Moxa Technologies PT-G7828 User Manual
  1. Manuals
  2. Brands
  3. Moxa Technologies Manuals
  4. Switch
  5. PT-G7828
  6. User manual

Moxa Technologies PT-G7828 User Manual

Hide thumbs Also See for PT-G7828:
Table of Contents

Advertisement

Quick Links

Download this manual
PT-G7828/G7728 User's Manual
Edition 1.0, December 2017
www.moxa.com/product
© 2017 Moxa Inc. All rights reserved.
www.ipc2u.ru
www.moxa.pro

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the PT-G7828 and is the answer not in the manual?

Questions and answers

Related Manuals for Moxa Technologies PT-G7828

Summary of Contents for Moxa Technologies PT-G7828

  • Page 1 PT-G7828/G7728 User’s Manual Edition 1.0, December 2017 www.moxa.com/product © 2017 Moxa Inc. All rights reserved. www.ipc2u.ru www.moxa.pro...

  • Page 2: Copyright Notice

    PT-G7828/G7728 User’s Manual The software described in this manual is furnished under a license agreement and may be used only in accordance with the terms of that agreement. Copyright Notice © 2017 Moxa Inc. All rights reserved. Trademarks The MOXA logo is a registered trademark of Moxa Inc.

  • Page 3: Table Of Contents

    Table of Contents About this Manual ..........................1-1 Getting Started..........................2-1 USB Console Configuration (115200, None, 8, 1, VT100) ................. 2-2 Configuration by Command Line Interface (CLI) ..................2-4 Configuration by Web Console ......................2-6 Disabling Telnet and Browser Access ..................... 2-7 Featured Functions ...........................
  • Page 4 Industrial Protocols ........................... 3-93 Diagnostics ............................3-93 LLDP ............................3-93 Ping ............................3-94 Port Mirroring ........................... 3-94 Monitoring ............................3-95 CPU/Memory Utilization ......................3-95 Statistics ..........................3-96 Fiber Digital Diagnostics Monitoring (Fiber Check) ................. 3-97 Event Log ..........................3-99 Tracking Function ........................3-99 Substation .............................

  • Page 5: About This Manual

    About this Manual Thank you for purchasing a Moxa managed Ethernet switch. Read this user’s manual to learn how to connect your Moxa switch to Ethernet-enabled devices used for industrial applications. A synopsis of chapters 2 and 3 are given below: ...

  • Page 6: Getting Started

    Getting Started In this chapter, we explain how to install a Moxa switch for the first time. There are three ways to access the Moxa switch’s configuration settings: USB console, command line interface, or web-based interface. If you do not know the Moxa switch’s IP address, you can open the USB console by connecting the Moxa switch to a PC’s USB port with a USB cable.

  • Page 7: Usb Console Configuration (115200, None, 8, 1, Vt100)

    PT-G7828/G7728 Getting Started USB Console Configuration (115200, None, 8, 1, VT100) NOTE A Moxa switch allows multi-session connections (up to 6) by connecting to the web console and another console (serial or Telnet) at the same time. NOTE We recommend using PComm Terminal Emulator when opening the USB console. This software can be downloaded free of charge from the Moxa website.
  • Page 8 PT-G7828/G7728 Getting Started 3. The Property window should open. On the Communication Parameter tab for Ports, select the COM port that is being used for the console connection. Set the other fields as follows: 115200 for Baud Rate, 8 for Data Bits, None for Parity, and 1 for Stop Bits.

  • Page 9: Configuration By Command Line Interface (Cli)

    PT-G7828/G7728 Getting Started NOTE By default, the password assigned to the Moxa switch is moxa. Be sure to change the default password after you first log in to help keep your system secure. 7. The Main Menu of the Moxa switch’s USB console should appear. (In PComm Terminal Emulator, you can adjust the font by selecting Font…...
  • Page 10 PT-G7828/G7728 Getting Started 2. In the terminal window, the Telnet console will prompt you to select a terminal type. Type 1 to choose ansi/vt100, and then press Enter. 3. The Telnet console will prompt you to log in. Press Enter and then select admin or user. Use the down arrow key on your keyboard to select the Password field and enter a password if desired.

  • Page 11: Configuration By Web Console

    PT-G7828/G7728 Getting Started 5. Use the following keys on your keyboard to navigate the Moxa switch’s Telnet console: Function Up, down, right, left arrow keys, Tab Move the onscreen cursor Enter Display and select options Space Toggle options Previous menu NOTE The Telnet console looks and operates in precisely the same manner as the USB console.

  • Page 12: Disabling Telnet And Browser Access

    PT-G7828/G7728 Getting Started 3. After logging in, you may need to wait a few moments for the web console to appear. Use the folders in the left navigation panel to navigate between different pages of configuration options. Disabling Telnet and Browser Access If you are connecting the Moxa switch to a public network but do not intend to manage it over the network, we suggest disabling both the Telnet and web consoles.

  • Page 13: Featured Functions

    Featured Functions In this chapter, we explain how to access the Moxa switch’s various configuration, monitoring, and management functions. These functions can be accessed by USB console, Telnet console, or web console. The USB console can be used if you do not know the Moxa switch’s IP address. To access the USB console, connect switch’s USB port to your PC’s COM port.

  • Page 14: Home

    PT-G7828/G7728 Featured Functions Home The Home page shows the summary of the Moxa switch information including System Information, Redundancy Protocol, Event Log, and Device virtualization panel. By showing the switch's information and event log, the operators can easily understand the system and port link status at a glance.

  • Page 15: Module Information

    PT-G7828/G7728 Featured Functions Switch Name Setting Description Factory Default Max. 30 characters This option is useful for differentiating between the roles or none applications of different units. Example: Factory Switch 1. NOTE The Switch Name field follows the PROFINET I/O naming rule. The name can only include any of these characters, a-z/A-Z/0-9/-/., and the name cannot start with port-xyz or port-xyz-abcde where...

  • Page 16: User Account

    PT-G7828/G7728 Featured Functions User Account The Moxa switch supports the management of accounts, including establishing, activating, modifying, disabling, and removing accounts. There are two levels of configuration access: admin and user. Accounts with admin authority have read/write access of all configuration parameters, whereas accounts with user authority only have read access to view configuration items.
  • Page 17 PT-G7828/G7728 Featured Functions Modifying an Existing Account Select an existing account from the Account List table, modify the account details, and then click Apply to save the changes. Deleting an Existing Account Select an account from the Account List table and then click Delete to delete the account.

  • Page 18: Password Login Policy

    PT-G7828/G7728 Featured Functions Password Login Policy In order to prevent hackers from cracking the password, Moxa switches allow users to configure a password for their account and lock the account in the event that the wrong password is entered. The account password policy requires passwords to be of a minimum length and complexity with a strength check.
  • Page 19 PT-G7828/G7728 Featured Functions IP Settings The IPv4 settings include the switch’s IP address and subnet mask, as well as the IP address of the default gateway. In addition, input cells are provided for the IP addresses of a 1st and 2nd DNS server.
  • Page 20 PT-G7828/G7728 Featured Functions DNS Server IP Addresses Setting Description Factory Default 1st DNS Server Specifies the IP address of the DNS server used by your None network. After specifying the DNS server’s IP address, you can use the Moxa switch’s URL (e.g., www.PT.company.com) to open the web console instead of entering the IP address.

  • Page 21: Date And Time

    PT-G7828/G7728 Featured Functions Date and Time The Moxa switch has a time calibration function based on information from an NTP server or user specified time and date, allowing functions such as automatic warning emails to include a time and date stamp.
  • Page 22 PT-G7828/G7728 Featured Functions Start Date Setting Description Factory Default User-specified date Specifies the date that Daylight Saving Time begins. None End Date Setting Description Factory Default User-specified date Specifies the date that Daylight Saving Time ends. None Offset Setting Description...

  • Page 23: Ieee 1588

    PT-G7828/G7728 Featured Functions Setting Description Enable NTP authentication The NTP authentication will be enabled if the checkbox is selected Authentication Key: This part indicates the key that can be recognized by this device, and a maximum of 5 keys can be stored in the device.

  • Page 24: Ptp Settings

    PT-G7828/G7728 Featured Functions Can Ethernet switches be designed to avoid the effects of these fluctuations? A switch can be designed to support IEEE 1588 while avoiding the effects of queuing. In this case two modifications to the usual design of an Ethernet switch are necessary: 1.
  • Page 25 PT-G7828/G7728 Featured Functions Default profile Global settings PTP Device Type Setting Description Factory Default V2 BC (Boundary Operates as an IEEE 1588 PTP v2 boundary clock. V2 TC (Transparent Clock) Clock) V2 TC (Transparent Operates as an IEEE 1588 PTP v2 transparent clock.
  • Page 26 PT-G7828/G7728 Featured Functions Announce Timeout Setting Description Factory Default 2 to 10 (times Configure the number of Announce Interval messages that announce interval) were not received, before the master clock changes. PDelay-Request Minimum Interval Setting Description Factory Default -1 (512ms), 0 (1 sec),...
  • Page 27 PT-G7828/G7728 Featured Functions Clock Class Setting Description Factory Default 0 to 255 The clock class attribute of an ordinary or boundary clock denotes the traceability of the time or frequency distributed by the grandmaster clock. Value 248 is used as default if none of the other clock class definitions apply.

  • Page 28: Ptp Port Settings

    PT-G7828/G7728 Featured Functions Global settings VLAN ID Setting Description Factory Default 0 to 4094 Only available in Power Profile mode. The reserved value 0 indicates that only the priority tag in 802.1Q is considered. This value should be match to VLAN rules where the enabled PTP feature applies to the whole system.

  • Page 29: Warning Notification

    PT-G7828/G7728 Featured Functions PTP Port settings Setting Description Factory Default Enable/Disable PTP port status: PTP disabled •PTP_INITIALIZING: PTP port is initializing. No PTP messages on its communication path. •PTP_MASTER: The port is the source of time on the path served by the port.
  • Page 30 PT-G7828/G7728 Featured Functions System Events Description Cold Start Power is cut off and then reconnected. Warm Start The Moxa switch is rebooted, such as when network parameters are changed (IP address, subnet mask, etc.). Configuration Change Any configuration item has been changed.
  • Page 31 PT-G7828/G7728 Featured Functions System Events Description LLDP Table Change Nearly connected devices are changed and shown in the LLDP table Login Failure Lockout The attempt to log in exceeds the threshold Account Info Changed The account information has been changed...
  • Page 32 PT-G7828/G7728 Featured Functions Port Event Settings Port Events are related to the activity of a specific port. Port Events Warning e-mail is sent when… Link-ON The port is connected to another device. Link-OFF The port is disconnected (e.g., the cable is pulled out, or the opposing device shuts down).

  • Page 33: Email Settings

    PT-G7828/G7728 Featured Functions Event Log Settings This function is used to inform the user what the event log capacity status is and decide what action to take when an event log is oversized. Select the Enable Log Capacity Warning checkbox to set the threshold percentage.
  • Page 34 PT-G7828/G7728 Featured Functions User Name Setting Description Factory Default Max. of 45 characters Your email account name None Password Setting Setting Description Factory Default Password The email account password. None Email Address Setting Description Factory Default Max. of 30 characters...
  • Page 35 PT-G7828/G7728 Featured Functions Syslog Server Settings The Syslog function provides the event logs for the syslog server. The function supports 3 configurable syslog servers and syslog server UDP port numbers. When an event occurs, the event will be sent as a syslog UDP packet to the specified syslog servers.

  • Page 36: Mac Address Table

    PT-G7828/G7728 Featured Functions Relay Warning Status When a relay warning is triggered by either the system or port events, the administrator can turn off the hardware warning buzzer by clicking the Apply button. The event will still be recorded in the event list.

  • Page 37: System Files

    PT-G7828/G7728 Featured Functions System Files Firmware Upgrade There are three ways to update your Moxa switch’s firmware: from a local *.rom file, by remote TFTP server, and with Auto Backup Configurator (ABC-02). Local 1. Download the updated firmware (*.rom) file from Moxa’s website (www.moxa.com).

  • Page 38: Configuration Backup And Restore

    PT-G7828/G7728 Featured Functions Configuration Backup and Restore There are three ways to back up and restore your Moxa switch’s configuration: from a local configuration file, by remote TFTP server, and with Auto Backup Configurator (ABC-02). Local 1. Click the Backup button to back up the configuration file to a local drive.
  • Page 39 PT-G7828/G7728 Featured Functions First priority: MAC.ini Second priority: Sys.ini If no matching configuration file is found, the fault LED light will turn on, and the switch will boot up normally. NOTE MAC.ini is named using the last 6 digits of the switch’s MAC address, without spaces.

  • Page 40: Restart

    PT-G7828/G7728 Featured Functions NOTE Note: MM=month, DD=day, HH=hour, mm=minutes, from the system time. The log file includes the following information: Index An event index assigned to identify the event sequence. Bootup This field shows how many times the Moxa switch has been rebooted or cold started.

  • Page 41: Poe (Poe Models Only)

    PT-G7828/G7728 Featured Functions PoE (PoE Models Only) Power over Ethernet has become increasingly popular, due in large part to the reliability provided by PoE Ethernet switches that supply the power to Powered Devices (PD) when AC power is not available, or is too expensive to provide locally.

  • Page 42: Poe System Configuration

    PT-G7828/G7728 Featured Functions PoE System Configuration NOTE The configuration is different, depending on whether the “PoE power output managed by” item is set to “Allocated Power” or “Measured Power.” PoE Power Management by Allocated Power PoE Power Management by Measured Power 3-30 www.ipc2u.ru...

  • Page 43: Poe Port Configuration

    PT-G7828/G7728 Featured Functions PoE System Configuration Settings PoE Power Output Setting Description Factory Default Enable Enables PoE power transmission to a PD Enable Disable Disables PoE power transmission to a PD PoE power management Mode Setting Description Factory Default Allocated Power...
  • Page 44 PT-G7828/G7728 Featured Functions Output Mode Setting Description Factory Default 802.3 af/at Auto Power transmission follows the IEEE 802.3 af/at protocols. The 802.3 af/at Auto acceptable PD resistance range is 17 kΩ to 29 kΩ. High Power Provides a higher power output to the PD. The acceptable PD resistance range is 17 kΩ...
  • Page 45 PT-G7828/G7728 Featured Functions PoE Device Failure Check The PoE Ethernet switch can monitor the status of a PD via its IP address. If the PD fails, the switch will not receive a PD response after the defined period, and the authentication process will be restarted. This function is extremely useful for ensuring your network’s reliability and reducing your management burden.
  • Page 46 PT-G7828/G7728 Featured Functions PoE Timetabling Powered devices usually do not need to be running 24 hours a day, 7 days a week. The PoE Ethernet switch provides a PoE timetabling mechanism that lets users economize the system’s power burden by setting a flexible working schedule for each PoE port.

  • Page 47: Event Type

    PT-G7828/G7728 Featured Functions Warning Type Action Description Trap A notification will be sent to the trap server when an event is triggered. E-Mail A notification will be sent to the email server defined in Email Settings. Syslog Record a syslog to a syslog server defined in Syslog Server Settings.
  • Page 48 PT-G7828/G7728 Featured Functions PoE Diagnose PoE Diagnose helps users determine the PD conditions. The system provides the user with configuration options; select the best option for your PDs. Take the following steps to diagnose PD conditions: Step 1: Check which port numbers will be diagnosed.

  • Page 49: Poe Port Status

    PT-G7828/G7728 Featured Functions Item Description Select high power output When detecting an unknown classification, the system suggests selecting High Power output. Raise the external power When the external supply voltage is detected at under 46 V, the system supply voltage to greater than suggests raising the voltage.
  • Page 50 PT-G7828/G7728 Featured Functions Item Description Powered PoE power is being provided by the PSE. System has detected a NIC connected to the port. PoE power is not being provided. Disabled The PoE function of the port is disabled. PoE power is not being provided.

  • Page 51: Vlan

    PT-G7828/G7728 Featured Functions System Power Status System Power Status shows a graph of Sum of measured power, Sum of allocated power, and Max of allocated power. “Sum of measured power” (in green) shows the total measured power of all PDs, “Sum of allocated power”...

  • Page 52: Managing A Vlan

    PT-G7828/G7728 Featured Functions • VLANs provide extra security: Devices within each VLAN can only communicate with other devices on the same VLAN. If a device on the Marketing VLAN needs to communicate with devices on the Finance VLAN, the traffic must pass through a routing device or Layer 3 switch.

  • Page 53: Sample Applications Of Vlans Using Moxa Switches

    PT-G7828/G7728 Featured Functions • Hybrid Port: The port is similar to a Trunk port, except users can explicitly assign tags to be removed from egress packets. The following section illustrates how to use these ports to set up different applications.

  • Page 54: Configuring A Virtual Lan

    PT-G7828/G7728 Featured Functions through Trunk Port 3 with tagged VID 4. Switch A will recognize its VLAN and pass it to port 2, but will not remove tags received successfully by Device E. Configuring a Virtual LAN To configure 802.1Q VLAN and port-based VLANs on the Moxa switch, use the VLAN Settings page to configure the ports for either an 802.1Q VLAN or Port-based VLAN.
  • Page 55 PT-G7828/G7728 Featured Functions Management VLAN ID Setting Description Factory Default 1 to 4094 Assigns the VLAN ID to this Moxa switch. Note: Some of the following settings can be modified in the Quick Setting Panel. Port Setting Description Factory Default...

  • Page 56: Vlan Name Setting

    PT-G7828/G7728 Featured Functions VLAN Name Setting For the 802.1Q VLAN, the user is able to set VLAN name of each VLAN ID (VID). VLAN Name Setting Setting Description Factory Default Name The VLAN name can only include these characters, Null...

  • Page 57: Port

    PT-G7828/G7728 Featured Functions Use the 802.1Q VLAN table to review the VLAN groups that were created, VLAN Name, Joined Access Ports, Trunk Ports, and Hybrid Ports, and use the Port-based VLAN table to review the VLAN groups and Joined Ports.

  • Page 58: Port Status

    PT-G7828/G7728 Featured Functions Speed Setting Description Factory Default Auto Allows the port to use the IEEE 802.3u protocol to negotiate Auto with connected devices. The port and connected devices will determine the best speed for that connection. 100M-Full Choose one of these fixed speed options if the connected 100M-Half Ethernet device has trouble auto-negotiating for line speed.

  • Page 59: Link Aggregation

    PT-G7828/G7728 Featured Functions Link Aggregation Link aggregation involves grouping links into a link aggregation group. A MAC client can treat link aggregation groups as if they were a single link. The Moxa switch’s port trunking feature allows devices to communicate by aggregating up to 4 trunk groups, with a maximum of 8 ports for each group.
  • Page 60 PT-G7828/G7728 Featured Functions Step 1: Select the desired Trunk Group Step 2: Select the Trunk Type (Static or LACP). Step 3: Select the Trunk Group to modify the desired ports if necessary Trunk Group (maximum of 4 trunk groups) Setting...

  • Page 61: Link-Swap Fast Recovery

    PT-G7828/G7728 Featured Functions Link-Swap Fast Recovery The Link-Swap Fast Recovery function, which is enabled by default, allows the Moxa switch to return to normal operation extremely quickly after devices are unplugged and then re-plugged into different ports. The recovery time is on the order of a few milliseconds (compare this with standard commercial switches for which the recovery time could be on the order of several minutes).

  • Page 62: Multicast

    Turbo Ring v2 Ring 1 Turbo Ring v2 Ring 2, NOTE Moxa’s PT-G7728/PT-G7828 only supports Turbo Ring v2. Multicast Multicast filtering improves the performance of networks that carry multicast traffic. This section explains multicasts, multicast filtering, and how multicast filtering can be implemented on your Moxa switch.

  • Page 63: Benefits Of Multicast

    PT-G7828/G7728 Featured Functions network until the delivery path that reaches group members diverges. To make more efficient use of network bandwidth, it is only at these points that multicast packets are duplicated and forwarded. A multicast packet has a multicast group address in the destination address field of the packet’s IP header.

  • Page 64: Igmp Multicast Filtering

    PT-G7828/G7728 Featured Functions Network with multicast filtering Hosts only receive dedicated traffic from other hosts belonging to the same group. Multicast Filtering and Moxa’s Industrial Rackmount Switches There are three ways to achieve multicast filtering with a Moxa switch: IGMP (Internet Group Management Protocol) Snooping, GMRP (GARP Multicast Registration Protocol), and adding a static multicast MAC manually to filter multicast traffic automatically.

  • Page 65: Igmp Snooping

    PT-G7828/G7728 Featured Functions IGMP version 3 supports “source filtering,” which allows the system to define how to treat packets from specified source addresses. The system can either white-list or black-list specified sources. IGMP version comparison IGMP Version Main Features Reference...

  • Page 66: Igmp Snooping Setting

    PT-G7828/G7728 Featured Functions IGMP Snooping Setting Enable IGMP Snooping (Global) Setting Description Factory Default Enable/Disable Select the Enable IGMP Snooping checkbox near the top of the Disabled window to enable the IGMP Snooping function globally. Query Interval (sec) Setting Description...

  • Page 67: Igmp Group Status

    PT-G7828/G7728 Featured Functions Select/Deselect Select the ports that will connect to the multicast routers. These Disabled ports will receive all multicast packets from the source. This option is only active when IGMP Snooping is enabled. NOTE If a router or layer 3 switch is connected to the network, it will act as the Querier, and consequently this Querier option will be disabled on all Moxa layer 2 switches.

  • Page 68: Static Multicast Address

    PT-G7828/G7728 Featured Functions Stream Group: Multicast group IP address Stream Source: Multicast source IP address Port: The port that receives the multicast stream Member Ports: Ports the multicast stream is forwarded to NOTE IGMP Stream Status is only supported by Moxa’s Layer 3 switches.

  • Page 69: Gmrp

    PT-G7828/G7728 Featured Functions GMRP GMRP is a MAC-based multicast management protocol, whereas IGMP is IP-based. GMRP provides a mechanism that allows bridges and end stations to register or un-register Group membership information dynamically. Enable GMRP Setting Description Factory Default Select/Deselect...

  • Page 70: Qos

    PT-G7828/G7728 Featured Functions The Moxa switch’s traffic prioritization capability provides Quality of Service (QoS) to your network by making data delivery more reliable. You can prioritize traffic on your network to ensure that high priority data is transmitted with minimum delay. Traffic can be controlled by a set of rules to obtain the required Quality of Service for your network.

  • Page 71: Traffic Prioritization

    PT-G7828/G7728 Featured Functions • It requires an additional 4-byte tag in the frame, which is normally optional for Ethernet networks. Without this tag, the scheme cannot work. • The tag is part of the IEEE 802.1Q header, so to implement QoS at layer 2, the entire network must implement IEEE 802.1Q VLAN tagging.

  • Page 72: Configuring Traffic Prioritization

    PT-G7828/G7728 Featured Functions Configuring Traffic Prioritization Quality of Service (QoS) provides a traffic prioritization capability to ensure that important data is delivered consistently and predictably. The Moxa switch can inspect IEEE 802.1p/1Q layer 2 CoS tags, and even layer 3 TOS information, to provide a consistent classification of the entire network.

  • Page 73: Priority Mapping

    PT-G7828/G7728 Featured Functions 0 to 7 The port priority has 8 priority queues: from 0 (lowest) to 7 (highest) NOTE The priority of an ingress frame is determined in the following order: 1. ToS/DSCP Inspection 2. CoS Inspection 3. Priority NOTE The designer can enable these classifications individually or in combination.

  • Page 74: Dscp Mapping

    PT-G7828/G7728 Featured Functions DSCP Mapping DSCP Value and Priority Setting Description Factory Default 0 to 7 8 to 15 16 to 23 24 to 31 Different DSCP values map to one of 8 different priorities. 32 to 39 40 to 47...
  • Page 75 PT-G7828/G7728 Featured Functions Rate Limiting: Normal Ingress Rate Limit Policy Description Factory Default Limit All Select the ingress rate limit for different packet types from the Limit Broadcast 8M following options: Unlimited, 128K, 256K, 512K, 1M, 2M, 4M, Limit Broadcast,...

  • Page 76: Security

    PT-G7828/G7728 Featured Functions Rate Limiting: Port Disable Setting Description Factory Default Port disable duration When the ingress packets exceed the ingress rate limit, the 30 seconds (1-65535 seconds) port will be disabled for a certain period. Ingress (frames per Select the ingress rate (fps) limit for all packets from the...
  • Page 77 PT-G7828/G7728 Featured Functions Enable HTTP Setting Description Factory Default Select/Deselect Select the appropriate checkboxes to enable HTTP. TCP Port: 80 Enable HTTPS Setting Description Factory Default Select/Deselect Select the appropriate checkboxes to enable HTTPS. TCP Port: 443 Enable Telnet Setting...

  • Page 78: Trusted Access

    PT-G7828/G7728 Featured Functions Trusted Access The Moxa switch uses an IP address-based filtering method to control access. You may add or remove IP addresses to limit access to the Moxa switch. When the Trusted Access list is enabled, only addresses on the list will be allowed access to the Moxa switch. Each IP address and netmask entry can be tailored for different situations: •...

  • Page 79: Ssl Certificate Management

    PT-G7828/G7728 Featured Functions SSL Certificate Management Certificate Import 1. Click Browse and select Public-Key Cryptography Standard (PKCS) #12 certificate file 2. Enter the Import Password and click Import 3. The SSL certificate is updated Regenerate SSL Certificate Setting Description Factory Default...
  • Page 80 PT-G7828/G7728 Featured Functions There are five combinations for users: 1. TACACS+, Local: Check TACACS+ database first. If checking the TACACS+ database fails, then check the Local database 2. RADIUS, Local: Check RADIUS database first. If checking the RADIUS database fails, then check the Local database 3.
  • Page 81 PT-G7828/G7728 Featured Functions NOTE The account privilege level is authorized under service type settings in RADIUS, and the privilege level is under TACACS+. RADIUS Server RADIUS Service type = 6 = read/write = administrator • RADIUS Service type = 1 = read only = user •...
  • Page 82 PT-G7828/G7728 Featured Functions Authentication Protocol Setting Description Factory Default 802.1X Local Select this option when setting the 802.1X Local User Database 802.1X Local (Max. of 32 users) as the authentication database. RADIUS Select this option to set an external RADIUS server as the authentication database.
  • Page 83 PT-G7828/G7728 Featured Functions IEEE 802.1X Local Database When selecting the 802.1X Local as the authentication protocol, set the IEEE 802.1X Local Database first. IEEE 802.1X Local Database Setup Setting Description Factory Default User Name User Name for the Local User Database None (Max.
  • Page 84 PT-G7828/G7728 Featured Functions MAC Authentication Bypass Settings Authentication Protocol Setting Description Factory Default RADIUS RADIUS is the only authentication protocol of the MAC RADIUS Authentication Bypass Re-Auth Setting Description Factory Default Enable/Disable Select enable to require re-authentication of the client after a...

  • Page 85: Radius Server Settings

    PT-G7828/G7728 Featured Functions RADIUS Server Settings Apply Login Authentication Setting Setting Description Factory Default Select/Deselect Enables using the same setting as Auth Server. Deselect Server Setting Setting Description Factory Default Server IP/Name Specifies the IP/name of the server None Server Port...

  • Page 86: Port Security

    PT-G7828/G7728 Featured Functions Port Security Moxa switches provide a Port Security function that lets packets with allowed MAC Addresses access the switch’s ports. Two Port Security modes are supported: Static Port Lock and MAC Address Sticky. Static Port Lock: Allows users to configure specific MAC addresses that are allowed to access the port.

  • Page 87: Static Port Lock

    PT-G7828/G7728 Featured Functions Violation Port Disable (only active for MAC Address Sticky) Setting Description Factory Default Disable When the port receives a packet with an unlearned MAC Disable address, the packet will be discarded. Enable When the port receives a packet with an unlearned MAC address, the port will be disabled.
  • Page 88 PT-G7828/G7728 Featured Functions MAC Address Sticky Port Number Setting Description Factory Default Port Number Associates the static address to a dedicated port None Setting Description Factory Default VLAN ID Associates the static address to a dedicated VLAN on the port None...

  • Page 89: Port Access Control Table

    PT-G7828/G7728 Featured Functions Port Access Control Table The port status will be indicated as authorized or unauthorized. Loop Protection Enable Loop Protection Setting Description Factory Default Enable Select the Enable checkbox to enable the loop protection Disable function. Disable Deselect the Enable checkbox to disable the loop protection function.
  • Page 90 PT-G7828/G7728 Featured Functions The ACL Concept What is ACL? An access control list is a basic traffic filter for ingress and egress packets. The ACL can examine each Ethernet packet’s information and take the necessary action. Moxa Layer 3 switches provide complete filtering capabilities.
  • Page 91 PT-G7828/G7728 Featured Functions Access Control List Configuration and Setup Access Control Profile Settings On this page, you can configure two settings: (1) Add/Modify Access Control list, and (2) Adjust ACL ID. Add/Modify Access Control List This function lets you add a new access control profile or modify an existing access control profile. The operation depends on the ACL ID you select.
  • Page 92 PT-G7828/G7728 Featured Functions Access Control Rule Settings You can edit access control rules on this page. Each ACL includes up to 10 rules. First, select the access control profile you would like to edit based on the ACL ID, and then set up the rule content and ingress/egress ports.
  • Page 93 PT-G7828/G7728 Featured Functions IP Based (Layer 3 Device) • Action: Whether to deny or permit access if the rule criterion is met. • Source (Destination) IP Address / IP Address Mask: Defines the IP address rule. By using the mask, you can assign specific subnet ranges to filter.
  • Page 94 PT-G7828/G7728 Featured Functions MAC Based (Layer 2 Device) 3-82 www.ipc2u.ru www.moxa.pro...
  • Page 95 PT-G7828/G7728 Featured Functions MAC Based (Layer 3 Device) • Action: Whether to deny or permit access if the rule criterion is met. • Source (Destination) MAC Address / MAC Address Mask: Defines the MAC address rule. By using the mask, you can assign specific MAC address ranges to filter. It allows checking the source or destination of the packet.

  • Page 96: Dhcp

    PT-G7828/G7728 Featured Functions Access Control List Table The Access Control List Table page provides a complete view of all ACL settings. On this page, you can view the rules by Ingress port, Egress port, or ACL ID. Click the drop-down menu to select Port or ACL ID, and all the rules will be displayed in the table.
  • Page 97 PT-G7828/G7728 Featured Functions DHCP Relay Agent (Option 82) Option 82 is used by the relay agent to insert additional information into the client’s DHCP request. The Relay Agent Information option is inserted by the DHCP relay agent when forwarding client-originated DHCP packets to a DHCP server.

  • Page 98: Dhcp Option 82

    PT-G7828/G7728 Featured Functions Server IP Address 1st Server Setting Description Factory Default IP address for the 1st Assigns the IP address of the 1st DHCP server that the switch None DHCP server tries to access. 2nd Server Setting Description Factory Default...

  • Page 99: Snmp

    PT-G7828/G7728 Featured Functions SNMP The Moxa switch supports SNMP V1, V2c, and V3. SNMP V1 and SNMP V2c use a community string match for authentication, which means that SNMP servers access all objects with read-only or read/write permissions using the community strings public and private by default. SNMP V3 requires that you select an authentication level of MD5 or SHA, and is the most secure protocol.

  • Page 100: Snmp Read/Write Settings

    PT-G7828/G7728 Featured Functions SNMP Read/Write Settings SNMP Versions Setting Description Factory Default V1, V2c, V3, or Specifies the SNMP protocol version used to manage the V1, V2c V1, V2c, or switch. V3 only V1, V2c Read Community Setting Description Factory Default Max.

  • Page 101: Trap Settings

    PT-G7828/G7728 Featured Functions Trap Settings SNMP traps allow an SNMP agent to notify the NMS of a significant event. The switch supports two SNMP modes: Trap mode and Inform mode. SNMP Trap Mode—Trap In Trap mode, the SNMP agent sends an SNMP trap PDU to the NMS. No acknowledgment is sent back from the NMS so the agent has no way of knowing if the trap reached the NMS.
  • Page 102 PT-G7828/G7728 Featured Functions SNMP Trap V3 User Name Setting Description Factory Default Max. 30 characters Specifies the user name for authentication. Auth. Type Setting Description Factory Default No-Auth Allows the admin account to access objects without No-Auth authentication. MD5-Auth Authentication will be based on the HMAC-MD5 algorithms.
  • Page 103 PT-G7828/G7728 Featured Functions SNMP Trap Mode—Inform SNMPv2c, SNMPv3 provides an inform mechanism. When an inform message is sent from the SNMP agent to the NMS, the receiver sends a response to the sender acknowledging receipt of the event. This behavior is similar to that of the get and set requests.
  • Page 104 PT-G7828/G7728 Featured Functions SNMPv3 Inform User Name Setting Description Factory Default Max. 30 characters Specifies the user name for authentication. Auth. Type Setting Description Factory Default No-Auth Allows the admin account to access objects without No-Auth authentication. MD5-Auth Authentication will be based on the HMAC-MD5 algorithms.

  • Page 105: Industrial Protocols

    PT-G7828/G7728 Featured Functions Industrial Protocols The Moxa switch supports 3 industrial protocols, EtherNet/IP, Modbus TCP, and PROFITNET I/O. All three protocols can be enabled or disabled by checking the appropriate checkbox. Modbus TCP is enabled by default, with the other two options disabled.

  • Page 106: Ping

    PT-G7828/G7728 Featured Functions Configuring LLDP Settings General Settings LLDP Setting Description Factory Default Enable or Disable Enables or disables the LLDP function. Enable Message Transmit Interval Setting Description Factory Default 5 to 32768 sec. Sets the transmit interval of LLDP messages, in seconds.

  • Page 107: Monitoring

    PT-G7828/G7728 Featured Functions Port Mirroring Settings Setting Description Monitored Port Select which ports will be monitored. Sniffer Mode Select one of the following three watch direction options: • RX: Select this option to monitor only those data packets coming into the Moxa switch’s port.

  • Page 108: Statistics

    PT-G7828/G7728 Featured Functions Statistics Access the Monitor by selecting Monitoring from the left selection bar. Monitor by System allows the user to view a graph that shows the combined data transmission activity of all of the Moxa switch’s 18 ports. Click one of the four options—Total Packets, TX Packets, RX Packets, or Error Packets—to view transmission...

  • Page 109: Fiber Digital Diagnostics Monitoring (Fiber Check)

    PT-G7828/G7728 Featured Functions Fiber Digital Diagnostics Monitoring (Fiber Check) Optical fiber is commonly used for long distance data transmission. However, when link issues occur, it is very costly to troubleshoot fiber cables and fiber transceivers at remote sites. To solve this problem, Moxa industrial Ethernet switches provide digital diagnostics and monitoring (DDM) functions on Moxa SFP’s and/or fixed type...
  • Page 110 PT-G7828/G7728 Featured Functions Temperature (°C) – Current Fiber connection current temperature. Temperature (°C) – Max. Fiber connection Max. temperature threshold. Tx power (dBm) – Current The current amount of light being transmitted into the fiber optic cable. Tx power (dBm) – Max.

  • Page 111: Event Log

    Port link off/on Tracking Function This function is only available on the PT-G7828 The tracking function allows users to monitor the destined interface or the port availability. The tracking function is a mechanism that is designed to complement defective current protocols, which provides better redundancy for the overall system.
  • Page 112 PT-G7828/G7728 Featured Functions The device will continuously monitor the status of the tracked interface or port, and transfer these status changes into the action. e.g. enable the port, decrease the priority of the VRRP interface and activate the routing interface.
  • Page 113 PT-G7828/G7728 Featured Functions Port/VLAN Choose the Port or VLAN that will be monitored. Interval Setting Description Factory default Range: 100 to The frequency to check the status of the monitored port or 1000 100,000ms interface. Up delay Setting Description Factory default...
  • Page 114 PT-G7828/G7728 Featured Functions Timeout Setting Description Factory default Range: 1 to 100,000 Specific period of time to determine that the ping request has no response. Received Setting Description Factory default Range: 1 to 100 times The status will change from down to up once the ping replies are greater or equal to the count.
  • Page 115 PT-G7828/G7728 Featured Functions VRRP and Static Routing can be modified by the triggered tracking entry. VRRP Settings For detailed VRRP settings please refer to the VRRP section in the Layer 3 Routing user’s manual. If the VRRP entry does not bind any tracking entry or the status of the bound tracking entry is “up”, the running VRRP priority would be equal to the VRRP priority configuration.
  • Page 116 PT-G7828/G7728 Featured Functions For detailed Static Route settings please refer to the Static Routing section in the Layer 3 Routing user’s manual. If the status of related TID entry is up, the routing address will remain at the routing table. If the status of TID entry is down, the routing address will be erased from the routing table.

  • Page 117: Substation

    PT-G7828/G7728 Featured Functions Substation IEC 61850 QoS GOOSE (Generic Object Oriented Substation Events) and SMV (Sampled Measured Values) play a key role in IEC 61850 substations. Once IEC 61850 QoS (Quality of Service) has been enabled, users can assign queuing priority for GOOSE and SMV packets to ensure they are always processed with a higher priority.
  • Page 118 PT-G7828/G7728 Featured Functions Enable GOOSE Check Setting Description Factory Default Enable/Disable GOOSE Enable or disable GOOSE Check Enable Check APP ID Setting Description 0000 to ffff (Hex.) GOOSE application identifier GOOSE Address Setting Description 01-0C-CD-01-00-00 to Destination MAC address of ingress GOOSE message...

  • Page 119: Mms Server

    PT-G7828/G7728 Featured Functions Type The type of GOOSE communication status entry Static: The GOOSE message is selected to be on the GOOSE message communication monitoring list. The static type GOOSE packet will not be erased once the port link is down and the device is turned off.

  • Page 120: Mib Groups

    MIB Groups The Moxa switch comes with built-in SNMP (Simple Network Management Protocol) agent software that supports cold/warm start trap, line up/down trap, and RFC 1213 MIB-II. The standard MIB groups that the Moxa switch supports are as follows: MIB II.1—System Group sysORTable MIB II.2—Interfaces Group ifTable...
  • Page 121 PT-G7828/G7728 MIB Groups dot1dTpHCPortTable dot1dTpPortOverflowTable pBridgeMIB dot1dExtBase dot1dPriority dot1dGarp qBridgeMIB dot1qBase dot1qTp dot1qFdbTable dot1qTpPortTable dot1qTpGroupTable dot1qForwardUnregisteredTable dot1qStatic dot1qStaticUnicastTable dot1qStaticMulticastTable dot1qVlan dot1qVlanCurrentTable dot1qVlanStaticTable dot1qPortVlanTable The Moxa switch also provides a private MIB file, located in the file Moxa-[switch’s model name]-MIB.my on the Moxa switch utility CD-ROM.
  • Page 122 PT-G7828/G7728 MIB Groups • Tracking Static Route Change • Tracking port enable change • EPS on • EPS off • GOOSE Check • Dying Gasp www.ipc2u.ru www.moxa.pro...

This manual is also suitable for:

Pt-g7728

Table of Contents