Zyxel GS3700-48 User Manual [ru]

Download

Quick Start Guide

GS3700/XGS3700 Series

GbE L2+ Switch

Version 4.10 Edition 3, 06/2014

User’s Guide

Default Login Details

IP Address http://192.168.0.1 (Out-

of-band MGMT port)

www.zyxel.com

User Name admin Password 1234

http://192.168.1.1 (In-

band ports)

IMPORTANT! READ CAREFULLY BEFORE USE. KEEP THIS GUIDE FOR FUTURE REFERENCE.

Note: This guide is a reference for a series of products. Therefore some features or

options in this guide may not be available in your product.

Screenshots and graphics in this book may differ slightly from your product due to differences in your product firmware or your computer operating system. Every effort has been made to ensure that the information in this manual is accurate.

Contents Overview

User’s Guide .......................................................................................................................................18

Getting to Know Your Switch ...................................................................................................................19

Hardware Installation and Connection ....................................................................................................24

Hardware Overview .................................................................................................................................28

The Web Configurator .............................................................................................................................35

Technical Reference ..........................................................................................................................44

ZON Utility, ZON Neighbor Management and Port Status ......................................................................45

Basic Setting ..........................................................................................................................................52

VLAN .......................................................................................................................................................81

Static MAC Forward Setup ......................................................................................................................99

Static Multicast Forward Setup ..............................................................................................................101

Filtering .................................................................................................................................................104

Spanning Tree Protocol .........................................................................................................................106

Bandwidth Control .................................................................................................................................124

Broadcast Storm Control .......................................................................................................................126

Mirroring ................................................................................................................................................128

Link Aggregation ...................................................................................................................................137

Port Authentication ................................................................................................................................145

Port Security ..........................................................................................................................................153

Classifier ...............................................................................................................................................156

Policy Rule ...........................................................................................................................................162

Queuing Method ....................................................................................................................................167

VLAN Stacking ......................................................................................................................................170

Multicast ................................................................................................................................................177

AAA .......................................................................................................................................................200

IP Source Guard ...................................................................................................................................213

Loop Guard ...........................................................................................................................................235

VLAN Mapping ......................................................................................................................................238

Layer 2 Protocol Tunneling ...................................................................................................................241

sFlow .....................................................................................................................................................245

PPPoE ...................................................................................................................................................249

Error Disable .........................................................................................................................................257

MAC Pinning .........................................................................................................................................263

Private VLAN .........................................................................................................................................265

Green Ethernet ......................................................................................................................................269

Link Layer Discovery Protocol (LLDP) ..................................................................................................271

Static Route ...........................................................................................................................................297

GS3700/XGS3700 Series User’s Guide

Contents Overview

Policy Routing .......................................................................................................................................301

Differentiated Services ..........................................................................................................................305

DHCP ....................................................................................................................................................313

VRRP ....................................................................................................................................................327

Load Sharing .........................................................................................................................................336

ARP Setup ............................................................................................................................................338

Maintenance ..........................................................................................................................................344

Access Control ......................................................................................................................................352

Diagnostic .............................................................................................................................................373

Syslog ...................................................................................................................................................375

Cluster Management .............................................................................................................................378

MAC Table .............................................................................................................................................384

IP Table .................................................................................................................................................387

ARP Table .............................................................................................................................................389

Routing Table ........................................................................................................................................391

Path MTU Table ....................................................................................................................................392

Configure Clone ....................................................................................................................................393

Neighbor Table ......................................................................................................................................395

Troubleshooting ....................................................................................................................................397

GS3700/XGS3700 Series User’s Guide

Table of Contents

Contents Overview ..............................................................................................................................3

Table of Contents .................................................................................................................................5

Part I: User’s Guide .........................................................................................18

Chapter 1

Getting to Know Your Switch.............................................................................................................19

1.1 Introduction .......................................................................................................................................19

1.1.1 Bridging Example ....................................................................................................................20

1.1.2 High Performance Switching Example ....................................................................................20

1.1.3 Gigabit Ethernet to the Desktop ..............................................................................................21

1.1.4 IEEE 802.1Q VLAN Application Example ................................................................................21

1.1.5 IPv6 Support ............................................................................................................................22

1.2 Ways to Manage the Switch ..............................................................................................................22

1.3 Good Habits for Managing the Switch ...............................................................................................23

Chapter 2

Hardware Installation and Connection.............................................................................................24

2.1 Freestanding Installation ..................................................................................................................24

2.2 Mounting the Switch on a Rack ........................................................................................................25

2.3 Installation Requirements ..................................................................................................................25

2.3.1 Precautions .............................................................................................................................25

2.4 Attaching the Brackets to the Switch .................................................................................................25

2.5 Mounting the Switch on a Rack .........................................................................................................26

2.6 Power Module Installation .................................................................................................................27

Chapter 3

Hardware Overview ............................................................................................................................28

3.1 Front Panel Connections ..................................................................................................................28

3.1.1 Ethernet Ports ..........................................................................................................................29

3.1.2 SFP/SFP+ Slots ......................................................................................................................30

3.1.3 Management Port ....................................................................................................................31

3.1.4 Console Port ...........................................................................................................................31

3.2 Rear Panel ........................................................................................................................................32

3.2.1 Removing and Installing the Fan Module ................................................................................32

3.2.2 Power Connection ...................................................................................................................32

3.3 LEDs .............................................................................................................................................33

GS3700/XGS3700 Series User’s Guide

Table of Contents

Chapter 4

The Web Configurator........................................................................................................................35

4.1 Introduction .......................................................................................................................................35

4.2 System Login .................................................................................................................................35

4.3 The Web Configurator Layout .........................................................................................................36

4.3.1 Change Your Password ........................................................................................................41

4.4 Saving Your Configuration ................................................................................................................41

4.5 Switch Lockout ................................................................................................................................41

4.6 Resetting the Switch ......................................................................................................................42

4.6.1 Reload the Configuration File .................................................................................................42

4.7 Logging Out of the Web Configurator ..............................................................................................43

4.8 Help ..................................................................................................................................................43

Part II: Technical Reference............................................................................44

Chapter 5

ZON Utility, ZON Neighbor Management and Port Status...............................................................45

5.1 Overview ...........................................................................................................................................45

5.2 ZyXEL One Network (ZON) Utility Screen .......................................................................................45

5.3 ZON Neighbor Management Screen ................................................................................................46

5.4 Port Status Summary ...................................................................................................................47

5.4.1 Status: Port Details ..............................................................................................................49

Chapter 6

Basic Setting ......................................................................................................................................52

6.1 System Information ........................................................................................................................52

6.2 General Setup ...............................................................................................................................54

6.3 Introduction to VLANs ......................................................................................................................55

6.4 Switch Setup ....................................................................................................................................56

6.5 IP Setup .........................................................................................................................................58

6.5.1 IP Interfaces ...........................................................................................................................58

6.6 Port Setup ........................................................................................................................................60

6.7 PoE ................................................................................................................................................62

6.7.1 PoE Setup ...............................................................................................................................64

6.8 Interface Setup .................................................................................................................................66

6.9 IPv6 ...................................................................................................................................................67

6.9.1 IPv6 Interface Status ...............................................................................................................68

6.9.2 IPv6 Configuration ...................................................................................................................70

6.9.3 IPv6 Global Setup ....................................................................................................................71

6.9.4 IPv6 Interface Setup ................................................................................................................71

6.9.5 IPv6 Link-Local Address Setup ...............................................................................................72

GS3700/XGS3700 Series User’s Guide

Table of Contents

6.9.6 IPv6 Global Address Setup .....................................................................................................73

6.9.7 IPv6 Neighbor Discovery Setup ...............................................................................................74

6.9.8 IPv6 Router Discovery Setup ..................................................................................................75

6.9.9 IPv6 Prefix Setup .....................................................................................................................77

6.9.10 IPv6 Neighbor Setup .............................................................................................................78

6.9.11 DHCPv6 Client Setup ............................................................................................................79

Chapter 7

VLAN....................................................................................................................................................81

7.1 Introduction to IEEE 802.1Q Tagged VLANs ...............................................................................81

7.1.1 Forwarding Tagged and Untagged Frames .............................................................................81

7.2 Automatic VLAN Registration ...........................................................................................................82

7.2.1 GARP ......................................................................................................................................82

7.2.2 GVRP ......................................................................................................................................82

7.3 Port VLAN Trunking .........................................................................................................................83

7.4 Select the VLAN Type ......................................................................................................................83

7.5 802.1Q Static VLAN ..........................................................................................................................83

7.5.1 VLAN Status ...........................................................................................................................84

7.5.2 VLAN Details ...........................................................................................................................85

7.5.3 Configure a Static VLAN or Private VLAN ...........................................................................86

7.5.4 Configure VLAN Port Settings .............................................................................................88

7.5.5 Subnet Based VLANs .............................................................................................................89

7.5.6 Protocol Based VLANs ...........................................................................................................91

7.5.7 View Private VLAN Status ...................................................................................................94

7.6 Port-based VLAN Setup ................................................................................................................95

7.6.1 Configure a Port-based VLAN ................................................................................................95

Chapter 8

Static MAC Forward Setup.................................................................................................................99

8.1 Overview ...........................................................................................................................................99

8.2 Configuring Static MAC Forwarding .............................................................................................99

Chapter 9

Static Multicast Forward Setup .......................................................................................................101

9.1 Static Multicast Forwarding Overview .............................................................................................101

9.2 Configuring Static Multicast Forwarding ..........................................................................................102

Chapter 10

Filtering..............................................................................................................................................104

10.1 Configure a Filtering Rule ...........................................................................................................104

Chapter 11

Spanning Tree Protocol....................................................................................................................106

GS3700/XGS3700 Series User’s Guide

Table of Contents

11.1 STP/RSTP Overview ...................................................................................................................106

11.1.1 STP Terminology .................................................................................................................106

11.1.2 How STP Works ..................................................................................................................107

11.1.3 STP Port States ..................................................................................................................107

11.1.4 Multiple RSTP ....................................................................................................................107

11.1.5 Multiple STP .........................................................................................................................108

11.2 Spanning Tree Protocol Status Screen .......................................................................................... 110

11.3 Spanning Tree Configuration ........................................................................................................ 111

11.4 Configure Rapid Spanning Tree Protocol ...................................................................................112

11.5 Rapid Spanning Tree Protocol Status ......................................................................................... 113

11.6 Configure Multiple Rapid Spanning Tree Protocol ...................................................................... 114

11.7 Multiple Rapid Spanning Tree Protocol Status ........................................................................116

11.8 Configure Multiple Spanning Tree Protocol ................................................................................117

11.8.1 Multiple Spanning Tree Protocol Port Configuration ...........................................................120

11.9 Multiple Spanning Tree Protocol Status ...................................................................................122

Chapter 12

Bandwidth Control............................................................................................................................124

12.1 Bandwidth Control Overview .......................................................................................................124

12.1.1 CIR and PIR ........................................................................................................................124

12.2 Bandwidth Control Setup ..............................................................................................................124

Chapter 13

Broadcast Storm Control.................................................................................................................126

13.1 Broadcast Storm Control Setup ....................................................................................................126

Chapter 14

Mirroring............................................................................................................................................128

14.1 Port Mirroring ...............................................................................................................................128

14.1.1 Local Port Mirroring .............................................................................................................131

14.1.2 Remote Port Mirroring .........................................................................................................132

14.1.3 Source .................................................................................................................................132

14.1.4 Destination ...........................................................................................................................134

14.1.5 Connected Port ....................................................................................................................135

Chapter 15

Link Aggregation..............................................................................................................................137

15.1 Link Aggregation Overview ..........................................................................................................137

15.2 Dynamic Link Aggregation ...........................................................................................................137

15.2.1 Link Aggregation ID ............................................................................................................138

15.3 Link Aggregation Status ...............................................................................................................138

15.4 Link Aggregation Setting ..............................................................................................................139

15.5 Link Aggregation Control Protocol .............................................................................................141

GS3700/XGS3700 Series User’s Guide

Table of Contents

15.6 Static Trunking Example ...............................................................................................................143

Chapter 16

Port Authentication ..........................................................................................................................145

16.1 Port Authentication Overview .......................................................................................................145

16.1.1 IEEE 802.1x Authentication .................................................................................................145

16.1.2 MAC Authentication .............................................................................................................146

16.2 Port Authentication Configuration .................................................................................................147

16.2.1 Activate IEEE 802.1x Security .........................................................................................147

16.2.2 Guest VLAN ........................................................................................................................149

16.2.3 Activate MAC Authentication ..............................................................................................151

Chapter 17

Port Security .....................................................................................................................................153

17.1 About Port Security .......................................................................................................................153

17.2 Port Security Setup .......................................................................................................................153

17.3 VLAN MAC Address Limit ............................................................................................................154

Chapter 18

Classifier............................................................................................................................................156

18.1 About the Classifier and QoS ........................................................................................................156

18.2 Configuring the Classifier .............................................................................................................156

18.3 Viewing and Editing Classifier Configuration ................................................................................159

18.4 Classifier Example ........................................................................................................................160

Chapter 19

Policy Rule .......................................................................................................................................162

19.1 Policy Rules Overview .................................................................................................................162

19.1.1 DiffServ ................................................................................................................................162

19.1.2 DSCP and Per-Hop Behavior ..............................................................................................162

19.2 Configuring Policy Rules ...............................................................................................................162

19.3 Viewing and Editing Policy Configuration ......................................................................................165

19.4 Policy Example ..............................................................................................................................165

Chapter 20

Queuing Method ...............................................................................................................................167

20.1 Queuing Method Overview ...........................................................................................................167

20.1.1 Strictly Priority ......................................................................................................................167

20.1.2 Weighted Fair Queuing ........................................................................................................167

20.1.3 Weighted Round Robin Scheduling (WRR) .........................................................................168

20.2 Configuring Queuing .....................................................................................................................168

Chapter 21

VLAN Stacking..................................................................................................................................170

GS3700/XGS3700 Series User’s Guide

Table of Contents

21.1 VLAN Stacking Overview .............................................................................................................170

21.1.1 VLAN Stacking Example ......................................................................................................170

21.2 VLAN Stacking Port Roles ............................................................................................................171

21.3 VLAN Tag Format ..........................................................................................................................171

21.3.1 Frame Format ......................................................................................................................172

21.4 Configuring VLAN Stacking ...........................................................................................................172

21.4.1 Port-based Q-in-Q ...............................................................................................................174

21.4.2 Selective Q-in-Q .................................................................................................................174

Chapter 22

Multicast ............................................................................................................................................177

22.1 Multicast Overview .......................................................................................................................177

22.1.1 IP Multicast Addresses ........................................................................................................177

22.1.2 IGMP Filtering ......................................................................................................................177

22.1.3 IGMP Snooping ..................................................................................................................178

22.1.4 IGMP Snooping and VLANs ................................................................................................178

22.1.5 MLD Snooping-Proxy ..........................................................................................................178

22.1.6 MLD Messages ....................................................................................................................179

22.2 Multicast Setup ..............................................................................................................................179

22.3 IPv4 Multicast Status ....................................................................................................................180

22.3.1 IGMP Snooping ..................................................................................................................180

22.3.2 IGMP Snooping VLAN ........................................................................................................183

22.3.3 IGMP Filtering Profile .........................................................................................................184

22.4 IPv6 Multicast Status ....................................................................................................................186

22.4.1 MLD Snooping-proxy ..........................................................................................................186

22.4.2 MLD Snooping-proxy VLAN ...............................................................................................187

22.4.3 MLD Snooping-proxy VLAN Port Role Setting ...................................................................188

22.4.4 MLD Snooping-proxy Filtering ............................................................................................190

22.4.5 MLD Snooping-proxy Filtering Profile .................................................................................191

22.5 MVR Overview .............................................................................................................................192

22.5.1 Types of MVR Ports .............................................................................................................193

22.5.2 MVR Modes .........................................................................................................................193

22.5.3 How MVR Works .................................................................................................................193

22.6 General MVR Configuration ..........................................................................................................194

22.6.1 MVR Group Configuration ..................................................................................................196

22.6.2 MVR Configuration Example ...............................................................................................198

Chapter 23

AAA....................................................................................................................................................200

23.1 Authentication, Authorization and Accounting (AAA) ....................................................................200

23.1.1 Local User Accounts ............................................................................................................200

23.1.2 RADIUS and TACACS+ ......................................................................................................201

23.2 AAA Screens .................................................................................................................................201

GS3700/XGS3700 Series User’s Guide

Table of Contents

23.2.1 RADIUS Server Setup .......................................................................................................201

23.2.2 TACACS+ Server Setup ..................................................................................................203

23.2.3 AAA Setup ...........................................................................................................................205

23.2.4 Vendor Specific Attribute .....................................................................................................208

23.2.5 Tunnel Protocol Attribute .....................................................................................................209

23.3 Supported RADIUS Attributes .......................................................................................................209

23.3.1 Attributes Used for Authentication .......................................................................................210

23.3.2 Attributes Used for Accounting ............................................................................................210

Chapter 24

IP Source Guard................................................................................................................................213

24.1 IP Source Guard Overview ...........................................................................................................213

24.1.1 DHCP Snooping Overview ..................................................................................................213

24.1.2 ARP Inspection Overview ....................................................................................................215

24.2 IP Source Guard ...........................................................................................................................217

24.3 IP Source Guard Static Binding .....................................................................................................217

24.4 DHCP Snooping ............................................................................................................................219

24.5 DHCP Snooping Configure ...........................................................................................................222

24.5.1 DHCP Snooping Port Configure ..........................................................................................224

24.5.2 DHCP Snooping VLAN Configure .......................................................................................225

24.5.3 DHCP Snooping VLAN Port Configure ................................................................................226

24.6 ARP Inspection Status ..................................................................................................................227

24.6.1 ARP Inspection VLAN Status ..............................................................................................228

24.6.2 ARP Inspection Log Status ..................................................................................................229

24.7 ARP Inspection Configure .............................................................................................................231

24.7.1 ARP Inspection Port Configure ............................................................................................232

24.7.2 ARP Inspection VLAN Configure .........................................................................................233

Chapter 25

Loop Guard .......................................................................................................................................235

25.1 Loop Guard Overview ..................................................................................................................235

25.2 Loop Guard Setup .........................................................................................................................237

Chapter 26

VLAN Mapping ..................................................................................................................................238

26.1 VLAN Mapping Overview .............................................................................................................238

26.1.1 VLAN Mapping Example .....................................................................................................238

26.2 Enabling VLAN Mapping ...............................................................................................................238

26.3 Configuring VLAN Mapping ...........................................................................................................239

Chapter 27

Layer 2 Protocol Tunneling..............................................................................................................241

27.1 Layer 2 Protocol Tunneling Overview ..........................................................................................241

GS3700/XGS3700 Series User’s Guide

Table of Contents

27.1.1 Layer-2 Protocol Tunneling Mode ........................................................................................242

27.2 Configuring Layer 2 Protocol Tunneling ........................................................................................242

Chapter 28

sFlow..................................................................................................................................................245

28.1 sFlow Overview .............................................................................................................................245

28.2 sFlow Port Configuration ...............................................................................................................245

28.2.1 sFlow Collector Configuration ..............................................................................................247

Chapter 29

PPPoE................................................................................................................................................249

29.1 PPPoE Intermediate Agent Overview ..........................................................................................249

29.1.1 PPPoE Intermediate Agent Tag Format ..............................................................................249

29.1.2 Sub-Option Format ..............................................................................................................249

29.1.3 Port State .............................................................................................................................250

29.2 The PPPoE Screen .......................................................................................................................251

29.3 PPPoE Intermediate Agent ..........................................................................................................251

29.3.1 PPPoE IA Per-Port .............................................................................................................253

29.3.2 PPPoE IA Per-Port Per-VLAN ............................................................................................254

29.3.3 PPPoE IA for VLAN ............................................................................................................256

Chapter 30

Error Disable.....................................................................................................................................257

30.1 CPU Protection Overview .............................................................................................................257

30.2 Error-Disable Recovery Overview .................................................................................................257

30.3 The Error Disable Screen ..............................................................................................................257

30.4 Error-Disable Status .....................................................................................................................258

30.5 CPU Protection Configuration ......................................................................................................259

30.6 Error-Disable Detect Configuration ..............................................................................................260

30.7 Error-Disable Recovery Configuration .........................................................................................261

Chapter 31

MAC Pinning .....................................................................................................................................263

31.1 MAC Pinning Overview ................................................................................................................263

31.2 MAC Pinning Configuration ...........................................................................................................263

Chapter 32

Private VLAN.....................................................................................................................................265

32.1 Private VLAN Overview ................................................................................................................265

32.1.1 Configuration .......................................................................................................................267

Chapter 33

Green Ethernet..................................................................................................................................269

GS3700/XGS3700 Series User’s Guide

Table of Contents

33.1 Green Ethernet Overview .............................................................................................................269

33.2 Configuring Green Ethernet ..........................................................................................................269

Chapter 34

Link Layer Discovery Protocol (LLDP)...........................................................................................271

34.1 LLDP Overview .............................................................................................................................271

34.2 LLDP-MED Overview ....................................................................................................................272

34.3 LLDP Screens ...............................................................................................................................273

34.4 LLDP Local Status ........................................................................................................................274

34.4.1 LLDP Local Port Status Detail ............................................................................................276

34.5 LLDP Remote Status ....................................................................................................................280

34.5.1 LLDP Remote Port Status Detail ........................................................................................281

34.6 LLDP Configuration ......................................................................................................................287

34.6.1 LLDP Configuration Basic TLV Setting ...............................................................................289

34.6.2 LLDP Configuration Basic Org-specific TLV Setting ...........................................................290

34.7 LLDP-MED Configuration .............................................................................................................291

34.8 LLDP-MED Network Policy .........................................................................................................292

34.9 LLDP-MED Location ...................................................................................................................294

Chapter 35

Static Route.......................................................................................................................................297

35.1 Static Routing Overview ..............................................................................................................297

35.2 Static Routing ................................................................................................................................297

35.3 Configuring IPv4 Static Routing ..................................................................................................298

35.4 Configuring IPv6 Static Routing ..................................................................................................299

Chapter 36

Policy Routing...................................................................................................................................301

36.1 Policy Route Overview .................................................................................................................301

36.1.1 Benefits ................................................................................................................................301

36.2 Configuring Policy Routing Profile .................................................................................................301

36.2.1 Policy Routing Rule Configuration ......................................................................................302

Chapter 37

Differentiated Services.....................................................................................................................305

37.1 DiffServ Overview ........................................................................................................................305

37.1.1 DSCP and Per-Hop Behavior ..............................................................................................305

37.1.2 DiffServ Network Example ..................................................................................................305

37.2 Two Rate Three Color Marker Traffic Policing ..............................................................................306

37.2.1 TRTCM - Color-blind Mode ..................................................................................................307

37.2.2 TRTCM - Color-aware Mode ...............................................................................................307

37.3 Activating DiffServ ........................................................................................................................307

37.3.1 Configuring 2-Rate 3 Color Marker Settings .......................................................................308

GS3700/XGS3700 Series User’s Guide

Table of Contents

37.3.2 DSCP Profile ......................................................................................................................310

37.4 DSCP-to-IEEE 802.1p Priority Settings ................................................................................... 311

37.4.1 Configuring DSCP Settings ................................................................................................. 311

Chapter 38

DHCP..................................................................................................................................................313

38.1 DHCP Overview ...........................................................................................................................313

38.1.1 DHCP Modes ......................................................................................................................313

38.1.2 DHCP Configuration Options ...............................................................................................313

38.2 DHCP Configuration ......................................................................................................................313

38.3 DHCPv4 Status ............................................................................................................................314

38.3.1 DHCPv4 Server Status Detail .............................................................................................314

38.4 DHCPv4 Relay .............................................................................................................................315

38.4.1 DHCPv4 Relay Agent Information .......................................................................................316

38.4.2 DHCPv4 Option 82 Profile ...................................................................................................316

38.4.3 Configuring DHCPv4 Global Relay ......................................................................................318

38.4.4 DHCPv4 Global Relay Port Configure ................................................................................319

38.4.5 Global DHCP Relay Configuration Example .......................................................................320

38.5 Configuring DHCP VLAN Settings .............................................................................................321

38.5.1 DHCPv4 VLAN Port Configure ...........................................................................................322

38.5.2 Example: DHCP Relay for Two VLANs ...............................................................................324

38.6 DHCPv6 Relay ..............................................................................................................................325

Chapter 39

VRRP..................................................................................................................................................327

39.1 VRRP Overview ...........................................................................................................................327

39.2 VRRP Status .................................................................................................................................328

39.3 VRRP Configuration .....................................................................................................................328

39.3.1 IP Interface Setup ...............................................................................................................328

39.3.2 VRRP Parameters ..............................................................................................................330

39.3.3 Configuring VRRP Parameters ............................................................................................330

39.3.4 Viewing VRRP Summary .....................................................................................................332

39.4 VRRP Configuration Examples ....................................................................................................332

39.4.1 One Subnet Network Example ...........................................................................................332

39.4.2 Two Subnets Example .........................................................................................................334

Chapter 40

Load Sharing.....................................................................................................................................336

40.1 Load Sharing Overview ................................................................................................................336

40.2 Configuring Load Sharing .............................................................................................................336

Chapter 41

ARP Setup .........................................................................................................................................338

GS3700/XGS3700 Series User’s Guide

Table of Contents

41.1 ARP Overview ..............................................................................................................................338

41.1.1 How ARP Works ..................................................................................................................338

41.1.2 ARP Learning Mode ............................................................................................................338

41.2 ARP Setup ....................................................................................................................................340

41.2.1 ARP Learning .....................................................................................................................340

41.2.2 Static ARP ...........................................................................................................................342

Chapter 42

Maintenance...................................................................................................................................... 344

42.1 The Maintenance Screen ..............................................................................................................344

42.2 Load Factory Default ....................................................................................................................345

42.3 Save Configuration ........................................................................................................................345

42.4 Reboot System ..............................................................................................................................346

42.5 Firmware Upgrade ........................................................................................................................346

42.6 Restore a Configuration File .........................................................................................................347

42.7 Backup a Configuration File ..........................................................................................................347

42.8 Tech-Support ................................................................................................................................348

42.9 FTP Command Line ......................................................................................................................349

42.9.1 Filename Conventions ........................................................................................................349

42.9.2 FTP Command Line Procedure ..........................................................................................350

42.9.3 GUI-based FTP Clients ........................................................................................................351

42.9.4 FTP Restrictions .................................................................................................................351

Chapter 43

Access Control .................................................................................................................................352

43.1 Access Control Overview ..........................................................................................................352

43.2 The Access Control Main Screen ..................................................................................................352

43.3 About SNMP ...............................................................................................................................352

43.3.1 SNMP v3 and Security ........................................................................................................353

43.3.2 Supported MIBs .................................................................................................................354

43.3.3 SNMP Traps ........................................................................................................................354

43.3.4 Configuring SNMP ............................................................................................................357

43.3.5 Configuring SNMP Trap Group .........................................................................................359

43.3.6 Enabling/Disabling Sending of SNMP Traps on a Port ........................................................360

43.3.7 Configuring SNMP User ...................................................................................................361

43.4 Setting Up Login Accounts ..........................................................................................................362

43.5 SSH Overview ...............................................................................................................................364

43.6 How SSH works ............................................................................................................................364

43.7 SSH Implementation on the Switch ...............................................................................................365

43.7.1 Requirements for Using SSH ...............................................................................................366

43.8 Introduction to HTTPS ...................................................................................................................366

43.9 HTTPS Example ...........................................................................................................................367

43.9.1 Internet Explorer Warning Messages ..................................................................................367

GS3700/XGS3700 Series User’s Guide

Table of Contents

43.9.2 Mozilla Firefox Warning Messages ......................................................................................368

43.9.3 The Main Screen .................................................................................................................370

43.10 Service Access Control ............................................................................................................370

43.11 Remote Management .............................................................................................................371

Chapter 44

Diagnostic .........................................................................................................................................373

44.1 Diagnostic ....................................................................................................................................373

Chapter 45

Syslog................................................................................................................................................375

45.1 Syslog Overview ...........................................................................................................................375

45.2 Syslog Setup ................................................................................................................................375

45.3 Syslog Server Setup ....................................................................................................................376

Chapter 46

Cluster Management ........................................................................................................................378

46.1 Clustering Management Status Overview ....................................................................................378

46.2 Cluster Management Status .........................................................................................................379

46.2.1 Cluster Member Switch Management ................................................................................380

46.3 Clustering Management Configuration ........................................................................................382

Chapter 47

MAC Table .........................................................................................................................................384

47.1 MAC Table Overview ....................................................................................................................384

47.2 Viewing the MAC Table .................................................................................................................385

Chapter 48

IP Table ..............................................................................................................................................387

48.1 IP Table Overview ........................................................................................................................387

48.2 Viewing the IP Table ......................................................................................................................388

Chapter 49

ARP Table..........................................................................................................................................389

49.1 ARP Table Overview ....................................................................................................................389

49.1.1 How ARP Works ..................................................................................................................389

49.2 The ARP Table Screen .................................................................................................................389

Chapter 50

Routing Table....................................................................................................................................391

50.1 Overview .......................................................................................................................................391

50.2 Viewing the Routing Table Status .................................................................................................391

GS3700/XGS3700 Series User’s Guide

Table of Contents

Chapter 51

Path MTU Table................................................................................................................. ................392

51.1 Path MTU Overview .....................................................................................................................392

51.2 Viewing the Path MTU Table .........................................................................................................392

Chapter 52

Configure Clone................................................................................................................................393

52.1 Configure Clone ...........................................................................................................................393

Chapter 53

Neighbor Table..................................................................................................................................395

53.1 IPv6 Neighbor Table Overview .....................................................................................................395

53.2 Viewing the IPv6 Neighbor Table ..................................................................................................395

Chapter 54

Troubleshooting................................................................................................................................397

54.1 Power, Hardware Connections, and LEDs ....................................................................................397

54.2 Switch Access and Login ..............................................................................................................398

54.3 Switch Configuration .....................................................................................................................400

Appendix A Common Services........................................................................................................401

Appendix B IPv6 ..............................................................................................................................404

Appendix C Customer Support........................................................................................................413

Appendix D Legal Information .........................................................................................................419

Index ..................................................................................................................................................422

GS3700/XGS3700 Series User’s Guide

PART I

User’s Guide

This chapter introduces the main features and applications of the Switch.

1.1 Introduction

Your Switch is a layer 2+, Gigabit Ethernet (GbE) switch with two power slots for hot-swappable RPS300 or RPS600-HP power modules. The Switch provides four SFP or SFP+ slots for uplink. By integrating router functions, the Switch performs wire-speed layer -3 routing in addition to layer-2 switching.

This User’s Guide covers the following models: GS3700-24, GS3700-24HP, GS3700-48, GS370048HP, XGS3700-24, XGS3700-24HP, XGS3700-48, and XGS3700-48HP.

Table 1 Switch Comparison Table

PORT/SWITCH DETAILS

24 10/100/1000Base-T Ethernet ports

48 10/100/1000Base-T Ethernet ports

4 1GbE SFP slots 4 10GbE SFP+ slots Supports IEEE 802.3af and

IEEE 802.3at PoE standards Supports IEEE 802.3az EEE

Energy Efficient Ethernet (EEE)

GS3700-24GS3700-

CHAPTER 1

Getting to Know Your Switch

24HP

GS3700-48GS3700-

48HP

XGS3700

-24

XGS3700

-24HP

XGS3700

-48

XGS3700

-48HP

With its built-in web configurator, including the ZyXEL One Network (ZON) Neighbor Management feature (Section 5.3 on page 46), viewing, managing and configuring the Switch and its neighboring devices is easy. In addition, the Switch can also be managed via Telnet, any terminal emulator program on the console port, or third-party SNMP management.

In addition, ZyXEL offers a proprietary software progr am called Z yXEL One Network (ZON) Utility, it is a utility tool that assists you to set up and maintain network devices in a more simple and efficient way. You can download the ZON Utility at www.zyxel.com and install it on a PC. For more information on ZON Utility see Section 5.2 on page 45.

See the datasheet for a full list of software features available on the Switch.

GS3700/XGS3700 Series User’s Guide

1.1.1 Bridging Example

Backbone

Sales

In this example the Switch connects different company departments (RD and Sales) to the corporate backbone. It can alleviate bandwidth contention and eliminate server and network bottlenecks. All users that need high bandwidth can connect to high-speed department servers via the Switch. You can provide a super-fast uplink connection by using the optional 10 Gigabit uplink module on the Switch.

Figure 1 Bridging Application

Chapter 1 Getting to Know Your Switch

1.1.2 High Performance Switching Example

The Switch is ideal for connecting two geographically dispersed networks that need high bandwidth. In the following example, a company uses the optional 10 Gigabit uplink modules to connect the headquarters to a branch office network. Within the headquarters network, a company can use trunking to group several physical ports into one logical higher-capacity link. Trunking can be used if for example, it is cheaper to use multiple lower-speed links than to under-utilize a high-speed, but more costly, single-port link.

GS3700/XGS3700 Series User’s Guide

Chapter 1 Getting to Know Your Switch

Branch

10 Gbps

Trunk

Internet

Figure 2 High Performance Switching

1.1.3 Gigabit Ethernet to the Desktop

The Switch is an ideal solution for small networks which demand high bandwidth for a group of heavy traffic users. You can connect computers and servers directly to the Switch’s port or connect other switches to the Switch. Use the optional 10 Gigabit uplink module to provide high speed access to a data server and the Internet. The uplink module supports a fiber-optic connection which alleviates the distance limitations of copper cabling.

In this example, all computers can share high-speed applications on the server and access the Internet. To expand the network, simply add more networking devices such as switches, routers, computers, print servers and so on.

Figure 3 Gigabit to the Desktop

1.1.4 IEEE 802.1Q VLAN Application Example

A VLAN (Virtual Local Area Network) allows a physical network to be partitioned into multiple logical networks. Stations on a logical network belong to one or more groups. With VLAN, a station cannot directly talk to or hear from stations that are not in the same group(s) unless such traffic first goes through a router.

GS3700/XGS3700 Series User’s Guide

Chapter 1 Getting to Know Your Switch

For more information on VLANs, refer to Chapter 7 on page 81.

1.1.4.1 Tag-based VLAN Example

Ports in the same VLAN group share the same frame broadcast domain, thus increasing network performance by reducing broadcast traffic. VLAN groups can be modified at any time by adding, moving or changing ports without any re-cabling.

Shared resources such as a server can be used by all ports in the same VLAN as the server. In the following figure only ports that need access to the server need to be part of VLAN 1. Ports can belong to other VLAN groups too.

Figure 4 Shared Server Using VLAN Example

1.1.5 IPv6 Support

IPv6 (Internet Protocol version 6), is designed to enhance IP address size and features. The increase in IPv6 address size to 128 bits (from the 32-bit IPv4 address) allows up to 3.4 x 10 addresses. At the time of writing, the Switch supports the following features.

• Static address assignment and stateless auto-configuration

• Neighbor Discovery Protocol (a protocol used to discover other IPv6 devices in a network)

• Remote Management using ping SNMP, telnet, HTTP and FTP services

• ICMPv6 to report errors encountered in packet processing and perform diagnostic functions, such as "ping”

• IPv4/IPv6 dual stack; the Switch can run IPv4 and IPv6 at the same time

• DHCPv6 client and relay

• Multicast Listener Discovery (MLD) snooping and proxy

For more information on IPv6, refer to Appendix B on page 404 and the CLI Reference Guide.

1.2 Ways to Manage the Switch

Use any of the following methods to manage the Switch.

GS3700/XGS3700 Series User’s Guide

Chapter 1 Getting to Know Your Switch

• Web Configurator. This is recommended for everyday management of the Switch using a (supported) web browser. See Chapter 4 on page 35.

• Command Line Interface. Line commands offer an alternative to the Web Configurator and may be necessary to configure advanced features. See the CLI Reference Guide.

• FTP. Use File Transfer Protocol for firmware upgrades and configuration backup/restore. See

Section 42.9 on page 349.

• SNMP. The device can be monitored and/or managed by an SNMP manager. See Section 43.3 on

page 352.

1.3 Good Habits for Managing the Switch

Do the following things regularly to make the Switch more secure and to manage the Switch more effectively.

• Change the password. Use a password that’s not easy to guess and that consists of different types of characters, such as numbers and letters.

• Write down the password and put it in a safe place.

• Back up the configuration (and make sure you know how to restore it). Restoring an earlier working configuration may be useful if the device becomes unstable or even crashes. If you forget your password, you will have to reset the Switch to its factory default settings. If you backed up an earlier configuration file, you would not have to totally re-configure the Sw itch. Y ou could simply restore your last configuration.

GS3700/XGS3700 Series User’s Guide

Hardware Installation and Connection

This chapter shows you how to install and connect the Switch.

2.1 Freestanding Installation

1 Make sure the Switch is clean and dry.

2 Set the Switch on a smooth, level surface strong enough to support the weight of the Switch and

the connected cables. Make sure there is a power outlet nearby.

3 Make sure there is enough clearance around the Switch to allow air circulation and the attachment

of cables and the power cord.

4 Remove the adhesive backing from the rubber feet.

CHAPTER 2

5 Attach the rubber feet to each corner on the bottom of the Switch. These rubber feet help protect

the Switch from shock or vibration and ensure space between devices when stacking. Figure 5 Attaching Rubber Feet

Note: Do NOT block the ventilation holes. Leave space between devices when stacking. Note: For proper ventilation, allow at least 4 inches (10 cm) of clearance at the front and

3.4 inches (8 cm) at the back of the Switch. This is especially important for enclosed rack installations.

GS3700/XGS3700 Series User’s Guide

Chapter 2 Hardware Installation and Connection

2.2 Mounting the Switch on a Rack

This section lists the rack mounting requirements and precautions and describes the installation steps of how to mount the Switch in a 19-inch rack with the included rack mounting kit.

Note: ZyXEL provides extensible rear mounting brackets (RM400) to install the Swi tch in

a 21-inch, 23-inch or 24-inch rack. See the RM400 Hardware Installation Guide.

2.3 Installation Requirements

• Two front mounting brackets (short), two sliding rails and two rear mounting brackets.

• Eight M4 metric screws with large heads and a #2 Philips screwdriver for attaching the brackets to the Switch.

• Four M4 metric screws with small heads and a #2 Philips screwdriver for attaching the sliding rails to the Switch.

• Eight M6 metric rack screws and a screwdriver for attaching the Switch (with attached brackets) to the rack. Rack depth can be from 90 to 120 cm.

Note: Failure to use the proper screws may damage the unit.

2.3.1 Precautions

• Make sure the rack will safely support the combined weight of all the equipment it contains. The maximum weight a bracket can hold is 27 Kg.

• Make sure the position of the Switch does not make the rack unstable or top-heavy. Take all necessary precautions to anchor the rack securely before installing the unit.

2.4 Attaching the Brackets to the Switch

Use the M4 screws (smaller than the rack screws) to attach the brackets to the Switch.

1 Position the smaller front mounting bracket on one si de of the Switch, lining up the four screw holes

on the bracket with the screw holes on the side of the Switch.

2 Use a #2 Philips screwdriver to install the M4 screws with large heads through the mounting

bracket holes into the Switch.

3 Repeat steps 1 and 2 to install the second front mounting bracket on the other side of the Switch.

4 Position a sliding rail on one side at the rear of the Switch, lining up the two screw holes on the

sliding rail with the screw holes on the side of the Switch.

5 Use a screwdriver to install the M4 screws with small heads through the sliding rail holes into the

Switch.

6 Repeat steps 1 and 2 to install the second sliding rail on the other side of the Switch.

GS3700/XGS3700 Series User’s Guide

Chapter 2 Hardware Installation and Connection

Front Bracket

Sliding Rail

Rear Bracket

7 Slide the rear bracket along the rail and set the bracke t in place depending on the depth of the r ack.

The rear brackets can be used with a 19-inch rack.

You may now mount the Switch on a rack. Proceed to the next section.

2.5 Mounting the Switch on a Rack

Use the M6 rack screws (larger than the M4 screws) to mount the S witch with brackets on the rack.

1 Position a front mounting bracket (that is already attached to the Switch) on one side of the rack,

lining up the two screw holes on the bracket with the screw holes at the front of the rack.

2 Use a screwdriver to install the rack screws through the mounting bracket holes into the rack.

3 Repeat steps 1 and 2 to attach the other front mounting bracket on the other side of the rack.

4 Position a rear mounting bracket (that is already attached to the Switch) on one side of the rack,

lining up the two screw holes on the bracket with the screw holes at the rear of the rack.

5 Use a screwdriver to install the rack screws through the mounting bracket holes into the rack.

6 Repeat steps 4 and 5 to attach the other rear mounting bracket on the other side of the rack.

GS3700/XGS3700 Series User’s Guide

Chapter 2 Hardware Installation and Connection

Rear

Front

2.6 Power Module Installation

There is one power module installed in the first power slot of the Switch by default. See the Power Module Hardware Installation Guide for how to install a second power module or remove the

power module.

GS3700/XGS3700 Series User’s Guide

This chapter describes the front panel and rear panel of the Switch and shows you how to make the hardware connections.

3.1 Front Panel Connections

The figure below shows the front panel of the Switch.

Figure 6 Front Panel: GS3700 Series

CHAPTER 3

Hardware Overview

GS3700/XGS3700 Series User’s Guide

Chapter 3 Hardware Overview

Figure 7 Front Panel: XGS3700 Series

The following table describes the ports.

Table 2 Panel Connections

CONNECTOR DESCRIPTION

24 or 48 10/ 100/1000Base-T RJ-45 Ethernet Ports

4 SFP or SFP+ Slots

RJ-45 out-ofband Management Port

Console Port Only connect this port to your computer (using an RS-232 cable) if you want to configure

3.1.1 Ethernet Ports

The Switch has 1000Base- T auto-negotiating, auto-crossover Ethernet ports. In 10/100/1000 Mbps Gigabit Ethernet, the speed can be 10Mbps, 100 Mbps or 1000 Mbps. The duplex mode can be both half or full duplex at 100 Mbps and full duplex only at 1000 Mbps.

An auto-negotiating port can detect and adjust to the optimum Ethernet speed (10/100/1000 Mbps) and duplex mode (full duplex or half duplex) of the connected device.

Connect these ports to a computer, a hub, an Ethernet switch or router.

Use Small Form-Factor Pluggable (SFP) or SFP+ transceivers in these ports for fiber-optic or copper connections to a computer, a hub, an Ethernet switch or router. You can also insert an SFP+ Direct Attach Copper (DAC) in the SFP+ slot.

Connect to a computer using an RJ- 45 Ethernet cable for local configuration of the Switch.

the Switch using the command line interface (CLI) via the console port.

An auto-crossover (auto-MDI/MDI-X) port automatically works with a str aight -through or crossov er Ethernet cable.

3.1.1.1 Default Ethernet Settings

The factory default negotiation settings for the Ethernet ports on the Switch are:

GS3700/XGS3700 Series User’s Guide

• Speed: Auto

•Duplex: Auto

• Flow control: Off

• Dual Personality Interface: Fiber-optic module first

3.1.2 SFP/SFP+ Slots

These are four slots for Small Form-Factor Pluggabl e (SFP) or SFP+ modules, such as an SFP/SFP+ transceiver. The SFP+ (SFP Plus) is an enhanced version of the SFP and supports data rates of 10 Gbps. A transceiver is a single unit that houses a transmitter and a receiver. Use a transceiver to connect a fiber-optic cable to the Switch. The Switch does not come with transceivers. You must use transceivers that comply with the Small Form-Factor Pluggable (SFP) Transceiver MultiSource Agreement (MSA). See the SFF committee’s INF-8074i specification Rev 1.0 for details.

You can change transceivers while the Switch is operating. You can use different transceivers to connect to Ethernet switches with different types of fiber-optic connectors.

• Type: SFP or SFP+ connection interface

• Connection speed: 1 or 10 Gigabit per second (Gbps)

Chapter 3 Hardware Overview

To avoid possible eye injury, do not look into an operating fiber-optic module’s connectors.

3.1.2.1 Transceiver Installation

Use the following steps to install a transceiver.

1 Insert the transceiver into the slot with the exposed section of PCB board facing down.

Figure 8 Transceiver Installation Example

2 Press the transceiver firmly until it clicks into place.

3 The Switch automatically detects the installed transceiver. Check the LEDs to verify that it is

functioning properly.

GS3700/XGS3700 Series User’s Guide

Figure 9 Installed Transceiver

3.1.2.2 Transceiver Removal

Use the following steps to remove a transceiver.

1 Open the transceiver’s latch (latch styles vary).

Figure 10 Opening the Transceiver’s Latch Example

Chapter 3 Hardware Overview

2 Pull the transceiver out of the slot.

Figure 11 Transceiver Removal Example

3.1.3 Management Port

The 100Base-T Ethernet MGMT (management) port is used for local management. Connect directly to this port using an Ethernet cable. You can configure the Switch via Telnet or the web configurator.

The default IP address of the management port is 192.168.0.1 with a subnet mask of

255.255.255.0.

3.1.4 Console Port

For local management, you can use a computer with terminal emulation software configured to the following parameters:

• VT100 terminal emulation

• 9600 bps

GS3700/XGS3700 Series User’s Guide

• No parity, 8 data bits, 1 stop bit

• No flow control

Connect the male 9-pin end of the RS-232 console cable to the console port of the Switch. Connect the female end to a serial port (COM1, COM2 or other COM port) of your computer.

3.2 Rear Panel

The following figures show the rear panels of the Switch. The rear panels contain:

• A slot for a fan module (A)

• Two slots for power modules with power receptacles (B and C)

Figure 12 Rear Panel

Chapter 3 Hardware Overview

3.2.1 Removing and Installing the Fan Module

See the Fan Module Hardware Installation Guide to see how to install the fan module in the Switch.

3.2.2 Power Connection

Make sure you are using the correct power source and that no objects obstruct the airflow of the fans.

The Switch uses two power supply modules, one of which is redundant, so if one power module fails the system can operate on the remaining module.

Connecting the Power

Use the following procedures to connect the Switch to a power source after you have installed it in a rack.

Note: Use the included power cord for the AC power connection.

1 Connect the female end of the power cord to the AC power socket.

2 Connect the other end of the cord to a power outlet.

Disconnecting the Power

The power input connectors can be disconnected from the power source individually.

GS3700/XGS3700 Series User’s Guide

1 Disconnect the power cord from the power outlet.

2 Disconnect the power cord from the AC power socket.

3.3 LEDs

The following table describes the LEDs.

Table 3 LEDs

LED COLOR STATUS DESCRIPTION

PWR1 (Power 1)

PWR2 (Power 2)

SYS (System)

ALM (Alarm)

MAST (Master)

Chapter 3 Hardware Overview

Green On The system is receiving power from the power module in the first

power slot.

Off The system is not receiving power from the power module in the first

power slot.

Amber On The power module in the first power slot fails to supply power or its

fan is not functioning at a proper speed.

Green On The system is receiving power from the power module in the second

power slot.

Off The system is not receiving power from the power module in the

second power slot.

Amber On The power module in the second power slot fails to supply power or its

fan is not functioning at a proper speed.

Green Blinking The system is rebooting and performing self-diagnostic tests.

On The system is on and functioning properly. Off The power is off or the system is not ready or malfunctioning.

Red On There is a hardware failure, such as high device temperature, wrong

voltage and abnormal fan speed.

Off The system is functioning normally.

Green On The Switch is acting as a standalone switch or the master in stacking.

The stacking feature is not available at the time of writing.

Amber On There is an error occurred during master switch election in stacking or

there is other stack related error. The stacking feature is not available at the time of writing.

Off The Switch is acting as a slave member in stacking.

10/100/1000Base-T Ports 1-24 or 1-

48 LNK/ACT

(Left)

PoE 10/100/1000Base-T Ports

Green Blinking The port is receiving or transmitting data at 10 or 1000 Mbps.

On The port has a successful 10 or 1000 Mbps connection.

Amber Blinking The port is receiving or transmitting data 100 Mbps.

On The port has a successful 100 Mbps connection. Off This link is disconnected or the port is disabled.

The stacking feature is not available at the time of writing.

GS3700/XGS3700 Series User’s Guide

Chapter 3 Hardware Overview

Table 3 LEDs (continued)

LED COLOR STATUS DESCRIPTION

1-24 or 148

LNK/ACT (Left)

1-24 or 148

POE (Right) 1G SFP Slots 25-28 or

49-52 LNK/ACT

1G/10G SFP+ Slots 25-28 or

49-52 LNK/ACT

STACK ID The LED is showing the Stack ID number of the Switch.

Green Blinking The port is receiving or transmitting data at 10 or 1000 Mbps.

On The port has a successful 10 or 1000 Mbps connection.

Amber Blinking The port is receiving or transmitting data 100 Mbps.

On The port has a successful 100 Mbps connection. Off This link is disconnected or the port is disabled.

Green On Power is supplied to the PoE port.

Off Power is not supplied to the PoE port.

Green (Right)

Blue (Left)

Blinking The port is receiving or transmitting data at 1 Gbps. On The port has a successful 1 Gbps connection. Off This link is disconnected.

Blinking The port is receiving or transmitting data at 1 Gbps. On The port has a successful 1 Gbps connection.

Blinking The port is receiving or transmitting data 10 Gbps. On The port has a successful 10 Gbps connection.

Off This link is disconnected.

MGMT (Manageme nt)

The stacking feature is not available at the time of writing.

Green Blinking The system is transmitting or receiving to/from an Ethernet device at

10 Mbps through the MGMT port. On The MGMT port is connected at 10 Mbps. Off The MGMT port is not connected at 10 Mbps, to an Ethernet device, or

the port is disabled.

Amber Blinking The system is transmitting or receiving to/from an Ethernet device at

100 Mbps through the MGMT port. On The MGMT port is connected at 100 Mbps. Off The MGMT port is not connected at 100 Mbps, to an Ethernet device,

or the port is disabled.

GS3700/XGS3700 Series User’s Guide

This section introduces the configuration and functions of the web configurator.

4.1 Introduction

The web configurator is an HTML-based management interface that allows easy Switch setup and management via Internet browser. Use Internet Explorer 6.0 and later or Firefox 2.0 and later versions. The recommended screen resolution is 1024 by 768 pixels.

In order to use the web configurator you need to allow:

• Web browser pop-up windows from your device. Web pop-up blocking is enabled by default in Windows XP SP (Service Pack) 2.

• JavaScript (enabled by default).

• Java permissions (enabled by default).

CHAPTER 4

The Web Configurator

4.2 System Login

1 Start your web browser.

2 T ype “http://” and the IP address of the Switch (for example, the default management IP address is

192.168.1.1 through an in-band (non-MGMT) port and 192.168.0.1 through the MGMT port) in the

Location or Address field. Press [ENTER].

3 The login screen appears. The default username is admin and associated default password is

1234. The date and time display as shown if you have not configured a time server nor manually

entered a time and date in the General Setup screen.

GS3700/XGS3700 Series User’s Guide

Chapter 4 The Web Configurator

Figure 13 Web Configurator: Login

4 Click OK to view the first web configurator screen.

4.3 The Web Configurator Layout

The Status screen is the first screen that displays when you access the web configur ator. This guide uses the GS3700-48HP screens as an example. The screens may vary slightly for different models.

The following figure shows the navigating components of a web configurator screen.

GS3700/XGS3700 Series User’s Guide

Chapter 4 The Web Configurator

BDC

Figure 14 The Web Configurator Layout

A - Click the menu items to open submenu links, and then click on a submenu link to open the screen in the main window.

B, C, D, E - These are quick links which allow you to perform certain tasks no matter which screen you are currently working in.

B - Click this link to save your configuration into the Switch’s nonvolatile memory. Nonvolatile memory is saved in the configuration file from which the Switch booted from and it stays the same even if the Switch’s power is turned off. See Section 42.3 on page 345 for information on saving your settings to a specific configuration file.

C - Click this link to go to the status page of the Switch.

D - Click this link to log out of the web configurator.

E - Click this link to display web help pages. The help pages provide descriptions for all of the

configuration screens.

F - Click this link to go to the ZON Neighbor Management screen where you can see and manage neighbor devices learned by the Switch.

GS3700/XGS3700 Series User’s Guide

Chapter 4 The Web Configurator

In the navigation panel, click a main link to reveal a list of submenu links.

Table 4 Navigation Panel Sub-links Overview

BASIC SETTING

ADVANCED APPLICATION

IP APPLICATION MANAGEMENT

The following table describes the links in the navigation panel.

Table 5 Navigation Panel Links

LINK DESCRIPTION

Basic Settings System Info This link takes you to a screen that displays general system and hardware monitoring

General Setup This link takes you to a screen where you can configure general identification information

Switch Setup This link takes you to a screen where you can set up global Switch parameters such as

IP Setup This link takes you to a screen where you can configure the IP address, subnet mask

Port Setup This link takes you to screens where you can configure speed, flow control and priority

PoE Setup This link takes you to a screen where you can configure the Switch to supply po wer over

Interface Setup This link takes you to a screen where you can create IPv6 interfaces on the Switch.

information.

and time settings for the Switch.

VLAN type, MAC address learning, GARP and priority queues.

(necessary for Switch management) and DNS (domain name server) and set up to 64 IP routing domains.

settings for individual Switch ports.

Ethernet.

GS3700/XGS3700 Series User’s Guide

Chapter 4 The Web Configurator

Table 5 Navigation Panel Links (continued)

LINK DESCRIPTION

IPv6 This link takes you to a screen where you can enable an IPv6 interface and configure the

IPv6 settings on the Switch. Advanced Application VLAN This link takes you to screens where you can configure port-based or 802.1Q VLAN

(depending on what you configured in the Switch Setup menu). You can also configure a

protocol based VLAN or a subnet based VLAN in these screens. Static MAC

Forwarding Static Multicast

Forwarding Filtering This link takes you to a screen to set up filtering rules. Spanning Tree

Protocol Bandwidth Control This link takes you to screens where you can cap the maximum bandwidth allowed on a

Broadcast Storm Control

Mirroring This link takes you to screens where you can copy traffic from one port or ports to

Link Aggregation This link takes you to screen where you can logically aggregate physical links to form one

Port Authentication

Port Security This link takes you to a screen where you can activate MAC address learning and set the

Classifier This link takes you to a screen where you can configure the Switch to group packets

Policy Rule This link takes you to a screen where you can configure the Switch to perform special

Queuing Method This link takes you to a screen where you can configure queuing with associated queue

VLAN Stacking This link takes you to screens where you can activate and conf igure VLAN stacking. Multicast This link takes you to screen where you can configure various multicast features, IGMP

AAA This link takes you to a screen where you can configure authentication, authorization and

IP Source Guard This link takes you to screens where you can configure filtering of unauthorized DHCP and

Loop Guard This link takes you to a screen where y ou can con figure protect ion agains t netwo rk loops

VLAN Mapping This link takes you to screens where you can configure VLAN mapping settings on the

Layer 2 Protocol Tunneling

sFlow This link takes you to screens where you can configure sFlow settings on the Switch.

This link takes you to screens where you can configure static MAC addresses for a port.

These static MAC addresses do not age out.

This link takes you to a screen where you can configure static multicast MAC addresses

for port(s). These static multicast MAC addresses do not age out.

This link takes you to screens wher e you can configure the RSTP/MRSTP/MSTP to prevent

network loops.

port.

This link takes you to a screen to set up broadcast filters.

another port in order that you can examine the traffic from the first port without

interference.

logical, higher-bandwidth link.

This link takes you to a screen where you can configure IEEE 802.1x port authentication

as well as MAC authentication for clients communicating via the Switch.

maximum number of MAC addresses to learn on a port.

based on the specified criteria.

treatment on the grouped packets.

weights for each port.

snooping and create multicast VLANs.

accounting services via external servers. The external servers can be either RADIUS

(Remote Authentication Dial-In User Service) or TACACS+ (Terminal Access Controller

Access-Control System Plus).

ARP packets in your network.

that occur on the edge of your network.

Switch.

This link takes you to a screen wh ere you can confi gure L2PT (Laye r 2 Protocol Tunneling)

settings on the Switch.

GS3700/XGS3700 Series User’s Guide

Chapter 4 The Web Configurator

Table 5 Navigation Panel Links (continued)

LINK DESCRIPTION

PPPoE This link takes you to screens where you can configure how the Switch gives a PPPoE

termination server additional subscriber information that the server can use to identify

and authenticate a PPPoE client. Errdisable This link takes you to a screen where you can configure CPU protection and error disable

MAC Pinning This link takes you to a screen where you can set specific ports to have priority over other

Private VLAN This link takes you to a screen where you can block traffic between ports in a VLAN on the

Green Ethernet This link takes you to a screen where you can configure the Switch to reduce port power

LLDP This link takes you to a screen where you can configure LLDP settings. IP Application Static Routing This link takes you to a screen where you can configure static routes. A static route

Policy Routing This link takes you to screens where you can configu re policy routing rules. DiffServ This link takes you to screens where you can enable DiffServ, configure marking rules and

DHCP This link takes you to screens where you can configure the DHCP settings. VRRP This link takes you to screens where you can configure redundant virtual router for your

Load Sharing This link takes you to a screen where you can enable Equal-Cost MultiPath (ECMP) routing

ARP Setup This link takes you to a screen where you can configure ARP learning mode on a per-port

Management Maintenance This link takes you to screens where you can perform firmware and configuration file

Access Control This link takes you to screens where you can change the system login password and

Diagnostic T his link takes you to screens where you can view system logs and can test port(s). Syslog This link takes you to screens where you can setup system logs and a system log server. Cluster

Management MAC Table This link takes you to a screen where you can view the MAC address and VLAN ID of a

IP Table This link takes you to a screen where you can view the IP addresses and VLAN ID of a

ARP Table This link takes you to a screen where you can view the MAC address – IP address

Routing Table This link takes you to a screen where you can view the routing table. Path MTU Table This link takes you to a screen where you can view the IPv6 path MTU table. Configure Clone This link takes you to a screen where you can copy attributes of one port to (an)other

Neighbor Table This link takes you to a screen where you can view the Switch’s IPv6 neighbor table.

recovery.

ports in MAC address learning.

Switch.

consumption.

defines how the Switch should forward traffic by configuring the TCP/IP parameters

manually.

set DSCP-to-IEEE802.1p mappings.

network.

and set the criteria the Switch uses to determine the routing path for a packet.

basis and create static ARP entries which do not age out.

maintenance as well as reboot the system.

configure SNMP and remote management.

This link takes yo u to a s creen w here y ou can configure cluste ring mana gement a nd view

its status.

device attach to a port. You can also view what kind of MAC address it is.

device attached to a port.You can also view what kind of device it is.

resolution table.

port(s).

GS3700/XGS3700 Series User’s Guide

Chapter 4 The Web Configurator

4.3.1 Change Your Password

After you log in for the first time, it is recommended you change the default administrator password. Click Management > Access Control > Logins to display the next screen.

Figure 15 Change Administrator Login Password

4.4 Saving Your Configuration

When you are done modifying the settings in a screen, click Apply to save your changes back to the run-time memory. Settings in the run-time memory are lost when the S w it ch’s power is turned off.

Click the Save link in the upper right hand corner of the web configurator to save your configuration to nonvolatile memory. Nonvolatile memory refers to the Switch’s storage that remains even if the Switch’s power is turned off.

Note: Use the Save link when you are done with a configuration session.

4.5 Switch Lockout

You could block yourself (and all others) from using in-band-management (managing through the data ports) if you do one of the following:

1 Delete the management VLAN (default is VLAN 1).

2 Delete all port-based VLANs with the CPU port as a member. The “CPU port” is the management

port of the Switch.

GS3700/XGS3700 Series User’s Guide

Chapter 4 The Web Configurator

3 Filter all traffic to the CPU port.

4 Disable all ports.

5 Misconfigure the text configuration file.

6 Forget the password and/or IP address.

7 Prevent all services from accessing the Switch.

8 Change a service port number but forget it.

Note: Be careful not to lock yourself and others out of the Switch. If you do lock yourself

out, try using out-of-band management (via the management port) to configure the Switch.

4.6 Resetting the Switch

If you lock yourself (and others) from the Switch or forget the administrator password, you will need to reload the factory-default configuration file or reset the S w itch back to the factory defaults.

4.6.1 Reload the Configuration File

Uploading the factory-default configuration file replaces the current configuration file with the factory-default configuration file. This means that you will lose all previous configurations and the speed of the console port will be reset to the default of 9600bps with 8 data bit, no parity , one stop bit and flow control set to none. The password will also be reset to “1234” and the IP address to

192.168.1.1.

To upload the configuration file, do the following:

1 Connect to the console port using a computer with terminal emulation software. See Section 3.2 on

page 32 for details.

2 Disconnect and reconnect the Switch’s power to begin a session. When you reconnect the Switch’s

power, you will see the initial screen.

3 When you see the message “Press any key to enter Debug Mode within 3 seconds ...” press

any key to enter debug mode.

4 Type atlc after the “Enter Debug Mode” message.

5 Wait for the “ Starting XMODEM upload” message before activating XMODEM upload on your

terminal.

6 After a configuration file upload, type atgo to restart the Switch.

GS3700/XGS3700 Series User’s Guide

Chapter 4 The Web Configurator

Figure 16 Resetting the Switch: Via the Console Port

Bootbase Version: V1.00 | 12/11/2012 13:49:40 RAM: Size = 524288 Kbytes DRAM POST: Testing: 524288K OK DRAM Test SUCCESS !

ZyNOS Version: V4.10(AAGF.5)b1 | 6/5/2014 20:10:8

Press any key to enter debug mode within 3 seconds.

.....................................

Enter Debug Mode ras> atlc

Starting XMODEM upload (CRC mode)....

CCCCCCCCCCCCCCCC Total 393216 bytes received. Erasing..

................................................................

OK ras> atgo

The Switch is now reinitialized with a default configuration file including the default password of “1234”.

4.7 Logging Out of the Web Configurator

Click Logout in a screen to exit the web configurator. You have to log in with your password again after you log out. This is recommended after you finish a management session for security reasons.

Figure 17 Web Configurator: Logout Screen

4.8 Help

The web configurator’s online help has descriptions of individual screens and some supplementary information.

Click the Help link from a web configurator screen to view an online help description of that screen.

GS3700/XGS3700 Series User’s Guide

PART II

Technical Reference

CHAPTER 5

ZON Utility, ZON Neighbor Management and

Port Status

This chapter describes the screens for ZON Utility , ZON Neighbor Management, P ort Status and P ort Details.

5.1 Overview

The home screen of the web configurator displays a port statistical summary with links to each port showing statistical details.

5.2 ZyXEL One Network (ZON) Utility Screen

ZON Utility is a program designed to help you deploy and manage a network more efficiently. It detects devices automatically and allows you to do basic settings on devices in the network without having to be near it.

The ZON Utility issues requests via ZyXEL Discovery Protocol (ZDP) and in response to the query, the device responds back with basic information including IP address, firmware version, location, system and model name in the same broadcast domain. The information is then displayed in the ZON Utility screen and you can perform tasks like basic configuration of the devices and batch firmware upgrade in it. You can download the ZON Utility at www.zyxel.com and install it on a PC.

The following figure shows the ZON Utility screen.

GS3700/XGS3700 Series User’s Guide

Chapter 5 ZON Utility, ZON Neighbor Management and Port Status

Figure 18 ZON Utility Screen

5.3 ZON Neighbor Management Screen

The ZON Neighbor Management screen allows you to view and manage the Switch’s neighboring devices more conveniently. It uses Layer Link Discovery Protocol (LLDP) to discover all neighbor devices connected to the Switch including non-ZyXEL devices. You can perform tasks on the neighboring devices like login, reboot (turn the power off and then back on again), and reset to factory default settings in the Neighbor Management screen. For more information on LLDP, see

Section 34.2 on page 272.

Click Status > Neighbor to see the following screen

Figure 19 Status > Neighbor

GS3700/XGS3700 Series User’s Guide

Chapter 5 ZON Utility, ZON Neighbor Management and Port Status

The following table describes the fields in the above screen.

Table 6 Status > Neighbor

LABEL DESCRIPTION

Local Port This shows the port number of the local device in the network. Name This shows the name of the local device in the network. PoE Draw This shows the consumption that the local device in the network draws from the

Remote Model Name This shows the model name of the neighbor device in the remote network. This field

Sys. Name This shows the system name of the neighbor device in the remote network. FW Version This shows the firmware version of the neighbor device in the remote network. This

Port This show the port number of the neighbor device in the remote network. Port Description This shows the port description of the neighbor device in the remote network. IP This shows the IP address of the neighbor device in the remote network. The IP

MAC This shows the MAC address of the neighbor device in the remote network. This field

PWR Cycle Click the Cycle button to turn OFF the power of the neighbor device in the remote

Switch. This allows you to plan and use within the power budget of the Switch.

will show “-” for non-ZyXEL devices.

field will show “-” for non-ZyXEL devices.

address is a hyper link that you can click and login the remote device. This field will show “-” for non-ZyXEL devices.

will show “-” for non-ZyXEL devices.

network and turn it back ON again. A count down button (from 5 to 0) starts.

Note: The Switch must support power sourcing (PSE) or the network device is a

powered device (PD).

Note: If multiple neighbor devices use the same port, the Cycle button is displayed only

on the first device, others will show “-” instead.

Reset to Default Click the Reset button to reset the neighbor device in the remote network to its

factory default settings. A warning message “Are you sure you want to load factory default?” appears prompting you to confirm the action. After confirming the action a count down button (from 5 to 0) starts.

Note: The Switch must support power sourcing (PSE) or the network device is a

powered device (PD).

Note: If multiple neighbor devices use the same port, the Reset button is not available

and will show “-” instead.

Note: You can only reset ZyXEL products.

5.4 Port Status Summary

To view the port statistics, click Status in all web configurator screens to display the Status screen as shown next.

GS3700/XGS3700 Series User’s Guide

Chapter 5 ZON Utility, ZON Neighbor Management and Port Status

Figure 20 Status

The following table describes the labels in this screen.

Table 7 Status

LABEL DESCRIPTION

Port This identifies the Ethernet port. Click a port number to display the Port Details screen

(refer to Figure 21 on page 49). Name This is the name you assigned to this port in the Basic Setting > Port Setup screen. Link This field displays the speed (such as 100M for 100 Mbps, 1000M for 1000 Mbps, or 10G

State If STP (Spanning Tree Protocol) is enabled, this field displays the STP state of the port. (See

PD (F or P oE models only) This field displ ays whet her or not a powered device (PD) is allowed to

LACP This fields displays whether LACP (Link Aggregation Control Protocol) has been enabled on

TxPkts This field shows the number of transmitted frames on this port. RxPkts This field shows the number of received frames on this port. Errors This field shows the number of received errors on this port. Tx KB/s This fi eld shows the transmission speed of data sent on this port in kilobytes per second. Rx KB/s This field shows the transmission speed of data received on this port in kilobytes per second. Up Time This field shows the total amount of time in hours, minutes and seconds the port has been

Clear Counter Type a port number, select Port and then click Clear Counter to erase the recorded

for 10 Gbps) and the duplex (F for full duplex). This field displays Down if the port is not

connected to any device.

Section 11.1.3 on page 107 for more information).

If STP is disabled, this field displays FORWARDING if the link is up, otherwise, it displays

STOP.

receive power from the Switch on this port.

the port.

up.

statistical information for that port, or select Any to clear statistics for all ports.

GS3700/XGS3700 Series User’s Guide

Chapter 5 ZON Utility, ZON Neighbor Management and Port Status

5.4.1 Status: Port Deta ils

Click a number in the Port column in the Status screen to display individual port statistics. Use this screen to check status and detailed performance data about an individual port on the Switch.

Figure 21 Status: Port Details

The following table describes the labels in this screen.

Table 8 Status > Port Details

LABEL DESCRIPTION

Port Info

Port NO. This field displays the port number you are viewing. Name This field displays the name of the port. Link This field displays the speed (such as 100M for 100Mbps, 1000M for 1000 Mbps, or 10G

State If STP (Spanning Tree Protocol) is enabled, this field displays the STP state of the port (see

LACP This field shows if LACP is enabled on this port or not. TxPkts This field shows the number of transmitted frames on this port

for 10 Gbps) and the duplex (F for full duplex).

Section 11.1.3 on page 107 for more information).

If STP is disabled, this field displays FORWARDING if the link is up, otherwise, it displays

STOP.

GS3700/XGS3700 Series User’s Guide

Chapter 5 ZON Utility, ZON Neighbor Management and Port Status

Table 8 Status > Port Details (continued)

LABEL DESCRIPTION

RxPkts This field shows the number of received frames on this port Errors This field shows the number of received errors on this port. Tx KBs/s This field shows the transmission speed of data sent on this port in kilobytes per second. Rx KBs/s This field shows the transmission speed of data received on this port in kilobytes per

second.

Up Time This field shows the total amount of time the connection has been up.

Tx Packet The following fields display detailed information about packets transmitted.

Unicast This field shows the number of good unicast packets transmitted. Multicast This field shows the number of good multicast packets transmitted. Broadcast This field shows the number of good broadcast packets transmitted. Pause This field shows the number of 802.3x Pause packets transmitted. Tagged This field shows the number of packets with VLAN tags transmitted.

Rx Packet The following fields display detailed information about packets received.

Unicast This field shows the number of good unicast packets received. Multicast This field shows the number of good multicast packets received. Broadcast This field shows the number of good broadcast packets received. Pause This field shows the number of 802.3x Pause packets received. Control This field shows the number of control packet s received (including those with CRC error) but

it does not include the 802.3x Pause packets. TX Collision

The following fields display info rmation on collisions while transmitting .

Single This is a count of successfully transmitted packets for which transmission is inhibited by

exactly one collision.

Multiple This is a count of successfully transmitted packets for which transmission was inhibited by

Excessive This is a count of packets for which transmission failed due to excessive collisions. Excessive

Late This is the number of times a late collision is detected, that is, after 512 bits of the packets

Error Packet The following fields display detailed information about packets received that were in error.

RX CRC This field shows the number of packets received with CRC (Cyclic Redundant Check)

Length This field shows the number of packets received with a length that was out of range. Runt This field shows the number of packets received that were too short (shorter than 64

Distribution

64 This field shows the number of packets ( including bad pack ets) received that were 64 oc tets

65-127 This field shows the number of packets (including bad packets) received that were between

128-255 This field shows the number of packets ( incl uding bad packets) received that were between

more than one collision.

collision is defined as the number of maximum collisions before the retransmission count is

reset.

have already been transmitted.

error(s).

octets), including the ones with CRC errors.

in length.

65 and 127 octets in length.

128 and 255 octets in length.

GS3700/XGS3700 Series User’s Guide

Chapter 5 ZON Utility, ZON Neighbor Management and Port Status

Table 8 Status > Port Details (continued)

LABEL DESCRIPTION

256-511 This field shows the number of packets ( incl uding bad packets) received that were between

256 and 511 octets in length.

512-1023 This field shows the number of packets (including bad packets) received that were betw een

512 and 1023 octets in length.

1024-1518 This field shows the number of packets (including bad packets) received that wer e between

Giant This field shows the number of packets (including bad packets) received that were between

1024 and 1518 octets in length.

1519 octets and the maximum frame size.

The maximum frame size varies depending on your switch model.

GS3700/XGS3700 Series User’s Guide

This chapter describes how to configure the Basic Setting screens.

6.1 System Information

In the navigation panel, click Basic Setting > System Info to display the screen as shown. You can check the firmware version number and monitor the Switch temperature, fan speeds and voltage in this screen.

Figure 22 Basic Setting > System Info

CHAPTER 6

Basic Setting

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

The following table describes the labels in this screen.

Table 9 Basic Setting > System Info

LABEL DESCRIPTION

System Name This field displays the descriptive name of the Switch for identification purposes. Product Model This field displays the model number of the Switch. ZyNOS F/W

Version Ethernet

Address CPU Utilization CPU utilization quantifies how busy the system is. Current (%) displays the current

Memory Utilization

Hardware Monitor Temperature

Unit

Temperature BOARD, PHY, CPU and MAC refer to the location of the temperature sensors on the Switch

Current This shows the current temperature at this sensor. MAX This field displays the maximum temperature measured at this sensor. MIN This field displays the minimum temperature measured at this sensor. Threshold This field displays the upper temperature limit at this sensor. Status This field displays Normal for temperatures below the threshold and Error for those above. Fan Speed

(RPM)

Current This field displays this fan's current speed in Revolutions Per Minute (RPM). MAX This field displays this fan's maximum speed measured in RPM. MIN This field displays this fan's minimum speed measured in RPM. “<41" is displayed for

Threshold This field displays the minimum speed at which a normal fan should work. Status Normal indicates that this fan is functioning above the minimum speed. Error indicates

Voltage (V) The power supply for each voltage has a sensor that is capable of detecting and reporting if

Current This is the current voltage reading. MAX This field displays the maximum voltage measured at this point. MIN This field displays the minimum voltage measured at this point. Threshold This field displays the percentage tol er a nce o f the voltage with which the Switch stil l work s. Status Normal indicates that the voltage is within an acceptable operating range at this point;

This field displays the version number of the Switch 's current firmware including the date created.

This field refers to the Ethernet MAC (Media Access Control) address of the Switch.

percentage of CPU utilization. Memory Utilization shows how much DRAM memory is available and in use. It also displays

the current percentage of memory utilization.

The Switch has temperature sensors that are capable of detecting and reporting if the temperature rises above the threshold. You may choose the temperature unit (Centigrade or Fahrenheit) in this field.

printed circuit board.

A properly functioning fan is an essential component (along with a sufficiently ventilated, cool operating environment) in order for the device to stay within the temperature threshold. Each fan has a sensor that is capable of detecting and reporting if the fan speed falls below the threshold shown.

speeds too small to measure (under 2000 RPM).

that this fan is functioning below the minimum speed.

the voltage falls out of the tolerance range.

otherwise Error is displayed.

GS3700/XGS3700 Series User’s Guide

6.2 General Setup

Use this screen to configure general settings such as the system name and time. Click Basic Setting > General Setup in the navigation panel to display the screen as shown.

Figure 23 Basic Setting > General Setup

Chapter 6 Basic Setting

The following table describes the labels in this screen.

Table 10 Basic Setting > General Setup

LABEL DESCRIPTION

System Name Type a descriptive name for identification purposes. This name consists of up to 64

Location Type the geographic location of your Switch. You can use up to 32 printable ASCII

Contact Person's Name

Use Time Server when Bootup

Time Server IP Address

printable ASCII characters; spaces are allowed.

characters; spaces are allowed. Type the name of the person in charge of this Switch. You can use up to 32 printable

ASCII characters; spaces are allowed. T ype the time service protocol that your timeserver uses. Not all time servers support all

protocols, so you may have to use trial and error to find a protocol that works. The main differences between them are the time format.

When you select the Daytime (RF C 867) format, the Switch displays the day, month, year and time with no time zone adjustment. When you use this format, it is recommended that you use a Daytime timeserver within your geographical time zone.

Time (RFC-868) format displays a 4-byte integer giving the total number of seconds since 1970/1/1 at 0:0:0.

NTP (RFC-1305) is similar to Time (RFC-868). None is the default value. Enter the time manually. Each time you turn on the Switch,

the time and date will be reset to 1970-1-1 0:0. T ype the IP address of your timeserver. The Switch searches for the timeserver for up to

60 seconds. If you select a timeserver that is unreachable, then this screen will appear locked for 60 seconds. Please wait.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Table 10 Basic Setting > General Setup (continued)

LABEL DESCRIPTION

Current Time This field displays the time you open this menu (or refresh the menu). New Time

(hh:min:ss) Current Date This field displays the date you open this menu. New Date (yyyy-

mm-dd) Time Zone Select the time difference between UT C ( Univ ersal T ime Coordinated, formerly known as

Daylight Saving Time

Start Date Configure the day and time when Daylight Saving Time starts if you selected Daylight

End Date Configure the day and time when Daylight Saving Time ends if you selected Daylight

Enter the new time in hour, minute and second format. The new time then appears in the Current Time field after you click Apply.

Enter the new date in year, month and day format. The new date then appears in the Current Date field after you click Apply.

GMT, Greenwich Mean Time) and your time zone from the drop-down list box. Daylight saving is a period from late spring to early fall when many countries set their

clocks ahead of normal local time by one hour to give more daytime light in the evening. Select this option if you use Daylight Saving Time.

Saving Time. The time is displayed in the 24 hour format. Here are a couple of examples:

Daylight Saving Time starts in most parts of the United States on the second Sunday of March. Each time zone in the United States starts using Daylight Saving Time at 2 A.M. local time. So in the United States you would sel ect Second, Sunday, March and 2:00.

Daylight Saving Time starts in the European Union on the last Sunday of March. All of the time zones in the European Union start using Da ylight Sa ving Time at the same mome nt (1 A.M. GMT or UTC). So in the European Union you would select Last, Sunday, March and the last field depends on your time zone. In Germany for instance, you would select

2:00 because Germany's time zone is one hour ahead of GMT or UTC (GMT+1).

Saving Time. The time field uses the 24 hour format. Here are a couple of examples:

Daylight Saving Time ends in the United States on the last Sunday of October. Each time zone in the United States stops using Daylight Saving Time at 2 A.M. local time. So in the United States you would select First, Sunday, November and 2:00.

Daylight Saving Time ends in the European Union on the last Sunday of October. All of the time zones in the European Union stop using Daylight Saving Time at the same moment (1 A.M. GMT or UTC). So in the European Union y ou would select Last, Sunday, October and the last field depends on your time zone. In Germany for instance, you would select 2:00 because Germany's time zone is one hour ahead of GMT or UTC (GMT+1).

Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses

Cancel Click Cancel to begin configuring this screen afresh.

these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.

6.3 Introduction to VLANs

A VLAN (Virtual Local Area Network) allows a physical network to be partitioned into multiple logical networks. Devices on a logical network belong to one group. A device can belong to more than one group. With VLAN, a device cannot directly talk to or hear from devices that are not in the same group(s); the traffic must first go through a router.

In MTU (Multi-Tenant Unit) applications, VLAN is vital in providing isolation and security among the subscribers. When properly configured, VLAN prevents one subscriber from accessing the network

GS3700/XGS3700 Series User’s Guide

resources of another on the same LAN, thus a user will not see the printers and hard disks of another user on the same network.

VLAN also increases network performance by limiting broadcasts to a smaller and more manageable logical broadcast domain. In traditional switched environments, all broadcast packets go to each and every individual port. With VLAN, all broadcasts are confined to a specific broadcast domain.

Note: VLAN is unidirection al; it only governs outgoing traffic.

See Chapter 7 on page 81 for information on port-based and 802.1Q tagged VLANs.

6.4 Switch Setup

Click Basic Setting > Switch Setup in the navigation panel to display the screen as shown. The VLAN setup screens change depending on whether you choose 802.1Q or Port Based in the VLAN Type field in this screen. Refer to the chapter on VLAN.

Figure 24 Basic Setting > Switch Setup

Chapter 6 Basic Setting

The following table describes the labels in this screen.

Tab le 11 Basic Setting > Switch Setup

LABEL DESCRIPTION

VLAN Type Choose 802.1Q or Port Based. The VLAN Setup screen changes depending on whether

you choose 802.1Q VLAN type or Port Based VLAN type in this screen. See Chapter 7 on

page 81 for more information.

Bridge Control Protocol Transparency

Select Active to allow the Switch to handle bridging control protocols (STP, for example). You also need to define how to treat a BPDU in the Port Setup screen.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Tab le 11 Basic Setting > Switch Setup (continued)

LABEL DESCRIPTION

MAC Address Learning

Aging Time Enter a time from 10 to 1000000 seconds. This is how long all dynamically learned MAC

ARP Aging Time Enter a time from 10 to 1000000 seconds. This is how long dynamically learned ARP

GARP Timer: Switches join VLANs by making a declaration. A declaration is made by issuing a Join message using GARP. Declarations are withdrawn by issuing a Leave message. A Leave All message terminates all registrations. GARP timers set declaration timeout values. See Chapter 7 on page 81 for more background information.

Join Timer Join Timer sets the duration of the Join Period timer for GVRP in milliseconds. Each port

Leave Timer Leave Time sets the duration of the Leave Peri od timer for GVRP in milliseconds. Each

Leave All Timer Leave All Timer sets the duration of the Leave All Period timer for GVRP in milliseconds.

Priority Queue Assignment IEEE 802.1p defines up to eight separate traffic types by inserting a tag into a MAC-layer frame that contains

bits to define class of service. Frames without an explicit priority tag are given the default priority of the ingress port. Use the following fields to configure the priority level-to-physical queue mapping.

The Switch has eight physical queues that you can map to the 8 priority levels. On the Switch, traffic assigned to higher index queues gets through faster while traffic in lower index queues is dropped if the network is congested.

Priority Level (The following descriptions are based on the traffic types defined in the IEEE 802.1d standard (which incorporates the 802.1p).

Level 7 Typically used for network control traffic such as router configuration messages. Level 6 Typically used for voice traffic that is especially sensitive to jitter (jitter is the variations in

Level 5 Typically used for video that consumes high bandwidth and is sensitive to jitter. Level 4 Typically used for controlled load, latency-sensitive traffic such as SNA (S yste ms Ne twork

Level 3 Typically used for “excellent effort” or better than best effort and would include important

Level 2 This is for “spare bandwidth”. Level 1 This is typically used for non-critical “background” traffic such as bulk transfers that are

Level 0 Typically used for best-effort traffic. Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses

Cancel Click

MAC address learning reduces outgoing traffic broadcasts. For MAC address learning to occur on a port, the port must be active.

addresses remain in the MAC address table before they age out (and must be relearned).

entries remain in the ARP table before they age out (and must be relearned). The setting here applies to ARP entries which are newly added in the ARP table after you click Apply.

has a Join Period timer. The allowed Join Time range is between 100 and 65535 milliseconds; the default is 200 milliseconds. See Chapter 7 on page 81 for more background information.

port has a single Leave Period timer. Leave Time must be two times larger than Join Timer; the default is 600 milliseconds.

Each port has a single Leave All Period timer. Leave All Timer must be larger than Leave Timer.

delay).

Architecture) transactions.

business traffic that can tolerate some delay.

allowed but that should not affect other applications and users.

these changes if it is turned off or loses power, so use the Save link on th e top navigation panel to save your changes to the non-volatile memory when you are done configuring.

Cancel to begin configuring this screen afresh.

GS3700/XGS3700 Series User’s Guide

6.5 IP Setup

Use the IP Setup screen to configure the default gateway device, the default domain name server and add IP domains.

6.5.1 IP Interfaces

The Switch needs an IP address for it to be managed over the network. The factory default IP address is 192.168.1.1. The subnet mask specifies the network number portion of an IP address. The factory default subnet mask is 255.255.255.0.

On the Switch, an IP address is not bound to any physical ports. Since each IP address on the Switch must be in a separate subnet, the configured IP address is also known as IP interface (or routing domain). In addition, this allows routing between subnets based on the IP address without additional routers.

You can configure multiple routing domains on the same VLAN as long as the IP address ranges for the domains do not overlap. To change the IP address of the Switch in a routing domain, simply add a new routing domain entry with a different IP address in the same subnet.

Chapter 6 Basic Setting

You can configure up to 128 IP domains which are used to access and manage the S witch from the ports belonging to the pre-defined VLAN(s).

Note: You must configure a VLAN first.

Figure 25 Basic Setting > IP Setup

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

The following table describes the labels in this screen.

Table 12 Basic Setting > IP Setup

LABEL DESCRIPTION

Default Gateway Type the IP address of the default outgoing gateway in dotted decimal notation, for

Domain Name Server

Default Management

Management IP Address Use these fields to set the settings for the out-of-band management port.

IP Address Enter the out-of-band management IP address of your Switch in dotted decimal notation.

IP Subnet Mask

Default Gateway

Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses thes e

Cancel Click Cancel to reset the fields to your previous configuration.

IP Interface Use these fields to create or edit IP routing domains on the Switch.

IP Address Enter the IP address of your Switch in dotted decimal notation, for example, 192.168.1.1.

IP Subnet Mask

VID Enter the VLAN identification number to which an IP routing domain belongs. Add Click this to create a new entry.

Cancel Click Cancel to reset the fields to your previous configuration. Index This field displays the index number of an entry. IP Address This field displays IP address of the Switch in the IP domain. IP Subnet Mask This field displays the subnet mask of the Switch in the IP domain. VID This field displays the VLAN identification number of the IP domain on the Switch. Delete Click Delete to remove the selected entry from the summary table.

example 192.168.1.254. DNS (Domain Name System) is for mapping a domain name to its corresponding IP address

and vice versa. Enter a domain name server IP address in order to be able to use a domain name instead of an IP address.

Specify which traffic flow (In-Band or Out-of-band) the Switch is to send packets originating from itself (such as SNMP traps) or packets with unknown source.

Select Out-of-band to have the Switch send the packets to the management port labelled MGMT. This means that device(s) connected to the other port(s) do not receive these packets.

Select In-Band to have the Switch send the packets to all ports except the management port (labelled MGMT) to which connected device(s) do not receive these packets.

For example, 192.168.0.1. Enter the IP subnet mask of your Switch in dotted decimal notation, for example,

255.255.255.0. Enter the IP address of the default outgoing gateway in dotted decimal notation, for

example, 192.168.0.254

changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.

This is the IP address of the Switch in an IP routing domain. Enter the IP subnet mask of an IP routing domain in dotted decimal notation, for example,

255.255.255.0.

This saves your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.

Note: Deleting all IP subnets locks you out of the Switch.

Cancel Click Cancel to clear the Delete check boxes.

GS3700/XGS3700 Series User’s Guide

6.6 Port Setup

Use this screen to configure Switch port settings. Click Basic Setting > Port Setup in the navigation panel to display the configuration screen.

Figure 26 Basic Setting > Port Setup (GS3700 Series)

Chapter 6 Basic Setting

Figure 27 Basic Setting > Port Setup (XGS3700 Series)

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

The following table describes the labels in this screen.

Table 13 Basic Setting > Port Setup

LABEL DESCRIPTION

Port This is the port index number. * Settings in this row apply to all ports.

Use this row only if you want to make some settings the same for all ports. Use this row first to set the common settings and then make adjustments on a port-by-port basis.

Note: Changes in this row are copied to all the ports as soon as you make them.

Active Select this check box to enable a port. The factory default for all ports is enabled. A port

must be enabled for data transmission to occur.

Name Type a descriptive name that identifies this port. You can enter up to 64 alpha-numerical

characters.

Note: Due to space limitations, the port name may be truncated in some web configurator

screens.

T ype This field displays 10/100/1000M for a 1000Base- T connection, 1000M for a 1000Base-X

Speed/Duplex Select the speed an d the duplex mode of the Ethernet connection on this port. The choices

Flow Control A concentra ti on of traffic on a port decreases port bandwidth and overflows buffer memory

802.1p Priority This priority value is added to incoming frames without a (802.1p) priority queue tag. See

connection, and 10G for a 10 Gigabit connection (available only on the Switch that has a 10 Gigabit interface).

are Auto, 10M/Half Duplex, 10M/Full Duplex, 100M/Half Duplex and 100M/Full Duplex for a 100Base-T connection. 1000M/Full Duplex is supported by both 1000BaseT and 1000Base-X connections. 10G/Full Duplex is supported by the 10 Gigabit Ethernet connections on the Switch that has a 10 Gigabit interface.

Selecting Auto (auto-negotiation) allows one port to negotiate with a peer port automatically to obtain the connection speed and duplex mode that both ends support. When auto-negotiation is turned on, a port on the Switch negotiates with the peer automatically to determine the connection speed and duplex mode. If the peer port does not support auto-negotiation or turns off this feature, the Switch determines the connection speed by detecting the signal on the cable and using half duplex mode. When the Switch’s auto-negotiation is turned off, a port uses the pre-configured speed and duplex mode when making a connection, thus requiring you to make sure that the settings of the peer port are the same in order to connect.

causing packet discards and frame losses. Flow Control is use d to regulate tr ansmission of signals to match the bandwidth of the receiving port.

The Switch uses IEEE 802.3x flow control in full duplex mode and backpressure flow control in half duplex mode.

IEEE 802.3x flow control is used in full duplex mode to send a pause signal to the sending port, causing it to temporarily stop sending si gnals when the receiving port memory buffers fill.

Back Pressure flow control is typically used in half duplex mode to send a "collision" signal to the sending port (mimicking a state of packet collision) causing the sending port to temporarily stop sending signals and resend later. Select Flow Control to enable it.

Priority Queue Assignment in Table 11 on page 56 for more information.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

PSE

Table 13 Basic Setting > Port Setup (continued)

LABEL DESCRIPTION

BPDU Control Configure the way to treat BPDUs received on this port. You must activate bridging control

protocol transparency in the Switch Setup screen first. Select Peer to process any BPDU (Bridge Protocol Data Units) received on this port. Select Tunnel to forward BPDUs received on this port. Select Discard to drop any BPDU received on this port. Select Network to process a BPDU with no VLAN tag and forward a tagged BPDU.

Media Type On the Switch that has a 10 Gigabit interface, such as the SFP+ slot, you can insert either

an SFP+ transceiver or an SFP+ Direct Attach Copper (DAC). An SFP+ Direct Attach Copper (DAC) is an SFP+ housing tha t has no optical module but uses a fixed-length passive copper cable assembly, which reduces cost and power significantly.

Select the media type (sfp_plus or dac10g) of the SFP+ module that is attached to the 10 Gigabit interface.

Apply Click Apply to save your changes to the Switch’s run-time memory . The Switch loses these

changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.

Cancel Click Cancel to begin configuring this screen afresh.

6.7 PoE

Note: The PoE function and the following screens are available for models ending in “HP”

The Switch supports both the IEEE 802.3af Power over Ethernet (PoE) and IEEE 802.3at High Power over Ethernet (PoE) standards. The Switch is Power Sourcing Equipment (PSE) because it provides a source of power via its Ethernet ports, and each device that receives power through an Ethernet port is a Powered Device (PD).

In the figure below, the IP camera and IP phone get their power directly from the Switch. Aside from minimizing the need for cables and wires, PoE removes the hassle of trying to find a nearby electric outlet to power up devices.

Figure 28 Powered Device Examples

only.

You can also set priorities so that the Switch is able to reserve and allocate power to certain PDs.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Note: The PoE devices that supply or receive power and their connected Ethernet cables

must all be completely indoors.

To view the current amount of power that PDs are receiving from the Switch, click Basic Setting > PoE Setup.

Figure 29 Basic Setting > PoE Status

The following table describes the labels in this screen.

Table 14 Basic Setting > PoE Status

LABEL DESCRIPTION

PoE Status PoE Mode This field displays the power management mode used by the Switch, whether it is in

T otal Power This field displays the total powe r the Switch can pro vide to the connected P oE-enabled

Consuming Power (W)

Allocated Power (W) This field displays the total amount of power the Switch has reserved for PoE after

Remaining Po wer (W)

Classification or Consumption mode.

devices on the PoE ports. This field displays the total amount of power the Switch is currently supplying to the

connected PoE-enabled devices.

negotiating with the connected PoE device(s).

Consuming Power (W) can be less than or equal but not more than the Allocated Power (W).

This field displays the amount of power the Switch can still provide for PoE.

Note: The Switch must have at least 16 W of remaining power in order to supply power

to a PoE device, even if the PoE device needs less than 16 W.

Port This is the port index number.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Table 14 Basic Setting > PoE Status

LABEL DESCRIPTION

State This field shows which ports can receive power from the Switch. You can set this in the

Basic Setting > PoE Setup screen.

• Disable - The PD connected to this port cannot get power.

• Enable - The PD connected to this port can receive power.

Class This shows the power classification of the PD.

This is a number from 0 to 4, where each value represents a range of power (W) and current (mA) that the PD requires to function. The ranges are as follows.

• Class 0 - Default, 0.44 to 12.94

• Class 1 - Optional, 0.44 to 3.84

• Class 2 - Optional, 3.84 to 6.49

• Class 3 - Optional, 6.49 to 12.95

• Class 4 - Reserved (PSEs classify as Class 0) in a switch that supports IEEE 802.3af only. Optional, 12.95 to 25.50 in a switch that supports IEEE 802.3at.

PD Priority When the total power requested by the PDs exceeds the total PoE power budget on the

Consuming Power (mW)

Max Power (mW) This field displays the maximum amount of power the PD could use from the Switch on

Max Current (mA) This field displays the maximum amount of current drawn by the PD from the Switch

Switch, you can set the PD priority to allow th e Switch to provide power to ports with higher priority first.

• Critical has the highest priority.

• High has the Switch assign power to the port after all critical priority ports are served.

• Low has the Switch assign power to the port after all critical and high priority ports are served.

This field displays the current amount of power consumed by the PD from the Switch on this port.

this port.

on this port.

6.7.1 PoE Setup

Use this screen to set the priority levels for the Switch in distributing power to PDs.

Click the PoE Setup link in the Basic Setting > PoE Status screen. The following screen opens.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Figure 30 Basic Setting > PoE Status > PoE Setup

The following table describes the labels in this screen.

Table 15 Basic Setting > PoE Status > PoE Setup

LABEL DESCRIPTION

PoE Mode Select the power management m ode you want the Switch to use.

• Classification - Select this if you want the Swit ch to reserv e the Max P ower (mW) to each PD according to the power classification of the PD. If the total power supply available is not enough to supply all connected PDs, then PDs with lower priority do not get power to function.

• Consumption - Select this if you want the Switch to manage the tota l power supply so that each connected PD gets a resource. However, th e power allocated by the Switch may be less than the Max Power (mW) of the PD. PDs with higher priority also get more power than those with lower priority levels.

Port This is the port index number. PD Select this to provide power to a PD connected to the port.

If left unchecked, the PD connected to the port cannot receive power from the Switch.

PD Priority This field is not available for the SFP or SFP+ ports.

When the total power requested by the PDs exceeds the total PoE power budget on the Switch, you can set the PD priority to allow th e Switch to provide power to ports with higher priority.

Select Critical to give the PD connected to this port the highest priority. Select High to set the Switch to assign the remaining power to the port after all critical

priority ports are served. Select Low to set the Switch to assign the remaining power to the port after all critical

and high priority ports are served.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Table 15 Basic Setting > PoE Status > PoE Setup

LABEL DESCRIPTION

Max Power (mW) Set the maximum amount of power (from 1000 to 33000) the PD could use from the

Switch on this port. Otherwise, leave the field blank to allow the connected PD to use power up to the Switch’s total power budget.

Apply Click Apply to save your changes to the Switch’s run-time memory. Th e Switch loses

Cancel Click Cancel to begin configuring this screen afresh.

these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the nonvolatile memory when you are done configuring.

Note: If the priority settings for two or more PoE ports are the same and the power

budget is not enough, the ports will shut down randomly. We strongly recommend you set the priority for each PoE port to make sure the high priority ports get power.

Note: In classification mode, up to five ports can be active. (The Switch reserves 36W per

port and the total power budget is 180W). Select consumption mode if you want more ports to be active.

6.8 Interface Setup

An IPv6 address is configured on a per-interface basis. The interface can be a physical interface (for example, an Ethernet port) or a virtual interface (for example, a VLAN). The Switch supports the VLAN interface type for IPv6 at the time of writing.

Use this screen to set IPv6 interfaces on which you can configure an IPv6 address to access and manage the Switch. Click Basic Setting > Interface Setup in the navigation panel to display the configuration screen.

Figure 31 Basic Setting > Interface Setup

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

The following table describes the labels in this screen.

Table 16 Basic Setting > Interface Setup

LABEL DESCRIPTION

Interface Type Select the type of IPv6 interface for which you want to configure. The Switch supports the

Interface ID Specify a unique identification number (from 1 to 4094) for the interface.

VLAN interface type for IPv6 at the time of writing.

Note: To have IPv6 function properly, you should configure a static VLAN with the same ID

number in the Advanced Setup > VLAN screens.

Add Click this to create a new ent ry.

This saves your changes to the Sw it ch ’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.

Cancel Click Cancel to reset the fields to your previous configuration. Index This field displays the index number of an entry. Interface Type This field displays the type of interface. Interface ID This field displays the identification number of the interface. Interface This field displays the interface’s descriptive name which is generated automatically by the

Switch. The name is from a combination of the interface type and ID number. Delete Click Delete to remove the selected entry from the summary table. Cancel Click Cancel to clear the Delete check boxes.

6.9 IPv6

Use this screen to view the IPv6 interface status and configure Switch’s management IPv6 addresses. See Appendix B on page 404 for more information about IPv6.

Click Basic Setting > IPv6 in the navigation panel to display the IPv6 status screen as shown next.

Figure 32 Basic Setting > IPv6 Status

The following table describes the labels in this screen.

Table 17 Basic Setting > IPv6 Status

LABEL DESCRIPTION

Index This field displays the index number of an IPv6 interface. Click on an index number to view

Interface This is the name of the IPv6 interface you created. Active This field displays whether the IPv6 interface is activated or not.

more interface details.

GS3700/XGS3700 Series User’s Guide

6.9.1 IPv6 Interface Status

Use this screen to view a specific IPv6 interface status and detailed information. Click an interface index number in the Basic Setting > IPv6 screen. The following screen opens.

Figure 33 Basic Setting > IPv6 Interface Status

Chapter 6 Basic Setting

The following table describes the labels in this screen.

Table 18 Basic Setting > IPv6 Interface Status

LABEL DESCRIPTION

IPv6 Active This field displays whether the IPv6 interface is activated or not. MTU Size This field displays the Maximum Transmission Unit (MTU) size for IPv6 packets on this

interface. ICMPv6 Rate

Limit Bucket Size

This field displays the maximum number of ICMPv6 error messages which are allowed to

transmit in a given time interval. If the bucket is full, subsequent error messages are

suppressed.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Table 18 Basic Setting > IPv6 Interface Status (continued)

LABEL DESCRIPTION

ICMPv6 Rate Limit Error Interval

Stateless Address Autoconfig

Link Local Address

Global Unicast Address(es)

Joined Group Address(es)

ND DAD Active This field displays whether Neighbor Discovery (ND) Duplicate Address Detection (DAD) is

Number of DAD Attempts

NS-Interval (millisecond)

ND Reachable Time (millisecond)

DHCPv6 Client Active

Identity Association

IA Type The IA type is the type of address in the IA. Each IA holds one type of address. IA_NA

IAID Each IA consists of a unique IAID and associated IP information. T1 This field displays the DHCPv6 T1 timer. After T1, the Switch sends the DHCPv6 server a

This field displays the time period (in milliseconds) during which ICMPv6 error messages of

up to the bucket size can be transmitted. 0 means no limit.

This field displays whether the Switch’s interface can automatically generate a link-local

address via stateless autoconfiguration.

This field displays the Switch’ s li nk -local IP address and prefix gener ated by the interface. It

also shows whether the IP address is preferred, which means it is a valid address and can

be used as a sender or receiver address.

This field displays the Switch’s global unicast address to identify this interface.

This field displays the IPv6 multicast addresses of groups the Switch’s interface joins.

enabled on the interface.

This field displays the number of consecutive neighbor solicitations the Switch sends for this

interface.

This field displays the time interval (in milliseconds) at which neighbor solicitations are re-

sent for this interface.

This field displays how long (in milliseconds) a neighbor is considered reachable for this

interface.

This field displays whether the Switch acts as a DHCPv6 client to get an IPv6 address from

a DHCPv6 server.

An Identity Association (IA) is a collection of addresses assigned to a DHCP clie nt, through

which the server and client can manage a set of related IP addresses. Each IA must be

associated with exactly one interface.

means an identity association for non-temporary addresses and IA_TA is an identity

association for temporary addresses.

Renew message.

An IA_NA option contains the T1 and T2 fields, but an IA_TA option does not. The DHCPv6

server uses T1 and T2 to control the time at which the client contacts with the server to

extend the lifetimes on any addresses in the IA_NA before the lifetimes expire.

T2 This field displays the DHCPv6 T2 timer. If the time T2 is reached and the server does not

respond, the Switch sends a Rebind message to any available server.

State This field displays the state of the TA. It shows

• Active when the Switch obtains addresses from a DHCpv6 server and the TA is created.

• Renew when the TA’s address lifetime expires and the Switch sends out a Renew message.

• Rebind when the Switch doesn’t receive a response from the original DHCPv6 server and sends out a Rebind message to another DHCPv6 server.

SID This field displays the DHCPv6 server’s unique ID. Address This field displays the Switch’s global address which is assigned by the DHCPv6 server. Preferred

Lifetime Valid

Lifetime

This field displays how long (in seconds) that the global address remains preferred.

This field displays how long (in seconds) that the global address is valid.

GS3700/XGS3700 Series User’s Guide

Table 18 Basic Setting > IPv6 Interface Status (continued)

LABEL DESCRIPTION

DNS This field displays the DNS server address assigned by the DHCPv6 server. Domain List This field displays the address record when the Switch queries the DNS server to resol ve

domain names.

Restart DHCPv6 Client

Click Click Here to send a new DHCP request to the DHCPv6 server and update the IPv6 address and DNS information for this interface.

6.9.2 IPv6 Configuration

Use this screen to configure IPv6 settings on the Switch. Click the IPv6 Configuration link in the Basic Setting > IPv6 screen. The following screen opens.

Figure 34 Basic Setting > IPv6 > IPv6 Configuration

Chapter 6 Basic Setting

The following table describes the labels in this screen.

Table 19 Basic Setting > IPv6 > IPv6 Configuration

LABEL DESCRIPTION

IPv6 Global Setup Click the link to go to a screen where you can configure the global IPv6 settings on the

Switch. IPv6 Interface Setup Click the link to go to a screen where you can enable an IPv6 interface on the Switch. IPv6 Addressing

IPv6 Link-Local Address Setup

IPv6 Global Address Setup

IPv6 Neighbor Discovery

IPv6 Neighbor Discovery Setup

IPv6 Router Discovery Setup

IPv6 Prefix Setup Click the link to go to a screen where you can configure the Switch’s IPv6 prefix list.

Click the link to go to a screen where you can configure the IPv6 link-local address for

an interface.

Click the link to go to a screen where you can configure the IPv6 global address for an

interface.

Click the link to go to a screen where you can configure the IPv6 neighbor discovery

settings.

Click the link to go to a screen where you can configure the IPv6 router discovery

settings.

GS3700/XGS3700 Series User’s Guide

Table 19 Basic Setting > IPv6 > IPv6 Configuration (continued)

LABEL DESCRIPTION

IPv6 Neighbor Setup Click the link to go to a screen where you can create a static IPv6 neighbor entry in the

DHCPv6 Client Setup Click the link to go to a screen where you can configure the Switch DHCP settings.

6.9.3 IPv6 Global Setup

Use this screen to configure the global IPv6 settings. Click the link next to IPv6 Global Setup in the IPv6 Configuration screen to display the screen as shown next.

Figure 35 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Global Setup

Chapter 6 Basic Setting

Switch’s IPv6 neighbor table.

The following table describes the labels in this screen.

Table 20 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Global Setup

LABEL DESCRIPTION

IPv6 Hop Limit Specify the maximum number of hops (from 1 to 255) in router advertisements. This

ICMPv6 Rate Limit Bucket Size

ICMPv6 Rate Limit Error Interval

Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses

Cancel Click Cancel to begin configuring this screen afresh. Clear Click Clear to reset the fields to the factory defaults.

is the maximum number of hops on which an IPv6 packet is allowed to t ransmit before

it is discarded by an IPv6 router, which is similar to the TTL field in IPv4.

Specify the maximum number of ICMPv6 error messages (from 1 to 200) which are

allowed to transmit in a given time interval. If the bucket is full, subsequent error

messages are suppressed.

Specify the time period (from 0 to 2147483647 milliseconds) during which ICMPv6

error messages of up to the bucket size can be transmitted. 0 means no limit.

these changes if it is turned off or loses power, so use the Save link on the top

navigation panel to save your changes to the nonvolatile memory when you are done

configuring.

6.9.4 IPv6 Interface Setup

Use this screen to turn on or off an IPv6 interface and enable stateless autoconfiguration on it. Click the link next to IPv6 Interface Setup in the IPv6 Configuration screen to display the screen as shown next.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Figure 36 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Interface Setup

The following table describes the labels in this screen.

Table 21 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Interface Setup

LABEL DESCRIPTION

Interface Select the IPv6 interface you want to configure. Active Select this option to enable the interface. Address Autoconfig Select this option to allow the interface to automatically generate a link-local address

via stateless autoconfiguration. Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses

Cancel Click Cancel to begin configuring this screen afresh. Clear Click Clear to reset the fields to the factory defaults. Index This is the interface index number. Click on an index number to change the settings. Interface This is the name of the IPv6 interface you created. Active This field displays whether the IPv6 interface is activated or not. Address Autoconfig This field displays whether stateless autoconfiguration is enabled on the interface.

these changes if it is turned off or loses power, so use the Save link on the top

navigation panel to save your changes to the nonvolatile memory when you are done

configuring.

6.9.5 IPv6 Link-Local Address Setup

A link-local address uniquely identifies a device on the local network (the LAN). It is similar to a “private IP address” in IPv4. You can have the same link-local address on multiple interfaces on a device. A link-local unicast address has a predefined prefix of fe80::/10.

Use this screen to configure the interface’s link-local address and default gateway. Click the link next to IPv6 Link-Local Address Setup in the IPv6 Configuration screen to display the screen as shown next.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Figure 37 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Link-Local Address Setup

The following table describes the labels in this screen.

Table 22 Basic Setting > IPv6 > IPv6 Co nfiguration > IPv6 Link-Local Address Setup

LABEL DESCRIPTION

Interface Select the IPv6 interface you want to configure. Link-Local Address Manually configure a static IPv6 link-local address for the interface. Default Gateway Set the default gateway IPv6 address for the interface. When an interface cannot find

a routing information for a frame’s destination, it forwards the packet to the default

gateway. Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses

these changes if it is turned off or loses power, so use the Save link on the top

navigation panel to save your changes to the nonvolatile memory when you are done

configuring. Cancel Click Cancel to begin configuring this screen afresh. Clear Click Clear to reset the fields to the factory defaults. Index This is the interface index number. Click on an index number to change the settings. Interface This is the name of the IPv6 interface you created. IPv6 Link-Local

Address IPv6 Default

Gateway

This is the static IPv6 link-local address for the interface.

This is the default gateway IPv6 address for the interface.

6.9.6 IPv6 Global Address Setup

Use this screen to configure the interface’s IPv6 global address. Click the link next to IPv6 Global Address Setup in the IPv6 Configuration screen to display the screen as shown next.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Figure 38 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Global Address Setup

The following table describes the labels in this screen.

Table 23 Basic Setting > IPv6 > IPv6 Conf iguration > IPv6 Global Address Setup

LABEL DESCRIPTION

Interface Select the IPv6 interface you want to configure. IPv6 Global Address Manually configure a static IPv6 global address for the interface. Prefix Length Specify an IPv6 prefix length that specifies how many most signific ant bi ts (s tart from

the left) in the address compose the networ k address. EUI-64 Select this option to have the interface ID be generated automatically using the EUI-

Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses

Prefix Length EUI-64 This shows whether the interface ID of the global address is generated using the EUI-

Delete Check the en try(ies) that you want to remove in the Delete column and then click

Cancel Click Cancel to clear the Delete check boxes.

64 format.

these changes if it is turned off or loses power, so use the Save link on the top

navigation panel to save your changes to the nonvolatile memory when you are done

configuring.

This field displays the IPv6 global address and prefix length for the interface.

64 format.

Delete to remove the selected entry(ies) from the summary table.

6.9.7 IPv6 Neighbor Discovery Setup

Use this screen to configure neighbor discovery settings for each interface. Click the link next to IPv6 Neighbor Discovery Setup in the IPv6 Configuration screen to display the screen as shown next.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Figure 39 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Neighbor Discovery Setup

The following table describes the labels in this screen.

Table 24 Basic Setting > IPv6 > IPv6 Conf iguration > IPv6 Neighbor Discovery Setup

LABEL DESCRIPTION

Interface Select the IPv6 interface you want to configure. DAD Attempts The Switch uses Duplicate Address Detection (DAD) with neighbor solicitation and

advertisement messages to check whether an IPv6 address is already in use before

assigning it to an interface, such as the link-local address it creates through stateles s

address autoconfiguration.

Specify the number of consecutive neighbor solicitations (from 0 to 600) the Switch

sends for this interface. Enter 0 to turn off DAD. NS Interval Specify the time interval (from 1000 to 3600000 milliseconds) at which neighbor

solicitations are re-sent for this interface. Reachable Time Specify how long (from 1000 to 3600000 milliseconds) a neighbor is considered

Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses

Cancel Click Cancel to begin configuring this screen afresh. Clear Click Clear to reset the fields to the factory defaults. Index This is the interface index number. Click on an index number to change the settings. Interface This is the name of the IPv6 interface you created. DAD Attempts This field displays the number of consecutive neighbor solicitations the Switch sends

NS Interval This field displays the time interval (in milliseconds) at which neighbor solicitations are

Reachable Time This field displays how long (in milliseconds) a neighbor is considered reachable for

reachable for this interface.

these changes if it is turned off or loses power, so use the Save link on the top

navigation panel to save your changes to the nonvolatile memory when you are done

configuring.

for this interface.

re-sent for this interface.

this interface.

6.9.8 IPv6 Router Discovery Setup

Use this screen to configure router discovery settings for each interface. Click the link next to IPv6 Router Discovery Setup in the IPv6 Configuration screen to display the screen as shown next.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Figure 40 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Router Discovery Setup

The following table describes the labels in this screen.

Table 25 Basic Setting > IPv6 > IPv6 Co nfiguration > IPv6 Router Discovery Setup

LABEL DESCRIPTION

Interface Select the IPv6 interface you want to configure. Flags Select the Managed Config Flag option to have the Switch set th e “managed address

configuration” flag (the M flag) to 1 in IPv6 router advertisements, which means IPv6

hosts use DHCPv6 to obtain IPv6 stateful addresses. Deselect the option to set the flag

to 0 and the host will not use DHCPv6 to obtain IPv6 stateful addresses.

Select the Other Config Flag option to have the Switch set the “Other stateful

configuration” flag (the O flag) to 1 in IPv6 router advertisements, which means IPv6

hosts use DHCPv6 to obtain additional configuration settings, such as DNS

information. Deselect the option to set the flag to 0 and the host will not use DHCPv6

to obtain additional configuration settings. Minimum Interval Specify the minimum time interval (from 3 to 1350 seconds) at which the Switch

sends router advertisements for this interface.

Note: The minimum time interval cannot be greater than three-quarters of the maximum

time interval.

Maximum Interval Specify the maximum time interval (from 4 to 1800 seconds) at which the Switch

sends router advertisements for this interface. Lifetime Specify how long (from 0 to 9000 seconds) the router in router advertisements can be

Suppress Select this option to set the Switch to not send router advertisemen ts and responses

Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses

used as a default router for this interface.

to router solicitations on this interface.

these changes if it is turned off or loses power, so use the Save link on the top

navigation panel to save your changes to the nonvolatile memory when you are done

configuring.

GS3700/XGS3700 Series User’s Guide

Table 25 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Router Discovery Setup (continued)

LABEL DESCRIPTION

Flags This field displays whether IPv6 hosts use DHCPv6 to obtain IPv6 stateful addresses

Minimum Interval This field displays the minimum time interval at which the Switch sends router

Maximum Interval This field displays the maximum time interval at which the Switch sends router

Lifetime This field displays how long the router in router advertisements can be used as a

Suppress This field displays whether the Switch sends router advertisements and responses to

6.9.9 IPv6 Prefix Setup

Use this screen to configure the Switch’s IPv6 prefix list for each interface. Click the link next to IPv6 Prefix Setup in the IPv6 Configuration screen to display the screen as shown next.

Figure 41 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Prefix Setup

Chapter 6 Basic Setting

(M) and/or additional configuration settings (O).

advertisements for this interface.

default router for this interface.

router solicitations on this interface (No) or not (Yes).

The following table describes the labels in this screen.

Table 26 Basic Setting > IPv6 > IPv6 Conf iguration > IPv6 Prefix Setup

LABEL DESCRIPTION

Interface Select the IPv6 interface you want to configure. Prefix Set the IPv6 prefix that the Switch includes in router advertisements for this interface. Prefix Length Set the prefix length that the Switch includes in router advertisements for this

interface. Valid Lifetime Specify how long (from 0 to 4294967295 seconds) the prefix is valid for on-link

determination.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Table 26 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Prefix Setup (continued)

LABEL DESCRIPTION

Preferred Lifetime Specify how long (from 0 to 4294967295 seconds) that addresses generated from the

prefix via stateless address autoconfiguration remain preferred.

The preferred lifetime cannot exceed the valid lifetime. Flags Select No-Autoconfig Flag to not allow IPv6 hosts to use this prefix for stateless

address autoconfiguration.

Select No-Onlink Flag to not allow the specified prefix to be used for on-link

determination.

Select No-Advertise Flag to set the Switch to not include the specified IPv6 prefix,

prefix length in router advertisements for this interface. Add Click this to create a new entry or to update an existing one.

This saves your changes to the Switch’s run-time memory. The Switch loses these

changes if it is turned off or loses power, so use the Save link on the top navigation

panel to save your changes to the nonvolatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. Clear Click Clear to reset the fields to the factory defaults. Index This is the interface index number. Click on an index number to change the settings. Interface This is the name of the IPv6 interface you created. Prefix/Prefix Length This field displays the IPv6 prefix and prefix length that the Switch includes in router

advertisements for this interface. Valid Lifetime This field displays the IPv6 prefix valid lifetime. Preferred Lifetime This field displays the preferred lifetime of an IPv6 address generated from the prefix. Delete Check the en try(ies) that you want to remove in the Delete column and then click

Cancel Click Cancel to clear the Delete check boxes.

Delete to remove the selected entry(ies) from the summary table.

6.9.10 IPv6 Neighbor Setup

Use this screen to create a static IPv6 neighbor entry in the Switch’s IPv6 neighbor table to store the neighbor information permanently. Click the link next to IPv6 Neighbor Setup in the IPv6 Configuration screen to display the screen as shown next.

Figure 42 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Neighbor Setup

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

The following table describes the labels in this screen.

Table 27 Basic Setting > IPv6 > IPv6 Conf iguration > IPv6 Neighbor Setup

LABEL DESCRIPTION

Interface Type Select the type of IPv6 interface for which you want to configure. The Switch supports

Interface ID Specify a unique identification number (from 1 to 4094) for the interface.

the VLAN interface type for IPv6 at the time of writing.

Note: A static IPv6 neighbor entry displays in the Management > Neighbor Table

screen only when the interface ID is also created in the Basic Setup > Interface Setup screen.

Note: To have IPv6 function properly, you should configure a static VLAN with the same

ID number in the Advanced Setup > VLAN screens.

Neighbor Address Specify the IPv6 address of the neighboring device which can be reached through the

MAC Specify the MAC address of the neighboring device which can be reached through the

Add Click this to create a new entry or to update an existing one.

Cancel Click Cancel to begin configuring this screen afresh. Clear Click Clear to reset the fields to the factory defaults. Index This is the interface index number. Click on an index number to change the settings. Interface This is the name of the IPv6 interface you created. Neighbor Address This field displays the IPv6 address of the neighboring device which can be reached

MAC This field displays the MAC address of the neighboring device which can be reached

Delete Check the en try(ies) that you want to remove in the Delete column and then click

Cancel Click Cancel to clear the Delete check boxes.

interface.

This saves your changes to the Switch’s run-time memory. The Switch loses these

changes if it is turned off or loses power, so use the Save link on the top navigation

panel to save your changes to the nonvolatile memory when you are done configuring.

through the interface

through the interface.

Delete to remove the selected entry(ies) from the summary table.

6.9.11 DHCPv6 Client Setup

Use this screen to configure the Switch’s DHCP settings when it is acting as a DHCPv6 client. Click the link next to IPv6 Neighbor Setup in the IPv6 Configuration screen to display the screen as shown next.

GS3700/XGS3700 Series User’s Guide

Chapter 6 Basic Setting

Figure 43 Basic Setting > IPv6 > IPv6 Configuration > DHCPv6 Client Setup

The following table describes the labels in this screen.

Table 28 Basic Setting > IPv6 > IPv6 Configuration > DHCPv6 Client Setup

LABEL DESCRIPTION

Interface Select the IPv6 interface you want to configure. IA Type Select IA-NA to set the Switch to get a non-temporary IP address from the DHCPv6

server for this interface.

Optionally, you can also select Rapid-Commit to have the Switch send its DHCPv6

Solicit message with a Rapid Commit option to obtain information from the DHCPv6

server by a rapid two-message exchange. The Switch discards any Reply messages

that do not include a Rapid Commit option. The DHCPv6 server should also support the

Rapid Commit option to have it work well. Options Select DNS to have the Switch obtain DNS server IPv6 addresses and/or select

Domain-List to have the Switch obtain a list of domain names from the DHCP server. Information Refresh

Minimum Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses

Cancel Click Cancel to begin configuring this screen afresh. Clear Click Clear to reset the fields to the factory defaults. Index This is the interface index number. Click on an index number to change the settings. Interface This is the name of the IPv6 interface you created. IA-NA This field displays whether the Switch obtains a non-temporary IP address from the

Rapid-Commit This field displays whether the Switch obtains information from the DHCPv6 server by

DNS This field displays whether the Switch obtains DNS server IPv6 addresses from the

Domain-List This field displays whether the Switch obtains a list of domain names from the DHCP

Information Refresh Minimum

Specify the time interval (from 600 to 4294967295 seconds) at which the Switch

exchanges other configuration information with a DHCPv6 server again.

these changes if it is turned off or loses power, so use the Save link on the top

navigation panel to save your changes to the nonvolatile memory when you are done

configuring.

DHCPv6 server.

a rapid two-message exchange.

DHCPv6 server.

server.

This field displays the time interval (in seconds) at which the Switch exchanges other

configuration information with a DHCPv6 server again.

GS3700/XGS3700 Series User’s Guide

CHAPTER 7

The type of screen you see here depends on the VLAN Type you selected in the Switch Setup screen. This chapter shows you how to configure 802.1Q tagged and port-based VLANs.

7.1 Introduction to IEEE 802.1Q Tagged VLANs

A tagged VLAN uses an explicit tag (VLAN ID) in the MAC header to identify the VLAN membership of a frame across bridges - they are not confined to the switch on which they were created. The VLANs can be created statically by hand or dynamically through GVRP. The VLAN ID associates a frame with a specific VLAN and provides the information that switches need to process the frame across the network. A tagged frame is four bytes longer than an untagged frame and contains two bytes for the TPID (Tag Protocol Identifier, residing within the type/length field of the Ethernet frame) and two bytes for the TCI (Tag Control Information, starting after the source address field of the Ethernet frame).

VLAN

The CFI (Canonical Format Indicator) is a single-bit flag, always set to zero for Ethernet switches. If a frame received at an Ethernet port has a CFI set to 1, then that frame should not be forwarded as it is to an untagged port. The remaining twelve bits define the VLAN ID, giving a possible maximum number of 4,096 VLANs. Note that user priority and VLAN ID are independent of each other. A frame with VID (VLAN Identifier) of null (0) is called a priority frame, meaning that only the priority level is significant and the default VID of the ingress port is given as the VID of the frame. Of the 4096 possible VIDs, a VID of 0 is used to identify priority frames and the value 4095 (FFF) is reserved, so the maximum possible number of VLAN configurations is 4,094.

TPID 2 Bytes

User Priority 3 Bits

CFI 1 Bit

VLAN ID 12 bits

7.1.1 Forwarding Tagged and Untagged Frames

Each port on the Switch is capable of passing tagged or untagged frames. To forward a frame from an 802.1Q VLAN-aware switch to an 802.1Q VLAN-unaware switch, the Switch first decides where to forward the frame and then strips off the VLAN tag. To forward a frame from an 802.1Q VLANunaware switch to an 802.1Q VLAN-aware switch, the Switch first decides where to forward the frame, and then inserts a VLAN tag reflecting the ingress port's default VID. The default PVID is VLAN 1 for all ports, but this can be changed.

A broadcast frame (or a multicast frame for a multicast group that is known by the system) is duplicated only on ports that are members of the VID (except the ingress port itself), thus confining the broadcast to a specific domain.

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

7.2 Automatic VLAN Registration

GARP and GVRP are the protocols used to automatically register VLAN membership across switches.

7.2.1 GARP

GARP (Generic Attribute Registration Protocol) allows network switches to register and de-register attribute values with other GARP participants within a bridged LAN. GARP is a protocol that provides a generic mechanism for protocols that serve a more specific application, for example, GVRP.

7.2.1.1 GARP Timers

Switches join VLANs by making a declaration. A declaration is made by issuing a Join message using GARP. Declarations are withdrawn by issuing a Leave message. A Leave All message terminates all registrations. GARP timers set declaration timeout values.

7.2.2 GVRP

GVRP (GARP VLAN Registration Protocol) is a registration protocol that defines a way for switches to register necessary VLAN members on ports across the network. Enable this function to permit VLAN groups beyond the local Switch.

Please refer to the following table for common IEEE 802.1Q VLAN terminology.

Table 29 IEEE 802.1Q VLAN Terminology

VLAN PARAMETER TERM DESCRIPTION

VLAN Type Permanent VLAN This is a static VLAN created manually.

Dynamic VLAN This is a VLAN configured by a GVRP registration/

deregistration process.

VLAN Administrative Control

VLAN Tag Control Tagged Ports belonging to the specified VLAN tag all outgoing frames

VLAN Port Port VID This is the VLAN ID assigned to untagged frames that this

Registration Fixed Fixed registration ports are permanent VLAN members.

Registration Forbidden

Normal Registration Ports dynamically join a VLAN using GVRP.

Untagged Ports belonging to the specified VLAN don't tag all outgoing

Acceptable Frame Type

Ingress filtering If set, the Switch di scards incoming frames for VLANs that do

Ports with registration forbidden are forbidden to join the specified VLAN.

transmitted.

frames transmitted.

port received. You may choose to accept both tagged and untagged

incoming frames, just tagged incoming frames or just untagged incoming frames on a port.

not have this port as a member.

GS3700/XGS3700 Series User’s Guide

7.3 Port VLAN Trunking

Enable VLAN Trunking on a port to allow frames belonging to unknown VLAN groups to pass through that port. This is useful if you want to set up VLAN groups on end devices without having to configure the same VLAN groups on intermediary devices.

The following figure describes VLAN Trunking. Suppose you want to create VLAN groups 1 and 2 (V1 and V2) on devices A and B. Without VLAN Trunking, you must configure VLAN groups 1 and 2 on all intermediary switches C, D and E; otherwise they will drop frames with unknown VLAN group tags. However, with VLAN Trunking enabled on a port(s) in each intermediary switch you only need to create VLAN groups in the end devices (A and B). C, D and E automatically allow frames with VLAN group tags 1 and 2 (VLAN groups that are unknown to those switches) to pass through their VLAN trunking port(s).

Figure 44 Port VLAN Trunking

Chapter 7 VLAN

7.4 Select the VLAN Type

Select a VLAN type in the Basic Setting > Switch Setup screen.

Figure 45 Switch Setup: Select VLAN Type

7.5 802.1Q Static VLAN

Make sure 802.1Q is selected in the Basic Setting > Switch Setup screen.

Use a static VLAN to decide whether an incoming frame on a port should be

• sent to a VLAN group as normal depending on its VLAN tag.

• sent to a group whether it has a VLAN tag or not.

• blocked from a VLAN group regardless of its VLAN tag. You can also tag all outgoing fr ames (that were previously untagged) from a port with the specified

VID.

GS3700/XGS3700 Series User’s Guide

7.5.1 VLAN Status

See Section 7.1 on page 81 for more information on 802.1Q VLAN. Click Advanced Application > VLAN from the navigation panel to display the VLAN Status screen as shown next.

Figure 46 Advanced Application > VLAN: VLAN Status

Chapter 7 VLAN

The following table describes the labels in this screen.

Table 30 Advanced Application > VLAN: VLAN Status

LABEL DESCRIPTION

VLAN Search by VID

The Number of VLAN

The Number of Search Results

Index This is the VLAN index number. Click on an index number to view more VLAN details. VID This is the VLAN identification number that was configured in the Static VLAN screen.

Elapsed Time This field shows how long it has been since a normal VLAN was registered or a static VLAN

Status This field shows how this VLAN was added to the Switch.

Change Pages Click Previous or Next to show the previous/next screen if all status information cannot

Enter an existing VLAN ID number(s) (separated by a comma) and click Search to display only the specified VLAN(s) in the list below.

Leave this field blank and click Search to display all VLANs configured on the Switch. This is the number of VLANs configured on the Switch.

This is the number of VLANs that match the searching criteria and display in the list below. This field displays only when you use the Search button to look for certain VLANs.

was set up.

• Dynamic - using GVRP

• Static - manually added as a normal VLAN

• Private - manually added as a private VLAN (primary, isolated or community)

• RMirror - manually added as a remote port mirroring VLAN

• MVR - added via Multicast VLAN Registration (MVR)

be seen in one screen.

GS3700/XGS3700 Series User’s Guide

7.5.2 VLAN Details

Use this screen to view detailed port settings and status of the VLAN group. See Section 7.1 on

page 81 for more information on 802.1Q VLAN. Click on an index number in the VLAN Status

screen to display VLAN details.

Figure 47 Advanced Application > VLAN > VLAN Detail

Chapter 7 VLAN

The following table describes the labels in this screen.

Table 31 Advanced Application > VLAN > VLAN Detail

LABEL DESCRIPTION

VLAN Status Click this to go to the VLAN Status screen. VID This is the VLAN identification number that was configured in the Static VLAN screen. Port Number This column displays the ports that are participating in a VLAN. A tagged port is marked as

T, an untagged port is marked as U and ports not participating in a VLAN are marked as “– “.

Elapsed Time This field shows how long it has been since a normal VLAN was registered or a static VLAN

was set up.

Status This field shows how this VLAN was added to the Switch.

• Dynamic - using GVRP,

• Static - manually added as a normal VLAN

• Private - manually added as a private VLAN (primary, isolated or community)

• RMirror - manually added as a remote port mirroring VLAN

• MVR - added via Multicast VLAN Registration (MVR)

Private VLAN Status

Primary VLAN This field shows the primary VLAN ID in the selected VLAN. Secondary

VLAN Type This field shows the type of private VLAN: Primary, Community or Isolated. Port List This shows the ports mapped to the private VLAN using the Advanced Application >

Change Pages Click Previous or Next to show the previous/next screen if all status information cannot

These fields show private VLAN information for the selected VLAN. See Section 32.1 on

page 265 for more information on private VLANs.

This field shows the secondary VLAN ID in the selected VLAN.

Private VLAN or Advanced Application > VLAN > Static VLAN screen.

be seen in one screen.

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

7.5.3 Configure a Static VLAN or Private VLAN

Use this screen to create 802.1Q VLAN IDs and set VLAN members for Normal (static) or Private (Primary, Isolated or Community) VLANs. You must create VLAN IDs for Private (Primary, Isolated or Community) VLANs before configuring Advanced Application > Private VLAN. See

Section 7.1 on page 81 for more information on 802.1Q VLAN.

To configure a static or private VLAN, click Static VLAN in the VLAN Status screen to display the screen as shown next.

Figure 48 Advanced Application > VLAN > Static VLAN

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

The following table describes the related labels in this screen.

Table 32 Advanced Application > VLAN > Static VLAN

LABEL DESCRIPTION

ACTIVE Select this check box to activate the VLAN settings. Name Enter a descriptive name for the VLAN group for identification purposes. This name

VLAN Group ID Enter the VLAN ID for this static entry; the valid range is between 1 and 4094. VLAN Type Select Normal (static) or Private. For Private VLANs, select Primary, Isolated or

Association VLAN List

Port The port number identifies the port you are configuring. * Settings in this row apply to all ports.

consists of up to 64 printable characters; spaces are allowed.

Community. Primary private VLANs can associate with sev eral (secondary) Community private VLANs

and up to one (secondary) Isolated private VLAN. You only configure VLAN Association List for Primary private VLANs. Use a dash to

associate consecutive VLANs and a comma (no spaces) to associate non-consecutive VLANs. For example, 51-53 includes 51, 52 and 53, but 51,53 does not include 52.

Secondary private VLANs can only be associated with one primary private VLAN.

Use this row only if you want to make some settings the same for all ports. Use this row first to set the common settings and then make adjustments on a port-by-port basis.

Note: Changes in this row are copied to all the ports as soon as you make them.

Control Select Normal for the port to dynamically join this VLAN group using GVRP. This is the

Tagging Select TX Tagging if you want the port to tag all outgoing frames transmitted with this

Add Click this to create a new entry or to update an existing one.

Cancel Click Cancel to begin configuring this screen afresh. Clear Click Clear to reset the fields to the factory defaults. VID This field displays the ID number of the VLAN group. Click the number to edit the VLAN

Active This field indicates whether the VLAN settings are enabled (Yes) or disabled (No). Name This field displays the descriptive name for this VLAN group. VLAN Type This field displays the Normal or Private (Primary, Isolated or Community) type VLAN

Association VLAN List

Delete Click Delete to remove the selected entry from the summary table. Cancel Click Cancel to clear the Delete check boxes.

default selection. Select Fixed for the port to be a permanent member of this VLAN group. Select Forbidden if you want to prohibit the port from joining this VLAN group.

VLAN Group ID.

This saves your changes to the Switch’ s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatil e me mory when you are done configuring.

settings.

configured in the top part of this screen. This field displays which secondary private VLANs are associated with a primary private

VLAN configured in the top part of this screen.

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

7.5.4 Configure VLAN Port Settings

Use the VLAN Port Setting screen to configure the static VLAN (IEEE 802.1Q) settings on a port. See Section 7.1 on page 81 for more information on 802.1Q VLAN. Click the VLAN Port Setting link in the VLAN Status screen.

Figure 49 Advanced Application > VLAN > VLAN Port Setting

The following table describes the labels in this screen.

Table 33 Advanced Application > VLAN > VLAN Port Setting

LABEL DESCRIPTION

GVRP GVRP (GARP VLAN Registration Protocol) is a registration proto col that defines a w ay for

Port This field displays the port number. * Settings in this row apply to all ports.

switches to register necessary VLAN members on ports across the network. Select this check box to permit VLAN groups beyond the local Switch.

Use this row only if you want to make some settings the same for all ports. Use this row first to set the common settings and then make adjustments on a port-by-port basis.

Note: Changes in this row are copied to all the ports as soon as you make them.

Ingress Check If this check box is selected for a port, the Switch discards incoming frames for VLANs

that do not include this port in its member set. Clear this check box to disable ingress filtering.

PVID A PVID (Port VLAN ID) is a tag that adds to incoming untagged frames received on a

GVRP Select this check box to allow GVRP on this port.

port so that the frames are forwarded to the VLAN group that the tag defines. Enter a number between 1 and 4094 as the port VLAN ID.

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

Table 33 Advanced Application > VLAN > VLAN Port Setting (continued)

LABEL DESCRIPTION

Acceptable Frame Type

VLAN Trunking Enable VLAN Trunking on ports connected to other switches or routers (but not ports

Isolation Select this to allows this port to communicate only with the CPU management port and

Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses

Cancel Click Cancel to begin configuring this screen afresh.

Specify the type of frames allowed on a port. Choices are All, Tag Only and Untag Only.

Select All from the drop-down list box to accept all untagged or tagged frames on this port. This is the default setting.

Select Tag Only to accept only tagged frames on this port. All untagged frames will be dropped.

Select Untag Only to accept only untagged frames on this port. All tagged frames will be dropped.

directly connected to end users) to allow frames belonging to unknown VLAN groups to pass through the Switch.

the ports on which the isolation feature is not enabled.

these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.

7.5.5 Subnet Based VLANs

Subnet based VLANs allow you to group traffic into logical VLANs based on the source IP subnet you specify. When a frame is received on a port, the Switch checks if a tag is added already and the IP subnet it came from. The untagged packets from the same IP subnet are then placed in the same subnet based VLAN. One advantage of using subnet based VLANs is that priority can be assigned to traffic from the same IP subnet.

Note: Subnet based VLAN applies to un-tagged packets and is applicable only when you

use IEEE 802.1Q tagged VLAN.

For example, an ISP (Internet Service Provider) may divide different types of services it provides to customers into different IP subnets. Traffic for voice services is designated for IP subnet

172.16.1.0/24, video for 192.168.1.0/24 and data for 10.1.1.0/24. The Switch can then be configured to group incoming traffic based on the source IP subnet of incoming frames.

You can then configure a subnet based VLAN with priority 6 and VID of 100 for traffic received from IP subnet 172.16.1.0/24 (voice services). You can also have a subnet based VLAN with priority 5 and VID of 200 for traffic received from IP subnet 192.168.1.0/24 (video services). Lastly, you can configure VLAN with priority 3 and VID of 300 for traffic received from IP subnet 10.1.1.0/24 (data services). All untagged incoming frames will be classified based on their source IP subnet and prioritized accordingly. That is, video services receive the highest priority and data the lowest.

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

10.1.1.0/24

192.168.1.0/24

172.16.1.0/24

Internet

VID = 100

VID = 200

VID = 300

Untagged Frames

Tagged Frames

Figure 50 Subnet Based VLAN Application Example

7.5.5.1 Configuring Subnet Based VLAN

Click Subnet Based VLAN in the VLAN Port Setting screen to display the configur ation screen as shown.

Figure 51 Advanced Application > VLAN > VLAN Port Setting > Subnet Based VLAN

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

The following table describes the labels in this screen.

Table 34 Advanced Application > VLAN > VLAN Port Setting > Subnet Based VLAN Setup

LABEL DESCRIPTION

Active Select this check box to activate this subnet based VLANs on the Switch. DHCP-Vlan

Override

Apply Click Apply to save yo ur c hange s to the Switch’s run - ti me memory. The Switch loses these

Active Select this check box to activate the IP subnet VLAN you are creating or editing. Name Enter up to 32 alphanumeric characters to identify this subnet based VLAN. IP Enter the IP address of the subnet for which you want to configure this subnet based VLAN. Mask-Bits Enter the bit number of the subnet mask. To find the bit number, convert the subnet mask

VID Enter the ID of a VLAN with which the untagged frames from the IP subnet specified in this

Priority Select the priority level that the Switch assigns to frames belonging to this VLAN. Add Click this to create a new entry or to update an existing one.

When DHCP snooping is enabled DHCP clients can renew their IP address through the DHCP VLAN or via another DHCP server on the subnet based VLAN.

Select this checkbox to force the DHCP clients in th is IP subne t to obtai n the ir IP addresses through the DHCP VLAN.

changes if it is turned off or loses power , so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.

to binary format and add all the 1’s together. Take “255.255.255.0” for example. 255 converts to eight 1s in binary. There are three 255s, so add three eights together and you get the bit number (24).

subnet based VLAN are tagged. This must be an existing VLAN which you defined in the Advanced Application > VLAN > Static VLAN screen.

This saves your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save

your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. Index This is the index number identifying this subnet based VLAN. Click on any of these numbers

to edit an existing subnet based VLAN. Active This field shows whether the subnet based VLAN is active or not. Name This field shows the name the subnet based VLAN. IP This field shows the IP address of the subnet for this subnet based VLAN. Mask-Bits This field shows the subnet mask in bit number format for this subnet based VLAN. VID This field shows the VLAN ID of the frames which belong to this subnet based VLAN. Priority This field shows the priority which is assigned to frames belonging to this subnet based

Delete Click this to delete the subnet based VLANs which you marked for deletion. Cancel Click Cancel to begin configuring this screen afresh.

VLAN.

7.5.6 Protocol Based VLANs

Protocol based VLANs allow you to group traffic into logical VLANs based on the protocol you specify. When an upstream frame is received on a port (configured for a protocol based VLAN), the Switch checks if a tag is added already and its protocol. The untagged packets of the same protocol are then placed in the same protocol based VLAN. One advantage of using protocol based VLANs is that priority can be assigned to traffic of the same protocol.

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

Note: Protocol based VLAN applies to un-tagged packets and is applicable only when you

use IEEE 802.1Q tagged VLAN.

For example, ports 1, 2, 3 and 4 belong to static VLAN 100, and ports 4, 5, 6, 7 belong to static VLAN 120. You can configure a protocol based VLAN A with priority 2 for ARP traffic received on port 1, 2 and 3. You can also have a protocol based VLAN B with prio rity 3 for Apple Talk traffic received on port 6 and 7. All upstream ARP traffic from port 1, 2 and 3 will be grouped together, and all upstream Apple Talk traffic from port 6 and 7 will be in another group and have higher priority than ARP traffic when they go through the uplink port to a backbone switch C.

Figure 52 Protocol Based VLAN Application Example

7.5.6.1 Configuring Protocol Based VLAN

Click Protocol Based VLAN in the VLAN Port Setting screen to display the configuration screen as shown.

Figure 53 Advanced Application > VLAN > VLAN Port Setting > Protocol Based VLAN

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

The following table describes the labels in this screen.

Table 35 Advanced Application > VLAN > VLAN Port Setting > Protocol Based VLAN Setup

LABEL DESCRIPTION

Active Select this check box to activate this protocol based VLAN. Port Type a port number to be included in this protocol based VLAN.

This port must belong to a static VLAN in order to participate in a protocol based VLAN. See

Chapter 7 on page 81 for more details on setting up VLANs.

Name Enter up to 32 alphanumeric characters to identify this prot ocol based VLAN. Ethernet-type Use the drop down list box to select a predefined protocol to be included in this protocol

based VLAN or select Others and type the protocol number in hexadecimal notation. For

example, the IP protocol in hexadecimal notation is 0800, and Novell IPX protocol is 8137.

Note: Protocols in the hexadecimal number range of 0x0000 to 0x05ff are not allowed to be

used for protocol based VLANs.

VID Enter the ID of a VLAN to which the port belongs. This must be an existing VLAN which you

defined in the Advanced Application > VLAN > Static VLAN screen. Priority Select the priority level that the Switch will assign to frames belonging to this VLAN. Add Click this to create a new entry or to update an existing one.

This saves your changes to the Switch’s run-time memory. The Switch loses these changes

if it is turned off or loses power, so use the Save link on the top navigation panel to save

Active This field shows whether the protocol based VLAN is active or not. Port This field shows which port belongs to this protocol based VLAN. Name This field shows the name the protocol based VLAN. Ethernet-type This field shows which Ethernet protocol is part of this protocol based VLAN. VID This field shows the VLAN ID of the port. Priority This field shows the priority which is assigned to frames belonging to this protocol based

Delete Click this to delete the protoco l based VLANs which you marked for deletion. Cancel Click Cancel to begin configuring this screen afresh.

numbers to edit an existing protocol based VLAN.

VLAN.

7.5.6.2 Create an IP-based VLAN Example

This example shows you how to create an IP VLAN which includes ports 1, 4 and 8. Follow these steps using the screen below:

1 Activate this protocol based VLAN.

2 Type the port number you want to include in this protocol based VLAN. Type 1.

3 Give this protocol-based VLAN a descriptive name. Type IP-VLAN.

4 Select the protocol. Leave the default value IP.

5 T ype the VLAN ID of an existing VLAN. In our example we already created a static VLAN with an ID

of 5. Type 5.

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

EXAMPLE

6 Leave the priority set to 0 and click Add.

Figure 54 Protocol Based VLAN Configuration Example

To add more ports to this protocol based VLAN.

1 Click the index number of the protocol based VLAN entry. Click 1

2 Change the value in the Port field to the next port you want to add.

3 Click Add.

7.5.7 View Private VLAN Status

Use this screen to view all private VLANs created on the Switch. See also Advanced Application > Private VLAN.

Click Private VLAN Status in the VLAN Status screen to display the screen as shown next.

Figure 55 Advanced Application > VLAN > Private VLAN Status

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

The following table describes the labels in this screen.

Table 36 Advanced Application > VLAN > Private VLAN Status

LABEL DESCRIPTION

Private VLAN Status

Primary VLAN

Secondary VLAN

Type This field shows the type of private VLAN: Primary, Community or Isolated. Port List This shows the ports mapped to the private VLAN using the Advanced Application >

Change Pages Use the Previous and Next buttons to display different pages.

These fields show information for the all private VLANs. See also Advanced Application > Private VLAN.

This field shows the primary VLAN ID in a private VLAN.

This field shows the secondary VLAN ID in a private VLAN.

Private VLAN or Advanced Application > VLAN > Static VLAN screen.

7.6 Port-based VLAN Setup

Port-based VLANs are VLANs where the packet forwarding decision is based on the destination MAC address and its associated port.

Port-based VLANs require allowed outgoing ports to be defined for each port. Therefore, if you wish to allow two subscriber ports to talk to each other, for example, between conference rooms in a hotel, you must define the egress (an egress port is an outgoing port, that is, a port through which a data packet leaves) for both ports.

Port-based VLANs are specific only to the Switch on which they were created.

Note: When you activate port-based VLAN, the Switch uses a default VLAN ID of 1. You

cannot change it.

Note: In screens (such as IP Setup and Filtering) that require a VID, you must enter 1

as the VID.

The port-based VLAN setup screen is shown next. The CPU management port forms a VLAN with all Ethernet ports.

7.6.1 Configure a Port-based VLAN

Select Port Based as the VLAN Type in the Switch Setup screen and then click VLAN from the navigation panel to display the following screen. Select either All Connected or Port Isolated from the drop-down list depending on your VLAN and VLAN security requirements. If VLAN members need to communicate directly with each other, then select All Connected. Select Port Isolated if you want to restrict users from communicating directly. Click Apply to save your settings.

The following screen shows users on a port-based, all-connected VLAN configuration.

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

Figure 56 Advanced Application > VLAN > Port Based VLAN Setup (All Connected)

The following screen shows users on a port-based, port-isolated VLAN configuration.

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

Figure 57 Advanced Application > VLAN: Port Based VLAN Setup (Port Isolation)

GS3700/XGS3700 Series User’s Guide

Chapter 7 VLAN

The following table describes the labels in this screen.

Table 37 Advanced Application > VLAN: Port Based VLAN Setup

LABEL DESCRIPTION

Setting Wizard Choose All connected or Port isolation.

All connected means all ports can communicate with each other, that is, there are no

virtual LANs. All incoming and outgoing ports are selected. This option is the most flexible

but also the least secure.

Port isolation means that each port can only communicate with the CPU management port

and cannot communicate with each other . All incoming ports are selected while only the CPU

outgoing port is selected. This option is the most limiting but also the most secure.

After you make your selection, click Apply (top right of screen) to display the screens as

mentioned above. You can still customize these settings by adding/deleting incoming or

outgoing ports, but you must also click Apply at the bottom of the screen. Incoming These are the ingress ports; an ingress port is an incoming port, that is, a port through

Outgoing These are the egress ports. An egress port is an outgoing port, that is, a port through which

Apply Click Apply to save yo ur c hange s to the Switch’s run - ti me memory. The Switch loses these

Cancel Click Cancel to begin configuring this screen afresh.

which a data packet enters. If you wish to allow two subscriber ports to talk to each other,

you must define the ingress port for both ports. The numbers in the top row denote the

incoming port for the corresponding port listed on the left (its outgoing port). CPU refers to

the Switch management port. By default it forms a VLAN with all Ethernet ports. If it does

not form a VLAN with a particular port then the Switch cannot be managed from that port.

a data packet leaves. If you wish to allow two subscriber ports to talk to each other, you

must define the egress port for both ports. CPU refers to the Switch management port. By

default it forms a VLAN with all Ethernet ports. If it does not form a VLAN with a particular

port then the Switch cannot be managed from that port.

changes if it is turned off or loses power , so use the Save link on the top navigation panel to

save your changes to the non-volatile memory when you are done configuring.

GS3700/XGS3700 Series User’s Guide

CHAPTER 8

Static MAC Forward Setup

Use these screens to configure static MAC address forwarding.

8.1 Overview

This chapter discusses how to configure forwarding rules based on MAC addresses of devices on your netw ork.

8.2 Configuring Static MAC Forwarding

A static MAC address is an address that has been manually entered in the MAC address table. Static MAC addresses do not age out. When you set up static MAC address rules, you are setting static MAC addresses for a port. This may reduce the need for broadcasting.

Static MAC address forwarding together with port security allows only computers in the MAC address table on a port to access the Switch. See Chapter 17 on page 153 for more information on port security.

Click Advanced Application > Static MAC Forwarding in the navigation panel to display the configuration screen as shown.

Figure 58 Advanced Application > Static MAC Forwarding

GS3700/XGS3700 Series User’s Guide

Chapter 8 Static MAC Forward Setup

The following table describes the labels in this screen.

Table 38 Advanced Application > Static MAC Forwarding

LABEL DESCRIPTION

Active Select this check box to activate your rule. You may temporarily deactivate a rule without

Name Enter a descriptive name for identification purposes for this static MAC address forwarding

MAC Address Enter the MAC address in valid MAC address format, that is, six hexadecimal character

deleting it by clearing this check box.

rule.

pairs.

Note: Static MAC addresses do not age out.

VID Enter the VLAN identification number. Port En ter the port where the MAC address entered in the previous field will be automatically

forwarded.

Add Click this to create a new entry or to update an existing one.

This saves your rule to the Switch’s run-time memory. The Switch loses this rule if it is turned off or loses power, so use the Save link on the top navigation panel to save your

changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. Clear Click Clear to reset the fields to the factory defaults. Index Click an index number to modify a static MAC address rule for a port. Active This field displays whether this static MAC address forwarding rule is active (Yes) or not

(No). You may temporarily deactivate a rule without deleting it. Name This field displays the descriptive name for identification purposes for this static MAC

MAC Address This field displays the MAC address that will be forwarded and the VLAN identification

VID This field displays the ID number of the VLAN group. Port This field displays the port where the MAC address shown in the next field will be

Delete Click Delete to remove the selected entry from the summary table. Cancel Click Cancel to clear the Delete check boxes.

address-forwarding rule.

number to which the MAC address belongs.

forwarded.

GS3700/XGS3700 Series User’s Guide

100

Zyxel GS3700-48 User Manual [ru]

Specifications and Main Features

Frequently Asked Questions

User Manual

GS3700/XGS3700 Series

Contents Overview

Table of Contents

User’s Guide

1.1 Introduction

Getting to Know Your Switch

1.1.1 Bridging Example

1.1.2 High Performance Switching Example

1.1.3 Gigabit Ethernet to the Desktop

1.1.4 IEEE 802.1Q VLAN Application Example

1.1.5 IPv6 Support

1.2 Ways to Manage the Switch

1.3 Good Habits for Managing the Switch

Hardware Installation and Connection

2.1 Freestanding Installation

2.2 Mounting the Switch on a Rack

2.3 Installation Requirements

2.3.1 Precautions

2.4 Attaching the Brackets to the Switch

2.5 Mounting the Switch on a Rack

2.6 Power Module Installation

3.1 Front Panel Connections

Hardware Overview

3.1.1 Ethernet Ports

3.1.2 SFP/SFP+ Slots

3.1.3 Management Port

3.1.4 Console Port

3.2 Rear Panel

3.2.1 Removing and Installing the Fan Module

3.2.2 Power Connection

3.3 LEDs

4.1 Introduction

The Web Configurator

4.2 System Login

4.3 The Web Configurator Layout

4.3.1 Change Your Password

4.4 Saving Your Configuration

4.5 Switch Lockout

4.6 Resetting the Switch

4.6.1 Reload the Configuration File

4.7 Logging Out of the Web Configurator

4.8 Help

Technical Reference

5.1 Overview

5.2 ZyXEL One Network (ZON) Utility Screen

5.3 ZON Neighbor Management Screen

5.4 Port Status Summary

5.4.1 Status: Port Deta ils

6.1 System Information

Basic Setting

6.2 General Setup

6.3 Introduction to VLANs

6.4 Switch Setup

6.5 IP Setup

6.5.1 IP Interfaces

6.6 Port Setup

6.7 PoE

6.7.1 PoE Setup

6.8 Interface Setup

6.9 IPv6

6.9.1 IPv6 Interface Status

6.9.2 IPv6 Configuration

6.9.3 IPv6 Global Setup

6.9.4 IPv6 Interface Setup

6.9.5 IPv6 Link-Local Address Setup

6.9.6 IPv6 Global Address Setup

6.9.7 IPv6 Neighbor Discovery Setup

6.9.8 IPv6 Router Discovery Setup

6.9.9 IPv6 Prefix Setup

6.9.10 IPv6 Neighbor Setup

6.9.11 DHCPv6 Client Setup

7.1 Introduction to IEEE 802.1Q Tagged VLANs

VLAN

7.1.1 Forwarding Tagged and Untagged Frames

7.2 Automatic VLAN Registration

7.2.1 GARP