EWS) is a network management system. The Embedded Web Interface configures, monitors, and troubleshoots network devices from a remote web browser. The Embedded Web Interface web pages are easy-to-use and easy-to-navigate. In addition, The Embedded Web Interface provides real time graphs and RMON statistics to help system administrators monitor network performance.
This preface provides an overview to the Embedded Interface User Guide, and includes the following sections:
User Guide Overview
Intended Audience

User Guide Overview

This section provides an overview to the Web System Interface User Guide. The Web System Interface User Guide provides the following sections:
Section 1, Getting Started — Provides information about using the EWS, including
The Embedded Web Interface interface, management, and information buttons, as well as information about adding, modifying, and deleting device information.
Section 2, Managing Device Information — Provides information about opening
the device zoom view, defining general system information, and enabling Jumbo frames.
Section 3, Configuring Device Security — Provides information about configuring
device security for management security, traffic control, and network security.
Section 4, Configuring Ports — Provides information about configuring ports.
Section 5, Aggregating Ports — Provides information about configuring Link
Aggregated Groups and LACP.
Section 6, Configuring VLANs — Provides information about configuring and
managing VLANs, including information about GARP and GVRP, and defining VLAN groups.
Section 7, Defining Forwarding Database — Provides information about defining
Static Forwarding Database Entries and Dynamic Forward Database Entries.
Section 8, Configuring Multicast Forwarding — Provides information about
Multicast Forwarding.
Section 9, Configuring Spanning Tree — Provides information about configuring
Spanning Tree Protocol and the Rapid Spanning Tree Protocol.
Section 10, Configuring Quality of Service — Provides information about
configuring Quality of Service on the device.
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide v
Section 11, Managing System Logs — Provides information about enabling and
defining system logs.
Section 12, Managing Device Diagnostics — Provides information on Configuring
Port Mirroring, Ethernet Ports, and Viewing Optical Transceivers.
Section 13, Viewing Statistics — Provides information about viewing device
statistics, including RMON statistics, device history events, and port and LAG utilization statistics.

Intended Audience

This guide is intended for network administrators familiar with IT concepts and terminology.
vi Intel® Gigabit Ethernet Switch AXXSW1GB User Guide
Table of Contents
Safety Information ..................................................................................................... iii
Important Safety Instructions ................................................................................................ iii
Wichtige Sicherheitshinweise ............................................................................................... iii
Consignes de sécurité .......................................................................................................... iii
Instrucciones de seguridad importantes ............................................................................... iii
Preface .........................................................................................................................v
User Guide Overview .............................................................................................................v
Intended Audience ................................................................................................................ vi
Chapter 1: Getting Started .........................................................................................1
Starting the Embedded Web Interface ...................................................................................2
Understanding the Embedded Web Interface ........................................................................3
Using Screen and Table Options ...........................................................................................6
Resetting the Device ..............................................................................................................8
Logging Off the Device ..........................................................................................................8
Chapter 2: Managing Device Information .................................................................9
Viewing System Information ..................................................................................................9
Chapter 3: Configuring Device Security ................................................................. 11
Configuring Traffic Control ...................................................................................................11
Defining Access Control Lists ..............................................................................................17
Chapter 4: Configuring Ports ..................................................................................31
Chapter 5: Aggregating Ports .................................................................................35
Configuring LAGs ................................................................................................................36
Defining LAG Members .......................................................................................................40
Configuring LACP ................................................................................................................42
Configuring Virtual Trunk Group Failover ............................................................................44
Chapter 6: Configuring VLANs ................................................................................47
Defining VLAN Properties ....................................................................................................48
Defining VLAN Membership ................................................................................................50
Defining VLAN Interface Settings ........................................................................................53
Defining VLAN Groups ........................................................................................................56
Configuring GARP ...............................................................................................................66
Chapter 7: Defining Forwarding Database .............................................................71
Defining Static Forwarding Database Entries ......................................................................72
Defining Dynamic Forwarding Database Entries .................................................................74
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide vii
Chapter 8: Configuring Multicast Forwarding ........................................................77
Defining IGMP Snooping ..................................................................................................... 78
Defining Multicast Groups ................................................................................................... 80
Defining Multicast Forward All Settings ............................................................................... 83
Chapter 9: Configuring Spanning Tree ...................................................................85
Defining Spanning Tree ....................................................................................................... 86
Defining Spanning Tree Interface Settings .......................................................................... 89
Defining Rapid STP .............................................................................................................93
Defining Multiple STP ..........................................................................................................96
Defining Multiple STP Instance To VLAN Settings .............................................................. 97
Chapter 10: Configuring Quality of Service .........................................................103
Quality of Service Overview .............................................................................................. 104
Defining General QoS Settings ......................................................................................... 105
Configuring Basic QoS Settings ........................................................................................ 114
Configuring Advanced QoS Settings ................................................................................. 117
Chapter 11: Managing System Logs .....................................................................129
Enabling System Logs ....................................................................................................... 130
Viewing the FLASH Logs .................................................................................................. 132
Viewing the Device Memory Logs ..................................................................................... 133
Chapter 12: Managing Device Diagnostics ..........................................................135
Configuring Port Mirroring ................................................................................................. 136
Ethernet Ports Diagnostics ................................................................................................ 138
Copper Cable Extended Feature ....................................................................................... 139
Viewing the CPU Utilization ............................................................................................... 141
Chapter 13: Viewing Statistics ...............................................................................143
Viewing Statistics .............................................................................................................. 143
Viewing Interface Statistics ............................................................................................... 143
Managing RMON Statistics ............................................................................................... 150
A Troubleshooting ..................................................................................................166
B Installation/Assembly Safety Instructions ........................................................168
English ............................................................................................................................... 168
Deutsch ............................................................................................................................. 170
Français ............................................................................................................................. 173
Español ............................................................................................................................. 175
Italiano ............................................................................................................................... 177
C Safety Information ...............................................................................................180
English ............................................................................................................................... 180
Français ............................................................................................................................. 191
viii Intel® Gigabit Ethernet Switch AXXSW1GB User Guide
List of Tables
Table 1. Additional Information and Software ...........................................................................8
Table 2. Product Certification Markings ..................................................................................42
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide ix
x Intel® Gigabit Ethernet Switch AXXSW1GB User Guide
List of Figures
Figure 1. Embedded Web Interface Home Page ...................................................................... 2
Figure 2. Embedded Web Interface Components..................................................................... 3
Figure 3. Device Representation............................................................................................... 4
Figure 4. Add MAC Based ACL................................................................................................. 6
Figure 5. Storm Control Settings Page...................................................................................... 7
Figure 6. Reset Page ................................................................................................................ 8
Figure 7. System Information Page........................................................................................... 9
Figure 8. Reset Page .............................................................................................................. 10
Figure 9. Storm Control Page.................................................................................................. 12
Figure 10. Storm Control Settings Page.................................................................................. 13
Figure 11. Port Security Page ................................................................................................. 14
Figure 12. Edit Port Security Settings Page............................................................................ 16
Figure 13. MAC Based ACL Page........................................................................................... 18
Figure 14. Add MAC Based ACL and First Rule Page............................................................ 20
Figure 15. Add ACL Rule Page............................................................................................... 20
Figure 16. Edit Rule Page ....................................................................................................... 21
Figure 17. IP Based ACL Page ............................................................................................... 22
Figure 18. Add IP Based ACL and First Rule Page ................................................................ 25
Figure 19. Add IP Based Rule Page ....................................................................................... 26
Figure 20. Edit Rule Page ....................................................................................................... 27
Figure 21. ACL Binding Page.................................................................................................. 28
Figure 22. Edit ACL Binding Page........................................................................................... 29
Figure 23. Port Configuration Page......................................................................................... 31
Figure 24. Port Configuration Settings Page........................................................................... 33
Figure 25. LAG Configuration Page ........................................................................................ 36
Figure 26. LAG Configuration Settings Page .......................................................................... 37
Figure 27. LAG Membership Page.......................................................................................... 40
Figure 28. LAG Membership Settings Page............................................................................ 41
Figure 29. LACP Parameters Page......................................................................................... 42
Figure 30. LACP Parameters Settings Page........................................................................... 43
Figure 31. Trunk Group Fail Over Page.................................................................................. 45
Figure 32. Edit Fail Over Group Page..................................................................................... 46
Figure 33. VLAN Properties Page........................................................................................... 48
Figure 34. Add VLAN Page..................................................................................................... 49
Figure 35. VLAN Settings Page .............................................................................................. 49
Figure 36. VLAN Membership Page........................................................................................ 50
Figure 37. Edit VLAN Membership Page ................................................................................ 52
Figure 38. Interface Settings Page.......................................................................................... 53
Figure 39. VLAN Interface Settings Page ............................................................................... 55
Figure 40. VLAN MAC-based Groups Page............................................................................ 57
Figure 41. Add VLAN MAC-based Groups Page .................................................................... 58
Figure 42. MAC Groups Settings Page................................................................................... 58
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide xi
Figure 43. VLAN Subnet-based Groups Page........................................................................ 59
Figure 44. Add VLAN Subnet-based Groups Page ................................................................ 60
Figure 45. Subnet-based Group Settings ............................................................................... 60
Figure 46. VLAN Protocol Groups Page................................................................................. 61
Figure 47. Add Protocol-based Groups Page......................................................................... 62
Figure 48. Protocol-based Groups Settings Page .................................................................. 63
Figure 49. Mapping Groups to VLAN Page ............................................................................ 64
Figure 50. Mapping Groups to VLAN Settings Page .............................................................. 65
Figure 51. GARP Settings Page ............................................................................................. 66
Figure 52. GARP Parameters Settings Page.......................................................................... 67
Figure 53. GVRP Parameters Page........................................................................................ 68
Figure 54. GVRP Parameters Settings Page.......................................................................... 69
Figure 55. Static Addresses Page .......................................................................................... 72
Figure 56. Add Static MAC Address Page.............................................................................. 73
Figure 57. Dynamic Addresses Page ..................................................................................... 74
Figure 58. IGMP Snooping Page............................................................................................ 78
Figure 59. IGMP Snooping Settings Page.............................................................................. 79
Figure 60. Multicast Group Page ............................................................................................ 80
Figure 61. Add Multicast Group Page..................................................................................... 81
Figure 62. Edit Multicast Group Page..................................................................................... 82
Figure 63. Multicast Forward All Page.................................................................................... 83
Figure 64. Edit Multicast Forward All Page............................................................................. 84
Figure 65. Spanning Tree Properties Page ............................................................................ 86
Figure 66. Spanning Tree Interface Settings Page................................................................. 89
Figure 67. Spanning Tree Interface Settings Page................................................................. 92
Figure 68. Rapid STP Page.................................................................................................... 93
Figure 69. Rapid Spanning Tree Settings Page ..................................................................... 95
Figure 70. Multiple STP Properties Page ............................................................................... 96
Figure 71. Instance To VLAN Settings Page .......................................................................... 97
Figure 72. Instance Settings Page.......................................................................................... 98
Figure 73. Interface Settings Page ....................................................................................... 100
Figure 74. Interface Table Page ........................................................................................... 102
Figure 75. CoS Global Settings Page................................................................................... 106
Figure 76. Modify Port Priority Page..................................................................................... 107
Figure 77. Queue Page......................................................................................................... 108
Figure 78. Bandwidth Settings Page..................................................................................... 110
Figure 79. Modify Bandwidth Settings Page......................................................................... 111
Figure 80. CoS to Queue Page............................................................................................. 112
Figure 81. DSCP to Queue Page.......................................................................................... 113
Figure 82. Basic Mode General Settings Page..................................................................... 114
Figure 83. QoS DSCP Rewrite Page.................................................................................... 116
Figure 84. Policied DSCP Page............................................................................................ 118
Figure 85. Class Map Page .................................................................................................. 119
Figure 86. Add QoS Class Map Page................................................................................... 120
Figure 87. Aggregated Policier Page.................................................................................... 121
Figure 88. Add Aggregated Policier Page............................................................................. 122
Figure 89. Edit QoS Aggregate Policer Page ....................................................................... 122
xii Intel® Gigabit Ethernet Switch AXXSW1GB User Guide
Figure 90. Policy Table Page ................................................................................................ 124
Figure 91. Add QoS Policy Profile Page ............................................................................... 125
Figure 92. Edit QoS Policy Profile Page................................................................................ 126
Figure 93. Policy Binding Page ............................................................................................. 127
Figure 94. Add Qos Policy Binding Page .............................................................................. 128
Figure 95. Qos Policy Binding Settings Page........................................................................ 128
Figure 96. System Logs Properties Page.............................................................................. 130
Figure 97. System Flash Logs Page ..................................................................................... 132
Figure 98. Device Memory Log Page.................................................................................... 133
Figure 99. Port Mirroring Page.............................................................................................. 136
Figure 100. Ethernet Ports Page........................................................................................... 138
Figure 101. Cable Extended Feature Page........................................................................... 139
Figure 102. CPU Utilization Page.......................................................................................... 141
Figure 103. Interface Statistics Page .................................................................................... 144
Figure 104. Etherlike Statistics Page .................................................................................... 146
Figure 105. GVRP Statistics Page ........................................................................................ 148
Figure 106. RMON Statistics Page ....................................................................................... 150
Figure 107. RMON History Control Page.............................................................................. 154
Figure 108. Add History Entry Settings Page........................................................................ 155
Figure 109. RMON History Control Settings Page................................................................ 156
Figure 110. RMON History Table Page................................................................................. 157
Figure 111. RMON Events Control Page .............................................................................. 159
Figure 112. RMON Events Logs Page.................................................................................. 161
Figure 113. RMON Alarm Page ............................................................................................ 162
Figure 114. Add Alarm Entry Page........................................................................................ 163
Figure 115. RMON Alarms Definition Page........................................................................... 164
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide xiii

1 Getting Started

This section provides an introduction to the user interface, and includes the following topics:
Starting the Embedded Web Interface
Understanding the Embedded Web Interface
Using Screen and Table Options
Resetting the Device
Logging Off the Device
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide 1

Starting the Embedded Web Interface

Note: Disable the popup blocker in your internet browser before beginning device configuration
using the EWS.
This section contains information on starting the Embedded Web Interface.
To access the user interface:
1. Open an internet browser.
2. Ensure that pop-up blockers are disabled. If pop-up blockers are enabled, the edit, add, and device information messages may not open.
3. Enter the device IP address in the address bar and press Enter.
Figure 1. Embedded Web Interface Home Page
2 Intel® Gigabit Ethernet Switch AXXSW1GB User Guide

Understanding the Embedded Web Interface

The Embedded Web Interface Home Page contains the following views:
Port LED Indicators — Located at the top of the home page, the port LED indicators
provide a visual representation of the ports on the front panel.
Tab Are a — Located under the LED indicators, the tab area contains a list of the
device features and their components.
Device View — Located in the main part of the home page, the device view provides
a view of the device, an information or table area, and configuration instructions.
Figure 2. Embedded Web Interface Components
The following table lists the user interface components with their corresponding numbers:
Table 1. Interface Components
View Description
1 Tree View Tree View provides easy navigation through the configurable device features.
The main branches expand to display the sub-features.
2 Device Information View
3 Zoom View Provides a graphic of the device on which the Web Interface runs. 4 Web
Interface Information Links
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide 3
Device View provides information about device ports, current configuration and status, table information, and feature components. Device View also displays other device information and dialog boxes for configuring parameters.
Provides user information, and allows users to save the current device configuration, and sign out of the Web Interface.
This section provides the following additional information:
Device Representation — Provides an explanation of the user interface buttons,
including both management buttons and task icons.
Using the Embedded Web Interface Management Buttons — Provides
instructions for adding, modifying, and deleting configuration parameters.

Device Representation

The Embedded Web Interface Home Page contains a graphical panel representation of the device. An explanation of the port settings displays when you move your mouse over the port.
Figure 3. Device Representation
4 Intel® Gigabit Ethernet Switch AXXSW1GB User Guide

Using the Embedded Web Interface Management Buttons

Configuration Management buttons and icons provide an easy method of configuring device information, and include the following:
Table 2.
Table 1: Web Interface Configuration Buttons
Button Button Name Description
Clear Logs Clears system logs.
Clear All Counters Clears statistics.
Create Enables creation of configuration
entries.
Edit Modifies configuration settings.
Apply Applies configuration changes to the
device.
Test Performs cable tests.
Advanced Performs advanced tests.
Query Queries the device table.
Delete Deletes a configuration entries.
Reset Resets configuration to before
Next Allows viewing the next page in a
Back Allows to viewing the previous page
Help Opens the online help.
changes were entered by user.
table.
in a table.
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide 5

Using Screen and Table Options

This option contains screens and tables for configuring devices. This section contains the following topics:
Adding Configuration Information
Modifying Configuration Information
Deleting Configuration Information

Adding Configuration Information

User-defined information can be added to specific Web Interface pages, by opening a new Add page.
To add information to tables or Web Interface pages:
1. Open an Embedded Web Interface page.
2. Click . An add page opens, such as the Add MAC Based ACL:
Figure 4. Add MAC Based ACL
3. Define the relevant fields.
4. Click . The configuration information is saved, and the device is updated.
6 Intel® Gigabit Ethernet Switch AXXSW1GB User Guide

Modifying Configuration Information

1. Open an Embedded Web Interface page.
2. Select a table entry.
3. Click . A modification page, such as the Storm Control Settings Page
opens:
Figure 5. Storm Control Settings Page
4. Modify the relevant fields.
5. Click . The fields are modified, and the information is saved to the device.

Deleting Configuration Information

1. Open The Embedded Web Interface page.
2. Select a table row.
3. Select the Delete checkbox.
4. Click . The information is deleted, and the device is updated.
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide 7

Resetting the Device

The Reset Page enables resetting the device from a remote location.
Note: To prevent the current configuration from being lost, save all changes from the running
configuration file to the startup configuration file before resetting the device.
To reset the device:
1. Click System > Reset. The Reset Page opens.
Figure 6. Reset Page
2. Click .
3. The device reboots and a confirmation prompt appears.
4. Click OK. The device is reset, and a prompt for a user name and password is displayed.
5. Enter a user name and password to reconnect to the Web Interface.

Logging Off the Device

1. Click . The Embedded Web Interface Home Page closes.
8 Intel® Gigabit Ethernet Switch AXXSW1GB User Guide

2 Managing Device Information

Viewing System Information

The System Information Page contains parameters for configuring general device information, including the system name, location, and contact, the system MAC Address, System Object ID, System Up Time, System IP and MAC addresses, and both software and hardware versions.
To view system information:
1. Click System > System Information. The System Information Page opens:
Figure 7. System Information Page
The System Information Page contains the following fields:
Model Name — Displays the device model number and name.
System Name — Defines the user-defined device name. The field range is 0-160
characters.
System Location — Defines the location where the system is currently running. The
field range is 0-160 characters.
System Contact — Defines the name of the contact person. The field range is 0-160
characters.
System Object ID — Displays the vendor’s authoritative identification of the
network management subsystem contained in the entity.
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide 9
System Up Time — Displays the amount of time since the most recent device reset.
The system time is displayed in the following format: Days, Hours, Minutes, and Seconds. For example, 41 days, 2 hours, 22 minutes, and 15 seconds.
Base MAC Address — Displays the device MAC address.
IP Address — Displays the IP Address assigned to the switch
Mask — Displays the Mask Address assigned to the switch
Hardware Version — Displays the installed device hardware version number.
Software Version — Displays the installed software version number.
Boot Version — Displays the current boot version running on the device.
Jumbo Frames — Indicates if Jumbo Frames are enabled on the device. The possible
field values are:
Enable — Enables Jumbo Frames on the device. — Disable — Disables Jumbo Frames on the device
Resetting the Device
The Reset Page enables resetting the device from a remote location.
To prevent the current configuration from being lost, save all changes from the running configuration file to the backup configuration file before resetting the device.
To reset the device:
1. Click System > Reset. The Reset Page opens:
Figure 8. Reset Page
2. Click .
10 Intel® Gigabit Ethernet Switch AXXSW1GB User Guide
The Ethernet switch is reset, and the device is updated.

3 Configuring Device Security

This section provides access to security pages that contain fields for setting security parameters for ports and device management methods. This section contains the following topics:
Configuring Traffic Control
Defining Access Control Lists

Configuring Traffic Control

This section contains information for managing both port security and storm control, and includes the following topics:
Enabling Storm Control
Managing Port Security

Enabling Storm Control

Storm control limits the amount of Broadcast, Multicast and Unknown Unicast frames accepted and forwarded by the device. When Layer 2 frames are forwarded, Broadcast, Multicast and Unknown Unicast frames are flooded to all ports on the relevant VLAN. This occupies bandwidth, and loads all nodes on all ports.
A Packet Storm is a result of an excessive amount of either Broadcast or Multicast or Unknown Unicast messages simultaneously transmitted across a network by a single port. Forwarded message responses are heaped onto the network, straining network resources or causing the network to time out.
Storm control is enabled for all ports by defining the packet type and the rate the packets are transmitted. The system measures the incoming Broadcast, Multicast or Unknown Unicast frame rates separately on each port, and discards the frames when the rate exceeds a user-defined rate.
The Storm Control Page provides fields for configuring packet storm control.
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide 11
To enable storm control:
1. Click Network Security > Traffic Control > Storm Control. The Storm Control Page opens.
Figure 9. Storm Control Page
The Storm Control Page contains the following fields:
Port — Indicates the port from which storm control is enabled.
Enable Broadcast Control — Indicates if forwarding Broadcast packet types is
enabled/disabled on the interface. The possible field values are:
Enable — Enables storm control on the selected port. — Disable — Disables storm control on the selected port.
Broadcast Rate Threshold — Indicates the maximum rate (kilobits per second) at
which packets are forwarded. The range is 3,500 - 1,000,000. The default value is 3,500.
Broadcast Mode — Specifies the Broadcast mode currently enabled on the port. The
possible field values are:
Broadcast, Multicast, & Unknown Unicast — Counts Broadcast, Multicast, and
Unicast traffic.
Multicast & Broadcast — Counts Broadcast and Multicast traffic together. — Broadcast Only — Counts only Broadcast traffic.
12 Intel® Gigabit Ethernet Switch AXXSW1GB User Guide
2. Click . The Storm Control Settings Page opens:
Figure 10. Storm Control Settings Page
3. Modify the relevant fields.
4. Click . Storm control is enabled on the device.
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide 13

Managing Port Security

Network security can be increased by limiting access on a specific port only to users with specific MAC addresses. The MAC addresses can be dynamically learned or statically configured. Locked port security monitors both received and learned packets that are received on specific ports. Access to the locked port is limited to users with specific MAC addresses. These addresses are either manually defined on the port, or learned on that port up to the point when it is locked. When a packet is received on a locked port, and the packet source MAC address is not tied to that port (either it was learned on a different port, or it is unknown to the system), the protection mechanism is invoked, and can provide various options. Unauthorized packets arriving at a locked port are either:
Forwarded
Discarded with no trap
Discarded with a trap
Shuts down the port
Locked port security also enables storing a list of MAC addresses in the configuration file. The MAC address list can be restored after the device has been reset.
Disabled ports are activated from the Port Security Page.
To define port security:
1. Click Network Security > Traffic Control > Port Security. The Port Security Page opens.
Figure 11. Port Security Page
14 Intel® Gigabit Ethernet Switch AXXSW1GB User Guide
The Port Security Page contains the following fields:
Ports — Indicates the port membership.
LAGs — Indicates the LAG membership.
Interface — Displays the port or LAG name.
Interface Status — Indicates the host status. The possible field values are:
Unlocked — Indicates that the port is unlocked. This is the default value. — Locked — Indicates that the port is locked.
Learning Mode — Defines the locked port type. The Learning Mode field is enabled
only if Locked is selected in the Interface Status field. The possible field values are:
Classic Lock — Locks the port using the classic lock mechanism. The port is
immediately locked, regardless of the number of addresses that have already been learned.
Limited Dynamic Lock — Locks the port by deleting the current dynamic MAC
addresses associated with the port. The port learns up to the maximum addresses allowed on the port (See the Max Entries field). Both relearning and aging MAC addresses are enabled.
Max Entries — Specifies the number of MAC address that can be learned on the
port. The Max Entries field is enabled only if Locked is selected in the Interface Status field. In addition, the Limited Dynamic Lock mode is selected. The default is 1.
Action — Indicates the action to be applied to packets arriving on a locked port. The
possible field values are:
—Discard — Discards packets from any unlearned source. This is the default
value.
Forward — Forwards packets from an unknown source without learning the
MAC address.
Shutdown — Discards packets from any unlearned source and shuts down the
port. The port remains shut down until reactivated, or until the device is reset.
Trap — Enables traps when a packet is received on a locked port. The possible field
values are:
Enable — Enables traps. — Disable — Disables traps.
Trap Frequency (Sec) — The amount of time (in seconds) between traps. The range
is between
1–1,000,000. The default value is 10 seconds.
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide 15
2. Click . The Edit Port Security Settings Page opens:
Figure 12. Edit Port Security Settings Page
3. Modify the relevant fields.
4. Click . The port security settings are defined, and the device is updated.
16 Intel® Gigabit Ethernet Switch AXXSW1GB User Guide

Defining Access Control Lists

Access Control Lists (ACL) allow network managers to define classification actions and rules for specific ingress ports. Packets entering an ingress port, with an active ACL, are either admitted or denied entry. If they are denied entry, the user can disable the port.
For example, an ACL rule is defined that states, port number 20 can receive TCP packets, however, if a UDP packet is received, the packet is dropped. ACLs are composed of access control entries (ACEs) that are rules that determine traffic classifications.
When configuring ACLs consider the following:
The maximum number of ACEs/rules per a single ACL are 1018.
The maximum number of ACEs/rules in all ACLs are 1021.
The maximum number of ACLs applied to a single interface are 256.
Stages for configuring ACLs:
1. Define an ACL and the initial ACL Rule.
2. Add additional rules to the ACL.
This section contains the following topics:
Defining MAC Based Access Control Lists
Defining IP Based Access Control Lists
Intel® Gigabit Ethernet Switch AXXSW1GB User Guide 17
Loading...
+ 190 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use