1. Manuals
  2. Brands
  3. i3 International Manuals
  4. Switch
  5. Cortex S243
  6. User manual

i3 International Cortex S243 User Manual

Poe managed switch for video surveillance networks
Hide thumbs
Table of Contents

Advertisement

Quick Links

S243

USER MANUAL

PoE Managed Switch for video surveillance networks
www.i3international.com
1.866.840.0004
Rev:170215
CANADA 780 Birchmount Road,
Unit 16, Scarborough
ON, M1K5H4
U.S.A. 4450 Witmer Industrial Estates,
Unit 4, Niagara Falls,
NY, 14305

Advertisement

Table of Contents
loading

Related Manuals for i3 International Cortex S243

Summary of Contents for i3 International Cortex S243

  • Page 1: User Manual

    S243 USER MANUAL PoE Managed Switch for video surveillance networks Rev:170215 www.i3international.com CANADA 780 Birchmount Road, U.S.A. 4450 Witmer Industrial Estates, Unit 16, Scarborough Unit 4, Niagara Falls, 1.866.840.0004 ON, M1K5H4 NY, 14305...

  • Page 2: Safety Warning

    Safety Warning Purpose This manual gives specific information on how to operate and use the management functions of this switch. Audience This manual is intended for use by netowrk administrators who are responsible for operating and maintaining network equipments; consequently, it assumes a basic working knowledge of general switch functions, the Internet Protocol (IP), IEEE 802.3at/af Power over Ethernet Standard and Simple Network Management Protocol(SNMP).

  • Page 3: Table Of Contents

    Table of Contents Safety Warning ............................1 Purpose ............................... 1 Audience ............................. 1 FCC Warning............................1 CE Warning ............................1 Chapter 1 INTRODUCTION ......................... 8 Product Overview ..........................8 Specifications ............................8 Package Contents..........................11 Chapter 2 HARDWARE DESCRIPTION ....................12 Front Panel ............................
  • Page 4 Access Management ......................... 34 SNMP............................35 SNMP System ........................... 35 SNMP TRAP ..........................36 SNMP Communities ........................38 SNMP Users ..........................38 SNMP GROUP ..........................40 SNMP VIEWS ..........................41 SNMP Access ..........................41 SNMP Trap Event Severity ......................43 RMON ...............................
  • Page 5 IPMC Address Entry ........................77 MVR ..............................78 IGMP Snooping ......................... 80 IGMP Snooping VLAN Configuration ................... 81 Port Filtering Profile ........................83 MLD Snooping .......................... 83 MLD Snooping VLAN ......................... 85 Port Group Filtering ........................86 Link Layer Discovery Protocol (LLDP) ....................87 LLDP-MED Configuration ......................
  • Page 6 sFLOW ............................127 STMP Configuration ......................... 129 Chapter 4 Monitor ........................ 131 System ............................131 Information ..........................131 IP Status ..........................132 System Log ..........................133 System Detailed Log ....................... 134 System Overview ........................134 Green Ethernet ..........................135 Port Power Savings ......................... 135 Ports ...............................
  • Page 7 LACP System Status ........................ 161 LACP Port Status ........................161 LACP Port Statistics ......................... 162 Loop Protection ..........................163 Spanning Tree ..........................163 Bridge Status .......................... 163 Spanning Tree Port Status ....................... 164 Spanning Tree Port Statistics ....................165 MVR ..............................165 Statistics ..........................
  • Page 8 Factory Defaults ..........................192 Configuration ........................... 193 Save startup-config ......................... 193 Download..........................193 Upload ............................ 194 Activate ........................... 194 Delete ............................. 195 Server Report ..........................195 Chapter 7 Device Management System (DMS) ..................196 Management ..................... Error! Bookmark not defined. DMS Mode ..................

  • Page 9: Chapter 1 Introduction

    INTRODUCTION Product Overview Introducing i3 International’s new 24 port Power over Ethernet switch. The S243 is a next generation L2 Managed PoE switch offering a full suite of L2 features, additional RJ45/SFP combo uplink connections, better PoE functionality and usability including advanced L3 features such as Static Route that delivers better cost performance and lower total cost of ownership.
  • Page 10 IGMP packets in order to reduce load on the multicast router MLD v1/v2 Snooping Delivers IPv6 multicast packets only to the required receivers Device Management System (DMS) Graphical Monitoring  Topology view: Support intuitive way to configure and manage switches and devices with visual relations ...
  • Page 11  Port based  802.1p VLAN priority based Classification  IPv4/IPv6 precedence / DSCP based  Differentiated Services (DiffServ)  Classification and re-marking ACLs  Ingress policer Rate Limiting  Egress shaping and rate control  Per port Management DHCP Server Support DHCP server to assign IP to DHCP clients Zero Touch Upgrade Upgrade single switch automatically when you get notification...

  • Page 12: Package Contents

    Package Contents Before you begin instalation, please verify that your package contains the following items: • 24 port S243 PoE Switch • One AC Power Cord • One User’s Manual (CD disk) • One QSG (Quick Start Guide (hard copy) •...

  • Page 13: Chapter 2 Hardware Description

    Chapter 2 HARDWARE DESCRIPTION This chapter primarily presents the hardware of the PoE switch, physical dimenstions and functional overview is described. Front Panel The Front Panel of the PoE Web Smart Switch consists of 24-port gigabit ethernet port plus 2-port gigabit SFP open slots.The LED indicators are also located on the Front Panel.

  • Page 14: Installing Equipment

    (purchased separately) is installed in a slot and has a valid link on the port, the associated RJ45 port is disabled. The following table shows a list of transceiver types which have been tested with the switch. Please contact i3 International Tech Support if you have any questions with the SFP transceivers.

  • Page 15: Making Network Connections

    To install a SFP transceiver:  Consider network and cabling requirements to select an appropriate SFP transceiver type.  Insert the transceiver with the optical connector facing outward and the slot connector facing down. NOTE: that SFP transceivers are keyed so they can only be installed in one orientation. ...

  • Page 16: Cable Labelling And Connection Records

    1000Mbps Gigabit Ethernet Collision Domain Table Maximum 1000Base-T Gigabit Ethernet Cable Length Cable Type Maximum cable length Connector Category 5, 5e or 6 100-ohm UTP or STP 100m (328 ft.) RJ-45 Maximum 1000BASE-SX Gigabit Fiber Cable Lengths Fiber Size Fiber Bandwidth Maximum Cable Length Connector 62.5/125 micron...

  • Page 17: Troubleshooting Chart

    Non-standard cables. • Non-standard and miss-wired cables may cause network collisions and other network problems, and can seriously impair network performance. Use a new correctly-wired cable. A category 5 cable tester is a recommended tool for every 100Base-TX and 1000Base-T network installation. Improper Network Topologies.

  • Page 18: Chapter 3 Web Management

    Chapter 3 WEB MANAGEMENT This chapter provides the entire Web Smart PoE switch features, along with a detailed description of how to configure each feature via tre web interface. It is very important to note that all changes made to the swtich need to be saved to the configuration of the switch by clicking the “Save”...

  • Page 19: System Configuration

    System Configuration This section describes the basic configuration tasks which includes the System Information and any switch management including setting the Time, Account, IP, Syslog and NTP settings. System Information The system can be identified by configuring the contact information, name, and location of the switch. To configure the system’s contact information through the web interface: •...

  • Page 20: Ip Address

    IP ADDRESS The IPv4 address for the switch could be obtained via DHCP Server for VLAN 1. To manually configure an address, you need to change the switch's default settings to values that are compatible with your network. You may also need to establish a default gateway between the switch and management stations that exist on another network segment.
  • Page 21 IP Address Configuration Parameters: Items Description Mode Configure whether the IP stack should act as a Host or a Router. In Host mode, IP traffic between interfaces will not be routed. In Router mode traffic is routed between all interfaces. DNS Server This setting controls the DNS name resolution done by te switch.

  • Page 22: Network Time Protocol (Ntp)

    Network Time Protocol (NTP) NTP is Network Time Protocol and is used to sync the network time based on Greenwich Mean Time (GMT). Select, the NTP mode and select a built-in NTP time server or manually specify a user-defined NTP server as well as Time Zone. The switch will sync the time after pressing the <Apply>...
  • Page 23 Time Configuration Parameters: Items Description Clock Source There are two modes for configuring the Clock Source. Select “Use Local Settings”: The Clock Source from Local Time. Select “Use NTP Server”: The Clock will Source from NTP Server. System Date Show the current time of the system. The year of system date limits between 2011 and 2037...

  • Page 24: Log

    Parameters System Date: Time Zone Lists various Time Zones worldwide. Select appropriate Time Zone from the drop down and click Apply to set. Acronym User can set the acronym of the time zone. This is a User configurable acronym to identify the time zone.

  • Page 25: Green Ethernet

    Green Ethernet EEE is a power saving option that reduces the power usage when there is low or no traffic utilization. EEE works by powering down circuits when there is no traffic. When a port gets data to be transmitted all circuits are powered up. The time it takes to power up the circuits is named wakeup time.

  • Page 26: Ports Configuration

    PerfectReach Cable length power savings enabled. PerfectReach works by determining the cable length and lowering the power for ports with short cables. Controls whether EEE is enabled for this switch port. For maximizing power savings, the circuit isn't started once data is ready for transport from a port, but is instead queued until a burst of data is ready to be transmitted.

  • Page 27: Ports Description

    Auto – Port auto negotiating speed with the link partner and selects the highest speed that is compatible with the link partner . 10Mbps HDX - Forces the cu port in 10Mbps half-duplex mode. 10Mbps FDX - Forces the cu port in 10Mbps full duplex mode. 100Mbps HDX - Forces the cu port in 100Mbps half-duplex mode.

  • Page 28: Dhcp

    Port Description Parameters: Items Description Port This is the logical port number for this row. Description Enter up to 47 characters to be a descriptive name for identifying this port. DHCP This section describes how to configure the DHCP Snooping parameters of the switch. The DHCP Snooping can prevent attackers from adding their own DHCP servers to the network.

  • Page 29: Dhcp Server Excluded Ip

    DHCP Server Mode Parameters: Items Description Mode Configure the operation mode per system. Possible modes are: Enabled: Enable DHCP server per System. Disabled: Disable DHCP server per System. VLAN Range Indicate the VLAN range in which DHCP server is enabled or disabled. The first VLAN ID must be smaller than or equal to the second VLAN ID.

  • Page 30: Dhcp Server Pool

    DHCP Server Pool This page manages DHCP pools. According to the DHCP pool, the DCHP server will allocate IP addresses and deliver configuration parameters to the DHCP client. To configure DHCP Server Pool in the web interface:  Click Configuration / DHCP / Server / Pool ...

  • Page 31: Dchp Snooping

    DCHP Snooping DHCP Snooping is used to block intruders on untrusted ports of the switch when they attempt to intervene by injecting a bogus DHCP reply packet to a legitimate conversation between the DHCP client and the server. This section describes how to configure the DHCP Snooping parameters of the switch.

  • Page 32: Security

    DHCP Relay Configuration Parameters: Items Description Relay Mode Indicates the DHCP relay mode operation. Possible modes are: Enabled: Enable DHCP relay mode operation. When DHCP relay mode operation is enabled, the agent forwards and transfers DHCP messages between the clients and the server when they are not in the same subnet domain.

  • Page 33: Security Users

    Security Users This page provides an overview of the current users. Currently the only way to login as another user on the web server is to close and reopen the browser. To configure Security Users in the web interface:  Click Configuration / Security / Switch / Users ...

  • Page 34: Security Privilege Level

    Security Privilege Level The page provides an overview of the privilege levels. The switch provides user set Account, Aggregation, Diagnostics, EEE, GARP, GVRP, IP, IPMC, Snooping, LACP, LLDP, LLDP MED, MAC Table, MRP, MVR, MVRP, Maintenance, Mirroring, POE, Ports, Private VLANs, QoS, SMTP, SNMP, Security, Spanning Tree, System Trap, Event, VCL, VLANs, Voice, and VLAN Privilege levels from 1 to 15.

  • Page 35: Authentication Method

    Authentication Method This page describes how to configure a user with an authenticated method when logged into the switch via one of the management client interfaces. To configure an Authentication Method in the web interface  Specify the Client (Console, telnet, SSH, http) which you want to monitor. ...

  • Page 36: Snmp

    Access Management Configuration Parameters: Items Description Mode Indicates the access management mode operation. Possible modes are: Enabled: Enable access management mode operation. Disabled: Disable access management mode operation. VLAN ID Indicates the VLAN ID for the access management entry. Delete Check to delete the entry.

  • Page 37: Snmp Trap

    SNMP System Configuration Parameters: Items Description Mode Indicates the SNMP System mode operation. Possible modes are: Enabled: Enable SNMP mode operation. Disabled: Disable SNMP mode operation. Version Indicates the SNMP supported version. Possible versions are: SNMP v1: Set SNMP supported version 1. SNMP v2c: Set SNMP supported version 2c.
  • Page 38 SNMP TRAP Configuration Parameters: Items Description Trap Mode Indicates the Trap mode operation. Possible modes are: Enabled: Enable trap mode operation. Disabled: Disable trap mode operation. Trap Destination Configure trap destination on this page Configurations Name Indicates the trap configuration’s name. Indicates the trap destination’s name. Enable Indicates the trap destination mode operation.

  • Page 39: Snmp Communities

    Trap Security Engine ID Indicates the SNMP trap security engine ID. SNMPv3 sends traps and informs using USM for authentication and privacy. A unique engine ID for these traps and informs is needed. When "Trap Probe Security Engine ID" is enabled, the ID will be probed automatically. Otherwise, the ID specified in this field is used.
  • Page 40 SNMP Users Configuration Parameters: Items Description Delete Check to delete the entry. It will be deleted during the next save. Engine ID An octet string identifying the engine ID that this entry should belong to. The string must contain an even number (in hexadecimal format) with number of digits between 10 and 64, but all-zeros and all-'F's are not allowed.

  • Page 41: Snmp Group

    Privacy Protocol Indicates the privacy protocol that this entry should belong to. Possible privacy protocols are: None: No privacy protocol. DES: An optional flag to indicate that this user uses DES authentication protocol. Privacy Password A string identifying the privacy password phrase. The allowed string length is 8 to 32, and the allowed content is ASCII characters from 33 to 126.

  • Page 42: Snmp Views

    SNMP VIEWS The page is used to configure SNMPv3 view. The Entry index keys are OID Subtree and View Name. To create a new view account, please click <Add new Entry> button, and enter the view information then check <Apply>. The max group number is 28.
  • Page 43 SNMP Access Configuration Parameters: Items Description Delete Check to delete the entry. It will be deleted during the next save. Group Name A string identifying the group name that this entry should belong to. The allowed string length is 1 to 32, and the allowed content is ASCII characters from 33 to 126.

  • Page 44: Snmp Trap Event Severity

    SNMP Trap Event Severity This page displays and configures the current trap event severity configurations. To configure the Trap Even Severity in the web interface:  Click Configuration / Security / Switch / SNMP / Trap Event Severity.  Scroll to select the Group Name and Severity Level. ...

  • Page 45: Rmon History

    RMON Statistics Configuration Parameters: Items Description Delete Click to delete the entry. It will be deleted during the next save. Indicates the index of the entry. The range is from 1 to 65535. Data Source Indicates the port ID which wants to be monitored. If in a stacking switch, the value must add 1000*(switch ID-1), for example, if the port is switch 3 port 5, the value is 2005.

  • Page 46: Rmon Alarm

    RMON History Configuration Parameters: Items Description Delete Click to delete the entry. It will be deleted during the next save. Indicates the index of the entry. The range is from 1 to 65535 Data Source Indicates the port ID which wants to be monitored. If in stacking switch, the value must add 1000*(switch ID-1), for example, if the port is switch 3 port 5, the value is 2005.

  • Page 47: Rmon Event

    Sample Type The method of sampling the selected variable and calculating the value to be compared against the thresholds, possible sample types are: Absolute: Get the sample directly. Delta: Calculate the difference between samples (default). Value The value of the statistic during the last sampling period. Startup Alarm The method of sampling the selected variable and calculating the value to be compared against the thresholds, possible sample types are:...
  • Page 48 To Configure a Port Configuration of Limit Control in the web interface:  Click Configuration / Security / Network / Limit Control  Select “Enabled” in the Mode of Port Configuration.  Specify the maximum number of MAC addresses in the Limit of Port Configuration. ...

  • Page 49: Network Access Server (Nas)

    aging enabled, a timer is started once the end-host gets secured. When the timer expires, the switch starts looking for frames from the end-host, and if such frames are not seen within the next Aging Period, the end-host is assumed to be disconnected, and the corresponding resources are freed on the switch. Port The table has one row for each port on the selected switch and a number of columns, which are: Configuration...
  • Page 50 Network Access Server Configuration Parameters: Items Description Mode Indicates if NAS is globally enabled or disabled on the switch. If globally disabled, all ports are allowed forwarding of frames. Re Authentication If checked, successfully authenticated supplicants/clients are Re Authenticated after the Enabled interval specified by the Re Authentication Period.
  • Page 51 Aging Period This setting applies to the following modes, i.e. modes using the Port Security functionality to secure MAC addresses: Single 802.1X Multi 802.1X MAC-Based Authentication When the NAS module uses the Port Security module to secure MAC addresses, the Port Security module needs to check for activity on the MAC address in question at regular intervals and free resources if no activity is seen within a given period of time.
  • Page 52 Maximum Re The number of times the switch transmits an EAPOL Request Identity frame without response Autherization Count before considering entering the Guest VLAN is adjusted with this setting. The value can only be changed if the Guest VLAN option is globally enabled. Valid values are in the range [1;...
  • Page 53 Multi 802.1X In port-based 802.1X authentication, once a supplicant is successfully authenticated on a port, the whole port is opened for network traffic. This allows other clients connected to the port (for instance through a hub) to piggy-back on the successfully authenticated client and get network access even though they really aren't authenticated.
  • Page 54 must follow this rule: All 8 octets in the attribute’s value must be identical and consist of ASCII characters in the range 0 – 3, which translates into the desired QoS Class in the rang [0; 3]. Radius-Assigned When RADIUS-Assigned VLAN is both globally enabled and enabled (checked) for a given port, VLAN Enabled the switch reacts to VLAN ID information carried in the RADIUS Access-Accept packet transmitted by the RADIUS server when a supplicant is successfully authenticated.

  • Page 55: Access Control List (Acl)

    Port State The current state of the port. It can undertake one of the following values: Globally Disabled: NAS is globally disabled. Link Down: NAS is globally enabled, but there is no link on the port. Authorized: The port is in Force Authorized or a single-supplicant mode and the supplicant is authorized.

  • Page 56: Acl Rate Limiters

    ALC Ports Configuration Parameters: Items Description Port The logical port for the settings contained n the same row. Policy ID Select the policy to apply to this port.The allowed values are 1 through 8.The default value is 1. Action Select whether forwarding is permitted ("Permit") or denied ("Deny"). The default value is "Permit". Rate Limiter ID Select which rate limiter to apply on this port.

  • Page 57: Access Control List

    ALC Rate Limiter Configuration Parameters: Items Description Rate Limiter The rate limiter ID for the settings contained in the same row. Rate The allowed values are: 0-3276700 in pps or 0, 100, 200, 300... 1000000 in kbps. Unit Specify the rate unit. The allowed values are: pps: packets per second. Kbps: Kilobits per second.
  • Page 58 Access Control List Configuration Parameters: Items Description Ingress Port Indicates the ingress port of the ACE. Possible values are: Any: The ACE will match any ingress port. Policy: The ACE will match ingress ports with a specific policy. Port: The ACE will match a specific ingress port. Policy / Bitmask Indicates the policy number and bitmask of the ACE.

  • Page 59: Ip Source Guard Configuration

    DMAC Filter Specify the destination MAC filter for this ACE. Any: No DMAC filter is specified. (DMAC filter status is "don't-care".) MC: Frame must be multicast. BC: Frame must be broadcast. UC: Frame must be unicast. Specific: To filter a specific destination MAC address with this ACE, choose this value. A field for entering a DMAC value appears.

  • Page 60: Static Table

    Static Table. This section describes how to configure the Static IP Source Guard Table parameters of the switch. These can be used to configure and manage the entries. To configure a Static IP Source Guard Table in the web interface: •...
  • Page 61 Access Control List Configuration Parameters: Items Description Mode of ARP Inspection Enable or disable the Global ARP Inspection. Port Mode Configuration Specify ARP Inspection is enabled on which ports. Only when both Global Mode and Port Mode on a given port are enabled, ARP Inspection is enabled on this given port. Possible modes are: Enabled: Enable ARP Inspection operation.

  • Page 62: Vlan Configuration

    VLAN Configuration Each page shows up to 9999 entries from the VLAN table, default being 20, selected through the "entries per page" input field beginning with the entry with the lowest VLAN ID found in the VLAN Table. The "VLAN" input fields allow the user to select the starting point in the VLAN Table.

  • Page 63: Dynamic Arp Inspection Table

    Access Control List Configuration Parameters: Items Description Delete Click to delete the entry. It will be deleted during the next save. Port The logical port for the settings. VLAN ID The VLAN ID for the settings MAC Address Allowed Source MAC address in ARP request packets. IP Address Allowed Source IP address in ARP request packets.

  • Page 64: Authentication, Authorization, And Accounting (Aaa)

    Dynamic ARP Inspection Table Configuration Parameters: Items Description Port Switch Port Number for which the entries are displayed. VLAN ID VLAN-ID in which the ARP traffic is permitted. MAC Address User MAC address of the entry. IP Address User IP address of the entry. Translate to Static Select the checkbox to translate the entry to a static entry.
  • Page 65 AAA Radius Server Configuration Parameters: Items Description Global Configuration These setting are common for all of the RADIUS servers. Timeout Timeout is the number of seconds, in the range 1 to 1000, to wait for a reply from a RADIUS server before retransmitting the request.

  • Page 66: Aaa Tacacs

    Server Configureation The table has one row for each RADIUS server and a number of columns, which are: Delete: To delete a RADIUS server entry, check this box. The entry will be deleted during the next Save. Hostname: The IP address or hostname of the RADIUS server. Auth Port: The UDP port to use on the RADIUS server for authentication.

  • Page 67: Aggregation

    AAA TACAS+ Authentication Server Configuration Parameters: Items Description Global Configuration These setting are common for all of the TACACS+ servers. Timeout Timeout is the number of seconds, in the range 1 to 1000, to wait for a reply from a TACACS+ server before it is considered to be dead.

  • Page 68: Lacp

    Aggregation Mode Configuration Parameters: Items Description Hash Code Contributors Source MAC Address The Source MAC address can be used to calculate the destination port for the frame. Check to enable the use of the Source MAC address or uncheck to disable. By default it is enabled. Destination Mac Address The Destination MAC Address can be used to calculate the destination port for the frame.

  • Page 69: Loop Protection

    LACP Port Configuration Parameters: Items Description Port The switch port number. LACP Controls whether LACP is enabled on this switch port. LACP will form an aggregation when 2 or more ports are connected to the same partner. The Key value incurred by the port, range 1-65535. The Auto setting will set the key as appropriate by the physical link speed, 10Mb = 1, 100Mb = 2, 1Gb = 3.

  • Page 70: Spanning Tree

    LACP Port Configuration Parameters: Items Description Enable Loop Protection Controls whether loop protections is globally enabled Transmission Time The interval between each loop protection PDU sent on each port. Values are 1 to 10 seconds Shutdown Time The period (in seconds) for which a port will be kept disabled in the event of a loop is detected (and the port action shuts down the port).

  • Page 71: Bridge Setting

    lowest path cost when forwarding a packet from that LAN to the root device. All ports connected to designated bridging devices are assigned as designated ports. After determining the lowest cost spanning tree, it enables all root ports and designated ports, and disables all other ports. Network packets are therefore only forwarded between root ports and designated ports, eliminating any possible network loops.

  • Page 72: Spanning Tree Msti Mapping

    LACP Port Configuration Parameters: Items Description Basic Settings Protocol Version The STP protocol version setting. Valid values are STP, RSTP and MSTP. Bridge Priority Controls the bridge priority. Lower numeric values have better priority. The bridge priority plus the MSTI instance number , concatenated with the 6-byte MAC address of the switch forms a Bridge Identifier .

  • Page 73: Spanning Tree Msti Priorities

    MSTI Mapping Configuration Parameters: Items Description Configuration The name identifying the VLAN to MSTI mapping. Bridges must share the name and revision Identification (see below), as well as the VLAN-to-MSTI mapping configuration in order to share spanning trees for MSTI's (Intra-region). The name is at most 32 characters. Configuration Revision The revision of the MSTI configuration named above.

  • Page 74: Spanning Tree Cist Ports

    Spanning Tree MSTI Priorities Configuration Parameters: Items Description MSTI The bridge instance. The CIST is the default instance which is always active. Priority Controls the bridge priority. Lower numeric values have better priority. The bridge priority plus the MSTI instance number , concatenated with the 6-byte MAC address of the switch forms a Bridge Identifier .
  • Page 75 Spanning Tree CIST Port Configuration Parameters: Items Description Port The switch port number of the logical STP port. STP Enabled Controls whether STP is enabled on this switch port. Path Cost Controls the path cost incurred by the port. The Auto setting will set the path cost as appropriate by the physical link speed, using the 802.1D recommended values.

  • Page 76: Spanning Tree Msti Ports

    Spanning Tree MSTI Ports This section describes how to inspect and configure the current STP MSTI port configuration. An MSTI port is a virtual port which is instantiated separately for each active CIST (physical) port, and for each MSTI instance applicable to, and configured on, the port.

  • Page 77: Ipmc Profile

    IPMC Profile This page provides IPMC Profile related configurations. The IPMC Profile is used to deploy the access control on IP multicast streams. It is allowed to create at maximum 64 profiles with a maximum of 128 corresponding rules for each. To configure the IPMC Profile in the web interface: ...

  • Page 78: Ipmc Address Entry

    IPMC Profile Configuration Parameters: Items Description Global Profile Mode Enable / Disable the Global IPMC Profile. The System starts filtering based on profile settings only when the global profile mode is enabled. Delete Check to delete the entry. The designated entry will be deleted during the next save. Profile Name The name used for indexing the profile table.

  • Page 79: Mvr

    IPMC Profile Address Configuration Parameters: Items Description Delete Click to delete the entry. The designated entry will be deleted during the next save. Entry Name The name used for indexing the address entry table. Each entry has the unique name which is composed of a maximum 16 alphanumeric characters.
  • Page 80 MVR Configuration Parameters: Items Description MVR Mode Enable/Disable the Global MVR. The Unregistered Flooding control depends on the current configuration in IGMP/MLD Snooping. It is suggested to enable Unregistered Flooding control when the MVR group table is full. Delete Click to delete the entry. The designated entry will be deleted during the next save. MVR VID Specify the Multicast VLAN ID.

  • Page 81: Igmp Snooping

    Port Role Configure an MVR port of the designated MVR VLAN as one of the following roles: Inactive: The designated port does not participate in MVR operations. Source: Configure uplink ports that receive and send multicast data as source ports. Subscribers cannot be directly connected to source ports.

  • Page 82: Igmp Snooping Vlan Configuration

    IGMP Snooping Configuration Parameters: Items Description Snooping Enabled Enable / Disable the Global IGMP Snooping Unregistered IPMCv4 Enable unregistered IPMCv4 traffic flooding. Flooding Enabled IGMP SSM Range SSM (Source-Specific Multicast) Range allows the SSM-aware hosts and routers run the SSM service model for the groups in the address range. Format: (IP address/ sub mask). Leave Proxy Enable Enable IGMP Leave Proxy.
  • Page 83 IGMP Snooping VLAN Configuration Parameters: Items Description Delete Check to delete the entry. The designated entry will be deleted during the next save. VLAN ID Displays the VLAN ID of the entry. IGMP Snooping Enabled Enable the per-VLAN IGMP Snooping. Only up to 32 VLANs can be selected. Querier Election Enable to join IGMP Querier Election in the VLAN.

  • Page 84: Port Filtering Profile

    Port Filtering Profile This describes how to set the IGMP Port Group Filtering. In some network Application environments, like the metropolitan or multiple-dwelling unit (MDU) installations, a user might want to control the multicast groups to which a user on a switch port can belong. It allows the user to control the distribution of multicast services, such as IP/TV, based on some type of subscription or service plan.
  • Page 85 To configure the MLD Snooping Port Group in the web interface: • Click Configuration / MLD Snooping / Basic Configuration • Enable or Disable the Global configuration parameters. Select the port to join Router Port and fast Leave • Select the Throttling mode with Unlimited, 1, to 10. •...

  • Page 86: Mld Snooping Vlan

    MLD Snooping Configuration Parameters: Items Description Snooping Enabled Enable the Global MLD Snooping. Unregistered IPMCv6 Enable unregistered IPMCv6 traffic flooding. The flooding control takes effect only when MLD Flooding Enabled Snooping is enabled. When MLD Snooping is disabled, unregistered IPMCv6 traffic flooding is always active in spite of this setting.

  • Page 87: Port Group Filtering

    Compatibility Compatibility is maintained by hosts and routers taking appropriate actions depending on the versions of IGMP operating on hosts and routers within a network. The allowed selection is IGMP-Auto, Forced IGMPv1, Forced IGMPv2, Forced IGMPv3, default compatibility value is IGMP-Auto. Priority of interface indicates the IGMP control frame priority level generated by the system.

  • Page 88: Link Layer Discovery Protocol (Lldp)

    Link Layer Discovery Protocol (LLDP) This switch supports LLDP. The Link Layer Discovery Protocol (LLDP) provides a standards-based method for enabling switches to advertise themselves to adjacent devices and to learn about adjacent LLDP devices. The LLDP is a vender- neutral protocol in the Internet Protocol Suite used by network devices for advertising their Identity, capabilities, and neighbors on an IEE 802 local area network, principally wired Ethernet.
  • Page 89 Tx Hold Each LLDP frame contains information about how long the information in the LLDP frame shall be considered valid. The LLDP information valid period is set to Tx Hold multiplied by Tx Interval seconds. Valid values are restricted to 2 - 10 times. Tx Delay If some configuration is changed (e.g.

  • Page 90: Lldp-Med Configuration

    LLDP-MED Configuration Media Endpoint Discovery is an enhancement of LLDP , known as LLDP-MED that provides the following facilities: Auto-discovery of LAN policies (such as VLAN, Layer 2 Priority and Differentiated services (Diffserv) settings) enabling plug and play networking. Device location discovery to allow creation of location databases and, in the case of Voice over Internet Protocol (VoIP), Enhanced 911 services.
  • Page 91 LLDP-MED Configuration Parameters: Items Description Fast Start Repeat Rapid startup and Emergency Call Service Location Identification Discovery of endpoints is a critically important aspect of VoIP systems in general. In addition, it is best to advertise only those pieces of information which are specifically relevant to particular endpoint types (for example only advertise the voice network policy to permitted voice-capable devices), both in order to conserve the limited LLDPU space and to reduce security and system integrity issues that can come with inappropriate knowledge of the network policy.
  • Page 92 Altitude Altitude SHOULD be normalized to within -32767 to 32767 with a maximum of 4 digits. It is possible to select between two altitude types (floors or meters). Meters: Representing meters of altitude defined by the vertical datum specified. Floors: Representing altitude in a form more relevant in buildings which have different floor-to- floor dimensions.
  • Page 93 Policies Network Policy Discovery enables the efficient discovery and diagnosis of mismatch issues with the VLAN configuration, along with the associated Layer 2 and Layer 3 attributes, which apply for a set of specific protocol applications on that port. Improper network policy configurations are a very significant issue in VoIP environments that frequently result in voice quality degradation or loss of service.

  • Page 94: Poe

    services. Streaming Video - for use by broadcast or multicast based video content distribution and other similar applications supporting streaming video services that require specific network policy treatment. Video applications relying on TCP with buffering would not be an intended use of this application type.
  • Page 95 Power levels available. Class Usage Power Range [Watt] Class description Default 15.4 Classification unimplemented Optional Very Low Power Optional Low Power Optional 15.4 Mid Power Valid for 802.3at (Type 2) High Power devices, not allowed for 802.3af devices. To Configure the Power over Ethernet in the web interface: ...

  • Page 96: Poe Power Delay

    LLDP-MED mode: This mode is similar to the Class mode except that each port determines the amount of power it reserves by exchanging PoE information using the LLDP protocol and reserves power accordingly. If no LLDP information is available for a port, the port will reserve power using the class mode. In this mode the maximum power fields have no effect for all modes: if a port uses more power than the reserved power for the port the port is shut down.

  • Page 97: Poe Scheduling

    PoE Power Delay Configuration Parameters: Items Description Power Supply Configuration Port This is the logical port number for this row. Delay Mode Turn on / off the power delay function: Enabled: Enable the PoE Power Delay. Disabled: Disable PoE Power Delay. Delay Time (0~300sec) When rebooting, the PoE port will start to provide power to the PD when it out of delay time.

  • Page 98: Poe Auto Checking

    PoE Configuration Parameters: Items Description Power Supply Configuration Port This is the logical port number for this row. Status PoE Scheduling Status. Enabled: Enable PoE Scheduling. Disable: Disable PoE Scheduling. Hour The Time of the day the PoE Port is to provide power. PoE Auto Checking.

  • Page 99: Mac Table

    Ping IP Address Device will send checking message to Powered Device each interval time. Default 30, range: 10-120 sec. Retry Time When PoE port can’t ping the Powered Device it will try to send detection ping again. When it happens for the third time it will trigger failure action. Default 3 range 1-15. Failure Log Failure loggings counter.

  • Page 100: Vlans

    MAC Address Table Configuration Parameters: Items Description Aging Configuration By default, dynamic entries are removed from the MAC table after 3000 seconds. This removal is also called aging. Configure aging time by entering a value here in seconds. The allowed range is 10 to 1000000 seconds.
  • Page 101 VLANsConfiguration Parameters: Items Description Global VLAN Configuration Existing VLANs This field shows the VLANs that are created on the switch. By default only VLAN 1 exists. More VLANs may be created by using a list syntax where the individual elements are separated by commas.
  • Page 102 Hybrid: Hybrid ports resemble trunk ports in many ways, but adds additional port configuration features. In addition to the characteristics described for trunk ports, hybrid ports have these abilities:  Can be configured to the VLAN tag unaware, C-tag aware, S-tag aware, or S-custom- tag aware.

  • Page 103: Private Vlans

    Forbidden VLANs A port may be configured to never be member of one or more VLANs. This is particularly useful when dynamic VLAN protocols like MVRP and GVRP must be prevented from dynamically adding ports to VLANs. The trick is to mark such VLANs as forbidden on the port in question. The syntax is identical to the syntax used in the Existing VLANs field.

  • Page 104: Mac-Based Vlan (Vcl)

    Private VLAN Port Isolation Configuration Parameters: Items Description Port Members A check box is provided for each port of a private VLAN. When checked, port isolation is enabled on that port. When unchecked, port isolation is disabled on that port. By default port isolation is disabled on all ports.

  • Page 105: Protocol-Based Vlan

    Private VLAN Port Isolation Configuration Parameters: Items Description Delete To delete a MAC-based VLAN entry, check this box and press save. The entry will be deleted on the selected switch in the stack. MAC Address Indicates the MAC address. VLAN ID Indicates the VLAN ID Port Members A row of check boxes for each port is displayed for each MAC-based VLAN entry.

  • Page 106: Group To Vlan

    Protocol-based VLAN to Group Configuration Parameters: Items Description Delete To delete Protocol to Group Name map entry, check this box and press save. The entry will be deleted during the next save. Frame Type Frame Type can have one of the following values: ...

  • Page 107: Ip Subnet-Based Vlan

    Protocol-based Group to VLAN Configuration Parameters: Items Description Delete To delete a Group Name to VLAN map entry, check this box. The entry will be deleted on the switch during the next Save. Group Name A valid Group Name is a string of almost 16 characters which consists of a combination of alphanumeric characters no special character is allowed.

  • Page 108: Voice Vlan

    Adding a new IP subnet- Click “Add New Entry” to add a new IP subnet-based VLAN entry. An empty row is added to based VLAN the table, and the IP subnet-based VLAN entry can be configured as needed. Any IP address/mask can be configured for the IP subnet-based VLAN entry.

  • Page 109: Oui

    Voice VLAN Configuration Parameters: Items Description Mode Indicates the Voice VLAN mode operation. The MSTP feature must be disabled before enabling Voice VLAN. It will avoid the conflict of ingress filtering. Possible modes are: Enabled: Enable Voice VLAN mode operation Disabled: Disable Voice VLAN mode operation.

  • Page 110: Qos

    Description The description of OUI address. Normally, it describes which vendor telephony device it belongs to. The allowed string length is 0 to 32. Add a new Entry Click to add a new entry in Voice VLAN OUI table. An empty row is added to the table, the Telephony OUI, Description.

  • Page 111: Qos Port Policing

    Controls the default class of service. All frames are classified to a CoS. There is a one to one mapping between CoS, queue and priority. A CoS of 0 (zero) has the lowest priority. If the port is VLAN aware, the frame is tagged and Tag Class is enabled, then the frame is classified to a CoS that is mapped from the PCP and DEI value in the tag.

  • Page 112: Qos Port Schedulers

    QoS Ingress Port Classification Configuration Parameters: Items Description Port The logical port for the settings contained in the same row. Click on the port number in order to configure the schedulers. Enabled To evoke which Port needs to be enable for the QoS Ingress Port Policers function. Rate To set the Rate limit value for this port, the default is 500.
  • Page 113 NOTE: the “Scheduler Mode” is set with “Weighted” then the screen will change as the figure displays.

  • Page 114: Qos Port Shaping

    QoS Ingress Port Schedulers Configuration Parameters: Items Description Port The logical port for the settings contained in the same row. Click on the port number in order to configure the schedulers. Mode Shows the scheduling mode for this port. Weight (Qn) Shows the weight for this queue and port.
  • Page 115 QoS Ingress Port Shaper Configuration Parameters: Items Description Port The logical port for the settings contained in the same row. Click on the port number in order to configure the shapers. Mode Shows the scheduling mode for this port. Shapers (Qn) Shows “disabled”...

  • Page 116: Qos Port Tag Remarking

    QoS Port Tag Remarking This section provides an overview of QoS Egress Port Tag Remarking for all switch ports. T he ports belong to the currently selected stack unit, as reflected by the page header. To configure the QoS Port Tag Remarking in the web interface: ...
  • Page 117 QoS Port tag Remarking Configuration Parameters: Items Description Mode Controls the tag remarking mode for this port. Classified: Use classified PCP/DEI values. Default: Use default PCP/DEI values. Mapped: Use mapped version of QoS class and DP level. PCP/DEI Configuration Controls the default PCP and DEI values used when the mode is set to Default. QoS Class, DP Level) to Controls the mapping of the classified (QoS class, DP level) to (PCP, DEI) values when the (PCP,DEI) Mapping...

  • Page 118: Qos Port Dscp

    QoS Port DSCP This section will describe how to set the QoS Port DSCP configuration that facilitates configuration of the basic QoS Port DSCP settings for all the switch ports. These settings relate to the currently selected stack unit as reflected by the page header.

  • Page 119: Dscp-Based Qos

    DSCP-Based QoS This section describes how to use the DSCP-Based QoS mode to configure the basic QoS DSCP based QoS Ingress Classification settings for all switches. To configure the DSCP-Based QoS Ingress Classification parameters in the web interface:  Click Configuration / QoS / DSCP-Based QoS ...

  • Page 120: Qos Dscp Classification

    QoS DSCP Translation Configuration Parameters: Items Description DSCP Maximum number of supported DSCP values are 64 and valid value ranges from 0 to 63. Ingress Ingress side DSCP can be first translated to new DSCP before using the DSCP for QoS class and DPL map.
  • Page 121 QoS DSCP Classification Configuration Parameters: Items Description Qos Class Available QoS Class value ranges from 0 to 7. Drop Precedence level (0-1) can be configured for all available QoS Classes DSCP Select DSCP value (0-63) from DSCP menu to map DSCP to corresponding QoS Class and DPL value.

  • Page 122: Qos Control List Configuration

    QoS Control List Configuration This section displays the QoS Control List (QCL), which is made up of the QCEs (QoS Control Entry). Each row describes a QCE that is defined. The maximum number of QCEs is 256 on each switch. Click on the lowest plus sign to add a new QCE to the list.
  • Page 123 MAC: Match specific DMAC. The default value is Any SMAC Match specific source MAC address or ‘Any’. If a port is configured to match on DMAC/DIP, this field indicates the DMAC. Indicates the tag type. Possible values are: Any: Match tagged and untagged Frames. Untagged: Match untagged Frames Tagged: Match tagged Frames.

  • Page 124: Qos Storm Control

    LLC: SSAP Address valid SSAP (Sorce Service Access point) can very from 0x00 to 0xFF or ‘Any’. DSAP Address Valid DSAP(Destination Service Access Point) can vary from 0x00 to 0xFF or 'Any', the default value is 'Any'. Control Address Valid Control Address can vary from 0x00 to 0xFF or 'Any', the default value is 'Any’.

  • Page 125: Mirror

    QoS Storm Control Configuration Parameters: Items Description Frame Type The settings in a particular row apply to the frame type listed here: Unicast, Multicast or Broadcast. Enable Enable or disable the storm control status for the given frame type. Rate The rate unit is packets per second (pps).

  • Page 126: Universal Plug And Play (Upnp)

    Mirror Configuration Parameters: Items Description Port to mirror to Port to mirror also known as the mirror port. Frames from ports that have either source (Rx) or destination (Tx) mirroring enabled are mirrored on this port. Disabled disables mirroring. Port The logical port for the settings contained in the same row.

  • Page 127: Gvrp

    GVRP The Generic Attribute Registration Protocol (GARP) provides a generic framework whereby devices in a bridged LAN, e.g. end stations and switches, can register and de-register attribute values, such as VLAN Identifiers, with each other. In doing so, the attributes are propagated to devices in the bridged LAN, and these devices form a reachability tree that is a subset of an active topology.

  • Page 128: Gvrp Port Configuration

    GVRP Port Configuration This page allows the configuration of the basic GVRP settings for all switch ports. The settings relate to the currently selected unit, as reflected by the page header. To configure the GVRP Ports in the web interface: ...
  • Page 129 sFLOW Configuration Parameters: Items Description Agent Configuration IP Address This IP address is used as Agent IP address in sFlow datagrams. It serves as a unique key that will identify this agent over extended periods of time. Both IPv4 and IPv6 addresses are supported.

  • Page 130: Stmp Configuration

    Receiver Configuration Owner sFlow can be configured in two ways. Through local management using the Web or CLI interface or through SNMP. This read-only field shows the owner of the currently sFlow configuration and assums calues as flollows:  If sFlow is currently unconfigured/unclaimed, Owner contains <none>. ...
  • Page 131 STMP Configuration Parameters: Items Description Mail Server The IP address or hostname of the mail server. IP adress is expressed in dotted decimal notation. This will be the device that sends out the mail for you. User Name Specify the username on the mail server. Password Specify the password on the mail server.

  • Page 132: Chapter 4 Monitor

    Chapter 4 Monitor This chapter describes all of the basic network statistics which includes the Ports, Layer 2 network protocol and any of the switch settings are displayed for monitoring the status of the system. System After the login, the switch displays the system information. This page is default and displays the basic information of the system, including “Model Name”, “System Description”, “Contact”, “Location”, “System Up Time”, “Firmware Version”, “Host Mac Address”, “Device Port”.

  • Page 133: Ip Status

    System Uptime The period of time the device has been operational. Bootloader Version Displays the current boot loader version number. Firmware Version The software version of this switch. Hardware-Mechanical Version The Hardware and mechanical version of this switch. Serial number The serial number of the switch.

  • Page 134: System Log

    IP Routes Network Displays the destination IP network or host address of this route. Gateway Displays the gateway address of this route. Status Displays the Status flags of the route. Neighbour Cache IP Address Displays the IP address of the entry. Link Address Displays the Link (MAC) address for which a binding to the IP address given exists Auto Refresh...

  • Page 135: System Detailed Log

    > : Updates the system log entries starting from the last entry currently displayed. >> : Updates the system log entries ending from the last available entry ID System Detailed Log This section describes the display of the detailed log information of the switch. To display the detailed log configuration in the web interface: •...

  • Page 136: Green Ethernet

    System Overview Parameters: Items Description Model Name Displays the model name of the switch (S243) Connected Devices Displays how many devices are connected to the switch. PoE Power Consumption How much PoE power is being consumed. Total PoE Available The total amount of available PoE power. Firmware Version Displays the current firmware version MAC Address...

  • Page 137: Ports

    LP EEE Cap Displays if the link partner is EEE capable. EEE Savings Displays if the system is curently saving power due to EEE. When EEE is enabled the system will power down of no frame has been received or transmitted in 5uSec. ActiPhy Savings Dispalys if the system is currently saving power due to ActiPhy.

  • Page 138: Ports Qos Control List (Qcl) Status

    • Click Clear to clear all information. Port QoS Statistcs Parameters: Items Description Port The logical port for the settings contained in the same row. Qn is the Queue number. There are 8 QoS queues per port. Q0 is the lowest priority queue. Rx/Tx The number of received and transmitted packets per queue.

  • Page 139: Ports Detailed Statistics

    Frame Type Indicates the type of frame to look for incomming frames. Possible frame tpes are: Any: The QCE will match all frame types. Ethernet: Only Ethernet frames (with either type 0x600-0xFFFF) are allowed. LLC: Only LLC frames are allowed. SNAP: Only SNAP frames are allowed.
  • Page 140 Detailed Port Statistics Parameters: Items Description Port Scroll Bar Scroll to select for which Port to display the statistics. Receive Total and Transmit Total Rx and Tx Packets The number of received and trasmitted (good and bad) packets. Rx and Tx Octets The number of received and transmitted (good and bad) bytes.

  • Page 141: Sfp Information

    Rx and Tx Broadcast The number of received and transmitted (good and bad) broadcast packets. Rx and Tx Pause A count of the MAC Control frames received or transmitted on this port that have an opcode indicating a PAUSE operation. Receive and Transmit The number of received and transmitted (good and bad) packets categorized based on their Size Counters...

  • Page 142: Dhcp

    Detailed Port Statistics Parameters: Items Description Connector Type Displays the connector type, for instance, UTP, SC, ST, LC etc. Fiber Type Displays the fiber mode. Multi-Mode or Single-Mode. Tx Central Wavelength Displays the fiber optical transmitting central wavelength. Baude Rate Displays the maximum baud rate of the fiber module supported.

  • Page 143: Dhcp Server Binding Ip

    Binding Counters Automatic Binding Number of bindings with network-type pools Manual Binding Number of bindings that adminstrator assigns an IP address to a client. That is, the pool is of host type. Expired Binding Number of bindings that the lease time expired or they are cleared from Automatic/Manual type bindings.

  • Page 144: Dhcp Server Declined Ip

    DHCP Server Declined IP This page displays declined IP Addresses. To Display the DHCP Server Declined IP in the web Interface:  Click Monitor / DHCP / Server / Declined IP  Check the Auto-Refresh check box to have the page automatically refresh every 3 seconds. DHCP Server Binding IP Parameters: Items Description...
  • Page 145 DHCP Relay Statistics Parameters: Items Description Server Statistics Transmit to Server The number of packets that are relayed from client to the server. Transmit Error The number of packets that resulted in errors while being sent to the clients. Receive from Server The number of packets received from the server.

  • Page 146: Dhcp Detailed Statistics

    DHCP Detailed Statistics This page provides statistics for DHCP snooping. Notice that the normal forward per-port TX statistics isn't increased if the incoming DHCP packet is done by L3 forwarding mechanism. And clear the statistics on specific port may not take effect on global statistics since it gathers the different layer overview.

  • Page 147: Security

    Buttons Auto-refresh: Check this box to refresh the page automatically. It will do so every 3 seconds. Refresh: Click to refresh the page. Clear: Clears the counters. Security Access management Statistics This page displays detailed statistics of the Access management including HTTP, HTTPS, SNMP, TELNET, and SSH. To display the Access Management Statistics in the web interface: ...
  • Page 148 Network Port Security Statistics Parameters: Items Description User Module Legend The legend displays all user modules that may request Port Security services. User Module Name The full name of a module that may request Port Security services. Abbr A one letter abbreviation of the user module. This is used in the Users column in the port status table.

  • Page 149: Port Security

    Mac Count (Current, The two columns indicate the number of currently learned MAC addresses (forwarding as Limited) well as blocked) and the maximum number of MAC addresses that can be learned on the port, respectively. If no user modules are enabled on the port, the Current column will show a dash (-).

  • Page 150: Nas Switch Status

    NAS Switch Status This page displays each port’s NAS status information. The status includes Admin State Port State, Last Source, Last ID, QoS Class, and Port VLAN ID. To display a NAS Switch Status in the web interface:  Click Monitor / Security / Network / NAS / Switch ...

  • Page 151: Acl Status

    NAS Switch Status Parameters: Items Description Port State Admin State The port's current administrative state. Refer to NAS Admin State for a description of possible values. Port State The current state of the port. Refer to NAS Port State for a description of the individual states. Buttons Auto-refresh: Check this box to refresh the page automatically.

  • Page 152: Arp Inspection

    IPv4/TCP: The ACE will match IPv4 Frames with TCP protocol. IPv4/Other: The ACE will match IPv4 frames which are not ICMP/UDP/TCP. IPv6: The ACE will match al IPv6 standard frames. Action Indicates the forwarding action of the ACE. Permit: Frames matching the ACE may be forwarded and learned. Deny: Frames matching the ACE are dropped.

  • Page 153: Ip Source Guard

    IP Address User IP address of the entry. Buttons Auto-refresh: Check this box to refresh the page automatically. It will do so every 3 seconds. Refresh: Click to refresh the page. <<: Updates the system log entries to the first available entry ID. >: Updates the system log entry to the next available entry ID.

  • Page 154: Aaa Radius Details

    AAA Radius Overview Table Parameters: Items Description The RADIUS server number. Click to navigate to detailed statistics for this server. IP Address The IP address and UDP port number (in <IP Address> :< UDP Port> notation) of this server. State The current state of the server.
  • Page 155 AAA Radius Details Table Parameters: Items Description Radius Authentication Statistics The statistics map follows closely to those specified in RFC4668 - RADIUS Authentication Client MIB. Use the server select box to switch between the backend servers to show details for: Packet Counters RADIUS authentication server packet counter.
  • Page 156 Access radiusAuthClientExtAccessRejects The number of RADIUS Access-Reject packets Rejects (valid or invalid) received from the server. Access radiusAuthClientExtAccessChallenges The number of RADIUS Access-Challenge Challenges packets (valid or invalid) received from the server. Malformed radiusAuthClientExtMalforme The number of malformed Access dAccessResponses RADIUS Access-Response packets received Responses from the Server.
  • Page 157 Round-Trip Time radiusAuthClientExt The time interval (measured in milliseconds) between the most recent RoundTripTime Access-Reply/Access-Challenge and the Access-Request that matched it from the RADIUS authentication server. The granularity of this measurement is 100 ms. A value of 0 ms indicates that there hasn't been round-trip communication with the server yet.

  • Page 158: Switch Rmon Statistics

    State Shows the state of the server. It takes one of the following values: Disabled: The selected server is disabled. Not Ready: The server is enabled, but IP communication is not yet up and running. Ready: The server is enabled, IP communication is up and running, and the RADIUS module is ready to accept accounting attempts.

  • Page 159: Rmon History Overview

    RMON Statistics Status Overview Parameters: Items Description Indicates the index of Statistics entry. Data Source (if Index) The port ID which wants to be monitored. Drop The total number of events in which packets were dropped by the probe due teo lack of resources.

  • Page 160: Rmon Alarm

    RMON Histroy Overview Parameters: Items Description History Index Indicates the index of History control entry. Sample Index Indicates the index of the data entry associated with the control entry. Drop The total number of events in which packets were dropped by the probe due to lack of resources.

  • Page 161: Rmon Event

    RMON Histroy Overview Parameters: Items Description Indicates the index of Alarm control entry. Interval Indicates the interval in seconds for sampling and comparing the rising and falling threshold. Variable Indicates the particular variable to be sampled. Sample Type The method of sampling the selected variable and calculating the value to be compared against the thresholds.

  • Page 162: Lacp

    Log Time Indicates Event log time. LogDescritpion Indicates the Even description. Buttons Auto-refresh: Check this box to refresh the page automatically. Automatic refresh occurs every 3 seconds. Refresh: Click to refresh the page immediately. <<: Updates the table starting from the first entry in the History table, i.e., the entry with the lowest History Index and Sample Index >: Updates the table, starting with the entry after the last entry currently displayed.

  • Page 163: Lacp Port Statistics

    LACP Port Status Overview Parameters: Items Description Port The switch port number . LACP 'Yes' means that LACP is enabled and the port link is up. 'No' means that LACP is not enabled or that the port link is down. 'Backup' means that the port could not join the aggregation group but will join if another port leaves.

  • Page 164: Loop Protection

    LACP Port Statistics Overview Parameters: Items Description Port The switch port number . LACP Received Displays how many LACP frames have been received at each port. LACP Transmitted Displays how many LACP frames have been sent from each port. Discarded Shows how many unknown or illegal LACP frames have been discarded at each port.

  • Page 165: Spanning Tree Port Status

    Spanning Tree Bridge Status Overview Parameters: Items Description MSTI The Bridge Instance. This is also a link to the STP Detailed Bridge Status. Bridge ID The Bridge ID of this Bridge instance. Root ID The Bridge ID of the currently elected root bridge. Root Port The switch port currently assigned the root port role.

  • Page 166: Spanning Tree Port Statistics

    CIST State The current STP port state of the CIST port. The port state can be one of the following values: Blocking Learning Forwarding. Uptime The time since the bridge port was last initialized. Buttons Auto-refresh: Check this box to refresh the page automatically. Automatic refresh occurs every 3 seconds.

  • Page 167: Mvr Channel Groups

    MVR Statistics Overview Parameters: Items Description VLAN ID The Multicast VLAN ID IGMP/MLD Queries Transmitted The number of Transmitted Queries for IGMP and MLD, respectively. IGMPv1 Joins Received The number of Received IGMPv1 Joins. IGMPv2/MLDv1 Reports The number of Received IGMPv2 Join's and MLDv1 Reports, respectively. Received IGMPv3/MDV Report’s Received The number of Received IGMPv1 Join's and MLDv2 Reports, respectively.

  • Page 168: Mvr Sfm Information

    << Updates the system log entries to the first available entry ID. >Updates the system log entry to the next available entry ID. Clear: Clears the counters for the selected port. MVR SFM Information The MVR SFM (Source-Filtered Multicast) Information Table also contains the SSM (Source-Specific Multicast) information. This table is sorted first by VLAN ID, then by group, and then by Port.

  • Page 169: Ipmc

    IPMC IGMP Snooping This page displays the IGMP Snooping detail status. To display the MVR Statistics in the web interface:  Click Monitor / IPMC / IPMC Snooping / Status  Check the Auto-Refresh check box to have the page automatically refresh every 3 seconds. IGMP Snooping Status Parameters: Items Description...

  • Page 170: Group Information

    Buttons Auto-refresh: Check this box to refresh the page automatically. It will do so every 3 seconds. Refresh: Click to refresh the page. Clear: Clears the counters for the selected port. Group Information This page will display the IGMP Snooping Group Information. The IGMP Group Table is sorted first by VLAN ID and then by group.

  • Page 171: Mld Snooping

    IGMP SFM Information Parameters: Items Description Navigating the IGMP SFM Information Table Each page shows up to 99 entries from the IGMP SFM Information table, default being 20, selected through the “entries per page” input field. On the first visit the page will display the first 20 entries from the beginning of the IGMP SFM Information table.

  • Page 172: Mld Snooping Group Information

    MLD Snooping Status Parameters: Items Description VLAND ID The VLAN ID of the entry. Querier Version The currently working Querier version. Host Version Currently working Host Version. Querier Status Show the Querier status is “Active” or “Idle”. “Disable” denotes the specific interface is administratively disabled. Queries Transmitted The number of Transmitted Queries.

  • Page 173: Ipv6 Sfm Information

    MLD Snooping Status Parameters: Items Description Nabigating the MLD Group Table Each page shows up to 99 entries from the MLD Group table, default being 20, selected through the "entries per page" input field. The default is 20 entries from the beginning of the MLD Group Table. The "Start from VLAN", and "group" input fields allow the user to select the starting point in the MLD Group Table.

  • Page 174: Lldp

    Port Switch port number. Mode Indicates the filtering mode maintained per (VLAN ID, port number, Group Address) basis. It can be either Include or Exclude. Source Address IP Address of the source. Currently, system limits the total number of IP source addresses for filtering to be 12.

  • Page 175: Lldp Med Neighbor

    LLDP MED Neighbor This page provides a status overview of all LLDP-MED neighbors. The displayed table contains a row for each port on which an LLDP neighbor is detected. This function applies to VoIP devices which support LLDP-MED. To display the LLDP Neighbor Information in the web interface: ...
  • Page 176 devices. Example product categories expected to adhere to this class include (but are not limited to) end user communication appliances, such as IP Phones, PC-based softphones, or other communication appliances that directly support the end user. Discovery services defined in this class include provision of location identifier (including ECS / E911 information), embedded L2 switch support, and inventory management.

  • Page 177: Lldp Poe

    Buttons Auto-refresh: Check this box to refresh the page automatically. Automatic refresh occurs every 3 seconds. Refresh: Click to manually refresh the page. LLDP PoE This page displays the current status for all PoE ports. To display the PoE status in the web interface: ...

  • Page 178: Lldp Port Statistics

    To display LLDP EEE information in the web interface:  Click Monitor / LLDP / EEE  Check the Auto-Refresh check box to have the page automatically refresh every 3 seconds. LLDP EEE Parameters: Items Description Local Port The port for this switch on which the LLDP frames are received or transmitted. Tx TW The link partner’s maximum time that transmit path can hold off sending data after reassertion of LPI.
  • Page 179 LLDP Port Statistics Parameters: Items Description Global Counters Neighbor entries were Displays the time when the last entry was last deleted or added. It also shows the time elapsed last changed at: since the last change was detected. Total Neighbors Displays the number of new entries added since the last switch reboot.

  • Page 180: Lldp Poe Statistics

    Age-Outs Each LLDP frame contains information about how long the LLDP information is valid (age-out time). If no new LLDP frame is received within the age out time the LLDP information is removed and the Age-Out counter is incremented. Buttons Auto-refresh: Check this box to refresh the page automatically.

  • Page 181: Mac Table

    Port Status Port Status shows the port's status. The status can be one of the following values:  PoE not available. – No PoE chip found: PoE not supported for the port  PoE Turned OFF – PoE Disabled: PoE was disabled by the user ...

  • Page 182: Vlans

    Buttons Auto-refresh: Check this box to refresh the page automatically. Automatic refresh occurs every 3 seconds. Clear: Clears the counters for the selected port. Refresh: Click to manually refresh the page. <<: Updates the system log entries to the first available entry ID. >: Updates the system log entry to the next available entry ID.

  • Page 183: Vlan Port Status

    Port Members A row of check boxes for each port is displayed for each VLAN ID. If a port is included in a VLAN will be displayed. If a port is included n a Forbidden port list, an will be displayed. If a port is included in a Forbidden port list and dynamic VLAN user register VLAN on the same Forbidden port then a conflict will be displayed as VLAN Membership...

  • Page 184: Vcl

    phones.  MVR: MVR is used to eliminate the need to duplicate multicast traffic for subscribers in each VLAN. Multicast traffic for all channels is sent only on a single (multicast) VLAN.  MSTP: The 802.1s Multiple Spanning Tree protocol (MSTP) uses VLANs to create multiple spanning trees in a network, which significantly improves network resource utilization while maintaining a loop-free environment.

  • Page 185: Protocol-Based Vlan Protocol To Group

    MAC-based VLAN Parameters: Items Description MAC Address Indicates the MAC address. VLAN ID Indicates the VLAN ID. Port Memebers Port members of the MAC-based VLAN entry. Butons Auto-refresh: Check this box to refresh the page automatically. Automatic refresh occurs every 3 seconds.

  • Page 186: Group To Vlan

    Group to VLAN This page displays the configured Group Name to a VLAN for the switch. To display the Group to VLAN configuration in the web interface:  Click Monitor / VCL / Group to VLAN  Check the Auto-Refresh check box to have the page automatically refresh every 3 seconds. Group Name to VLAN Parameters: Items Description...

  • Page 187: Sflow

    Port Members A row of check boxes for each port is displayed for each IP subnet-based VLAN entry. To include a port in an IP subnet-based VLAN check the box. To remove or exclude the port from the IP subnet-based VLAN, uncheck the box. By default all boxes are unchecked. Buttons Auto-refresh: Check this box to refresh the page automatically.
  • Page 188 sFLOW Parameters: Items Description Owner This field displays the current owner of the sFlow configuration. It assumes one of three values as follows: If sFlow is currently not configured/unclaimed, Owner contains <none>. If sFlow is currently configured through Web or CLI, Owner contains <Configured through local management>.

  • Page 189: Chapter 5 Diagnostics

    Chapter 5 Diagnostics This chapter provides a set of basic system diagnostics to determine if the system is operating within established parameters or whether the system requires maintenance. The basic system check includes ICMP Ping, Link OAM, ICMPv6, and VeriPHY Cable Diagnostics. Ping This section describes how to issue ICMP Ping packets to troubleshoot connectivity issues.

  • Page 190: Cable Diagnostics

    ICMPv6 Ping Parameters: Items Description IP Address To set the IPv6 Address of the target device to be sent a Ping. Ping Length The payload size of the ICMP packet. Values range from 2 bytes to 1452 bytes. Ping Count The count of the ICMP packet.

  • Page 191: Traceroute

    Cable Diagnostics Parameters: Items Description Port The port number selected for the test. Cable Status Port: The port number. Pair: The status of the cable pair. Length: Length in meters of the cable pair. Traceroute This diagnostic allows for the issue of ICMP, TCP, or UDP packets to diagnose network connectivity issues. To configure a Traceroute diagnostic in the web interface: ...

  • Page 192: Chapter 6 Maintenance

    Chapter 6 Maintenance This chapter describes the entire switch maintenance configuration tasks to enhance the performance of local network including restart Device, Firmware upgrade, Save/Restore, and Import/Export. Restart Device This section describes how to perform a system restart for any maintenance needs. Any configuration files or scripts that have been saved in the switch will still be available after the restart.

  • Page 193: Factory Defaults

    Switch Reboot Schedule: Items Description Mode Drop down box select either Enabled or Disabled Week Day A list of the 7 days of the week. Set the Time from the selection menus to the right for the day you want the reboots to occur. Reboot Time Set the desired hour for the reboot from the HH Column (note it is a 24 hour list 0- 23) and set the Minute in the MM column.

  • Page 194: Configuration

    Configuration The switch stores its configuration in a number of text files in CLI format. The files are either virtual (RAM-based) or stored in flash on the switch. There are 3 system files;  Running-config: A virtual file that represents the currently active configuration on the switch. This file is volatile. ...

  • Page 195: Upload

    Upload The configuration upload function will back up and save any configuration from the switch’s configurations through the running web browser of the managing PC. Select the file and click upload configuration. This may take some time to complete as the file must be prepared for upload. To upload a configuration in the web interface: ...

  • Page 196: Delete

    Delete It is possible to delete any of the writable files stored in flash including startup-config. If this is done and the switch is rebooted without a prior save operation this effectively resets the switch to default configuration. To delete a configuration through the web interface: ...

  • Page 197: Chapter 7 Device Management System (Dms)

    Chapter 7 Device Management System (DMS) Management DMS Mode The DMS Mode provides an opportunity to enable the DMS feature and set its mode defining how it interacts with the network. To view the Device list in the web interface: ...

  • Page 198: Management Device List

    Management Device List This page displays the devices connected to the switch. It is possible to edit the device name in the user interface. To view the Device list in the web interface:  Click DMS / Management / Device List DMS Management Device List Parameters: Items Description...

  • Page 199: Dms Graphic Monitoring

    DMS Graphic Monitoring Topology View This page displays a visual view of the topology in a cluster of networks. To configure the DMS Topology View in the web interface:  Click DMS / Graphical Monitoring / Topology View  Click to select the desired display information for the devices in the topology view.

  • Page 200: Floor View

    Floor View This page allows for the creation of a custom map displaying the location of the devices attached to the switch. Device icons can be selected and dragged into place on a floor plan that can be uploaded through DMS / Maintenance / Floor Image.

  • Page 201: Map View

    Map View Through this page it is possible to view the devices in the network placed onto a street map of the location of the network. To configure the DMS Map View in the web interface:  Click DMS / Graphic Monitoring / Map View DMS Management Device List Parameters: Items Description...

  • Page 202: Dms Maintenance

    DMS Maintenance Floor Image This page will facilitate upload or deletion of custom floor images required for the previous Floor View page. To configure the DMS Information in the web interface:  Click DMS / Maintenance / Floor Image  Click ‘Browse’...

  • Page 203: Diagnostics Trouble Shooting

    Diagnostics Trouble Shooting On this page it is possible to troubleshoot issues pertaining to the devices connected to the network. This feature is designed primarily for administrators to verify and test the link route between the switch and the device. A troubleshooting solution is provided by the system so that administrators can detect where the problem lies.

  • Page 204: Traffic Monitor

    Traffic Monitor This page displays a visual chart of network traffic of all the devices managed by the PoE switch. There are two graphs. The first displays traffic per port and the second graph displays the traffic by the hour. To configure the DMS Traffic Monitor in the web interface: ...

Table of Contents