Page 1 GS700TP Smart Switch Software Administration Manual NETGEAR, Inc. 350 East Plumeria Drive San Jose, CA 95134 USA November 2009 202-10393-02...
Page 2: Statement Of Conditions
NETGEAR does not assume any liability that may occur due to the use or application of the product(s) or circuit layout(s) described herein. Information is subject to change without notice.
Page 3: Canadian Department Of Communications Radio Interference Regulations
Internet/World Wide Web NETGEAR maintains a World Wide Web home page that you can access at the uniform resource locator (URL) http:// www.NETGEAR.com. A direct connection to the Internet and a Web browser such as Internet Explorer or Netscape are required.
Page 4 FCC Declaration Of Conformity: declare under our sole responsibility that the model GS700TP Gigabit PoE Smart Switch complies with Part 15 of FCC Rules. Operation is subject to the following two conditions: a) This device may not cause harmful interference and b) This device must accept any interference received, including interference that may cause undesired operation.”...
Page 5: Table Of Contents
Web Access ...1-7 Additional Utilities ...1-8 Chapter 2 Introduction to the Web Browser Interface Logging Into the NETGEAR Home Screen ...2-1 Using the NETGEAR Web Management System Options ...2-3 Chapter 3 Managing System Settings Using the System Settings Utility ...3-1 Management ...3-1 Device View ...3-8...
Page 6 GS700TP Smart Switch Software Administration Manual Ports ...4-1 LAG ...4-4 VLAN ...4-15 Voice VLAN ...4-23 STP ...4-32 Multicast ...4-48 Address Table ...4-57 Chapter 5 Configuring QoS Configuring the Basic and Advanced QoS Settings ...5-1 CoS ...5-1 Chapter 6 Managing Security Setting Security Configuration Options ...6-1...
Page 7 GS700TP Smart Switch Software Administration Manual Support ...9-1 User Guide ...9-2 Appendix A Default Settings Index v1.0, November 2009...
Page 8 GS700TP Smart Switch Software Administration Manual v1.0, November 2009...
Page 9: About This Manual
The NETGEAR ® GS700TP Smart Switch Software Administration Manual describes how to install, configure, operate, and troubleshoot the GS700TP Gigabit PoE Smart Switch using its included software. This book describes the software configuration procedures and explains the options available within those procedures.
Page 10: Conventions, Formats, And Scope
• Appendix A, “Default Settings” feature values. Note: Refer to the product release notes for the GS700TP Smart Switch Software application level code. The release notes detail the platform specific functionality of the Switching, SNMP, Config, and Management packages. Conventions, Formats, and Scope The conventions, formats, and scope of this manual are described in the following paragraphs: •...
Page 11: How To Print This Manual
Scope. This manual is written for the GS700TP Smart Switch according to these specifications: Product Version Manual Publication Date Note: Product updates are available on the NETGEAR, Inc. website at http://www.netgear.com/support. How to Print this Manual To print this manual, select one of the following options: •...
Page 12: Revision History
GS700TP Smart Switch Software Administration Manual Revision History Version Part Number Date Number 202-10242-02 May 2007 202-10393-02 November 2009 Description Product created Product updated v1.0, November 2009...
Page 13: Getting Started With Switch Management
This section provides an overview of switch management, including the methods you can choose to start managing your NETGEAR GS700TP Gigabit PoE Smart Switch. It also leads you through the steps necessary to get started, using the SmartWizard Discovery utility. The section includes this information under the following menu options: •...
Page 14: Switch Management Interface
Switch Management Interface Your NETGEAR GS700TP Gigabit PoE Smart Switch contains an embedded web server and management software for managing and monitoring switch functions. This switch operates as a simple switch without using the management software. The management software enables you to configure more advanced features, and consequently improve switch efficiency as well as overall network performance.
Page 15: Network With A Dhcp Server
Web Browser Interface, see Network with a DHCP Server To install the switch in a network with a DHCP server, proceed as follows: 1. Connect the GS700TP Smart Switch to a DHCP network. 2. Power on the switch by connecting its AC-DC power adapter.
Page 16: Network Without A Dhcp Server
Manually Assigning Network Parameters If your network has no DHCP service, you must assign a static IP address to your switch. You can also assign the switch a static IP address even if your network has DHCP service. Proceed as follows: 1.
Page 17 5. Click Discover for the SmartWizard Discovery utility to find your GS700TP Gigabit PoE Smart Switch. You should see a screen similar to that shown in Figure 1-2. 6. Click Configuration Setting. A screen similar to that shown below appears.
Page 18 1. On your PC, access the MS Windows operating system TCP/IP Properties. 2. Set IP address and subnet mask appropriately. The subnet mask value is identical to that set in the switch. The PC IP address must be different from that of the switch but lie in the same subnet.
Page 19: Web Access
You must work from the same network segment that contains the switch (i.e., the subnet mask values of switch and PC host must be the same) and you must point your browser using the switch IP address. If you used the SmartWizard Discovery utility to set up IP address and subnet mask, either with or without DHCP server, use that IP address in your browser window.
Page 20: Additional Utilities
2. Click Set to enable the new password. Firmware Upgrade The GS700TP Smart Switch software is upgradeable, and enables your switch to take advantage of improvements and additional features as they become available. The upgrade procedure assumes that you have downloaded or otherwise obtained the firmware upgrade and that you have it available as a binary file on your computer.
Page 21 GS700TP Smart Switch Software Administration Manual If you click Firmware Upgrade from the main screen (see Figure 1-2), after you have selected the switch to upgrade, the following screen appears: Figure 1-5 1. Enter the following values into the appropriate places in the form: •...
Page 22: Introduction To The Web Browser Interface
This section introduces the web browser interface that enables you to configure and manage your NETGEAR GS700TP Gigabit PoE Smart Switch. Your GS700TP Smart Switch provides a built- in browser interface that enables you to configure and manage it remotely using a standard Web browser such as Microsoft Internet Explorer or Netscape Navigator.
Page 23: The Navigation Menu
The NETGEAR GS700TP web browser interface contains the following views: Main Navigation Area – Located on the top of the NETGEAR GS700TP web browser interface and marked as 1 in Figure 2-2. The Main Navigation Area includes Primary and Secondary Navigation Bars.
Page 24: Using The Netgear Web Management System Options
GS700TP Smart Switch Software Administration Manual Work Area – Located on the right side of the NETGEAR GS700TP web browser interface and marked as 3 in Figure 2-2. The Work Area contains device tables, general device information, and configurable device parameters.
Page 25: Informational Services
“Accessing Device Information” Help Navigation Tab The Help Navigation Tab provides access to informational services including NETGEAR online support and an online user guide in PDF format. For a detailed description of how to access and use these functions, see Chapter 9, “Online...
Page 26 GS700TP Smart Switch Software Administration Manual Figure 2-3 Introduction to the Web Browser Interface v1.0, November 2009...
Page 27: Using Screen And Table Options
GS700TP Smart Switch Software Administration Manual A help window for the screen opens. Figure 2-4 Using Screen and Table Options The NETGEAR GS700TP web browser interface contains screens and tables for configuring devices. This section describes the table options: • “Selecting an Entry”...
Page 28 GS700TP Smart Switch Software Administration Manual Selecting an Entry To select an entry: 1. Check the entry’s Select box. The selected entry is highlighted and the information appears in the first row, which contains the editable fields. Figure 2-5 To select all entries: 1.
Page 29 GS700TP Smart Switch Software Administration Manual To add an entry by creating a new entry in the table: 1. Enter the fields for the new entry in the provided fields in the first row. Figure 2-7 2. Click ADD to update the device. The new entry is displayed.
Page 30 To delete entries from a table: 1. Select the entries to be deleted. 2. Click DELETE to update the device. Special Table Options The NETGEAR web browser interface tables have a unique GUI design which includes the following options: • Gold Buttons •...
Page 31 GS700TP Smart Switch Software Administration Manual Quick Boxes Quick Boxes provide users with flexibility in configuring VLANs for all ports or LAGs. Clicking on the quick box toggles between the various options that exist for this field. A quick box appears to the right of the arrow on the left-hand side of the gold button.
Page 32 GS700TP Smart Switch Software Administration Manual Figure 2-13 4. Click again on the quick box, and the quick box and all the port boxes appear blank, marking the ports as neither tagged nor untagged. 5. You may click on individual port boxes to toggle their tagged/untagged status...
Page 33 GS700TP Smart Switch Software Administration Manual To display all ports : 1. Click PORTS in the interface selection row. The screen displays a table of all ports . To display all interfaces : 1. Click All in the interface selection row. A confirmation window opens.
Page 34 GS700TP Smart Switch Software Administration Manual Figure 2-17 Introduction to the Web Browser Interface 2-13 v1.0, November 2009...
Page 35: Managing System Settings
Using the System Settings Utility The navigation pane at the top of the web browser interface contains a System tab that enables you to manage your GS700TP Smart Switch displaying configurable features under the following main menu options: • “Management”...
Page 36 GS700TP Smart Switch Software Administration Manual 1. Click System > Management > System Information. The System Information screen displays: Figure 3-1 The System Information screen contains the following fields: • System Name – Enter the user-defined device name. The field may contain 0-160 characters.
Page 37 GS700TP Smart Switch Software Administration Manual • Idle Timeout – Enter the amount of time (minutes) that elapses before an idle station is timed out. Idle stations that are timed out must login to the system. The field range is 5 - 30 minutes.
Page 38 GS700TP Smart Switch Software Administration Manual The IP Interface screen also contains information for defining default gateways and selecting a Management VLAN ID. To define an IP interface: 1. Click System > Management > IP Configuration. The IP Configuration screen displays:...
Page 39 GS700TP Smart Switch Software Administration Manual 2. Select the method of assigning the IP address by selecting either Get Dynamic IP from DHCP Server or Static IP Address. 3. If you selected Static IP Address, enter the IP Address, Subnet Mask and Gateway address.
Page 40 GS700TP Smart Switch Software Administration Manual Figure 3-3 The Time Configuration screen contains the following fields: • Clock Source – Select the source used to set the system clock. The possible field values are: – Local – Indicates system time is set locally. This is the default value.
Page 41 GS700TP Smart Switch Software Administration Manual 4. Select the Time Zone Offset from the list. 5. Click APPLY to update the system settings. Note: If you selected SNTP, you must configure the SNTP servers. See Configuration” for detailed instructions on configuring the SNTP servers.
Page 42: Device View
GS700TP Smart Switch Software Administration Manual • Delete – Removes the currently configured SNTP Server 1. • SNTP Server 2 – Enter the secondary SNTP server IP address server retrieves the system time if the Primary SNTP server becomes unavailable.
Page 43: Poe
GS700TP Smart Switch Software Administration Manual Figure 3-5 Power-over-Ethernet (PoE) provides power to devices over existing LAN cabling without updating or modifying the network infrastructure. This removes the limitation of placing network devices close to power sources. Power over Ethernet can be used in the following applications: •...
Page 44 GS700TP Smart Switch Software Administration Manual The PoE menu contains the following options: • “Basic” • “Advanced” Basic The PoE Basic menu contains the following option: • “PoE Configuration” PoE Configuration The Basic PoE Configuration screen contains system PoE information for enabling PoE on the device, monitoring the current power usage, and enabling PoE traps.
Page 45 GS700TP Smart Switch Software Administration Manual The Basic PoE Configuration screen contains the following fields: • Power Status – Displays the online power source status. The possible field values are: – On – Indicates the power supply unit is functioning.
Page 46 GS700TP Smart Switch Software Administration Manual Figure 3-7 The Advanced PoE Configuration screen contains the following fields: • Power Status – Displays the online power source status. The possible field values are: – On – Indicates the power supply unit is functioning.
Page 47 GS700TP Smart Switch Software Administration Manual 2. Enter the System Usage Threshold in the provided field. 3. Select the Traps mode from the list in the provided field. 4. Click APPLY to update the device. PoE Port Configuration The PoE Port Configuration screen contains PoE class and power consumption information per interface, while allowing the network manager to define the interface PoE Operation Status and Priority Level.
Page 48 GS700TP Smart Switch Software Administration Manual – Enabled – Enables the Device Discovery protocol and provides power to the powered devices using the PoE module. The Device Discovery Protocol enables the device to discover Powered Devices attached to the device interfaces and to learn their classification.
Page 49: Snmp
GS700TP Smart Switch Software Administration Manual – Test Fail – Indicates the powered device test has failed. For example, a port could not be enabled and cannot be used to deliver power to the powered device. – Testing – Indicates the powered device is being tested. For example, a powered device is tested to confirm it is receiving power from the power supply.
Page 50 GS700TP Smart Switch Software Administration Manual • Privacy – Protects against the disclosure of message content. Cipher Block-Chaining (CBC) is used for encryption. Either authentication is enabled on an SNMP message, or both authentication and privacy. However, privacy cannot be enabled without authentication.
Page 51 GS700TP Smart Switch Software Administration Manual Figure 3-9 The SNMPv1/v2 Community Configuration screen contains the following fields: • Management Station IP – Enter the management station IP address for which the Basic SNMP community is defined. • Management Station IP Mask – Enter the management station IP mask for which the Basic SNMP community is defined.
Page 52 GS700TP Smart Switch Software Administration Manual – Read Only – Indicates Management access is restricted to read-only. Changes cannot be made to the device configuration and to the community. – Read Write – Indicates Management access is read-write. Changes can be made to the device configuration but not to the community.
Page 53 GS700TP Smart Switch Software Administration Manual • Providing Access Control Checks To configure SNMPv1/v2 trap station management: 1. Click System > SNMP > SNMPv1/v2 > Trap Configuration. The SNMPv1/v2 Trap Configuration screen displays: Figure 3-10 The SNMPv1/v2 Trap Configuration screen contains the following fields: •...
Page 54 GS700TP Smart Switch Software Administration Manual • UDP Port – Enter the UDP port used to send notifications. The default UDP port is 162. • Timeout – Enter the amount of time (in seconds) the device waits before re-sending informs. The default is 15 seconds.
Page 55 GS700TP Smart Switch Software Administration Manual • “Trap Filter Name” • “Trap Filter Content” Engine ID The SNMPv3 Engine ID screen allows network managers to define the SNMP Engine ID or to assign the default Engine ID to SNMP. To define the Local Engine ID: 1.
Page 56 GS700TP Smart Switch Software Administration Manual – First 4 octets – Indicates first bit = 1, the other 3 represent the IANA Enterprise number. – Fifth octet – Set to 3 to indicates the MAC address that follows. – Last 6 octets – Represents the MAC address of the device.
Page 57 GS700TP Smart Switch Software Administration Manual • View Name – Enter the user-defined view name. The view name can contain a maximum of 30 alphanumeric characters. 2. Select the entry. 3. Enter the View Name field in the first row.
Page 58 GS700TP Smart Switch Software Administration Manual Figure 3-13 The SNMPv3 View Content screen contains the following fields: Views • View Name – Select the user-defined view name. The view name can contain a maximum of 30 alphanumeric characters. • Object ID Subtree – Enter the device feature OID.
Page 59 GS700TP Smart Switch Software Administration Manual To add a new SNMP OID entry: 1. Click System > SNMP > SNMPv3 > View Content. The SNMPv3 View Content screen displays. 2. Select the View Name from the list in the provided field in the Views table.
Page 60 GS700TP Smart Switch Software Administration Manual Figure 3-14 The SNMPv3 Community Configuration screen contains the following fields: • Management Station IP – Enter the management station IP address for which the SNMP community is defined. • Community String – Enter the password used to authenticate the management station to the device.
Page 61 GS700TP Smart Switch Software Administration Manual 3. Select the Group Name from the list in the provided field in the first row. 4. Click ADD to update the device. To remove an SNMPv3 community: 1. Click System > SNMP > SNMPv3 > Community Configuration. The SNMPv3 Community Configuration screen displays.
Page 62 GS700TP Smart Switch Software Administration Manual The SNMPv3 Groups screen contains the following fields: • Group Name – Enter the user-defined group to which access control rules are applied. The field range is up to 30 characters. • Security Model – Select the SNMP version associated with the group. The possible field values are: –...
Page 63 GS700TP Smart Switch Software Administration Manual 2. Select the Security Model and Security Level from the lists in the provided fields in the first row. 3. Specify the group access rights for the selected SNMP views in the Operation provided fields in the first row.
Page 64 GS700TP Smart Switch Software Administration Manual Figure 3-16 The SNMPv3 User Configuration screen contains the following fields: • User Name – Enter the user name. The field range is up to 30 alphanumeric characters. • Group Name – Enter the group name from a list of user-defined SNMP groups. SNMP groups are defined in the Groups screen.
Page 65 GS700TP Smart Switch Software Administration Manual • Password (1-32 Characters) – Enter the password for the group member. • Authentication Key – Enter the HMAC-MD5-96 or HMAC-SHA-96 authentication level. The authentication and privacy keys are entered to define the authentication key. If only authentication is required, 16 bytes are defined.
Page 66 GS700TP Smart Switch Software Administration Manual Global Trap Configuration The SNMPv3 Global Trap Settings screen contains parameters for defining SNMP notification parameters. To configure SNMP notification global parameters: 1. Click System > SNMP > SNMPv3 > Global Trap Configuration. The SNMPv3 Global...
Page 67 GS700TP Smart Switch Software Administration Manual • Authentication Notifications – Select the SNMP authentication failure notification status on the device. The possible field values are: – Disable – Disables the device from sending authentication failure notifications. – Enable – Enables the device to send authentication failure notifications. This is the default value.
Page 68 GS700TP Smart Switch Software Administration Manual Figure 3-18 The SNMPv3 Trap Configuration screen contains the following fields: • Recipients IP – Enter the IP address to which the traps are sent. • Notification Type – Select the type of notification sent. The possible field values are: –...
Page 69 GS700TP Smart Switch Software Administration Manual • Filter Name – Select the SNMP filter name from the list of SNMP Notification filters. • Timeout – Enter the amount of time (in seconds) the device waits before re-sending informs. The default is 15 seconds.
Page 70 GS700TP Smart Switch Software Administration Manual Trap Filter Name The SNMPv3 Trap Filter Name screen permits creating filtering names based on OIDs. Each OID is linked to a device feature or a portion of a feature. The SNMPv3 Trap Filter Name screen also allows network managers to filter notifications.
Page 71 GS700TP Smart Switch Software Administration Manual 2. Enter the trap Filter Name in the provided field in the first row. 3. Click ADD to update the device. To remove a trap filter name: 1. Click System > SNMP > SNMPv3 > Trap Filter Name. The SNMPv3 Trap Filter Name screen displays.
Page 72 GS700TP Smart Switch Software Administration Manual The SNMPv3 Trap Filter Content screen contains the following fields: Trap Filter Settings • Filter Name – Select the user-defined notification filter from the list. Trap Filter Settings • Object ID Subtree – Enter the OID for which notifications are sent or blocked. If a filter is attached to an OID, traps or informs are generated and sent to the trap recipients.
Page 73: Lldp
GS700TP Smart Switch Software Administration Manual LLDP The Link Layer Discovery Protocol (LLDP) allows network managers to troubleshoot and enhance network management by discovering and maintaining network topologies over multi- vendor environments. LLDP discovers network neighbors by standardizing methods for network devices to advertise themselves to other system, and to store discovered information.
Page 74 GS700TP Smart Switch Software Administration Manual Figure 3-21 The Basic LLDP Configuration screen contains the following fields: LLDP Properties • LLDP – Select the LLDP global status on the device. The possible field values are: – Disable – Disables LLDP on the device. This is the default value.
Page 75 GS700TP Smart Switch Software Administration Manual • Hold Multiplier – Enter the amount of time that LLDP packets are held before the packets are discarded, measured in multiples of the TLV Advertised Interval. The possible field range is 2 - 10. The field default is 4. For example, if the TLV Advertised Interval is 30 seconds and the Hold Multiplier is 4, then the LLDP packets are discarded after 120 seconds.
Page 76 GS700TP Smart Switch Software Administration Manual LLDP Configuration The Advanced LLDP Configuration screen allows network managers to assign global LLDP and LLDP-MED (LLDP - Media Endpoint Discovery) parameters. To configure LLDP settings: 1. Click System > LLDP > Advanced > LLDP Configuration. The Advanced LLDP...
Page 77 GS700TP Smart Switch Software Administration Manual – Filtering – LLDPDU packets are filtered. This is the default. • TLV Advertised Interval – Enter the rate in seconds at which LLDP advertisement updates are sent. The possible field range is 5 - 32768 seconds. The default value is 30 seconds.
Page 78 GS700TP Smart Switch Software Administration Manual To define LLDP Port Properties: 1. Click System > LLDP > Advanced > LLDP Port Settings. The LLDP Port Settings screen displays: Figure 3-23 The LLDP Port Settings screen contains the following fields: •...
Page 79 Provides detailed network topology information, including what devices are located on the network, and where the devices are located. For example, what IP phone is connected to what port, what software is running on what switch, and what port is connected to what PC. •...
Page 80 GS700TP Smart Switch Software Administration Manual • Provides troubleshooting information. LLDP-MED sends network managers alerts for: – Port speed and duplex mode conflicts – QoS policy misconfigurations To configure LLDP-MED Network Policy: 1. Click System > LLDP > Advanced > LLDP-MED Network Policy. The LLDP-MED...
Page 81 GS700TP Smart Switch Software Administration Manual – Guest Voice Signaling – Indicates the network policy is defined for a Guest Voice Signaling application. – Softphone Voice – Indicates the network policy is defined for a Softphone Voice application. – Video Conferencing – Indicates the network policy is defined for a Video Conferencing application.
Page 82 GS700TP Smart Switch Software Administration Manual 5. Select the User Priority from the list in the provided field in the first row. 6. Select the DSCP Value from the list in the provided field in the first row. 7. Click ADD to update the device.
Page 83 GS700TP Smart Switch Software Administration Manual The LLDP-MED Port Settings screen contains the following fields: • Port – Select the port to configure. • LLDP-MED status – Select the LLDP-MED status for the selected port. The possible field values are: –...
Page 84 GS700TP Smart Switch Software Administration Manual Figure 3-26 The LLDP-MED Local Information screen contains the following fields: Device Information • Chassis ID Subtype – Displays the chassis ID type. For example, MAC address. • Chassis ID – Displays the chassis identification of the device transmitting the LLDP frame.
Page 85 GS700TP Smart Switch Software Administration Manual • Port Description – Displays information about the port, including manufacturer, product name and hardware/software version. • Advertisement – Displays the advertisement status of the port. The possible field values are: – Enable – Enables advertisement on the port.
Page 86 GS700TP Smart Switch Software Administration Manual • Operational MAU Type – Displays the Medium Attachment Unit (MAU) type. The MAU performs physical layer functions, including digital data conversion from the Ethernet interfaces’ collision detection and bit injection into the network. For example, 100BASE-TX full duplex mode.
Page 87 GS700TP Smart Switch Software Administration Manual To view LLDP neighbors information: 1. Click System > LLDP > Advanced > Neighbors Information. The LLDP Neighbors Information screen displays: Figure 3-27 The LLDP Neighbors Information screen contains the following fields: • MSAP Entry – Displays the device’s Media Service Access Point (MSAP) entry number.
Page 88 GS700TP Smart Switch Software Administration Manual 2. Click REFRESH to refresh the Neighbors Information screen. To view LLDP Neighbors detailed information: 1. Click System > LLDP > Advanced > Neighbors Information. The LLDP Neighbors Information screen displays. 2. Click the MSAP Entry to view its detailed information. The Neighbors Information window...
Page 89 GS700TP Smart Switch Software Administration Manual • Port ID SubType – Displays the port ID subtype. For example, IPv4 address. • Port ID – Displays the port identification of the port transmitting the LLDP frame. • Port Description – Displays information about the port, including manufacturer, product name and hardware/software version.
Page 90 GS700TP Smart Switch Software Administration Manual • MDI Power Support Port Class – Displays the advertised power support port class. • PSE MDI Power Support – Indicates if MDI power is supported on the port. • PSE MDI Power State – Indicates if MDI power is enabled on the port.
Page 91 Class 1 features. – Endpoint Class 3 – Indicates a communications device class, offering all Class 1 and Class 2 features plus location, 911, Layer 2 switch support and device information management capabilities. • PoE Device Type – Displays the port PoE type. For example, Powered.
Page 92: Lldp Statistics
GS700TP Smart Switch Software Administration Manual • VLAN Type – Displays the VLAN type for which the network policy is defined. The possible field values are: – Tagged – Indicates the network policy is defined for tagged VLANs. – Untagged – Indicates the network policy is defined for untagged VLANs.
Page 93 GS700TP Smart Switch Software Administration Manual Figure 3-29 The LLDP Statistics screen contains the following fields: • Last Update – Indicates the last time the LLDP statistics were updated. The date and time are displayed inthe following format, day-month-year hour:minute:second.
Page 94 GS700TP Smart Switch Software Administration Manual • Rx Frames – Indicates the total amount of LLDP packets received on the port, including: – Total – Indicates the total amount of valid LLDP packets received on the port. – Discarded – Indicates the total amount of LLDP packets that were discarded on the port.
Page 95: Configuring Switching Settings
Configuring Switching Settings The navigation pane at the top of the web browser interface contains a Switching tab that enables you to manage your GS700TP Smart Switch with features under the following main headings: • “Ports” • “LAG” • “VLAN”...
Page 96 GS700TP Smart Switch Software Administration Manual Figure 4-1 The Port Configuration screen contains the following fields: • Port – Displays the port number. • Port Description – Enter a user-defined port description. • Status – Select the port’s operational status. The possible field values are: –...
Page 97 MDI/MDIX – Select the MDI/MDIX status of the port. Hubs and switches are deliberately wired opposite the way end stations are wired, so that when a hub or switch is connected to an end station, a straight through Ethernet cable can be used and the pairs will match up properly.
Page 98: Lag
GS700TP Smart Switch Software Administration Manual – MDI (Media Dependent Interface) – Connects end stations. – MDIX (Media Dependent Interface with Crossover) – Connects HUBs and switches. – Auto – Provides automatic cable type detection. • LAG ID – Select the LAG ID to which the selected port is assigned.
Page 99 GS700TP Smart Switch Software Administration Manual Basic The LAG Basic menu contains the following options: • “LAG Configuration” • “LAG Membership” LAG Configuration The Basic LAG Configuration screen contains fields for configuring LAG parameters. The system supports 8 LAGs, and each LAG can contain up to 8 ports.
Page 100 GS700TP Smart Switch Software Administration Manual – Up – Indicates the LAG is currently linked and forwarding traffic. – Down – Indicates the LAG is currently not linked. • Reactivate Suspended – Select the action to apply to a suspended LAG. The possible field values are: –...
Page 101 GS700TP Smart Switch Software Administration Manual 4. Click APPLY to update the device. LAG Membership The Basic LAG Membership screen allows network managers to assign ports to LAGs. To assign ports to LAGs: 1. Click Switching > LAG > Basic > LAG Membership. The Basic LAG Membership screen...
Page 102 GS700TP Smart Switch Software Administration Manual 3. Click on the gold button. The port panel displays. 4. Select the ports to be members of the LAG. 5. Click APPLY to update the device. 6. Click CURRENT MEMBERS. The Current Members window opens and displays the...
Page 103 GS700TP Smart Switch Software Administration Manual Figure 4-5 The Advanced LAG Configuration screen contains the following fields: • Interface – Displays the LAG number. • Description – Enter a user-defined LAG description. • Status – Select the current link operation. The possible field values are: –...
Page 104 GS700TP Smart Switch Software Administration Manual • Speed – Select the data transmission rate for the LAG. The LAG type determines what speed setting options are available. LAG speeds can only be configured when auto negotiation is disabled. The possible field values are: –...
Page 105 GS700TP Smart Switch Software Administration Manual Figure 4-6 The Advanced LAG Membership screen contains the following fields: • LAG ID – Select the LAG ID. • LAG Name – Displays the user-defined LAG name. • LAG Type – Select the LAG type. The possible field values are: –...
Page 106 GS700TP Smart Switch Software Administration Manual Figure 4-7 LACP Configuration Aggregated links can be set up manually or automatically established by enabling LACP on the relevant links. Aggregated ports can be linked into link-aggregation port-groups. Each group is comprised of ports with the same speed. The LACP Configuration screen contains a field for configuring a global LACP priority value.
Page 107 GS700TP Smart Switch Software Administration Manual Figure 4-8 The LACP Configuration screen contains the following field: • LACP System Priority – Enter the system priority value. The field range is 1-65535. The field default is 1. 2. Enter the LACP System Priority in the provided field.
Page 108 GS700TP Smart Switch Software Administration Manual Figure 4-9 The LACP Port Configuration screen contains the following fields: • Interface – Displays the interface number to which timeout and priority values are assigned. • LACP Priority – Enter the LACP port priority value. The field range is 1-65535.
Page 109: Vlan
GS700TP Smart Switch Software Administration Manual VLAN VLANs are logical subgroups with a Local Area Network (LAN) which combine user stations and network devices into a single unit, regardless of the physical LAN segment to which they are attached. VLANs allow network traffic to flow more efficiently within subgroups. VLANs use software to reduce the amount of time it takes for network changes, additions, and moves to be implemented.
Page 110 GS700TP Smart Switch Software Administration Manual Figure 4-10 The Basic VLAN Configuration screen contains the following fields: • VLAN ID – Enter the VLAN ID. The field range is 2-4093. • VLAN Name – Enter the user-defined VLAN name. •...
Page 111 GS700TP Smart Switch Software Administration Manual To remove a VLAN: Note: Prior to deleting a VLAN, ensure all multicast group configuration entries associated with the VLAN are deleted. Refer to group entries. 1. Click Switching > VLAN > Basic > VLAN Configuration. The Basic VLAN Configuration screen displays.
Page 112 GS700TP Smart Switch Software Administration Manual Figure 4-11 The Advanced VLAN Configuration screen contains the following fields: • VLAN ID – Enter the VLAN ID. The field range is 2-4093. • VLAN Name – Enter the user-defined VLAN name. •...
Page 113 GS700TP Smart Switch Software Administration Manual To remove a VLAN: Note: Prior to deleting a VLAN, ensure all multicast group configuration entries associated with the VLAN are deleted. Refer to group entries. 1. Click Switching > VLAN > Advanced > VLAN Configuration. The Advanced VLAN Configuration screen displays.
Page 114 GS700TP Smart Switch Software Administration Manual The VLAN Membership screen contains the following fields: • VLAN ID – Select the VLAN ID to be displayed and configured. VLAN ID 1 cannot be modified. • VLAN Name – Displays the name of the VLAN.
Page 115 GS700TP Smart Switch Software Administration Manual To view VLAN tagged port members: 1. Click Switching > VLAN > Advanced > VLAN Membership. The VLAN Membership screen displays. 2. Click TAGGED PORT MEMBERS. The VLAN Tagged Ports window opens: Figure 4-13...
Page 116 GS700TP Smart Switch Software Administration Manual To view VLAN untagged port members: 1. Click Switching > VLAN > Advanced > VLAN Membership. The VLAN Membership screen displays. 2. Click UNTAGGED PORT MEMBERS. The VLAN Untagged Ports screen opens: Figure 4-14...
Page 117: Voice Vlan
GS700TP Smart Switch Software Administration Manual Figure 4-15 The Port PVID Configuration screen contains the following fields: • Interface – Displays the interface (port number or LAG number) to which the PVID tag is assigned. • PVID – Enter the PVID value. The possible field range is 1-4093.
Page 118 GS700TP Smart Switch Software Administration Manual Network managers can configure VLANs on which voice IP traffic is forwarded. Non-VoIP traffic is dropped from the Voice VLAN in auto Voice VLAN secure mode. Voice VLAN also provides QoS to VoIP, ensuring that the quality of voice does not deteriorate if the IP traffic is received unevenly.
Page 119 GS700TP Smart Switch Software Administration Manual Figure 4-16 The Voice VLAN Basic Properties screen contains the following fields: • VoiceVLAN Status – Select the VoiceVLAN status on the device. The possible field values are: – Disable – Disables Voice VLAN on the device. This is the default value.
Page 120 GS700TP Smart Switch Software Administration Manual • Voice VLAN Aging Time – Enter the Voice VLAN aging time. The Voice VLAN aging time sets the maximum inactivity time for a Voice VLAN port member after its MAC address is aged out. If the time since the last MAC address with telephony MAC address was aged out exceeds the Voice VLAN aging time, the port is dropped from the Voice VLAN.
Page 121 GS700TP Smart Switch Software Administration Manual Figure 4-17 The Voice VLAN Advanced Properties screen contains the following fields: • VoiceVLAN Status – Select the Voice VLAN status on the device. The possible field values are: – Disable – Disables Voice VLAN on the device. This is the default value.
Page 122: Port Setting
GS700TP Smart Switch Software Administration Manual • Voice VLAN Aging Time – Enter the Voice VLAN aging time. The Voice VLAN aging time sets the maximum inactivity time for a Voice VLAN port member after its MAC Address is aged out. If the time since the last MAC Address with telephony MAC Address was aged out exceeds the Voice VLAN aging time, the port is dropped from the Voice VLAN.
Page 123 GS700TP Smart Switch Software Administration Manual Figure 4-18 The Voice VLAN Port Setting screen contains the following fields: • Interface – Displays the interface for which the Voice VLAN settings are applied. • Voice VLAN Mode – Select the Voice VLAN mode. The possible field values are: –...
Page 124 GS700TP Smart Switch Software Administration Manual – Active – Indicates the Voice VLAN membership is active for the interface. – Not Active – Indicates the Voice VLAN membership is not active for the interface. 2. Select the interface. 3. Select the Voice VLAN Mode, Voice VLAN Security and Membership in the provided fields in the first row.
Page 125 GS700TP Smart Switch Software Administration Manual The Voice VLAN OUI screen contains the following fields: • Telephony OUI(s) – Enter the OUI to enable on the Voice VLAN. The following OUIs are enabled by default. – 00-E0-BB – Assigned to 3COM IP Phones.
Page 126: Stp
GS700TP Smart Switch Software Administration Manual Spanning Tree Protocol (STP) provides network topology for any arrangement of bridges. STP also provides a single path between end stations on a network, eliminating loops. Loops occur when alternate routes exist between hosts. Loops in an extended network can cause bridges to forward traffic indefinitely, resulting in increased traffic and reducing network efficiency.
Page 127 GS700TP Smart Switch Software Administration Manual Figure 4-20 The Basic STP Configuration screen contains the following fields: Global Settings • Spanning Tree State – Select the STP state on the device. The possible field values are: – Disable – Disables STP on the device.
Page 128 GS700TP Smart Switch Software Administration Manual • BPDU Handling – Determines how the Bridge Protocol Data Unit (BPDU) packets are managed when STP is disabled on the port or device. BPDUs are used to transmit spanning tree information. The possible field values are: •...
Page 129 GS700TP Smart Switch Software Administration Manual 4. If you selected Disable in the Spanning Tree State field, select the BPDU Handling mode from the list in the provided field. 5. Click APPLY to update the device. Advanced The STP Advanced menu contains the following options: •...
Page 130 GS700TP Smart Switch Software Administration Manual Figure 4-21 The Advanced STP Configuration screen contains the following fields: STP Configuration • Spanning Tree State – Select the STP state on the device. The possible field values are: – Disable – Disables STP on the device.
Page 131 GS700TP Smart Switch Software Administration Manual • BPDU Handling – Select the method of handling STP BPDUs (Bridge Protocol Data Units) when STP is disabled on the device or interface. The possible field values are: – Filtering – Indicates BPDUs are filtered.
Page 132 GS700TP Smart Switch Software Administration Manual CST Configuration The Common Spanning Tree (CST) describes the topology connecting STP/RSTP Bridges and MSTP regions. To configure CST on the device: 1. Click Switching > STP > Advanced > CST Configuration. The CST Configuration screen...
Page 133 GS700TP Smart Switch Software Administration Manual • Max Age – Enter the device Maximum Age Time. The Maximum Age Time is the amount of time in seconds a bridge waits before sending configuration messages. The default Maximum Age Time is 20 seconds.
Page 134 GS700TP Smart Switch Software Administration Manual Figure 4-23 The CST Port Configuration screen contains the following fields: • Interface – Displays the port or LAG for which the STP information is displayed. • STP Status – Select the STP status on the interface. The possible field values are: –...
Page 135 GS700TP Smart Switch Software Administration Manual – Disabled – Indicates STP is currently disabled on the port. The port forwards traffic while learning MAC addresses. – Blocking – Indicates the port is currently blocked and cannot forward traffic or learn MAC addresses.
Page 136 Role – Displays the port role assigned by the STP algorithm to provide to STP paths. The possible field values are: – Root – Provides the lowest cost path to forward packets to the root switch. – Designated – Indicates the port or LAG through which the designated switch is attached to the LAN.
Page 137 The link remains configured for communications until explicit LCP or NCP packets close the link, or until some external event occurs. This is the actual switch port link type. It may differ from the administrative state. –...
Page 138 GS700TP Smart Switch Software Administration Manual 4. To configure and test the data link, check Activate Protocol Migration in the provided field in the first row. 5. Click APPLY to update the device. MST Configuration Multiple Spanning Tree (MST) allows the user to group and associate VLANs to spanning tree instances.
Page 139 GS700TP Smart Switch Software Administration Manual • Priority – Specifies the selected spanning tree instance device priority. The field range is 0-61440. The field default is 32768. • VLAN ID – Maps the selected VLANs to the selected instance. Each VLAN belongs to one instance.
Page 140 GS700TP Smart Switch Software Administration Manual Figure 4-26 The MST Port Configuration screen contains the following fields: • Select MST – Select an MST to be displayed. • Interface – Displays the Port or LAG for which the MSTP settings are displayed.
Page 141 GS700TP Smart Switch Software Administration Manual – Blocking — Indicates that the port is currently blocked and cannot forward traffic or learn MAC addresses. – Listening — Indicates that the port is in Listening mode. The port cannot forward traffic nor can it learn MAC addresses.
Page 142: Multicast
Multicast forwarding allows a single packet to be forwarded to multiple destinations. L2 Multicast service is based on L2 switch receiving a single packet addressed to a specific Multicast address. Multicast forwarding creates copies of the packet, and transmits the packets to the relevant ports.
Page 143 GS700TP Smart Switch Software Administration Manual are forwarding packets and Multicast traffic. A port requesting to join a specific Multicast group issues an IGMP report specifying that Multicast group. This results in the creation of the Multicast filtering database. To configure Basic IGMP Snooping: 1.
Page 144 GS700TP Smart Switch Software Administration Manual – Enable – Enables IGMP Snooping on the VLAN. – Disable – Disables IGMP Snooping on the VLAN. 2. Select the IGMP Snooping Status in the provided field. 3. Click APPLY to update the device.
Page 145 GS700TP Smart Switch Software Administration Manual Figure 4-28 The Advanced IGMP Snooping Configuration screen contains the following fields: IGMP Snooping Configuration • Status – Select the IGMP Snooping status on the device. IGMP Snooping is operational if both the Status and Bridge Multicast Filtering fields are enabled. The possible field values are: –...
Page 146 IGMP group and not receiving a Join message from another station, before timing out. If a Leave Timeout occurs, the switch notifies the Multicast device to stop sending traffic The field range is 0 - 2147483647. The default value is 10 seconds.
Page 147 GS700TP Smart Switch Software Administration Manual To configure Multicast groups: 1. Click Switching > Multicast > Advanced > Multicast Group Configuration. The Multicast Group Configuration screen displays: Figure 4-29 The Multicast Group Configuration screen contains the following information: • VLAN ID – Displays the VLAN ID.
Page 148 GS700TP Smart Switch Software Administration Manual Multicast Group Membership The Multicast Group Membership screen displays the ports and LAGs attached to the selected VLAN and the Multicast service group. The Port and LAG tables also reflect the manner in which the port or LAGs joined the Multicast group.
Page 149 Multicast Forward All The Multicast Forward All screen contains fields for attaching ports or LAGs to a device that is attached to a neighboring Multicast router/switch. Once IGMP Snooping is enabled, Multicast packets are forwarded only to the appropriate port or VLAN.
Page 150 GS700TP Smart Switch Software Administration Manual Figure 4-31 The Multicast Forward All screen contains the following information: Multicast Forward All • VLAN ID – Enter the VLAN ID. • VLAN Name – Displays the user defined VLAN name. Multicast Forward All •...
Page 151: Address Table
GS700TP Smart Switch Software Administration Manual 5. Click APPLY to update the device. Address Table Packets addressed to destinations stored in either the Static or Dynamic databases are immediately forwarded to the port. The Dynamic MAC Address Table can be sorted by interface, VLAN, or MAC Address.
Page 152 GS700TP Smart Switch Software Administration Manual To query the Basic Address Table: 1. Click Switching > Address Table > Basic > Address Table. The Basic Address Table screen displays: Figure 4-32 The Basic Address Table screen contains the following fields: •...
Page 153 GS700TP Smart Switch Software Administration Manual 3. Enter the value to be searched for in the provided box. 4. Click GO to execute the query. To delete all addresses from the Basic Address Table: 1. Click Switching > Address Table > Basic > Address Table. The Basic Address Table screen displays.
Page 154 GS700TP Smart Switch Software Administration Manual Figure 4-33 The Static Addresses screen contains the following fields: • VLAN ID – Select the VLAN ID number to which the entry refers. • MAC Address – Enter the MAC address to which the entry refers.
Page 155 GS700TP Smart Switch Software Administration Manual 4. Select the MAC Address duration period Status from the list in the provided field in the first row. 5. Click APPLY to update the device. Dynamic Addresses The Dynamic Addresses screen contains information about the aging time before a dynamic MAC address is erased.
Page 156 GS700TP Smart Switch Software Administration Manual Address Table The Advanced Address Table screen displays the MAC Address table according to the defined categories. To query the Advanced MAC Address Table: 1. Click Switching > Address Table > Advanced > Address Table. The Advanced Address...
Page 157 GS700TP Smart Switch Software Administration Manual • Interface – Displays the interface to which the entry refers. 2. Select the Search By key from the list in the provided field. 3. Enter the value to be searched for in the provided box.
Page 158: Configuring Qos
Configuring the Basic and Advanced QoS Settings The navigation pane at the top of the web browser interface contains a QoS tab that enables you to manage your GS700TP Smart Switch with features under the following main heading: • “CoS”...
Page 159 GS700TP Smart Switch Software Administration Manual • Weighted Round Robin – Ensures that a single application does not dominate the device forwarding capacity. Weighted Round Robin (WRR) forwards entire queues in a round robin order. All queues can participate in WRR, except SP queues. If the traffic flow is minimal, and SP queues do not occupy the whole bandwidth allocated to a port, the WRR queues can share the bandwidth with the SP queues.
Page 160 GS700TP Smart Switch Software Administration Manual Figure 5-1 The CoS Global Configuration screen contains the following: • QoS Status – Select whether QoS is enabled or disabled on the device. The possible values are: – Enable – Enables QoS globally. This is the default value.
Page 161 GS700TP Smart Switch Software Administration Manual • Trust Mode – Select which packet fields to use for classifying packets entering the device. The possible Trust Mode field values are: – CoS – Classifies traffic based on the CoS (VPT) tag value.
Page 162 GS700TP Smart Switch Software Administration Manual The CoS Interface Configuration screen contains the following fields: • Interface – Displays the interface for which the default CoS parameters are defined. • Default CoS – Select the default CoS value for incoming packets to the selected interface for which a VLAN priority (VPT) is not defined.
Page 163 GS700TP Smart Switch Software Administration Manual Figure 5-3 The Queue screen contains the following fields: • Strict Priority – Select to specify traffic scheduling based strictly on the queue priority. • WRR – Select to assign WRR weights to queues. The queue weights are preconfigured and are set to 1, 2, 4 and 8.
Page 164 GS700TP Smart Switch Software Administration Manual The Bandwidth screen allows the network manager to define Ingress Rate Limit and Egress Shaping Rates. To define bandwidth settings: 1. Click QoS > CoS > Basic > Bandwidth. The Bandwidth screen displays: Figure 5-4 The Bandwidth screen contains the following fields: •...
Page 165 GS700TP Smart Switch Software Administration Manual – Enable – Enables egress shaping rate on the interface. – Disable – Disables egress shaping rate on the interface. This is the default value. • Egress Shaping Rates CIR – Enter the Egress Shaping Committed Information Rate (CIR) in kilobits per second.
Page 166 GS700TP Smart Switch Software Administration Manual Figure 5-5 The CoS to Queue Mapping screen contains the following fields: CoS to Queue Mapping • CoS – Displays the CoS priority tag values, where 0 is the lowest and 7 is the highest.
Page 167 GS700TP Smart Switch Software Administration Manual DSCP to Queue Mapping The DSCP To Queue Mapping screen contains fields for mapping DSCP values to traffic queues for various PHBs (Per-Hop Behaviors). These include the CS (Class Selector), AF (Assured Forwarding) and EF (Expedited Forwarding). For example, a packet with a DSCP tag value of 1 can be assigned to the High queue.
Page 168 GS700TP Smart Switch Software Administration Manual • Restore Defaults – Restore the DSCP Mapping device factory default values. The possible field values are: – Checked – Restores the factory default settings for DSCP mapping values. – Unchecked – Maintains the current DSCP mapping settings.
Page 169 GS700TP Smart Switch Software Administration Manual The Class Map screen contains the following fields: • Class-Map Name – Displays the user-defined name of the class map. • IPv4 ACL – Select a user-defined IPv4 ACL from the list. • Or – Indicates the criteria used to match class maps with an IP ACL address. Matches either IPv4 or IPv6 to the packet.
Page 170 GS700TP Smart Switch Software Administration Manual Before configuring policies for classes whose match criteria are defined in a class map, a class map must first be defined, or the name of the policy map to be created, added to, or modified must first be specified.
Page 171 GS700TP Smart Switch Software Administration Manual To add a new policy entry: 5. Click QoS > CoS> Advanced > Policy Table. The policy Table screen displays. 6. Select a Class Map from the list in the first row. 7. Select an Action and define a new value in the first row.
Page 172 GS700TP Smart Switch Software Administration Manual Policy Binding Table • Policy Name – Displays the user-defined policy name. Port Selection Table • Port Number – Displays the bound and unbound ports on the device. Configuring QoS v1.0, November 2009 5-15...
Page 173: Managing Security
Setting Security Configuration Options The navigation pane at the top of the web browser interface contains a Security tab that enables you to manage your GS700TP Smart Switch with features under the following main menu options: • “Management Security” •...
Page 174 GS700TP Smart Switch Software Administration Manual Change Password The Change Password screen contains parameters for configuring device passwords. Authentication on this device uses only a password, not a username. To change the device password: Click Security > Management Security > User Configuration > Change Password. The...
Page 175 GS700TP Smart Switch Software Administration Manual RADIUS Remote Authorization Dial-In User Service (RADIUS) servers provide additional security for networks. RADIUS servers provide a centralized authentication method for web access. The user- assigned RADIUS parameters are applied to newly defined RADIUS servers. If values are not defined, the system defaults are applied to the new RADIUS servers.
Page 176 GS700TP Smart Switch Software Administration Manual • Authentication Port – Enter the authentication port number. The authentication port is used to verify the RADIUS Server authentication. The field default is 1812. • Number of Retries – Enter the number of transmitted requests sent to the RADIUS AuthenticationServer before a failure occurs.
Page 177 GS700TP Smart Switch Software Administration Manual 5. Click APPLY to update the device. To add a new RADIUS Authentication Server entry: 1. Click Security > Management Security > RADIUS > Authentication Server Configuration. The RADIUS Authentication Server Configuration screen displays.
Page 178 GS700TP Smart Switch Software Administration Manual Figure 6-3 The RADIUS Accounting Server Configuration screen contains the following fields: • Accounting Mode – Select the RADIUS accounting method. The possible field values are: – None – Indicates RADIUS accounting is disabled. This is the default.
Page 179 GS700TP Smart Switch Software Administration Manual 5. Click APPLY to update the device. TACACS+ Terminal Access Controller Access Control System (TACACS+) provides centralized security user access validation. The system supports up-to 2 TACACS+ servers. TACACS+ provides a centralized user management system, while still retaining consistency with RADIUS and other authentication processes.
Page 180 GS700TP Smart Switch Software Administration Manual • Key String – Enter the default authentication and encryption key for TACACS+ communication between the device and the TACACS+ server. • Authentication Port – Enter the port number via which the TACACS+ session occurs.
Page 181: Authentication List
GS700TP Smart Switch Software Administration Manual 2. Select the TACACS+ server entry. 3. Click DELETE to remove the entry. Authentication List The Authentication List screen contains information for defining an authentication method for the selected Authentication List. For example, if the user selects TACACS+ as the first entry, None as the second, this causes authentication to first occur at the TACACS+ server.
Page 182: Port Authentication
GS700TP Smart Switch Software Administration Manual The Authentication List screen contains the following fields: • 1,2,3 – Select the order in which authentication is applied. The possible field values are: – TACACS+ – Authenticates the user at the TACACS+ server. For more information, see “TACACS+”.
Page 183 GS700TP Smart Switch Software Administration Manual Figure 6-6 The Basic 802.1x Configuration screen contains the following fields: • Port Based Authentication State – Select whether port-based authentication is enabled or disabled on the device. The possible field values are: –...
Page 184 GS700TP Smart Switch Software Administration Manual – Enable – Enables using a Guest VLAN for unauthorized ports. If a Guest VLAN is enabled, the unauthorized port automatically joins the VLAN selected in the VLAN List field. • Guest VLAN ID – Select the guest VLAN ID from the list of currently defined VLANs.
Page 185 GS700TP Smart Switch Software Administration Manual Figure 6-7 The Advanced 802.1x Configuration screen contains the following fields: • Port Based Authentication State – Enable port-based authentication on the device. The possible field values are: – Disable – Disables port-based authentication on the device. This is the default value.
Page 186 GS700TP Smart Switch Software Administration Manual – Enable – Enables using a Guest VLAN for unauthorized ports. If a Guest VLAN is enabled, the unauthorized port automatically joins the VLAN selected in the VLAN List field. • Guest VLAN ID – Select the guest VLAN ID from the list of currently defined VLANs.
Page 187 GS700TP Smart Switch Software Administration Manual Figure 6-8 The Port Authentication screen contains the following fields: • Interface – Displays the interfaces. • User Name – Displays the supplicant (client) user name, once the user is authenticated. • Port Control – Select the port authorization state.
Page 188 GS700TP Smart Switch Software Administration Manual – Disable – Disables the Guest VLAN on the port. This is the default value. • Periodic Reauthentication – Select whether periodic port reauthentication is enabled or disabled. The possible field values are: –...
Page 189: Traffic Control
GS700TP Smart Switch Software Administration Manual 6. Click APPLY to update the device. Traffic Control The Traffic Control menu contains the following options: • “Storm Control” • “Port Security” • “Protected Ports” Storm Control Storm Control limits the amount of Multicast and Broadcast frames accepted and forwarded by the device.
Page 190 GS700TP Smart Switch Software Administration Manual Figure 6-9 The Storm Control screen contains the following fields: • Interface – Displays the port number for which the storm control information is displayed. • Broadcast Control – Select whether storm control is enabled or disabled on the interface according to Broadcast mode.
Page 191: Port Security
GS700TP Smart Switch Software Administration Manual • Broadcast Rate Threshold – Enter the maximum rate (kilobits per second) at which broadcast packets are forwarded. FE (Fast Ethernet) ports have a range of 70 - 100000 and GE (Gigabit Ethernet) ports have a range of 3500 - 1000000. The default value for both FE and GE ports is 3500.
Page 192 GS700TP Smart Switch Software Administration Manual Figure 6-10 The Port Security screen contains the following fields: • Interface – Displays the port or LAG name. • Status – Select the port security status. The possible field values are: – Locked – Indicates the port is currently locked.
Page 193: Protected Ports
GS700TP Smart Switch Software Administration Manual • Action – Select the action to be applied to packets arriving on a locked port. The possible field values are: – Forward – Forwards packets from an unknown source without learning the MAC address.
Page 194 GS700TP Smart Switch Software Administration Manual Figure 6-11 The Protected Ports Membership screen contains the following fields: Protected Ports Membership Table • Port Number (1-XX) – Displays the unprotected and protected ports on the device. 2. Select the interfaces to the be defined as a Protected Port by one of the following methods.
Page 195: Mac Acl
GS700TP Smart Switch Software Administration Manual Access Control Lists (ACL) allow network managers to define classification actions and rules for specific ingress ports. Packets entering an ingress port, with an active ACL, are either admitted or denied entry. The user can also specify whether or not to shutdown the port completely if the packet is denied entry.
Page 196 GS700TP Smart Switch Software Administration Manual Figure 6-12 The MAC Configuration screen contains the following fields: MAC ACL • Current number of ACL – Displays the current number of user-defined ACLs. MAC ACL Table • Name – Enter the user-defined MAC based ACL name.
Page 197: Mac Rules
GS700TP Smart Switch Software Administration Manual 3. Click DELETE to remove the entry. MAC Rules The MAC Rules screen allows a MAC Rule to be defined within a configured ACL. Rules can be added only if the ACL is not bound to an interface.
Page 198 GS700TP Smart Switch Software Administration Manual • Source Mask – Enter the mask of the new source MAC address. • Destination MAC Address – Enter the destination MAC address. • Destination Mask – Enter the mask of the new destination MAC address.
Page 199: Mac Binding Configuration
GS700TP Smart Switch Software Administration Manual MAC Binding Configuration The MAC Binding Configuration screen contains information for mapping ACLs to MAC addressess. When an ACL is bound to an interface, all the ACE rules that have been defined are applied to the selected interface.
Page 200: Ipv4 Acl
GS700TP Smart Switch Software Administration Manual 3. Select the interfaces to bind to the selected ACL Name by one of the following methods. a. Click on the port’s or LAG’s gold bar to display the associated interfaces, and then select the interfaces to bind by clicking on the boxes below the interfaces.
Page 201: Ipv4 Rules
GS700TP Smart Switch Software Administration Manual IPv4 ACL Table • Name – Enter the user-defined IP based ACL name. • Number of Rules – Displays the current number of rules in the ACL. IPv4 Rules The IPv4 Rules screen allows an IP Rule to be defined within a configured ACL. Rules can be added only if the ACL is not bound to an interface.
Page 202 GS700TP Smart Switch Software Administration Manual • Priority – Enter the rule priority. When the packet is matched to a rule, user groups are either granted permission or denied device management access. The rule number is essential to matching packets to rules, as packets are matched on a first-fit basis.
Page 203: Ipv4 Binding Configuration
GS700TP Smart Switch Software Administration Manual 3. Select the rule entry. 4. Click DELETE to remove the entry. IPv4 Binding Configuration The IPv4 Binding Configuration screen contains information for mapping ACLs to IPv4 interfaces. When an ACL is bound to an interface, all the ACE rules that have been defined are applied to the selected interface.
Page 204: Ipv6 Acl
GS700TP Smart Switch Software Administration Manual • Select the interfaces for which the ACLs are bound. 2. Select the ACL Name from the list in the provided field. 3. Select the interfaces to which the ACLs are bound IPv6 ACL The IPv6 ACL screen allows an IPv6 Based ACL to be defined.
Page 205: Ipv6 Rules
GS700TP Smart Switch Software Administration Manual To add a new IPv6-based ACL entry: 1. Click Security > ACL > IPv6 ACL. The IPv6 ACL screen displays. 2. Enter the ACL Name in the provided field in the first, editable row.
Page 206 GS700TP Smart Switch Software Administration Manual The IPv6 Rules screen contains the following fields: IPv6 Rules • ACL Name – Select the ACL Name from the list. IPv6 Rules Table • Priority – Enter the rule priority. When the packet is matched to a rule, user groups are either granted permission or denied device management access.
Page 207: Ipv6 Binding Configuration
GS700TP Smart Switch Software Administration Manual 1. Click Security > ACL > IPv6 Rules. The IPv6 Rules screen displays. 2. Select the ACL Name from the list in the provided field. 3. Enter the provided fields in the first row.
Page 208 GS700TP Smart Switch Software Administration Manual Figure 6-20 The IPv6 Binding Configuration screen contains the following fields: IPv6 Binding Configuration • ACL Name – Select the ACL Name for viewing and modifying ACL bound interfaces. Port Selection Table • Port Number (1-XX) – Displays the bound and unbound ports on the device.
Page 209: Binding Table
GS700TP Smart Switch Software Administration Manual Binding Table To view the ACL Binding Table: Click Security > ACL > Binding Table. The Binding Table screen displays: Figure 6-21 The Binding Table screen contains the following fields: Interface Binding Table •...
Page 210: Monitoring The Switch
Setting Monitoring Options The navigation pane at the top of the web browser interface contains a Monitoring tab that enables you to manage your GS700TP Smart Switch with features under the following main menu options: • “Logs” • “RMON” •...
Page 211: Logs Configuration
GS700TP Smart Switch Software Administration Manual This section provides information for managing logs. The logs enable viewing device events in real time, and recording the events for later usage. Logs record and manage events and report errors and informational messages.
Page 212: Log Filter
GS700TP Smart Switch Software Administration Manual The Logs Configuration screen contains the following field: • Logging State – Select whether to enable or disable the device global logs for Cache, File and Server Logs. Console logs are enabled by default. The possible field values are: –...
Page 213 GS700TP Smart Switch Software Administration Manual The Log Filter screen contains the following fields: • RAM Logs – Select the minimum message severity level to appear in the RAM Log. The following are the available message severity levels: – Emergency – Indicates the system is not functioning. Emergency is the highest warning level.
Page 214: Memory Log
GS700TP Smart Switch Software Administration Manual – Informational – Provides device information. – Debug – Provides debugging messages. 2. Select the minimum severity level for RAM logs. 3. Select the minimum severity level for FLASH logs. 4. Click APPLY to update the device.
Page 215: Flash Log
GS700TP Smart Switch Software Administration Manual • Severity – Displays the log severity and urgency level. The following are the available log severity levels: – Emergency – Indicates the device is not functioning. Emergency is the highest warning level. If the device is down or not functioning properly, an emergency log message is saved to the specified logging location.
Page 216 GS700TP Smart Switch Software Administration Manual Figure 7-4 The Flash Log screen contains the following fields: • Log Index – Displays the log number. • Log Time – Displays the time at which the log was generated. • Severity – Displays the log severity and urgency level. The following are the available log severity levels: –...
Page 217: Server Log
GS700TP Smart Switch Software Administration Manual – Warning – Displays the lowest level of a device warning. The device is functioning, but an operational problem has occurred. – Notice – Indicates the system is functioning properly, but a system notice is logged.
Page 218 GS700TP Smart Switch Software Administration Manual The Server Log screen contains the following fields: • Server IP – Enter the server’s IP address to which logs can be sent. • UDP Port – Enter the UDP port to which the server logs are sent. The possible range is 1 - 65535.
Page 219: Rmon
GS700TP Smart Switch Software Administration Manual 6. Enter an optional server Description in the provided field in the first row. 7. Select the Minimum Severity level message sent to the server from the list in the provided field in the first row.
Page 220 GS700TP Smart Switch Software Administration Manual Statistics The RMON Basic Statistics screen contains fields for viewing information about device utilization and errors that occurred on the device. To view RMON Basic Statistics: 1. Click Monitoring > RMON > Basic > Statistics. The RMON Basic Statistics screen...
Page 221 GS700TP Smart Switch Software Administration Manual • Broadcast Packets Received – Displays the number of good broadcast packets received on the interface since the device was last refreshed. This number does not include Multicast packets. • Multicast Packets Received – Displays the number of good Multicast packets received on the interface since the device was last refreshed.
Page 222 GS700TP Smart Switch Software Administration Manual Figure 7-7 The RMON Advanced Statistics screen contains the following fields: RMON Interface Statistics • Interface – Select the device for which statistics are displayed. The possible field values are: – Port – Select the specific port for which RMON statistics are displayed.
Page 223 GS700TP Smart Switch Software Administration Manual • Undersize Packets – Displays the number of undersized packets (less than 64 octets) received on the interface since the device was last refreshed. • Oversize Packets – Displays the number of oversized packets (over 1518 octets) received on the interface since the device was last refreshed.
Page 224 GS700TP Smart Switch Software Administration Manual • Received Packets – Displays the number of packets received on the interface, including bad packets, Multicast, and Broadcast packets, since the device was last refreshed. • Broadcast Packets Received – Displays the number of good broadcast packets received on the interface since the device was last refreshed.
Page 225 GS700TP Smart Switch Software Administration Manual Figure 7-8 The RMON History Control screen contains the following fields: • History Entry No. – Displays the entry number for the History Control Table screen. • Source Interface – Enter the interface from which the history samples were taken.
Page 226 GS700TP Smart Switch Software Administration Manual To add a history control entry: 1. Click Monitoring >RMON > Advanced > History Control. The RMON History Control screen displays. 2. Enter the Source Interface, Sampling Interval, Samples Requested and Owner in the provided field in the first row.
Page 227 GS700TP Smart Switch Software Administration Manual Figure 7-9 The RMON History Table screen contains the following fields: History Entry • History Entry No. – Select the entry number for the History Control Table screen. • Owner – Displays the RMON station or user that requested the RMON information. The field range is 0-20 characters.
Page 228 GS700TP Smart Switch Software Administration Manual • Broadcast Packets – Displays the number of good Broadcast packets received on the interface since the device was last refreshed. This number does not include Multicast packets. • Multicast Packets – Displays the number of good Multicast packets received on the interface since the device was last refreshed.
Page 229 GS700TP Smart Switch Software Administration Manual Figure 7-10 The RMON Events Control screen contains the following fields: • Event Entry Interface – Displays the event. • Community – Enter the community to which the event belongs. • Description – Enter the user-defined event description.
Page 230 GS700TP Smart Switch Software Administration Manual 4. Select the event Type from the list in the provided field in the first row. 5. Click APPLY to update the device. To add an events control entry: 1. Click Monitoring > RMON > Advanced > Events Control. The RMON Events Control screen displays.
Page 231 GS700TP Smart Switch Software Administration Manual Figure 7-11 The RMON Events Log screen contains the following fields: • Event – Displays the RMON Events. • Log Number – Displays the log number. • Log Time – Displays the time when the log entry was entered.
Page 232 GS700TP Smart Switch Software Administration Manual Figure 7-12 The RMON Alarms screen contains the following fields: • Alarm Entry – Displays the alarm entry. • Counter Name – Select the MIB variable. • Interface – Enter the port or LAG interface.
Page 233 GS700TP Smart Switch Software Administration Manual • Falling Threshold – Enter the falling counter value that triggers the falling threshold alarm. The falling threshold is graphically presented on top of the graph bars. Each monitored variable is designated a color.
Page 234: Port Mirroring
Port mirroring can be used as a diagnostic tool as well as a debugging feature. Port mirroring also enables switch performance monitoring. Network administrators can configure port mirroring by selecting a specific port from which to copy all packets, and other ports to which the packets are copied.
Page 235 GS700TP Smart Switch Software Administration Manual Figure 7-13 The Port Mirroring screen contains the following fields: Destination Port • Destination Port – Enter the port to which port traffic is copied. Source Port Table • Source Port – Enter the port from which the packets are mirrored.
Page 236 GS700TP Smart Switch Software Administration Manual 5. Click APPLY to update the device. To add a source port entry: 1. Click Monitoring > Port Mirroring > Port Mirroring. The Port Mirroring screen displays. 2. Enter the Source Port in the provided field in the first row.
Page 237: Maintenance
Using the Maintenance Options The navigation pane at the top of the web browser interface contains a Maintenance tab that enables you to manage your GS700TP Smart Switch with features under the following main menu options: • “Reset” • “Upload”...
Page 238: Factory Default
Factory Default The Factory Default screen allows network managers to reset the device to the factory defaults shipped with the switch. Restoring factory defaults results in erasing the configuration file. Note: Selecting this option automatically reboots the device. To reset the device to the factory defaults: 1.
Page 239: Upload
GS700TP Smart Switch Software Administration Manual Figure 8-2 2. Check the confirmation box. 3. Click APPLY to reset the device to the factory defaults. Upload The Upload menu contains the following option: • “Upload” Upload System Files can be backed up using the Upload screen.
Page 240 GS700TP Smart Switch Software Administration Manual Figure 8-3 The Upload screen contains the following fields: • File Type – Enter the type of file to be uploaded. The possible field values are: – Firmware – Upload the Firmware File. –...
Page 241: Download
GS700TP Smart Switch Software Administration Manual 5. If you selected via TFTP, enter the Remote Filename in the provided field. 6. Click APPLY to upload the file. Download The Download menu contains the following option: • “Download” Download System files can be downloaded using the Download screen.
Page 242: File Management
GS700TP Smart Switch Software Administration Manual – Firmware – Downloads the Firmware file. – Boot File – Downloads the Boot file. – Configuration – Downloads the Configuration file. • via TFTP – Select to download the file from the TFTP Server.
Page 243: Troubleshooting
GS700TP Smart Switch Software Administration Manual Figure 8-5 The Active Image screen contains the following fields: • Active Image – Displays the image file which is currently active on the device. • After Reset – Select the image file that is active after the device is reset. The possible field values are: –...
Page 244 GS700TP Smart Switch Software Administration Manual Diagnostics The Diagnostics menu contains the following option: • “Cable Test” Cable Test The Cable Test screen contains fields for performing tests on copper cables. Cable testing provides information about where errors occurred in the cable, the last time a cable test was performed, and the type of cable error that occurred.
Page 245 GS700TP Smart Switch Software Administration Manual • Test Result – Displays the cable test results. Possible values are: – No Cable – Indicates a cable is not connected to the port. – Open Cable – Indicates a cable is connected on only one side.
Page 246: Online Help
The description that follows in this chapter covers these features. Support The Support screen provides access to the NETGEAR online support site at www.netgear.com. To access the Support screen: 1. Click Help > Online Help > Support. The Online Help menu opens and the Support screen displays: v1.0, November 2009...
Page 247: User Guide
GS700TP Smart Switch Software Administration Manual Figure 9-1 2. Click APPLY to go to the NETGEAR Online Support site at www.netgear.com. User Guide The User Guide screen provides access to the online User Guide. To view the User Guide screen: 1.
Page 248 GS700TP Smart Switch Software Administration Manual Figure 9-2 2. Click APPLY to open a window and display the User Guide in PDF format. Online Help v1.0, November 2009...
Page 249: Default Settings
This appendix provides default settings for the NETGEAR Model GS700TP Smart Switch. You can always configure the switch to default settings by using the Factory Reset function from a Web browser. Table 1: Default Settings Feature Port Speed Port Duplex...
Page 250 IP address default 1-7 L2 4-48 LACP 4-12 LAG 4-4 Layer 2 4-48 Link Aggregated Groups 4-4 Link Aggregation Control Protocol 4-12 list of RMON events 7-21 logging into the switch 2-1 Logs Configuration 7-2 v1.0, November 2009 Index Index-1...
Page 251 SNMP 3-15 SNMP groups 3-27 SNMP v3 3-15 Index-2 STP 4-32 subnet mask 1-7 switch device 3-8 switch configuration 4-1 switch monitoring 7-1 System Logs 7-1 system requirements 1-1 TACACS+ 6-7 TDR 8-8 Terminal Access Controller Access Control System (TACACS+) 6-7...

NETGEAR GS700TP Software Administration Manual

About this Manual

Chapter 1 Getting Started with Switch Management

Chapter 2 Introduction to the Web Browser Interface

Chapter 3 Managing System Settings

Chapter 4

Configuring Switching Settings

Chapter 5 Configuring Qos

Chapter 6 Managing Security

Chapter 7 Monitoring the Switch

Chapter 8 Maintenance

Chapter 9

Online Help

Quick Links

Need help?

Questions and answers

Related Manuals for NETGEAR NETGEAR GS700TP

Summary of Contents for NETGEAR NETGEAR GS700TP

Table of Contents