Page 1 XS1930 Series 10-port Multi-Gigabit Smart Managed L2 Switch 12-port Multi-Gigabit Smart Managed L2 PoE Switch Default Login Details Version 4.60 Edition 1, 12/2019 Management IP http://DHCP-assigned IP Address 192.168.1.1 User Name admin Password 1234 Copyright © 2019 Zyxel Communications Corporation...
Page 2 IMPORTANT! READ CAREFULLY BEFORE USE. KEEP THIS GUIDE FOR FUTURE REFERENCE. This is a User’s Guide for a series of products. Not all products support all firmware features. Screenshots and graphics in this book may differ slightly from your product due to differences in your product firmware or your computer operating system.
Page 3: Table Of Contents
Contents Overview Contents Overview User’s Guide ............................17 Getting to Know Your Switch ......................18 Hardware Installation and Connection ..................... 27 Hardware Panels ..........................31 Technical Reference ........................38 The Web Configurator ......................... 39 Initial Setup Example ..........................64 DHCP Relay Tutorial ..........................68 Status ..............................
Page 4 Contents Overview Access Control ............................ 293 Diagnostic ............................313 System Log ............................316 Syslog Setup ............................317 Cluster Management ......................... 320 MAC Table ............................326 IP Table ..............................329 ARP Table ............................331 Routing Table ............................333 Path MTU Table ........................... 335 Configure Clone ..........................
Page 5: Table Of Contents
2.3.2 Attaching the Mounting Brackets to the Switch ............... 29 2.3.3 Mounting the Switch on a Rack ..................29 Chapter 3 Hardware Panels..........................31 3.1 Front Panel ............................31 3.1.1 Ethernet Ports ........................32 3.1.2 PoE (XS1930-12HP) ......................... 32 3.1.3 SFP/SFP+ Slots ......................... 32 XS1930 Series User’s Guide...
Page 6 Table of Contents 3.2 Rear Panel ............................34 3.2.1 Grounding ..........................34 3.2.2 Power Connector ......................... 35 3.3 LEDs ..............................35 Part II: Technical Reference................38 Chapter 4 The Web Configurator........................39 4.1 Overview ............................39 4.2 System Login ........................... 39 4.3 Zyxel One Network (ZON) Utility ....................
Page 7 Table of Contents 6.2.3 Configuring DHCPv4 Relay ....................71 6.2.4 Troubleshooting ........................72 Chapter 7 Status ..............................73 7.1 Overview ............................73 7.1.1 What You Can Do ......................... 73 7.2 Status ............................... 73 7.2.1 Neighbor Screen ........................75 7.2.2 Neighbor Detail ........................77 Chapter 8 Basic Setting ............................79 8.1 Overview ............................
Page 8 Table of Contents 8.12.2 Nebula Switch Registration ....................113 Chapter 9 VLAN..............................114 9.1 Overview ............................114 9.1.1 What You Can Do ....................... 114 9.1.2 What You Need to Know ....................114 9.2 VLAN Status ..........................117 9.2.1 VLAN Detail ......................... 118 9.3 VLAN Configuration ........................
Page 9 Table of Contents 13.4 Configure Rapid Spanning Tree Protocol ................140 13.5 Rapid Spanning Tree Protocol Status ..................142 13.6 Configure Multiple Spanning Tree Protocol ................. 144 13.6.1 Multiple Spanning Tree Protocol Port Configuration ............ 147 13.7 Multiple Spanning Tree Protocol Status ................... 148 13.8 Technical Reference ........................
Page 10 Table of Contents 18.1.1 What You Can Do ......................167 18.1.2 What You Need to Know ....................167 18.1.3 MAC Authentication ......................168 18.2 Port Authentication Configuration ................... 169 18.3 Activate IEEE 802.1x Security ....................169 18.3.1 Guest VLAN ........................170 18.4 Activate MAC Authentication ....................
Page 11 Table of Contents 23.2 Configuring Queuing ......................... 193 Chapter 24 Multicast............................195 24.1 Multicast Overview ........................195 24.1.1 What You Can Do ......................195 24.1.2 What You Need to Know ....................195 24.2 Multicast Setup ........................... 196 24.3 IPv4 Multicast Status ........................196 24.3.1 IGMP Snooping .........................
Page 12 Table of Contents 28.1.1 What You Can Do ......................218 28.1.2 What You Need to Know ....................218 28.2 PPPoE Screen ..........................220 28.3 PPPoE Intermediate Agent ....................... 221 28.3.1 PPPoE IA Per-Port ......................222 28.3.2 PPPoE IA Per-Port Per-VLAN .................... 223 28.3.3 PPPoE IA for VLAN ......................
Page 13 Table of Contents 32.1 Static Routing Overview ......................258 32.1.1 What You Can Do ......................258 32.2 Static Routing ..........................259 32.3 IPv4 Static Route ........................259 32.4 IPv6 Static Route ........................260 Chapter 33 DHCP ..............................262 33.1 DHCP Overview .......................... 262 33.1.1 What You Can Do ......................
Page 14 Table of Contents 35.6 Firmware Upgrade ........................284 35.7 Restore Configuration ......................286 35.8 Backup Configuration ......................286 35.9 Tech-Support ..........................287 35.9.1 Tech-Support Download ....................288 35.10 Certificates ..........................289 35.10.1 HTTPS Certificates ......................290 35.11 Technical Reference ........................ 291 35.11.1 FTP Command Line ......................
Page 15 Table of Contents 39.1 Syslog Overview .......................... 317 39.1.1 What You Can Do ......................317 39.2 Syslog Setup ..........................317 Chapter 40 Cluster Management........................320 40.1 Cluster Management Overview ....................320 40.1.1 What You Can Do ......................320 40.2 Cluster Management Status ..................... 321 40.3 Clustering Management Configuration ................
Page 16 Table of Contents Chapter 46 Configure Clone..........................336 46.1 Overview ............................. 336 46.2 Configure Clone ........................336 Chapter 47 IPv6 Neighbor Table.........................339 47.1 IPv6 Neighbor Table Overview ....................339 47.2 Viewing the IPv6 Neighbor Table ..................... 339 Chapter 48 Port Status ............................341 48.1 Port Status ............................
Page 17: User's Guide
User’s Guide...
Page 18: Getting To Know Your Switch
• XS1930-10 • XS1930-12HP References to PoE model(s) in this User's Guide only apply to XS1930-12HP. The Switch is a smart managed switch supporting Multi-Gigabit ports. See Section 1.1.1 on page 18 more information about Multi-Gigabit. The Switch provides two SFP+ slots for uplink. By integrating static route functions, the Switch performs wire-speed layer-3 routing in addition to layer-2 switching.
Page 19: Management Modes
Chapter 1 Getting to Know Your Switch The Multi-Gigabit Ethernet ports on the Switch automatically allow connections up to the speed of the connected network device (100 Mbps, 1 Gbps, 2.5 Gbps or 5 Gbps), and you just need to use a Cat 5e or Cat 6 Ethernet cable.
Page 20: Mode Changing
Chapter 1 Getting to Know Your Switch Nebula Cloud Management To have Nebula manage the Switch, you must first register it at the Nebula web portal at https:// nebula.zyxel.com, and ensure that Nebula Control Center Discovery is enabled in Basic Setting > Cloud Management >...
Page 21 Chapter 1 Getting to Know Your Switch From Standalone to Nebula Cloud Management To manage your Switch via Nebula, connect the Switch to the Internet, and register it to a site and organization at the Nebula web portal (https://nebula.zyxel.com). See the following steps or the Switch Quick Start Guide for how to do device registration. Go to the NCC to Register the Switch Go to the Nebula web portal in one of three ways.
Page 22: Zon Utility
• IEEE 802.3bt 4PPoE (4-pair PoE) The following table describes the PoE features of the Switch by model. Table 3 Models and PoE Features POE FEATURES XS1930-12HP IEEE 802.3af PoE IEEE 802.3at PoE Plus IEEE 802.3bt 4PPoE Power Management Mode...
Page 23: Backbone Example Application
Chapter 1 Getting to Know Your Switch Figure 2 PoE Example Application 1.2.2 Backbone Example Application The Switch is an ideal solution for small networks where rapid growth can be expected in the near future. The Switch can be used standalone for a group of heavy traffic users. You can connect computers and servers directly to the Switch’s port or connect other switches to the Switch.
Page 24: Bridging / Fiber Uplink Example Application
Chapter 1 Getting to Know Your Switch 1.2.3 Bridging / Fiber Uplink Example Application In this example, the Switch connects different company departments (RD and Sales) to the corporate backbone. It can alleviate bandwidth contention and eliminate server and network bottlenecks. All users that need high bandwidth can connect to high-speed department servers via the Switch.
Page 25: Ieee 802.1Q Vlan Application Examples
Chapter 1 Getting to Know Your Switch 1.2.5 IEEE 802.1Q VLAN Application Examples A VLAN (Virtual Local Area Network) allows a physical network to be partitioned into multiple logical networks. Stations on a logical network belong to one group. A station can belong to more than one group.
Page 26: Good Habits For Managing The Switch
Chapter 1 Getting to Know Your Switch • NCC (Zyxel Nebula Control Center). With the NCC, you can remotely manage and monitor the Switch through a cloud-based network management system. See Section 8.12 on page 112 or the NCC User’s Guide for detailed information about how to access the NCC and manage your Switch via the NCC.
Page 27: Hardware Installation And Connection
H A P T E R Hardware Installation and Connection 2.1 Installation Scenarios This chapter shows you how to install and connect the Switch. The Switch can be: • Placed on a desktop. • Rack-mounted on a standard EIA rack. Note: Ask an authorized technician to attach the Switch to the rack.
Page 28: Mounting The Switch On A Rack
Chapter 2 Hardware Installation and Connection Figure 7 Attaching Rubber Feet Note: Do NOT block the ventilation holes. Leave space between devices when stacking. Note: Do NOT store things on the Switch, and allow clearance next to the ventilation holes to prevent your Switch from overheating.
Page 29: Attaching The Mounting Brackets To The Switch
Chapter 2 Hardware Installation and Connection 2.3.2 Attaching the Mounting Brackets to the Switch Position a mounting bracket on one side of the Switch, lining up the four screw holes on the bracket with the screw holes on the side of the Switch. Figure 8 Attaching the Mounting Brackets Using a #2 Philips screwdriver, install the M3 flat head screws through the mounting bracket holes into the Switch.
Page 30 Chapter 2 Hardware Installation and Connection Using a #2 Philips screwdriver, install the M5 flat head screws through the mounting bracket holes into the rack. Repeat steps to attach the second mounting bracket on the other side of the rack. Note: Make sure you tighten all the four screws to prevent the Switch from getting slanted.
Page 31: Hardware Panels
This chapter describes the front panel and rear panel of the Switch and shows you how to make the hardware connections. 3.1 Front Panel The following figures show the front panels of the Switch. Figure 10 Front Panel: XS1930-10 Figure 11 Front Panel: XS1930-12HP The following table describes the ports. Table 4 Front Panel Connections CONNECTOR DESCRIPTION 2 or 8 100 Mbps, 1 These are 10GBase-T auto-negotiating and auto-crossover Ethernet ports.
Page 32: Ethernet Ports
Auto-crossover ports automatically sense whether they need to function as crossover or straight ports, so crossover cables can connect both computers and switches/hubs. 3.1.2 PoE (XS1930-12HP) The Switch supports the IEEE 802.3af Power over Ethernet (PoE), IEEE 802.3at Power over Ethernet (PoE) plus and IEEE 802.3bt standards.
Page 33 Chapter 3 Hardware Panels You can change transceivers or DAC cables while the Switch is operating. You can use different transceivers to connect to Ethernet switches with different types of fiber-optic connectors. • Type: SFP or SFP+ connection interface • Connection speed: 1 or 10 Gigabit per second (Gbps) To avoid possible eye injury, do not look into an operating fiber-optic module’s connectors.
Page 34: Rear Panel
3.2 Rear Panel The following figures show the rear panels of the Switch. Figure 17 Rear Panel: XS1930-10 Figure 18 Rear Panel: XS1930-12HP 3.2.1 Grounding Grounding is a safety measure to have unused electricity return to the ground. It prevents damage to the Switch, and protects you from electrocution.
Page 35: Power Connector
Chapter 3 Hardware Panels Secure a green/yellow ground cable (16 AWG or smaller) to the Switch's rear panel using the M4 ground screw. Attach the other end of the cable to the ground, either to the same ground electrode as the rack you installed the device on or to the main grounding electrode of the building.
Page 36 The locator is not functioning or malfunctioning. PoE MAX Green Each bar represents 20% of PoE Power consumption. (XS1930-12HP) (Bar1-Bar3) Bar 1: PoE power usage is below 20 percent of the power supplied budget. Bar1 is the bar at Bar 2: PoE power usage is below 40 percent of the power supplied budget, the bottom;...
Page 37 Chapter 3 Hardware Panels Table 5 LED Descriptions (continued) COLOR STATUS DESCRIPTION LNK/ACT Blue The link to a 10 Gbps Ethernet network is up. Blinking The Switch is transmitting/receiving to/from a 10 Gbps Ethernet network. 1-8 (XS1930- 12HP) Purple The link to a 5 Gbps Ethernet network is up. Blinking The Switch is transmitting/receiving to/from a 5 Gbps Ethernet network.
Page 38: Technical Reference
Technical Reference...
Page 39: The Web Configurator
H A P T E R The Web Configurator 4.1 Overview This section introduces the configuration and functions of the web configurator. The web configurator is an HTML-based management interface that allows easy Switch setup and management via Internet browser. Use Internet Explorer 9.0 and later versions, Mozilla Firefox 21 and later versions, Safari 6.0 and later versions or Google Chrome 26.0 and later versions.
Page 40 Chapter 4 The Web Configurator Figure 20 Web Configurator > Login: Nebula Mode Click Login to log into the web configurator to manage the Switch directly. The default username is admin and associated default password is 1234. Figure 21 Web Configurator: Login: Standalone Mode After you log into the web configurator, you will see the following screen encouraging you to use NCC.
Page 41 Chapter 4 The Web Configurator Figure 22 Web Configurator: Message You may also access this screen at Basic Setting > Cloud Management > Nebula Switch Registration. The Wizard screen will appear after logging into the Switch. You can use the Wizard screen to configure the Switch’s IP, login password, SNMP community, link aggregation, and so on.
Page 42 Chapter 4 The Web Configurator Figure 23 Web Configurator: Wizard If you didn’t change the default administrator password and/or SNMP community values, a warning screen displays each time you log into the web configurator. Click Password / SNMP to open a screen where you can change the administrator and SNMP passwords simultaneously.
Page 43 Chapter 4 The Web Configurator Figure 25 Web Configurator: Password Change the default administrator and/or SNMP passwords, and then click Apply to save your changes. Table 6 Web Configurator: Password/SNMP LABEL DESCRIPTION Administrator This is the default administrator account with the “admin” user name. You cannot change the default administrator user name.
Page 44: Zyxel One Network (Zon) Utility
Chapter 4 The Web Configurator 4.3 Zyxel One Network (ZON) Utility ZON Utility is a program designed to help you deploy and manage a network more efficiently. It detects devices automatically and allows you to do basic settings on devices in the network without having to be near it.
Page 45 Chapter 4 The Web Configurator Figure 26 Supported Devices and Versions If you want to check the supported models and firmware versions later, you can click the Show information about ZON icon in the upper right hand corner of the screen. Then select the Supported model and firmware version link.
Page 46 Chapter 4 The Web Configurator Figure 28 Network Adapter Click the Go button for the ZON Utility to discover all supported devices in your network. Figure 29 Discovery The ZON Utility screen shows the devices discovered. Figure 30 ZON Utility Screen Select a device and then use the icons to perform actions.
Page 47 Chapter 4 The Web Configurator Figure 31 Password Prompt The following table describes the icons numbered from left to right in the ZON Utility screen. Table 7 ZON Utility Icons ICON DESCRIPTION 1 IP configuration Change the selected device’s IP address. 2 Renew IP Address Update a DHCP-assigned dynamic IP address.
Page 48: Wizard
Chapter 4 The Web Configurator Table 8 ZON Utility Fields LABEL DESCRIPTION MAC Address This field displays the MAC address of the discovered device. IP Address This field displays the IP address of an internal interface on the discovered device that first received an ZDP discovery request from the ZON utility.
Page 49 Chapter 4 The Web Configurator Figure 32 Wizard > Basic > Step 1 IP Each field is described in the following table. Table 9 Wizard > Basic > Step 1 IP LABEL DESCRIPTION Host Name This field displays a host name. IP Interface Select DHCP Client if the Switch is connected to a router with the DHCP server enabled.
Page 50 Chapter 4 The Web Configurator Figure 33 Wizard > Basic > Step 2 Password Each field is described in the following table. Table 10 Wizard > Basic > Step 2 Password LABEL DESCRIPTION Administrator's Password Current password Type the existing system password (1234 is the default password when shipped). New password Enter your new system password.
Page 51 Chapter 4 The Web Configurator Table 10 Wizard > Basic > Step 2 Password LABEL DESCRIPTION Next Click Next to show the next screen. Cancel Click Cancel to exit this screen without saving. After clicking Next, the Link Aggregation screen appears. Figure 34 Wizard >...
Page 52 Chapter 4 The Web Configurator Figure 35 Wizard > Basic > Step 4 Summary Each field is described in the following table. Table 12 Wizard > Basic > Step 4 Summary LABEL DESCRIPTION Setup IP Host Name This field displays a host name. IP Interface This field displays whether the WAN interface is using a DHCP IP address or a static IP address.
Page 53: Protection
Chapter 4 The Web Configurator Table 12 Wizard > Basic > Step 4 Summary LABEL DESCRIPTION Previous Click Previous to show the previous screen. Finish Review the information and click Finish to create the task. Cancel Click Cancel to exit this screen without saving. 4.4.2 Protection In Protection, you can set up loop guard and broadcast storm control.
Page 54 Chapter 4 The Web Configurator Figure 37 Wizard > Protection > Step 2 Broadcast Storm Control Each field is described in the following table. Table 14 Wizard > Protection > Step 2 Broadcast Storm Control LABEL DESCRIPTION Broadcast Storm Control Select all ports Select all ports to apply settings on all ports.
Page 55: Vlan
Chapter 4 The Web Configurator Figure 38 Wizard > Protection > Step 3 Summary Each field is described in the following table. Table 15 Wizard > Protection > Step 3 Summary LABEL DESCRIPTION Summary Loop Guard If the loop guard feature is enabled on a port, the Switch will prevent loops on this port. Broadcast Storm If the broadcast storm control feature is enabled on a port, the number of broadcast Control...
Page 56: Qos
Chapter 4 The Web Configurator Figure 39 Wizard > VLAN > VLAN Setting Each field is described in the following table. Table 16 Wizard > VLAN > VLAN Setting LABEL DESCRIPTION VLAN Setting Default VLAN 1 / After you create a VLAN and select the VLAN ID from the drop-down list box, select ports Access Untagged and use the right arrow to add them as the untagged ports to a VLAN group.
Page 57: The Web Configurator Layout
Click Cancel to exit this screen without saving. 4.5 The Web Configurator Layout This guide uses XS1930-12HP screens as an example. The screen may vary slightly for different models. The following figure shows the navigating components of a web configurator screen.
Page 58 Chapter 4 The Web Configurator Figure 41 Web Configurator Layout for PoE model(s) A - Click the menu items to open submenu links, and then click on a submenu link to open the screen in the main window. B, C, D, E, F, G, H - These are quick links which allow you to perform certain tasks no matter which screen you are currently working in.
Page 59 Chapter 4 The Web Configurator Table 18 Navigation Panel Sub-links Overview BASIC SETTING ADVANCED APPLICATION IP APPLICATION MANAGEMENT The following table describes the links in the navigation panel. Table 19 Navigation Panel Links LINK DESCRIPTION Basic Settings System Info This link takes you to a screen that displays general system information. General Setup This link takes you to a screen where you can configure general identification information about the Switch.
Page 60 Chapter 4 The Web Configurator Table 19 Navigation Panel Links (continued) LINK DESCRIPTION VLAN This link takes you to screens where you can configure port-based or 802.1Q VLAN (depending on what you configured in the Switch Setup menu). You can also configure a protocol based VLAN or a subnet based VLAN in these screens.
Page 61: Change Your Password
Chapter 4 The Web Configurator Table 19 Navigation Panel Links (continued) LINK DESCRIPTION ARP Setup This link takes you to screens where you can configure the ARP learning settings for each port. Management Maintenance This link takes you to screens where you can perform firmware and configuration file maintenance as well as reboot the system.
Page 62: Saving Your Configuration
Chapter 4 The Web Configurator 4.6 Saving Your Configuration When you are done modifying the settings in a screen, click Apply to save your changes back to the run-time memory. Settings in the run-time memory are lost when the Switch’s power is turned off. Click the Save link in the upper right hand corner of the web configurator to save your configuration to nonvolatile memory.
Page 63: Logging Out Of The Web Configurator
Chapter 4 The Web Configurator 4.9 Logging Out of the Web Configurator Click Logout in a screen to exit the web configurator. You have to log in with your password again after you log out. This is recommended after you finish a management session for security reasons. Figure 43 Web Configurator: Logout Screen 4.10 Help The web configurator’s online help has descriptions of individual screens and some supplementary...
Page 64: Initial Setup Example
H A P T E R Initial Setup Example 5.1 Overview This chapter shows how to set up the Switch for an example network. The following lists the configuration steps for the initial setup: • Create a VLAN • Set port VLAN ID •...
Page 65: Setting Port Vid
Chapter 5 Initial Setup Example In the Static VLAN screen, select ACTIVE, enter a descriptive name in the Name field, enter 2 in the VLAN Group ID field for the VLAN2 network, and use the default VLAN type, Normal, in the VLAN Type field. Note: The VLAN Group ID field in this screen and the VID field in the IP Setup screen refer to the same VLAN ID.
Page 66: Configuring Switch Management Ip Address
Chapter 5 Initial Setup Example Figure 45 Initial Setup Network Example: Port VID Click Advanced Applications > VLAN > VLAN Configuration in the navigation panel. Then click the VLAN Port Setup link. Enter 2 in the PVID field for port 1 and click Apply to save your changes back to the run-time memory.
Page 67 Chapter 5 Initial Setup Example Figure 46 Initial Setup Example: Management IP Address Connect your computer to any Ethernet port on the Switch. Make sure your computer is in the same subnet as the Switch. Open your web browser and enter 192.168.1.1 (the default IP address) in the address bar to access the web configurator.
Page 68: Dhcp Relay Tutorial
H A P T E R DHCP Relay Tutorial 6.1 Overview This chapter provides some examples of using the web configurator to set up and use the Switch. The tutorials include: • How to Use DHCPv4 Relay on the Switch 6.2 How to Use DHCPv4 Relay on the Switch This tutorial describes how to configure your Switch to forward DHCP client requests to a specific DHCP server.
Page 69 Chapter 6 DHCP Relay Tutorial Access the web configurator through the Switch’s management port. Go to Basic Setting > Switch Setup and set the VLAN type to 802.1Q. Click Apply to save the settings to the run-time memory. Figure 48 Tutorial: Set VLAN Type to 802.1Q Click Advanced Application >...
Page 70 Chapter 6 DHCP Relay Tutorial Figure 49 Tutorial: Create a Static VLAN Click the VLAN Configuration link in the Static VLAN Setup screen and then the VLAN Port Setup link in the VLAN Configuration screen. Figure 50 Tutorial: Click the VLAN Port Setting Link Enter 102 in the PVID field for port 2 to add a tag to incoming untagged frames received on that port so that the frames are forwarded to the VLAN group that the tag defines.
Page 71: Configuring Dhcpv4 Relay
Chapter 6 DHCP Relay Tutorial Figure 51 Tutorial: Add Tag for Frames Received on Port 2 11 Click the Save link in the upper right corner of the web configurator to save your configuration permanently. 6.2.3 Configuring DHCPv4 Relay Follow the steps below to enable DHCP relay on the Switch and allow the Switch to add relay agent information (such as the VLAN ID) to DHCP requests.
Page 72: Troubleshooting
Chapter 6 DHCP Relay Tutorial Click the Save link in the upper right corner of the web configurator to save your configuration permanently. The DHCP server can then assign a specific IP address based on the DHCP request. 6.2.4 Troubleshooting Check the client A’s IP address.
Page 73: Status
H A P T E R Status 7.1 Overview This chapter describes the screens for System Status and Neighbor. 7.1.1 What You Can Do • Use the Status screen (Section 7.2 on page 73) to see the Switch’s general device information, system status, and IP addresses.
Page 74 Chapter 7 Status Figure 53 Status (for PoE model(s)) The following table describes the labels in this screen. Table 20 Status LABEL DESCRIPTION Device Information Device Type This field displays the model name of this Switch. System Name This field displays the name used to identify the Switch on any network. Boot Version This field displays the version number and date of the boot module that is currently on the Switch.
Page 75: Neighbor Screen
Chapter 7 Status Table 20 Status (continued) LABEL DESCRIPTION Serial Number This field displays the serial number of this Switch. The serial number is used for device tracking and control. Registration This field displays the MAC address of the Switch that you must use to register at myZyxel.com or MAC Address the NCC (Nebula Control Center).
Page 76 Chapter 7 Status This screen shows the neighboring device first recognized on an Ethernet port of the Switch. Device information is displayed in gray when the neighboring device is offline. Click Status > Neighbor to see the following screen. Figure 54 Status >...
Page 77: Neighbor Detail
Chapter 7 Status Table 21 Status > Neighbor LABEL DESCRIPTION Select an entry’s check box to select a specific port. Otherwise, select the check box in the table heading row to select all ports. Flush Click the Flush button to remove information about neighbors learned on the selected ports.
Page 78 Chapter 7 Status Table 22 Status > Neighbor > Neighbor Detail LABEL DESCRIPTION PWR Cycle Click the Cycle button to turn OFF the power of the neighboring device and turn it back ON again. A count down button (from 5 to 0) starts. Note: The Cycle button is clickable only when the neighboring device is a powered device (PD) and able to receive power from the Switch.
Page 79: Basic Setting
H A P T E R Basic Setting 8.1 Overview This chapter describes how to configure the System Info, General Setup, Switch Setup, IP Setup, Port Setup, PoE Setup, Interface Setup, IPv6, DNS and Cloud Management screens. 8.1.1 What You Can Do •...
Page 80 Chapter 8 Basic Setting Figure 56 Basic Setting > System Info The following table describes the labels in this screen. Table 23 Basic Setting > System Info LABEL DESCRIPTION System Name This field displays the descriptive name of the Switch for identification purposes. Product Model This field displays the product model of the Switch.
Page 81: General Setup
Chapter 8 Basic Setting Table 23 Basic Setting > System Info (continued) LABEL DESCRIPTION Current This shows the current temperature at this sensor. This field displays the maximum temperature measured at this sensor. This field displays the minimum temperature measured at this sensor. Threshold This field displays the upper temperature limit at this sensor.
Page 82 Chapter 8 Basic Setting Figure 57 Basic Setting > General Setup The following table describes the labels in this screen. Table 24 Basic Setting > General Setup LABEL DESCRIPTION System Name Choose a descriptive name for identification purposes. This name consists of up to 64 printable characters;...
Page 83: Introduction To Vlans
Chapter 8 Basic Setting Table 24 Basic Setting > General Setup (continued) LABEL DESCRIPTION Time Zone Select the time difference between UTC (Universal Time Coordinated, formerly known as GMT, Greenwich Mean Time) and your time zone from the drop-down list box. Daylight Saving Daylight saving is a period from late spring to early fall when many countries set their clocks Time...
Page 84: Switch Setup
Chapter 8 Basic Setting Chapter 9 on page 114 for information on port-based and 802.1Q tagged VLANs. 8.5 Switch Setup Click Basic Setting > Switch Setup in the navigation panel to display the screen as shown. The VLAN setup screens change depending on whether you choose 802.1Q or Port Based in the VLAN Type field in this screen.
Page 85: Ip Setup
Chapter 8 Basic Setting Table 25 Basic Setting > Switch Setup (continued) LABEL DESCRIPTION Leave Timer Leave Time sets the duration of the Leave Period timer for GVRP in milliseconds. Each port has a single Leave Period timer. Leave Time must be two times larger than Join Timer; the default is 600 milliseconds.
Page 86: Ip Status Details
Chapter 8 Basic Setting You can configure up to 32 IP addresses (domains) which are used to access and manage the Switch from the ports belonging to the pre-defined VLAN(s). Note: You must configure a VLAN first. Each VLAN can have multiple management IP addresses, and you can log into the Switch via different management IP addresses simultaneously.
Page 87: Ip Configuration
Chapter 8 Basic Setting Figure 61 Basic Setting > IP Setup > IP Status Details: DHCP The following table describes the labels in this screen. Table 28 Basic Setting > IP Setup > IP Status Details: DHCP LABEL DESCRIPTION Type This shows whether this IP address is dynamically assigned from a DHCP server or manually assigned (Static or DHCP).
Page 88 Chapter 8 Basic Setting Figure 62 Basic Setting > IP Setup > IP Configuration The following table describes the labels in this screen. Table 29 Basic Setting > IP Setup > IP Configuration LABEL DESCRIPTION Default Type the IP address of the default outgoing gateway in dotted decimal notation, for example Gateway 192.168.1.254.
Page 89: Port Setup
Chapter 8 Basic Setting Table 29 Basic Setting > IP Setup > IP Configuration (continued) LABEL DESCRIPTION Type This field displays the type of IP address status. Select an entry’s check box to select a specific entry. Otherwise, select the check box in the table heading row to select all entries.
Page 90: Poe Setup
Chapter 8 Basic Setting Table 30 Basic Setting > Port Setup (continued) LABEL DESCRIPTION Name Enter a descriptive name that identifies this port. You can enter up to 64 alpha-numerical characters. Note: Due to space limitation, the port name may be truncated in some web configurator screens.
Page 91 Chapter 8 Basic Setting In the figure below, the IP camera and IP phone get their power directly from the Switch. Aside from minimizing the need for cables and wires, PoE removes the hassle of trying to find a nearby electric outlet to power up devices.
Page 92 Chapter 8 Basic Setting Table 31 Basic Setting > PoE Setup (continued) LABEL DESCRIPTION PoE Usage (%) This field displays the amount of power currently being supplied to connected PoE devices (PDs) as a percentage of the total PoE power the Switch can supply. When PoE usage reaches 100%, the Switch will shut down PDs one-by-one according to the PD priority which you configured in Basic Setting >...
Page 93: Poe Time Range Setup
Chapter 8 Basic Setting Table 31 Basic Setting > PoE Setup (continued) LABEL DESCRIPTION Max Power (W) This field displays the maximum amount of power the PD could use from the Switch on this port. Time Range This field shows whether or not the port currently receives power from the Switch according to its State schedule.
Page 94: Poe Setup
Chapter 8 Basic Setting Table 32 Basic Setting > PoE Setup > PoE Time Range Setup (continued) LABEL DESCRIPTION Time Range This field displays the name of the schedule that you have created using the Advanced Application > Time Range screen. Select one or more time range profiles that determine when PoE will be enabled in this port.
Page 95 Chapter 8 Basic Setting Figure 67 Basic Setting > PoE Setup > PoE Setup The following table describes the labels in this screen. Table 33 Basic Setting > PoE Setup > PoE Setup LABEL DESCRIPTION PoE Mode Select the power management mode you want the Switch to use. •...
Page 96 Chapter 8 Basic Setting Table 33 Basic Setting > PoE Setup > PoE Setup (continued) LABEL DESCRIPTION PD Priority When the total power requested by the PDs exceeds the total PoE power budget on the Switch, you can set the PD priority to allow the Switch to provide power to ports with higher priority. Select Critical to give the highest PD priority on the port.
Page 97: Interface Setup
Chapter 8 Basic Setting Table 33 Basic Setting > PoE Setup > PoE Setup (continued) LABEL DESCRIPTION LLDP Power Via Select this to have the Switch negotiate PoE power with the PD connected to the port by transmitting LLDP Power Via MDI TLV frames. This helps the Switch allocate less power to the PD on this port.
Page 98: Ipv6
Chapter 8 Basic Setting Table 34 Basic Setting > Interface Setup (continued) LABEL DESCRIPTION Click this to create a new entry. This saves your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.
Page 99 Chapter 8 Basic Setting Figure 70 Basic Setting > IPv6 > IPv6 Interface Status The following table describes the labels in this screen. Table 36 Basic Setting > IPv6 > IPv6 Interface Status LABEL DESCRIPTION IPv6 Active This field displays whether the IPv6 interface is activated or not. MTU Size This field displays the Maximum Transmission Unit (MTU) size for IPv6 packets on this interface.
Page 100: Ipv6 Configuration
Chapter 8 Basic Setting Table 36 Basic Setting > IPv6 > IPv6 Interface Status (continued) LABEL DESCRIPTION Number of This field displays the number of consecutive neighbor solicitations the Switch sends for this DAD Attempts interface. NS-Interval This field displays the time interval (in milliseconds) at which neighbor solicitations are re-sent for (millisecond) this interface.
Page 101: Ipv6 Global Setup
Chapter 8 Basic Setting Figure 71 Basic Setting > IPv6 > IPv6 Configuration The following table describes the labels in this screen. Table 37 Basic Setting > IPv6 > IPv6 Configuration LABEL DESCRIPTION IPv6 Global Click the link to go to a screen where you can configure the global IPv6 settings on the Switch. Setup IPv6 Interface Click the link to go to a screen where you can enable an IPv6 interface on the Switch.
Page 102: Ipv6 Interface Setup
Chapter 8 Basic Setting Figure 72 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Global Setup The following table describes the labels in this screen. Table 38 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Global Setup LABEL DESCRIPTION IPv6 Hop Limit Specify the maximum number of hops (from 1 to 255) in router advertisements.
Page 103: Ipv6 Link-Local Address Setup
Chapter 8 Basic Setting Table 39 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Interface Setup (continued) LABEL DESCRIPTION Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the nonvolatile memory when you are done configuring.
Page 104: Ipv6 Global Address Setup
Chapter 8 Basic Setting Table 40 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Link-Local Address Setup (continued) LABEL DESCRIPTION IPv6 Link-Local This is the static IPv6 link-local address for the interface. Address IPv6 Default This is the default gateway IPv6 address for the interface. Gateway 8.10.6 IPv6 Global Address Setup Use this screen to configure the interface’s IPv6 global address.
Page 105: Ipv6 Neighbor Discovery Setup
Chapter 8 Basic Setting Table 41 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Global Address Setup (continued) LABEL DESCRIPTION Delete Check the entry(ies) that you want to remove and then click Delete to remove the selected entry(ies) from the summary table. Cancel Click Cancel to clear the check boxes.
Page 106: Ipv6 Router Discovery Setup
Chapter 8 Basic Setting Table 42 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Neighbor Discovery Setup (continued) LABEL DESCRIPTION NS Interval This field displays the time interval (in milliseconds) at which neighbor solicitations are re-sent for this interface. Reachable This field displays how long (in milliseconds) a neighbor is considered reachable for this interface.
Page 107: Ipv6 Prefix Setup
Chapter 8 Basic Setting Table 43 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Router Discovery Setup (continued) LABEL DESCRIPTION Suppress Select this option to set the Switch to not send router advertisements and responses to router solicitations on this interface. Apply Click Apply to save your changes to the Switch’s run-time memory.
Page 108: Ipv6 Neighbor Setup
Chapter 8 Basic Setting The following table describes the labels in this screen. Table 44 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Prefix Setup LABEL DESCRIPTION Interface Select the IPv6 interface you want to configure. Prefix Set the IPv6 prefix that the Switch includes in router advertisements for this interface. Prefix Length Set the prefix length that the Switch includes in router advertisements for this interface.
Page 109 Chapter 8 Basic Setting Figure 79 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Neighbor Setup The following table describes the labels in this screen. Table 45 Basic Setting > IPv6 > IPv6 Configuration > IPv6 Neighbor Setup LABEL DESCRIPTION Interface Type Select the type of IPv6 interface for which you want to configure.
Page 110: Dhcpv6 Client Setup
Chapter 8 Basic Setting 8.10.11 DHCPv6 Client Setup Use this screen to configure the Switch’s DHCP settings when it is acting as a DHCPv6 client. Click the link next to DHCPv6 Client Setup in the IPv6 Configuration screen to display the screen as shown next. Figure 80 Basic Setting >...
Page 111: Dns
Chapter 8 Basic Setting Table 46 Basic Setting > IPv6 > IPv6 Configuration > DHCPv6 Client Setup LABEL DESCRIPTION Domain-List This field displays whether the Switch obtains a list of domain names from the DHCP server. Information This field displays the time interval (in seconds) at which the Switch exchanges other configuration Refresh information with a DHCPv6 server again.
Page 112: Cloud Management
Chapter 8 Basic Setting 8.12 Cloud Management The Zyxel Nebula Control Center (NCC) is a cloud-based network management system that allows you to remotely manage and monitor Zyxel Nebula APs, Ethernet switches and security gateways. The Switch is managed and provisioned automatically by the NCC (Nebula Control Center) when: •...
Page 113: Nebula Switch Registration
Chapter 8 Basic Setting 8.12.2 Nebula Switch Registration Click Basic Setting > Cloud Management > Nebula Switch Registration to display this screen. Figure 84 Basic Setting > Cloud Management > Nebula Switch Registration This screen has a QR code containing the Switch’s serial number and MAC address for handy NCC registration of the Switch using the Nebula Mobile app.
Page 114: Vlan
H A P T E R VLAN 9.1 Overview This chapter shows you how to configure 802.1Q tagged and port-based VLANs. The type of screen you see here depends on the VLAN Type you selected in the Switch Setup screen. 9.1.1 What You Can Do •...
Page 115 Chapter 9 VLAN (VLAN Identifier) of null (0) is called a priority frame, meaning that only the priority level is significant and the default VID of the ingress port is given as the VID of the frame. Of the 4096 possible VIDs, a VID of 0 is used to identify priority frames and value 4095 (FFF) is reserved, so the maximum possible VLAN configurations are 4,094.
Page 116 Chapter 9 VLAN Table 48 IEEE 802.1Q VLAN Terminology (continued) VLAN PARAMETER TERM DESCRIPTION VLAN Administrative Registration Fixed Fixed registration ports are permanent VLAN members. Control Registration Ports with registration forbidden are forbidden to join the specified Forbidden VLAN. Normal Registration Ports dynamically join a VLAN using GVRP.
Page 117: Vlan Status
Chapter 9 VLAN 9.1.2.4 Select the VLAN Type Select a VLAN type in the Basic Setting > Switch Setup screen. Figure 86 Switch Setup > Select VLAN Type Static VLAN Use a static VLAN to decide whether an incoming frame on a port should be •...
Page 118: Vlan Detail
Chapter 9 VLAN The following table describes the labels in this screen. Table 49 Advanced Application > VLAN: VLAN Status LABEL DESCRIPTION VLAN Search by Enter an existing VLAN ID number(s) (separated by a comma) and click Search to display only the specified VLAN(s) in the list below.
Page 119: Vlan Configuration
Chapter 9 VLAN Table 50 Advanced Application > VLAN > VLAN Detail (continued) LABEL DESCRIPTION Elapsed Time This field shows how long it has been since a normal VLAN was registered or a static VLAN was set up. Status This field shows how this VLAN was added to the Switch. Dynamic: using GVRP Static: added as a permanent entry 9.3 VLAN Configuration...
Page 120 Chapter 9 VLAN Figure 90 Advanced Application > VLAN > VLAN Configuration > Static VLAN Setup The following table describes the related labels in this screen. Table 52 Advanced Application > VLAN > VLAN Configuration > Static VLAN Setup LABEL DESCRIPTION ACTIVE Select this check box to activate the VLAN settings.
Page 121: Configure Vlan Port Setting
Chapter 9 VLAN Table 52 Advanced Application > VLAN > VLAN Configuration > Static VLAN Setup (continued) LABEL DESCRIPTION Click Add to save your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.
Page 122: Voice Vlan Setup
Chapter 9 VLAN The following table describes the labels in this screen. Table 53 Advanced Application > VLAN > VLAN Configuration> VLAN Port Setup LABEL DESCRIPTION GVRP GVRP (GARP VLAN Registration Protocol) is a registration protocol that defines a way for switches to register necessary VLAN members on ports across the network.
Page 123 Chapter 9 VLAN Figure 92 Advanced Application > VLAN > VLAN Configuration > Voice VLAN Setup The following table describes the fields in the above screen. Table 54 Advanced Application > VLAN > VLAN Configuration > Voice VLAN Setup LABEL DESCRIPTION Voice VLAN Global Setup Voice VLAN...
Page 124: Vendor Id Based Vlan
Chapter 9 VLAN Table 54 Advanced Application > VLAN > VLAN Configuration > Voice VLAN Setup LABEL DESCRIPTION Click Add to save your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.
Page 125 Chapter 9 VLAN Figure 93 Advanced Application > VLAN > VLAN Configuration > Vendor ID Based VLAN Setup The following table describes the fields in the above screen. Table 55 Advanced Application > VLAN > VLAN Configuration > Vendor ID Based VLAN Setup LABEL DESCRIPTION Name...
Page 126: Port-Based Vlan Setup
Chapter 9 VLAN Table 55 Advanced Application > VLAN > VLAN Configuration > Vendor ID Based VLAN Setup LABEL DESCRIPTION Delete Click Delete to remove the selected entry from the summary table. Cancel Click Cancel to clear the check boxes. 9.8 Port-Based VLAN Setup Port-based VLANs are VLANs where the packet forwarding decision is based on the destination MAC address and its associated port.
Page 127 Chapter 9 VLAN Figure 94 Advanced Application > VLAN: Port Based VLAN Setup (All Connected) Figure 95 Advanced Application > VLAN: Port Based VLAN Setup (Port Isolation) XS1930 Series User’s Guide...
Page 128 Chapter 9 VLAN The following table describes the labels in this screen. Table 56 Advanced Application > VLAN: Port Based VLAN Setup label Description Setting Wizard Choose All connected or Port isolation. All connected means all ports can communicate with each other, that is, there are no virtual LANs.
Page 129: Static Mac Forward Setup
H A P T E R Static MAC Forward Setup 10.1 Overview This chapter discusses how to configure forwarding rules based on MAC addresses of devices on your network. Use these screens to configure static MAC address forwarding. 10.1.1 What You Can Do Use the Static MAC Forwarding screen (Section 10.2 on page 129) to assign static MAC addresses for a...
Page 130 Chapter 10 Static MAC Forward Setup The following table describes the labels in this screen. Table 57 Advanced Application > Static MAC Forwarding LABEL DESCRIPTION Active Select this check box to activate your rule. You may temporarily deactivate a rule without deleting it by clearing this check box.
Page 131: Static Multicast Forwarding
H A P T E R Static Multicast Forwarding 11.1 Static Multicast Forward Setup Overview This chapter discusses how to configure forwarding rules based on multicast MAC addresses of devices on your network. Use these screens to configure static multicast address forwarding. 11.1.1 What You Can Do Use the Static Multicast Forwarding screen (Section 11.2 on page...
Page 132: Configuring Static Multicast Forwarding
Chapter 11 Static Multicast Forwarding Figure 98 Static Multicast Forwarding to A Single Port Figure 99 Static Multicast Forwarding to Multiple Ports 11.2 Configuring Static Multicast Forwarding Use this screen to configure rules to forward specific multicast frames, such as streaming or control frames, to specific port(s).
Page 133 Chapter 11 Static Multicast Forwarding Figure 100 Advanced Application > Static Multicast Forwarding The following table describes the labels in this screen. Table 58 Advanced Application > Static Multicast Forwarding LABEL DESCRIPTION Active Select this check box to activate your rule. You may temporarily deactivate a rule without deleting it by clearing this check box.
Page 134 Chapter 11 Static Multicast Forwarding Table 58 Advanced Application > Static Multicast Forwarding (continued) LABEL DESCRIPTION Delete Click Delete to remove the selected entry from the summary table. Cancel Click Cancel to clear the check boxes. XS1930 Series User’s Guide...
Page 135: Filtering
H A P T E R Filtering 12.1 Filtering Overview This chapter discusses MAC address port filtering. Filtering means sifting traffic going through the Switch based on the source and/or destination MAC addresses and VLAN group (ID). 12.1.1 What You Can Do Use the Filtering screen (Section 12.2 on page 135) to create rules for traffic going through the Switch.
Page 136 Chapter 12 Filtering The following table describes the related labels in this screen. Table 59 Advanced Application > Filtering LABEL DESCRIPTION Active Make sure to select this check box to activate your rule. You may temporarily deactivate a rule without deleting it by deselecting this check box. Name Type a descriptive name (up to 32 printable ASCII characters) for this rule.
Page 137: Spanning Tree Protocol
H A P T E R Spanning Tree Protocol 13.1 Spanning Tree Protocol Overview The Switch supports Spanning Tree Protocol (STP), Rapid Spanning Tree Protocol (RSTP) and Multiple Spanning Tree Protocol (MSTP) as defined in the following standards. • IEEE 802.1D Spanning Tree Protocol •...
Page 138 Chapter 13 Spanning Tree Protocol Note: In this user’s guide, “STP” refers to both STP and RSTP. STP Terminology The root bridge is the base of the spanning tree. Path cost is the cost of transmitting a frame onto a LAN through that port. The recommended cost is assigned according to the speed of the link to which a port is attached.
Page 139: Spanning Tree Protocol Status Screen
Chapter 13 Spanning Tree Protocol Table 61 STP Port States PORT STATE DESCRIPTION Listening All BPDUs are received and processed. Note: The listening state does not exist in RSTP. Learning All BPDUs are received and processed. Information frames are submitted to the learning process but not forwarded.
Page 140: Spanning Tree Configuration
Chapter 13 Spanning Tree Protocol 13.3 Spanning Tree Configuration Use the Spanning Tree Configuration screen to activate one of the STP modes on the Switch. Click Configuration in the Advanced Application > Spanning Tree Protocol. Figure 103 Advanced Application > Spanning Tree Protocol > Configuration The following table describes the labels in this screen.
Page 141 Chapter 13 Spanning Tree Protocol Figure 104 Advanced Application > Spanning Tree Protocol > RSTP The following table describes the labels in this screen. Table 63 Advanced Application > Spanning Tree Protocol > RSTP LABEL DESCRIPTION Status Click Status to display the RSTP Status screen (see Figure 105 on page 143).
Page 142: Rapid Spanning Tree Protocol Status
Chapter 13 Spanning Tree Protocol Table 63 Advanced Application > Spanning Tree Protocol > RSTP (continued) LABEL DESCRIPTION Forwarding Delay This is the maximum time (in seconds) the Switch will wait before changing states. This delay is required because every switch must receive information about topology changes before it starts to forward frames.
Page 143 Chapter 13 Spanning Tree Protocol Figure 105 Advanced Application > Spanning Tree Protocol > Status: RSTP The following table describes the labels in this screen. Table 64 Advanced Application > Spanning Tree Protocol > Status: RSTP LABEL DESCRIPTION Configuration Click Configuration to specify which STP mode you want to activate. RSTP Click RSTP to edit RSTP settings on the Switch.
Page 144: Configure Multiple Spanning Tree Protocol
Chapter 13 Spanning Tree Protocol Table 64 Advanced Application > Spanning Tree Protocol > Status: RSTP (continued) LABEL DESCRIPTION Port Role This field displays the role of the port in STP. • Root - A forwarding port on a non-root bridge, which has the lowest path cost and is the best port from the non-root bridge to the root bridge.
Page 145 Chapter 13 Spanning Tree Protocol Figure 106 Advanced Application > Spanning Tree Protocol > MSTP The following table describes the labels in this screen. Table 65 Advanced Application > Spanning Tree Protocol > MSTP LABEL DESCRIPTION Status Click Status to display the MSTP Status screen (see Figure 108 on page 149).
Page 146 Chapter 13 Spanning Tree Protocol Table 65 Advanced Application > Spanning Tree Protocol > MSTP (continued) LABEL DESCRIPTION Hello Time This is the time interval in seconds between BPDU (Bridge Protocol Data Units) configuration message generations by the root switch. The allowed range is 1 to 10 seconds. Max Age This is the maximum time (in seconds) the Switch can wait without receiving a BPDU before attempting to reconfigure.
Page 147: Multiple Spanning Tree Protocol Port Configuration
Chapter 13 Spanning Tree Protocol Table 65 Advanced Application > Spanning Tree Protocol > MSTP (continued) LABEL DESCRIPTION Priority Configure the priority for each port here. Priority decides which port should be disabled when more than one port forms a loop in a switch.
Page 148: Multiple Spanning Tree Protocol Status
Chapter 13 Spanning Tree Protocol The following table describes the labels in this screen. Table 66 Advanced Application > Spanning Tree Protocol > MSTP > Port LABEL DESCRIPTION MSTP Click MSTP to edit MSTP settings on the Switch. Port This field displays the port number. * means all ports. Settings in this row apply to all ports.
Page 149 Chapter 13 Spanning Tree Protocol Figure 108 Advanced Application > Spanning Tree Protocol > Status: MSTP The following table describes the labels in this screen. Table 67 Advanced Application > Spanning Tree Protocol > Status: MSTP LABEL DESCRIPTION Configuration Click Configuration to specify which STP mode you want to activate. RSTP Click RSTP to edit RSTP settings on the Switch.
Page 150 Chapter 13 Spanning Tree Protocol Table 67 Advanced Application > Spanning Tree Protocol > Status: MSTP (continued) LABEL DESCRIPTION Configuration This field displays the configuration name for this MST region. Name Revision Number This field displays the revision number for this MST region. Configuration A configuration digest is generated from the VLAN-MSTI mapping information.
Page 151: Technical Reference
Chapter 13 Spanning Tree Protocol Table 67 Advanced Application > Spanning Tree Protocol > Status: MSTP (continued) LABEL DESCRIPTION Designated Port ID This field displays the priority and number of the bridge port (on the designated bridge), through which the designated bridge transmits the stored configuration messages. Designated Cost This field displays the path cost to the LAN segment to which the port is connected when the port is a designated port.
Page 152: Mst Region
Chapter 13 Spanning Tree Protocol 13.8.2 MST Region An MST region is a logical grouping of multiple network devices that appears as a single device to the rest of the network. Each MSTP-enabled device can only belong to one MST region. When BPDUs enter an MST region, external path cost (of paths outside this region) is increased by one.
Page 153 Chapter 13 Spanning Tree Protocol Figure 112 MSTP and Legacy RSTP Network Example XS1930 Series User’s Guide...
Page 154: Bandwidth Control
H A P T E R Bandwidth Control 14.1 Bandwidth Control Overview This chapter shows you how you can cap the maximum bandwidth using the Bandwidth Control screen. Bandwidth control means defining a maximum allowable bandwidth for incoming and/or out-going traffic flows on a port.
Page 155 Chapter 14 Bandwidth Control The following table describes the related labels in this screen. Table 68 Advanced Application > Bandwidth Control LABEL DESCRIPTION Active Select this check box to enable bandwidth control on the Switch. Port This field displays the port number. * means all ports. Settings in this row apply to all ports.
Page 156: Broadcast Storm Control
H A P T E R Broadcast Storm Control 15.1 Broadcast Storm Control Overview This chapter introduces and shows you how to configure the broadcast storm control feature. Broadcast storm control limits the number of broadcast, multicast and destination lookup failure (DLF) packets the Switch receives per second on the ports.
Page 157 Chapter 15 Broadcast Storm Control The following table describes the labels in this screen. Table 69 Advanced Application > Broadcast Storm Control LABEL DESCRIPTION Active Select this check box to enable traffic storm control on the Switch. Clear this check box to disable this feature.
Page 158: Mirroring
H A P T E R Mirroring 16.1 Mirroring Overview This chapter discusses port mirroring setup screens. Port mirroring allows you to copy a traffic flow to a monitor port (the port you copy the traffic to) in order that you can examine the traffic from the monitor port without interference. 16.1.1 What You Can Do Use the Mirroring screen (Section 16.2 on page...
Page 159 Chapter 16 Mirroring The following table describes the labels in this screen. Table 70 Advanced Application > Mirroring LABEL DESCRIPTION Active Select this check box to activate port mirroring on the Switch. Clear this check box to disable the feature. Monitor Port The monitor port is the port you copy the traffic to in order to examine it in more detail without interfering with the traffic flow on the original port(s).
Page 160: Link Aggregation
H A P T E R Link Aggregation 17.1 Link Aggregation Overview This chapter shows you how to logically aggregate physical links to form one logical, higher-bandwidth link. Link aggregation (trunking) is the grouping of physical ports into one logical higher-capacity link. You may want to trunk ports if for example, it is cheaper to use multiple lower-speed links than to under-utilize a high-speed, but more costly, single-port link.
Page 161: Link Aggregation Status
Chapter 17 Link Aggregation • You must connect all ports point-to-point to the same Ethernet switch and configure the ports for LACP trunking. • LACP only works on full-duplex links. • All ports in the same trunk group must have the same media type, speed, duplex mode and flow control settings.
Page 162: Link Aggregation Setting
Chapter 17 Link Aggregation Table 73 Advanced Application > Link Aggregation LABEL DESCRIPTION Synchronized These are the ports that are currently transmitting data as one logical link in this trunk group. Ports Aggregator ID Link Aggregator ID consists of the following: system priority, MAC address, key, port priority and port number.
Page 163 Chapter 17 Link Aggregation Figure 117 Advanced Application > Link Aggregation > Link Aggregation Setting The following table describes the labels in this screen. Table 74 Advanced Application > Link Aggregation > Link Aggregation Setting LABEL DESCRIPTION Link This is the only screen you need to configure to enable static link aggregation. Aggregation Setting Group ID...
Page 164: Link Aggregation Control Protocol
Chapter 17 Link Aggregation Table 74 Advanced Application > Link Aggregation > Link Aggregation Setting (continued) LABEL DESCRIPTION Group Select the trunk group to which a port belongs. Note: When you enable the port security feature on the Switch and configure port security settings for a port, you cannot include the port in an active trunk group.
Page 165: Technical Reference
Chapter 17 Link Aggregation The following table describes the labels in this screen. Table 75 Advanced Application > Link Aggregation > Link Aggregation Setting > LACP LABEL DESCRIPTION Link Note: Do not configure this screen unless you want to enable dynamic link Aggregation aggregation.
Page 166 Chapter 17 Link Aggregation Figure 119 Trunking Example - Physical Connections Configure static trunking - Click Advanced Application > Link Aggregation > Link Aggregation Setting. In this screen activate trunk group T1, select the traffic distribution algorithm used by this group and select the ports that should belong to this group as shown in the figure below.
Page 167: Port Authentication
H A P T E R Port Authentication 18.1 Port Authentication Overview This chapter describes the IEEE 802.1x and MAC authentication methods. Port authentication is a way to validate access to ports on the Switch to clients based on an external server (authentication server).
Page 168: Mac Authentication
Chapter 18 Port Authentication Figure 121 IEEE 802.1x Authentication Process 18.1.3 MAC Authentication MAC authentication works in a very similar way to IEEE 802.1x authentication. The main difference is that the Switch does not prompt the client for login credentials. The login credentials are based on the source MAC address of the client connecting to a port on the Switch along with a password configured specifically for MAC authentication on the Switch.
Page 169: Port Authentication Configuration
Chapter 18 Port Authentication 18.2 Port Authentication Configuration To enable port authentication, first activate the port authentication method(s) (both on the Switch and the port(s)), then configure the RADIUS server settings in the AAA > RADIUS Server Setup screen. Click Advanced Application > Port Authentication in the navigation panel to display the screen as shown.
Page 170: Guest Vlan
Chapter 18 Port Authentication The following table describes the labels in this screen. Table 76 Advanced Application > Port Authentication > 802.1x LABEL DESCRIPTION Active Select this check box to permit 802.1x authentication on the Switch. Note: You must first enable 802.1x authentication on the Switch before configuring it on each port.
Page 171 Chapter 18 Port Authentication VLAN, such as the Internet. The rights granted to the Guest VLAN depends on how the network administrator configures switches or routers with the guest network feature. Figure 125 Guest VLAN Example Use this screen to enable and assign a guest VLAN to a port. In the Port Authentication > 802.1x screen click Guest Vlan to display the configuration screen as shown.
Page 172: Activate Mac Authentication
Chapter 18 Port Authentication Table 77 Advanced Application > Port Authentication > 802.1x > Guest VLAN (continued) LABEL DESCRIPTION Guest Vlan A guest VLAN is a pre-configured VLAN on the Switch that allows non-authenticated users to access limited network resources through the Switch. You must also enable IEEE 802.1x authentication on the Switch and the associated ports.
Page 173 Chapter 18 Port Authentication Figure 127 Advanced Application > Port Authentication > MAC Authentication The following table describes the labels in this screen. Table 78 Advanced Application > Port Authentication > MAC Authentication LABEL DESCRIPTION Active Select this check box to permit MAC authentication on the Switch. Note: You must first enable MAC authentication on the Switch before configuring it on each port.
Page 174 Chapter 18 Port Authentication Table 78 Advanced Application > Port Authentication > MAC Authentication (continued) LABEL DESCRIPTION Timeout Specify the amount of time before the Switch allows a client MAC address that fails authentication to try and authenticate again. Maximum time is 3000 seconds. When a client fails MAC authentication, its MAC address is learned by the MAC address table with a status of denied.
Page 175: Port Security
H A P T E R Port Security 19.1 Port Security Overview This chapter shows you how to set up port security. Port security allows only packets with dynamically learned MAC addresses and/or configured static MAC addresses to pass through a port on the Switch. The Switch can learn up to 16K MAC addresses in total with no limit on individual ports other than the sum cannot exceed 16K.
Page 176 Chapter 19 Port Security Figure 128 Advanced Application > Port Security The following table describes the labels in this screen. Table 79 Advanced Application > Port Security LABEL DESCRIPTION Port Security Active Select this option to enable port security on the Switch. Port This field displays the port number.
Page 177: Time Range
H A P T E R Time Range 20.1 Time Range Overview You can set up one-time and recurring schedules for time-oriented features, such as PoE and classifier. The Switch supports one-time and recurring schedules. One-time schedules are effective only once, while recurring schedules usually repeat.
Page 178 Chapter 20 Time Range The following table describes the labels in this screen. Table 80 Advanced Application > Time Range LABEL DESCRIPTION Name Enter a descriptive name for this rule for identifying purposes. Type Select Absolute to create a one-time schedule. One-time schedules begin on a specific start date and time and end on a specific stop date and time.
Page 179: Classifier
H A P T E R Classifier 21.1 Classifier Overview This chapter introduces and shows you how to configure the packet classifier on the Switch. It also discusses Quality of Service (QoS) and classifier concepts as employed by the Switch. 21.1.1 What You Can Do •...
Page 180: Classifier Configuration
Chapter 21 Classifier Click Advanced Application > Classifier in the navigation panel to display the configuration screen as shown. Figure 130 Advanced Application > Classifier The following table describes the labels in this screen. Table 81 Advanced Application > Classifier LABEL DESCRIPTION Index...
Page 181 Chapter 21 Classifier Figure 131 Advanced Application > Classifier > Classifier Configuration The following table describes the labels in this screen. Table 82 Advanced Application > Classifier > Classifier Configuration LABEL DESCRIPTION Active Select this option to enable this rule. Name Enter a descriptive name for this rule for identifying purposes.
Page 182 Chapter 21 Classifier Table 82 Advanced Application > Classifier > Classifier Configuration (continued) LABEL DESCRIPTION Weight Enter a number between 0 and 65535 to specify the rule’s weight. When the match order is in manual mode in the Classifier Global Setting screen, a higher weight means a higher priority. Select this option to have the Switch create a log message when the rule is applied and record the number of matched packets in a particular time interval.
Page 183 Chapter 21 Classifier Table 82 Advanced Application > Classifier > Classifier Configuration (continued) LABEL DESCRIPTION DSCP Select Any to classify traffic from any DSCP or select the second option and specify a DSCP (DiffServ Code Point) number between 0 and 63 in the field provided. IPv4/IPv6 Preceden Select Any to classify traffic from any precedence or select the second option and specify an IP...
Page 184: Viewing And Editing Classifier Configuration Summary
Chapter 21 Classifier 21.3.1 Viewing and Editing Classifier Configuration Summary To view a summary of the classifier configuration, scroll down to the summary table at the bottom of the Classifier screen. To change the settings of a rule, click a number in the Index field. Note: When two rules conflict with each other, a higher layer rule has priority over lower layer rule.
Page 185: Classifier Global Setting Configuration
Chapter 21 Classifier In the Internet Protocol there is a field, called “Protocol”, to identify the next level protocol. The following table shows some common protocol types and the corresponding protocol number. Refer to http:// www.iana.org/assignments/protocol-numbers for a complete list. Table 85 Common IP Protocol Types and Protocol Numbers PROTOCOL TYPE PROTOCOL NUMBER...
Page 186: Classifier Example
Chapter 21 Classifier The following table describes the labels in this screen. Table 87 Advanced Application > Classifier > Classifier Configuration > Classifier Global Setting LABEL DESCRIPTION Match Select manual to have classifier rules applied according to the weight of each rule you configured in Order Advanced Application >...
Page 187 Chapter 21 Classifier Figure 134 Classifier: Example XS1930 Series User’s Guide...
Page 188: Policy Rule
H A P T E R Policy Rule 22.1 Policy Rules Overview This chapter shows you how to configure policy rules. A classifier distinguishes traffic into flows based on the configured criteria (refer to Chapter 21 on page for more information). A policy rule ensures that a traffic flow gets the requested treatment in the network.
Page 189 Chapter 22 Policy Rule Figure 135 Advanced Application > Policy Rule The following table describes the labels in this screen. Table 88 Advanced Application > Policy Rule LABEL DESCRIPTION Active Select this option to enable the policy. Name Enter a descriptive name for identification purposes. Classifier(s) This field displays the active classifier(s) you configure in the Classifier screen.
Page 190 Chapter 22 Policy Rule Table 88 Advanced Application > Policy Rule (continued) LABEL DESCRIPTION Action Specify the action(s) the Switch takes on the associated classified traffic flow. Note: You can specify only one action (pair) in a policy rule. To have the Switch take multiple actions on the same traffic flow, you need to define multiple classifiers with the same criteria and apply different policy rules.
Page 191: Policy Example
Chapter 22 Policy Rule 22.3 Policy Example The figure below shows an example Policy screen where you configure a policy to limit bandwidth on a traffic flow classified using the Example classifier (refer to Section 21.5 on page 186). Figure 136 Policy Example XS1930 Series User’s Guide...
Page 192: Queuing Method
H A P T E R Queuing Method 23.1 Queuing Method Overview This chapter introduces the queuing methods supported. Queuing is used to help solve performance degradation when there is network congestion. Use the Queuing Method screen to configure queuing algorithms for outgoing traffic. See also Priority Queue Assignment in Switch Setup and 802.1p Priority in Port Setup for related information.
Page 193: Configuring Queuing
Chapter 23 Queuing Method Weighted Round Robin Scheduling (WRR) uses the same algorithm as round robin scheduling, but services queues based on their priority and queue weight (the number you configure in the queue Weight field) rather than a fixed amount of bandwidth. WRR is activated only when a port has more traffic than it can handle.
Page 194 Chapter 23 Queuing Method The following table describes the labels in this screen. Table 89 Advanced Application > Queuing Method LABEL DESCRIPTION Port This label shows the port you are configuring. * means all ports. Settings in this row apply to all ports. Use this row only if you want to make some settings the same for all ports.
Page 195: Multicast
H A P T E R Multicast 24.1 Multicast Overview This chapter shows you how to configure various multicast features. Traditionally, IP packets are transmitted in one of either two ways - Unicast (1 sender to 1 recipient) or Broadcast (1 sender to everybody on the network). Multicast delivers IP packets to just a group of hosts on the network.
Page 196: Multicast Setup
Chapter 24 Multicast The Switch forwards multicast traffic destined for multicast groups (that it has learned from IGMP snooping or that you have manually configured) to ports that are members of that group. IGMP snooping generates no additional network traffic, allowing you to significantly reduce multicast traffic passing through your Switch.
Page 197: Igmp Snooping
Chapter 24 Multicast The following table describes the labels in this screen. Table 91 Advanced Application > Multicast > IPv4 Multicast LABEL DESCRIPTION Index This is the index number of the entry. This field displays the multicast VLAN ID. Port This field displays the port number that belongs to the multicast group.
Page 198 Chapter 24 Multicast Table 92 Advanced Application > Multicast > IPv4 Multicast > IGMP Snooping (continued) (continued) LABEL DESCRIPTION Querier Select this option to allow the Switch to send IGMP General Query messages to the VLANs with the multicast hosts attached. Report Proxy Select this option to allow the Switch to act as the IGMP report proxy and leave proxy.
Page 199 Chapter 24 Multicast Table 92 Advanced Application > Multicast > IPv4 Multicast > IGMP Snooping (continued) (continued) LABEL DESCRIPTION Normal Leave Enter an IGMP normal leave timeout value (from 200 to 6,348,800) in miliseconds. Select this option to have the Switch use this timeout to update the forwarding table for the port. In normal leave mode, when the Switch receives an IGMP leave message from a host on a port, it forwards the message to the multicast router.
Page 200: Igmp Snooping Vlan
Chapter 24 Multicast 24.3.2 IGMP Snooping VLAN Click Advanced Application > Multicast > IPv4 Multicast in the navigation panel. Click the IGMP Snooping link and then the IGMP Snooping VLAN link to display the screen as shown. See IGMP Snooping and VLANs on page 196 for more information on IGMP Snooping VLAN.
Page 201: Igmp Filtering Profile
Chapter 24 Multicast Table 93 Advanced Application > Multicast > IPv4 Multicast > IGMP Snooping > IGMP Snooping VLAN LABEL DESCRIPTION Clear Click Clear to reset the fields to the factory defaults. Index This is the index number of the IGMP snooping VLAN entry in the table. Click on an index number to view more details or change the settings.
Page 202 Chapter 24 Multicast Table 94 Advanced Application > Multicast > IPv4 Multicast > IGMP Snooping > IGMP Filtering Profile LABEL DESCRIPTION End Address Type the ending multicast IP address for a range of IP addresses that you want to belong to the IGMP filter profile.
Page 203: Aaa
H A P T E R 25.1 AAA Overview This chapter describes how to configure authentication, authorization and accounting settings on the Switch. Authentication is the process of determining who a user is and validating access to the Switch. The Switch can authenticate users who try to log in based on user accounts configured on the Switch itself.
Page 204: What You Need To Know
Chapter 25 AAA 25.1.2 What You Need to Know Local User Accounts By storing user profiles locally on the Switch, your Switch is able to authenticate and authorize users without interacting with a network AAA server. However, there is a limit on the number of users you may authenticate in this way (See Section 36.4 on page 299).
Page 205 Chapter 25 AAA Figure 145 Advanced Application > AAA > RADIUS Server Setup The following table describes the labels in this screen. Table 96 Advanced Application > AAA > RADIUS Server Setup LABEL DESCRIPTION Authentication Use this section to configure your RADIUS authentication settings. Server Mode This field is only valid if you configure multiple RADIUS servers.
Page 206: Aaa Setup
Chapter 25 AAA Table 96 Advanced Application > AAA > RADIUS Server Setup (continued) LABEL DESCRIPTION Timeout Specify the amount of time in seconds that the Switch waits for an accounting request response from the RADIUS accounting server. Index This is a read-only number representing a RADIUS accounting server entry. IP Address Enter the IP address of an external RADIUS accounting server in dotted decimal notation.
Page 207 Chapter 25 AAA The following table describes the labels in this screen. Table 97 Advanced Application > AAA > AAA Setup LABEL DESCRIPTION Authentication Use this section to specify the methods used to authenticate users accessing the Switch. Login These fields specify which database the Switch should use (first, second and third) to authenticate administrator accounts (users for Switch management).
Page 208: Technical Reference
Chapter 25 AAA Table 97 Advanced Application > AAA > AAA Setup (continued) LABEL DESCRIPTION Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.
Page 209: Supported Radius Attributes
Chapter 25 AAA Table 98 Supported VSAs FUNCTION ATTRIBUTE Egress Bandwidth Vendor-Id = 890 Assignment Vendor-Type = 2 Vendor-data = egress rate (Kbps in decimal format) Privilege Assignment Vendor-ID = 890 Vendor-Type = 3 Vendor-Data = "shell:priv-lvl=N" Vendor-ID = 9 (CISCO) (CISCO-AVPAIR) Vendor-Type = 1...
Page 210 Chapter 25 AAA 25.5.3.1 Attributes Used for Authenticating Privilege Access User-Name - The format of the User-Name attribute is $enab#$, where # is the privilege level (1-14). User-Password NAS-Identifier NAS-IP-Address 25.5.3.2 Attributes Used to Login Users User-Name User-Password NAS-Identifier NAS-IP-Address 25.5.3.3 Attributes Used by the IEEE 802.1x Authentication User-Name NAS-Identifier...
Page 211: Loop Guard
H A P T E R Loop Guard 26.1 Loop Guard Overview This chapter shows you how to configure the Switch to guard against loops on the edge of your network. Loop guard allows you to configure the Switch to shut down a port if it detects that packets sent out on that port loop back to the Switch.
Page 212 Chapter 26 Loop Guard The following figure shows port N on switch A connected to switch B. Switch B is in loop state. When broadcast or multicast packets leave port N and reach switch B, they are sent back to port N on A as they are rebroadcast from B.
Page 213: Loop Guard Setup
Chapter 26 Loop Guard 26.2 Loop Guard Setup Click Advanced Application > Loop Guard in the navigation panel to display the screen as shown. Note: The loop guard feature can not be enabled on the ports that have Spanning Tree Protocol (RSTP or MSTP) enabled.
Page 214: Layer 2 Protocol Tunneling
H A P T E R Layer 2 Protocol Tunneling 27.1 Layer 2 Protocol Tunneling Overview This chapter shows you how to configure layer 2 protocol tunneling on the Switch. 27.1.1 What You Can Do Use the Layer 2 Protocol Tunnel screen (Section 27.2 on page 215) to enable layer 2 protocol tunneling on the Switch and specify a MAC address with which the Switch uses to encapsulate the layer 2...
Page 215: Configuring Layer 2 Protocol Tunneling
Chapter 27 Layer 2 Protocol Tunneling To emulate a point-to-point topology between two customer switches at different sites, such as A and B, you can enable protocol tunneling on edge switches 1 and 2 for PAgP (Port Aggregation Protocol), LACP or UDLD (UniDirectional Link Detection). Figure 153 L2PT Network Example 27.1.2.1 Layer 2 Protocol Tunneling Mode Each port can have two layer 2 protocol tunneling modes, Access and Tunnel.
Page 216 Chapter 27 Layer 2 Protocol Tunneling Figure 154 Advanced Application > Layer 2 Protocol Tunneling The following table describes the labels in this screen. Table 101 Advanced Application > Layer 2 Protocol Tunneling LABEL DESCRIPTION Active Select this to enable layer 2 protocol tunneling on the Switch. Destination Specify a MAC address with which the Switch uses to encapsulate the layer 2 protocol packets MAC Address...
Page 217 Chapter 27 Layer 2 Protocol Tunneling Table 101 Advanced Application > Layer 2 Protocol Tunneling (continued) LABEL DESCRIPTION Point to Point The Switch supports PAgP (Port Aggregation Protocol), LACP (Link Aggregation Control Protocol) and UDLD (UniDirectional Link Detection) tunneling for a point-to-point topology. Both PAgP and UDLD are Cisco’s proprietary data link layer protocols.
Page 218: Pppoe
H A P T E R PPPoE 28.1 PPPoE Intermediate Agent Overview This chapter describes how the Switch gives a PPPoE termination server additional information that the server can use to identify and authenticate a PPPoE client. A PPPoE Intermediate Agent (PPPoE IA) is deployed between a PPPoE server and PPPoE clients. It helps the PPPoE server identify and authenticate clients by adding subscriber line specific information to PPPoE discovery packets from clients on a per-port or per-port-per-VLAN basis before forwarding them to the PPPoE server.
Page 219 Chapter 28 PPPoE The Tag_Type is 0x0105 for vendor-specific tags, as defined in RFC 2516. The Tag_Len indicates the length of Value, i1 and i2. The Value is the 32-bit number 0x00000DE9, which stands for the “ADSL Forum” IANA entry. i1 and i2 are PPPoE intermediate agent sub-options, which contain additional information about the PPPoE client.
Page 220: Pppoe Screen
Chapter 28 PPPoE Working Text (WT)-101. The default access node identifier is the host name of the PPPoE intermediate agent and the eth indicates “Ethernet”. Table 106 PPPoE IA Circuit ID Sub-option Format: Defined in WT-101 SubOpt Length Value 0x01 Access Space Space...
Page 221: Pppoe Intermediate Agent
Chapter 28 PPPoE 28.3 PPPoE Intermediate Agent Use this screen to configure the Switch to give a PPPoE termination server additional subscriber information that the server can use to identify and authenticate a PPPoE client. Click Advanced Application > PPPoE > Intermediate Agent in the navigation panel to display the screen as shown.
Page 222: Pppoe Ia Per-Port
Chapter 28 PPPoE Table 107 Advanced Application > PPPoE > Intermediate Agent (continued) LABEL DESCRIPTION Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.
Page 223: Pppoe Ia Per-Port Per-Vlan
Chapter 28 PPPoE Table 108 Advanced Application > PPPoE > Intermediate Agent > Port (continued) LABEL DESCRIPTION Server Trusted Select whether this port is a trusted port (Trusted) or an untrusted port (Untrusted). State Trusted ports are uplink ports connected to PPPoE servers. If a PADO (PPPoE Active Discovery Offer), PADS (PPPoE Active Discovery Session-confirmation), or PADT (PPPoE Active Discovery Terminate) packet is sent from a PPPoE server and received on a trusted port, the Switch forwards it to all other ports.
Page 224: Pppoe Ia For Vlan
Chapter 28 PPPoE The following table describes the labels in this screen. Table 109 Advanced Application > PPPoE > Intermediate Agent > Port > VLAN LABEL DESCRIPTION Show Port Enter a port number to show the PPPoE Intermediate Agent settings for the specified VLAN(s) on the port.
Page 225 Chapter 28 PPPoE The following table describes the labels in this screen. Table 110 Advanced Application > PPPoE > Intermediate Agent > VLAN LABEL DESCRIPTION Show VLAN Use this section to specify the VLANs you want to configure in the section below. Start VID Enter the lowest VLAN ID you want to configure in the section below.
Page 226: Error Disable
H A P T E R Error Disable 29.1 Error Disable Overview This chapter shows you how to configure the rate limit for control packets on a port, and set the Switch to take an action (such as to shut down a port or stop sending packets) on a port when the Switch detects a pre-configured error.
Page 227: Error Disable Screen
Chapter 29 Error Disable 29.2 Error Disable Screen Use this screen to go to the screens where you can configure error disable related settings. Click Advanced Application > Errdisable in the navigation panel to open the following screen. Figure 160 Advanced Application >...
Page 228 Chapter 29 Error Disable Figure 161 Advanced Application > Errdisable > Errdisable Status The following table describes the labels in this screen. Table 112 Advanced Application > Errdisable > Errdisable Status LABEL DESCRIPTION Inactive-reason mode reset Port List Enter the number of the port(s) (separated by a comma) on which you want to reset inactive- reason status.
Page 229: Cpu Protection Configuration
Chapter 29 Error Disable Table 112 Advanced Application > Errdisable > Errdisable Status (continued) LABEL DESCRIPTION Mode This field shows the action that the Switch takes for the cause. • inactive-port - The Switch disables the port. • inactive-reason - The Switch drops all the specified control packets (such as BPDU) on the port.
Page 230: Error-Disable Detect Configuration
Chapter 29 Error Disable Figure 162 Advanced Application > Errdisable > CPU protection The following table describes the labels in this screen. Table 113 Advanced Application > Errdisable > CPU protection LABEL DESCRIPTION Reason Select the type of control packet you want to configure here. Port This field displays the port number.
Page 231: Error-Disable Recovery Configuration
Chapter 29 Error Disable Figure 163 Advanced Application > Errdisable > Errdisable Detect The following table describes the labels in this screen. Table 114 Advanced Application > Errdisable > Errdisable Detect LABEL DESCRIPTION Cause This field displays the types of control packet that may cause CPU overload. Use this row to make the setting the same for all entries.
Page 232 Chapter 29 Error Disable Figure 164 Advanced Application > Errdisable > Errdisable Recovery The following table describes the labels in this screen. Table 115 Advanced Application > Errdisable > Errdisable Recovery LABEL DESCRIPTION Active Select this option to turn on the error-disable recovery function on the Switch. Reason This field displays the supported features that allow the Switch to shut down a port or discard packets on a port according to the feature requirements and what action you configure.
Page 233: Green Ethernet
H A P T E R Green Ethernet This chapter shows you how to configure the Switch to reduce the power consumed by switch ports. 30.1 Green Ethernet Overview Green Ethernet reduces switch port power consumption in the following ways. IEEE 802.3az Energy Efficient Ethernet (EEE) If EEE is enabled, both sides of a link support EEE and there is no traffic, the port enters Low Power Idle (LPI) mode.
Page 234 Chapter 30 Green Ethernet Figure 165 Advanced Application > Green Ethernet The following table describes the labels in this screen. Table 116 Advanced Application > Green Ethernet LABEL DESCRIPTION Select this to activate Energy Efficient Ethernet globally. Auto Power Select this to activate Auto Power Down globally. Down Short Reach Select this to activate Short Reach globally.
Page 235: Link Layer Discovery Protocol (Lldp)
H A P T E R Link Layer Discovery Protocol (LLDP) 31.1 LLDP Overview The LLDP (Link Layer Discovery Protocol) is a layer 2 protocol. It allows a network device to advertise its identity and capabilities on the local network. It also allows the device to maintain and store information from adjacent devices which are directly connected to the network device.
Page 236: Lldp-Med Overview
Chapter 31 Link Layer Discovery Protocol (LLDP) The next figure demonstrates that the network devices Switches and Routers (S and R) transmit and receive device information via LLDPDU and the network manager can query the information using Simple Network Management Protocol (SNMP). Figure 166 LLDP Overview 31.2 LLDP-MED Overview LLDP-MED (Link Layer Discovery Protocol for Media Endpoint Devices) is an extension to the standard...
Page 237: Lldp Screens
Chapter 31 Link Layer Discovery Protocol (LLDP) Figure 167 LLDP-MED Overview 31.3 LLDP Screens Click Advanced Application > LLDP in the navigation panel to display the screen as shown next. Figure 168 Advanced Application > LLDP The following table describes the labels in this screen. Table 117 Advanced Application >...
Page 238: Lldp Local Status
Chapter 31 Link Layer Discovery Protocol (LLDP) Table 117 Advanced Application > LLDP (continued) LABEL DESCRIPTION LLDP-MED Click here to show a screen to configure LLDP-MED (Link Layer Discovery Protocol for Media Network Policy Endpoint Devices) network policy parameters. LLDP-MED Click here to show a screen to configure LLDP-MED (Link Layer Discovery Protocol for Media Location Endpoint Devices) location parameters.
Page 239: Lldp Local Port Status Detail
Chapter 31 Link Layer Discovery Protocol (LLDP) The following table describes the labels in this screen. Table 118 Advanced Application > LLDP > LLDP Local Status LABEL DESCRIPTION Basic TLV Chassis ID TLV This displays the chassis ID of the local Switch, that is the Switch you’re configuring. The chassis ID is identified by the chassis ID subtype.
Page 240 Chapter 31 Link Layer Discovery Protocol (LLDP) Figure 170 Advanced Application > LLDP > LLDP Local Status > LLDP Local Port Status Detail (Basic TLV) Figure 171 Advanced Application > LLDP > LLDP Local Status > LLDP Local Port Status Detail (MED TLV) XS1930 Series User’s Guide...
Page 241 Chapter 31 Link Layer Discovery Protocol (LLDP) The following table describes the labels in this screen. Table 119 Advanced Application > LLDP > LLDP Local Status > LLDP Local Port Status Detail LABEL DESCRIPTION Basic TLV These are the Basic TLV flags Port ID TLV The port ID TLV identifies the specific port that transmitted the LLDP frame.
Page 242: Lldp Remote Status
Chapter 31 Link Layer Discovery Protocol (LLDP) Table 119 Advanced Application > LLDP > LLDP Local Status > LLDP Local Port Status Detail LABEL DESCRIPTION Network Policy This displays a network policy for the specified application. • Voice • Voice-Signaling •...
Page 243: Lldp Remote Port Status Detail
Chapter 31 Link Layer Discovery Protocol (LLDP) 31.5.1 LLDP Remote Port Status Detail This screen displays detailed LLDP status of the remote device connected to the Switch. Click Advanced Application > LLDP > LLDP Remote Status (Click Here) and then click an index number, for example 1, in the Index column in the LLDP Remote Status screen to display the screen as shown next.
Page 244 Chapter 31 Link Layer Discovery Protocol (LLDP) Table 121 Advanced Application > LLDP > LLDP Remote Status > LLDP Remote Port Status Detail (Basic TLV) LABEL DESCRIPTION Time To Live TLV This displays the time-to-live (TTL) multiplier of LLDP frames. The device information on the neighboring devices ages out and is discarded when its corresponding TTL expires.
Page 245 Chapter 31 Link Layer Discovery Protocol (LLDP) Figure 174 Advanced Application > LLDP > LLDP Remote Status > LLDP Remote Port Status Detail> (Dot 1 and Dot3 TLV) The following table describes the labels in the Dot1 and Dot3 parts of the screen. Table 122 Advanced Application >...
Page 246 Chapter 31 Link Layer Discovery Protocol (LLDP) Table 122 Advanced Application > LLDP > LLDP Remote Status > LLDP Remote Port Status Detail (Dot1 and Dot3 TLV) LABEL DESCRIPTION Vlan Name TLV This shows the VLAN ID and name for remote device port. •...
Page 247 Chapter 31 Link Layer Discovery Protocol (LLDP) Figure 175 Advanced Application > LLDP > LLDP Remote Status > LLDP Remote Port Status Detail (MED TLV) XS1930 Series User’s Guide...
Page 248 Chapter 31 Link Layer Discovery Protocol (LLDP) The following table describes the labels in the MED TLV part of the screen. Table 123 Advanced Application > LLDP > LLDP Remote Status > LLDP Remote Port Status Detail (MED TLV) LABEL DESCRIPTION MED TLV LLDP Media Endpoint Discovery (MED) is an extension of LLDP that provides additional...
Page 249: Lldp Configuration
Chapter 31 Link Layer Discovery Protocol (LLDP) 31.6 LLDP Configuration Use this screen to configure global LLDP settings on the Switch. Click Advanced Application > LLDP > LLDP Configuration (Click Here) to display the screen as shown next. Figure 176 Advanced Application > LLDP > LLDP Configuration The following table describes the labels in this screen.
Page 250: Basic Tlv Setting
Chapter 31 Link Layer Discovery Protocol (LLDP) Table 124 Advanced Application > LLDP > LLDP Configuration LABEL DESCRIPTION Use this row to make the setting the same for all ports. Use this row first and then make adjustments to each port if necessary. Changes in this row are copied to all the ports as soon as you make them.
Page 251: Org-Specific Tlv Setting
Chapter 31 Link Layer Discovery Protocol (LLDP) Table 125 Advanced Application > LLDP > LLDP Configuration > Basic TLV Setting LABEL DESCRIPTION System Capabilities Select the check box(es) to enable or to disable the sending of System Capabilities TLVs on the port(s).
Page 252: Lldp-Med Configuration
Chapter 31 Link Layer Discovery Protocol (LLDP) Table 126 Advanced Application > LLDP > LLDP Configuration > Org-specific TLV Setting LABEL DESCRIPTION MAC/PHY Select the check box(es) to enable or disable the sending of IEEE 802.3 MAC/PHY Configuration/Status TLVs on the port(s). All check boxes in this column are enabled by default.
Page 253: Lldp-Med Network Policy
Chapter 31 Link Layer Discovery Protocol (LLDP) Table 127 Advanced Application > LLDP > LLDP-MED Configuration LABEL DESCRIPTION Apply Click Apply to save the changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.
Page 254: Lldp-Med Location
Chapter 31 Link Layer Discovery Protocol (LLDP) Table 128 Advanced Application > LLDP > LLDP-MED Network Policy LABEL DESCRIPTION DSCP Enter the DSCP value of the network policy. The value is defined from 0 through 63 with the 0 representing use of the default DSCP value. Priority Enter the priority value for the network policy.
Page 255 Chapter 31 Link Layer Discovery Protocol (LLDP) Figure 181 Advanced Application > LLDP > LLDP-MED Location The following table describes the labels in this screen. Table 129 Advanced Application > LLDP > LLDP-MED Location LABEL DESCRIPTION Port Enter the port number you want to set up the location within the LLDP-MED network. Location The LLDP-MED uses geographical coordinates and Civic Address to set the location Coordinates...
Page 256 Chapter 31 Link Layer Discovery Protocol (LLDP) Table 129 Advanced Application > LLDP > LLDP-MED Location LABEL DESCRIPTION Altitude Enter the altitude information. The value should be from -2097151 to 2097151 in meters or in floors. • meters • floor Datum Select the appropriate geodetic datum used by GPS.
Page 257 Chapter 31 Link Layer Discovery Protocol (LLDP) Table 129 Advanced Application > LLDP > LLDP-MED Location LABEL DESCRIPTION Select an entry’s check box to select a specific entry. Otherwise, select the check box in the table heading row to select all entries. Delete Check the locations that you want to remove, then click the Delete button.
Page 258: Static Route
H A P T E R Static Route 32.1 Static Routing Overview This chapter shows you how to configure static routes. The Switch usually uses the default gateway to route outbound traffic from computers on the LAN to the Internet. To have the Switch send data to devices not reachable through the default gateway, use static routes.
Page 259: Static Routing
Chapter 32 Static Route 32.2 Static Routing Click IP Application > Static Routing in the navigation panel to display the screen as shown. Click the link next to IPv4 Static Route to open a screen where you can create IPv4 static routing rules. Click the link next to IPv6 Static Route to open a screen where you can create IPv6 static routing rules.
Page 260: Ipv6 Static Route
Chapter 32 Static Route Table 130 IP Application > Static Routing > IPv4 Static Route (continued) LABEL DESCRIPTION Gateway IP Enter the IP address of the gateway. The gateway is an immediate neighbor of your Switch that Address will forward the packet to the destination. The gateway must be a router on the same segment as your Switch.
Page 261 Chapter 32 Static Route Figure 185 IP Application > Static Routing > IPv6 Static Route The following table describes the related labels you use to create a static route. Table 131 IP Application > Static Routing > IPv6 Static Route LABEL DESCRIPTION Route...
Page 262: Dhcp
H A P T E R DHCP 33.1 DHCP Overview This chapter shows you how to configure the DHCP feature. DHCP (Dynamic Host Configuration Protocol RFC 2131 and RFC 2132) allows individual computers to obtain TCP/IP configuration at start-up from a server. If you configure the Switch as a DHCP relay agent, then the Switch forwards DHCP requests to DHCP server on your network.
Page 263: Dhcp Configuration
Chapter 33 DHCP 33.2 DHCP Configuration Click IP Application > DHCP in the navigation panel to display the screen as shown. Click the link next to DHCPv4 to open screens where you can enable and configure DHCPv4 relay settings and create option 82 profiles.
Page 264: Dhcpv4 Relay
Chapter 33 DHCP 33.4 DHCPv4 Relay Configure DHCP relay on the Switch if the DHCP clients and the DHCP server are not in the same broadcast domain. During the initial IP address leasing, the Switch helps to relay network information (such as the IP address and subnet mask) between a DHCP client and a DHCP server.
Page 265: Dhcpv4 Option 82 Profile
Chapter 33 DHCP 33.4.1.2 Sub-Option Format There are two types of sub-option: “Agent Circuit ID Sub-option” and “Agent Remote ID Sub-option”. They have the following formats. Table 135 DHCP Relay Agent Circuit ID Sub-option Format SubOpt Code Length Value Slot ID, Port ID, VLAN ID, System Name or String (1 byte) (1 byte) Table 136 DHCP Relay Agent Remote ID Sub-option Format...
Page 266: Configuring Dhcpv4 Global Relay
Chapter 33 DHCP The following table describes the labels in this screen. Table 137 IP Application > DHCP > DHCPv4 > Option 82 Profile LABEL DESCRIPTION Name Enter a descriptive name for the profile for identification purposes. You can use up to 32 ASCII characters.
Page 267: Dhcpv4 Global Relay Port Configure
Chapter 33 DHCP Figure 189 IP Application > DHCP > DHCPv4 > Global The following table describes the labels in this screen. Table 138 IP Application > DHCP > DHCPv4 > Global LABEL DESCRIPTION Active Select this check box to enable DHCPv4 relay. Remote DHCP Enter the IP address of a DHCPv4 server in dotted decimal notation.
Page 268: Global Dhcp Relay Configuration Example
Chapter 33 DHCP The following table describes the labels in this screen. Table 139 IP Application > DHCP > DHCPv4 > Global > Port LABEL DESCRIPTION Port Enter the number of port(s) to which you want to apply the specified DHCP option 82 profile. You can enter multiple ports separated by (no space) comma (,) or hyphen (-).
Page 269: Configuring Dhcp Vlan Settings
Chapter 33 DHCP Figure 191 Global DHCP Relay Network Example Configure the DHCP Relay screen as shown. Make sure you select a DHCP option 82 profile (default1 in this example) to set the Switch to send additional information (such as the VLAN ID) together with the DHCP requests to the DHCP server.
Page 270 Chapter 33 DHCP Figure 193 IP Application > DHCP > DHCPv4 > VLAN The following table describes the labels in this screen. Table 140 IP Application > DHCP > DHCPv4 > VLAN LABEL DESCRIPTION Enter the ID number of the VLAN to which these DHCP settings apply. Relay Use this section if you want to configure the Switch to function as a DHCP relay for this VLAN.
Page 271: Dhcpv4 Vlan Port Configure
Chapter 33 DHCP Table 140 IP Application > DHCP > DHCPv4 > VLAN (continued) LABEL DESCRIPTION Select an entry’s check box to select a specific entry. Otherwise, select the check box in the table heading row to select all entries. Delete Select the configuration entries you want to remove and click Delete to remove them.
Page 272: Example: Dhcp Relay For Two Vlans
Chapter 33 DHCP Table 141 IP Application > DHCP > DHCPv4 > VLAN > Port (continued) LABEL DESCRIPTION Port This field displays the port(s) to which the Switch applies the settings. Profile Name This field displays the DHCP option 82 profile that the Switch applies to the port(s) in this VLAN. Select an entry’s check box to select a specific entry.
Page 273: Dhcpv6 Relay
Chapter 33 DHCP 33.5 DHCPv6 Relay A DHCPv6 relay agent is on the same network as the DHCPv6 clients and helps forward messages between the DHCPv6 server and clients. When a client cannot use its link-local address and a well- known multicast address to locate a DHCPv6 server on its network, it then needs a DHCPv6 relay agent to send a message to a DHCPv6 server that is not attached to the same network.
Page 274 Chapter 33 DHCP Table 142 IP Application > DHCP > DHCPv6 (continued) LABEL DESCRIPTION Clear Click Clear to reset the fields to the factory defaults. This field displays the VLAN ID number. Click the VLAN ID to change the settings. Helper Address This field displays the IPv6 address of the remote DHCPv6 server for this VLAN.
Page 275: Arp Setup
H A P T E R ARP Setup 34.1 ARP Overview Address Resolution Protocol (ARP) is a protocol for mapping an Internet Protocol address (IP address) to a physical machine address, also known as a Media Access Control or MAC address, on the local area network.
Page 276 Chapter 34 ARP Setup In the following example, the Switch does not have IP address and MAC address mapping information for hosts A and B in its ARP table, and host A wants to ping host B. Host A sends an ARP request to the Switch and then sends an ICMP request after getting the ARP reply from the Switch.
Page 277: Arp Setup
Chapter 34 ARP Setup Therefore in the following example, the Switch can learn host A’s MAC address from the ARP request sent by host A. The Switch then forwards host B’s ICMP reply to host A right after getting host B’s MAC address and ICMP reply.
Page 278: Static Arp
Chapter 34 ARP Setup Figure 199 IP Application > ARP Setup > ARP Learning The following table describes the labels in this screen. Table 143 IP Application > ARP Setup > ARP Learning LABEL DESCRIPTION Port This field displays the port number. Settings in this row apply to all ports.
Page 279 Chapter 34 ARP Setup Figure 200 IP Application > ARP Setup > Static ARP The following table describes the related labels in this screen. Table 144 IP Application > ARP Setup > Static ARP LABEL DESCRIPTION Active Select this check box to activate your rule. You may temporarily deactivate a rule without deleting it by clearing this check box.
Page 280: Maintenance
H A P T E R Maintenance 35.1 Overview This chapter explains how to configure the screens that let you maintain the firmware and configuration files. 35.1.1 What You Can Do • Use the Maintenance screen (Section 35.2 on page 280) to erase running configuration, save a configuration file or restart the Switch.
Page 281 Chapter 35 Maintenance Figure 201 Management > Maintenance The following table describes the labels in this screen. Table 145 Management > Maintenance LABEL DESCRIPTION Firmware Click Click Here to go to the Firmware Upgrade screen. Upgrade Restore Click Click Here to go to the Restore Configuration screen. Configuration Backup Click Click Here to go to the Backup Configuration screen.
Page 282: Erase Running-Configuration
Chapter 35 Maintenance 35.3 Erase Running-Configuration Follow the steps below to clear current configuration on the Switch. Note that this will NOT reset the Switch back to its factory defaults. If you want to change the Switch to its factory default mode, click the Factory Default button in Reboot System.
Page 283: Reboot System
Chapter 35 Maintenance 35.5 Reboot System Reboot System allows you to restart the Switch without physically turning the power off. It also allows you to load configuration one (Config 1), configuration two (Config 2), a Custom Default or Factory Default when you reboot.
Page 284: Custom Default
Chapter 35 Maintenance Figure 204 Load Factory Default: Confirmation If you want to access the Switch web configurator again, you may need to change the IP address of your computer to be in the same subnet as that of the default Switch IP address (192.168.1.1 or DHCP- assigned IP).
Page 285 Chapter 35 Maintenance Click Management > Maintenance > Firmware Upgrade to view the screen as shown next. Figure 206 Management > Maintenance > Firmware Upgrade The top of firmware upgrade screen shows which firmware version is currently running on the Switch. Type the path and file name of the firmware file you wish to upload to the Switch in the File Path text box or click Choose File or Browse to locate it (Firmware upgrades are only applied after a reboot).
Page 286: Restore Configuration
Chapter 35 Maintenance Table 146 Management > Maintenance > Firmware Upgrade LABEL DESCRIPTION File Path Type the path and file name of the firmware file you wish to upload to the Switch in the File Path text box or click Choose File or Browse to locate it. Upgrade Click Upgrade to load the new firmware.
Page 287: Tech-Support
Chapter 35 Maintenance If the current configuration file is open and/or downloaded to your computer automatically, you can click File > Save As to save the file to a specific place. If a dialog box pops up asking whether you want to open or save the file, click Save or Save File to download it to the default downloads folder on your computer.
Page 288: Tech-Support Download
Chapter 35 Maintenance You may need WordPad or similar software to see the log report correctly. The table below describes the fields in the above screen. Table 147 Management > Maintenance > Tech-Support LABEL DESCRIPTION Type a number ranging from 50 to 100 in the CPU threshold box, and type another number ranging from 5 to 60 in the seconds box then click Apply.
Page 289: Certificates
Chapter 35 Maintenance Figure 210 Management > Maintenance > Tech-Support: Download 35.10 Certificates The Switch can use HTTPS certificates that are verified by a third party to create secure HTTPS connections between your computer and the Switch. This way, you may securely access the Switch using the web configurator.
Page 290: Https Certificates
Chapter 35 Maintenance Table 148 Management > Maintenance > Certificates LABEL DESCRIPTION Issuer This field displays identifying information about the certificate’s issuing certification authority, such as a common name, organizational unit or department, organization or company and country. Valid From This field displays the date that the certificate becomes applicable.
Page 291: Technical Reference
Chapter 35 Maintenance 35.11 Technical Reference This section provides technical background information on the topics discussed in this chapter. 35.11.1 FTP Command Line This section shows some examples of uploading to or downloading files from the Switch using FTP commands. First, understand the filename conventions. 35.11.2 Filename Conventions The configuration file (also known as the romfile or ROM) contains the factory default settings in the screens such as password, Switch setup, IP Setup, and so on.
Page 292: Gui-Based Ftp Clients
Chapter 35 Maintenance Press [ENTER] when prompted for a username. Enter your password as requested (the default is “1234”). Enter bin to set transfer mode to binary. Use put to transfer files from the computer to the Switch, for example, put firmware.bin ras transfers the firmware on your computer (firmware.bin) to the Switch and renames it to “ras”.
Page 293: Access Control
H A P T E R Access Control 36.1 Access Control Overview This chapter describes how to control access to the Switch. FTP is allowed one session. Telnet and SSH share nine sessions. Up to five Web sessions (five different user names and passwords) and/or limitless SNMP access control sessions are allowed.
Page 294: Configuring Snmp
Chapter 36 Access Control The following table describes the labels in this screen. Table 151 Management > Access Control LABEL DESCRIPTION SNMP Click this link to configure your SNMP settings. Logins Click this link to assign which users can access the Switch via web configurator at any one time.
Page 295: Configuring Snmp Trap Group
Chapter 36 Access Control Table 152 Management > Access Control > SNMP (continued) LABEL DESCRIPTION Get Community Enter the Get Community string, which is the password for the incoming Get- and GetNext- requests from the management station. The Get Community string is only used by SNMP managers using SNMP version 2c or lower. Set Community Enter the Set Community, which is the password for incoming Set- requests from the management station.
Page 296: Enabling/Disabling Sending Of Snmp Traps On A Port
Chapter 36 Access Control The following table describes the labels in this screen. Table 153 Management > Access Control > SNMP > Trap Group LABEL DESCRIPTION Trap Destination IP Select one of your configured trap destination IP addresses. These are the IP addresses of the SNMP managers.
Page 297: Configuring Snmp User
Chapter 36 Access Control The following table describes the labels in this screen. Table 154 Management > Access Control > SNMP > Trap Group > Port LABEL DESCRIPTION Option Select the trap type you want to configure here. Port This field displays a port number. Settings in this row apply to all ports.
Page 298 Chapter 36 Access Control Table 155 Management > Access Control > SNMP > User (continued) LABEL DESCRIPTION Security Level Select whether you want to implement authentication and/or encryption for SNMP communication from this user. Choose: • noauth -to use the username as the password string to send to the SNMP manager. This is equivalent to the Get, Set and Trap Community in SNMP v2c.
Page 299: Logins
Chapter 36 Access Control 36.4 Logins Up to five people (one administrator and four non-administrators) may access the Switch via web configurator at any one time. • An administrator is someone who can both view and configure Switch changes. The username for the Administrator is always admin.
Page 300: Service Access Control
Chapter 36 Access Control Table 156 Management > Access Control > Logins (continued) LABEL DESCRIPTION User Name Set a user name (up to 32 ASCII characters long). Password Enter your new system password. Retype to Retype your new system password for confirmation. confirm Privilege Type the privilege level for this user.
Page 301: Remote Management
Chapter 36 Access Control The following table describes the fields in this screen. Table 157 Management > Access Control > Service Access Control LABEL DESCRIPTION Services Services you may use to access the Switch are listed here. Active Select this option for the corresponding services that you want to allow to access the Switch. Service Port For Telnet, SSH, FTP, HTTP or HTTPS services, you may change the default service port by typing the new port number in the Service Port field.
Page 302: Technical Reference
Chapter 36 Access Control Figure 220 Management > Access Control > Remote Management The following table describes the labels in this screen. Table 158 Management > Access Control > Remote Management LABEL DESCRIPTION Entry This is the client set index number. A “client set” is a group of one or more “trusted computers” from which an administrator may use a service to manage the Switch.
Page 303: About Snmp
Chapter 36 Access Control 36.7.1 About SNMP Simple Network Management Protocol (SNMP) is an application layer protocol used to manage and monitor TCP/IP-based devices. SNMP is used to exchange management information between the network management system (NMS) and a network element (NE). A manager station can manage and monitor the Switch through the network via SNMP version 1 (SNMPv1), SNMP version 2c or SNMP version 3.
Page 304 Chapter 36 Access Control Security can be further enhanced by encrypting the SNMP messages sent from the managers. Encryption protects the contents of the SNMP messages. When the contents of the SNMP messages are encrypted, only the intended recipients can read them. Supported MIBs MIBs let administrators collect statistics and monitor status and performance.
Page 305 Chapter 36 Access Control Table 161 SNMP Interface Traps (continued) OPTION OBJECT LABEL OBJECT ID DESCRIPTION linkdown linkDown 1.3.6.1.6.3.1.1.5.3 This trap is sent when the Ethernet link is down. lldp lldpRemTablesChange 1.0.8802.1.1.2.0.0.1 The trap is sent when entries in the remote database have any updates.
Page 306: Ssh Overview
Chapter 36 Access Control 36.7.2 SSH Overview Unlike Telnet or FTP, which transmit data in clear text, SSH (Secure Shell) is a secure communication protocol that combines authentication and data encryption to provide secure encrypted communication between two hosts over an unsecured network. Figure 222 SSH Communication Example 36.7.2.1 How SSH works The following table summarizes how a secure connection is established between two remote hosts.
Page 307: Introduction To Https
Chapter 36 Access Control Host Identification The SSH client sends a connection request to the SSH server. The server identifies itself with a host key. The client encrypts a randomly generated session key with the host key and server key and sends the result back to the server.
Page 308 Chapter 36 Access Control Figure 224 HTTPS Implementation Note: If you disable HTTP in the Service Access Control screen, then the Switch blocks all HTTP connection attempts. 36.7.3.1 HTTPS Example If you haven’t changed the default HTTPS port on the Switch, then in your browser enter “https://Switch IP Address/”...
Page 309 Chapter 36 Access Control Figure 226 Security Certificate Warning (Internet Explorer 11) After you log in, you will see the red address bar with the message Certificate Error. Click on Certificate Error next to the address bar and click View certificates. Figure 227 Certificate Error (Internet Explorer 11) EXAMPLE Click Install Certificate...
Page 310 Chapter 36 Access Control Figure 228 Certificate (Internet Explorer 11) EXAMPLE Mozilla Firefox Warning Messages When you attempt to access the Switch HTTPS server, a This Connection is Unstructed or Your connection is not secure screen may display. If that is the case, click I Understand the Risks or Advanced and then the Add Exception...
Page 311: Google Chrome Warning Messages
Chapter 36 Access Control Figure 230 Security Alert (Mozilla Firefox 53.0) EXAMPLE 36.7.4 Google Chrome Warning Messages When you attempt to access the Switch HTTPS server, a Your connection is not private screen may display. If that is the case, click Advanced and then Proceed to x.x.x.x (unsafe) to proceed to the web configurator login screen.
Page 312 Chapter 36 Access Control Figure 231 Security Alert (Google Chrome 58.0.3029.110) 36.7.4.1 The Main Screen After you accept the certificate and enter the login username and password, the Switch main screen appears. The lock displayed in the bottom right of the browser status bar or next to the website address denotes a secure connection.
Page 313: Diagnostic
H A P T E R Diagnostic 37.1 Overview This chapter explains the Diagnostic screen. You can use this screen to help you identify problems. 37.2 Diagnostic Click Management > Diagnostic in the navigation panel to open this screen. Use this screen to ping IP addresses, run a traceroute, perform port tests or show the Switch’s location between devices.
Page 314 Chapter 37 Diagnostic The following table describes the labels in this screen. Table 165 Management > Diagnostic LABEL DESCRIPTION Ping Test IPv4 Select this option if you want to ping an IPv4 address. Select - to send ping requests to all VLANs on the Switch.
Page 315 Chapter 37 Diagnostic Table 165 Management > Diagnostic (continued) LABEL DESCRIPTION Pair status Ok: The physical connection between the wire-pair is okay. Open: There is no physical connection (an open circuit detected) between the wire-pair. Short: There is an short circuit detected between the wire-pair. Unknown: The Switch failed to run cable diagnostics on the cable connected this port.
Page 316: System Log
H A P T E R System Log 38.1 Overview A log message stores the information for viewing. 38.2 System Log Click Management > System Log in the navigation panel to open this screen. Use this screen to check current system logs. Note: When a log reaches the maximum number of log messages, new log messages automatically overwrite existing log messages, starting with the oldest existing log message first.
Page 317: Syslog Setup
H A P T E R Syslog Setup 39.1 Syslog Overview This chapter explains the syslog screens. The syslog protocol allows devices to send event notification messages across an IP network to syslog servers that collect the event messages. A syslog-enabled device can generate a syslog message and send it to a syslog server.
Page 318 Chapter 39 Syslog Setup Figure 235 Management > Syslog Setup The following table describes the labels in this screen. Table 167 Management > Syslog Setup LABEL DESCRIPTION Syslog Select Active to turn on syslog (system logging) and then configure the syslog setting Logging Type This column displays the names of the categories of logs that the device can generate.
Page 319 Chapter 39 Syslog Setup Table 167 Management > Syslog Setup LABEL DESCRIPTION Click Add to save your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.
Page 320: Cluster Management
H A P T E R Cluster Management 40.1 Cluster Management Overview This chapter introduces cluster management. Cluster Management allows you to manage switches through one Switch, called the cluster manager. The switches must be directly connected and be in the same VLAN group so as to be able to communicate with one another.
Page 321: Cluster Management Status
Chapter 40 Cluster Management • Use the Clustering Management Configuration screen (Section 40.1 on page 320) to configure clustering management. 40.2 Cluster Management Status Use this screen to view the role of the Switch within the cluster and to access a cluster member switch’s web configurator.
Page 322: Clustering Management Configuration
Chapter 40 Cluster Management Table 169 Management > Cluster Management: Status (continued) LABEL DESCRIPTION Model This field displays the model name. Status This field displays: Online (the cluster member switch is accessible) Error (for example the cluster member switch password was changed or the switch was set as the manager and so left the member list, etc.) Offline (the switch is disconnected - Offline shows approximately 1.5 minutes after the link between cluster member and manager goes down)
Page 323 Chapter 40 Cluster Management The following table describes the labels in this screen. Table 170 Management > Cluster Management > Configuration LABEL DESCRIPTION Clustering Manager Active Select Active to have this Switch become the cluster manager switch. A cluster can only have one manager.
Page 324: Technical Reference
Chapter 40 Cluster Management 40.4 Technical Reference This section provides technical background information on the topics discussed in this chapter. 40.4.1 Cluster Member Switch Management Go to the Clustering Management Status screen of the cluster manager switch and then select an Index hyperlink from the list of members to go to that cluster member switch's web configurator home page.
Page 325 Chapter 40 Cluster Management Figure 240 Example: Uploading Firmware to a Cluster Member Switch C:\>ftp 192.168.1.1 Connected to 192.168.1.1. 220 Switch FTP version 1.0 ready at Thu Jan 1 00:58:46 1970 User (192.168.0.1:(none)): admin 331 Enter PASS command Password: 230 Logged in ftp>...
Page 326: Mac Table
H A P T E R MAC Table 41.1 MAC Table Overview This chapter introduces the MAC Table screen. The MAC Table screen (a MAC table is also known as a filtering database) shows how frames are forwarded or filtered across the Switch’s ports. It shows what device MAC address, belonging to what VLAN group (if any) is forwarded to which port(s) and whether the MAC address is dynamic (learned by the Switch) or static (manually entered in the Static MAC Forwarding screen).
Page 327: Viewing The Mac Table
Chapter 41 MAC Table Figure 241 MAC Table Flowchart 41.2 Viewing the MAC Table Use this screen to check whether the MAC address is dynamic or static. Click Management > MAC Table in the navigation panel to display the following screen. Figure 242 Management >...
Page 328 Chapter 41 MAC Table The following table describes the labels in this screen. Table 172 Management > MAC Table LABEL DESCRIPTION Condition Select one of the buttons and click Search to only display the data which matches the criteria you specified. Select All to display any entry in the MAC table of the Switch.
Page 329: Ip Table
H A P T E R IP Table 42.1 IP Table Overview The IP Table screen shows how packets are forwarded or filtered across the Switch’s ports. When a device (which may belong to a VLAN group) sends a packet which is forwarded to a port on the Switch, the IP address of the device is shown on the Switch’s IP Table.
Page 330 Chapter 42 IP Table Figure 244 Management > IP Table The following table describes the labels in this screen. Table 173 Management > IP Table LABEL DESCRIPTION Sort by Click one of the following buttons to display and arrange the data according to that button type. The information is then displayed in the summary table below.
Page 331: Arp Table
H A P T E R ARP Table 43.1 ARP Table Overview Address Resolution Protocol (ARP) is a protocol for mapping an Internet Protocol address (IP address) to a physical machine address, also known as a Media Access Control or MAC address, on the local area network.
Page 332 Chapter 43 ARP Table Figure 245 Management > ARP Table The following table describes the labels in this screen. Table 174 Management > ARP Table LABEL DESCRIPTION Condition Specify how you want the Switch to remove ARP entries when you click Flush. Select All to remove all of the dynamic entries from the ARP table.
Page 333: Routing Table
H A P T E R Routing Table 44.1 Overview The routing table contains the route information to the network(s) that the Switch can reach. 44.2 The Routing Table Main Screen Click Management > Routing Table in the navigation panel to display the main screen as shown. Click the link next to IPv4 Routing Table to open a screen where you can view the IPv4 routing table information.
Page 334: Ipv6 Routing Table
Chapter 44 Routing Table Table 175 Management > Routing Table > IPv4 Routing Table (continued) LABEL DESCRIPTION Interface This field displays the IP address of the Interface. Metric This field displays the cost of the route. Type This field displays the method used to learn the route. STATIC - added as a static entry.
Page 335: Path Mtu Table
H A P T E R Path MTU Table 45.1 Path MTU Overview This chapter introduces the IPv6 Path MTU table. The largest size (in bytes) of a packet that can be transferred over a data link is called the maximum transmission unit (MTU).
Page 336: Configure Clone
H A P T E R Configure Clone 46.1 Overview This chapter shows you how you can copy the settings of one port onto other ports. 46.2 Configure Clone Cloning allows you to copy the basic and advanced settings from a source port to a destination port or ports.
Page 337 Chapter 46 Configure Clone Figure 250 Management > Configure Clone The following table describes the labels in this screen. Table 178 Management > Configure Clone LABEL DESCRIPTION Source/ Enter the destination port or ports under the Destination label. These are the ports which are going Destination to have the same attributes as the source port.
Page 338 Chapter 46 Configure Clone Table 178 Management > Configure Clone (continued) LABEL DESCRIPTION Advanced Select which port settings (you configured in the Advanced Application menus) should be copied Application to the destination ports. Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring.
Page 339: Ipv6 Neighbor Table
H A P T E R IPv6 Neighbor Table 47.1 IPv6 Neighbor Table Overview This chapter introduces the IPv6 neighbor table. An IPv6 host is required to have a neighbor table. If there is an address to be resolved or verified, the Switch sends out a neighbor solicitation message.
Page 340 Chapter 47 IPv6 Neighbor Table Table 179 Management > IPv6 Neighbor Table (continued) LABEL DESCRIPTION Status This field displays whether the neighbor IPv6 interface is reachable. In IPv6, “reachable” means an IPv6 packet can be correctly forwarded to a neighbor node (host or router) and the neighbor can successfully receive and handle the packet.
Page 341: Port Status
H A P T E R Port Status This chapter introduces the port status screens. 48.1 Port Status This screen displays a port statistical summary with links to each port showing statistical details. To view the port statistics, click Status in all web configurator screens and then the Port Status link in the Quick Links section of the Status screen to display the Port Status screen as shown next.
Page 342: Port Details
Chapter 48 Port Status Table 180 Port Status (continued) LABEL DESCRIPTION For PoE model(s) only. This field displays whether or not a powered device (PD) is allowed to receive power from the Switch on this port. LACP This fields displays whether LACP (Link Aggregation Control Protocol) has been enabled on the port.
Page 343 Chapter 48 Port Status Figure 253 Port Status > Port Details The following table describes the labels in this screen. Table 181 Port Status: Port Details LABEL DESCRIPTION Port Info Port NO. This field displays the port number you are viewing. Name This field displays the name of the port.
Page 344 Chapter 48 Port Status Table 181 Port Status: Port Details (continued) LABEL DESCRIPTION Errors This field shows the number of received errors on this port. Tx kB/s This field shows the number of kilobytes per second transmitted on this port. This field shows the percentage of actual transmitted frames on this port as a percentage of the Utilization% Link speed.
Page 345: Ddmi
Chapter 48 Port Status Table 181 Port Status: Port Details (continued) LABEL DESCRIPTION 512-1023 This field shows the number of packets (including bad packets) received that were between 512 and 1023 octets in length. 1024-1518 This field shows the number of packets (including bad packets) received that were between 1024 and 1518 octets in length.
Page 346 Chapter 48 Port Status Figure 255 Management > Port Status > DDMI > DDMI Details The following table describes the labels in this screen. Table 183 Management > Port Status > DDMI > DDMI Details LABEL DESCRIPTION Transceiver Information Port No This identifies the SFP port.
Page 347: Port Utilization
Chapter 48 Port Status Table 183 Management > Port Status > DDMI > DDMI Details (continued) LABEL DESCRIPTION High Warn This displays the high value warning threshold for each monitored DDMI parameter. A warning Threshold signal is reported to the Switch if the monitored DDMI parameter reaches this value. Low Warn This displays the low value warning threshold for each monitored DDMI parameter.
Page 348: Troubleshooting
H A P T E R Troubleshooting This chapter offers some suggestions to solve problems you might encounter. The potential problems are divided into the following categories. • Power, Hardware Connections, and LEDs • Switch Access and Login • Switch Configuration 49.1 Power, Hardware Connections, and LEDs The Switch does not turn on.
Page 349: Switch Access And Login
Chapter 49 Troubleshooting 49.2 Switch Access and Login I forgot the IP address for the Switch. The default IP address is http://DHCP-assigned IP or 192.168.1.1. If the Switch is removed from a site in Nebula, all the settings in the configuration file are reset to the Nebula factory defaults except for the IP address.
Page 350: Switch Configuration
Chapter 49 Troubleshooting Advanced Suggestions • Try to access the Switch using another service, such as Telnet. If you can access the Switch, check the remote management settings to find out why the Switch does not respond to HTTP. I can see the Login screen, but I cannot log in to the Switch. Make sure you have entered the user name and password correctly.
Page 351 Chapter 49 Troubleshooting Save at the top right corner of the web configurator to save the configuration permanently. See also Section 35.8 on page 286 for more information about how to save your configuration. XS1930 Series User’s Guide...
Page 352: Appendix A Customer Support
• Brief description of the problem and the steps you took to solve it. Corporate Headquarters (Worldwide) Taiwan • Zyxel Communications Corporation • http://www.zyxel.com Asia China • Zyxel Communications (Shanghai) Corp. Zyxel Communications (Beijing) Corp. Zyxel Communications (Tianjin) Corp. • https://www.zyxel.com/cn/zh/ India • Zyxel Technology India Pvt Ltd • https://www.zyxel.com/in/en/ Kazakhstan •...
Page 353 • Zyxel Singapore Pte Ltd. • http://www.zyxel.com.sg Taiwan • Zyxel Communications Corporation • https://www.zyxel.com/tw/zh/ Thailand • Zyxel Thailand Co., Ltd • https://www.zyxel.com/th/th/ Vietnam • Zyxel Communications Corporation-Vietnam Office • https://www.zyxel.com/vn/vi Europe Belarus • Zyxel BY • https://www.zyxel.by Belgium • Zyxel Communications B.V. • https://www.zyxel.com/be/nl/...
Page 354 Appendix A Customer Support • https://www.zyxel.com/be/fr/ Bulgaria • Zyxel България • https://www.zyxel.com/bg/bg/ Czech Republic • Zyxel Communications Czech s.r.o • https://www.zyxel.com/cz/cs/ Denmark • Zyxel Communications A/S • https://www.zyxel.com/dk/da/ Estonia • Zyxel Estonia • https://www.zyxel.com/ee/et/ Finland • Zyxel Communications • https://www.zyxel.com/fi/fi/ France •...
Page 355 • Zyxel Communications Poland • https://www.zyxel.com/pl/pl/ Romania • Zyxel Romania • https://www.zyxel.com/ro/ro Russia • Zyxel Russia • https://www.zyxel.com/ru/ru/ Slovakia • Zyxel Communications Czech s.r.o. organizacna zlozka • https://www.zyxel.com/sk/sk/ Spain • Zyxel Communications ES Ltd • https://www.zyxel.com/es/es/ Sweden • Zyxel Communications • https://www.zyxel.com/se/sv/ Switzerland •...
Page 356 Appendix A Customer Support Turkey • Zyxel Turkey A.S. • https://www.zyxel.com/tr/tr/ • Zyxel Communications UK Ltd. • https://www.zyxel.com/uk/en/ Ukraine • Zyxel Ukraine • http://www.ua.zyxel.com South America Argentina • Zyxel Communications Corporation • https://www.zyxel.com/co/es/ Brazil • Zyxel Communications Brasil Ltda. • https://www.zyxel.com/br/pt/ Colombia •...
Page 357 Appendix A Customer Support Middle East • Zyxel Communications Corporation • https://www.zyxel.com/me/en/ North America • Zyxel Communications, Inc. - North America Headquarters • https://www.zyxel.com/us/en/ Oceania Australia • Zyxel Communications Corporation • https://www.zyxel.com/au/en/ Africa South Africa • Nology (Pty) Ltd. • https://www.zyxel.com/za/en/...
Page 358: Appendix B Common Services
P P E N D I X Common Services The following table lists some commonly-used services and their associated protocols and port numbers. For a comprehensive list of port numbers, ICMP type/code numbers and services, visit the IANA (Internet Assigned Number Authority) web site. •...
Page 359 Appendix B Common Services Table 185 Commonly Used Services (continued) NAME PROTOCOL PORT(S) DESCRIPTION HTTPS HTTPS is a secured http session often used in e- commerce. ICMP User-Defined Internet Control Message Protocol is often used for diagnostic or routing purposes. 4000 This is a popular Internet chat program.
Page 360 Appendix B Common Services Table 185 Commonly Used Services (continued) NAME PROTOCOL PORT(S) DESCRIPTION SQL-NET 1521 Structured Query Language is an interface to access data on many different types of database systems, including mainframes, midrange systems, UNIX systems and network servers.
Page 361: Appendix C Ipv6
P P E N D I X IPv6 Overview IPv6 (Internet Protocol version 6), is designed to enhance IP address size and features. The increase in IPv6 address size to 128 bits (from the 32-bit IPv4 address) allows up to 3.4 x 10 IP addresses.
Page 362 Appendix C IPv6 Unspecified Address An unspecified address (0:0:0:0:0:0:0:0 or ::) is used as the source address when a device does not have its own address. It is similar to “0.0.0.0” in IPv4. Loopback Address A loopback address (0:0:0:0:0:0:0:1 or ::1) allows a host to send packets to itself. It is similar to “127.0.0.1” in IPv4.
Page 363 Appendix C IPv6 Subnet Masking Both an IPv6 address and IPv6 subnet mask compose of 128-bit binary digits, which are divided into eight 16-bit blocks and written in hexadecimal notation. Hexadecimal uses four bits for each character (1 ~ 10, A ~ F). Each block’s 16 bits are then represented by four hexadecimal characters. For example, FFFF:FFFF:FFFF:FFFF:FC00:0000:0000:0000.
Page 364 Appendix C IPv6 Each DHCP client and server has a unique DHCP Unique IDentifier (DUID), which is used for identification when they are exchanging DHCPv6 messages. The DUID is generated from the MAC address, time, vendor assigned ID and/or the vendor's private enterprise number registered with the IANA. It should not change over time even after you reboot the device.
Page 365 Appendix C IPv6 ICMPv6 Internet Control Message Protocol for IPv6 (ICMPv6 or ICMP for IPv6) is defined in RFC 4443. ICMPv6 has a preceding Next Header value of 58, which is different from the value used to identify ICMP for IPv4. ICMPv6 is an integral part of IPv6.
Page 366 Appendix C IPv6 Example - Enabling IPv6 on Windows XP/2003/Vista By default, Windows XP and Windows 2003 support IPv6. This example shows you how to use the ipv6 install command on Windows XP/2003 to enable IPv6. This also displays how to use the ipconfig command to see auto-generated IP addresses.
Page 367 Appendix C IPv6 Click Start and then OK. Now your computer can obtain an IPv6 address from a DHCPv6 server. Example - Enabling IPv6 on Windows 7 Windows 7 supports IPv6 by default. DHCPv6 is also enabled when you enable IPv6 on a Windows 7 computer.
Page 368 Appendix C IPv6 Click Close to exit the Local Area Connection Status screen. Select Start > All Programs > Accessories > Command Prompt. Use the ipconfig command to check your dynamic IPv6 address. This example shows a global address (2001:b021:2d::1000) obtained from a DHCP server. C:\>ipconfig Windows IP Configuration Ethernet adapter Local Area Connection:...
Page 369: Appendix D Legal Information
The contents of this publication may not be reproduced in any part or as a whole, transcribed, stored in a retrieval system, translated into any language, or transmitted in any form or by any means, electronic, mechanical, magnetic, optical, chemical, photocopying, manual, or otherwise, without the prior written permission of Zyxel Communications Corporation. Published by Zyxel Communications Corporation. All rights reserved.
Page 370 Appendix D Legal Information List of National Codes COUNTRY ISO 3166 2 LETTER CODE COUNTRY ISO 3166 2 LETTER CODE Austria Liechtenstein Belgium Lithuania Bulgaria Luxembourg Croatia Malta Cyprus Netherlands Czech Republic Norway Denmark Poland Estonia Portugal Finland Romania France Serbia Germany Slovakia...
Page 371 Appendix D Legal Information • PRODUIT CONFORME SELON 21 CFR 1040.10 ET 1040.11. (for products with mini-GBIC slots or laser products, such as fiber-optic transceiver and GPON products) Environment Statement European Union - Disposal and Recycling Information The symbol below means that according to local regulations your product and/or its battery shall be disposed of separately from domestic waste.
Page 372 North American products. Trademarks ZyNOS (Zyxel Network Operating System) and ZON (Zyxel One Network)are registered trademarks of Zyxel Communications, Inc. Other trademarks mentioned in this publication are used for identification purposes only and may be properties of their respective owners.
Page 373: Index
Index Index authentication Numerics setup authentication, authorization and accounting 802.1P priority Authentication, Authorization and Accounting, see authorization setup auto-crossover automatic VLAN registration accounting authentication authorization external server RADIUS AAA (Authentication, Authorization and Accounting) bandwidth control egress rate access control ingress rate limitations setup login account...
Page 374 Index match order setup overview DHCPv4 setup global relay 180, 184 status global relay example viewing Option 82 cloning a port See port cloning option 82 profiles Relay Agent Information cluster management and switch passwords DHCPv4 relay cluster manager DHCPv6 relay 320, 323 cluster member interface-ID...
Page 375 Index filename convention, configuration hardware monitor configuration hardware overview file names hello time filtering HTTPS rules certificates filtering database, MAC table implementation firmware public keys, private keys upgrade HTTPS example 284, 324 flow control back pressure IEEE802.3x forwarding delay IEEE 802.1x frames activate tagged...
Page 376 Index addressing timeout EUI-64 Layer 2 protocol tunneling, see L2PT global address LEDs interface ID link aggregation link-local address dynamic Neighbor Discovery Protocol ID information neighbor table setup ping traffic distribution algorithm prefix traffic distribution type prefix length trunk group stateless autoconfiguration Link Aggregation Control Protocol (LACP) unspecified address...
Page 377 Index MAC address maximum hops 80, 331 maximum number per port revision level status MAC address learning 84, 176 specify limit MAC table MTU (Multi-Tenant Unit) display criteria multicast how it works IGMP throttling sorting criteria IP addresses transfer type setup viewing multicast group...
Page 378 Index and DiffServ sub-option format configuration tag format example trusted ports overview untrusted ports rules VLAN Port Aggregation Protocol, see PAgP PPPoE Intermediate Agent port authentication priority level guest VLAN priority queue assignment IEEE802.1x product registration MAC authentication PVID method port cloning 336, 337 advanced settings...
Page 379 Index RFC 3164 how it works implementation Round Robin Scheduling SSH (Secure Shell) routing table SSL (Secure Socket Layer) RSTP configuration standby ports status static MAC address rubber feet static MAC forwarding running configuration static multicast address erase static multicast forwarding reset static route enable...
Page 380 Index setup user profiles severity levels system information system reboot Vendor Specific Attribute, See VSA ventilation holes 88, 118 TACACS+ number of possible VIDs advantages priority frame tagged VLAN VID (VLAN Identifier) Tech-Support Virtual Local Area Network log enhancement VLAN temperature indicator acceptable frame type automatic registration...
Page 381 Index note web configurator getting help home login logout navigation panel weight, queuing Weighted Round Robin Scheduling (WRR) WRR (Weighted Round Robin Scheduling) ZON Utility ZyNOS (ZyXEL Network Operating System) ZyXEL Discovery Protocol XS1930 Series User’s Guide...

This manual is also suitable for:

Xs1930-10-zz0101f Xs1930 series Xs1930-12hp-zz0101f Xs1930-10

ZyXEL Communications XS1930-12HP User Manual

Chapter 3 Hardware Panels

Chapter 6 DHCP Relay Tutorial

Chapter 7 Status

Chapter 8 Basic Setting

Chapter 9 VLAN

Chapter 12 Filtering

Chapter 14 Bandwidth Control

Chapter 16 Mirroring

Chapter 17 Link Aggregation

Chapter 18 Port Authentication

Chapter 19 Port Security

Chapter 20 Time Range

Chapter 21 Classifier

Chapter 22 Policy Rule

Chapter 23 Queuing Method

Chapter 24 Multicast

Chapter 25 AAA

Chapter 26 Loop Guard

Chapter 28 Pppoe

Chapter 29 Error Disable

Chapter 30 Green Ethernet

Chapter 32 Static Route

Quick Links

Troubleshooting

Related Manuals for ZyXEL Communications XS1930-12HP

Summary of Contents for ZyXEL Communications XS1930-12HP