Page 1
User Manual
Stratix 8000 and 8300 Ethernet Managed Switches
Page 2
Important User Information
Read this document and the documents listed in the additional resources section about installation, configuration, and
operation of this equipment before you install, configure, operate, or maintain this product. Users are required to
familiarize themselves with installation and wiring instructions in addition to requirements of all applicable codes, laws,
and standards.
Activities including installation, adjustments, putting into service, use, assembly, disassembly, and maintenance are required
to be carried out by suitably trained personnel in accordance with applicable code of practice.
If this equipment is used in a manner not specified by the manufacturer, the protection provided by the equipment may be
impaired.
In no event will Rockwell Automation, Inc. be responsible or liable for indirect or consequential damages resulting from the
use or application of this equipment.
The examples and diagrams in this manual are included solely for illustrative purposes. Because of the many variables and
requirements associated with any particular installation, Rockwell Automation, Inc. cannot assume responsibility or
liability for actual use based on the examples and diagrams.
No patent liability is assumed by Rockwell Automation, Inc. with respect to use of information, circuits, equipment, or
software described in this manual.
Reproduction of the contents of this manual, in whole or in part, without written permission of Rockwell Automation,
Inc., is prohibited.
Throughout this manual, when necessary, we use notes to make you aware of safety considerations.
WARNING: Identifies information about practices or circumstances that can cause an explosion in a hazardous environment,
which may lead to personal injury or death, property damage, or economic loss.
ATTENTION: Identifies information about practices or circumstances that can lead to personal injury or death, property
damage, or economic loss. Attentions help you identify a hazard, avoid a hazard, and recognize the consequence.
IMPORTANT
Identifies information that is critical for successful application and understanding of the product.
Labels may also be on or inside the equipment to provide specific precautions.
SHOCK HAZARD: Labels may be on or inside the equipment, for example, a drive or motor, to alert people that dangerous
voltage may be present.
BURN HAZARD: Labels may be on or inside the equipment, for example, a drive or motor, to alert people that surfaces may
reach dangerous temperatures.
ARC FLASH HAZARD: Labels may be on or inside the equipment, for example, a motor control center, to alert people to
potential Arc Flash. Arc Flash will cause severe injury or death. Wear proper Personal Protective Equipment (PPE). Follow ALL
Regulatory requirements for safe work practices and for Personal Protective Equipment (PPE).
Allen-Bradley, Rockwell Software, Rockwell Automation, Logix5000, RSLinx , RSLogix, RSNetWorx, Stratix 2000, Stratix 5700, Stratix 8000, Stratix 8300, Studio 5000, and Studio 5000 Logix Designer are trademarks of
Rockwell Automation, Inc.
Trademarks not belonging to Rockwell Automation are property of their respective companies.
Page 3
Summary of Changes
This manual contains new and updated information. Changes throughout this
revision are marked by change bars, as shown to the right of this paragraph.
New and Updated Information
This table contains the changes made to this revision.
Topic Page
Updated Device Manager hardware and software requirements 48, 53
New Express Setup window 50, 51
New process for enabling static and connected routing 83, 84
New DeviceManager Web interface 87…139
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 3
Page 4
Summary of Changes
Notes:
4 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 5
Table of Contents
Preface
Install the Switch
Studio 5000 Environment . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
Access Product Release Notes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
Additional Resources . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
Chapter 1
Before You Begin . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
Parts List . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
Required Tools and Equipment. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Product Dimensions. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
Install the Switch. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
Attach Expansion Modules (optional) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
Mount the Switch on a DIN Rail . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
Mount the Switch on a Wall or Panel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Install an SFP Module (optional) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
Ground the Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
Wire the DC Power Source for the Switch . . . . . . . . . . . . . . . . . . . . . . . . . 29
Wire the DC Power Source for the PoE Expansion Module (optional) . 31
Attach the Power and Relay Connector to the Switch . . . . . . . . . . . . . . . 33
Attach the Power Connector to the PoE Expansion Module (optional). 35
Wire External Alarms (optional) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
Connect to 10/100 Copper Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Connect to a PoE Expansion Module Port . . . . . . . . . . . . . . . . . . . . . . . . . 37
Connect to Dual-purpose Uplink Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
Connect to 10/100/1000 Uplink Ports . . . . . . . . . . . . . . . . . . . . . . . . 38
Connect to SFP Fiber Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
Connect to 100BaseFX Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
Install or Remove the CompactFlash Card . . . . . . . . . . . . . . . . . . . . . . . . . 39
Reset the Switch to Factory Defaults. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Troubleshoot the Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Switch POST Results . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
POST Results with a Terminal . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Bad or Damaged Cable. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
Ethernet and Fiber Cables. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
Link Status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
Transceiver Issues . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
Port and Interface Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
Getting Started
Chapter 2
Switch Front Panel Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
Expansion Module Front Panel Descriptions . . . . . . . . . . . . . . . . . . . . . . . 44
Hardware Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47
CompactFlash Memory Card . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48
Set Up the Switch Initially with Express Setup. . . . . . . . . . . . . . . . . . . . . . 48
Switch Memory Allocation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52
Device Manager Web Interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 5
Page 6
Table of Contents
Switch Software Features
Hardware Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53
Software Requirements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53
Studio 5000 Environment. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
Hardware Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
Cisco Network Assistant. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
Command Line Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55
Chapter 3
Port Numbering. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 58
Global Macro . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Smartports. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Optimize Ports through Port Roles. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Avoid Smartports Mismatches . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 60
Power over Ethernet (PoE) Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61
Powered Device Detection and Initial Power Allocation . . . . . . . . . 62
Power Management Modes. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63
VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66
Isolate Traffic and Users. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66
Isolate Different Traffic Types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Group Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68
IGMP Snooping with Querier . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69
Spanning Tree Protocol. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
Rapid Spanning Tree Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
Storm Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71
Default Storm Control Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . 72
Port Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
Dynamic Secure MAC Address (MAC ID) . . . . . . . . . . . . . . . . . . . . . 72
Static Secure MAC Address (MAC ID) . . . . . . . . . . . . . . . . . . . . . . . . 73
Security Violations. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73
EtherChannels . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74
DHCP Persistence . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75
CIP Sync Time Synchronization (Precision Time Protocol). . . . . . . . . . 76
Resilient Ethernet Protocol. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76
REP Open Segment. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77
REP Ring Segment. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
Access Ring Topologies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
Link Integrity . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
SNMP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80
Supported MIBs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81
Port Mirroring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82
Layer 3 Routing (Stratix 8300 switch only) . . . . . . . . . . . . . . . . . . . . . . . . . 82
Types of Routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
Static and Connected Routing. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84
Alarms . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84
Cryptographic IOS Software (optional) . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
Cable Diagnostics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
Advanced Software Features. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
6 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 7
Manage the Switch via the
Device Manager Web Interface
Table of Contents
Chapter 4
Access the Device Manager Web Interface. . . . . . . . . . . . . . . . . . . . . . . . . . 88
Dashboard Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89
Front Panel View and Status Indicators . . . . . . . . . . . . . . . . . . . . . . . . 89
Switch Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 92
Switch Health. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 93
Port Utilization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94
Configure Smartports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 95
Customize Smartport Role Attributes. . . . . . . . . . . . . . . . . . . . . . . . . . 96
Configure Port Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 97
Configure Ports to Use QuickConnect Technology . . . . . . . . . . . . . 99
Configure Port Thresholds . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 100
Configure EtherChannels. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101
Configure DHCP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103
Set up the DHCP Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103
Configure a DHCP IP Address Pool . . . . . . . . . . . . . . . . . . . . . . . . . . 104
Reserve IP Addresses through DHCP Persistence . . . . . . . . . . . . . . 105
Configure VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107
Assign Ports to VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108
Configure Power over Ethernet (PoE) Ports . . . . . . . . . . . . . . . . . . . . . . . 108
Configure PTP Time Synchronization. . . . . . . . . . . . . . . . . . . . . . . . . . . . 111
Enable Static and Connected Routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . 114
Enable Connected Routing Only . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 114
Enable Both Static and Connected Routing. . . . . . . . . . . . . . . . . . . . 114
Configure STP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 115
Global Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 115
PortFast Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 116
Configure REP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 117
Configure Port Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 119
Configure IGMP Snooping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 121
Configure SNMP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 122
Use SNMP Management Applications . . . . . . . . . . . . . . . . . . . . . . . . 123
Configure Alarm Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123
Alarm Relay Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123
Global Alarms. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 124
Port Alarms. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125
Configure Alarm Profiles . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125
Monitor Trends. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 127
Monitor Port Statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 128
Monitor REP Topology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 129
Monitor CIP Status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 129
Diagnose Cabling Problems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 131
View System Log Messages. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 132
Use Express Setup to Change Switch Settings. . . . . . . . . . . . . . . . . . . . . . 133
Manage Users. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 135
Reallocate Switch Memory for Routing . . . . . . . . . . . . . . . . . . . . . . . . . . . 136
Restart the Switch. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 137
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 7
Page 8
Table of Contents
Manage the Switch via the
Studio 5000 Environment
Upgrade the Switch Firmware . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138
Upload and Download Configuration Files. . . . . . . . . . . . . . . . . . . . . . . . 139
Chapter 5
EtherNet/IP CIP Interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 142
CIP Network Connections . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 142
RSLinx Software and Network Who Support . . . . . . . . . . . . . . . . . . 143
Electronic Data Sheet (EDS) Files. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 143
Data Accessible with CIP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144
Add a Switch to the I/O Configuration Tree . . . . . . . . . . . . . . . . . . . . . . 146
Configure Module Properties. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 147
Connection Properties. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 149
Switch Configuration Properties. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 149
Port Configuration Properties . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 151
Advanced Port Properties . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 152
Port Thresholds (storm control) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 154
Monitor and Reset the Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 155
Switch Status. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 156
Port Status. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 157
Port Diagnostics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158
Cable Diagnostics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 160
DHCP Pool Display. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161
DHCP Address Assignment. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 163
Time Sync Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 164
Time Sync Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 166
Save and Restore Switch Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . 168
Troubleshoot the Switch
Status Indicators
Chapter 6
IP Address Issues . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 169
Device Manager Web Interface Issues . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 170
Switch Performance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 170
Access Direct Managed Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171
Restart or Reset the Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 172
Restart the Switch from the Device Manager Web Interface . . . . . 172
Restart the Switch from the Studio 5000 Environment . . . . . . . . . 172
Reset the Switch to Factory Defaults . . . . . . . . . . . . . . . . . . . . . . . . . . 173
Recover the Switch Firmware and Restore Factory Defaults . . . . . . . . . 173
Troubleshoot a Firmware Upgrade. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 174
Appendix A
Switch Status Indicators . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175
Dual-purpose Port Status Indicators . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 177
10/100 Copper, 100BaseFX, and SFP Port Status Indicators. . . . . . . . 178
PoE Port Status Indicator . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 179
8 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 9
I/O Data Types
Table of Contents
Appendix B
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .181
Appendix C
Port Assignments for CIP Data
Cables and Connectors
History of Changes
Index
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .187
Appendix D
10/100 and 10/100/1000 Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 189
Connect to 10BASE-T- and 100BASE-TX-compatible Devices . 190
100BASE-FX Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192
SFP Transceiver Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192
Dual-purpose Ports. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 193
Console Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 193
Cable and Adapter Specifications. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194
SFP Module Cable Specifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194
PoE Port Cable Specifications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194
Adapter Pinouts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194
Appendix E
1783-UM003H-EN-P, September 2013 . . . . . . . . . . . . . . . . . . . . . . . . . . 197
1783-UM003G-EN-P, December 2012 . . . . . . . . . . . . . . . . . . . . . . . . . . . 198
1783-UM003F-EN-P, August 2011 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 198
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 9
Page 10
Table of Contents
Notes:
10 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 11
Preface
This publication describes the embedded software features and tools for
configuring and managing Stratix 8000™ and Stratix 8300™ Ethernet managed
switches. In addition, this publication provides troubleshooting information to
help you resolve basic switch and network issues.
Use this manual if you configure and monitor Stratix 8000 Ethernet managed
switches. This manual assumes you understand the following:
• Local area network (LAN) switch fundamentals
• Concepts and terminology of the Ethernet protocol and local area
networking
Studio 5000 Environment
The Studio 5000™ Engineering and Design Environment combines engineering
and design elements into a common environment. The first element in the
Studio 5000 environment is the Logix Designer application. The Logix Designer
application is the rebranding of RSLogix™ 5000 software and continues to be the
product to program Logix5000™ controllers for discrete, process, batch, motion,
safety, and drive-based solutions.
The Studio 5000 environment is the foundation for the future of Rockwell
Automation® engineering design tools and capabilities. It is the one place for
design engineers to develop all the elements of their control system.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 11
Page 12
Preface
Access Product Release Notes
Product release notes are available online within the Product Compatibility and
Download Center.
1. From the Quick Links list on
Compatibility and Download Center.
http://www.ab.com, choose Product
2. From the Compatibility Scenarios tab or the Get Downloads tab, search
for and choose your product.
3. Click the download icon to access product release notes.
12 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 13
Preface
Additional Resources
These documents contain additional information concerning related products
from Rockwell Automation.
Resource Description
Stratix Ethernet Managed Switches Technical Data,
publication
Stratix 8000 Ethernet Managed Switches Installation
Instructions, publication
Stratix 8000 Ethernet Managed Switches Release Notes,
publication
Device Manager Web interface online help (provided with
the switch)
Industrial Automation Wiring and Grounding Guidelines,
publication
Product Certifications website,
1783-TD001
1783-IN005
1783-RN002
1770-4.1
http://www.ab.com Provides declarations of conformity, certificates, and
Provides specification information for the switches.
Describes how to get started installing and configuring
the switch.
Lists enhancements and anomalies associated with the
released software version.
Provides context-sensitive information about
configuring and using the switch, including system
messages.
Provides general guidelines for installing a Rockwell
Automation industrial system.
other certification details.
You can view or download publications at
http://www.rockwellautomation.com/literature. To order paper copies of technical
documentation, contact your local Allen-Bradley distributor or Rockwell
Automation sales representative.
For information about additional software features or further configuration, see
these Cisco publications at
http://www.Cisco.com:
• Cisco IE-3000 Command Line Reference Manual
• Cisco IE-3000 Software Configuration Guide
• Cisco IE-3000 Switch System Message Guide
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 13
Page 14
Preface
Notes:
14 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 15
Install the Switch
Topic Page
Before You Begin 17
Install the Switch 21
Attach Expansion Modules (optional) 22
Mount the Switch on a DIN Rail 24
Mount the Switch on a Wall or Panel 26
Install an SFP Module (optional) 27
Ground the Switch 28
Wire the DC Power Source for the Switch 29
Wire the DC Power Source for the PoE Expansion Module (optional) 31
Attach the Power and Relay Connector to the Switch to the Switch 33
Attach the Power Connector to the PoE Expansion Module (optional) 35
Wire External Alarms (optional) 35
Connect to 10/100 Copper Ports 37
Connect to a PoE Expansion Module Port 37
Connect to Dual-purpose Uplink Ports 38
Connect to 100BaseFX Ports 39
Install or Remove the CompactFlash Card 39
Reset the Switch to Factory Defaults 40
Troubleshoot the Installation 40
Chapter 1
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 15
Page 16
Chapter 1 Install the Switch
ATTENTION: Environment and Enclosure
This equipment is intended for use in a Pollution Degree 2 industrial environment, in overvoltage Category II applications (as defined
in IEC 60664-1), at altitudes up to 2000 m (6562 ft) without derating.
This equipment is not intended for use in residential environments and may not provide adequate protection to radio communication
services in such environments.
This equipment is supplied as open-type equipment. It must be mounted within an enclosure that is suitably designed for those
specific environmental conditions that will be present and appropriately designed to prevent personal injury resulting from
accessibility to live parts. The enclosure must have suitable flame-retardant properties to prevent or minimize the spread of flame,
complying with a flame spread rating of 5VA or be approved for the application if nonmetallic. The interior of the enclosure must be
accessible only by the use of a tool. Subsequent sections of this publication may contain additional information regarding specific
enclosure type ratings that are required to comply with certain product safety certifications.
In addition to this publication, see the following:
• Industrial Automation Wiring and Grounding Guidelines, publication
• NEMA Standard 250 and IEC 60529, as applicable, for explanations of the degrees of protection provided by enclosures
North American Hazardous Location Approval
The following information applies when operating this equipment in
hazardous locations.
Products marked "CL I, DIV 2, GP A, B, C, D" are suitable for use in Class I Division 2 Groups
A, B, C, D, Hazardous Locations and nonhazardous locations only. Each product is supplied
with markings on the rating nameplate indicating the hazardous location temperature
code. When combining products within a system, the most adverse temperature code
(lowest "T" number) may be used to help determine the overall temperature code of the
system. Combinations of equipment in your system are subject to investigation by the
local Authority Having Jurisdiction at the time of installation.
1770-4.1, for additional installation requirements
Informations sur l’utilisation de cet équipement en environnements
dangereux.
Les produits marqués "CL I, DIV 2, GP A, B, C, D" ne conviennent qu'à une utilisation en
environnements de Classe I Division 2 Groupes A, B, C, D dangereux et non dangereux.
Chaque produit est livré avec des marquages sur sa plaque d'identification qui indiquent
le code de température pour les environnements dangereux. Lorsque plusieurs produits
sont combinés dans un système, le code de température le plus défavorable (code de
température le plus faible) peut être utilisé pour déterminer le code de température
global du système. Les combinaisons d'équipements dans le système sont sujettes à
inspection par les autorités locales qualifiées au moment de l'installation.
WARNING: EXPLOSION HAZARD
• Do not disconnect equipment unless power has
been removed or the area is known to be
nonhazardous.
• Do not disconnect connections to this
equipment unless power has been removed or
the area is known to be nonhazardous. Secure
any external connections that mate to this
equipment by using screws, sliding latches,
threaded connectors, or other means provided
with this product.
• Substitution of components may impair
suitability for Class I, Division 2.
• If this product contains batteries, they must only
be changed in an area known to be
nonhazardous.
European Hazardous Location Approval
The following applies when the product bears the Ex Marking.
This equipment is intended for use in potentially explosive atmospheres as defined by European Union Directive 94/9/EC and has been found to comply with the Essential Health and
Safety Requirements relating to the design and construction of Category 3 equipment intended for use in Zone 2 potentially explosive atmospheres, given in Annex II to this Directive.
WARNING: RISQUE D’EXPLOSION
• Couper le courant ou s'assurer que
l'environnement est classé non dangereux avant
de débrancher l'équipement.
• Couper le courant ou s'assurer que
l'environnement est classé non dangereux avant
de débrancher les connecteurs. Fixer tous les
connecteurs externes reliés à cet équipement à
l'aide de vis, loquets coulissants, connecteurs
filetés ou autres moyens fournis avec ce produit.
• La substitution de composants peut rendre cet
équipement inadapté à une utilisation en
environnement de Classe I, Division 2.
• S'assurer que l'environnement est classé non
dangereux avant de changer les piles.
16 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 17
Install the Switch Chapter 1
ATTENTION: This equipment is not resistant to sunlight or other sources of UV radiation.
WARNING:
• This equipment shall be mounted in an ATEX-certified enclosure with a minimum ingress protection rating of at least IP54
(as defined in IEC60529) and used in an environment of not more than Pollution Degree 2 (as defined in IEC 60664-1) when
applied in Zone 2 environments. The enclosure must have a tool-removable cover or door.
• This equipment shall be used within its specified ratings defined by Rockwell Automation.
• Provision shall be made to prevent the rated voltage from being exceeded by transient disturbances of more than 140% of the
rated voltage when applied in Zone 2 environments.
• Secure any external connections that mate to this equipment by using screws, sliding latches, threaded connectors, or other
means provided with this product.
• Do not disconnect equipment unless power has been removed or the area is known to be nonhazardous.
ATTENTION: To comply with the CE Low Voltage Directive (LVD), all connections to this equipment must be powered from a source
compliant with safety extra low voltage (SELV) or protected extra low voltage (PELV).
To comply with UL restrictions, all connections to this equipment must be powered from a source compliant with Class 2 or Limited
Voltage/Current.
Before You Begin
The location where you install the switch must meet these guidelines:
• Operating environment is within the range specified in the technical
specifications. See the Stratix Ethernet Managed Switches Technical Data,
publication
• Clearance to front and rear panels meets these conditions:
– Front-panel status indicators can be easily read.
– Access to ports is sufficient for unrestricted cabling.
– Front-panel direct current (DC) power and relay connector is within
reach of the connection to the DC power source.
• Airflow around the switch and through the vents is unrestricted.
To prevent the switch from overheating, use these minimum clearances:
– Top and bottom: 105 mm (4.13 in.)
– Left and right: 90 mm (3.54 in.)
– Front: 65 mm (2.56 in.)
1783-TD001.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 17
Page 18
Chapter 1 Install the Switch
• Temperature surrounding the unit does not exceed 60 °C (140 °F).
IMPORTANT
When the switch is installed in an industrial enclosure, the
temperature within the enclosure is greater than normal room
temperature outside the enclosure.
The temperature inside the enclosure cannot exceed 60 °C (140 °F), the
maximum ambient enclosure temperature of the switch.
• Cabling is away from sources of electrical noise, such as radios, power lines,
and fluorescent lighting fixtures.
• Switch is grounded to a bare metal surface, such as a ground bus or a
grounded DIN rail.
Parts List
Verify that you have these items.
1
2
4
5
31774-M
V
RT
A
V
RT
A
A
1 1783-MS10T switch
3
A
(1)
2 Documentation
3 Power and alarm relay connectors (qty. 2)
4 Console cable
(1) The 1783-MS10T switch is shown as only an example.
If you plan to install a PoE expansion module, verify that you have a PoE power
connector, as shown below.
32437-M
18 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 19
Required Tools and Equipment
At the end of its life, this equipment should be collected separately from any
unsorted municipal waste.
Obtain these necessary tools and equipment:
Install the Switch Chapter 1
• Ratcheting torque screwdriver that exerts up to 1.69 N
•m (15 in•lbs) of
pressure
• #6 ring terminal lug for 5.3 mm
(10 AWG) wire, such as Thomas & Bett
part number 10RC6 or equivalent
• Crimping tool, such as Thomas & Bett part number WT2000,
ERG-2001, or equivalent
• 5.3 mm
2
(10 AWG) copper ground wire, such as Belden part number 9912
or equivalent
• Wire-stripping tool
• For panel-mounting without a DIN rail, M5 or #10-24 or #10-32 bolts or
screws with 1.27 cm (0.5 in.) O.D. flat washers
For simplified cabling, the automatic medium-dependent interface crossover
(auto-MDIX) feature is enabled by default on the switch. With auto-MDIX
enabled, the switch detects the required cable type for copper Ethernet
connections and configures the interfaces accordingly. Therefore, you can use
either a crossover or a straight-through cable for connections to a switch 10/100
or 10/100/1000 Ethernet port, regardless of the type of device on the other end
of the connection.
For maximum noise immunity, shielded cables must be used on the uplink ports
(Gi1/1 and Gi1/2) on these switches:
• 1783-BMS06TGL
• 1783-BMS06TGA
• 1783-BMS10CGA
• 1783-BMS10CGL
• 1783-BMS10CGN
• 1783-BMS10CGP
• 1783-BMS20CGL
• 1783-BMS20CGN
• 1783-BMS20CGP
• 1783-BMS20CGPK
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 19
Page 20
Chapter 1 Install the Switch
Product Dimensions
The illustrations below show dimensions for the 1783-MS10T switch and the
1783-MX08T expansion module. Dimensions for all other Stratix 8000 and
Stratix 8300 switches and expansion modules are the same as shown below.
14.8 cm
(5.83 in.)
Switch and Expansion Module
15.3 cm
(6.03 in.)
33.27 cm
(13.1 in.)
9.71 cm
(3.82 in.)
9.81 cm
(3.87 in.)
Switch and Expansion Module (mated)
24.3 cm
(9.57 in.)
11.1 cm
(4.38 in.)
Switch
(side view)
11.75 cm
Switch and Expansion Modules (mated)
(4.63 in.)
For panel-mounting, the height of the center of the mounting holes on both the top and bottom latches measures
8.73 mm (0.34 in.) above the top surface (or below the bottom surface) of the switch.
On the switch base unit, the tab hole center-to-center spacing is 6.83 cm (2.69 in.).
For expansion modules, the tab hole center-to-center spacing is 4.36 cm (1.72 in.).
31801-M
20 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 21
Install the Switch Chapter 1
Install the Switch
Follow these steps to install the switch.
1. (Optional) Attach expansion modules.
2. Mount the switch on one of the following:
• DIN rail
• Wall or panel
3. (Optional) Install an SFP module.
4. Ground the switch.
5. Wire the DC power source for the switch.
6. (Optional) Wire the DC power source for the PoE expansion module.
7. Attach the power and alarm connector.
8. Wire external alarms.
9. Set up the switch initially with Express Setup.
10. Connect to the switch ports:
• 10/100 copper ports
• PoE ports
• Dual-purpose uplink (10/100/1000 and SFP fiber) ports
• 100BaseFX
11. Install or remove the CompactFlash card.
WARNING: If you connect or disconnect the communication cable with power
applied to this module or any device on the network, an electrical arc can occur.
This could cause an explosion in hazardous location installations.
Be sure that power is removed or the area is nonhazardous before proceeding.
WARNING: If you connect or disconnect wiring while the field-side power is on,
an electrical arc can occur. This could cause an explosion in hazardous location
installations.
Be sure that power is removed or the area is nonhazardous before proceeding.
ATTENTION: Prevent Electrostatic Discharge
This equipment is sensitive to electrostatic discharge, which can cause internal
damage and affect normal operation. Follow these guidelines when you handle
this equipment:
• Touch a grounded object to discharge potential static.
• Wear an approved grounding wriststrap.
• Do not touch connectors or pins on component boards.
• Do not touch circuit components inside the equipment.
• Use a static-safe workstation, if available.
• Store the equipment in appropriate static-safe packaging when not in use.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 21
Page 22
Chapter 1 Install the Switch
Attach Expansion Modules (optional)
IMPORTANT
If you are adding expansion modules, attach the expansion modules to the
switch before mounting the switch.
The switch can operate as a standalone device with two uplink ports and four or
eight Fast Ethernet ports, or you can increase the number of Fast Ethernet ports
by 8 or 16 by connecting expansion modules.
You can install as many as two expansion modules per base unit. However, only
one of the two modules can be a 1783-MX08F or 1783-MX08S fiber expansion
module.
If you install a 1783-MX08F or 1783-MX08S fiber expansion module, the
module must be in the right-most position, as shown below.
1783-MX08F or
Base Unit
Expansion Module
1783-MX08S
Expansion Module
Depending on the mix of switches and expansion modules, you can have as many
24 Fast Ethernet ports.
22 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 23
Install the Switch Chapter 1
Follow these steps to connect the expansion modules to the switch.
IMPORTANT
You must add expansion modules to the base unit before applying power to
the switch. Remove power from the switch when reconfiguring it.
1. Remove the right side panel by firmly grasping both sides of it in the
middle and pulling it outward.
If necessary, use a screwdriver to pry open the side panel.
31779-M
2. Remove the protective EMI-connector cover from the side panel.
31787-M
3. Push the upper module latches up and the lower module latches down.
Then slide the switch and module together.
The expansion module is shown with the side panel removed. Do not
remove this panel unless you plan to install another module.
31780-M
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 23
Page 24
Chapter 1 Install the Switch
4. Push the upper and lower module latches in to secure the module to the
switch.
31781-M
5. If you are installing a second module, repeat steps 1...4, but secure the
second module to the right side of the first module.
Mount the Switch on a DIN Rail
IMPORTANT
You cannot install an expansion module to the right of the
1783-MX08F or 1783-MX08S fiber expansion module.
WARNING: When using DIN rail mounting, additional grounding is also
accomplished through the DIN rail to chassis ground. Use zinc plated
yellow-chromate steel DIN rail to assist in proper grounding. The use of other
DIN rail materials (for example, aluminum or plastic)) that can corrode, oxidize,
or are poor conductors, can impede proper grounding. Secure DIN rail to
mounting surface approximately every 200 mm (7.8 in.) using end-anchors
appropriately and using a washer plate along the entire length of the DIN rail.
Follow these steps to mount the switch on a DIN rail.
1. Insert a sharp tool, such as a screwdriver, in the space next to the tab, push
gently to release the catch, then turn the screwdriver to push the tab out.
24 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
31776-M
Page 25
Install the Switch Chapter 1
2. If you are using a heavy-duty 35 mm x 15 mm (1.38 in. x 0.59 in.) DIN rail,
rotate all feet to the extended positions.
Otherwise, if you are using 35 mm x 7.5 mm (1.38 in. x 0.30 in.) DIN rail,
rotate the feet to the recessed positions.
Foot
Latch
31777-M
3. Position the rear panel of the switch directly in front of the DIN rail,
making sure that the DIN rail fits in the space between the two latches.
DIN Rail
Latch
31778-M
4. Push the DIN rail latches in after the switch is over the DIN rail to secure
the switch to the rail.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 25
Page 26
Chapter 1 Install the Switch
Mount the Switch on a Wall or Panel
The switch can be mounted on a wall or a panel. You need M5 or #10-24 or
#10-32 bolts or screws with 1.27 cm (0.5 in.) O.D. flat washers. This hardware is
not provided with the switch.
Follow these steps to mount the switch to a wall or a panel.
1. If the DIN rail latches are pushed out, push them in so they are fully
locked in place.
31777-M
2. Rotate all feet to their recessed positions so that the switch can mount flat
on the wall or pane.
If greater air circulation around the switch is required, rotate the feet to
their extended positions before mounting the switch on the wall.
3. Position the rear panel of the switch against the wall or a panel in the
desired location, as shown in this figure.
rwP)CDV
A
2(
4
V
CD
o
r
4
8
RA
t
n
ojaMlA
r
a
r
m
!
W
RA
N
hTim th
i
s
NI
u
n
i
t
G
g
h
p
a
o
v
e
w
er
m
r
o
c
o
er
th
.d
na
T re t
o
no
e
letri
e
c
ud
c
e
s cc
h
eh
o
ris
k
d
kf
p
ie
o
s
o
c
w
o
e
n
r
n
c
roc
t
d
t
s
b
e
eh
t
f
roi
e
ow
es
r
v
c
gni
nu
i
t
.
rwP
B
(
2
4
V
D
C
ro
DV
4
8
)C
R
t
n
B
M
i
on
r
A
l
a
r
m
E
x
p
r
S
y
s
t
A
l
a
Spu
te
1
2
1
se
s
S
e
t
pu
me
wP
r
A
mr
rwP
B
3
4
ocsiC
C
lata
y
s
t
4. Place M5 or #10-24 or #10-32 bolts or screws with 1.27 cm (0.5 in.) O.D.
flat washers through each DIN rail latch, and screw them into the wall.
26 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 27
Install the Switch Chapter 1
Install an SFP Module (optional)
IMPORTANT
IMPORTANT
ATTENTION: Under certain conditions, viewing the small form-factor
pluggable (SFP) optical transceiver may expose the eye to hazard. When
viewed under some conditions, the optical port may expose the eye beyond the
maximum permissible exposure recommendations.
ATTENTION: SFP modules are static sensitive devices. Always use an ESD wrist
strap or similar individual grounding device when handling SFP modules.
WARNING: When you insert or remove the small form-factor pluggable (SFP)
optical transceiver while power is on, an electrical arc can occur. This could
cause an explosion in hazardous location installations.
Using an SFP module other than those provided by Rockwell Automation will
disable the switch port.
Installing and removing an SFP module can shorten its useful life. Do not
remove and insert SFP modules more often than is absolutely necessary.
Grasp the module on the sides, and insert it into the switch slot until you feel the
connector snap into place.
31782-M
ATTENTION: If the SFP module cannot be fully inserted, stop! Do not force the
module into the slot. Rotate the SFP module 180 degrees and try again.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 27
Page 28
Chapter 1 Install the Switch
Ground the Switch
ATTENTION: For proper grounding, you must always connect the power supply
functional-ground screw when connecting the power supply. You must provide
an acceptable grounding path for each device in your application. For more
information on proper grounding guidelines, refer to publication
1770-4.1,
Industrial Automation Wiring and Grounding Guidelines.
ATTENTION: You must use the external grounding screw on the front of the
2
switch to ground the switch. Use a 5.3 mm
(10 AWG) ground wire.
Follow these steps to connect the switch to a protective ground.
1. Use a screwdriver to remove the ground screw from the front panel of the
switch.
Store the ground screw for later use.
2. If your ground wire is insulated, use a wire stripping tool to strip the
2
5.3 mm
(10 AWG) ground wire to 12.7 mm (0.5 in.) ± 0.5 mm (0.02 in.).
12.7 mm (0.5 in.)
31789-M
3. Insert the ground wire into the ring terminal lug.
4. Use a crimping tool to crimp the ring terminal to the wire.
31790-M
5. Slide the ground screw through the ring terminal.
6. Insert the ground screw into the ground-screw opening on the front panel.
VRTAA
28 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
31791-M
Page 29
Install the Switch Chapter 1
7. Use a ratcheting torque screwdriver to tighten the ground screw and ring
terminal lug to the switch front panel to 0.96 N•m (8.5 lb•in).
8. Attach the other end of the ground wire to a grounded bare-metal surface,
such as a ground bus, or a grounded DIN rail.
Wire the DC Power Source for the Switch
WARNING: Before performing any of the following procedures, make sure that
power is removed from the DC circuit or the area is nonhazardous before
proceeding.
WARNING: To comply with the CE Low Voltage Directive (LVD), this equipment
must be powered from a source compliant with the safety extra low voltage
(SELV) or protected extra low voltage (PELV).
To comply with UL restrictions, this equipment must be powered from a source
compliant with Class 2 or Limited Voltage/Current.
Follow these steps to wire DC power to the switch.
1. Locate the power and alarm relay connector and identify the positive and
return DC power connections.
The positive DC power connection is labeled V, and the negative DC
power connection is the adjacent connection labeled RT. Connections
labeled A are used for the alarm relay connectors.
V
RT
A
A
31783-M
2. Measure a length of 0.82…0.52 mm
2
(18…20 AWG) copper wire long
enough to connect to the DC power source.
3. Using an 18-gauge wire-stripping tool, strip each of the two wires to
6.3 mm (0.25 in.) ± 0.5 mm (0.02 in.).
Do not strip more than 6.8 mm (0.27 in.) of insulation from the wire.
Stripping more than the recommended amount of wire can leave exposed
wire from the connector after installation.
6.8 mm (0.27 in.)
31784-M
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 29
Page 30
Chapter 1 Install the Switch
4. Insert the exposed part of the positive wire into the connection labeled V
and the exposed part of the return wire into the connection labeled RT.
Make sure that you cannot see any wire lead. Only wire with insulation can
extend from the connector.
VRTA A
V
RT
31785-M
5. Use a ratcheting-torque screwdriver to torque the power and relay
connector captive screws above the installed wire leads to 0.23 N•m
(2.0 lb•in).
6. Connect the other end of the positive wire (the one connected to V) to the
positive terminal on the DC power source, and connect the other end of
the return wire (the one connected to RT) to the return terminal on the
DC power source.
You can use a second power source to provide redundant power. The alarm
relays on the switch can be used to warn you if one of the power supplies
fails. The switch operates properly with only one power source connected
at either Pwr A or Pwr B.
7. If you are installing the switch and are using a second power source, repeat
steps
2…6 with a second power and relay connector.
ATTENTION: If multiple power sources are used, do not exceed the
specified isolation voltage.
30 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 31
Install the Switch Chapter 1
Wire the DC Power Source for the PoE Expansion Module (optional)
WARNING: Before performing any of the following procedures, make sure that
power is removed from the DC circuit or the area is nonhazardous before
proceeding.
WARNING: To comply with the CE Low Voltage Directive (LVD), this equipment
must be powered from a source compliant with the safety extra low voltage
(SELV) or protected extra low voltage (PELV).
To comply with UL restrictions, this equipment must be powered from a source
compliant with Class 2 or Limited Voltage/Current.
Power supply requirements for a PoE expansion module depend on your
application.
Application Power Consumption Power Supply per Port Allen-Bradley Products
PoE only
IEEE 802.3af
PoE and PoE +
IEEE 802.3at Type 2
44…57V DC (48V DC nom) 15.4 W, max Switched mode power supplies:
50…57V DC (54V DC nom) 15.4 W, max for PoE
30 W, max for PoE+
• 1606-XL Standard
• 1606-XLE Essential
• 1606-XLP Compact
• 1606-XLS Performance
Follow these steps to wire DC power to the PoE expansion module.
1. Locate the power connector and identify the positive and return DC
power connections.
DC -
DC +
2. Measure a length of 0.82…0.52 mm
32437-M
2
(18…20 AWG) copper wire long
enough to connect to the DC power source.
3. Use an 18-gauge wire-stripping tool to strip each of the two wires to
6.3 mm (0.25 in.) ± 0.5 mm (0.02 in.).
Do not strip more than 6.8 mm (0.27 in.) of insulation from the wire.
Stripping more than the recommended amount of wire can leave exposed
wire from the connector after installation.
6.8 mm (0.27 in.)
31784-M
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 31
Page 32
Chapter 1 Install the Switch
4. Insert the exposed part of the positive wire into the DC + connection and
the exposed part of the return wire into the DC - connection.
5. Make sure that you cannot see any wire lead; only wire with insulation can
extend from the connector.
DC +
DC -
32436-M
6. Use a ratcheting-torque screwdriver to torque the power connector captive
screws above the installed wire leads to 0.23 N•m (2.0 lb•in).
7. Connect the other end of the positive wire (the one connected to DC +)
to the positive terminal on the DC power source, and connect the other
end of the return wire (the one connected to DC -) to the return terminal
on the DC power source.
32 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 33
Install the Switch Chapter 1
Attach the Power and Relay Connector to the Switch
ATTENTION: The input voltage source of the alarm circuits must be an isolated
source and limited to less than or equal to 24 V DC, 1 A.
ATTENTION: Exposure to some chemicals can degrade the sealing properties of
materials used in the relay. Periodically inspect the relay and check for any
degradation. If the relay appears damaged in any way, replace the switch.
Sealed Device: Relay Model AGN200A03, manufactured by Matsushita Electric
Works
Relay Cover: Manufacture of Plastic Material—Nippon Oil Corp.
Designation of Plastic Material—Type FC-100
Generic Name of Plastic Material —Liquid crystal polymer
Relay Body: Manufacture of Plastic Material—Ueno Fine Chemicals Industry Ltd.
Designation of Plastic Material— Type 2125G
Generic Name of Plastic Materialv—Liquid crystal polymer
Relay Epoxy: Manufacture of Material—Resinous Kasei Co. Ltd.
Designation of Material – Type A-2500BK
Generic Name of Plastic Material—Epoxy Resin
Sealed Device: Relay Model B4GA003Z, manufactured by Fujitsu Takamisawa
Electric Co. Ltd.
Relay Cover: Manufacture of Plastic Material —Sumitomo Chemical Co. Ltd.
Designation of Plastic Material—Type E4009
Generic Name of Plastic Material—Liquid crystal polymer
Relay Body: Manufacture of Plastic Material—Sumitomo Chemical Co. Ltd.
Designation of Plastic Material—Type E6807LHF
Generic Name of Plastic Material—Liquid crystal polymer
Relay Epoxy: Manufacture of Material—Sumitomo Bakelite Co. Ltd.
Designation of Material—Type ‘SUMIMAC’ ECR-9750K2
Generic Name of Plastic Material—Epoxy Resin
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 33
Page 34
Chapter 1 Install the Switch
Follow these steps to connect the DC power source and relay connector to the
switch.
1. Insert the power and relay connector into the Pwr A receptacle on the
switch front panel.
VRTA A
31786-M
2. Use a screwdriver to tighten the captive screws on the sides of the power
and relay connector.
3. If a second power source is required, insert a second power and relay
connector into the Pwr B receptacle on the switch front panel.
ATTENTION: If multiple power sources are used, do not exceed the
specified isolation voltage
.
VRTAA
VRTA A
31788-M
4. Use a screwdriver to tighten the captive screws on the sides of the second
power and relay connector.
34 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 35
Install the Switch Chapter 1
Attach the Power Connector to the PoE Expansion Module (optional)
Follow these steps to connect the DC power source to the PoE expansion
module.
1. Insert the power connector into the DC input terminal block on the PoE
expansion module.
2. Use a screwdriver to tighten the captive screws on the sides of the power
connector.
Wire External Alarms (optional)
The alarm relays on the switch are normally open. To connect an external alarm
device to the relays, you must connect two relay contact wires to complete an
electrical circuit. Because each external alarm device requires two connections to
a relay, the switch supports a maximum of two external alarm devices.
ATTENTION: The input voltage source of the alarm circuits must be an isolated
source and limited to less than or equal to 24 V DC, 1 A.
For wire connections to the power and relay connector, you must use UL and CSA
rated, style 1007 or 1569 twisted-pair copper appliance wiring material (AWM)
wire (such as Belden part number 9318).
Follow these steps to wire alarms.
1. Measure two strands of twisted-pair wire (18...20 AWG) long enough to
connect to the external alarm device.
2. Use a wire stripper to remove the casing from both ends of each wire to
6.3 mm (0.25 in.) ± 0.5 mm (0.02 in.).
IMPORTANT
Do not strip more than 6.8 mm (0.27 in.) of insulation from the wires.
Stripping more than the recommended amount of wire can leave
exposed wire from the power and relay connector after installation.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 35
Page 36
Chapter 1 Install the Switch
3. Insert the exposed wires for the external alarm device into the two
connections labeled A, as shown in the following figure.
1
2
6
24
!
!
-
1 External device, relay wire A connection 1 2 External device, relay wire A connection 2
4. Use a screwdriver to torque the power and relay connector captive screw
(above the installed wire leads) to 0.23 N•m (2.0 lb•in).
VRTA A
V
RT
31785-M
5. Repeat steps 1…4 to insert the input and output wires of an additional
external alarm device into the second power and relay connector.
The following figure shows the completed wiring for two power supplies
and two external alarm devices.
1
2
3
6
4
24
!
!
1 Power source A positive connection 5 Power source B positive connection
2 Power source A return connection 6 Power source B return connection
3 External device 1, relay wire major alarm connection 7 External device 2, relay wire minor alarm
4 External device 1, relay wire major alarm connection 8 External device 2, relay wire minor alarm
5
6
7
6
8
24
!
!
-
connection
connection
36 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 37
Install the Switch Chapter 1
Connect to 10/100 Copper Ports
Connect to a PoE Expansion Module Port
1. Insert a straight-through, twisted four-pair, Category 5e or better cable
with an RJ45 connector into the port.
VRTA A
To 10/100 ports
31795-M
2. Insert the other cable end into an RJ45 connector on the other device.
Two expansion modules provide PoE capability:
• The 1783-MX04E PoE expansion module provides four PoE ports. You
can configure as many as four ports in any combination of PoE and PoE+.
• The 1783-MX04T04E PoE expansion module provides four PoE ports
and four non-PoE ports. You can configure as many as four ports in any
combination of PoE and PoE+.
The PoE expansion modules each require a separate power supply. For power
supply requirements based on your application, refer to
page 31.
1. Insert a straight-through, twisted four-pair, Category 5e or better cable
with an RJ45 connector into the port.
To 10/100 PoE Ports
2. Insert the other cable end into an RJ45 connector on the other PoE
powered device.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 37
Page 38
Chapter 1 Install the Switch
Connect to Dual-purpose Uplink Ports
The switches have two dual-purpose uplink ports. Each dual-purpose uplink port
has a 10/100/1000 RJ45 connector for a copper interface and a slot for an SFP
module. Only one port of the dual-purpose port can be active at a time. If an SFP
module port is connected, the SFP module port has priority.
Connect to 10/100/1000 Uplink Ports
1. Insert a straight-through, twisted four-pair, Category 5e or better cable
with an RJ45 connector into the port.
VRTAA
To 10/100/1000 Ports
31795-M
2. Insert the other cable end into an RJ45 connector on the other device.
Connect to SFP Fiber Ports
ATTENTION: Class 1 laser product. Laser radiation is present when the small
form-factor pluggable (SFP) optical transceiver is open and interlocks bypassed.
Only trained and qualified personnel should be allowed to install, replace, or
service this equipment.
Follow these steps if you installed an SFP module. For instructions on installing,
removing, and connecting to SFP modules, see the documentation that shipped
with the SFP module.
1. Insert a fiber-optic cable with an LC connector into the SFP fiber port.
VRTAA
2. Insert the other cable end into the other device.
38 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
31796-M
Page 39
Install the Switch Chapter 1
Connect to 100BaseFX Ports
Install or Remove the CompactFlash Card
ATTENTION: Class 1 laser product. Laser radiation is present when the system is
open and interlocks bypassed. Only trained and qualified personnel are allowed
to install, replace, or service this equipment.
1. Insert a fiber-optic cable with an LC connector into the 100BASE-FX
port of the 1783-MX08F expansion module.
31797-M
2. Insert the other cable end into the other device.
The switches ship with the CompactFlash card installed. Follow this procedure
when you need to install or remove it from the switch.
WARNING: When you insert or remove the CompactFlash Card while power is
on, an electrical arc can occur. This could cause an explosion in hazardous
location installations. Be sure that power is removed or the area is
nonhazardous before proceeding.
Install or remove the CompactFlash card by grasping the tab on the card and
either inserting it or removing it from the slot at the bottom of the switch.
VRTAA
31792-M
IMPORTANT
You can install and remove the CompactFlash card while the switch is powered.
However, if you do not have a CompactFlash card installed in the switch, you
are unable to do the following:
• Start the Device Manager Web interface when you apply power to the
switch.
• Save configuration changes you made with the AOP via software.
• Start up the switch.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 39
Page 40
Chapter 1 Install the Switch
Reset the Switch to Factory Defaults
Troubleshoot the Installation
Follow this procedure if you need to restore the switch to its factory default
settings. This procedure resets the switch to its original factory settings. Any
configuration changes you have made are lost.
1. Remove power from the switch.
2. Reapply power to the switch.
3. While the switch is powering up, press and hold the Express Setup button.
4. When the EIP Mod, EIP Net and Setup status indictors turn red, release
the Express Setup button.
The switch continues powering up in its factory default state.
5. To reconfigure the switch, see
Setup on page 48.
The status indicators on the front panel provide troubleshooting information
about the switch. They show power-on self-test (POST) failures, portconnectivity problems, and overall switch performance. You can also get statistics
from the browser interface, the command-line interface (CLI), or a Simple
Network Management Protocol (SNMP) workstation.
Set Up the Switch Initially with Express
Switch POST Results
As power is applied to the switch, it begins the POST, a series of tests that runs
automatically to ensure that the switch functions properly. It can take several
minutes for the switch to complete POST.
POST starts with status indicator tests that cycle once through the EIP Mod, EIP
Net, Setup, Pwr A, and Pwr B status indicators. While POST proceeds, the EIP
Mod status indicator blinks green, and all the other status indicators remain off.
If POST completes successfully, the System status indicator changes to solid
green, and the other status indicators display their normal operating status. If the
switch fails POST, the System status indicator turns red.
ATTENTION: POST failures are usually fatal. Contact your Rockwell Automation
technical support representative if your switch does not pass POST.
POST Results with a Terminal
If you have a terminal connected to the console port, you can also view POST
status and test results on the terminal. If the terminal displays unclear characters,
try resetting the terminal-emulation software to 9600 bits per second.
40 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 41
Install the Switch Chapter 1
Bad or Damaged Cable
Always make sure that the cable does not have marginal damage or failure. Even if
a cable is capable of connecting at the physical layer, subtle damage to the wiring
or connectors can corrupt packets.
This situation is likely when the port has many packet errors or the port
constantly loses and regains the link. To troubleshoot, try the following:
• Swap the copper or fiber-optic cable with a known, undamaged cable.
• Look for broken, bent, or missing pins on cable connectors.
• Rule out any bad patch panel connections or media convertors between
the source and destination.
If possible, bypass the patch panel, or eliminate faulty media convertors
(fiber-optic-to-copper).
• Try the cable in another port or interface to determine if the problem
follows the cable.
Ethernet and Fiber Cables
Make sure that you have the correct cable type for the connection:
• Use Category 3 copper cable for 10 Mb/s UTP connections.
• You can use Category 5, 5e, or 6 UTP or STP cable for 10/100 Mbps
connections.
• For 1000 Mbps (1 gigabit per second) connections, use Category 5e or
Category 6 UTP or STP cable.
• For fiber-optic connectors, verify that you have the correct cable for the
distance and the port type.
• Make sure that the connected device ports both match and use the same
type of encoding, optical frequency, and fiber type.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 41
Page 42
Chapter 1 Install the Switch
Link Status
Verify that both sides have a network link. A single broken wire or one shut down
port can cause one side to show a link, but not the other side. A Link status
indicator does not guarantee that the cable is fully functional. The cable can
encounter physical stress that causes it to function at a marginal level. If the Link
status indicator for the port is not lit, do the following:
• Connect the cable from the switch to a known good device.
• Make sure that both ends of the cable are connected to the correct ports.
• Verify that both devices have power.
• Verify that you are using the correct cable type.
• Rule out loose connections. Sometimes a cable appears to be seated, but is
not. Disconnect the cable, and then reconnect it.
Transceiver Issues
Use only Rockwell Automation SFP modules on the switch. Each SFP module
has an internal serial EEPROM that is encoded with security information. This
encoding identifies and validates that the module meets the requirements for the
switch. Other manufacturers’ SFP modules do not function correctly.
Check these items:
• Verify that the SFP module is valid and functional. Exchange a suspect
module with a known good module. Verify that the module is supported
on this platform.
• Use the CLI show interfaces command or the CLI show int status
command to verify the error-disabled or shutdown status of the port or
module. Re-enable the port if needed.
• Make sure that all fiber connections are properly cleaned and securely
connected.
Port and Interface Settings
A cause of port connectivity failure can be a disabled port. Verify that the port or
interface is not disabled or powered down for some reason. If a port or interface is
manually shut down on one side of the link or the other side, the link does not
come up until you re-enable the port. Use the CLI show interfaces privileged
EXEC command to verify the port or interface error-disabled, disabled, or
shutdown status on both sides of the connection. If needed, re-enable the port or
the interface.
42 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 43
Getting Started
Topic Page
Switch Front Panel Description 44
Expansion Module Front Panel Descriptions 44
Hardware Features 47
CompactFlash Memory Card 48
Set Up the Switch Initially with Express Setup 48
Switch Memory Allocation 52
Device Manager Web Interface 53
Studio 5000 Environment 54
Cisco Network Assistant 54
Command Line Interface 55
Chapter 2
The Stratix 8000 and Stratix 8300 Ethernet managed switches provide a secure
switching infrastructure for harsh environments. You can connect these switches
to network devices, such as servers, routers, and other switches. In industrial
environments, you can connect Ethernet-enabled industrial communication
devices, including programmable logic controllers (PLCs), human-machine
interfaces (HMIs), drives, sensors, and I/O.
The Stratix 8000 Ethernet managed switch is a Layer 2 switch. The Stratix 8300
Ethernet managed switch adds Layer 3 routing to the Stratix 8000 switch. The
Stratix 8300 switch contains all the features of the Stratix 8000 switch, plus a
number of IP routing protocols, along with enhanced security and quality of
service (QoS) features.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 43
Page 44
Chapter 2 Getting Started
Switch Front Panel Description
The switch front panel contains the ports, the status indicators, and the power
and relay connectors.
Figure 1 - 1783-MS10T Switch
1
2
3
1 Power and relay connectors
2 Console port
3 Dual-purpose ports
4 10/100 ports
5 Protective ground connection
4
5
31826-M
Expansion Module Front Panel Descriptions
Figure 2…Figure 7 show the expansion module front panels.
Figure 2 - 1783-MX08T Switch Copper Expansion Module (side cover removed)
1
31827-M
1 10/100 ports
44 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 45
Figure 3 - 1783-MX08F Switch Fiber Expansion Module
1
1 100BASE-FX ports
Figure 4 - 1783-MX04S SFP Expansion Module
Getting Started Chapter 2
31797-M
1
1 100BASE-FX SFP ports
Figure 5 - 1783-MX08S SFP Expansion Module
1
32439-M
32440-M
1 100BASE-FX SFP ports
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 45
Page 46
Chapter 2 Getting Started
Figure 6 - 1783-MX04E PoE Expansion Module
1
2
3
32444-M
1 DC input terminal block
2 PoE status indicator
3 PoE ports
Figure 7 - 1783-MX04T04E PoE Expansion Module
1
4
1 10/100 non-PoE ports
2 DC-Input terminal block
3 PoE status indicator
4 PoE ports
2
3
32386-M
46 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 47
Getting Started Chapter 2
Hardware Features
Feature Description
Power and relay connector You connect the DC power and alarm signals to the switch through two front panel connectors. One connector provides primary DC power (supply A)
and the major alarm signal, and a second connector (supply B) provides secondary power and the minor alarm signal. The two connectors are
physically identical and are in the upper left side of the front panel.
The switch can operate with a single power source or with dual power sources. When both power sources are operational, the switch draws power
from the DC source with the higher voltage. If one of the two power sources fail, the other continues to power the switch.
The power and relay connectors also provide an interface for two independent alarm relays: the major alarm and the minor alarm. The relays can be
activated for environmental, power supply, and port status alarm conditions and can be configured to indicate an alarm with either open or closed
contacts. The relay itself is normally open, so under power failure conditions, the contacts are open. From the Command Line Interface (CLI), you can
associate any alarm condition with one alarm relay or with both relays.
Console port For configuring, monitoring, and managing the switch, you can connect a switch to a computer through the console port and the supplied RJ45-to-
DB-9 adapter cable. If you want to connect a switch to a terminal, you need to provide an RJ45-to-DB-25 female DTE adapter.
Dual-purpose uplink ports The two dual-purpose uplink ports can each be configured for RJ45 (copper) or SFP (fiber) media types. Only one of these connections in each of the
dual-purpose ports can be active at a time. If both ports are connected, the SFP module port has priority.
You can set the copper RJ45 ports to operate at 10, 100, or 1000 Mbps, full-duplex or half-duplex. You can configure them as fixed 10, 100, or
1000 Mbps (Gigabit) Ethernet ports and can configure the duplex setting.
You can use approved Gigabit (or 100 Mbps) Ethernet SFP modules to establish fiber-optic connections to other switches. These transceiver modules
are field-replaceable, providing the uplink interfaces when inserted in an SFP module slot. You use fiber-optic cables with LC connectors to connect
to a fiber-optic SFP module. These ports operate full-duplex only.
10/100 ports You can set the 10/100 ports to operate at 10 or 100 Mbps, full-duplex or half-duplex You can also set these ports for speed and duplex
autonegotiation in compliance with IEEE 802.3-2002. The default setting is autonegotiate.
When set for autonegotiation, the port senses the speed and duplex settings of the attached device. If the connected device also supports
autonegotiation, the switch port negotiates the best connection (that is, the fastest line speed that both devices support and full-duplex
transmission if the attached device supports it) and configures itself accordingly. In all cases, the attached device must be within 100 m (328 ft) of
the switch.
100BASE-FX ports The IEEE 802.3-2002 100BASE-FX ports provide full-duplex 100 Mbps connectivity over multi-mode fiber (MMF) cables. These ports use a built-in,
small-form-factor fixed (SFF) fiber-optic transceiver module that accepts a dual LC connector. The cable can be up to 2 km (1.24 mi.) in length.
PoE ports The PoE expansion modules provide 10/100BASE-T PoE or PoE+ capability to the switch:
• The 1783-MX04E expansion module has four ports that support PoE (IEEE 802.3af) and PoE+ (IEEE 802.3at Type 2). You can configure the four
PoE/PoE+ ports on the expansion module in any combination of PoE and PoE+.
• The 1783-MX04T04E expansion module provides four ports that support PoE (IEEE 802.3af) and PoE+ (IEEE 802.3at Type 2) and four 10/
100BASE-T non-PoE ports. You can configure the four PoE/PoE+ ports on the expansion module in any combination of PoE and PoE+.
The PoE expansion modules require a dedicated power supply for power. For power requirements, see
Rear panel The rear panels of the switches and expansion modules have latches for installation on either a DIN rail or a wall. The latches slide outward to
position the switch over the DIN rail and slide inward to secure the switch to a DIN rail. The feet must be extended when mounting the switch on
heavy-duty (35 x 15 mm) DIN rail or they can be extended for improved ventilation when wall mounting.
Auto-MDIX When connecting the switch to workstations, servers, and routers, straight-through cables are normally used. However, the automatic
medium-dependent interface crossover (auto-MDIX) feature of the switch automatically reconfigures the ports to use either straight-through or
crossover cable type.
The Auto-MDIX feature is enabled by default. When the auto-MDIX feature is enabled, the switch detects the required cable type (straight-through
or crossover) for copper Ethernet connections and configures the interfaces accordingly.
You can use the command-line interface (CLI) to disable the auto-MDIX feature. See the online help for more information.
These features are common to both the Stratix 8000 and Stratix 8300 switches.
See the figures on
pages 44…46 for an illustration of these features.
page 31.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 47
Page 48
Chapter 2 Getting Started
CompactFlash Memory Card
Set Up the Switch Initially with Express Setup
The CompactFlash card contains the switch IOS operating system, the Device
Manager Web interface firmware, and user-defined configuration settings.
Without the CompactFlash card installed, the switch cannot power up or restart.
If you remove the card with the switch running, the switch continues to function.
However, the Device Manager Web interface is no longer available.
If you make any changes to the switch configuration after the card is removed,
they are applied and used by the switch. However, the changes are not saved. If
you insert the CompactFlash card at a later time, the previous changes are still not
saved to the card. Only changes made while the card is inserted are saved.
Each time a change is made with the card installed, both the AOP and the Device
Manager Web interface save the entire running configuration to the card.
When you first set up the switch, use Express Setup to enter the initial IP address.
Doing this enables the switch to be used as a managed switch. You can then access
the switch through the IP address for additional configuration.
You need this equipment to set up the switch:
• A personal computer with Windows 2000, Windows XP, Windows 2003,
or Windows Vista operating system installed
• A supported web browser (Internet Explorer 9.0, 10.0, and 11.0, or
Firefox 25, 26) with JavaScript enabled
• A straight-through or crossover Category 5 Ethernet cable to connect your
personal computer to the switch
Do the following to configure your computer:
• Disable any wireless interface running on your personal computer.
• Disable other networks in your system.
• Set your computer to automatically determine its IP address (DHCP)
rather than use a statically configured address.
• Disable any static DNS servers.
• Disable browser proxy settings. Typically, browser settings are in Tools >
Internet Options > Connections > LAN Settings.
48 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 49
Getting Started Chapter 2
Follow these steps to run Express Setup.
1. Make sure that at least one of the switch’s Ethernet ports is available for
Express Setup.
IMPORTANT
Do not use the console port for Express Setup.
During Express Setup, the switch acts as a DHCP server. If your personal
computer has a static IP address, change your personal computer settings
before you begin to temporarily use DHCP.
2. Apply power to the switch.
When the switch powers on, it begins its power-on sequence. The
power-on sequence takes approximately 90 seconds to complete.
3. Make sure that the power-on sequence is complete by verifying that the
EIP Mod and Setup status indicators are flashing green.
If the switch fails the power-on sequence, the EIP Mod status indicator
turns red.
4. Press and release the Express Setup button. Wait for a few seconds until the
status indicator on one of the unconnected switch ports flashes green.
This button is recessed 16 mm (0.63 in.) behind the front panel. Use a
small tool, such as a paper clip, to reach the button.
5. Connect a Category 5 Ethernet cable (not provided) from the flashing
switch port to the Ethernet port on your computer.
If you wait too long to connect the cable, the Setup status indicator turns
off.
The port status indicators on your computer and on the switch both flash
while the switch configures the connection.
6. While the Setup status indicator flashes green, start an Internet browser
session on the computer and navigate to
http://169.254.0.1.
If you have a home page configured, the switch configuration loads instead
of your normal home page.
The switch prompts you for the default switch user name and password.
7. Enter the default password: switch.
The default user name is admin.
IMPORTANT
In some scenarios, the switch requires you to enter the default
password multiple times before it accepts the password.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 49
Page 50
Chapter 2 Getting Started
8. If the window does not appear, do the following:
• Enter the URL of a well-known website in your browser to be sure the
browser is working correctly. Your browser redirects you to the Express
Setup web page.
• Verify that any proxy settings or pop-up blockers are disabled on your
browser.
• Verify that any wireless interface is disabled on your personal computer.
9. Complete the fields.
To view fields for Common Industrial Protocol (CIP), you must click
Advanced Settings.
Field Description
Network Settings
Host Name The name of the device.
Management Interface (VLAN) The name and ID of the management VLAN through which the switch is managed. Choose an existing VLAN to be the
50 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
management VLAN.
The default ID is 1. The default name for the management VLAN is default. The number can be from 1…1001. Be sure that the
switch and your network management station are in the same VLAN. Otherwise, you lose management connectivity to the
switch.
The management VLAN is the broadcast domain through which management traffic is sent between specific users or devices. It
provides broadcast control and security for management traffic that must be limited to a specific group of users, such as the
administrators of your network. It also provides secure administrative access to all devices in the network at all times.
Page 51
Getting Started Chapter 2
Field Description
IP Assignment Mode The IP Assignment mode determines whether the switch IP information is manually assigned (static) or is automatically
IP Address The IP address and associated subnet mask are unique identifiers for the switch in a network:
Default Gateway (optional) The IP address for the default gateway. A gateway is a router or a dedicated network device that enables the switch to
NTP Server The IP address of the Network Time Protocol (NTP) server. NTP is a networking protocol for clock synchronization between
User Enter the user name.
Password, Confirm Password The password for the switch can have up to 63 alphanumeric characters, can start with a number, is case-sensitive, and can have
CIP VLAN The VLAN on which Common Industrial Protocol (CIP) is enabled. The CIP VLAN can be the same as the management VLAN or
IP Address The IP address and subnet mask for the CPI VLAN if the CIP VLAN is different from the management VLAN. The format is a 32-bit
Same As Management VLAN Indicates whether the settings for the CIP VLAN are the same as the management VLAN.
Telnet, CIP and Enable Password (optional),
Confirm Password
Same As Admin Password Sets the password used for Telnet and CIP security to the same user password specified under Network Settings.
assigned by a Dynamic Host Configuration Protocol (DHCP) server. The default is Static.
We recommend that you click Static and manually assign the IP address for the switch. You can then use the same IP address
whenever you want to access the Device Manager Web interface.
If you click DHCP, the DHCP server automatically assigns an IP address, subnet mask, and default gateway to the switch. As long
as the switch is not restarted, the switch continues to use the assigned IP information, and you are able to use the same IP
address to access the Device Manager Web interface.
If you manually assign the switch IP address and your network uses a DHCP server, be sure that the IP address that you give to
the switch is not within the range of addresses that the DHCP server automatically assigns to other devices. This prevents IP
address conflicts between the switch and another device.
• The IP address format is a 32-bit numeric address written as four numbers separated by periods. Each number can be from
0…255.
• The subnet mask is the network address that identifies the subnetwork (subnet) to which the switch belongs. Subnets are
used to segment the devices in a network into smaller groups. The default is 255.255.255.0.
This field is enabled only if the IP Assignment mode is Static.
Make sure that the IP address that you assign to the switch is not being used by another device in your network. The IP address
and the default gateway cannot be the same.
communicate with devices in other networks or subnetworks. The default gateway IP address must be part of the same subnet
as the switch IP address. The switch IP address and the default gateway IP address cannot be the same.
If all of your devices are in the same network and a default gateway is not used, you do not need to enter an IP address in this
field. This field is enabled only if the IP assignment mode is Static.
You must specify a default gateway if your network management station and the switch are in different networks or
subnetworks. Otherwise, the switch and your network management station cannot communicate with each other.
computer systems over packet-switched, variable-latency data networks.
embedded spaces. The password cannot be a single digit, it cannot contain a ? or a tab, and it does not allow spaces at the
beginning or the end. The default is switch.
To complete initial setup, change the password from the default password, switch.
This password is also used as the Control Industrial Protocol (CIP) security password. We recommend that you provide a
password to the switch to secure access to the device manager.
Advanced Settings
you can isolate CIP traffic on another VLAN that is already configured on this device.
numeric address written as four numbers separated by periods. Each number can be from 0…255.
Make sure that the IP address that you assign to this device is not being used by another device in your network.
The password used for Telnet and CIP security.
10. Click Submit.
The switch initializes its configuration for typical industrial EtherNet/IP
applications. The switch then redirects you to the logon page for the
Device Manager Web interface. You can continue to launch the Device
Manager Web interface for further configuration or exit the application.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 51
Page 52
Chapter 2 Getting Started
11. Turn off DC power at the source, disconnect all cables to the switch, and
install the switch in your network.
12. After you complete Express Setup, refresh the personal computer IP
address:
• For a dynamically-assigned IP address, disconnect the personal
computer from the switch, and reconnect the personal computer to the
network. The network DHCP server assigns a new IP address to the
personal computer.
• For a statically-assigned IP address, change it to the previously
configured IP address.
Switch Memory Allocation
The following table provides details on default memory allocation for the
switches.
You can use Switch Database Management (SDM) templates to configure system
resources in the switch to optimize support for specific features, depending on
how the switch is used in the network. You can use a template to provide
maximum system usage for some functions. For example, you can use the default
template to balance resources, and use the access template to obtain maximum
ACL usage. To allocate hardware resources for different usages, the switch SDM
templates prioritize system resources to optimize support for certain features.
The following SDM templates are recommended:
• Default
• Lanbase Routing
You can use the Lanbase Routing template for static and connected routing, or if
you have more than 180 IGMP groups or multicast routes. Other SDM
templates are available, but are not covered in detail.
You can use SDM templates for IP Version 4 (IPv4) to optimize these features.
Feature Memory Allocation
Default Lanbase Routing Template
Unicast MAC addresses 8 K 4 K
IPv4 IGMP groups + multicast routes 0.25 K 0.25 K
IPv4 unicast routes 0 0.75
Directly connected IPv4 hosts 0 0.75
Indirect IPv4 routes 0 16
IPv4 policy based routing ACEs 0 0
IPv4/MAC QoS ACEs 0.375 K 0.375 K
IPv4/MAC security ACEs 0.375 K 0.375 K
52 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 53
Getting Started Chapter 2
Device Manager
Web Interface
You can manage the switch by using the Device Manager Web interface to
configure and monitor the switch. The Device Manager Web interface is a
graphical device management tool for configuring, monitoring, and
troubleshooting individual switches.
The Device Manager Web interface displays real-time views of switch
configuration and performance. It simplifies configuration tasks with features
such as Smartports to quickly set up the switch and its ports. It uses graphical,
color-coded displays, such as the Front Panel view, graphs, and animated
indicators to simplify monitoring tasks. It provides alert tools to help you to
identify and to solve networking problems.
You can display the Device Manager Web interface from anywhere in your
network through a web browser such as Microsoft Internet Explorer.
Hardware Requirements
Attribute Requirement
Processor speed 1 GHz or faster (32-bit or 64-bit)
RAM 1 GB (32-bit) or 2 GB (64-bit)
Available hard drive space 16 GB (32-bit) or 20 GB (64-bit)
Number of colors 256
Resolution 1024 x 768
Font size Small
Software Requirements
Web Browser Version
Microsoft Internet Explorer 9.0, 10.0, or 11.0 with JavaScript enabled
Mozilla Firefox 25 or 26 with JavaScript enabled
The Device Manager Web interface verifies the browser version when starting a
session to be sure that the browser is supported.
To make sure that the Device Manager Web interface runs properly, disable any
pop-up blockers or proxy settings in your browser software and any wireless
clients running on your computer or laptop.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 53
Page 54
Chapter 2 Getting Started
Studio 5000 Environment
Cisco Network Assistant
You manage the switch by using the Logix Designer application in the
Studio 5000 environment. The Logix Designer application is IEC 61131-3
compliant and offers relay ladder, structured text, function block diagram, and
sequential function chart editors for you to develop application programs.
Hardware Requirements
Attribute Requirement
Processor speed Pentium II 450 MHz min
Pentium III 733 MHz (or better) recommended
RAM 128 MB min
256 MB recommended
Free hard drive space 3 GB
Optical drives DVD
Video requirements 256-color VGA graphics adapter
800 x 600 min resolution (True Color 1024 x 768 recommended)
Resolution 800 x 600 min resolution (True Color 1024 x 768 recommended)
Cisco Network Assistant is a Web interface that you download from Cisco’s
website and run on your computer. It offers advanced options for configuring and
monitoring multiple devices, including switches, switch clusters, switch stacks,
routers, and access points.
Follow these steps to use the software.
1. Go to
http://www.cisco.com/go/NetworkAssistant.
You must be a registered user, but you need no other access privileges.
2. Find the Network Assistant installer.
3. Download the Network Assistant installer, and run it.
You can run it directly from the Web if your browser offers this choice.
4. When you run the installer, follow the on-screen instructions.
5. On the final panel, click Finish to complete the Network Assistant
installation.
See the Network Assistant online help for more information.
54 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 55
Getting Started Chapter 2
Command Line Interface
You can manage the switch from the command-line interface (CLI) by
connecting your personal computer directly to the switch console port or
through the network by using Telnet.
Follow these steps to access the CLI through the console port.
1. Connect the supplied RJ45-to-DB-9 adapter cable to the standard 9-pin
serial port on the personal computer.
2. Connect the other end of the cable to the console port on the switch.
WARNING: The console port is intended for temporary local
programming purposes only and not intended for permanent
connection. If you connect or disconnect the console cable with power
applied to this module or the programming device on the other end of
the cable, an electrical arc can occur. This could cause an explosion in
hazardous location installations. Be sure that power is removed or the
area is nonhazardous before proceeding.
3. Start a terminal-emulation program on the personal computer.
4. Configure the personal computer terminal emulation software for
9600 bps, 8 data bits, no parity, 1 stop bit, and no flow control.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 55
Page 56
Chapter 2 Getting Started
Notes:
56 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 57
Switch Software Features
Topic Page
Port Numbering 58
Global Macro 59
Smartports 59
Power over Ethernet (PoE) Ports 61
IGMP Snooping with Querier 69
Spanning Tree Protocol 70
Storm Control 71
Port Security 72
EtherChannels 74
DHCP Persistence 75
CIP Sync Time Synchronization (Precision Time Protocol) 76
Resilient Ethernet Protocol 76
SNMP 80
Port Mirroring 82
Layer 3 Routing (Stratix 8300 switch only) 82
Alarms 84
Cryptographic IOS Software (optional) 85
Advanced Software Features 85
Chapter 3
The Stratix 8000 and Stratix 8300 switches contain common Ethernet software
features, unless otherwise specified.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 57
Page 58
Chapter 3 Switch Software Features
Port Numbering
The port ID consists of port type (Gigabit Ethernet for Gigabit ports and Fast
Ethernet for 10/100 Mbps ports), unit number (1, 2, or 3) and port number (1-2
for Gigabits, 1-4 for the 6 port base and 1-8 for all others). Gigabit Ethernet is
abbreviated as Gi and Fast Ethernet as Fa.
The following table shows, as an example, port numbering for the 26-port
Stratix 8000 switch configuration containing the following:
• One 10-port base switch
• One copper expansion module
• One fiber expansion module
Table 1 - Port Numbering
Cat. No. Unit Number of Ports Port Numbering on Switch
1783-MS10T 10-port base switch 10 2 Gigabit ports and
eight 10/100 Mbps ports)
1783-MX08T Copper expansion module Eight 10/100 Mbps ports 1
1783-MX08F Fiber expansion module Eight 10/100 Mbps ports 1
Labels
Gigabit ports:
1
2
10/100 Mbps ports:
1
2
3
4
5
6
7
8
2
3
4
5
6
7
8
2
3
4
5
6
7
8
Port Numbering in config.txt
Text File
Gigabit ports:
Gi1/1
Gi1/2
10/100 Mbps ports:
Fa1/1
Fa1/2
Fa1/3
Fa1/4
Fa1/5
Fa1/6
Fa1/7
Fa1/8
Fa2/1
Fa2/2
Fa2/3
Fa2/4
Fa2/5
Fa2/6
Fa2/7
Fa2/8
Fa3/1
Fa3/2
Fa3/3
Fa3/4
Fa3/5
Fa3/6
Fa3/7
Fa3/8
58 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 59
Switch Software Features Chapter 3
Global Macro
Smartports
Once you complete Express Setup, a global macro (ab-global) executes. This
macro configures the switch for typical industrial automation applications by
using the EtherNet/IP protocol. This macro sets many parameters, including
these major settings:
• Enable IGMP snooping and Querier
• Enable CIP
• Configure QoS settings and classify CIP, PTP and other traffic
• Enables alarms, SYSLOG, SNMP Notifications
• Enable Rapid Spanning Tree (RSTP), BPDU Guard, BPDU Filter and
loop guard
If you do not run Express Setup to initialize the switch, the global macro does not
run. You can also run the global macro by using the CLI.
Smartports roles are recommended configurations for the switch ports. These
configurations, also referred to as port roles, optimize the switch connections and
ensure security, transmission quality, and reliability for traffic from the switch
ports. The port roles also help prevent port misconfigurations.
TIP
Use port roles immediately after the switch initial setup. The switch ports
are then correctly configured before they are connected to devices.
Optimize Ports through Port Roles
The port roles are based on the type of devices to be connected to the switch
ports. For example, the Desktop for Automation port role is specifically for
switch ports to be connected to desktop and laptop computers.
By default, the switch ports are set with the None port role.
Table 2 - Port Roles
Port Role Description
Automation Device Apply this role to ports to be connected to EtherNet/IP (Ethernet Industrial Protocol) devices. It can be used for industrial automation
Desktop for Automation Apply this role to ports to be connected to desktop devices, such as desktop computers, workstations, notebook computers, and other
Switch for Automation Apply this role to ports to be connected to other switches.
Router for Automation Apply this role to routers or ports to be connected to Layer 3 switches with routing services enabled.
devices, such as logic controllers and I/O:
• Port is set to Access mode.
• Port security supports only one MAC ID.
• Optimize queue management for CIP traffic.
client-based hosts:
• Port is set to Access mode.
• Portfast enabled.
• Port security supports only one MAC ID.
Do not apply to ports to be connected to switches, routers, or access points.
Port is set to Trunk mode.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 59
Page 60
Chapter 3 Switch Software Features
Table 2 - Port Roles (continued)
Port Role Description
Phone for Automation Apply this role to ports to be connected to IP phones. A desktop device, such as a computer, can be connec ted to the IP phone. Both the IP
Wireless for Automation Apply this role to ports to be connected to wireless access points. The access point can provide network access to up to 30 mobile
Multiport Automation Device Apply this role to ports connected to multiport EtherNet/IP devices, such as multiport EtherNet/IP devices arranged in a linear or daisy
Virtual Desktop for Automation Apply this role to ports connected to computers running virtualization software. This can be used with devices running up to two MAC
Port Mirroring Apply this role to ports to be monitored by a network analyzer. For more information about port mirroring, see
None Apply this role to ports if you do not want a specialized port role on the port. This role can be used on connections to any device, including
phone and the connected computer have network access through the port:
• Port is set to Trunk mode.
• Port security supports three MAC IDs.
This role prioritizes voice traffic over general data traffic to ensure clear voice reception on the IP phones.
(wireless) users.
chain topology, the 1783-ETAP module (for connection to the device port only), unmanaged switches (such as the Stratix 2000™) and
managed switches with Remote Spanning Tree Protocol (RSTP) disabled:
• Port is set to Access mode.
• No port security.
• Optimized queue management for CIP traffic.
addresses:
• Port is set to Access mode.
• Portfast is enabled.
• Port security supports two MAC IDs.
IMPORTANT: Do not apply the Virtual Desktop for Automation role to ports that are connected to switches, routers, or access points.
Port Mirroring on page 82.
devices in the roles described above.
Avoid Smartports Mismatches
A Smartports mismatch occurs when an attached device does not match the port
role applied to the switch port. Mismatches can have adverse effects on devices
and your network.
Mismatches can have these results:
• Affect the behavior of the attached device
• Lower network performance, for example reduce the level of QoS on CIP,
voice, wireless, switch, and router traffic
• Reduce restrictions on guest access to the network
• Reduce protection from denial of service (DoS) attacks on the network
• Disable or shut down the port
We recommend that you always verify which port role is applied to a port before
attaching a device to the port or reconnecting devices that have been moved.
60 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 61
Switch Software Features Chapter 3
Power over Ethernet (PoE) Ports
PoE expansion module ports are software-configurable and provide these
features:
• Support for IEEE 802.3af (PoE)-compliant devices.
• Support for IEEE 802.3at Type 2 (PoE+), which increases the available
power that can be drawn by powered devices from 15.4…30 W per port.
• Automatic detection and power budgeting. The module maintains a
power budget, monitors and tracks requests for power, and grants power
only when it is available.
• Power to connected Cisco pre-standard and IEEE 802.3af-compliant
powered devices if the switch detects that there is no power on the circuit.
• Support for Cisco Discovery Protocol (CDP) with power consumption.
This features applies only when using PoE expansion modules with Cisco
end devices. The powered Cisco end device notifies the expansion module
of the amount of power it is consuming. The module can supply or remove
power from the PoE port.
• Support for Cisco intelligent power management. A powered Cisco end
device and the module negotiate through power-negotiation CDP
messages for an agreed power-consumption level. The negotiation allows a
high-powered device consuming more than 7 W to operate at its highest
power mode. The powered device first starts up in Low-power mode,
consumes less than 7 W, and negotiates to obtain enough power to operate
in High-power mode. The device changes to High-power mode only when
it receives confirmation from the expansion module.
Cisco intelligent power management is backward-compatible with CDP
with power consumption. The module responds according to the CDP
message that it receives. CDP is not supported on third-party powered
devices, so the module uses the IEEE classification to determine the power
usage of the device.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 61
Page 62
Chapter 3 Switch Software Features
Powered Device Detection and Initial Power Allocation
A PoE expansion module detects a powered device when a port with PoE
capability is active, PoE is enabled (the default), and the connected device is not
being powered by another power source.
After device detection, the module determines the device power requirements
based on its type:
• The module classifies the detected IEEE device within a power
consumption class. Based on the available power in the power budget, the
module determines if a PoE port can be powered. The table below lists
these levels.
Table 3 - IEEE Power Classifications
Class Power Supplied per Port, max
0 (class status unknown) 15.4 W
14 W
27 W
3 15.4 W
4 30 W PoE+ devices only
• A Cisco pre-standard powered device does not provide its power
requirement when the module detects it. A port that is not configured for
PoE+ allocates 15.4 W as the initial allocation for power budgeting. A
port that is configured for PoE+ switch allocates 30 W.
The initial power allocation is the maximum amount of power that a
powered device requires. The module initially allocates this amount of
power when it detects and powers the powered device. As the module
receives CDP messages from the powered device and as the powered
device negotiates power levels with the module through CDP
power-negotiation messages, the initial power allocation can be adjusted.
The module monitors and tracks requests for power and grants power only when
it is available. The module tracks its power budget, which is the amount of power
available on each PoE port. The module performs power-accounting calculations
when a port is granted or denied power to keep the power budget up to date.
After power is applied to a PoE port, the module uses CDP (if CDP is supported
by the powered Cisco end device) to determine the actual power consumption
requirement of the connected powered devices and adjusts the power budget
accordingly. The switch processes a request and either grants or denies power. If
the request is granted, the module updates the power budget. If the request is
denied, the module verifies that power to the port is turned off, generates a syslog
message, and updates the status indicators. Powered devices can also negotiate
with the module for more power.
62 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 63
Switch Software Features Chapter 3
If the module detects a fault caused by an undervoltage, overvoltage,
overtemperature, oscillator-fault, or short-circuit condition, it turns off power to
the port, generates a syslog message, and updates the power budget and status
indicators.
Power Management Modes
PoE expansion module ports support these modes:
• Auto (default)—The port automatically detects if the connected device
requires power. This is the default mode. If the port discovers a connected
powered device and the module has enough power, it grants power,
updates the power budget, turns on power to the port on a first-come,
first-served basis, and updates the status indicators. For status indicator
information, see
If enough power is available for all powered devices connected to the
module, power is turned on to all devices. If there is not enough available
power to accommodate all connected devices and if a device is
disconnected and reconnected while other devices are waiting for power, it
cannot be determined which devices are granted or are denied power.
PoE Port Status Indicator on page 179.
If granting power exceeds the system power budget, the module denies
power, verifies that power to the port is turned off, generates a syslog
message, and updates the status indicators. After power has been denied,
the module periodically rechecks the power budget and continues to
attempt to grant the request for power.
If a device being powered by the module is then connected to wall power,
the module can continue to power the device. The module can continue to
report that it is still powering the device whether the device is being
powered by the module or receiving power from an AC power source.
If a powered device is removed, the module automatically detects the
disconnect and removes power from the port. You can connect a
nonpowered device without damaging it.
You can specify the maximum wattage that is allowed on the port. If the
IEEE-class maximum wattage of the powered device is greater than the
configured maximum value, the module does not provide power to the
port. If the module powers a powered Cisco end device, but the powered
device later requests through CDP messages more than the configured
maximum value, the module removes power to the port. The power that
was allocated to the powered device is reclaimed into the global power
budget. If you do not specify a wattage, the module delivers the maximum
value.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 63
Page 64
Chapter 3 Switch Software Features
• Static—The module pre-allocates power to the port even when no
powered device is connected and guarantees that power is available for the
port. The module allocates the port-configured maximum wattage, and
the amount is never adjusted through the IEEE class or by CDP messages
from a powered Cisco end device. Because power is pre-allocated, any
powered device that uses less than or equal to the maximum wattage is
guaranteed to be powered when it is connected to the static port. The port
no longer participates in the first-come, first-served model.
However, if the powered-device IEEE class is greater than the maximum
wattage, the module does not supply power to it. If the module learns
through CDP messages that a powered Cisco end device needs more than
the maximum wattage, the powered device is shut down.
If you do not specify a wattage, the module pre-allocates the maximum
value. The module powers the port only if it discovers a powered device.
Use the static setting on a high-priority interface.
• Off—The module disables powered-device detection and never powers
the PoE port, even if an unpowered device is connected. Use this mode
only when you want to make sure power is never applied to a PoE port,
making the port a data-only port.
Maximum Power Allocation (cutoff power) on a PoE Port
The module determines the cutoff power on a PoE port in this order.
1. Manually when you configure the power level that the module budgets for
the port
2. Manually when you configure the power level that limits the power
allocated to the port
3. Automatically when the module sets the power usage of the device by using
the IEEE classification and LLDP power negotiation or CDP power
negotiation
If you do not manually configure the cutoff-power value, the module can
automatically determine the value by using CDP power negotiation when
connected to a Cisco end device. If the switch cannot determine the value by
using one of these methods, it uses the default value of 15.4 W.
64 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 65
Switch Software Features Chapter 3
With PoE+, if you do not manually configure the cutoff-power value, the module
automatically determines it by using the device IEEE classification and LLDP
power negotiation or CDP power negotiation with a Cisco end device. If CDP or
LLDP are not enabled, the default value of 30 W is applied. However, without
CDP or LLDP, the module does not allow devices to consume more than 15.4 W
of power because values from 15,400…30,000 mW are allocated based on only
CDP or LLDP requests. If a powered device consumes more than 15.4 W
without CDP or LLDP negotiation, the device can be in violation of the
maximum current limitation and can experience a fault for drawing more current
than the maximum. The port remains in the fault state for a time before
attempting to power on again. If the port continuously draws more than 15.4 W,
the cycle repeats.
Power Consumption Values
You can configure the initial power allocation and the maximum power
allocation on a port. However, these values are only the configured values that
determine when the module turns on or turns off power on the PoE port. The
maximum power allocation is not the same as the actual power consumption of
the powered device. When you manually set the maximum power allocation, you
must consider the power loss over the cable from the port to the powered device.
The cutoff power is the sum of the rated power consumption of the powered
device and the worst-case power loss over the cable.
The actual amount of power consumed by a powered device on a PoE port is the
cutoff-power value plus a calibration factor of 500 mW (0.5 W). The actual
cutoff value is approximate and varies from the configured value by a percentage
of the configured value. For example, if the configured cutoff power is 12 W, the
actual cutoff-value is 11.4 W, which is 0.05% less than the configured value.
Because the module supports external removable power supplies for PoE/PoE+
and can configure the budget per the power supply used, the total amount of
power available for the powered devices varies depending on the power supply
configuration:
• If a power supply is removed and replaced by a new power supply with less
power and the module does not have enough power for the powered
devices, the module denies power to the PoE ports that are in Auto mode
in descending order of the port numbers. If the module still does not have
enough power, it denies power to the PoE ports in Static mode in
descending order of the port numbers.
• If the new power supply supports more power than the previous one, and
the module now has more power available, the module grants power to the
PoE ports in Static mode in ascending order of the port numbers. If it still
has power available, the module then grants power to the PoE ports in
Auto mode in ascending order of the port numbers.
IMPORTANT
The total wattage of the power supply must be manually configured via the
Device Manager Web interface or CIP for power to be assigned accurately.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 65
Page 66
Chapter 3 Switch Software Features
VLANs
A virtual local-area network (VLAN) is a logical segment of network users and
resources grouped by function, team, or application. This segmentation is
without regard to the physical location of the users and resources. For example,
VLANs can be based on the departments in your company or by sets of users who
communicate mostly with each other.
The switch ships with a default VLAN to which each switch port initially
belongs. The switch supports a maximum of 255 VLANs, including the default
VLAN.
Every VLAN is identified by its name and ID number. The default VLAN is
named default. The ID can be from 1...1001 and 1005...4094, where 1 is the
default ID.
You can assign switch ports to either the default VLAN or to VLANs that you
have created. The default VLAN alone can be sufficient based on the size and
requirements of your network. We recommend that you first determine your
VLAN needs before creating VLANs.
The default VLAN is also the management VLAN. After the initial setup, you
can create VLANs and designate any VLAN on the switch as the management
VLAN. The management VLAN ensures administrative access to the switch.
You must assign one of the switch ports to the management VLAN; otherwise,
you do not have administrative access to the switch. Initially all ports are assigned
to the management VLAN.
You can assign all ports, regardless of their port role, to the default VLAN
(default).
Isolate Traffic and Users
By using VLANs, you can isolate different types of traffic, such as voice and data,
to preserve the quality of the transmission and to minimize excess traffic among
the logical segments. You can also use VLANs to isolate different types of users.
For example, you can restrict specific data broadcasts to logical workgroups for
security purposes, such as keeping information about employee salaries on devices
in a VLAN created for payroll-related communication.
VLANs can also reduce the amount of administrative effort required to
constantly examine requests to network resources.
VLANs isolate parts of your network. Therefore, devices that are attached to the
switch ports in the same VLAN (network users in the same VLAN) can
communicate only with each other and can share the same data.
66 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 67
Switch Software Features Chapter 3
Devices attached to switch ports in different VLANs cannot communicate with
each other through the switch. Inter-VLAN communication requires a router or
Layer 3 switch. The router or Layer 3 switch must be configured to support
routing across VLANs (inter-VLAN routing), and additional security policies
must be set.
If your network is also using a DHCP server, ensure that the server is accessible to
the devices in all the VLANs.
The following figure is an example network that uses VLANs based on different
network traffic and network users. Organizing a network around these factors
helps to define the size and membership of the VLANs in the network.
Figure 8 - VLANs in a Stratix 8000 Switch Network
Isolate Different Traffic Types
Isolating data traffic from delay-sensitive traffic, such as voice traffic, ensures the
quality of the voice transmission. In
to the IP phones belong to VLAN 3, a VLAN that is configured to provide Voice
over IP (VoIP) services on these connections, meaning priority is given to voice
traffic over regular IP data traffic. Voice traffic from the phone and IP-phone
service requests to an IP PBX server have priority over traffic from the desktop
devices attached to the IP phones.
To further isolate data traffic from voice traffic, the data traffic from the attached
desktop devices can be assigned to a separate VLAN.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 67
Figure 8 on page 67, switch ports connected
Page 68
Chapter 3 Switch Software Features
Group Users
The network shown in Figure 8 on page 67 provides access to three types of
network users: wired employees, wireless (or mobile) employees, and wired and
wireless company visitors. Each user type requires different access levels to the
company network.
VLANs and security policies on a router or Layer 3 switch can enforce privileges
and restrictions to different user types, as shown in
• VLAN 5 offers employee-level access to the company resources. This kind
of network access requires a direct connection to the specific switch ports.
• VLAN 7 offers Internet-only access to company visitors. Visitors with
wired or wireless connections to switch ports are assigned to this VLAN,
which automatically restricts guest access to only the Internet.
• VLAN 9, which has one or more switch ports connected to the wireless
access point, enforces security policies to identify the wireless user (for
example, as employee or a guest) and to determine what the user can do on
the network (for example, access only the Internet or access other network
resources).
Figure 8 on page 67:
68 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 69
Switch Software Features Chapter 3
IGMP Snooping with Querier
Layer 2 switches can use IGMP snooping to constrain the flooding of multicast
traffic by dynamically configuring Layer 2 interfaces so that multicast traffic is
forwarded to only those interfaces associated with IP multicast devices. As the
name implies, IGMP snooping requires the LAN switch to snoop on the IGMP
transmissions between the host and the router and to keep track of multicast
groups and member ports. When the switch receives an IGMP report from a host
for a particular multicast group, the switch adds the host port number to the
forwarding table entry; when it receives an IGMP Leave Group message from a
host, it removes the host port from the table entry. It also periodically deletes
entries if it does not receive IGMP membership reports from the multicast
clients.
The multicast router sends out periodic general queries to all VLANs. All hosts
interested in this multicast traffic send join requests and are added to the
forwarding table entry. The switch creates one entry per VLAN in the IGMP
snooping IP multicast forwarding table for each group from which it receives an
IGMP join request.
The switch supports IP multicast group-based bridging, rather than MACaddressed based groups. With multicast MAC address-based groups, if an IP
address being configured translates (aliases) to a previously configured MAC
address or to any reserved multicast MAC addresses (in the range 224.0.0.xxx),
the command fails. Because the switch uses IP multicast groups, there are no
address aliasing issues.
The default number of supported multicast groups are as follows:
• Stratix 8000 switch: 256
• Stratix 8300 switch: 1024
You can modify the number of multicast groups supported by using the
command line interface. If you have over 180 multicast groups on a Stratix 8000
we suggest modifying the number of multicast groups by changing the SDM
template to the Lanbase Routing template.
The IP multicast groups learned through IGMP snooping are dynamic. If you
specify group membership for a multicast group address statically, your setting
supersedes any automatic manipulation by IGMP snooping. Multicast group
membership lists can consist of both user-defined and IGMP snooping-learned
settings. Multicast IP addresses used by the EtherNet/IP network for I/O traffic
are learned by the switch.
IGMP implementation in the switch is IGMP V2. This version is
backward-compatible with switches running IGMP V1. The switch has a built in
querier function, and the global macro enables on IGMP Snooping and the
querier.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 69
Page 70
Chapter 3 Switch Software Features
Spanning Tree Protocol
Spanning Tree Protocol (STP) is a Layer 2 link management protocol that
provides path redundancy while preventing loops in the network. For a Layer 2
Ethernet network to function properly, only one active path can exist between
any two stations. Multiple active paths among end stations cause loops in the
network. If a loop exists in the network, end stations can receive duplicate
messages. Switches can also learn end-station MAC addresses on multiple Layer 2
interfaces. These conditions result in an unstable network. Spanning-tree
operation is transparent to end stations, which cannot detect whether they are
connected to a single LAN segment or a switched LAN of multiple segments.
The STP uses a spanning-tree algorithm to select one switch of a redundantly
connected network as the root of the spanning tree. The algorithm calculates the
best loop-free path through a switched Layer 2 network by assigning a role to
each port based on the role of the port in the active topology:
• Root—A forwarding port elected for the spanning-tree topology
• Designated—A forwarding port elected for every switched LAN segment
• Alternate—A blocked port providing an alternate path to the root bridge
in the spanning tree
• Backup—A blocked port in a loopback configuration
The switch that has all of its ports as the designated role or as the backup role is
the root switch. The switch that has at least one of its ports in the designated role
is called the designated switch.
Spanning tree forces redundant data paths into a standby (blocked) state. If a
network segment in the spanning tree fails and a redundant path exists, the
spanning-tree algorithm recalculates the spanning-tree topology and activates the
standby path. Switches send and receive spanning-tree frames, called bridge
protocol data units (BPDUs), at regular intervals. The switches do not forward
these frames but use them to construct a loop-free path. BPDUs contain
information about the sending switch and its ports, including switch and MAC
addresses, switch priority, port priority, and path cost. Spanning tree uses this
information to elect the root switch and root port for the switched network and
the root port and designated port for each switched segment.
Rapid Spanning Tree Protocol
Rapid Spanning Tree Protocol (RSTP) (IEEE 802.1D-2004) uses point-to-point
wiring and provides rapid convergence of the spanning tree. RSTP is enabled by
default.
TIP
If you connect the switch to a Cisco network switch, the typical default is
PVST+, not RSTP. To provide compatibility, one or the other switch must be
modified.
70 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 71
Switch Software Features Chapter 3
Storm Control
Storm control prevents traffic on a LAN from being disrupted by a broadcast,
multicast, or unicast storm on one of the physical interfaces. A LAN storm occurs
when packets flood the LAN, creating excessive traffic and degrading network
performance. Errors in the protocol-stack implementation, mistakes in network
configurations, or users issuing a denial-of-service attack can cause a storm.
Storm control (or traffic suppression) monitors packets passing from an interface
to the switching bus and determines if the packet is unicast, multicast, or
broadcast. The switch counts the number of packets of a specified type received
within the 1-second time interval and compares the measurement with a
predefined suppression-level threshold.
Storm control uses one of these methods to measure traffic activity:
• Bandwidth as a percentage of the total available bandwidth of the port that
can be used by the broadcast, multicast, or unicast traffic.
• Traffic rate in packets per second at which broadcast, multicast, or unicast
packets are received.
• Traffic rate in bits per second at which broadcast, multicast, or unicast
packets are received.
With each method, the port blocks traffic when the rising threshold is reached.
The port remains blocked until the traffic rate drops below the falling threshold
and then resumes normal forwarding. In general, the higher the level, the less
effective the protection against broadcast storms.
IMPORTANT
The graph shows broadcast traffic patterns on an interface over a given period of
time. The example can also be applied to multicast and unicast traffic. In this
example, the broadcast traffic being forwarded exceeded the configured
threshold between time intervals T1 and T2 and between T4 and T5. When the
amount of specified traffic exceeds the threshold, all traffic of that kind is
dropped for the next time period. Therefore, broadcast traffic is blocked during
the intervals following T2 and T5. At the next time interval (for example, T3), if
broadcast traffic does not exceed the threshold, it is again forwarded.
When the storm control threshold for multicast traffic is reached, all multicast
traffic except network management traffic, such as bridge protocol data unit
(BDPU) and Cisco Discovery Protocol (CDP) frames, are blocked.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 71
Page 72
Chapter 3 Switch Software Features
Figure 9 - Storm Control Example
Forwarded Traffic
Blocked Traffic
Total number of
broadcast
packets or bytes
Threshold
0
T1 T2 T3
T4
T5
Time
The combination of the storm-control suppression level and the 1-second time
interval controls the way the storm control algorithm works. A higher threshold
lets more packets pass through. A threshold value of 100% means that no limit is
placed on the traffic. A value of 0.0 means that all broadcast, multicast, or unicast
traffic on that port is blocked.
IMPORTANT
Because packets do not arrive at uniform intervals, the 1-second time interval
during which traffic activity is measured can affect the behavior of storm
control.
Default Storm Control Configuration
Port Security
By default, unicast, broadcast, and multicast storm control are disabled. You can
set a threshold by using the Logix Designer application.
The switch has two methods for limiting the MAC addresses (MAC IDs) that
can access a given port:
• Dynamic
• Static
Dynamic Secure MAC Address (MAC ID)
Many port roles have a maximum number of MAC IDs that can use that port.
For example, the Automation Device port role sets up the port for a maximum of
one MAC ID. The MAC ID is dynamic, meaning the switch learns the first
source MAC ID to use the port. Attempts by any other MAC ID to access the
port are denied.
If the link becomes inactive, the switch dynamically relearns the MAC ID to be
secured.
72 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 73
Switch Software Features Chapter 3
The following table shows port roles and the maximum supported MAC IDs.
Port Role Number of MAC IDs (max)
Automation Device 1
Desktop for Automation 1
Switch for Automation Not restricted
Router for Automation Not restricted
Phone for Automation 3
Wireless for Automation Not restricted
Multiport Automation Devices Not restricted
Virtual Desktop for Automation 2
Port Mirroring Not restricted
None Not restricted
Static Secure MAC Address (MAC ID)
The other method of limiting MAC IDs is to statically configure a single MAC
ID for a port. This address becomes part of the saved configuration of the switch.
This method provides strong security but requires reconfiguration whenever the
device connected to the port is replaced, because the new device has a different
MAC ID from the old one.
When you use the Logix Designer application to configure the switch Add-on
Profile (AOP), you can use the static secure method. This method is not available
with the Device Manager Web interface.
Security Violations
It is a security violation when one of these situations occurs:
• The maximum number of secure MAC addresses that have been
configured for a port have been added to the address table, and a station
whose MAC address is not in the address table attempts to access the
interface.
• An address learned or configured on one secure interface is seen on
another secure interface in the same VLAN.
When a violation occurs, the port goes into the Restrict mode. In this mode,
packets with unknown source addresses are dropped and you are notified that a
security violation has occurred. An SNMP trap is sent, a syslog message is logged,
and the violation counter increments.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 73
Page 74
Chapter 3 Switch Software Features
EtherChannels
An EtherChannel (or port group) is a group of two or more Fast Ethernet or
Gigabit Ethernet switch ports bundled into a single logical link, creating a higher
bandwidth link between two switches. The switch supports up to six
EtherChannels. Each EtherChannel can consist of up to eight compatible,
configured ethernet ports.
Figure 10 shows two EtherChannels. Two Full-duplex 10/100/1000-Mbps ports
on Switches A and C create an EtherChannel with a bandwidth of up to 4 Gbps
between both switches. Similarly, two Full-duplex 10/100 ports on Switches B
and D create an EtherChannel with a bandwidth of up to 400 Mbps between
both switches.
If one of the ports in the EtherChannel becomes unavailable, traffic is sent
through the remaining ports within the EtherChannel.
Figure 10 - EtherChannels between Stratix 8000 Switches
74 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 75
Switch Software Features Chapter 3
You can configure an EtherChannel in one of these modes: Port Aggregation
Protocol (PAgP), Link Aggregation Control Protocol (LACP), or On.
Configure both ends of the EtherChannel in the same mode.
• When you configure one end of an EtherChannel in either PAgP or LACP
mode, the system negotiates with the other end of the channel to
determine which ports become active. Incompatible ports are suspended.
Instead of a suspended state, the local port is put into an independent state
and continues to carry data traffic as any other single link. The port
configuration does not change, but the port does not participate in the
EtherChannel.
• When you configure an EtherChannel in the On mode, no negotiations
take place. The switch forces all compatible ports to become active in the
EtherChannel. The other end of the channel (on the other switch) must
also be configured in the On mode; otherwise, packet loss can occur.
If a link within an EtherChannel fails, traffic previously carried over that failed
link moves to the remaining links within the EtherChannel. If traps are enabled
on the switch, a trap is sent for a failure that identifies the switch, the
EtherChannel, and the failed link. Inbound broadcast and multicast packets on
one link in an EtherChannel are blocked from returning on any other link of the
EtherChannel.
DHCP Persistence
Every device in an IP-based network must have a unique IP address. The
Dynamic Host Configuration Protocol (DHCP) automatically assigns IP
address information from a pool of available addresses to newly connected
devices (DHCP clients) in the network. If a device leaves and then re-joins the
network, the device receives the next available IP address, which can be the same
address that it had before.
The switch can be set to operate as a DHCP server to provide DHCP
persistence. With DHCP persistence, you can assign a specific IP address to each
port, ensuring that the device attached to a given port receives the same IP
address.
The DHCP Server also serves addresses to BOOTP clients.
IMPORTANT
To make sure DHCP persistence works correctly, follow the application rules.
Refer to
Configure DHCP on page 103.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 75
Page 76
Chapter 3 Switch Software Features
CIP Sync Time Synchronization (Precision Time Protocol)
Resilient Ethernet Protocol
The IEEE 1588 standard defines a protocol called Precision Time Protocol
(PTP) that enables precise synchronization of clocks in measurement and control
systems. We refer to this as CIP Sync time synchronization. The clocks are
synchronized over the EtherNet/IP communication network. PTP enables
systems that include clocks of various precision, resolution, and stability to
synchronize. PTP generates a Master-Slave relationship among the clocks in the
system. All clocks ultimately derive their time from a clock selected as the
Grandmaster clock.
The Resilient Ethernet Protocol (REP) provides an alternative to Spanning Tree
Protocol (STP) to control network rings and loops, handle link failures, and
improve convergence time. REP controls a group of ports connected in a
segment, ensures that the segment does not create any bridging loops, and
responds to link failures within the segment. REP provides a basis for
constructing more complex networks and supports VLAN load balancing.
REP is a segment protocol. One REP segment is a chain of ports connected to
each other and configured with a segment ID. Each segment consists of standard
(transit) segment ports and two user-configured edge ports. A switch can have no
more than two ports that belong to the same segment, and each segment port can
have only one external neighbor. A segment can go through a shared medium, but
on any link only two ports can belong to the same segment. REP is supported
only on Layer 2 trunk interfaces. Selecting the Switch for Automation port role
enables Layer 2 trunking. REP is supported on EtherChannels, but not on an
individual port that belongs to an EtherChannel.
You can construct almost any type of network based on REP segments. REP also
supports VLAN load-balancing, controlled by the primary edge port but
occurring at any port in the segment.
These types of REP ports are available in the Device Manager Web interface:
• Primary—This port is a primary edge port. This port always participates in
VLAN load balancing in the REP segment.
• Edge—This port is a secondary edge port. It also participates in VLAN
load balancing in the REP segment. Edge ports are termination points of a
REP segment. You must configure two edge ports, including one primary
edge port, for each REP segment. Entering edge without primary
configures the port as a secondary edge port. Primary and secondary edge
ports must be configured even if support of VLAN balancing is not
required.
• Transit—This port is a non-edge port in the REP segment.
• No-neighbor Primary—This port is a primary edge port connected a non-
REP switch.
76 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 77
Switch Software Features Chapter 3
• No-neighbor—This port is a secondary edge port connected to a
non-REP switch. The no-neighbor edge ports contain all properties of
regular edge ports. These ports enable the construction of a REP ring
containing a switch that does not support REP protocol.
• None—This port is not part of the REP segment.
REP and STP can coexist on the same switch, but not on the same port. REP
does not interact with STP. For example, if a port is configured as a REP port,
STP is disabled on that port. STP bridge protocol data units (BPDUs) are not
accepted on or sent from segment ports REP ports. However, adjacent REP and
STP rings or domains can share a common link. This common link can be used
for passing REP and STP date plane traffic, or for the STP control plane traffic.
The following figure shows an example of a segment consisting of six ports spread
across four switches. Ports E1 and E2 are configured as edge ports. When all
ports are operational (as in the segment on the left), a single port is blocked,
shown by the diagonal line. When there is a failure in the network, as shown in
the diagram on the right, the blocked port returns to the forwarding state to
minimize network disruption.
REP Open Segment
The segment shown below is an open segment; there is no connectivity between
the two edge ports. The REP segment cannot cause a bridging loop and it is safe
to connect the segment edges to any network. All hosts connected to switches
inside the segment have two possible connections to the rest of the network
through the edge ports, but only one connection is accessible at any time. If a
failure causes a host to be unable to access its usual gateway, REP unblocks all
ports to ensure that connectivity is available through the other gateway.
In
Figure 11, E1 or E2 can be configured as the primary edge port.
Figure 11 - Example of REP Open Segment
Edge port
E1
Blocked port
Link failure
E2E1 E2E1
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 77
201888
Page 78
Chapter 3 Switch Software Features
REP Ring Segment
The segment shown in the following figure, with both edge ports on the same
switch, is a ring segment. In this configuration, there is connectivity between the
edge ports through the segment. With this configuration, you can create a
redundant connection between any two switches in the segment.
In
Figure 12, E1 or E2 can be configured as the primary edge port.
Figure 12 - Example of REP Ring Segment
E2E1
201889
REP segments have these characteristics:
• If all ports in the segment are operational, one port (referred to as the
alternate port) is in the blocked state for each VLAN.
• If VLAN load balancing is configured, two ports in the segment control
the blocked state of VLANs.
• If one or more ports in a segment is not operational, causing a link failure,
all ports forward traffic on all VLANs to ensure connectivity.
• In case of a link failure, the alternate ports are unblocked as quickly as
possible. When the failed link comes back up, a logically blocked port per
VLAN is selected with minimal disruption to the network.
Access Ring Topologies
In access ring topologies, the neighboring switch does not always support REP, as
shown in the following figure. In this case, you can configure the non-REP facing
ports (E1 and E2) as edge no-neighbor ports. These ports inherit all properties of
edge ports, and you can configure them the same as any edge port, including
configuring them to send STP or REP topology change notices to the
aggregation switch. In this case the STP topology change notice (TCN) that is
sent is a multiple spanning-tree (MST) STP message.
78 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 79
Switch Software Features Chapter 3
In Figure 13, E1 or E2 can be configured as the primary no-neighbor port.
Figure 13 - Example of Access Ring Topology
E1
REP not
REP Not Supported
supported
E1 and E2 are configured
as edge no-neighbor ports
REP Ports - Configured at
E2
Transit Ports
REP ports
273792
REP has these limitations:
• You must configure each segment port; an incorrect configuration can
cause forwarding loops in the networks.
• REP can manage only a single failed port within the segment; multiple
port failures within the REP segment cause loss of network connectivity.
You can configure REP only in networks with redundancy. Configuring REP in a
network without redundancy causes loss of connectivity.
Link Integrity
REP does not use an end-to-end polling mechanism between edge ports to verify
link integrity. It implements local link failure detection. The REP Link Status
Layer (LSL) detects its REP-aware neighbor and establishes connectivity within
the segment. All VLANs are blocked on an interface until it detects the neighbor.
After the neighbor is identified, REP determines which neighbor port can
become the alternate port and which ports can forward traffic.
Each port in a segment has a unique port ID. The port ID format is similar to
that used by the spanning tree algorithm: a port number (unique on the bridge),
associated to a MAC address (unique in the network). When a segment port is
coming up, its LSL starts sending packets that include the segment ID and the
port ID. The port is declared as operational after it performs a three-way
handshake with a neighbor in the same segment.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 79
Page 80
Chapter 3 Switch Software Features
SNMP
The switch supports Simple Network Management Protocol (SNMP) versions 1,
2C, and 3. SNMP enables the switch to be remotely managed through other
network management software. This feature is disabled by default.
SNMP is based on three concepts:
• SNMP managers (client software)
• SNMP agents (network devices)
• Management Information Base (MIB)
Refer to Supported MIBs on page 81 for the MIBs supported on the switch.
The SNMP manager runs SNMP management software. Network devices to be
managed, such as bridges, routers, servers, and workstations, have an agent
software module. The agent provides access to a local MIB of objects that reflects
the resources and activity of the device. The agent also responds to manager
commands to retrieve values from the MIB and to set values in the MIB. The
agent and the MIB are on the switch. To configure SNMP on the switch, you
define the relationship between the manager and the agent.
Both SNMPv1 and v2C use a community-based form of security. SNMP
managers can access the agent MIB through passwords referred to as community
strings. SNMPv1 and v2C are generally used for network monitoring without
network control.
SNMPv3 provides network monitoring and control. It provides secure access to
devices by a combination of authenticating and encrypting packets over the
network. The security model used by SNMPv3 is an authentication strategy that
is set up for a user and the user’s group. A security level is the permitted level of
security within a security model. A combination of a security model and a
security level determines which security mechanism is used for an SNMP packet.
Following are some guidelines about SNMPv3 objects.
IMPORTANT
• Each user belongs to a group.
• A group defines the access policy for a set of users.
• An access policy defines which SNMP objects can be accessed for reading,
writing, and creating.
• A group determines the list of notifications that its users can receive.
• A group also defines the security model and the security level for its users.
• An SNMP view is a list of MIBs that a group can access.
• Data can be securely collected from SNMP devices without fear of the data
being tampered with or corrupted.
• Confidential information, for example, SNMP Set command packets that
change a router configuration, can be encrypted to prevent the contents
from being exposed on the network.
SNMPv.3 is available only in the cryptographic version of the switch firmware.
80 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 81
Switch Software Features Chapter 3
Supported MIBs
The Stratix 8000 and Stratix 8300 switches support the following MIBs.
MIB Name
BRIDGE-MIB CISCO-MEMORY-POOL-MIB IP-MIB
CALISTA-DPA-MIB CISCO-PAE-MIB LLDP-EXT-MED-MIB
CISCO-ACCESS-ENVMON-MIB CISCO-PAGP-MIB LLDP-MIB
CISCO-ADMISSION-POLICY-MIB CISCO-PING-MIB NETRANGER
CISCO-AUTH-FRAMEWORK-MIB CISCO-PORT-QOS-MIB NOTIFICATION-LOG-MIB
CISCO-BRIDGE-EXT-MIB CISCO-PORT-SECURITY-MIB OLD-CISCO-CHASSIS-MIB
CISCO-BULK-FILE-MIB CISCO-PORT-STORM-CONTROL-MIB OLD-CISCO-CPU-MIB
CISCO-CABLE-DIAG-MIB CISCO-PRIVATE-VLAN-MIB OLD-CISCO-FLASH-MIB
CISCO-CALLHOME-MIB CISCO-PROCESS-MIB OLD-CISCO-INTERFACES-MIB
CISCO-CAR-MIB CISCO-PRODUCTS-MIB OLD-CISCO-IP-MIB
CISCO-CDP-MIB CISCO-RESILIENT-ETHERNET-PROTOCOL-MIB OLD-CISCO-MEMORY-MIB
CISCO-CIRCUIT-INTERFACE-MIB CISCO-RTTMON-ICMP-MIB OLD-CISCO-SYS-MIB
CISCO-CLUSTER-MIB CISCO-RTTMON-IP-EXT-MIB OLD-CISCO-SYSTEM-MIB
CISCO-CONFIG-COPY-MIB CISCO-RTTMON-MIB OLD-CISCO-TCP-MIB
CISCO-CONFIG-MAN-MIB CISCO-RTTMON-RTP-MIB OLD-CISCO-TS-MIB
CISCO-DATA-COLLECTION-MIB CISCO-SNMP-TARGET-EXT-MIB RMON-MIB
CISCO-DHCP-SNOOPING-MIB CISCO-STACK-MIB RMON2-MIB
CISCO-EMBEDDED-EVENT-MGR-MIB CISCO-STACKMAKER-MIB SMON-MIB
CISCO-ENTITY-ALARM-MIB CISCO-STP-EXTENSIONS-MIB SNMP-COMMUNITY-MIB
CISCO-ENTITY-VENDORTYPE-OID-MIB CISCO-SYSLOG-MIB SNMP-FRAMEWORK-MIB
CISCO-ENVMON-MIB CISCO-TCP-MIB SNMP-MPD-MIB
CISCO-ERR-DISABLE-MIB CISCO-UDLDP-MIB SNMP-NOTIFICATION-MIB
CISCO-FLASH-MIB CISCO-VLAN-IFTABLE-RELATIONSHIP-MIB SNMP-PROXY-MIB
CISCO-FTP-CLIENT-MIB CISCO-VLAN-MEMBERSHIP-MIB SNMP-TARGET-MIB
CISCO-IF-EXTENSION-MIB CISCO-VTP-MIB SNMP-USM-MIB
CISCO-IGMP-FILTER-MIB ENTITY-MIB SNMP-VIEW-BASED-ACM-MIB
CISCO-IMAGE-MIB ETHERLIKE-MIB SNMPv2-MIB
CISCO-IP-STAT-MIB HC-RMON-MIB TCP-MIB
CISCO-LAG-MIB IEEE8021-PAE-MIB UDP-MIB
CISCO-LICENSE-MGMT-MIB IEEE8023-LAG-MIB
CISCO-MAC-AUTH-BYPASS-MIB IF-MIB
CISCO-MAC-NOTIFICATION-MIB IP-FORWARD-MIB
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 81
Page 82
Chapter 3 Switch Software Features
Port Mirroring
Layer 3 Routing (Stratix 8300 switch only)
Port mirroring is for advanced users with experience in troubleshooting traffic
and protocol issues on networks.
The port mirroring feature copies (or mirrors) traffic on one port to a monitoring
port where the packet can be captured by a network protocol analyzer tool. Use
port mirroring as a diagnostic tool or debugging feature.
Port mirroring does not affect the switching of network traffic on the monitored
port. You must dedicate a monitoring port for port mirroring use. Except for
traffic that is being copied for the port mirroring session, the monitoring port
does not receive or forward traffic.
Port mirroring can be configured by assigning the Port Mirroring port role on a
switch port by using the Device Manager Web interface. See
the Switch via the Device Manager Web Interface .
The Stratix 8300 Ethernet managed switch uses IP address routing to map
subnetworks (subnets) to an individual VLAN. In some network environments,
VLANs are associated with individual networks or subnetworks. In an IP
network, each subnetwork is mapped to an individual VLAN. Configuring
VLANs helps control the size of the broadcast domain and keeps local traffic
local. However, network devices in different VLANs cannot communicate with
one another without a Layer 3 device to route traffic between the VLAN,
referred to as inter-VLAN routing. You configure one or more Layer 3 switches
to route traffic to the appropriate destination VLAN.
Chapter 4, Manage
Figure 14 shows a basic routing topology.
Figure 14 - Example of Routing Topology
Layer 3 Switch
Switch A is in VLAN 10, and Switch B is in VLAN 20. The Layer 3 switch has an
interface in each VLAN.
When Host A in VLAN 10 needs to communicate with Host B in VLAN 10, it
sends a packet addressed to that host. Switch A forwards the packet directly to
Host B, without sending it to the Layer 3 switch.
When Host A sends a packet to Host C in VLAN 20, Switch A forwards the
packet to the Layer 3 switch, which receives the traffic on the VLAN 10 interface.
The Layer 3 switch checks the routing table, finds the correct outgoing interface,
and forwards the packet on the VLAN 20 interface to Switch B. Switch B
receives the packet and forwards it to Host C.
82 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 83
Switch Software Features Chapter 3
Types of Routing
Stratix 8300 switches can route packets by using these methods.
Table 4 - Routing
Feature Description
Static and connected routing See
Dynamic routing Dynamic routing protocols are used by Layer 3 switches to dynamically calculate the best route for forwarding traffic. There are two
Unicast routing Unicast routing is used for all network processes where a private or unique resource is requested.
Multicast routing In multicast routing, routers create optimal distribution paths for data sent to a multicast destination address spanning tree in real-
Redundant routing Redundant routing localizes the effects of route failures, and reduces control traffic overhead and route reconfiguration time by
IPv6 routing IPv6 network segments, also known as links or subnets, are connected by IPv6 routers, which are devices that pass IPv6 packets from
VRF Lite Virtual Routing and Forwarding (VRF) lets multiple instances of a routing table to coexist within the same router at the same time.
Static and Connected Routing on page 84.
types of dynamic routing protocols:
• Distance-vector protocols
• Link-state protocols
Layer 3 switches using distance-vector protocols maintain routing tables with distance values of networked resources, and periodically
pass these tables to their neighbors. Distance-vector protocols use one or a series of metrics for calculating the best routes. These
protocols are easy to configure and use.
Distance-vector protocols supported by the switch are Routing Information Protocol (RIP), which uses a single distance metric (cost) to
determine the best path and Border Gateway Protocol (BGP), which adds a path vector mechanism. The switch also supports the Open
Shortest Path First (OSPF) link-state protocol and Enhanced IGRP (EIGRP), which adds some link-state routing features to traditional
Interior Gateway Routing Protocol (IGRP) to improve efficiency.
Routers using link-state protocols maintain a complex database of network topology, based on the exchange of link-state
advertisements (LSAs) between routers. LSAs are triggered by an event in the network, which speeds up the convergence time or time
required to respond to these changes. Link-state protocols respond quickly to topology changes, but require greater bandwidth and
more resources than distance-vector protocols
time. Multicast routing protocols supported are PIM (SM, SM, SDM), DVMRP tunneling.
providing a redundant network path. Redundant routing protocols supported are HSRP (Hot Standby Router Protocol) and CEF (Cisco
Express Forwarding).
one network segment to another. EIGRP is the supported protocol.
Because the routing instances are independent, the same or overlapping IP addresses can be used without conflicting with each other.
The simplest form of VRF implementation is VRF Lite. In this implementation, each router within the network participates in the
virtual routing environment in a peer-based fashion.
IMPORTANT
To enable routing in the Stratix 8300 switch, you must change the
SDM template from the default template:
• For static and connected routing, you can apply the Lanbase Routing
template and enable routing via the Device Manager Web interface.
• For other types of routing, you can apply SDM templates and enable
routing via the CLI.
See the following manuals:
• For more information about routing features and how to modify them, see
the Cisco IE3000 Switch Software Configuration Manual, available from
http://www.Cisco.com.
• For information about using the CLI to configure routing, see the Cisco
IE3000 Switch Command-Line Interface Manual, available from
http://www.Cisco.com.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 83
Page 84
Chapter 3 Switch Software Features
Static and Connected Routing
Static and connected routing are implemented both on the Stratix 8000 and
Stratix 8300 switches.
• Static routing—Defines explicit paths between two devices (routers and
switches). You must manually define the route information, including the
destination IP address, destination subnet mask, and next hop router IP
address.
• Connected routing—Enables all devices on any VLAN that use the switch
to communicate with each other if they use the switch as their default
gateway. Connected routing is automatically enabled if you enable static
routing. To disable connected routing and prevent inter-VLAN
communication, you must configure access control lists (ACLs) by using
the CLI.
Enabling static and connected routing is a two-step process within the
Device Manager Web interface:
1. Reallocate switch memory for routing by changing the SDM template
from the default template to the Lanbase Routing template.
2. Enable connected routing only.
or
Alarms
Enable and configure static routing, which enables connected routing by
default.
The switch has two hardware alarm relay contacts on the switch front panel:
• Major alarm relay
When closed, the major alarm relay indicates a dual-mode power supply or
primary temperature alarm.
• Minor alarm relay
When closed, the minor alarm relay indicates these alarm states:
– Link fault
– Port not forwarding
– Port not operating
– Frame Check Sequence (FCS) bit error rate
84 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 85
Switch Software Features Chapter 3
Cryptographic IOS Software (optional)
Cable Diagnostics
Advanced Software Features
The Stratix 8000 and Stratix 8300 cryptographic IOS (available as a separate
catalog number for downloading) provides network security by encrypting
administrator traffic during Telnet and SNMP sessions. The cryptographic IOS
supports all features of the standard IOS, as well as these protocols:
• Secure Shell (SSH) Protocol v2
• SNMPv3
• HTTPS
The Cable Diagnostics feature lets you run a test on each switch port to
determine the integrity of the cable connected to the gigabit ports or the RJ45
(copper) ports. This feature is not available for fiber ports.
The test determines the distance to the break from the switch for each cable with
a plus or minus error value individually listed.
More advanced software features are available, some of which are configured by
the global macro or port roles for typical automation applications described in
this manual.
For information about how to configure features not available in the Device
Manager Web interface or Studio 5000 environment, see the following manuals:
• For more information about these features and how to modify them, see
the Cisco IE3000 Switch Software Configuration Manual, available from
http://www.Cisco.com.
• For information about using the command-line interface for more detailed
configuring of these software features, see the Cisco IE3000 Switch
Command-Line Interface Manual, available from
http://www.Cisco.com.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 85
Page 86
Chapter 3 Switch Software Features
Notes:
86 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 87
Manage the Switch via the
Device Manager Web Interface
Topic Page
Access the Device Manager Web Interface 88
Dashboard Overview 89
Configure Smartports 95
Configure Port Settings 97
Configure Port Thresholds 87
Configure EtherChannels 101
Configure DHCP 103
Configure VLANs 107
Configure Power over Ethernet (PoE) Ports 108
Configure PTP Time Synchronization 111
Enable Static and Connected Routing 114
Configure STP 115
Configure REP 117
Configure Port Security 119
Configure IGMP Snooping 121
Configure SNMP 122
Configure Alarm Settings 123
Configure Alarm Profiles 125
Monitor Trends 127
Monitor Port Statistics 128
Monitor REP Topology 129
Monitor CIP Status 129
Diagnose Cabling Problems 131
View System Log Messages 132
Use Express Setup to Change Switch Settings 133
Manage Users 135
Reallocate Switch Memory for Routing 136
Restart the Switch 137
Upgrade the Switch Firmware 138
Upload and Download Configuration Files 139
Chapter 4
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 87
Page 88
Chapter 4 Manage the Switch via the Device Manager Web Interface
After you complete Express Setup, you can manage the switch by using the
Device Manager Web interface supplied with the switch.
On all windows accessible from the Configure menu, when you save you changes,
the changes are applied to the switch and stored on the CompactFlash card. If
you exit the Device Manager Web interface without clicking Submit, your
changes are not applied.
Access the Device Manager Web Interface
To access the Device Manager Web interface, follow these steps.
1. Launch a web browser on your workstation.
2. Enter the switch IP address in the web browser and click Enter.
3. Enter the user name and password.
88 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 89
Manage the Switch via the Device Manager Web Interface Chapter 4
Dashboard Overview
You can use the dashboard to monitor switch status and performance.
The Dashboard window is similar to the Monitor > Trends window. The
Dashboard window displays the instantaneous status while the Trends window
displays the historical status. By using them together, you can gather the detailed
conditions of the switch and its ports. For information about the Trends window,
see
page 127.
Front Panel View and Status Indicators
The Front Panel view is a graphical display of the front panels of the base switch
and attached switch expansion modules.
The switch components on the Front Panel view are color-coded by status. The
colors help you to quickly see if a fault or an error condition exists. The
system-level status indicators and port-level status indicators shown on the Front
Panel view match those on the physical switch.
Table 5 - System-level Status Indicators
Indicator Status Description
EIP Mod The EIP Mod status indicator shows the status of the switch.
Off Power to the switch is off or is not properly connected.
Solid green The switch is operating properly.
Blinking green The switch is not configured. For example, the switch does not have an IP address configured.
Blinking red The switch has detected a recoverable system fault. Use the System Log to see more details about the problem.
Solid red The switch has detected a non-recoverable system. Use the System Log to see more details about the problem.
Blinking green and red The switch is running its power-on self-test (POST).
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 89
View System Log Messages on page 132.
See
View System Log Messages on page 132.
See
Page 90
Chapter 4 Manage the Switch via the Device Manager Web Interface
Table 5 - System-level Status Indicators (continued)
Indicator Status Description
EIP Net The EIP Net status indicator shows the network status of the switch.
Off Power to the switch is off or is not properly connected.
Solid green The switch has an established CIP connection to one or more attached devices.
Blinking green The switch has an IP address but the switch does not have an established connection to one or more attached
Blinking red One or more connections to attached devices have timed out.
Solid red The switch has detected that its IP address is already in use by another device in the network.
Blinking green and red The switch is running its power-on self-test (POST).
Setup The Configuration mode in which the switch is operating.
Off The switch is configured as a managed switch or the switch is operating as an unmanaged switch.
Blinking green Switch is in the initial Setup mode or is in the Direct Managed mode, or the initial setup is incomplete.
Pwr A and Pwr B The Pwr status indicators show the DC power status.
Off Power to the switch is off or is not properly connected.
Solid green Power is present.
Solid red Power to the switch is not present and the power alarm is on.
devices.
Table 6 - Port-level Status Indicators
Indicator Status Description
Status In this mode, the port status indicators show the status of the ports. This is the default mode.
Off No link
Solid green No activity on link.
Flashing green Link activity.
Solid brown Port has been disabled.
Yellow An error has disabled the port.
Flashing green and
amber
Status Flashing amber Smar tports configuration mismatch on port.
Solid amber Port is faulty, disabled due to an error, or is in an STP-blocked state.
Duplex In this mode, the port status indicators show the Duplex mode (Full-duplex or Half-duplex) of the ports.
The 10/100/1000 ports operate only in Full-duplex mode.
Off No link.
Solid light blue Port is in Half-duplex mode.
Solid green Port is in Full-duplex mode.
Speed In this mode, the port status indicators show the operating speed (10, 100, or 1000 Mbps) of the ports.
Off No link.
Solid light blue 10 Mbps
Solid green 100 Mbps
Flashing green 1000 Mbps
Smartports In this mode, each port image shows the applied por t role.
Faulty link.
90 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 91
Manage the Switch via the Device Manager Web Interface Chapter 4
You can change the port status indicator behavior by choosing a Port mode from
the View list on the Front Panel view.
Move the pointer over a port to display specific information about the port and
its status.
TIP
If you move the pointer over a port that is blinking green and amber, the status
is one of the following:
• Link is faulty.
• Link has collisions.
In either state, the port is receiving and sending traffic.
Note the following:
• The speed and Duplex mode for a port appear only in the pop-up dialog
box when a device is connected to the port.
• For dual-purpose ports, the Type field in the pop-up dialog box displays
10/100/1000BaseTX for the copper uplink port whether or not the port
is active. The Type field also displays either the type of SFP module
installed or Empty if a module is not installed.
• The Smartport type and VLAN type and name appear when Smartport
Port mode is selected.
• The Uptime field shows how long the switch has been operating since it
was last powered on or was restarted. Status is automatically refreshed
every 60 seconds or when you click Refresh. The refresh counter shows the
number of seconds that remain before the next refresh cycle starts.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 91
Page 92
Chapter 4 Manage the Switch via the Device Manager Web Interface
Switch Information
The Switch Information area on the Dashboard displays information about the
switch, as described in the following table.
Field Description
Host Name A descriptive name for this switch. The default name is Switch. You can set this
IP Address The IP address of this switch. You can configure this setting on the
MAC Address The MAC address of this switch. This information cannot be changed.
Product ID The model of this switch. This information cannot be changed.
CIP Revision The version of Common Industrial Protocol (CIP) that is supported on this switch.
CIP Serial Number The CIP serial number. This information cannot be changed.
Serial Number The serial number of this switch. This information cannot be changed.
Version ID The hardware version. This information cannot be changed.
Software The version of IOS that this switch is running. This information is updated when
Contact The person who is the administrative contact for this switch. You can set this
Location The physical location of this switch. You can set this parameter on the
parameter on the Admin > Express Setup window.
Admin > Express Setup window.
This information cannot be changed.
you upgrade the switch firmware.
parameter on the Configure > SNMP window.
Configure > SNMP window.
92 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 93
Manage the Switch via the Device Manager Web Interface Chapter 4
Switch Health
You can use the health gauges to monitor the switch.
CPU Utilization
The CPU Utilization gauge shows the percentage of CPU processing power that
is in use on the switch. Data is collected at each 60-second system refresh. The
gauge changes as the switch experiences the network activity from devices
sending data through the network. As network activity increases, so does
contention between devices to send data through the network.
As you monitor utilization on the switch, note whether the percentage of usage is
what you expect during that given time of network activity. If utilization is high
when you expect it to be low, perhaps a problem exists. As you monitor the
switch, note if the bandwidth utilization is consistently high. This can mean there
is congestion in the network. If the switch reaches its maximum bandwidth
(above 90% utilization) and its buffers become full, it begins to discard the data
packets that it receives. Some packet loss in the network is not considered
unusual, and the switch is configured to help recover lost packets, such as by
signaling to other devices to resend data. However, excessive packet loss can create
packet errors, which can degrade overall network performance.
To reduce congestion, consider segmenting the network into subnetworks that
are connected by other switches or routers. Look for other causes, such as faulty
devices or connections, that can also increase bandwidth utilization on the
switch.
Temperature
The Temperature gauge shows the internal temperature of the switch. For
information about the switch temperature range and the operating environment
guidelines, see the Stratix Ethernet Device Specifications Technical Data,
publication
1783-TD001.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 93
Page 94
Chapter 4 Manage the Switch via the Device Manager Web Interface
Port Utilization
You can choose which types of network traffic to display and in what format:
• Types of traffic—By default, all traffic is displayed for all interfaces. Click
• Formats—Click the buttons below the display area to view the data in
• Chart details—When displaying a chart, position your mouse pointer over
As you monitor the usage on the ports, note whether the percentage is what you
expect during that given time of network activity. If usage is high when you
expect it to be low, a problem can exist. Bandwidth allocation can also be based
on whether the connection is operating in half-duplex or full-duplex mode.
These are some of the reasons for errors received on or sent from the switch ports:
• Bad cable connection
• Defective ports
• Software problems
• Driver problems
the links above the display area to display all traffic, errors, received traffic,
or transmitted traffic.
Chart Mode or Grid Mode.
a bar or a point on the chart to view the data.
Data is collected at each 60-second system refresh.
Refer to
Monitor Trends on page 127 for a graph to view per-port patterns over
incremental instances in time (by 60 seconds, 1 hour, 1 day, or 1 week).
Refer to
Monitor Port Statistics on page 128 for details on the specific port errors
detected on each port.
94 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 95
Manage the Switch via the Device Manager Web Interface Chapter 4
Configure Smartports
To assign Smartport roles to switch ports, from the Configure menu, choose
Smartports.
Follow these guidelines when using Smartport roles:
• Before using Smartports, decide which switch port to connect to which
device type.
• Before attaching a device to the port or reconnecting devices that have
been moved, verify which Smartports role is applied to a port.
IMPORTANT
• When you attempt to apply a port role to a routed port on the Smartports
page, this error message appears:
A port role cannot be configured on a routed port.
To apply a Smartport role, follow this procedure.
1. From the Configure menu, choose Smartports.
2. Select a port.
We recommend that you do not change port settings after enabling a
Smartports role on a port. Any port setting changes can alter the
effectiveness of the Smartports role.
3. From the Role column's pull-down menu, choose a Smartport role.
4. Click Save.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 95
Page 96
Chapter 4 Manage the Switch via the Device Manager Web Interface
Customize Smartport Role Attributes
Each switch port is a member of a virtual local-area network (VLAN). Devices
attached to switch ports that belong to the same VLAN share the same data
broadcasts and system resources. Communication between VLANs requires a
Layer 3 device, such as a router or a Layer 3 switch.
Depending on your network requirements, You can assign all ports to the default
VLAN. In a small network, one VLAN can be sufficient.
Before changing the VLAN memberships, understand what a VLAN is, its
purpose, and how to create a VLAN.
information about VLANs.
To customize a smartport role attribute for a port, follow this procedure.
1. From the Configure menu, choose Smartports.
2. Select a port.
3. Click Edit.
Refer to VLANs on page 66 for more
4. Modify the fields on the Smartports: Customize window as needed.
5. Click Submit.
96 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 97
Manage the Switch via the Device Manager Web Interface Chapter 4
Configure Port Settings
The basic port settings determine how data is received and sent between the
switch and the attached device. You can change these settings to fit your network
needs and to troubleshoot network problems. The settings on a switch port must
be compatible with the port settings of the connected device.
Validation blocks you from configuring port roles for a routed port.
To change basic port settings, follow this procedure.
1. From the Configure menu, choose Port Settings.
2. Click the radio button next to the port to configure.
3. Click Edit.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 97
Page 98
Chapter 4 Manage the Switch via the Device Manager Web Interface
4. Modify the fields on the Edit Physical Port window.
Table 7 - Edit Physical Port Fields
Field Description
Port Name The number of the switch port, including the port type (such as Fa for Fast Ethernet and Gi for Gigabit Ethernet), the base switch or the switch expansion
Description The description of the switch port. The limit is 18 characters.
Administrative The state of the switch port. The default is Enable. We recommend disabling the port if the port is not in use and is not attached to a device.
Port Status The state of the switch port. The default is Enable. We recommend disabling the port if the port is not in use and is not attached to a device.
Speed The operating speed of the switch port. You can choose Auto (autonegotiation) if the connected device can negotiate the link speed with the switch port.
Duplex The Duplex mode of the switch port is one of the following:
module number (1, 2, or 3), and the specific port number:
• Gi/1 is the gigabit port 1 of the base switch.
• Fa1/1 is Fast Ethernet port 1 on the base switch.
• Fa2/1 is Fast Ethernet port 1 on the first switch expansion module.
• Fa3/1 is Fast Ethernet port 1 on the second switch expansion module.
We recommend that you provide a port description to help identify the port during monitoring and troubleshooting. The description can be the location of
the connected device or the name of the person using the connected device.
An example of when to change this setting is during troubleshooting. You can troubleshoot a suspected unauthorized connection by manually disabling
the port.
An example of when to change this setting is during troubleshooting. You can troubleshoot a suspected unauthorized connection by manually disabling
the port.
The default is Auto.
We recommend that you use the default so that the speed setting on the switch port automatically matches the setting on the connected device. Change
the switch port speed if the connected device requires a specific speed.
An example of when to change this setting is during troubleshooting. If you are troubleshooting a connectivity problem, you can change this setting to
verify if the switch port and connected device have a speed mismatch.
• Auto (autonegotiation) if the connected device can negotiate with the switch.
• Full (full-duplex) if both devices can send data at the same time.
• Half (half-duplex) if one or both devices cannot send data at the same time.
The default is Auto.
On Gigabit Ethernet ports only, you cannot set the port to Half-duplex if the port speed is set to Auto.
We recommend that you use the default so that the duplex setting on the switch port automatically matches the setting on the connected device. Change
the Duplex mode on the switch port if the connected device requires a specific mode.
An example of when to change this setting is during troubleshooting. If you are troubleshooting a connectivity problem, you can change this setting to
verify if the switch port and connected device have a duplex mismatch.
98 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Page 99
Manage the Switch via the Device Manager Web Interface Chapter 4
Table 7 - Edit Physical Port Fields (continued)
Field Description
Auto MDIX Whether the automatic medium-dependent interface crossover (auto-MDIX) feature can automatically detect the required cable connection type
Media Type The active port type (either the RJ45 por t or the SFP module port) of a dual-purpose uplink port.
Administrative Mode Displays one of the following administrative modes:
Access VLAN The VLAN that an interface belongs to and carries traffic for, when the link is configured as or is acting as a nontrunking interface.
Allowed VLAN The VLAN or VLANs that this interface handles traffic for, when the link is configured as or is dynamically acting as a trunking interface.
Native VLAN The VLAN that is used to transport untagged packets.
(straight-through or crossover) and configure the connection appropriately. The default is Enable.
This setting is not available on the SFP module ports.
By default, the switch detects whether the RJ45 port or SFP module port of a dual-purpose port is connected and uses the por t accordingly. Only one port
can be active at a time. If both ports are connected, the SFP module port has priority. You cannot change the priority setting.
Choose from the following media types:
• SFP if the SFP module port must be active. If you select this option, the speed and duplex displays the current settings, and auto-MDIX displays N/A.
• RJ45 if the RJ45 port must be ac tive. If you select this option, you can set the port speed, duplex, and auto-mdix values.
• Auto (autonegotiation) if either port can be active. If you select this option, the speed and duplex is set to auto, and auto-MDIX displays N/A.
The default is Auto.
• Access—The interface is in permanent nontrunking mode and negotiates to convert the neighboring link into a nontrunk link even if the neighboring
interface is a trunk interface. If you choose this option, also choose an Access VLAN. An access port belongs to and carries the traffic of only one VLAN
(unless it is configured as a voice VLAN port).
• Trunk—The interface is in permanent trunking mode and negotiates to convert the neighboring link into a trunk link even if the neighboring interface
is not a trunk interface. If you choose this option, also choose whether to allow All VLANs or specified VLAN IDs
• Dynamic Auto—The interface converts the link to a trunk link if the neighboring interface is set to Trunk or Desirable mode. This mode is the default
setting. If you choose this option, specify an Access VLAN to use when the link is in Access mode. Also specify whether to allow All VLANs or specified
VLAN IDs when the link is in Trunk mode.
• Dynamic Desirable—The interface converts the link to a trunk link if the neighboring interface is set to Trunk, D ynamic Desirable, or Auto mode. If you
choose this option, specify an Access VLAN to use when the link is in access mode. Also choose whether to allow All VLANs or specified VLAN IDs when
the link is in Trunk mode.
To allow traffic on all available VLANs, click All VLANs.
To limit traffic to specific VLANs, click VLAN IDs and enter the VLAN numbers.
Configure Ports to Use QuickConnect Technology
EtherNet/IP QuickConnect technology enables EtherNet/IP devices to quickly
power up and join an EtherNet/IP network. The Stratix 8000 and Stratix 8300
switches can be an integral part of a network configuration that uses
QuickConnect technology. To use the switches in a network that supports
QuickConnect technology, you must apply certain port settings to the switch.
For information about configuring the switch and applying port settings for
QuickConnect technology, refer to the Ethernet QuickConnect Application
Technique, publication
ENET-AT001.
Rockwell Automation Publication 1783-UM003I-EN-P - March 2014 99
Page 100
Chapter 4 Manage the Switch via the Device Manager Web Interface
Configure Port Thresholds
Configure port thresholds to prevent traffic on a LAN from being disrupted by a
broadcast, multicast, or unicast storm on one of the physical interfaces.
To configure port thresholds, from the Configure menu, choose Port Thresholds.
Table 8 - Port Threshold Fields
Field Description
Incoming
Unicast For each port, do the following.
Multicast
Broadcast
Outgoing
All Traffic For each port, do the following.
1. Check or clear the Enable checkbox.
2. Type the threshold value.
3. Choose one of these units:
– PPS (O…10 billion)
– BPS (O…10 billion)
– % (0…100)
1. Check or clear the Enable checkbox.
2. Type the threshold value.
3. Click Save.
100 Rockwell Automation Publication 1783-UM003I-EN-P - March 2014
Loading...