1. Manuals
  2. Brands
  3. NETGEAR Manuals
  4. Switch
  5. 700 Series
  6. Software user's manual

NETGEAR 700 Series Software User's Manual

Managed switch
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
700 Series Managed Switch
User's Guide for Software
v2.1
NETGEAR, Inc.
4500 Great America Parkway
Santa Clara, CA 95054 USA
Phone 1-888-NETGEAR
SM-10004-02
June 2003
SM-10004-02

Advertisement

Table of Contents
loading

Related Manuals for NETGEAR 700 Series

Summary of Contents for NETGEAR 700 Series

  • Page 1 700 Series Managed Switch User’s Guide for Software v2.1 NETGEAR, Inc. 4500 Great America Parkway Santa Clara, CA 95054 USA Phone 1-888-NETGEAR SM-10004-02 June 2003 SM-10004-02...

  • Page 2: Technical Support

    In the interest of improving internal design, operational function, and/or reliability, NETGEAR reserves the right to make changes to the products described in this document without notice. NETGEAR does not assume any liability that may occur due to the use or application of the product(s) or circuit layout(s) described herein.
  • Page 3 Industry Canada office. EN 55 022 Declaration of Conformance This is to certify that the 700 Series Managed Switch is shielded against the generation of radio interference in accordance with the application of Council Directive 89/336/EEC, Article 4a. Conformity is declared by the application of EN 55 022 Class B (CISPR 22).
  • Page 4 SM-10004-02...

  • Page 5: Table Of Contents

    Chapter 3 Software Upgrade Procedure Chapter 4 Administration Console Telnet Interface Set Up Your Switch Using Direct Console Access ...3-1 Introduction to the Command Menu Interface ...3-3 Main Menu> System ...3-5 Main Menu> Status ...3-5 Main Menu> Status >Statistics ...3-5 Main Menu>...
  • Page 6 Main Menu> Advanced> Advanced Security ...3-14 Main Menu> Advanced> 802.1x Port-Based Authentication ...3-14 Main Menu> Advanced> Port Mirroring ...3-15 Main Menu> Advanced> Port Trunking ...3-15 Main Menu> Advanced> Virtual Cable Tester ...3-16 Main Menu> Advanced> Advanced Tools ...3-17 Main Menu> Advanced> Advanced Tools> Software Upgrade ...3-17 Main Menu>...
  • Page 7 Status > Switch Statistics ...4-5 Status > Port Statistics ...4-7 Status > Error Statistics ...4-8 Status > Most Active Ports ...4-9 Status > Reset Statistics ...4-10 Status > Port Settings ...4-10 Status > MAC Address Table ... 4-11 Set-up Menu ...4-12 Set-up>...
  • Page 8 Advanced> Spanning Tree > Port Settings ...4-34 Advanced> MAC ...4-35 Advanced> MAC> Address Aging ...4-36 Advanced> MAC> Static Addresses ...4-36 Advanced> Multimedia Support ...4-37 Advanced> Multimedia Support>Enable/Disable IGMP ...4-37 Advanced>Multimedia Support> Static Multicast Groups ...4-38 Advanced> SNMP ...4-38 Advanced> SNMP> Community Table ...4-39 Advanced>...
  • Page 9 RADIUS ...5-30 Reset ...5-31 Stat-Reset ...5-32 Appendix A Virtual Local Area Network VLAN Behavior in a 700 Series Managed Switch ... A-2 Appendix B Cabling Guidelines Fast Ethernet Cable Guidelines ... B-1 Category 5 Cable ... B-2 Category 5 Cable Specifications ... B-2 Twisted Pair Cables ...
  • Page 10 RJ-45 Plug and RJ-45 Connectors ... B-6 Conclusion ... B-8 Appendix C 802.1x Port-Based Authentication Overview Understanding 802.1x Port Based Network Access Control ... C-1 Glossary Index viii SM-10004-02 Contents...

  • Page 11: About This Guide

    Thank you for purchasing the NETGEAR Audience This reference manual assumes that the reader has basic-to-intermediate computer and Internet skills. However, basic computer network, Internet, and wireless technology tutorial information is provided in the Appendices. Typographical Conventions This guide uses the following typographical conventions: Table 1.

  • Page 12: Features Of The Html Version Of This Manual

    The PDF button links to a PDF version of the full manual. – The E-mail button enables you to send feedback by e-mail to Netgear support. – The Print button prints the currently displayed topic. Using this button when a step-by-step procedure is displayed will send the entire procedure to your printer--you do not have to worry about specifying the correct range of pages.

  • Page 13: Switch Management Overview

    • SNMP Access • Protocols Management Access Overview Your NETGEAR 700 Series Managed Switch gives you the flexibility to access and manage the switch using any or all of the following methods: • An administration console • Web browser interface •...

  • Page 14: Protocols

    For a more detailed discussion of the Administration Console, see chapter 3. For a more detailed discussion of the Web Browser Interface, see chapter 4. Protocols Your NETGEAR 700 Series Managed Switch supports the following protocols: • Virtual terminal protocols, such as Telnet •...

  • Page 15: Virtual Terminal Protocols

    Macintosh, a PC, or a UNIX workstation. Because Telnet runs over TCP/IP, you must have at least one IP address configured on a NETGEAR 700 Series Managed Switch before you can establish access to it with a virtual terminal protocol.
  • Page 16 Management Station to use the same community string and that the SNMP Network Management Station is entered in the SNMP Host table on the switch. This management method, in fact, uses two community strings: the GET community string and the SET community string. If the SNMP Network management Station only knows the SET community string, it can read from and write to the MIBs.
  • Page 17 700 Series Managed Switch User’s Guide for Software v2.1 Switch Management Overview SM-10004-02...

  • Page 18: Software Upgrade Procedure

    These software releases will provide new capabilities that can extend the useful life of your switch. This manual is updated whenever there is a change in either the first or second positions of the software version number. The third position in the software version number identifies bug fix and patch versions for which this manual is not updated.
  • Page 19 Verify that the new software is loaded by going to the Software Download screen and checking the Software Release information. Test your switch to make sure the new image is working correctly. If you decide to keep the new image, go to Software Download again. Select ‘Boot from Net & Save’ option.
  • Page 20 700 Series Managed Switch User’s Guide for Software v2.1 Software Upgrade Procedure SM-10004-02...

  • Page 21: Administration Console Telnet Interface

    (described in chapter 4) make it the best method to manage the switch. Direct access to the switch console is achieved by connecting the switch’s console port to a VT-100 or compatible terminal or to a PC, Apple Macintosh, or UNIX workstation equipped with a terminal-emulation program.
  • Page 22 Figure 4-2: Connection Description The following screen will appear. In the bottom, drop down box labeled Connect Using:, click the arrow and choose the COM port to which the switch will connect. In the example below, COM1 is the port selected. Click OK.

  • Page 23: Introduction To The Command Menu Interface

    Figure 4-4: Connection Settings Click OK. The Hyper Terminal window will open and you should be connected to the switch. If you do not get a welcome screen or a system menu, hit the return key. When attached to the User Interface via a Telnet Session, the following must be set in order to use the arrow keys: Under the terminal pull down menu choose Properties and make sure the VT100 Arrows option is turned on.
  • Page 24 700 Series Managed Switch User’s Guide for Software v2.1 There are several characteristics to the CMI pages that are necessary to know before proceeding to use it. The TAB key or the arrow keys may be used to move within menus and sub-screens. At the bottom of every screen are some key commands available to the user for that particular screen, as well as some helpful information.

  • Page 25: Main Menu> System

    700 Series Managed Switch User’s Guide for Software v2.1 Main Menu> System This screen displays the main menu System Information options. The user definable options are: System Name, System Contact, System Location, IP Address, Default Gateway, and Subnet Mask. The System OID option is used for production testing.

  • Page 26: Main Menu> Status >Statistics Rest

    700 Series Managed Switch User’s Guide for Software v2.1 Figure 4-7: Switch Statistics Main Menu> Status >Statistics Rest The Statistic Reset menu allows the user to reset the statistic counter to zero. When you choose this option, a prompt will appear asking you for a confirmation. Once the confirmation is made, the statistics counters will be reset to zero.

  • Page 27: Main Menu> Set-Up

    700 Series Managed Switch User’s Guide for Software v2.1 Figure 4-9: Address Manager: MAC Address Table Main Menu> Set-Up There are three sub-menus at Set-Up menu, System Configuration, IP Configuration, and Port Configuration. Main Menu> Set-Up> System Configuration The System Configuration allows the user to enter a number of system-related information for easy reference in the future.

  • Page 28: Main Menu> Set-Up> Port Configuration

    IP assignment mode from DHCP to manual after the switch has obtained its IP address. Figure 4-11: Set-up Manager: IP Configuration Note: In DHCP mode, if the switch fails to get a DHCP assignment, the switch defaults to 192.168.0.1 as its IP address.
  • Page 29 Flow control is a protocol that prevents packets from being dropped by reducing the amount of traffic to a level that can be accommodated. If enabled on both ends of a connection, it will prevent the sender from sending data until the receiver can accept it. This switch complies with the IEEE802.3x flow control standard.

  • Page 30: Main Menu> Set-Up> Gbic

    700 Series Managed Switch User’s Guide for Software v2.1 Gigabit Ports. For the gigabit ports on each switch, the port type may be chosen. The default is that the port uses the RJ-45 interface (GT). You can select the GBIC interface (GB) by switching the port type from ‘GT’...

  • Page 31: Main Menu> Security

    To Restore Factory Values, select the Restore Factory Values to reset the switch parameters to their original default settings. In order for changes to take effect, you must Reset the switch. Note: Network IP settings (i.e. IP address, Gateway Address, Network Mask) will not be affected by this command.

  • Page 32: Main Menu> Advanced

    Figure 4-15: Security Note: Using telnet, you can only enable/disable the web interface. You cannot enable/disable the telnet interface. If you forget your password, contact NETGEAR technical support at 1-888-NETGEAR (in North America). Main Menu> Advanced The Advanced page allows professional users to operate more complicated features of the device, which include VLAN, Spanning Tree, Port Trunking, Multimedia support (IGMP), traffic prioritization, SNMP, and port mirroring.
  • Page 33 • SNMP: You can use an SNMP-based Network Management Software program to manage your switch. This menu allows you to set up the appropriate tables to enable the switch to respond to SNMP queries. • Command Line: A user interface that allows the user to configure the switch via a command line interface.

  • Page 34: Main Menu> Advanced> Advanced Security

    700 Series Managed Switch User’s Guide for Software v2.1 Main Menu> Advanced> Advanced Security This menu option allows you to configure the advanced security settings of the switch to limit the access to the management interfaces. Figure 4-16: Advanced Security There are two advanced security options beyond the basic password protection: RADIUS client authentication and IP Filtering.

  • Page 35: Main Menu> Advanced> Port Mirroring

    To enable 802.1x, provide the IP address of the RADIUS server, and the shared secret authentication key. The re-authorization timer determines how frequently the session will refresh the data encryption with a new key.

  • Page 36: Main Menu> Advanced> Virtual Cable Tester

    1 to 8, ports 9 to 16, ports 17 to 24, or port 25 and port 26 (using an FSM726 as an example), on the same switch unit. Up to four trunks can be enabled at the same time. To set up a trunk, use the space bar to select the ports that will participate in the trunk.

  • Page 37: Main Menu> Advanced> Advanced Tools

    Main Menu> Advanced> Advanced Tools This menu provides you with the ability to upgrade the software for the switch as well as saving or loading the switch configuration file to a TFTP server.

  • Page 38: Main Menu> Advanced> Advanced Tools> Configuration Management

    This menu allows you to save your configuration, in case you want to keep a copy for back-up purposes. Warning: Do not edit your configuration file. Editing your file can cause your switch to lose its management capabilities, and possibly degrade its performance. Editing the configuration file will void your warranty.

  • Page 39: Main Menu> Advanced> Traffic Management> Port Priority

    There are two means to differentiate traffic with this switch- VLAN tags or Differentiated Service Code Points (DSCP) in the header of data packets. By using either the VLAN tags (port-based) or DSCP (DiffServ), you can configure the switch so that certain traffic will take priority over less critical traffic.

  • Page 40: Main Menu> Advanced> Traffic Management> Broadcast Control

    700 Series Managed Switch User’s Guide for Software v2.1 There are 64 different tags available. This menu maps the various DSCP tags to the two output queues on each port. Main Menu> Advanced> Traffic Management> Broadcast Control Broadcast control lets you set a threshold for the number of broadcast packets sent over a port.

  • Page 41: Main Menu> Advanced> Vlans> Vlan Membership

    (Reference: Appendix B and IEEE Std 802.1Q-1998 Virtual Bridged Local Area Networks). Main Menu> Advanced> VLANS> VLAN Ports All untagged packets entering the switch will by default be tagged with the ID specified by the port’s PVID. Administration Console Telnet Interface...

  • Page 42: Main Menu> Advanced> Spanning Tree

    700 Series Managed Switch User’s Guide for Software v2.1 Figure 4-30: PVID Settings This screen allows you to specify the PVID for each port. The number next to each port indicates which PVID is set for each port. Following industry standards, PVID 1 is the default PVID.

  • Page 43: Main Menu> Advanced> Spanning Tree> Port Settings

    Main Menu> Advanced> Spanning Tree> Port Settings For the Port Settings options, you can specify Spanning Tree port priority, cost, and Fastlink parameters for each port. Administration Console Telnet Interface 700 Series Managed Switch User’s Guide for Software v2.1 SM-10004-02 4-23...

  • Page 44: Main Menu> Advanced> Mac Address Manager

    Figure 4-33: Spanning Tree: Port Settings Fastlink in STP mode. If a client is trying to access a server through the switch running the STP negotiation, it will not be able to connect to it immediately. This can be a problem for some networks.

  • Page 45: Main Menu> Advanced> Mac Address Manager> Address Aging

    Removing an entry. Tab to the entry and press Ctrl-X. This will erase the MAC address from NVRAM. This action takes effect immediately; you do not need to use Ctrl-W to save the update. Administration Console Telnet Interface 700 Series Managed Switch User’s Guide for Software v2.1 SM-10004-02 4-25...

  • Page 46: Main Menu> Advanced> Multimedia Support

    700 Series Managed Switch User’s Guide for Software v2.1 Main Menu> Advanced> Multimedia Support In networks where multimedia applications generate multicast traffic, Internet Group Multicast Protocol (IGMP) can greatly reduce unnecessary bandwidth usage by limiting traffic forwarding that is otherwise broadcast to the whole network. Enabling IGMP will allow individual ports to detect IGMP queries, report packets, and manage IP multicast traffic through the switch.

  • Page 47: Main Menu> Advanced> Multimedia Support> Static Multicast Membership

    700 Series Managed Switch User’s Guide for Software v2.1 Figure 4-37: Static Multicast Administration The Static Multicast Administration menu lets you create individual groups by entering MAC addresses for your static multicast group. The membership of each group is configured in the Static Multicast Membership menu.

  • Page 48: Main Menu> Advanced> Snmp

    You can manage this switch using the Simple Network Management Protocol (SNMP) from a network management station. To do so, you must configure your switch to participate in the SNMP community and you must add the SNMP host agent to the host table. This prevents unauthorized SNMP access to your switch from non-approved SNMP hosts.

  • Page 49: Main Menu> Advanced> Snmp> Host Table

    Main Menu> Advanced> SNMP> Host Table The screen, shown in Figure 6-29, grants a host the access rights to the switch. Host Authorization is a security feature to limit people who are not listed in the host table from accessing the switch using SNMP.
  • Page 50 700 Series Managed Switch User’s Guide for Software v2.1 4-30 Administration Console Telnet Interface SM-10004-02...

  • Page 51: Web-Based Management Interface

    Chapter 5 Web-Based Management Interface Your NETGEAR 700 Series Managed Switch provides a built-in browser interface that lets you configure and manage it remotely using a standard Web browser such as Microsoft Internet Explorer 5.0 or later or Netscape Navigator 6.0 or later.

  • Page 52: Web Based Management Overview

    700 Series Managed Switch User’s Guide for Software v2.1 Web Based Management Overview The 6 menu options available are: System, Status, Set-up, Tools, Security, and Advanced. There is a help menu in the top of right side of screen; you can click the ‘help’ or the question mark to read the help menu.

  • Page 53: System Information

    Current Local Time (according to your computer) • System Uptime • MAC Address • IP Address • Subnet Mask • Default Gateway • Software Version • System OID (used for production testing) Web-Based Management Interface 700 Series Managed Switch User’s Guide for Software v2.1 SM-10004-02...

  • Page 54: Status Menus

    700 Series Managed Switch User’s Guide for Software v2.1 These parameters are not editable from this screen. Some of these can be modified in the Set Up> System Configuration page or the Set Up> IP Configuration page. Status Menus The Status page contains 5 menus.

  • Page 55: Status > Switch Statistics

    Status > Switch Statistics The Switch Statistics Chart allows you to compare one type of statistic across all the ports. You can reset the counters in the Reset Statistics page. Figure 5-4: Switch Statistics You can configure the following options on the Switch Statistics Chart: •...
  • Page 56 700 Series Managed Switch User’s Guide for Software v2.1 • Outbound Non-unicast Packet Rate: Transmitted non-unicast packet per second. • Outbound Discard Rate: Transmitted and is discarded packet per second. • Outbound Error Rate: Transmitted error packet per second. •...

  • Page 57: Status > Port Statistics

    Inbound Errors: Received and is a error packet • Outbound Octets: Transmitted byte • Outbound Unicast Packets: Transmitted unicast packet • Outbound Non-unicast Packets: Transmitted non-unicast packet. Web-Based Management Interface 700 Series Managed Switch User’s Guide for Software v2.1 SM-10004-02...

  • Page 58: Status > Error Statistics

    700 Series Managed Switch User’s Guide for Software v2.1 • Outbound Discards: Transmitted and is being discarded packet • Outbound Errors: Transmitted and is an Error packet. • Ethernet Undersize Packets: Less than 64byte length packet • Ethernet Oversize Packets: more than 1518 byte length packet.

  • Page 59: Status > Most Active Ports

    This page allows you to view the transmission and reception utilization of top 10 ports. It is especially useful when you want to see the potential bottlenecks in the switch. A bottleneck is a port with egress traffic closing to line rate. The receive side picture indicates potential nodes causing the problem.

  • Page 60: Status > Reset Statistics

    700 Series Managed Switch User’s Guide for Software v2.1 Status > Reset Statistics Figure 5-8: Statistics Counter Reset The Reset Statistics screen lets you reset all statistics counters of the switch. By pressing on the Reset button, all counters will be set to 0. Status > Port Settings Figure 5-9: Port Settings This page displays the port settings.

  • Page 61: Status > Mac Address Table

    You can filter the displayed addresses by port, VLAN, and/or MAC address by checking those fields. Web-Based Management Interface 700 Series Managed Switch User’s Guide for Software v2.1 SM-10004-02 5-11...

  • Page 62: Set-Up Menu

    700 Series Managed Switch User’s Guide for Software v2.1 Set-up Menu There are four kinds of configuration in the Setup page: Figure 5-11: Setup menu System Configuration IP Configuration Port Configuration Gigabit Port Configuration (GBIC) Set-up> System Configuration Figure 5-12: System Configuration...

  • Page 63: Set-Up> Ip Configuration

    To enable quick and easy set-up, the default setting is DHCP. However, DHCP addresses change over time, and you need to know the IP address of your switch so that you can remotely manage it. After completing the initial setup, change the IP assignment mode from DHCP to manual.

  • Page 64: Set-Up> Port Configuration

    700 Series Managed Switch User’s Guide for Software v2.1 Click Apply to change the IP settings Save Configuration to NVRAM and reset the system to implement the changes (Tools > Save Configuration). Set-up> Port Configuration Figure 5-14: Port Configuration This menu allows you can configure the status of each port.

  • Page 65: Set-Up> Gbic

    (RJ-45). Figure 5-15: Setup: GBIC If you want to use a GBIC, the setting on this page must be set accordingly. The switch auto-detects if the media is copper or GBIC. This Auto-detect feature is enabled by default. Note: Enabling the GBIC connector for a Gigabit Ethernet port disables the built-in 1000BASE-T port.

  • Page 66: Tools Menu

    700 Series Managed Switch User’s Guide for Software v2.1 Tools Menu The Tools page contains functions to maintain your switch. Figure 5-16: Tools Menu There is a firmware upgrade; the means to save current settings to non-volatile memory (NVRAM); as well as software reset mechanism. The page has two sub-pages: •...

  • Page 67: Tools> Restore Factory Defaults

    700 Series Managed Switch User’s Guide for Software v2.1 After making any changes to the screens within the Web Interface, you can save the changed settings to NVRAM. If changes are not saved to NVRAM, then they will be lost during the next switch reset or reboot.

  • Page 68: Tools> Device Reset

    700 Series Managed Switch User’s Guide for Software v2.1 Tools> Device Reset Figure 5-19: Device Reset In this screen the user can reset (power cycle) the switch. Reset the switch by selecting 'Reset' Security> Passwords Figure 5-20: Security Menu 5-18...

  • Page 69: Advanced Options

    There are 11 sub-menus in the Advanced Section. Figure 5-21: Advanced menu • Disable Advanced Alerting • Advanced Security • Port Mirroring Web-Based Management Interface 700 Series Managed Switch User’s Guide for Software v2.1 in lower case letters. SM-10004-02 5-19...
  • Page 70 Advanced Security: You can configure the security settings of the switch by choosing either to use basic password or RADIUS server to authenticate the user attempting to configure the switch. In addition, the user can also set up IP filtering to allow only approved users on the network to configure the switch.
  • Page 71 Multimedia Support (IGMP): The Internet Group Management Protocol (IGMP) is an Internet protocol that provides a way for network devices to report multicast group membership to adjacent routers. Web-Based Management Interface 700 Series Managed Switch User’s Guide for Software v2.1 SM-10004-02 5-21...

  • Page 72: Advanced > Disable Advanced Alerting

    Advanced > 802.1x Port-Based Authentication This menu option allows you to configure the 802.1x security settings of the switch to require RADIUS authorization to access ports on the switch. 5-22...
  • Page 73 To enable 802.1x, provide the IP address of the RADIUS server, and the shared secret authentication key. The re-authorization timer determines how frequently the session will refresh the data encryption with a new key.

  • Page 74: Advanced > Advanced Security

    Advanced > Advanced Security Figure 5-24: Advanced Security This menu option allows you to configure the advanced security settings of the switch to limit the access to the management interface. There are two advanced security options beyond the basic password protection: RADIUS client authentication and IP Filtering. If you have a RADIUS server on your network, you can have authentication of management access done through the RADIUS server.

  • Page 75: Advanced > Port Mirroring

    700 Series Managed Switch User’s Guide for Software v2.1 Advanced > Port Mirroring Figure 5-25: Figure 4-18. Port Mirroring Port mirroring is a feature to help in the debugging of a network. This web interface page allows the enabling or disabling of port mirroring and the setting of source and monitor ports. The monitor port will show a copy of every packet that arrives or leaves the source port.

  • Page 76: Advanced > Virtual Cable Tester

    A bank is a group of 8 10/100 ports or 2 gigabit ports, for example, ports 1 to 8, ports 9 to 16, ports 17 to 24, or port 25 and port 26, on the same switch unit. Up to four trunks can be enabled at the same time.

  • Page 77: Advanced> Advanced Tools

    Advanced> Advanced Tools> Software Upgrade Figure 5-28: Advanced Tools menu This menu provides you with the ability to upgrade the software for the switch through a variety of options using TFTP protocol. If new improvements to the switch software become available, this menu enables you to upgrade to the new software.

  • Page 78: Advanced> Advanced Tools> Configuration Manager

    Advanced> Advanced Tools> Configuration Manager Figure 5-29: Configuration Manager Warning: Do not edit your configuration file. Editing your file can cause your switch to lose its management capabilities, and possibly degrade its performance. Editing the configuration file will void your warranty.

  • Page 79: Advanced > Traffic Management

    700 Series Managed Switch User’s Guide for Software v2.1 Advanced > Traffic Management Traffic management covers the methods to improve the performance of your network by differentiating traffic and limiting excess broadcast traffic. There are two means to differentiate traffic with this switch- VLAN tags or using Differentiated Service Code Points (DSCP) in the header of data packets.

  • Page 80: Advanced > Traffic Management > Broadcast Control

    700 Series Managed Switch User’s Guide for Software v2.1 Advanced > Traffic Management > Broadcast Control Broadcast control lets you set a threshold for the number of broadcast packets sent over a port. Figure 5-31: Broadcast Control menu Advanced> VLANS VLANs: A Virtual Local Area Network (VLAN) is a means to electronically separate ports on the same switch from a single broadcast domain into separate broadcast domains.

  • Page 81: Advanced> Vlan> Primary Vlan

    700 Series Managed Switch User’s Guide for Software v2.1 Advanced> VLAN> Primary VLAN Figure 5-32: Primary VLAN A ‘U’ or ‘T’ will be displayed for each port assigned to the VLAN, where ‘U’ stands for untagged and ‘T’ for tagged. If a port is an untagged member of a VLAN, the VLAN tag will be striped from the frame before it is sent out that port.

  • Page 82: Advanced> Vlan> Vlan Port

    Figure 5-33: VLAN Port Settings All untagged packets entering the switch will by default be tagged with the ID specified by the port’s PVID. This screen allows you to specify the PVID for each port. The number next to each port indicates which PVID is set for each port.

  • Page 83: Advanced> Spanning Tree

    Spanning Tree will treat the trunk as a single virtual port. Spanning Tree can be enabled or disabled in this screen. Enable: There are four other tunable parameters to be addressed when enabled. Web-Based Management Interface 700 Series Managed Switch User’s Guide for Software v2.1 SM-10004-02 5-33...

  • Page 84: Advanced> Spanning Tree > Port Settings

    700 Series Managed Switch User’s Guide for Software v2.1 Hello Time Time between configuration messages sent by the Spanning Tree algorithm Max Age Amount of time before a configuration message is discarded by the system Forward Delay Amount of time system spent transitioning from the ‘learning’ to the ‘listening’...

  • Page 85: Advanced> Mac

    Enabled or Disabled Fastlink in STP mode. If a client is trying to access a server through the switch running the STP negotiation, it will not be able to connect to it immediately. This can be a problem for some networks.

  • Page 86: Advanced> Mac> Address Aging

    700 Series Managed Switch User’s Guide for Software v2.1 Advanced> MAC> Address Aging Figure 5-36: MAC > Address Aging Aging Time is a variable that must be configured. Its purpose is to determine the amount of time an entry is held in the forwarding tables while no activity occurs from that address. Entries should be removed to update the table for MAC addresses that have moved or are turned off.

  • Page 87: Advanced> Multimedia Support

    Enabling IGMP will allow individual ports to detect IGMP queries, report packets, and manage IP multicast traffic through the switch. Web-Based Management Interface 700 Series Managed Switch User’s Guide for Software v2.1 SM-10004-02 5-37...

  • Page 88: Advanced>Multimedia Support> Static Multicast Groups

    You can manage this switch using the Simple Network Management Protocol (SNMP) from a network management station. To do so, you must configure your switch to participate in the SNMP community and you must add the SNMP host agent to the host table. This prevents unauthorized SNMP access to your switch from non-approved SNMP hosts.

  • Page 89: Advanced> Snmp> Community Table

    700 Series Managed Switch User’s Guide for Software v2.1 • 4-Group RMON (RFC1757) Advanced> SNMP> Community Table Figure 5-40: Figure 4-31. SNMP Management: Community Table The administrator can create up to eight different community strings with combinations of GET, SET and TRAP privileges. These community strings need to be set prior to setting host access, as the host table depends on the existence of community strings.

  • Page 90: Advanced> Snmp> Trap Setting

    700 Series Managed Switch User’s Guide for Software v2.1 The SNMP Host Table screen allows you to add and remove hosts from access rights that have been granted to community groups. The permissions GET, SET and TRAP are assigned to a community name and then these permissions are assigned to individual machines by adding those machines and their IP address to the appropriate community string.

  • Page 91: Command Line Interface

    Before discussing the details of the CLI operation, the syntax of the CLI commands used in this manual are listed below: • The CLI syntax is presented in bold ariel text with the 700 Series Managed switch model number followed by a “#”, such as in this example: FSM726# show spanning-tree interface ethernet <x/y>...

  • Page 92: Help

    700 Series Managed Switch User’s Guide for Software v2.1 Once you see the root prompt, you are in CLI mode. If you have a question on what commands you can use, type a question mark ‘?’ at the prompt. A list of available commands will be presented to you.

  • Page 93: Exit

    VLAN – VLAN information DiffServ Use the show command to view the priority associated with each DSCP value. diffserv Syntax Command Line Interface 700 Series Managed Switch User’s Guide for Software v2.1 . By entering exit at the FSM726(config)# SM-10004-02...

  • Page 94: Interfaces

    700 Series Managed Switch User’s Guide for Software v2.1 FSM726# show diffserv An example of the partial output is shown below. DSCP Priority ==== ======== 0 normal 1 normal 2 normal 3 normal 4 normal 5 normal 6 normal Interfaces...

  • Page 95: Mac-Address-Table

    ------------------- ------------ ---------------- 00.06.5b.69.3d.be Dynamic Command Line Interface 700 Series Managed Switch User’s Guide for Software v2.1 command displays a variety of information on the status and command is used to display the aging timer of command displays the dynamically learned MAC...
  • Page 96 700 Series Managed Switch User’s Guide for Software v2.1 Multicast-Static show mac-address-table multicast-static addresses Syntax FSM726# show mac-address-table multicast-static Static show mac-address-table static Syntax FSM726# show mac-address-table static Mirror command displays mirroring configurations of the switch. Primarily, it shows show mirror which ports are mirroring and being mirrored.
  • Page 97 128 spanning-tree cost 19 no spanning-tree fastlink exit interface Ethernet 1/2 cos Normal description Not Defined Command Line Interface 700 Series Managed Switch User’s Guide for Software v2.1 command displays the current running configuration. It displays a SM-10004-02...

  • Page 98: Snmp

    700 Series Managed Switch User’s Guide for Software v2.1 no shutdown speed 100 duplex full flow-ctrl negotiation auto switchport access vlan untagged 1 switchport access native 1 spanning-tree port-priority 128 spanning-tree cost 19 no spanning-tree fastlink exit --More-- SNMP command displays system information that will be reported to an SNMP agent, show snmp including the Contact and the Location.
  • Page 99 Port path cost 128, Port priority 19 Designated root has priority 32768, address 0009.5b36.b007 Designated bridge has priority 32768, address 0009.5b36.b007 Command Line Interface 700 Series Managed Switch User’s Guide for Software v2.1 command displays the spanning tree state of a SM-10004-02...

  • Page 100: System

    700 Series Managed Switch User’s Guide for Software v2.1 System command displays system-related data. show system Syntax FSM726# show system An example of the display output is shown below. System Uptime: 0 Days 1 hr. 42 min. 15 sec. System Description: FSM726 Managed Switch...

  • Page 101: Vlan

    Syntax FSM726# show vlan [cr | VLAN index #] Where = a carriage return. The command show vlan lists the VLANs configured on the switch. <cr> Command Line Interface 700 Series Managed Switch User’s Guide for Software v2.1...

  • Page 102: Configure

    700 Series Managed Switch User’s Guide for Software v2.1 = The VLAN ID. Adding the VLAN ID to the show vlan command displays <VLAN index #> the port that belongs to that particular VLAN. For example, show vlan 1 displays the ports that belong to VLAN 1.

  • Page 103: Exit

    1-26. Since FSM726 <x/y> is not stackable, the value of x is always 1. For example, suppose you want to configure port 8 on the switch, the command to do so would be: FSM726(config)# interface ethernet 1/8 Command Line Interface 700 Series Managed Switch User’s Guide for Software v2.1...
  • Page 104 700 Series Managed Switch User’s Guide for Software v2.1 When the interface command is properly entered, you will be taken to the Interface Configuration Mode, where the prompt changes from FSM726(config)# FSM726(config-if)#. When you are done configuring one particular interface and wish to configure another interface, you must exit the Interface Configuration Mode by using the command.

  • Page 105: Flow Control

    You can designate a port for monitoring traffic from one or more other ports or of a single VLAN configured on the switch. The switch monitors the network activity by copying all traffic from the specified monitoring sources to the designated monitoring port, to which a network analyzer can...
  • Page 106 The type command let you select whether to use the RJ-45 interface or the GBIC interface on your gigabit ports (port 25 & 26). If a GBIC module is present, you may wish to use gbic mode; however, if no GBIC module is present, the switch defaults to the RJ-45, also known as twisted-pair (TP).
  • Page 107 Syntax FSM726(config-if)# speed <speed> Where = the speed of the port. The options are 10, 100, 1000, or auto (for automatic speed <speed> configuration). Command Line Interface 700 Series Managed Switch User’s Guide for Software v2.1 gbic command. SM-10004-02 6-17...
  • Page 108 • Native All untagged packets entering the switch will by default be tagged with the ID specified by the port’s PVID. This command allows you to specify the PVID for each port. The PVID values ranges from 1-4094. Following industry standards, PVID 1 is the default PVID Syntax FSM726(config-if)# switchport access native <PVID value>...

  • Page 109: Mac-Address-Table

    A bank is ports 1 to 8, ports 9 to 16, ports 17 to 24, or port 25 and port 26 (using an FSM726 as an example), on the same switch unit. Up to four trunks can be enabled at the same time.
  • Page 110 700 Series Managed Switch User’s Guide for Software v2.1 Static The Static Addresses Table, allows the administrator to specify Media Access Control (MAC) addresses for specific ports that will not be purged from the bridge table by the aging function.

  • Page 111: Multimedia

    Use the no hpo command to optimize for flow control. Syntax FSM726(config)# multimedia hpo Please see section V, area C, item10 for detailed operation of the no command.
  • Page 112 700 Series Managed Switch User’s Guide for Software v2.1 Community You can create up to eight different community strings with combinations of privileges. These community strings need to be set prior to setting host access, as the host table depends on the existence of community strings Syntax.
  • Page 113 Name Use the command to give a name to the switch. This is done to make the switch easier to name identify. Syntax FSM726(config)# snmp-server name <switch name> Where = the name you wish to give to the switch <switch name>...

  • Page 114: Spanning Tree

    700 Series Managed Switch User’s Guide for Software v2.1 Spanning Tree Spanning Tree Protocol (STP) ensures that only one path at a time is active between any two network nodes. There are maybe more than two physical path between any two nodes for redundant paths;...

  • Page 115: System

    IP address of the TFTP server for configuration config-tftp ip file save/load. Syntax Command Line Interface 700 Series Managed Switch User’s Guide for Software v2.1 if you wish to save your configuration file to the TFTP server, SM-10004-02 6-25...

  • Page 116: Ip-Filter

    <IP address> IP-Filter The purpose of IP filtering is to prevent unauthorized personnel from gaining access to the switch. This is accomplished by allowing only certain IP addresses to be able to access the management. This command enables IP filtering on the switch. The No command will disable it.

  • Page 117: Ip-Filter Address

    Manual – The user manually enter IP related information BootP – Bootstrap Protocol, which allows the FSM726 switch to discover its own IP address from a BootP server on the network DHCP – The switch accepts DHCP broadcast from a DHCP server and automatically configure IP...

  • Page 118: Save

    700 Series Managed Switch User’s Guide for Software v2.1 Syntax FSM726(config)# system gateway <default gateway> Where = the IP address of the default gateway <default gateway> Save command is used to save the configuration to the ’s NVRAM once you have made save changes to it.

  • Page 119: Username

    Syntax FSM726(config)# system username <username> Where = the user name you wish to set up for accessing the switch. Please note that this <username> field is case sensitive. Password Use this command to set a password for the switch Syntax FSM726(config)# system password <password>...

  • Page 120: Firmware Tftp-Ip

    700 Series Managed Switch User’s Guide for Software v2.1 Warning: The previous image in non-volatile memory will be lost when the procedure completes. • Last Saved option The system will boot from non-volatile memory. This option will automatically show up after the ‘Net &...

  • Page 121: Reset

    FSM726(config)# system radius shared-secret <shared secret> Where = the RADIUS shared secret <shared secret> Reset Use the reset command to reboot the switch. Syntax FSM726(config)# system reset Command Line Interface 700 Series Managed Switch User’s Guide for Software v2.1 SM-10004-02 6-31...

  • Page 122: Stat-Reset

    700 Series Managed Switch User’s Guide for Software v2.1 Stat-Reset Use the command to reset all of the statistics counters in the switch. Stat-Reset Syntax FSM726(config)# system stat-reset 6-32 Command Line Interface SM-10004-02...

  • Page 123: Virtual Local Area Network

    Appendix A Virtual Local Area Network A Local Area Network (LAN) can generally be defined as a broadcast domain. Hubs, bridges or switches in the same physical segment or segments connect all end node devices. End nodes can communicate with each other without the need for a router. Routers connect LANs together, routing the traffic to appropriate port.

  • Page 124: Vlan Behavior In A 700 Series Managed Switch

    VLAN membership properties. A ‘U’ for a given port and VLAN will mean that packets leaving the switch from that port and VLAN will be Untagged. Inversely, a ‘T’ for a given port and VLAN will mean that packets leaving the switch from that port and VLAN will be tagged with the respective VLAN ID in which it participated in.
  • Page 125 The following scenarios will produce results as described below: If an untagged packet enters Port 4, the switch will tag it with a VLAN tag value of 1. Since Port 4 does not have membership with VLAN ID 1 (default), the packet will be dropped.
  • Page 126 700 Series Managed Switch User’s Guide for Software v2.1 Virtual Local Area Network SM-10004-02...

  • Page 127: Appendix B Cabling Guidelines

    Appendix B Cabling Guidelines This appendix provides specifications for cables used with a NETGEAR 700 Series Managed Switch. Fast Ethernet Cable Guidelines Fast Ethernet uses UTP cable, as specified in the IEEE 802.3u standard for 100BASE-TX.The specification requires Category 5 UTP cable consisting of either two-pair or four-pair twisted insulated copper conductors bound in a single plastic sheath.

  • Page 128: Category 5 Cable

    700 Series Managed Switch User’s Guide for Software v2.1 Category 5 Cable Category 5 distributed cable that meets ANSI/EIA/TIA-568-A building wiring standards can be a maximum of 328 feet (ft.) or 100 meters (m) in length, divided as follows: 20 ft. (6 m) between the hub and the patch panel (if used) 295 ft.

  • Page 129: Twisted Pair Cables

    The crossover function is usually implemented internally as part of the circuitry in the device. Computers and workstation adapter cards are usually media-dependent interface ports, called MDI or uplink ports. Most repeaters and switch ports are configured as media-dependent interfaces with built-in crossover ports, called MDI-X or normal ports. Auto Uplink technology automatically senses which connection, MDI or MDI-X, is needed and makes the right connection.

  • Page 130: Patch Panels And Cables

    700 Series Managed Switch User’s Guide for Software v2.1 Figure B-2 illustrates crossover twisted pair cable. Figure B-2: Crossover Twisted-Pair Cable Patch Panels and Cables If you are using patch panels, make sure that they meet the 100BASE-TX requirements. Use Category 5 UTP cable for all patch cables and work area cables to ensure that your UTP patch cable rating meets or exceeds the distribution cable rating.

  • Page 131: Using 1000Base-T Gigabit Ethernet Over Category 5 Cable

    The nature of 1000BASE-T renders this measurement very important; if too much energy is reflected back on to the receiver, the device does not perform optimally. Cabling Guidelines 700 Series Managed Switch User’s Guide for Software v2.1 SM-10004-02...

  • Page 132: Near End Cross Talk (Next

    700 Series Managed Switch User’s Guide for Software v2.1 Unlike 10BASE-T and 100BASE-TX, which use only two of the four pairs of wires within the Category 5, 1000BASE-T uses all four pairs of the twisted pair. Make sure all wires are tested ...
  • Page 133 4, 5, 7, 8 Internal termination, not used for data transmission Table E-2 lists the pin assignments for the 100/1000 Mbps RJ-45 plug and the RJ-45 connector. Cabling Guidelines 700 Series Managed Switch User’s Guide for Software v2.1 UPLINK ASSIGNMENT ON PORT 8 Output Transmit Data + Output Transmit Data –...

  • Page 134: Conclusion

    700 Series Managed Switch User’s Guide for Software v2.1 Table-B-3. 100/1000 Mbps RJ-45 Plug and RJ-45 Connector Pin Assignments CHANNEL Conclusion For optimum performance of your 1000BASE-T product, it is important to fully qualify your cable installation and ensure it meets or exceeds ANSI/EIA/TIA-568-A:1995 or ISO/IEC 11801:1995 Category 5 specifications.

  • Page 135: 802.1X Port-Based Authentication Overview

    802.1x is well on its way to becoming an industry standard, and provides an effective wired and wireless LAN security solution. Windows XP implements 802.1x natively, and the 700 Series Managed Switch supports 802.1x. The 802.11i committee is specifying the use of 802.1x to eventually become part of the 802.11 standard.
  • Page 136 700 Series Managed Switch User’s Guide for Software v2.1 The client sends an EAP-start message. This begins a series of message exchanges to authenticate the client. The access point replies with an EAP-request identity message. The client sends an EAP-response packet containing the identity to the authentication server.
  • Page 137 The 700 Series Managed Switch acts as a “pass through” for 802.1x messages. As a result, you can update the EAP authentication type as newer types become available and your requirements for security change.
  • Page 138 700 Series Managed Switch User’s Guide for Software v2.1 802.1x Port-Based Authentication Overview SM-10004-02...

  • Page 139: Glossary

    Glossary Use the list below to find definitions for technical terms used in this manual. 10BASE-T The IEEE specification for 10 Mbps Ethernet over Category 3, 4, or 5 twisted-pair cable. 100BASE-FX The IEEE specification for 100 Mbps Fast Ethernet over fiber-optic cable. 100BASE-TX The IEEE specification for 100 Mbps Fast Ethernet over Category 5 twisted-pair cable.
  • Page 140 700 Series Managed Switch User’s Guide for Software v2.1 also Reverse ARP (RARP) which can be used by a host to discover its IP address. In this case, the host broadcasts its physical address and a RARP server replies with the host's IP address.
  • Page 141 700 Series Managed Switch User’s Guide for Software v2.1 Capacity planning Determining whether current solutions can satisfy future demands. Capacity planning includes evaluating potential workload and infrastructure changes. Certificate Authority A Certificate Authority is a trusted third-party organization or company that issues digital certificates used to create digital signatures and public-private key pairs.
  • Page 142 .com, .edu, .uk, etc. For example, in the address mail.NETGEAR.com, mail is a server name and NETGEAR.com is the domain. Short for digital subscriber line, but is commonly used in reference to the asymmetric version of this technology (ADSL) that allows data to be sent over existing copper telephone lines at data rates of from 1.5...
  • Page 143 Flow control A congestion- control mechanism. Congestion is caused by devices sending traffic to already overloaded port on a switch. Flow control prevents packet loss and temporarily inhibits devices from generating more traffic until the period of congestion ends. Full-duplex A system that allows packets to be transmitted and received at the same time and, in effect, doubles the potential throughput of a link.
  • Page 144 A communications network serving users within a limited area, such as one floor of a building. Load balancing The ability to distribute traffic across various ports of a device, such as a switch, to provide efficient, optimized traffic throughout the network.
  • Page 145 In cable wiring, the concept of transmit and receive are from the perspective of the PC, which is wired as a Media Dependant Interface (MDI). In MDI wiring, a PC transmits on pins 1 and 2. At the hub, switch, router, or access point, the perspective is reversed, and the hub receives on pins 1 and 2.
  • Page 146 Segment A section of a LAN that is connected to the rest of the network using a switch, bridge, or repeater. Spanning Tree A technique that detects loops in a network and logically blocks the redundant paths, ensuring that only one route exists between any two LANs.
  • Page 147 A protocol that finds the most efficient path between segments of a multi-looped, bridged network. STP allows redundant switches and bridges to be used for network resilience, without the broadcast storms associated with looping. If a switch or bridge falls, a new path to a redundant switch or bridge is opened. Subnet Mask Combined with the IP address, the IP Subnet Mask allows a device to know which other addresses are local to it, and which must be reached through a gateway or router.
  • Page 148 700 Series Managed Switch User’s Guide for Software v2.1 A long distance link used to extend or connect remotely located local area networks. The Internet is a large WAN. wide area network WAN. A long distance link used to extend or connect remotely located local area networks. The Internet is a large WAN.
  • Page 149 Numerics 802.1x Port-Based Authentication 3-14, 4-22 Address Aging 3-25 Admin field 3-9 Advanced Security 3-14, 4-20, 4-24 Advanced Tools 4-20 Advanced> Spanning Tree 4-33 Advanced Options 4-19 Advantages of VLANs A-1 Auto MDI/MDI-X D-2 Auto Uplink D-2 Bridge Priority 3-23 Broadcast Control 3-20, 4-21 Cat5 cable D-2 Class of Service 4-21...
  • Page 150 CLI Configure System Restore 5-28 CLI Configure System Save 5-28 CLI Configure System Stat-Reset 5-32 CLI Configure System Username 5-29 CLI Configure System Web 5-28 CLI Configure Trap 5-23 CLI Exit 5-3 CLI Help 5-2 CLI Manual Syntax 5-1 CLI Ping 5-2 CLI Show 5-3 CLI Show DiffServ 5-3 CLI Show Interfaces 5-4...
  • Page 151 Inbound Errors 4-6 Inbound Non-unicast Packet rate 4-5 Inbound Non-unicast Packets 4-6 Inbound Octet Rate 4-5 Inbound Octets 4-6 Inbound Unicast Packet Rate 4-5 Inbound Unicast Packets 4-6 IP Configuration 3-7, 4-13 Last Saved option 3-18, 4-28 MAC 4-21 MAC > Address Aging 4-36 MAC Address Manager 3-24 MAC Address Table 3-6 MAC>...
  • Page 152 Static Multicast Administration 3-26 Static Multicast Membership 3-27 Statistics 3-5, 4-8 Statistics Rest 3-6 STP 4-21 Support for Standard MIBs 3-28, 4-38 Switch Statistics 4-5 System Configuration 4-12 system tools 3-10 TIP 3-2 Tools Menu 4-16 Traffic Management 3-18, 4-21, 4-29...

This manual is also suitable for:

Gsm712Fsm726s - switch - stackableFsm726v1 - 10/100 mbps managed switchFsm750s - managed stackable switchGsm712f - managed fiber gigabit switchFsm726 - prosafe managed switch

Table of Contents