LINKSYS LGS3XX User Manual

User Guide

MANAGED SWITCH

LGS3XX

Contents ............................................................................................................................................................ 2

Ethernet Switch Features ............................................................................................................................ 4

System........................................................................................................................................................................... 4

Summary .................................................................................................................................................................. 4

IP Settings ............................................................................................................................................................... 5

ARP Settings ....................................................................................................................................................... 10

Neighbor Discovery (ND) table ...................................................................................................................... 13

System Time ........................................................................................................................................................ 14

Port Settings........................................................................................................................................................ 16

SFP Information .................................................................................................................................................. 17

DHCP Snooping .................................................................................................................................................. 18

PoE .......................................................................................................................................................................... 21

EEE .......................................................................................................................................................................... 24

L2 Feature ................................................................................................................................................................. 25

Link Aggregation ................................................................................................................................................ 25

Mirror Settings .................................................................................................................................................... 29

STP .......................................................................................................................................................................... 31

LBD .......................................................................................................................................................................... 44

MAC Address Table ........................................................................................................................................... 45

LLDP........................................................................................................................................................................ 47

IGMP Snooping ................................................................................................................................................... 50

MLD Snooping ..................................................................................................................................................... 55

Status ..................................................................................................................................................................... 56

Mode ....................................................................................................................................................................... 56

Report..................................................................................................................................................................... 56

Suppression ......................................................................................................................................................... 56

Multicast Filtering .............................................................................................................................................. 59

Jumbo Frame ....................................................................................................................................................... 59

VLAN ........................................................................................................................................................................... 60

802.1Q .................................................................................................................................................................. 61

PVID ........................................................................................................................................................................ 61

Voice VLAN .......................................................................................................................................................... 63

Management ............................................................................................................................................................. 67

System Information ........................................................................................................................................... 67

User Management ............................................................................................................................................. 67

Dual Image ............................................................................................................................................................ 68

ACL .............................................................................................................................................................................. 69

MAC ACL ............................................................................................................................................................... 70

MAC ACE .............................................................................................................................................................. 70

IPv4 ACL ................................................................................................................................................................ 72

IPv4 ACE ............................................................................................................................................................... 72

IPv6 ACL ................................................................................................................................................................ 75

IPv6 ACE ............................................................................................................................................................... 75

ACL Binding .......................................................................................................................................................... 77

QoS .............................................................................................................................................................................. 77

Global Settings ................................................................................................................................................... 78

CoS Mapping ....................................................................................................................................................... 79

DSCP Mapping .................................................................................................................................................... 80

Port Settings........................................................................................................................................................ 81

Advanced Settings ............................................................................................................................................ 82

Bandwidth Control ............................................................................................................................................. 84

Storm Control ...................................................................................................................................................... 85

Security ...................................................................................................................................................................... 86

802.1x ................................................................................................................................................................... 86

RADIUS Server ................................................................................................................................................... 91

Access .................................................................................................................................................................... 92

Port Security ........................................................................................................................................................ 93

Port Isolation ........................................................................................................................................................ 94

DoS .......................................................................................................................................................................... 95

Monitoring ................................................................................................................................................................. 95

Port Statistics ..................................................................................................................................................... 95

RMON ..................................................................................................................................................................... 96

Log ......................................................................................................................................................................... 100

Diagnostics ............................................................................................................................................................. 103

Cable Diagnostics ............................................................................................................................................ 103

Ping Test .............................................................................................................................................................. 104

IPv6 Ping Test ................................................................................................................................................... 105

Trace Route ........................................................................................................................................................ 106

Maintenance ........................................................................................................................................................... 107

Configuration Manager .................................................................................................................................. 107

Firmware Upgrade ........................................................................................................................................... 108

Reset ..................................................................................................................................................................... 108

hours, and minutes.

Fan Status

Displays the fan status

Ethernet Switch Features

System

Summary

The Summary page shows general system information for the Switch including the device name, firmware version, serial number, base MAC address, system uptime and fan status.

Device Name Displays the model name of the device.

FW Version Displays the installed firmware version of the device.

Serial Number Displays the serial number of the device.

Base MAC Address Displays the MAC base address of the device.

System Uptime

Displays the number of days, hours, and minutes since the last system restart. The System Uptime is displayed in the following format: days,

IP Settings

This switch supports multiple IP interfaces can be configurable. There are 4 IPv4 address and 4 IPv6 link local address, and 16 global IPv6 address share with 4 IP interfaces.

The IP Setting page contains fields for assigning IP addresses. IP addresses are either defined as static or are retrieved using the Dynamic Host Configuration Protocol (DHCP). DHCP assigns dynamic IP addresses to devices on a network. DHCP ensures that network devices can have a different IP address every time the device connects to the network.

To access the page, click

IPv4 Management

IP Settings under the System menu.

This page provides you to modify the management VLAN interface either set to static IP or DHCP/BOOTP for auto-configuration.

Important--If the device fails to retrieve an IP address through DHCP, the default IP

address is 192.168.1.251 and the factory default subnet mask is 255.255.255.0.

Dynamic IP Address

(DHCP/BOOTP)

Static IP Address

IP Address

Subnet Mask

Enables the IP address to be configured automatically by the DHCP server. Select this option if you have a DHCP server that can assign the Switch an IP address, subnet mask, default gateway IP address, and a domain name server IP address automatically. Selecting this field disables the IP Address, Subnet Mask fields.

Allows the entry of an IP address, subnet mask for the Switch. Select this option if you don't have a DHCP server or if you wish to assign a static IP address to the Switch.

This field allows the entry of an IPv4 address to be assigned to this IP interface. Enter the IP address of your Switch in dotted decimal notation. The factory default value is: 192.168.1.251

A subnet mask separates the IP address into the network and host addresses. A bitmask that determines the extent of the subnet that the Switch is on. This should be labeled in the form: xxx.xxx.xxx.xxx, where each xxx is a number (represented in decimals) between 0 and 255. The value should be 255.0.0.0 for a Class A network, 255.255.0.0 for a Class B network, and 255.255.255.0 for a Class C network, but custom subnet

masks are allowed. Enter the IP subnet mask of your Switch in dotted decimal notation. The factory default value is:

255.255.255.0

Click the button to modify specific IPv4 interface.

Click the Apply button to accept the changes or the Cancel button to discard them.

IPv6 Management

IPv6 is an upgraded version to IPv4, providing more available IP addresses as well as other benefits. To access the switch over an IPv6 network you must first configure it with IPv6 information (IPv6 address, prefix length, and LinkLocal or Global address type). To configure IPv6 for the Switch, select VLAN interface to modify or press add button to add a new IPv6 address.

Interface

Address / Prefix

Length

Address Type

Click the button to modify specific IPv6 interface and button to delete an IPv6 interface

entry manually.

Click the

Apply

button to accept the changes or the

VLAN interface need to add / modify.

This field allows the entry of an IPv6 address/prefix to be assigned to this IP interface.

Unicast for IPv6 Global address type and LinkLocal for IPv6 link local address type.

Cancel

button to discard them.

IPv4 Network

In this page, you can add IPv4 address on un-management VLAN.

VLAN

IP Address

Subnet Mask

Specify the VLAN ID.

This field allows the entry of an IPv4 address to be assigned to this IP interface. Enter the IP address of your Switch in dotted decimal notation.

255. The value should be 255.0.0.0 for a Class A network,

255.255.0.0 for a Class B network, and 255.255.255.0 for a Class C network, but custom subnet masks are allowed. Enter the IP subnet mask of your Switch in dotted decimal notation. The factory default value is: 255.255.255.0.

Click the button to modify specific IPv4 interface.

Click the Apply button to accept the changes or the Cancel button to discard them.

IPv6 Network

In this page, you can add IPv6 address on un-management VLAN.

VLAN

IP Address

Subnet Mask

Click the button to modify specific IPv6 interface and button to delete an IPv6 interface

entry.

Click the Apply button to accept the changes or the Cancel button to discard them.

Specify the VLAN ID.

This field allows the entry of an IPv6 address/prefix to be assigned to this IP interface.

Unicast for IPv6 Global address type and LinkLocal for IPv6 link local address type

DNS Servers

DNS (Domain Name System) can transfer host name to IP address. This switch supports 4 IP address list of DNS servers. If DHCP is selected in IPv4 interface and DNS info in DHCP option will auto add in DNS IP address list.

Address

Click the button to modify specific IPv4 interface

This field allows the entry of an IPv4/IPv6 address to be DNS server IP address.

Click the Apply button to accept the changes or the Cancel button to discard them.

ARP Settings

To access the page, click ARP Settings under the System menu.

ARP Global

Set retry times and age out timer for ARP table.

Max retries

Timeout

Click Apply to save settings.

Max ARP request retries times if switch can’t get ARP reply.

Aging time for Dynamic ARP entries.

Address Resolution Protocol (ARP) table

Display ARP table and ARP entries in switch. Administrator can move Dynamic ARP entry as Static ARP entry, create a Static ARP entry, and delete an ARP entry.

Move to Static

Address

MAC Address

Interface

Mapping

Click the button to move dynamic ARP to static ARP and button to delete an ARP entry

manually.

Click the Apply button to accept the changes or the Cancel button to discard them.

Administrator can move Dynamic ARP entry as Static ARP entry. Static ARP will not take effect by timeout timer in global settings.

This field allows the entry of an IPv4 address to be IP address in ARP entry.

This field allows the entry of a MAC address format to be MAC address in ARP entry.

Select or display ARP entry belongs which IP interface.

To display status of ARP entry.

Address Resolution Protocol (ARP) Statistics

To display counters related to ARP.

Static Route

Switch will forward IP packets follow ARP/ND table and Static route configuration.

Static route can be configurable by administrator manually. Static route can also assign a next hop for stub network, or a default gateway for whole switch.

The DIP filed in packets were not in IP subnet range of switch and also not hit by any route configuration, will forward to default gateway then.

All gateway fields need to be including of subnet range of switch IP interfaces.

To access the page, click

IPv4

gateway entry in route table.

Important—Destination IP and Subnet Mask are set to 0.0.0.0, then this entry will be

Static Route

under the

System

menu.

default

Destination IP

Subnet Mask

Gateway

Click the Apply button to accept the changes or the Cancel button to discard them.

The DIP field in packets need to route.

The field decides the range that packets hit this route entry.

The next hop IPv4 address if packets hit route entry.

IPv6

IPv6 global address in IP interface is needed before creating IPv6 static route.

Important—If the Destination IP is set to :: and the Prefix Length is set to 0, then this entry

will be default gateway entry in route table.

Destination IP

Prefix Length

Gateway

Click Apply to save settings.

The DIP field in packets need to route.

The field decides the range that packets hit this route entry.

The next hop IPv6 address with global format if packets hit route entry.

Neighbor Discovery (ND) table

ND is responsible for gathering information from nearby nodes in IPv6 format.

IPv6 Address

Link-layer Addr

Interface

State

This field allows the entry of an IPv6 address to be IP address in ND entry.

This field allows the entry of a MAC address format to be MAC address in ND entry.

Select or display ND entry belongs which IP interface.

Displays the status of ARP entry.

System Time

Use the System Time screen to view and adjust date and time settings.

The Switch supports Simple Network Time Protocol (SNTP). SNTP assures accurate network device clock time synchronization up to the millisecond. Time synchronization is performed by a network SNTP server. This switch operates only as an SNTP client and cannot provide time services to other systems.

Current time

Enable SNTP

Time Zone

Daylight Savings Time

Daylight Savings Time Offset

Recurring From

Recurring To

SNTP/NTP Server Address

Server Port

Displays the current system time.

Select whether to enable or disable system time synchronization with an SNTP server.

Configure the time zone setting either by setting GMT difference or by country.

Select from Disabled, Recurring or Non-recurring.

Enter the time of Daylight Savings Time Offset.

Select the Day, Week, Month, and Hour from the list.

Enter the IP address or hostname of the SNTP/NTP server.

Enter the server port of the SNTP/NTP server.

To configure date/time through SNTP:

1. Next to the Enable SNTP, select Enable.

2. In the Time Zone Offset list, select by country or by the GMT time zone in which the Switch is located.

3. Next select Disabled or Recurring for Daylight Savings Time. Daylight saving is a period from late spring to early fall when many countries set their clocks ahead of normal local time by one hour to give more daytime light in the evening.

4. In the SNTP/NTP Server Address field, enter the IP address or the host name of the SNTP/NTP server.

5. Finally, enter the port number on the SNTP server to which SNTP requests are sent. The valid range is from 1–65535. The default is: 123.

6. Click Apply to update the system settings.

To configure date/time manually:

1. Next to the Enable SNTP, select Disable.

2. In the Manual Time field, use the drop-down boxes to manually select the date and time

you wish to set.

3. In the Time Zone Offset list, select by country or by the Coordinated Universal Time (UTC/GMT) time zone in which the Switch is located.

4. Next select Disabled, Recurring or Non-recurring for Daylight Savings Time. Daylight saving is a period from late spring to early fall when many countries set their clocks ahead of normal local time by one hour to give more daytime light in the evening.

5. Click Apply to update the system settings.

Port Settings

Use this screen to view and configure Switch port settings. The Port Settings page allows you change the configuration of the ports on the Switch in order to find the best balance of speed and flow control according to your preferences. Configuring Gigabit ports require additional factors to be considered when arranging your preferences for the Switch compared to 10/100Mb ports.

To access the page, click Port Settings under the System menu.

Port

Link Status

Mode

Flow Control

Displays the port number.

Indicates whether the link is up or down.

Select the speed and the duplex mode of the Ethernet connection on this port. Selecting Auto (auto-negotiation) allows one port to negotiate with a peer port automatically to obtain the connection speed and duplex mode that both ends support. When auto-negotiation is turned on, a port on the Switch negotiates with the peer automatically to determine the connection speed and duplex mode. If the peer port does not support auto-negotiation or turns off this feature, the Switch determines the connection speed by detecting the signal on the cable and using half duplex mode. When the Switch's autonegotiation is turned off, a port uses the pre-configured speed and duplex mode when making a connection, thus requiring you to make sure that the settings of the peer port are the same in order to connect.

A concentration of traffic on a port decreases port bandwidth and overflows buffer memory causing packet discards and frame losses. Flow Control is used to regulate transmission of signals to match the bandwidth of the receiving port. The Switch uses IEEE 802.3x flow control in full duplex mode and backpressure flow control in half duplex mode.

IEEE 802.3x flow control is used in full duplex mode to send a pause signal to the sending port, causing it to temporarily stop sending signals when the receiving port memory buffers fill.

Back Pressure flow control is typically used in half duplex mode to send a "collision" signal to the sending port (mimicking a state of packet collision) causing the sending port to temporarily stop sending signals and resend later.

Port

Description

Click Apply to save settings.

For user’s convenience, user can have a description of this port by input text into this field.

SFP Information

The SFP Information screen contains SFP Module status and basic information. To access the page, click SFP Information under the System menu.

Port

The port number of SFP port to be displayed.

DHCP Snooping

DHCP snooping is a DHCP security feature that provides security by filtering untrusted DHCP messages and by building and maintaining a DHCP snooping binding table. An untrusted message is a message that is received from outside the network or firewall and that can cause traffic attacks within your network.

The DHCP snooping binding table contains the MAC address, IP address, lease time, binding type, VLAN number, and interface information that corresponds to the local untrusted interfaces of a switch; it does not contain information regarding hosts interconnected with a trusted interface. An untrusted interface is an interface that is configured to receive messages from outside the network or firewall. A trusted interface is an interface that is configured to receive only messages from within the network.

DHCP snooping acts like a firewall between untrusted hosts and DHCP servers. It also gives you a way to differentiate between untrusted interfaces connected to the end-user and trusted interfaces connected to the DHCP server or another switch.

Global Settings

The global settings allow you to enable or disable DHCP snooping feature. You can also enable the MAC Verify at this page.

To access this page, click DHCP snooping under the System menu.

DHCP Snooping Status

Mac Verify

VLAN Settings

Enable or Disable the DHCP snooping feature.

Enable the MAC address verify or not.

VLAN ID

DHCP Snooping Status

Specify the VLAN to have the DHCP Snooping function.

Enable or Disable the DHCP snooping on the VLAN.

Trust Port Settings

Set the DCHP Server at trusted ports.

Port

State

Select the port as the DHCP server trusted port.

Set the port to be trust or un-trust port.

Binding list

Display the DHCP client information.

VID

Port

MAC address

IP address

Display the VLAN id of client information.

Display the port number of client information.

Display the MAC address of client information.

Display the IP address of client information.

VLAN Statistics

Display the DHCP snooping packet information on each VLAN

PoE

The PoE management page contains PoE subsystem information for monitoring the current power usage and assigns the total amount of power the Switch can provide to all of its PoE ports. To access the page, click PoE under the System menu.

Power Budget

Total Power Budget: Enter the amount of power the Switch can provide to all ports.

Consumed Power: Displays the total amount of power (in watts) currently being delivered to all

PoE ports.

NOTE: With different platform, the total power budget could be different.

PoE Port Settings

Port

State

Priority

Displays the specific port for which PoE parameters are defined. PoE parameters are assigned to the powered device that is connected to the selected port.

Displays the active participating members of the trunk group.

Select the port priority if the power supply is low. The field default is Low. For example, if the power supply is running at 99% usage, and port 1 is prioritized as high, but port 6 is prioritized as low, port 1 is prioritized to receive power and port 6 may be denied power.

Low

: Sets the PoE priority level as low.

Medium: Sets the PoE priority level as medium.

High: Sets the PoE priority level as high.

Critical: Sets the PoE priority level as critical.

Power

Limit Type

Class (User

Defined)

Shows the classification of the powered device. The class defines the maximum power that can be provided to the powered device. The possible field values are:

Class 0: The maximum power level at the Power Sourcing Equipment is

15.4 Watts.

Class 1: The maximum power level at the Power Sourcing Equipment is 4.0 Watts.

Class 2: The maximum power level at the Power Sourcing Equipment is 7.0 Watts.

Class 3: The maximum power level at the Power Sourcing Equipment is

15.4 Watts.

Class 4: The maximum power level at the Power Sourcing Equipment is 30 Watts.

Select this option to base the power limit on the value configured in the User

Power Limit field.

User Power

Limit

Status

Set the maximum amount of power that can be delivered by a port.

Note: The User Power Limit can only be implemented when the Class value is set to User-Defined.

Shows the port's PoE status. The possible field values are:

Delivering Power: The device is enabled to deliver power via the port.

Disabled: The device is disabled for delivering power via the port.

Test Fail: The powered device test has failed. For example, a port could not

be enabled and cannot be used to deliver power to the powered device.

Testing: The powered device is being tested. For example, a powered device is tested to confirm it is receiving power from the power supply.

Searching: The device is currently searching for a powered device. Searching is the default PoE operational status.

Fault: The device has detected a fault on the powered device when the port is forced on. For example, the power supply voltage is out of range, a short occurs, a communication or there is a communication error with PoE devices, or an unknown error occurs.

Click Apply to save settings.

EEE

Energy Efficient Ethernet (EEE), an Institute of Electrical and Electronics Engineers (IEEE)

802.3az standard, reduces the power consumption of physical layer devices during periods of low link utilization. EEE saves energy by allowing PHY non-essential circuits shut down when there is no traffic.

Network administrators have long focused on the energy efficiency of their infrastructure, and the EnGenius Layer 2 Switch complies with the IEEE’s Energy-Efficient Ethernet (EEE) standard. The EEE compliant Switch offers users the ability to utilize power that Ethernet links use only during data transmission. Lower Power Idle (LPI) is the method for achieving the power saving during Ethernet ideal time.

Use the EEE configuration page to configure Energy Efficient Ethernet.

Port

Display the port for which the EEE setting is displayed.

EEE Status

Click Apply to save settings.

Enable or disable EEE for the specified port.

L2 Feature

The L2 Feature tab exhibits complete standard-based Layer 2 switching capabilities, including: Link Aggregation, 802.1D Spanning Tree Protocol, 802.1w Rapid Spanning Tree Protocol,

802.1s Multiple Spanning Tree Protocol, MAC Address Table, Internet Group Management Protocol (IGMP) Snooping, Port Mirroring, 802.1ab Link Layer Discovery Protocol (LLDP), and Multicast Listener Discovery (MLD) snooping. Utilize these features to configure the Switch to your preferences.

Link Aggregation

A Link Aggregation Group (LAG) optimizes port usage by linking a group of ports together to form a single, logical, higher-bandwidth link. Aggregating ports multiplies the bandwidth and increases port flexibility for the Switch. Link Aggregation is most commonly used to link a bandwidth intensive network device (or devices), such as a server, to the backbone of a network.

The participating ports are called Members of a port trunk group. Since all ports of the trunk group must be configured to operate in the same manner, the configuration of the one port of the trunk group is applied to all ports of the trunk group. Thus, you will only need to configure one of any of the ports in a trunk group. A specific data communication packet will always be transmitted over the same port in a trunk group. This ensures the delivery of individual frames of a data communication packet will be received in the correct order. The traffic load of the LAG will be balanced among the ports according to Aggregate Arithmetic. If the connections of one or several ports are broken, the traffic of these ports will be transmitted on the normal ports, so as to guarantee the connection reliability.

When you aggregate ports, the ports and LAG must fulfill the following conditions:

•

All ports within a LAG must be the same media/format type.

•

A VLAN is not configured on the port.

•

The port is not assigned to another LAG.

•

The Auto-negotiation mode is not configured on the port.

•

The port is in full-duplex mode.

•

All ports in the LAG have the same ingress filtering and tagged modes.

•

All ports in the LAG have the same back pressure and flow control modes.

•

All ports in the LAG have the same priority.

•

All ports in the LAG have the same transceiver type.

•

Ports can be configured as LACP ports only if the ports are not part of a previously configured LAG.

LACP is a dynamic protocol which helps to automate the configuration and maintenance of LAG’s. The main purpose of LACP is to automatically configure individual links to an aggregate bundle, while adding new links and helping to recover from link failures if the need arises. LACP can monitor to verify if all the links are connected to the authorized group. LACP is a standard in

computer networking; hence LACP should be enabled on the Switch's trunk ports initially in order for both the participating Switches/devices that support the standard to use it.

Port Trunking

Port Trunking allows you to assign physical links to one logical link that functions as a single, higher-speed link, providing dramatically increased bandwidth. Use Port Trunking to bundle multiple connections and use the combined bandwidth as if it were a single larger pipe.

Important: You must enable Trunk Mode before you can add a port to a trunk group.

Group

Active Ports

Member Port

Mode

Displays the number of the given trunk group. You can utilize up to 8 link aggregation groups and each group consisting up to 8 ports on the Switch.

Displays the active participating members of the trunk group.

Select the ports you wish to add into the trunk group. Up to eight ports per group can be assigned.

Static: The Link Aggregation is configured manually for specified trunk

group.

LACP: The Link Aggregation is configured dynamically for specified trunk

group.

LACP allows for the automatic detection of links in a port trunking group when connected to a LACP-compliant Switch. You will need to ensure that both the Switch and device connected to are in the same mode in order for them to function, otherwise they will not work. Static configuration is used when connecting to a Switch that does not support LACP.

Click the Apply button to accept the changes or the Cancel button to discard them.

LACP Settings

Assign a system priority to run with Link Aggregation Control Protocol (LACP) and is become for a backup link if a link goes down. The lowest system priority is allowed to make decisions about which ports it is actively participating in in case a link goes down. If two or more ports have the same LACP port priority, the port with the lowest physical port number will be selected as the backup port. If a LAG already exists with the maximum number of allowed port members, and LACP is subsequently enabled on another port using a higher priority than an existing member, the newly configured port will replace the existing port member that has a lower priority. A smaller number indicates a higher priority level. The range is from 0-65535 and default is:

32768.

System Priority

System Policy

Enter the LACP priority value to the system. The default is 32768 and the range is from 1 to 65535.

Select trunk load balance policy to the system. The default is src-destmac.

Click Apply to save settings.

LACP Timeout

Link Aggregation Control Protocol (LACP) allows the exchange of information with regard to the link aggregation between two members of aggregation. The LACP Time Out value is measured in a periodic interval. Check first whether the port in the trunk group is up. When the interval expires, it will be removed from the trunk. Set a Short Timeout (one second) for busy trunked links to ensure that disabled ports are removed from the trunk group as soon as possible. The default value for LACP time out is: Long Timeout.

Timeout

Click Apply to save settings.

Select the administrative LACP timeout.

Long Timeout: The LACP PDU will be sent for every 30 seconds, and the LACP timeout value is 90 seconds.

Short Timeout: The LACP PDU will be sent every second. The timeout value is 3 seconds.

Mirror Settings

Mirrors network traffic by forwarding copies of incoming and outgoing packets from specific ports to a monitoring port. The packet that is copied to the monitoring port will be the same format as the original packet.

Port mirroring is useful for network monitoring and can be used as a diagnostic tool. Use port mirroring to send traffic to applications that analyze traffic for purposes such as monitoring compliance, detecting intrusions, monitoring and predicting traffic patterns, and other correlating events. Port Mirroring is needed for traffic analysis on a Switch because a Switch normally sends packets only to the port to which the destination device is connected. The analyzer captures and evaluates the data without affecting the client on the original port. Port mirroring can consume significant CPU resources while active, so be cautious of such usage when configuring the Switch.

Session ID

Destination Port

Source TX/RX Port

Ingress State

Session State

A number identifying the mirror session. This Switch only supports up to 4 mirror sessions.

Select the port for traffic purposes from source ports mirrored to this port.

Sets the source port from which traffic will be mirrored.

TX Port: Only frames transmitted from this port are mirrored to the

destination port.

RX Port: Only frames received on this port are mirrored to the

destination port.

Both: Frames received and transmitted on this port are mirrored to the specified destination port.

None: Disables mirroring for this port.

Select whether to enable or disable ingress traffic forwarding.

Select whether to enable or disable port mirroring.

Note: You cannot mirror a faster port onto a slower port. For example, if you try to mirror the

traffic from a 100Mbps port onto a 10Mbps port, this can cause throughput problems. The

port you are copying frames from should always support an equal or lower speed than the

port to which you are sending the copies. Please note a target port and a source port cannot

be the same port.

Click the button to modify specific mirror entry.

Click the Apply button to accept the changes or the Cancel button to discard them.

+ 79 hidden pages