From SMC’s Tiger line of feature-rich workgroup LAN solutions
38 Tesla
Irvine, CA 92618
Phone: (949) 679-8000
February 2004
Information furnished by SMC Networks, Inc. (SMC) is believed to be accurate and reliable. However, no
responsibility is assumed by SMC for its use, nor for any infringements of patents or other rights of third
parties which may result from its use. No license is granted by implication or otherwise under any patent or
patent rights of SMC. SMC reserves the right to change specifications at any time without notice.
SMC is a registered trademark; and TigerStack and TigerSwitch are trademarks of SMC Networks, Inc.
Other product and company names are trademarks or registered trademarks of their respective holders.
This switch provides a broad range of features for switching. It includes a
management agent that allows you to configure the features listed in this
manual. The default configuration can be used for most of the features
provided by this switch. However, there are many options that you should
configure to maximize the switch’s performance for your particular
network environment.
Key Features
FeatureDescription
AuthenticationConsole, Telnet, Web – User name / password
SNMP – Community strings
Configuration
Backup / Restore
Port Configuration Speed, duplex mode and flow control
Port MirroringOne or more ports mirrored to single analysis port
Static AddressUp to 8K MAC addresses in the forwarding table
TrunksStatic trunks or dynamic Link Aggregation Control Protocol
Spanning Tree
Protocol
Virtual LANsUp to 128
Traffic
Prioritization
Multicast Filtering Supports IGMP snooping and query
Backup to TFTP server
Supported
Supports two priority queues; queuing based on First-In
First-Out (FIFO), high queue before low queue, or Weighted
Round Robin (WRR)
1
1-1
I
NTRODUCTION
Description of Software Features
IEEE 802.1D Bridge – The switch supports IEEE 802.1D transparent
bridging. The address table facilitates data switching by learning addresses,
and then filtering or forwarding traffic based on this information. The
address table supports up to 8K addresses.
Store-and-Forward Switching – The switch copies each frame into
its memory before forwarding them to another port. This ensures that all
frames are a standard Ethernet size and have been verified for accuracy
with the cyclic redundancy check (CRC). This prevents bad frames from
entering the network and wasting bandwidth.
To avoid dropping frames on congested ports, the switch provides 2Mbit
for frame buffering. This buffer can queue packets awaiting transmission
on congested networks.
Spanning Tree Protocol – The switch supports IEEE 802.1D
Spanning Tree Protocol. This protocol adds a level of fault tolerance by
allowing two or more redundant connections to be created between a pair
of LAN segments. When there are multiple physical paths between
segments, the protocol will choose a single path and disable all others to
ensure that only one route exists between any two stations on the network.
This prevents the creation of network loops. However, if the chosen path
should fail for any reason, an alternate path will be activated to maintain
the connection.
VLANs – This switch supports up to 128 VLANs. A Virtual LAN is a
collection of network nodes that share the same collision domain
regardless of their physical location or connection point in the network. By
segmenting your network into VLANs, you can:
•Eliminate broadcast storms which severely degrade performance in a
flat network.
1-2
D
ESCRIPTION OF SOFTWARE FEATURES
•Simplify network management for node changes/moves by remotely
configuring VLAN membership for any port, rather than having to
manually change the network connection.
•Provide data security by restricting all traffic to the originating VLAN.
Port Mirroring – The switch can unobtrusively mirror traffic from any
port to a monitor port. You can then attach a protocol analyzer or RMON
probe to this port to perform traffic analysis and verify connection
integrity.
Port Trunking – Ports can be combined into an aggregate connection.
Trunks can be manually set up or dynamically configured using IEEE
802.3ad Link Aggregation Control Protocol (LACP). The additional ports
dramatically increase the throughput across any connection, and provide
redundancy by taking over the load if a port in the trunk should fail. The
switch supports four trunks, with up to eight up-link ports per trunk.
Broadcast Suppression – Broadcast suppression prevents broadcast
traffic from overwhelming the network. When enabled on a port, the level
of broadcast traffic passing through the port is restricted. If broadcast
traffic rises above a pre-defined threshold, it will be throttled until the level
falls back beneath the threshold.
Flow Control – Flow control reduces traffic during periods of
congestion and prevent packets from being dropped when port buffers
overflow. The switch supports flow control based on the IEEE 802.3x
standard. By default, flow control is enabled on all ports.
Traffic Priority – This switch provides Quality of Service (QoS) by
prioritizing each packet based on the required level of service, using two
priority queues, and processing the high-priority queue before the lowpriority queue, or using Weighted Round Robin Queuing (WRR). It uses
IEEE 802.1p and 802.1Q tags to prioritize incoming traffic based on input
from the end-station application. These functions can be used to provide
independent priorities for delay-sensitive data and best-effort data.
1-3
I
NTRODUCTION
Multicast Filtering – Specific multicast traffic can be assigned to its
own VLAN to ensure that it does not interfere with normal network traffic
and to guarantee real-time delivery by setting the required priority level for
the designated VLAN. The switch uses IGMP Snooping and Query to
manage multicast group registration.
System Defaults
The following table lists some of the basic system defaults.
FunctionParameterDefault
IP SettingsIP Address0.0.0.0
Subnet Mask0.0.0.0
Default Gateway0.0.0.0
SNMPCommunity Strings“public” (read only)
TrapsAuthentication traps
Link-up-down events
SecurityConsole, Telnet, WebUsername “admin”
Address LearningEnabled (all ports)
Console Port
Connection
Port StatusAdmin StatusEnabled
Link
Aggregation
Baud Rate9600
Data bits8
Stop bits1
Paritynone
Local Console Timeout1 minute
Auto-negotiationEnabled
Flow ControlEnabled
Static TrunksNone
LACP (all ports)Disabled
Password “admin”
1-4
S
YSTEM DEFAULTS
FunctionParameterDefault
Spanning Tree
Protocol
Address TableAging Time300 seconds
Multicast
Filtering
Virtual LANsVLAN StatusDisabled
Class of Service Weighted Round RobinWeight: 2 high, 1 low
Broadcast
Storm
Protection
StatusEnabled
(Defaults: All values based on
IEEE 802.1D)
Forwarding and FilteringStatic addresses: none
Filter addresses: none
IGMP SnoopingDisabled
IGMP QueryAuto-negotiation
Default VLAN1
PVID1
Ingress Filtering (Rule 1)
- Tag must match PVID
Ingress Filtering (Rule 2)
- Acceptable frame types
GVRP Disabled
StatusDisabled (all ports)
Enabled
All
Queues: 7-4 high, 3-0 low
Note: To reset the switch defaults, use the Reset System command
(page 3-45).
1-5
I
NTRODUCTION
1-6
C
HAPTER
I
NITIAL
C
ONFIGURATION
Connecting to the Switch
Configuration Options
The switch includes a built-in network management agent. The agent
offers a variety of management options, including SNMP, RMON, and a
Web-based interface. A PC may also be connected directly to the switch
for configuration and monitoring via the console menu.
Note: The IP address for this switch is unassigned by default. To change
this address, see “Setting an IP Address” on page 2-5.
The switch’s HTTP Web agent allows you to configure switch parameters,
monitor port connections, and display statistics using a standard Web
browser such as Netscape Navigator version 6.2 and higher or Microsoft
IE version 5.0 and higher. The switch’s Web management interface can be
accessed from any computer attached to the network.
2
The switch’s management agent is based on SNMP (Simple Network
Management Protocol). This SNMP agent permits the switch to be
managed from any system in the network using management software.
The console menu can be accessed by a direct connection to the RS-232
serial console port on the switch, or remotely by a Telnet connection over
the network.
The switch’s console menu, Web Interface, and SNMP agent allow you to
perform the following management functions:
•Set user name and password
•Set an IP interface for management access (console menu only)
2-1
I
NITIAL CONFIGURATION
•Configure SNMP parameters
•Enable/disable any Ethernet port
•Set the speed/duplex mode for any port
•Configure up to 128 IEEE 802.1Q VLANs
•Enable GVRP automatic VLAN registration
•Configure IGMP multicast filtering
•Upload and download system firmware via TFTP
•Upload and download switch configuration files via TFTP
•Configure Spanning Tree parameters
•Configure Class of Service (CoS) priority queuing
•Configure up to four static or LACP trunks
•Enable port mirroring
•Prevent broadcast storms by limiting bandwidth for broadcast traffic
•Display system information and statistics
Required Connections
The switch provides an RS-232 serial port that enables a connection to a
PC or terminal for monitoring and configuring the switch. A null-modem
console cable is provided with the switch.
Attach a VT100-compatible terminal, or a PC running a terminal
emulation program to the switch. You can use the console cable provided
with this package, or use a null-modem cable that complies with the wiring
assignments shown in the Installation Guide.
To connect a terminal to the console port, complete the following steps:
1. Connect the console cable to the serial port on a terminal, or a PC
running terminal emulation software, and tighten the captive retaining
screws on the DB-9 connector.
2. Connect the other end of the cable to the RS-232 serial port on the
switch.
3. Make sure the terminal emulation software is set as follows:
2-2
C
ONNECTING TO THE SWITCH
•Select the appropriate serial port (COM port 1 or COM port 2).
•Set the data rate to 9600 baud.
•Set the data format to 8 data bits, 1 stop bit, and no parity.
•Set flow control to none.
•Set the emulation mode to VT100.
Note: Once you have set up the terminal correctly, the console login
screen will be displayed.
Remote Connections
Prior to accessing the switch’s onboard agent via a network connection,
you must first configure it with a valid IP address, subnet mask, and default
gateway using a console connection.
The IP address for this switch is unassigned by default. To manually
configure this address to one that matches your specific network
requirements, see “Setting an IP Address” on page 2-5.
After configuring the switch’s IP parameters, you can access the onboard
configuration program from anywhere within the attached network. The
onboard configuration program can be accessed using Telnet from any
computer attached to the network. The switch can also be managed by any
computer using a Web browser (Internet Explorer 5.0 or above, or
Netscape Navigator 6.2 or above), or from a network computer using
network management software.
Notes: 1. Only one management session is supported.
2. The onboard program only provides access to basic
configuration functions. To access the full range of SNMP
management functions, you must use SNMP-based network
management software.
2-3
I
NITIAL CONFIGURATION
Basic Configuration
Console Connection
Access to the console menu is controlled by a user name and password.
The default setting is “admin” for both the user name and password. To
log into the console menu, perform these steps:
1. Enter “admin” at the user name prompt.
2. Enter “admin” at the password prompt.
(The password characters are not displayed on the console screen.)
The session is opened and the Main Menu displays.
Setting Passwords
Note: If this is your first time to log in, you should define a new user
name and password, record them and put them in a safe place.
A user name or password can consist of up to 15 alphanumeric characters
and are not case sensitive. To prevent unauthorized access to the switch,
set the user name and password as follows:
1. Open the console interface with the default user name and password
“admin” to access the Main Menu.
2. Navigate from the Main Menu to –
Switch Static Configuration, and then
Administration Configuration.
3. Select “Change Username” and press <Enter>.
•Select <Edit>, type in the new user name, and press <Enter>.
•Select <Save> and press Enter.
2-4
B
ASIC CONFIGURATION
4. Select “Change Password” and press <Enter>.
•Type the old password and press <Enter>.
•Type the new password and press <Enter>.
•Then re-enter the new password for verification, press <Enter>.
Setting an IP Address
You must establish IP address information for the switch to obtain
management access through the network. You can manually assign an IP
address to the switch. You may also need to specify a default gateway that
resides between this device and management stations that exist on another
network segment. Valid IP addresses consist of four decimal numbers, 0 to
255, separated by periods. Anything outside this format will not be
accepted by the configuration program.
Note: The IP address for this switch is unassigned by default.
Before you can assign an IP address to the switch, you must obtain the
following information from your network administrator:
•IP address for the switch
•Network mask for this network
•Default gateway for the network
2-5
I
NITIAL CONFIGURATION
To assign an IP address to the switch, complete the following steps:
1. Navigate from the Main Menu to –
Switch Static Configuration,
Administration Configuration, and then
IP Configuration.
2. Select <Edit>, type in the IP Address, Subnet Mask, and Gateway.
Press <Enter> after each item. Press <Ctrl-A> to return to the action
bar at the bottom of the screen. Select <Save> and press any key to
continue. (The IP addresses shown below are merely examples.)
Tiger Switch 10/100 6709FL2 : IP Configuration
===========================
IP Address : 192.168.16.1
Subnet Mask : 255.255.255.0
Gateway : 192.168.16.254
actions-> <Edit> <Save> <Quit>
Select the action menu.
Tab=Next Item BackSpace=Previous Item Quit=Previous menu Enter=Select Item
3. Navigate back to the Main Menu, go to Reboot Switch menu, select
the “Restart” command, and press <Enter>.
2-6
B
ASIC CONFIGURATION
Enabling SNMP Management Access
The switch can be configured to accept management commands from
Simple Network Management Protocol (SNMP) applications such as
SMC’s EliteView. You also can configure the switch to generate SNMP
traps.
When SNMP management stations send requests to the switch (either to
return information or to set a parameter), the switch provides the
requested data or sets the specified parameter. The switch can also be
configured to send information to SNMP managers (without being
requested by the managers) through trap messages that inform the
manager that certain events have occurred.
Community Strings
Community strings are used to control management access to SNMP
stations, as well as to authorize SNMP stations to receive trap messages
from the switch. You therefore need to assign community strings to
specified users or user groups, and set the access level.
The default string is “public” with read-only access. Authorized
management stations are only able to retrieve MIB objects.
Note: If you do not intend to use SNMP, it is recommended that you
delete all community strings. If there are no community strings,
then SNMP management access to the switch is disabled.
To configure a community string, complete the following steps:
1. Navigate from the Main Menu to –
Protocol Related Configuration,
SNMP, and then
Community Strings.
2. Click <Add>, then <Edit>.
3. Type in the Community Name, and press <Enter>.
2-7
I
NITIAL CONFIGURATION
4. Use the scroll-bar to toggle the Write Access Field to “Restricted” or
“Unrestricted.”
5. Press <Ctrl-A> to return to the action bar at the bottom of the screen.
Select <Save> and press any key to continue. (The community string
shown below is an example.)
Tiger Switch 10/100 6709FL2 : Add SNMP Community
===========================
Community Name :private
Write Access :Unrestricted
actions-> <Edit> <Save> <Quit>
Select the action menu.
Tab=Next Item BackSpace=Previous Item Quit=Previous menu Enter=Select Item
2-8
C
HAPTER
C
ONFIGURING THE
S
WITCH
Using the Web Interface
This switch provides an embedded HTTP Web agent. Using a Web
browser you can configure the switch and view statistics to monitor
network activity. The Web agent can be accessed by any computer on the
network using a standard Web browser (Internet Explorer 5.0 or above, or
Netscape Navigator 6.2 or above.)
Note: You can also use the console menu to manage the switch over a
serial connection to the console port or via Telnet.For more
information on using the console menu, refer to Chapter 4,
“Console Interface.”
Prior to accessing the switch from a Web browser, be sure you have first
performed the following tasks:
1. Configure the switch with a valid IP address, subnet mask, and default
gateway using an out-of-band serial connection. (See“Setting an IP
Address” on page 2-5.)
3
2. Set a user name and password. Access to the Web agent is controlled
by the same user name and password as the console configuration
program. (See “Setting Passwords” on page 2-4.)
3. After you enter a user name and password, you will have access to the
system configuration program.
Note: You are allowed three attempts to enter the correct password; on
the third failed attempt the current connection is terminated.
3-1
C
ONFIGURING THE SWITCH
Navigating the Web Browser Interface
To access the Web-browser interface you must first enter a user name and
password. The administrator has Read/Write access to all configuration
parameters and statistics. The default user name and password for the
administrator is “admin.”
Home Page
When your Web browser connects with the switch’s Web agent, the home
page is displayed as shown below. The interface displays the Main Menu on
the left side of the screen and the selected menu on the right side. The
Main Menu links are used to navigate to other menus, and display
configuration parameters and statistics.
3-2
Configuration Options
Configurable parameters have a dialog box or a drop-down list. Once a
configuration change has been made on a page, be sure to click on the
“Apply” button to confirm the new setting. The following table
summarizes the Web page configuration buttons.
ButtonAction
ApplySets specified values to the system for the displayed page.
DefaultCancels specified values and restores current values prior
to pressing “Apply.”
ResetImmediately updates values for the current page.
Notes: 1. To ensure proper screen refresh, be sure that Internet
Explorer 5.x is configured as follows: Under the menu “Tools
/ Internet Options / General / Temporary Internet Files /
Settings,” the setting for item “Check for newer versions of
stored pages” should be “Every visit to the page.”
2. When using Internet Explorer 5.0, you may have to manually
refresh the screen after making configuration changes by
pressing the browser’s refresh button.
P
ANEL DISPLAY
Panel Display
The Web agent displays an image of the switch’s ports, indicating whether
each link is up or down. Clicking on the image of a port opens the Port
Configuration page as described on page 3-12.
3-3
C
ONFIGURING THE SWITCH
Main Menu
Using the onboard Web agent, you can define system parameters, manage
and control the switch, or monitor network conditions. The following
table briefly describes the selections available from this program.
MenuDescriptionPage
HomeMain Menu3-2
Port StatusDisplays port connection status3-10
Port StatisticsLists Ethernet statistics3-12
Administrator
Switch Settings
BasicShows system model number, MAC address,
hardware version, and firmware version
AdvancedProvides settings for address aging time,
maximum queue delay, broadcast storm
control, priority queue options, and global
settings for STP, IGMP, and VLANs
Console Port InfoDisplays settings for the console port3-9
Port Controls3-10
Port ControlsConfigures connection settings including
speed, duplex mode, and flow control
Port StatusDisplays the current connection settings3-10
Trunking
Aggregator SettingConfigures static or dynamic trunks3-17
Aggregator
Information
State ActivityActively or passively configures a trunk3-20
Filter Database
IGMP SnoopingDisplays active multicast groups, VLAN
Static MAC
Addresses
Port SecurityEnables and disables address learning3-25
MAC FilteringFilters specified addresses3-26
Shows trunks and associated ports, and
detailed information for dynamic links
identifier, and associated ports
Sets entries for address, port number, and
VLAN identifier
3-6
3-6
3-11
3-18
3-21
3-24
3-4
M
AIN MENU
MenuDescriptionPage
VLAN Configuration3-27
BasicConfigures VLAN groups, including name,
Port VIDSets port VID and ingress filters3-32
Spanning TreeConfigures global bridge and port settings
Port SnifferSets the source and target ports for mirroring3-39
SNMP3-40
System Options Provides basic system description, including
Community Strings Configures community strings3-40
Trap Managers Sets trap management stations3-41
Security ManagerAssigns a user name and password3-42
TFTP Update FirmwareDownloads a new code image3-43
Configuration Backup3-44
TFTP Restore
Configuration
TFTP Backup
Configuration
Reset SystemResets switch to the default configuration3-45
RebootReboots the switch3-45
identifier, and if limited to a specific protocol
for STP; also displays current port status
contact information
Restores configuration settings3-44
Backs up configuration settings3-44
3-28
3-29
3-34
3-40
3-5
C
ONFIGURING THE SWITCH
Basic System Information
Use the Switch Settings page to display basic information on the switch,
including hardware/firmware version numbers for the main board and
management software.
Field Attributes
• Description – Switch model number.
• MAC Address – The physical layer address for this switch.
• Firmware Version – Version number of runtime code.
• Hardware Version – Hardware version of the main board.
• Default config value version – Default configuration version.
Web – Click Switch Settings
=>
Basic.
Global Switch Settings
Use the Switch Settings, Advanced menu to configure address aging,
packet transmit delay, and broadcast storm control.
Command Usage
• Aging Time – The switch stores the addresses of known devices. This
information is used to route traffic directly between the inbound and
outbound ports. The addresses are learned by monitoring traffic, and
stored in the dynamic address table. You can set the aging time after
which inactive entries are removed.
• Transmit Delay Bound – Sets the maximum queuing delay.
3-6
G
LOBAL SWITCH SETTINGS
• Broadcast Storm Control – Broadcast storms may occur when a
device on your network is malfunctioning, or if application programs are
not well designed or properly configured. If there is too much broadcast
traffic on your network, performance can be severely degraded or
everything can come to a complete halt. You can protect your network
from broadcast storms by setting a maximum threshold for broadcast
traffic.
Field Attributes
• MAC Table Address Entry Age-Out Time – The time after which
a learned entry is discarded if no new traffic is seen from that address.
(Range: 300-765 seconds; Default: 300 seconds)
• Max bridge transmit delay bound control – Limits the time
packets can be queued in the switch. If enabled, packets queued beyond
the specified time will be dropped. (Range: OFF, 1, 2, 4 seconds;
Default: OFF)
• Broadcast Storm Filter Mode – The percentage of a port’s total
bandwidth used by broadcast traffic. When broadcast traffic rises above
the specified threshold, broadcast packets exceeding that threshold will
then be dropped. (Range: OFF, 5, 10, 15, 20, 25%; Default: OFF)
Web – Click Administrator
for the aging time, transmit delay bound, and broadcast storm filter
threshold, then click Apply.
=>
Switch Settings=>Advanced. Specify values
3-7
C
ONFIGURING THE SWITCH
Class of Service Configuration
Class of Service (CoS) allows you to specify which data packets have
greater precedence when traffic is buffered in the switch due to
congestion. This switch supports CoS with two priority queues for each
port. Data packets in a port’s high-priority queue are transmitted before
those in the lower-priority queue.
You can set the method used to process priority traffic (i.e., first-in
first-out, all high before low, or weighted round-robin), and also map the
frame priority tags (i.e., 0 - 7) to the high or low priority queues.
Field Attributes
• First Come First Served – Packets are processed first-in first-out.
• All High before Low – All packets in the high-priority queue are
processed before any packets in the low-priority queue.
• Weighted Round Robin – Sets the preference given to packets in the
high-priority queue. This specifies the number of high-priority packets
sent before one low-priority packet is sent. (Range: 1-7; Default: 2)
• Enable Delay Bound – Limits the queuing time for low-priority
packets. Any low-priority packets that exceed the delay bound will be
sent. Note that the “Max bridge transmit delay bound control” must be
enabled (page 3-6) for the Enable Delay Bound to function.
(Range: 0-255 ms; Default: 0 ms)
• QoS Policy (High Priority Levels) – The default priority levels are
assigned according to recommendations in the IEEE 802.1p standard.
However, you can map the priority levels to the switch’s output queues
in any way that benefits application traffic for your own network.
(Range: Level 0 - 7; Default: Level 4 - 7)
Web – Click Administrator
priority method (First Come First Serve, All High before Low, or WRR),
set the high-priority queue weight preference when using WRR, set a delay
=>
Switch Settings=>Advanced. Select the
3-8
Loading...
+ 112 hidden pages
You need points to download manuals.
1 point = 1 manual.
You can buy points or you can get point for every manual you upload.