Zyxel XGS4700-48F User Manual [ru]

Download

XGS4700-48F

Layer 3 Managed Stackable Gigabit Ethernet Switch

Default Login Details

IP Address http://192.168.0.1

(Out-of-band

MGMT port)

http://192.168.1.1

(In-band ports) User Name admin Password 1234

Firmware Version 4.00 Edition 1, 04/2011

www.zyxel.com

About This User's Guide

Intended Audience

This manual is intended for people who want to configure the Switch using the web configurator.

Document Conventions

Warnings and Notes

These are how warnings and notes are shown in this User’s Guide.

Warnings tell you about things that could harm you or your device.

Note: Notes tell you other important information (for example, other things you may

need to configure or helpful tips) or recommendations.

Syntax Conventions

• The XGS4700-48F may be referred to as the “Switch”, the “device”, the “system” or the “product” in this User’s Guide.

• Product labels, screen names, field labels and field choices are all in bold font.

• A key stroke is denoted by square brackets and uppercase text, for example, [ENTER] means the “enter” or “ret urn” key on your keyboard.

• “Enter” means for you to type one or more characters and then press the [ENTER] key. “Select” or “choose” means for you to use one of the predefined choices.

• A right angle bracket ( > ) within a screen name denotes a mouse click. For example, Maintenance > Log > Log Setting means you first click

Maintenance in the navigation panel, then the Log sub menu and finally the Log Setting tab to get to that screen.

• Units of measurement may denote the “metric” value or the “scientific” value. For example, “k” for kilo may denote “1000” or “1024”, “M” for mega may denote “1000000” or “1048576” and so on.

XGS4700-48F User’s Guide

Document Conventions

Icons Used in Figures

Figures in this User’s Guide may use the following generic icons. The S witch icon is not an exact representation of your device.

The Switch Computer Notebook computer

Server DSLAM Firewall

Telephone Switch Router

XGS4700-48F User’s Guide

Safety Warnings

• Do NOT use this product near water, for example, in a wet basement or near a swimming pool.

• Do NOT expose your device to dampness, dust or corrosive liquids.

• Do NOT store things on the device.

• Do NOT install, use, or service this device during a thunderstorm. There is a remote risk of electric shock from lightning.

• Connect ONLY suitable accessories to the device.

• Do NOT open the device or unit. Opening or removing covers can expose you to dangerous high voltage points or other risks. ONLY qualified service personnel should service or disassemble this device. Please contact your vendor for further information.

• For continued protection against risk of fire replace only with same type and rating of fuse.

• Make sure to connect the cables to the correct ports.

• Place connecting cables carefully so that no one will step on them or stumble over them.

• Always disconnect all cables from this device before servicing or disassembling.

• Use ONLY an appropriate power adaptor or cord for your device. Connect it to the right supply voltage (for example, 110V AC in North America or 230V AC in Europe).

• Do NOT allow anything to rest on the power adaptor or cord and do NOT place the product where anyone can walk on the power adaptor or cord.

• Do NOT use the device if the power adaptor or cord is damaged as it might cause electrocution.

• If the power adaptor or cord is damaged, remove it from the device and the power source.

• Do NOT attempt to repair the power adaptor or cord. Contact your local vendor to order a new one.

• Do not use the device outside, and make sure all the connections are indoors. There is a remote risk of electric shock from lightning.

• Do NOT obstruct the device ventilation slots, as insufficient airflow may harm your device.

Your product is m arked with this symbol, which is known as the WEEE mark. WEEE stands for Waste Electronics and Electrical Equipment. It means that used electrical and electronic products should not be mixed with general waste. Used electrical and electronic equipment should be treated separately.

XGS4700-48F User’s Guide

Safety Warnings

XGS4700-48F User’s Guide

Contents Overview

User’s Guide ........................................................................................................ ...................25

Getting to Know Your Switch .....................................................................................................27

Hardware Installation and Connection ................................... ................................. ................... 33

Hardware Overview ................................................................................................................... 41

The Web Configurator ............................................................................................................... 55

Initial Setup Example ................................................................................................................. 65

Tutorials ..................................................................................................................................... 71

Technical Reference ..............................................................................................................97

System Status and Port Statistics ............................. .... ... ... ... .... ... ... ... .......................................99

Basic Setting ........................................................................................................................... 105

VLAN ........................................................................................................................................119

Static MAC Forward Setup ...................................................................................................... 139

Static Multicast Forward Setup ................................................................................................ 143

Filtering ..................................... .................................................... ........................................... 147

Spanning Tree Protocol ............... .... ........................................................................................ 149

Bandwidth Control .... ... ... .... ... ... ... ............................................................................................ 171

Broadcast Storm Control ......................................................................................................... 175

Mirroring .................................................................................................................................. 177

Link Aggregation ................. .....................................................................................................179

Port Authentication ...... ... .... ... ..................................................................................................189

Port Security .................................... ... ... ... ............................................. .... ... ... ... .... ... ..............199

Classifier ................................... .................................................... ........................................... 203

Policy Rule .............................................................................................................................. 209

Queuing Method ...................................................................................................................... 217

VLAN Stacking ......................................................................................................................... 221

Multicast ..................................................................................................................................229

AAA ......................................................................................................................................... 245

IP Source Guard ...................................................................................................................... 261

Loop Guard ..................... .... ... ... ............................................. .... ... ... ... ... .... ... ... ... .... .................285

VLAN Mapping ........................................................................................................................ 289

Layer 2 Protocol Tunneling .............. ... ... ... ... .... ... ... ... .... ... ... ... .................................................. 293

sFlow .......................................................................................................................................297

PPPoE ..................................................................................................................................... 301

Error Disable .............................................................................................................................311

Static Route ............................................................................................................................. 317

Policy Routing .......................................................................................................................... 321

RIP ............................... .................... ................... ................... .................... ..............................325

XGS4700-48F User’s Guide

Contents Overview

OSPF .............................. .................................................... ..................................................... 329

IGMP .......................................................................................................................................343

DVMRP ..................................... ....................... ...................... ....................... ........................... 347

Differentiated Services ........................................ ... ... .... ... ... ... .... ... ........................................... 351

DHCP ...................................................................................................................................... 359

VRRP .............................. .................... ................... .................... ................... ........................... 369

ARP Learning ........... ... ........................................................................................... ... ... ........... 379

Load Sharing ............ ... ........................................................................................... ... ... ........... 385

Maintenance ............................................................................................................................ 387

Access Control ........................................................................................................................ 395

Diagnostic .................................... ....................................................... ..................................... 421

Syslog ....................................... .................................................... ........................................... 423

Cluster Management .......... ... ................................................ .... ... ... ........................................ 427

MAC Table ............................................................................................................................... 435

IP Table .................................. ... ... .... ... ... ... ............................................. .... ... ... ... .... .................439

ARP Table .............................. ... ... .... ... ... ... ............................................. .... ... ... ... .... ... ..............443

Routing Table ........................................................................................................................... 445

Configure Clone ....................................................................................................................... 447

Troubleshooting ..................................................... .................................................................. 449

Product Specifications ............................................................................................................. 455

XGS4700-48F User’s Guide

Table of Contents

About This User's Guide..........................................................................................................3

Document Conventions............................................................................................................5

Safety Warnings ........................................................................................................................7

Contents Overview ...................................................................................................................9

Table of Contents....................................................................................................................11

Part I: User’s Guide................................................................................ 25

Chapter 1

Getting to Know Your Switch.................................................................................................27

1.1 Introduction ......................... ... .... ... ... ... ............................................. .... ... ... ... .... ... ... .............27

1.1.1 Bridging Example ......... .... ... ... ... ... .... ... ... ... .... ................................................ ... ... .... ... 27

1.1.2 High Performance Switching Example .......................................................................28

1.1.3 Gigabit Ethernet to the Desktop ................................................................................. 29

1.1.4 IEEE 802.1Q VLAN Application Example .................................................................. 29

1.1.5 IPv6 Support ....................................................... ... .... ... ... .......................................... 30

1.2 Ways to Manage the Switch ............................ ... .............................................. ... ... ... ... .... ... 30

1.3 Good Habits for Managing the Switch ................................................................................. 31

Chapter 2

Hardware Installation and Connection .................................................................................33

2.1 Freestanding Installation ..................................................................................................... 33

2.2 Mounting the Switch on a Rack .......................................................................................... 34

2.2.1 Rack-mounted Installation Requirements .................................................................. 34

2.2.2 Attaching the Mounting Brackets to the Switch ................................ .......................... 34

2.2.3 Mounting the Switch on a Rack .................................................................................. 35

2.3 Connecting the Frame Ground ........................................ .... ... ... .......................................... 35

2.4 Power Module Installation ............................................... .... ... ... ... ... .................................... 36

2.4.1 Installing a Power Module ..........................................................................................36

2.4.2 Removing a Power Module .... ... ... .... ... ... ... .... ............................................................. 38

Chapter 3

Hardware Overview.................................................................................................................41

3.1 Front Panel Connections ... ... .... ... ... ... ... .... ... ................................................ .... ... ................ 41

XGS4700-48F User’s Guide

Table of Contents

3.1.1 Mini-GBIC Slots .........................................................................................................41

3.1.2 Console Port ......................................................... .... ... ... ... ... .... ... ... .......................... 43

3.1.3 Signal Slot ........... ... ... ... .... ... ............................................. ... ... .... ... ... ... .... ................... 43

3.2 Rear Panel .................... ... ............................................. ... .... ... ... ... ... .................................... 46

3.2.1 Removing and Installing the Fan Module ................................................................... 47

3.2.2 Uplink Module ..................................................... ... .... ... .............................................48

3.2.3 Rear Panel Connections ............................................................................................48

3.2.4 Management Port ...................... ... .............................................. ... ... ... .... ... ... ............. 49

3.2.5 Power Connector ................................................... .... ... ... ... ... .... ... ... .......................... 49

3.3 Power Connection ........ ... ... ... .... ... ................................................ ... .... ... ............................. 49

3.3.1 AC Power Connections .... ... ... ... ... .... ... ....................................................................... 50

3.3.2 DC Power Connections .............................................................................................. 50

3.3.3 Procedure to Turn on the Switch Power ..................................................... ... ... ... .... ... 51

3.3.4 Disconnecting the Power ...........................................................................................51

3.4 LEDs ................................................................................................................................ 52

Chapter 4

The Web Configurator............................................................................................................55

4.1 Introduction ......................... ... .... ... ... ... ............................................. .... ... ... ... .... ... ... .............55

4.2 System Login ....................................................................................................................55

4.3 The Web Configurator Layout ............................................................................................ 56

4.3.1 Change Your Password .......................................................................................... 61

4.4 Saving Your Configuration ................................................................................................... 62

4.5 Switch Lockout .............................................. ... .... ... ... ............................................. .......... 62

4.6 Resetting the Switch ............................... ... ... ... .............................................. ... ... ... ... ....... 62

4.6.1 Reload the Configuration File .................................................................................... 63

4.7 Logging Out of the Web Configurator ................................................................................. 64

4.8 Help ................................................... ... .... ... ... ............................................. .... ... ................64

Chapter 5

Initial Setup Example..............................................................................................................65

5.1 Overview ............. ............................................. ... .... ... ... ... .... ................................................ 65

5.1.1 Configuring an IP Interface ........................................................................................65

5.1.2 Configuring DHCP Server Settings .. ... ....................................................................... 67

5.1.3 Creating a VLAN ........................................................................................................ 67

5.1.4 Setting Port VID .................................................. ... .... ... ... ..........................................69

5.1.5 Enabling RIP ................ .... ... ... ............................................. ... .... ... ... ... .... ... ... ... ... .......70

Chapter 6

Tutorials...................................................................................................................................71

6.1 How to Use DHCP Snooping on the Switch ........................................................................ 71

6.2 How to Use DHCP Relay on the Switch .............................................................................. 75

6.2.1 DHCP Relay Tutorial Introduction .............................................................................. 75

XGS4700-48F User’s Guide

Table of Contents

6.2.2 Creating a VLAN ........................................................................................................ 76

6.2.3 Configuring DHCP Relay .............................................. ... ... ....................................... 79

6.2.4 Troubleshooting ............................................... ... ... .... ... ... ... ....................................... 79

6.3 How to Use PPPoE IA on the Switch .................................................................................. 80

6.3.1 Configuring Switch A ..................................... ... .......................................................... 81

6.3.2 Configuring Switch B ..................................... ... .......................................................... 83

6.4 How to Use Error Disable and Recovery on the Switch ......................................................85

6.5 How to Set Up a Guest VLAN ............................................................................................. 88

6.5.1 Creating a Guest VLAN .............................................................................................. 89

6.5.2 Enabling IEEE 802.1x Port Authentication ................................................................. 91

6.5.3 Enabling Guest VLAN ................................................................................................92

6.6 How to Configure Routing Policy ..................... ....................................................... .............93

6.6.1 Create a Layer-3 Classifier ........................................................................................ 94

6.6.2 Create a Policy Routing Rule .... ... .... ... ... ... ................................................................. 95

Part II: Technical Reference.................................................................. 97

Chapter 7

System Status and Port Statistics.........................................................................................99

7.1 Overview ............. ............................................. ... .... ... ... ... .... ................................................ 99

7.2 Port Status Summary ............................................................................................ ... ....... 99

7.2.1 Status: Port Details .............................................................................................. 101

Chapter 8

Basic Setting ........................................................................................................................105

8.1 Overview ............. ............................................. ... .... ... ... ... .... .............................................. 105

8.2 System Information ......................................................................................................... 106

8.3 General Setup ................................................................................................. ... ... ........ 108

8.4 Introduction to VLANs ........... .... ... ......................................................................................110

8.5 Switch Setup Screen ... ... ... ... .... .........................................................................................111

8.6 IP Setup ...........................................................................................................................113

8.6.1 IP Interfaces .......... ... ... .... ... ... ............................................. ... .... ... ... ... .... ... ...............113

8.7 Port Setup ................ .... ... ... ............................................. .... ... ... ... ... .... ...............................115

Chapter 9

VLAN......................................................................................................................................119

9.1 Introduction to IEEE 802.1Q Tagged VLANs .................................................................119

9.1.1 Forwarding Tagged and Untagged Frames ...............................................................119

9.2 Automatic VLAN Registration ................................ ... ... ... .... ... ... ... ... .................................. 120

9.2.1 GARP . .... ... ... ... .... ... ... ............................................. .... ... ... ........................................ 120

9.2.2 GVRP . .... ... ... ... .... ... ... ............................................. .... ... ... ........................................ 120

XGS4700-48F User’s Guide

Table of Contents

9.3 Port VLAN Trunking ........... ............................................. .... ... ... ... ... .... .............................. 121

9.4 Select the VLAN Type .... ... ... .... ... ............................................. ... ... .... ... ... ... .... ... ... ... ........122

9.5 Static VLAN . .... ... ... ... .............................................. ... ... ... .... .............................................. 122

9.5.1 VLAN Status ............................................................................................................123

9.5.2 VLAN Details ................................ .... ... ... ... .... ... ... ............................................. ... .... . 124

9.5.3 Configure a Static VLAN ...................................................................................... 124

9.5.4 Configure VLAN Port Settings .............................................................................. 126

9.6 Subnet Based VLANs .......................................................................................................128

9.7 Configuring Subnet Based VLAN ..... ................................................. ... ... ........................ 129

9.8 Protocol Based VLANs ...................................... .... ... ........................................................130

9.9 Configuring Protocol Based VLAN ............................................. ... .... ... ... ... .... ... ... ... ........131

9.10 Create an IP-based VLAN Example ................................................................................ 133

9.11 Port-based VLAN Setup ............................................................................................... 134

9.11.1 Configure a Port-based VLAN ............................................................................... 134

Chapter 10

Static MAC Forward Setup...................................................................................................139

10.1 Overview .......................................................................................................................... 139

10.2 Configuring Static MAC Forwarding ........................................................................... 139

Chapter 11

Static Multicast Forward Setup............................................................................................143

11.1 Static Multicast Forwarding Overview .............................................................................. 143

11.2 Configuring Static Multicast Forwarding ........................................................................... 144

Chapter 12

Filtering..................................................................................................................................147

12.1 Configure a Filtering Rule ..............................................................................................147

Chapter 13

Spanning Tree Protocol........................................................................................................149

13.1 STP/RSTP Overview ..................................................................................................... 149

13.1.1 STP Terminology ................................................................................................... 149

13.1.2 How STP Works .................................................................................................... 150

13.1.3 STP Port States .....................................................................................................151

13.1.4 Multiple RSTP ......................................................................................................151

13.1.5 Multiple STP ........................................................................................................... 152

13.2 Spanning Tree Protocol Status Screen ............................................................................ 155

13.3 Spanning Tree Configuration .......................................................................................... 155

13.4 Configure Rapid Spanning Tree Protocol ..................................................................... 156

13.5 Rapid Spanning Tree Protocol Status ........................................................................... 158

13.6 Configure Multiple Rapid Spanning Tree Protocol ........................................................ 160

13.7 Multiple Rapid Spanning Tree Protocol Status ..........................................................162

XGS4700-48F User’s Guide

Table of Contents

13.8 Configure Multiple Spanning Tree Protocol ..................................................................164

13.8.1 Multiple Spanning Tree Protocol Port Configuration ............................................. 167

13.9 Multiple Spanning Tree Protocol Status ..................................................................... 168

Chapter 14

Bandwidth Control................................................................................................................171

14.1 Bandwidth Control Overview ......................................................................................... 171

14.1.1 CIR and PIR ........................................................................................................... 171

14.2 Bandwidth Control Setup ................................................................................................. 172

Chapter 15

Broadcast Storm Control.....................................................................................................175

15.1 Broadcast Storm Control Setup ...................................................................................... 175

Chapter 16

Mirroring................................................................................................................................177

16.1 Port Mirroring Setup ....................................................................................................... 177

Chapter 17

Link Aggregation ..................................................................................................................179

17.1 Link Aggregation Overview ........................ ....................... ...................... ....................... . 179

17.2 Dynamic Link Aggregation ..............................................................................................179

17.2.1 Link Aggregation ID ............................................................................................... 180

17.3 Link Aggregation Status ....................................................... .......................... .................181

17.4 Link Aggregation Setting ................................................................................................ 183

17.5 Link Aggregation Control Protocol ................................................................................ 185

17.6 Static Trunking Example ..................................................................................................186

Chapter 18

Port Authentication...............................................................................................................189

18.1 Port Authentication Overview ......................................................................................... 189

18.1.1 IEEE 802.1x Authentication ................................................................................... 189

18.1.2 MAC Authentication ............................................................................................... 190

18.2 Port Authentication Configuration ............................ ....................................................... .191

18.2.1 Activate IEEE 802.1x Security ........................................................................... 192

18.2.2 Guest VLAN ..........................................................................................................193

18.2.3 Activate MAC Authentication ................................................................................. 196

Chapter 19

Port Security..........................................................................................................................199

19.1 About Port Security ..........................................................................................................199

19.2 Port Security Setup .............................. ....................... ....................... ................... ........... 200

19.3 VLAN MAC Address Limit .............................................................................................. 201

XGS4700-48F User’s Guide

Table of Contents

Chapter 20

Classifier................................................................................................................................203

20.1 About the Classifier and QoS .......................................................................................... 203

20.2 Configuring the Classifier ...............................................................................................204

20.3 Viewing and Editing Classifier Configuration ................................. .................................. 206

20.4 Classifier Example ...........................................................................................................208

Chapter 21

Policy Rule............................................................................................................................209

21.1 Policy Rules Overview ....................................................................................................209

21.1.1 DiffServ .................................................................................................................. 209

21.1.2 DSCP and Per-Hop Behavior ................................................................................. 209

21.2 Configuring Policy Rules ................................................................................................. 210

21.3 Viewing and Editing Policy Configuration ........................................................................ 213

21.4 Policy Example ................................................................................................................ 215

Chapter 22

Queuing Method....................................................................................................................217

22.1 Queuing Method Overview ............................................................................................. 217

22.1.1 Strictly Priority ........................................................................................................217

22.1.2 Weighted Fair Queuing .......................................................................................... 217

22.1.3 Weighted Round Robin Scheduling (WRR) ........................................................... 218

22.2 Configuring Queuing ........................................................................................................ 219

Chapter 23

VLAN Stacking......................................................................................................................221

23.1 VLAN Stacking Overview ................................................................................................ 221

23.1.1 VLAN Stacking Example ........................................................................................ 221

23.2 VLAN Stacking Port Roles ................ ... .... ........................................................................ 222

23.3 VLAN Tag Format .......... ..................................................................................................223

23.3.1 Frame Format ........................................................................................................223

23.4 Configuring VLAN Stacking ............................................................................................. 224

23.4.1 Port-based Q-in-Q .................................................................................................. 225

23.4.2 Selective Q-in-Q .................................................................................................... 226

Chapter 24

Multicast ................................................................................................................................229

24.1 Multicast Overview ......................................................................................................... 229

24.1.1 IP Multicast Addresses ........................................................................................... 229

24.1.2 IGMP Filtering ........................................................................................................ 229

24.1.3 IGMP Snooping ..................................................................................................... 230

24.1.4 IGMP Snooping and VLANs ................................................................................... 230

24.2 Multicast Status .............................................................................................................. 230

XGS4700-48F User’s Guide

Table of Contents

24.3 Multicast Setting .............. ... .... ... ................................................ ... .... .............................. 231

24.4 IGMP Snooping VLAN .................................................................................................... 234

24.5 IGMP Filtering Profile ..................................................................................................... 235

24.6 MVR Overview ................................................................................................................ 237

24.6.1 Types of MVR Ports ............................................................................................... 237

24.6.2 MVR Modes ........................................................................................................... 238

24.6.3 How MVR Works .................................................................................................... 238

24.7 General MVR Configuration ............................................................................................ 239

24.8 MVR Group Configuration ..............................................................................................241

24.8.1 MVR Configuration Example ... ... .... ... ..................................................................... 242

Chapter 25

AAA........................................................................................................................................245

25.1 Authentication, Authorization and Accounting (AAA) ...................................................... 245

25.1.1 Local User Accounts .................. .... ... ... ... .... ... ................................................ ... .... . 246

25.1.2 RADIUS and TACACS+ ........................................................................................ 246

25.2 AAA Screens ................................................................................................................... 246

25.2.1 RADIUS Server Setup .......................................................................................... 247

25.2.2 TACACS+ Server Setup ..................................................................................... 249

25.2.3 AAA Setup .............................................................................................................. 251

25.2.4 Vendor Specific Attribute ........................................................................................ 254

25.2.5 Tunnel Protocol Attribute ........................................................................................ 255

25.3 Supported RADIUS Attributes ......................................................................................... 256

25.3.1 Attributes Used for Authentication ............................ ............ .......... .......... ......... ..... 256

25.3.2 Attributes Used for Accounting ............................................................................... 257

Chapter 26

IP Source Guard ....................................................................................................................261

26.1 IP Source Guard Overview .............................................................................................. 261

26.1.1 DHCP Snooping Overview ..................................................................................... 262

26.1.2 ARP Inspection Overview ...................................................................................... 264

26.2 IP Source Guard .............................................................................................................. 265

26.3 IP Source Guard Static Binding ....................................................................................... 266

26.4 DHCP Snooping .............................................................................................................. 268

26.5 DHCP Snooping Configure ...................... ........................................................................ 271

26.5.1 DHCP Snooping Port Configure ............................................................................. 273

26.5.2 DHCP Snooping VLAN Configure .......................................................................... 274

26.6 ARP Inspection Status .....................................................................................................276

26.6.1 ARP Inspection VLAN Status .................................................................................277

26.6.2 ARP Inspection Log Status .................................................................................... 278

26.7 ARP Inspection Configure ............................................................................................... 279

26.7.1 ARP Inspection Port Configure .............................................................................. 281

26.7.2 ARP Inspection VLAN Configure ........................................................................... 282

XGS4700-48F User’s Guide

Table of Contents

Chapter 27

Loop Guard............................................................................................................................285

27.1 Loop Guard Overview .....................................................................................................285

27.2 Loop Guard Setup ...........................................................................................................287

Chapter 28

VLAN Mapping ......................................................................................................................289

28.1 VLAN Mapping Overview ............................................................................................... 289

28.1.1 VLAN Mapping Example ........................................................................................ 289

28.2 Enabling VLAN Mapping ................................................................................................. 290

28.3 Configuring VLAN Mapping ............................................................................................. 291

Chapter 29

Layer 2 Protocol Tunneling..................................................................................................293

29.1 Layer 2 Protocol Tunneling Overview ............................................................................. 293

29.1.1 Layer-2 Protocol Tunneling Mode .......................................................................... 294

29.2 Configuring Layer 2 Protocol Tunneling .................................................................. ... .... . 295

Chapter 30

sFlow......................................................................................................................................297

30.1 sFlow Overview ............................................................................................................... 297

30.2 sFlow Port Configuration ................................................................................................. 298

30.2.1 sFlow Collector Configuration ................................................................................ 299

Chapter 31

PPPoE....................................................................................................................................301

31.1 PPPoE Intermediate Agent Overview ............................................................................. 301

31.1.1 PPPoE Intermediate Agent Tag Format ................................................................. 301

31.1.2 Sub-Option Format ......................... ......... .......... .......... ......... ....... .......... ......... ........ 302

31.1.3 Port State ...............................................................................................................303

31.2 The PPPoE Screen ......................................................................................................... 304

31.3 PPPoE Intermediate Agent ............................................................................................. 304

31.3.1 PPPoE IA Per-Port ................................................................................................ 305

31.3.2 PPPoE IA Per-Port Per-VLAN ............................................................................... 307

31.3.3 PPPoE IA for VLAN ............................................................................................... 309

Chapter 32

Error Disable ........................................................................ .................................................311

32.1 CPU Protection Overview .................................................................................................311

32.2 Error-Disable Recovery Overview ....................................................................................311

32.3 The Error Disable Screen ................................................................................................ 312

32.4 CPU Protection Configuration ........................................................................................ 312

32.5 Error-Disable Detect Configuration ................................................................................. 313

XGS4700-48F User’s Guide

Table of Contents

32.6 Error-Disable Recovery Configuration ............................................................................ 315

Chapter 33

Static Route...........................................................................................................................317

33.1 Static Routing Overview ................................................................................................ 317

33.2 Configuring Static Routing .............................................................................................. 318

Chapter 34

Policy Routing .......................................................................................................................321

34.1 Policy Route Overview ................................................................................................... 321

34.1.1 Benefits ..................................................................................................................321

34.2 Configuring Policy Routing Profile ................................................................................... 322

34.2.1 Policy Routing Rule Configuration ........................................................................ 323

Chapter 35

RIP..........................................................................................................................................325

35.1 RIP Overview ................................................................................................................... 325

35.1.1 Administrative Distance .......................................................................................... 325

35.2 Configuring RIP ............................................................................................................... 326

Chapter 36

OSPF......................................................................................................................................329

36.1 OSPF Overview .............................................................................................................. 329

36.1.1 OSPF Autonomous Systems and Areas . .... ... ... ... .... .............................................. 329

36.1.2 How OSPF Works ... ............................................. .... ... ... ... ... .... ... ........................... 330

36.1.3 Interfaces and Virtual Links .................................................................................... 330

36.1.4 OSPF and Router Elections ...................................................................................331

36.1.5 Configuring OSPF .................................................................................................331

36.2 OSPF Status ................................................................................................................. 332

36.3 OSPF Configuration .......................................................................................................334

36.4 Configure OSPF Areas ................................................................................................... 335

36.4.1 View OSPF Area Information Table ....................................................................... 337

36.5 Configuring OSPF Redistribution ................................................................................... 337

36.6 Configuring OSPF Interfaces .......................................................................................... 339

36.7 OSPF Virtual-Links ....................................................................................................... 341

Chapter 37

IGMP.......................................................................................................................................343

37.1 IGMP Overview ............................................................................................................... 343

37.1.1 How IGMP Works ................. ... ... .... ... ... ... .... ... ............................................. ... ... .... . 344

37.2 Port-based IGMP ............................................................................................................. 345

37.3 Configuring IGMP ............................................................................................................ 346

XGS4700-48F User’s Guide

Table of Contents

Chapter 38

DVMRP...................................................................................................................................347

38.1 DVMRP Overview ............................................................................................................347

38.2 How DVMRP Works ... ... ... ... .... ... ... ... ... .... ... ... ... .... ................................................ ... ... .....347

38.2.1 DVMRP Terminology ............................................................................................. 348

38.3 Configuring DVMRP ....................................................................................................... 348

38.3.1 DVMRP Configuration Error Messages ........................................... .... ... ... ... ........349

38.4 Default DVMRP Timer Values ........................................................................................350

Chapter 39

Differentiated Services.........................................................................................................351

39.1 DiffServ Overview ...........................................................................................................351

39.1.1 DSCP and Per-Hop Behavior ................................................................................. 351

39.1.2 DiffServ Network Example .................................................................................... 352

39.2 Two Rate Three Color Marker Traffic Policing ................................................................. 352

39.2.1 TRTCM - Color-blind Mode .................................................................................... 353

39.2.2 TRTCM - Color-aware Mode .......................................... ........................................ 353

39.3 Activating DiffServ .......................................................................................................... 354

39.3.1 Configuring 2-Rate 3 Color Marker Settings ......................................................... 355

39.4 DSCP-to-IEEE 802.1p Priority Settings ....... .............................................. ... ... ... ... .....357

39.4.1 Configuring DSCP Settings ............................ .......................................... .............. 358

Chapter 40

DHCP......................................................................................................................................359

40.1 DHCP Overview ............................................................................................................. 359

40.1.1 DHCP Modes ........................................................................................................359

40.1.2 DHCP Configuration Options ................................................................................. 359

40.2 DHCP Status ................................................................................................................... 360

40.3 DHCP Server Status Detail ............................................................................................. 360

40.4 DHCP Relay ....... ... .... ... ... ... .... ... ... ... ... ............................................................................ 362

40.4.1 DHCP Relay Agent Information ............................................................................. 362

40.4.2 Configuring DHCP Global Relay ............................................................................ 363

40.4.3 Global DHCP Relay Configuration Example .......................................................... 364

40.5 Configuring DHCP VLAN Settings ................................................................................ 365

40.5.1 Example: DHCP Relay for Two VLANs .................................................................. 367

Chapter 41

VRRP......................................................................................................................................369

41.1 VRRP Overview .............................................................................................................. 369

41.2 VRRP Status .................................................................................................................... 370

41.3 VRRP Configuration .......................................................................................................371

41.3.1 IP Interface Setup ................................................................................................. 371

41.3.2 VRRP Parameters ................................................................................................. 373

XGS4700-48F User’s Guide

Table of Contents

41.3.3 Configuring VRRP Parameters .............................................................................. 374

41.3.4 Configuring VRRP Parameters .............................................................................. 375

41.4 VRRP Configuration Examples ...................................................................................... 375

41.4.1 One Subnet Network Example ..............................................................................376

41.4.2 Two Subnets Example ........................................................................................... 377

Chapter 42

ARP Learning........................................................................................................................379

42.1 ARP Overview ................................................................................................................ 379

42.1.1 How ARP Works ......................................................... ... ... ... .... ... ... ........................ 379

42.1.2 ARP Learning Mode ............................................................................................... 379

42.2 Configuring ARP Learning ............................................................................................... 382

Chapter 43

Load Sharing.........................................................................................................................385

43.1 Load Sharing Overview .................................................................................................. 385

43.2 Configuring Load Sharing ................................................................................................ 385

Chapter 44

Maintenance..........................................................................................................................387

44.1 The Maintenance Screen ................................. .... ... ... ... .... ............................................. . 387

44.2 Load Factory Default ...................................................................................................... 388

44.3 Save Configuration .......................................................................................................... 388

44.4 Reboot System ................................................................................................................ 389

44.5 Firmware Upgrade ........................................................................................................... 389

44.6 Restore a Configuration File ....................... ....................................................... ..............390

44.7 Backup a Configuration File ............................................................................................ 391

44.8 FTP Command Line ........................................................................................................ 391

44.8.1 Filename Conventions .......................................................................................... 391

44.8.2 FTP Command Line Procedure ............................................................................ 393

44.8.3 GUI-based FTP Clients .......................................................................................... 393

44.8.4 FTP Restrictions .................................................................................................... 394

Chapter 45

Access Control......................................................................................................................395

45.1 Access Control Overview ............................................................................................ 395

45.2 The Access Control Main Screen .................................................................................... 395

45.3 About SNMP .................................................................................................................. 396

45.3.1 SNMP v3 and Security ........................................................................................... 397

45.3.2 Supported MIBs ................................................................................................... 397

45.3.3 SNMP Traps .......................................................................................................... 398

45.3.4 Configuring SNMP .............................................................................................. 402

45.3.5 Configuring SNMP Trap Group ...........................................................................404

XGS4700-48F User’s Guide

Table of Contents

45.3.6 Configuring SNMP User ...................................................................................... 405

45.4 Setting Up Login Accounts ............................................................................................ 407

45.5 SSH Overview ................................................................................................................. 408

45.6 How SSH works ................ ... ............................................................................................ 409

45.7 SSH Implementation on the Switch ................................................................................. 410

45.7.1 Requirements for Using SSH .................................................................................410

45.8 Introduction to HTTPS .....................................................................................................410

45.9 HTTPS Example ...............................................................................................................411

45.9.1 Internet Explorer Warning Messages ......................................................................411

45.9.2 Mozilla Firefox Warning Messages ........................................................................414

45.9.3 The Main Screen .................................................................................................... 415

45.10 Service Port Access Control ....................................................................................... 416

45.11 Remote Management ............................................................................................... 417

Chapter 46

Diagnostic..............................................................................................................................421

46.1 Diagnostic ....................................................................................................................... 421

Chapter 47

Syslog....................................................................................................................................423

47.1 Syslog Overview .............................................................................................................. 423

47.2 Syslog Setup .................................................................................................................. 424

47.3 Syslog Server Setup ....................................................................................................... 425

Chapter 48

Cluster Management.............................................................................................................427

48.1 Clustering Management Status Overview ...................................................................... 427

48.2 Cluster Management Status ........................................................................................... 428

48.2.1 Cluster Member Switch Management ................................................................... 429

48.3 Clustering Management Configuration .......................................................................... 432

Chapter 49

MAC Table..............................................................................................................................435

49.1 MAC Table Overview ...................................................................................................... 435

49.2 Viewing the MAC Table ....................................................................................................436

Chapter 50

IP Table ..................................................................................................................................439

50.1 IP Table Overview ...........................................................................................................439

50.2 Viewing the IP Table ........................................................................................................440

Chapter 51

ARP Table ..............................................................................................................................443

XGS4700-48F User’s Guide

Table of Contents

51.1 ARP Table Overview .......................................................................................................443

51.1.1 How ARP Works ......................................................... ... ... ... .... ... ... ........................ 443

51.2 The ARP Table Screen ................................................................................................... 444

Chapter 52

Routing Table........................................................................................................................445

52.1 Overview .......................................................................................................................... 445

52.2 Viewing the Routing Table Status ................................................................................... 445

Chapter 53

Configure Clone....................................................................................................................447

53.1 Configure Clone ..............................................................................................................447

Chapter 54

Troubleshooting....................................................................................................................449

54.1 Power, Hardware Connections, and LEDs .............................. ... ... .... ... ... ... .... ... ... ... ........449

54.2 Switch Access and Login .................................................................................................450

54.3 Switch Configuration ........................................................................................................453

Chapter 55

Product Specifications.........................................................................................................455

Appendix A Common Services.............................................................................................465

Appendix B Legal Information..............................................................................................469

Index.......................................................................................................................................475

XGS4700-48F User’s Guide

Table of Contents

XGS4700-48F User’s Guide

PART I

User’s Guide

CHAPTER 1

Getting to Know Your Switch

This chapter introduces the main features and applications of the Switch.

1.1 Introduction

Your Switch is a stackabke, layer-3, Gigabit Ethernet (GbE) switch with two slots for two optional 2-port 10 Gigabit uplink module. It can also op erate together wi th other stackable switches and allows you to remotely manage them from one switch using one single IP address. By integrating router functions, the Switch performs wire-speed layer-3 routing in addition to layer-2 switching.

The Switch comes with 48 mini-GBIC slots for SFP transceivers, two power slots for hot-swappable DCP4700-48F or ACP4700-48F power modules and one slot for the FAN4700-48F fan module. The DCP4700-48F power module requires DC power supply input of -36 VDC to -72 VDC, 3 A Max no tolerance. The ACP470048F power module requires 100 VAC to 240 VAC, 1.4 A power.

With its built-in web configurat or, managing and configuring the Switch is easy. In addition, the Switch can also be managed via Telnet, any terminal emulator program on the console port, or third-party SNMP management.

See Chapter 55 on page 455 for a full list of software features available on the Switch.

1.1.1 Bridging Example

In this example the Switch connects different company departments (RD and Sales) to the corporate backbone. It can alleviate bandwidth contention and

eliminate server and network bottlenecks. All users that need high bandwidth can connect to high-speed department servers via the Switch. You can provide a

XGS4700-48F User’s Guide

Chapter 1 Getting to Know Your Switch

Backbone

Sales

Branch

10 Gbps

Trunk

super-fast uplink connection by using the optional 10 Gigabit uplink module on the Switch.

Figure 1 Bridging Application

1.1.2 High Performance Switching Example

The Switch is ideal for connecting two geographically dispersed networks that need high bandwidth. In the following example, a company uses the optional 10 Gigabit uplink modules to connect the headquarters to a branch office network. Within the headquarters network, a company can use trunking to group several physical ports into one logical hig h er-capacity link. Trunking can be used if for example, it is cheaper to use multiple lower-speed links than to under-utilize a high-speed, but more costly, single-port link.

Figure 2 High Performance Switching

XGS4700-48F User’s Guide

1.1.3 Gigabit Ethernet to the Desktop

Internet

The Switch is an ideal solution for small networks which demand high bandwidth for a group of heavy traffic users. Y ou can conn ect computers an d servers directly to the Switch’s port or connect other switches to the Switch. Use the optional 10 Gigabit uplink module to provide high speed access to a data server and the Internet. The uplink module supports a fiber-optic connection which alleviates the distance limitations of copper cabling.

In this example, all computers can share high-speed applications on the server and access the Internet. To expand the network, simply add more networking devices such as switches, routers, computers, print servers and so on.

Figure 3 Gigabit to the Desktop

Chapter 1 Getting to Know Your Switch

1.1.4 IEEE 802.1Q VLAN Application Example

A VLAN (Virtual Local Area Network) allows a physical network to be partitioned into multiple logical networks. Stations on a logical network belong to one or more groups. With VLAN, a station cannot directly talk to or hear from stations that are not in the same group(s) unless such traffic first goes through a router.

For more information on VLANs, refer to Chapter 9 on page 119.

1.1.4.1 Tag-based VLAN Example

Ports in the same VLAN group share the same frame broadcast domain, thus increasing network performance by reducing broadcast traffic. VLAN groups can be modified at any time by adding, moving or changing ports without any recabling.

XGS4700-48F User’s Guide

Chapter 1 Getting to Know Your Switch

Shared resources such as a server can be used by all ports in the same VLAN as the server. In the following figure only ports that need access to the server need to be part of VLAN 1. Ports can belong to other VLAN groups too.

Figure 4 Shared Server Using VLAN Example

1.1.5 IPv6 Support

IPv6 (Internet Protocol version 6), is designed to enhance IP address size and features. The increase in IPv6 address size to 128 bits (from the 32-bit IPv4 address) allows up to 3.4 x 10 supports the following features.

• Static address assignment and stateless auto-configuration

• Neighbor Discovery Protocol (a protocol used to discover other IPv6 d evices in a network)

• Remote Management using ping SNMP, telnet, HTTP and FTP services

• ICMPv6 to report errors encountered in packet processing and perform diagnostic functions, such as "ping”

• IPv4/IPv6 dual stack; the Switch can run IPv4 and IPv6 at the same time

• DHCPv6 client and relay

• Multicast Listener Discovery (MLD) snooping and proxy

For more information on IPv6, refer to the CLI Reference Guide.

IP addresses. At the time of writing, the Switch

1.2 Ways to Manage the Switch

Use any of the following methods to manage the Switch.

XGS4700-48F User’s Guide

Chapter 1 Getting to Know Your Switch

• Web Co nfigurator. This is recommended for ev eryday management of the S witch using a (supported) web browser. See Chapter 4 on page 55.

• Command Line Interface. Line commands offer an alternative to the Web Configurator and may be necessary to configure advanced features. See the CLI Reference Guide.

• FTP. Use File Transfer Protocol for firmware upgrades and configuration backup/ restore. See Section 44.8 on page 391.

• SNMP. The device can be monitored and/or managed by an SNMP manager. See

Section 45.3 on page 396.

1.3 Good Habits for Managing the Switch

Do the following things regularly to make the Switch more secure and to manage the Switch more effectively.

• Change the password. Use a password that’s not easy to guess and that consists of different types of characters, such as numbers and letters.

• Write down the password and put it in a safe place.

• Back up the configuration (and make sure you know how to restore it). Restoring an earlier working configuration may be useful if the device becomes unstable or even crashes. If you forget y our password, you will hav e to reset the Switch to its factory default settings. If you backed up an earlier configuration file, you would not have to totally re-configure the Switch. You could simply restore your last configuration.

XGS4700-48F User’s Guide

Chapter 1 Getting to Know Your Switch

XGS4700-48F User’s Guide

CHAPTER 2

Hardware Installation and

Connection

This chapter shows you how to install and connect the Switch.

2.1 Freestanding Installation

1 Make sure the Switch is clean and dry.

2 Set the Switch on a smooth, level surface strong enough to support the weight of

the Switch and the connected cables. Make sure there is a power outlet nearby.

3 Make sure there is enough clearance around the Switch to allow air circulation and

the attachment of cables and the power cord.

4 Remove the adhesive backing from the rubber feet.

5 Attach the rubber feet to each corner on the bottom of the Switch. These rubber

feet help protect the Switch from shock or vibration and ensure space between devices when stacking.

Figure 5 Attaching Rubber Feet

XGS4700-48F User’s Guide

Chapter 2 Hardware Installation and Connection

Note: Do NOT block the ventilation holes. Leave space between devices when

stacking.

Note: For proper ventilation, allow at least 4 inches (10 cm) of clearance at the front

and 3.4 inches (8 cm) at the back of the Switch. This is especially important for enclosed rack installations.

2.2 Mounting the Switch on a Rack

This section lists the rack mounting requirements and precautions and describes the installation steps.

2.2.1 Rack-mounted Installation Requirements

• Two mounting brackets.

• Eight M3 flat head screws and a #2 Philips screwdriver.

• Four M5 flat head screws and a #2 Philips screwdriver.

Failure to use the proper screws may damage the unit.

2.2.1.1 Precautions

• Make sure the rack will safely sup port the combined weight of all the equipment it contains. The maximum weight a bracket can hold is 21.5 Kg.

• Make sure the position of the Switch does not make the rack unstable or topheavy. Tak e all necessary precautions to anchor the rack securely before installing the unit.

2.2.2 Attaching the Mounting Brackets to the Switch

1 Position a mounting bracket on one side of the Switch, lining up the four screw

holes on the bracket with the screw holes on the side of the Switch.

Figure 6 Attaching the Mounting Brackets

XGS4700-48F User’s Guide

Chapter 2 Hardware Installation and Conn ec t ion

2 Using a #2 Philips screwdriver, install the M3 flat head screws through the

mounting bracket holes into the Switch.

3 Repeat steps 1 and 2 to install the second mounting bracket on the other side of

the Switch.

4 You may now mount the Switch on a rack. Proceed to the next section.

2.2.3 Mounting the Switch on a Rack

1 Position a mounting br acket (that is already attached to the Switch) on one s ide of

the rack, lining up the two screw holes on the br ack et with the screw holes on the side of the rack.

Figure 7 Mounting the Switch on a Rack

2 Using a #2 Philips screwdriver, install the M5 flat head screws through the

mounting bracket holes into the rack.

3 Repeat steps 1 and 2 to attach the second mounting bracket on the other side of

the rack.

2.3 Connecting the Frame Ground

Note: See Chapter 55 on page 455 for the ground wire gauge.

XGS4700-48F User’s Guide

Chapter 2 Hardware Installation and Connection

Frame Ground

• The Switch frame ground is on the upper-middle of the rear panel.

• Connect the frame grounds to a building’ s protective earthing terminals using a green-and-yellow frame ground wire.

Warning! Connect the frame ground before you connect any other cables or wiring.

Figure 8 Switch Frame Ground

2.4 Power Module Installation

There is one power module installed in the first power slot of the Switch by default. This section shows you how to install a second power module or remove the power module.

2.4.1 Installing a Power Module

Use the following procedure to install a power module on the Switch.

2.4.1.1 AC Power Module (ACP4700-48F)

1 Use a screwdriver to loosen the screw on the power slot cover and remove it.

2 Grab the handle of the front panel of the power module with one hand and place

the other hand under the power module to support it.

XGS4700-48F User’s Guide

Chapter 2 Hardware Installation and Conn ec t ion

3 Insert the power module halfway into the slot and push the lever leftward.

4 Slide the power module into the slot until it makes contact with the backplane.

5 Push the lever rightward until it is perpendicular to the ground.

6 Tighten the screw.

XGS4700-48F User’s Guide

Chapter 2 Hardware Installation and Connection

2.4.1.2 DC Power Module (DCP4700-48F)

1 Use a screwdriver to loosen the screw on the power slot cover and remove it.

2 Grab the handle of the front panel of the power module with one hand and place

the other hand under the power module to support it.

3 Slide the power module into the slot until it makes contact with the backplane.

4 Tighten the screw.

2.4.2 Removing a Power Module

Use the following procedure to remove a power module from the Switch.

2.4.2.1 AC Power Module

1 Refe r to Section 3.3.4 on page 51 to disconnect the power before you begin.

2 Use a screwdriver to loosen the screw on the front panel of the power module.

XGS4700-48F User’s Guide

Chapter 2 Hardware Installation and Conn ec t ion

3 Push the lever leftward.

4 Grab the handle and slide the power module out.

2.4.2.2 DC Power Module

1 Refe r to Section 3.3.4 on page 51 to disconnect the power before you begin.

2 Use a screwdriver to loosen the screw on the front panel of the power module.

XGS4700-48F User’s Guide

Chapter 2 Hardware Installation and Connection

3 Grab the handle and slide the power module out.

XGS4700-48F User’s Guide

CHAPTER 3

Hardware Overview

This chapter describes the front panel and rear panel of the Switch and shows y ou how to make the hardware connections.

3.1 Front Panel Connections

The figure below shows the front panel of the Switch.

Figure 9 Front Panel

The following table describes the ports.

Table 1 Panel Connections

CONNECTO R

48 Mini-GBIC Slots

Console Port Only connect this port to your computer (using an RS-232 cable) if you

Signal Connect the signal input pins to signal output terminals on other pieces of

DESCRIPTION

Use Small Form-Factor Pluggable (SFP) transceivers in these ports for fiber-optic or copper connections to a computer, a hub, an Ethernet switch or router.

want to configure the Switch using the command line interface (CLI) via the console port.

equipment. Connect the signal output pins to a signal input terminal on another piece

of equipment.

3.1.1 Mini-GBIC Slots

These are 48 slots for Small Form-Factor Pluggable (SFP) transceivers. A transceiver is a single unit that houses a transmitter and a receiver. Use a transceiver to connect a fiber-optic cable to the Switch. The Switch does not come with transceivers. You must use transceivers that comply with the Small Form-

XGS4700-48F User’s Guide

Chapter 3 Hardware Overview

Factor Pluggable (SFP) Transceiver MultiSource Agreement (MSA). See the SFF committee’s INF-8074i specification Rev 1.0 for details.

You can change transceivers while the Switch is operating. You can use different transceivers to connect to Ethernet switches with different types of fiber-optic connectors.

• Type: SFP connection interface

• Connection speed: 1 Gigabit per second (Gbps)

To avoid possible eye injury, do not look into an operating fiberoptic module’s connectors.

3.1.1.1 Transceiver Installation

Use the following steps to install a mini GBIC transceiver (SFP or XFP module).

1 Insert the transceiver into the slot with the exposed section of PCB board facing

down.

Figure 10 Transceiver Installation Example

2 Press the transceiver firmly until it clicks into place.

3 The Switch automatically detects the installed transceiver. Check the LEDs to

verify that it is functioning properly.

Figure 11 Installed Transceiver

3.1.1.2 Transceiver Removal

Use the following steps to remove a mini GBIC transceiver (SFP module).

XGS4700-48F User’s Guide

1 Open the transceiver’s latch (latch styles vary).

Figure 12 Opening the Transceiver’s Latch Example

2 Pull the transceiver out of the slot.

Figure 13 Transceiver Removal Example

Chapter 3 Hardware Overview

3.1.2 Console Port

For local management, you can use a computer with terminal emulation software configured to the following parameters:

• VT100 terminal emulation

• 9600 bps

• No parity, 8 data bits, 1 stop bit

• No flow control

Connect the male 9-pin end of the RS-232 console cable to the console port of the Switch. Connect the female end to a serial port (COM1, COM2 or other COM port) of your computer.

3.1.3 Signal Slot

The Signal slot (fitted with the signal connector) allows you to connect devices to the Switch, such as sensors or other ZyXEL switches which support the external alarm feature. This feature is in addition to the system alarm, which detects abnormal temperatures, voltage levels and fan speeds on the Switch.

Your Switch can respond to an external signal in four ways.

XGS4700-48F User’s Guide

Chapter 3 Hardware Overview

•The ALM LED shows an alert.

•The Signal slot can send an external alarm on to another device. By daisy- chaining the signal sensor cables from one Switch to another ZyXEL switch which supports this feature, the external alarm alert (but not the system alarm) is received on each Switch.

• The Switch can be configured to send an SNMP trap to the SNMP server. See

Section 45.3 on page 396 for more information on using SNMP.

• The Switch can be configured to create an error log of the alarm. See Section

47.1 on page 423 for more information on using the system log.

3.1.3.1 Connecting a Sensor to the Signal Slot

This section shows you how to connect an external sensor device to the Switch.

1 Use a connector to connect wires of the correct gauge to the sensor’s signal

output pins. See Chapter 55 on page 455 for the wire specifications. Check the sensor’s documentation to identify its two signal output pins.

2 Connect these two wires to any one of the following pairs of signal input pins on

the Switch’s Signal connector--(4,5) (6,7) (8,9) (10,11). The pin numbers run from the right side of the connector to the left.

2a Connect each of the sensor’s two signal output wires to the Signal connector

by depressing the spring clip corresponding to the pin you are connecting to.

2b Insert the wire and release the spring clip. 2c Repeat the process for the sensor’s other signal output wire. A total of four

sensors may be connected to the Signal connector in this way using the remaining signal input pins.

XGS4700-48F User’s Guide

3 Insert the alarm connector into the Signal slot.

12311 10 45698710

Door Open Sensor

Spring Clip

Signal Connector

Signal Input Pins

Signal

(Dry contact,

Output Pins

normal open only)

Figure 14 Connecting a Sensor to the Signal Slot

Chapter 3 Hardware Overview

4 To connect an output devicel, repeat the previous steps but this time connect to

either pins (1,2) or (2,3) on the Signal connector.

You can also daisy-chain the external alarm to another ZyXEL Switch which supports the external alarm feature. If daisy-chaining to a ZyXEL switch that is a different model, check your switch’s documentation for the correct pin assignments.

1 Use wires of the correct gauge to connect either of the signal output pin pairs (1-

normal close, 2-common) or (2-common, 3-normal open) on the Signal connector to the input signal pin pairs of an Signal connector on another ZyXEL Switch.

XGS4700-48F User’s Guide

Chapter 3 Hardware Overview

12311 10

.........

12311 10

.........

12311 10

.........

Pin Assignments

2 When daisy-chaining further Switches ensure that the signal output pins you use

are the same as those you used when connecting to the first switch, as shown in the diagram below.

Figure 15 Daisy-chaining an External Alarm Sensor to Other Switches of the Same

Model

3.2 Rear Panel

The following figures show the rear panels of the AC and DC power input model switches. The rear panels contain:

• A slot for a fan module (A)

• Two optional slot (B and C) for installing EM-422 or EM-412 uplink modules

• An RJ-45 out-of-band management port (D)

• Two slots for AC or DC power modules (E and F)

• A connector for the power receptacle (G)

•A power switch (H) (DC power module only)

Figure 16 Rear Panel with an AC Power Module Installed

Figure 17 Rear Panel with a DC Power Module Installed

XGS4700-48F User’s Guide

Chapter 3 Hardware Overview

3.2.1 Removing and Installing the Fan Module

The Switch fan module (F AN4700-48F) is at the left on the rear panel. P erform the following procedure to remove the fan module in order to replace the entire fan module. Return any malfunctioning fan modules to the manufacture.

1 Loosen the thumbscrew on the front of the fan module.

Figure 18 Fan Module Thumbscrews

2 Slide out the fan module.

Figure 19 Removing the Fan Module

Figure 20 Fan Module Removed

3 Use a different fan module from the manufacturer.

XGS4700-48F User’s Guide

Chapter 3 Hardware Overview

EM-412

EM-422

4 Slide the fan module into the fan module slot.

Figure 21 Installing the Fan Module

5 Tighten the thumbscrew.

3.2.2 Uplink Module

The following figure shows the front panel of the EM-422 and EM-412 modules.

Figure 22 The Front Panel of the EM-422 and EM-412 Modules

3.2.3 Rear Panel Connections

The following table describes the ports on the rear panel.

Table 2 Panel Connections

CONNECTOR DESCRIPTION

Optional two XFP or CX4 Ports

These ports are available when you install an EM-422 or EM-412 in the optional uplink module slot(s) (B and/or C in the figure above). Both the EM-422 and EM-412 are not hot-swappable. They are used to connect your switch to other high-speed Ethernet switches for stacking in you network.

• For EM-422 connection: Use 10 Gigabit Small Form Factor Pluggable (XFP) transceivers to connect to these ports. See Section 3.1.1.1 on

page 42 and Section 3.1.1.2 on page 42 for information on installing

and removing transceivers.

• For EM-412 connection: Use 10GBase-CX4 cables to connect to these ports.

See the EM-422 and EM-412 User’s Guides for more information.

XGS4700-48F User’s Guide

Table 2 Panel Connections (continued)

CONNECTOR DESCRIPTION

Management Port

DC/AC Input After you install a power module, connect an appropriate power supply to

Connect to a computer using an RJ-45 Ethernet cable for local configuration of the Switch.

the power input connector.

3.2.4 Management Port

The 100Base- T Ethernet MGMT (management) port is used for local management. Connect directly to this port using an Ethernet cable. You can configure the Switch via Telnet or the web configurator.

The default IP address of the management port is 192.168.0.1 with a subnet mask of 255.255.255.0.

3.2.5 Power Connector

Chapter 3 Hardware Overview

Make sure you are using the correct power source and that no objects obstruct the airflow of the fans.

3.3 Power Connection

The Switch uses two power supply modules, one of which is redundant, so if one power module fails the system can operate on the remaining module.

The Switch supports two types of power modules: AC power module (ACP470048F) and DC power module (DCP4700-48F). Y ou can install one type depending on your power source or install both types simutaneously.

The power connections are on the front of each power module. The power modules are on the right of the rear panel of the Switch.

Use the following procedures to connect the Switch to a power source after you have installed it in a rack.

Note: Check the power supply requirements in Chapter 55 on page 455, and make

sure you are using an appropriate power source.

Observe the following before you start:

• See Chapter 55 on page 455 for the gauge of wire to use for the Switch power connections.

XGS4700-48F User’s Guide

Chapter 3 Hardware Overview

• Keep the power supply switch in the OFF position until you come to the procedure for turning on the power.

Note: Use the included power cord for the AC power connection. Note: Use only power wires of the required diameter for connecting the Switch DC

power input to a power supply (see Chapter 55 on page 455 for the required wire diameter).

3.3.1 AC Power Connections

1 Connect the female end of the power cord to the AC power socket.

2 Connect the other end of the cord to a power outlet.

3.3.2 DC Power Connections

The Switch uses a single ETB series terminal block plug with four pins which al lows you to connect up to two separate power supplies. If one power supply fails the system can operate on the remaining power supply. Use two wires to connect to a single terminal pair, one wire for the positive terminal and one wire for the negative terminal.

Note: The current rating of the power wires must be greater than 20 Amp s. The power

supply to which the Switch connects must have a built-in circuit breaker or switch to toggle the power.

Note: When installing the Switch power wire, push the wire firmly into the terminal as

deep as possible and make sure that no exposed (bare) wire can be seen or touched.

Exposed power wire is dangerous. Use extreme care when connecting a DC power source to the device.

To connect a power supply:

1 Use a screwdriver to loosen the terminal block captive screws.

2 Connect one end of a power wire to the Switch’s RTN (return) pin and tighten the

captive screw.

3 Connect the other end of the power wire to the positive terminal on the power

supply.

4 Connect one end of a power wire to the Switch’s -48V (input ) pin and tighten the

captive screw.

XGS4700-48F User’s Guide

Chapter 3 Hardware Overview

5 Connect the other end of the power wire to the negative terminal on the power

supply.

6 Insert the terminal block plug in the Switch’s terminal block header.

Figure 23 Connecting the power wires to the DC power terminals

3.3.3 Procedure to Turn on the Switch Power

1 Put the power switch of the DC power module in the ON position.

2 Tu rn on the power source (if it is not already turned on) or turn on the power

supply which is connected to the DC power input.

3.3.4 Disconnecting the Power

The power inputs are redundant, so if one power input fails the system can operate on the remaining power input. The power input connectors can be disconnected from the power source individually.

3.3.4.1 AC Power Disconnection

1 Disconnect the power cord from the power outlet.

2 Disconnect the power cord from the AC power socket.

3.3.4.2 DC Power Disconnection

1 Put the power switch of the DC power module in the OFF position.

2 Tu rn off the power supply to which the DC power input is connected.

3 Use a screwdriver to loosen the screws on the top of the terminal block.

4 Remove the power wires which are connected to the RTN and -48V terminals.

XGS4700-48F User’s Guide

Chapter 3 Hardware Overview

3.4 LEDs

The following table describes the LEDs.

Table 3 LEDs

LED

Displays Stack ID number

PWR1 (Power 1)

PWR2 (Power 2)

SYS (System)

ALM (Alarm)

MGMT (Manage ment)

Mini-GBIC (SFP) Slots

COLO R

Green On The system is receiving power from the power module in

Amber On The power module in the first power slot fails to supply

Green On The system is receiving power from the power module in

Amber On The power module in the second power slot fails to

Green Blinking The system is rebooting and performing self-diagnostic

Red On There is a hardware failure, such as high device

Green Blinking The system is transmitting or receiving to/from an

Amber Blinking The system is transmitting or receiving to/from an

STATUS DESCRIPTION

The LED is showing the Stack ID number of the Switch.

the first power slot.

Off The system is not receiving power from the power

module in the first power slot.

power or its fan is not functioning at a proper speed.

the second power slot.

Off The system is not receiving power from the power

module in the second power slot.

supply power or its fan is not functioning at a proper speed.

tests. On The system is on and functioning properly. Off The power is off or the system is not ready or

malfunctioning.

temperature, wrong voltage and abnormal fan speed. Off The system is functioning normally.

Ethernet device at 10 Mbps through the MGMT port. On The MGMT port is connected at 10 Mbps. Off The MGMT port is not connected at 10 Mbps or to an

Ethernet device.

Ethernet device at 100 Mbps through the MGMT port. On The MGMT port is connected at 100 Mbps. Off The MGMT port is not connected at 100 Mbps or to an

Ethernet device.

XGS4700-48F User’s Guide

Chapter 3 Hardware Overview

Table 3 LEDs (continued)

LED

1-48 Green Blinking The port is receiving or transmitting data at 1000 Mbps.

10G 49-50 Blue On The Switch is connected to other switches through an

51-52 Blue On The Switch is connected to other switches through an

COLO R

Amber Blinking The port is receiving or transmitting data 100 Mbps.

STATUS DESCRIPTION

On The port has a successful 1000 Mbps connection.

On The port has a successful 100 Mbps connection. Off This link is disconnected.

uplink module in SLOT 1. Off The Switch is not connected to other switches through an

uplink module in SLOT 1.

uplink module in SLOT 2. Off The Switch is not connected to other switches through an

uplink module in SLOT 2.

XGS4700-48F User’s Guide

Chapter 3 Hardware Overview

XGS4700-48F User’s Guide

CHAPTER 4

The Web Configurator

This section introduces the configuration and functions of the web configurator.

4.1 Introduction

The web configurator is an HTML-based managem ent interface that allows easy Switch setup and management via Inter n et br ows e r. Use Internet Explorer 6.0 and later or Firefox 2.0 and later versions. The recommended screen resolution i s 1024 by 768 pixels.

In order to use the web configurator you need to allow:

• Web brows er pop-up windows from your device. W eb pop-up blocking i s enabled by default in Windows XP SP (Service Pack) 2.

• JavaScript (enabled by default).

• Java permissions (enabled by default).

4.2 System Login

1 Start your web browser.

2 Type “http://” and the IP address of the Switch (for example, the default

management IP address is 192.168.1.1 through an in-band (non-MGMT) port and

192.168.0.1 through the MGMT port) in the Location or Address field. Press

[ENTER].

XGS4700-48F User’s Guide

Chapter 4 The Web Configurator

3 The login screen appears. The default username is admin and associated default

password is 1234. The date and time display as shown if you hav e not configured a time server nor manually entered a time and date in the General Setup screen.

Figure 24 Web Configurator: Login

4 Click OK to view the first web configurator screen.

4.3 The Web Configurator Layout

The Status screen is the first screen that displays when you access the web configurator.

XGS4700-48F User’s Guide

Chapter 4 The Web Configurator

BDC

The following figure shows the navigating components of a web configurator screen.

Figure 25 The Web Configurator Layout

A - Click the menu items to open submenu links, and then click on a submenu link to open the screen in the main window.

B, C, D, E - These are quick links which allow you to perform certain tasks no matter which screen you are currently working in.

B - Click this link to save your configuration into the Switch’s nonvolatile memory. Nonvolatile memory is saved in the configuration file from which the Switch booted from and it stays the same even if the Switch’s power is turned off. See

Section 44.3 on page 388 for information on saving your settings to a specific

configuration file.

C - Click this link to go to the status page of the Switch.

D - Click this link to log out of the web config urator.

E - Click this link to display web help pages. The help pages provide descriptions

for all of the configuration screens.

XGS4700-48F User’s Guide

Chapter 4 The Web Configurator

In the navigation panel, click a main link to reveal a list of submenu links.

Table 4 Navigation Panel Sub-links Overview

BASIC SETTING

ADVANCED APPLICATION

IP APPLICATION MANAGEMENT

The following table describes the links in the navigation panel.

Table 5 Navigation Panel Links

LINK DESCRIPTION

Basic Settings System Info This link takes you to a screen that displays general system and

hardware monitoring information.

General Setup This link takes you to a screen where you can configure general

identification information and time settings for the Switch.

Switch Setup This link takes you to a screen where you can set up global Switch

parameters such as VLAN type, MAC address learning, GARP and priority queues.

IP Setup This link takes you to a screen where you can configure the IP address,

subnet mask (necessary for Switch management) and DNS (domain name server) and set up to 64 IP routing domains.

Port Setup This link takes you to screens where you can configure speed, flow

control and priority settings for individual Switch ports.

Advanced Application

XGS4700-48F User’s Guide

Chapter 4 The Web Configurator

Table 5 Navigation Panel Links (continued)

LINK DESCRIPTION

VLAN This link takes you to screens where you can configure port-based or

802.1Q VLAN (depending on what you configured in the Switch Setup menu). You can also configure a protocol based VLAN or a subnet based VLAN in these screens.

Static MAC Forwarding

Static Multicast Forwarding

Filtering This link takes you to a screen to set up filtering rules. Spanning Tree

Protocol Bandwidth

Control Broadcast

Storm Control Mirroring This link takes you to screens where you can copy traffic from one port

Link Aggregation

Port Authentication

Port Security This link takes you to a screen where you can activate MAC address

Classifier This link takes you to a screen where you can configure the Switch to

Policy Rule This link takes you to a screen where you can configure the Switch to

Queuing Method

VLAN Stacking This link takes you to screens where you can activate and configure

Multicast This link takes you to screen where you can configure various multicast

AAA This link takes you to a screen where you can configure authentication,

IP Source Guard

Loop Guard This link takes you to a screen where you can configure protection

This link takes you to screens where you can configure static MAC addresses for a port. These static MAC addresses do not age out.

This link takes you to a screen where you can configure static multicast MAC addresses for port(s). These static multicast MAC addresses do not age out.

This link takes you to screens where you can configure the RSTP/MRSTP/ MSTP to prevent network loops.

This link takes you to screens where you can cap the maximum bandwidth allowed on a port.

This link takes you to a screen to set up broadcast filters.

or ports to another port in order that you can examine the traffic from the first port without interference.

This link takes you to screen where you can logically aggregate physical links to form one logical, higher-bandwidth link.

This link takes you to a screen where you can configure IEEE 802.1x port authentication as well as MAC authentication for clients communicating via the Switch.

learning and set the maximum number of MAC addresses to learn on a port.

group packets based on the specified criteria.

perform special treatment on the grouped packets. This link takes you to a screen where you can configure queuing with

associated queue weights for each port.

VLAN stacking.

features, IGMP snooping and create multicast VLANs.

authorization and accounting services via external servers. The external servers can be either RADIUS (Remote Au thentication Dial-In User Service) or TACACS+ (Terminal Access Controller Access-Control System Plus).

This link takes you to screens where you can configure filtering of unauthorized DHCP and ARP packets in your network.

against network loops that occur on the edge of your network.

XGS4700-48F User’s Guide

Chapter 4 The Web Configurator

Table 5 Navigation Panel Links (continued)

LINK DESCRIPTION

VLAN Mapping This link takes you to screens where you can configure VLAN mapping

settings on the Switch.

Layer 2 Protocol Tunneling

sFlow This link takes you to screens where you can configure sFlow settings on

PPPoE This link takes you to screens where you can configure how the Switch

Errdisable This link takes you to a screen where you can configure CPU protection

IP Application Static Route This link takes you to a screen where you can configure static routes. A

Policy Routing This link takes you to screens where you can configure policy routing

RIP This link takes you to a screen where you can configure the RIP (Routing

OSPF This link takes you to screens where you can view the OSPF status and

IGMP This link takes you to a screen where you can configure the IGMP

DVMRP This link takes you to a screen where you can configure the DVMRP

DiffServ This link takes you to screens where you can enable DiffServ, configure

DHCP This link takes you to screens where you can configure the DHCP

VRRP This link takes you to screens where you can configure redundant virtual

ARP Learning This link takes you to a screen where you can configure ARP learning

Load Sharing This link takes you to a screen where you can enable Equal-Cost

Management Maintenance This link takes you to screens where you can perform firmware and

Access Control This link takes you to screens where you can change the system login

Diagnostic This link takes you to screens where you can view system logs and can

Syslog This link takes you to screens where you can setup system logs and a

This link takes you to a screen where you can configure L2PT (Layer 2 Protocol Tunneling) settings on the Switch.

the Switch.

gives a PPPoE termination server additional subscriber information that the server can use to identify and authenticate a PPPoE client.

and error disable recovery.

static route defines how the Switch should forward traffic by configuring the TCP/IP parameters manually.

rules.

Information Protocol) direction and versions.

configure OSPF settings.

settings.

(Distance Vector Multicast Routing Protocol) settings.

marking rules and set DSCP-to-IEEE802.1p mappings.

settings.

router for your network.

mode on a per-port basis.

MultiPath (ECMP) routing and set the criteria the Switch uses to determine the routing path for a packet.

configuration file maintenance as well as reboot the system.

password and configure SNMP and remote management.

test port(s).

system log server.

XGS4700-48F User’s Guide

Table 5 Navigation Panel Links (continued)

LINK DESCRIPTION

Cluster Management

MAC T able This link takes you to a screen where you can view the MAC address and

IP Table This link takes you to a screen where you can view the IP addresses and

ARP T able This link takes you to a screen where you can view th e MAC address – IP

Routing Table This link takes you to a screen where you can view the routing table. Configure

Clone

This link takes you to a screen where you can configure clustering management and view its status.

VLAN ID of a device attach to a port. You can also view what kind of MAC address it is.

VLAN ID of a device attached to a port.You can also view what kind of device it is.

address resolution table.

This link takes you to a screen where you can copy attributes of one port to (an)other port(s).

4.3.1 Change Your Password

Chapter 4 The Web Configurator

After you log in for the first time, it is recommended you change the default administrator password. Click Management > Access Control > Logins to display the next screen.

Figure 26 Change Administrator Login Password

XGS4700-48F User’s Guide

Chapter 4 The Web Configurator

4.4 Saving Your Configuration

When you are done modifying the settings in a screen, click Apply to save your changes back to the run-time memory. Settings in the run-time memory are lost when the Switch’s power is turned off.

Click the Save link in the upper right hand corner of the web configur ator to save your configuration to nonvolatile memory. Nonvolatile memory refers to the Switch’s storage that remains even if the Switch’s power is turned off .

Note: Use the Save link when you are done with a configuration session.

4.5 Switch Lockout

You could block yourself (and all others) from using in-band-management (managing through the data ports) if you do one of the following:

1 Delete the management VLAN (default is VLAN 1).

2 Delete all port-based VLANs with the CPU port as a member. The “CPU port” is the

management port of the Switch.

3 Filter all traffic to the CPU port.

4 Disable all ports.

5 Misconfigure the text configuration file.

6 Forget the password and/or IP address.

7 Prevent all services from accessing the Switch.

8 Change a service port number but forget it.

Note: Be careful not to lock yourself and others out of the Switch. If you do lock

yourself out, try using out-of-band management (via the management port) to configure the Switch.

4.6 Resetting the Switch

If you lock yourself (and others) from the Switch or forget the administrator password, you will need to reload the factory-default configur ation file or reset the Switch back to the factory defaults.

XGS4700-48F User’s Guide

4.6.1 Reload the Configuration File

Uploading the factory-default configuration file replaces the current configuration file with the factory-default configuration file. This means that you will lose all previous configurations and the speed of the console port will be reset to the default of 9600bps with 8 data bit, no parity, one stop bit and flow control set to none. The password will also be reset to “1234” and the IP address to

192.168.1.1.

To upload the configuration file, do the following:

1 Connect to the console port using a computer with terminal emulation software.

See Section 3.2 on page 46 for details.

2 Disconnect and reconnect the Switch’s power to begin a session. When you

reconnect the Switch’s power, you will see the initial screen.

3 When you see the message “Press any key to enter Debug Mode within 3

seconds ...” press any key to enter debug mode.

Chapter 4 The Web Configurator

4 Type atlc after the “Enter Debug Mode” message.

5 Wait for the “Starting XMODEM upload” message before activating XMODEM

upload on your terminal.

6 After a configuration file upload, type atgo to restart the Switch.

Figure 27 Resetting the Switch: Via the Console Port

Bootbase Version: V1.00 | 01/13/2011 19:34:13 RAM: Size = 524288 Kbytes

ZyNOS Version: V4.00(BVG.0)b6 | 01/28/2011 14:44:24

Press any key to enter debug mode within 3 seconds.

.....................................

Enter Debug Mode ras> atlc

Starting XMODEM upload (CRC mode)....

CCCCCCCCCCCCCCCC Total 393216 bytes received. Erasing..

................................................................

OK ras> atgo

The Switch is now reinitialized with a default configuration file including the default password of “1234”.

XGS4700-48F User’s Guide

Chapter 4 The Web Configurator

4.7 Logging Out of the Web Configurator

Click Logout in a screen to exit the web configurator. Y ou hav e to log in with your password again after you log out. This is recommended after you finish a management session for security reasons.

Figure 28 Web Configurator: Logout Screen

4.8 Help

The web configurator’s online help has descriptions of individual screens and some supplementary information.

Click the Help link from a web configurator screen to view an online help description of that screen.

XGS4700-48F User’s Guide

CHAPTER 5

Initial Setup Example

This chapter shows how to set up the Switch for an example network.

5.1 Overview

The following lists the configuration steps for the example network:

• Configure an IP interface

• Configure DHCP server settings

• Create a VLAN

• Set port VLAN ID

•Enable RIP

5.1.1 Configuring an IP Interface

On a layer-3 switch, an IP interface (also known as an IP routing domain) is not bound to a physical port. The default IP address of the S witch is 192.168. 1.1 wi th a subnet mask of 255.255.255.0.

In the example network, since the RD network is already in the same IP interface as the Switch, you don’t need to create an IP interface for it. However , if you want to have the Sales network on a different routing domain, you need to create a

XGS4700-48F User’s Guide

Chapter 5 Initial Setup Example

EXAMPLE

new IP interface. This allows the Switch to route traffic between the RD and Sales networks.

Figure 29 Initial Setup Network Example: IP Interface

1 Connect your computer to the MGMT port that is used only for management.

Make sure your computer is in the same subnet as the MGMT port.

2 Open your web browser and enter 192.168.0.1 (the default MGMT port IP

address) in the address bar to access the web configurator. See Section 4.2 on

page 55 for more information.

3 Click Basic Setting and IP Setup

in the navigation panel.

4 Configure the related fields in the

IP Setup screen.

For the Sales network, enter 192.168.2.1 as the IP address and 255.255.255.0 as the subnet mask.

XGS4700-48F User’s Guide

5 In the VID field, enter the ID of the VLAN group to which you want this IP

EXAMPLE

interface to belong. This is the same as the VLAN ID you configure in the Static VLAN screen.

6 Click Add to save the settings to the run-time memory. Settings in the run-time

memory are lost when the Switch’s power is turned off.

5.1.2 Configuring DHCP Server Settings

You can set the Switch to assign network information (such as the IP address, DNS server, etc.) to DHCP clients on the network.

For the example network, configure two DHCP client pools on the Switch for the DHCP clients in the RD and Sales networks.

1 In the web configurator, click IP

Application and DHCP in the

navigation panel and click the VLAN link.

Chapter 5 Initial Setup Example

2 In the VLAN Setting screen,

specify the ID of the VLAN to which the DHCP clients belong, the starting IP address pool, subnet mask, default gateway address and the DNS server address(es).

3 Click Add to save the settings to

the run-time memory. Settings in the run-time memory are lost when the Switch’s power is turned off.

5.1.3 Creating a VLAN

VLANs confine broadcast frames to the VLAN group in which the port(s) belongs. You can do this with port-based VLAN or tagged static VLAN with fixed port members.

XGS4700-48F User’s Guide

Chapter 5 Initial Setup Example

EXAMPLE

In this example, you want to configure port 1 as a member of VLAN 2.

Figure 30 Initial Setup Network Example: VLAN

1 Click Advanced Application > VLAN in the navigation panel and click the Static

VLAN link.

2 In the Static VLAN screen, select

ACTIVE, enter a descriptive name in the Name field and enter 2 in the VLAN Group ID field for the VLAN2 network.

Note: The VLAN Group ID field in this screen and the VID field in the IP Setup

screen refer to the same VLAN ID.

XGS4700-48F User’s Guide

3 Since the VLAN2 network is connected to port 1 on the Switch, select Fixed to

EXAMPLE

configure port 1 to be a permanent member of the VLAN only.

4 To ensure that VLAN-unaware devices (such as computers and hubs) can receive

frames properly, clear the TX Tagging check box to set the Switch to remove VLAN tags before sending.

5 Click Add to save the settings to the run-time memory. Settings in the run-time

memory are lost when the Switch’s power is turned off.

5.1.4 Setting Port VID

Use PVID to add a tag to incoming untagged frames received on that port so that the frames are forwarded to the VLAN group that the tag defines.

In the example network, configure 2 as the port VID on port 1 so that any untagged frames received on that port get sent to VLAN 2.

Figure 31 Initial Setup Network Example: Port VID

Chapter 5 Initial Setup Example

1 Click Advanced Applications

and VLAN in the navigation panel. Then click the VLAN Port Setting link.

2 Enter 2 in the PVID field for port

1 and click Apply to save your changes back to the run-time memory . Settings in the run-time memory are lost when the Switch’s power is turned off.

XGS4700-48F User’s Guide

Chapter 5 Initial Setup Example

EXAMPLE

5.1.5 Enabling RIP

To exchange routing information with other routing devices across different routing domains, enable RIP (Routing Information Protocol) in the RIP screen.

1 Click IP Application and RIP in the navigation panel.

2 Select Both in the Direction

field to set the Switch to broadcast and receive routing information.

3 In the Version field, select

RIP-1 for the RIP packet

format that is universa lly supported.

4 Click Apply to save your changes back to the run-time memory. Settings in the

run-time memory are lost when the Switch’s power is turned off.

XGS4700-48F User’s Guide

CHAPTER 6

VLAN 100

Tutorials

This chapter provides some examples of using the web configurator to set up and use the Switch. The tutorials include:

• How to Use DHCP Snooping on the Switch

• How to Use DHCP Relay on the Switch

• How to Use PPPoE IA on the Switch

• How to Use Error Disable and Recovery on the Switch

• How to Set Up a Guest VLAN

• How to Configure Routing Policy

6.1 How to Use DHCP Snooping on the Switch

You only wan t DHCP server A connected to port 5 to assign IP addresses to all devices in VLAN 100. Create a VLAN containing ports 5, 6 and 7. Connect a computer M to the Switch’s MGMT port.

Figure 32 Tutorial: DHCP Snooping Tutorial Overview

Note: For related information about DHCP snooping, see Section 26.1 on page 261.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

The settings in this tutorial are as the following.

Table 6 Settings in this Tutorial

HOST

DHCP Server (A) 5 1 and 100 100 Yes DHCP Client (B) 6 1 and 100 100 No DHCP Client (C) 7 1 and 100 100 No

1 Access the Switch from the MGMT port through http://192.168.0.1 by default.

Log into the Switch by entering the username (default: admin) and password (default: 1234).

2 Go to Advanced Application > VLAN > Static VLAN, and create a VLAN with ID

of 100. Add ports 5, 6 and 7 in the VLAN by selecting Fixed in the Control field as shown.

Deselect Tx Tagging because you don’t want outgoing traffic to contain this VLAN tag.

PORT CONNECTED

VLAN PVID

DHCP SNOOPING PORT TRUSTED

Click Add.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

3 Go to Advanced Application > VLAN > VLAN Port Setting, and set the PVID

of the ports 5, 6 and 7 to 100. This tags untagged incoming frames on ports 5, 6 and 7 with the tag 100.

4 Go to Advanced Application > IP Source Guard > DHCP snooping >

Configure, activate and specify VLAN 100 as the DHCP VLAN as shown. Click Apply.

5 Click the Port link at the top right corner.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

6 The DHCP Snooping Port Configure screen appears. Select Trusted in the

Server Trusted state field for port 5 because the DHCP server is connected to

port 5. Keep ports 6 and 7 Untrusted because they are connected to DHCP clients. Click Apply.

7 Go to Advanced Application > IP Source Guard > DHCP snooping >

Configure > VLAN, show VLAN 100 by entering 100 in the Start VID and End VID fields and click Apply. Then select Yes in the Enabled field of the VLAN 100

entry shown at the bottom section of the screen. If you want to add more information in the DHCP request packets such as source

VLAN ID or system name, you can also select the Option82 and Information fields in the entry. See Section 26.1.1.3 on page 263.

8 Click Save at the top right corner of the web

configurator to save the configuration permanently.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

9 Connect your DHCP server to port 5 and a computer (as DHCP client) to either

port 6 or 7. The computer should be able to get an IP address from the DHCP server. If you put the DHCP server on port 6 or 7, the computer will not able to get an IP address.

10 To check if DHCP snooping works, go to Advanced Application > IP Source

Guard, you should see an IP assignment with the type dhcp-snooping as shown.

You can also telnet or log into the Switch’s console. Use the command “ show dhcp snooping binding” to see the DHCP snooping binding table as shown next.

sysname# show dhcp snooping binding MacAddress IpAddress Lease Type VLAN Port

----------------- --------------- ------------ ------------- ---- ---- 00:02:00:00:00:1c 10.10.1.16 6d23h59m20s dhcp-snooping 100 7 Total number of bindings: 1

6.2 How to Use DHCP Relay on the Switch

This tutorial describes how to configure your Switch to forward DHCP client requests to a specific DHCP server. The DHCP server can then assign a specific IP address based on the information in the DHCP requests.

6.2.1 DHCP Relay Tutorial Introduction

In this example, you have configured your DHCP server (192.168.2.3) and want to have it assign a specific IP address (say 172.16.1.18) and gatew ay i nformation to

XGS4700-48F User’s Guide

Chapter 6 Tutorials

VLAN 102

DHCP Server

Port 2

PVID=102

172.16.1.18

192.168.2.3

DHCP client A based on the system name, VLAN ID and port number in the DHCP request. Client A connects to the Switch’s port 2 in VLAN 102.

Figure 33 Tutorial: DHCP Relay Scenario

6.2.2 Creating a VLAN

Follow the steps below to configure port 2 as a member of VLAN 102.

1 Access the web configurator through the Switch’s management port.

2 Go to Basic Setting > Switch Setup and set the VLAN type to 802.1Q. Click

Apply to save the settings to the run-time memory.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

3 Click Advanced Application > VLAN > Static VLAN.

4 In the Static VLAN screen, select ACTIVE, enter a descriptive name (VALN 102

for example) in the Name field and enter 102 in the VLAN Group ID field.

5 Select Fixed to configure port 2 to be a permanent member of this VLAN.

6 Clear the TX Tagging check box to set the Switch to remove VLAN tags before

sending.

7 Click Add to save the settings to the run-time memory. Settings in the run-time

memory are lost when the Switch’s power is turned off.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

8 Click the VLAN Status link in the Static VLAN screen and then the VLAN Port

Setting link in the VLAN Status screen.

9 Enter 102 in the PVID field for port 2 to add a tag to incoming untagged frames

received on that port so that the frames are forwarded to the VLAN group that the tag defines.

10 Click Apply to save your changes back to the run-time memory.

11 Click the Save link in the upper right corner of the web configurator to save your

configuration permanently.

XGS4700-48F User’s Guide

6.2.3 Configuring DHCP Relay

Follow the steps below to enable DHCP relay on the Switch and allow the Switch to add relay agent information (such as the VLAN ID) to DHCP requests.

1 Click IP Application > DHCP and then the Global link to open the DHCP Relay

screen.

2 Select the Active check box.

3 Enter the DHCP server’s IP address (192.168.2.3 in this example) in the Remote

DHCP Server 1 field.

4 Select the Option 82 and the Information check boxes.

5 Click Apply to save your changes back to the run-time memory.

Chapter 6 Tutorials

6 Click the Save link in the upper right corner of the web configurator to save your

configuration permanently.

7 The DHCP server can then assign a specific IP address based on the DHCP

request.

6.2.4 Troubleshooting

Check the client A’s IP address. If it did not receive the IP address 172.16.1.18, make sure:

1 Client A is connected to the Switch’s port 2 in VLAN 102.

2 You configured the correct VLAN ID, port number and system name for DHCP relay

on both the DHCP server and the Switch.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

Port 5 - Untrusted

Port 12 - Trusted

Port 11 - Trusted

Port 12 - Trusted

3 You clicked the Save link on the Switch to have your settings take effect.

6.3 How to Use PPPoE IA on the Switch

You want to configure PPPoE Intermediate Agent on the Switch (A) to pass a subscriber’s information to a PPPoE server (S). There is another switch (B) between switch A and server S. Switch B is connected to switch A. In this way, PPPoE server S can identify subscriber C and may apply different settings to it.

Figure 34 Tutorial: PPPoE Intermediate Agentt Tutorial Overview

Note: For related information about PPPoE IA, see Section 31.3 on page 304.

The settings in this tutorial are as follows:

Table 7 Settings in this Tutorial

SWITCH

A Port 5 (to C)

B Port 11 (to A)

PORT CONNECTED

Port 12 (to B)11

Port 12 (to S)11

VLAN CIRCUIT-ID REMOTE-ID

userC N/A

N/A N/A

00134900000A N/A

N/A N/A

PPPOE IA PORT TRUSTED

Untrusted Trusted

Trusted Trusted

XGS4700-48F User’s Guide

6.3.1 Configuring Switch A

1 Click Advanced Application > PPPoE > Intermediate Agent. Select Active

then click Apply.

Chapter 6 Tutorials

Click Port on the top of the screen.

2 Select Untrusted for port 5 and enter userC as Circuit-id and 00134900000A

as Remote-id. Select Trusted for port 12 and then leave the other fields empty. Click Apply.

Then Click Intermediate Agent on the top of the screen.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

3 The Intermediate Agent screen appears. Click VLAN on the top of the screen.

4 Enter 1 for both Start VID and End VID since both the Switch and PPPoE server

are in VLAN 1 in this example. Click Apply.

XGS4700-48F User’s Guide

5 Then select Yes to enable PPPoE IA in VLAN 1 and also select Circuit-id and

Remote-id to allow the Switch to add these two strings to frames tagged with VLAN 1 and pass to the PPPoE server. Click Apply.

6.3.2 Configuring Switch B

Chapter 6 Tutorials

The example uses another XGS4700-48F as switch B.

1 Click Advanced Application > PPPoE > Intermediate Agent. Select Active

then click Apply.

Click Port on the top of the screen.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

2 Select Trusted for ports 11 and 12 and then click Apply.

Then Click Intermediate Agent on the top of the screen.

3 The Intermediate Agent screen appears. Click VLAN on the top of the screen.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

4 Enter 1 for both Start VID and End VID. Click Apply.

5 Then select Yes to enable PPPoE IA in VLAN 1 and also select Circuit-id and

Remote-id to allow the Switch to add these two strings to frames tagged with VLAN 1 and pass to the PPPoE server. Click Apply.

The settings are completed now. If you miss some settings above, subscriber C could not successfully receive an IP address assigned by the PPPoE Server. If this happens, make sure you follow the steps exactly in this tutorial.

6.4 How to Use Error Disable and Recovery on the Switch

This tutorial shows you how to shut down a port when:

• there is a loop occurred

• too many ARP requests (over 100 packets per second) received on a port

XGS4700-48F User’s Guide

Chapter 6 Tutorials

You also want the S witch to wait for a period of time (10 minutes) before resuming the port automatically, after the problem(s) are gone. Loop guard and Errdiable features are helpful for this demand.

Note: Refer to Section 27.2 on page 287 and Section 32.3 on page 312 for more

To configure the settings:

1 First, click Advanced Application > Loop Guard. Select the Active option in

the first section to enable loop guard on the Switch. Then select the Active option of the first entry (port *) to enable loop guard for all ports. Click Apply.

information about Loop Guard and Errdiable.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

2 Click Advanced Application > Errdisable > CPU Protection, sele ct ARP as the

reason, enter 100 as the rate limit (packets per second) for t he first entry (port *) to apply the setting to all ports. Th en cl ic k Apply.

3 Click Advanced Application > Errdisable > Errdisable Detect, select Active

for cause ARP and inactive-port as the mode. Then click Apply.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

Internet

Guest VLAN 200 Ports 1, 2, 3 and 10

VLAN 1

4 Click Advanced Application > Errdisable > Errdisable Recovery, select

Active and Timer Status for loopguard and ARP entries. Also enter 180 (180 seconds = 3 minutes) in the Interval field for both entries. Then click Apply.

6.5 How to Set Up a Guest VLAN

All ports on the Switch are in VLAN 1 by default. Say you enable IEEE 802.1x authentication on ports 1 to 8. Clients that connect to these ports should provide the correct user name and password in order to access the ports. You want to assign clients that connect to ports 1, 2 or 3 to a guest VLAN (200 for example) before they can authenticate with the authentication server. In this guest VLAN, clients can surf the Internet through the default gateway attached to port 10, but are not allowed to access other network resources, such as the mail server or local data base.

XGS4700-48F User’s Guide

6.5.1 Creating a Guest VLAN

Follow the steps below to configure port 1, 2, 3 and 10 as a member of V LAN 200.

1 Access the web configurator through the Switch’s management port.

2 Go to Basic Setting > Switch Setup and set the VLAN typ e to 802.1Q. Click

Apply to save the settings to the run-time memory.

Chapter 6 Tutorials

3 Click Advanced Application > VLAN > Static VLAN.

4 In the Static VLAN screen, select ACTIVE, enter a descriptive name (VLAN 200

for example) in the Name field and enter 200 in the VLAN Group ID field.

5 Select Fixed to configure ports 1, 2, 3 and 10 to be permanent members of this

VLAN.

6 Clear the TX Tagging check box to set the Switch to remove VLAN tags before

sending frames out of these ports.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

7 Click Add to save the settings to the run-time memory. Settings in the run-time

memory are lost when the Switch’s power is turned off.

8 Click the VLAN Status link in the Static VLAN screen and then the VLAN Port

Setting link in the VLAN Status screen.

9 Enter 200 in the PVID field for ports 1, 2, 3 and 10 to add a tag to incoming

untagged frames received on these ports so that the frames are forwarded to the VLAN group that the tag defines.

XGS4700-48F User’s Guide

10 Click Apply to save your changes back to the run-time memory.

Chapter 6 Tutorials

11 Click the Save link in the upper right corner of the web configurator to save your

configuration permanently.

6.5.2 Enabling IEEE 802.1x Port Authentication

Follow the steps below to enable port authentication to validate access to ports 1~8 to clients based on a RADIUS server.

1 Click Advanced Application > Port Authentication and then the Click Here

link for 802.1x.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

2 Select the first Active checkbox to enable 802.1x authentication on the Switch.

Select the Active checkboxes for ports 1 to 8 to turn on 802.1x authentication on the selected ports.

Click Apply.

6.5.3 Enabling Guest VLAN

1 Click the Guest Vlan link in the 802.1x screen.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

2 Select Active and enter the guest VLAN ID (200 in this example) on ports 1, 2

and 3. The Switch puts unauthenticated clients in the specified guest VLAN. Set Host-mode to Multi-Secure to have the Switch authenticate each client that

connects to one of these ports, and specify the maximum number of clients that the Switch will authenticate on each of these port (5 in this example).

Click Apply.

3 Click the Save link in the upper right corner of the web configurator to save your

configuration permanently.

Clients that attach to port 1, 2 or 3 and fail to authenticate with the RADIUS server now should be in VLAN 200 and can access the Internet, but cannot communicate with devices in VLAN 1.

6.6 How to Configure Routing Policy

The Switch checks the routing table and then forwards traffic through the default gateway (R1) based on the destination address. This example shows you how to configure policy route to send traffic that matches a layer-3 classifier to a different gateway (R2) for special treatment. The layer-3 classifier groups packets marked with DSCP value 58 into a flow. Packets marked with different DSCP values, such as 13 are forwarded to the default gateway. The Switch applies policy-based routing rules to incoming packets prior to the normal routing.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

DSCP 58

DSCP 13

6.6.1 Create a Layer-3 Classifier

Follow the steps below to configure a classifier that sorts traffic with DSCP value 58 into a data flow.

1 Access the web configurator through the Switch’s management port.

2 Go to Advanced Application > Classifier and select Active.

Enter a descriptive name (“DSCP58” in this example). Select the second option of DSCP and enter 58 in the field provided.

XGS4700-48F User’s Guide

3 Click Add to save the settings to the run-time memory.

Chapter 6 Tutorials

6.6.2 Create a Policy Routing Rule

Follow the steps below to set up a policy routing profile first and then a rule to forward traffic of classifier DSCP58 to gateway R2.

1 Click IP Application > Policy Routing.

2 Select Active and enter a descriptive name for t his profile (“To_R2” for example).

Click Add to save the settings to the run-time memory.

XGS4700-48F User’s Guide

Chapter 6 Tutorials

3 Click the Rule Configuration link in the Policy Route screen to create a rule in

this profile.

4 Select the name of the profile with which the rule associates.

Set the rule’s index number to 1 in the Sequence field. Select Permit to have the Switch send matched traffic to the specified gateway. Select the name of the layer-3 classifier to which the rule applies. Enter the IP address of gateway R2 in the Next Hop field (“10.1.2.3” in this

example). Click Add to save the settings to the run-time memory.

5 Click the Save link in the upper right corner of the web configurator to save your

configuration permanently.

XGS4700-48F User’s Guide

PART II

Technical Reference

CHAPTER 7

System Status and Port

Statistics

This chapter describes the system status (web configurator home page) and port details screens.

7.1 Overview

The home screen of the web configurator displays a port stati stical summary with links to each port showing statistical details.

7.2 Port Status Summary

To view the port statistics, click Status in all web configurator screens to display the Status screen as shown next.

Figure 35 Status

XGS4700-48F User’s Guide

Chapter 7 System Status and Port Statistics

The following table describes the labels in this screen.

Table 8 Status

LABEL DESCRIPTION

Port This identifies the Ethernet port. Click a port number to display the Port

Details screen (refer to Figure 36 on page 101).

Name This is the name you assigned to this port in the Basic Setting > Port

Setup screen.

Link This field displays the speed (either 100M for 100 Mbps, 1000M for 1000

Mbps, and 10G for 10 Gbps) and the duplex (F for full duplex). This field displays Down if the port is not connected to any device.

State If STP (Spanning Tree Protocol) is enabled, this field displays the STP

state of the port. (See Section 13.1.3 on page 151 for more information). If STP is disabled, this field displays FORWARDING if the link is up,

otherwise, it displays STOP.

LACP This fields displays whether LACP (Link Aggregation Control Protocol) has

been enabled on the port. TxPkts This field shows the number of transmitted frames on this port. RxPkts This field shows the number of received frames on this port. Errors This field shows the number of received errors on this port. Tx KB/s This field shows the transmission speed of data sent on this port in

kilobytes per second. Rx KB/s This field shows the transmission speed of data received on this port in

kilobytes per second. Up Time This field shows the total amount of time in hours, minutes and seconds

the port has been up. Clear Counter Type a port number, select Port and then click Clear Counter to erase

the recorded statistical information for that port, or select Any to clear

statistics for all ports.

100

XGS4700-48F User’s Guide

Zyxel XGS4700-48F User Manual [ru]

Specifications and Main Features

Frequently Asked Questions

User Manual

XGS4700-48F

About This User's Guide

Document Conventions

Safety Warnings

Contents Overview

Table of Contents

User’s Guide

Getting to Know Your Switch

1.1 Introduction

1.1.1 Bridging Example

1.1.2 High Performance Switching Example

1.1.3 Gigabit Ethernet to the Desktop

1.1.4 IEEE 802.1Q VLAN Application Example

1.1.5 IPv6 Support

1.2 Ways to Manage the Switch

1.3 Good Habits for Managing the Switch

2.1 Freestanding Installation

2.2 Mounting the Switch on a Rack

2.2.1 Rack-mounted Installation Requirements

2.2.2 Attaching the Mounting Brackets to the Switch

2.2.3 Mounting the Switch on a Rack

2.3 Connecting the Frame Ground

2.4 Power Module Installation

2.4.1 Installing a Power Module

2.4.2 Removing a Power Module

Hardware Overview

3.1 Front Panel Connections

3.1.1 Mini-GBIC Slots

3.1.2 Console Port

3.1.3 Signal Slot

3.2 Rear Panel

3.2.1 Removing and Installing the Fan Module

3.2.2 Uplink Module

3.2.3 Rear Panel Connections

3.2.4 Management Port

3.2.5 Power Connector

3.3 Power Connection

3.3.1 AC Power Connections

3.3.2 DC Power Connections

3.3.3 Procedure to Turn on the Switch Power

3.3.4 Disconnecting the Power

3.4 LEDs

The Web Configurator

4.1 Introduction

4.2 System Login

4.3 The Web Configurator Layout

4.3.1 Change Your Password

4.4 Saving Your Configuration

4.5 Switch Lockout

4.6 Resetting the Switch

4.6.1 Reload the Configuration File

4.7 Logging Out of the Web Configurator

4.8 Help

Initial Setup Example

5.1 Overview

5.1.1 Configuring an IP Interface

5.1.2 Configuring DHCP Server Settings

5.1.3 Creating a VLAN

5.1.4 Setting Port VID

5.1.5 Enabling RIP

Tutorials

6.1 How to Use DHCP Snooping on the Switch

6.2 How to Use DHCP Relay on the Switch

6.2.1 DHCP Relay Tutorial Introduction

6.2.2 Creating a VLAN

6.2.3 Configuring DHCP Relay

6.2.4 Troubleshooting

6.3 How to Use PPPoE IA on the Switch

6.3.1 Configuring Switch A

6.3.2 Configuring Switch B

6.4 How to Use Error Disable and Recovery on the Switch

6.5 How to Set Up a Guest VLAN

6.5.1 Creating a Guest VLAN

6.5.2 Enabling IEEE 802.1x Port Authentication

6.5.3 Enabling Guest VLAN

6.6 How to Configure Routing Policy