Netgear ProSafe user Manual
ProSafe® Managed Switch
Web Management User Manual
350 East Plumeria Drive
San Jose, CA 95134
USA
October 27, 2010
202-10757-01
v1.0
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
©2010 NETGEAR, Inc. All rights reserved.
No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated
into any language in any form or by any means without the written permission of NETGEAR, Inc.
Technical Support
Thank you for choosing NETGEAR. To register your product, get the latest product updates, or get support online,
visit us at http://support.netgear.com.
Phone (US & Canada only): 1-888-NETGEAR
Phone (Other Countries): See Support information card.
Trademarks
NETGEAR, the NETGEAR logo, ReadyNAS, ProSafe, Smart Wizard, Auto Uplink, X-RAID2, and NeoTV are
trademarks or registered trademarks of NETGEAR, Inc. Microsoft, Windows, Windows NT, and Vista are
registered trademarks of Microsoft Corporation. Other brand and product names are registered trademarks or
trademarks of their respective holders.
Statement of Conditions
To improve internal design, operational function, and/or reliability, NETGEAR reserves the right to make changes
to the products described in this document without notice. NETGEAR does not assume any liability that may occur
due to the use, or application of, the product(s) or circuit layout(s) described herein.
Revision History
Publication Part Number Version Publish Date Comments
202-10757-01 v1.0 October 27, 2010
2 |
Table of Contents
Chapter 1 Getting Started
Switch Management Interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9
Web Access. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9
Understanding the User Interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
Using the Web Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
Using SNMP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
Interface Naming Convention . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
Chapter 2 Configuring System Information
Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
System Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
Switch Statistics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
System Resource . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
Slot Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
Loopback Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
Network Interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
Time. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
DNS. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46
License . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
Show License . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
License Features. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50
Services. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50
DHCP Server. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
DHCP Relay . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
DHCP L2 Relay . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64
UDP Relay. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
DHCPv6 Server. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71
DHCPv6 Relay. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
Stacking. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
Basic . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80
Advanced. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
PoE . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 86
Basic . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 86
Advanced. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89
SNMP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 93
SNMPV1/V2. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 93
SNMP V3. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101
LLDP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 102
LLDP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103
Table of Contents | 3
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
LLDP-MED . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .113
ISDP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 121
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .121
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .124
Chapter 3 Configuring Switching Information
VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .130
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .131
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .134
Spanning Tree Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .151
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .152
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .155
Multicast. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .168
MFDB . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .168
IGMP Snooping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .172
MLD Snooping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .184
Address Table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .192
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .192
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .195
Ports. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 197
Port Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .198
Port Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .200
Link Aggregation Groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .201
LAG Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .201
LAG Membership . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .203
Chapter 4 Routing
Routing Table. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 205
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .205
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .209
IP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 213
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .213
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .220
IPv6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .229
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .230
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .233
VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 250
VLAN Routing Wizard. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .251
VLAN Routing Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .252
ARP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 252
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .253
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .255
RIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .258
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .258
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .260
OSPF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .266
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .267
4 | Contents
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .268
OSPFv3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .296
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .296
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .298
Router Discovery . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .323
Router Discovery Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .324
VRRP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .325
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .325
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .329
Multicast . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .334
Mroute Table. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .335
Multicast Global Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .336
Multicast Interface Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . .337
DVMRP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .338
IGMP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .346
PIM-DM. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .359
PIM-SM. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .362
Static Routes Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .370
Admin Boundary Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .371
IPv6 Multicast. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .371
Mroute Table. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .372
IPv6 PIM-DM . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .374
IPv6 PIM-SM. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .377
MLD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .385
Static Routes Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .397
Chapter 5 Configuring Quality of Service
Class of Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .398
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .399
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .401
Differentiated Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .407
DiffServ Wizard. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .409
Auto VoIP Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .411
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .412
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .414
Chapter 6 Managing Device Security
Management Security Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .427
Local User. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .428
Enable Password Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .431
Line Password Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .432
RADIUS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .433
Configuring TACACS+ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .440
Authentication List Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . .443
Login Sessions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .450
Configuring Management Access. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .450
HTTP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .451
Contents | 5
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
HTTPS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .453
SSH . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .458
Telnet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .462
Console Port. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .464
Denial of Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .465
Port Authentication. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 466
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .467
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .470
Traffic Control. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .481
MAC Filter. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .481
Port Security. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .484
Private Group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .490
Protected Ports Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .492
Storm Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .493
Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .496
DHCP Snooping. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .497
IP Source Guard. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .503
Dynamic ARP Inspection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .505
Captive Portal. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .512
Configuring Access Control Lists . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .524
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .524
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .531
Chapter 7 Monitoring the System
Ports. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 546
Port Statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .546
Port Detailed Statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .549
EAP Statistics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .557
Cable Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .559
Logs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .560
Buffered Logs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .561
Command Log Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .563
Console Log Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .564
SysLog Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .565
Trap Logs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .566
Event Logs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .568
Persistent Logs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .570
Port Mirroring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .571
Multiple Port Mirroring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .571
sFlow . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 573
Basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .573
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .575
Chapter 8 Maintenance
Save Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .578
Save Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .578
Auto Install Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .580
6 | Contents
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Reset . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .580
Device Reboot . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .580
Factory Default . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .582
Password Reset . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .583
Upload File From Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .583
File Upload . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .583
HTTP File Upload. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .586
USB File Upload. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .587
Download File To Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .587
File Download. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .588
HTTP File Download. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .589
USB File Download. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .592
File Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .592
Copy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .593
Dual Image Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .594
Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .595
Ping IPv4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .595
Ping IPv6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .598
Traceroute IPv4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .599
Traceroute IPv6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .601
Chapter 9 Help
Online Help. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .602
Support. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .602
User Guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .603
Appendix A Default Settings
Appendix B Configuration Examples
Virtual Local Area Networks (VLANs). . . . . . . . . . . . . . . . . . . . . . . . . . . .608
VLAN Example Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .609
Access Control Lists (ACLs). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .610
MAC ACL Example Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . .611
Standard IP ACL Example Configuration . . . . . . . . . . . . . . . . . . . . . . .612
Differentiated Services (DiffServ). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .613
Class. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .613
DiffServ Traffic Classes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .614
Creating Policies. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .614
DiffServ Example Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .616
802.1X . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .617
802.1X Example Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .619
MSTP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .620
MSTP Example Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .621
Appendix C Notification of Compliance
Contents | 7
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Index
8 | Contents
1. Getting Started
This chapter provides an overview of starting your NETGEAR ProSafe® Managed Switches and
accessing the user interface. This chapter contains the following sections:
• Switch Management Interface on page 9
• Web Access on page 9
• Web Access on page 9
• Understanding the User Interfaces on page 10
• Interface Naming Convention on page 18
Switch Management Interface
The NETGEAR ProSafe® Managed Switches contain an embedded Web server and
management software for managing and monitoring switch functions. ProSafe® Managed
Switches function as simple switches without the management software. However, you can
use the management software to configure more advanced features that can improve switch
efficiency and overall network performance.
1
Web-based management lets you monitor, configure, and control your switch remotely using
a standard Web browser instead of using expensive and complicated SNMP software
products. From your Web browser, you can monitor the performance of your switch and
optimize its configuration for your network. You can configure all switch features, such as
VLANs, QoS, and ACLs by using the Web-based management interface.
Web Access
To access the ProSafe® Managed Switches management interface:
• Open a Web browser and enter the IP address of the switch in the address field.
You must be able to ping the IP address of the ProSafe® Managed Switches management
interface from your administrative system for Web access to be available. If you did not
change the IP address of the switch from the default value, enter 169.254.100.100 into the
address field.
Accessing the switch directly from your Web browser displays the login screen shown below.
Chapter 1. Getting Started | 9
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Understanding the User Interfaces
ProSafe® Managed Switches software includes a set of comprehensive management
functions for configuring and monitoring the system by using one of the following methods:
• Web user interface
• Simple Network Management Protocol (SNMP)
• Command Line Interface (CLI)
Each of the standards-based management methods allows you to configure and monitor the
components of the ProSafe® Managed Switches software. The method you use to manage
the system depends on your network size and requirements, and on your preference.
The ProSafe® Managed Switch Web Management User Manual describes how to use the
Web-based interface to manage and monitor the system.
Using the Web Interface
To access the switch by using a Web browser, the browser must meet the following software
requirements:
• HTML version 4.0, or later
• HTTP version 1.1, or later
• Java Runtime Environment 1.6 or later
Use the following procedures to log on to the Web interface:
1. Open a Web browser and enter the IP address of the switch in the Web browser
address field.
10 | Chapter 1. Getting Started
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
2. The default username is admin, default password is none (no password). Type the
username into the field on the login screen and then click Login. Usernames and
passwords are case sensitive.
3. After the system authenticates you, the System Information page displays.
The figure below shows the layout of the Managed Switch Web interface.
Navigation Tab
Page Menu
Configuration Status and Options
Feature Link
Logout
Button
Help LInk
Help Page
Chapter 1. Getting Started | 11
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Navigation Tabs, Feature Links, and Page Menu
The navigation tabs along the top of the Web interface give you quick access to the various
switch functions. The tabs are always available and remain constant, regardless of which
feature you configure.
When you select a tab, the features for that tab appear as links directly under the tabs. The
feature links in the blue bar change according to the navigation tab that is selected.
The configuration pages for each feature are available as links in the page menu on the left
side of the page. Some items in the menu expand to reveal multiple configuration pages, as
the following figure shows. When you click a menu item that includes multiple configuration
pages, the item becomes preceded by a down arrow symbol and expands to display the
additional pages.
Page Link
Configuration
Pages
12 | Chapter 1. Getting Started
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Configuration and Monitoring Options
The area directly under the feature links and to the right of the page menu displays the
configuration information or status for the page you select. On pages that contain
configuration options, you can input information into fields or select options from drop-down
menus.
Each page contains access to the HTML-based help that explains the fields and
configuration options for the page. Each page also contains command buttons.
Table 1 shows the command buttons that are used throughout the pages in the Web
interface:
Table 1.
Button Function
Add Clicking Add adds the new item configured in the heading row of a table.
Apply Clicking the Apply button sends the updated configuration to the switch. Configuration
changes take effect immediately.
Cancel Clicking Cancel cancels the configuration on the screen and resets the data on the screen
to the latest value of the switch.
Delete Clicking Delete removes the selected item.
Refresh Clicking the Refresh button refreshes the page with the latest information from the device.
Logout Clicking the
Logout button ends the session.
Chapter 1. Getting Started | 13
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Device View
The Device View is a Java® applet that displays the ports on the switch. This graphic provides
an alternate way to navigate to configuration and monitoring options. The graphic also
provides information about device ports, current configuration and status, table information,
and feature components.
The Device View is available from the System
Device View page.
The port coloring indicates whether a port is currently active. Green indicates that the port is
enabled, red indicates that an error has occurred on the port, or red indicates that the link is
disabled.
The Device View of the switch is shown below.
14 | Chapter 1. Getting Started
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Click the port you want to view or configure to see a menu that displays statistics and
configuration options. Click the menu option to access the page that contains the
configuration or monitoring options.
Chapter 1. Getting Started | 15
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
If you click the graphic, but do not click a specific port, the main menu appears. This menu
contains the same option as the navigation tabs at the top of the page.
Help Page Access
Every page contains a link to the online help , which contains information to assist in
configuring and managing the switch. The online help pages are context sensitive. For
example, if the IP Addressing page is open, the help topic for that page displays if you click
Help.
16 | Chapter 1. Getting Started
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
User-Defined Fields
User-defined fields can contain 1 to 159 characters, unless otherwise noted on the
configuration Web page. All characters may be used except for the following (unless
specifically noted in for that feature):
Table 2.
\ <
/ >|
* |
?
Using SNMP
The ProSafe® Managed Switches software supports the configuration of SNMP groups and
users that can manage traps that the SNMP agent generates.
ProSafe® Managed Switches use both standard public MIBs for standard functionality and
private MIBs that support additional switch functionality. All private MIBs begin with a “-”
prefix. The main object for interface configuration is in -SWITCHING-MIB, which is a private
MIB. Some interface configurations also involve objects in the public MIB, IF-MIB.
SNMP is enabled by default. The System
Management System Information Web page,
which is the page that displays after a successful login, displays the information you need to
configure an SNMP manager to access the switch.
Any user can connect to the switch using the SNMPv3 protocol, but for authentication and
encryption, the switch supports only one user which is admin; therefore there is only one
profile that can be created or modified.
To configure authentication and encryption settings for the SNMPv3 admin profile by using
the Web interface:
1. Navigate to the System
SNMP SNMPv3 User Configuration page.
2. To enable authentication, select an Authentication Protocol option, which is either MD5 or
SHA.
3. To enable encryption, select the DES option in the Encryption Protocol field. Then, enter
an encryption code of eight or more alphanumeric characters in the Encryption Key field.
4. Click Apply.
To access configuration information for SNMPv1 or SNMPv2, click System
SNMP
SNMPv1/v2 and click the page that contains the information to configure.
Chapter 1. Getting Started | 17
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Interface Naming Convention
The ProSafe® Managed Switches support physical and logical interfaces. Interfaces are
identified by their type and the interface number. The physical ports are gigabit interfaces and
are numbered on the front panel. You configure the logical interfaces by using the software.
Table 3 describes the naming convention for all interfaces available on the switch.
Table 3.
Interface Description Example
Physical The physical ports are gigabit
Ethernet interfaces and are
numbered sequentially starting
from one.
Link Aggregation Group (LAG) LAG interfaces are logical
interfaces that are only used for
bridging functions.
CPU Management Interface This is the internal switch interface
responsible for the switch base
MAC address. This interface is not
configurable and is always listed in
the MAC Address Table.
Routing VLAN Interfaces This is an interface used for routing
functionality.
1/0/1, 1/0/2, 1/0/3, and so on
lag 1, lag 2, lag 3, and so on
0/5/1
Vlan 1, Vlan 2, Vlan 3, and so on
18 | Chapter 1. Getting Started
2. Configuring System Information
Use the features in the System tab to define the switch’s relationship to its environment. The
System tab contains links to the following features:
• Management on page 19
• Device View (See Device View on page 14)
• License on page 49
• Services on page 50
• Stacking on page 79
• PoE on page 86
• SNMP on page 93
• LLDP on page 102
• ISDP on page 121
2
Management
This section describes how to display the switch status and specify some basic switch
information, such as the management interface IP address, system clock settings, and DNS
information. From the Management link, you can access the following pages:
• System Information on page 20
• Switch Statistics on page 26
• System Resource on page 29
• Slot Information on page 30
• Loopback Interface on page 32
• Network Interface on page 33
• Time on page 38
• DNS on page 46
Chapter 2. Configuring System Information | 19
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
System Information
After a successful login, the System Information page displays. Use this page to configure
and view general device information.
To display the System Information page, click System Management System Information.
A screen similar to the following displays.
20 | Chapter 2. Configuring System Information
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
The System Information provides various statuses:
Switch Status
To define system information:
1. Open the System Information page.
2. Define the following fields:
a. System Name - Enter the name you want to use to identify this switch. You may use
up to 255 alphanumeric characters. The factory default is blank.
b. System Location - Enter the location of this switch. You may use up to 255
alphanumeric characters. The factory default is blank.
c. System Contact - Enter the contact person for this switch. You may use up to 25
alphanumeric characters. The factory default is blank.
d. Login Timeout - Specify how many minutes of inactivity should occur on a serial
port connection before the switch closes the connection. Enter a number between 0
and 160: the factory default is 5. Entering 0 disables the timeout.
3. Click Apply to send the updated screen to the switch and cause the changes to take effect
on the switch. These changes will not be retained across a power cycle unless a save is
performed.
Chapter 2. Configuring System Information | 21
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
The following table describes the status information the System Page displays.
Table 2-1.
Field Description
Product Name The product name of this switch.
IPv4 Network Interface The IPv4 address and mask assigned to the network
interface.
IPv6 Network Interface The IPv6 prefix and prefix length assigned to the
network interface.
IPv4 Loopback Interface The IPv4 address and mask assigned to the
loopback interface.
IPv6 Loopback Interface The IPv6 prefix and prefix length assigned to the
loopback interface.
System Date The current date.
System Up time The time in days, hours and minutes since the last
switch reboot.
System SNMP OID The base object ID for the switch's enterprise MIB.
System Mac Address Universally assigned network address.
Supported Java Plugin Version The supported version of Java plugin.
22 | Chapter 2. Configuring System Information
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
FAN Status
The screen shows the status of the fans in all units. These fans remove the heat generated
by the power, CPU and other chipsets, make chipsets work normally. Fan status has three
possible values: OK, Failure, Not Applicable (NA).
The following table describes the Fan Status information.
Table 2-2.
Field Description
UNIT ID The unit identifier is assigned to the switch which the
fan belongs to.
FAN The working status of the fan in each unit.
Click REFRESH to refresh the system information of the switch.
Temperature Status
The screen shows the current temperature of the CPU and MACs. The temperature is instant
and can be refreshed when the REFRESH button is pressed. The maximum temperature of
CPU and MACs depends on the actual hardware.
The following table describes the Temperature Status information.
Chapter 2. Configuring System Information | 23
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Table 2-3.
Field Description
CPU The current temperature of the CPU in the switch.
MAC The current temperature of the MACs in the switch.
Click REFRESH to refresh the system information of the switch.
Device Status
The screen shows the software version of each device.
The following table describes the Device Status information.
Table 2-4.
Field Description
Firmware Version The release.version.maintenance.build number of
the code currently running on the switch. For
example, if the release was 8, the version was 0, the
maintenance number was 3, and the build number
was 11, the format would be ‘8.0.3.11’.
Boot Version The version of the boot code which is in the flash
memory to load the firmware into the memory.
CPLD Version The version of the software for CPLD.
Serial Number The serial number of this switch.
24 | Chapter 2. Configuring System Information
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Table 2-4.
Field Description
RPS Indicates the status of the RPS. The status has three
possible values:
• Not Present: RPS bank not connected
• OK: RPS bank connected.
• FAIL: RPS is present, but power is failed.
Power Module Indicates the status of the internal power module.
PoE Version Version of the PoE controller FW image.
MAX PoE Indicates the status of maximum PoE power
available on the switch as follows:
• ON: Indicates less than 7W of PoE power
available for another device.
• OFF: Indicates at least 7W of PoE power
available for another device.
• N/A: Indicates that PoE is not supported by the
unit.
Click REFRESH to refresh the system information of the switch.
Chapter 2. Configuring System Information | 25
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Switch Statistics
Use this page to display the switch statistics.
To display the Switch Statistics page, click System > Management > Switch Statistics. A
screen similar to the following displays.
26 | Chapter 2. Configuring System Information
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
The following table describes Switch Statistics information.
Table 2-5.
Field Description
ifIndex This object indicates the ifIndex of the interface table
entry associated with the Processor of this switch.
Octets Received The total number of octets of data received by the
processor (excluding framing bits but including FCS
octets).
Packets Received Without Errors The total number of packets (including broadcast
packets and multicast packets) received by the
processor.
Unicast Packets Received The number of subnetwork-unicast packets delivered
to a higher-layer protocol.
Multicast Packets Received The total number of packets received that were
directed to a multicast address. Note that this
number does not include packets directed to the
broadcast address.
Broadcast Packets Received The total number of packets received that were
directed to the broadcast address. Note that this
does not include multicast packets.
Receive Packets Discarded The number of inbound packets which were chosen
to be discarded even though no errors had been
detected to prevent their being deliverable to a
higher-layer protocol. A possible reason for
discarding a packet could be to free up buffer space.
Octets Transmitted The total number of octets transmitted out of the
interface, including framing characters.
Packets Transmitted Without Errors The total number of packets transmitted out of the
interface.
Unicast Packets Transmitted The total number of packets that higher-level
protocols requested be transmitted to a
subnetwork-unicast address, including those that
were discarded or not sent.
Multicast Packets Transmitted The total number of packets that higher-level
protocols requested be transmitted to a Multicast
address, including those that were discarded or not
sent.
Broadcast Packets Transmitted The total number of packets that higher-level
protocols requested be transmitted to the Broadcast
address, including those that were discarded or not
sent.
Chapter 2. Configuring System Information | 27
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Table 2-5.
Field Description
Transmit Packets Discarded The number of outbound packets which were chosen
to be discarded even though no errors had been
detected to prevent their being deliverable to a
higher-layer protocol. A possible reason for
discarding a packet could be to free up buffer space.
Most Address Entries Ever Used The highest number of Forwarding Database
Address Table entries that have been learned by this
switch since the most recent reboot.
Address Entries in Use The number of Learned and static entries in the
Forwarding Database Address Table for this switch.
Maximum VLAN Entries The maximum number of Virtual LANs (VLANs)
allowed on this switch.
Most VLAN Entries Ever Used The largest number of VLANs that have been active
on this switch since the last reboot.
Static VLAN Entries The number of presently active VLAN entries on this
switch that have been created statically.
Dynamic VLAN Entries The number of presently active VLAN entries on this
switch that have been created by GVRP registration.
VLAN Deletes The number of VLANs on this switch that have been
created and then deleted since the last reboot.
Time Since Counters Last Cleared The elapsed time, in days, hours, minutes, and
seconds, since the statistics for this switch were last
cleared.
Click CLEAR to clear all the counters, resetting all switch summary and detailed statistics to
default values. The discarded packets count cannot be cleared.
28 | Chapter 2. Configuring System Information
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
System Resource
Use this page to display the system resources.
To display the System Resource page, click System > Management > System Resource. A
screen similar to the following displays.
CPU Memory Status
The following table describes CPU Memory Status information.
Table 2-6.
Field Description
Total System Memory The total memory of the switch in KBytes.
Available Memory The available memory space for the switch in
KBytes.
CPU Utilization Information
This page displays the CPU Utilization information, which contains the memory information,
task-related information and percentage of CPU utilization per task.
Chapter 2. Configuring System Information | 29
ProSafe® Gigabit L3 Managed Stackable Switches Software Administration Manual
Slot Information
Use this page to display slot information and supported cards.
To display the Slot Information page, click System > Management > Slot Information. A
screen similar to the following displays.
Slot Summary
This screen displays details of the different slots in the different units in the stack.
The following table displays Slot Summary information.
Table 2-7.
Field Description
Slot Identifies the slot using the format unit/slot.
Status Displays whether the slot is empty or full.
Administrative State Displays whether the slot is administratively enabled
or disabled
Power State Displays whether the slot is powered on of off.
Card Model ID Displays the model ID of the card configured for the
slot.
Card Description Displays the description of the card configured for
the slot.
30 | Chapter 2. Configuring System Information
Loading...