Lancom GS-2310P User Manual
  1. Manuals
  2. Brands
  3. Lancom Manuals
  4. Network Router
  5. GS-2310P
  6. User manual

Lancom GS-2310P User Manual

Hide thumbs Also See for GS-2310P:
Table of Contents

Advertisement

Quick Links

See also: Instruction Manual
connecting
your business
LANCOM
GS-2310P/GS-2326(P)

User Manual

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the GS-2310P and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Lancom GS-2310P

Summary of Contents for Lancom GS-2310P

  • Page 1: User Manual

    LANCOM GS-2310P/GS-2326(P) User Manual...

  • Page 2: Table Of Contents

    LANCOM GS-2310P/GS-2326(P) User Manual Contents Contents 1 Introduction................................7 1.1 Overview..............................7 2 Operation of Web-based Management........................8 2.1 Connecting network devices........................10 2.2 Twisted-pair devices..........................10 2.3 Cabling guidelines...........................10 3 Configuration................................12 3.1 Port................................12 3.1.1 Configuration...........................12 3.1.2 Port Description........................14 3.1.3 Traffic Overview ........................15 3.1.4 Detailed Statistics ........................16 3.1.5 QoS Statistics ..........................18...
  • Page 3 LANCOM GS-2310P/GS-2326(P) User Manual Contents 3.6.1 Basic Configuration........................51 3.6.2 VLAN Configuration.........................53 3.6.3 Port Group Filtering.........................54 3.6.4 Status............................55 3.6.5 Groups Information........................56 3.6.6 IPv6 SSM Information......................57 3.7 MVR................................58 3.7.1 Configuration...........................58 3.7.2 Groups Information........................60 3.7.3 Statistics..........................60 3.8 LLDP................................61 3.8.1 LLDP Configuration........................61 3.8.2 LLDP Neighbors........................64 3.8.3 LLDP-MED Configuration......................65...
  • Page 4 LANCOM GS-2310P/GS-2326(P) User Manual Contents 3.14.7 DSCP-Based QoS........................112 3.14.8 DSCP Translation .........................113 3.14.9 DSCP Classification ......................115 3.14.10 QoS Control List Configuration...................116 3.14.11 QCL Status ........................119 3.14.12 Storm Control........................120 3.15 PoE..............................121 3.15.1 Configuration........................121 3.15.2 Status..........................122 3.15.3 Power Delay.........................122 3.15.4 Auto Checking........................123 3.15.5 Scheduling...........................124...
  • Page 5 LANCOM GS-2310P/GS-2326(P) User Manual Contents 4.6 SNMP..............................151 4.6.1 System...........................151 4.6.2 Communities..........................152 4.6.3 Users............................153 4.6.4 Groups...........................154 4.6.5 Views.............................155 4.6.6 Access............................156 4.6.7 Trap............................158 5 Security..................................160 5.1 IP Source Guard.............................160 5.1.1 Configuration.........................160 5.1.2 Static Table..........................161 5.1.3 Dynamic Table........................162 5.2 ARP Inspection............................163 5.2.1 Configuration.........................163 5.2.2 Static Table..........................164...
  • Page 6 LANCOM GS-2310P/GS-2326(P) User Manual Contents 6.2.1 Firmware Upgrade.........................196 6.2.2 Firmware Selection.........................197 6.3 Save / Restore............................198 6.3.1 Factory Defaults........................198 6.3.2 Save Start..........................199 6.3.3 Save User..........................199 6.3.4 Restore User..........................200 6.4 Export / Import............................200 6.4.1 Export Config.........................200 6.4.2 Import Config.........................201 6.5 Diagnostics............................202 6.5.1 Ping............................202 6.5.2 Ping6.............................203...

  • Page 7: Introduction

    The GS-2300 series, the next generation of switches from LANCOM, is a portfolio of affordable managed switches that provides a reliable infrastructure for your business network. These switches deliver more intelligent features to improve the availability of your critical business applications, protect your sensitive information, and optimize your network bandwidth to deliver information and applications more effectively.

  • Page 8: Operation Of Web-Based Management

    LANCOM GS-2310P/GS-2326(P) User Manual 2 Operation of Web-based Management 2 Operation of Web-based Management Initial Configuration This chapter instructs you how to configure and manage the GS-2300 series through the web user interface. With this facility, you can easily access and monitor through any one port of the switch all the status of the switch, including MIBs status, each port activity, spanning tree status, port aggregation status, multicast traffic, VLAN and priority status, illegal access record, etc.
  • Page 9 LANCOM GS-2310P/GS-2326(P) User Manual 2 Operation of Web-based Management The GS-2300 series is set to DHCP by default. If you do not have a DHCP server to provide an IP address to the switch, the default IP is 172.23.56.250...

  • Page 10: Connecting Network Devices

    LANCOM GS-2310P/GS-2326(P) User Manual 2 Operation of Web-based Management 2.1 Connecting network devices The switch is designed to be connected to 10, 100 or 1000Mbps network cards in PCs and servers, as well as to other switches and hubs. It may also be connected to remote devices using optional SFP transceivers.
  • Page 11 LANCOM GS-2310P/GS-2326(P) User Manual 2 Operation of Web-based Management Step 2: If the device is a network card and the switch is in the wiring closet, attach the other end of the cable segment to a modular wall outlet that is connected to the wiring closet. (See the section “Network Wiring Connections.”) Otherwise, attach the other end to an available port on the switch.

  • Page 12: Configuration

    The GS-2310P features SFP/RJ45 combo ports. Please note that SFP is always favored over RJ45. Hence, the RJ45 port is only available when there is no link on the corresponding SFP port.
  • Page 13 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Port: The logical port number for this row. Link: The current link state is displayed graphically. Green indicates the link is up and red that it is down. Current Link Speed: Provides the current link speed of the port.

  • Page 14: Port Description

    To enter a Port Description in the web interface: 1. Click Configuration, Port, then Port Description 2. Specify the detail port alias or description. 3. Click Apply. Figure 3-1.2: The Port Description (GS-2310P) Parameter description: Port: The logical port number for this row.

  • Page 15: Traffic Overview

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 3.1.3 Traffic Overview This section describes the port statistics information and provides an overview of general traffic statistics for all switch ports. Web Interface To display the Port Statistics Overview in the web interface: 1.

  • Page 16: Detailed Statistics

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 3.1.4 Detailed Statistics The section describes how to provide detailed traffic statistics for a specific switch port. Use the port select box to select which switch port details to display. The displayed counters are the totals for receive and transmit, the size counters for receive and transmit, and the error counters for receive and transmit.
  • Page 17 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration The number of received and transmitted (good and bad) multicast packets. Rx and Tx Broadcast: The number of received and transmitted (good and bad) broadcast packets. Rx and Tx Pause: A count of the MAC Control frames received or transmitted on this port that have an opcode indicating a PAUSE operation.

  • Page 18: Qos Statistics

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 3.1.5 QoS Statistics The section describes that switch could display the QoS detailed Queuing counters for a specific switch port. for the different queues for all switch ports. Web Interface To display the Queuing Counters in the web interface: 1.

  • Page 19: Sfp Information

    The section describes the SFP module information which you will see when you connect an SFP module to the switch. The information includes: Connector type, Fiber type, wavelength, baud rate and Vendor OUI etc. Web Interface To display the SFP information in the web interface: 1. Click Configuration, Port, then SFP Information Figure 3-1.6: The SFP Information Overview (GS-2310P)
  • Page 20 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Connector Type: Display the connector type, for instance, UTP, SC, ST, LC and so on. Fiber Type: Display the fiber mode, for instance, Multi-Mode, Single-Mode. Tx Central Wavelength: Display the fiber optical transmitting central wavelength, for instance, 850nm, 1310nm, 1550nm and so on.

  • Page 21: Acl

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Show the transmit power of SFP module. Mon3(RX PWR): Show the receiver power of SFP module. 3.2 ACL The GS-2300 series access control list (ACL) is probably the most commonly used object in the firmware. It is used for packet filtering but also for selecting types of traffic to be analyzed, forwarded, or influenced in some way.

  • Page 22: Rate Limiters

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Port Copy: Select which port frames are copied on. The allowed values are Disabled or a specific port number. The default value is "Disabled". Mirror: Specify the mirror operation of this port. The allowed values are: Enabled: Frames received on the port are mirrored.

  • Page 23: Access Control List

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Rate Limiter ID: The rate limiter ID for the settings contained in the same row. Rate The allowed values are: 0-3276700 in pps or 0, 100, 200, 300, ..., 1000000 in kbps.
  • Page 24 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 1. Click Configuration, ACL, then Configuration 2. Click the button to add a new ACL, or use the other ACL modification buttons to specify the editing action (i.e., edit, delete, or moving the relative position of entry in the list) 3.
  • Page 25 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration IPv4: The ACE will match all IPv4 frames. Action: Indicates the forwarding action of the ACE. Permit: Frames matching the ACE may be forwarded and learned. Deny: Frames matching the ACE are dropped. Rate Limiter: Indicates the rate limiter number of the ACE.

  • Page 26: Acl Status

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Specify the source MAC filter for this ACE. Any: No SMAC filter is specified. (SMAC filter status is "don't-care".) Specific: If you want to filter a specific source MAC address with this ACE, choose this value. A field for entering an SMAC value appears.
  • Page 27 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Figure 3-2.4: The ACL Status Parameter description: User: Indicates the ACL user. Ingress Port: Indicates the ingress port of the ACE. Possible values are: Any: The ACE will match any ingress port. Policy: The ACE will match ingress ports with a specific policy.

  • Page 28: Aggregation

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration The counter indicates the number of times the ACE was hit by a frame. Conflict: Indicates the hardware status of the specific ACE. The specific ACE is not applied to the hardware due to hardware limitations.
  • Page 29 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Hash Code Contributors Source MAC Address: The Source MAC address can be used to calculate the destination port for the frame. Check to enable the use of the Source MAC address, or uncheck to disable. By default, Source MAC Address is enabled.

  • Page 30: Lacp

    5. Click Apply to save the settings 6. If you want to cancel the setting then you need to click the reset button. It will revert to previously saved values. Figure 3-3.2.1: The LACP Port Configuration (GS-2310P) Parameter description: Port: The switch port number.
  • Page 31 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration The Key value incurred by the port, range 1-65535. The Auto setting will set the key as appropriate by the physical link speed, 10Mb = 1, 100Mb = 2, 1Gb = 3. Using the Specific setting, a user-defined value can be entered. Ports with the same Key value can participate in the same aggregation group, while ports with different keys cannot.
  • Page 32 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 3-3.2.3 Port Status This section describes the LACP Status which is provided when LACP is configured on the switch. Web Interface To display the LACP Port status in the web interface: 1. Click Configuration, Aggregation, LACP, Port Status 2.

  • Page 33: Spanning Tree

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 3. Click “Refresh“ to refresh the LACP Statistics. Figure 3-3.2.4: The LACP Statistics Parameter description: Port: The switch port number. LACP Received: Shows how many LACP frames have been received at each port. LACP Transmitted: Shows how many LACP frames have been sent from each port.

  • Page 34: Bridge Settings

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Once a stable network topology has been established, all bridges listen for Hello BPDUs (Bridge Protocol Data Units) transmitted from the Root Bridge. If a bridge does not get a Hello BPDU after a predefined interval (Maximum Age), the bridge assumes that the link to the Root Bridge is down.

  • Page 35: Msti Mapping

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Max Age: The maximum age of the information transmitted by the Bridge when it is the Root Bridge. Valid values are in the range 6 to 40 seconds, and MaxAge must be <= (FwdDelay-1)*2.

  • Page 36: Msti Priorities

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Configuration Identification Configuration Name: The name identifying the VLAN to MSTI mapping. Bridges must share the name and revision (see below), as well as the VLAN-to-MSTI mapping configuration in order to share spanning trees for MSTI's (Intra-region). The name is at most 32 characters.

  • Page 37: Cist Ports

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Web Interface To configure the Spanning Tree MSTI Priorities parameters in the web interface: 1. Click Configuration, Spanning Tree, MSTI Priorities 2. Scroll the Priority maximum is 240. Default is 128. 3. Click "Save" to save the settings.
  • Page 38 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Figure 3-4.4: The STP CIST Port Configuration (GS-2310P) Parameter description: Port: The switch port number of the logical STP port. STP Enabled: Controls whether STP is enabled on this switch port. Path Cost: Controls the path cost incurred by the port. The Auto setting will set the path cost as appropriate by the physical link speed, using the 802.1D recommended values.

  • Page 39: Msti Ports

    4. Set all parameters of the MSTI Port configuration. 5. Click Apply to save the setting 6. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values Figure 3-4.5: The MSTI Port Configuration (GS-2310P)

  • Page 40: Bridge Status

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Port: The switch port number of the corresponding STP CIST (and MSTI) port. Path Cost: Controls the path cost incurred by the port. The Auto setting will set the path cost as appropriate by the physical link speed, using the 802.1D recommended values.

  • Page 41: Port Status

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Figure 3-4.6: The STP Bridges status Parameter description: MSTI: The Bridge Instance. This is also a link to the STP Detailed Bridge Status. Bridge ID: The Bridge ID of this Bridge instance. Root ID: The Bridge ID of the currently elected root bridge.

  • Page 42: Port Statistics

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Port: The switch port number of the logical STP port. CIST Role: The current STP port role of the CIST port. The port role can be one of the following values: AlternatePort, Backup Port, RootPort, DesignatedPort Disabled.

  • Page 43: Igmp Snooping

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration The number of MSTP Configuration BPDU's received/transmitted on the port. RSTP: The number of RSTP Configuration BPDU's received/transmitted on the port. STP: The number of legacy STP Configuration BPDU's received/transmitted on the port. TCN: The number of (legacy) Topology Change Notification BPDU's received/transmitted on the port.
  • Page 44 5. Click Apply to save the setting 6. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values. Figure 3-5.1: The IGMP Snooping Configuration (GS-2310P) Parameter description: Snooping Enabled: Enable the Global IGMP Snooping.

  • Page 45: Vlan Configuration

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Enable the fast leave on the port. Throttling: Enable to limit the number of multicast groups to which a switch port can belong. Buttons Save – Click to save changes. Reset – Click to undo any changes made locally and revert to previously saved values.

  • Page 46: Port Group Filtering

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Robustness Variable. The Robustness Variable allows tuning for the expected packet loss on a network. The allowed range is 1 to 255; default robustness variable value is 2. Query Interval. The Query Interval is the interval between General Queries sent by the Querier. The allowed range is 1 to 31744 seconds;...

  • Page 47: Status

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 5. Click Apply to save the setting 6. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values Figure 3-5.3: The IGMP Snooping Port Group Filtering Configuration.

  • Page 48: Groups Information

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: VLAN ID: The VLAN ID of the entry. Querier Version: Working Querier Version currently. Host Version: Working Host Version currently. Querier Status: Shows the Querier status is "ACTIVE" or "IDLE". Queries Transmitted: The number of Transmitted Queries.

  • Page 49: Ipv4 Ssm Information

    3. Click “Refresh“ to refresh an entry of the IGMP Snooping Groups Information. 4. Click “<< or >>“ to move to previous or next entry. Figure 3-5.5: The IGMP Snooping Groups Information (GS-2310P) Parameter description: Navigating the IGMP Group Table The "Start from VLAN", and "group"...
  • Page 50 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration SSM does not require group address allocation within the network, only within each source host. Different applications running on the same source host must use different SSM groups. Different applications running on different source hosts can arbitrarily reuse SSM group addresses without causing any excess traffic on the network.

  • Page 51: Mld Snooping

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Indicates the Type. It can be either Allow or Deny. Auto-refresh: Activate the auto-refresh to refresh the log automatically. Refresh: Refresh the IGMP Group Status manually. <<, >> Go to the previous/next page or entry.
  • Page 52 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Figure 3-6.1: The MLD Snooping Basic Configuration (GS-2310P) Parameter description: Snooping Enabled: Enable the Global MLD Snooping. Unregistered IPMCv6 Flooding enabled: Enable unregistered IPMCv6 traffic flooding. Please note that disabling unregistered IPMCv6 traffic flooding may lead to failure of Neighbor Discovery.

  • Page 53: Vlan Configuration

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Save – Click to save changes. Reset – Click to undo any changes made locally and revert to previously saved values. 3.6.2 VLAN Configuration When MLD snooping is enabled on a VLAN, the switch acts to minimize unnecessary multicast traffic. If the switch receives multicast traffic destined for a given multicast address, it forwards that traffic only to ports on the VLAN that have MLD hosts for that address.

  • Page 54: Port Group Filtering

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Query Response Interval. The Maximum Response Delay used to calculate the Maximum Response Code inserted into the periodic General Queries. The allowed range is 0 to 31744 in tenths of seconds; default query response interval is 100 in tenths of seconds (10 seconds).

  • Page 55: Status

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Delete: Check to delete the entry. It will be deleted during the next save. Port: The logical port for the settings. You can enable the port to join a filtering Group Filtering Groups The IP Multicast Group that will be filtered.

  • Page 56: Groups Information

    2. If you want to auto-refresh the information then you need to activate “Auto-refresh” 3. Click “Refresh“ to refresh a entry of the MLD Snooping Group Information. 4. Click “Clear“ to clear the MLD Snooping Groups information. Figure 3-6.5: The MLD Snooping Groups Information (GS-2310P)

  • Page 57: Ipv6 Ssm Information

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Navigating the MLD Group Table Each page shows up to 99 entries from the MLD Group table, default being 20, selected through the "entries per page" input field. When first visited, the web page will show the first 20 entries from the beginning of the MLD Group Table.

  • Page 58: Mvr

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 4. Click “<< or >>“ to move to previous or next entry. Figure 3-6.6: The IPv6 SSM Information Parameter description: MLDv2 Information Table Columns VLAN ID: VLAN ID of the group. Group: Group address of the group displayed.
  • Page 59 4. Click Apply to save the setting 5. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values Figure 3-7.1: The MVR Configuration (GS-2310P) Parameter description: MVR Mode: Enable/Disable the Global MVR.

  • Page 60: Groups Information

    2. If you want to auto-refresh the information then you need to activate “Auto-refresh”. 3. To Click the “Refresh“ to refresh a entry of the MVR Groups Information. 4. Click “<< or >>“ to move to previous or next entry. Figure 3-7.2: The MVR Groups Information (GS-2310P) Parameter description: MVR Group Table Columns VLAN ID: VLAN ID of the group.

  • Page 61: Lldp

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Figure 3-7.3: The MVR Statistics Information Parameter description: VLAN ID: The Multicast VLAN ID. V1 Reports Received: The number of Received V1 Reports. V2 Reports Received: The number of Received V2 Reports. V3 Reports Received: The number of Received V3 Reports.
  • Page 62 2. Modify LLDP timing parameters 3. Set the required mode for transmitting or receiving LLDP messages 4. Specify the information to include in the TLV field of advertised messages 5. Click Apply Figure 3-8.1: The LLDP Configuration (GS-2310P) Parameter description: LLDP Parameters Tx Interval: The switch periodically transmits LLDP frames to its neighbors for having the network discovery information up-to-date.
  • Page 63 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration LLDP Port Configuration The LLDP port settings relate to the currently selected, as reflected by the page header. Port: The switch port number of the logical LLDP port. Mode: Select LLDP mode. Rx only The switch will not send out LLDP information, but LLDP information from neighbor units is analyzed.

  • Page 64: Lldp Neighbors

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Reset – Click to undo any changes made locally and revert to previously saved values. 3.8.2 LLDP Neighbors This page provides a status overview for all LLDP neighbors. The displayed table contains a row for each port on which an LLDP neighbor is detected.

  • Page 65: Lldp-Med Configuration

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration When a capability is enabled, the capability is followed by (+). If the capability is disabled, the capability is followed by (-). System Description: System Description is the port description advertised by the neighbor unit.
  • Page 66 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Fast start repeat count Rapid startup and Emergency Call Service Location Identification Discovery of endpoints is a critically important aspect of VoIP systems in general. In addition, it is best to advertise only those pieces of information which are specifically...
  • Page 67 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Latitude SHOULD be normalized to within 0-90 degrees with a maximum of 4 digits. It is possible to specify the direction to either North of the equator or South of the equator. Longitude: Longitude SHOULD be normalized to within 0-180 degrees with a maximum of 4 digits.
  • Page 68 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Trailing street suffix - Example: SW. Street suffix: Street suffix - Example: Ave, Platz. House no.: House number - Example: 21. House no. suffix: House number suffix - Example: A, 1/2. Landmark: Landmark or vanity address - Example: Columbia University.
  • Page 69 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Network Policy Discovery enables the efficient discovery and diagnosis of mismatch issues with the VLAN configuration, along with the associated Layer 2 and Layer 3 attributes, which apply for a set of specific protocol applications on that port.
  • Page 70 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 5. Softphone Voice - for use by softphone applications on typical data centric devices, such as PCs or laptops. This class of endpoints frequently does not support multiple VLANs, if at all, and are typically configured to use an 'untagged' VLAN or a single 'tagged' data specific VLAN.

  • Page 71: Lldp-Med Neighbors

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 3.8.4 LLDP-MED Neighbors This page provides a status overview of all LLDP-MED neighbors. The displayed table contains a row for each port on which an LLDP neighbor is detected. This function applies to VoIP devices which support LLDP-MED. The columns hold...
  • Page 72 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration LLDP-MED Generic Endpoint (Class I): The LLDP-MED Generic Endpoint (Class I) definition is applicable to all endpoint products that require the base LLDP discovery services defined in TIA-1057, however do not support IP media or act as an end-user communication appliance.

  • Page 73: Eee

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 5. Softphone Voice - for use by softphone applications on typical data centric devices, such as PCs or laptops. 6. Video Conferencing - for use by dedicated Video Conferencing equipment and other similar appliances supporting real-time interactive video/audio services.
  • Page 74 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration If your network without any devices which enables EEE function then the table will show “No LLDP EEE information found”. Parameter description: Local Port: The port on which LLDP frames are received or transmitted.

  • Page 75: Port Statistics

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 3.8.6 Port Statistics Two types of counters are shown. Global counters are counters that refer to the whole switch, while local counters refer to per port counters for the currently selected switch Web Interface To show LLDP Statistics: 1.

  • Page 76: Filtering Data Base

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Rx Errors: The number of received LLDP frames containing some kind of error. Frames Discarded: If an LLDP frame is received on a port, and the switch's internal table has run full, the LLDP frame is counted and discarded.
  • Page 77 1. Click configuration and Add new Static entry. 2. Specify the VLAN IP and Mac address, Port Members. 3. Click Apply. Figure 3- 9.1: The MAC Address Table Configuration (GS-2310P) Parameter description: Aging Configuration: By default, dynamic entries are removed from the MAC table after 300 seconds. This removal is also called aging.

  • Page 78: Dynamic Mac Table

    ID, then by MAC address. Web Interface To display MAC Address Table in the web interface: 1. Click Dynamic MAC Table. 2. Specify the VLAN and MAC Address. 3. Display MAC Address Table. Figure 3- 9.2: The Dynamic MAC Address Table information (GS-2310P)
  • Page 79 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: MAC Table Columns Type: Indicates whether the entry is a static or a dynamic entry. VLAN: The VLAN ID of the entry. MAC address: The MAC address of the entry. Port Members: The ports that are members of the entry.

  • Page 80: Vlan

    1. Click VLAN membership Configuration. 2. Specify VLAN ID. 1 4094 3. Click Apply. Figure 3-10.1: The VLAN Membership Configuration (GS-2310P) Parameter description: Delete: To delete a VLAN entry, check this box. The entry will be deleted on the selected switch. If none of the ports of this switch are members of a VLAN then the delete checkbox will be greyed out (you cannot delete that entry.

  • Page 81: Ports

    Rule 2 is “drop untagged frame”. You can also select the Role of each port as Access, Trunk, or Hybrid. Web Interface To configure VLAN Port configuration in the web interface: 1. Click VLAN Port Configuration. 2. Specify the VLAN Port Configuration parameters. 3. Click Apply. Figure 3-10.2: The VLAN Port Configuration (GS-2310P)
  • Page 82 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Ethertype for Custom S-ports: This field specifies the ether type used for Custom S-ports. This is a global setting for all the Custom S-ports. Custom Ethertype enables the user to change the Ethertype value on a port to any value to support network devices that do not use the standard 0x8100 Ethertype field value on 802.1Q-tagged or 802.1p-tagged frames.
  • Page 83 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Ingress action Egress action 2. is not 0x8100, the frame is forwarded (no additional tag added). S-custom-port When the port receives an untagged frame, a tag - based on the The TPID of frame transmitted by an defined PVID - is added and the frame is forwarded.
  • Page 84 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Port Type – Ingress samples (each arrow color represents its operate behavior to individual packet) Figure 1: Ingress sample: Unaware Figure 2: Ingress sample: C-port Figure 3: Ingress sample: S-port Figure 4: Ingress sample: S-custom-port...

  • Page 85: Switch Status

    2. Specify the Staic NAS MVRP MVP Voice VLAN MSTP GVRP Combined. 3. Display membership information. Figure 3-10.3: The VLAN Membership Status for Combined users (GS-2310P) The ports belong to the currently selected stack unit, as reflected by the page header. Parameter description:...

  • Page 86: Port Status

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration VLAN User module uses services of the VLAN management functionality to configure VLAN memberships and VLAN port configurations such as PVID and UVID. Currently we support the following VLAN user types: Web/SNMP: These are referred to as static.

  • Page 87: Private Vlans

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Port: The logical port for the settings contained in the same row. PVID: Shows the VLAN identifier for that port. The allowed values are 1 through 4094. The default value is 1. Port Type: Shows the Port Type.
  • Page 88 VLAN and Private VLAN. Web Interface To configure Port Isolation configuration in the web interface: 1. Click VLAN, Port Isolation. 2. Activate which port want to enable Port Isolation 3. Click Apply. Figure 3-10.5.1: The Port Isolation Configuration (GS-2310P)

  • Page 89: Mac-Based Vlan

    Web Interface To configure MAC address-based VLAN configuration in the web interface: 1. Click MAC address-based VLAN configuration and add new entry. 2. Specify the MAC address and VLAN ID. 3. Click Apply. Figure 3-10.6.1: The MAC-based VLAN Membership Configuration (GS-2310P)
  • Page 90 Authentication Server. Web Interface To display MAC-based VLAN configured in the web interface: 1. Click MAC-based VLAN Status. 2. Specify the Staic NAS Combined. 3. Display MAC-based information. Figure 3-10.6.2: The MAC-based VLAN Membership Status for User Static (GS-2310P)

  • Page 91: Protocol-Based Vlan

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: MAC Address: Indicates the MAC address. VLAN ID: Indicates the VLAN ID. Port Members: Port members of the MAC-based VLAN entry. Auto-refresh: Activate the auto-refresh to refresh the information automatically. Refresh: Refresh the MAC-based VLAN Membership information manually.
  • Page 92 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Delete: To delete a Protocol to Group Name map entry, check this box. The entry will be deleted on the switch during the next Save. Frame Type: Frame Type can have one of the following values:...
  • Page 93 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Special character and underscore(_) are not allowed. Adding a New Group to VLAN mapping entry: Click to add a new entry in mapping table. An empty row is added to the table; Frame Type, Value and the Group Name can be configured as needed.

  • Page 94: Voice Vlan

    To configure Voice VLAN in the web interface: 1. Select “Enabled” in the Voice VLAN Configuration. 2. Specify VLAN ID, Aging Time, and Traffic Class. 4. Specify (Port Mode, Security, Discovery Protocol) in the Port Configuration 5. Click Apply. Figure 3-11.1: The Voice VLAN Configuration (GS-2310P)
  • Page 95 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Mode: Indicates the Voice VLAN mode operation. We must disable MSTP feature before we enable Voice VLAN. It can avoid the conflict of ingress filtering. Possible modes are: Enabled: Enable Voice VLAN mode operation.

  • Page 96: Oui

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Forced: Force join to Voice VLAN. Port Security: Indicates the Voice VLAN port security mode. When the function is enabled, all non-telephonic MAC addresses in the Voice VLAN will be blocked for 10 seconds. Possible port modes are: Enabled: Enable Voice VLAN security mode operation.

  • Page 97: Garp

    This page allows you to configure the basic GARP Configuration settings for all switch ports. The settings relate to the currently selected unit, as reflected by the page header. Web Interface To configure GARP Port in the web interface: 1. Click GARP configure. 2. Specify GARP Configuration Parameters. 3. Click Apply. Figure 3-12.1: The GARP Port Configuration (GS-2310P)
  • Page 98 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Port: The Port column shows the list of ports for which you can configure GARP settings. There are 2 types configuration settings which can be configured on per port bases. Timer Values...

  • Page 99: Statistics

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 3.12.2 Statistics This section describes the port statistics of GARP for all switch ports. The port statistics relate to the currently selected unit, as reflected by the page header. Web Interface To display GARP Port statistics in the web interface: 1.
  • Page 100 1. Click GVRP configure. 2. Specify GVRP Configuration Parameters. 3. Click Apply. Figure 3-13.1: The GVRP Global Configuration (GS-2310P) Parameter description: GVRP Mode: GVRP Mode is a global setting, to enable the GVRP globally select 'Enable' from menu and to disable GVRP globally select 'Disable'.

  • Page 101: Statistics

    To display GVRP Port statistics in the web interface: 1. Click GVRP statistics. 2. Click Refresh to modify the GVRP statistics information. Figure 3-13.2: The GVRP Port Statistics (GS-2310P) Parameter description: Port: The Port column shows the list of ports for which you can see port counters and statistics.

  • Page 102: Port Classification

    2. Select QoS class, DP Level, PCP and DEI parameters 3. Click Apply to save the setting 4. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values Figure 3-14.1: The QoS Configuration (GS-2310P) Parameter description: Port: The port number for which the configuration below applies.

  • Page 103: Port Policing

    2. Activate which port need to enable the QoS Ingress Port Polices and type the Rate limit condition. 3. Select the Rate limit Unit with kbps, Mbps, fps, or kfps. 4. Click Apply to save the configuration. Figure 3-14.2: The QoS Ingress Port Policies Configuration (GS-2310P)

  • Page 104: Port Scheduler

    Web Interface To display the QoS Port Schedulers in the web interface: 1. Click Configuration, QoS, Port Schedulers 2. Display the QoS Egress Port Schedulers Figure 3-14.3: The QoS Egress Port Schedules (GS-2310P)
  • Page 105 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration...
  • Page 106 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Port: The logical port for the settings contained in the same row. Click on the port number in order to configure the schedulers. Mode: Shows the scheduling mode for this port. Weight (Qn): Shows the weight for this queue and port.

  • Page 107: Port Shaping

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Controls the weight for this queue. The default value is "17". This value is restricted to 1-100. This parameter is only shown if "Scheduler Mode" is set to "Weighted". Queue Scheduler Percent: Shows the weight in percent for this queue. This parameter is only shown if "Scheduler Mode" is set to "Weighted"...
  • Page 108 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration...

  • Page 109: Port Tag Remarking

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Port: The logical port for the settings contained in the same row. Click on the port number in order to configure the shapers. Shapers (Qn): Shows "disabled" or actual queue shaper rate - e.g. "800 Mbps".
  • Page 110 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Figure 3-14.5: The Port Tag Remarking Parameter description: Port: The logical port for the settings contained in the same row. Click on the port number in order to configure tag remarking. Mode: Shows the tag remarking mode for this port.

  • Page 111: Port Dscp

    4. Click Apply to save the setting 5. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values Figure 3-14.6: The QoS Port DSCP Configuration (GS-2310P) Parameter description: Port: The Port column shows the list of ports for which you can configure dscp ingress and egress settings.

  • Page 112: Dscp-Based Qos

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Port Egress Rewriting can be one of below parameters Disable: No Egress rewrite. Enable: Rewrite enable without remapped. Remap: DSCP from analyzer is remapped and frame is remarked with remapped DSCP value. Buttons: Save – Click to save changes.

  • Page 113: Dscp Translation

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: DSCP: Maximum number of support ed DSCP values are 64. Trust: Click to check if the DSCP value is trusted. QoS Class: QoS Class value can be any of (0-7) DPL: Drop Precedence Level (0-3) Buttons: Save –...
  • Page 114 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: DSCP: Maximum number of supported DSCP values are 64 and valid DSCP value ranges from 0 to 63. Ingress: Ingress side DSCP can be first translated to new DSCP before using the DSCP for QoS class and DPL map.

  • Page 115: Dscp Classification

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Remap DP1: Select the DSCP value from select menu to which you want to remap. DSCP value ranges form 0 to 63. There is following configurable parameter for Egress side - Remap: Select the DSCP value from select menu to which you want to remap. DSCP value ranges form 0 to 63.

  • Page 116: Qos Control List Configuration

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration and DPL value Buttons: Save – Click to save changes. Reset – Click to undo any changes made locally and revert to previously saved values. 3.14.10 QoS Control List Configuration The section shows the QoS Control List(QCL), which is made up of the QCEs. Each row describes a QCE that is defined.
  • Page 117 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Any: The QCE will match all frame type. Ethernet: Only Ethernet frames (with Ether Type 0x600-0xFFFF) are allowed. LLC: Only (LLC) frames are allowed. SNAP: Only (SNAP) frames are allowed IPv4: The QCE will match only IPV4 frames.
  • Page 118 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Key configuration are described as below: Tag Value of Tag field can be 'Any', 'Untag' or 'Tag' VID Valid value of VLAN ID can be any value in the range 1-4094 or 'Any'; user can enter either a specific value or a...

  • Page 119: Qcl Status

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration DSCP Valid dscp value can be (0-63, BE, CS1-CS7, EF or AF11-AF43) Buttons: Save – Click to save changes. Reset – Click to undo any changes made locally and revert to previously saved values.

  • Page 120: Storm Control

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Indicates the classification action taken on ingress frame if parameters configured are matched with the frame's content. There are three action fields: Class, DPL and DSCP. Class: Classified QoS Class; if a frame matches the QCE it will be put in the queue.

  • Page 121: Poe

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Enable or disable the storm control status for the given frame type. Rate: The rate unit is packets per second (pps). Valid values are: 1, 2, 4, 8, 16, 32, 64, 128, 256, 512, 1K, 2K, 4K, 8K, 16K, 32K, 64K, 128K, 256K, 512K or 1024K., 1024K, 2048K, 4096K, 8192K, 16384K or 32768K., 1024K, 2048K, 4096K,...

  • Page 122: Status

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Maximum Power: The maximum power in watts that can be delivered to a remote device. If you want the port to support IEEE802.3at, the maximum allowed value is 30 W. Detection: Type of detection. Select Legacy, 4-Point, 4-Point-Legacy, 2-Point or 2-Point-Legacy.

  • Page 123: Auto Checking

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Port: The logical port number for this row. Delay Mode: Enable or disable the power delay function. Delay Time: Period until the PoE port starts providing power to the PD. Buttons: Apply – Apply changes.

  • Page 124: Scheduling

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Failure Log: Failure loggings counter. Failure Action: The action which is taken after failed detection. Nothing: Keep pinging the remote device. Reboot Remote PD: Turn off the power of the PoE port and reboot the PD.

  • Page 125: Sflow Agent

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Select All: Select all hours and weekdays. Hour: The hour for which PoE should be enabled. Sunday/Monday/Tuesday/Wednesday/Thursday/Friday/Saturday: The day for which PoE should be enabled. Buttons: Apply – Apply changes. 3.16 sFlow Agent The sFlow Collector configuration for the switch can be monitored and modified here. Up to 1 Collector is supported.

  • Page 126: Sampler

    3. Scroll to Sample Type to choice with None, Tx, Rx or All. 4. Click Apply to save the setting 5. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values Figure 3-16.2: The sFlow Sampler Configuration (GS-2310P)

  • Page 127: Loop Protection

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: sFlow Ports: List of the port numbers on which sFlow is configured. sFlow Instance: Configured sFlow instance for the port number. Sampler Type: Configured sampler type on the port and could be any of the types: None, Rx, Tx or All. You can scroll to choice one for your sampler type.

  • Page 128: Configuration

    3. Click Apply to save the setting 4. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values Figure 3-17.1: The Loop Protection Configuration (GS-2310P) Parameter description: General Settings: Enable Loop Protection: Controls whether loop protections is enabled (as a whole).

  • Page 129: Status

    To configure the Loop Protection parameters in the web interface: 1. Click Configuration, Loop Protection, Status 2. Activate the Auto-refresh or click to refresh the Loop protection Port status manually. Figure 3-17.2: The Loop Protection Status (GS-2310P) Parameter description: Port: The switch port number of the logical port.

  • Page 130: Single Ip

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Loop: Whether a loop is currently detected on the port. Time of Last Loop: The time of the last loop event detected. Auto-refresh: Activate the auto-refresh to refresh the information automatically. Refresh: Refresh the Loop Protection information manually.

  • Page 131: Information

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Group Name: The name of the group. The maximum length is 64 characters. Buttons: Apply – Apply changes. Reset – Undo any changes made locally and revert to previously saved values. 3.18.2 Information Web Interface To display the active slave information in the web interface: 1.
  • Page 132 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Port Members: To activate which Port wants to enable the Easy Port function. Role: To scroll to select what kind device you want to connect and implement with the Easy Port setting.

  • Page 133: Mirroring

    4. Click Apply to save the setting 5. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values. Figure 3-20.1: The Mirror Configuration (GS-2310P) Parameter description: Port to mirror on: Port to mirror also known as the mirror port.

  • Page 134: Trap Event Severity

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration The logical port for the settings contained in the same row. Mode: Select mirror mode. Rx only Frames received on this port are mirrored on the mirror port. Frames transmitted are not mirrored. Tx only Frames transmitted on this port are mirrored on the mirror port. Frames received are not mirrored.

  • Page 135: Smtp Configuration

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: Group Name: The field describe the Trap Event definition. Severity Level: To scroll to select the event type with “Emerg, Alert, Crit, Error, Warming, Notice, Info and Debug”. Buttons: Save – Click to save changes.

  • Page 136: Upnp

    LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration Parameter description: These parameters are displayed on the SMTP Configuration page: Mail Server: Specify the IP Address of the server transferring your email. Username: Specify the username on the mail server. Password: Specify the password on the mail server.
  • Page 137 LANCOM GS-2310P/GS-2326(P) User Manual 3 Configuration 2. Select the mode to enable or disable 3. Specify the parameters in each blank field. 4. Click Apply to save the setting 5. If you want to cancel the setting then you need to click the Reset button. It will revert to previously saved values.

  • Page 138: System Configuration

    2. Specify the contact information for the system administrator as well as the name and location of the switch. Also indicate the local time zone by configuring the appropriate offset. 3. Click Refresh Figure 4-1.1: System Information (GS-2310P) Parameter description: Model name: The model name of this device.
  • Page 139 LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration The description of the device. In this case: “44-Port 10/100/1000Base-T + 4 (100/1G) SFP Combo + 4 (1G/10G) SFP+ PoE+ L2 Plus Managed Switch”. Location: The physical location of the switch. User-defined. Contact: For easy managing and maintenance of the device, you may enter the name of a contact person and a phone number here.

  • Page 140: Configuration

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration 4.1.2 Configuration You can identify the system by configuring the contact information, name, and location of the switch. Web interface To configure the System Information in the web interface: 1. Click System, System Information, Configuration.

  • Page 141: Time

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration Parameter description: Auto-refresh Activate the auto-refresh to refresh the log automatically. 4.2 Time This page configures the switch’s time. Local Time Configuration and NTP Configuration is supported. 4.2.1 Manual The switch provides manual and automatic ways to set the system time via NTP. Manual setting is simple and you just enter “Year”, “Month”, “Day”, “Hour”, “Minute”...
  • Page 142 LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration Parameter description: Clock Source: Select which clock source is used for the GS-2300 series. You can select “Use local Settings” or “Use NTP Server” as the switchs' time clock source. Local Time: Shows the current time of the system.

  • Page 143: Ntp

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration 4.2.2 NTP NTP, the Network Time Protocol is used to sync the network time based on Greenwich Mean Time (GMT). You can use the built-in NTP time server or manually specify a user-defined NTP server as well as a Time Zone, the switch will sync the time shortly after pressing the <Apply>...

  • Page 144: Users

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration 4.3.1 Users This page provides an overview of the current users. Currently the only way to login as another user on the web server is to close and reopen the browser. Web Interface To configure accounts in the web interface: Click SYSTEM, Account, Users.

  • Page 145: Privilege Level

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration 4.3.2 Privilege Level This page provides an overview of the privilege levels. The switch provides user set privilege levels from 1 to 15 for Account, Aggregation, Diagnostics, EEE, GARP, GVRP, IP, ICMP Snooping, LACP, LLDP, LLDP, MED, MAC Table, MRP, MVR, MVRP, Maintenance Mirroring, POE Ports, Private VLANs, QoS, SMTP, SNMP, Security, Spanning Tree, System Trap Event, VCL, VLANs, Voice VLAN.

  • Page 146: Ipv4

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration The name identifying the privilege group. In most cases, a privilege level group consists of a single module (e.g. LACP, RSTP or QoS), but a few of them contain more than one. The following description defines the privilege level groups in details: System: Contact, Name, Location, Time zone, Log.

  • Page 147: Ipv6

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration Parameter description: DHCP Client: Enable the DHCP client by checking this box. If DHCP fails and the configured IP address is zero, DHCP will retry. If DHCP fails and the configured IP address is non-zero, DHCP will stop and the configured IP settings will be used. The DHCP client will announce the configured System Name as hostname to provide DNS lookup.

  • Page 148: Syslog

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration The 'Current' column is used to show the active IPv6 configuration. Figure 4-4.2: The IPv6 configuration Parameter description: Auto Configuration: Enable IPv6 auto-configuration by checking this box. If it fails, the configured IPv6 address is zero. The router may delay responding to a router solicitation for a few seconds, the total time needed to complete auto-configuration can be significantly longer.

  • Page 149: Log

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration 4. Click Apply. Figure 4-5.1: The System Log configuration Parameter description: Server Mode: Indicates the server mode. When the mode operation is enabled, the syslog message will be sent out to a syslog server.

  • Page 150: Detailed Log

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration Parameter description: Auto-refresh Activate the auto-refresh to refresh the log automatically. Level Level of the system log entry. The following level types are supported: Information: Information level of the system log. Warning: Warning level of the system log.

  • Page 151: Snmp

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration Parameter description: The ID (>= 1) of the system log entry. Message The detailed message of the system log entry. Refresh Refresh the system log manually. Clear Clear the system log manually. 4.6 SNMP...

  • Page 152: Communities

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration Parameter description: These parameters are displayed on the SNMP System Configuration page: SNMP State: Enable: Enable SNMP operation. Disable: Disable SNMP operation. Default: Enable. Engine ID: SNMPv3 engine ID. Syntax: 0-9,a-f,A-F, min 5 octet, max 32 octet, fifth octet must not be 00. If the Engine ID is changed it will clear all original users.

  • Page 153: Users

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration Parameter description: Delete Delete the entry. It will be deleted during the next save. Community Indicates the community access string to permit access to SNMPv3 agent. The allowed string length is 1 to 32, and the allowed content is ASCII characters from 33 to 126.

  • Page 154: Groups

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration User Name A string identifying the user name that this entry should belong to. The allowed string length is 1 to 32, and the allowed content is ASCII characters from 33 to 126.

  • Page 155: Views

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration Parameter description: Delete Delete the entry. It will be deleted during the next save. Security Model Indicates the security model that this entry should belong to. Possible security models are: v1: Reserved for SNMPv1.

  • Page 156: Access

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration Figure 4-6.5: The SNMP Views Configuration Parameter description: Delete Delete the entry. It will be deleted during the next save. View Name A string identifying the view name that this entry should belong to. The allowed string length is 1 to 32, and the allowed content is ASCII characters from 33 to 126.
  • Page 157 LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration 5. If you want to modify or clear the setting then click Reset. Figure 4-6.6: The SNMP Accesses Configuration Parameter description: Delete Check to delete the entry. It will be deleted during the next save.

  • Page 158: Trap

    LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration 4.6.7 Trap The function is used to configure SNMP traps. To create a new trap account, please click on the <No number> button, and enter the trap information then click <Apply>. Max group number: 6.
  • Page 159 LANCOM GS-2310P/GS-2326(P) User Manual 4 System Configuration Indicates what kind of message will send to Security Level. Possible modes are: Info: Send information, warnings and errors. Warning: Send warnings and errors. Error: Send errors. Security Level: There are three kinds of choices.

  • Page 160: Security

    2. Select “Enabled” of the specific port in the Mode of Port Mode Configuration. 3. Select Maximum Dynamic Clients (0, 1, 2, Unlimited) of the specific port in the Mode of Port Mode Configuration. 4. Click Apply. Figure 5-1.1: The IP Source Guard Configuration (GS-2310P)

  • Page 161: Static Table

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Parameter description: Mode of IP Source Guard Configuration: Enable the Global IP Source Guard or disable the Global IP Source Guard. All configured ACEs will be lost when the mode is enabled. Port Mode Configuration: Specify IP Source Guard is enabled on which ports.

  • Page 162: Dynamic Table

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Port: The logical port for the settings. VLAN ID: The vlan id for the settings. IP Address: Allowed source IP address. IP Mask: It can be used for calculating the allowed network with IP address.

  • Page 163: Arp Inspection

    To configure ARP Inspection in the web interface: 1. Select “Enabled” in the Mode of ARP Inspection Configuration. 2. Select “Enabled” of the specific port in the Mode of Port Mode Configuration. 3. Click Apply. Figure 5-2.1: The ARP Inspection Configuration (GS-2310P) Parameter description:...

  • Page 164: Static Table

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Mode of ARP Inspection Configuration: Enable the Global ARP Inspection or disable the Global ARP Inspection. Port Mode Configuration: ARP Inspection is enabled on selected ports. Only when both Global Mode and Port Mode on a given port are enabled, ARP Inspection is enabled on this given port.

  • Page 165: Dynamic Table

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Adding new entry: Click to add a new entry to the Static ARP Inspection table. Specify the Port, VLAN ID, MAC address, and IP address for the new entry. Click "Save". Buttons: Save – Click to save changes.

  • Page 166: Dhcp Snooping

    1. Select “Enabled” in the Mode of DHCP Snooping Configuration. 2. Select “Trusted” of the specific port in the Mode of Port Mode Configuration. 3. Click Apply. Figure 5-3.1: The DHCP Snooping Configuration (GS-2310P) Parameter description: Snooping Mode: Indicates the DHCP snooping mode operation. Possible modes are: Enabled: Enable DHCP snooping mode operation.

  • Page 167: Statistics

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Untrusted: Configures the port as untrusted source of the DHCP messages. Buttons: Save – Click to save changes. Reset – Click to undo any changes made locally and revert to previously saved values. 5.3.2 Statistics The section describes to show the DHCP Snooping Statistics information of the switch.

  • Page 168: Dhcp Relay

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Rx and Tx Lease Query: The number of lease query (option 53 with value 10) packets received and transmitted. Rx and Tx Lease Unassigned: The number of lease unassigned (option 53 with value 11) packets received and transmitted.

  • Page 169: Statistics

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Parameter description: Relay Mode: Indicates the DHCP relay mode operation. Possible modes are: Enabled: Enable DHCP relay mode operation. When DHCP relay mode operation is enabled, the agent forwards and transfers DHCP messages between the clients and the server when they are not in the same subnet domain. And the DHCP broadcast message won't be flooded for security considerations.
  • Page 170 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Parameter description: Transmit to Server: The number of packets that are relayed from client to server. Transmit Error: The number of packets that resulted in errors while being sent to clients. Receive from Server: The number of packets received from server.

  • Page 171: Nas

    7. Check RADIUS-Assigned QoS Enabled. 8. Check RADIUS-Assigned VLAN Enabled. 9. Check Guest VLAN Enabled. 10. Specify Guest VLAN ID. 11. Specify Max. Reauth. Count. 12. Checked Allow Guest VLAN if EAPOL Seen. 13. Click Apply. Figure 5-5.1: The Network Access Server Configuration (GS-2310P)
  • Page 172 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Parameter description: Mode: Indicates if NAS is globally enabled or disabled on the switch. If globally disabled, all ports are allowed forwarding of frames. Reauthentication Enabled: If checked, successfully authenticated supplicants/clients are reauthenticated after the interval specified by the Reauthentication Period.
  • Page 173 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security If reauthentication is enabled and the port is in an 802.1X-based mode, this is not so critical, since supplicants that are no longer attached to the port will get removed upon the next reauthentication, which will fail. But if reauthentication is not enabled, the only way to free resources is by aging the entries.
  • Page 174 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Valid values are in the range [1; 255]. Allow Guest VLAN if EAPOL Seen: The switch remembers if an EAPOL frame has been received on the port for the life-time of the port. Once the switch considers whether to enter the Guest VLAN, it will first check if this option is enabled or disabled.
  • Page 175 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security In port-based 802.1X authentication, once a supplicant is successfully authenticated on a port, the whole port is opened for network traffic. This allows other clients connected to the port (for instance through a hub) to piggy-back on the successfully authenticated client and get network access even though they really aren't authenticated.
  • Page 176 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security successfully authenticated. If present and valid, traffic received on the supplicant's port will be classified to the given QoS Class. If (re-)authentication fails or the RADIUS Access-Accept packet no longer carries a QoS Class or it's invalid, or the supplicant is otherwise no longer present on the port, the port's QoS Class is immediately reverted to the original QoS Class (which may be changed by the administrator in the meanwhile without affecting the RADIUS-assigned).
  • Page 177 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security • Single 802.1X • Multi 802.1X For trouble-shooting VLAN assignments, use the "Monitor VLANs VLAN Membership and VLAN Port" pages. These pages show which modules have (temporarily) overridden the current Port VLAN configuration. Guest VLAN Operation: When a Guest VLAN enabled port's link comes up, the switch starts transmitting EAPOL Request Identity frames.

  • Page 178: Switch Status

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security 5.5.2 Switch Status The section describes how to show the each port NAS status information of the switch. The status includes Admin State Port State, Last Source, Last ID, QoS Class, and Port VLAN ID.
  • Page 179 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security To configure a NAS Port Status in the web interface: 1. Specify Port to check. 2. Checked “Auto-refresh”. Figure 5-5.3: The NAS Statistics Parameter description: Port State Admin State: The port's current administrative state. Refer to NAS Admin State for a description of possible values.
  • Page 180 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security • Multi 802.1X • MAC-based Auth. Last Supplicant/Client Info: Information about the last supplicant/client that attempted to authenticate. This information is available for the following administrative states: • Port-based 802.1X • Single 802.1X • Multi 802.1X •...

  • Page 181: Aaa

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Clear all entries. 5.6 AAA This section shows you to use an AAA (Authentication, Authorization, Accounting) server to provide access control to your network. The AAA server can be a TACACS+ or RADIUS server to create and manage objects that contain settings for using AAA servers.
  • Page 182 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Figure 5-5.3.3: The RADIUS Configuration Figure 5-5.3.4: The RADIUS Accounting Configuration Figure 5-5.3.4: The TACACS+ Authentication Configuration Parameter description: Timeout: The Timeout, which can be set to a number between 3 and 3600 seconds, is the maximum time to wait for a reply from a server.
  • Page 183 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security RADIUS Authentication Server Configuration The table has one row for each RADIUS Authentication Server and a number of columns, which are: The RADIUS Authentication Server number for which the configuration below applies. Enabled: Enable the RADIUS Authentication Server by checking this box.

  • Page 184: Radius Overview

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Buttons: Save – Click to save changes. Reset – Click to undo any changes made locally and revert to previously saved values. 5.6.2 Radius Overview This section provides an overview of the RADIUS Authentication and Accounting servers status to ensure the function is working.

  • Page 185: Radius Details

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security The current state of the server. This field takes one of the following values: Disabled: The server is disabled. Not Ready: The server is enabled, but IP communication is not yet up and running.

  • Page 186: Port Security

    To configure a Port Configuration of Limit Control in the web interface: 1. Select “Enabled” in the Mode of Port Configuration. 2. Specify the limit of MAC addresses. 3. Set Action (Trap, Shutdown, Trap & Shutdown) 4. Click Apply. Figure 5-7.1: The Port Security Limit Control Configuration (GS-2310P)
  • Page 187 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Parameter description: System Configuration Mode: Indicates if Limit Control is globally enabled or disabled on the switch. If globally disabled, other modules may still use the underlying functionality, but limit checks and corresponding actions are disabled.
  • Page 188 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Controls whether Limit Control is enabled on this port. Both this and the Global Mode must be set to Enabled for Limit Control to be in effect. Notice that other modules may still use the underlying port security features without enabling Limit Control on a given port.

  • Page 189: Switch Status

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security 5.7.2 Switch Status This section shows the Port Security status. Port Security is a module with no direct configuration. Configuration comes indirectly from other modules - the user modules. When a user module has enabled port security on a port, the port is set-up for software-based learning.

  • Page 190: Port Status

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Ready: The Port Security service is in use by at least one user module, and is awaiting frames from unknown MAC addresses to arrive. Limit Reached: The Port Security service is enabled by at least the Limit Control user module, and that module has indicated that the limit is reached and no more MAC addresses should be taken in.

  • Page 191: Access Management

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Time of Addition: Shows the date and time when this MAC address was first seen on the port. Age/Hold: If at least one user module has decided to block this MAC address, it will stay in the blocked state until the hold time (measured in seconds) expires.

  • Page 192: Statistics

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Parameter description: Mode: Indicates the access management mode operation. Possible modes are: Enabled: Enable access management mode operation. Disabled: Disable access management mode operation. Delete: Delete the entry. It will be deleted during the next save.

  • Page 193: Ssh

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Parameter description: Interface: The interface type through which the remote host can access the switch. Received Packets: Number of received packets from the interface when access management mode is enabled. Allowed Packets: Number of allowed packets from the interface when access management mode is enabled Discarded Packets.:...

  • Page 194: Https

    LANCOM GS-2310P/GS-2326(P) User Manual 5 Security Indicates the SSH mode operation. Possible modes are: Enabled: Enable SSH mode operation. Disabled: Disable SSH mode operation. Buttons: Save – Click to save changes. Reset – Click to undo any changes made locally and revert to previously saved values.
  • Page 195 LANCOM GS-2310P/GS-2326(P) User Manual 5 Security To configure a Authentication Method in the web interface: 1. Specify the Client (console, telnet, ssh, web) which you want to monitor. 2. Specify the Authentication Method (none, local, radius, tacacs+) 3. Check Fallback.

  • Page 196: Maintenance

    LANCOM GS-2310P/GS-2326(P) User Manual 6 Maintenance 6 Maintenance This chapter describes all of the switch Maintenance configuration tasks to enhance the performance of local network including Restart Device, Firmware upgrade, Save/Restore, Import/Export, and Diagnostics. 6.1 Restart Device This section describes how to restart switch for any maintenance needs. Any configuration files or scripts that you saved in the switch should still be available afterwards.

  • Page 197: Firmware Selection

    LANCOM GS-2310P/GS-2326(P) User Manual 6 Maintenance To upgrade the firmware via the web interface: 1. Click "Browse..." to select the firmware for your device. 2. Click "Upload". Figure 6-2.1: The Firmware update Parameter description: Browse: Click the “Browse...” button to search the Firmware URL or filename.

  • Page 198: Save / Restore

    LANCOM GS-2310P/GS-2326(P) User Manual 6 Maintenance Parameter description: Activate Alternate Image: Click to use the alternate image. This button may be disabled depending on system state. Cancel: Cancel activating the backup image. Navigates away from this page. Image: The flash index name of the firmware image. The name of the primary (preferred) image is image, the alternate image is named image.bk.

  • Page 199: Save Start

    LANCOM GS-2310P/GS-2326(P) User Manual 6 Maintenance Parameter description: Buttons: Yes – Click to reset the configuration to Factory Defaults. No – Click to return to the Port State page without resetting the configuration. 6.3.2 Save Start This section describes how to save the Switch Start configuration.

  • Page 200: Restore User

    LANCOM GS-2310P/GS-2326(P) User Manual 6 Maintenance Parameter description: Buttons: Save – Click to save current settings as Backup Configuration. 6.3.4 Restore User This section describes how to restore users information back to the switch. Web Interface To restore a User configuration in the web interface: 1.

  • Page 201: Import Config

    LANCOM GS-2310P/GS-2326(P) User Manual 6 Maintenance Figure 6-4.1: Export Configuration Parameter description: Save – Click to store the configuration on the PC or server. 6.4.2 Import Config This section describes how to import the switch configuration for maintenance needs. Any current configuration file will be imported via XML format.

  • Page 202: Diagnostics

    LANCOM GS-2310P/GS-2326(P) User Manual 6 Maintenance Parameter description: Browse: Click to search for the Configuration URL and filename. Upload: Click to upload the configuration from the specified location. 6.5 Diagnostics This section provides a set for basic system diagnosis. It let users know that whether the system is healthy or needs to be fixed.

  • Page 203: Ping6

    LANCOM GS-2310P/GS-2326(P) User Manual 6 Maintenance Parameter description: IP Address: The IP Address of the device to ping. Ping Size: The size of the ICMP Packet being sent. Start: Click the “Start” button, the switch will start to ping the device using the set ICMP packet size.

  • Page 204: Veriphy (Gs-2326(P) Only)

    LANCOM GS-2310P/GS-2326(P) User Manual 6 Maintenance The destination IPv6 Address Ping Size: The payload size of the ICMP packet. Values range from 8 bytes to 1400 bytes. Start: Click the “Start” button, the switch will start to ping the device using the set ICMPv6 packet size.
  • Page 205 LANCOM GS-2310P/GS-2326(P) User Manual 6 Maintenance Cable Status: Port: Port number. Pair: The status of the cable pair. Length: The length (in meters) of the cable pair.

  • Page 206: Glossary Of Web-Based Management

    LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management A. Glossary of Web-based Management ACE is an acronym for Access Control Entry. It describes access permission associated with a particular ACE ID. There are three ACE frame types (Ethernet Type, ARP, and IPv4) and two ACE actions (permit and deny). The ACE also contains many detailed, different parameter options that are available for individual application.
  • Page 207 LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management Using multiple ports in parallel to increase the link speed beyond the limits of a port and to increase the redundancy for higher availability. (Also Port Aggregation, Link Aggregation). ARP is an acronym for Address Resolution Protocol. It is a protocol that used to convert an IP address into a physical address, such as an Ethernet address.
  • Page 208 LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management DHCP used by networked computers (clients) to obtain IP addresses and other parameters such as the default gateway, subnet mask, and IP addresses of DNS servers from a DHCP server. The DHCP server ensures that all IP addresses are unique, for example, no IP address is assigned to a second client while the first client's assignment is valid (its lease has not expired).
  • Page 209 LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management EPS is an abbreviation for Ethernet Protection Switching defined in ITU/T G.8031. Ethernet Type Ethernet Type, or EtherType, is a field in the Ethernet MAC header, defined by the Ethernet networking standard. It is used to indicate which protocol is being transported in an Ethernet frame.
  • Page 210 LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management ICMP ICMP is an acronym for Internet Control Message Protocol. It is a protocol that generated the error response, diagnostic or routing purposes. ICMP messages generally contain information about routing difficulties or simple exchanges such as time-stamp or echo transactions.
  • Page 211 LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management IP Source Guard is a secure feature used to restrict IP traffic on DHCP snooping untrusted ports by filtering traffic based on the DHCP Snooping Table or manually configured IP Source Bindings. It helps prevent IP spoofing attacks when a host tries to spoof and use the IP address of another host.
  • Page 212 LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management MD5 is an acronym for Message-Digest algorithm 5. MD5 is a message digest algorithm, used cryptographic hash function with a 128-bit hash value. It was designed by Ron Rivest in 1991. MD5 is officially defined in RFC 1321 - The MD5 Message-Digest Algorithm.
  • Page 213 LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management OAM is an acronym for Operation Administration and Maintenance. It is a protocol described in ITU-T Y.1731 used to implement carrier Ethernet functionality. MEP functionality like CC and RDI is based on this Optional TLVs.
  • Page 214 LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management POP3 is an acronym for Post Office Protocol version 3. It is a protocol for email clients to retrieve email messages from a mail server. POP3 is designed to delete mail on the server as soon as the user has downloaded it. However, some implementations allow users or an administrator to specify that mail be saved for some period of time.
  • Page 215 LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management RARP RARP is an acronym for Reverse Address Resolution Protocol. It is a protocol that is used to obtain an IP address for a given hardware address, such as an Ethernet address. RARP is the complement of ARP.
  • Page 216 LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management Service Set Identifier is a name used to identify the particular 802.11 wireless LANs to which a user wants to attach. A client device will receive broadcast messages from all access points within range advertising their SSIDs, and can choose one to connect to based on pre-configuration, or by displaying a list of SSIDs in range and asking the user to select one (Wikipedia).
  • Page 217 LANCOM GS-2310P/GS-2326(P) User Manual A. Glossary of Web-based Management TFTP is an acronym for Trivial File Transfer Protocol. It is transfer protocol that uses the User Datagram Protocol (UDP) and provides file writing and reading, but it does not provide directory service and security features.

This manual is also suitable for:

Gs-2326pGs-2326

Table of Contents