Planet Technology WGSW-24000 User Manual

24-Port 10/100/1000Mbps
Ethernet Security Switch
WGSW-24000
User's Manual
Trademarks
Contents subject to which revision without prior notice.
PLANET is a registered trademark of PLANET Technology Corp. All other trademarks belong to their
respective owners.
Disclaimer
PLANET Technology does not warrant that the hardware will work properly in all environments and
applications, and makes no warranty and representation, either implied or expressed, with respect to the
quality, performance, merchantability, or fitness for a particular purpose.
PLANET has made every effort to ensure that this User's Manual is accurate; PLANET disclaims liability
for any inaccuracies or omissions that may have occurred.
Information in this User's Manual is subject to change without notice and does not represent a
commitment on the part of PLANET. PLANET assumes no responsibility for any inaccuracies that may be
contained in this User's Manual. PLANET makes no commitment to update or keep current the
information in this User's Manual, and reserves the right to make improvements to this User's Manual
and/or to the products described in this User's Manual, at any time without notice.
If you find information in this manual that is incorrect, misleading, or incomplete, we would appreciate
your comments and suggestions.
FCC Warning
This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant
to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful
interference when the equipment is operated in a commercial environment. This equipment generates,
uses, and can radiate radio frequency energy and, if not installed and used in accordance with the
Instruction manual, may cause harmful interference to radio communications. Operation of this
equipment in a residential area is likely to cause harmful interference in which case the user will be
required to correct the interference at whose own expense.
CE Mark Warning
This is a Class A product. In a domestic environment, this product may cause radio interference, in which
case the user may be required to take adequate measures.
Revision
PLANET 24-Port 10/100/1000Mbps Ethernet Security Switch User's Manual
FOR MODEL: WGSW-24000
Part No. 2081-A93050-000
Table of Contents
1. INTRODUCTION ......................................................................................................................................................13
1.1 Packet Contents........................................................................................................................................... 13
1.2 How to Use This Manual .............................................................................................................................. 13
1.3 Product Feature ...........................................................................................................................................13
1.4 Product Specification ...................................................................................................................................14
2. INSTALLATION......................................................................................................................................................... 16
2.1 Product Description...................................................................................................................................... 16
2.1.1 Product Overview...................................................................................................................................... 16
2.1.2 Switch Front Panel .................................................................................................................................... 17
2.1.3 LED Indications ......................................................................................................................................... 17
2.1.4 Switch Rear Panel.....................................................................................................................................17
2.2 Install the Switch .......................................................................................................................................... 18
2.2.1 Desktop Installation .............................................................................................................................18
2.2.2 Rack Mounting..................................................................................................................................... 18
3. CONFIGURATION....................................................................................................................................................20
3.1 Management Access Overview....................................................................................................................20
3.1.1 Administration Console ........................................................................................................................21
3.1.2 Direct Access....................................................................................................................................... 22
3.2 Web Management........................................................................................................................................ 22
3.3 SNMP-Based Network Management ...........................................................................................................22
3.4 Protocols ......................................................................................................................................................23
3.4.1 Virtual Terminal Protocols.................................................................................................................... 23
3.4.2 SNMP Protocol ....................................................................................................................................23
3.4.3 Management Architecture....................................................................................................................23
4. Web Configuration ....................................................................................................................................................24
4.1 Main Menu ...................................................................................................................................................24
4.2 Configure System.........................................................................................................................................25
4.2.1 ARP Cache ..........................................................................................................................................25
4.2.2 Inventory Information ...........................................................................................................................26
4.2.3 System Loading ...................................................................................................................................27
4.2.4 Configuration .......................................................................................................................................28
4.2.5 Forwarding Database ..........................................................................................................................41
4.2.6 Logs .....................................................................................................................................................42
4.2.7 Port ......................................................................................................................................................43
4.2.8 SNMP ..................................................................................................................................................47
4.2.9 Statistics...............................................................................................................................................50
4.2.10 System Utilities .................................................................................................................................. 58
4.2.11 Trap Management.............................................................................................................................. 63
4.3 Switching...................................................................................................................................................... 65
4.3.1 VLAN ...................................................................................................................................................65
4.3.2 Protocol-based VLAN ..........................................................................................................................70
4.3.3 Filters ...................................................................................................................................................72
4.3.4 GARP...................................................................................................................................................74
4.3.5 IGMP Snooping ...................................................................................................................................77
4.3.6 Port Channel........................................................................................................................................ 79
4.3.7 Multicast Forwarding Database ........................................................................................................... 81
4.3.8 Spanning Tree......................................................................................................................................85
4.3.9 Class of Service................................................................................................................................... 92
4.4 Security ........................................................................................................................................................93
4.4.1 Port Access Control.............................................................................................................................93
4.4.2 RADIUS .............................................................................................................................................100
4.4.3 MAC Lock ..........................................................................................................................................106
4.4.4 Secure HTTP .....................................................................................................................................108
4.4.5 Secure Shell ......................................................................................................................................109
4.5 QoS ............................................................................................................................................................ 110
4.5.1 IP Access Control List........................................................................................................................ 110
4.5.2 Differentiated Services....................................................................................................................... 114
4.5.3 Rate Limiting...................................................................................................................................... 125
5. COMMAND STRUCTURE......................................................................................................................................128
5.1 Format........................................................................................................................................................ 128
5.1.1 Command ..........................................................................................................................................128
5.1.2 Parameters ........................................................................................................................................128
5.1.3 Values................................................................................................................................................ 128
5.1.4 Conventions....................................................................................................................................... 129
5.1.5 Annotations........................................................................................................................................129
6. QUICK START UP .................................................................................................................................................. 131
6.1 Quick Starting the Switch...........................................................................................................................131
6.2 System Info and System Setup.................................................................................................................. 131
7. MODE-BASED CLI .................................................................................................................................................136
7.1 Mode-Based Topology ...............................................................................................................................137
7.2 Mode-based Command Hierarchy ............................................................................................................. 138
7.3 Flow of Operation....................................................................................................................................... 140
7.4 "No" Form of a Command .......................................................................................................................... 141
7.4.1 Support for "No" Form .......................................................................................................................141
7.4.2 Behavior of Command Help ("?").......................................................................................................141
8. CLI Commands: Base............................................................................................................................................. 143
8.1 System Information and Statistics Commands ..........................................................................................143
8.1.1 show arp switch ...............................................................................................................................143
8.1.2 show eventlog..................................................................................................................................143
8.1.3 show hardware ................................................................................................................................144
8.1.4 show interface.................................................................................................................................. 144
8.1.5 show interface ethernet ...................................................................................................................145
8.1.6 show logging....................................................................................................................................151
8.1.7 show mac-addr-table .......................................................................................................................152
8.1.8 show msglog....................................................................................................................................152
8.1.9 show running-config......................................................................................................................... 152
8.1.10 show sysinfo ..................................................................................................................................153
8.1.11 snmp-server ...................................................................................................................................153
8.2 Management VLAN Commands ................................................................................................................153
8.2.1 network mgmt_vlan.......................................................................................................................... 153
8.3 Dot1P Commands...................................................................................................................................... 153
8.3.1 classofservice dot1pmapping ..........................................................................................................153
8.3.2 show classofservice dot1pmapping ................................................................................................. 154
8.3.3 vlan port priority all........................................................................................................................... 154
8.3.4 vlan priority.......................................................................................................................................154
8.4 LAG/Port-Channel (802.3ad) Commands .................................................................................................. 154
8.4.1 port-channel staticcapability.............................................................................................................154
8.4.2 show port-channel brief ...................................................................................................................155
8.5 Management Commands........................................................................................................................... 155
8.5.1 bridge aging-time ............................................................................................................................. 155
8.5.2 mtu ...................................................................................................................................................156
8.5.3 network javamode............................................................................................................................ 156
8.5.4 network mac-address ......................................................................................................................156
8.5.5 network mac-type ............................................................................................................................157
8.5.6 network parms .................................................................................................................................157
8.5.7 network protocol ..............................................................................................................................157
8.5.8 remotecon maxsessions .................................................................................................................. 157
8.5.9 remotecon timeout ........................................................................................................................... 158
8.5.10 serial baudrate ............................................................................................................................... 158
8.5.11 serial timeout..................................................................................................................................158
8.5.12 set prompt ......................................................................................................................................159
8.5.13 show forwardingdb agetime...........................................................................................................159
8.7.14 show network .................................................................................................................................159
8.5.15 show remotecon ............................................................................................................................160
8.5.16 show serial .....................................................................................................................................160
8.5.17 show snmpcommunity ...................................................................................................................161
8.5.18 show snmptrap ..............................................................................................................................161
8.5.19 show trapflags................................................................................................................................ 162
8.5.20 snmp-server community ................................................................................................................162
8.5.21 snmp-server community ipaddr......................................................................................................163
8.5.22 snmp-server community ipmask .................................................................................................... 163
8.5.23 snmp-server community mode ......................................................................................................164
8.5.24 snmp-server community ro ............................................................................................................164
8.5.25 snmp-server community rw............................................................................................................ 164
8.5.26 snmp-server enable traps .............................................................................................................. 164
8.5.28 snmp-server enable traps linkmode............................................................................................... 165
8.5.29 snmp-server enable traps multiusers............................................................................................. 165
8.5.30 snmp-server enable traps stpmode ...............................................................................................166
8.5.31 snmptrap ........................................................................................................................................ 166
8.5.32 snmptrap ipaddr............................................................................................................................. 166
8.5.33 snmptrap mode .............................................................................................................................. 167
8.5.34 telnet .............................................................................................................................................. 167
8.6 Device Configuration Commands ..............................................................................................................167
8.6.1 addport............................................................................................................................................. 167
8.6.2 auto-negotiate..................................................................................................................................168
8.6.3 auto-negotiate all .............................................................................................................................168
8.6.4 delete interface ................................................................................................................................168
8.6.5 deleteport .........................................................................................................................................168
8.6.6 macfilter ...........................................................................................................................................168
8.6.7 macfilter adddest .............................................................................................................................169
8.6.8 macfilter adddest all.........................................................................................................................169
8.6.9 macfilter addsrc ...............................................................................................................................170
8.6.10 macfilter addsrc all.........................................................................................................................170
8.6.11 monitor session.............................................................................................................................. 171
8.6.12 monitor session mode.................................................................................................................... 171
8.6.13 port lacpmode ................................................................................................................................ 171
8.6.14 port lacpmode all ...........................................................................................................................172
8.6.15 port-channel ...................................................................................................................................172
8.6.16 port-channel adminmode ............................................................................................................... 172
8.6.17 port-channel linktrap ......................................................................................................................172
8.6.18 port-channel name .........................................................................................................................173
8.6.19 protocol group ................................................................................................................................173
8.6.20 protocol vlan group ........................................................................................................................173
8.6.21 protocol vlan group all.................................................................................................................... 174
8.6.22 set garp timer join ..........................................................................................................................174
8.6.23 set garp timer join all...................................................................................................................... 175
8.6.24 set garp timer leave .......................................................................................................................175
8.6.25 set garp timer leave all................................................................................................................... 175
8.6.26 set garp timer leaveall.................................................................................................................... 176
8.6.27 set garp timer leaveall all ............................................................................................................... 176
8.6.28 set gmrp adminmode ..................................................................................................................... 177
8.6.29 set gmrp interfacemode .................................................................................................................177
8.6.30 set gmrp interfacemode all ............................................................................................................178
8.6.31 set gvrp adminmode ......................................................................................................................178
8.6.32 set gvrp interfacemode ..................................................................................................................178
8.6.33 set gvrp interfacemode all.............................................................................................................. 179
8.6.34 show description ............................................................................................................................ 179
8.6.35 show garp ......................................................................................................................................179
8.6.36 show gmrp configuration................................................................................................................ 179
8.6.37 show gvrp configuration.................................................................................................................180
8.6.38 show igmpsnooping ....................................................................................................................... 181
8.6.39 show mac-address-table gmrp ......................................................................................................182
8.6.40 show mac-address-table igmpsnooping ........................................................................................182
8.6.41 show mac-address-table multicast.................................................................................................182
8.6.42 show mac-address-table static ......................................................................................................183
8.6.43 show mac-address-table staticfiltering........................................................................................... 183
8.6.44 show mac-address-table stats ....................................................................................................... 183
8.6.45 show monitor..................................................................................................................................184
8.6.46 show port .......................................................................................................................................184
8.6.47 show port protocol .........................................................................................................................185
8.6.48 show port-channel .........................................................................................................................185
8.6.49 show storm-control ........................................................................................................................186
8.6.50 show vlan.......................................................................................................................................186
8.6.51 show vlan brief...............................................................................................................................187
8.6.52 show vlan port................................................................................................................................ 187
8.6.53 shutdown........................................................................................................................................188
8.6.54 shutdown all...................................................................................................................................188
8.6.55 snmp trap link-status...................................................................................................................... 188
8.6.56 snmp trap link-status all ................................................................................................................. 188
8.6.57 spanning-tree.................................................................................................................................189
8.6.58 spanning-tree bpdumigrationcheck................................................................................................ 189
8.6.59 description......................................................................................................................................189
8.6.60 speed ............................................................................................................................................. 190
8.6.61 speed all.........................................................................................................................................190
8.6.62 storm-control broadcast ................................................................................................................. 190
8.6.63 storm-control flowcontrol................................................................................................................ 191
8.6.64 vlan ................................................................................................................................................191
8.6.65 vlan acceptframe............................................................................................................................192
8.6.66 vlan ingressfilter.............................................................................................................................192
8.6.67 vlan makestatic .............................................................................................................................. 193
8.6.68 vlan name ......................................................................................................................................193
8.6.69 vlan participation............................................................................................................................193
8.6.70 vlan participation all .......................................................................................................................193
8.6.71 vlan port acceptframe all................................................................................................................ 194
8.6.72 vlan port ingressfilter all ................................................................................................................. 194
8.6.73 vlan port pvid all.............................................................................................................................195
8.6.74 vlan port tagging all........................................................................................................................ 195
8.6.75 vlan protocol group ........................................................................................................................195
8.6.76 vlan protocol group add protocol ...................................................................................................195
8.6.77 vlan protocol group remove ...........................................................................................................196
8.6.78 vlan pvid......................................................................................................................................... 196
8.6.79 vlan tagging....................................................................................................................................196
8.7 User Account Management Commands ....................................................................................................197
8.7.1 disconnect........................................................................................................................................ 197
8.7.2 show loginsession............................................................................................................................ 197
8.7.3 show users....................................................................................................................................... 197
8.7.4 users name ...................................................................................................................................... 198
8.7.5 users passwd...................................................................................................................................198
8.7.6 users snmpv3 accessmode .............................................................................................................199
8.7.7 users snmpv3 authentication ........................................................................................................... 199
8.7.8 users snmpv3 encryption.................................................................................................................199
8.8 System Utilities...........................................................................................................................................200
8.8.1 clear config.......................................................................................................................................200
8.8.2 clear counters ..................................................................................................................................200
8.8.3 clear igmpsnooping.......................................................................................................................... 200
8.8.4 clear pass.........................................................................................................................................200
8.8.5 clear port-channel ............................................................................................................................ 201
8.8.6 clear traplog ..................................................................................................................................... 201
8.8.7 clear vlan..........................................................................................................................................201
8.8.8 copy .................................................................................................................................................201
8.8.9 logout ............................................................................................................................................... 202
8.8.10 ping ................................................................................................................................................ 202
8.8.11 reload .............................................................................................................................................202
9. CLI COMMANDS: QUALITY OF SERVICE............................................................................................................ 203
9.1 CLI Commands: Access Control List .........................................................................................................203
9.1.1 show ip access-lists ......................................................................................................................... 203
9.2 Configuration Commands ..........................................................................................................................203
9.2.1 access-list ........................................................................................................................................ 203
9.2.2 ip access-group ...............................................................................................................................204
9.2.3 ip access-group all...........................................................................................................................204
9.3 CLI Commands: Differentiated Services....................................................................................................205
9.3.1 diffserv .............................................................................................................................................206
9.4 Class Commands....................................................................................................................................... 206
9.4.1 class-map.........................................................................................................................................207
9.4.2 class-map rename ...........................................................................................................................208
9.4.3 match any ........................................................................................................................................208
9.4.4 match class-map.............................................................................................................................. 208
9.4.5 match destination-address mac.......................................................................................................209
9.4.6 match dstip.......................................................................................................................................209
9.4.7 match dstl4port ................................................................................................................................209
9.4.8 match ip dscp................................................................................................................................... 210
9.4.9 match ip precedence .......................................................................................................................210
9.4.10 match ip tos ................................................................................................................................... 211
9.4.11 match protocol................................................................................................................................211
9.4.12 match source-address mac ...........................................................................................................212
9.4.13 match srcip.....................................................................................................................................212
9.4.14 match srcl4port ..............................................................................................................................212
9.4.15 match vlan......................................................................................................................................213
9.5 Policy Commands ...................................................................................................................................... 213
9.5.1 bandwidth kbps ................................................................................................................................214
9.5.2 bandwidth percent............................................................................................................................214
9.5.3 class................................................................................................................................................. 215
9.5.4 expedite kbps................................................................................................................................... 215
9.5.5 expedite percent ..............................................................................................................................216
9.5.6 mark ip-dscp ....................................................................................................................................216
9.5.7 mark ip-precedence ......................................................................................................................... 216
9.5.8 police-simple....................................................................................................................................217
9.5.9 police-single-rate .............................................................................................................................217
9.5.10 police-two-rate ...............................................................................................................................218
9.5.11 policy-map......................................................................................................................................218
9.5.12 policy-map rename ........................................................................................................................219
9.5.13 randomdrop....................................................................................................................................219
9.5.14 shape bps-average ........................................................................................................................ 220
9.5.15 shape bps-peak .............................................................................................................................220
9.6 Service Commands.................................................................................................................................... 221
9.6.1 service-policy ................................................................................................................................... 221
9.7 Show Commands....................................................................................................................................... 222
9.7.1 show class-map ............................................................................................................................... 222
9.7.2 show diffserv....................................................................................................................................223
9.7.3 show policy-map .............................................................................................................................. 223
9.7.4 show diffserv service........................................................................................................................225
9.7.5 show diffserv service brief................................................................................................................226
9.7.6 show policy-map interface ...............................................................................................................226
9.7.7 show service-policy.......................................................................................................................... 227
9.8 Rate-Limiting Commands ..........................................................................................................................228
9.8.1 rate-limiting ......................................................................................................................................228
9.8.2 show rate-limiting.............................................................................................................................228
10. CLI COMMANDS: SECURITY.............................................................................................................................. 230
10.1 Security Commands................................................................................................................................. 230
10.1.1 authentication login........................................................................................................................230
10.1.2 clear dot1x statistics.......................................................................................................................231
10.1.3 clear radius statistics......................................................................................................................231
10.1.4 dot1x defaultlogin........................................................................................................................... 231
10.1.5 dot1x initialize ................................................................................................................................231
10.1.6 dot1x login......................................................................................................................................231
10.1.7 dot1x max-req ................................................................................................................................231
10.1.7.1 no dot1x max-req ........................................................................................................................232
10.1.8 dot1x port-control ...........................................................................................................................232
10.1.9 dot1x port-control All ......................................................................................................................232
10.1.10 dot1x re-authenticate ................................................................................................................... 233
10.1.11 dot1x re-authentication.................................................................................................................233
10.1.12 dot1x system-auth-control ...........................................................................................................233
10.1.13 dot1x timeout ...............................................................................................................................233
10.1.15 radius accounting mode............................................................................................................... 235
10.1.16 radius server host ........................................................................................................................235
10.1.17 radius server key .........................................................................................................................236
10.1.18 radius server msgauth .................................................................................................................236
10.1.19 radius server primary ................................................................................................................... 236
10.1.20 radius server retransmit ............................................................................................................... 236
10.1.21 radius server timeout ...................................................................................................................237
10.1.22 show accounting .......................................................................................................................... 237
10.1.23 show authentication ..................................................................................................................... 238
10.1.24 show authentication users ...........................................................................................................238
10.1.25 show dot1x................................................................................................................................... 238
10.1.26 show dot1x users .........................................................................................................................241
10.1.27 show radius.................................................................................................................................. 241
10.1.28 show radius statistics...................................................................................................................241
10.1.29 show users authentication ...........................................................................................................242
10.1.30 users defaultlogin......................................................................................................................... 242
10.1.31 users login ...................................................................................................................................243
10.2 Secure Shell (SSH) Commands ..............................................................................................................243
10.2.1 ip ssh..............................................................................................................................................243
10.2.2 ip ssh protocol................................................................................................................................ 243
10.2.3 show ip ssh .................................................................................................................................... 244
10.3 HTTP Commands ....................................................................................................................................244
10.3.1 ip http secure-port ..........................................................................................................................244
10.3.2 ip http secure-protocol ...................................................................................................................244
10.3.3 ip http secure-server ...................................................................................................................... 244
10.3.4 ip http server .................................................................................................................................. 245
10.3.5 show ip http.................................................................................................................................... 245
10.4 MAC Lock Commands .............................................................................................................................246
10.4.1 mac-lock.........................................................................................................................................246
10.4.2 show mac-lock ............................................................................................................................... 246
11. CLI COMMANDS: SWITCHING............................................................................................................................247
11.1 Spanning Tree Commands....................................................................................................................... 247
11.1.1 show spanning-tree........................................................................................................................247
11.1.2 show spanning-tree interface ......................................................................................................... 248
11.1.3 show spanning-tree mst detailed ...................................................................................................248
11.1.4 show spanning-tree mst port detailed ............................................................................................249
11.1.5 show spanning-tree mst port summary .......................................................................................... 250
11.1.6 show spanning-tree mst summary .................................................................................................250
11.1.7 show spanning-tree summary ........................................................................................................ 250
11.1.8 show spanning-tree vlan ................................................................................................................251
11.1.9 spanning-tree .................................................................................................................................251
11.1.10 spanning-tree configuration name................................................................................................251
11.1.11 spanning-tree configuration revision ............................................................................................252
11.1.12 spanning-tree edgeport ................................................................................................................ 252
11.1.13 spanning-tree forceversion...........................................................................................................252
11.1.14 spanning-tree forward-time ..........................................................................................................253
11.1.15 spanning-tree hello-time...............................................................................................................253
11.1.16 spanning-tree max-age ................................................................................................................253
11.1.17 spanning-tree mst ........................................................................................................................254
11.1.18 spanning-tree mst instance .......................................................................................................... 255
11.1.19 spanning-tree mst priority.............................................................................................................255
11.1.20 spanning-tree mst vlan................................................................................................................. 256
11.1.21 spanning-tree port mode .............................................................................................................. 256
11.1.22 spanning-tree port mode all .........................................................................................................256
12. SWITCH OPERATION..........................................................................................................................................257
12.1 Address Table.....................................................................................................................................257
12.2 Learning.............................................................................................................................................. 257
12.3 Forwarding & Filtering.........................................................................................................................257
12.4 Store-and-Forward..............................................................................................................................257
12.5 Auto-Negotiation .................................................................................................................................258
13. TROUBLE SHOOTING.........................................................................................................................................259
APPENDEX A .............................................................................................................................................................260
A.1 Switch's RJ-45 Pin Assignments............................................................................................................260
A.2 10/100Mbps, 10/100Base-TX ................................................................................................................260
1. INTRODUCTION
1.1 Packet Contents
Check the contents of your package for following parts:
Gigabit Ethernet Security Switch x1
CD-ROM user's manual x1
Quick installation guide x1
19" rack mounting kit x1
Power cord x1
Rubber feet x 4
If any of these are missing or damaged, please contact your dealer immediately, if possible, retain the
carton including the original packing material, and use them against to repack the product in case there is
a need to return it to us for repair.
1.2 How to Use This Manual
This User Manual is structured as follows:
Section 2, Installation
The section explains the functions of the Switch and how to physically install the Switch.
Section 3, Configuration
The section contains the information about the software function of the Switch.
Section 4, Switch Operation
The section contains specifications of the Switch.
Appendex A
The section contains cable information of the Switch.
In the following section, terms "SWITCH" with upper case denotes the WGSW-24000 Ethernet security
switch. Terms with lower case "switch" means other Ethernet switch devices.
1.3 Product Feature
24 10/100/1000Mbps auto-negotiation ports.
Supports half duplex and full duplex modes and auto-negotiation for all
10Base-T/100Base-TX/1000Base-T ports.
MDI/MDI-X auto-sense on all ports and IEEE 802.3ab Auto MDI/MDI-X on all 100/1000
twisted-pair ports.
Supports up to four Class of Server (CoS) queues per egress port.
Implements two mechanisms, cell-based HOL blocking and packet-based HOL blocking, to
prevent Head of Line Blocking on a per-port basis.
Supports a packet aging mechanism, which allows the switch to discard a packet residing in
the packet memory. The packet age limit is programmable and has maximum time duration
of approximately 515 seconds.
Supports mechanisms to handle backpressure allowing for flexible flow control on packet
transactions. The limit at which backpressure is detected is based on the amount of memory
utilized by the packets on an input port. This limit is programmable on a per-port basis.
Provides programmable threshold limits to prevent packets from flooding into other parts of
the network. Three types of packet can be monitored and separate counters are maintained
for each type of packet.
Full compliant with the IEEE 802.1D spanning tree support specifications.
Supports the IEEE 802.1s specification for multiple spanning trees on a single port (spanning
tree per VLAN).
Supports the IEEE 802.1p specification for traffic class expediting and dynamic multicast
filtering support (Class of Service, or CoS).
Supports the IEEE 802.1Q Specification for Virtual Bridged Local Area Network.
Provides a mechanism by which up to eight ports of the same speed can be bundled
together to form a port bundle or a trunk group. Up to six trunk groups can be established.
Supports inclusive and exclusive filtering to enable a switch application to filter and classify
packets based on certain protocol fields in the packet.
Supports mirroring to monitor the incoming or outgoing traffic on a particular port.
1.4 Product Specification
Model Hardware Specification Network Ports 24-Port 10/100/1000Base-T RJ-45 ports SFP Mini-GBIC interfaces 2 Switch architecture Store and forward switch architecture Throughput 35.7Mpps Switch fabric 48Gbps MAC address Table 8K MAC address table with Auto learning function Memory 64Mbits for packet buffer Flow Control Back pressure for half duplex, IEEE 802.3x Pause Frame for full duplex
WGSW-24000
Dimension 430mm(W) x 350mm(D) x 44.5mm(H) Weight 5.0 kg Power Requirement 100~240V AC, 50-60, Auto-sensing Power Consumption 60 Watts, 204BTU/hr Management Interface Console. Telnet, SSH, Web, SSL, SNMP
Operating Temperature 0~℃ 50 , Storage Temperature -40 ~70 ,℃℃ Operating Humidity 5% to 90%, relative humidity, non-condensing Storage Humidity 5% to 90%, relative humidity, non-condensing Standards Conformance Regulation Compliance FCC Part 15 Class A, CE Standard Compliance IEEE 802.3 10Base-T
IEEE 802.3u 100Base-TX/100Base-FX
IEEE 802.3ab 1000Base-T
IEEE 802.3z 1000Base-SX/LX
IEEE 802.3x Flow Control and Back pressure
IEEE 802.3ad Port trunk with LACP
IEEE 802.1d Spanning tree protocol
IIEEE 802.1w Rapid spanning tree protocol
IEEE 802.1p Class of service
IEEE 802.1Q VLAN Tagging
2. INSTALLATION
This section describes the functionalities of the Switch's components and guides how to install it on the
desktop or shelf. Basic knowledge of networking is assumed. Please read this chapter completely before
continuing.
2.1 Product Description
The PLANET WGSW-24000 is a 24-Port 10/100/1000Mbps with 2 shared SFP/copper GbE interface
Gigabit Ethernet Switch. It boasts a high performance switch architecture that is capable of providing
non-blocking switch fabric and wire-speed throughput as high as 48Gbps. Its two built-in GbE uplink ports
also offer incredible extensibility, flexibility and connectivity to the Core switch or Servers.
2.1.1 Product Overview
PLANET WGSW-24000 is loaded with powerful traffic management and QoS features to enhance
services offered by telcos. It provides 4 priority queues per port for different types of traffics, allowing
administrators to set policies for classified filtering and rule-based rate limitation. The WGSW-24000
prioritizes applications with WFQ (Weighted Fair Queuing) scheduling algorithm to allocate more
bandwidth to key traffics such as voice transmission, empowering the enterprise to take full advantages
of the limited network resources and guarantee the best performance.
PLANET WGSW-24000 offers comprehensive Access Control List (ACL) for enforcing security to the
edge. Its protection mechanisms comprised of port-based 802.1x user and device authentication. The
administrators can now construct highly secured corporate networks with time and effort considerably
less then before.
With its built-in web-based management, the PLANET WGSW-24000 offers an easy-to-use,
platform-independent management and configuration facility. The PLANET WGSW-24000 supports
standard Simple Network Management Protocol (SNMP) and can be managed via any standard-based
management software. For text-based management, the WGSW-24000 can also be accessed via Telnet
and the console port. For secure remote management, the WGSW-24000 support SSL and SSH
connection which encrypt the packet content at each session.
2.1.2 Switch Front Panel
Figure 2-1 shows the front panel of the switch.
Figure 2-1 WGSW-24000 front panel.
2.1.3 LED Indications
Network:
LED Color Function
PWR Green Lights to indicate that the Switch is powered on. LNK/ACT Green Lights to indicate the link through that port is successfully established. 100 Green Lights to indicate the port is running in 100Mbps speed.
FDX/COL Green Blink to indicate the switch is actively sending or receiving data over that port.
Gigabit:
LED Color Function
LNK/ACT Green Lights to indicate the link through that port is successfully established. 1000 Green Lights to indicate the port is running in 100Mbps speed.
FDX/COL Green Blink to indicate the switch is actively sending or receiving data over that port.
2.1.4 Switch Rear Panel
Figure 2-2 shows the rear panel of the switch
100 ~ 240V AC
50 / 60 Hz
Figure 2-2 WGSW-24000 rear panel.
Power Notice:
1. The device is a power-required device, it means, it will not work till it is powered. If your networks
should active all the time, please consider using UPS (Uninterrupted Power Supply) for your device.
It will prevent you from network data loss or network downtime.
2. In some area, installing a surge suppression device may also help to protect your switch from being
damaged by unregulated surge or current to the Switch or the power adapter.
2.2 Install the Switch
This section describes how to install the Ethernet Switch and make connections to it. Please read the
following topics and perform the procedures in the order being presented.
2.2.1 Desktop Installation
To install the Switch on desktop or shelf, please follows these steps:
Step1: Attach the rubber feet to the recessed areas on the bottom of the switch. Step2: Place the switch on the desktop or the shelf near an AC power source. Step3: Keep enough ventilation space between the switch and the surrounding objects.
"Note: When choosing a location, please keep in mind the environmental restrictions discussed in
Chapter 1, Section 4, in Specification.
Step4: Connect the Switch to network devices.
A. Connect one end of a standard network cable to the 10/100/1000 RJ-45 ports on the front of the
Switch
B. Connect the other end of the cable to the network devices such as printer servers, workstations
or routers…etc.
"Note: Connection to the Switch requires UTP Category 5 network cabling with RJ-45 tips. For more
information, please see the Cabling Specification in Appendix A.
Step5: Supply power to the switch.
A. Connect one end of the power cable to the switch. B. Connect the power plug of the power cable to a standard wall outlet.
When the switch receives power, the Power LED should remain solid Green.
2.2.2 Rack Mounting
To install the switch in a 19-inch standard rack, please follows the instructions described below.
Step1: Place the switch on a hard flat surface, with the front panel positioned towards the front side. Step2: Attach the rack-mount bracket to each side of the switch with supplied screws attached to the
package.
Figure 2-5 shows how to attach brackets to one side of the switch.
Figure 2-5 Attach brackets to the switch.
Caution:
You must use the screws supplied with the mounting brackets. Damage caused to the parts by using
incorrect screws would invalidate the warranty.
Step3: Secure the brackets tightly. Step4: Follow the same steps to attach the second bracket to the opposite side. Step5: After the brackets are attached to the Switch, use suitable screws to securely attach the brackets
to the rack, as shown in Figure 2-6
Figure 2-6 Mounting the Switch in a Rack
Step6: Proceeds with the steps 4 and steps 5 of session 2.2.1 Desktop Installation to connect the
network cabling and supply power to the switch.
3. CONFIGURATION
This chapter explains the methods that you can use to configure management access to the switch. It
describes the types of management applications and the communication and management protocols that
deliver data between your management device (work-station or personal computer) and the system. It
also contains information about port connection options.
This chapter covers the following topics:
Management Access Overview
Key Concepts
Key Guidelines for Implementation
Administration Console Access
Web Management Access
SNMP Access
Standards, Protocols, and Related Reading
3.1 Management Access Overview
The switch gives you the flexibility to access and manage the switch using any or all of the following
methods:
An administration console
Web browser interface
An external SNMP-based network management application
The administration console and Web browser interface support are embedded in the switch software and
are available for immediate use. Each of these management methods has their own advantages. Table
3-1 compares the three management methods.
Method Advantages Disadvantages
Console
Web Browser
SNMP Agent
No IP address or subnet needed
Text-based
Telnet functionality and HyperTerminal
built into Windows 95/98/NT/2000/ME/XP
operating systems
Secure
Ideal for configuring the switch remotely
Compatible with all popular browsers
Can be accessed from any location
Most visually appealing
Communicates with switch functions at
the MIB level
Based on open standards
Must be near switch or use dial-up
connection
Not convenient for remote users
Modem connection may prove to be
unreliable or slow
Security can be compromised
(hackers need only know the IP address
and subnet mask)
May encounter lag times on poor
connections
Requires SNMP manager software
Least visually appealing of all three
methods
Some settings require calculations
Security can be compromised
(hackers need only know the
community name)
Table 3-1 Management Methods Comparison
3.1.1 Administration Console
The administration console is an internal, character-oriented, and command line user interface for
performing system administration such as displaying statistics or changing option settings. Using this
method, you can view the administration console from a terminal, personal computer, Apple Macintosh,
or workstation connected to the switch's console (serial) port.
There are two ways to use this management method: via direct access or modem port access. The
following sections describe these methods. For more information about using the console, refer to
Chapter 4 Command Line Interface Console Management.
3.1.2 Direct Access
Direct access to the administration console is achieved by directly connecting a terminal or a PC
equipped with a terminal-emulation program (such as HyperTerminal) to the switch console (serial) port.
When using this management method, a null-modem cable is required to connect the switch to the PC.
After making this connection, configure the terminal-emulation program to use the following parameters:
The default parameters are:
115,200 bps
8 data bits
No parity
1 stop bit
You can change these settings, if desired, after you log on. This management method is often preferred
because you can remain connected and monitor the system during system reboots. Also, certain error
messages are sent to the serial port, regardless of the interface through which the associated action was
initiated. A Macintosh or PC attachment can use any terminal-emulation program for connecting to the
terminal serial port. A workstation attachment under UNIX can use an emulator such as TIP.
3.2 Web Management
The switch provides a browser interface that lets you configure and manage the switch remotely. After
you set up your IP address for the switch, you can access the switch's Web interface applications directly
in your Web browser by entering the IP address of the switch. You can then use your Web browser to list
and manage switch configuration parameters from one central location, just as if you were directly
connected to the switch's console port.
Web Management requires either Microsoft Internet Explorer 4.01 or later or Netscape Navigator 4.03 or
later.
3.3 SNMP-Based Network Management
You can use an external SNMP-based application to configure and manage the switch. This
management method requires the SNMP agent on the switch and the SNMP Network Management
Station to use the same community string. This management method, in fact, uses two community strings:
the get community string and the set community string. If the SNMP Net-work management Station only
knows the set community string, it can read and write to the MIBs. However, if it only knows the get
community string, it can only read MIBs. The default gets and sets community strings for the switch are
public.
3.4 Protocols
The switch supports the following protocols:
Virtual terminal protocols, such as Telnet
Simple Network Management Protocol (SNMP)
3.4.1 Virtual Terminal Protocols
A virtual terminal protocol is a software program, such as Telnet, that allows you to establish a
management session from a Macintosh, a PC, or a UNIX workstation. Because Telnet runs over TCP/IP,
you must have at least one IP address configured on the switch before you can establish access to it with
a virtual terminal protocol.
"Note: Terminal emulation differs from a virtual terminal protocol in that you must connect a terminal
directly to the console (serial) port.
3.4.2 SNMP Protocol
Simple Network Management Protocol (SNMP) is the standard management protocol for multi-vendor IP
networks. SNMP supports transaction-based queries that allow the protocol to format messages and to
transmit information between reporting devices and data-collection programs. SNMP runs on top of the
User Datagram Protocol (UDP), offering a connectionless-mode service.
3.4.3 Management Architecture
All of the management application modules use the same Messaging Application Programming Interface
(MAPI). By unifying management methods with a single MAPI, configuration parameters set using one
method (console port, for example) are immediately displayable by the other management methods (for
example, SNMP agent of Web browser).
The management architecture of the switch adheres to the IEEE open standard. This compliance
assures customers that the switch is compatible with, and will interoperate with other solutions that
adhere to the same open standard.
4. Web Configuration
The WGSW-24000 can be configured through an Ethernet connection, make sure the manager PC must
be set on same the IP subnet address with the switch. For example, if you have changed the default IP address of the Switch to 192.168.16.234 with subnet mask 255.255.255.0 via console, then the manager PC should be set at 192.168.16.x (where x is a number between 2 and 254) with subnet mask
255.255.255.0. Or you can use the factory default IP address 192.168.0.100 to do the relative
configuration on manager PC.
Use Internet Explorer 5.0 or above Web browser. Enter IP address http://192.168.0.100 (the
factory-default IP address or that you have changed via console) to access the Web interface.
When the following login screen appears, please enter the default username "admin" and no password
(or the username/password you have changed via console) to login the main screen of Switch. The login
screen in Figure 4-1 appears.
Figure 4-1 Login screen
4.1 Main Menu
After a successful login, the main screen appears, the main screen displays the port status and a list of
System section and the topics it provide. As showed in Figure 4-2.
System Name - Enter the name you want to use to identify this switch. You may use up to
31 alpha-numeric characters. The factory default is blank.
System Location - Enter the location of this switch. You may use up to 31 alpha-numeric
characters. The factory default is blank.
System Contact - Enter the contact person for this switch. You may use up to 31
alpha-numeric characters. The factory default is blank.
Figure 4-2 main menu screen
4.2 Configure System
The System section provides information for configuring system parameters. Under system the following
topics are provided to configure and view the system information:
ARP Cache Inventory Information System Loading Configuration Forward Database Logs Port SNMP Statistics System Utilities Trap Manager
4.2.1 ARP Cache
The Address Resolution Protocol (ARP) dynamically maps physical (MAC) addresses to Internet (IP)
addresses. This panel displays the current contents of the ARP cache.
For each connection, the following information is displayed:
The physical (MAC) Address The associated IP address The identification of the port being used for the connection
As shows in figure 4-3:
Figure 4-3 ARP Cache
4.2.2 Inventory Information
Use this panel to display the switch's Vital Product Data, stored in non-volatile memory at the factory. The
page includes the following fields:
System Description - The product name of this switch. Machine Type - The machine type of this switch. Machine Model - The model within the machine type. Serial Number - The unique box serial number for this switch. FRU Number - The field replaceable unit number. Part Number - The manufacturing part number. Maintenance Level - The identification of the hardware change level. Manufacturer - The two-octet code that identifies the manufacturer. Base MAC Address - The burned-in universally administered MAC address of this switch. Software Version - The release version maintenance number of the code currently running
on the switch. For example, if the release was 1, the version was 2 and the maintenance
number was 4, the format would be '1.2.4'.
Operating System - The operating system currently running on the switch. Network Processing Device - Identifies the network processor hardware. Additional Packages - A list of the optional software packages installed on the switch, if
any. For example, FASTPATH BGP-4, or FASTPATH Multicast.
Figure 4-4 Inventory Information
4.2.3 System Loading
This page shows the system loading information, including the following fields:
CPU Utilization – The CPU usage percentage Memory Utilization – The total Memory size and the usage information
Figure 4-5 System Loading
4.2.4 Configuration
Use this page to configure the parameters for system management, including the following fields:
System Description Switch Network Connectivity Remote Session Serial Port User Account Authentication List Configuration Login Session Authentication List Summary User Login Single IP Management Single IP Mgmt Swap Control
4.2.4.1 System Description
This page shows the basic system information and is available to define the system name, location and
contact person. Includes the following fields:
System Name - Enter the name you want to use to identify this switch. You may use up to
31 alpha-numeric characters. The factory default is blank.
System Location - Enter the location of this switch. You may use up to 31 alpha-numeric
characters. The factory default is blank.
System Contact - Enter the contact person for this switch. You may use up to 31
alpha-numeric characters. The factory default is blank.
System Description - The product name of this switch. System Object ID - The base object ID for the switch's enterprise MIB. System IP Address - The IP Address assigned to the network interface. System Up time - The time in days, hours and minutes since the last switch reboot. MIBs Supported - The list of MIBs supported by the management agent running on this
switch.
Figure 4-6 System Description
4.2.4.2 Switch Configuration
This page includes the following fields:
Broadcast Storm Recovery Mode - Enable or disable this option by selecting the
corresponding line on the pull-down entry field. The factory default is disabled.
IEEE 802.3x Flow Control Mode - Enable or disable this option by selecting the
corresponding line on the pull-down entry field. The factory default is disabled.
Lag Static Capability Mode - May be enabled or disabled by selecting the corresponding
line on the pull-down entry field. The factory default is disabled.
Figure 4-7 Switch Configuration
4.2.4.3 Network Connectivity
The network interface is the logical interface used for in-band connectivity with the switch via any of the
switch's front panel ports. The configuration parameters associated with the switch's network interface do
not affect the configuration of the front panel ports through which traffic is switched or routed.
To access the switch over a network you must first configure it with IP information (IP address, subnet
mask, and default gateway). You can configure the IP information using any of the following:
BOOTP DHCP Terminal interface via the EIA-232 port
Once you have established in-band connectivity, you can change the IP information using any of the
following:
Terminal interface via the EIA-232 port Terminal interface via telnet SNMP-based management Web-based management
The page includes the following configurable data:
IP Address - The IP address of the interface. The factory default value is 0.0.0.0 Subnet Mask - The IP subnet mask for the interface. The factory default value is 0.0.0.0 Default Gateway - The default gateway for the IP interface. The factory default value is
0.0.0.0
Locally Administered MAC Address - You may configure a locally administered MAC
address for in-band connectivity instead of using the burned-in universally administered
MAC address. In addition to entering an address in this field, you must also set the MAC
address type to locally administered. Enter the address as twelve hexadecimal digits (6
bytes) with a colon between each byte. Bit 1 of byte 0 must be set to a 1 and bit 0 to a 0, i.e.
byte 0 must have a value between x'40' and x'7F'.
MAC Address type - Specify whether the burned-in or the locally administered MAC
address should be used for in-band connectivity. The factory default is to use the burned-in
MAC address
Network Configuration Protocol Current - Choose what the switch should do following
power-up: transmit a Bootp request, transmit a DHCP request, or do nothing (none). The
factory default is DHCP.
Management VLAN ID - Specifies the management VLAN ID of the switch. It may be
configured to any value in the range of 1 - 4093. The management VLAN is used for
management of the switch. This field is configurable for administrative users and read-only
for other users.
Web Mode - Specify whether the switch may be accessed from a web browser. If you
choose to enable web mode you will be able to manage the switch from a web browser. The
Loading...
+ 231 hidden pages