ZyXEL Communications ES-2024A User Manual
  1. Manuals
  2. Brands
  3. ZyXEL Communications Manuals
  4. Network Router
  5. ES-2024A
  6. User manual

ZyXEL Communications ES-2024A User Manual

Hide thumbs Also See for ES-2024A:
Table of Contents

Advertisement

Quick Links

ES-2024A
Ethernet Switch
User's Guide
Version 3.60
6/2005

Advertisement

Table of Contents
loading

Related Manuals for ZyXEL Communications ES-2024A

Summary of Contents for ZyXEL Communications ES-2024A

  • Page 1 ES-2024A Ethernet Switch User’s Guide Version 3.60 6/2005...

  • Page 2: Copyright

    Published by ZyXEL Communications Corporation. All rights reserved. Disclaimer ZyXEL does not assume any liability arising out of the application or use of any products, or software described herein. Neither does it convey any license under its patent rights nor the patent rights of others.

  • Page 3: Interference Statements And Warnings

    ES-2024A User’s Guide Interference Statements and Warnings FCC Statement This switch complies with Part 15 of the FCC rules. Operation is subject to the following two conditions: 1 This switch may not cause harmful interference. 2 This switch must accept any interference received, including interference that may cause undesired operations.

  • Page 4: Safety Warnings

    ES-2024A User’s Guide Certifications 1 Go to www.zyxel.com 2 Select your product from the drop-down list box on the ZyXEL home page to go to that product's page. 3 Select the certification you wish to view from this page. Registration Register your product online for free future product updates and information at www.zyxel.com for global products, or at www.us.zyxel.com for North American products.

  • Page 5: Zyxel Limited Warranty

    Any returned products without proof of purchase or those with an out-dated warranty will be repaired or replaced (at the discretion of ZyXEL) and the customer will be billed for parts and labor. All repaired or replaced products will be shipped by ZyXEL to the corresponding return address, Postage Paid.

  • Page 6: Customer Support

    ES-2024A User’s Guide Customer Support Please have the following information ready when you contact customer support. • Product model and serial number. • Warranty Information. • Date that you received your device. • Brief description of the problem and the steps you took to solve it.
  • Page 7 ES-2024A User’s Guide METHOD SUPPORT E-MAIL TELEPHONE* WEB SITE REGULAR MAIL SALES E-MAIL FTP SITE LOCATION support@zyxel.co.uk +44 (0) 8702 909090 www.zyxel.co.uk ZyXEL Communications UK Ltd.,11, The Courtyard, sales@zyxel.co.uk +44 (0) 8702 909091 ftp.zyxel.co.uk UNITED KINGDOM Eastern Road, Bracknell, Berkshire, RG12 2XB, United Kingdom (UK) * “+”...

  • Page 8: Table Of Contents

    ES-2024A User’s Guide Table of Contents Copyright ........................1 Interference Statements and Warnings..............2 ZyXEL Limited Warranty ..................4 Customer Support ....................5 Table of Contents ..................... 7 List of Figures ......................15 List of Tables ......................19 Preface ........................21 Chapter 1 Getting to Know Your Switch................
  • Page 9 ES-2024A User’s Guide 3.1.1 Console Port ................... 33 3.1.2 Ethernet Ports ..................34 3.1.2.1 Default Ethernet Settings ..............34 3.1.3 Mini-GBIC Slots ..................34 3.1.3.1 Transceiver Installation ..............35 3.1.3.2 Transceiver Removal ..............35 3.2 Rear Panel ......................36 3.2.1 Power Connector ..................36 3.3 Front Panel LEDs...
  • Page 10 ES-2024A User’s Guide 7.7 IP Setup ......................60 7.7.1 Management IP Addresses ..............60 7.8 Port Setup ....................... 62 Chapter 8 VLAN ........................65 8.1 Introduction to IEEE 802.1Q Tagged VLAN ............ 65 8.1.1 Forwarding Tagged and Untagged Frames ..........65 8.2 Automatic VLAN Registration ................
  • Page 11 ES-2024A User’s Guide Chapter 13 Broadcast Storm Control ..................89 13.1 Overview ......................89 13.2 Broadcast Storm Control Setup ..............89 Chapter 14 Mirroring ......................... 91 14.1 Overview ......................91 14.2 Port Mirroring Setup ..................91 Chapter 15 Link Aggregation ....................93 15.1 Overview ......................
  • Page 12 ES-2024A User’s Guide Chapter 20 Differentiated Services ..................109 20.1 Overview ......................109 20.1.1 DSCP and Per-Hop Behavior .............. 109 20.1.2 DiffServ Network Example ..............109 20.2 Activating DiffServ ..................110 20.3 DSCP-to-IEEE802.1p Priority Mapping .............111 20.3.1 Configuring DSCP Settings ..............111 Chapter 21 Maintenance ......................113...
  • Page 13 ES-2024A User’s Guide 22.10 Service Port Access Control ..............131 22.11 Remote Management ................131 Chapter 23 Diagnostic......................133 23.1 Diagnostic ....................133 Chapter 24 Cluster Management.................... 135 24.1 Overview ......................135 24.2 Cluster Management Status ................ 136 24.2.1 Cluster Member Switch Management ..........137 24.2.1.1 Uploading Firmware to a Cluster Member Switch...
  • Page 14 ES-2024A User’s Guide 27.8 Saving Your Configuration ................151 27.8.1 Logging Out ..................151 27.9 Command Summary ..................151 27.9.1 User Mode .................... 152 27.9.2 Enable Mode ..................152 27.9.3 General Configuration Mode ..............155 27.9.4 interface port-channel Commands ............162 27.9.5 config-vlan Commands ................
  • Page 15 ES-2024A User’s Guide Chapter 29 IEEE 802.1Q Tagged VLAN Commands ............. 183 29.1 IEEE 802.1Q Tagged VLAN Overview ............183 29.2 VLAN Databases ................... 183 29.2.1 Static Entries (SVLAN Table) ............... 183 29.2.2 Dynamic Entries (DVLAN Table) ............184 29.3 Configuring Tagged VLAN ................184 29.4 Global VLAN1Q Tagged VLAN Configuration Commands ......

  • Page 16: List Of Figures

    ES-2024A User’s Guide List of Figures Figure 1 Backbone Application ................26 Figure 2 Bridging Application ................26 Figure 3 High Performance Switched Application ..........27 Figure 4 Tag-based VLAN Application ..............28 Figure 5 Shared Server Using VLAN Example ............28 Figure 6 Attaching Rubber Feet ................
  • Page 17 ES-2024A User’s Guide Figure 39 Spanning Tree Protocol: Status ............. 83 Figure 40 Spanning Tree Protocol: Configuration ..........84 Figure 41 Bandwidth Control ................. 87 Figure 42 Broadcast Storm Control ............... 89 Figure 43 Mirroring ....................91 Figure 44 Link Aggregation Control Protocol Status ..........94 Figure 45 Link Aggregation: Configuration ............
  • Page 18 ES-2024A User’s Guide Figure 82 Clustering Application Example ............. 135 Figure 83 Cluster Management: Status ..............136 Figure 84 Cluster Management: Cluster Member Web Configurator Screen ..137 Figure 85 Example: Uploading Firmware to a Cluster Member Switch ....138 Figure 86 Clustering Management Configuration ..........
  • Page 19 ES-2024A User’s Guide Figure 125 name Command Example ..............181 Figure 126 speed-duplex Command Example ............181 Figure 127 Tagged VLAN Configuration and Activation Example ......184 Figure 128 CPU VLAN Configuration and Activation Example ......185 Figure 129 GARP STATUS Command Example ........... 185 Figure 130 GARP Timer Command Example ............

  • Page 20: List Of Tables

    ES-2024A User’s Guide List of Tables Table 1 Front Panel ....................33 Table 2 Front Panel LEDs ..................37 Table 3 Navigation Panel Sub-links Overview ............41 Table 4 Web Configurator Screen Sub-links Details ..........41 Table 5 Navigation Panel Links ................42 Table 6 Status ......................
  • Page 21 Table 47 Access Control: Service Access Control ..........131 Table 48 Access Control: Remote Management ........... 132 Table 49 Diagnostic ....................133 Table 50 ZyXEL Clustering Management Specifications ........135 Table 51 Cluster Management: Status ..............136 Table 52 FTP Upload to Cluster Member Example ..........138 Table 53 Clustering Management Configuration ...........

  • Page 22: Preface

    • For brevity’s sake, we will use “e.g.,” as a shorthand for “for instance”, and “i.e.,” for “that is” or “in other words” throughout this manual. • The ES-2024A Ethernet Switch may be referred to as “the ES-2024A” or “the switch” in this User’s Guide.

  • Page 23: User Guide Feedback

    User Guide Feedback Help us help you. E-mail all User Guide-related comments, questions or suggestions for improvement to techwriters@zyxel.com.tw or send regular mail to The Technical Writing Team, ZyXEL Communications Corp., 6 Innovation Road II, Science-Based Industrial Park, Hsinchu, 300, Taiwan. Thank you.

  • Page 24: Getting To Know Your Switch

    This chapter introduces the main features and applications of the switch. 1.1 Introduction The ES-2024A is a stand-alone layer-2 Ethernet switch with 24 10/100Mbps ports and two Gigabit Ethernet/mini-GBIC ports. With its built-in web configurator, managing and configuring the switch is easy. In addition, the switch can also be managed via Telnet, SSH (Secure SHell), any terminal emulator program on the console port, or third-party SNMP management.

  • Page 25: Port Mirroring

    ES-2024A User’s Guide Queuing Queuing is used to help solve performance degradation when there is network congestion. Two scheduling services are supported: Strict Priority Queuing (SPQ) and Weighted Round Robin (WRR). This allows the switch to maintain separate queues for packets from each individual source or flow and prevent a source from monopolizing the bandwidth.

  • Page 26: Hardware Features

    ES-2024A User’s Guide Cluster management (also known as iStacking) allows you to manage switches through one switch, called the cluster manager. The switches must be directly connected and be in the same VLAN group so as to be able to communicate with one another.

  • Page 27: Bridging Example

    ES-2024A User’s Guide Figure 1 Backbone Application 1.4.2 Bridging Example In this example application the switch connects different company departments (RD and Sales) to the corporate backbone. It can alleviate bandwidth contention and eliminate server and network bottlenecks. All users that need high bandwidth can connect to high-speed department servers via the switch.

  • Page 28: Ieee 802.1Q Vlan Application Examples

    ES-2024A User’s Guide Switching to higher-speed LANs such as ATM (Asynchronous Transmission Mode) is not feasible for most people due to the expense of replacing all existing Ethernet cables and adapter cards, restructuring your network and complex maintenance. The switch can provide the same bandwidth as ATM at much lower cost while still being able to use existing adapters and switches.

  • Page 29: Vlan Shared Server Example

    ES-2024A User’s Guide Figure 4 Tag-based VLAN Application 1.4.4.2 VLAN Shared Server Example Shared resources such as a server can be used by all ports in the same VLAN as the server, as shown in the following example. In this example, only ports that need access to the server need belong to VLAN 1.

  • Page 30: Hardware Installation And Connection

    ES-2024A User’s Guide H A P T E R Hardware Installation and Connection This chapter shows you how to install and connect the switch. 2.1 Freestanding Installation 1 Make sure the switch is clean and dry. 2 Set the switch on a smooth, level surface strong enough to support the weight of the switch and the connected cables.

  • Page 31: Mounting The Switch On A Rack

    ES-2024A User’s Guide 2.2 Mounting the Switch on a Rack This section lists the rack mounting requirements and precautions and describes the installation steps. 2.2.1 Rack-mounted Installation Requirements • Two mounting brackets. • Eight M3 flat head screws and a #2 Philips screwdriver.

  • Page 32: Figure 8 Mounting The Switch On A Rack

    ES-2024A User’s Guide Figure 8 Mounting the Switch on a Rack 2 Using a #2 Philips screwdriver, install the M5 flat head screws through the mounting bracket holes into the rack. 3 Repeat steps to attach the second mounting bracket on the other side of the rack.
  • Page 33 ES-2024A User’s Guide Chapter 2 Hardware Installation and Connection...

  • Page 34: Chapter 3 Hardware Overview

    ES-2024A User’s Guide H A P T E R Hardware Overview This chapter describes the front panel and rear panel of the switch and shows you how to make the hardware connections. 3.1 Front Panel Connection The figure below shows the front panel of the switch.

  • Page 35: Ethernet Ports

    ES-2024A User’s Guide • No parity, 8 data bits, 1 stop bit • No flow control Connect the male 9-pin end of the console cable to the console port of the switch. Connect the female end to a serial port (COM1, COM2 or other COM port) of your computer.

  • Page 36: Transceiver Installation

    ES-2024A User’s Guide • Connection speed: 1 Gigabit per second (Gbps) Note: To avoid possible eye injury, do not look into an operating fiber-optic module’s connectors. 3.1.3.1 Transceiver Installation Use the following steps to install a mini GBIC transceiver (SFP module).

  • Page 37: Rear Panel

    ES-2024A User’s Guide Figure 12 Opening the Transceiver’s Latch Example 2 Pull the transceiver out of the slot. Figure 13 Transceiver Removal Example 3.2 Rear Panel The following figure shows the rear panel of the switch. The power receptacle is on the read panel.

  • Page 38: Front Panel Leds

    ES-2024A User’s Guide To connect the power to the switch, insert the female end of power cord to the power receptacle on the rear panel. Connect the other end of the supplied power cord to the power source. Make sure that no objects obstruct the airflow of the fans.
  • Page 39 ES-2024A User’s Guide Chapter 3 Hardware Overview...

  • Page 40: The Web Configurator

    ES-2024A User’s Guide H A P T E R The Web Configurator This section introduces the configuration and functions of the web configurator. 4.1 Introduction The web configurator is an HTML-based management interface that allows easy switch setup and management via Internet browser. Use Internet Explorer 6.0 and later or Netscape Navigator 7.0 and later versions.

  • Page 41: The Status Screen

    ES-2024A User’s Guide 4 Click OK to view the first web configurator screen. 4.3 The Status Screen The Status screen is the first screen that displays when you access the web configurator. The following figure shows the navigating components of a web configurator screen.

  • Page 42: Table 3 Navigation Panel Sub-Links Overview

    ES-2024A User’s Guide Table 3 Navigation Panel Sub-links Overview ADVANCED BASIC SETTING IP APPLICATION MANAGEMENT APPLICATION The following table lists the various web configurator screens within the sub-links. Table 4 Web Configurator Screen Sub-links Details ADVANCED BASIC SETTING IP APPLICATION...

  • Page 43: Table 5 Navigation Panel Links

    ES-2024A User’s Guide Table 4 Web Configurator Screen Sub-links Details (continued) ADVANCED BASIC SETTING IP APPLICATION MANAGEMENT APPLICATION Link Aggregation Cluster Management Status Link Aggregation Protocol Status Cluster Management Link Aggregation Configuration Port Authentication MAC Table RADIUS ARP Table 802.1x...

  • Page 44: Change Your Password

    ES-2024A User’s Guide Table 5 Navigation Panel Links (continued) LINK DESCRIPTION Port This link takes you to a screen where you can configure RADIUS (Remote Authentication Authentication Dial-In User Service), a protocol for user authentication that allows you to use an external server to validate an unlimited number of users.

  • Page 45: Switch Lockout

    ES-2024A User’s Guide Figure 17 Change Administrator Login Password 4.4 Switch Lockout You could lock yourself (and all others) out from the switch by: 1 Deleting the management VLAN (default is VLAN 1). 2 Deleting all port-based VLANs with the CPU port as a member. The “CPU port” is the management port of the switch.

  • Page 46: Logging Out Of The Web Configurator

    ES-2024A User’s Guide To upload the factory-default configuration file, do the following: 1 Connect to the console port using a computer with terminal emulation software. See Section 3.1.1 on page 33 for details. 2 Disconnect and reconnect the switch’s power to begin a session. When you reconnect the switch’s power, you will see the initial screen.

  • Page 47: Help

    ES-2024A User’s Guide Figure 19 Web Configurator: Logout Screen 4.7 Help The web configurator’s online help has descriptions of individual screens and some supplementary information. Click the Help link from a web configurator screen to view an online help description of that screen.

  • Page 48: Initial Setup Example

    ES-2024A User’s Guide H A P T E R Initial Setup Example This chapter shows how to set up the switch for an example network. 5.1 Overview The following lists the configuration steps for the initial setup: • Create a VLAN •...

  • Page 49: Setting Port Vid

    ES-2024A User’s Guide 1 Click Advanced Application and VLAN in the navigation panel and click the Static VLAN link. 2 In the Static VLAN screen, select ACTIVE, enter a descriptive name in the Name field and enter 2 in the VLAN Group ID field for the VLAN2 network.

  • Page 50: Configuring Switch Management Ip Address

    ES-2024A User’s Guide In the example network, configure 2 as the port VID on port 10 so that any untagged frames received on that port get sent to VLAN 2. Figure 21 Initial Setup Network Example: Port VID 1 Click Advanced Applications and VLAN in the navigation panel.

  • Page 51: Figure 22 Initial Setup Example: Management Ip Address

    ES-2024A User’s Guide Figure 22 Initial Setup Example: Management IP Address 1 Connect your computer to any Ethernet port on the switch. Make sure your computer is in the same subnet as the switch. 2 Open your web browser and enter 192.168.1.1 (the default IP address) in the address bar to access the web configurator.

  • Page 52: System Status And Port Statistics

    ES-2024A User’s Guide H A P T E R System Status and Port Statistics This chapter describes the system status (web configurator home page) and port details screens. 6.1 Overview The home screen of the web configurator displays a port statistical summary table with links to each port showing statistical details.

  • Page 53: Status: Port Details

    ES-2024A User’s Guide Table 6 Status LABEL DESCRIPTION System up Time This field shows how long the system has been running since the last time it was started. Port This identifies the Ethernet port. Click a port number to display the Port Details...

  • Page 54: Figure 24 Status: Port Details

    ES-2024A User’s Guide Figure 24 Status: Port Details The following table describes the labels in this screen. Table 7 Status: Port Details LABEL DESCRIPTION Port Info Link This field shows whether the Ethernet connection is down, and the speed/duplex mode.
  • Page 55 ES-2024A User’s Guide Table 7 Status: Port Details (continued) LABEL DESCRIPTION TX Packet This field shows the number of good packets (unicast, multicast and broadcast) transmitted. Multicast This field shows the number of good multicast packets transmitted. Broadcast This field shows the number of good broadcast packets transmitted.

  • Page 56: Chapter 7 Basic Setting

    ES-2024A User’s Guide H A P T E R Basic Setting This chapter describes how to configure the System Info, General Setup, Switch Setup, IP Setup and Port Setup screens. 7.1 Overview The System Info screen displays general switch information (such as firmware version number) and hardware polling information (such as fan speeds).

  • Page 57: General Setup

    ES-2024A User’s Guide Table 8 System Info (continued) LABEL DESCRIPTION Poll Interval(s) The text box displays how often (in seconds) this screen refreshes. You may change the refresh interval by typing a new number in the text box and then clicking Set Interval.

  • Page 58: Introduction To Vlans

    ES-2024A User’s Guide Table 9 General Setup (continued) LABEL DESCRIPTION Login Use this drop-down list box to select which database the switch should use (first) to Precedence authenticate an administrator (user for switch management). Configure the local user accounts in the Access Control Logins screen. The RADIUS is an external server.

  • Page 59: Igmp Snooping

    ES-2024A User’s Guide In MTU (Multi-Tenant Unit) applications, VLAN is vital in providing isolation and security among the subscribers. When properly configured, VLAN prevents one subscriber from accessing the network resources of another on the same LAN, thus a user will not see the printers and hard disks of another user in the same building.

  • Page 60: Figure 27 Switch Setup

    ES-2024A User’s Guide Figure 27 Switch Setup The following table describes the labels in this screen. Table 10 Switch Setup LABEL DESCRIPTION VLAN Type Choose 802.1Q or Port Based. The VLAN Setup screen changes depending on whether you choose 802.1Q VLAN type or Port Based VLAN type in this screen.

  • Page 61: Ip Setup

    ES-2024A User’s Guide Table 10 Switch Setup (continued) LABEL DESCRIPTION Priority Queue Assignment IEEE 802.1p defines up to eight separate traffic types by inserting a tag into a MAC-layer frame that contains bits to define class of service. Frames without an explicit priority tag are given the default priority of the ingress port.

  • Page 62: Figure 28 Ip Setup

    ES-2024A User’s Guide Figure 28 IP Setup The following table describes the labels in this screen. Table 11 IP Setup LABEL DESCRIPTION Domain DNS (Domain Name System) is for mapping a domain name to its corresponding IP Name Server address and vice versa. Enter a domain name server IP address in order to be able to use a domain name instead of an IP address.

  • Page 63: Port Setup

    ES-2024A User’s Guide Table 11 IP Setup (continued) LABEL DESCRIPTION Enter the VLAN identification number associated with the switch IP address. This is the VLAN ID of the CPU and is used for management only. The default is "1". All ports, by default, are fixed members of this "management VLAN"...

  • Page 64: Figure 29 Port Setup

    ES-2024A User’s Guide Figure 29 Port Setup The following table describes the labels in this screen. Table 12 Port Setup LABEL DESCRIPTION Port This is the port index number. Active Select this check box to enable a port. The factory default for all ports is enabled. A port must be enabled for data transmission to occur.
  • Page 65 ES-2024A User’s Guide Table 12 Port Setup (continued) LABEL DESCRIPTION Flow Control A concentration of traffic on a port decreases port bandwidth and overflows buffer memory causing packet discards and frame losses. Flow Control is used to regulate transmission of signals to match the bandwidth of the receiving port.

  • Page 66: Chapter 8 Vlan

    ES-2024A User’s Guide H A P T E R VLAN The type of screen you see here depends on the VLAN Type you selected in the Switch Setup screen. This chapter shows you how to configure 802.1Q tagged and port-based VLANs.

  • Page 67: Automatic Vlan Registration

    ES-2024A User’s Guide 8.2 Automatic VLAN Registration GARP and GVRP are the protocols used to automatically register VLAN membership across switches. 8.2.1 GARP GARP (Generic Attribute Registration Protocol) allows network switches to register and de- register attribute values with other GARP participants within a bridged LAN. GARP is a protocol that provides a generic mechanism for protocols that serve a more specific application, for example, GVRP.

  • Page 68: Port Vlan Trunking

    ES-2024A User’s Guide Table 13 IEEE 802.1q Terminology (continued) VLAN PARAMETER TERM DESCRIPTION VLAN Port Port VID This is the VLAN ID assigned to untagged frames that this port received. Acceptable frame You may choose to accept both tagged and untagged...

  • Page 69: Static Vlan

    ES-2024A User’s Guide Figure 31 Switch Setup: Select VLAN Type 8.5 Static VLAN Use a static VLAN to decide whether an incoming frame on a port should be • sent to a VLAN group as normal depends on its VLAN tag.

  • Page 70: Configure A Static Vlan

    ES-2024A User’s Guide Table 14 VLAN: VLAN Status LABEL DESCRIPTION The Number of This is the number of VLANs configured on the switch. VLAN Index This is the VLAN index number. This is the VLAN identification number that was configured in the VLAN Setup screen.

  • Page 71: Figure 33 Vlan: Static Vlan

    ES-2024A User’s Guide Figure 33 VLAN: Static VLAN The following table describes the related labels in this screen. Table 15 VLAN: Static VLAN LABEL DESCRIPTION ACTIVE Select this check box to activate the VLAN settings. Name Enter a descriptive name for the VLAN group for identification purposes.

  • Page 72: Configure Vlan Port Settings

    ES-2024A User’s Guide Table 15 VLAN: Static VLAN (continued) LABEL DESCRIPTION Active This field indicates whether the VLAN settings are enabled (Yes) or disabled (No). Name This field displays the descriptive name for this VLAN group. Delete Click Delete to remove the selected entry from the summary table.

  • Page 73: Port-Based Vlan Setup

    ES-2024A User’s Guide Table 16 VLAN: VLAN Port Setting (continued) LABEL DESCRIPTION Ingress Check Select this check box to activate ingress filtering on the switch. Clear this check box to disable ingress filtering the switch. Port This field displays the port number.

  • Page 74: Figure 35 Port Based Vlan Setup (All Connected)

    ES-2024A User’s Guide Figure 35 Port Based VLAN Setup (All Connected) Chapter 8 VLAN...

  • Page 75: Figure 36 Port Based Vlan Setup (Port Isolation)

    ES-2024A User’s Guide Figure 36 Port Based VLAN Setup (Port Isolation) The following table describes the labels in this screen. Chapter 8 VLAN...

  • Page 76: Table 17 Port Based Vlan Setup

    ES-2024A User’s Guide Table 17 Port Based VLAN Setup LABEL DESCRIPTION Setting Wizard Choose All connected or Port isolation. All connected means all ports can communicate with each other, that is, there are no virtual LANs. All incoming and outgoing ports are selected. This option is the most flexible but also the least secure.
  • Page 77 ES-2024A User’s Guide Chapter 8 VLAN...

  • Page 78: Static Mac Forwarding

    ES-2024A User’s Guide H A P T E R Static MAC Forwarding Use these screens to configure static MAC address forwarding. 9.1 Overview A static MAC address is an address that has been manually entered in the MAC address table.

  • Page 79: Table 18 Static Mac Forwarding

    ES-2024A User’s Guide Table 18 Static MAC Forwarding LABEL DESCRIPTION Active Select this check box to activate your rule. You may temporarily deactivate a rule without deleting it by clearing this check box. Name Enter a descriptive name for identification purposes for this static MAC address forwarding rule.

  • Page 80: Chapter 10 Filtering

    ES-2024A User’s Guide H A P T E R Filtering This chapter discusses static IP and MAC address port filtering. 10.1 Overview Port filtering means discarding (or dropping) packets based on the MAC addresses and VLAN group. 10.2 Configure a Filtering Rule Click Advanced Application and Filtering in the navigation panel to display the screen as shown next.
  • Page 81 ES-2024A User’s Guide Table 19 FIltering (continued) LABEL DESCRIPTION Click Add to save the new rule to the switch. It then displays in the summary table at the bottom of the screen. Cancel Click Cancel to reset the fields to your previous configuration.

  • Page 82: Chapter 11 Spanning Tree Protocol

    ES-2024A User’s Guide H A P T E R Spanning Tree Protocol This chapter introduces the Spanning Tree Protocol (STP). 11.1 Overview STP detects and breaks network loops and provides backup links between switches, bridges or routers. It allows a switch to interact with other STP-compliant switches in your network to ensure that only one route exists between any two stations on the network.

  • Page 83: How Stp Works

    ES-2024A User’s Guide 11.1.2 How STP Works After a bridge determines the lowest cost-spanning tree with STP, it enables the root port and the ports that are the designated ports for connected LANs, and disables all other ports that participate in STP. Network packets are therefore only forwarded between enabled ports, eliminating any possible network loops.

  • Page 84: Figure 39 Spanning Tree Protocol: Status

    ES-2024A User’s Guide Figure 39 Spanning Tree Protocol: Status The following table describes the labels in this screen. Table 22 Spanning Tree Protocol: Status LABEL DESCRIPTION Spanning Tree This field displays Running if STP is activated. Otherwise, it displays Down.

  • Page 85: Configure Stp

    ES-2024A User’s Guide Table 22 Spanning Tree Protocol: Status (continued) LABEL DESCRIPTION Poll Interval(s) The text box displays how often (in seconds) this screen refreshes. You may change the refresh interval by typing a new number in the text box and then clicking Set Interval.
  • Page 86 ES-2024A User’s Guide Table 23 Spanning Tree Protocol: Configuration (continued) LABEL DESCRIPTION Bridge Priority Bridge priority is used in determining the root switch, root port and designated port. The switch with the highest priority (lowest numeric value) becomes the STP root switch.
  • Page 87 ES-2024A User’s Guide Chapter 11 Spanning Tree Protocol...

  • Page 88: Chapter 12 Bandwidth Control

    ES-2024A User’s Guide H A P T E R Bandwidth Control This chapter shows you how you can cap the maximum bandwidth using the Bandwidth Control screen. 12.1 Bandwidth Control Setup Bandwidth control means defining a maximum allowable bandwidth for incoming and/or out- going traffic flows on a port.
  • Page 89 ES-2024A User’s Guide Table 24 Bandwidth Control (continued) LABEL DESCRIPTION Active Make sure to select this check box to activate bandwidth control on a port. Ingress Rate Specify the maximum bandwidth allowed in Kilobits per second (Kbps) for the incoming traffic flow on a port.

  • Page 90: Broadcast Storm Control

    ES-2024A User’s Guide H A P T E R Broadcast Storm Control This chapter introduces and shows you how to configure the broadcast storm control feature. 13.1 Overview Broadcast storm control limits the number of broadcast frames that can be stored in the switch buffer or sent out from the switch.

  • Page 91: Table 25 Broadcast Storm Control

    ES-2024A User’s Guide Table 25 Broadcast Storm Control LABEL DESCRIPTION Active Select this check box to enable broadcast storm control on the switch. Clear this check box to disable the feature. Port This field displays a port number. Active Select this check box to enable broadcast storm control on the port. Clear this check box to disable the feature.

  • Page 92: Chapter 14 Mirroring

    ES-2024A User’s Guide H A P T E R Mirroring This chapter discusses the Mirror setup screens. 14.1 Overview Port mirroring allows you to copy a traffic flow to a mirror port (the port you copy the traffic to) in order that you can examine the traffic from the mirror port without interference.

  • Page 93: Table 26 Mirroring

    ES-2024A User’s Guide Table 26 Mirroring LABEL DESCRIPTION Active Clear this check box to deactivate port mirroring on the switch. Mirror Port The mirror port is the port you copy the traffic to in order to examine it in more detail without interfering with the traffic flow on the original port(s).

  • Page 94: Chapter 15 Link Aggregation

    ES-2024A User’s Guide H A P T E R Link Aggregation This chapter shows you how to logically aggregate physical links to form one logical, higher- bandwidth link. 15.1 Overview Link aggregation (trunking) is the grouping of physical ports into one logical higher-capacity link.

  • Page 95: Link Aggregation Id

    ES-2024A User’s Guide 15.2.1 Link Aggregation ID LACP aggregation ID consists of the following information Table 27 Link Aggregation ID: Local Switch SYSTEM PRIORITY MAC ADDRESS PORT PRIORITY PORT NUMBER 0000 00-00-00-00-00 0000 0000 Table 28 Link Aggregation ID: Peer Switch...

  • Page 96: Link Aggregation Setup

    ES-2024A User’s Guide Table 29 Link Aggregation Control Protocol Status LABEL DESCRIPTION Index This field displays the trunk ID to identify a trunk group, that is, one logical link containing multiple ports. Aggregator ID Refer to Section 15.2.1 on page 94 for more information on this field.

  • Page 97: Figure 45 Link Aggregation: Configuration

    ES-2024A User’s Guide Figure 45 Link Aggregation: Configuration The following table describes the labels in this screen. Table 30 Link Aggregation Control Protocol: Configuration LABEL DESCRIPTION Link Aggregation Control Protocol Active Select this checkbox to enable Link Aggregation Control Protocol (LACP).
  • Page 98 ES-2024A User’s Guide Table 30 Link Aggregation Control Protocol: Configuration (continued) LABEL DESCRIPTION LACP Timeout Timeout is the time interval between the individual port exchanges of LACP packets in order to check that the peer port in the trunk group is still up. If a port does not respond after three tries, then it is deemed to be “down”...
  • Page 99 ES-2024A User’s Guide Chapter 15 Link Aggregation...

  • Page 100: Chapter 16 Port Authentication

    ES-2024A User’s Guide H A P T E R Port Authentication This chapter describes the 802.1x authentication method and RADIUS server connection setup. 16.1 Overview IEEE 802.1x is an extended authentication protocol that allows support of RADIUS (Remote Authentication Dial In User Service, RFC 2138, 2139) for centralized user profile and accounting management on a network RADIUS server.

  • Page 101: Activate Ieee 802.1X Security

    ES-2024A User’s Guide Figure 47 Port Authentication 16.2.1 Activate IEEE 802.1x Security From the Port Authentication screen, display the configuration screen as shown. Figure 48 Port Authentication: 802.1x The following table describes the labels in this screen. Table 31 Port Authentication: 802.1x...

  • Page 102: Configuring Radius Server Settings

    ES-2024A User’s Guide Table 31 Port Authentication: 802.1x (continued) LABEL DESCRIPTION Apply Click Apply to save your changes back to the switch. Cancel Click Cancel to begin configuring this screen afresh. 16.2.2 Configuring RADIUS Server Settings From the Port Authentication screen, click RADIUS to display the configuration screen as shown.
  • Page 103 ES-2024A User’s Guide Chapter 16 Port Authentication...

  • Page 104: Chapter 17 Port Security

    ES-2024A User’s Guide H A P T E R Port Security This chapter shows you how to set up port security. 17.1 Overview Port security allows only packets with dynamically learned MAC addresses and/or configured static MAC addresses to pass through a port on the switch.

  • Page 105: Table 33 Port Security

    ES-2024A User’s Guide The following table describes the labels in this screen. Table 33 Port Security LABEL DESCRIPTION Active Select this check box to enable the port security feature on the switch. Port This field displays a port number. Active Select this check box to enable the port security feature on this port.

  • Page 106: Chapter 18 Queuing Method

    ES-2024A User’s Guide H A P T E R Queuing Method This chapter introduces the queuing methods supported. 18.1 Overview Queuing is used to help solve performance degradation when there is network congestion. Use the Queuing Method screen to configure queuing algorithms for outgoing traffic. See also Priority Queue Assignment in Switch Setup and 802.1p Priority in Port Setup for related...

  • Page 107: Configuring Queuing Method

    ES-2024A User’s Guide Weighted Round Robin Scheduling (WRR) uses the same algorithm as round robin scheduling, but services queues based on their priority and queue weight (the number you configure in the queue Weight field) rather than a fixed amount of bandwidth. WRR is activated only when a port has more traffic than it can handle.

  • Page 108: Chapter 19 Static Route

    ES-2024A User’s Guide H A P T E R Static Route This chapter shows you how to configure static routes. 19.1 Configuring Static Route Static routes tell the switch how to forward IP traffic when you configure the TCP/IP parameters manually.
  • Page 109 ES-2024A User’s Guide Table 36 Static Routing (continued) LABEL DESCRIPTION Metric The metric represents the “cost” of transmission for routing purposes. IP routing uses hop count as the measurement of cost, with a minimum of 1 for directly connected networks. Enter a number that approximates the cost for this link. The number need not be precise, but it must be between 1 and 15.

  • Page 110: Differentiated Services

    ES-2024A User’s Guide H A P T E R Differentiated Services This chapter shows you how to configure Differentiated Services (DiffServ) on the switch. 20.1 Overview Quality of Service (QoS) mechanisms provide the best service on a per-flow guarantee. To fine-tune the levels of services on the priority of the traffic flow using QoS places a heavy burden on the network infrastructure.

  • Page 111: Activating Diffserv

    ES-2024A User’s Guide Figure 54 DiffServ Network Example Switch A marks traffic flowing into the network based on the configured marking rules. Intermediary network devices 1 and 2 allocate network resources (such as bandwidth) by mapping the DSCP values and the associated policies.

  • Page 112: Dscp-To-Ieee802.1P Priority Mapping

    ES-2024A User’s Guide Table 37 DiffServ (continued) LABEL DESCRIPTION Apply Click Apply to save the changes. Cancel Click Cancel to start configuring this screen again. 20.3 DSCP-to-IEEE802.1p Priority Mapping You can configure the DSCP to IEEE802.1p mapping to allow the switch to prioritize all traffic based on the incoming DSCP value according to the DiffServ to IEEE802.1p mapping...

  • Page 113: Table 39 Diffserv: Dscp Setting

    ES-2024A User’s Guide Table 39 DiffServ: DSCP Setting LABEL DESCRIPTION 0 … 63 This is the DSCP classification identification number. To set the IEEE802.1p priority mapping, select the priority level from the drop-down list box. Apply Click Apply to save the changes.

  • Page 114: Chapter 21 Maintenance

    ES-2024A User’s Guide H A P T E R Maintenance This chapter explains how to configure the maintenance screens that let you maintain the firmware and configuration files. 21.1 The Maintenance Screen Click Management, Maintenance in the navigation panel to open the following screen.

  • Page 115: Firmware Upgrade

    ES-2024A User’s Guide 21.2 Firmware Upgrade Make sure you have downloaded (and unzipped) the correct model firmware and version to your computer before uploading to the device. Note: Be sure to upload the correct model firmware as uploading the wrong model firmware may damage your device.

  • Page 116: Backing Up A Configuration File

    ES-2024A User’s Guide 21.4 Backing Up a Configuration File Backing up your switch configurations allows you to create various “snap shots” of your device from which you may restore at a later date. Back up your current switch configuration to a computer using the Backup Configuration screen.

  • Page 117: Reboot System

    ES-2024A User’s Guide Figure 62 Load Factory Default: Start 3 Click OK to begin resetting all switch configurations to the factory defaults and then wait for the switch to restart. This takes up to two minutes. If you want to access the switch web configurator again, you may need to change the IP address of your computer to be in the same subnet as that of the default switch IP address (192.168.1.1).

  • Page 118: Example Ftp Commands

    ES-2024A User’s Guide ZyNOS (ZyXEL Network Operating System sometimes referred to as the “ras” file) is the system firmware and has a “bin” filename extension. Table 41 Filename Conventions INTERNAL EXTERNAL FILE TYPE DESCRIPTION NAME NAME Configuration File config This is the configuration filename on the switch.

  • Page 119: Gui-Based Ftp Clients

    ES-2024A User’s Guide 7 Enter to exit the ftp prompt. quit 21.7.3 GUI-based FTP Clients The following table describes some of the commands that you may see in GUI-based FTP clients. General Commands for GUI-based FTP Clients COMMAND DESCRIPTION Host Address Enter the address of the host server.

  • Page 120: Chapter 22 Access Control

    ES-2024A User’s Guide H A P T E R Access Control This chapter describes how to control access to the switch. 22.1 Overview • A console port access control session and Telnet access control session cannot coexist. The console port has higher priority. If you telnet to the switch and someone is already logged in from the console port, then you will see the following message.

  • Page 121: About Snmp

    ES-2024A User’s Guide 22.3 About SNMP Simple Network Management Protocol (SNMP) is an application layer protocol used to manage and monitor TCP/IP-based devices. SNMP is used to exchange management information between the network management system (NMS) and a network element (NE). A manager station can manage and monitor the switch through the network via SNMP version one (SNMPv1) and/or SNMP version 2c.

  • Page 122: Supported Mibs

    ES-2024A User’s Guide Table 43 SNMP Commands COMMAND DESCRIPTION Allows the manager to set values for object variables within an agent. Trap Used by the agent to inform the manager of some events. 22.3.1 Supported MIBs MIBs let administrators collect statistics and monitor status and performance.

  • Page 123: Setting Up Login Accounts

    ES-2024A User’s Guide Figure 68 Access Control: SNMP The following table describes the labels in this screen. Table 45 Access Control: SNMP LABEL DESCRIPTION Get Community Enter the get community, which is the password for the incoming Get- and GetNext- requests from the management station.

  • Page 124: Ssh Overview

    ES-2024A User’s Guide Figure 69 Access Control: Logins The following table describes the labels in this screen. Table 46 Access Control: Logins LABEL DESCRIPTION Administrator This is the default administrator account with the “admin” user name. You cannot change the default administrator user name.

  • Page 125: How Ssh Works

    ES-2024A User’s Guide Figure 70 SSH Communication Example 22.6 How SSH works The following table summarizes how a secure connection is established between two remote hosts. Figure 71 How SSH Works 1 Host Identification The SSH client sends a connection request to the SSH server. The server identifies itself with a host key.

  • Page 126: Ssh Implementation On The Switch

    ES-2024A User’s Guide 3 Authentication and Data Transmission After the identification is verified and data encryption activated, a secure tunnel is established between the client and the server. The client then sends its authentication information (user name and password) to the server to log in to the server.

  • Page 127: Introduction To Https

    SSH/hostkeys/key_22_192.168.1.1.pub host key for 192.168.1.1, accepted by Administrator Thu May 12 2005 09:52:21 admin's password: Authentication successful. Copyright (c) 1994 - 2005 ZyXEL Communications Corp. ras> 22.8 Introduction to HTTPS HTTPS (HyperText Transfer Protocol over Secure Socket Layer, or HTTP over SSL) is a web protocol that encrypts and decrypts web pages.

  • Page 128: Https Example

    ES-2024A User’s Guide 1 HTTPS connection requests from an SSL-aware web browser go to port 443 (by default) on the switch’s WS (web server). 2 HTTP connection requests from a web browser go to port 80 (by default) on the switch’s WS (web server).

  • Page 129: Netscape Navigator Warning Messages

    ES-2024A User’s Guide Figure 74 Security Alert Dialog Box (Internet Explorer) 22.9.2 Netscape Navigator Warning Messages When you attempt to access the switch HTTPS server, a Website Certified by an Unknown Authority screen pops up asking if you trust the server certificate. Click Examine Certificate if you want to verify that the certificate is from the switch.

  • Page 130: The Main Screen

    ES-2024A User’s Guide Figure 76 Security Certificate 2 (Netscape) 22.9.3 The Main Screen After you accept the certificate and enter the login username and password, the switch main screen appears. The lock displayed in the bottom right of the browser status bar denotes a secure connection.

  • Page 131: Figure 77 Login Screen (Internet Explorer)

    ES-2024A User’s Guide Figure 77 Login Screen (Internet Explorer) Figure 78 Login Screen (Netscape) Chapter 22 Access Control...

  • Page 132: Service Port Access Control

    ES-2024A User’s Guide 22.10 Service Port Access Control Service Access Control allows you to decide what services you may use to access the switch. You may also change the default service port and configure “trusted computer(s)” for each service in the Remote Management screen (discussed later). Click Access Control to go back to the main Access Control screen.

  • Page 133: Figure 80 Access Control: Remote Management

    ES-2024A User’s Guide Figure 80 Access Control: Remote Management The following table describes the labels in this screen. Table 48 Access Control: Remote Management LABEL DESCRIPTION Entry This is the client set index number. A “client set” is a group of one or more “trusted computers”...

  • Page 134: Chapter 23 Diagnostic

    ES-2024A User’s Guide H A P T E R Diagnostic This chapter explains the Diagnostic screen. 23.1 Diagnostic Click Management, Diagnostic in the navigation panel to open this screen. Use this screen to check system logs, reset the system or ping IP addresses.
  • Page 135 ES-2024A User’s Guide Chapter 23 Diagnostic...

  • Page 136: Chapter 24 Cluster Management

    Table 50 ZyXEL Clustering Management Specifications Maximum number of cluster members 24 Cluster Member Models Must be compatible with ZyXEL cluster management implementation. Cluster Manager The switch through which you manage the cluster member switches.

  • Page 137: Cluster Management Status

    ES-2024A User’s Guide 24.2 Cluster Management Status Click Management, Cluster Management in the navigation panel to display the following screen. Note: A cluster can only have one manager. Figure 83 Cluster Management: Status The following table describes the labels in this screen.

  • Page 138: Cluster Member Switch Management

    ES-2024A User’s Guide 24.2.1 Cluster Member Switch Management Go to the Clustering Management Status screen of the cluster manager switch and then select an Index hyperlink from the list of members to go to that cluster member switch's web configurator home page. This cluster member web configurator home page and the home page that you'd see if you accessed it directly are different.

  • Page 139: Configuring Cluster Management

    ES-2024A User’s Guide Figure 85 Example: Uploading Firmware to a Cluster Member Switch C:\>ftp 192.168.1.1 Connected to 192.168.1.1. FTP version 1.0 ready at Thu Jan 1 00:47:52 1970 User (192.168.1.1:(none)): admin 331 Enter PASS command Password: 230 Logged in ftp> ls...

  • Page 140: Figure 86 Clustering Management Configuration

    ES-2024A User’s Guide Figure 86 Clustering Management Configuration The following table describes the labels in this screen. Table 53 Clustering Management Configuration LABEL DESCRIPTION Clustering Manager Active Select Active to have this switch become the cluster manager switch. A cluster can only have one manager.
  • Page 141 ES-2024A User’s Guide Table 53 Clustering Management Configuration (continued) LABEL DESCRIPTION Password Each cluster member’s password is its web configurator password. Select a member in the Clustering Candidate list and then enter its web configurator password. If that switch administrator changes the web configurator password afterwards, then it cannot be managed from the Cluster Manager.

  • Page 142: Chapter 25 Mac Table

    ES-2024A User’s Guide H A P T E R MAC Table This chapter introduces the MAC Table screen. 25.1 Overview The MAC Table screen (a MAC table is also known as a filtering database) shows how frames are forwarded or filtered across the switch’s ports. It shows what device MAC address,...

  • Page 143: Viewing The Mac Table

    ES-2024A User’s Guide 25.2 Viewing the MAC Table Click Management, MAC Table in the navigation panel to display the following screen. Figure 88 MAC Table The following table describes the labels in this screen. Table 54 MAC Table LABEL DESCRIPTION...

  • Page 144: Chapter 26 Arp Table

    ES-2024A User’s Guide H A P T E R ARP Table This chapter introduces ARP Table. 26.1 Overview Address Resolution Protocol (ARP) is a protocol for mapping an Internet Protocol address (IP address) to a physical machine address, also known as a Media Access Control or MAC address, on the local area network.

  • Page 145: Figure 89 Arp Table

    ES-2024A User’s Guide Figure 89 ARP Table The following table describes the labels in this screen. Table 55 ARP Table LABEL DESCRIPTION Index This is the ARP Table entry number. IP Address This is the learned IP address of a device connected to a switch port with corresponding MAC address below.

  • Page 146: Introducing The Commands

    ES-2024A User’s Guide H A P T E R Introducing the Commands This chapter introduces the commands and gives a summary of commands available. 27.1 Overview In addition to the web configurator, you can use line commands to configure the switch. Use line commands for advanced switch diagnosis and troubleshooting.

  • Page 147: Access Priority

    (refer to Section 27.3 on page 147). Figure 90 Initial Console Port Screen Copyright (c) 1994 - 2004 ZyXEL Communications Corp. initialize switch, ethernet address: 00:13:49:1a:d4:fa ZyXEL ADM5120 10/100 Mbps Ethernet Controller 2002.9.27.0 Press ENTER to continue...

  • Page 148: Ssh

    SSH/hostkeys/key_22_192.168.1.1.pub host key for 192.168.1.1, accepted by Administrator Thu May 12 2005 09:52:21 admin's password: Authentication successful. Copyright (c) 1994 - 2005 ZyXEL Communications Corp. ras> 27.3 The Login Screen After you have successfully established a connection to the switch using a direct console connection or Telnet, a login screen displays as shown below.

  • Page 149: Command Syntax Conventions

    ES-2024A User’s Guide 27.4 Command Syntax Conventions The rules of the commands are listed next. • The command keywords are in font. courier new • The required fields in a command are enclosed in angle brackets <>, for instance, ping means that you must specify an IP number for this command.

  • Page 150: Detailed Command Information

    ES-2024A User’s Guide Figure 93 CLI Help: List of Commands: Example 1 ras> help Commands available: help logout exit history enable show ip <cr> show hardware-monitor <C|F> show system-information ping help ping <ip|host-name> [vlan <vlan-id>][..] ping <ip|host-name> <cr> traceroute help traceroute <ip|host-name>...

  • Page 151: Command Modes

    ES-2024A User’s Guide Figure 95 CLI Help: Detailed Command Information: Example 1 ras> ping help Commands available: ping <ip> < [ vlan <vlan-id> ] [ size <0-1472> ] [ -t ] > ras> Figure 96 CLI: Help: Detailed Command Information: Example 2 ras>...

  • Page 152: Using Command History

    ES-2024A User’s Guide 27.7 Using Command History The switch keeps a list of up to 256 commands(s) you have entered for the current CLI session. You can use any commands in the history again by pressing the up ( ) or down ( ) arrow key to scroll through the previously used commands and press .

  • Page 153: User Mode

    ES-2024A User’s Guide 27.9.1 User Mode The following table describes the commands available for User mode. Table 56 Command Summary: User Mode COMMAND DESCRIPTION Accesses Enable (or privileged) mode. See Section 27.9.2 enable on page 152. Logs out from the CLI.

  • Page 154: Show Cluster

    ES-2024A User’s Guide Table 57 Command Summary: Enable Mode (continued) COMMAND DESCRIPTION Accesses Enable (or privileged) mode. enable Resets to the factory default settings. erase running-config Exits Enable (or privileged) mode. exit Displays help information. help Displays a list of command(s) that you history have previously executed.

  • Page 155: Route Static

    ES-2024A User’s Guide Table 57 Command Summary: Enable Mode (continued) COMMAND DESCRIPTION Displays broadcast storm control settings. bstorm-control Displays outgoing port information. egress Displays IP related information. Displays the ARP table. Displays IP routing information. route Displays IP static route information.

  • Page 156: General Configuration Mode

    ES-2024A User’s Guide Table 57 Command Summary: Enable Mode (continued) COMMAND DESCRIPTION Displays current SSH session(s). session Displays general system information. system-information Displays current system time and date. time Displays time server information. timesync Displays link aggregation information. trunk Displays the status of all VLANs.
  • Page 157 ES-2024A User’s Guide Table 58 Command Summary: Configuration Mode (continued) COMMAND DESCRIPTION Exits from the CLI. exit Configures GARP time settings. garp join <100-65535> leave <msec> leaveall <msec> Displays help information. help Displays a list of previous history command(s) that you have executed.

  • Page 158: Cluster Member

    ES-2024A User’s Guide Table 58 Command Summary: Configuration Mode (continued) COMMAND DESCRIPTION Configures a static MAC mac-forward name <name> mac address forwarding rule. <mac-addr> vlan <vlan-id> interface <interface-id> Disables a static MAC address inactive forwarding rule. Sets port mirroring for the MAC...
  • Page 159 ES-2024A User’s Guide Table 58 Command Summary: Configuration Mode (continued) COMMAND DESCRIPTION Enables the specified MAC-filter mac-filter mac <mac-addr> rule. vlan <vlan-id> drop <src/dst/ both> inactive Disables the specified MAC mac <mac-addr> filter rule. vlan <vlan-id> drop <src/dst/ both> Removes the specified MAC mac-forward mac <mac-addr>...
  • Page 160 ES-2024A User’s Guide Table 58 Command Summary: Configuration Mode (continued) COMMAND DESCRIPTION Disables secure web browser https access to the switch. Disables ICMP access to the icmp switch such as pinging and tracerouting. Disables SNMP management. snmp Disables SSH (Secure Shell) server access to the switch.
  • Page 161 ES-2024A User’s Guide Table 58 Command Summary: Configuration Mode (continued) COMMAND DESCRIPTION Enables 802.1x authentication <port-list> on the specified port(s). Sets a subscriber to periodically reauthenticate re-enter his or her username and password to stay connected to a specified port.
  • Page 162 ES-2024A User’s Guide Table 58 Command Summary: Configuration Mode (continued) COMMAND DESCRIPTION Sets the get community. get-community <property> Sets the set community. set-community <property> Sets the trap community. trap-community <property> trap-destination Sets the IP addresses of up to four stations to send your <ip>...

  • Page 163: Interface Port-Channel Commands

    ES-2024A User’s Guide Table 58 Command Summary: Configuration Mode (continued) COMMAND DESCRIPTION Enables LACP for a trunk <T1|T2|T3>lacp group. Defines the port number and interface <port- LACP timeout period. list> timeout <lacp-timeout> Enters the VLAN configuration vlan <1-4094> mode. See Section 27.9.5 on...
  • Page 164 ES-2024A User’s Guide Table 59 interface port-channel Commands (continued) COMMAND DESCRIPTION Sets the outgoing traffic port list egress set <port- for a port-based VLAN. list> Exits from the interface port- exit channel command mode. Enables interface flow control. flow-control Flow control regulates transmissions to match the bandwidth of the receiving port.

  • Page 165: Config-Vlan Commands

    ES-2024A User’s Guide Table 59 interface port-channel Commands (continued) COMMAND DESCRIPTION The default PVID is VLAN 1 for pvid <1-4094> all ports. Sets a PVID in the range 1 to 4094 for the specified interface. Sets the quality of service qos priority <0 ..
  • Page 166 ES-2024A User’s Guide Table 60 Command Summary: config-vlan Commands (continued) COMMAND DESCRIPTION Sets a default gateway IP address for default-gateway this VLAN. <ip-address> Sets the dynamic in-band IP address default- management dhcp- bootp Sets a static in-band IP address and default- subnet mask.
  • Page 167 ES-2024A User’s Guide Chapter 27 Introducing the Commands...

  • Page 168: Chapter 28 Command Examples

    ES-2024A User’s Guide H A P T E R Command Examples This chapter describes some commands in more detail. 28.1 Overview These are commands that you may use frequently in maintaining your switch. 28.2 show Commands These are the commonly used commands.

  • Page 169: Show Ip

    ES-2024A User’s Guide 28.2.2 show ip Syntax: show ip This command displays the IP related information (such as IP address and subnet mask) on all switch interfaces. The following figure shows the default interface settings. Figure 100 show ip Command Example ras>...

  • Page 170: Show Interface

    ES-2024A User’s Guide 28.2.4 show interface Syntax: show interface [port-number] This command displays statistics of a port. The following example shows that port 2 is up and the related information. Figure 102 show interface Command Example ras# show interface 2 Port Info Port NO.

  • Page 171: Ping

    ES-2024A User’s Guide = Specifies the sorting criteria (MAC, VID or port). <sort> This command displays the MAC address(es) stored in the switch. The following example shows the MAC address table. Figure 103 show mac address-table Command Example ras# show mac address-table all...

  • Page 172: Enabling Rstp

    ES-2024A User’s Guide where The IP address of an Ethernet device. <ip> Specifies the VLAN ID to which the Ethernet device belongs. [vlan <vlan-id> ] = Specifies the Time To Live (TTL) period. [ttl <1-255>] Specifies the time period to wait.

  • Page 173: Resetting To The Factory Default

    ES-2024A User’s Guide Figure 107 CLI: boot config Command Example ras# boot config Use the command to restart the system. The following figure shows an reload config example. Figure 108 CLI: reload config Command Example ras# reload config 28.6.2 Resetting to the Factory Default Follow the steps below to reset the switch back to the factory defaults.

  • Page 174: No Https Timeout

    ES-2024A User’s Guide Figure 110 no mirror-port Command Example ras(config)# no mirror-port 28.7.2 no https timeout Syntax: no https timeout Resets the https session timeout to default. An example is shown next. The session timeout is reset to 300 seconds.

  • Page 175: No Port-Access-Authenticator

    ES-2024A User’s Guide Figure 112 no trunk Command Example ras(config)# no trunk T1 ras(config)# no trunk T3 lacp ras(config)# no trunk T2 interface 1,3-5 28.7.4 no port-access-authenticator Syntax: no port-access-authenticator no port-access-authenticator <port-list> reauthenticate no port-access-authenticator <port-list> where = Disables port authentication on the switch.

  • Page 176: Spq

    ES-2024A User’s Guide Remove specific remote hosts from the list of all known hosts. known-hosts <host-ip> Remove remote known hosts with a specified public key (1024- known-hosts <host-ip> [1024|ssh-rsa|ssh-dsa] bit RSA1, RSA or DSA). An example is shown next. • Disable the secure shell RSA1 encryption key.

  • Page 177: Interface Commands

    ES-2024A User’s Guide Figure 116 wrr Command Example ras# configure ras(config)# wrr ras(config)# wrr 4 3 2 1 28.10 interface Commands These are some commonly used commands that belong to the group of interface commands. 28.10.1 interface port-channel Syntax: interface port-channel <port-list>...

  • Page 178: Bandwidth-Limit

    ES-2024A User’s Guide An example is shown next. • Enable port one for configuration. • Enable broadcast control. • Set the broadband packet traffic the interface receives per second. Figure 118 broadcast-limit Command Example ras(config)# interface port-channel 1 ras(config-interface)# bmstorm-limit ras(config-interface)# bmstorm-limit 21 28.10.3 bandwidth-limit...

  • Page 179: Gvrp

    ES-2024A User’s Guide where Enables port mirroring on the interface. = Enables port mirroring for incoming, outgoing or both <ingress|egress|both> incoming and outgoing traffic. Port mirroring copies traffic from one or all ports to another or all ports for external analysis.

  • Page 180: Frame-Type

    ES-2024A User’s Guide Figure 121 gvrp Command Example ras(config)# vlan1q gvrp ras(config)# interface port-channel 1,3-5 ras(config-interface)# gvrp 28.10.6 frame-type Syntax: frame-type <all|tagged> where Choose to accept both tagged and untagged incoming frames or just tagged <all|tagged> incoming frames on a port.

  • Page 181: Qos Priority

    ES-2024A User’s Guide Figure 123 egress set Command Example ras(config)# vlan-type port-based ras(config)# interface port-channel 1,3-5 ras(config-interface)# egress set 0,7-9 28.10.8 qos priority Syntax: qos priority <0 .. 7> where Sets the quality of service priority for a port. <0 .. 7>...

  • Page 182: Speed-Duplex

    ES-2024A User’s Guide Figure 125 name Command Example ras(config)# interface port-channel 1,3-5 ras(config-interface)# name Test 28.10.10 speed-duplex Syntax: speed-duplex <auto|10-half|10-full|100-half|100-full|1000-full> where Sets the duplex mode (half or full) and speed (10, 100 or 1000 Mbps) <auto|10-half|10- full|100-half|100- of the connection on the port. Selecting auto (auto-negotiation) full|1000-full>...
  • Page 183 ES-2024A User’s Guide Chapter 28 Command Examples...

  • Page 184: Ieee 802.1Q Tagged Vlan Commands

    ES-2024A User’s Guide H A P T E R IEEE 802.1Q Tagged VLAN Commands This chapter describes the IEEE 802.1Q Tagged VLAN and associated commands. 29.1 IEEE 802.1Q Tagged VLAN Overview See the VLAN chapter for more information on VLANs. There are two kinds of tagging: 1 Explicit Tagging A VLAN identifier is added to the frame header that identifies the source VLAN.

  • Page 185: Dynamic Entries (Dvlan Table)

    ES-2024A User’s Guide 29.2.2 Dynamic Entries (DVLAN Table) Dynamic entries are learned by the switch and cannot be created or updated by administrators. The switch learns this information by observing what port, source address and VLAN ID (or VID) is associated with a frame. Entries are added and deleted using GARP VLAN Registration Protocol (GVRP), where GARP is the Generic Attribute Registration Protocol.

  • Page 186: Global Vlan1Q Tagged Vlan Configuration Commands

    ES-2024A User’s Guide Figure 128 CPU VLAN Configuration and Activation Example ras (config)# vlan 3 ras (config-vlan)# inactive 29.4 Global VLAN1Q Tagged VLAN Configuration Commands This section shows you how to configure and monitor the IEEE 802.1Q Tagged VLAN. 29.4.1 GARP Status...

  • Page 187: Gvrp Timer

    ES-2024A User’s Guide This sets the duration of the Leave Period timer for GVRP in leave <msec> milliseconds. Each port has a single Leave Period timer. Leave Time must be two times larger than Join Timer; the default is 600 milliseconds.

  • Page 188: Disable Gvrp

    ES-2024A User’s Guide This command turns on GVRP in order to propagate VLAN information beyond the switch. 29.4.5 Disable GVRP Syntax: no vlan1q gvrp This command turns off GVRP so that the switch does not propagate VLAN information to other switches.

  • Page 189: Set Acceptable Frame Type

    ES-2024A User’s Guide Figure 133 vlan1q port default vid Command Example ras (config)# interface port-channel 1-5 ras (config-interface)# pvid 200 29.5.2 Set Acceptable Frame Type Syntax: frame-type <all|tagged> where <all|tagged> Specifies all Ethernet frames (tagged and untagged) or only tagged Ethernet frames.

  • Page 190: Modify A Static Vlan Table Example

    ES-2024A User’s Guide Syntax: vlan <vlan-id> fixed <port-list> forbidden <port-list> name <name-str> normal <port-list> untagged <port-list> no fixed <port-list> no forbidden <port-list> no untagged <port-list> where The VLAN ID [1 – 4094]. <vlan-id> A name to identify the SVLAN entry.

  • Page 191: Delete Vlan Id

    ES-2024A User’s Guide 4 Then the switch applies the port filter to finish the forwarding decision. This means that frames may be dropped even if the SVLAN says to forward them. Frames might also be dropped if they are sent to a CPE (customer premises equipment) DSL device that does not accept tagged frames.

  • Page 192: Disable Vlan

    ES-2024A User’s Guide 29.7 Disable VLAN Syntax: vlan <vlan-id> inactive This command disables the specified VLAN ID in the SVLAN (Static VLAN) table. 29.8 Show VLAN Setting Syntax: show vlan This command shows the IEEE 802.1Q Tagged SVLAN (Static VLAN) table.
  • Page 193 ES-2024A User’s Guide Chapter 29 IEEE 802.1Q Tagged VLAN Commands...

  • Page 194: Chapter 30 Troubleshooting

    ES-2024A User’s Guide H A P T E R Troubleshooting This chapter covers potential problems and possible remedies. 30.1 Problems Starting Up the Switch Table 61 Troubleshooting the Start-Up of Your Switch PROBLEM CORRECTIVE ACTION None of the LEDs Check the power connection and make sure the power source is turned on.

  • Page 195: Pop-Up Windows, Javascripts And Java Permissions

    ES-2024A User’s Guide 30.2.1 Pop-up Windows, JavaScripts and Java Permissions In order to use the web configurator you need to allow: • Web browser pop-up windows from your device. • JavaScripts (enabled by default). • Java permissions (enabled by default).

  • Page 196: Figure 140 Internet Options

    ES-2024A User’s Guide Figure 140 Internet Options 3 Click Apply to save this setting. 30.2.1.1.2 Enable pop-up Blockers with Exceptions Alternatively, if you only want to allow pop-up windows from your device, see the following steps. 1 In Internet Explorer, select Tools, Internet Options and then the Privacy tab.

  • Page 197: Figure 141 Internet Options

    ES-2024A User’s Guide Figure 141 Internet Options 3 Type the IP address of your device (the web page that you do not want to have blocked) with the prefix “http://”. For example, http://192.168.1.1. 4 Click Add to move the IP address to the list of Allowed sites.

  • Page 198: Javascripts

    ES-2024A User’s Guide Figure 142 Pop-up Blocker Settings 5 Click Close to return to the Privacy screen. 6 Click Apply to save this setting. 30.2.1.2 JavaScripts If pages of the web configurator do not display properly in Internet Explorer, check that JavaScripts are allowed.

  • Page 199: Figure 143 Internet Options

    ES-2024A User’s Guide Figure 143 Internet Options 2 Click the Custom Level... button. 3 Scroll down to Scripting. 4 Under Active scripting make sure that Enable is selected (the default). 5 Under Scripting of Java applets make sure that Enable is selected (the default).

  • Page 200: Java Permissions

    ES-2024A User’s Guide Figure 144 Security Settings - Java Scripting 30.2.1.3 Java Permissions 1 From Internet Explorer, click Tools, Internet Options and then the Security tab. 2 Click the Custom Level... button. 3 Scroll down to Microsoft VM. 4 Under Java permissions make sure that a safety level is selected.

  • Page 201: Figure 145 Security Settings - Java

    ES-2024A User’s Guide Figure 145 Security Settings - Java 30.2.1.3.1 JAVA (Sun) 1 From Internet Explorer, click Tools, Internet Options and then the Advanced tab. 2 make sure that Use Java 2 for <applet> under Java (Sun) is selected. 3 Click OK to close the window.

  • Page 202: Problems With The Password

    ES-2024A User’s Guide Figure 146 Java (Sun) 30.3 Problems with the Password Table 63 Troubleshooting the Password PROBLEM CORRECTIVE ACTION Cannot access the The password field is case sensitive. Make sure that you enter the correct switch. password using the proper casing.
  • Page 203 ES-2024A User’s Guide Chapter 30 Troubleshooting...

  • Page 204: Product Specifications

    ES-2024A User’s Guide P P E N D I X Product Specifications These are the switch product specifications. Table 64 General Product Specifications Ethernet 24 10/100 Base-TX interfaces Interface Auto-negotiation Auto-MDI/MDIX Compliant with IEEE 802.3/3u Back pressure flow control for half duplex Flow control for full duplex (IEEE 802.3x)

  • Page 205: Table 65 Management Specifications

    ES-2024A User’s Guide Table 65 Management Specifications System Control Alarm/Status surveillance LED indication for alarm and system status Performance monitoring Line speed Four RMON groups (history, statistics, alarms, and events) Throughput monitoring CMP packet transmission Port mirroring and aggregation Spanning Tree Protocol...
  • Page 206 ES-2024A User’s Guide Table 66 Physical and Environmental Specifications (continued) Safety UL 60950-1 CSA 60950-1 EN 60950-1 IEC 60950-1 FCC Part 15 (Class A) CE EMC (Class A) Product Specifications...
  • Page 207 ES-2024A User’s Guide Product Specifications...

  • Page 208: Table 67 Classes Of Ip Addresses

    ES-2024A User’s Guide P P E N D I X IP Subnetting IP Addressing Routers “route” based on the network number. The router that delivers the data packet to the correct destination host uses the host ID. IP Classes An IP address is made up of four octets (eight bits), written in dotted decimal notation, for example, 192.168.1.1.

  • Page 209: Appendix Bip Subnetting

    ES-2024A User’s Guide Since the first octet of a class “A” IP address must contain a “0”, the first octet of a class “A” address can have a value of 0 to 127. Similarly the first octet of a class “B” must begin with “10”, therefore the first octet of a class “B”...

  • Page 210: Table 70 Alternative Subnet Mask Notation

    ES-2024A User’s Guide Since the mask is always a continuous number of ones beginning from the left, followed by a continuous number of zeros for the remainder of the 32 bit mask, you can simply specify the number of ones instead of writing the value of each octet. This is usually specified by writing a “/”...

  • Page 211: Table 72 Subnet 1

    ES-2024A User’s Guide Note: In the following charts, shaded/bolded last octet bit values indicate host ID bits “borrowed” to form network ID bits. The number of “borrowed” host ID bits determines the number of subnets you can have. The remaining number of host ID bits (after “borrowing”) determines the number of hosts you can have...

  • Page 212: Table 74 Subnet 1

    ES-2024A User’s Guide Example: Four Subnets The above example illustrated using a 25-bit subnet mask to divide a class “C” address space into two subnets. Similarly to divide a class “C” address into four subnets, you need to “borrow” two host ID bits to give four possible combinations of 00, 01, 10 and 11. The subnet mask is 26 bits (11111111.11111111.11111111.11000000) or 255.255.255.192.

  • Page 213: Table 77 Subnet 4

    ES-2024A User’s Guide Table 77 Subnet 4 NETWORK NUMBER LAST OCTET BIT VALUE IP Address 192.168.1. IP Address (Binary) 11000000.10101000.00000001. 11000000 Subnet Mask (Binary) 11111111.11111111.11111111. 11000000 Subnet Address: Lowest Host ID: 192.168.1.193 192.168.1.192 Broadcast Address: Highest Host ID: 192.168.1.254 192.168.1.255 Example Eight Subnets Similarly use a 27-bit mask to create 8 subnets (001, 010, 011, 100, 101, 110).

  • Page 214: Table 80 Class B Subnet Planning

    ES-2024A User’s Guide Subnetting With Class A and Class B Networks. For class “A” and class “B” addresses the subnet mask also determines which bits are part of the network number and which are part of the host ID. A class “B” address has two host ID octets available for subnetting and a class “A” address has...
  • Page 215 ES-2024A User’s Guide IP Subnetting...

  • Page 216: Index

    ES-2024A User’s Guide Index Symbols “standby” ports Basement Basic setting BPDUs (Bridge Protocol Data Units) Bridge Protocol Data Units (BPDUs) Numerics Broadcast storm control 110V AC 230V AC 802.1P priority Cables, Connecting CFI (Canonical Format Indicator) Change password Changes or Modifications...
  • Page 217 ES-2024A User’s Guide Copyright Ethernet ports Default settings Corrosive Liquids Europe Covers Exposure CPU management port Extended authentication protocol CRC (Cyclic Redundant Check) External authentication server Current date Current time Customer Support Compliance Feature Damage Hardware Dampness File Transfer using FTP...
  • Page 218 ES-2024A User’s Guide gvrp status Status Liquids, Corrosive Lockout Login Password Hardware installation Login account Administrator Hardware overview Non-administrator High Voltage Points Number of Host IDs Login password How SSH works HTTPS HTTPS Example MAC (Media Access Control) MAC address...
  • Page 219 ES-2024A User’s Guide Opening Qualified Service Personnel Quality of Service (QoS) Queue weight Queuing 24, 105 Queuing algorithm 105, 106 Queuing method 105, 106 Password 43, 140 PHB (Per-Hop Behavior) Ping Pipes Pool Port authentication RADIUS IEEE802.1x RADIUS (Remote Authentication Dial In User Service)
  • Page 220 ES-2024A User’s Guide Management model sys Commands Manager examples 167, 172, 176 120, 121 sys log disp 168, 172, 176 Network components sys sw mac list Object variables System information Protocol operations System log Setup System reboot Traps Versions supported...
  • Page 221 Wet Basement VID (VLAN Identifier) Worldwide Contact Information VLAN 57, 65 Acceptable frame type Automatic registration Explicit Tagging ID (VID) ZyNOS (ZyXEL Network Operating System) Implicit Tagging ZyXEL Limited Warranty Ingress filtering Note Introduction Number of VLANs Port isolation Port number...

Table of Contents