Interlogix NS4702-24P-4S-4X User Manual

NS4702-24P-4S-4X

User Manual

P/N 1072829 • REV 00.01 • ISS 14JUL14

Trademarks and patents The NS4702-24P-4S-4X name and logo are trademarks of United Technologies.

Other trade names used in this document may be trademarks or registered trademarks of the manufacturers or vendors of the respective products.

Manufacture

Intended use

Certification

FCC compliance

Interlogix

3211 Progress Drive, Lincolnton, NC 28092 USA

Authorized EU manufacturing representative: UTC Climate Controls & Security B.V., Kelvinstraat 7, 6003 DH Weert, Netherlands

Use this product only for the purpose it was designed for; refer to the data sheet and use

documentation for details. For the latest product information, contact your local supplier

or visit us online at www.interlogix.com.

N4131

This equipment has been tested and found to comply with the limits for a Class A digital

device, pursuant to part 15 of the FCC Rules. These limits are designed to provide

reasonable protection against harmful interference when the equipment is operated in a

commercial environment. This equipment generates, uses, and can radiate radio

frequency energy and, if not installed and used in accordance with the instruction

manual, may cause harmful interference to radio communications.

You are cautioned that any changes or modifications not expressly approved by the

party responsible for compliance could void the user's authority to operate the

equipment.

ACMA compliance Notice! This is a Class A product. In a domestic environment this product may cause

radio interference in which case the user may be required to take adequate measures.

Canada

European Union

directives

Contact Information For contact information, see www.interlogix.com

This Class A digital apparatus complies with Canadian ICES-003.

Cet appareil numérique de la classe A est conforme á la norme NMB-003du Canada.

2004/108/EC (EMC Directive): Hereby, UTC Building & Industrial Systems, Inc.

declares that this device is in compliance with the essential requirements and other

relevant provisions of Directive 2004/108/EC.

or www.utcfssecurityproducts.eu.

TABLE OF CONTENTS

1. INTRODUCTION..................................................................................................................10

1.1 Packet Contents .........................................................................................................................................10

1.2 Product Description...................................................................................................................................11

1.3 How to Use This Manual............................................................................................................................16

1.4 Product Features........................................................................................................................................17

1.5 Product Specifications ..............................................................................................................................20

2. INSTALLATION ...................................................................................................................24

2.1 Hardware Description................................................................................................................................24

2.1.1 Switch Front Panel ..............................................................................................................................................24

2.1.2 LED Indications ...................................................................................................................................................25

2.1.3 Switch Rear Panel ...............................................................................................................................................27

2.2 Installing the Switch...................................................................................................................................28

2.2.1 Desktop Installation .............................................................................................................................................28

2.2.2 Rack Mounting.....................................................................................................................................................29

2.2.3 Installing the SFP/SFP+ Transceiver ...................................................................................................................30

3. SWITCH MANAGEMENT.................................................................................................... 34

3.1 Requirements..............................................................................................................................................34

3.2 Management Access Overview.................................................................................................................35

3.3 Administration Console.............................................................................................................................36 

3.4 Web Management.......................................................................................................................................37

3.5 SNMP-based Network Management.........................................................................................................38

4. WEB CONFIGURATION...................................................................................................... 39

4.1 Main Web Page...........................................................................................................................................42

4.2 System.........................................................................................................................................................44

4.2.1 System Information..............................................................................................................................................45

4.2.2 IP Configuration...................................................................................................................................................46

4.2.3 IP Status ..............................................................................................................................................................48

4.2.4 Users Configuration .............................................................................................................................................49

4.2.5 Privilege Levels ...................................................................................................................................................52

4.2.6 NTP Configuration ...............................................................................................................................................54

4.2.7 Time Configuration ..............................................................................................................................................55

4.2.8 UPnP ...................................................................................................................................................................57

4.2.9 DHCP Relay ........................................................................................................................................................59

4.2.10 DHCP Relay Statistics .......................................................................................................................................61

4.2.11 CPU Load ..........................................................................................................................................................63

4.2.12 System Log........................................................................................................................................................64

4.2.13 Detailed Log ......................................................................................................................................................66

4.2.14 Remote Syslog ..................................................................................................................................................67

4.2.15 SMTP Configuration ..........................................................................................................................................68

4.2.16 Web Firmware Upgrade.....................................................................................................................................69

4.2.17 TFTP Firmware Upgrade ...................................................................................................................................70

4.2.17 Save Startup Config...........................................................................................................................................71

4.2.18 Configuration Download ....................................................................................................................................71

4.2.20 Configuration Upload.........................................................................................................................................72

4.2.21 Configuration Activate........................................................................................................................................73

4.2.22 Configuration Delete..........................................................................................................................................73

4.2.23 Image Select......................................................................................................................................................74

4.2.24 Factory Default ..................................................................................................................................................75

4.2.25 System Reboot ..................................................................................................................................................76

4.3 Simple Network Management Protocol....................................................................................................77

4.3.1 SNMP Overview ..................................................................................................................................................77

4.3.2 SNMP System Configuration ...............................................................................................................................79

4.3.3 SNMP Trap Configuration....................................................................................................................................81

4.3.4 SNMP System Information ..................................................................................................................................84

4.3.5 SNMPv3 Configuration ........................................................................................................................................85

4.3.5.1 SNMPv3 Communities ..............................................................................................................................85

4.3.5.2 SNMPv3 Users..........................................................................................................................................86

4.3.5.3 SNMPv3 Groups........................................................................................................................................88

4.3.5.4 SNMPv3 Views..........................................................................................................................................89

4.3.5.5 SNMPv3 Access........................................................................................................................................90

4.4 Port Management .......................................................................................................................................92

4.4.1 Port Configuration................................................................................................................................................92

4.4.2 Port Statistics Overview.......................................................................................................................................94

4.4.3 Port Statistics Detail.............................................................................................................................................95

4.4.4 SFP Module Information ......................................................................................................................................98

4.4.5 Port Mirror..........................................................................................................................................................100

4.5 Link Aggregation......................................................................................................................................102

4.5.1 Static Aggregation..............................................................................................................................................105

4.5.2 LACP Configuration...........................................................................................................................................107

4.5.3 LACP System Status .........................................................................................................................................109

4.5.4 LACP Port Status............................................................................................................................................... 110

4.5.5 LACP Port Statistics........................................................................................................................................... 111

4.6 VLAN..........................................................................................................................................................113

4.6.1 VLAN Overview ................................................................................................................................................. 113

4.6.2 IEEE 802.1Q VLAN ........................................................................................................................................... 11 4

4.6.3 VLAN Port Configuration ...................................................................................................................................11 7

4.6.4 VLAN Membership Status..................................................................................................................................123

4.6.7 VLAN Port Status...............................................................................................................................................126

4.6.8 Port Isolation......................................................................................................................................................128

4.6.10 VLAN setting example: ....................................................................................................................................130

4.6.10.1 Two Separate 802.1Q VLANs................................................................................................................130

4.6.10.2 VLAN Trunking between two 802.1Q aware switches ...........................................................................133

4.6.10.3 Port Isolate ............................................................................................................................................135

4.6.11 MAC-based VLAN............................................................................................................................................137

4.6.12 MAC-based VLAN Status ................................................................................................................................138

4.6.13 Protocol-based VLAN ......................................................................................................................................139

4.6.14 Protocol-based VLAN Membership .................................................................................................................141

4.7 Spanning Tree Protocol...........................................................................................................................143

4.7.1 Theory ...............................................................................................................................................................143

4.7.2 STP System Configuration ................................................................................................................................149

4.7.3 Bridge Status .....................................................................................................................................................152

4.7.4 CIST Port Configuration.....................................................................................................................................152

4.7.5 MSTI Priorities ...................................................................................................................................................155

4.7.6 MSTI Configuration............................................................................................................................................157

4.7.7 MSTI Ports Configuration ..................................................................................................................................158

4.7.8 Port Status.........................................................................................................................................................160

4.7.9 Port Statistics.....................................................................................................................................................161

4.8 Multicast..................................................................................................................

4.8.1 IGMP Snooping .................................................................................................................................................163

4.8.2 Profile Table.......................................................................................................................................................168

4.8.3 Address Entry ....................................................................................................................................................169

4.8.4 IGMP Snooping Configuration ...........................................................................................................................171

4.8.5 IGMP Snooping VLAN Configuration.................................................................................................................173

4.8.6 IGMP Snooping Port Group Filtering .................................................................................................................175

4.8.7 IGMP Snooping Status ......................................................................................................................................176

4.8.8 IGMP Group Information....................................................................................................................................178

4.8.9 IGMPv3 Information...........................................................................................................................................179

4.8.10 MLD Snooping Configuration...........................................................................................................................181

4.8.11 MLD Snooping VLAN Configuration.................................................................................................................182

4.8.12 MLD Snooping Port Group Filtering................................................................................................................. 185

4.8.13 MLD Snooping Status......................................................................................................................................187

4.8.14 MLD Group Information ...................................................................................................................................188

4.8.15 MLDv2 Information ..........................................................................................................................................190

4.8.16 MVR (Multicaset VLAN Registration)...............................................................................................................192

..................................163

4.8.17 MVR Status......................................................................................................................................................195

4.8.18 MVR Groups Information .................................................................................................................................196

4.8.19 MVR SFM Information .....................................................................................................................................197

4.9 Quality of Service.....................................................................................................................................199

4.9.1 Understanding QoS ...........................................................................................................................................199

4.9.2 Port Policing ......................................................................................................................................................200

4.9.3 Port Classification..............................................................................................................................................201

4.9.4 Port Scheduler...................................................................................................................................................204

4.9.5 Port Shaping......................................................................................................................................................205

4.9.5.1 QoS Egress Port Schedule and Shapers ................................................................................................206

4.9.6 Port Tag Remarking...........................................................................................................................................207

4.9.6.1 QoS Egress Port Tag Remarking.............................................................................................................209

4.9.7 Port DSCP .........................................................................................................................................................210

4.9.8 DSCP-based QoS .............................................................................................................................................212

4.9.9 DSCP Translation ..............................................................................................................................................214

4.9.10 DSCP Classification.........................................................................................................................................215

4.9.11 QoS Control List...............................................................................................................................................216

4.9.11.1 QoS Control Entry Configuration ...........................................................................................................219

4.9.12 QCL Status ......................................................................................................................................................221

4.9.13 Storm Control Configuration ............................................................................................................................223

4.9.15 WRED..............................................................................................................................................................224

4.9.14 QoS Statistics ..................................................................................................................................................227

4.9.15 Voice VLAN Configuration ...............................................................................................................................228

4.9.16 Voice VLAN OUI Table.....................................................................................................................................232

4.10 Access Control Lists..............................................................................................................................234

4.10.1 Access Control List Status ...............................................................................................................................234

4.10.2 Access Control List Configuration ....................................................................................................................236

4.10.3 ACE Configuration ...........................................................................................................................................238

4.10.4 ACL Ports Configuration ..................................................................................................................................249

4.10.5 ACL Rate Limiter Configuration .......................................................................................................................251

4.11 Authentication.........................................................................................................................................253

4.11.1 Understanding IEEE 802.1X Port-Based Authentication..................................................................................254

4.11.2 Authentication Configuration ............................................................................................................................258

4.11.3 Network Access Server Configuration..............................................................................................................259

4.11.4 Network Access Overview ...............................................................................................................................271

4.11.5 Network Access Statistics ................................................................................................................................272

4.11.6 RADIUS ...........................................................................................................................................................279

4.11.7 TACACS+ ........................................................................................................................................................282

4.11.8 RADIUS Overview ...........................................................................................................................................284

4.11.9 RADIUS Details ...............................................................................................................................................287

4.11.10 Windows Platform RADIUS Server Configuration..........................................................................................295

4.11.11 802.1X Client Configuration ...........................................................................................................................300

4.12 Security ...................................................................................................................................................303

4.12.1 Port Limit Control.............................................................................................................................................303

4.12.2 Access Management .......................................................................................................................................307

4.12.3 Access Management Statistics ........................................................................................................................308

4.12.4 HTTPs .............................................................................................................................................................310

4.12.5 SSH .................................................................................................................................................................310

4.12.6 Port Security Status......................................................................................................................................... 311

4.12.7 Port Security Detail..........................................................................................................................................314

4.12.8 DHCP Snooping ..............................................................................................................................................315

4.12.9 Snooping Table................................................................................................................................................317

4.12.10 IP Source Guard Configuration......................................................................................................................317

4.12.11 IP Source Guard Static Table.........................................................................................................................319

4.12.12 ARP Inspection ..............................................................................................................................................321

4.12.13 ARP Inspection Static Table ...........................................................................................................................323

4.13 Address Ta

4.13.1 MAC Table Configuration.................................................................................................................................324

4.13.2 MAC Address Table Status .............................................................................................................................. 326

4.13.3 Dynamic ARP Inspection Table........................................................................................................................327

4.13.4 Dynamic IP Source Guard Table......................................................................................................................328

ble.........................................................................................................................................324

4.14 LLDP........................................................................................................................................................331

4.14.1 Link Layer Discovery Protocol .........................................................................................................................331

4.14.2 LLDP Configuration .........................................................................................................................................331

4.14.3 LLDP MED Configuration ................................................................................................................................335

4.14.4 LLDP-MED Neighbor.......................................................................................................................................344

4.14.5 Neighbor ..........................................................................................................................................................348

4.14.6 Port Statistics...................................................................................................................................................349

4.15 Network Diagnostics..............................................................................................................................352

4.15.1 Ping .................................................................................................................................................................353

4.15.2 IPv6 Ping .........................................................................................................................................................354

4.15.3 Remote IP Ping Test ........................................................................................................................................355

4.15.4 Cable Diagnostics............................................................................................................................................356

4.16 Power over Ethernet ..............................................................................................................................359

4.16.1 Power over Ethernet Powered Device.............................................................................................................359

4.16.2 System Configuration ......................................................................................................................................360

4.16.3 Power Over Ethernet Configuration.................................................................................................................361

4.16.4 Port Sequential ................................................................................................................................................363

4.16.5 Port Configuration............................................................................................................................................364

4.16.6 PoE Status.......................................................................................................................................................366

4.16.7 PoE Schedule..................................................................................................................................................369

4.16.8 LLDP PoE Neighbours.....................................................................................................................................372

4.16.9 PoE Alive Check Configuration........................................................................................................................372

4.16.10 Port Power Consumption...............................................................................................................................374

4.17 Loop Protection......................................................................................................................................376

4.17.1 Configuration ...................................................................................................................................................376

4.17.2 Loop Protection Status.....................................................................................................................................378

4.18 RMON.......................................................................................................................................................379

4.18.1 RMON Alarm Configuration .............................................................................................................................379

4.18.2 RMON Alarm Status.........................................................................................................................................381

4.18.3 RMON Event Configuration .............................................................................................................................382

4.18.4 RMON Event Status.........................................................................................................................................383

4.18.5 RMON History Configuration ...........................................................................................................................384

4.18.6 RMON History Status.......................................................................................................................................386

4.18.7 RMON Statistics Configuration ........................................................................................................................387

4.18.8 RMON Statistics Status....................................................................................................................................388

4.19 Ring..........................................................................................................................................................390

4.19.1 MEP Configuration...........................................................................................................................................392

4.19.2 Detailed MEP Configuration ............................................................................................................................394

4.19.3 Ethernet Ring Protocol Switch .........................................................................................................................397

4.19.4 Ethernet Ring Protocol Switch Configuration...................................................................................................400

4.19.5 Ring Wizard .....................................................................................................................................................403

4.19.6 Ring Wizard Example: .....................................................................................................................................404

5. SWITCH OPERATION.......................................................................................................407

5.1 Address Table...........................................................................................................................................407

5.2 Learning ....................................................................................................................................................407

5.3 Forwarding & Filtering.............................................................................................................................407

5.4 Store-and-Forward...................................................................................................................................407

5.5 Auto-Negotiation ......................................................................................................................................408

6. Power over Ethernet Overview........................................................................................409

7. TROUBLESHOOTING....................................................................................................... 411

APPENDIX A: Networking Connection ............................................................................... 412

A.1 PoE RJ-45 Port Pin Assignments...........................................................................................................412

A.2 Switch's Data RJ-45 Pin Assignments - 1000Mbps, 1000Base-T........................................................412

A.3 10/100Mbps, 10/100Base-TX...................................................................................................................412

APPENDIX B : GLOSSARY .................................................................................................. 414

1. INTRODUCTION

NS4702-24P-4S-4X is a 24-Port 10/100/1000Mbps 802.3at PoE + 4-Port 10G SFP+ Managed Switch with Hardware Layer3

IPv4/IPv6 Static Routing, NS4702-24P-4S-4X, comes with the multi-port Gigabit Ethernet Switch and SFP fiber optic connectibility

and robust layer 2 features. The description of this model is shown below:

NS4702-24P-4S-4X

“Managed Switch” is used as an alternative name in this user’s manual.

1.1 Packet Contents

Open the box of the Managed Switch and carefully unpack it. The box should contain the following items:

 Managed Switch

24-Port 10/100/1000Mbps 802.3at PoE +, 4 Shared Gigabit Ports (RJ45 and SFP) and 4-Port 10G SFP+

Managed Switch with Hardware Layer3 IPv4/IPv6 Static Routing,

x 1

 User’s Manual CD  Quick Installation Guide  RJ-45 to RS232 Cable  SFP Dusty Cap  Rubber Feet  Rack-mount Accessory Kit  Power Cord

If any of these are missing or damaged, please contact your dealer immediately; if possible, retain the carton including the original

packing material, and use them again to repack the product in case there is a need to return it to us for repair.

x 1

x 8

x 4

x 1

1.2 Product Description

Cost-effective 10Gbps Uplink Capacitated Managed High Power PoE Switch for Large Surveillance Applications

The NS4702 is the latest generation of Interlogix Managed Gigabit PoE Switches featuring Interlogix intelligent PoE functions to

improve the availability of critical business applications. It provides IPv6/IPv4 Layer 3 static routing and built-in L2/L4 Gigabit

Switching engine along with 24 10/100/1000Base-T ports featuring 30-watt 802.3at PoE+, 4 Gigabit SFP fiber slots and 4 10Gbps

SFP+ fiber slots. With total shared power budget up to 440 watts for different kinds of PoE applications, it provides a quick safe and

cost-effective Power over Ethernet network solution to IP security surveillance for small businesses and enterprises.

Flexible and Extendable 10Gbps Ethernet Solution

10G Ethernet is a big leap in the evolution of Ethernet. Each of the SFP+ slot supports Dual-Speed, 10GBase-SR/LR or 1000Base-SX/LX, meaning the administrator now can flexibly choose the suitable SFP/SFP+ transceiver according to the

transmission distance or the transmission speed required to extend the network efficiently. With its 4-port, 10G Ethernet link

capability, the NS4702 provides broad bandwidth and powerful processing capacity.

Centralized Power Management for Gigabit Ethernet PoE Networking

To fulfill the needs of higher power required PoE network applications with Gigabit speed transmission, the NS4702 features

high-performance Gigabit IEEE 802.3af PoE (up to 15.4 watts) and IEEE 802.3at PoE+ (up to 30 watts) on all ports. It perfectly

meets the power requirement of PoE VoIP phone and all kinds of PoE IP cameras such as IR, PTZ, speed dome cameras or even

box type IP cameras with built-in fan and heater for high power consumption.

The NS4702 PoE capabilities also help to reduce deployment costs for network devices as a result of freeing from restrictions of

power outlet locations. Power and data switching are integrated into one unit, delivered over a single cable and managed centrally. It

thus eliminates cost for additional AC wiring and reduces installation time.

Built-in Unique PoE Functions for Surveillance Management

As a managed PoE Switch for surveillance network, the NS4702 features intelligent PoE Management functions:

 PD ALIVE Check  Schedule Power Recycle  SMTP/SNMP Trap Event Alert  PoE Schedule

Intelligent Powered Device Alive Check

The NS4702 can be configured to monitor connected PD (Powered Device) status in real-time via ping action. Once the PD stops

working and it is without response, the NS4702 will resume the PoE port power and bring the PD back to work. It will greatly

enhance the network reliability through the PoE port resetting the PD’s power source and reduce administrator management

burden.

Schedule Power Recycle

The NS4702 allows each of the connected PD (Powered Device) to reboot in a specific time each week. Therefore, it will reduce the

chance of PD (Powered Device) crash resulting from buffer overflow.

SMTP/SNMP Trap Event alert

Though most NVR or camera management software offers SMTP email alert function, the NS4702 further provides event alert

function to help to diagnose the abnormal device owing to whether or not there is a break of the network connection, loss of PoE

power or the rebooting response by PD Alive Check process.

PoE Schedule for Energy Saving

Besides being used for IP surveillance, theNS4702 is certainly applicable to construct any PoE network including VoIP and wireless

LAN. Under the trend of energy saving worldwide and contributing to the environmental protection on the Earth, the NS4702 can

effectively control the power supply besides its capability of giving high watts power. The “PoE schedule” function helps you to

enable or disable PoE power feeding for each PoE port during specified time intervals and it is a powerful function to help SMB or

Enterprise save power and money.

Solution for IPv6 Networking

Faced with the increasingly large number of IP cameras and Wireless APs installed and deployed in all kinds of applications, more

and more network facilities start to support the IPv6 protocol for the next-generation networking. By supporting both the IPv4 and

IPv6 and plenty of management functions with easy and friendly management interfaces, the NS4702 is the best choice for IP

surveillance and wireless service providers to connect with the IPv6 network.

IPv6 / IPv4 Dual St ack

By supporting IPv6 management features and also backward compatible with IPv4, the NS4702 helps the SMB to step in the IPv6

era with the lowest investment but not need to replace the network facilities while the ISP constructs the IPv6 FTTx edge network.

IPv4 and IPv6 VLAN Routing for Secure and Flexible Management

To help customers stay on top of their businesses, the NS4702 switch not only provides ultra high transmission performance and

excellent layer 2 technologies, but also offers IPv4/IPv6 VLAN routing feature which allows to cross over different VLANs and

different IP addresses for the purpose of having a highly secured, flexible management and simpler networking application.

Enhanced Security

The NS4702 offers a comprehensive Layer 2 to Layer 4 Access Control List (ACL) for enforcing security to the edge. It can be

used to restrict network access by denying packets based on source and destination IP address, TCP/UDP ports or defined typical

network applications. Its protection mechanism also comprises 802.1X Port-based and MAC-based user and device authentication. With the private VLAN function, communication between edge ports can be prevented to ensure user privacy. Furthermore, the NS4702 provides DHCP Snooping, IP Source Guard and Dynamic ARP Inspection functions to prevent IP snooping from attack

and discard ARP packets with invalid MAC address. The network administrators can now construct highly secured corporate

networks with considerably less time and effort than before.

Robust Layer 2 Features

The NS4702 can be programmed for advanced switch management functions such as dynamic port link aggregation, Q-in-Q VLAN, private VLAN, Multiple Spanning Tree Protocol (MSTP), Layer 2/4 QoS, bandwidth control and IGMP/MLD Snooping. The

NS4702 also provides 802.1Q Tagged VLAN, and the VLAN groups allowed will be maximally up to 256. Via aggregation of

supporting ports, the NS4702 allows the operation of a high-speed trunk combining multiple ports. It enables up to 14 groups of 8

ports for trunk maximum and supports connection fail-over as well.

Excellent Traffic Control

The NS4702 is loaded with powerful traffic management and QoS features to enhance connection services by SMBs. The QoS

features include wire-speed Layer 4 traffic classifiers and bandwidth limiting that are particular useful for multi-tenant unit, multi

business unit, Telco, or Network Service Provide applications. It also empowers the enterprises to take full advantages of the limited

network resources and guarantees the best performance in VoIP and Video conferencing transmission.

Efficient and Secure Management

The NS4702 Managed Switch is equipped with console, WEB and SNMP management interfaces. With the built-in Web-based

management interface, the NS4702 offers an easy-to-use, platform-independent management and configuration facility. The

NS4702 supports standard Simple Network Management Protocol (SNMP) and can be managed via any management software that

supports SNMP protocol. For text-based management, the NS4702 can be accessed via Telnet and the console port. Moreover, the

NS4702 offers secure remote management by supporting SSH, SSL and SNMPv3 connection which encrypt the packet content at

each session.

Flexibility and Extension Solution

The NS4702 provides 4 extra Gigabit TP/SFP combo interfaces supporting 10/100/1000Base-T RJ-45 copper to connect with

surveillance network devices such as NVR, Video Streaming Server or NAS to facilitate surveillance management. Or through these

dual-speed fiber SFP slots, it can also connect with the 100Base-FX / 1000Base-SX/LX SFP (Small Form-factor Pluggable) fiber

transceiver to backbone switch and monitoring center in long distance. The distance can be extended from 550 meters to 2

kilometers (multi-mode fiber) and up to above 10/20/30/40/50/70/120 kilometers (single-mode fiber or WDM fiber). They are well

suited for applications within the enterprise data centers and distributions.

Intelligent SFP Diagnosis Mechanism

The NS4702 supports SFP-DDM (Digital Diagnostic Monitor) function that greatly helps network administrator to easily monitor

real-time parameters of the SFP, such as optical output power, optical input power, temperature, laser bias current, and transceiver

supply voltage.

1.3 How to Use This Manual

This User’s Manual is structured as follows:

Section 2, INSTALLATION

The section explains the functions of the Managed Switch and how to physically install the Managed Switch.

Section 3, SWITCH MANAGEMENT

The section contains the information about the software function of the Managed Switch.

Section 4, WEB CONFIGURATION

The section explains how to manage the Managed Switch by Web interface.

Section 5, SWITCH OPERATION

The chapter explains how to do the switch operation of the Managed Switch.

Section 6, POWER over ETHERNET OVERVIEW

The chapter introduces the IEEE 802.3af / 802.3at PoE standard and PoE provision of the Managed Switch.

Section 7, TROUBLESHOOTING

The chapter explains how to do troubleshooting of the Managed Switch.

Appendix A

The section contains cable information of the Managed Switch.

1.4 Product Features

 Physical Port

 24-Port 10/100/1000Base-T RJ-45 copper with IEEE 802.3at / 802.3af Power over Ethernet Injector function

 4 100/1000Base-X mini-GBIC/SFP slot, shared with Port-21 to Port-24 compatible with 100Base-FX SFP  4 10GBase-SR/LR SFP+ slot, compatible with 1000Base-SX/LX/BX SFP

 RJ45 to RS-232 DB9 console interface for basic management and setup

 Power over Ethernet

■ Complies with IEEE 802.3at High Power over Ethernet End-Span PSE

■ Complies with IEEE 802.3af Power over Ethernet End-Span PSE

■ Up to 24 ports of IEEE 802.3af / 802.3at devices powered

■ Supports PoE Power up to 30.8 Watts for each PoE ports

■ Auto detects powered device (PD)

■ Circuit protection prevents power interference between ports

■ Remote power feeding up to 100 meters

■ PoE Management

 Total PoE power budget control

 Per port PoE function enable/disable

 PoE Port Power feeding priority

 Per PoE port power limitation

 PD classification detection

 PD alive-check

 PoE schedule

 PD power recycling schedule

 Layer 2 Features

 Prevents packet loss with back pressure (half-duplex) and IEEE 802.3x pause frame flow control (full-duplex)

 High performance of Store-and-Forward architecture and runt/CRC filtering eliminates erroneous packets to optimize the

network bandwidth

 Storm Control support

 Broadcast / Unicast / Unknown-unicast

 Supports VLAN

 IEEE 802.1Q Tagged VLAN

 Up to 255 VLANs groups, out of 4095 VLAN IDs

 Provider Bridging (VLAN Q-in-Q) support (IEEE 802.1ad)

 Private VLAN Edge (PVE)

 Protocol-based VLAN

 MAC-based VLAN

 IP Subnet-based VLAN

 Voice VLAN

 Supports Spanning Tree Protocol

 STP, IEEE 802.1D Spanning Tree Protocol

 RSTP, IEEE 802.1w Rapid Spanning Tree Protocol

 MSTP, IEEE 802.1s Multiple Spanning Tree Protocol, spanning tree by VLAN

 BPDU Guard

 Supports Link Aggregation

 802.3ad Link Aggregation Control Protocol (LACP)

 Cisco ether-channel (Static Trunk)

 Maximum 14 trunk groups, up to 8 ports per trunk group

 Up to 16Gbps bandwidth (full duplex mode)

 Provides Port Mirror (many-to-1)

 Port Mirroring to monitor the incoming or outgoing traffic on a particular port

 Loop protection to avoid broadcast loops

 Layer 3 IP Routing Features

 Supports maximum 128 static routes and route summarization

 Quality of Service

 Ingress Shaper and Egress Rate Limit per port bandwidth control

 8 priority queues on all switch ports

 Traffic classification

- IEEE 802.1p CoS

- TOS / DSCP / IP Precedence of IPv4/IPv6 packets

- IP TCP/UDP port number

- Typical network application

 Strict priority and Weighted Round Robin (WRR) CoS policies

 Traffic-policing policies on the switch port

 DSCP remarking

 Multicast

 Supports IGMP Snooping v1, v2 and v3

 Supports MLD Snooping v1 and v2

 Querier mode support

 IGMP Snooping port filtering

 MLD Snooping port filtering

 MVR (Multicast VLAN Registration)

 Security

 IEEE 802.1X Port-based / MAC-based network access authentication  IEEE 802.1X Authentication with Guest VLAN

 Built-in RADIUS client to cooperate with the RADIUS servers

 RADIUS / TACACS+ users access authentication

 IP-based Access Control List (ACL)

 MAC-based Access Control List (ACL)

 Source MAC / IP address binding  DHCP Snooping to filter distrusted DHCP messages  Dynamic ARP Inspection discards ARP packets with invalid MAC address to IP address binding  IP Source Guard prevents IP spoofing attacks

 IP address access management to prevent unauthorized intruder

 Management

 Switch Management Interfaces

- Console / Telnet Command Line Interface

- Web switch management

- SNMP v1, v2c, and v3 switch management

- SSH / SSL secure access

 Four RMON groups (history, statistics, alarms and events)  IPv6 Address / NTP management

 Built-in Trivial File Transfer Protocol (TFTP) client

 BOOTP and DHCP for IP address assignment

 Firmware upload / download via HTTP / TFTP

 DHCP Relay and Option 82

 User Privilege levels control

 NTP (Network Time Protocol)

 Link Layer Discovery Protocol (LLDP)

 SFP-DDM (Digital Diagnostic Monitor)

 Cable Diagnostic technology provides the mechanism to detect and report potential cabling issues

 ICMPv6 / ICMPv4 Remote Ping

 Reset button for system reboot or reset to factory default

 SMTP / Syslog / SNMP Trap remote alarm

 System Log

 Interlogix Smart Discovery Utility for deploy management

 Redundant Data Protection

 ITU-T G.8032 Ethernet Ring Protection Switching

1.5 Product Specifications

Product

Hardware Specifications

Copper Ports

SFP/mini-GBIC Slots

SFP+ Slots

Console Switch Architecture Switch Fabric Throughput Address Table Share Data Buffer

Flow Control

Jumbo Frame

Reset Button

Dimensions (W x D x H)

NS4702-24P-4S-4X

24 10/100/1000Base-T RJ-45 auto-MDI/MDI-X ports

4 100/1000Base-X SFP interfaces, shared with Port-21 to Port-24 Compatible with 100Base-FX SFP transceiver

4 10GBase-SR/LR SFP+ interface (Port-25 to Port-28) Compatible with 1000Base-SX/LX/BX SFP transceiver

1 x RS-232-to-RJ45 serial port (115200, 8, N, 1)

Store-and-Forward

128Gbps / non-blocking

95Mpps@64Bytes

16K entries, automatic source address learning and ageing

32M bits

IEEE 802.3x pause frame for full-duplex Back pressure for half-duplex

10K bytes

< 5 sec: System reboot > 5 sec: Factory default

440 x 300 x 44.5 mm, 1U height

Weight

LED

Power Requirements Power Consumption

ESD Protection

Power over Ethernet

PoE Standard PoE Power Supply Type PoE Power Output Power Pin Assignment

PoE Power Budget

4887g

System:

PWR (Green), SYS (Green), Ring (Green), R.O. (Green) PWR1 (Green), PWR2 (Green), FAN1 (Green), FAN2 (Green)

10/100/1000T RJ45 Interfaces (Port 1 to Port 24):

10/100/1000Mbps LNK/ACT (Green)

PoE In-Use (Orange) 100/1000Mbps SFP Combo Interfaces (Port 21 to Port 24): 1000Mbps (Green), LNK/ACT (Orange) 1/10Gbps SFP+ Interfaces (Port 25 to Port 28): 10Gbps LNK/ACT (Green), 1Gbps LNK/ACT (Orange)

100~240V AC, 50/60Hz

502 watts / 1712.8 BTU Max.

6KV DC

IEEE 802.3af / 802.3at PoE / PSE

End-span

Per Port 56V DC, Max. 30.8 watts

1/2(+), 3/6(-)

440 watts (max.) @ 25 degrees C 380 watts (max.) @ 50 degrees C

PD @ 7 watts

24 units

PoE Ability

Layer 2 Functions

Port Configuration

Port Status

Port Mirroring

VLAN

Link Aggregation

Spanning Tree Protocol

QoS

IGMP Snooping

MLD Snooping

Access Control List

Bandwidth Control

Layer 3 Functions

PD @ 15.4 watts PD @ 30.8 watts

24 units 14 units

Port disable / enable Auto-negotiation 10/100/1000Mbps full and half duplex mode selection Flow control disable / enable

Display each port’s speed duplex mode, link status, flow control status, auto-negotiation status, trunk status

TX / RX / Both Many-to-1 monitor

802.1Q Tagged based VLAN Q-in-Q tunneling Private VLAN Edge (PVE) MAC-based VLAN Protocol-based VLAN Voice VLAN IP Subnet-based VLAN MVR (Multicast VLAN Registration) Up to 255 VLAN groups, out of 4094 VLAN IDs

IEEE 802.3ad LACP / Static Trunk 16 groups of 8-Port trunk supported

STP, IEEE 802.1D Spanning Tree Protocol RSTP, IEEE 802.1w Rapid Spanning Tree Protocol MSTP, IEEE 802.1s Multiple Spanning Tree Protocol

Traffic classification based, Strict priority and WRR 8-Level priority for switching

- Port Number

- 802.1p priority

- 802.1Q VLAN tag

- DSCP/TOS field in IP packet

IGMP (v1/v2/v3) Snooping, up to 255 multicast groups IGMP Querier mode support

MLD (v1/v2) Snooping, up to 255 multicast groups MLD Querier mode support

IP-based ACL / MAC-based ACL Up to 256 entries

Per port bandwidth control

Ingress: 100Kbps~1000Mbps

Egress: 100Kbps~1000Mbps

IP Interfaces Routing Table

Routing Protocols

Management

Basic Management Interfaces

Max. 128 VLAN interfaces

Max. 32 routing entries

IPv4 hardware Static Routing IPv6 hardware Static Routing

Console / Telnet / Web browser / SNMP v1, v2c

Secure Management Interfaces

SNMP MIBs

Standards Conformance

SSH, SSL, SNMP v3

RFC-1213 MIB-II

RFC-1493 Bridge MIB

RFC-1643 Ethernet MIB

RFC-2863 Interface MIB

RFC-2665 Ether-Like MIB

RFC-2819 RMON MIB (Group 1, 2, 3 and 9)

RFC-2737 Entity MIB

RFC-2618 RADIUS Client MIB

RFC-2863 IF-MIB

RFC-2933 IGMP-STD-MIB

RFC-3411 SNMP-Frameworks-MIB

RFC-4292 IP Forward MIB

RFC-4293 IP MIB

RFC-4836 MAU-MIB

IEEE 802.1X PAE LLDP Power over Ethernet MIB

Regulation Compliance

Standards Compliance

Environment

Operating

FCC Part 15 Class A, CE

IEEE 802.3 10Base-T IEEE 802.3u 100Base-TX/100Base-FX IEEE 802.3z Gigabit SX/LX IEEE 802.3ab Gigabit 1000T IEEE 802.3ae 10Gb/s Ethernet IEEE 802.3x Flow Control and Back pressure IEEE 802.3ad Port trunk with LACP IEEE 802.1D Spanning tree protocol IEEE 802.1w Rapid spanning tree protocol IEEE 802.1s Multiple spanning tree protocol IEEE 802.1p Class of service IEEE 802.1Q VLAN Tagging IEEE 802.1X Port Authentication Network Control IEEE 802.3af Power over Ethernet IEEE 802.3at Power over Ethernet PLUS IEEE 802.1ab LLDP RFC 768 UDP RFC 793 TFTP RFC 791 IP RFC 792 ICMP RFC 2068 HTTP RFC 1112 IGMP version 1 RFC 2236 IGMP version 2 RFC 3376 IGMP version 3 RFC 2710 MLD version 1 FRC 3810 MLD version 2

Temperature: 0 ~ 50 degrees C Relative Humidity: 5 ~ 95% (non-condensing)

Storage

Temperature: -10 ~ 70 degrees C Relative Humidity: 5 ~ 95% (non-condensing)

2. INSTALLATION

This section describes the hardware features and installation of the Managed Switch on the desktop or rack mount. For easier

management and control of the Managed Switch, familiarize yourself with its display indicators, and ports. Front panel illustrations in

this chapter display the unit LED indicators. Before connecting any network device to the Managed Switch, please read this chapter

completely.

2.1 Hardware Description

2.1.1 Switch Front Panel

The front panel provides a simple interface monitoring the Managed Switch. Figure 2-1-1 shows the front panel of the Managed

Switch.

NS47 02-24P-4S-4X Front Panel

Figure 2-1-1: Front Panels of NS4702-24P-4S-4X

■ Gigabit TP interface

10/100/1000Base-T Copper, RJ-45 Twist-Pair: Up to 100 meters.

■ SFP slot

100/1000Base-X mini-GBIC slot, SFP (Small Factor Pluggable) transceiver module: From 550 meters to 2km (multi-mode fiber),

up to above 10/20/30/40/50/70/120 kilometers (single-mode fiber).

■ 10 Gigab it SFP slot

10GBase-SR/LR mini-GBIC slot, SFP (Small Factor Pluggable) Transceiver Module supports from 300 meters (Multi-mode

Fiber), up to 10 kilometers (Single Mode Fiber)

■ Console Port

The console port is a RJ-45 port connector. It is an interface for connecting a terminal directly. Through the console port, it

provides rich diagnostic information including IP Address setting, factory reset, port management, link status and system setting.

Users can use the attached DB9 to RJ-45 console cable in the package and connect to the console port on the device. After the

connection, users can run any terminal emulation program (Hyper Terminal, ProComm Plus, Telix, Winterm and so on) to enter

the startup screen of the device.

■ Reset button

At the right of the front panel, the reset button is designed for rebooting the Managed Switch without turning off and on the

power. The following is the summary table of reset button functions:

Reset Button Pressed and Released Function

< 5 sec: System Reboot Reboot the Managed Switch.

Reset the Managed Switch to Factory Default configuration.

The Managed Switch will then reboot and load the default

settings as shown below:

> 5 sec: Factory Default

。 Default Username: admin 。 Default Password: admin 。 Default IP address: 192.168.0.100 。 Subnet mask: 255.255.255.0 。 Default Gateway: 192.168.0.254

2.1.2 LED Indications

The front panel LEDs indicate instant status of power and system status, fan status, port links / PoE in-use and data activity; they

help monitor and troubleshoot when needed. Figure 2-1-2 shows the LED indications of the Managed Switch.

NS4702-24P-4S-4X LED Indication

Figure 2-1-2: NS4702-24P-4S-4X LED at Front Panel

NS4702-24P-4S-4X LED Indication Table

 LED definition

 System

LED Color Function

SYS Green

PWR Green Lights to indicate that the Switch has power.

Lights to indicate the system is working.

Ring

R.O.

 Alert

LED Color Function

FAN1~2 Green

PWR1~2 Green

 Per 10/100/1000Mbps RJ45 port (Port-1 to Port-24)

LED Color Function

Green

Lights Indicates that ring state is in idle. Blink Indicates that ring state is in protected. Lights Indicates that the switch is set to ring owner. Off Indicates that the switch doesn’t set to ring owner.

Lights to indicate fan1~2 failure.

Lights to indicate power1~2 failure.

1000

LNK/ACT

10/100

LNK/ACT

 Per 100/1000Base-X SFP Interface (Port-23 to Port-24)

LED Color Function

1000

LNK/ACT

100

LNK/ACT

 Per 10G SFP+ interface (Port-25 to Port-28)

LED Color Function

10G

LNK/ACT

Green

Orange

Green

Orange

Green

Orange

Lights: To indicate the port is running in 1000Mbps speed and successfully established. Blink: To indicate that the switch is actively sending or receiving data over that port. Lights: To indicate the port is running in 10/100Mbps speed and successfully established.

Blink: To indicate that the switch is actively sending or receiving data over that port.

Lights. To indicate the port is successfully established at 1000Mbps. Blink: To indicate that the Switch is actively sending or receiving data over that port. Lights: To indicate the port is successfully established at 100Mbps.

Blink: To indicate that the Switch is actively sending or receiving data over that port.

Lights to indicate the port is running in 10Gbps speed and successfully established. Blink: indicate that the switch is actively sending or receiving data over that port.

Lights to indicate the port is running in 1Gbps speed and successfully established. Blink: indicate that the switch is actively sending or receiving data over that port.

2.1.3 Switch Rear Panel

The rear panel of the Managed Switch indicates an AC inlet power socket, which accepts input power from 100 to 240V AC,

50-60Hz. Figure 2-1-3 shows the rear panel of the Managed Switch.

NS47 02-24P-4S-4X Rear Panel

Figure 2-1-3: Rear Panel of NS4702-24P-4S-4X

■ AC Power Receptacle

For compatibility with electric service in most areas of the world, the Managed Switch’s power supply automatically adjusts

line power in the range of 100-240V AC and 50/60 Hz.

Plug the female end of the power cord firmly into the receptalbe on the rear panel of the Managed Switch. Plug the other end of

the power cord into an electric service outlet and the power will be ready.

Power Notice:

The device is a power-required device, which means it will not work till it is powered. If your networks

should be active all the time, please consider using UPS (Uninterrupted Power Supply) for your device.

It will prevent you from network data loss or network downtime. In some areas, installing a surge

suppression device may also help to protect your Managed Switch from being damaged by unregulated

surge or current to the Switch or the power adapter.

2.2 Installing the Switch

This section describes how to install your Managed Switch and make connections to the Managed Switch. Please read the following

topics and perform the procedures in the order being presented. To install your Managed Switch on a desktop or shelf, simply

complete the following steps.

2.2.1 Desktop Installation

To install the Managed Switch on desktop or shelf, please follow these steps:

Step 1: Attach the rubber feet to the recessed areas on the bottom of the Managed Switch. Step 2: Place the Managed Switch on the desktop or the shelf near an AC power source, as shown in Figure 2-2-1.

Figure 2-2-1: Place the Managed Switch on the Desktop

Step 3: Keep enough ventilation space between the Managed Switch and the surrounding objects.

When choosing a location, please keep in mind the environmental restrictions discussed in Chapter 1,

Section 4, and specifications.

Step 4: Connect the Managed Switch to network devices.

Connect one end of a standard network cable to the 10/100/1000 RJ-45 ports on the front of the Managed Switch.

Connect the other end of the cable to the network devices such as printer server, workstation or router.

Connection to the Managed Switch requires UTP Category 5e network cabling with RJ-45 tips. For

more information, please see the Cabling Specification in Appendix A.

Step 5: Supply power to the Managed Switch.

Connect one end of the power cable to the Managed Switch.

Connect the power plug of the power cable to a standard wall outlet.

When the Managed Switch receives power, the Power LED should remain solid Green.

2.2.2 Rack Mounting

To install the Managed Switch in a 19-inch standard rack, please follow the instructions described below.

Step 1: Place the Managed Switch on a hard flat surface, with the front panel positioned towards the front side. Step 2: Attach the rack-mount bracket to each side of the Managed Switch with supplied screws attached to the package.

Figure 2-2-2 shows how to attach brackets to one side of the Managed Switch.

Figure 2-2-2: Attach Brackets to the Managed Switch.

You must use the screws supplied with the mounting brackets. Damage caused to the parts by

using incorrect screws would invalidate the warranty.

Step 3: Secure the brackets tightly. Step 4: Follow the same steps to attach the second bracket to the opposite side. Step 5: After the brackets are attached to the Managed Switch, use suitable screws to securely attach the brackets to the rack, as

shown in Figure 2-2-3.

Figure 2-2-3: Mounting Managed Switch in a Rack

Step 6: Proceed with Steps 4 and 5 of session 2.2.1 Desktop Installation to connect the network cabling and supply power to the

Managed Switch.

2.2.3 Installing the SFP/SFP+ Transceiver

The sections describe how to insert an SFP/SFP+ transceiver into an SFP/SFP+ slot. The SFP/SFP+ transceivers are hot-pluggable

and hot-swappable. You can plug in and out the transceiver to/from any SFP/SFP+ port without having to power down the Managed

Switch, as the Figure 2-2-4 shows..

Figure 2-2-4: Plug-in the SFP/SFP+ Transceiver

+ 402 hidden pages