Table of Contents
Advertisement
Quick Links
Advertisement
Table of Contents
Troubleshooting
Subscribe to Our Youtube Channel
Related Manuals for ZyXEL Communications MES3500 series
Summary of Contents for ZyXEL Communications MES3500 series
- Page 1 MES3500 Series Layer 2 Management Switch Version 4.00 Edition 2, 01/2016 Quick Start Guide User’s Guide Default Login Details LAN IP Address http://192.168.1.1 User Name admin www.zyxel.com Password 1234 Copyright © 2016 ZyXEL Communications Corporation...
- Page 2 Note: It is recommended you use the Web Configurator to configure the Switch. • Web Configurator Online Help Click the help icon in any screen for help in configuring that screen and supplementary information. • More Information Go to support.zyxel.com to find other information on the Switch. MES3500 Series User’s Guide...
-
Page 3: Table Of Contents
Queuing Method ............................179 VLAN Stacking ............................182 Multicast ..............................189 AAA ...............................203 IP Source Guard ...........................216 Loop Guard ............................236 VLAN Mapping ............................239 Layer 2 Protocol Tunneling ........................242 sFlow ..............................246 PPPoE ..............................250 Error Disable ............................258 Private VLAN ............................264 Static Route ............................266 MES3500 Series User’s Guide... - Page 4 Contents Overview Differentiated Services ..........................269 DHCP ..............................276 ARP Learning ............................290 Maintenance ............................294 Access Control ............................303 Diagnostic .............................325 Syslog ..............................326 Cluster Management ..........................329 MAC Table .............................336 ARP Table .............................339 Configure Clone ............................341 Troubleshooting ............................344 MES3500 Series User’s Guide...
-
Page 5: Table Of Contents
2.4 Wall Mounting ...........................24 Chapter 3 Hardware Overview ..........................26 3.1 Front Panel ............................26 3.1.1 Console Port ..........................28 3.1.2 Ethernet Ports .........................28 3.1.3 Transceiver Slots ........................29 3.1.4 Power Connector ........................30 3.1.5 Signal Slot ..........................31 3.2 LEDs ..............................33 MES3500 Series User’s Guide... - Page 6 6.5.2 Enabling IEEE 802.1x Port Authentication ................65 6.5.3 Enabling Guest VLAN ......................66 6.6 How to Do Port Isolation in a VLAN ....................67 6.6.1 Creating a VLAN ........................68 6.6.2 Creating a Private VLAN Rule ....................70 Part II: Technical Reference................72 MES3500 Series User’s Guide...
- Page 7 9.7.1 Configuring Protocol Based VLAN ..................99 9.7.2 Create an IP-based VLAN Example ..................100 9.8 MAC Based VLAN ...........................101 9.9 VLAN MAC Learning ........................102 9.10 Port-based VLAN Setup ......................104 9.10.1 Configure a Port-based VLAN ....................105 Chapter 10 Static MAC Forward Setup.......................108 MES3500 Series User’s Guide...
- Page 8 14.1 Bandwidth Control Overview .......................134 14.1.1 CIR and PIR ........................134 14.2 Bandwidth Control Setup ......................134 Chapter 15 Broadcast Storm Control .........................137 15.1 Broadcast Storm Control Setup ....................137 Chapter 16 Mirroring ............................139 16.1 Port Mirroring Overview .......................139 MES3500 Series User’s Guide...
- Page 9 20.4 Port Range Profile .........................164 20.5 IP Address Range Profile ......................165 20.6 Socket-Port Range Profile ......................166 Chapter 21 Classifier............................168 21.1 About the Classifier and QoS ......................168 21.2 Configuring the Classifier ......................168 21.3 Viewing and Editing Classifier Configuration ................171 MES3500 Series User’s Guide...
- Page 10 25.1.3 IGMP Snooping ........................189 25.1.4 IGMP Snooping and VLANs ....................190 25.2 Multicast Status ..........................190 25.2.1 Multicast Setting .........................190 25.2.2 IGMP Snooping VLAN ......................193 25.2.3 IGMP Filtering Profile ......................195 25.3 MVR Overview ..........................196 25.3.1 Types of MVR Ports ......................196 MES3500 Series User’s Guide...
- Page 11 27.6.1 ARP Inspection VLAN Status ....................230 27.6.2 ARP Inspection Log Status ....................231 27.6.3 ARP Inspection Configure ....................232 27.6.4 ARP Inspection Port Configure ....................233 27.6.5 ARP Inspection VLAN Configure ..................234 Chapter 28 Loop Guard ............................236 28.1 Loop Guard Overview ........................236 MES3500 Series User’s Guide...
- Page 12 Error Disable .............................258 33.1 CPU Protection Overview ......................258 33.2 Error-Disable Recovery Overview ....................258 33.3 Error Disable Screen ........................258 33.4 Error-Disable Status ........................259 33.5 CPU Protection Configuration ......................260 33.6 Error-Disable Detect Configuration ....................261 33.7 Error-Disable Recovery Configuration ..................262 MES3500 Series User’s Guide...
- Page 13 37.4.5 Global DHCPv4 Relay Configuration Example ..............281 37.4.6 Configuring DHCPv4 VLAN Settings ................282 37.4.7 DHCPv4 VLAN Port Configure ...................283 37.4.8 Example: DHCPv4 Relay for Two VLANs ................284 37.5 DHCPv6 Relay ..........................285 37.5.1 DHCPv6 Options Profile ......................287 37.5.2 DHCPv6 Port Configure .....................288 MES3500 Series User’s Guide...
- Page 14 40.7 SSH Implementation on the Switch ....................317 40.7.1 Requirements for Using SSH ....................318 40.8 Introduction to HTTPS ........................318 40.9 HTTPS Example ...........................319 40.9.1 Internet Explorer Warning Messages ..................319 40.9.2 Mozilla Firefox Warning Messages ..................320 40.9.3 The Main Screen .........................322 MES3500 Series User’s Guide...
- Page 15 Configure Clone..........................341 46.1 Configure Clone ...........................341 Chapter 47 Troubleshooting..........................344 47.1 Power, Hardware Connections, and LEDs ..................344 47.2 Switch Access and Login ......................345 47.3 Switch Configuration ........................347 Appendix A Customer Support ......................348 Appendix B Common Services ......................354 MES3500 Series User’s Guide...
- Page 16 Table of Contents Appendix C Legal Information ......................357 Index ..............................362 MES3500 Series User’s Guide...
-
Page 17: User's Guide
User’s Guide... -
Page 18: Getting To Know Your Switch
Switch’s port or connect other switches to the Switch. In this example, all computers can share high-speed applications on the server. To expand the network, simply add more networking devices such as switches, routers, computers, print servers etc. MES3500 Series User’s Guide... -
Page 19: Bridging Example
Switching to higher-speed LANs such as ATM (Asynchronous Transmission Mode) is not feasible for most people due to the expense of replacing all existing Ethernet cables and adapter cards, restructuring your network and complex maintenance. The Switch can provide the same bandwidth MES3500 Series User’s Guide... -
Page 20: Ieee 802.1Q Vlan Application Examples
Shared resources such as a server can be used by all ports in the same VLAN as the server. In the following figure only ports that need access to the server need to be part of VLAN 1. Ports can belong to other VLAN groups too. Figure 4 Shared Server Using VLAN Example MES3500 Series User’s Guide... -
Page 21: Ipv6 Support
Switch to its factory default settings. If you backed up an earlier configuration file, you would not have to totally re-configure the Switch. You could simply restore your last configuration. MES3500 Series User’s Guide... -
Page 22: Hardware Installation And Connection
• Two mounting brackets. • Eight M3 flat head screws and a #2 Philips screwdriver. • Four M5 flat head screws and a #2 Philips screwdriver. Failure to use the proper screws may damage the unit. MES3500 Series User’s Guide... -
Page 23: Attaching The Mounting Brackets To The Switch
Position a mounting bracket (that is already attached to the Switch) on one side of the rack, lining up the two screw holes on the bracket with the screw holes on the side of the rack. MES3500 Series User’s Guide... -
Page 24: Wall Mounting
Select a position free of obstructions on a wall strong enough to hold the weight of the device. Mark two holes on the wall at the appropriate distance apart for the screws. Be careful to avoid damaging pipes or cables located inside the wall when drilling holes for the screws. MES3500 Series User’s Guide... - Page 25 Make sure the screws are fastened well enough to hold the weight of the Switch with the connection cables. Align the holes on the back of the Switch with the screws on the wall. Hang the Switch on the screws. Figure 7 Wall Mounting Example MES3500 Series User’s Guide...
-
Page 26: Hardware Overview
Figure 9 MES3500-24 Front Panel: DC Model Dual Personality Interfaces Console Port Power Switch LEDs Signal slot Power Connection Fast Ethernet Ports Figure 10 MES3500-24F Front Panel: AC Model Dual Personality Interfaces Console Port LEDs Signal slot Power Connection SFP Slots MES3500 Series User’s Guide... - Page 27 The console port is for local configuration of the Switch. Signal slot Connect the signal input pins to signal output terminals on other pieces of equipment. Connect the signal output pins to a signal input terminal on another piece of equipment. MES3500 Series User’s Guide...
-
Page 28: Console Port
Ethernet port are the same in order to connect. 3.1.2.1 Default Ethernet Negotiation Settings The factory default negotiation settings for the Gigabit ports on the Switch are: • Speed: Auto • Duplex: Auto • Flow control: Off • Link Aggregation: Disabled MES3500 Series User’s Guide... -
Page 29: Transceiver Slots
The Switch automatically detects the installed transceiver. Check the LEDs to verify that it is functioning properly. Close the transceiver’s latch (latch styles vary). Connect the fiber optic cables to the transceiver. Figure 13 Transceiver Installation Example MES3500 Series User’s Guide... -
Page 30: Power Connector
Use the following procedures to connect the Switch to a power source after you have installed it. Note: Check the power supply requirements on the panel, and make sure you are using an appropriate power source. MES3500 Series User’s Guide... -
Page 31: Signal Slot
ZyXEL switches which support the external alarm feature. This feature is in addition to the system alarm, which detects abnormal temperatures, and voltage levels on the Switch. Your Switch can respond to an external signal in four ways. • The ALM LED shows an alert. MES3500 Series User’s Guide... - Page 32 11 10 Signal Input Pins Signal (Dry contact, Output normal open only) Pins To connect an output devicel, repeat the previous steps but this time connect to either pins (1,2) or (2,3) on the Signal connector. MES3500 Series User’s Guide...
-
Page 33: Leds
The link to a 10 Mbps Ethernet network is up. Amber Blinking The system is transmitting/receiving to/from a 100 Mbps Ethernet network. The link to a 100 Mbps Ethernet network is up. The link to an Ethernet network is down. MES3500 Series User’s Guide... - Page 34 The link to a 100 Mbps Ethernet network is up. The link to an Ethernet network is down. Amber The Gigabit port is negotiating in full-duplex mode. The Gigabit port is negotiating in half-duplex mode. MES3500 Series User’s Guide...
-
Page 35: The Web Configurator
The login screen appears. The default username is admin and associated default password is 1234. The date and time display as shown if you have not configured a time server nor manually entered a time and date in the General Setup screen. MES3500 Series User’s Guide... -
Page 36: The Web Configurator Layout
The following figure shows the navigating components of a web configurator screen. Figure 21 The Web Configurator Layout A - Click the menu items to open submenu links, and then click on a submenu link to open the screen in the main window. MES3500 Series User’s Guide... - Page 37 E - Click this link to display web help pages. The help pages provide descriptions for all of the configuration screens. In the navigation panel, click a main link to reveal a list of submenu links. Table 5 Navigation Panel Sub-links Overview ADVANCED BASIC SETTING IP APPLICATION MANAGEMENT APPLICATION MES3500 Series User’s Guide...
- Page 38 VLAN Stacking This link takes you to screens where you can activate and configure VLAN stacking. Multicast This link takes you to screen where you can configure various multicast features, IGMP snooping and create multicast VLANs. MES3500 Series User’s Guide...
- Page 39 This link takes you to a screen where you can view the MAC address – IP address resolution table. Configure Clone This link takes you to a screen where you can copy attributes of one port to (an)other port(s). MES3500 Series User’s Guide...
-
Page 40: Change Your Password
Delete the management VLAN (default is VLAN 1). Delete all port-based VLANs with the CPU port as a member. The “CPU port” is the management port of the Switch. Filter all traffic to the CPU port. MES3500 Series User’s Guide... -
Page 41: Resetting The Switch
Type atlc after the “Enter Debug Mode” message. Wait for the “Starting XMODEM upload” message before activating XMODEM upload on your terminal. After a configuration file upload, type atgo to restart the Switch. MES3500 Series User’s Guide... -
Page 42: Logging Out Of The Web Configurator
Figure 24 Web Configurator: Logout Screen 4.8 Help The web configurator’s online help has descriptions of individual screens and some supplementary information. Click the Help link from a web configurator screen to view an online help description of that screen. MES3500 Series User’s Guide... -
Page 43: Initial Setup Example
In this example, you want to configure port 1 as a member of VLAN 2. Figure 25 Initial Setup Network Example: VLAN Click Advanced Application > VLAN in the navigation panel and click the Static VLAN link. MES3500 Series User’s Guide... -
Page 44: Setting Port Vid
VLAN group that the tag defines. In the example network, configure 2 as the port VID on port 1 so that any untagged frames received on that port get sent to VLAN 2. MES3500 Series User’s Guide... -
Page 45: Configuring Switch Management Ip Address
The default management IP address of the Switch is 192.168.1.1. You can configure another IP address in a different subnet for management purposes. The following figure shows an example. Figure 27 Initial Setup Example: Management IP Address MES3500 Series User’s Guide... - Page 46 VLAN ID you configure in the Static VLAN screen. Click Add to save your changes back to the run-time memory. Settings in the run-time memory are lost when the Switch’s power is turned off. MES3500 Series User’s Guide...
-
Page 47: Tutorials
DHCP Server (A) 1 and 100 DHCP Client (B) 1 and 100 DHCP Client (C) 1 and 100 Access the Switch through http://192.168.1.1. Log into the Switch by entering the username (default: admin) and password (default: 1234). MES3500 Series User’s Guide... - Page 48 7 to 100. This tags untagged incoming frames on ports 5, 6 and 7 with the tag 100. Go to Advanced Application > IP Source Guard > DHCP snooping > Configure, activate and specify VLAN 100 as the DHCP VLAN as shown. Click Apply. MES3500 Series User’s Guide...
- Page 49 If you want to add more information in the DHCP request packets such as source VLAN ID or system name, you can also select the Option82 and Information fields in the entry. See Section 27.1.1.3 on page 218. MES3500 Series User’s Guide...
-
Page 50: How To Use Dhcp Relay On The Switch
IP address (say 172.16.1.18) and gateway information to DHCP client A based on the system name, VLAN ID and port number in the DHCP request. Client A connects to the Switch’s port 2 in VLAN 102. MES3500 Series User’s Guide... -
Page 51: Creating A Vlan
Name field and enter 102 in the VLAN Group ID field. Select Fixed to configure port 2 to be a permanent member of this VLAN. Clear the TX Tagging check box to set the Switch to remove VLAN tags before sending. MES3500 Series User’s Guide... - Page 52 Enter 102 in the PVID field for port 2 to add a tag to incoming untagged frames received on that port so that the frames are forwarded to the VLAN group that the tag defines. 10 Click Apply to save your changes back to the run-time memory. MES3500 Series User’s Guide...
-
Page 53: Configuring Dhcpv4 Relay
Select a pre-defined Option 82 Profile that includes the system name, VLAN ID and port number in the client DHCP requests (default2 in this example). Click Apply to save your changes back to the run-time memory. MES3500 Series User’s Guide... -
Page 54: Troubleshooting
Switch B is connected to switch A. In this way, PPPoE server S can identify subscriber C and may apply different settings to it. Port 12 - Trusted Port 11 - Trusted Port 12 - Trusted Port 5 - Untrusted MES3500 Series User’s Guide... -
Page 55: Configuring Switch A
Click Port on the top of the screen. Select Untrusted for port 5 and enter userC as Circuit-id and 00134900000A as Remote-id. Select Trusted for port 12 and then leave the other fields empty. Click Apply. MES3500 Series User’s Guide... - Page 56 The Intermediate Agent screen appears. Click VLAN on the top of the screen. Enter 1 for both Start VID and End VID since both the Switch and PPPoE server are in VLAN 1 in this example. Click Apply. MES3500 Series User’s Guide...
-
Page 57: Configuring Switch B
Switch to add these two strings to frames tagged with VLAN 1 and pass to the PPPoE server. Click Apply. 6.3.2 Configuring Switch B The example uses another MES3500-24/24F as switch B. Click Advanced Application > PPPoE > Intermediate Agent. Select Active then click Apply. MES3500 Series User’s Guide... - Page 58 Click Port on the top of the screen. Select Trusted for ports 11 and 12 and then click Apply. Then Click Intermediate Agent on the top of the screen. The Intermediate Agent screen appears. Click VLAN on the top of the screen. MES3500 Series User’s Guide...
- Page 59 Then select Yes to enable PPPoE IA in VLAN 1 and also select Circuit-id and Remote-id to allow the Switch to add these two strings to frames tagged with VLAN 1 and pass to the PPPoE server. Click Apply. MES3500 Series User’s Guide...
-
Page 60: How To Use Error Disable And Recovery On The Switch
Click Advanced Application > Errdisable > CPU Protection, select ARP as the reason, enter 100 as the rate limit (packets per second) for the first entry (port *) to apply the setting to all ports. Then click Apply. MES3500 Series User’s Guide... - Page 61 Click Advanced Application > Errdisable > Errdisable Recovery, select Active and Timer Status for loopguard and ARP entries. Also enter 180 (180 seconds = 3 minutes) in the Interval field for both entries. Then click Apply. MES3500 Series User’s Guide...
-
Page 62: How To Set Up A Guest Vlan
Access the web configurator through the Switch’s port which is not in VLAN 200. Go to Basic Setting > Switch Setup and set the VLAN type to 802.1Q. Click Apply to save the settings to the run-time memory. MES3500 Series User’s Guide... - Page 63 Clear the TX Tagging check box to set the Switch to remove VLAN tags before sending frames out of these ports. Click Add to save the settings to the run-time memory. Settings in the run-time memory are lost when the Switch’s power is turned off. MES3500 Series User’s Guide...
- Page 64 Enter 200 in the PVID field for ports 1, 2, 3 and 10 to add a tag to incoming untagged frames received on these ports so that the frames are forwarded to the VLAN group that the tag defines. 10 Click Apply to save your changes back to the run-time memory. MES3500 Series User’s Guide...
-
Page 65: Enabling Ieee 802.1X Port Authentication
Click Advanced Application > Port Authentication and then the Click Here link for 802.1x. Select the first Active checkbox to enable 802.1x authentication on the Switch. Select the Active checkboxes for ports 1 to 8 to turn on 802.1x authentication on the selected ports. Click Apply. MES3500 Series User’s Guide... -
Page 66: Enabling Guest Vlan
Set Host-mode to Multi-Secure to have the Switch authenticate each client that connects to one of these ports, and specify the maximum number of clients that the Switch will authenticate on each of these port (5 in this example). Click Apply. MES3500 Series User’s Guide... -
Page 67: How To Do Port Isolation In A Vlan
IP routing domain for each individual port. Internet In this example, you put ports 2 to 4 and 25 in VLAN 123 and create a private VLAN rule for VLAN 123 to block traffic between ports 2, 3 and 4. MES3500 Series User’s Guide... -
Page 68: Creating A Vlan
Clear the TX Tagging check box to set the Switch to remove VLAN tags before sending frames out of these ports. Click Add to save the settings to the run-time memory. Settings in the run-time memory are lost when the Switch’s power is turned off. MES3500 Series User’s Guide... - Page 69 Enter 123 in the PVID field for ports 2, 3, 4 and 25 to add a tag to incoming untagged frames received on these ports so that the frames are forwarded to the VLAN group that the tag defines. 10 Click Apply to save your changes back to the run-time memory. MES3500 Series User’s Guide...
-
Page 70: Creating A Private Vlan Rule
Follow the steps below to configure private VLAN for VLAN 123. Click Advanced Application > Private VLAN. In the Private VLAN screen, select Active. Enter a descriptive name (PrivateVLAN123 for example) in the Name field and enter 123 in the VLAN ID field. Click Add. MES3500 Series User’s Guide... - Page 71 Ports 2, 3 and 4 in this VLAN will be added to the isolated port list automatically and cannot send traffic to each other. From port 2, 3, or 4, you should be able to access the device that attachs to port 25, such as a server or default gateway. MES3500 Series User’s Guide...
-
Page 72: Technical Reference
Technical Reference... -
Page 73: System Status And Port Statistics
This identifies the Ethernet port. Click a port number to display the Port Details screen (refer to Figure 29 on page 75). Name This is the name you assigned to this port in the Basic Setting > Port Setup screen. MES3500 Series User’s Guide... -
Page 74: Status: Port Details
7.2.1 Status: Port Details Click a number in the Port column in the Status screen to display individual port statistics. Use this screen to check status and detailed performance data about an individual port on the Switch. MES3500 Series User’s Guide... - Page 75 This field shows the number of received frames on this port Errors This field shows the number of received errors on this port. Tx KB/s This field shows the number kilobytes per second transmitted on this port. MES3500 Series User’s Guide...
- Page 76 1024 and 1518 octets in length. Giant This field shows the number of packets (including bad packets) received that were between 1519 octets and the maximum frame size. The maximum frame size varies depending on your switch model. MES3500 Series User’s Guide...
-
Page 77: Basic Setting
Address Hardware Monitor Temperature The Switch has temperature sensors that are capable of detecting and reporting if the Unit temperature rises above the threshold. You may choose the temperature unit (Centigrade or Fahrenheit) in this field. MES3500 Series User’s Guide... -
Page 78: General Setup
Use this screen to configure general settings such as the system name and time. Click Basic Setting > General Setup in the navigation panel to display the screen as shown. Figure 31 Basic Setting > General Setup MES3500 Series User’s Guide... - Page 79 (1 A.M. GMT or UTC). So in the European Union you would select Last, Sunday, March and the last field depends on your time zone. In Germany for instance, you would select 2:00 because Germany's time zone is one hour ahead of GMT or UTC (GMT+1). MES3500 Series User’s Guide...
-
Page 80: Introduction To Vlans
8.3.1 Smart Isolation To block traffic between two specific ports within the Switch, you can use port isolation or private VLAN (see Chapter 34 on page 264 for more information). However, it does not work across MES3500 Series User’s Guide... - Page 81 Switch automatically updates the isolated port list with the latest designated port information. Note: The uplink port connected to the Internet should be the root port. Otherwise, with smart isolation enabled, the isolated ports cannot access the Internet. MES3500 Series User’s Guide...
-
Page 82: Switch Setup
Join Timer sets the duration of the Join Period timer for GVRP in milliseconds. Each port has a Join Period timer. The allowed Join Time range is between 100 and 65535 milliseconds; the default is 200 milliseconds. See the chapter on VLAN setup for more background information. MES3500 Series User’s Guide... -
Page 83: Ip Setup
IP address is 192.168.1.1. The subnet mask specifies the network number portion of an IP address. The factory default subnet mask is 255.255.255.0. You can configure up to 64 IP addresses which are used to access and manage the Switch from the ports belonging to the pre-defined VLAN(s). MES3500 Series User’s Guide... - Page 84 IP Address Enter the IP address of your Switch in dotted decimal notation for example 192.168.1.1. IP Subnet Mask Enter the IP subnet mask of your Switch in dotted decimal notation for example 255.255.255.0. MES3500 Series User’s Guide...
-
Page 85: Port Setup
Click Cancel to clear the selected check boxes in the Delete column. 8.6 Port Setup Use this screen to configure Switch port settings. Click Basic Setting > Port Setup in the navigation panel to display the configuration screen. MES3500 Series User’s Guide... - Page 86 MES3500 Series User’s Guide...
- Page 87 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 88: Vlan
A broadcast frame (or a multicast frame for a multicast group that is known by the system) is duplicated only on ports that are members of the VID (except the ingress port itself), thus confining the broadcast to a specific domain. MES3500 Series User’s Guide... -
Page 89: Automatic Vlan Registration
You may choose to accept both tagged and untagged incoming Type frames, just tagged incoming frames or just untagged incoming frames on a port. Ingress filtering If set, the Switch discards incoming frames for VLANs that do not have this port as a member. MES3500 Series User’s Guide... -
Page 90: Port Vlan Trunking
• sent to a group whether it has a VLAN tag or not. • blocked from a VLAN group regardless of its VLAN tag. You can also tag all outgoing frames (that were previously untagged) from a port with the specified VID. MES3500 Series User’s Guide... -
Page 91: Vlan Status
Use this screen to view detailed port settings and status of the VLAN group. See Section 9.1 on page 88 for more information on static VLAN. Click on an index number in the VLAN Status screen to display VLAN details. MES3500 Series User’s Guide... -
Page 92: Configure A Static Vlan
Use this screen to configure and view 802.1Q VLAN parameters for the Switch. See Section 9.1 on page 88 for more information on static VLAN. To configure a static VLAN, click Static VLAN in the VLAN Status screen to display the screen as shown next. MES3500 Series User’s Guide... - Page 93 Use this row only if you want to make some settings the same for all ports. Use this row first to set the common settings and then make adjustments on a port-by-port basis. Note: Changes in this row are copied to all the ports as soon as you make them. MES3500 Series User’s Guide...
-
Page 94: Configure Vlan Port Settings
Use the VLAN Port Setting screen to configure the static VLAN (IEEE 802.1Q) settings on a port. Section 9.1 on page 88 for more information on static VLAN. Click the VLAN Port Setting link in the VLAN Status screen. Figure 40 Advanced Application > VLAN > VLAN Port Setting MES3500 Series User’s Guide... -
Page 95: Subnet Based Vlans
IP subnet. For example, an ISP (Internet Service Provider) may divide different types of services it provides to customers into different IP subnets. Traffic for voice services is designated for IP subnet MES3500 Series User’s Guide... -
Page 96: Configuring Subnet Based Vlan
Click Subnet Based VLAN in the VLAN Port Setting screen to display the configuration screen as shown. Note: Subnet based VLAN applies to un-tagged packets and is applicable only when you use IEEE 802.1Q tagged VLAN. MES3500 Series User’s Guide... - Page 97 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 98: Protocol Based Vlans
Apple Talk traffic from port 6 and 7 will be in another group and have higher priority than ARP traffic when they go through the uplink port to a backbone switch C. Figure 43 Protocol Based VLAN Application Example MES3500 Series User’s Guide... -
Page 99: Configuring Protocol Based Vlan
This is the index number identifying this protocol based VLAN. Click on any of these numbers to edit an existing protocol based VLAN. Active This field shows whether the protocol based VLAN is active or not. Port This field shows which port belongs to this protocol based VLAN. MES3500 Series User’s Guide... -
Page 100: Create An Ip-Based Vlan Example
To add more ports to this protocol based VLAN. Click the index number of the protocol based VLAN entry. Click 1 Change the value in the Port field to the next port you want to add. MES3500 Series User’s Guide... -
Page 101: Mac Based Vlan
Type a name up to 32 alpha numeric characters for the MAC-based VLAN entry. MAC Address Type a MAC address that is bind to the MAC-based VLAN entry. This is the source MAC address of the data packet that is looked up when untagged packets arrive at the Switch. MES3500 Series User’s Guide... -
Page 102: Vlan Mac Learning
Click Cancel to clear the check boxes. 9.9 VLAN MAC Learning Use this screen to set the MAC address learning limit on per-port and per-VLAN basis. Click VLAN MAC Learning in the VLAN Status screen to display the screen as shown next. MES3500 Series User’s Guide... - Page 103 To specify a port, select the second choice and enter the number of the port to which this rule is applied. MAC Learning Select this option to enable the MAC address learning limit in this rule. MES3500 Series User’s Guide...
-
Page 104: Port-Based Vlan Setup
Note: In screens (such as IP Setup and Filtering) that require a VID, you must enter 1 as the VID. The port-based VLAN setup screen is shown next. The CPU management port forms a VLAN with all Ethernet ports. MES3500 Series User’s Guide... -
Page 105: Configure A Port-Based Vlan
The following screen shows users on a port-based, all-connected VLAN configuration. Figure 48 Advanced Application > VLAN > Port Based VLAN Setup (All Connected) The following screen shows users on a port-based, port-isolated VLAN configuration. MES3500 Series User’s Guide... - Page 106 Chapter 9 VLAN Figure 49 Advanced Application > VLAN: Port Based VLAN Setup (Port Isolation) MES3500 Series User’s Guide...
- Page 107 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 108: Static Mac Forward Setup
Chapter 19 on page 160 for more information on port security. Click Advanced Applications > Static MAC Forwarding in the navigation panel to display the configuration screen as shown. Figure 50 Advanced Application > Static MAC Forwarding MES3500 Series User’s Guide... - Page 109 This field displays the port where the MAC address shown in the next field will be forwarded. Delete Click Delete to remove the selected entry from the summary table. Cancel Click Cancel to clear the Delete check boxes. MES3500 Series User’s Guide...
-
Page 110: Static Multicast Forward Setup
3. Figure 53 shows frames being forwarded to ports 2 and 3 within VLAN group 4. Figure 51 No Static Multicast Forwarding Figure 52 Static Multicast Forwarding to A Single Port MES3500 Series User’s Guide... -
Page 111: Configuring Static Multicast Forwarding
Enter a multicast MAC address which identifies the multicast group. The last binary bit of the first octet pair in a multicast MAC address must be 1. For example, the first octet pair 00000001 is 01 and 00000011 is 03 in hexadecimal, so 01:00:5e:00:00:0A and 03:00:5e:00:00:27 are valid multicast MAC addresses. MES3500 Series User’s Guide... - Page 112 This field displays the port(s) within a identified VLAN group to which frames containing the specified multicast MAC address will be forwarded. Delete Click Delete to remove the selected entry from the summary table. Cancel Click Cancel to clear the Delete check boxes. MES3500 Series User’s Guide...
-
Page 113: Filtering
Make sure to select this check box to activate your rule. You may temporarily deactivate a rule without deleting it by deselecting this check box. Name Type a descriptive name (up to 32 printable ASCII characters) for this rule. This is for identification only. MES3500 Series User’s Guide... - Page 114 This field displays the VLAN group identification number. Delete Check the rule(s) that you want to remove in the Delete column and then click the Delete button. Cancel Click Cancel to clear the selected checkbox(es) in the Delete column. MES3500 Series User’s Guide...
-
Page 115: Spanning Tree Protocol
The slower the media, the higher the cost. Table 29 STP Path Costs DEFAULT VALUE DEFAULT VALUE LINK SPEED ALLOWED RANGE (SHORT) (LONG) Path Cost 10Mbps 2,000,000 1 to 200,000,000 Path Cost 100Mbps 200,000 1 to 200,000,000 MES3500 Series User’s Guide... -
Page 116: How Stp Works
MRSTP (Multiple RSTP) is ZyXEL’s proprietary feature that is compatible with RSTP and STP. With MRSTP, you can have more than one spanning tree on your Switch and assign port(s) to each tree. Each spanning tree operates independently with its own bridge information. MES3500 Series User’s Guide... -
Page 117: Multiple Stp
The following figure shows a network example where two VLANs are configured on the two switches. If the switches are using STP or RSTP, the link for VLAN 2 will be blocked as STP and RSTP allow only one link in the network and block the redundant link. MES3500 Series User’s Guide... -
Page 118: Mst Region
Devices that belong to the same MST region are configured to have the same MSTP configuration identification settings. These include the following parameters: • Name of the MST region • Revision level as the unique number for the MST region • VLAN-to-MST Instance mapping MES3500 Series User’s Guide... - Page 119 MST instance are members of the CIST. In an MSTP-enabled network, there is only one CIST that runs between MST regions and single spanning tree devices. A network may contain multiple MST regions and other network segments running RSTP. Figure 60 MSTP and Legacy RSTP Network Example MES3500 Series User’s Guide...
-
Page 120: Spanning Tree Protocol Status Screen
Use the Spanning Tree Configuration screen to activate one of the STP modes on the Switch. Click Configuration in the Advanced Application > Spanning Tree Protocol. Figure 62 Advanced Application > Spanning Tree Protocol > Configuration MES3500 Series User’s Guide... -
Page 121: Configure Rapid Spanning Tree Protocol
Click Cancel to begin configuring this screen afresh. 13.4 Configure Rapid Spanning Tree Protocol Use this screen to configure RSTP settings, see Section 13.1 on page 115 for more information on RSTP. Click RSTP in the Advanced Application > Spanning Tree Protocol screen. MES3500 Series User’s Guide... - Page 122 Bridge Priority determines the root bridge, which in turn determines Hello Time, Max Age and Forwarding Delay. Hello Time This is the time interval in seconds between BPDU (Bridge Protocol Data Units) configuration message generations by the root switch. The allowed range is 1 to 10 seconds. MES3500 Series User’s Guide...
- Page 123 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 124: Rapid Spanning Tree Protocol Status
Spanning Tree. Topology Changed This is the number of times the spanning tree has been reconfigured. Times Time Since Last This is the time since the spanning tree was last reconfigured. Change MES3500 Series User’s Guide... -
Page 125: Configure Multiple Rapid Spanning Tree Protocol
Bridge Priority determines the root bridge, which in turn determines Hello Time, Max Age and Forwarding Delay. Hello Time This is the time interval in seconds between BPDU (Bridge Protocol Data Units) configuration message generations by the root switch. The allowed range is 1 to 10 seconds. MES3500 Series User’s Guide... - Page 126 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 127: Multiple Rapid Spanning Tree Protocol Status
Spanning Tree. Topology Changed This is the number of times the spanning tree has been reconfigured. Times Time Since Last This is the time since the spanning tree was last reconfigured. Change MES3500 Series User’s Guide... -
Page 128: Configure Multiple Spanning Tree Protocol
13.8 Configure Multiple Spanning Tree Protocol To configure MSTP, click MSTP in the Advanced Application > Spanning Tree Protocol screen. Section 13.1.5 on page 117 for more information on MSTP. Figure 67 Advanced Application > Spanning Tree Protocol > MSTP MES3500 Series User’s Guide... - Page 129 Switch will be chosen as the root bridge within the spanning tree instance. Enter priority values between 0 and 61440 in increments of 4096 (thus valid values are 4096, 8192, 12288, 16384, 20480, 24576, 28672, 32768, 36864, 40960, 45056, 49152, 53248, 57344 and 61440). MES3500 Series User’s Guide...
-
Page 130: Multiple Spanning Tree Protocol Port Configuration
Check the rule(s) that you want to remove in the Delete column and then click the Delete button. Cancel Click Cancel to begin configuring this screen afresh. 13.8.1 Multiple Spanning Tree Protocol Port Configuration To configure MSTP ports, click Port in the Advanced Application > Spanning Tree Protocol > MSTP screen. MES3500 Series User’s Guide... - Page 131 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 132: Multiple Spanning Tree Protocol Status
This is the time (in seconds) the root switch will wait before changing states (that is, (second) listening to learning to forwarding). Cost to Bridge This is the path cost from the root port on this Switch to the root switch. MES3500 Series User’s Guide... - Page 133 This is the path cost from the root port in this MST instance to the regional root switch. Port ID This is the priority and number of the port on the Switch through which this Switch must communicate with the root of the MST instance. MES3500 Series User’s Guide...
-
Page 134: Bandwidth Control
Note: The sum of CIRs cannot be greater than or equal to the uplink bandwidth. 14.2 Bandwidth Control Setup Click Advanced Application > Bandwidth Control in the navigation panel to bring up the screen as shown next. MES3500 Series User’s Guide... - Page 135 Active Select this check box to activate egress rate limits on this port. Egress Rate Specify the maximum bandwidth allowed in kilobits per second (Kbps) for the out-going traffic flow on a port. MES3500 Series User’s Guide...
- Page 136 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 137: Broadcast Storm Control
You can specify limits for each packet type on each port. Click Advanced Application > Broadcast Storm Control in the navigation panel to display the screen as shown next. Figure 71 Advanced Application > Broadcast Storm Control MES3500 Series User’s Guide... - Page 138 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 139: Mirroring
Note: If the Switch is not acting as a source or destination device in remote port mirroring, you need to enable port VLAN trunking to allow traffic belonging to the specific RMirror VLAN to pass through it. Alternatively, you can configure a VLAN group for the mirrored traffic. MES3500 Series User’s Guide... - Page 140 But it cannot be the monitor port in local port mirroring. Table 42 Port Rules between Remote and Local Port Mirroring RMirror Source Mirrored Port Source Mirroring Destination Monitor Port Port Mirrored Local Port Port Monitor Mirroring Port MES3500 Series User’s Guide...
-
Page 141: Local Port Mirroring Screen
Note: Changes in this row are copied to all the ports as soon as you make them. Mirrored Select this option to mirror the traffic on a port. Direction Specify the direction of the traffic to mirror by selecting from the drop-down list box. Choices are Egress (outgoing), Ingress (incoming) and Both. MES3500 Series User’s Guide... -
Page 142: Rmirror-Source Screen
Use this screen to set the RMirror VLAN ID, configure the mirroring port and specify the traffic flow to be copied when the Switch is the source device in remote port mirroring. Click the RMirror-Source link in the Mirroring screen. The following screen opens. Figure 73 Advanced Application > Mirroring > RMirror-Source MES3500 Series User’s Guide... -
Page 143: Rmirror-Destination Screen
Use this screen to specify the RMirror VLAN ID and configure the monitor port when the Switch is the destination device in remote port mirroring. Click the RMirror-Destination link in the Mirroring screen. The following screen opens. MES3500 Series User’s Guide... - Page 144 Save link on the top navigation panel to save your changes to the nonvolatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 145: Link Aggregation
• You must connect all ports point-to-point to the same Ethernet switch and configure the ports for LACP trunking. • LACP only works on full-duplex links. • All ports in the same trunk group must have the same media type, speed, duplex mode and flow control settings. MES3500 Series User’s Guide... -
Page 146: Link Aggregation Id
These are the ports that are currently transmitting data as one logical link in this trunk Ports group. Port Priority and Port Number are 0 as it is the aggregator ID for the trunk group, not the individual port. MES3500 Series User’s Guide... -
Page 147: Link Aggregation Setting
LACP - if the ports are configured to join a trunk group via LACP. 17.4 Link Aggregation Setting Click Advanced Application > Link Aggregation > Link Aggregation Setting to display the screen shown next. See Section 17.1 on page 145 for more information on link aggregation. MES3500 Series User’s Guide... - Page 148 Select src-ip to distribute traffic based on the packet’s source IP address. Select dst-ip to distribute traffic based on the packet’s destination IP address. Select src-dst-ip to distribute traffic based on a combination of the packet’s source and destination IP addresses. MES3500 Series User’s Guide...
-
Page 149: Link Aggregation Control Protocol
Click in the Advanced Application > Link Aggregation > Link Aggregation Setting > LACP to display the screen shown next. See Section 17.2 on page 145 for more information on dynamic link aggregation. Figure 77 Advanced Application > Link Aggregation > Link Aggregation Setting > LACP MES3500 Series User’s Guide... -
Page 150: Static Trunking Example
Make your physical connections - make sure that the ports that you want to belong to the trunk group are connected to the same destination. The following figure shows ports 2-5 on switch A connected to switch B. MES3500 Series User’s Guide... - Page 151 Click Apply when you are done. Figure 79 Trunking Example - Configuration Screen EXAMPLE Your trunk group 1 (T1) configuration is now complete. MES3500 Series User’s Guide...
-
Page 152: Port Authentication
At the time of writing, IEEE 802.1x is not supported by all operating systems. See your operating system documentation. If your operating system does not support 802.1x, then you may need to install 802.1x client software. MES3500 Series User’s Guide... -
Page 153: Mac Authentication
Switch does not prompt the client for login credentials. The login credentials are based on the source MAC address of the client connecting to a port on the Switch along with a password configured specifically for MAC authentication on the Switch. MES3500 Series User’s Guide... -
Page 154: Port Authentication Configuration
Select a port authentication method in the screen that appears. Figure 82 Advanced Application > Port Authentication 18.2.1 Activate IEEE 802.1x Security Use this screen to activate IEEE 802.1x security. In the Port Authentication screen click 802.1x to display the configuration screen as shown. MES3500 Series User’s Guide... - Page 155 Specify if a subscriber has to periodically re-enter his or her username and password to stay connected to the port. Reauth-period Specify the length of time required to pass before a client has to re-enter his or her username and password to stay connected to the port. MES3500 Series User’s Guide...
-
Page 156: Guest Vlan
Figure 84 Guest VLAN Example VLAN 100 VLAN 102 Internet Use this screen to enable and assign a guest VLAN to a port. In the Port Authentication > 802.1x screen click Guest Vlan to display the configuration screen as shown. MES3500 Series User’s Guide... - Page 157 Select Multi-Secure to authenticate each user that connects to this port. Multi-Secure If you set Host-mode to Multi-Secure, specify the maximum number of users (between 1 and 5) that the Switch will authenticate on this port. MES3500 Series User’s Guide...
-
Page 158: Activate Mac Authentication
If you leave this field blank, then only the MAC address of the client is forwarded to the RADIUS server. Password Type the password the Switch sends along with the MAC address of a client for authentication with the RADIUS server. You can enter up to 32 printable ASCII characters. MES3500 Series User’s Guide... - Page 159 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 160: Port Security
By default, MAC address learning is still enabled even though the port security is not activated. 19.2 Port Security Setup Click Advanced Application > Port Security in the navigation panel to display the screen as shown. MES3500 Series User’s Guide... - Page 161 MAC addresses that may be learned on a port is reached. Click the Errdisable link to go to the Errdisable Recovery screen where you can set the port to become active automatically after a specified time interval. Port This field displays a port number. MES3500 Series User’s Guide...
- Page 162 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 163: Range Profile
Figure 88 Advanced Application > Range Profile 20.3 VLAN Range Profile Use this screen to view, manage and create VLAN range profiles. In the Range Profile screen, click VLAN Range to display the screen as shown. MES3500 Series User’s Guide... -
Page 164: Port Range Profile
Click Cancel to begin configuring this screen afresh. 20.4 Port Range Profile Use this screen to view, manage and create port range profiles. In the Range Profile screen, click Port Range to display the screen as shown. MES3500 Series User’s Guide... -
Page 165: Ip Address Range Profile
Click Cancel to begin configuring this screen afresh. 20.5 IP Address Range Profile Use this screen to view, manage and create IP address range profiles. In the Range Profile screen, click IP Address Range to display the screen as shown. MES3500 Series User’s Guide... -
Page 166: Socket-Port Range Profile
Click Cancel to begin configuring this screen afresh. 20.6 Socket-Port Range Profile Use this screen to view, manage and create socket port range profiles. In the Range Profile screen, click Socket-port Range to display the screen as shown. MES3500 Series User’s Guide... - Page 167 This field displays whether this profile is in use by a feature, such as classifier. Delete Check the profile(s) that you want to remove in the Delete column and then click the Delete button. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 168: Classifier
(or policy) to act upon the traffic that matches the rules. To configure policy rules, refer to Chapter 22 on page 174. Click Advanced Application > Classifier in the navigation panel to display the configuration screen as shown. MES3500 Series User’s Guide... - Page 169 Table 59 Advanced Application > Classifier LABEL DESCRIPTION Active Select this option to enable this rule. Name Enter a descriptive name for this rule for identifying purposes. Layer 2 Specify the fields below to configure a layer-2 classifier. MES3500 Series User’s Guide...
- Page 170 Select Prefix to enter a source IP address and specify the address prefix by entering the number Address of ones in the subnet mask. Otherwise, select Range and choose a predefined source IP address range profile. MES3500 Series User’s Guide...
-
Page 171: Viewing And Editing Classifier Configuration
Table 60 Classifier: Summary Table LABEL DESCRIPTION Rule This field displays how many rules have been configured on the Switch. Usage Index This field displays the index number of the rule. Click an index number to edit the rule. MES3500 Series User’s Guide... -
Page 172: Classifier Example
Table 62 Common IP Ports PORT NUMBER PORT NAME Telnet SMTP HTTP POP3 21.4 Classifier Example The following screen shows an example of configuring a classifier that identifies all traffic from MAC address 00:50:ba:ad:4f:81 on port 2. MES3500 Series User’s Guide... - Page 173 Figure 95 Classifier: Example EXAMPLE After you have configured a classifier, you can configure a policy to define action(s) on the classified traffic flow. See Chapter 22 on page 174 for information on configuring a policy rule. MES3500 Series User’s Guide...
-
Page 174: Policy Rule
Resources can then be allocated according to the DSCP values and the configured policies. 22.2 Configuring Policy Rules You must first configure a classifier in the Classifier screen. Refer to Section 21.2 on page 168 more information. MES3500 Series User’s Guide... - Page 175 This field displays the active classifier(s) you configure in the Classifier screen. Select the classifier(s) to which this policy rule applies. To select more than one classifier, press [SHIFT] and select the choices at the same time. MES3500 Series User’s Guide...
-
Page 176: Viewing And Editing Policy Configuration
22.3 Viewing and Editing Policy Configuration To view a summary of the classifier configuration, scroll down to the summary table at the bottom of the Policy screen. To change the settings of a rule, click a number in the Index field. MES3500 Series User’s Guide... -
Page 177: Policy Example
Click Cancel to clear the Delete check boxes. 22.4 Policy Example The figure below shows an example Policy screen where you configure a policy to limit bandwidth on a traffic flow classified using the Example classifier (refer to Section 21.4 on page 172). MES3500 Series User’s Guide... - Page 178 Chapter 22 Policy Rule Figure 98 Policy Example EXAMPLE MES3500 Series User’s Guide...
-
Page 179: Queuing Method
The weights range from 1 to 15 and the actual guaranteed bandwidth is calculated as follows: (Weight -1) x 10 KB If the weight setting is 5, the actual quantum guaranteed to the associated queue would be as follows: x 10KB = 160 KB MES3500 Series User’s Guide... -
Page 180: Weighted Round Robin Scheduling (Wrr)
This queuing mechanism is highly efficient in that it divides any available bandwidth across the different traffic queues and returns to queues that have not yet emptied. 23.2 Configuring Queuing Click Advanced Application > Queuing Method in the navigation panel. Figure 99 Advanced Application > Queuing Method MES3500 Series User’s Guide... - Page 181 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 182: Vlan Stacking
VLAN group. The service provider can separate these two VLANs within its network by adding tag 37 to distinguish customer A and tag 48 to distinguish customer B at edge device 1 and then stripping those tags at edge device 2 as the data frames leave the network. MES3500 Series User’s Guide... -
Page 183: Vlan Stacking Port Roles
Note: Static VLAN Tx Tagging MUST be enabled on a port where you choose Tunnel Port. 24.3 VLAN Tag Format A VLAN tag (service provider VLAN stacking or customer IEEE 802.1Q) consists of the following three fields. Table 66 VLAN Tag Format Type Priority MES3500 Series User’s Guide... -
Page 184: Frame Format
Length and type of Ethernet frame (SP)TPID (Service Provider) Tag Protocol IDentifier Data Frame data VLAN ID Frame Check Sequence 24.4 Configuring VLAN Stacking Click Advanced Applications > VLAN Stacking to display the screen as shown. MES3500 Series User’s Guide... - Page 185 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 186: Port-Based Q-In-Q
Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide... -
Page 187: Selective Q-In-Q
Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. Index This is the number of the selective VLAN stacking rule. MES3500 Series User’s Guide... - Page 188 This is the service provider’s priority level in the packets. Delete Check the rule(s) that you want to remove in the Delete column and then click the Delete button. Cancel Click Cancel to clear the Delete check boxes. MES3500 Series User’s Guide...
-
Page 189: Multicast
The Switch forwards multicast traffic destined for multicast groups (that it has learned from IGMP snooping or that you have manually configured) to ports that are members of that group. IGMP snooping generates no additional network traffic, allowing you to significantly reduce multicast traffic passing through your Switch. MES3500 Series User’s Guide... -
Page 190: Igmp Snooping And Vlans
This field displays IP multicast group addresses. 25.2.1 Multicast Setting Click the Multicast Setting link in the Advanced Application > Multicast screen to display the screen as shown. See Section 25.1 on page 189 for more information on multicasting. MES3500 Series User’s Guide... - Page 191 IGMP group membership entry if it does not receive report messages from the port. 802.1p Select a priority level (0-7) to which the Switch changes the priority in outgoing IGMP Priority control packets. Otherwise, select No-Change to not replace the priority. MES3500 Series User’s Guide...
- Page 192 This helps speed up the leave process. This defines how many seconds the Switch waits for an IGMP report before removing an IGMP snooping membership entry when an IGMP leave message is received on this port from a host. MES3500 Series User’s Guide...
-
Page 193: Igmp Snooping Vlan
Click Advanced Application > Multicast in the navigation panel. Click the Multicast Setting link and then the IGMP Snooping VLAN link to display the screen as shown. See Section 25.1.4 on page 190 for more information on IGMP Snooping VLAN. MES3500 Series User’s Guide... - Page 194 Cancel Click Cancel to reset the fields to your previous configuration. Clear Click this to clear the fields. Index This is the number of the IGMP snooping VLAN entry in the table. MES3500 Series User’s Guide...
-
Page 195: Igmp Filtering Profile
Type the ending multicast IP address for a range of IP addresses that you want to belong to the IGMP filter profile. If you want to add a single multicast IP address, enter it in both the Start Address and End Address fields. MES3500 Series User’s Guide... -
Page 196: Mvr Overview
In MVR, a source port is a port on the Switch that can send and receive multicast traffic in a multicast VLAN while a receiver port can only receive multicast traffic. Once configured, the Switch maintains a forwarding table that matches the multicast stream to the associated multicast group. MES3500 Series User’s Guide... -
Page 197: Mvr Modes
Note: You can create up to five multicast VLANs and up to 256 multicast rules on the Switch. Note: Your Switch automatically creates a static VLAN (with the same VID) when you create a multicast VLAN in this screen. MES3500 Series User’s Guide... - Page 198 Select Dynamic to send IGMP reports to all MVR source ports in the multicast VLAN. Select Compatible to set the Switch not to send IGMP reports. Port This field displays the port number on the Switch. MES3500 Series User’s Guide...
-
Page 199: Mvr Group Configuration
Configure MVR IP multicast group address(es) in the Group Configuration screen. Click Group Configuration in the MVR screen. Note: A port can belong to more than one multicast VLAN. However, IP multicast group addresses in different multicast VLANs cannot overlap. MES3500 Series User’s Guide... -
Page 200: Mvr Configuration Example
The following figure shows a network example where ports 1, 2 and 3 on the Switch belong to VLAN 1. In addition, port 7 belongs to the multicast group with VID 200 to receive multicast traffic (the MES3500 Series User’s Guide... - Page 201 To set the Switch to forward the multicast group traffic to the subscribers, configure multicast group settings in the Group Configuration screen. The following figure shows an example where two multicast groups (News and Movie) are configured for the multicast VLAN 200. MES3500 Series User’s Guide...
- Page 202 Chapter 25 Multicast Figure 114 MVR Group Configuration Example-1 EXAMPLE Figure 115 MVR Group Configuration Example-2 EXAMPLE MES3500 Series User’s Guide...
-
Page 203: Aaa
By storing user profiles locally on the Switch, your Switch is able to authenticate and authorize users without interacting with a network AAA server. However, there is a limit on the number of users you may authenticate in this way (See Chapter 40 on page 303). MES3500 Series User’s Guide... -
Page 204: Radius And Tacacs
RADIUS servers and Section 26.3 on page 212 for RADIUS attributes utilized by the authentication and accounting features on the Switch. Click on the RADIUS Server Setup link in the AAA screen to view the screen as shown. MES3500 Series User’s Guide... - Page 205 RADIUS server and the Switch. This key is not sent over the network. This key must be the same on the external RADIUS server and the Switch. Note that as you type a password, the screen displays an asterisk (*) for each character you type. MES3500 Series User’s Guide...
-
Page 206: Tacacs+ Server Setup
Use this screen to configure your TACACS+ server settings. See Section 26.1.2 on page 204 more information on TACACS+ servers. Click on the TACACS+ Server Setup link in the Authentication and Accounting screen to view the screen as shown. MES3500 Series User’s Guide... - Page 207 TACACS+ server and the Switch. This key is not sent over the network. This key must be the same on the external TACACS+ server and the Switch. Note that as you type a password, the screen displays an asterisk (*) for each character you type. MES3500 Series User’s Guide...
-
Page 208: Aaa Setup
Click Cancel to begin configuring this screen afresh. 26.2.3 AAA Setup Use this screen to configure authentication, authorization and accounting settings on the Switch. Click on the AAA Setup link in the AAA screen to view the screen as shown. MES3500 Series User’s Guide... - Page 209 Method 2 and Method 3 fields. Select local to have the Switch check the access privilege configured for local authentication. Select radius or tacacs+ to have the Switch check the access privilege via the external servers. MES3500 Series User’s Guide...
- Page 210 If you don’t select this and you have two accounting servers set up, then the Switch sends information to the first accounting server and if it doesn’t get a response from the accounting server then it tries the second accounting server. MES3500 Series User’s Guide...
-
Page 211: Vendor Specific Attribute
• Vendor-Type: A vendor specified attribute, identifying the setting you want to modify. • Vendor-data: A value you want to assign to the setting. Note: Refer to the documentation that comes with your RADIUS server on how to configure VSAs for users authenticating via the RADIUS server. MES3500 Series User’s Guide... -
Page 212: Tunnel Protocol Attribute
Remote Authentication Dial-In User Service (RADIUS) attributes are data used to define specific authentication, and accounting elements in a user profile, which is stored on the RADIUS server. This section lists the RADIUS attributes supported by the Switch. MES3500 Series User’s Guide... -
Page 213: Attributes Used For Authentication
- This value is set to Ethernet(15) on the Switch. Calling-Station-Id Frame-MTU EAP-Message State Message-Authenticator 26.3.2 Attributes Used for Accounting The following sections list the attributes sent from the Switch to the RADIUS server when performing authentication. MES3500 Series User’s Guide... - Page 214 NAS-IP-Address Service-Type Calling-Station-Id Acct-Status-Type Acct-Delay-Time Acct-Session-Id Acct-Authentic Acct-Session-Time Acct-Terminate-Cause MES3500 Series User’s Guide...
- Page 215 Acct-Delay-Time Acct-Session-Id Acct-Authentic Acct-Input-Octets Acct-Output-Octets Acct-Session-Time Acct-Input-Packets Acct-Output-Packets Acct-Terminate-Cause Acct-Input-Gigawords Acct-Output-Gigawords MES3500 Series User’s Guide...
-
Page 216: Ip Source Guard
Every port is either a trusted port or an untrusted port for DHCP snooping. This setting is independent of the trusted/untrusted setting for ARP inspection. You can also specify the maximum number for DHCP packets that each port (trusted or untrusted) can receive each second. MES3500 Series User’s Guide... - Page 217 Each binding consists of 72 bytes, a space, and another checksum that is used to validate the binding when it is read. If the calculated checksum is not equal to the checksum in the file, that binding and all others after it are ignored. MES3500 Series User’s Guide...
-
Page 218: Arp Inspection Overview
In this example, computer B tries to establish a connection with computer A. Computer X is in the same broadcast domain as computer A and intercepts the ARP request for computer A. Then, computer X does the following things: MES3500 Series User’s Guide... - Page 219 ARP inspection so that the Switch has enough time to build the binding table. Enable ARP inspection on each VLAN. Configure trusted and untrusted ports, and specify the maximum number of ARP packets that each port can receive per second. MES3500 Series User’s Guide...
-
Page 220: Ip Source Guard
If you try to create a static binding with the same MAC address and VLAN ID as an existing static binding, the new static binding replaces the original one. To open this screen, click Advanced Application > IP Source Guard > Static Binding. MES3500 Series User’s Guide... - Page 221 Delete Check the entry(ies) that you want to remove and then click the Delete button to remove the selected entry(ies) from the summary table. Cancel Click this to clear the Delete check boxes above. MES3500 Series User’s Guide...
-
Page 222: Dhcp Snooping
This section displays the current settings for the DHCP snooping database. You can configure them in the DHCP Snooping Configure screen. See Section 27.5 on page 224. Agent URL This field displays the location of the DHCP snooping database. MES3500 Series User’s Guide... - Page 223 This field displays the number of times the Switch was unable to update the bindings in the DHCP snooping database. Database detail First successful access This field displays the first time the Switch accessed the DHCP snooping database for any reason. MES3500 Series User’s Guide...
-
Page 224: Dhcp Snooping Configure
TFTP server so that they are still available after a restart. To open this screen, click Advanced Application > IP Source Guard > DHCP Snooping > Configure. MES3500 Series User’s Guide... - Page 225 Enter how long (10-65535 seconds) the Switch waits to update the DHCP snooping interval database the first time the current bindings change after an update. Once the next update is scheduled, additional changes in current bindings are automatically included in the next update. MES3500 Series User’s Guide...
-
Page 226: Dhcp Snooping Port Configure
You can also specify the maximum number for DHCP packets that each port (trusted or untrusted) can receive each second. To open this screen, click Advanced Application > IP Source Guard > DHCP Snooping > Configure > Port. Figure 127 Advanced Application > IP Source Guard > DHCP Snooping Port Configure MES3500 Series User’s Guide... -
Page 227: Dhcp Snooping Vlan Configure
Switch relays to a DHCP server for each VLAN. To open this screen, click Advanced Application > IP Source Guard > DHCP Snooping > Configure > VLAN. Figure 128 Advanced Application > IP Source Guard > DHCP Snooping VLAN Configure MES3500 Series User’s Guide... -
Page 228: Dhcp Snooping Vlan Port Configure
Advanced Application > IP Source Guard > IPv4 Source Guard Setup > DHCP Snooping > Configure > VLAN > Port. Figure 129 Advanced Application > IP Source Guard > DHCP Snooping > Configure > VLAN > Port MES3500 Series User’s Guide... -
Page 229: Arp Inspection Status
MAC address filter to block traffic from the source MAC address and source VLAN ID of the unauthorized ARP packet. To open this screen, click Advanced Application > IP Source Guard > ARP Inspection. Figure 130 Advanced Application > IP Source Guard > ARP Inspection Status MES3500 Series User’s Guide... -
Page 230: Arp Inspection Vlan Status
Use this section to specify the VLANs you want to look at in the section below. range Enabled VLAN Select this to look at all the VLANs on which ARP inspection is enabled in the section below. MES3500 Series User’s Guide... -
Page 231: Arp Inspection Log Status
This field displays the source VLAN ID of the ARP packet. Sender Mac This field displays the source MAC address of the ARP packet. Sender IP This field displays the source IP address of the ARP packet. MES3500 Series User’s Guide... -
Page 232: Arp Inspection Configure
Switch stores records of discarded ARP packets and global settings for the ARP inspection log. To open this screen, click Advanced Application > IP Source Guard > ARP Inspection > Configure. Figure 133 Advanced Application > IP Source Guard > ARP Inspection Configure MES3500 Series User’s Guide... -
Page 233: Arp Inspection Port Configure
Use this screen to specify whether ports are trusted or untrusted ports for ARP inspection. You can also specify the maximum rate at which the Switch receives ARP packets on each untrusted port. To open this screen, click Advanced Application > IP Source Guard > ARP Inspection > Configure > Port. MES3500 Series User’s Guide... -
Page 234: Arp Inspection Vlan Configure
Use this screen to enable ARP inspection on each VLAN and to specify when the Switch generates log messages for receiving ARP packets from each VLAN. To open this screen, click Advanced Application > IP Source Guard > ARP Inspection > Configure > VLAN. MES3500 Series User’s Guide... - Page 235 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click this to reset the values in this screen to their last-saved values. MES3500 Series User’s Guide...
-
Page 236: Loop Guard
The following figure shows port N on switch A connected to switch B. Switch B is in loop state. When broadcast or multicast packets leave port N and reach switch B, they are sent back to port N on A as they are rebroadcast from B. MES3500 Series User’s Guide... - Page 237 Figure 139 Loop Guard - Network Loop Note: After resolving the loop problem on your network you can re-activate the disabled port via the web configurator (see Section 8.6 on page 85) or via commands (see the Ethernet Switch CLI Reference Guide). MES3500 Series User’s Guide...
-
Page 238: Loop Guard Setup
Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide... -
Page 239: Vlan Mapping
3 will be forwarded in the individual VLAN network respectively (such as VLAN 10). Figure 141 VLAN mapping example Service Provider Network Port 3 29.2 Enabling VLAN Mapping Click Advanced Application and then VLAN Mapping in the navigation panel to display the screen as shown. MES3500 Series User’s Guide... -
Page 240: Configuring Vlan Mapping
Click Cancel to begin configuring this screen afresh. 29.3 Configuring VLAN Mapping Click the VLAN Mapping Configure link in the VLAN Mapping screen to display the screen as shown. Use this screen to enable and edit the VLAN mapping rule(s). MES3500 Series User’s Guide... - Page 241 This is the direction of the traffic to which the rule is applied. Delete Check the rule(s) that you want to remove in the Delete column and then click the Delete button. Cancel Click Cancel to clear the Delete check boxes. MES3500 Series User’s Guide...
-
Page 242: Layer 2 Protocol Tunneling
To emulate a point-to-point topology between two customer switches at different sites, such as A and B, you can enable protocol tunneling on edge switches 1 and 2 for PAgP (Port Aggregation Protocol), LACP or UDLD (UniDirectional Link Detection). MES3500 Series User’s Guide... -
Page 243: Layer-2 Protocol Tunneling Mode
Incoming encapsulated layer-2 protocol packets received on a tunnel port are decapsulated and sent to an access port. 30.2 Configuring Layer 2 Protocol Tunneling Click Advanced Application > Layer 2 Protocol Tunneling in the navigation panel to display the screen as shown. MES3500 Series User’s Guide... - Page 244 (local and remote) networks. Select this option to have the Switch tunnel VTP (VLAN Trunking Protocol) packets so that all customer switches can use consistent VLAN configuration through the service provider’s network. MES3500 Series User’s Guide...
- Page 245 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 246: Sflow
For example, you can use it to know which IP address or which type of traffic caused network congestion. Figure 147 sFlow Application sFlow Agent sFlow Collector 31.2 sFlow Port Configuration Click Advanced Application > sFlow in the navigation panel to display the screen as shown. MES3500 Series User’s Guide... - Page 247 Enter a number (N) from 256 to 65535. The Switch captures every one out of N packets for this port and creates sFlow datagram. poll-interval Specify a time interval (from 20 to 120 in seconds) the Switch waits before sending the sFlow datagram and packet counters for this port to the collector. MES3500 Series User’s Guide...
-
Page 248: Sflow Collector Configuration
Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to reset the fields to your previous configuration. MES3500 Series User’s Guide... - Page 249 This field displays port number the Switch uses to send sFlow datagram to the collector. Delete Check the rule(s) that you want to remove in the Delete column and then click the Delete button. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 250: Pppoe
There are two types of sub-option: “Agent Circuit ID Sub-option” and “Agent Remote ID Sub- option”. They have the following formats. Table 107 PPPoE IA Circuit ID Sub-option Format: User-defined String SubOpt Length Value 0x01 String (1 byte) (1 byte) (63 bytes) MES3500 Series User’s Guide... -
Page 251: Port State
DHCP snooping or ARP inspection. You can also specify the agent sub-options (circuit ID and remote ID) that the Switch adds to PADI and PADR packets from PPPoE clients. MES3500 Series User’s Guide... -
Page 252: Pppoe Screen
Use this screen to configure the Switch to give a PPPoE termination server additional subscriber information that the server can use to identify and authenticate a PPPoE client. Click Advanced Application > PPPoE > Intermediate Agent in the navigation panel to display the screen as shown. MES3500 Series User’s Guide... - Page 253 Select a delimiter to separate the identifier-string, slot ID, port number and/or VLAN ID from each other. You can use a pound key (#), semi-colon (;), period (.), comma (,), forward slash (/) or space. MES3500 Series User’s Guide...
-
Page 254: Pppoe Ia Per-Port
Use this row to make the setting the same for all ports. Use this row first and then make adjustments on a port-by-port basis. Note: Changes in this row are copied to all the ports as soon as you make them. MES3500 Series User’s Guide... -
Page 255: Pppoe Ia Per-Port Per-Vlan
32.3.2 PPPoE IA Per-Port Per-VLAN Use this screen to configure PPPoE IA settings that apply to a specific VLAN on a port. Click the VLAN link in the Intermediate Agent > Port screen to display the screen as shown. MES3500 Series User’s Guide... - Page 256 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 257: Pppoe Ia For Vlan
Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide... -
Page 258: Error Disable
33.3 Error Disable Screen Use this screen to configure error disable related settings. Click Advanced Application > Errdisable in the navigation panel to open the following screen. MES3500 Series User’s Guide... -
Page 259: Error-Disable Status
Click the Click here link next to Errdisable Status in the Advanced Application > Errdisable screen to display the screen as shown. Figure 156 Advanced Application > Errdisable > Errdisable Status MES3500 Series User’s Guide... -
Page 260: Cpu Protection Configuration
Advanced Application > Errdisable screen to display the screen as shown. Note: After you configure this screen, make sure you also enable error detection for the specific control packets in the Advanced Application > Errdisable > Errdisable Detect screen. MES3500 Series User’s Guide... -
Page 261: Error-Disable Detect Configuration
Click the Click Here link next to Errdisable Detect link in the Advanced Application > Errdisable screen to display the screen as shown. MES3500 Series User’s Guide... -
Page 262: Error-Disable Recovery Configuration
Use this screen to configure the Switch to automatically undo an action after the error is gone. Click the Click Here link next to Errdisable Recovery in the Advanced Application > Errdisable screen to display the screen as shown. MES3500 Series User’s Guide... - Page 263 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 264: Private Vlan
Note: Make sure you keep at least one port in the promiscuous port list for a VLAN with private VLAN enabled. Otherwise, this VLAN is blocked from the whole network. 34.2 Configuring Private VLAN Click Advanced Application > Private VLAN in the navigation panel to display the screen as shown. MES3500 Series User’s Guide... - Page 265 This is the VLAN to which this rule is applied. Delete Check the rule(s) that you want to remove in the Delete column and then click the Delete button. Cancel Click Cancel to clear the Delete check boxes. MES3500 Series User’s Guide...
-
Page 266: Static Route
R2 to send traffic to an SNMP trap server on network N2. Figure 162 Static Routing Overview SNMP Telnet 35.2 Configuring Static Routing Click IP Application > Static Routing in the navigation panel to display the screen as shown. MES3500 Series User’s Guide... - Page 267 This field displays the descriptive name for this route. This is for identification purposes only. Destination This field displays the IP network address of the final destination. Address Subnet Mask This field displays the subnet mask for this destination. MES3500 Series User’s Guide...
- Page 268 Switch that will forward the packet to the destination. Metric This field displays the cost of transmission for routing purposes. Delete Click Delete to remove the selected entry from the summary table. Cancel Click Cancel to clear the Delete check boxes. MES3500 Series User’s Guide...
-
Page 269: Differentiated Services
The boundary node (A in Figure 165) in a DiffServ network classifies (marks with a DSCP value) the incoming packets into different traffic flows (Platinum, Gold, Silver, Bronze) based on the configured marking rules. A network administrator can then apply MES3500 Series User’s Guide... -
Page 270: Two Rate Three Color Marker Traffic Policing
In the color-aware mode, packets are marked based on both existing color and evaluation against the PIR and CIR. If the packets do not match any of colors, then the packets proceed unchanged. MES3500 Series User’s Guide... -
Page 271: Trtcm-Color-Blind Mode
Loss Loss Loss 36.3 Activating DiffServ Activate DiffServ to apply marking rules or IEEE 802.1p priority mapping on the selected port(s). Click IP Application > DiffServ in the navigation panel to display the screen as shown. MES3500 Series User’s Guide... -
Page 272: Configuring 2-Rate 3 Color Marker Settings
Use this screen to configure TRTCM settings. Click the 2-rate 3 Color Marker link in the DiffServ screen to display the screen as shown next. Note: You cannot enable both TRTCM and Bandwidth Control at the same time. MES3500 Series User’s Guide... - Page 273 Note: Changes in this row are copied to all the ports as soon as you make them. Active Select this to activate TRTCM on the port. Commit Rate Specify the Commit Information Rate (CIR) for this port. Peak Rate Specify the Peak Information Rate (PIR) for this port. MES3500 Series User’s Guide...
-
Page 274: Configuring Dscp Profiles
This field displays the DSCP value to use for packets with low packet loss priority in this profile. Yellow This field displays the DSCP value to use for packets with medium packet loss priority in this profile. MES3500 Series User’s Guide... -
Page 275: Dscp-To-Ieee 802.1P Priority Settings
Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide... -
Page 276: Dhcp
DHCPv4 to open screens where you can enable and configure DHCPv4 relay settings and create option 82 profiles. Click the link next to DHCPv6 to open a screen where you can configure DHCPv6 relay settings. MES3500 Series User’s Guide... -
Page 277: Dhcpv4 Status
Relay Agent Information. This helps provide authentication about the source of the requests. The DHCP server can then provide an IP address based on this information. Please refer to RFC 3046 for more details. MES3500 Series User’s Guide... -
Page 278: Dhcpv4 Option 82 Profile
Use this screen to create DHCPv4 option 82 profiles. Click IP Application > DHCP > DHCPv4 in the navigation panel and click the Option 82 Profile link to display the screen as shown. Figure 174 IP Application > DHCP > DHCPv4 > Option 82 Profile MES3500 Series User’s Guide... -
Page 279: Configuring Dhcpv4 Global Relay
Click Cancel to clear the selected checkbox(es) in the Delete column. 37.4.3 Configuring DHCPv4 Global Relay Configure global DHCP relay in this screen. Click IP Application > DHCP > DHCPv4 in the navigation panel and click the Global link to display the screen as shown. MES3500 Series User’s Guide... -
Page 280: Dhcpv4 Global Relay Port Configure
Use this screen to apply a different DHCP option 82 profile to certain ports on the Switch. To open this screen, click IP Application > DHCP > DHCPv4 > Global > Port. Figure 176 IP Application > DHCP > DHCPv4 > Global > Port MES3500 Series User’s Guide... -
Page 281: Global Dhcpv4 Relay Configuration Example
The follow figure shows a network example where the Switch is used to relay DHCP requests for the VLAN1 and VLAN2 domains. There is only one DHCP server that services the DHCP clients in both domains. MES3500 Series User’s Guide... -
Page 282: Configuring Dhcpv4 Vlan Settings
Note: You must set up a management IP address for each VLAN that you want to configure DHCP settings for on the Switch. See Section 8.5 on page 83 information on how to set up management IP addresses for VLANs. MES3500 Series User’s Guide... -
Page 283: Dhcpv4 Vlan Port Configure
37.4.7 DHCPv4 VLAN Port Configure Use this screen to apply a different DHCP option 82 profile to certain ports in a VLAN. To open this screen, click IP Application > DHCP > DHCPv4 > VLAN > Port. MES3500 Series User’s Guide... -
Page 284: Example: Dhcpv4 Relay For Two Vlans
37.4.8 Example: DHCPv4 Relay for Two VLANs The following example displays two VLANs (VIDs 1 and 2) for a campus network. Two DHCP servers are installed to serve each VLAN. The system is set up to forward DHCP requests from the MES3500 Series User’s Guide... -
Page 285: Dhcpv6 Relay
The DHCPv6 server copies the interface-ID option from the Relay-Forward message into the Relay-Reply message and sends it to the relay agent. The interface-ID should not change even after the relay agent restarts. MES3500 Series User’s Guide... - Page 286 Select the entry(ies) that you want to remove in the Delete column, then click the Delete button to remove the selected entry(ies) from the table. Cancel Click this to clear the check boxes in the Delete column. MES3500 Series User’s Guide...
-
Page 287: Dhcpv6 Options Profile
DHCPv6 server. Subscriber-ID Select slot-port to have the Switch add the number of port that the DHCPv6 client is connected to. Enter a string of up to 64 printable characters to be carried in the subscriber-ID option. MES3500 Series User’s Guide... -
Page 288: Dhcpv6 Port Configure
Options Profile Select a pre-defined DHCPv6 options profile that the Switch applies to the specified port(s) in this VLAN. The profile you select here has priority over the one you select in the DHCP > DHCPv6 screen. MES3500 Series User’s Guide... - Page 289 Select the entry(ies) that you want to remove in the Delete column, then click the Delete button to remove the selected entry(ies) from the table. Cancel Click this to clear the check boxes in the Delete column. MES3500 Series User’s Guide...
-
Page 290: Arp Learning
LAN. When the Switch receives the ARP reply from host B, it updates its ARP table and also forwards host A’s ICMP request to host B. After the Switch gets the MES3500 Series User’s Guide... - Page 291 In Gratuitous-ARP learning mode, the Switch updates its ARP table with either an ARP reply or a gratuitous ARP request. ARP-Request When the Switch is in ARP-Request learning mode, it updates the ARP table with both ARP replies, gratuitous ARP requests and ARP requests. MES3500 Series User’s Guide...
-
Page 292: Arp Learning
ICMP Request ICMP Reply ICMP Reply 38.2 ARP Learning Use this screen to configure each port’s ARP learning mode. Click IP Application > ARP Learning in the navigation panel to display the screen as shown next. MES3500 Series User’s Guide... - Page 293 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 294: Maintenance
Click Click Here to see the Tech-Support screen. You can set CPU and memory thresholds for log reports and download related log reports for issue analysis. Log reports include CPU history and utilization, crash and memory. MES3500 Series User’s Guide... -
Page 295: Load Factory Default
(Config 1) or configuration two (Config 2) when you reboot. You can restart the Switch immediately or set the Switch to restart at a specific time. Click Management > Maintenance > Reboot System to view the screen as shown next. MES3500 Series User’s Guide... - Page 296 Click Apply to save your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. MES3500 Series User’s Guide...
-
Page 297: Firmware Upgrade
Type the path and file name of the configuration file you wish to restore in the File Path text box or click Browse to locate it. After you have specified the file, click Restore. "config" is the name of MES3500 Series User’s Guide... -
Page 298: Backup A Configuration File
Switch. The Tech Support menu eases your effort in obtaining reports and it is also available in CLI command by typing “Show tech-support” command. Click Management > Maintenance > Tech-Support to see the following screen. MES3500 Series User’s Guide... - Page 299 RAM and you will need to save it, otherwise it will be lost when the Switch is shutdown or during power outage. Memory Usage Click Download to see the memory usage log report. This log report is stored in flash memory. MES3500 Series User’s Guide...
-
Page 300: Ftp Command Line
39.9.1.1 Example FTP Commands ftp> put firmware.bin ras-0 This is a sample FTP session showing the transfer of the computer file "firmware.bin" to the Switch. ftp> get config config.cfg MES3500 Series User’s Guide... -
Page 301: Ftp Command Line Procedure
Transfer files in either ASCII (plain text format) or in binary mode. Configuration and firmware files should be transferred in binary mode. Initial Remote Specify the default remote directory (path). Directory Initial Local Directory Specify the default local directory (path). MES3500 Series User’s Guide... -
Page 302: Ftp Restrictions
• FTP service is disabled in the Service Access Control screen. • The IP address(es) in the Remote Management screen does not match the client IP address. If it does not match, the Switch will disconnect the FTP session immediately. MES3500 Series User’s Guide... -
Page 303: Access Control
TCP/IP-based devices. SNMP is used to exchange management information between the network management system (NMS) and a network element (NE). A manager station can manage and monitor the Switch through the network via SNMP version one (SNMPv1), SNMP version 2c or MES3500 Series User’s Guide... -
Page 304: Snmp V3 And Security
Security can be further enhanced by encrypting the SNMP messages sent from the managers. Encryption protects the contents of the SNMP messages. When the contents of the SNMP messages are encrypted, only the intended recipients can read them. MES3500 Series User’s Guide... -
Page 305: Supported Mibs
TemperatureEventOn 1.3.6.1.4.1.890.1.5.8.68.27.2.1 This trap is sent when the temperature goes above or below the normal operating range. 1.3.6.1.4.1.890.1.5.8.57.27.2.1 1.3.6.1.4.1.890.1.5.8.80.27.2.1 TemperatureEventClear 1.3.6.1.4.1.890.1.5.8.68.27.2.2 This trap is sent when the temperature returns to the normal operating range. 1.3.6.1.4.1.890.1.5.8.57.27.2.2 1.3.6.1.4.1.890.1.5.8.80.27.2.2 MES3500 Series User’s Guide... - Page 306 1.3.6.1.4.1.890.1.5.8.80.130.4.1 This trap is sent when the Switch ceases the errdisableRecoveryTrap 1.3.6.1.4.1.890.1.5.8.68.130.4.2 action taken on a port, such as shutting 1.3.6.1.4.1.890.1.5.8.57.130.4.2 down the port or discarding packets on the port, after the specified recovery interval. 1.3.6.1.4.1.890.1.5.8.80.130.4.2 MES3500 Series User’s Guide...
- Page 307 1.3.6.1.4.1.890.1.5.8.80.27.2.1 power and transceiver supply voltage) is above or below a factory set normal range. transceiverddmiEventClear 1.3.6.1.4.1.890.1.5.8.68.27.2.2 This trap is sent when all device operating parameters return to the normal operating 1.3.6.1.4.1.890.1.5.8.57.27.2.2 range. 1.3.6.1.4.1.890.1.5.8.80.27.2.2 MES3500 Series User’s Guide...
- Page 308 1.3.6.1.2.1.81.0.1 This trap is sent when a path to a target changes. traceRouteTestFailed 1.3.6.1.2.1.81.0.2 This trap is sent when a traceroute test fails. traceRouteTestCompleted 1.3.6.1.2.1.81.0.3 This trap is sent when a traceroute test is completed. MES3500 Series User’s Guide...
-
Page 309: Configuring Snmp
1.3.111.2.802.1.1.8.0.1 The trap is sent when the Switch detects a connectivity fault. 40.3.4 Configuring SNMP Click Management > Access Control > SNMP to view the screen as shown. Use this screen to configure your SNMP settings. MES3500 Series User’s Guide... - Page 310 The Trap Community string is only used by SNMP managers using SNMP version 2c or lower. Note that as you type a password, the screen displays an asterisk (*) for each character you type. Trap Destination Use this section to configure where to send SNMP traps from the Switch. MES3500 Series User’s Guide...
-
Page 311: Configuring Snmp Trap Group
Setting screen. Use the rest of the screen to select which traps the Switch sends to that SNMP manager. Type Select the categories of SNMP traps that the Switch is to send to the SNMP manager. MES3500 Series User’s Guide... -
Page 312: Enabling/Disabling Sending Of Snmp Traps On A Port
Use this row only if you want to make some of the settings the same for all ports. Use this row first to set the common settings and then make adjustments on a port-by-port basis. Note: Changes in this row are copied to all the ports as soon as you make them. MES3500 Series User’s Guide... -
Page 313: Configuring Snmp User
User Note: Use the username and password of the login accounts you specify in this screen to Information create accounts on the SNMP v3 manager. Username Specify the username of a login account on the Switch. MES3500 Series User’s Guide... - Page 314 This field displays the authentication algorithm used for SNMP communication with this user. Privacy This field displays the encryption method used for SNMP communication with this user. Group This field displays the SNMP group to which this user belongs. MES3500 Series User’s Guide...
-
Page 315: Setting Up Login Accounts
• A non-administrator (username is something other than admin) is someone who can view but not configure Switch settings. Click Management > Access Control > Logins to view the screen as shown next. Figure 200 Management > Access Control > Logins MES3500 Series User’s Guide... -
Page 316: Ssh Overview
Figure 201 SSH Communication Example 40.6 How SSH works The following table summarizes how a secure connection is established between two remote hosts. MES3500 Series User’s Guide... -
Page 317: Ssh Implementation On The Switch
Your Switch supports SSH version 2 using RSA authentication and three encryption methods (DES, 3DES and Blowfish). The SSH server is implemented on the Switch for remote management and file transfer on port 22. Only one SSH connection is allowed at a time. MES3500 Series User’s Guide... -
Page 318: Requirements For Using Ssh
HTTP connection requests from a web browser go to port 80 (by default) on the Switch’s WS (web server). Figure 203 HTTPS Implementation Note: If you disable HTTP in the Service Access Control screen, then the Switch blocks all HTTP connection attempts. MES3500 Series User’s Guide... -
Page 319: Https Example
If that is the case, click Continue to this website (not recommended) to proceed to the web configurator login screen. Figure 205 Security Certificate Warning (Internet Explorer 7 or 8) MES3500 Series User’s Guide... -
Page 320: Mozilla Firefox Warning Messages
40.9.2 Mozilla Firefox Warning Messages When you attempt to access the Switch HTTPS server, a This Connection is Unstructed screen may display. If that is the case, click I Understand the Risks and then the Add Exception... button. MES3500 Series User’s Guide... - Page 321 Chapter 40 Access Control Figure 208 Security Alert (Mozilla Firefox) Confirm the HTTPS server URL matches. Click Confirm Security Exception to proceed to the web configurator login screen. Figure 209 Security Alert (Mozilla Firefox) EXAMPLE MES3500 Series User’s Guide...
-
Page 322: The Main Screen
“trusted computer(s)” for each service in the Remote Management screen (discussed later). Click Management > Access Control > Service Access Control to view the screen as shown. MES3500 Series User’s Guide... -
Page 323: Remote Management
Click Management > Access Control > Remote Management to view the screen as shown next. You can specify a group of one or more “trusted computers” from which an administrator may use a service to manage the Switch. Click Access Control to return to the Access Control screen. MES3500 Series User’s Guide... - Page 324 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 325: Diagnostic
Type the IP address of a device that you want to ping in order to test a connection. Click Ping to have the Switch ping the IP address (in the field to the left). Ethernet Port Test Enter a port number and click Port Test to perform an internal loopback test. MES3500 Series User’s Guide... -
Page 326: Syslog
Debug: The message is intended for debug-level purposes. 42.2 Syslog Setup Click Management > Syslog in the navigation panel to display this screen. The syslog feature sends logs to an external syslog server. Use this screen to configure the device’s system logging settings. MES3500 Series User’s Guide... -
Page 327: Syslog Server Setup
Click Cancel to begin configuring this screen afresh. 42.3 Syslog Server Setup Click Management > Syslog > Syslog Server Setup to view the screen as shown next. Use this screen to configure a list of external syslog servers. MES3500 Series User’s Guide... - Page 328 This field displays the severity level of the logs that the device is to send to this syslog server. Delete Select an entry’s Delete check box and click Delete to remove the entry. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 329: Cluster Management
The switches being managed by the cluster manager switch. In the following example, switch A in the basement is the cluster manager and the other switches on the upper floors of the building are cluster members. MES3500 Series User’s Guide... -
Page 330: Cluster Management Status
Figure 216 Clustering Application Example 43.2 Cluster Management Status Click Management > Cluster Management in the navigation panel to display the following screen. Note: A cluster can only have one manager. Figure 217 Management > Cluster Management: Status MES3500 Series User’s Guide... -
Page 331: Cluster Member Switch Management
Index hyperlink from the list of members to go to that cluster member switch's web configurator home page. This cluster member web configurator home page and the home page that you'd see if you accessed it directly are different. MES3500 Series User’s Guide... - Page 332 Figure 218 Cluster Management: Cluster Member Web Configurator Screen example example 43.2.1.1 Uploading Firmware to a Cluster Member Switch You can use FTP to upload firmware to a cluster member switch through the cluster manager switch as shown in the following example. MES3500 Series User’s Guide...
-
Page 333: Clustering Management Configuration
This is the cluster member switch’s configuration file name as seen in the config cluster manager switch. 43.3 Clustering Management Configuration Use this screen to configure clustering management. Click Management > Cluster Management > Configuration to display the next screen. MES3500 Series User’s Guide... - Page 334 Click Apply to save your changes to the Switch’s run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. MES3500 Series User’s Guide...
- Page 335 This is the cluster member switch’s model name. Remove Select this checkbox and then click the Remove button to remove a cluster member switch from the cluster. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 336: Mac Table
• If the Switch has already learned the port for this MAC address, but the destination port is the same as the port it came in on, then it filters the frame. Figure 221 MAC Table Flowchart MES3500 Series User’s Guide... -
Page 337: Viewing The Mac Table
Select MAC to display and arrange the data according to MAC address. Select VID to display and arrange the data according to VLAN group. Select PORT to display and arrange the data according to port number. MES3500 Series User’s Guide... - Page 338 This is the VLAN group to which this frame belongs. Port This is the port where the above MAC address is forwarded. Type This shows whether the MAC address is dynamic (learned by the Switch) or static (manually entered in the Static MAC Forwarding screen). MES3500 Series User’s Guide...
-
Page 339: Arp Table
MAC address that replied. 45.2 The ARP Table Screen Click Management > ARP Table in the navigation panel to open the following screen. Use the ARP table to view IP-to-MAC address mapping(s) and remove specific dynamic ARP entries. MES3500 Series User’s Guide... - Page 340 This field displays the port to which the device connects. CPU means this learned IP address is the Switch’s management IP address. Type This shows whether the MAC address is dynamic (learned by the Switch) or static (manually entered in the Static MAC Forwarding screen). MES3500 Series User’s Guide...
-
Page 341: Configure Clone
This chapter shows you how you can copy the settings of one port onto other ports. 46.1 Configure Clone Cloning allows you to copy the basic and advanced settings from a source port to a destination port or ports. Click Management > Configure Clone to open the following screen. MES3500 Series User’s Guide... - Page 342 2, 4, 6 indicates that ports 2, 4 and 6 are the destination ports. • 2-6 indicates that ports 2 through 6 are the destination ports. Basic Setting Select which port settings (you configured in the Basic Setting menus) should be copied to the destination port(s). MES3500 Series User’s Guide...
- Page 343 Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Cancel Click Cancel to begin configuring this screen afresh. MES3500 Series User’s Guide...
-
Page 344: Troubleshooting
Turn the Switch off and on (in DC models or if the DC power supply is connected in AC/DC models). Disconnect and re-connect the power adaptor or cord to the Switch (in AC models or if the AC power supply is connected in AC/DC models). If the problem continues, contact the vendor. MES3500 Series User’s Guide... -
Page 345: Switch Access And Login
I cannot see or access the Login screen in the web configurator. Make sure you are using the correct IP address. • The default management IP address is 192.168.1.1. • If you changed the IP address, use the new IP address. MES3500 Series User’s Guide... - Page 346 Pop-up Windows, JavaScripts and Java Permissions In order to use the web configurator you need to allow: • Web browser pop-up windows from your device. • JavaScripts (enabled by default). • Java permissions (enabled by default). MES3500 Series User’s Guide...
-
Page 347: Switch Configuration
Click Save at the top right corner of the web configurator to save the configuration permanently. See also Section 39.3 on page 295 for more information about how to save your configuration. MES3500 Series User’s Guide... -
Page 348: Appendix A Customer Support
• Brief description of the problem and the steps you took to solve it. Corporate Headquarters (Worldwide) Taiwan • ZyXEL Communications Corporation • http://www.zyxel.com Asia China • ZyXEL Communications (Shanghai) Corp. ZyXEL Communications (Beijing) Corp. ZyXEL Communications (Tianjin) Corp. • http://www.zyxel.cn India • ZyXEL Technology India Pvt Ltd • http://www.zyxel.in Kazakhstan •... - Page 349 • ZyXEL Singapore Pte Ltd. • http://www.zyxel.com.sg Taiwan • ZyXEL Communications Corporation • http://www.zyxel.com/tw/zh/ Thailand • ZyXEL Thailand Co., Ltd • http://www.zyxel.co.th Vietnam • ZyXEL Communications Corporation-Vietnam Office • http://www.zyxel.com/vn/vi Europe Austria • ZyXEL Deutschland GmbH • http://www.zyxel.de Belarus • ZyXEL BY • http://www.zyxel.by...
- Page 350 Appendix A Customer Support Belgium • ZyXEL Communications B.V. • http://www.zyxel.com/be/nl/ • http://www.zyxel.com/be/fr/ Bulgaria • ZyXEL България • http://www.zyxel.com/bg/bg/ Czech Republic • ZyXEL Communications Czech s.r.o • http://www.zyxel.cz Denmark • ZyXEL Communications A/S • http://www.zyxel.dk Estonia • ZyXEL Estonia • http://www.zyxel.com/ee/et/ Finland •...
- Page 351 • ZyXEL Communications Poland • http://www.zyxel.pl Romania • ZyXEL Romania • http://www.zyxel.com/ro/ro Russia • ZyXEL Russia • http://www.zyxel.ru Slovakia • ZyXEL Communications Czech s.r.o. organizacna zlozka • http://www.zyxel.sk Spain • ZyXEL Communications ES Ltd • http://www.zyxel.es Sweden • ZyXEL Communications • http://www.zyxel.se Switzerland •...
- Page 352 Appendix A Customer Support • http://www.zyxel.ch/ Turkey • ZyXEL Turkey A.S. • http://www.zyxel.com.tr • ZyXEL Communications UK Ltd. • http://www.zyxel.co.uk Ukraine • ZyXEL Ukraine • http://www.ua.zyxel.com Latin America Argentina • ZyXEL Communication Corporation • http://www.zyxel.com/ec/es/ Brazil • ZyXEL Communications Brasil Ltda.
- Page 353 Appendix A Customer Support North America • ZyXEL Communications, Inc. - North America Headquarters • http://www.zyxel.com/us/en/ Oceania Australia • ZyXEL Communications Corporation • http://www.zyxel.com/au/en/ Africa South Africa • Nology (Pty) Ltd. • http://www.zyxel.co.za MES3500 Series User’s Guide...
-
Page 354: Appendix B Common Services
File Transfer Program, a program to enable fast transfer of files, including large files that may not be possible by e-mail. H.323 1720 NetMeeting uses this protocol. MES3500 Series User’s Guide... - Page 355 REXEC Remote Execution Daemon. RLOGIN Remote Login. RTELNET Remote Telnet. RTSP TCP/UDP The Real Time Streaming (media control) Protocol (RTSP) is a remote control for multimedia on the Internet. SFTP Simple File Transfer Protocol. MES3500 Series User’s Guide...
- Page 356 TFTP Trivial File Transfer Protocol is an Internet file transfer protocol similar to FTP, but uses the UDP (User Datagram Protocol) rather than TCP (Transmission Control Protocol). VDOLIVE 7000 Another videoconferencing solution. MES3500 Series User’s Guide...
-
Page 357: Legal Information
The contents of this publication may not be reproduced in any part or as a whole, transcribed, stored in a retrieval system, translated into any language, or transmitted in any form or by any means, electronic, mechanical, magnetic, optical, chemical, photocopying, manual, or otherwise, without the prior written permission of ZyXEL Communications Corporation. Published by ZyXEL Communications Corporation. All rights reserved. -
Page 358: Safety Warnings
- Install the power supply before connecting the power cable to the power supply. - Unplug the power cable before removing the power supply. - If the system has multiple sources of power, disconnect power from the system by unplugging all power cables from the power supply. MES3500 Series User’s Guide... - Page 359 återvinningsstation. Vid tiden för kasseringen bidrar du till en bättre miljö och mänsklig hälsa genom att göra dig av med den på ett återvinningsställe. MES3500 Series User’s Guide...
- Page 360 Appendix C Legal Information Environmental Product Declaration MES3500 Series User’s Guide...
-
Page 361: Appendix C Legal Information
North American products. Trademarks ZyNOS (ZyXEL Network Operating System) and ZON (ZyXEL One Network)are registered trademarks of ZyXEL Communications, Inc. Other trademarks mentioned in this publication are used for identification purposes only and may be properties of their respective owners. -
Page 362: Index
CIST (Common and Internal Spanning Tree) ARP (Address Resolution Protocol) Class of Service (CoS) ARP inspection 216, 218 classifier 168, 171 and MAC filter and QoS configuring editing syslog messages example trusted ports overview ARP-Reply setup 168, 171 ARP-Request viewing authentication MES3500 Series User’s Guide... - Page 363 DSCP (DiffServ Code Point) current date dynamic link aggregation current time customer support egress port errdisable status daylight saving time Error Disable default Ethernet settings error disable DHCP control packets configuration options MES3500 Series User’s Guide...
- Page 364 IGMP leave timeout GARP fast mormal GARP (Generic Attribute Registration Protocol) IGMP snooping GARP terminology GARP timer 82, 89 IGMP throttling general setup ingress port getting help installation Gigabit ports desktop GMT (Greenwich Mean Time) MES3500 Series User’s Guide...
- Page 365 Layer 2 protocol tunneling, see L2PT transfer type LEDs viewing limit MAC address learning MAC-based VLAN Link Aggregate Control Protocol (LACP) maintenance link aggregation configuration backup dynamic current configuration ID information firmware setup 147, 149 MES3500 Series User’s Guide...
- Page 366 PHB (Per-Hop Behavior) network example ping, test connection path cost policy 175, 177 port priority and classifier revision level and DiffServ MSTP (Multiple Spanning Tree Protocol) configuration MTU (Multi-Tenant Unit) example overview multicast rules 802.1 priority MES3500 Series User’s Guide...
- Page 367 Rapid Spanning Tree Protocol, See RSTP. power voltage reboot power wires load configuration PPPoE IA reboot system trusted ports Reference Guide, CLI untrusted ports reflector port MES3500 Series User’s Guide...
- Page 368 MIB bridge ID 124, 127 and security bridge priority authentication 122, 125 configuration 121, 125, 128 communities designated bridge management model forwarding delay 123, 126 manager Hello BPDU Hello Time 122, 124, 125, 127 network components MES3500 Series User’s Guide...
- Page 369 PPPoE IA temperature indicator user profiles terminal emulation time current time zone Time (RFC-868) Vendor Specific Attribute See VSA time server ventilation time service protocol 88, 91, 92, 184 format number of possible VIDs trademarks priority frame MES3500 Series User’s Guide...
- Page 370 VLAN stacking 182, 184 configuration example frame format port roles 183, 185 port-based Q-in-Q priority selective Q-in-Q VLAN Trunking Protocol, see VTP VLAN, protocol based, See protocol based VLAN VLAN, subnet based, See subnet based VLANs VT100 MES3500 Series User’s Guide...
Need help?
Do you have a question about the MES3500 series and is the answer not in the manual?
Questions and answers