Smc 6709FL2 Management Guide

TigerSwitch 10/100
9-Port Fast Ethernet Switch
8 10BASE-T/100BASE-TX ports, 1 100BASE-FX
MMF port
1.8 Gbps aggregate bandwidth
Spanning Tree Protocol
Port mirroring for non-intrusive analysis
QoS support with two priority queues
IP multicasting with IGMP snooping
Security filtering based on MAC addresses
Manageable via console, Web, SNMP/RMON
Management Guide
SMC6709FL2
TigerSwitch 10/100 Management Guide
From SMC’s Tiger line of feature-rich workgroup LAN solutions
38 Tesla Irvine, CA 92618 Phone: (949) 679-8000
February 2004
Information furnished by SMC Networks, Inc. (SMC) is believed to be accurate and reliable. However, no responsibility is assumed by SMC for its use, nor for any infringements of patents or other rights of third parties which may result from its use. No license is granted by implication or otherwise under any patent or patent rights of SMC. SMC reserves the right to change specifications at any time without notice.
Copyright © 2004 by
38 Tesla
Irvine, CA 92618
All rights reserved.
Trademarks:
SMC is a registered trademark; and TigerStack and TigerSwitch are trademarks of SMC Networks, Inc. Other product and company names are trademarks or registered trademarks of their respective holders.
C
ONTENTS
1 Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-1
Key Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-1
Description of Software Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-2
System Defaults . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-4
2 Initial Configuration . . . . . . . . . . . . . . . . . . . . . . 2-1
Connecting to the Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-1
Configuration Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-1
Required Connections . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-2
Remote Connections . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-3
Basic Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-4
Console Connection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-4
Setting Passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-4
Setting an IP Address . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-5
Enabling SNMP Management Access . . . . . . . . . . . . . . . . . . . . . 2-7
Community Strings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-7
3 Configuring the Switch . . . . . . . . . . . . . . . . . . . . 3-1
Using the Web Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-1
Navigating the Web Browser Interface . . . . . . . . . . . . . . . . . . . . . . . . . . 3-2
Home Page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-2
Configuration Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-3
Panel Display . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-3
Main Menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-4
Basic System Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-6
Global Switch Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-6
Class of Service Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-8
Console Port Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-9
Port Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-10
Displaying Connection Status . . . . . . . . . . . . . . . . . . . . . . . . . . 3-10
Configuring Interface Connections . . . . . . . . . . . . . . . . . . . . . . 3-11
Showing Port Statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-12
Trunk Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-13
Configuring Static Trunks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-14
Configuring Dynamic Trunks . . . . . . . . . . . . . . . . . . . . . . . . . . 3-16
Aggregator Setting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-17
v
C
ONTENTS
Aggregator Information . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-18
State Activity . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-20
Forwarding and Filtering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-21
Configuring Multicast Filtering . . . . . . . . . . . . . . . . . . . . . . . . . 3-21
Setting Static Addresses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-24
Configuring Port Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-25
Configuring Address Filtering . . . . . . . . . . . . . . . . . . . . . . . . . . 3-26
VLAN Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-27
Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-27
Port-based VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-28
Tag-based VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-29
Creating Tagged VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . 3-31
Configuring the PVID and Ingress Filters . . . . . . . . . . . . . 3-32
Spanning Tree Protocol Configuration . . . . . . . . . . . . . . . . . . . . . . . . . 3-34
Enabling STP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-34
Configuring Global STP Settings . . . . . . . . . . . . . . . . . . . . . . . . 3-34
Displaying Information About the Root Bridge . . . . . . . . . . . . 3-36
Configuring Port STP Settings . . . . . . . . . . . . . . . . . . . . . . . . . . 3-36
Displaying Port Status for STP . . . . . . . . . . . . . . . . . . . . . . . . . 3-38
Port Mirroring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-39
Simple Network Management Protocol . . . . . . . . . . . . . . . . . . . . . . . . 3-40
Configuring System Information . . . . . . . . . . . . . . . . . . . . . . . . 3-40
Setting Community Access Strings . . . . . . . . . . . . . . . . . . . . . . 3-40
Specifying Trap Managers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-41
User Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-42
Firmware and Configuration Settings . . . . . . . . . . . . . . . . . . . . . . . . . . 3-43
Downloading System Software from a Server . . . . . . . . . . . . . 3-43
Saving or Restoring Configuration Settings . . . . . . . . . . . . . . . 3-44
Resetting the System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-45
Rebooting the System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-45
4 Console Interface . . . . . . . . . . . . . . . . . . . . . . . .4-1
Log-in Screen . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-1
Main Menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-2
Status and Counters Menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-6
Displaying Connection Status . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-7
Showing Port Statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-8
Displaying System Information . . . . . . . . . . . . . . . . . . . . . . . . . . 4-9
vi
C
ONTENTS
Switch Static Configuration Menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-10
Administration Configuration Menu . . . . . . . . . . . . . . . . . . . . . 4-11
Configuring Device Information . . . . . . . . . . . . . . . . . . . . 4-12
Configuring the IP Address . . . . . . . . . . . . . . . . . . . . . . . . 4-13
Configuring the User Name . . . . . . . . . . . . . . . . . . . . . . . . 4-14
Configuring the Password . . . . . . . . . . . . . . . . . . . . . . . . . 4-15
Configuring Interface Connections . . . . . . . . . . . . . . . . . . . . . . 4-16
Configuring Port Mirroring . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-18
VLAN Configuration Menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-20
Configuring Port-based VLANs . . . . . . . . . . . . . . . . . . . . 4-21
Configuring Tag-based VLANs . . . . . . . . . . . . . . . . . . . . . 4-23
Configuring Queue Priorities . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-26
MAC Address Configuration Menu . . . . . . . . . . . . . . . . . . . . . . 4-28
Setting Static Addresses . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-28
Configuring Address Filtering . . . . . . . . . . . . . . . . . . . . . . 4-30
Miscellaneous Configuration Menu . . . . . . . . . . . . . . . . . . . . . . 4-32
Configuring Port Security . . . . . . . . . . . . . . . . . . . . . . . . . . 4-33
Configuring Address Aging . . . . . . . . . . . . . . . . . . . . . . . . 4-35
Configuring Broadcast Storm Control . . . . . . . . . . . . . . . . 4-36
Configuring the Transmit Delay Bound . . . . . . . . . . . . . . 4-37
Protocol Related Configuration Menu . . . . . . . . . . . . . . . . . . . . . . . . . 4-39
Spanning Tree Protocol Menu . . . . . . . . . . . . . . . . . . . . . . . . . . 4-40
Enabling STP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-41
Displaying Information About the Root Bridge . . . . . . . . 4-41
Configuring Global STP Settings . . . . . . . . . . . . . . . . . . . . 4-43
Configuring Port STP Settings . . . . . . . . . . . . . . . . . . . . . . 4-45
Simple Network Management Protocol Menu . . . . . . . . . . . . . 4-47
Configuring System Information . . . . . . . . . . . . . . . . . . . . 4-48
Setting Community Access Strings . . . . . . . . . . . . . . . . . . 4-49
Specifying Trap Managers . . . . . . . . . . . . . . . . . . . . . . . . . 4-50
GVRP Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-51
Link Access Control Protocol Menu . . . . . . . . . . . . . . . . . . . . . 4-52
Configuring the Aggregator Setting . . . . . . . . . . . . . . . . . . 4-53
Setting the State Activity . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-55
Displaying Aggregator Information . . . . . . . . . . . . . . . . . . 4-56
Reboot Switch Menu . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-58
vii
C
ONTENTS
A Software Specifications . . . . . . . . . . . . . . . . . . . .A-1
Switch Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . A-1
Management Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .A-2
Standards . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . A-2
B Upgrading Firmware . . . . . . . . . . . . . . . . . . . . . .B-1
C Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . .C-1
Glossary
Index
viii
C
HAPTER
I
NTRODUCTION
This switch provides a broad range of features for switching. It includes a management agent that allows you to configure the features listed in this manual. The default configuration can be used for most of the features provided by this switch. However, there are many options that you should configure to maximize the switch’s performance for your particular network environment.

Key Features

Feature Description
Authentication Console, Telnet, Web – User name / password
SNMP – Community strings
Configuration Backup / Restore
Port Configuration Speed, duplex mode and flow control
Port Mirroring One or more ports mirrored to single analysis port
Static Address Up to 8K MAC addresses in the forwarding table
Trunks Static trunks or dynamic Link Aggregation Control Protocol
Spanning Tree Protocol
Virtual LANs Up to 128
Traffic Prioritization
Multicast Filtering Supports IGMP snooping and query
Backup to TFTP server
Supported
Supports two priority queues; queuing based on First-In First-Out (FIFO), high queue before low queue, or Weighted Round Robin (WRR)
1
1-1
I
NTRODUCTION

Description of Software Features

IEEE 802.1D Bridge – The switch supports IEEE 802.1D transparent
bridging. The address table facilitates data switching by learning addresses, and then filtering or forwarding traffic based on this information. The address table supports up to 8K addresses.
Store-and-Forward Switching – The switch copies each frame into its memory before forwarding them to another port. This ensures that all frames are a standard Ethernet size and have been verified for accuracy with the cyclic redundancy check (CRC). This prevents bad frames from entering the network and wasting bandwidth.
To avoid dropping frames on congested ports, the switch provides 2Mbit for frame buffering. This buffer can queue packets awaiting transmission on congested networks.
Spanning Tree Protocol – The switch supports IEEE 802.1D Spanning Tree Protocol. This protocol adds a level of fault tolerance by allowing two or more redundant connections to be created between a pair of LAN segments. When there are multiple physical paths between segments, the protocol will choose a single path and disable all others to ensure that only one route exists between any two stations on the network. This prevents the creation of network loops. However, if the chosen path should fail for any reason, an alternate path will be activated to maintain the connection.
VLANs – This switch supports up to 128 VLANs. A Virtual LAN is a collection of network nodes that share the same collision domain regardless of their physical location or connection point in the network. By segmenting your network into VLANs, you can:
Eliminate broadcast storms which severely degrade performance in a flat network.
1-2
D
ESCRIPTION OF SOFTWARE FEATURES
Simplify network management for node changes/moves by remotely configuring VLAN membership for any port, rather than having to manually change the network connection.
Provide data security by restricting all traffic to the originating VLAN.
Port Mirroring – The switch can unobtrusively mirror traffic from any port to a monitor port. You can then attach a protocol analyzer or RMON probe to this port to perform traffic analysis and verify connection integrity.
Port Trunking – Ports can be combined into an aggregate connection. Trunks can be manually set up or dynamically configured using IEEE
802.3ad Link Aggregation Control Protocol (LACP). The additional ports
dramatically increase the throughput across any connection, and provide redundancy by taking over the load if a port in the trunk should fail. The switch supports four trunks, with up to eight up-link ports per trunk.
Broadcast Suppression – Broadcast suppression prevents broadcast traffic from overwhelming the network. When enabled on a port, the level of broadcast traffic passing through the port is restricted. If broadcast traffic rises above a pre-defined threshold, it will be throttled until the level falls back beneath the threshold.
Flow Control – Flow control reduces traffic during periods of congestion and prevent packets from being dropped when port buffers overflow. The switch supports flow control based on the IEEE 802.3x standard. By default, flow control is enabled on all ports.
Traffic Priority – This switch provides Quality of Service (QoS) by prioritizing each packet based on the required level of service, using two priority queues, and processing the high-priority queue before the low­priority queue, or using Weighted Round Robin Queuing (WRR). It uses IEEE 802.1p and 802.1Q tags to prioritize incoming traffic based on input from the end-station application. These functions can be used to provide independent priorities for delay-sensitive data and best-effort data.
1-3
I
NTRODUCTION
Multicast Filtering – Specific multicast traffic can be assigned to its own VLAN to ensure that it does not interfere with normal network traffic and to guarantee real-time delivery by setting the required priority level for the designated VLAN. The switch uses IGMP Snooping and Query to manage multicast group registration.

System Defaults

The following table lists some of the basic system defaults.
Function Parameter Default
IP Settings IP Address 0.0.0.0
Subnet Mask 0.0.0.0
Default Gateway 0.0.0.0
SNMP Community Strings “public” (read only)
Traps Authentication traps
Link-up-down events
Security Console, Telnet, Web Username “admin”
Address Learning Enabled (all ports)
Console Port Connection
Port Status Admin Status Enabled
Link Aggregation
Baud Rate 9600
Data bits 8
Stop bits 1
Parity none
Local Console Timeout 1 minute
Auto-negotiation Enabled
Flow Control Enabled
Static Trunks None
LACP (all ports) Disabled
Password “admin”
1-4
S
YSTEM DEFAULTS
Function Parameter Default
Spanning Tree Protocol
Address Table Aging Time 300 seconds
Multicast Filtering
Virtual LANs VLAN Status Disabled
Class of Service Weighted Round Robin Weight: 2 high, 1 low
Broadcast Storm Protection
Status Enabled
(Defaults: All values based on IEEE 802.1D)
Forwarding and Filtering Static addresses: none
Filter addresses: none
IGMP Snooping Disabled
IGMP Query Auto-negotiation
Default VLAN 1
PVID 1
Ingress Filtering (Rule 1)
- Tag must match PVID
Ingress Filtering (Rule 2)
- Acceptable frame types
GVRP Disabled
Status Disabled (all ports)
Enabled
All
Queues: 7-4 high, 3-0 low
Note: To reset the switch defaults, use the Reset System command
(page 3-45).
1-5
I
NTRODUCTION
1-6
C
HAPTER
I
NITIAL
C
ONFIGURATION

Connecting to the Switch

Configuration Options

The switch includes a built-in network management agent. The agent offers a variety of management options, including SNMP, RMON, and a Web-based interface. A PC may also be connected directly to the switch for configuration and monitoring via the console menu.
Note: The IP address for this switch is unassigned by default. To change
this address, see “Setting an IP Address” on page 2-5.
The switch’s HTTP Web agent allows you to configure switch parameters, monitor port connections, and display statistics using a standard Web browser such as Netscape Navigator version 6.2 and higher or Microsoft IE version 5.0 and higher. The switch’s Web management interface can be accessed from any computer attached to the network.
2
The switch’s management agent is based on SNMP (Simple Network Management Protocol). This SNMP agent permits the switch to be managed from any system in the network using management software.
The console menu can be accessed by a direct connection to the RS-232 serial console port on the switch, or remotely by a Telnet connection over the network.
The switch’s console menu, Web Interface, and SNMP agent allow you to perform the following management functions:
Set user name and password
Set an IP interface for management access (console menu only)
2-1
I
NITIAL CONFIGURATION
Configure SNMP parameters
Enable/disable any Ethernet port
Set the speed/duplex mode for any port
Configure up to 128 IEEE 802.1Q VLANs
Enable GVRP automatic VLAN registration
Configure IGMP multicast filtering
Upload and download system firmware via TFTP
Upload and download switch configuration files via TFTP
Configure Spanning Tree parameters
Configure Class of Service (CoS) priority queuing
Configure up to four static or LACP trunks
Enable port mirroring
Prevent broadcast storms by limiting bandwidth for broadcast traffic
Display system information and statistics

Required Connections

The switch provides an RS-232 serial port that enables a connection to a PC or terminal for monitoring and configuring the switch. A null-modem console cable is provided with the switch.
Attach a VT100-compatible terminal, or a PC running a terminal emulation program to the switch. You can use the console cable provided with this package, or use a null-modem cable that complies with the wiring assignments shown in the Installation Guide.
To connect a terminal to the console port, complete the following steps:
1. Connect the console cable to the serial port on a terminal, or a PC running terminal emulation software, and tighten the captive retaining screws on the DB-9 connector.
2. Connect the other end of the cable to the RS-232 serial port on the switch.
3. Make sure the terminal emulation software is set as follows:
2-2
C
ONNECTING TO THE SWITCH
Select the appropriate serial port (COM port 1 or COM port 2).
Set the data rate to 9600 baud.
Set the data format to 8 data bits, 1 stop bit, and no parity.
Set flow control to none.
Set the emulation mode to VT100.
Note: Once you have set up the terminal correctly, the console login
screen will be displayed.

Remote Connections

Prior to accessing the switch’s onboard agent via a network connection, you must first configure it with a valid IP address, subnet mask, and default gateway using a console connection.
The IP address for this switch is unassigned by default. To manually configure this address to one that matches your specific network requirements, see “Setting an IP Address” on page 2-5.
After configuring the switch’s IP parameters, you can access the onboard configuration program from anywhere within the attached network. The onboard configuration program can be accessed using Telnet from any computer attached to the network. The switch can also be managed by any computer using a Web browser (Internet Explorer 5.0 or above, or Netscape Navigator 6.2 or above), or from a network computer using network management software.
Notes: 1. Only one management session is supported.
2. The onboard program only provides access to basic
configuration functions. To access the full range of SNMP management functions, you must use SNMP-based network management software.
2-3
I
NITIAL CONFIGURATION

Basic Configuration

Console Connection

Access to the console menu is controlled by a user name and password. The default setting is “admin” for both the user name and password. To log into the console menu, perform these steps:
1. Enter “admin” at the user name prompt.
2. Enter “admin” at the password prompt. (The password characters are not displayed on the console screen.)
The session is opened and the Main Menu displays.

Setting Passwords

Note: If this is your first time to log in, you should define a new user
name and password, record them and put them in a safe place.
A user name or password can consist of up to 15 alphanumeric characters and are not case sensitive. To prevent unauthorized access to the switch, set the user name and password as follows:
1. Open the console interface with the default user name and password “admin” to access the Main Menu.
2. Navigate from the Main Menu to –
Switch Static Configuration, and then Administration Configuration.
3. Select “Change Username” and press <Enter>.
Select <Edit>, type in the new user name, and press <Enter>.
Select <Save> and press Enter.
2-4
B
ASIC CONFIGURATION
4. Select “Change Password” and press <Enter>.
Type the old password and press <Enter>.
Type the new password and press <Enter>.
Then re-enter the new password for verification, press <Enter>.

Setting an IP Address

You must establish IP address information for the switch to obtain management access through the network. You can manually assign an IP address to the switch. You may also need to specify a default gateway that resides between this device and management stations that exist on another network segment. Valid IP addresses consist of four decimal numbers, 0 to 255, separated by periods. Anything outside this format will not be accepted by the configuration program.
Note: The IP address for this switch is unassigned by default.
Before you can assign an IP address to the switch, you must obtain the following information from your network administrator:
IP address for the switch
Network mask for this network
Default gateway for the network
2-5
I
NITIAL CONFIGURATION
To assign an IP address to the switch, complete the following steps:
1. Navigate from the Main Menu to –
Switch Static Configuration, Administration Configuration, and then IP Configuration.
2. Select <Edit>, type in the IP Address, Subnet Mask, and Gateway. Press <Enter> after each item. Press <Ctrl-A> to return to the action bar at the bottom of the screen. Select <Save> and press any key to continue. (The IP addresses shown below are merely examples.)
Tiger Switch 10/100 6709FL2 : IP Configuration ===========================
IP Address : 192.168.16.1
Subnet Mask : 255.255.255.0
Gateway : 192.168.16.254
actions-> <Edit> <Save> <Quit> Select the action menu. Tab=Next Item BackSpace=Previous Item Quit=Previous menu Enter=Select Item
3. Navigate back to the Main Menu, go to Reboot Switch menu, select the “Restart” command, and press <Enter>.
2-6
B
ASIC CONFIGURATION

Enabling SNMP Management Access

The switch can be configured to accept management commands from Simple Network Management Protocol (SNMP) applications such as SMC’s EliteView. You also can configure the switch to generate SNMP traps.
When SNMP management stations send requests to the switch (either to return information or to set a parameter), the switch provides the requested data or sets the specified parameter. The switch can also be configured to send information to SNMP managers (without being requested by the managers) through trap messages that inform the manager that certain events have occurred.
Community Strings
Community strings are used to control management access to SNMP stations, as well as to authorize SNMP stations to receive trap messages from the switch. You therefore need to assign community strings to specified users or user groups, and set the access level.
The default string is “public” with read-only access. Authorized management stations are only able to retrieve MIB objects.
Note: If you do not intend to use SNMP, it is recommended that you
delete all community strings. If there are no community strings, then SNMP management access to the switch is disabled.
To configure a community string, complete the following steps:
1. Navigate from the Main Menu to –
Protocol Related Configuration, SNMP, and then Community Strings.
2. Click <Add>, then <Edit>.
3. Type in the Community Name, and press <Enter>.
2-7
I
NITIAL CONFIGURATION
4. Use the scroll-bar to toggle the Write Access Field to “Restricted” or “Unrestricted.”
5. Press <Ctrl-A> to return to the action bar at the bottom of the screen. Select <Save> and press any key to continue. (The community string
shown below is an example.)
Tiger Switch 10/100 6709FL2 : Add SNMP Community ===========================
Community Name :private
Write Access :Unrestricted
actions-> <Edit> <Save> <Quit> Select the action menu. Tab=Next Item BackSpace=Previous Item Quit=Previous menu Enter=Select Item
2-8
C
HAPTER
C
ONFIGURING THE
S
WITCH

Using the Web Interface

This switch provides an embedded HTTP Web agent. Using a Web browser you can configure the switch and view statistics to monitor network activity. The Web agent can be accessed by any computer on the network using a standard Web browser (Internet Explorer 5.0 or above, or Netscape Navigator 6.2 or above.)
Note: You can also use the console menu to manage the switch over a
serial connection to the console port or via Telnet. For more information on using the console menu, refer to Chapter 4, “Console Interface.”
Prior to accessing the switch from a Web browser, be sure you have first performed the following tasks:
1. Configure the switch with a valid IP address, subnet mask, and default gateway using an out-of-band serial connection. (See “Setting an IP Address” on page 2-5.)
3
2. Set a user name and password. Access to the Web agent is controlled by the same user name and password as the console configuration program. (See “Setting Passwords” on page 2-4.)
3. After you enter a user name and password, you will have access to the system configuration program.
Note: You are allowed three attempts to enter the correct password; on
the third failed attempt the current connection is terminated.
3-1
C
ONFIGURING THE SWITCH

Navigating the Web Browser Interface

To access the Web-browser interface you must first enter a user name and password. The administrator has Read/Write access to all configuration parameters and statistics. The default user name and password for the administrator is “admin.”

Home Page

When your Web browser connects with the switch’s Web agent, the home page is displayed as shown below. The interface displays the Main Menu on the left side of the screen and the selected menu on the right side. The Main Menu links are used to navigate to other menus, and display configuration parameters and statistics.
3-2

Configuration Options

Configurable parameters have a dialog box or a drop-down list. Once a configuration change has been made on a page, be sure to click on the “Apply” button to confirm the new setting. The following table summarizes the Web page configuration buttons.
Button Action
Apply Sets specified values to the system for the displayed page.
Default Cancels specified values and restores current values prior
to pressing “Apply.”
Reset Immediately updates values for the current page.
Notes: 1. To ensure proper screen refresh, be sure that Internet
Explorer 5.x is configured as follows: Under the menu “Tools / Internet Options / General / Temporary Internet Files / Settings,” the setting for item “Check for newer versions of stored pages” should be “Every visit to the page.”
2. When using Internet Explorer 5.0, you may have to manually
refresh the screen after making configuration changes by pressing the browser’s refresh button.
P
ANEL DISPLAY

Panel Display

The Web agent displays an image of the switch’s ports, indicating whether each link is up or down. Clicking on the image of a port opens the Port Configuration page as described on page 3-12.
3-3
C
ONFIGURING THE SWITCH

Main Menu

Using the onboard Web agent, you can define system parameters, manage and control the switch, or monitor network conditions. The following table briefly describes the selections available from this program.
Menu Description Page
Home Main Menu 3-2
Port Status Displays port connection status 3-10
Port Statistics Lists Ethernet statistics 3-12
Administrator
Switch Settings
Basic Shows system model number, MAC address,
hardware version, and firmware version
Advanced Provides settings for address aging time,
maximum queue delay, broadcast storm control, priority queue options, and global settings for STP, IGMP, and VLANs
Console Port Info Displays settings for the console port 3-9
Port Controls 3-10
Port Controls Configures connection settings including
speed, duplex mode, and flow control
Port Status Displays the current connection settings 3-10
Trunking
Aggregator Setting Configures static or dynamic trunks 3-17
Aggregator Information
State Activity Actively or passively configures a trunk 3-20
Filter Database
IGMP Snooping Displays active multicast groups, VLAN
Static MAC Addresses
Port Security Enables and disables address learning 3-25
MAC Filtering Filters specified addresses 3-26
Shows trunks and associated ports, and detailed information for dynamic links
identifier, and associated ports
Sets entries for address, port number, and VLAN identifier
3-6
3-6
3-11
3-18
3-21
3-24
3-4
M
AIN MENU
Menu Description Page
VLAN Configuration 3-27
Basic Configures VLAN groups, including name,
Port VID Sets port VID and ingress filters 3-32
Spanning Tree Configures global bridge and port settings
Port Sniffer Sets the source and target ports for mirroring 3-39
SNMP 3-40
System Options Provides basic system description, including
Community Strings Configures community strings 3-40
Trap Managers Sets trap management stations 3-41
Security Manager Assigns a user name and password 3-42
TFTP Update Firmware Downloads a new code image 3-43
Configuration Backup 3-44
TFTP Restore Configuration
TFTP Backup Configuration
Reset System Resets switch to the default configuration 3-45
Reboot Reboots the switch 3-45
identifier, and if limited to a specific protocol
for STP; also displays current port status
contact information
Restores configuration settings 3-44
Backs up configuration settings 3-44
3-28 3-29
3-34
3-40
3-5
C
ONFIGURING THE SWITCH

Basic System Information

Use the Switch Settings page to display basic information on the switch, including hardware/firmware version numbers for the main board and management software.
Field Attributes
• Description – Switch model number.
• MAC Address – The physical layer address for this switch.
• Firmware Version – Version number of runtime code.
• Hardware Version – Hardware version of the main board.
• Default config value version – Default configuration version.
Web – Click Switch Settings
=>
Basic.

Global Switch Settings

Use the Switch Settings, Advanced menu to configure address aging, packet transmit delay, and broadcast storm control.
Command Usage
Aging Time – The switch stores the addresses of known devices. This
information is used to route traffic directly between the inbound and outbound ports. The addresses are learned by monitoring traffic, and stored in the dynamic address table. You can set the aging time after which inactive entries are removed.
Transmit Delay Bound – Sets the maximum queuing delay.
3-6
G
LOBAL SWITCH SETTINGS
Broadcast Storm Control – Broadcast storms may occur when a
device on your network is malfunctioning, or if application programs are not well designed or properly configured. If there is too much broadcast traffic on your network, performance can be severely degraded or everything can come to a complete halt. You can protect your network from broadcast storms by setting a maximum threshold for broadcast traffic.
Field Attributes
MAC Table Address Entry Age-Out Time – The time after which
a learned entry is discarded if no new traffic is seen from that address. (Range: 300-765 seconds; Default: 300 seconds)
Max bridge transmit delay bound control – Limits the time
packets can be queued in the switch. If enabled, packets queued beyond the specified time will be dropped. (Range: OFF, 1, 2, 4 seconds; Default: OFF)
Broadcast Storm Filter Mode – The percentage of a port’s total
bandwidth used by broadcast traffic. When broadcast traffic rises above the specified threshold, broadcast packets exceeding that threshold will then be dropped. (Range: OFF, 5, 10, 15, 20, 25%; Default: OFF)
Web – Click Administrator for the aging time, transmit delay bound, and broadcast storm filter threshold, then click Apply.
=>
Switch Settings=>Advanced. Specify values
3-7
C
ONFIGURING THE SWITCH

Class of Service Configuration

Class of Service (CoS) allows you to specify which data packets have greater precedence when traffic is buffered in the switch due to congestion. This switch supports CoS with two priority queues for each port. Data packets in a port’s high-priority queue are transmitted before those in the lower-priority queue.
You can set the method used to process priority traffic (i.e., first-in first-out, all high before low, or weighted round-robin), and also map the frame priority tags (i.e., 0 - 7) to the high or low priority queues.
Field Attributes
First Come First Served – Packets are processed first-in first-out.
All High before Low – All packets in the high-priority queue are
processed before any packets in the low-priority queue.
Weighted Round Robin – Sets the preference given to packets in the
high-priority queue. This specifies the number of high-priority packets sent before one low-priority packet is sent. (Range: 1-7; Default: 2)
Enable Delay Bound – Limits the queuing time for low-priority
packets. Any low-priority packets that exceed the delay bound will be sent. Note that the “Max bridge transmit delay bound control” must be enabled (page 3-6) for the Enable Delay Bound to function. (Range: 0-255 ms; Default: 0 ms)
QoS Policy (High Priority Levels) – The default priority levels are
assigned according to recommendations in the IEEE 802.1p standard. However, you can map the priority levels to the switch’s output queues in any way that benefits application traffic for your own network. (Range: Level 0 - 7; Default: Level 4 - 7)
Web – Click Administrator priority method (First Come First Serve, All High before Low, or WRR), set the high-priority queue weight preference when using WRR, set a delay
=>
Switch Settings=>Advanced. Select the
3-8
Loading...
+ 112 hidden pages