1. Manuals
  2. Brands
  3. Omnitron Systems Technology Manuals
  4. Switch
  5. RuggedNet GPoE+/Mi
  6. User manual

Omnitron Systems Technology RuggedNet GPoE+/Mi User Manual

4 and 8-port poe/poe+ fiber switches
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
RuggedNet
GPoE+/Mi
®
4 and 8-Port PoE/PoE+ Fiber Switches
USER MANUAL
Firmware Release 2.1

Advertisement

Table of Contents
loading

Related Manuals for Omnitron Systems Technology RuggedNet GPoE+/Mi

Summary of Contents for Omnitron Systems Technology RuggedNet GPoE+/Mi

  • Page 1 RuggedNet GPoE+/Mi ® 4 and 8-Port PoE/PoE+ Fiber Switches USER MANUAL Firmware Release 2.1...

  • Page 2: Table Of Contents

    Table of Contents Overview ..........................5 New Features........................5 Port Structure ........................5 Overview ..........................5 2.1.1 Serial Console Port ..........................5 2.1.2 RJ-45 PoE, SFP and Fixed-Fiber Ports ....................6 2.1.3 Reset Button ............................6 2.2 Configuring DIP-switches ....................6 2.2.1 SW1 and SW2: Mode of Operation ......................7 2.2.2 SW3 and SW4: Fiber Redundancy ......................
  • Page 3 6.1.28 SFP (SFP) ............................. 71 6.1.29 Display the Common Configuration Parameters (SHOWCONFIG) ............73 6.1.30 Simple Network Management Protocol (SNMP)..................74 6.1.31 Simple Network Time Protocol (SNTP) ....................75 6.1.32 Entry Screen Message Display (SPLASH) .................... 76 6.1.33 Secure Shell (SSH) ..........................77 6.1.34 DIP-Switch Configuration (SWITCH) ..................... 79 6.1.35 VLAN Interface Configuration (SWITCHPORT) ..................
  • Page 4 8.0 Specifications ......................164 Appendix A: Firmware Update ..................165 Overview ......................... 165 9.2 Save Current Settings ....................165 9.3 Copy the Files to Your Hard Drive ................165 9.5 Update the GPoE+/Mi ....................165 9.5.1 Updating the Firmware Using FTP ...................... 165 9.5.2 Updating the Firmware Using the Web Interface ................. 167 10.0 Warranty and Copyright .....................170 11.0 Customer Support Information .................171 Page 4...

  • Page 5: Overview

    1.0 OVERVIEW The RuggedNet GPoE+/Mi is a industrial ruggedized and temperature-hardened managed Ethernet switch that features one or two 1000BASE-X Gigabit fiber ports and four or eight 10/100/1000BASE-T RJ-45 Power Sourcing Power-over-Ethernet (PoE and PoE+) ports. The GPoE+/Mi functions can be configured using easily accessible DIP-switches or using Web, Telnet, SSH or Serial Console management interfaces.

  • Page 6: Poe, Sfp And Fixed-Fiber Ports

    5 seconds to restore the switch to factory default values. 2.2 CONFIGURING DIP-SWITCHES DIP-switches are located on the top of the RuggedNet GPoE+/Mi. The DIP-switches are used to configure modes of operation, networking features and PoE reset. Any change in the DIP-switches will immediately take effect.

  • Page 7: Sw1 And Sw2: Mode Of Operation

    The table below provides a description of each DIP-switch position and function. Switch Position Function LEFT SW1 & SW2 Mode of Operation (See Section 2.2.1) RIGHT LEFT SW3 & SW4 Fiber Redundancy (See Section 2.2.2) RIGHT LEFT MAC Learning (factory default) RIGHT OFF - MAC Learning Disabled LEFT...
  • Page 8 Directed Switch Mode Single Fiber Port Models with two fiber ports follow the same RJ-45 data flow as above, with the addition of fiber port F2 also being forwarded to the fiber uplink port F1. Directed Switch Mode Dual Fiber Port Two fiber ports models can be configured for Directed Switch Mode and Fiber Redundancy (per DIP-switches 3 and 4).

  • Page 9: Sw3 And Sw4: Fiber Redundancy

    Dual Device Mode Dual Device Mode is only supported on GPoE+/Mi with two fiber ports. When configured for Dual Device Mode, the GPoE+/Mi is configured as two logically independent Layer 2 switches. On the 4-Port models, fiber port F1 is associated with RJ-45 Ports P1 - P2 and fiber port F2 is associated with RJ-45 Ports P3 - P4.

  • Page 10: Sw5: Mac Learning - "Mac Learning/Off

    1 Fiber Port 2 Fiber Ports Function LEFT LEFT Reserved Switch Mode (factory default) LEFT RIGHT Reserved Switch Mode (factory default) RIGHT LEFT Reserved Fiber Redundancy Mode - no return to primary (F1) RIGHT RIGHT Reserved Fiber Redundancy Mode - return to primary (F1) Fiber Redundancy Fiber redundancy is only supported on GPoE+/Mi models with two fiber ports.

  • Page 11: Sw8: Pse Reset - "Off/Poe Reset

    2.2.6 SW8: PSE Reset - “Off/PoE Reset” The GPoE+/Mi can be configured to disable (reset) the PoE output power for 5 seconds after a loss of receive link on any fiber port. This feature is typically used to allow a PD to re-initialize after a failure on the incoming fiber.

  • Page 12: Connect Cables

    Strip approximately 3/8 of an inch of insulation from the power cable wires. Connect the power cables to the GPoE+/Mi by fastening the stripped ends to the DC power connector. WARNING: Note the wire colors used in making the positive, negative and ground connections. Use the same color assignment for the connection at the circuit breaker.

  • Page 13: Verify Operation

    An alarm relay is available to detect a user configured event. The three contacts closure pins can be configured for normally open (pin 1 and 2) or normally closed (pin 3 and 2) operation. The relay contacts support 110VDC/125VAC Maximum Voltage at a maximum current of up to 2 amps. Use the supplied connector to attach the wire to the external alarm.
  • Page 14 RJ-45 Ports LED Indicators Legend Indicator Description No link Green - ON Port linked at 100Mbps Green - Blinking at 10Hz Port data activity at 100Mbps Amber -ON Port linked at 100Mbps Half-duplex Amber - Blinking at 10Hz Port data activity at 100Mbps Half-duplex No link Green - ON Port linked at 1000Mbps...

  • Page 15: Command Line Interface (Cli)

    6.0 COMMAND LINE INTERFACE (CLI) To access the Command Line Interface, connect to the serial console port on the front of the module per Section 2.2. Each module is configured with the following defaults: IP 1 Address 192.168.1.220 IP 1 Subnet Mask 255.255.255.0 IP 1 Gateway 192.168.1.1 Protocols...
  • Page 16 Once accessed, the Password Entry screen will be displayed. Type the username and password. Press <ENTER>. Omnitron Systems Technology, Inc. GPoE+/Mi Copyright 2017-2018 OST, Inc. ----------------------------------------------------------------------------- Omnitron Systems Technology Technical Support: (949) 250-6510 38 Tesla Sales/Products: (800) 675-8410 Irvine, CA 92618 On the web at: www.omnitron-systems.com...

  • Page 17: Cli Commands

    6.1 CLI COMMANDS The commands are presented in alphabetical order and are not meant as a configuration guide. Each command has an explanation and configuration example. Enter ? or help to view the options. > CLI Command summary For more help on a specific command, type the <command> -h Command Description command summary (same as help command)

  • Page 18: Authentication, Authorization And Accounting (Aaa)

    Keyboard shortcuts are displayed with the menu of module commands. CLI keyboard shortcuts: Ctrl+A move the cursor to the beginning of the line Ctrl+B move the cursor backward one character Ctrl+D delete the character at the cursor Ctrl+E move the cursor to the end of the line Ctrl+F move the cursor forward one character Ctrl+K...
  • Page 19 TACACS+ implements the following functions: Authentication is the action of determining the identification of the user (or entity). It also provides complete control of the authentication process through login and password dialog, challenge and response, and messaging support. Authorization is the action of determining what a user is allowed to do and provides fine-grained control over user capabilities for the duration of the user’s session.
  • Page 20 The aaa command provides the ability to configure AAA, RADIUS, TACACS+ and 802.1X parameters. To configure AAA, use the aaa option from the CLI prompt. A list of options is displayed when the aaa -h command is entered. > aaa -h Description: aaa - authentication, authorization, accounting configuration Syntax:...
  • Page 21 radius disables RADIUS (RFC 2865, RFC 2866), default is disabled. tacacs+ disables TACACS+, default is disabled. 802.1x disables port based access control (IEEE 802.1X), default is disabled The -ena switch enables one of the following functions: enables authentication, authorization, and accounting. guestvlan enables guest VLAN access radius enables RADIUS (RFC 2865, RFC 2866).
  • Page 22 To display the configuration, use the aaa -s command. > aaa -s disabled authentication method local TACACS+ disabled server(s) authentication Port accounting Port timeout (sec) RADIUS disabled server(s) authentication Port 1812 accounting Port 1813 timeout (sec) number of retries 802.1X disabled (guest VLAN disabled) port F1 tunnel, on...

  • Page 23: Access Control List (Acl)

    6.1.2 Access Control List (ACL) The acl command provides basic traffic filtering capabilities with Access Control Lists (ACL). Access Control Lists can prevent certain traffic from entering or exiting the management port. ACLs can be configured for ARP, ICMP, IP, TCP and UDP protocols. These protocols can be configured to be permitted or denied access.
  • Page 24 The -ena switch enables ACL processing. If the ACL table is empty, the default behavior (-dflt) is applied to all Ethernet frames that enter the module. The -h switch displays the help screen presented above. It is static and provides help information for the specific command.

  • Page 25: Bandwidth Profile (Bwp)

    To allow access to a device, the module must be configured to allow (permit) ARP and IP. Since ICMP is part of the IP protocol, it must be explicitly excluded. ACL filters are processed in the order displayed. > acl -dall >...
  • Page 26 To configure bandwidth profiles, use the bwp option from the CLI prompt. A list of options is displayed when the bwp -h command is entered. > bwp -h Description: bwp - bandwidth profile configuration Syntax: bwp [-h] bwp -s [-p pNum] bwp -dall bwp -d -p pNum [-cn cName] bwp -p pNum [-que qType] [-ecir cirRate[,eQueue]] [-epol pType]...
  • Page 27 The -h switch displays the help screen presented above. It is static and provides help information for the specific command. The -p switch defines the port associated with the bandwidth profile. The -pol switch defines the policing count as layer 1 (frame + interframe gap + preamble), layer 2 or layer 3 frame types on a per port basis.
  • Page 28 To display the configuration, use the bwp -s command. > bwp -s Fairweight mix = 33,25,17,12,6,3,2,1 Port F1: ingress cir 1000000kbps, cbs 15 kB, L2 policing egress cir 1000000kbps, L2 policing, queue type fairweight egress queue rate (kbps) q7/q6/q5/q4/q3/q2/q1/q0 = 1000000/1000000/1000000/1000000/1000000/1000000/1000000/1000000 PCP classification over IP Port F2:...

  • Page 29: Cable Test (Cabletest)

    6.1.4 Cable Test (CABLETEST) The cabletest command initiates a cable test on fixed RJ-45 copper ports. The test checks for breaks in the cable and reports how far from the source the cable break is detected. The cable test will interrupt service on the selected port.

  • Page 30: Contact (Contact)

    6.1.5 Contact (CONTACT) The contact command provides the ability to display the status of the contact closure and alarm input. It also provides the ability to assign a failure type and name to the contact closure. To configure and display the contact closure, use the contact command from the CLI prompt. A list of options is displayed when the contact -h command is entered.
  • Page 31 The alarm contact connector is located on the top of the module and is used to detect the state of external alarm conditions. The pinout for the alarm contact is shown below. Function Normally Open - Output Common - Output Normally Closed - Output Detection - Input Detection - Ground...

  • Page 32: Class Of Service (Cos)

    6.1.6 Class of Service (COS) The cos command provides the ability to configure and display Class of Service / Quality of Service profiles associated with each port on the module. To configure class of service, use the cos option from the CLI prompt. A list of options is displayed when the cos -h command is entered.
  • Page 33 The -mode switch defines the ingress classification mode. Selects the IP only classification (DSCP), layer 2 classification is ignored. ipoverl2 Selects the IP classification (DSCP) over layer 2 classification (PCP) if both are present. Selects the layer 2 classification only (PCP), IP classification is ignored. l2overip Select layer 2 classification (PCP) over IP classification (DSCP) if both are present.
  • Page 34 Multiple CoS profile filters will the same name can be configured and applied to a single port by associating the CoS profile with a Bandwidth profile (Section 6.1.3 and 7.1.5.3). If the ingress frame does not meet any of the configured CoS profiles, the ingress traffic will use the default class classification. In the example below class of service profile is created.

  • Page 35: File Directory (Dir)

    6.1.7 File Directory (DIR) The dir command provides the ability to view/delete the files stored on the module. To view/delete the files stored on the module, use the dir command from the CLI prompt. A list of options is displayed when the dir -h command is entered. >...

  • Page 36: Ethertype (Ethertype)

    6.1.8 Ethertype (ETHERTYPE) The ethertype command provides the ability to configure the protocol used to encapsulate a VLAN tagged frame. Ethertype is a two-octet field in an Ethernet frame indicating which protocol is used to encapsulate tag information in the frame data. To configure the Ethertype, use the ethertype command from the CLI prompt.

  • Page 37: Load Firmware (Fwload)

    6.1.9 Load Firmware (FWLOAD) The fwload command provides the ability to activate the application firmware or bootloader on the module. To activate the application firmware stored on the module, use the fwload command from the CLI prompt. A list of options is displayed when the fwload -h command is entered. >...

  • Page 38: Ip (Ip)

    6.1.10 IP (IP) The ip command provides the ability to configure the IP address, subnet mask and gateway of the module. It also allows DHCP to be disabled or enabled. To configure IP, use the ip command from the CLI prompt. A list of options is displayed when the ip -h command is entered.
  • Page 39 The -s switch displays the current IP configuration. To configure the IP address of the module, use the -addr command. > ip -addr 192.168.1.100 Use the -s command to view the IP configuration of the module. > ip -s IPv4 enabled IP 1 MAC address...

  • Page 40: Link Layer Discovery Protocol (Lldp)

    6.1.11 Link Layer Discovery Protocol (LLDP) The IEEE 802.1ab Link Layer Discovery Protocol defines a standard way for Ethernet devices to advertise information about themselves to their neighbors and store information they discover from other device. The lldp command provides the ability to configure the LLDP agent on the module. To configure LLDP, use the lldp option from the CLI prompt.
  • Page 41 The -proto switch selects how LLDPDUs are processed; discard, peer or tunnel. peer The port will participate in the LLDP process. discard LLDP frames are dropped and no reply is generated. tunnel LLDP frames will egress ports unchanged. The -s switch displays the current LLDP status. The -tlv switch selects which optional TLVs to include in the transmit LLDPDUs Management address pdes...
  • Page 42 Port F1 Info: LLDP Protocol: Peer LLDP Mode: Receive and Transmit Enabled LLDP TLVs included: mgt, pdes, sysname, sysdes, syscap LLDP Status: LLDP PDUs are not being received LLDP PDUs transmitted: 0 LLDP PDUs received: 0 LLDP PDUs discarded: 0 LLDP Port TLVs discarded: 0 LLDP Port TLVs unrecognized received: 0 LLDP Port Age Outs: 0...
  • Page 43 Port 3 Info: LLDP Protocol: Peer LLDP Mode: Receive and Transmit Enabled LLDP TLVs included: mgt, pdes, sysname, sysdes, syscap LLDP Status: LLDP PDUs are not being received LLDP PDUs transmitted: 0 LLDP PDUs received: 0 LLDP PDUs discarded: 0 LLDP Port TLVs discarded: 0 LLDP Port TLVs unrecognized received: 0 LLDP Port Age Outs: 0...

  • Page 44: Physical Location (Location)

    6.1.12 Physical Location (LOCATION) The location command provides the ability to configure the physical location of the module including address, city, state, zip code, altitude, latitude and longitude. To configure the location of the module, use the location option from the CLI prompt. A list of options is displayed when the location -h command is entered.
  • Page 45 To configure the location for the module, use the following commands. > location -addr “38 Tesla” -city Irvine -state California -post 92618 > location -s Address 38 Tesla City Irvine State/province California Postal/zipcode 92618 Latitude Longitude Altitude > NOTE: When configuring text based names, such as 38 Tesla, the text name much be in “ ” for the command to be valid (location -addr “38 Tesla”).

  • Page 46: Link Redundancy (Lr)

    6.1.13 Link Redundancy (LR) Link Redundancy is only supported on modules with 2 fiber ports. The lr command configures the module for link redundancy. When configured for link redundancy, the module will transmit and receive traffic on the primary port (F1) and no traffic on the backup port (F2). When a fiber failure occurs on the primary port, the module will switch over to the backup port within 50msec.

  • Page 47: Mac Table (Mactable)

    To enable link redundancy and configure the link not to return to the primary link when the link failure has been fixed, use the lr -ena -noret command. > lr -ena -noret NOTE: To enable link redundancy using the CLI, the on-board DIP switches must be disabled. Use the module -dis dipsw command to disable the DIP-switches.
  • Page 48 NOTE: Port number selection will vary depending on the model. The options available using the mactable command are shown below. The -add switch allows the configuration of static MAC address to the MAC table. The -aging switch defines the time before a MAC address expires. The default value is 300 seconds. The -clr switch clears the learned MAC addresses.

  • Page 49: Module Settings (Module)

    6.1.15 Module Settings (MODULE) The module command provides the ability to configure and display specific module settings. The serial interface baud rate, chassis name, module identifier, and enable/disable hardware DIP-switches can be configured using the module command. To configure the module setting, use the module command from the CLI prompt. A list of options is displayed when the module -h command is entered.
  • Page 50 Displays the voltage and temperature parameters. Displays the manufacturing information. Displays the module specific information. To display the status of the LED on the module, use the module -s led command. > module -s led 1: Power Supply A = Grn 2: Power Supply B = Grn 3: Port F1 100+10...
  • Page 51 Voltage Out: 3.31V Total Current: 260mA Temperature: 51C CPU Utilization: 12% RAM Utilization: 44.2MB out of 509MB (8.7%) Flash Utilization: 204.9MB out of 798MB (25.7%) Module Type: RuggedNet GPoE+/Mi Module Identification: Chassis Name: GPoE+/Mi DIP switches: Disabled Baud rate: 57600 baud >...

  • Page 52: Ping (Ping)

    6.1.16 Ping (PING) The ping command provides the ability to ping network devices connected to the module. This provides a convenient way to verify connectivity through the CLI interface. To configure ping, use the ping command from the CLI prompt. A list of options is displayed when the ping -h command is entered.

  • Page 53: Port Attribute (Port)

    6.1.17 Port Attribute (PORT) The port command provides the ability to configure each port with specific parameters. To configure the attributes of a port, use the port command from the CLI prompt. A list of options is displayed when the port -h command is entered. >...
  • Page 54 The RJ-45 port will operate per the Port Configuration Matrix below. Port Attribute Port RJ-45 Mode of Operation -mo setting Configuration Based on the The RJ-45 port is set to auto-negotiation with the following modes advertised: 1000, an, fdx link partner 1000FDX, 1000HDX, 100FDX, 100HDX, 10FDX, 10HDX Based on the The RJ-45 port is set to auto-negotiation with the following modes advertised: 1000, an, hdx...
  • Page 55 To display the port attributes, use the port -s command. > port -s Port F1 is named “Port F1”, MTU 10240 bytes Port mode is SFP Auto: Fiber 1000, AN, FDX (No link) Port flow control is disabled Port output is enabled MAC learning is enabled: active Port mirroring is disabled Port security is disabled...

  • Page 56: Port Access (Portaccess)

    6.1.18 Port Access (PORTACCESS) The portaccess command provides the ability to control data access to each port on the module. Port Access can be configured to block (Off) user access or enable (On) user access. Port Access enables an administrator to control user access while maintaining port configuration for easy disabling or enabling of customer service.

  • Page 57: Port Statistics (Portstat)

    6.1.19 Port Statistics (PORTSTAT) The portstat command provides the ability to display the port statistics on the module. To display the port statistics, use the portstat command from the CLI prompt. A list of options is displayed when the portstat -h command is entered. >...

  • Page 58: Protocol (Protocol)

    6.1.20 Protocol (PROTOCOL) The protocol command provides the ability to enable/disable specific protocols available on the module. FTP, HTTP, HTTPS, IP, serial, Telnet and flow control can be configured using the protocol command. To configure the protocols, use the protocol option from the CLI prompt. A list of options is displayed when the protocol -h command is entered.

  • Page 59: Power Sourcing Equipment (Pse)

    To display the configuration of the protocols, use the protocol -s command. > protocol -s IP protocol enabled Telnet protocol enabled FTP protocol disabled http protocol enabled https protocol enabled Serial console enabled Flow control disabled Certificate file self-generated > 6.1.21 Power Sourcing Equipment (PSE) The pse command provides the ability to configure power sourcing options on each RJ-45 port.
  • Page 60 The options available using the pse command are shown below. The -dis and -ena switches disable or enable PSE functions on the module. heartbeat Disables/enables the heartbeat signal used to verify connectivity to the PD. heartbeat is disabled by default. The -h switch displays the help screen presented above.
  • Page 61 Use the pse -s command to display the PSE configuration. > pse -s Total power supplied: 1.8886W Port 1 PSE status PSE port: enabled PSE port mode: auto PD mode/status: invalid Voltage supplied: 0.00V Current supplied: 0.00mA Heartbeat: disabled Heartbeat IP address: 0.0.0.0 Heartbeat interval: 1s Heartbeat detection: 3 lost responses Heartbeat error action: Ignore...

  • Page 62: Restart (Restart)

    Port 4 PSE status PSE port: enabled PSE port mode: auto PD mode/status: invalid Voltage supplied: 0.00V Current supplied: 0.00mA Heartbeat: disabled Heartbeat IP address: 0.0.0.0 Heartbeat interval: 1s Heartbeat detection: 3 lost responses Heartbeat error action: Ignore Heartbeat number of restarts: 0 Heartbeat defer time after port restart: 60s Heartbeat status: Disabled >...

  • Page 63: Restore To Factory Defaults (Restore)

    6.1.23 Restore to Factory Defaults (RESTORE) The restore command provides the ability to restore the module to factory default settings. Use the restore option from the CLI prompt to restore factory defaults. A list of options is displayed when the restore -h command is entered. >...

  • Page 64: Ieee 802.1W Rapid Spanning Tree Protocol (Rstp)

    6.1.24 IEEE 802.1w Rapid Spanning Tree Protocol (RSTP) The rstp command provides the ability to configure the parameters used by Rapid Spanning Tree Protocol. The Rapid Spanning Tree Protocol (RSTP) is a network protocol that ensures a loop-free topology for any bridged Ethernet local area network. The basic function of RSTP is to prevent network loops and provide fast convergence after a topology change.
  • Page 65 The -proto switch defines how the RSTP BPDUs are handled. discard RSTP protocol is disabled on the module. peer RSTP protocol is enabled and RSTP BPDUs frames are processed. tunnel RSTP protocol is disabled on the module but RSTP BPDUs are tunneled. The -s switch displays the current Rapid Spanning Tree configuration.
  • Page 66 By default, Rapid Spanning Tree Protocol is tunneled. Use the -proto command to change the way the module handles the protocol. To display spanning tree configuration, use the rstp -s command. > rstp -s Bridge Spanning Tree Global Configuration ============================================ Bridge Id: Designated Root: Bridge Priority:...

  • Page 67: Save (Save)

    6.1.25 Save (SAVE) To save the changes when using the CLI, use the save command from the CLI prompt. A list of options is displayed when the save -h command is entered. > save -h Description: save - save configuration changes into permanent memory Syntax: save save -h...

  • Page 68: Create And Run A Script File (Script)

    6.1.26 Create and Run a Script File (SCRIPT) The script command provides the ability to create, run and save a configuration file to the module. After a file has been opened, all typed CLI commands are written to the file. None of the commands typed are executed, only written to the open file.

  • Page 69: Firmware Update Using Serial Console (Serupdate)

    6.1.27 Firmware Update using Serial Console (SERUPDATE) The serupdate command allows the firmware to be updated using the serial console port. To update the firmware using the serial console port, use the serupdate command from the CLI prompt. A list of options is displayed when the serupdate -h command is entered. >...
  • Page 70 Select the location of the firmware file. Updating the firmware using the serial console port can take a very long time. Please be patient when updating the firmware using the serial console port. Page 70...

  • Page 71: Sfp (Sfp)

    6.1.28 SFP (SFP) The SFP command is only available on modules with SFP ports. The sfp command displays the digital diagnostic information on the selected SFP port. To display the digital diagnostic information, use the sfp command from the CLI prompt. A list of options is displayed when the sfp -h command is entered.
  • Page 72 To display the information for Fiber Port 1, use the sfp -s -p f1 command. > sfp -s -p f1 Port = F1 Address A0 Page Contents =================================================== 00: 03 04 07 00 00 00 02 12 00 01 01 01 0D 00 0C 78 ....x 10: 00 00 00 00 4F 6D 6E 69 74 72 6F 6E 20 53 79 73 ..Omnitron Sys 20: 74 65 6D 73 00 00 06 87 37 32 30 37 2D 31 20 20 tems..7207-1 30: 20 20 20 20 20 20 20 20 30 31 30 30 05 1E 00 03...

  • Page 73: Display The Common Configuration Parameters (Showconfig)

    6.1.29 Display the Common Configuration Parameters (SHOWCONFIG) The showconfig command displays the commonly configured parameters on the module. The parameters that are displayed are: ver, ip, port, protocol, time, module, pse, sfp, acl, bwp, ethertype, switchport, vlan, traphost and traps. To display the parameters, use the showconfig command from the CLI prompt. A list of options is displayed when the showconfig -h command is entered.

  • Page 74: Simple Network Management Protocol (Snmp)

    6.1.30 Simple Network Management Protocol (SNMP) The snmp command provides the ability to configure the SNMP parameters on the module. To configure the module to support Simple Network Management Protocol (SNMP), use the snmp command from the CLI prompt. A list of options is displayed when the snmp -h command is entered. >...

  • Page 75: Simple Network Time Protocol (Sntp)

    6.1.31 Simple Network Time Protocol (SNTP) The sntp command provides the ability to configure the module to request the time and day from a SNTP server. To configure the module to support Simple Network Time Protocol (SNTP), use the sntp command from the CLI prompt. A list of options is displayed when the sntp -h command is entered. >...

  • Page 76: Entry Screen Message Display (Splash)

    To display the SNTP configuration, use the sntp -s command. > sntp -s SNTP service is enabled, query interval is 8 minutes Time zone PST (Pacific Standard Time) Time server 1 IP is 192.168.1.240 Time server 1 status: server not found Time server 2 IP is 255.255.255.255 (not configured) >...

  • Page 77: Secure Shell (Ssh)

    Omnitron Systems Technology, Inc. GPoE+/Mi Copyright 2017-2018 OST, Inc. ----------------------------------------------------------------------------- Omnitron Systems Technology Technical Support: (949) 250-6510 38 Tesla Sales/Products: (800) 675-8410 Irvine, CA 92618 On the web at: www.omnitron-systems.com ----------------------------------------------------------------------------- IP address 192.168.1.220 00-06-87-02-87-50 Serial number 00720087 This product is for the use of authorized user only.
  • Page 78 The options available using the ssh command are shown below. The -dall switch deletes all SSH settings and restores factory defaults. The -dis and -ena switches disable or enable specific authentication methods and file transfer functions. The -genk switch generates the public/private key pair. It takes time to generate the public and private keys.

  • Page 79: Dip-Switch Configuration (Switch)

    6.1.34 DIP-Switch Configuration (SWITCH) The switch command provides the ability to configure and display the DIP-switches on the module. To configure the DIP-switches on the module, use the switch command from the CLI prompt. A list of options is displayed when the switch -h command is entered. >...

  • Page 80: Vlan Interface Configuration (Switchport)

    6.1.35 VLAN Interface Configuration (SWITCHPORT) The switchport command provides the ability to configure VLANs on the module. To configure the VLAN interfaces, use the switchport command from the CLI prompt. A list of options is displayed when the switchport -h command is entered. >...
  • Page 81 The -p switch selects the port number for assignment. The -rem switch removes one or more VLANs from an existing trunk port VLAN list. The -s switch displays the VLAN configuration. The -vid switch configures a VLAN ID to an access or tunnel port. NOTE: By default, traffic is allowed to ingress/egress a trunk port unless it is restricted.

  • Page 82: Syslog Server Configuration (Syslog)

    6.1.36 Syslog Server Configuration (SYSLOG) Syslog is a standard for message logging per RFC 5424. It is used to manage system logs and alerts. To configure syslog, use the syslog command from the CLI prompt. A list of options is displayed when the syslog -h command is entered. >...
  • Page 83 The -s switch displays the syslog configuration and the last 10 entries. The -test switch generates a test syslog entry for a specific severity and a specific message. To configure the IP address of the syslog server and enable syslog, use the following command. >...

  • Page 84: Time (Time)

    6.1.37 Time (TIME) The time command provides the ability to set or display the time of day on the module. To configure time on the module, use the time command from the CLI prompt. A list of options is displayed when the time -h command is entered. >...

  • Page 85: Snmp Trap Host (Traphost)

    6.1.38 SNMP Trap Host (TRAPHOST) SNMP traps report events that occur during the operation of a network, and may require the attention of the network administrator. The module is capable of sending SNMP traps to eight different SNMP Trap Hosts (IP addresses). The traphost command provides the ability to configure the IP addresses of the SNMP Trap Hosts. To configure the Trap Hosts, use the traphost command from the CLI prompt.

  • Page 86: Snmp Traps (Traps)

    6.1.39 SNMP Traps (TRAPS) The traps command provides the ability to enable/disable specific module traps. By default, all traps are enabled. To enable traps, use the traps option from the CLI prompt. A list of options is displayed when the traps -h command is entered.
  • Page 87 To display the traps, use the traps -s command. > traps -s SNMP trap type: SNMPv2c Severity Level: all Trap Type Status Severity ============================================================ Module cold start Enabled Notice Module reset Enabled Warning Module power removed Enabled Warning Module power applied Enabled Warning Link down...

  • Page 88: User Configuration (User)

    To view the trap log, use the traps -log command. > traps -log Date/Time Trap # / Description ================================================================================ 01/29/2000 07:10:51 PM Serial console port session started user admin 01/29/2000 07:10:13 PM PoE status port 4 error 2 01/29/2000 07:10:07 PM PoE status port 4 error 1 01/29/2000 06:51:32 PM Serial console port session stopped user admin...
  • Page 89 The -ato switch defines the time allowed for the completion of an authentication attempt. The -d switch deletes a user profile by selecting the user number or user name. The -dall switch deletes all user profiles except the currently logged in user. The -fsto switch configures the FTP session timeout value in seconds.

  • Page 90: Firmware Version (Ver)

    6.1.41 Firmware Version (VER) The ver command provides the ability to display the firmware version currently running on the module. A list of options is displayed when the ver -h command is entered. > ver -h Description: ver - version status Syntax: ver [-h] ver -s Switches:...

  • Page 91: Vlan Table (Vlan)

    6.1.42 VLAN Table (VLAN) The vlan command adds and displays the configured VLANs on the module. A list of options is displayed when the vlan -h command is entered. > vlan -h Description: vlan - vlan configuration Syntax: vlan [-h] vlan -s vlan -add vlanId [-vname vlanName] vlan -rem vlanList vlan -mod vlanId -vname vlanName...

  • Page 92: Zone (Zone)

    6.1.43 Zone (ZONE) The zone command displays the list of time zone values. To display the time zone values, use the zone -h command from the CLI prompt. > zone -h Zone Full name Location Time Adjustment =============================================================================== Greenwich Mean Time Europe Coordinated Universal Time Europe...

  • Page 93: Web Interface

    7.0 WEB INTERFACE 7.1 OVERVIEW The GPoE+/Mi functions can be configured using the IP-based Web management interface. The IP-based web management can be accessed through any of the Ethernet RJ-45 or fiber ports and facilitates the configuration and real-time operation monitoring of each port. The factory default IP address is 192.168.1.220.

  • Page 94: Status Screens

    7.1.2 Status Screens 7.1.2.1 Module Overview The Module Overview screen provides information on the Port Types (copper or fiber), Link State, Port State (speed, duplex), PSE State (active or standby) and PD related information. NOTE: The number of ports and power supplies will vary depending on the model. Port Status Port Indicates the port designation.
  • Page 95 PoE Status PSE State Indicates if the port is an active PoE connection or a non-PoE device. It also provides a graphical indication of the amount of power provided to the attached PD. PD State Displays the type of IEEE PoE device discovered (802.3af or 802.3at) and the amount of power required by the class of PD.

  • Page 96: Module Information

    7.1.2.2 Module Information The Module Information screen provides information on the part number, serial number, firmware revision, manufacturing date, MAC address, temperature as well as information on uptime and system utilization. A Refresh button and Auto Refresh check box is also located at the bottom left corner of the screen. Click the Refresh button to update the screen.

  • Page 97: Port Statistic Overview

    7.1.2.3 Port Statistic Overview The Port Statistic Overview screen provides information on transmit and receive data traffic for each port on the module. NOTE: The number of ports and power supplies will vary depending on the model. A Clear Counters button is located at the bottom left corner of the screen to clear the statistic on the module. Click on the Clear Counters button to clear the statistics.

  • Page 98: Port Statistics Detailed

    7.1.2.4 Port Statistics Detailed The Port Statistic Detailed screen provides more detailed information on the transmit and receive data traffic. Use the Port Selection pull-down menu to select the port to be displayed. The GPoE+/Mi has eight transmit queues for data traffic of different priorities. The Port Statistic Detailed screen displays the number of packets in each queue.
  • Page 99 Pause Packets The total number of Pause packets transmitted/received by a port. Error Packets The total number of Excessive Collision and Late Collision packets transmitted/received by a port. Dropped Packets The total number of dropped packets transmitted/received by a port. Receive Packet by Size 64 bytes The total number of packets (including bad packets) received that were 64 octets in length.

  • Page 100: Sfp Port Info

    7.1.2.5 SFP Port Info The SFP Port Info screen provides the A0/A2 Hexadecimal and A0/A2 Decoded values for the installed SFP transceiver. Use the Port Selection pull-down menu to select the port to be displayed. Use the Page Selection pull-down to select the A0/A2 Hexadecimal or A0/A2 Decoded pages to be displayed. A Refresh button and Auto Refresh check box is also located at the bottom left corner of the screen.
  • Page 101 Use the Page Selection pull-down to select the A0 or A2 Decoded pages. Select A0. The following general information is available: • Identifier Values • Extended Identifier • Connector Values • Transceiver Compliances • Encoding Mechanism • Normal Bit Rate •...
  • Page 102 Use the Page Selection pull-down to select the A0 or A2 Decoded pages. Select A2. The following diagnostic information is available: • Measured Temperature • Measured Vcc • Measured Bias • Measured Tx Power • Measured Rx Power • Temperature High/Low Alarm •...

  • Page 103: Hardware Configuration Screens

    7.1.3 Hardware Configuration Screens 7.1.3.1 DIP Switch The DIP Switch screen provides information on the function and physical setting of each DIP-switch. To change the DIP-switch settings, use the pull-down menu under the Global Settings and select the DIP-switches disabled, software override active option. Click on the Apply button to activate the changes. Once the Global Setting has been changed to DIP-switches disabled, software override active, the soft switch DIP-switch settings can be modified by using the pull-down menu next to next selection.
  • Page 104 To change the individual DIP-switch settings, use the pull-down menu associated with the DIP-switch. The table below defines the DIP-switch settings. See Section 2.2 on the DIP-switch definitions. Switch Function Soft Switch Configuration Options Single switch mode (factory default) Device Mode Dual switch mode Normal switch mode (factory default) Switch mode Directed switch mode...

  • Page 105: Port / Interface Overview

    7.1.3.2 Port / Interface Overview The Port / Interface Overview screen allows the ports to be configured for speed, duplex, flow control, port access and PoE state. The Link and PSE State is displayed for each port. The Port / Interface Overview screen also provides the ability to reset power to the Powered Devices attached to the copper PSE ports. NOTE: The number of fiber ports will vary depending on the model.
  • Page 106 The fiber ports can be configured for: The default setting is Auto negotiation. The copper ports can be configured for: The default setting is Auto negotiation. Flow Control Use the Flow Control pull-down menu to enable or disable flow control (pause) on the selected port. When enabled, the port will advertise Symmetrical and Asymmetrical Pause capability.

  • Page 107: Port / Interface Detailed

    7.1.3.3 Port / Interface Detailed The Port / Interface Detailed screen allows the ports to be configured with specific attributes. These include flow control, MAC learning, port mirroring, port output, port security and advanced PoE port settings. Use the Port Selection pull-down menu to selected the desired port. Use the pull-down menus associated with the attribute to change the parameter.
  • Page 108 Unknown Multicast/Unicast Use the Unknown Multicast/Unicast pull-down menu to accept or reject unknown multicast and unicast traffic. Port Mirroring Use the Port Mirroring pull-down menu to enable or disable port mirroring. When enabled, select the port to be mirrored. Cable Test To run a cable test, use the Port Selection pull-down menu to select a RJ-45 port.
  • Page 109 Power Over Ethernet PoE State Initially, the setting will match the hardware setting for DIP-switch #6. Use the PoE State pull-down menu to select PoE Disabled, PoE Auto Detect 802.3af, PoE Auto Detect 802.3af/at or PoE Forced On. Heartbeat Use the Heartbeat pull-down menu to enable or disable heartbeat. The heartbeat signal is used to verify connectivity to the PD.

  • Page 110: I/O Pins

    7.1.3.4 I/O Pins The I/O Pins screen provides status for the alarm relay and alarm input. It also provides the ability to assign a failure type and name to the alarm relay and alarm input. Input Pin Input Name Enter a name for the alarm input in the text box. Input Pin Displays the status of the alarm input (input open or input closed).
  • Page 111 Output Relay Normally Open Name Enter a name for the normally opened condition in the text box. Normally Closed Name Enter a name for the normally closed condition in the text box. Output Pin Displays the status of the alarm relay (output not energized, output energized). Energized Indicates a normally open contact has closed or a normally closed contact has opened.

  • Page 112: Service Management

    7.1.4 Service Management 7.1.4.1 Module The Module screen provides the ability to enable/disable Global Flow Control, FTP, HTTP, HTTPS, Telnet, Serial Console baud rate, MAC Aging and location specific information. General Module Name Use the Module Name text box to enter a unique name for the module. Use the FTP pull-down menu to enable or disable FTP.
  • Page 113 MAC Aging Time Use the MAC Aging Time text box to enter a new value for the timer. A value of 10 to 600 seconds is a valid entry. HTTP Use the HTTP pull-down menu to enable or disable HTTP support. HTTP is enabled by default. HTTPS Use the HTTPS pull-down menu to enable or disable HTTPS support.

  • Page 114: Ip Configuration

    7.1.4.2 IP Configuration The IP Configuration screen provides the ability to configure the IP address, subnet mask and gateway of the module. DHCP and DHCP relay (option 82) can also be enabled and/or disabled. IPv4 Client Use the IPv4 Client pull-down menu to enable or disable IP protocol on the module. IPv4 Address Enter the IP address in the text box in the x.x.x.x format (x represents a decimal number between 0 and 255).
  • Page 115 DHCPv4 Circuit ID Use the DHCPv4 Circuit ID Selection pull-down menu to enable or disable the DHCP relay circuit ID. DHCPv4 Remote ID Use the DHCPv4 Remote ID Selection pull-down menu to enable or disable the DHCP relay remote ID. DHCP Remote Server IP Address Enter the DHCP server IP address in the text box in the x.x.x.x format (x represents a decimal number between 0 and 255).

  • Page 116: Snmp

    7.1.4.3 SNMP The SNMP screen provides the ability to configure the SNMP parameters on the module. Use the Instance Selection pull-down menu to select the global or port settings. Select Global Settings. SNMP Agent Use the SNMP Agent pull-down menu to configure the SNMP agent by selecting SNMPv1/v2c, or None. When None is selected, the module will not respond to any requests via the SNMP protocol.
  • Page 117 Use the Instance Selection pull-down menu to select the global or port settings. Select SNMP v1/v2c Settings. Click the Modify button to change the Read or Write Community Names. Page 117...
  • Page 118 Read Community The SNMP Read Community Name is necessary for reading (SNMP get) data from the module. The name can be a combination of 1-32 alphanumeric character string. “public” is the default setting. Enter the new Read Community Name in the text box. Read Community (Again) Confirm the new Read Community Name by entering it the text box (again).

  • Page 119: Time And Date

    7.1.4.4 Time and Date The Time and Date Configuration screen provides the ability to change the Time of Day, Date and Time Zone. The System Up Time is displayed along with the local time associated with the workstation running the web interface. Use the pull-down menus associated with each item to make changes to the Time of Day, Date and Time Zone.

  • Page 120: Ntp / Sntp

    7.1.4.5 NTP / SNTP The NTP / SNTP screen provides the ability to configure Network Time Protocol (NTP) and Simple Network Time Protocol (SNTP) on the module. NTP / SNTP Type Use the NTP / SNTP Type pull-down menu to select Time protocol disabled, NTP enabled or SNTP enabled. Time Server Request Interval (minutes) Use the Time Server Request Interval text box to enter a new value for the time between server requests.

  • Page 121: Lldp

    7.1.4.6 LLDP The LLDP screen provides the ability to configure the module to support Link Layer Discovery Protocol (LLDP). The IEEE 802.1ab Link Layer Discovery Protocol defines a standard way for Ethernet devices to advertise information about themselves to their neighbors and store information they discover from the neighboring devices.
  • Page 122 Maximum Number of Fast LLDP Messages Specifies the number of LLDPDUs that are transmitted during a fast transmission period. The range is 1 to 8 messages and the default value is 4. Enter the new value in the text box. Maximum Number of LLDP Messages Specifies the maximum number of consecutive LLDPDUs that can be transmitted at any time.
  • Page 123 Use the Instance Selection pull-down menu to select the global or port settings. Select P1. Port Configuration LLDP Setting Use the LLDP Setting pull-down menu to select how LLDP is configured on the module (Peer, Discard, Tunnel). Peer The port will participate in the LLDP process. Discard LLDP frames are dropped and no reply is generated.
  • Page 124 Port Description TLV The Port Description is the same as the Port Name of the module. Use the Port Description pull-down menu to select if this information is Included or Not Included in the LLDPDU. System Name TLV The LLDP System name is the same as System Name of the module. Use the System Name pull-down menu to select if this information is Included or Not Included in the LLDPDU.

  • Page 125: Service Activation

    7.1.5 Service Activation 7.1.5.1 VLAN Configuration The VLAN Configuration screen provides the ability to configure VLANs on the module. Entry System defined sequential number for each VLAN entry. VLAN ID Enter the VLAN ID in the text box. VLAN Name Enter the name for the VLAN ID in the text box. Delete Check the box and click the Delete button to delete the VLANs.
  • Page 126 Click the Save button to permanently save the changes. Page 126...

  • Page 127: Vlan Interface

    7.1.5.2 VLAN Interface The VLAN Interface screen provides the ability to configure the ports for access, tunnel or trunk and assign VLAN IDs (VID) to the ports. Trunk Ethertype Selection Use the Trunk Ethertype Selection text box to enter a new value for the Ethertype for a port configured as a trunk.
  • Page 128 Use the VID pull-down menu to select a VLAN ID. All VLAN IDs that were configured using the VLAN Configuration screen are available. Native VLAN When a native VLAN is configured, all untagged traffic on the trunk port is set to the VLAN ID associated with the native VLAN.

  • Page 129: Rate Limiting & Shaping

    7.1.5.3 Rate Limiting & Shaping The Rate Limiting & Shaping screen provides the ability to add a bandwidth profile to a port on the module. Use the Selection pull-down menu to select Ingress/Egress, Ingress, Egress or Egress Queues. Select Ingress/Egress. Ingress Rate Port Indicates the port designation.
  • Page 130 Policing Use Policing pull-down menu to select whether bandwidth profiles are counted based upon L1 (frame + interframe gap + preamble), L2 only, or L3 only. Class of Service Use the Class of Service pull-down menu to select a class of service profile for the bandwidth profile. All class of service profiles that were configured using the CoS / QoS screen are available.
  • Page 131 The actual weight for a queue type of fw is from the respective queue weight from the Queue Mix setting. Click the Cancel button to revert back to the previous Apply state. Click on the Apply button to activate the changes. Click the Save button to permanently save the changes.
  • Page 132 Class of Service Use the Class of Service pull-down menu to select a class of service profile for the bandwidth profile. All class of service profiles that were configured using the CoS / QoS screen are available. Click the Cancel button to revert back to the previous Apply state. Click on the Apply button to activate the changes.
  • Page 133 Queue Type Use the Queue Type pull-down menu to select the type as starving, fairweight or mix. Starving All queues are set up to starving (strict) priority Fairweight All queues are setup for weighted fair queuing using the Queue Mix setting. Each of the eight queues are set up individually: q7,q6,q5,q4, q3, q2, q1,q0 where qx can be one of two values (sp or fw): Queue Mix...
  • Page 134 Use the Selection pull-down menu to select Ingress/Egress, Ingress, Egress or Egress Queues. Select Egress Queues. Egress Queue Rates Port Indicates the port designation. Q7...Q0 Enter the CIR rate for each egress priority queue in the text boxes. Click the Cancel button to revert back to the previous Apply state. Click on the Apply button to activate the changes.

  • Page 135: Cos / Qos

    7.1.5.4 CoS / QoS The CoS / QoS screen provides the ability to configure and display Class of Service profiles. Class of Service (CoS) / Quality of Service (QoS) is supported by mapping customer frames into eight egress queues based on using the 3-bit Priority Code Point (PCP) field in the VLAN tag. The priority of ingress frames correspond to eight possible values or priorities (0 through 7).
  • Page 136 0 - 7, 7 being the highest priority. Class values are 0 - 7, 0 being discard and 7 being the highest egress queue. Class values 0 - 7 correspond to egress queues 0 - 7. Multiple CoS profile filters with the same name can be configured and applied to a single port by associating the CoS profile with a Bandwidth profile.

  • Page 137: Protection

    7.1.5.5 Protection The Protection screen provides the ability to configure Link Redundancy or Rapid Spanning Tree Protocol. The Rapid Spanning Tree Protocol (RSTP) is a network protocol that ensures a loop-free topology for any bridged Ethernet local area network. The basic function of RSTP is to prevent network loops and provide fast convergence after a topology change.
  • Page 138 Redundant Mode with return to primary The fiber ports operate as redundant links. A fault on the primary fiber port F1, will cause a fail over to the secondary fiber port F2 within 50msec. The module will return to the primary fiber port F1 after the fiber link has been restored for 6 seconds.
  • Page 139 Use the Instance Selection pull-down menu to select Global, Port F1, Port F2, Port P1, Port P2, Port P3 or Port P4. Select Port P1. Link Redundancy Status Link Redundancy Status is only available on Port F1 and F2. Displays the status of the link redundancy connection. RSTP Port Configuration Use the RSTP Port Configuration pull-down menu to select how BPDUs frames are handled (Discard, Peer or Tunnel).
  • Page 140 Link Speed Port Cost Values 10Mbps 2,000,000 100Mbps 200,000 1Gbps 20,000 10Gbps 2,000 100Gbps Recommended Port Cost vs. Link Speed RSTP Port Priority If two paths have the same port cost, the bridges must select a preferred path. Port Priority is used to determine the preferred path.

  • Page 141: Security

    7.1.6 Security 7.1.6.1 Authenticate, Authorize, Account (AAA) The AAA screen provides the ability to configure Authentication, Authorization and Accounting (AAA), Remote Authentication Dial-In User Service (RADIUS), Terminal Access Controller Access-Control System Plus (TACACS+) and Port Based Network Access Control (IEEE 802.1X). Authentication, Authorization and Accounting (AAA) is a framework for controlling access to computer resources, enforcing policies, auditing usage and providing the information necessary to bill for services.
  • Page 142 Use the Selection pull-down menu to select Authentication Method, TACACS+, RADIUS or Port Authentication (802.1x). Select Authentication Method. AAA Configuration Use the AAA Configuration pull-down menu to enable or disable AAA processing. Authentication Method In the Authentication Method text box, enter the authentication method (local, tacacs, radius or none). Multiple methods can be configured.
  • Page 143 Authentication Port Enter the authentication port number in the text box. The default port number is 49. Accounting Port Enter the accounting port number in the text box. The default port number is 49. Server Key Enter the Server Key in the text box. Server Timeout (s) Enter the server timeout value in seconds in the text box.
  • Page 144 Server Host 2 Enter the IP Addresses of the RADIUS servers in the text box. Authentication Port Enter the authentication port number in the text box. The default port number is 1812. Accounting Port Enter the accounting port number in the text box. The default port number is 1813. Server Key Enter the Server Key in the text box.
  • Page 145 802.1x Configuration Use the 802.1x Configuration pull-down menu to enable or disable 802.1x processing. 802.1x Guest VLAN Use the 802.1x Guest VLAN pull-down menu to enable or disable Guest VLAN. Port Indicates the port designation. Port Mode Use the Port Mode pull-down menu to select how 802.1x frames are handled (Discard, Peer or Tunnel). Discard 802.1X is disabled, 802.1X frames are discarded.

  • Page 146: Access Control List (Acl)

    7.1.6.2 Access Control List (ACL) The ACL screen provides basic traffic filtering capabilities with Access Control Lists (ACL). Access Control Lists can prevent certain traffic from entering or exiting the management port. ACLs can be configured for ARP, ICMP, IP, TCP and UDP protocols. These protocols can be configured to be permitted or denied access.

  • Page 147: Secure Shell (Ssh)

    Protocol Use the Protocol pull-down menu to select the protocol as ARP, ICMP, IP, TCP or UDP. Starting IP Address Enter the starting source IP Address in the text box. Ending IP Address Enter the ending source IP Address in the text box. Access Type Use the Access Type pull-down menu to select the access type as Permit or Deny.
  • Page 148 Secure Shell (SSH) protocol provides authentication, encryption, and the integrity of data transmitted over a network. SSH uses public-key cryptography to authenticate the remote devices and allows the remote device to authenticate the user. The module supports SSH Version 2. SSH Protocol Use the SSH Protocol pull-down menu to enable or disable SSH protocol.

  • Page 149: User

    7.1.6.4 User The User screen provides the ability to change the Username and Password used to log into the Serial, web, Telnet, FTP and SSH interfaces. User Username Displays the user name. Password Displays ******* associated with the password. User Type Displays the type of user.
  • Page 150 Global Authentication Retries Displays the number of authentication retries. Authentication Timeout (s) Displays the value of the authentication timeout. Session Lockout (s) Displays the value in seconds for the session lockout. FTP Session Timeout (s) Displays the value in seconds of the FTP session timeout. Click the Modify button to change the User parameters.
  • Page 151 Change the username and password. NOTES: Username must contain 1-32 characters and may contain a-z, A-Z, 0-9 and the special characters dash (-), underscore (_) and period (.). Passwords must contain 1-32 printable characters and may contain a-z, A-Z, 0-9 and the special characters ! # $ % &...
  • Page 152 Session Timeout (s) Enter a new value for the session timeout in the text box. A value of 0 to 3600 seconds is a valid entry. SSH Filename Enter the new SSH filename in the text box. Global Authentication Retries Use the Authentication Retries text box to configure the number of authentication retries.

  • Page 153: Maintenance

    7.1.7 Maintenance 7.1.7.1 Firmware Upgrade The Firmware Upgrade screen provides the ability to upgrade the firmware and bootloader. Also displayed is the current and swap images installed on the module and the current update status. Current firmware revision Displays the current firmware. Upgrade Firmware To upgrade the firmware or bootloader, click the Browse button.
  • Page 154 Revert firmware The Revert Firmware button reverts the firmware to the revision listed in the Next swap image version. To change the reverted firmware revision (Next swap image version) to the latest version, repeat the upgrade procedure as indicated above. Current image version The details of the current firmware is displayed.

  • Page 155: Module Maintenance

    7.1.7.2 Module Maintenance The Module Maintenance screen provides the ability to restart, restore and save/restore the current/saved configuration. The current and swap image revisions are displayed. Restart/Reboot To restart the module, click the Restart button. A dialog box is displayed. Click Yes or No to continue with the restart process.

  • Page 156: Browser Settings

    7.1.7.3 Browser Settings The Browser Settings screen provides the ability to change the auto refresh, session timeouts and menu display options. Auto Refresh Rate To change the Auto Refresh Rate, use the pull-down menu and select a new value. Page 156...
  • Page 157 Session Timeout To change the Session Timeout, use the pull-down menu and select a new value. Auto Refresh To enable or disable Auto Refresh, use the pull-down menu to select enable or disable. Menu Type Use the Menu Type pull-down menu to change the method of accessing the side menu (Always Expanded, Auto Expand or Click to Expand).

  • Page 158: Syslog

    7.1.7.4 Syslog The Syslog tab provides the ability to view and configure Syslog functions. Syslog is a standard for message logging per RFC 5424. It is used to manage system messages and alerts. Each message is labeled with a facility code, indicating the software type generating the message, and the message is assigned a severity level.
  • Page 159 Critical Hard device errors. Alert A condition that should be corrected immediately. Emergency A panic condition. Facility Code A facility code is used to specify the type of program that is logging the messages. Enter the Facility code in the text box. Number of Entries to Display Enter the number of entries to be displayed in the log.

  • Page 160: Snmp Traps Screen

    7.1.7.5 SNMP Traps Screen The SNMP Traps screen provides the ability to display the trap history on the module and also enable/ disable specific traps. Use the Selection pull-down menu to select SNMP Log Entries or SNMP Trap Filtering. Select SNMP Log Entries. Index A index number is assigned to each trap entry Date / Time...
  • Page 161 Use the Selection pull-down menu to select SNMP Log Entries or SNMP Trap Filtering. Select SNMP Trap Filtering. The SNMP Trap Filtering screen provides a list of traps that can be generated by the module. Each individual trap can be enabled or disabled and a severity level can be assigned. Trap # Identifies the trap by number.

  • Page 162: Splash Screen

    7.1.7.6 Splash Screen The Splash screen provides the ability to configure a message that is displayed after the module has been restarted or rebooted. The message is displayed after the Entry screen is displayed. Page 162...
  • Page 163 Enter a message to be displayed in the Input Data text box. The message is visible in the Review Data text box. Click the Cancel button to revert back to the previous Apply state. Click on the Apply button to activate the changes. Click the Save button to permanently save the changes.

  • Page 164: Specifications

    8.0 SPECIFICATIONS RuggedNet GPoE+/Mi Description 10/100/1000BASE-T to 1000BASE-X Ruggedized Managed PoE+ Ethernet Switch IEEE 802.3, IEEE 802.3af (15.40 watts max), Standard Compliances IEEE 802.3at (30 watts max) IEEE 802.1Q, IEEE 802.1ad Environmental REACH, RoHS and WEEE PoE Modes IEEE Alternate A (Alt A) Management Web, Telnet, SSH, Serial Console, SNMPv1/v2c Frame Size...

  • Page 165: Appendix A: Firmware Update

    9.0 APPENDIX A: FIRMWARE UPDATE 9.1 OVERVIEW Appendix A describes the procedure for updating the firmware using ftp and web interface. 9.2 SAVE CURRENT SETTINGS Under normal circumstances the current configuration of the GPoE+/Mi will carry forward to the new version during the update, however, extreme events such as a power outage can lead to settings being lost. Prior to upgrading, it is recommended that the settings be recorded.
  • Page 166 The default ftp password is public. To change the password, use the user command. > user -m -name admin -pw <new passord> To upgrade the application firmware, open a DOS command window and enter the following commands. Bold lettering indicates information to be entered. >...

  • Page 167: Updating The Firmware Using The Web Interface

    9.5.2 Updating the Firmware Using the Web Interface The firmware on the GPoE+/Mi can be upgraded using the IP-based Web management interface. The IP- based web management can be accessed through any of the Ethernet RJ-45 or fiber ports and facilitates the configuration and real-time operation monitoring of each port. The factory default IP address is 192.168.1.220.
  • Page 168 Access the Firmware Upgrade screen to upgrade the firmware on the module. To upgrade the firmware, click the Choose File button. A file selection screen will open. Browse the workstation for the location of the firmware file. Once selected, click the Open button. Click the Upload button to start the upgrade process.
  • Page 169 Verify the firmware has been upgraded by accessing the Firmware Upgrade screen. The “Current firmware revision” will indicate the upgraded version. If the firmware was upgraded a second time, the “Next swap image revision” will also indicate the upgraded version. Page 169...

  • Page 170: 10.0 Warranty And Copyright

    Omnitron logo. All other company or product names may be trademarks of their respective owners. The information contained in this publication is subject to change without notice. Omnitron Systems Technology, Inc. is not responsible for any inadvertent errors.

  • Page 171: 11.0 Customer Support Information

    11.0 CUSTOMER SUPPORT INFORMATION If you encounter problems while installing this product, contact Omnitron Technical Support: Phone: (949) 250-6510 Fax: (949) 250-6514 Address: Omnitron Systems Technology, Inc. 38 Tesla Irvine, CA 92618, USA Email: support@omnitron-systems.com URL: www.omnitron-systems.com 041-09540-001D 4/19 Page 171...

Table of Contents