Zyxel ES-2024 user manual
ES-2024 Series
Ethernet Switch
User’s Guide
Version 3.80
11/2 007
Edition 2
DEFAULT LOGIN
IP Address http://192.168.1.1
User Name admin
Password 1234
www.zyxel.com
About This User's Guide
About This User's Guide
Intended Audience
This manual is intended for people who want to configure the ES-2024 using the web
configurator. You should have at least a basic knowledge of TCP/IP networking concepts and
topology.
Related Documentation
• Quick Start Guide
The Quick Start Guide contains information on setting up your hardware.
• Web Configurator Online Help
Embedded web help for descriptions of individual screens and supplementary
information.
• CLI Reference Guide
The CLI Reference Guide is intended for people who want to configure the ES-2024 via
commands.
" It is recommended you use the web configurator to configure the Switch.
• Supporting Disk
Refer to the included CD for support documents.
• ZyXEL Web Site
Please refer to www.zyxel.com
certifications.
User Guide Feedback
Help us help you. Send all User Guide-related comments, questions or suggestions for
improvement to the following address, or use e-mail instead. Thank you!
The Technical Writing Team,
ZyXEL Communications Corp.,
6 Innovation Road II,
Science-Based Industrial Park,
Hsinchu, 300, Taiwan.
E-mail: techwriters@zyxel.com.tw
for additional support documentation and product
ES-2024 Series User’s Guide
3
Document Conventions
Document Conventions
Warnings and Notes
These are how warnings and notes are shown in this User’s Guide.
1 Warnings tell you about things that could harm you or your device.
" Notes tell you other important information (for example, other things you may
need to configure or helpful tips) or recommendations.
Syntax Conventions
• The ES-2024A and ES-2024PWR may be referred to as the “ES-2024”, “Switch”, the
“device”, the “system” or the “product” in this User’s Guide. Differentiation is made
where needed.
• Product labels, screen names, field labels and field choices are all in bold font.
• A key stroke is denoted by square brackets and uppercase text, for example, [ENTER]
means the “enter” or “return” key on your keyboard.
• “Enter” means for you to type one or more characters and then press the [ENTER] key.
“Select” or “choose” means for you to use one of the predefined choices.
• Command keywords are in
• A right angle bracket ( > ) within a screen name denotes a mouse click. For example,
Maintenance > Log > Log Setting means you first click Maintenance in the navigation
panel, then the Log sub menu and finally the Log Setting tab to get to that screen.
• An arrow (-->) indicates that this line is a continuation of the previous line.
• Units of measurement may denote the “metric” value or the “scientific” value. For
example, “k” for kilo may denote “1000” or “1024”, “M” for mega may denote “1000000”
or “1048576” and so on.
• “e.g.,” is a shorthand for “for instance”, and “i.e.,” means “that is” or “in other words”.
courier new font.
4
ES-2024 Series User’s Guide
Document Conventions
Icons Used in Figures
Figures in this User’s Guide may use the following generic icons. The Switch icon is not an
exact representation of your device.
Switch Computer Notebook computer
Server DSLAM Firewall
Telephone Switch Router
ES-2024 Series User’s Guide
5
Safety Warnings
Safety Warnings
1 For your safety, be sure to read and follow all warning notices and instructions.
• Do NOT use this product near water, for example, in a wet basement or near a swimming
pool.
• Do NOT expose your device to dampness, dust or corrosive liquids.
• Do NOT store things on the device.
• Do NOT install, use, or service this device during a thunderstorm. There is a remote risk
of electric shock from lightning.
• Connect ONLY suitable accessories to the device.
• Do NOT open the device or unit. Opening or removing covers can expose you to
dangerous high voltage points or other risks. ONLY qualified service personnel should
service or disassemble this device. Please contact your vendor for further information.
• Make sure to connect the cables to the correct ports.
• Place connecting cables carefully so that no one will step on them or stumble over them.
• Always disconnect all cables from this device before servicing or disassembling.
• Use ONLY an appropriate power adaptor or cord for your device. Connect it to the right
supply voltage (for example, 110V AC in North America or 230V AC in Europe).
• Do NOT allow anything to rest on the power adaptor or cord and do NOT place the
product where anyone can walk on the power adaptor or cord.
• Do NOT use the device if the power adaptor or cord is damaged as it might cause
electrocution.
• If the power adaptor or cord is damaged, remove it from the device and the power source.
• Do NOT attempt to repair the power adaptor or cord. Contact your local vendor to order a
new one.
• Do not use the device outside, and make sure all the connections are indoors. There is a
remote risk of electric shock from lightning.
• CAUTION: RISK OF EXPLOSION IF BATTERY (on the motherboard) IS REPLACED
BY AN INCORRECT TYPE. DISPOSE OF USED BATTERIES ACCORDING TO THE
INSTRUCTIONS. Dispose them at the applicable collection point for the recycling of
electrical and electronic equipment. For detailed information about recycling of this
product, please contact your local city office, your household waste disposal service or the
store where you purchased the product.
• Do NOT obstruct the device ventilation slots, as insufficient airflow may harm your
device.
• The PoE (Power over Ethernet) devices that supply or receive power and their connected
Ethernet cables must all be completely indoors.
6
ES-2024 Series User’s Guide
This product is recyclable. Dispose of it properly.
Safety Warnings
ES-2024 Series User’s Guide
7
Safety Warnings
8
ES-2024 Series User’s Guide
Contents Overview
Contents Overview
Introduction ............................................................................................................................27
Getting to Know Your Switch ..................................................................................................... 29
Hardware Installation and Connection ....................................................................................... 33
Hardware Overview ................................................................................................................... 37
Basic Configuration ...............................................................................................................43
The Web Configurator ............................................................................................................... 45
Initial Setup Example ................................................................................................................. 55
System Status and Port Statistics ..............................................................................................59
Basic Setting ............................................................................................................................. 65
Advanced Setup .....................................................................................................................77
VLAN ......................................................................................................................................... 79
Static MAC Forward Setup ........................................................................................................ 91
Filtering ...................................................................................................................................... 93
Spanning Tree Protocol ............................................................................................................. 95
Bandwidth Control ................................................................................................................... 109
Broadcast Storm Control .......................................................................................................... 111
Mirroring ...................................................................................................................................113
Link Aggregation .......................................................................................................................115
Port Authentication .................................................................................................................. 121
Port Security ............................................................................................................................ 125
Queuing Method ...................................................................................................................... 129
Multicast .................................................................................................................................. 131
Authentication & Accounting ....................................................................................................145
IP Source Guard ...................................................................................................................... 159
Loop Guard .............................................................................................................................. 169
IP Application ....................................................................................................................... 173
Static Route ............................................................................................................................. 175
Differentiated Services ............................................................................................................. 179
DHCP ...................................................................................................................................... 183
Management .........................................................................................................................189
Maintenance ............................................................................................................................ 191
Access Control ........................................................................................................................ 197
Diagnostic ................................................................................................................................ 215
ES-2024 Series User’s Guide
9
Contents Overview
Syslog ...................................................................................................................................... 217
Cluster Management ............................................................................................................... 221
MAC Table ............................................................................................................................... 227
ARP Table ................................................................................................................................ 229
Configure Clone ....................................................................................................................... 231
Appendices and Index ......................................................................................................... 233
10
ES-2024 Series User’s Guide
Table of Contents
Table of Contents
About This User's Guide ..........................................................................................................3
Document Conventions............................................................................................................4
Safety Warnings........................................................................................................................6
Contents Overview ...................................................................................................................9
Table of Contents....................................................................................................................11
List of Figures .........................................................................................................................19
List of Tables...........................................................................................................................23
Part I: Introduction................................................................................. 27
Chapter 1
Getting to Know Your Switch.................................................................................................29
1.1 Introduction .......................................................................................................................... 29
1.1.1 Backbone Application ................................................................................................. 29
1.1.2 Bridging Example ....................................................................................................... 30
1.1.3 High Performance Switching Example ....................................................................... 30
1.1.4 IEEE 802.1Q VLAN Application Examples ................................................................ 31
1.2 Ways to Manage the Switch ................................................................................................ 32
1.3 Good Habits for Managing the Switch ................................................................................. 32
Chapter 2
Hardware Installation and Connection .................................................................................33
2.1 Freestanding Installation ..................................................................................................... 33
2.2 Mounting the Switch on a Rack ........................................................................................... 34
2.2.1 Rack-mounted Installation Requirements ................................................................. 34
2.2.2 Attaching the Mounting Brackets to the Switch .......................................................... 34
2.2.3 Mounting the Switch on a Rack .................................................................................. 35
Chapter 3
Hardware Overview.................................................................................................................37
3.1 Front Panel Connection ....................................................................................................... 37
3.1.1 Console Port .............................................................................................................. 38
3.1.2 Ethernet Ports ............................................................................................................ 38
ES-2024 Series User’s Guide
11
Table of Contents
3.1.3 Mini-GBIC Slots ..........................................................................................................39
3.2 Rear Panel ........................................................................................................................... 40
3.2.1 Power Connector ....................................................................................................... 40
3.3 LEDs .................................................................................................................................... 41
Part II: Basic Configuration................................................................... 43
Chapter 4
The Web Configurator ............................................................................................................45
4.1 Introduction .......................................................................................................................... 45
4.2 System Login .................................................................................................................... 45
4.3 The Status Screen .......................................................................................................... 46
4.3.1 Change Your Password .......................................................................................... 50
4.4 Saving Your Configuration ................................................................................................... 51
4.5 Switch Lockout .................................................................................................................. 51
4.6 Resetting the Switch ......................................................................................................... 51
4.6.1 Reload the Configuration File .................................................................................... 52
4.7 Logging Out of the Web Configurator ................................................................................. 52
4.8 Help .................................................................................................................................... 53
Chapter 5
Initial Setup Example..............................................................................................................55
5.1 Overview .............................................................................................................................. 55
5.1.1 Creating a VLAN ........................................................................................................ 55
5.1.2 Setting Port VID .........................................................................................................56
5.1.3 Configuring Switch Management IP Address ............................................................. 57
Chapter 6
System Status and Port Statistics......................................................................................... 59
6.1 Overview .............................................................................................................................. 59
6.2 Port Status Summary ...................................................................................................... 59
6.2.1 Status: Port Details ................................................................................................60
Chapter 7
Basic Setting ..........................................................................................................................65
7.1 Overview .............................................................................................................................. 65
7.2 System Information ........................................................................................................... 65
7.3 General Setup ................................................................................................................. 67
7.4 Introduction to VLANs ......................................................................................................... 69
7.5 Switch Setup Screen ........................................................................................................ 70
7.6 IP Setup ............................................................................................................................ 71
12
ES-2024 Series User’s Guide
Table of Contents
7.6.1 IP Interfaces ............................................................................................................... 72
7.7 Port Setup ........................................................................................................................... 74
Part III: Advanced Setup........................................................................ 77
Chapter 8
VLAN ........................................................................................................................................79
8.1 Introduction to IEEE 802.1Q Tagged VLANs .................................................................. 79
8.1.1 Forwarding Tagged and Untagged Frames ................................................................ 79
8.2 Automatic VLAN Registration ............................................................................................. 80
8.2.1 GARP ......................................................................................................................... 80
8.2.2 GVRP ......................................................................................................................... 80
8.3 Port VLAN Trunking ............................................................................................................ 81
8.4 Select the VLAN Type ........................................................................................................ 81
8.5 Static VLAN ......................................................................................................................... 81
8.5.1 Static VLAN Status .................................................................................................... 82
8.5.2 Static VLAN Details ................................................................................................... 82
8.5.3 Configure a Static VLAN ........................................................................................ 83
8.5.4 Configure VLAN Port Settings ................................................................................ 84
8.6 Port-based VLAN Setup .................................................................................................86
8.6.1 Configure a Port-based VLAN ................................................................................... 86
Chapter 9
Static MAC Forward Setup.....................................................................................................91
9.1 Overview .............................................................................................................................. 91
9.2 Configuring Static MAC Forwarding ............................................................................... 91
Chapter 10
Filtering....................................................................................................................................93
10.1 Configure a Filtering Rule ............................................................................................... 93
Chapter 11
Spanning Tree Protocol..........................................................................................................95
11.1 STP/RSTP Overview .......................................................................................................95
11.1.1 STP Terminology ..................................................................................................... 95
11.1.2 How STP Works ...................................................................................................... 96
11.1.3 STP Port States ....................................................................................................... 97
11.1.4 Multiple STP ............................................................................................................. 97
11.2 Spanning Tree Configuration Screen ................................................................................. 99
11.3 Configure Rapid Spanning Tree Protocol ..................................................................... 100
11.4 Rapid Spanning Tree Protocol Status ........................................................................ 102
ES-2024 Series User’s Guide
13
Table of Contents
11.5 Configure Multiple Spanning Tree Protocol .................................................................. 103
11.6 Multiple Spanning Tree Protocol Status ..................................................................... 105
Chapter 12
Bandwidth Control................................................................................................................109
12.1 Bandwidth Control Setup ................................................................................................ 109
Chapter 13
Broadcast Storm Control ..................................................................................................... 111
13.1 Broadcast Storm Control Setup ....................................................................................... 111
Chapter 14
Mirroring ................................................................................................................................ 113
14.1 Port Mirroring Setup ........................................................................................................113
Chapter 15
Link Aggregation .................................................................................................................. 115
15.1 Link Aggregation Overview ..............................................................................................115
15.2 Dynamic Link Aggregation ...............................................................................................115
15.2.1 Link Aggregation ID ................................................................................................116
15.3 Link Aggregation Status ...................................................................................................116
15.4 Link Aggregation Setting .................................................................................................117
15.5 Link Aggregation Control Protocol .................................................................................118
15.6 Static Trunking Example ...................................................................................................119
Chapter 16
Port Authentication...............................................................................................................121
16.1 Port Authentication Overview ......................................................................................... 121
16.1.1 IEEE 802.1x Authentication ................................................................................... 121
16.2 Port Authentication Configuration .................................................................................... 122
16.2.1 Activate IEEE 802.1x Security ........................................................................... 122
Chapter 17
Port Security..........................................................................................................................125
17.1 Port Security Overview ...................................................................................................125
17.2 Port Security Setup .......................................................................................................... 125
17.3 Port Security Example .....................................................................................................127
Chapter 18
Queuing Method....................................................................................................................129
18.1 Queuing Method Overview ............................................................................................. 129
18.1.1 Strictly Priority Queuing .......................................................................................... 129
18.1.2 Weighted Round Robin Scheduling (WRR) ........................................................... 129
14
ES-2024 Series User’s Guide
Table of Contents
18.2 Configuring Queuing ........................................................................................................ 130
Chapter 19
Multicast ................................................................................................................................131
19.1 Multicast Overview ......................................................................................................... 131
19.1.1 IP Multicast Addresses ........................................................................................... 131
19.1.2 IGMP Filtering ........................................................................................................ 131
19.1.3 IGMP Snooping ..................................................................................................... 131
19.1.4 IGMP Snooping and VLANs ................................................................................... 132
19.2 Multicast Status .............................................................................................................. 132
19.3 Multicast Setting ............................................................................................................. 132
19.4 IGMP Snooping VLAN .................................................................................................... 134
19.5 IGMP Filtering Profile ..................................................................................................... 136
19.6 MVR Overview ................................................................................................................ 137
19.6.1 Types of MVR Ports ............................................................................................... 137
19.6.2 MVR Modes ........................................................................................................... 138
19.6.3 How MVR Works .................................................................................................... 138
19.7 General MVR Configuration ............................................................................................ 138
19.8 MVR Group Configuration .............................................................................................. 140
19.8.1 MVR Configuration Example .................................................................................. 141
Chapter 20
Authentication & Accounting ..............................................................................................145
20.1 Authentication, Authorization and Accounting ................................................................ 145
20.1.1 Local User Accounts .............................................................................................. 145
20.1.2 RADIUS and TACACS+ ........................................................................................ 146
20.2 Authentication and Accounting Screens .......................................................................... 146
20.2.1 RADIUS Server Setup ........................................................................................ 146
20.2.2 TACACS+ Server Setup ..................................................................................... 148
20.2.3 Authentication and Accounting Setup ................................................................ 150
20.2.4 Vendor Specific Attribute ........................................................................................ 153
20.3 Supported RADIUS Attributes ......................................................................................... 154
20.3.1 Attributes Used for Authentication .......................................................................... 155
20.3.2 Attributes Used for Accounting ............................................................................... 155
Chapter 21
IP Source Guard....................................................................................................................159
21.1 IP Source Guard Overview .............................................................................................. 159
21.1.1 ARP Inspection Overview ...................................................................................... 159
21.2 IP Source Guard .............................................................................................................. 161
21.3 IP Source Guard Static Binding ....................................................................................... 161
21.4 ARP Inspection Status .....................................................................................................163
21.4.1 ARP Inspection Log Status .................................................................................... 163
ES-2024 Series User’s Guide
15
Table of Contents
21.5 ARP Inspection Configure ............................................................................................... 164
21.5.1 ARP Inspection Port Configure .............................................................................. 166
21.5.2 ARP Inspection VLAN Configure ........................................................................... 167
Chapter 22
Loop Guard............................................................................................................................169
22.1 Loop Guard Overview ..................................................................................................... 169
22.2 Loop Guard Setup ........................................................................................................... 171
Part IV: IP Application.......................................................................... 173
Chapter 23
Static Route ........................................................................................................................... 175
23.1 Static Routing Overview ................................................................................................. 175
23.2 Configuring Static Routing ............................................................................................. 175
Chapter 24
Differentiated Services.........................................................................................................179
24.1 DiffServ Overview ........................................................................................................... 179
24.1.1 DSCP and Per-Hop Behavior ................................................................................ 179
24.1.2 DiffServ Network Example .................................................................................... 180
24.2 Activating DiffServ .......................................................................................................... 180
24.3 DSCP-to-IEEE 802.1p Priority Settings ...................................................................... 181
24.3.1 Configuring DSCP Settings .................................................................................... 182
Chapter 25
DHCP......................................................................................................................................183
25.1 DHCP Overview ............................................................................................................. 183
25.1.1 DHCP Modes ........................................................................................................ 183
25.1.2 DHCP Configuration Options ................................................................................. 183
25.2 DHCP Status ................................................................................................................... 183
25.3 DHCP Relay ................................................................................................................... 184
25.3.1 DHCP Relay Agent Information ............................................................................. 184
25.3.2 Configuring DHCP Global Relay ............................................................................ 185
25.3.3 Global DHCP Relay Configuration Example .......................................................... 185
25.4 Configuring DHCP VLAN Settings ................................................................................ 186
25.4.1 Example: DHCP Relay for Two VLANs .................................................................. 188
Part V: Management............................................................................. 189
16
ES-2024 Series User’s Guide
Table of Contents
Chapter 26
Maintenance ..........................................................................................................................191
26.1 The Maintenance Screen ............................................................................................... 191
26.2 Load Factory Default ...................................................................................................... 192
26.3 Save Configuration .......................................................................................................... 192
26.4 Reboot System ................................................................................................................ 193
26.5 Firmware Upgrade ........................................................................................................ 193
26.6 Restore a Configuration File ......................................................................................... 194
26.7 Backup a Configuration File ......................................................................................... 194
26.8 FTP Command Line ........................................................................................................ 195
26.8.1 Filename Conventions .......................................................................................... 195
26.8.2 FTP Command Line Procedure ............................................................................ 195
26.8.3 GUI-based FTP Clients .......................................................................................... 196
26.8.4 FTP Restrictions .................................................................................................... 196
Chapter 27
Access Control......................................................................................................................197
27.1 Access Control Overview ............................................................................................ 197
27.2 The Access Control Main Screen .................................................................................... 197
27.3 About SNMP .................................................................................................................. 198
27.3.1 SNMP v3 and Security ........................................................................................... 199
27.3.2 Supported MIBs ................................................................................................... 199
27.3.3 SNMP Traps .......................................................................................................... 199
27.3.4 Configuring SNMP .............................................................................................. 202
27.3.5 Configuring SNMP Trap Group ........................................................................... 204
27.3.6 Setting Up Login Accounts ................................................................................. 205
27.4 SSH Overview ................................................................................................................. 207
27.5 How SSH works ............................................................................................................... 207
27.6 SSH Implementation on the Switch ................................................................................. 208
27.6.1 Requirements for Using SSH ................................................................................. 208
27.7 Introduction to HTTPS .....................................................................................................208
27.8 HTTPS Example .............................................................................................................. 209
27.8.1 Internet Explorer Warning Messages ..................................................................... 209
27.8.2 Netscape Navigator Warning Messages ................................................................ 210
27.8.3 The Main Screen .................................................................................................... 210
27.9 Service Port Access Control ..........................................................................................211
27.10 Remote Management ............................................................................................... 212
Chapter 28
Diagnostic..............................................................................................................................215
28.1 Diagnostic ....................................................................................................................... 215
ES-2024 Series User’s Guide
17
Table of Contents
Chapter 29
Syslog ....................................................................................................................................217
29.1 Syslog Overview .............................................................................................................. 217
29.2 Syslog Setup .................................................................................................................. 217
29.3 Syslog Server Setup ....................................................................................................... 218
Chapter 30
Cluster Management.............................................................................................................221
30.1 Clustering Management Status Overview ...................................................................... 221
30.2 Cluster Management Status ........................................................................................... 222
30.2.1 Cluster Member Switch Management ................................................................... 223
30.3 Clustering Management Configuration .......................................................................... 224
Chapter 31
MAC Table..............................................................................................................................227
31.1 MAC Table Overview ...................................................................................................... 227
31.2 Viewing the MAC Table ................................................................................................... 228
Chapter 32
ARP Table ..............................................................................................................................229
32.1 ARP Table Overview .......................................................................................................229
32.1.1 How ARP Works .................................................................................................... 229
32.2 Viewing the ARP Table ................................................................................................... 229
Chapter 33
Configure Clone....................................................................................................................231
33.1 Configure Clone .............................................................................................................. 231
Part VI: Appendices and Index ........................................................... 233
Appendix A Product Specifications.......................................................................................235
Appendix B IP Addresses and Subnetting ...........................................................................243
Appendix C Legal Information ..............................................................................................251
Appendix D Customer Support............................................................................................. 255
Index.......................................................................................................................................261
18
ES-2024 Series User’s Guide
List of Figures
List of Figures
Figure 1 Backbone Application .............................................................................................................. 29
Figure 2 Bridging Application ................................................................................................................ 30
Figure 3 High Performance Switched Workgroup Application ............................................................... 31
Figure 4 Shared Server Using VLAN Example ...................................................................................... 31
Figure 5 Attaching Rubber Feet ............................................................................................................ 33
Figure 6 Attaching the Mounting Brackets ............................................................................................. 34
Figure 7 Mounting the Switch on a Rack ............................................................................................... 35
Figure 8 Front Panel: ES-2024A ........................................................................................................... 37
Figure 9 Front Panel: ES-2024PWR ..................................................................................................... 37
Figure 10 Transceiver Installation Example ........................................................................................... 39
Figure 11 Installed Transceiver .............................................................................................................. 39
Figure 12 Opening the Transceiver’s Latch Example ............................................................................ 40
Figure 13 Transceiver Removal Example .............................................................................................. 40
Figure 14 AC Rear Panel ...................................................................................................................... 40
Figure 15 DC Rear Panel ...................................................................................................................... 40
Figure 16 Web Configurator: Login ....................................................................................................... 46
Figure 17 Web Configurator Home Screen (Status) .............................................................................. 46
Figure 18 Change Administrator Login Password .................................................................................50
Figure 19 Resetting the Switch: Via the Console Port ........................................................................... 52
Figure 20 Web Configurator: Logout Screen ......................................................................................... 53
Figure 21 Initial Setup Network Example: VLAN ................................................................................... 55
Figure 22 Initial Setup Network Example: Port VID ............................................................................... 57
Figure 23 Initial Setup Example: Management IP Address ................................................................... 57
Figure 24 Status .................................................................................................................................... 59
Figure 25 Status: Port Details ................................................................................................................. 61
Figure 26 Basic Setting > System Info .................................................................................................. 66
Figure 27 Basic Setting > General Setup .............................................................................................. 68
Figure 28 Basic Setting > Switch Setup ................................................................................................ 70
Figure 29 Basic Setting > IP Setup ......................................................................................................... 72
Figure 30 Basic Setting > Port Setup .................................................................................................... 74
Figure 31 Port VLAN Trunking ............................................................................................................... 81
Figure 32 Switch Setup: Select VLAN Type .......................................................................................... 81
Figure 33 Advanced Application > VLAN: VLAN Status ......................................................................... 82
Figure 34 Advanced Application > VLAN > VLAN Detail ........................................................................ 82
Figure 35 Advanced Application > VLAN > Static VLAN ...................................................................... 83
Figure 36 Advanced Application > VLAN > VLAN Port Setting ............................................................. 85
Figure 37 Advanced Application > VLAN: Port Based VLAN Setup (All Connected) ............................ 87
Figure 38 Advanced Application > VLAN: Port Based VLAN Setup (Port Isolation) ............................. 88
ES-2024 Series User’s Guide
19
List of Figures
Figure 39 Advanced Application > Static MAC Forwarding ................................................................... 91
Figure 40 Advanced Application > Filtering ........................................................................................... 93
Figure 41 STP/RSTP Network Example ................................................................................................ 98
Figure 42 MSTP Network Example ........................................................................................................ 98
Figure 43 MSTIs in Different Regions ................................................................................................... 99
Figure 44 MSTP and Legacy RSTP Network Example ......................................................................... 99
Figure 45 Advanced Application > Spanning Tree Protocol ................................................................ 100
Figure 46 Advanced Application > Spanning Tree Protocol > RSTP ................................................... 100
Figure 47 Advanced Application > Spanning Tree Protocol > Status: RSTP ....................................... 102
Figure 48 Advanced Application > Spanning Tree Protocol > MSTP .................................................. 103
Figure 49 Advanced Application > Spanning Tree Protocol > Status: MSTP ...................................... 106
Figure 50 Advanced Application > Bandwidth Control ........................................................................ 109
Figure 51 Advanced Application > Broadcast Storm Control ...............................................................111
Figure 52 Advanced Application > Mirroring .........................................................................................113
Figure 53 Advanced Application > Link Aggregation Status .................................................................116
Figure 54 Advanced Application > Link Aggregation > Link Aggregation Setting ................................117
Figure 55 Advanced Application > Link Aggregation > Link Aggregation Setting > LACP ...................118
Figure 56 Trunking Example - Physical Connections ........................................................................... 120
Figure 57 Trunking Example - Configuration Screen ............................................................................ 120
Figure 58 IEEE 802.1x Authentication Process ................................................................................... 122
Figure 59 Advanced Application > Port Authentication ....................................................................... 122
Figure 60 Advanced Application > Port Authentication > 802.1x ........................................................ 123
Figure 61 Advanced Application > Port Security ................................................................................. 126
Figure 62 Port Security Example ......................................................................................................... 127
Figure 63 Advanced Application > Queuing Method ........................................................................... 130
Figure 64 Advanced Application > Multicast ........................................................................................ 132
Figure 65 Advanced Application > Multicast > Multicast Setting ......................................................... 133
Figure 66 Advanced Application > Multicast > Multicast Setting > IGMP Snooping VLAN ................. 135
Figure 67 Advanced Application > Multicast > Multicast Setting > IGMP Filtering Profile ................... 136
Figure 68 MVR Network Example ....................................................................................................... 137
Figure 69 MVR Multicast Television Example ..................................................................................... 138
Figure 70 Advanced Application > Multicast > Multicast Setting > MVR ............................................. 139
Figure 71 Advanced Application > Multicast > Multicast Setting > MVR: Group Configuration ............ 141
Figure 72 MVR Configuration Example ............................................................................................... 142
Figure 73 MVR Configuration Example ............................................................................................... 142
Figure 74 MVR Group Configuration Example ................................................................................... 143
Figure 75 MVR Group Configuration Example .................................................................................... 143
Figure 76 AAA Server .......................................................................................................................... 145
Figure 77 Advanced Application > Auth and Acct ............................................................................... 146
Figure 78 Advanced Application > Auth and Acct > RADIUS Server Setup ........................................ 147
Figure 79 Advanced Application > Auth and Acct > TACACS+ Server Setup ..................................... 149
Figure 80 Advanced Application > Auth and Acct > Auth and Acct Setup .......................................... 151
Figure 81 Example: Man-in-the-middle Attack ..................................................................................... 159
20
ES-2024 Series User’s Guide
List of Figures
Figure 82 IP Source Guard ................................................................................................................... 161
Figure 83 IP Source Guard Static Binding ............................................................................................ 162
Figure 84 ARP Inspection Status .......................................................................................................... 163
Figure 85 ARP Inspection Log Status ................................................................................................... 164
Figure 86 ARP Inspection Configure .................................................................................................... 165
Figure 87 ARP Inspection Port Configure ............................................................................................ 166
Figure 88 ARP Inspection VLAN Configure .......................................................................................... 167
Figure 89 Loop Guard vs. STP ............................................................................................................. 169
Figure 90 Switch in Loop State ............................................................................................................. 170
Figure 91 Loop Guard - Probe Packet .................................................................................................. 170
Figure 92 Loop Guard - Network Loop ................................................................................................. 170
Figure 93 Advanced Application > Loop Guard ....................................................................................171
Figure 94 Static Routing Overview ...................................................................................................... 175
Figure 95 IP Application > Static Routing ............................................................................................ 176
Figure 96 DiffServ: Differentiated Service Field .................................................................................... 179
Figure 97 DiffServ Network ................................................................................................................. 180
Figure 98 IP Application > DiffServ ...................................................................................................... 181
Figure 99 IP Application > DiffServ > DSCP Setting ........................................................................... 182
Figure 100 IP Application > DHCP Status ........................................................................................... 184
Figure 101 IP Application > DHCP > Global ........................................................................................ 185
Figure 102 Global DHCP Relay Network Example ............................................................................. 186
Figure 103 DHCP Relay Configuration Example ................................................................................. 186
Figure 104 IP Application > DHCP > VLAN ....................................................................................... 187
Figure 105 DHCP Relay for Two VLANs ............................................................................................. 188
Figure 106 DHCP Relay for Two VLANs Configuration Example ........................................................ 188
Figure 107 Management > Maintenance ............................................................................................. 191
Figure 108 Load Factory Default: Start ................................................................................................ 192
Figure 109 Reboot System: Confirmation ........................................................................................... 193
Figure 110 Management > Maintenance > Firmware Upgrade ........................................................... 193
Figure 111 Management > Maintenance > Restore Configuration ...................................................... 194
Figure 112 Management > Maintenance > Backup Configuration ...................................................... 194
Figure 113 Management > Access Control ......................................................................................... 197
Figure 114 SNMP Management Model .............................................................................................. 198
Figure 115 Management > Access Control > SNMP ........................................................................... 202
Figure 116 Management > Access Control > SNMP > Trap Group ..................................................... 204
Figure 117 Management > Access Control > Logins ........................................................................... 206
Figure 118 SSH Communication Example ...........................................................................................207
Figure 119 How SSH Works ................................................................................................................. 207
Figure 120 HTTPS Implementation ...................................................................................................... 209
Figure 121 Security Alert Dialog Box (Internet Explorer) ...................................................................... 209
Figure 122 Security Certificate 1 (Netscape) ........................................................................................ 210
Figure 123 Security Certificate 2 (Netscape) ........................................................................................ 210
Figure 124 Example: Lock Denoting a Secure Connection ...................................................................211
ES-2024 Series User’s Guide
21
List of Figures
Figure 125 Management > Access Control > Service Access Control ..................................................211
Figure 126 Management > Access Control > Remote Management .................................................. 212
Figure 127 Management > Diagnostic ................................................................................................. 215
Figure 128 Management > Syslog ....................................................................................................... 218
Figure 129 Management > Syslog > Server Setup ............................................................................. 219
Figure 130 Clustering Application Example ......................................................................................... 222
Figure 131 Management > Cluster Management ................................................................................ 222
Figure 132 Cluster Management: Cluster Member Web Configurator Screen .................................... 223
Figure 133 Example: Uploading Firmware to a Cluster Member Switch ............................................. 224
Figure 134 Management > Clustering Management > Configuration .................................................. 225
Figure 135 MAC Table Flowchart ........................................................................................................ 227
Figure 136 Management > MAC Table ................................................................................................ 228
Figure 137 Management > ARP Table ................................................................................................ 230
Figure 138 Management > Configure Clone .......................................................................................231
Figure 139 DC Power Plug ................................................................................................................... 235
Figure 140 Network Number and Host ID ............................................................................................ 244
Figure 141 Subnetting Example: Before Subnetting ............................................................................ 246
Figure 142 Subnetting Example: After Subnetting ............................................................................... 247
22
ES-2024 Series User’s Guide
List of Tables
List of Tables
Table 1 Front Panel ............................................................................................................................... 38
Table 2 LEDs ......................................................................................................................................... 41
Table 3 Navigation Panel Sub-links Overview ....................................................................................... 47
Table 4 Web Configurator Screen Sub-links Details .............................................................................. 48
Table 5 Navigation Panel Links ............................................................................................................. 49
Table 6 Status ........................................................................................................................................ 59
Table 7 Status > Port Details ................................................................................................................. 61
Table 8 Basic Setting > System Info ...................................................................................................... 66
Table 9 Basic Setting > General Setup .................................................................................................. 68
Table 10 Basic Setting > Switch Setup .................................................................................................. 70
Table 11 Basic Setting > IP Setup ......................................................................................................... 72
Table 12 Basic Setting > Port Setup ...................................................................................................... 74
Table 13 IEEE 802.1Q VLAN Terminology ............................................................................................ 80
Table 14 Advanced Application > VLAN: VLAN Status .......................................................................... 82
Table 15 Advanced Application > VLAN > VLAN Detail ........................................................................ 83
Table 16 Advanced Application > VLAN > Static VLAN ......................................................................... 84
Table 17 Advanced Application > VLAN > VLAN Port Setting ............................................................... 85
Table 18 Advanced Application > VLAN: Port Based VLAN Setup ....................................................... 89
Table 19 Advanced Application > Static MAC Forwarding ..................................................................... 92
Table 20 Advanced Application > Filtering ............................................................................................. 93
Table 21 STP Path Costs ...................................................................................................................... 96
Table 22 STP Port States ...................................................................................................................... 97
Table 23 Advanced Application > Spanning Tree Protocol > RSTP .................................................... 100
Table 24 Advanced Application > Spanning Tree Protocol > Status: RSTP ........................................ 102
Table 25 Advanced Application > Spanning Tree Protocol > MSTP .................................................... 104
Table 26 Advanced Application > Spanning Tree Protocol > Status: MSTP ........................................ 106
Table 27 Advanced Application > Bandwidth Control .......................................................................... 109
Table 28 Advanced Application > Broadcast Storm Control .................................................................112
Table 29 Advanced Application > Mirroring ..........................................................................................114
Table 30 Link Aggregation ID: Local Switch .........................................................................................116
Table 31 Link Aggregation ID: Peer Switch ..........................................................................................116
Table 32 Advanced Application > Link Aggregation Status ..................................................................116
Table 33 Advanced Application > Link Aggregation > Link Aggregation Setting ..................................117
Table 34 Advanced Application > Link Aggregation > Link Aggregation Setting > LACP .....................119
Table 35 Advanced Application > Port Authentication > 802.1x .......................................................... 123
Table 36 Advanced Application > Port Security ................................................................................... 126
Table 37 Port Security Example .......................................................................................................... 128
Table 38 Physical Queue Priority ......................................................................................................... 129
ES-2024 Series User’s Guide
23
List of Tables
Table 39 Advanced Application > Queuing Method ............................................................................. 130
Table 40 Multicast Status ..................................................................................................................... 132
Table 41 Advanced Application > Multicast > Multicast Setting ........................................................... 133
Table 42 Advanced Application > Multicast > Multicast Setting > IGMP Snooping VLAN ................... 135
Table 43 Advanced Application > Multicast > Multicast Setting > IGMP Filtering Profile .................... 136
Table 44 Advanced Application > Multicast > Multicast Setting > MVR ............................................... 139
Table 45 Advanced Application > Multicast > Multicast Setting > MVR: Group Configuration ............ 141
Table 46 RADIUS vs. TACACS+ ......................................................................................................... 146
Table 47 Advanced Application > Auth and Acct > RADIUS Server Setup ......................................... 147
Table 48 Advanced Application > Auth and Acct > TACACS+ Server Setup ...................................... 149
Table 49 Advanced Application > Auth and Acct > Auth and Acct Setup ............................................ 151
Table 50 Supported VSAs ................................................................................................................... 153
Table 51 Supported Tunnel Protocol Attribute ..................................................................................... 154
Table 52 RADIUS Attributes - Exec Events via Console ..................................................................... 156
Table 53 RADIUS Attributes - Exec Events via Telnet/SSH ................................................................ 156
Table 54 RADIUS Attributes - Exec Events via Console ..................................................................... 156
Table 55 IP Source Guard ................................................................................................................... 161
Table 56 IP Source Guard Static Binding ............................................................................................ 162
Table 57 ARP Inspection Status .......................................................................................................... 163
Table 58 ARP Inspection Log Status ................................................................................................... 164
Table 59 ARP Inspection Configure ..................................................................................................... 165
Table 60 ARP Inspection Port Configure ............................................................................................. 167
Table 61 ARP Inspection VLAN Configure .......................................................................................... 167
Table 62 Advanced Application > Loop Guard ....................................................................................171
Table 63 IP Application > Static Routing .............................................................................................. 176
Table 64 IP Application > DiffServ ....................................................................................................... 181
Table 65 Default DSCP-IEEE 802.1p Mapping ................................................................................... 182
Table 66 IP Application > DiffServ > DSCP Setting .............................................................................182
Table 67 IP Application > DHCP Status ............................................................................................... 184
Table 68 Relay Agent Information ....................................................................................................... 184
Table 69 IP Application > DHCP > Global ........................................................................................... 185
Table 70 IP Application > DHCP > VLAN ............................................................................................ 187
Table 71 Management > Maintenance ................................................................................................ 191
Table 72 Filename Conventions .......................................................................................................... 195
Table 73 General Commands for GUI-based FTP Clients .................................................................. 196
Table 74 Access Control Overview ...................................................................................................... 197
Table 75 SNMP Commands ................................................................................................................ 198
Table 76 SNMP System Traps ............................................................................................................. 199
Table 77 SNMP Interface Traps ........................................................................................................... 200
Table 78 AAA Traps ............................................................................................................................. 201
Table 79 SNMP IP Traps ..................................................................................................................... 201
Table 80 SNMP Switch Traps .............................................................................................................. 201
Table 81 Management > Access Control > SNMP .............................................................................. 203
24
ES-2024 Series User’s Guide
List of Tables
Table 82 Management > Access Control > SNMP > Trap Group ........................................................ 205
Table 83 Management > Access Control > Logins .............................................................................. 206
Table 84 Management > Access Control > Service Access Control ................................................... 212
Table 85 Management > Access Control > Remote Management ...................................................... 212
Table 86 Management > Diagnostic .................................................................................................... 215
Table 87 Syslog Severity Levels .......................................................................................................... 217
Table 88 Management > Syslog .......................................................................................................... 218
Table 89 Management > Syslog > Server Setup ................................................................................. 219
Table 90 ZyXEL Clustering Management Specifications ..................................................................... 221
Table 91 Management > Cluster Management .................................................................................... 223
Table 92 FTP Upload to Cluster Member Example ............................................................................. 224
Table 93 Management > Clustering Management > Configuration ..................................................... 225
Table 94 Management > MAC Table ................................................................................................... 228
Table 95 Management > ARP Table .................................................................................................... 230
Table 96 Management > Configure Clone ........................................................................................... 232
Table 97 Hardware Specifications ....................................................................................................... 235
Table 98 Feature Descriptions ............................................................................................................. 236
Table 99 Firmware Specifications ........................................................................................................ 238
Table 100 Standards Supported .......................................................................................................... 240
Table 101 IP Address Network Number and Host ID Example ........................................................... 244
Table 102 Subnet Masks ..................................................................................................................... 245
Table 103 Maximum Host Numbers .................................................................................................... 245
Table 104 Alternative Subnet Mask Notation ....................................................................................... 245
Table 105 Subnet 1 .............................................................................................................................. 247
Table 106 Subnet 2 .............................................................................................................................. 248
Table 107 Subnet 3 .............................................................................................................................. 248
Table 108 Subnet 4 .............................................................................................................................. 248
Table 109 Eight Subnets ...................................................................................................................... 248
Table 110 24-bit Network Number Subnet Planning ............................................................................ 249
Table 111 16-bit Network Number Subnet Planning ............................................................................ 249
ES-2024 Series User’s Guide
25
List of Tables
26
ES-2024 Series User’s Guide
PART I
Introduction
Getting to Know Your Switch (29)
Hardware Installation and Connection (33)
Hardware Overview (37)
27
28
CHAPTER 1
Getting to Know Your Switch
This chapter introduces the main features and applications of the Switch.
1.1 Introduction
The Switch is a stand-alone layer-2 Ethernet switch with 24 10/100Mbps ports and two
Gigabit Ethernet/mini-GBIC ports. The ES-2024PWR comes with the Power-over-Ethernet
(PoE) feature.
With its built-in web configurator, managing and configuring the Switch is easy. In addition,
the Switch can also be managed via Telnet, SSH (Secure SHell), any terminal emulator
program on the console port, or third-party SNMP management.
See Appendix A on page 235 for a full list of software features available on the Switch.
1.1.1 Backbone Application
The Switch is an ideal solution for small networks where rapid growth can be expected in the
near future. The Switch can be used standalone for a group of heavy traffic users. You can
connect computers and servers directly to the Switch’s port or connect other switches to the
Switch.
In this example, all computers can share high-speed applications on the server. To expand the
network, simply add more networking devices such as switches, routers, computers, print
servers etc.
Figure 1 Backbone Application
ES-2024 Series User’s Guide
29
Chapter 1 Getting to Know Your Switch
1.1.2 Bridging Example
In this example application the Switch connects different company departments (RD and
Sales) to the corporate backbone. It can alleviate bandwidth contention and eliminate server
and network bottlenecks. All users that need high bandwidth can connect to high-speed
department servers via the Switch. You can provide a super-fast uplink connection by using a
Gigabit Ethernet/mini-GBIC port on the Switch.
Moreover, the Switch eases supervision and maintenance by allowing network managers to
centralize multiple servers at a single location.
Figure 2 Bridging Application
1.1.3 High Performance Switching Example
The Switch is ideal for connecting two networks that need high bandwidth. In the following
example, use trunking to connect these two networks.
Switching to higher-speed LANs such as ATM (Asynchronous Transmission Mode) is not
feasible for most people due to the expense of replacing all existing Ethernet cables and
adapter cards, restructuring your network and complex maintenance. The Switch can provide
the same bandwidth as ATM at much lower cost while still being able to use existing adapters
and switches. Moreover, the current LAN structure can be retained as all ports can freely
communicate with each other.
30
ES-2024 Series User’s Guide
Loading...