Planex SW-0216G4 User Manual

SW-0216G4

User’s Manual Version : SW-0216G4_Manual_V1c.pdf

Table of Contents

INTRODUCTION ................................................................................................................................................ 1

CHAPTER 1 OPERATION OF WEB-BASED MAN AGEMENT ........................................................ 2

CONNECTING TWISTED-PAIR

NETWORK DEVICES ........................................................................................................... 5

DEVICES .............................................................................................................................. 5

CHAPTER 2 SYSTEM ............................................................................................................................ 7

2-1

SYSTEM INFORMATION ................................................................................................................................. 7

2-1.1 Information .......................................................................................................................................... 7

2-1.2 Configuration ..................................................................................................................................... 10

TIME ........................................................................................................................................................... 11

2-2

2-2.1 Manual ............................................................................................................................................... 11

2-2.2 NTP .................................................................................................................................................... 13

ACCOUNT ................................................................................................................................................... 14

2-3

2-3.1 Users .................................................................................................................................................. 14

2-3.2 Privilege Level ................................................................................................................................... 16

IP ................................................................................................................................................................ 18

2-4

2-4.1 IPV4 ................................................................................................................................................... 18

SYSLOG ...................................................................................................................................................... 20

2-5

2-5.1 Configuration ..................................................................................................................................... 20

2-5.2 Log .................................................................................................................................................... 21

2-5.3 Detailed Log ..................................................................................................................................... 22

SNMP ........................................................................................................................................................ 23

2-6

2-6.1 Configuration ..................................................................................................................................... 23

2-6.2 Tarp .................................................................................................................................................... 25

CHAPTER 3. CONFIGURATION ........................................................................................................ 27

3-1

PORT ........................................................................................................................................................... 27

3-1.1 Configuration ..................................................................................................................................... 27

3-1.2 Port Description ................................................................................................................................. 29

3-1.3 Traf fic Overview ................................................................................................................................ 30

3-1.4 Detailed Statistics .............................................................................................................................. 31

3-1.5 Qos Statistics...................................................................................................................................... 33

3-1.6 SFP Information ................................................................................................................................. 34

3-1.7 EEE .................................................................................................................................................... 36

AGGREGATION ............................................................................................................................................ 38

3-2

3-2.1 Static Trunk ........................................................................................................................................ 38

3-2.1.1 Static Trunk ................................................................................................................................ 38

3-2.2 LACP ................................................................................................................................................. 40

3-2.2.1 Configuration ............................................................................................................................. 40

3-2.2.2 System Status ............................................................................................................................. 42

3-2.2.3 Port Status .................................................................................................................................. 43

3-2.2.4 Port Statistics .............................................................................................................................. 45

SPANNING TREE .......................................................................................................................................... 46

3-3

3-3.1 Bridge Settings ................................................................................................................................... 46

3-3.2 MSTI Mapping .................................................................................................................................. 49

3-3.3 MSTI Priorities .................................................................................................................................. 51

3-3.4 CIST Ports ......................................................................................................................................... 52

3-3.5 MSTI Ports......................................................................................................................................... 54

3-3.6 Bridge Status ...................................................................................................................................... 56

3-3.7 Port Status .......................................................................................................................................... 57

3-3.8 Port Statistics ..................................................................................................................................... 58

IGMP SNOOPING ........................................................................................................................................ 59

3-4

3-4.1 Basic Configuration ........................................................................................................................... 59

3-4.2 VLAN Configuration ......................................................................................................................... 62

3-4.3 Port Group Filtering ........................................................................................................................... 64

3-4.4 Status .................................................................................................................................................. 66

3-4.5 Group Infermation ............................................................................................................................. 68

3-4.6 IPv4 SSM information ....................................................................................................................... 69

MVR .......................................................................................................................................................... 71

3-5

3-5.1 Configuration ..................................................................................................................................... 71

3-5.2 Port Group Allow ............................................................................................................................... 73

3-5.3 Groups Information............................................................................................................................ 74

3-5.4 Statistics ............................................................................................................................................. 75

3-5.5 EEE .................................................................................................................................................... 76

3-5.6 Port Statistics ..................................................................................................................................... 78

VLAN ........................................................................................................................................................ 80

3-6

3-6.1 VLAN Membership ........................................................................................................................... 80

3-6.2 Ports ................................................................................................................................................... 82

3-6.3 Switch Status...................................................................................................................................... 85

3-6.4 Port Status .......................................................................................................................................... 87

3-6.5 Private VLANs .................................................................................................................................. 89

3-6.5.1 Private VLANs Membership ...................................................................................................... 89

3-6.5.2 Port Isolation .............................................................................................................................. 90

3-6.6 MAC-based VLAN ............................................................................................................................ 91

3-6.6.1 Configuration ............................................................................................................................. 91

3-6.6.2 Status ................................................................................................................ .......................... 93

3-6.7 Protocol -based VLAN ...................................................................................................................... 94

3-6.7.1 Protocol to Group ....................................................................................................................... 94

3-6.7.2 Group to VLAN ......................................................................................................................... 96

3-6.8 IEEE 802.1QinQ (double-tag) configuration ..................................................................................... 98

QOS .......................................................................................................................................................... 101

3-7

3-7.1 Port Classification ............................................................................................................................ 101

3-7.2 Port Scheduler .................................................................................................................................. 103

3-7.3 Port Shaping ..................................................................................................................................... 106

3-7.4 QoS Control List Configuration ....................................................................................................... 109

3-7.5 QCL S t atus ....................................................................................................................................... 113

LOOP PROTECTION ................................................................................................................................... 115

3-8

3-8.1 Configuration ................................................................................................................................... 115

3-8.2 Status ................................................................................................................................................ 117

MIRRORING .............................................................................................................................................. 118

3-9

TRAP EVENT SEVERITY .......................................................................................................................... 120

3-10

CHAPTER 4. SECURITY ............................................................................................................. 122

4-1

NAS ......................................................................................................................................................... 122

4-1.1 Configuration ................................................................................................................................... 122

4-1.2 Switch Status.................................................................................................................................... 126

4-1.3 Port Status ........................................................................................................................................ 128

PORT SECURITY ........................................................................................................................................ 131

4-2

4-2.1 Limit Control ................................................................................................................................... 131

4-2.2 Switch Status.................................................................................................................................... 134

4-2.3 Port Status ........................................................................................................................................ 136

CHAPTER 5. MAINTENANCE .................................................................................................. 138

5-1

WARM START ............................................................................................................................................ 138

FIRMWARE ................................................................................................................................................ 139

5-2

5-2.1 Firmware Upgrade ........................................................................................................................... 139

5-2.2 Firmware Selection .......................................................................................................................... 140

SAVE / RESTORE ....................................................................................................................................... 142

5-3

5-3.1 Factory Defaults ............................................................................................................................... 142

5-3.2 Save Start ......................................................................................................................................... 143

5-3.3 Save User ......................................................................................................................................... 144

5-3.4 Restore User ..................................................................................................................................... 145

EXPORT / IMPORT ...................................................................................................................................... 146

5-4

5-4.1 Export Config .................................................................................................................................. 146

5-4.2 Import Config ........................................................................................................... ....................... 147

DIAGNOSTICS ........................................................................................................................................... 148

5-5

5-5.1 Ping .................................................................................................................................................. 148

NOTE: Emphasizes important information or calls your

attention to rel ated features or instructions.

ARNING

personal injury.

Alerts you to a potential hazard that could cause

AUTION

loss of data, or damage the system or equipment.

Alerts you to a potential hazard that could cause

INTRODUCTION

Overview

In this User Manual, it will not only tell you how to install and connect your network system but configure and monitor the SW-0216G4 through the web by (RJ-45) serial interface and Ethernet ports step-by-step. Many explanations in detail of hardware and software functions are shown as well as the examples of the operation for web-based interface.

The SW-0216G4, the next generation web smart switch, from Manufacture Corporation, provides a reliable infrastructure for your business network. This switch delivers more intelligent features you need to improve the availability of your critical business applications, protects your sensitive information, and optimize your network bandwidth to deliver information and applications more effectively. It provides the ideal combination of affordability and capabilities for entry level n etworking of small business or enterprise which demands IP Phone, IP Camera or Wireless applications, thus helps you create a more efficient, better-connected workforce.

SW-0216G4 Web smart Switches provide 18 ports in a single device; the specification is highlighted as follows.

 Web Smart features provide better manageability, security, QoS, and

performance

 802.3az Energy Efficient Ethernet standard  Dual speed SFPs for FE or GbE fiber uplink  s-Flow supports  Easy-P ort-Configuration for ease of setup in the IP Phone, IP Camera or Wireless

environment

Overview of User Manual

 Chapter 1 “Operation of Web-based Management”

 Chapter 2 “System Information”

 Chapter 3 “Configuration”

 Chapter 4 “Security”

 Chapter 5 “Maintenance”

Chapter 1 Operation of Web-based Management

Initial Configuration

This chapter instructs you how to configure and manage the SW0216G4 through the web user interface. With this facility, you can easily access and monitor through any one port of the switch all the status of the switch, including MIBs status, each port activity, Spanning tree status, port aggregation status, multicast traffic, VLAN and priority status, even illegal access record and so on.

The default values of the SW-0216G4 are listed in the table below:

IP Address Subnet Mask Default Gateway Username Password

192.168.1.1

255.255.255.0

192.168.1.254

admin

After the SW-0216G4 has been finished configuration the it interface, you can browse it. For instance, type

http://192.168.1.1

the following screen and ask you inputting username and password in order to login and access authentication.

The default username is “admin” and password is empty. For the first time to use, please enter the default username and password, and then click the <Login> button. The login process now is completed. In this login menu, you have to input the complete username and password respectively, the SW-0216G4 will not give you a shortcut to username automatically. This looks inconvenient, but safer.

In the SW-0216G4, it supports a simple user management function allowing only one administrator to configure the system at the same time. If there are two or more users using administrator’s identity, it will allow the only one who logins first to configure the system. The rest of users, even with administrator’s identity, can only monitor the system. For those who have no administrator’s identity, can only monitor the system. There are only a maximum of three users able to log in s imult an eously in the SW- 0216G4.

in the address row in a browser, it will show

NOTE:

When you login the Switch WEB to manager. You must first type the Username of the admin. Password was blank, so when you type after the end Username, please press enter. Management page to enter WEB.

When you login SW-0216G4 series switch Web UI management, you can use both ipv4 login to manage

To optimize the display effect, we recommend you use Microsoft IE 6.0 above, Netscape V7.1 above or FireFox V1.00 above and have the resolution 1024x768. The switch supported neutral web browser interface.

NOTE:

Figure 1 The login page

AS SW-0216G4 the function enable dhcp, so If you do not have DHCP server to provide ip addresses to the switch, the Switch default ip 192.168.1.1

NOTE: If you need to configuration the function or parameter

then you can refer the detail in the User Manual. Or you could access to the Switch and click the "help" under the web GUI and the switch will pop-up the simple help content to teach you how to set the parameters.

SW-0216G4 web help function:

The switch is designed to be connected to 10, 100 or

CONNECTING NETWORK DEVICES

1000Mbps network cards in PCs and servers, as well as to other switches and hubs. It may also be connected to remote devices using optional SFP transceivers.

Each device requires an unshielded twisted-pair (UTP)

TWISTED-PAIR DEVICES

cable with RJ-45 connectors at both ends. Use Category 5, 5e or 6 cable for 1000BASE-T connections, Category 5 or better for 100BASE-TX connections.

The RJ-45 ports on the switch support automatic

CABLING GUIDELINES

See Appendix B for further information on cabling.

MDI/MDI-X pinout configuration, so you can use standard straight-through twisted-pair cables to connect to any other network device (PCs, servers, switches, routers, or hubs).

AUTION

port. This will damage the switch. Use only twisted-pair cables with RJ-45 connectors that conform to FCC standards.

Do not plug a phone jack connector into an RJ-45

CONNECTING TO PCS, SERVERS, HUBS AND SWITCHES

Step1. Attach one end of a twisted-pair cable segment to the device’s RJ-45

connector.

Figure 1: Making Twisted-Pair Connections

Step2. If the device is a network card and the switch is in the wiring closet, at tach the

other end of the cable segment to a modular wall outlet that is connected to the wiring closet. (See the section “Network Wiring Connections.”) Otherwise, attach the other end to an available port on the switch.

Make sure each twisted pair cable does not exceed 100 meters (328 ft) in length.

NOTE: Avoid using flow control on a port connected to a hub

unless it is actually required to solve a problem. Otherwise back pressure jamming signals may degrade overall

erformance for the segment attached to the hub.

Step3. As each connection is made, the Link LED (on the switch) corresponding to

each port will light green (1000 Mbps) or amber (100 Mbps) to indicate that the connection is valid.

NETWORK WIRING CONNECTIONS

Today, the punch-down block is an integral part of many of the newer equipment racks. It is actually part of the patch panel. Instructions for making connections in the wiring closet with this type of equipment follows.

Step1. Attach one end of a patch cable to an available port on the switch, and the

other end to the patch panel.

Step2. If not already in place, attach one end of a cable segment to the back of the

patch panel where the punch-down block is located, and the other end to a modular wall outlet.

Step3. Label the cables to simplify future troubleshooting. See “Cable Labeling and

Connection Records” on page 29

Figure 2: Network Wiring Connections

Equi pment Rack

Switch

Patch Panel

(sid e vi ew)

Patch-Down Block

Wall

Chapter 2 System

This chapter describes all of the basic configuration tasks which includes the System Information and any manage of the Switch (e.g. Time, Account, IP, Syslog and SNMP.)

2-1 System Information

After you login, the switch shows you the system information. This page is default and tells you the basic information of the system, including “Model Name”, “System Description”, “Contact”, “Device Name”, “System Up Time”, “BIOS Version”, “Firmware Version”, “Hardware-Mechanical Version”, “Serial Number”, “Host IP Address”, “Host Mac Address”, “Device Port”, “RAM Size” , “Flash Size” and. With this information, you will know the software version used, MAC address, serial number, how many ports good and so on. This is helpful while malfunctioning.

2-1.1 Information

The switch system information is provided here.

Web interface

To configure System Information in the web interface:

1. Click SYSTEM, System, and Information.

2. Specify the contact information for the system administrator as well as the name and

3. Click Refresh

location of the switch. Also indicate the local time zone by configuring the appropriate offset.

Figure 2-1.1: System Information

Parameter description:

 Model name:

The model name of this device.

 System description:

As it is, this tells what this device is. Here, it is “20-Port 10/100/1000Base-T + 4 TP/(100/1G) SFP Combo + 2 (100/1G) SFP Web Smart Switch”.

 Location:

Basically, it is the location where this switch is put. User-defined.

 Contact:

For easily managing and maintaining device, you may write down the contact person and phone here for getting help soon. You can configure this parameter through the device’s user interface or SNMP.

 Device name:

The name of the switch. User-defined.

 System Date:

Display the current system time and date. The field format is YYYY-MM-DD HH:MM:SS

 System up time:

The time accumulated since this switch is powered up. Its format is day, hour, minute, second.

 BIOS version:

The version of the BIOS in this switch.

 Firmware version:

The firmware version in this switch.

 Hardware-Mechanical version:

The version of Hardware and Mechanical. The figure before the hyphen is the version of electronic hardware; the one after the hyphen is the version of mechanical.

 Serial number:

The serial number is assigned by the Manufacture Corporation.

 Host IP address:

The IP address of the switch.

 Subnet Mask:

Displays the IP subnet mask assigned to the device.

 Gateway IP Address:

Displays the default gateway IP address assigned to the device.

 Host MAC address:

It is the Ethernet MAC address of the management agent in this switch.

 Console Baudrate:

Displays the baudrate of RS232(COM) port.

 RAM size:

The size of the RAM in this switch.

 Flash size:

The size of the flash memory in this switch.

 Bridge FDB size :

Displays the bridge forwarding database size of the device.

 Transmit Queue :

Displays the information about the transmit priority queue of switch.

 Maximum Frame size :

Displays the information about switch supported maximum frame size.

2-1.2 Configuration

You can identify the system by configuring the contact information, name, and location of the switch.

Web interface

To configure System Information in the web interface:

1. Click System, System Information, Configuration.

2. Write System Contact , System Name, System Location information

in this page.

3. Click Apply

Figure 2-1.2: System Information configuration

Parameter description:

 System Contact :

The textual identification of the contact person for this managed node, together with information on how to contact this person. The allowed string length is 0 to 255, and the allowed content is the ASCII characters from 32 to 126.

 System Name :

An administratively assigned name for this managed node. By convention, this is the node's fully-qualified domain name. A domain name is a text string drawn from the alphabet (A-Za-z), digits (0-9), minus sign (-). No space characters are permitted as part of a name. The first character must be an alpha character. And the first or last character must not be a minus sign. The allowed string length is 0 to 255.

 System Location :

The physical location of this node(e.g., telephone closet, 3rd floor). The allowed string length is 0 to 255, and the allowed content is the ASCII characters from 32 to 126.

2-2 Time

This page configure the switch Time. Time configure is including Time Configuration and NTP Configuration

2-2.1 Manual

The switch provides manual and automatic ways to set the system time via NTP. Manual setting is simple and you just input “Year”, “Month”, “Day”, “Hour”, “Minute” and “Second” within the valid value range indicated in each item.

Web Interface

To configure Time in the web interface:

1. Click Time , Manual.

2. Specify the Time parameter in manual parameters.

3. Click Apply

Figure 2-2.1: The time configuration

Parameter description:

 Clock Source:

There are two modes for configuring where the Clock Source is from. You can choose one of them to make time setting.

1. Use Local Settings: In this mode Clock Source is from Local Time. Set the time manually.

2. Use NTP Server: In this mode Clock Source is from NTP Server. The switch can link to Network Time Protocol server to obtain the correct time automatically when NTP server has been set.

 Local Time:

Show the current time of the system.

 Time Zone Offset:

Provide the timezone offset relative to UTC/GMT. The offset is given in minutes east of GMT. The valid range is from -720 to 720 minutes

 Daylight Saving:

”

Daylight saving is adopted in some countries. If set, it will adjust the time lag or in advance in unit of hours, according to the starting date and the ending date. For example, if you set the day light saving to be 1 hour. When the time passes over the starting time, the system time will be increased one hour after one minute at the time since it passed over. And when the time passes over the ending time, the system time will be decreased one hour after one minute at the time since it passed over.

The switch supports valid configurable day light saving time is –5 ~ +5 step one hour. The zero for this parameter means it need not have to adjust current time, equivalent to in-act daylight saving. You don’t have to set the starting/ending date as well. If you set daylight saving to be non-zero, you have to set the starting/ending date as well; otherwise, the daylight saving function will not be activated.

 Time Set Offset:

Provide the Daylight saving time set offset. The offset is given in minutes east of GMT. The valid range is from 1 to 1440 minutes. default is 60 mins

 Daylight Savings Type:

Provide the Daylight savings type selection. You can select “ By Dates” or “Recurring” two type for Daylight saving type.

 From:

To configure when Daylight saving start date and time, the format is “YYYY-MM-DD HH:MM”.

 To:

To configure when Daylight saving end date and time, the format is “YYYY-MM-DD HH:MM”.

NOTE: The under “from

on the “From” and “To” field information.

and “to

was displayed what you set

2-2.2 NTP

NTP is Network Time Protocol and is used to sync the network time based Greenwich Mean Time (GMT). If use the NTP mode and select a built-in NTP time server or manually specify an user-defined NTP server as well as Time Zone, the switch will sync the time in a short after pressing <Apply> button. Though it synchronizes the time automatically, NTP does not update the time periodically without user’s processing.

Time Zone is an offset time off GMT. You have to select the time zone first and then perform time sync via NTP because the switch will combine this time zone offset and updated NTP time to come out the local time, otherwise, you will not able to get the correct time. The switch supports configurable time zone from –12 to +13 step 1 hour.

Default Time zone: +8 Hrs.

Web Interface

To configure Time in the web interface:

1. Click SYSTEM, NTP.

2. Specify the Time parameter in manual parameters.

3. Click Apply

Figure 2-2.2: The NTP configuration

Parameter description:

 Server 1to 5 :

Provide the NTP IPv4 address of this switch. For example, '192.1.2.34'.

 Buttons

These buttons are displayed on the NTP page: Save – Click to save changes. Reset - Click to undo any changes made locally and revert to previously saved

values.

2-3 Account

In this function, only administrator can create, modify or delete the username and password. Administrator can modify other guest identities’ password without confirming the password but it is necessary to modify the administrator-equivalent identity. Guestequivalent identity can modify his password only. Please note that you must confirm administrator/guest identity in the field of Authorization in advance before configuring the username and password. Only one administrator is allowed to exist and unable to be deleted. In addition, up to 4 guest accounts can be created.

2-3.1 Users

This page provides an overview of the current users. Currently the only way to login as another user on the web server is to close and reopen the browser

Web Interface

To configure Account in the web interface:

1. Click SYSTEM, Account, Users.

2. Click Add new user

3. Specify the User Name parameter.

4. Click Apply

Figure2-3.1: The Users Account configuration

Parameter description:

 User Name :

The name identifying the user. This is also a link to Add/Edit User.

A string identifying the user name that this entry should belong to. The allowed string length is 1 to 32. The valid user name is a combination of letters, numbers and underscores.

 Password

To type the password. The allowed string length is 0 to 255, and the allowed content is the ASCII characters from 32 to 126.

 Password (again)

To type the password again. You must type the same password again in the field.

 Privilege Level :

The privilege level of the user. The allowed range is 1 to 15. If the privilege level value is 15, it can access all groups, i.e. that is granted the fully control of the device. But others value need to refer to each group privilege level. User's privilege should be same or greater than the group privilege level to have the access of that group. By default setting, most groups privilege level 5 has the read-only access and privilege level 10 has the read-write access. And the system maintenance (software upload, factory defaults and etc.) need user privilege level 15. Generally, the privilege level 15 can be used for an administrator account, privilege level 10 for a standard user account and privilege level 5 for a guest account.

NOTE: You can add more user name up to 19 set in Users

configuration. You can configure 20 set of user name totally including admin account.

2-3.2 Privilege Level

This page provides an overview of the privilege levels. The switch provides user set Account, Aggregation,Diagnostics,EEE,GARP,GVRP,IP, IPMC Snooping LACP LLDP LLDP MED MAC Table MRP MVR MVRP Maintenance Mirroring POE Ports Private VLANs QoS SMTP SNMP Security Spanning Tree System Trap Event VCL VLANs Voice VLAN Privilege Levels form 1 to 15 .

Web Interface

To configure Privilege Level in the web interface:

1. Click SYSTEM, Account, Privilege Level.

2. Specify the Privilege parameter.

3. Click Apply

Figure2- 3.2: The Privilege Level configuration

Parameter description:

 Group Name

The name identifying the privilege group. In most cases, a privilege level group consists of a single module (e.g. LACP, RSTP or QoS), but a few of them contains more than one. The following description defines these privilege level groups in details:

System: Contact, Name, Location, Timezone, Log.

Security: Authentication, Port (contains Dot1x port, MAC based and the MAC Address Limit)

IP: Everything except 'ping'. Port: Everything except 'VeriPHY'. Diagnostics: 'ping' and 'VeriPHY'. Maintenance: System Reboot, System Restore Default, System Password,

Configuration Save, Configuration Load and Firmware Load. Web- Users, Privilege Levels and everything in Maintenance.

 Privilege Levels

Every group has an authorization Privilege level for the f ollow ing sub groups: configuration read-only, configuration/execute read-write, status/statistics read-only, status/statistics read-write (e.g. for clearing of statistics). User Privilege should be same or greater than the authorization Priv ilege level to have the access to that group.

2-4 IP

IP is an acronym for Internet Protocol. It is a protocol used for communicating data across an internet network.

IP is a "best effort" system, which means that no packet of information sent over is assured to reach its destination in the same condition it was sent. Each device connected to a Local Area Network (LAN) or Wide Area Network (WAN) is given an Internet Protocol address, and this IP address is used to identify the device uniquely among all other devices connected to the extended network.

The current version of the Internet protocol is IPv4, which has 32-bits Internet Protocol addresses allowing for in excess of four billion unique addresses. This number is reduced drastically by the practice of webmasters taking addresses in large blocks, the bulk of which remain unused. There is a rather substantial movement to adopt a new version of the Internet Protocol.

2-4.1 IPV4

The IPv4 address for the switch could be obtained via DHCP Server for VLAN 1. To manually configure an address, you need to change the switch's default settings to values that are compatible with your network. You may also need to a establish a default gateway between the switch and management stations that exist on another network segment.

Configure the switch-managed IP information on this page

The Configured column is used to view or change the IP configuration.

The Current column is used to show the active IP configuration.

Web Interface

To configure an IP address in the web interface:

1. Click System, IP Configuration.

2. Specify the IPv4 settings, and enable DNS proxy service if required.

3. Click Apply

Figure2- 4.1: The IP configuration

Parameter description:

 DHCP Client :

Enable the DHCP client by checking this box. If DHCP fails and the configured IP address is zero, DHCP will retry. If DHCP fails and the configured IP address is non-zero, DHCP will stop and the configured IP settings will be used. The DHCP client will announ ce the configured System Name as hostname to provide DNS lookup.

 IP Address :

Provide the IP address of this switch in dotted decimal notation.

 IP Mask :

Provide the IP mask of this switch dotted decimal notation.

 IP Router :

Provide the IP address of the router in dotted decimal notation.

 SNTP Server :

Provide the IP address of the SNTP Server in dotted decimal notation.

 DNS Server :

Provide the IP address of the DNS Server in dotted decimal notation.

 VLAN ID :

Provide the managed VLAN ID. The allowed range is 1 to 4095.

 DNS Proxy :

When DNS proxy is enabled, DUT will relay DNS requests to the current configured DNS server on DUT, and reply as a DNS resolver to the client device on the network.

2-5 Syslog

The Syslog is a standard for logging program messages . It allows separation of the software that generates messages from the system that stores them and the software that reports and analyzes them. It can be used as well a generalized informational, analysis and debugging messages. It is supported by a wide variety of devices and receivers across multiple platforms.

2-5.1 Configuration

This section describes how to configure the system log and provide a wide variety of devices and receivers across multiple platforms.

Web Interface

To configure Syslog configuration in the web interface:

1. Click SYSTEM, Syslog.

2. Specify the syslog parameters includes IP Address of Syslog server and Port number.

3. Evoke the Sylog to enable it.

4. Click Save.

Figure2- 5.1: The System Log configuration

Parameter description:

 Server Mode :

Indicates the server mode operation. When the mode operation is enabled, the syslog message will send out to syslog server. The syslog protocol is based on UDP communication and received on UDP port 514 and the syslog server will not send acknowledgments back sender since UDP is a connectionless protocol and it does not provide acknowledgments. The syslog packet will always send out even if the syslog server does not exist. Possible modes are:

Enabled: Enable server mode operation. Disabled: Disable server mode operation.

 Server Address 1 and 2 :

Indicates the IPv4 host address of syslog server 1 and server 2 (For redundancy). If the switch provide DNS feature, it also can be a host name.

 Syslog Level :

Indicates what kind of message will send to syslog server. Possible modes are: Info: Send informations, warnings an d errors. Warning: Send warnings and errors. Error: Send errors.

2-5.2 Log

This section describes that display the system log information of the switch

Web Interface

To display the log configuration in the web interface:

1. Click Syslog, Log.

2. Display the log information.

Figure2- 5.2: The System Log configuration

Parameter description:

 Auto-refresh

To evoke the auto-refresh icon then the device will refresh the log automatically.

 Level

level of the system log entry. The following level types are supported: Information level of the system log.

Warning: Warning level of the system log. Error: Error level of the system log.All: All levels.

 ID

ID (>= 1) of the system log entry.

 Time

It will display the log record by device time. The time of the system log entry.

 Message

It will display the log detail message. The message of the sy stem log entry.

 Upper right icon (Refresh, clear,….)

You can click them for refresh the system log or clear them by manual, others for next/up page or entry.

2-5.3 Detailed Log

This section describes that display the detailed log information of the switch

Web Interface

To display the detailed log configuration in the web interface:

1. Click Syslog, Detailed Log.

2. Display the log information.

Figure2- 5.3: The Detailed System Log Information

Parameter description:

 ID

The ID (>= 1) of the system log entry.

 Message

The detailed message of the system log entry.

 Upper right icon (Refresh, clear,….)

You can click them for refresh the system log or clear them by manual, others for next/up page or entry.

2-6 SNMP

Any Network Management System (NMS) running the Simple Network Management Protocol (SNMP) can manage the Managed devices equipped with SNMP agent, provided that the Management Information Base (MIB) is installed correctly on the managed devices. The SNMP is a protocol that is used to govern the transfer of information between SNMP manager and agent and traverses the Object Identity (OID) of the management Information Base (MIB), described in the form of SMI syntax. SNMP agent is running on the switch to response the request issued by SNMP manager.

Basically, it is passive except issuing the trap information. The switch supports a switch to turn on or off the SNMP agent. If you set the field SNMP “Enable”, SNMP agent will be started up. All supported MIB OIDs, including RMON MIB, can be accessed via SNMP manager. If the field SNMP is set “Disable”, SNMP agent will be de-activated, the related Community Name, Trap Host IP Address, Trap and all MIB counters will be ignored.

2-6.1 Configuration

There are two communities by default. It is applicable to configure the Get Community and the Set Community for SNMPv1 and SNMPv2.

Web Interface

To configure SNMP Communities in the web interface:

1. Click SNMP, Configuration.

2. Specify the parameters of Get Community and Set Community.

3. Scroll to enable or disable the function of Set Community.

4. Click Apply.

5. If you want to modify or clear the setting then click Reset.

Figure2- 6.1: SNMP Configuration

Parameter description:

 Get Community

Indicates the community read access string to permit access to SNMP agent. The allowed string length is 0 to 255, and the allowed content is the ASCII characters from 33 to 126.

The field is applicable only when SNMP version is SNMPv1 or SNMPv2c. If SNMP version is SNMPv3, the community string will be associated with SNMPv3 communities table. It provides more flexibility to configure security name than a SNMPv1 or SNMPv2c community string. In addition to community string, a particular range of

source addresses can be used to restrict source subnet.

 Set Community

Indicates the community write access string to permit access to SNMP agent. The allowed string length is 0 to 255, and the allowed content is the ASCII characters from 33 to 126.

The field is applicable only when SNMP version is SNMPv1 or SNMPv2c.

 Mode:

Indicates the Set Community mode operation. Possible modes are:

Enabled: Enable Set Community.

Disabled: Disable Set Community.

2-6.2 Tarp

The function is used to configure SNMP trap. To create a new trap account, please check <No number> button, and enter the trap information then check <Apply>. Max Group Number : 6.

Web Interface

To configure SNMP Trap setting:

1. Click SNMP, Trap .

2. Display the SNMP Trap Hosts information table.

3. Choice a entry to display and modify the detail parameters or click

delete button to delete the trap hosts entry.

Figure 2-6.8: The SNMP Trap Host Configuration

Parameters description:

 Delete:

Check <Delete> entry then check <Save> button, the entry will be delete.

 Trap Version:

You may choose v1, v2c or v3 trap.

 Server IP:

To assign the SNMP Host IP address.

 UDP Port:

To assign Port number. Default: 162

 Community / Security Name:

The length of “Community / Security Name” string is restricted to 1-32.

 Security Level:

Indicates what kind of message will send to Security Level. Possible modes are:

Info: Send informations, warnings and errors. Warning: Send warnings and errors. Error: Send errors.

 Security Level:

There are three kinds of choices.

NoAuth, NoPriv: No authentication and no privacy. Auth, NoPriv: Authentication and no privacy. Auth, Priv: Authentication and privacy.

 Authentication Protocol:

You can choose MD5 or SHA for authentication.

 Authentication Password:

The length of 'MD5 Authentication Password' is restricted to 8 – 32. The length of 'SHA Authentication Password' is restricted to 8 – 40.

 Privacy Protocol:

You can set DES encryption for UserName.

 Privacy Password:

The length of ' Privacy Password ' is restricted to 8 – 32.

Chapter 3. Configuration

This chapter describes all of the basic network configuration tasks which includes the Ports, Layer 2 network protocol (e.g. VLANs, QoS and IGMP etc.) and any setting of the Switch.

3-1 Port

The section describes to configure the Port detail parameters of the switch. Others you could using the Port configure to enable or disable the Port of the switch. Monitor the ports content or status in the function.

3-1.1 Configuration

This chapter describes how to view the current port configuration and how to configure ports to non-default settings, including

Linkup/Linkdown

Speed (Current and configured)

Flow Control (Current Rx, Current Tx and Configured)

Maximum Frame Size

Excessive Collision Mode

Power Control.

Web Interface

To configure an Current Port Configuration in the web interface:

1. Click Configuration, Port, then Configuration

2. Specify the Speed Configured, Flow Control , Maximum Frame sze , Excessive Collision mode and Power Control.

3. Click Save.

Figure 3-1.1: The Port Configuration

Parameter description:

 Port :

This is the logical port number for this row.

 Link :

The current link state is displayed graphically. Green indicates the link is up and red that it is down.

 Current Link Speed :

Provides the current link speed of the port.

 Configured Link Speed :

Select any available link speed for the given switch port. Auto Speed selects the highest speed that is compatible with a link partner. Disabled disables the switch port operation.

 Flow Control :

When Auto Speed is selected on a port, this section indicates the flow control capability that is advertised to the link partner. When a fixed-speed setting is selected, that is what is used. The Current Rx column indicates whether pause frames on the port are obeyed, and the Current Tx column indicates whether pause frames on the port are transmitted. The Rx and Tx settings are determined by the result of the last Auto-Negotiation .

Check the configured column to use flow control. Th is setting is related to the setting for Configured Link Speed.

 Maximum Frame Size :

Enter the maximum frame size allowed for the switch port, including FCS.

 Excessive Collision Mode :

Configure port transmit collision behavior.

Discard: Discard frame after 16 collisions (default). Restart: Restart backoff algorithm after 16 collisions.

 Power Control :

The Usage column shows the current percentage of the power consumption per port. The Configured column allows for changing the power savings mode parameters per port.

Disabled: All power savings mechanisms disabled. ActiPHY: Link down power savings enabled. PerfectReach: Link up power savings enabled. Enabled: Both link up and link down power savings enabled.

 Buttons

Save – Click to save changes.

Reset- Click to undo any changes made locally and revert to previously

saved values.

 Upper right icon (Refresh)

You can click them for refresh the Port link Status by manual

3-1.2 Port Description

The section describes to configure the Port’s alias or any descriptions for the Port Identity. It provides user to write down an alphanumeric string describing the full name and version identification for the system’s hardware type, software version, and networking application

Web Interface

To configure an Port Description in the web interface:

1. Click Configuration, Port, then Port Description

2. Specify the detail Port alias or description an alphanumeric string describing the full name and version identification for the system’s hardware type, software version, and networking application.

3. Click Save.

Figure 3-1.2: The Port Configuration

Parameter description:

 Port :

This is the logical port number for this row.

 Description :

Description of device ports can not include “ # % & ‘ + \.

 Buttons

Apply – Click to save changes.

Reset- Click to undo any changes made locally and revert to previously

saved values.

3-1.3 Traffic Overview

The section describes to the Port statistics information and provides overview of general traffic statistics for all switch ports.

Web Interface

To Display the Port Statistics Overview in the web interface:

1. Click Configuration, Port, then Traffic Overview

2. If you want to auto-refresh then you need to evoke the “Auto-refresh” .

3. Click “ Refresh“ to refresh the port statistics or clear all information

when you click “ Clear”.

Figure 3-1.3: The Port Statisitcs Overview

Parameter description:

 Port :

The logical port for the settings contained in the same row.

 Packets :

The number of received and transmitted packets per port.

 Bytes :

The number of received and transmitted bytes per port.

 Errors

The number of frames received in error and the number of incomplete transmissions per port.

 Drops

The number of frames discarded due to ingress or egress congestion.

 Filtered

The number of received frames filtered by the forwarding

 Auto-refresh :

To evoke the auto-refresh icon then the device will refresh the information automatically.

 Upper right icon (Refresh, Clear):

You can click them for refresh the Port Statistics information by manual. Others click

Clear to clean up all Port Statistics.

3-1.4 Detailed Statistics

The section describes how to provide detailed traffic statistics for a specific switch port. Use the port select box to select which switch port details to display.

The displayed counters are the totals for receive and transmit, the size counters for receive and transmit, and the error counters for receive and transmit.

Web Interface

To Display the per Port Port detailed Statistics Overview in the web interface:

1. Click Configuration, Port, then Detailed Port Statistics

2. Scroll the Port Index to select which port you want to show the detailed Port statistic overview” .

3. If you want to auto-refresh the information then you need to evoke the “Auto-refresh”.

4. Click “ Refresh“ to refresh the port detailed statistics or clear all

information when you click “ Clear”.

Figure 3-1.4: The Port Detail Statistics Overview

Parameter description:

 Auto-refresh:

To evoke the auto-refresh to refresh the Port Statistics information automatically.

 Upper left scroll bar:

To scroll w hich port to display the Port statistics with “Port-0”, “Port-1...

ReceiveTota l andTransmitTota l

 Rx and Tx Packets :

The number of received and transmitted (good and bad) packets.

 Rx and Tx Octets :

The number of received and transmitted (good and bad) bytes. Includes FCS, but excludes framing bits.

 Rx and Tx Unicast

The number of received and transmitted (good and bad) unicast packets.

 Rx and Tx Multicast :

The number of received and transmitted (good and bad) multicast packets.

 Rx and Tx Broadcast :

The number of received and transmitted (good and bad) broadcast packets.

 Rx and Tx Pause :

A count of the MAC Control frames received or transmitted on this port that have an opcode indicating a PAUSE operation.

ReceiveandTransmitSizeCounters

The number of received and transmitted (good and bad) packets split into categories based on their respective frame sizes.

ReceiveandTransmitQueueCounters

The number of received and transmitted packets per input and output queue.

ReceiveErrorCounters

 Rx Drops :

The number of frames dropped due to lack of receive buffers or egress congestion.

 Rx CRC/Alignment :

The number of frames received with CRC or alignment errors.

 Rx Undersize :

The number of short 1 frames received with valid CRC.

 Rx Oversize :

The number of long 2 frames received with valid CRC.

 Rx Fragments :

The number of short 1 frames received with invalid CRC.

 Rx Jabber :

The number of long 2 frames received with invalid CRC.

 Rx Filtered :

The number of received frames filtered by the forwarding process. Short frames are frames that are smaller than 64 bytes. Long frames are frames that are longer than the configured maximum

frame length for this port.

TransmitErrorCounters

 Tx Drops :

The number of frames dropped due to output buffer congestion.

 Tx Late/Exc. Coll. :

The number of frames dropped due to excessive or late collisions.

 Auto-refresh:

To evoke the auto-refresh to refresh the Queuing Counters automatically.

 Upper right icon (Refresh, clear)

You can click them for refresh the Port Detail Statistics or clear them by manual.

3-1.5 Qos Statistics

The section describes that switch could display the QoS detailed Queuing counters for a specific switch port. for the different queues for all switch ports.

Web Interface

To Display the Queueing Counters in the web interface:

1. Click Configuration, Port, then QoS Statistics

2. If you want to auto-refresh the information then you need to evoke the

“Auto-refresh”.

3. Click “ Refresh“ to refresh the Queueing Counters or clear all information

when you click “ Clear”.

Figure 3-1.5: The Queuing Counters Overview

Parameter description:

 Port :

The logical port for the settings contained in the same row.

 Qn :

Qn is the Queue number, QoS queues per port. Q0 is the lowest priority queue.

 Rx/Tx :

The number of received and transmitted packets per queue.

 Auto-refresh:

To evoke the auto-refresh to refresh the Queuing Counters automatically.

 Upper right icon (Refresh, clear)

You can click them for refresh the Queuing Counters or clear them by manual.

3-1.6 SFP Information

The section describes that switch could display the SFP module detail information which you connect it to the switch. The information includes: Connector type, Fiber type, wavelength, banud rate and Vendor OUI etc.

Web Interface

To Display the SFP information in the web interface:

1. Click Configuration, Port, then SFP Information

2. To display the SFP Information.

Figure 3-1.6: The SFP Information Overview

Parameter description:

 Connector Type:

Display the connector type, for instance, UTP, SC, ST, LC and so on.

 Fiber Type:

Display the fiber mode, for instance, Multi-Mode, Sin gle-Mode.

 Tx Central Wavelength:

Display the fiber optical transmitting central wavelength, for instance, 850nm, 1310nm, 1550nm and so on.

 Baud Rate:

Display the maximum baud rate of the fiber module supported, for instance, 10M, 100M, 1G and so on.

 Vendor OUI:

Display the manufacturer's OUI code which is assigned by IEEE.

 Vendor Name:

Display the company name of the module manufacturer.

 Vendor P/N:

Display the product name of the naming by module manufacturer.

 Vendor Rev (Revision):

Display the module revision.

 Vendor SN (Serial Number):

Show the serial number assigned by the manufacturer.

 Date Code:

Show the date this SFP module was made.

 Temperature:

Show the current temperature of SFP module.

 Vcc:

Show the working DC voltage of SFP module.

 Mon1(Bias) mA:

Show the Bias current of SFP module.

 Mon2(TX PWR):

Show the transmit power of SFP module.

 Mon3(RX PWR):

Show the receiver power of SFP module.

3-1.7 EEE

The section which allows the user to inspect and configure the current EEE port settings.

EEE is a power saving option that reduces the power usage when there is very low traffic utilization (or no traffic).

EEE works by powering down circuits when there is no traffic. When a port gets data to be transmitted all circuits are powered up. The time it takes to power up the circuits is named wakeup time. The default wakeup time is 17 us for 1Gbit links and 30 us for other link speeds. EEE devices must agree upon the value of the wakeup time in order to make sure that both the receiving and transmitting device has all circuits powered up when traffic is transmitted. The devices can exchange information about the devices wakeup time using the LLDP protocol.

For maximizing the power saving, the circuit isn't started at once transmit data are ready for a port, but is instead queued until 3000 bytes of data are ready to be transmitted. For not introducing a large delay in case that data less then 3000 bytes shall be transmitted, data are always transmitted after 48 us, giving a maximum latency of 48 us + the wakeup time.

If desired it is possible to minimize the latency for specific frames, by mapping the frames to a specific queue (done with QOS), and then mark the queue as an urgent queue. When an urgent queue gets data to be transmitted, the circuits will be powered up at once and the latency will be reduced to the wakeup time.

Web Interface

To configure the EEE Configuration in the web interface:

1. Click Configuration, Port, then EEE

2. To evoke which port wants to enable the EEE function. To evoke which

3. EEE Urgent Queues level and the range from 1 to 8. the queue will

Postpone the transmission until 3000 bytes are ready to be transmitted.

4. Click the Apply to save the setting

5. If you want to cancel the setting then you need to click the reset button.

It will revert to previously saved values.

Figure 3-1.7: The EEE Configuration

Parameter description:

 EEE Port Configuration:

The EEE port settings relate to the currently selected, as reflected by the page header.

 Port :

The switch port number of the logical EEE port.

 EEE Enabled :

Controls whether EEE is enabled for this switch port.

 EEE Urgent Queues :

Queues set will activate transmission of frames as soon as any data is available. Otherwise the queue will postpone the transmission until 3000 bytes are ready to be transmitted.

 Buttons

Save – Click to save changes.

Reset- Click to undo any changes made locally and revert to previously

saved values.

3-2 Aggregation

The Aggregation is used to configure the settings of Link Aggregation. You can bundle more than one port with the same speed, full duplex and the same MAC to be a single logical port, thus the logical port aggregates the bandwidth of these ports. This means you can apply your current Ethernet equipment’s to build the bandwidth aggregation. For example, if there are three Fast Ethernet ports aggregated in a logical port, then this logical port has bandwidth three times as high as a single Fast Ethernet port has.

3-2.1 Static Trunk

The Aggregation Configuration is used to configure the settings of Link Aggregation. You can bundle more than one port with the same speed, full duplex and the same MAC to be a single logical port, thus the logical port aggregates the bandwidth of these ports. This means you can apply your current Ethernet equipment’s to build the bandwidth aggreg ation.

3-2.1.1 Static Trunk

Ports using Static Trunk as their trunk method can choose their unique Static Gro upID to form a logic “trunked port”. The benefit of using Static Trunk method is that a port can immediately become a member of a trunk group without any handshaking with its peer port. This is also a disadvantage because the peer ports of your static trunk group may not know that they should be aggregate together to form a “logic trunked port”. Using Static Trunk on both end of a link is strongly recommended. Please also note that low speed links will stay in “not ready” state when using static trunk to aggregate with high speed links.

Web Interface

To configure the Trunk Aggregation Hash mode and Aggregation Group in the web interface:

1. Click Configuration, Static Trunk, and then Aggregation Mode Configuration.

2. Evoke to enable or disable the aggregation mode function.

Evoke Aggregation Group ID and Port members

3. Click the apply to save the setting

4. If you want to cancel the setting then you need to click the reset button. It

will revert to previously saved values.

Figure 3-2.1.1: The Aggregation Mode Configuration

Parameter description:

Hash Code Contributors  Source MAC Address :

The Source MAC address can be used to calculate the destination port for the frame. Check to enable the use of the Source MAC address, or uncheck to disable. By default, Source MAC Address is enabled.

 Destination MAC Address :

The Destination MAC Address can be used to calculate the destination port for the frame. Check to enable the use of the Destination MAC Address, or uncheck to disable. By default, Destination MAC Address is disabled.

 IP Addr ess :

The IP address can be used to calculate the destination port for the frame. Check to enable the use of the IP Address, or uncheck to disable. By default, IP Address is enabled.

 TCP/UDP Port Number :

The TCP/UDP port number can be used to calculate the destination port for the frame. Check to enable the use of the TCP/UDP Port Number, or uncheck to disable. By default, TCP/UDP Port Number is enable d.

Aggregation Group Configuration  Group ID :

Indicates the group ID for the settings contained in the same row. Group ID "Normal" indicates there is no aggregation. Only one group ID is valid per port.

 Port Members :

Each switch port is listed for each group ID. Select a radio button to include a port in an aggregation, or clear the radio button to remove the port from the aggregation. By default, no ports belong to any aggregation group. Only full duplex ports can join an aggregation and ports must be in the same speed in each group.

 Buttons

Apply – Click to apply changes. Reset- Click to undo any changes made locally and revert to previously saved values.

3-2.2 LACP

Ports using Link Aggregation Control Protocol (according to IEEE 802.3ad specification) as their trunking method can choose their unique LACP GroupID to form a logic “trunked port”. The benefit of using LACP is that a port makes an agreement with its peer port before it becomes a ready member of a “trunk group” (also called aggregator). LACP is safer than the other trunking method static trunk.

3-2.2.1 Configuration

This page allows the user to inspect the current LACP port configurations, and possibly change them as well An LACP trunk group with more than one ready member-ports is a “real trunk ed” group. An LACP trunk group with only one or less than one ready member-ports is not a “rea l trunked” group.

Web Interface

To configure the Trunk Aggregation LACP parameters in the web interface:

1. Click Configuration, LACP, Configuration

2. Evoke to enable or disable the LACP on the port of the switch.

Scroll the Key parameter with Auto or Specific Default is Auto.

3. Scroll the Role with Active or Passive. Default is Active

4. Click the apply to save the setting

5. If you want to cancel the setting then you need to click the reset button.

It will revert to previously saved values

Figure 3-2.2.1: The LACP Port Configuration

Parameter description:

 Port :

The switch port number.

 LACP Enabled :

Controls whether LACP is enabled on this switch port. LACP will form an aggregation when 2 or more ports are connected to the same partner. LACP can form max 12 LLAGs per switch and 2 GLAGs.

 Key :

The Key value incurred by the port, range 1-65535 . The Auto setting will set the key as appropriate by the physical link speed, 10Mb = 1, 100Mb = 2, 1Gb = 3. Using the Specific setting, a user-defined value can be entered. Ports with the same Key value can participate in the same aggregation group, while ports with different keys cannot.

 Role :

The Role shows the LACP activity status. The Active will transmit LACP packets each second, while Passive will wait for a LACP packet from a partner (speak if spoken to).

 Buttons

Apply – Click to apply changes. Reset- Click to undo any changes made locally and revert to previously saved values.

3-2.2.2 System Status

This section describes that when you complete to set LACP function on the switch then it provides a status overview for all LACP instances

Web Interface

To display the LACP System status in the web interface:

1. Click Configuration, LACP, System Status

2. If you want to auto-refresh the information then you need to evoke the

“Auto-refresh”.

3. Click “Refresh“ to refresh the LACP System Status.

Figure 3-2.2.2: The LACP System Status

Parameter description:

 Aggr ID :

The Aggregation ID associated with this aggregation instance. For LLAG the id is shown as 'isid:aggr-id' and for GLAGs as 'aggr-id'

 Partner System ID :

The system ID (MAC address) of the aggregation partner.

 Partner Key :

The Key that the partner has assigned to this aggregation ID.

 Last changed :

The time since this aggregation changed.

 Local Ports :

Shows which ports are a part of this aggregation for this switch. The format is: "Switch ID:Port".

 Auto-refresh:

To evoke the auto-refresh to refresh the information automatically.

 Upper right icon (Refresh)

You can click them for refresh the LACP System status information by manual.

3-2.2.3 Port Status

This section describes that when you complete to set LACP function on the switch then it provides a Port Status overview for all LACP instances

Web Interface

To display the LACP Port status in the web interface:

1. Click Configuration, LACP, Port Status

2. If you want to auto-refresh the information then you need to evoke the

“Auto-refresh”.

3. Click “Refresh“ to refresh the LACP Port Status.

Figure 3-2.2.3: The LACP Status

Parameter description:

 Port :

The switch port number.

 LACP :

'Yes' means that LACP is enabled and the port link is up. 'No' means that LACP is not enabled or that the port link is down. 'Backup' means that the port could not join the aggr egation group but will join if other port leaves. Meanwhile it's LACP status is disabled.

 Key :

The key assigned to this port. Only ports with the same key can aggregate together.

 Aggr ID :

The Aggregation ID assigned to this aggregation grou p. IDs 1 and 2 are GLAG s while ID s 3-14 are LLAGs.

 Partner System ID :

The partner's System ID (MAC address).

 Partner Port :

The partner's port number connected to this port.

 Auto-refresh:

To evoke the auto-refresh to refresh the information automatically.

 Upper right icon (Refresh) :

You can click them for refresh the LACP port status information by manual.

3-2.2.4 Port Statistics

This section describes that when you complete to set LACP function on the switch then it provides a Port Statistics overview for all LACP instances

Web Interface

To display the LACP Port status in the web interface:

1. Click Configuration, LACP, Port Statistics

2. If you want to auto-refresh the information then you need to evoke the

“Auto refresh”.

3. Click “ Refresh“ to refresh the LACP Statistics.

Figure 3-2.2.4: The LACP Statistics

Parameter description:

 Port :

The switch port number.

 LACP Received :

Shows how many LACP frames have been received at each port.

 LACP Transmitted :

Shows how many LACP frames have been sent from each port.

 Discarded :

Shows how many unknown or illegal LACP frames have been discarded at each port.

 Auto-refresh:

To evoke the auto-refresh to refresh the information automatically.

 Upper right icon (Refre s h, Cl ear)

You can click them for refresh the LACP port statistics information or clear by manual.

3-3 Spanning Tree

The Spanning Tree Protocol (STP) can be used to detect and disable network loops, and to provide backup links between switches, bridges or routers. This allows the switch to interact with other bridging devices (that is, an STP-compliant switch, bridge or router) in your network to ensure that only one route exists between any two stations on the network, and provide backup links which automatically take over when a primary link goes down.

STP - STP uses a distributed algorithm to select a bridging device (STP- compliant switch,

bridge or router) that serves as the root of the spanning tree network. It selects a root port on each bridging device (except for the root device) which incurs the lowest path cost when forwarding a packet from that device to the root device. Then it selects a designated bridging device from each LAN which incurs the lowest path cost when forwarding a packet from that LAN to the root device. All ports connected to designated bridging devices are assigned as designated ports. After determining the lowest cost spanning tree, it enables all root ports and designated ports, and disables all other ports. Network packets are therefore only forwarded between root ports and designated ports, eliminating any possible network loops.

Once a stable network topology has been established, all bridges listen for Hello BPDUs (Bridge Protocol Data Units) transmitted from the Root Bridge. If a bridge does not get a Hello BPDU after a predefined interval (Maximum Age), the bridge assumes that the link to the Root Bridge is down. This bridge will then initiate negotiations with other bridges to reconfigure the network to reestablish a valid network topology.

3-3.1 Bridge Settings

The section describes that how to configure the Spanning Tree Bridge and STP System settings. It allows you to configure STP System settings are used by all STP Bridge instance in the Swtich.

Web Interface

To configure the Spanning Tree Bridge Settings parameters in the web interface:

1. Click Configuration, Spanning Tree, Bridge Settings

2. Scroll to select the parameters and write down available value of

parameters in blank field in Basic Settings

3. Evoke to enable or disable the parameters and write down available value of parameters in blank field in Advanced settings

4. Click the Apply to save the setting 5 . If you want to cancel the setting then you need to click the Reset button.

It will revert to previously saved values

Figure 3-3.1: The STP Bridge Configuration

Parameter description:

Basic Settings

 Protocol Version :

The STP protocol version setting. Valid values are STP, RSTP and MSTP.

 Bridge Priority :

Controls the bridge priority. Lower numeric values have better priority. The bridge priority plus the MSTI instance number, concatenated with the 6byte MAC address of the switch forms a Bridge Identifier. For MSTP operation, this is the priority of the CIST. Otherwise, this is the priority of the STP/RSTP bridge.

 Forward Delay :

The delay used by STP Bridges to transit Root and Designated Ports to Forwarding (used in STP compatible mode). Valid values are in the range 4 to 30 seconds.

 Max Age :

The maximum age of the information transmitted by the Bridge when it is the Root Bridge. Valid values are in the range 6 to 40 seconds, and MaxAge must be <= (FwdDelay-1)*2.

 Maximum Hop Count :

This defines the initial value of remaining Hops for MSTI information generated at the boundary of an MSTI region. It defines how many bridges a root bridge can distribute its BPDU information to. Valid values are in the range 6 to 40 hops.

 Transmit Hold Count :

The number of BPDU's a bridge port can send per second. When exceeded, transmission of the next BPDU will be delayed. Valid values are in the range 1 to 10 BPDU's per second.

Advanced Settings

 Edge Port BPDU Filtering :

Control whether a port explicitly configured as Edge will transmit and receive BPDUs.

 Edge Port BPDU Guard :

Control whether a port explicitly configu red as Edge will disable itself upon reception of a BPDU. The port will enter the error-disabled state, and will be removed from the active topology.

 Port Error Recovery :

Control whether a port in the error-disabled state automatically will be enabled after a certain time. If recovery is not enabled, ports have to be disabled and re-enabled for normal STP operation. The condition is also cleared by a system reboot.

 Port Error Recovery Timeout :

The time to pass before a port in the error-disabled state can be enabled. Valid values are between 30 and 86400 seconds (24 hours).

 Buttons

Apply – Click to save changes. Reset- Click to undo any changes made locally and revert to previously

saved values.

3-3.2 MSTI Mapping

When you implement an Spanning Tree protocol on the switch that the bridge instance. The CIST is not available for explicit mapping, as it will receive the VLANs not explicitly mapped. Due to the reason that you need to set the list of VLANs mapped to the MSTI. The VLANs must be separated with comma and/or space. A VLAN can only be mapped to one MSTI. An unused MSTI should just be left empty. (I.e. not having any VLANs mapped to it.)

This section describes it allows the user to inspect the current STP MSTI bridge instance priority configurations, and possibly change them as well.

Web Interface

To configure the Spanning Tree MSTI Mapping parameters in the web interface:

1. Click Configuration, Spanning Tree, MSTI Mapping

2. Specify the configuration identification parameters in the field Specify the VLANs Mapped blank field.

3. Click the Apply to save the setting

4. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values

Figure 3-3.2: The MSTI Configuration

Parameter description:

Configuration Identification

 Configuration Name :

The name identifying the VLAN to MSTI mapping. Bridges must share the name and revision (see below), as well as the VLAN-to-MSTI mapping configuration in order to share spanning trees for MSTI's (Intra-region). The name is at most 32 characters.

 Configuration Revision :

The revision of the MSTI configuration named above. This must be an integer between 0 and 65535.

MSTI Mapping

 MSTI :

The bridge instance. The CIST is not available for explicit mapping, as it will receive the VLANs not explicitly mapped.

 VLANs Mapped :

The list of VLANs mapped to the MSTI. The VLANs must be separated with comma and/or space. A VLAN can only be mapped to one MSTI. An unused MSTI should just be left empty. (I.e. not having any VLANs

 Buttons

Save – Click to save changes. Reset- Click to undo any changes made locally and revert to previously

saved values.

3-3.3 MSTI Priorities

When you implement an Spanning Tree protocol on the switch that the bridge instance. The CIST is the default instance which is always active. For controls the bridge priority. Lower numeric values have better priority. The bridge priority plus the MSTI instance number, concatenated with the 6-byte MAC address of the switch forms a Bridege Identifier

The section describes it allows the user to inspect the current STP MSTI bridge instance priority configurations, and possibly change them as well.

Web Interface

To configure the Spanning Tree MSTI Priorities parameters in the web interface:

1. Click Configuration, Spanning Tree, MSTI Priorities

2. Scroll the Priority maximum is 240. Default is 128.

3. Click the Apply to save the setting

4. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values

Figure 3-3.3: The MSTI Configuration

Parameter description:

 MSTI :

The bridge instance. The CIST is the default instance, which is always active.

 Priority :

 Buttons

Apply – Click to save changes. Reset- Click to undo any changes made locally and revert to previously

saved values

3-3.4 CIST Ports

When you implement an Spanning Tree protocol on the switch that the bridge instance. You need to configure the CIST Ports. The section describes it allows the user to inspect the to inspect the current STP CIST port configurations, and possibly change them as well.

Web Interface

To configure the Spanning Tree CIST Ports parameters in the web interface:

1. Click Configuration, Spanning Tree, CIST Ports

2. Scroll and evoke to set all parameters of CIST Aggregated Port

Configuration.

3. Evoke to enable or disable the STP, then scoll and evoke to set all

parameters of the CIST normal Port configuration.

4. Click the Apply to save the setting

5. If you want to cancel the setting then you need to click the Reset button.

It will revert to previously saved values

Figure 3-3.4: The STP CIST Port Configuration

Parameter description:

 Port :

The switch port number of the logical STP port.

 STP Enabled :

Controls whether STP is enabled on this switch port.

 Path Cost :

be entered. The path cost is used when establishing the active topology of the network. Lower path cost ports are chosen as forwarding ports in favour of higher path cost ports. Valid values are in the range 1 to 200000000.

 Priority :

Controls the port priority. This can be used to control priority of ports having identical port cost. (See above).

 operEdge (state flag) :

Operational flag describing whether the port is connecting directly to edge devices. (No Bridges attached). Transition to the forwarding state is faster for edge ports (having operEdge true) than for other ports.The value of this flag is based on AdminEdge and AutoEdge fields. This flag is displayed as Edge in Monitor->Spanning Tree -> STP Detailed Bridge Status.

 AdminEdge :

Controls whether the operEdge flag should start as set or cleared. (The initial operEdge state when a port is initia lized).

 AutoEdge :

Controls whether the bridge should enable automatic edge detection on the bridge port. This allows operEdge to be derived from whether BPDU's are received on the port or not.

 Restricted Role :

If enabled, causes the port not to be selected as Root Port for the CIST or any MSTI, even if it has the best spanning tree priority vector. Such a port will be selected as an Alternate Port after the Root Port has been selected. If set, it can cause lack of spanning tree connectivity. It can be set by a network administrator to prevent bridges external to a core region of the network influence the spanning tree active topology, possibly because those bridges are not under the full control of the administrator. This feature is also known as Root Guard.

 Restricted TCN :

If enabled, causes the port not to propagate received topology change notifications and topology changes to other ports. If set it can cause temporary loss of connectivity after changes in a spanning tree's active topology as a result of persistently incorrect learned station location information. It is set by a network administrator to prevent bridges external to a core region of the network, causing address flushing in that region, possibly because those bridges are not under the full control of the administrator or the physical link state of the attached LANs transits frequently.

 BPDU Guard :

If enabled, causes the port to disable itself upon receiving valid BPDU's. Contrary to the similar bridge setting, the port Edge status does not affect this setting. A port entering error-disabled state due to this setting is subject to the bridge Port Error Recovery setting as well.

 Point to Point

Controls whether the port connects to a point-to-point LAN rather than to a shared medium. This can be automatically determined, or forced either true or false. Transition to the forwarding state is faster for point-to-point LANs than for shared media.

 Buttons

Apply – Click to save changes. Reset- Click to undo any changes made locally and revert to previously

saved values.

3-3.5 MSTI Ports

The section describes it allows the user to inspect the current STP MSTI port configurations, and possibly change them as well.

An MSTI port is a virtual port, which is instantiated separately for each active CIST (physical) port for each MSTI instance configured on and applicable to the port. The MSTI instance must be selected before displaying actual MSTI port configuration options. It contains MSTI port settings for physical and aggregated ports.

Web Interface

To configure the Spanning Tree MSTI Port Configuration parameters in the web interface:

1. Click Configuration, Spanning Tree, MSTI Ports

2. Scroll to select the MST1 or other MSTI Port

3. Click Get to set the detail parameters of the MSTI Ports.

4. Scroll to set all parameters of the MSTI Port configuration.

5. Click the Apply to save the setting

6. If you want to cancel the setting then you need to click the Reset button.

It will revert to previously saved values

Figure 3-3.5: The MSTI Port Configuration

Parameter description:

 Port :

The switch port number of the corresponding STP CIST (and MSTI) port.

 Path Cost :

Controls the path cost incurred by the port. The Auto setting will set the path cost as appropriate by the physical link speed, using the 802.1D recommended values. Using the Specific setting, a user-defined value can be entered. The path cost is used when establishing the active topology of the network. Lower path cost ports are chosen as forwarding ports in favour of higher path cost ports. Valid values are in the range 1 to 200000000.

 Priority :

Controls the port priority. This can be used to control priority of ports having identical port cost. (See above).

 Buttons

Apply – Click to save changes.

Reset- Click to undo any changes made locally and revert to previously

saved values.

3-3.6 Bridge Status

After you complete the MSTI Port configuration the you could to ask the switch display the Bridge Status. The Section provides a status overview of all STP bridge instances. The displayed table contains a row for each STP bridge instance, where the column displays the following information:

Web Interface

To display the STP Bridges status in the web interface:

1. Click Configuration, Spanning Tree, STP Bridges

2. If you want to auto-refresh the information then you need to evoke the

“Auto-refresh”.

3. Click “ Refresh“ to refresh the STP Bridges.

Figure 3-3.6: The STP Bridges status

Parameter description:

 MSTI :

The Bridge Instance. This is also a link to the STP Detailed Bridge Status.

 Bridge ID :

The Bridge ID of this Bridge instance.

 Root ID :

The Bridge ID of the currently elected root bridge.

 Root Port :

The switch port currently assigned the root port role.

 Root Cost :

Root Path Cost. For the Root Bridge it is zero. For all other Bridges, it is the sum of the Port Path Costs on the least cost path to the Root Bridge.

 Topology Flag :

The current state of the Topology Change Flag of this Bridge instance.

 Topology Change Last :

The time since last Topology Change occurred.

 Auto-refresh:

To evoke the auto-refresh to refresh the information automatically.

 Upper right icon (Refresh)

You can click them for refresh the STP Bridges status information by manual.

3-3.7 Port Status

After you complete the STP configuration the you could to ask the switch display the STP Port Status. The Section provides you to ask switch to display the STP CIST port status for physical ports of the currently selected switch.:

Web Interface

To display the STP Port status in the web interface:

1. Click Configuration, Spanning Tree, STP Port Status

2. If you want to auto-refresh the information then you need to evoke the

“Auto-refresh”.

3. Click “ Refresh“ to refresh the STP Bridges.

Figure 3-3.7: The STP Port status

Parameter description:

 Port :

The switch port number of the logical STP port.

 CIST Role :

The current STP port role of the CIST port. The port role can be one of the following values: AlternatePort, Backup Port, RootPort, DesignatedPort Disabled.

 CIST State :

The current STP port state of the CIST port. The port state can be one of the following values: Blocking Learning Forwarding.

 Uptime

The time since the bridge port was last initialized.

 Auto-refresh:

To evoke the auto-refresh to refresh the information automatically.

 Upper right icon (Refresh)

You can click them for refresh the STP Port status information by manual.

3-3.8 Port Statistics

After you complete the STP configuration then you could to let the switch display the STP Statistics. The Section provides you to ask switch to display the STP Statistics detail counters of bridge ports in the currently selected switch.

Web Interface

To display the STP Port status in the web interface:

1. Click Configuration, Spanning Tree, Port Statistics

2. If you want to auto-refresh the information then you need to evoke the

“Auto-refresh”.

3. Click “ Refresh“ to refresh the STP Bridges.

Figure 3-3.8: The STP Statistics

Parameter description:

 Port :

The switch port number of the logical STP port.

 MSTP :

The number of MSTP Configuration BPDU's received/transmitted on the port.

 RSTP :

The number of RSTP Configuration BPDU's received/transmitted on the port.

 STP :

The number of legacy STP Configuration BPDU's received/transmitted on the port.

 TCN :

The number of (legacy) Topology Change Notification BPDU's received/transmitted on the port.

 Discarded Unknown :

The number of unknown Spanning Tree BPDU's received (and discarded) on the port.

 Discarded Illegal :

The number of illegal Spanning Tree BPDU's received (and discarded) on the port.

 Auto-refresh:

To evoke the auto-refresh to refresh the information automatically.

 Upper right icon (Refresh, Clear)

You can click them for refresh the STP Statistics information or clear by manual.

3-4 IGMP Snooping

The function, is used to establish the multicast groups to forward the multicast packet to the member ports, and, in nature, avoids wasting the bandwidth while IP multicast packets are running over the network. This is because a switch that does not support IGMP or IGMP Snooping can not tell the multicast packet from the broadcast packet, so it can only treat them all as the broadcast packet. Without IGMP Snooping, the multicast packet forwarding function is plain and nothing is different from broadcast packet.

A switch supported IGMP Snooping with the functions of query, report and leave, a type of packet exchanged between IP Multicast Router/Switch and IP Multicast Host, can update the information of the Multicast table when a member (port) joins or leaves an IP Multicast Destination Address. With this function, once a switch receives an IP multicast packet, it will forward the packet to the members who joined in a specified IP multicast group before.

The packets will be discarded by the IGMP Snooping if the user transmits multicast packets to the multicast group that had not been built up in advance. IGMP mode enables the switch to issue IGMP function that you enable IGMP proxy or snooping on the switch, which connects to a router closer to the root of the tree. This interface is the upstream interface. The router on the upstream interface should be running IGMP.

3-4.1 Basic Configuration

The section describes how to set the basic IGMP snooping on the switch, which connects to a router closer to the root of the tree. This interface is the upstream interface. The router on the upstream interface should be running IGMP.

Web Interface

To configure the IGMP Snooping parameters in the web interface:

1. Click Configuration, IGMP Snooping, Basic Configuration

2. Evoke to select enable or disable which Global configuration

3. Evoke which port wants to become a Router Port or enable/ disable the Fast Leave

function..

4. Scroll to set the Throtting parameter.

5. Click the save to save the setting

6. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values

Figure 3-4.1: The IGMP Snooping Configuration.

Parameter description:

 Snooping Enabled:

Enable the Global IGMP Snooping.

 Unregistered IPMCv4 Flooding enabled :

Enable unregistered IPMCv4 traffic flooding.

 IGMP SSM Range :

SSM (Source-Specific Multicast) Range allows the SSM-aware hosts and routers run the SSM service model for the groups in the address range. Format: (IP address/ sub mask)

 Proxy Enabled :

Enable IGMP Proxy. This feature can be used to avoid forwarding unnecessary join and leave messages to the router side.

 Port :

It shows the physical Port index of switch.

 Router Port :

Specify which ports act as router ports. A router port is a port on the Ethernet switch that leads towards the Layer 3 multicast device or IGMP querier.

If an aggregation member port is selected as a router port, the whole aggregation will act as a router port.

 Fast Leave :

Enable the fast leave on the port.

 Throttling :

Enable to limit the number of multicast groups to which a switch port can belong.

 Buttons

Save – Click to save changes. Reset- Click to undo any changes made locally and revert to previously

saved values.

3-4.2 VLAN Configuration

The section describes the VLAN configuration setting process integrated with IGMP Snooping function. For Each setting page shows up to 99 entries from the VLAN table, default being 20, selected through the "entries per page" input field. When first visited, the web page will show the first 20 entries from the beginning of the VLAN Table. The first displayed will be the one with the lowest VLAN ID found in the VLAN Table. The "VLAN" input fields allow the user to select the starting point in the VLAN Table. Clicking the button will update the displayed table starting from that or the next closest VLAN Table match.

Web Interface

To configure the IGMP Snooping VLAN Configuration in the web interface:

1. Click Configuration, IGMP Snooping, VLAN Configuration

2. Evoke to select enable or disable Snooping , IGMP Querier

Specify the parameters in the blank field.

3. Click the refresh to update the data or click << or >> to display previous entry or next entry.

4. Click the save to save the setting

5. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values

Figure 3-4.2: The IGMP Snooping VLAN Configuration.

Parameter description:

 VLAN ID :

It displays the VLAN ID of the entry.

 Snooping Enabled :

Enable the per-VLAN IGMP Snooping. Only up to 32 VLANs can be selected. .

 IGMP Querier :

A router sends IGMP Query messages onto a particular link. This Router is called the Querier. Enable the IGMP Querier in the VLAN.

 Compatibility :

Compatibility is maintained by hosts and routers taking appropriate actions depending on the versions of IGMP operating on hosts and routers within a network. The allowed selection is IGMP-Auto, Forced IGMPv1, Forced IGMPv2, Forced IGMPv3, default compatibility value is IGMP-Auto.

 Rv :

Robustness Variable. The Robustness Variable allows tuning for the expected packet loss on a network. The allowed range is 1 to 255; default robustness variable value is 2.

 QI :

Query Interval. The Query Interval is the interval between General Queries sent by the Querier. The allowed range is 1 to 31744 seconds; default query interval is 125 seconds.

 QRI :

Query Response Interval. The Max Response Time used to calculate the Max Resp Code inserted into the periodic General Queries. The allowed range is 0 to 31744 in tenths of seconds; default query response interval is 100 in tenths of seconds (10 seconds).

 LLQI (LMQI for IGMP) :

Last Member Query Interval. The Last Member Query Time is the time value represented by the Last Member Query Interval, multiplied by the Last Member Query Count. The allowed range is 0 to 31744 in tenths of seconds; default last member query interval is 10 in tenths of seconds (1 second).

 URI :

Unsolicited Report Interval. The Unsolicited Report Interval is the time between repetitions of a host's initial report of membership in a group. The allowed range is 0 to 31744 seconds, default unsolicited report interval is 1 second. .

 Buttons :

Save – Click to save changes. Reset- Click to undo any changes made locally and revert to previously

saved values.

 Upper right icon (Refresh, |<<, >>) :

You can click them Refreshes the displayed table starting from the "VLAN" input fields. Or click “|<<” to update the table starting from the first entry in the VLAN table, i.e. the entry with the lowest VLAN ID. Others click “>> “ to update the table, starting with the entry after the last entry currently displayed.

3-4.3 Port Group Filtering

The section describes how to set the IGMP Port Group Filtering? With the IGMP filtering feature, an user can exert this type of control. In some network Application environments, as like the metropolitan or multiple-dwelling unit (MDU) installations, an user might want to control the multicast groups to which a user on a switch port can belong. It allows the user to control the distribution of multicast services, such as IP/TV, based on some type of subscription or service plan.

With this feature, you can filter multicast joins on a per-port basis by configuring IP multicast profiles and associating them with individual switch ports. An IGMP profile can contain one or more multicast groups and specifies whether access to the group is permitted or denied. If an IGMP profile denying access to a multicast group is applied to a switch port, the IGMP join report requesting the stream of IP multicast traffic is dropped, and the port is not allowed to receive IP multicast traffic from that group. If the filtering action permits access to the multicast group, the IGMP report from the port is forwarded for normal processing.

IGMP filtering controls only IGMP membership join reports and has no relationship to the function that directs the forwarding of IP multicast traffic.

Web Interface

To configure the IGMP Snooping Port Group Configuration in the web interface:

1. Click Configuration, IGMP Snooping, Port Group Filtering

2. Click Add new Filtering Group

3. Scroll the Port to enable the Port Group Filtering.

Specify the Filtering Groups in the blank field.

4. Click the Apply to save the setting

5. If you want to cancel the setting then you need to click the Reset button.

It will revert to previously saved values

Figure 3-4.3: The IGMP Snooping Port Group Filtering Configuration.

Parameter description:

 Delete :

Check to delete the entry. It will be deleted during the next save.

 Port :

To evoke the port enable the IGMP Snooping Port Group Filtering function.

 Filtering Groups :

The IP Multicast Group that will be filtered.

 Buttons:

Apply – Click to save changes. Reset- Click to undo any changes made locally and revert to previously

saved values.

3-4.4 Status

After you complete the IGMP Snooping configuration, then you could to let the switch display the IGMP Snooping Status. The Section provides you to let switch to display the IGMP Snooping detail status.

Web Interface

To display the IGMP Snooping status in the web interface:

1. Click Configuration, IGMP Snooping, Status

2. If you want to auto-refresh the information then you need to evoke the

“Auto-refresh”.

3. Click “ Refresh“ to refresh the IGMP Snooping Status.

4. Click “ Clear“ to clear the IGMP Snooping Status.

Figure 3-4.4: The IGMP Snooping Status.

Parameter description:

 VLAN ID :

The VLAN ID of the entry.

 Querier Version :

Working Querier Version currently.

 Host Version :

Working Host Version currently.

 Querier Status :

Shows the Querier status is "ACTIVE" or "IDLE".

 Queries Transmitted :

The number of Transmitted Queries.

 Queries Received :

The number of Received Queries.

 V1 Reports Received :

The number of Received V1 Reports.

 V2 Reports Received :

The number of Received V2 Reports.

 V3 Reports Received :

The number of Received V3 Reports.

 V2 Leaves Received :

The number of Received V2 Leaves.

 Auto-refresh

To evoke the auto-refresh icon then the device will refresh the log automatically.

 Upper right icon (Refresh, clear)

You can click them for refresh the Status or clear them by manual.

3-4.5 Group Infermation

After you complete to set the IGMP Snooping function then you could let the switch to display the IGMP Snooping Group Information. Entries in the IGMP Group Table are shown on this page. The IGMP Group Table is sorted first by VLAN ID, and then by group. The will use the last entry of the currently displayed table as a basis for the next lookup. When the end is reached the text "No more entries" is shown in the displayed table. Use the button to start over.

Web Interface

To display the IGMP Snooping Group Information in the web interface:

1. Click Configuration, IGMP Snooping, Group Information

2. If you want to auto-refresh the information then you need to evoke the

“Auto-refresh”.

3. Click “ Refresh“ to refresh a entry of the IGMP Snooping Groups

Information.

4. Click “<< or >> “ to move to previous or next entry.

Figure 3-4.5: The IGMP Snooping Groups Information.

Parameter description:

Navigating the IGMP Group Table

The "Start from VLAN", and "group" input fields allow the user to select the starting point in the IGMP Group Table. The will use the last entry of the currently displayed table as a basis for the next lookup. When the end is reached the text "No more entries" is shown in the displayed table.

IGMP Group Table Columns

 VLAN ID :

VLAN ID of the group.

 Groups :

Group address of the group displayed.

 Port Members :

Ports under this group.

 Auto-refresh

To evoke the auto-refresh icon then the device will refresh the log automatically.

 Upper right icon (Refresh, <<, >> )

You can click them for refresh the IGMP Group Status by manual, others for next/up page or entry..

3-4.6 IPv4 SSM information

Source Specific Multicast (SSM) is a datagram delivery model that best supports one-tomany applications, also known as broadcast applications. SSM is a core network technology of IP multicast targeted for audio and video broadcast application environments.

For the SSM delivery mode, an IP multicast receiver host must use IGMP Version 3 (IGMPv3) to subscribe to channel (S, G). By subscribing to this channel, the receiver host is indicating that it wants to receive IP multicast traffic sent by source host S to group G. The network will deliver IP multicast packets from source host S to group G to all hosts in the network that have subscribed to the channel (S, G).

SSM does not require group address allocation within the network, only within each source host. Different applications running on the same source host must use different SSM groups. Different applications running on different source hosts can arbitrarily reuse SSM group addresses without causing any excess traffic on the network.

Addresses in the range 232.0.0.0/8 (232.0.0.0 to 232.255.255.255) are reserved for SSM by IANA. In the switch, you can configure SSM for arbitrary IP multicast addresses also.

Web Interface

To display the IGMPv3 IPv4 SSM Information in the web interface:

1. Click Configuration, IGMP Snooping, IPv4 SSM Information

2. If you want to auto-refresh the information then you need to evoke the

“Auto-refresh”.

3. Click “ Refresh“ to refresh a entry of the IGMPv3 IPv4 SSM Information.

4. Click “<< or >> “ to move to previous or next entry.

Figure 3-4.6: The IGMPv3 IPv4 SSM Information.

Parameter description:

Navigating the IGMPv3 Information Table

Each page shows up to 99 entries from the IGMPv3 SSM (Source Specific Multicast) Information table, default being 20, selected through the "entries per page" input field. When first visited, the web page will show the first 20 entries from the beginning of the IGMPv3 Information Table.

The "Start from VLAN", and "group" input fields allow the user to select the starting point in the IGMPv3 Information Table. Clicking the button will update the displayed table starting from that or the closest next IGMPv3 Information Table match. In addition, the two input fields will - upon a button click - assume the value of the first displayed entry, allowing for continuous refresh with the same start address.

The will use the last entry of the currently displayed table as a basis for the next lookup. When the end is reached the text "No more entries" is shown in the displayed table. Use the button to start over.

IGMPv3 Information Table Columns

 VLAN ID :

VLAN ID of the group.

 Group :

Group address of the group displayed.

 Port :

Switch port number.

 Mode :

Indicates the filtering mode maintained per (VLAN ID, port number, Group Address) basis. It can be either Include or Exclude.

 Source Address :

IP Address of the source. Currently, system limits the total number of IP source addresses for filtering to be 128.

 Type :

Indicates the Type. It can be either Allow or Deny.

 Auto-refresh

To evoke the auto-refresh icon then the device will refresh the log automatically.

 Upper right icon (Refresh, <<, >> )

You can click them for refresh the IGMP Group Status by manual, others for next/up page or entry..

3-5 MVR

The MVR feature enables multicast traffic forwarding on the Multicast VLAN. In a multicast television application, a PC or a television with a set-top box can receive the multicast stream. Multiple set-top boxes or PCs can be connected to one subscriber port, which is a switch port configured as an MVR receiver port. When a subscriber selects a channel, the set-top box or PC sends an IGMP join message to Switch A to join the appropriate multicast. Uplink ports that send and receive multicast data to and from the multicast VLAN are called MVR source ports.

3-5.1 Configuration

The section describes user could set the MVR basic Configuration and some parameters in the switch

Web Interface

To configure the MLD Snooping Port Group Configuration in the web interface:

1. Click Configuration, MVR, Configuration

2. Scroll the MVR mode to enable or disable and Scroll to set all

parameters.

3. Click the Apply to save the setting

4. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values

Figure 3-5.1: The MVR Configuration

Parameter description:

 MVR Mode :

Enable/Disable the Global MVR.

 VLAN ID :

Specify the Multicast VLAN ID.

 Mode :

Enable MVR on the port.

 Type :

Specify the MVR port type on the port.

 Immediate Leave :

Enable the fast leave on the port.

 Buttons:

Apply – Click to save changes. Reset- Click to undo any changes made locally and revert to previously

saved values.

3-5.2 Port Group Allow

The section describes user could add the MVR Groups Allow entries on the switch. The IP Multicast Group which been added into the table will be allowed to get through to the logical port. .

Web Interface

1. Click Configuration, MVR, Port Group Allow

2. To Click the ”Add New Allow Group”

3. To choice which logical port you do want to set and enter the IP address from “Start Address“ to “End Address“.

4. Click “Apply“ to Save the Port Allow Group.

Figure 3-5.2: The Port Group Allow

Parameter description:

 Delete

Check to delete the entry. It will be deleted during the next apply.

 Port

The logical port for the settings.

 Allow Groups

The IP Multicast Group that will be allowed.

 Adding New Allow Group

Click ” Add New Allow Group” to add a new entry to the Group Allow table. Specify the Port, and Allow Group of the new entry. Click "Apply".

 Buttons

Apply: Click to apply changes. Reset: Click to undo any changes made locally and revert to previously saved values.

3-5.3 Groups Information

The section describes user could display the MVR Groups detail information on the switch. Entries in the MVR Group Table are shown on this page. The MVR Group Table is sorted first by VLAN ID, and then by group

Web Interface

To display the MVR Groups Information in the web interface:

1. Click Configuration, MVR, Groups Information

2. If you want to auto-refresh the information then you need to evoke the “Auto-refresh”.

3. To Click the “ Refresh“ to refresh a entry of the MVR Groups

Information.

4. Click “<< or >> “ to move to previous or next entry.

Figure 3-5.3: The MVR Groups Information

Parameter description:

MVR Group Table Columns

 VLAN ID :

VLAN ID of the group.

 Groups :

Group ID of the group displayed.

 Port Members :

Ports under this group.

 Auto-refresh :

To evoke the auto-refresh icon then the device will refresh the information automatically.

 Upper right icon (Refresh, <<, >> ):

You can click them for refresh the MVR Group information by manual, others for next/up page or entry..

3-5.4 Statistics

The section describes the switch will display the MVR detail Statistics after you had

configured MVR on the switch. It provides the detail MVR Statistics Information

Web Interface

To display the MVR Statistics Information in the web interface:

1. Click Configuration, MVR, Statistics

2. If you want to auto-refresh the information then you need to evoke the “Auto-refresh”.

3 .To Click the “ Refresh“ to refresh a entry of the MVR Statistics

Information.

4. Click “<< or >> “ to move to previous or next entry.

Figure 3-5.4: The MVR Statistics Information

Parameter description:

 VLAN ID :

The Multicast VLAN ID.

 V1 Reports Received :

The number of Received V1 Reports.

 V2 Reports Received :

The number of Received V2 Reports.

 V3 Reports Received :

The number of Received V3 Reports.

 V2 Leaves Received :

The number of Received V2 Leaves.

 Auto-refresh :

To evoke the auto-refresh icon then the device will refresh the information automatically.

 Upper right icon (Refresh, <<, >> ):

You can click them for refresh the MVR Group information by manual, others for

next/up page or entry.

3-5.5 EEE

By using EEE power savings can be achieved at the expense of traffic latency. This

latency occurs due to that the circuits EEE turn off to save power, need time to boot up before sending traffic over the link. This time is called "wakeup time". To achieve minimal latency, devices can use LLDP to exchange information about their respective tx and rx "wakeup time ", as a way to agree upon the minimum wakeup time they need.

This page provides an overview of EEE information exchanged by LLDP.

Web Interface

To display the MVR Statistics Information in the web interface:

1. Click Configuration, MVR, EEE

Figure 3-5.4: The EEE

Parameter description:

 Local Port :

The port on which LLDP frames are received or transmitted.

 Tx Tw :

The link partner's maximum time that transmit path can holdoff sending data after deassertion of LPI.

 Rx Tw:

The link partner's time that receiver would like the transmitter to holdoff to allow time for the receiver to wake from sleep.

 Fallback Receive Tw :

The link partner's fallback receive Tw. A receiving link partner may inform the transmitter of an alternate desired

Tw_sys_tx. Since a receiving link partner is likely to have discrete levels for savings, this provides the transmitter with additional information that it may use for a more efficient allocation. Systems that do not implement this option default the value to be the same as that of the Receive Tw_sys_tx.

 Echo Tx Tw :

The link partner's Echo Tx Tw value. The respective echo values shall be defined as the local link partners

reflection (echo) of the remote link partners respective values. When a local link partner receives its echoed values from the remote link partner it can determine whether or not the remote link partner has received, registered and processed its most recent values. For example, if the local link partner receives echoed parameters that do not match the values in its local MIB, then the local link partner infers that the remote link partners request was based on stale information.

 Echo Rx Tw :

The link partner's Echo Rx Tw value.

 Resolved Tx Tw :

The resolved Tx Tw for this link. Note : NOT the link partner The resolved value that is the actual "tx wakeup time " used for this link

(based on EEE information exchanged via LLDP).

 Resolved Rx Tw :

The resolved Rx Tw for this link. Note : NOT the link partner The resolved value that is the actual "tx wakeup time " used for this link

(based on EEE information exchanged via LLDP).

 EEE activated :

Show if the switch and the link partner have agreed upon which wakeup times to use.

Red - Switch and link partner have not agreed upon wakeup time. Green - Switch and link partner have agreed upon wakeup time.

3-5.6 Port Statistics

This page provides an overview of all LLDP traffic.

Two types of counters are shown. Global counters are counters that refer to the whole

switch, while local counters refer to per port counters for the currently selected switch.

Web Interface

To display the MVR Statistics Information in the web interface:

1. Click Configuration, MVR, Port Statistics

Figure 3-5.6: The Port statistics

Parameter description: Global Counter

 Neighbour entries were last changed :

Shows the time when the last entry was last deleted or added. It also shows the time elapsed since the last change was detected.

 Total Neighbours Entries Added :

Shows the number of new entries added since switch reboot.

 Total Neighbours Entries Deleted :

Shows the number of new entries deleted since switch reboot.

 Total Neighbours Entries Dropped :

Shows the number of LLDP frames dropped due to the entry table being full.

 Total Neighbours Entries Aged Out :

Shows the number of entries deleted due to Time-To-Live expiring.

Local Counter

 Local Port :

The port on which LLDP frames are received or transmitted.

 Tx Frames :

The number of LLDP frames transmitted on the port.

 Rx Frames :

The number of LLDP frames received on the port.

 Rx Errors :

The number of received LLDP frames containing some kind of error.

 Frames Discarded :

If an LLDP frame is received on a port, and the switch's internal table has run full, the LLDP frame is counted and discarded. This situation is known as "Too Many Neighbours" in the LLDP standard. LLDP frames require a new entry in the table when the Chassis ID or Remote Port ID is not already contained within the table. Entries are removed from the table when a given port's link is down, an LLDP shutdown frame is

received, or when the entry ages out.

 TLVs Discarded :

Each LLDP frame can contain multiple pieces of information, known as TLVs (TLV is

short for "Type Length Value"). If a TLV is malformed, it is counted and discarded.

 TLVs Unrecognized :

The number of well-formed TLVs, but with an unknown type value.

 Age-Outs :

Each LLDP frame contains information about how long time the LLDP information is valid (age-out time). If no new LLDP frame is received within the age out time, the

LLDP information is removed, and the Age-Out counter is incremented.

3-6 VLAN

To assign a specific VLAN for management purpose. The management VLAN is used to establish an IP connection to the switch from a workstation connected to a port in the VLAN. This connection supports a VSM, SNMP, and Telnet session. By default, the active management VLAN is VLAN 1, but you can designate any VLAN as the management VLAN by configuring System->IP->IPv4->VLAN ID. Only one management VLAN can be active at a time.

Figure 3-5.1.1: IP Configuration for management VLAN

When you specify a new management VLAN, your HTTP connection to the old management VLAN is lost. For this reason, you should have a connection between your management station and a port in the new management VLAN or connect to the new management VLAN through a multi-VLAN route.

3-6.1 VLAN Membership

The VLAN membership configuration for the selected switch can be monitored and modified here. Up to 4094 VLANs are supported. This page allows for adding and deleting VLANs as well as adding and deleting port members of each VLAN.

Web Interface

To configure VLAN membership configuration in the web interface:

1. Click VLAN membership Configuration.

2. Specify Management VLAN ID from 1~ 4094.

3. Click Save.

Figure 3-6.1.2: The VLAN Membership Configuration

Parameter description:

 Delete :

To delete a VLAN entry, check this box and the entry will be deleted on the selected switch.

Warning: the default VLAN 1 can be deleted. But if deleting the default VLAN 1, the connection to the switch would lost and some errors would occur.

 VLAN ID :

Indicates the ID of every single VLAN. Legal values for a VLAN ID are 1 to 4094.

 VLAN Name :

Indicates the name of VLAN. VLAN Name can contain alphabets, numbers, and mix of alphabets and numbers, but exclude special characters. VLAN Name can leave blanks. The length of VLAN name supports up to 32 characters. VLAN name can be edited for the existing VLAN entries.

 Port Members :

A row of check boxes for each port display port members of each VLAN. To include a port in a VLAN, tick the box. To remove or exclude the port from the VLAN, make sure the box is unchecked.

 Adding a New VLAN :

Click to add a new VLAN group. An empty row, no port is member and all boxes are unchecked, is added to the table to configure.

A VLAN without any port members cannot be set up.

 Buttons:

Apply – Click to save changes.

Reset- Click to undo any change which is made before pressing Apply

button. Go back to the previous group configuration.

 Upper right icon (Refresh, |<<, >>):

You can click them to refresh the VLAN entries manually. Press |<< or >> to previous or next page of the table.

3-6.2 Ports

User can configure all parameter to each port in VLAN Port Setting. These parameter involved two parts, Ingress rule and Egress rule. The function of Port Type, Ingress Filtering, Frame Type, and PVID affect Ingress process. Furthermore, Port Type, Egress Rule, and PVID affect Egress process.

Web Interface

To configure VLAN Port configuration in the web interface:

1. Click VLAN Port Configuration.

2. Specify the VLAN Port Configuration parameters.

3. Click Save.

Figure 3-6.2: The VLAN Port Configuration

Parameter description:

 Ethertype for Custom S-ports :

This field specifies the ether type used for Custom S-ports while s-custom-port enabled. This is a global setting for all the Custom S-ports. Custom Ethertype enables the user to change the Ethertype value on a port to any value in order to support network devices which do not use the standard 0x8100 Ethertype field value on 802.1Q-tagged or 802.1p-tagged frames.

 Port :

Indicate the port number of each port.

 Port Type :

Port can be one of the following types: Unaware, C-port, S-port, and S-custom-port.

Ingress action Egress action Unaware

C-port When the port received untagged frames, an

S-port When the port received untagged frames, an

S-custom-port When the port received untagged frames, an

When the port received untagged frames, an untagged frame obtain a tag (based on PVID) and is forwarded.

When the port received tagged frames : No matter which is TPID value, it will add one outer tag that is PVID , and is forwarded.

untagged frame obtain a tag (based on PVID) and is forwarded.

When the port received tagged frames :

1. if an tagged frame with TPID=0x8100, it is forwarded. (not add tag)

2. if an tagged frame with TPID is not 0x8100,and not Ox88a8 , and not Ethertype , it is forwarded.( will add one outer tag that is PVID)

3. if the TPID of tagged frame is 0x88A8 or Ethertype, it will be discarded.

untagged frame obtain a tag (based on PVID) and is forwarded.

When the port received tagged frames:

1. Only the TPID of tagged frame is 0x8100, it will be discarded, others TPID will be forwarded.

2. This mode will not add tag.

untagged frame obtain a tag (based on PVID) and is forwarded.

When the port received tagged frames :

1. Only the TPID of tagged frame is either 0x88a8 or Ethertype for Customer S-ports will be forwarded, others will be discarded.

2. This mode will not add tag.

The TPID of frame transmitted by Unaware port will be set to 0x8100. The final status of the frame after egressing are also effected by Egress Rule. The TPID of frame transmitted by C-port will be set to 0x8100.

The TPID of frame transmitted by S-port will be set to 0x88A8.

The TPID of frame transmitted by S-customport will be set to an selfcustomized value, which can be set by the user using the column of

Ethertype for Custom Sports.

 Ingress Filtering :

Enable ingress filtering on a port by ticking the box. If ingress filtering is enabled and the ingress port is not a member of the classified VLAN group of the frame, the frame is discarded (Do not forward).

If ingress filtering is disabled and the ingress port is not a member of the classified VLAN group of the frame, however, the frame is still forwarded.

By default, ingress filtering is disabled (untick).

 Frame Type :

Determines whether the port accepts all frames or only tagged/untagged frames. This parameter affects VLAN ingress processing. If the port only accepts tagged frames,

untagged frames received on the port are discarded. By default, the field is set to All.

 Egress Rule :

Determines what device the port connect to. If the port connect to VLAN-unaware devices, such as terminal/work station, Access link should be used. If the port connect to VLAN-aware devices, for example, switch connect to switch, Trunk link should be used. Hybrid link is used for more flexible application.

Hybrid : If the tag of tagged frame is as the same as PVID, the tag of the frame will be removed. The frame become an untagged frame and transmitted.

Any other tagged frame whose tag value is different from PVID are transmitted directly.

Trunk : all tagged frames with any tag value are transmitted.

Access : The tag of any tagged frame will be removed to become an untagged frame. These untagged frames will be transmitted.

 PVID :

Configures the Port VLAN identifier. The allowed values are 1 through 4094. The default value is 1.

When the port received a untagged frame, the port will give a tag to it based on the value of PVID, and the frame become tagged frame.

NOTE: The port must be a member of the same VLAN as

the Port VLAN ID.

3-6.3 Switch Status

The function Switch Status gathers the information of all VLAN status and reports it by the order of Static NAS MVRP MVP Voice VLAN MSTP GVRP Combined.

Web Interface

To Display VLAN membership status in the web interface:

1. Click VLAN membership.

2. Specify the Static NAS MVRP MVP Voice VLAN MSTP GVRP Combined.

3. Display membership information.

Figure 3-6.3: The VLAN Membership Status for Static user

Parameter description:

VLAN USER (You can scroll to select one kind VLAN user as below:)

VLAN User module uses services of the VLAN management functionality to configure VLAN memberships and VLAN port configurations such as PVID and UVID. Currently we support the following VLAN user types:

Web/SNMP : These are referred to as static. NAS : NAS provides port-based authentication, which involves communications between

a Supplicant, Authenticator, and an Authentication Server.

MVRP : Multiple VLAN Registration Protocol (MVRP) allows dynamic registration and

deregistration of VLANs on ports on a VLAN bridged network.

GVRP : GARP VLAN Registration Protocol (GVRP) allows dynamic registration and

deregistration of VLANs on ports on a VLAN bridged network.

Voice VLAN : Voice VLAN is a VLAN configured specially for voice traffic typically

originating from IP phones.

MVR : MVR is used to eliminate the need to duplicate multicast traffic for subscribers in

each VLAN. Multicast traffic for all channels is sent only on a single (multicast) VLAN.

MSTP : The 802.1s Multiple Spanning Tree protocol (MSTP) uses VLANs to create

multiple spanning trees in a network, which significantly improves network resource utilization while maintaining a loop-free environment.

 VLAN ID :

Indicates the ID of this particular VLAN.

 VLAN Membership :

The VLAN Membership Status Page shall show the current VLAN port members for all VLANs configured by a selected VLAN User (selection shall be allowed by a Combo Box). When ALL VLAN Users are selected, it shall show this information for all the VLAN Users, and this is by default. VLAN membership allows the frames classified to the VLAN ID to be forwarded on the respective VLAN member ports.

 Auto-refresh :

To evoke the auto-refresh icon then the device will refresh the information automatically.

 Upper right icon (Refresh):

You can click them for refresh the VLAN entries by manual.

3-6.4 Port Status

The function Port Status gathers the information of all VLAN status and reports it by the order of Static NAS MVRP MVP Voice VLAN MSTP GVRP Combined.

Web Interface

To Display VLAN Port Status in the web interface:

1. Click VLAN Port Status.

2. Specify the Static NAS MVRP MVP Voice VLAN MSTP GVRP Combined.

3. Display Port Status information.

Figure 3-6.4: The VLAN Port Status for Static user

Parameter description:

 Port :

The logical port for the settings contained in the same row.

 PVID :

Shows the VLAN identifier for that port. The allowed values are 1 through 4095. The default value is 1.

 Port Type :

Shows the Port Type. Port type can be any of Unaware, C-port, S-port, Custom S-port.

If Port Type is Unaware, all frames are classified to the Port VLAN ID and tags are not removed. C-port is Customer Port. S-port is Service port. Custom S-port is S-port with Custom TPID.

 Ingress Filtering :

Shows the ingress filtering on a port. This parameter affects VLAN ingress processing. If ingress filtering is enabled and the ingress port is not a member of the classified VLAN, the frame is discarded.

 Frame Type :

Shows whether the port accepts all frames or only tagged frames. This parameter affects VLAN ingress processing. If the port only accepts tagged frames, untagged frames received on that port are discarded.

 Tx Tag :

Shows egress filtering frame status whether tagged or untagged.

 UVID :

Shows UVID (untagged VLAN ID). Port's UVID determines the packet's behaviour at the egress side.

 Conflicts :

Shows status of Conflicts whether exists or not. When a Volatile VLAN User requests to set VLAN membership or VLAN port configuration, the following conflicts can occur:

Functional Conflicts between features.

Conflicts due to hardware limitation.

Direct conflict between user modules.

 Auto-refresh :

To evoke the auto-refresh icon then the device will refresh the information automatically.

 Upper right icon (Refresh):

You can click them for refresh the VLAN Port Status information by manual.

3-6.5 Private VLANs

In a private VLAN, communication between ports in that private VLAN is not permitted. A VLAN can be configured as a private VLAN.

3-6.5.1 Private VLANs Membership

The Private VLAN membership configurations for the switch can be monitored and modified here. Private VLANs can be added or deleted here. Port members of each Private VLAN can be added or removed here. Private VLANs are based on the source port mask, and there are no connections to VLANs. This means that VLAN IDs and Private VLAN IDs can be identical. A port must be a member of both a VLAN and a Private VLAN to be able to forward packets. By default, all ports are VLAN unaware and members of VLAN 1 and Private VLAN 1. A VLAN unaware port can only be a member of one VLAN, but it can be a member of multiple Private VLANs.

Web Interface

To configure Private VLAN configuration in the web interface:

1. Click add new Private VLAN configuration

2. Specify the Private VLAN ID and Port Members

3. Click Apply.

Figure 3-6.5.1: The Private VLAN Membership Configuration

Parameter description:

 Delete :

To delete a private VLAN entry, check this box. The entry will be deleted during the next save.

 Private VLAN ID :

Indicates the ID of this particular private VLAN.

 Port Members :

A row of check boxes for each port is displayed for each private VLAN ID. To include a port in a Private VLAN, check the box. To remove or exclude the port from the Private VLAN, make sure the box is unchecked. By default, no ports are members, and all boxes are unchecked.

 Adding a New Private VLAN :

Click to add a new private VLAN ID. An empty row is added to the table, and the private VLAN can be configured as needed.

 Buttons:

Apply – Click to save changes. Reset- Click to undo any changes made locally and revert to previously saved values.

3-6.5.2 Port Isolation

Port Isolation provides for an apparatus and method to isolate ports on layer 2 switches on the same VLAN to restrict traffic flow. The apparatus comprises a switch having said plurality of ports, each port configured as a protected port or a non-protected port. An address table memory stores an address table having a destination address and port number pair. A forwarding map generator generates a forwarding map which is responsive to a destination address of a data packet. The method for isolating ports on a layer 2 switch comprises configuring each of the ports on the layer 2 switch as a protected port or a non-protected port. A destination address on an data packet is matched with a physical address on said layer 2 switch and a forwarding map is generated for the data packet based upon the destination address on the data packet. The data packet is then sent to the plurality of ports pursuant to the forwarding map generated based upon whether the ingress port was configured as a protected or non-protected port.

This page is used for enabling or disabling port isolation on ports in a Private VLAN.A port member of a VLAN can be isolated to other isolated ports on the same VLAN and Private VLAN.

Web Interface

To configure Port Isolation configuration in the web interface:

1. Click VLAN, Port Isolation.

2. Evoke which port want to enable Port Isolation

3. Click Apply.

Figure 3-6.5.2: The Port Isolation Configuration

Parameter description:

 Port Members :

A check box is provided for each port of a private VLAN. When checked, port isolation is enabled on that port. When unchecked, port isolation is disabled on that port. By default, port isolation is disabled on all ports.

 Buttons:

Apply – Click to save changes. Reset- Click to undo any changes made locally and revert to previously saved values.

3-6.6 MAC-based VLAN

MAC address-based VLAN decides the VLAN for forwarding an untagged frame based on the source MAC address of the frame.

A most common way of grouping VLAN members is by port, hence the name port-based VLAN. Typically, the device adds the same VLAN tag to untagged packets that are received through the same port. Later on, these packets can be forwarded in the same VLAN. Port-based VLAN is easy to configure, and applies to networks where the locations of terminal devices are relatively fixed. As mobile office and wireless network access gain more popularity, the ports that terminal devices use to access the networks are very often non-fixed. A device may access a network through Port A this time, but through Port B the next time. If Port A and Port B belong to different VLANs, the device will be assigned to a different VLAN the next time it accesses the network. As a result, it will not be able to use the resources in the old VLAN. On the other hand, if Port A and Port B belong to the same VLAN, after terminal devices access the network through Port B, they will have access to the same resources as those accessing the network through Port A do, which brings security issues. To provide user access and ensure data security in the meantime, the MAC-based VLAN technology is developed.

MAC-based VLANs group VLAN members by MAC address. With MAC-based VLAN configured, the device adds a VLAN tag to an untagged frame according to its source MAC address. MAC-based VLANs are mostly used in conjunction with security technologies such as 802.1X to provide secure, flexible network access for terminal devices.

3-6.6.1 Configuration

The MAC-based VLAN entries can be configured here. This page allows for adding and deleting MAC-based VLAN entries and assigning the entries to different ports. This page shows only static entries.

Web Interface

To configure MAC address-based VLAN configuration in the web interface:

1. Click MAC address-based VLAN configuration and add new entry.

2. Specify the MAC address and VLAN ID.

3. Click Apply.

Figure 3-6.6.1: The MAC-based VLAN Membership Configuration

Parameter description:

 Delete :

To delete a MAC-based VLAN entry, check this box and press save. The entry will be deleted on the selected switch.

 MAC Address :

Indicates the MAC address.

 VLAN ID :

Indicates the VLAN ID.

 Port Members :

A row of check boxes for each port is displayed for each MAC-based VLAN entry. To include a port in a MAC-based VLAN, check the box. To remove or exclude the port from the MAC-based VLAN, make sure the box is unchecked. By default, no ports are members, and all boxes are unchecked.

 Adding a New MAC-based VLAN

Click to add a new MAC-based VLAN entry. An empty row is added to the table, and the MAC-based VLAN entry can be configured as needed. Any unicast MAC address can be configured for the MAC-based VLAN entry. No broadcast or multicast MAC addresses are allowed. Legal values for a VLAN ID are 1 through 4095.

The MAC-based VLAN entry is enabled on the selected switch unit when you click on "Save". A MAC-based VLAN without any port members on any unit will be deleted when you click "Save".

The button can be used to undo the addition of new MAC-based VLANs.

 Buttons:

Apply – Click to save changes. Reset- Click to undo any changes made locally and revert to previously

saved values.

3-6.6.2 Status

This section shows MAC-based VLAN entries configured by various MAC-based VLAN

users. Currently we support following VLAN User types:

NAS : NAS provides port-based authentication, which involves communications between

a Supplicant, Authenticator, and an Authentication Server.

Web Interface

To Display MAC-based VLAN configured in the web interface:

1. Click MAC-based VLAN Status.

2. Specify the Staic NAS Combined.

3. Display MAC-based information.

Figure 3-6.6.2: The MAC-based VLAN Membership Status for User Static

Parameter description:

 MAC Address :

Indicates the MAC address.

 VLAN ID :

Indicates the VLAN ID.

 Port Members :

Port members of the MAC-based VLAN entry.

 Auto-refresh :

To evoke the auto-refresh icon then the device will refresh the information automatically.

 Upper right icon (Refresh):

You can click them for refresh the MAC-based VLAN Memebership information by manual.

3-6.7 Protocol -based VLAN

This section describe Protocol -based VLAN, The Switch support Protocol include Ethernet LLC SNAP Protocol,

LLC

The Logical Link Control (LLC) data communication protocol layer is the upper sub-layer of the Data Link Layer (which is itself layer 2, just above the Physical Layer) in the sevenlayer OSI reference model. It provides multiplexing mechanisms that make it possible for several network protocols (IP, IPX, Decnet and Appletalk) to coexist within a multipoint network and to be transported over the same network media, and can also provide flow control and automatic repeat request (ARQ) error management mechanisms.

SNAP

The Subnetwork Access Protocol (SNAP) is a mechanism for multiplexing, on networks using IEEE 802.2 LLC, more protocols than can be distinguished by the 8-bit

802.2 Service Access Point (SAP) fields. SNAP supports identifying protocols

by Ethernet type field values; it also supports vendor-private protocol identifier spaces. It is used with IEEE 802.3, IEEE 802.4, IEEE 802.5, IEEE 802.11 and other IEEE 802 physical network layers, as well as with non-IEEE 802 physical network layers such as FDDI that use 802.2 LLC.

3-6.7.1 Protocol to Group

This page allows you to add new protocols to Group Name (unique for each Group) mapping entries as well as allow you to see and delete already mapped entries for the selected switch.

Web Interface

To configure Protocol -based VLAN configuration in the web interface:

1. Click Protocol -based VLAN configuration and add new entry.

2. Specify the Ethernet LLC SNAP Protocol and Group Name.

3. Click Apply.

Figure 3-6.7.1: The Protocol to Group Mapping Table

Parameter description:

 Delete :

To delete a Protocol to Group Name map entry, check this box. The entry will be deleted on the switch during the next Save.

 Frame Type :

Frame Type can have one of the following values:

1. Ethernet

2. LLC

3. SNAP

 Value :

Valid value that can be entered in this text field depends on the option selected from the the preceding Frame Type selection menu.

Below is the criteria for three different Frame Types:

1. For Ethernet: Values in the text field when Ethernet is selected as a Frame Type

is called etype. Valid values for etype ranges from 0x0600-0xffff

2. For LLC: Valid value in this case is comprised of two different sub-values.

a. DSAP: 1-byte long string (0x00-0xff) b. SSAP: 1-byte long string (0x00-0xff)

3. For SNAP: Valid value in this case also is comprised of two different sub-values.

a.OUI: OUI (Organizationally Unique Identifier) is value in format of xx-xx-xx where each pair (xx) in string is a hexadecimal value ranges from 0x00-0xff. b. PID: If the OUI is hexadecimal 000000, the protocol ID is the Ethernet type (EtherType) field value for the protocol running on top of SNAP; if the OUI is an OUI for a particular organization, the protocol ID is a value assigned by that organization to the protocol running on top of SNAP. In other words, if value of OUI field is 00-00-00 then value of PID will be etype (0x0600-0xffff) and if value of OUI is other than 00-00-00 then valid value of PID will be any value from 0x0000 to 0xffff.

NOTE: On changing the Frame type field, valid value of the

following text field will vary depending on the new frame type you selected.

 Group Name :

A valid Group Name is a unique 16-character long string for every entry which consists of a combination of alphabets (a-z or A-Z) and integers(0-9).

NOTE: Special character and underscore(_) are not allowed.

 Adding a New Group to VLAN mapping entr y :

Click to add a new entry in mapping table. An empty row is added to the table; Frame Type, Value and the Group Name can be configured as needed.

The button can be used to undo the addition of new entry.

 Buttons:

Save – Click to save changes. Reset- Click to undo any changes made locally and revert to previously

saved values.

 Upper right icon (Refresh):

You can click them for refresh the Protocol Group Mapping information by manual.

Planex SW-0216G4 User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual