Moxa Technologies EDS-510E User Manual
  1. Manuals
  2. Brands
  3. Moxa Technologies Manuals
  4. Switch
  5. EDS-510E Series
  6. User manual

Moxa Technologies EDS-510E User Manual

Hide thumbs Also See for EDS-510E:
Table of Contents

Advertisement

Quick Links

Moxa Managed Ethernet Switch
(UI_2.0_FW_5.x) User Manual
Version 2.2, June 2022
www.moxa.com/products
Models covered by this user manual (only applies to products
using firmware version 5.0 or higher):
EDS-510E, EDS-518E, EDS-528E, EDS-G508E, EDS-G512E, EDS-
G516E, EDS-P506E-4PoE, EDS-G512E-8PoE, IKS-6726A, IKS-6728A,
IKS-6728A-8PoE, IKS-G6524A, ICS-G7526A, ICS-G7528A, ICS-
G7748A, ICS-G7750A, ICS-G7752A, IKS-G6824A, ICS-G7826A, ICS-
G7828A, ICS-G7848A, ICS-G7850A, ICS-G7852A, PT-G7728, PT-G7828
© 2022 Moxa Inc. All rights reserved.

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the EDS-510E and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Moxa Technologies EDS-510E

Summary of Contents for Moxa Technologies EDS-510E

  • Page 1 Version 2.2, June 2022 www.moxa.com/products Models covered by this user manual (only applies to products using firmware version 5.0 or higher): EDS-510E, EDS-518E, EDS-528E, EDS-G508E, EDS-G512E, EDS- G516E, EDS-P506E-4PoE, EDS-G512E-8PoE, IKS-6726A, IKS-6728A, IKS-6728A-8PoE, IKS-G6524A, ICS-G7526A, ICS-G7528A, ICS- G7748A, ICS-G7750A, ICS-G7752A, IKS-G6824A, ICS-G7826A, ICS- G7828A, ICS-G7848A, ICS-G7850A, ICS-G7852A, PT-G7728, PT-G7828 ©...
  • Page 2 Moxa Managed Ethernet Switch (UI_2.0_FW_5.x) User Manual The sof tware described in this manual is f urnished under a license agreement and may be used only in accordance with the terms of that agreement. Copyright Notice © 2022 Moxa Inc. All rights reserved. Trademarks The MOXA logo is a registered trademark of Moxa Inc.

  • Page 3: Table Of Contents

    Table of Contents About This Ma nua l .......................... 5 Getting Started ..........................6 USB Console Conf iguration (115200, None, 8, 1, VT100) ................ 6 Conf iguration by Command Line Interf ace (CLI) ..................9 Conf iguration by Web Console ......................11 Disabling Telnet and Browser Access ....................
  • Page 4 Port Security ........................... 88 Port Access Control Table ......................91 Broadcast Storm Protection ....................... 91 Loop Protection ........................92 Access Control List ........................92 DHCP ............................99 IP-Port Binding ........................99 DHCP Relay Agent........................99 SNMP ............................102 SNMP Read/Write Settings....................... 103 Trap Settings ........................

  • Page 5: 1. About This Manual

    1. About This Manual Thank you f or purchasing a Moxa managed Ethernet switch. Read this user’s manual to learn how to connect your Moxa switch to Ethernet-enabled devices used f or industrial applications. A synopsis of chapters 2 and 3 are given below: Chapter 2: Getting Started •...

  • Page 6: Getting Started

    2. Getting Started In this chapter, we explain how to install a Moxa switch f or the f irst time. There are three ways to access the Moxa switch’s conf iguration settings: USB console, command line interf ace, or web-based interf ace. If you do not know the Moxa switch’s IP address, you can open the USB console by connecting the Moxa switch to a PC’s USB port with a USB cable.
  • Page 7 Select Open under the Port Manager menu to open a new connection. The Property window should open. On the Communication Parameter tab f or Ports, select the COM port that is being used f or the console connection. Set the other f ields as f ollows: 115200 f or Baud Rate, 8 f or Data Bits, None f or Parity, and 1 f or Stop Bits.
  • Page 8 The USB console will prompt you to log in. Press Enter and select admin or user. Use the down arrow key on your keyboard to select the Password f ield and enter a password if desired. This password will be required to access any of the consoles (web, serial, Telnet). NOTE By def ault, the password assigned to the Moxa switch is moxa.

  • Page 9: Configuration By Command Line Interface (Cli)

    Configuration by Command Line Interface (CLI) Opening the Moxa switch’s Telnet or web console over a network requires that the PC host and Moxa switch are on the same logical subnet. You may need to adjust your PC host’s IP address and subnet mask. By def ault, the Moxa switch’s IP address is 192.168.127.253 and the Moxa switch’s subnet mask is 255.255.255.0 (ref erred to as a Class B network).
  • Page 10 The Telnet console will prompt you to log in. Press Enter and then select admin or user. Use the down arrow key on your keyboard to select the Password f ield and enter a password if desired. This password will be required to access any of the consoles (web, serial, Telnet). If you do not wish to create a password, leave the Password f ield blank and press Enter.

  • Page 11: Configuration By Web Console

    Configuration by Web Console The Moxa switch’s web console is a convenient platf orm f or modif ying the conf iguration and accessing the built-in monitoring and network management f unctions. You can open the Moxa switch’s web console using a standard web browser, such as Internet Explorer.

  • Page 12: Disabling Telnet And Browser Access

    NOTE By def ault, the password assigned to the Moxa switch is moxa. Be sure to change the def ault password af ter you f irst log in to help keep your system secure. Af ter logging in, you may need to wait a f ew moments f or the web console to appear. Use the f olders in the lef t navigation panel to navigate between dif f erent pages of conf iguration options.

  • Page 13: Featured Functions

    3. Featured Functions In this chapter, we explain how to access the Moxa switch’s various conf iguration, monitoring, and management f unctions. These f unctions can be accessed by USB console, Telnet console, or web console. The USB console can be used if you do not know the Moxa switch’s IP address. To access the USB console, connect switch’s USB port to your PC’s COM port.

  • Page 14: System Settings

    System Settings The System Settings section includes the most common settings required by administrators to maintain and control a Moxa switch. System Information Def ine System Information items to make it easier to identif y dif f erent switches that are connected to your network.

  • Page 15: User Account

    Contact Information Setting Description Factory Default This option is usef ul f or providing inf ormation about who is Max. 30 characters responsible f or maintaining this unit and how to contact this None person. Web Login Message Setting Description Factory Default This option is usef ul as it shows a message when a user’s Max.
  • Page 16 Creating a New Account Click Create, type in the user name and password, and assign an authority to the new account. Click Apply to add the account to the Account List table. Setting Description Factory Default User Name User Name None (Max.

  • Page 17: Password Login Policy

    Password Login Policy In order to prevent hackers f rom cracking the password, Moxa switches allow users to conf igure a password f or their account and lock the account in the event that the wrong password is entered. The account password policy requires passwords to be of a minimum length and complexity with a strength check.

  • Page 18: Network

    Network Network conf iguration allows users to conf igure both IPv4 and IPv6 parameters f or management access over the network. The Moxa switch supports both IPv4 and IPv6, and can be managed through either of these address types. IP Settings The IPv4 settings include the switch’s IP address and subnet mask, as well as the IP address of the def ault gateway.
  • Page 19 DNS Server IP Addresses Setting Description Factory Default Specif ies the IP address of the DNS server used by your network. Af ter specif ying the DNS server’s IP address, you can 1st DNS Server None use the Moxa switch’s URL (e.g., www.PT.company.com) to open the web console instead of entering the IP address.

  • Page 20: Date And Time

    Date and Time The Moxa switch has a time calibration f unction based on inf ormation f rom an NTP server or user specif ied time and date, allowing f unctions such as automatic warning emails to include a time and date stamp. NOTE The user must update the Current Time and Current Date af ter powering of f the switch f or a long period of time (f or example a f ew days).
  • Page 21 Clock Source is from Local Time Setting The Time settings are set manually or synced automatically with Moxa’s switch time. Clock Source is from NTP The Moxa switch can work as an NTP client or NTP server. The user can enable the NTP Authentication f unction to do authentication with conf igured Authentication Key between the NTP client and NTP server.
  • Page 22 Trusted Setting Description Factory Default Checked Enable the Authentication Key Unchecked Unchecked Disable the Authentication Key NTP Client Settings The NTP server should be set when the Moxa switch is conf igured to work as an NTP client. Setting Description Factory Default Time Server/Peer The domain of Time Server or Peer Address...

  • Page 23: Ieee 1588 Ptp

    IEEE 1588 PTP The f ollowing inf ormation is taken f rom the NIST website at http://ieee1588.nist.gov/intro.htm: “Time measurement can be accomplished using the IEEE Standard f or a Precision Clock Synchronization Protocol f or Networked Measurement and Control Systems (IEEE 1588-2008) to synchronize real-time clocks incorporated within each component of the electrical power system f or power automation applications.
  • Page 24 PTP Settings Operation Setting Description Factory Default Enable IEEE 1588 PTP Globally disables or enables IEEE 1588 operation. Disabled Clock Mode (sets the switch’s clock mode) Setting Description Factory Default v1 BC Operates as an IEEE 1588 v1 boundary clock. Operates as an edge-to-edge IEEE 1588 v2 transparent clock v2 E2E 2-step TC with 2-step method.
  • Page 25 NOTE The EDS-510E, IKS-6728A-8PoE, IKS-6700A, and EDS-P506E Series do not support the 802.3 setting. Role Setting Description Factory Default Member or Master Set this switch to be the Member or Grand Master Member PTP Status Indicates the current IEEE 1588 PTP status.

  • Page 26: Warning Notification

    Warning Notification Since industrial Ethernet devices are of ten located at the endpoints of a system, these devices will not always know what is happening elsewhere on the network. This means that an industrial Ethernet switch that connects to these devices must provide system maintainers with real-time alarm messages. Even when control engineers are out of the control room f or an extended period of time, they can still be inf ormed of the status of devices almost instantaneously when exceptions occur.
  • Page 27 MAC Sticky Violation Port Disable Any port with MAC sticky f unction is disabled because of a rule violation *The Fiber Check Warning event is only supported by EDS-P506E-4PoE, EDS-510E, EDS-518E, EDS 528E, and EDS-G500E Series. Four response actions are available on the EDS E series when events are triggered.
  • Page 28 Port Event Settings Port Events are related to the activity of a specif ic port. Port Events Warning e-mail is sent when… Link-ON The port is connected to another device. The port is disconnected (e.g., the cable is pulled out, or the opposing device Link-OFF shuts down).
  • Page 29 Event Log Settings This f unction is used to inf orm the user what the event log capacity status is and decide what action to take when an event log is oversized. Select the Enable Log Capacity Warning checkbox to set the threshold percentage.
  • Page 30 Password Setting Setting Description Factory Default Password The email account password. None Email Address Setting Description Factory Default You can set up to 4 email addresses to receive alarm emails Max. of 30 characters None f rom the Moxa switch. Sender Address Setting Description...
  • Page 31 Syslog Server 1/2/3 Setting Description Factory Default Enter the IP address of Syslog server 1/2/3, used by your IP Address None network. Port Destination Enter the UDP port of Syslog server 1/2/3. (1 to 65535) NOTE The f ollowing events will be recorded into the Moxa switch’s Event Log table, and will then be sent to the specif ied Syslog Server: Cold start •...

  • Page 32: Mac Address Table

    MAC Address Table The MAC address table shows the MAC address list passed through the Moxa switch. The Aging Time (15 to 3825 seconds) def ines the length of time that a MAC address entry can remain in the Moxa switch. When an entry reaches its aging time, it “ages out”...

  • Page 33: System Files

    System Files Firmware Upgrade There are three ways to update your Moxa switch’s f irmware: f rom a local *.rom f ile, by remote TFTP server, and with Auto Backup Conf igurator (ABC-02). Local Download the updated f irmware (*.rom) f ile f rom Moxa’s website (www.moxa.com). Browse f or the (*.rom) f ile, and then click the Upgrade button TFTP Server Enter the TFTP Server’s IP address.
  • Page 34 Configuration Backup and Restore There are three ways to back up and restore your Moxa switch’s conf iguration: f rom a local conf iguration f ile, by remote TFTP server, and with Auto Backup Conf igurator (ABC-02). Local Click the Backup button to back up the conf iguration f ile to a local drive. Browse f or a conf iguration on a local disk, and then click the Restore button.
  • Page 35 Auto load configuration from ABC to system when boot up Select the Auto load configuration from ABC to system when boot up checkbox and then click Apply. Note that this f unction is enabled by def ault. Power of f your switch f irst, and then plug in the ABC-02. When you power on your switch, the system will detect the conf iguration f ile on the ABC-02 automatically.

  • Page 36: Turbo Ring Dip Switch

    Auto backup of event log to prevent overwrite This f unction is designed to maintain a long-term record of the switch’s log f iles. Moxa Ethernet switches are capable of saving 1000 event log entries. When the 1000-entry storage limit is reached, the switch will delete the oldest saved event log.

  • Page 37: Restart

    Setting Description Factory Default Unchecked: The Turbo Ring protocol will be activated automatically when the 4th DIP switch is moved to the ON position. Disable the Turbo Ring DIP unchecked Checked: switch The Turbo Ring protocol will not be activated automatically, regardless of the position of the 4th DIP switch.

  • Page 38: Factory Default

    Factory Default The Factory Default f unction provides users with a quick way of restoring the Moxa switch’s conf iguration to f actory def aults. The f unction can be activated f rom the USB serial interf ace, via Telnet, through the web- based console, or with the hardware reset button.

  • Page 39: Poe Settings

    PoE Settings The PoE settings interf ace gives users control over the system’s PoE power output, PoE power threshold, PoE port conf iguration, and PD f ailure check. The PoE settings page is divided into three parts: PoE System Configuration, PoE Port Configuration, and PoE Device Failure Check. Each part is discussed separately below.
  • Page 40 PoE System Configuration NOTE The conf iguration is dif f erent, depending on whether the “PoE power output managed by” item is set to “Allocated Power” or “Measured Power.” PoE Power Management by Allocated Power PoE Power Management by Measured Power PoE System Configuration Settings PoE Power Output Setting...
  • Page 41 PoE system power budget Setting Description Factory Default IKS-6728A-8PoE and EDS-G512E-8PoE: 240W Assigns the “Total measured power” limit f or all PoE ports EDS-P506E-4PoE: wattage combined. depend on input voltage (12VDC: 62W, 24VDC: 150W, 48VDC: 180W) PoE Port Configuration Power Setting Description Factory Default...
  • Page 42 Legacy PD Detection The PoE Ethernet Switch provides a Legacy PD Detection f unction. When the capacitance of the PD is higher than 2.7 μF, checking the Legacy PD Detection checkbox enables the system to output power to the PD. In this case, it will take 10 to 15 seconds f or PoE power to be output through this port af ter the switch is turned on.
  • Page 43 Check Period Setting Description Factory Default 5 to 300 Enter maximum time allowed f or each IP checking cycle. No Response Action Setting Description Factory Default No Action The PSE has no action on the PD Reboot PD The PSE reboots the PD af ter the PD Failure Check No Action Power Of f PD The PSE powers of f the PD af ter the PD Failure Check...
  • Page 44 Warning Type Action Description The EDS E series will send a notif ication to the trap server when Trap an event is triggered. The EDS E series will send a notif ication to the email server E-Mail def ined in Email Settings. The EDS E series will record a syslog to a syslog server def ined in Syslog Syslog Server Settings.
  • Page 45 PoE Diagnostic PoE Diagnostic helps users determine the PD conditions. The system provides the user with conf iguration options; select the best option f or your PDs. It will automatically detect and suggest the conf igurations when users click on this page and the status will be ref reshed when you click the ref resh button. Diagnose Configuration Device Type Item...
  • Page 46 Item Description Raise the external power When the external supply voltage is detected at under 46 V, the system supply voltage to greater than suggests raising the voltage. 46 VDC Enable PoE f unction f or The system suggests enabling the PoE f unction. detection Select 4-Pair High Power 60W When detecting 4-Pair PD, the system suggests selecting 4-Pair High Power...
  • Page 47 NOTE ICS-G7748A, G7750A, G7752A, ICS-G7848A, G7850A, G7852A, EDS-P506E-4PoE do not support to show Voltage. Port Status Status Description Item Description Not Present No connection to the port. PoE power is not being provided. Powered PoE power is being provided by the PSE. System has detected a NIC connected to the port.
  • Page 48 PoE System Status Monitoring Configuration Refresh Rate Setting Description Factory Default If the Ref resh Rate = T, then the PoE Port Status will be 5 to 300 ref reshed every T seconds. System Power Status System Power Status shows a graph of Sum of measured power, Sum of allocated power, and Max of allocated power.

  • Page 49: Vlan

    VLAN Setting up Virtual LANs (VLANs) on your Moxa switch increases the ef f iciency of your network by dividing the LAN into logical segments, as opposed to physical segments. In general, VLANs are easier to manage. The Virtual LAN (VLAN) Concept What is a VLAN? A VLAN is a group of devices that can be located anywhere on a network, but which communicate as if they are on the same physical segment.
  • Page 50 VLANs and the Rackmount switch Your Moxa switch provides support f or VLANs using IEEE Std 802.1Q-1998. This standard allows traf f ic f rom multiple VLANs to be carried across one physical link. The IEEE Std 802.1Q-1998 standard allows each port on your Moxa switch to be placed as f ollows: •...

  • Page 51: Sample Applications Of Vlans Using Moxa Switches

    The f ollowing section illustrates how to use these ports to set up dif f erent applications. Sample Applications of VLANs Using Moxa Switches In this application: Port 1 connects a single untagged device and assigns it to VLAN 5; it should be conf igured as an •...

  • Page 52: Configuring A Virtual Lan

    Configuring a Virtual LAN To conf igure 802.1Q VLAN and port-based VLANs on the Moxa switch, use the VLAN Settings page to conf igure the ports f or either an 802.1Q VLAN or Port-based VLAN. VLAN Mode Setting Description Factory Default 802.1Q VLAN Sets VLAN mode to 802.1Q VLAN 802.1Q VLAN...
  • Page 53 NOTE Some of the f ollowing settings can be modif ied in the Quick Setting Panel. Port Setting Description Factory Default Port name Read only Type Setting Description Factory Default Access When this port is connected to a single device, without tags. When this port is connected to another 802.1Q VLAN aware Trunk switch.

  • Page 54: Vlan Name Setting

    VLAN Settings: Port-based When VLAN Mode is set to Port-based VLAN, the VLAN Settings window will appear as shown below. Select the appropriate checkbox under a port to assign the port to a VLAN. The maximum VLAN ID equals the number of switch ports. In the f ollowing example, all of the ports are assigned to VLAN 1. NOTE Port-Based VLAN is supported by: EDS series switches (not including the EDS-728/828)

  • Page 55: Qinq Settings

    VLAN Name Setting Setting Description Factory Default The VLAN name can only include these characters, a-z/A-Z/0- Name Null 9/-/_/ QinQ Settings NOTE Moxa’s layer 3 switches support the IEEE 802.1ad QinQ f unction, which allows users to tag double VLAN headers into a single Ethernet f rame.

  • Page 56: Port

    Port Port Settings Port settings are included to give the user control over port access, port transmission speed, f low control, and port type (MDI or MDIX). Enable Setting Description Factory Default Checked Allows data transmission through the port. Checked Unchecked Immediately shuts of f port access.

  • Page 57: Port Status

    FDX Flow Ctrl This setting enables or disables f low control f or the port when the port’s Speed is set to Auto. The f inal result will be determined by the Auto process between the Moxa switch and connected devices. Setting Description Factory Default...
  • Page 58 The Port Trunking Concept Moxa has developed a port trunking protocol that provides the f ollowing benef its: Greater f lexibility in setting up your network connections, since the bandwidth of a link can be doubled, • tripled, or quadrupled. •...

  • Page 59: Link-Swap Fast Recovery

    Trunk Group (maximum of 4 trunk groups) Setting Description Factory Default Trk1, Trk2, Trk3, Trk4 (depends on switching chip capability; some Specif ies the current trunk group. Trk1 Moxa switches only support 3 trunk groups) The EDS 400A series does not support Port Trunking. The number of Trunk Groups f or other models are listed in the f ollowing table: No.

  • Page 60: Multicast

    Link-Swap-Fast-Recovery Setting Description Factory Default Select the checkbox to enable the Link-Swap-Fast-Recovery Enable/Disable Enable f unction Multicast Multicast f iltering improves the perf ormance of networks that carry multicast traf f ic. This section explains multicasts, multicast f iltering, and how multicast f iltering can be implemented on your Moxa switch. The Concept of Multicast Filtering What is an IP Multicast? A multicast is a packet sent by one host to multiple hosts.
  • Page 61 Multicast Filtering Multicast f iltering ensures that only end-stations that have joined certain groups receive multicast traf f ic. With multicast f iltering, network devices only f orward multicast traf f ic to the ports that are connected to registered end-stations. The f ollowing two f igures illustrate how a network behaves without multicast f iltering, and with multicast f iltering.
  • Page 62 IGMP querying is enabled by def ault on the Moxa switch to ensure that query election is activated. Enable query mode to run multicast sessions on a network that does not contain IGMP routers (or queriers). Query mode allows users to enable IGMP snooping by VLAN ID. Moxa switches support IGMP snooping version 1, version 2, and version 3.

  • Page 63: Igmp Snooping

    Enabling Multicast Filtering Use the USB console or web interf ace to enable or disable IGMP Snooping and IGMP querying. If IGMP Snooping is not enabled, then IP multicast traf f ic is always f orwarded, f looding the network. IGMP Snooping IGMP Snooping provides the ability to prune multicast traf f ic so that it travels only to those end destinations that require that traf f ic, thereby reducing the amount of traf f ic on the Ethernet LAN.

  • Page 64: Igmp Group Status

    Enable IGMP Snooping Setting Description Factory Default Enabled if IGMP Enables or disables the IGMP Snooping f unction on that Enable/Disable Snooping is enabled particular VLAN. globally Querier Setting Description Factory Default Disable Disables the Moxa switch’s querier f unction. V1/V2: Enables the switch to send IGMP queries that are V1/V2 V1/V2 and V3 checkbox...

  • Page 65: Stream Table

    The inf ormation shown in the table includes: Dynamic Router Port: Indicates that a multicast router connects to or sends packets f rom these port(s). • Static Router Port: Displays the static multicast querier port(s). • Querier Connected Port: Displays the port that is connected to the querier. •...

  • Page 66: Static Multicast Address

    Static Multicast Address NOTE The MAC address (01:00:5E:XX:XX:XX) will appear on the Static Multicast Address page. Activate IGMP Snooping to implement automatic classif ication. MAC Address Setting Description Factory Default Type the MAC address in the MAC Address f ield to specif y a Integer None static multicast address.

  • Page 67: Multicast Filtering Behavior

    Enable GMRP Setting Description Factory Default Select the appropriate checkboxes to def ine which ports are to Select/Deselect None be GMRP enabled. GMRP Status The Moxa switch displays the current active GMRP groups that were detected. MAC Address: The Multicast MAC address Static Port: This multicast address is def ined by static multicast Learned Port: This multicast address is learned by GMRP Multicast Filtering Behavior...

  • Page 68: Qos

    There are two types of QoS settings, depending on which model of switch you are using. Type Models EDS-510E, EDS-518E, EDS-528E, EDS-G512E-8PoE, EDS-G508E, EDS-G512E-4GSFP, Type 1 EDS-G516E-4GSFP, IKS-6726A, IKS-6728A, IKS-6728A-8PoE IKS-G6524A, IKS-G6824A, ICS-G7526A, ICS-G7826A, ICS-G7528A, ICS-G7828A, ICS- Type 2...
  • Page 69 Even though the IEEE 802.1D standard is the most widely used prioritization scheme f or LAN environments, it still has some restrictions: It requires an additional 4-byte tag in the f rame, which is normally optional f or Ethernet networks. •...

  • Page 70: Configuring Traffic Prioritization

    Configuring Traffic Prioritization Quality of Service (QoS) provides a traf f ic prioritization capability to ensure that important data is delivered consistently and predictably. The Moxa switch can inspect IEEE 802.1p/1Q layer 2 CoS tags, and even layer 3 TOS inf ormation, to provide a consistent classif ication of the entire network. The Moxa switch’s QoS capability improves your industrial network’s perf ormance and determinism f or mission critical applications.

  • Page 71: Priority Mapping (Type 1)

    Priority Setting Description Factory Default The port priority has 8 priority queues: f rom 0 (lowest) to 7 0 to 7 (highest) NOTE The priority of an ingress f rame is determined in the f ollowing order: ToS/DSCP Inspection CoS Inspection Priority NOTE The designer can enable these classif ications individually or in combination.

  • Page 72: Priority Mapping (Type 2)

    Priority Mapping (Type 2) CoS Value and Priority Queues Setting Description Factory Default CoS 0: 0 CoS 1: 1 CoS 2: 2 CoS 3: 3 0 to 7 Maps dif f erent CoS values to 8 dif f erent egress queues. CoS 4: 4 CoS 5: 5 CoS 6: 6...

  • Page 73: Rate Limiting

    There are f our types of bandwidth management settings, depending on which model of switch you are using. Type Model Type 1 EDS-510E Type 2 EDS-G508E, EDS-G512E-4GSFP, EDS-G516E-4GSFP, EDS-G512E-8PoE Type 3 EDS-518E, EDS-528E, IKS-6726A, IKS-6728A, IKS-6728A-8PoE, EDS-P506E-4PoE IKS-G6524A, IKS-G6824A, ICS-G7526A, ICS-G7826A, ICS-G7528A, ICS-G7828A, ICS-...
  • Page 74 Policy Description Factory Default Limit All Limit Broadcast, Multicast, Flooded Select the ingress rate limit f or dif f erent packet types f rom the Unicast f ollowing options: Unlimited, 128K, 256K, 512K, 1M, 2M, 4M, Limit Broadcast 8M Limit Broadcast, Multicast Limit Broadcast Egress Rate Limit...
  • Page 75 Type 2 For Type 2, the Action setting on the Rate Limiting page can be set to Drop Packet or Port Disable. Action Setting Description Factory Default Drop Packet Set the max. ingress rate limit f or ingress packets When the ingress packets exceed the ingress rate limit, the Drop Packet Port Disable port will be disabled f or a certain period.
  • Page 76 Setting Description Factory Default Duration (1-65535 When the ingress packets exceed the ingress rate limit, the 30 seconds seconds) port will be disabled f or a certain period. Select the ingress rate (f ps) limit f or all packets f rom the Ingress (f rame per f ollowing options: Not Limited, 4464, 7441, 14881, 22322, Unlimited...
  • Page 77 Rate Limiting: Port Disable Setting Description Factory Default Port disable duration When the ingress packets exceed the ingress rate limit, the 30 seconds (1-65535 seconds port will be disabled f or a certain period. Select the ingress rate (f ps) limit f or all packets f rom the Ingress (f rame per f ollowing options: Not Limited, 4464, 7441, 14881, 22322, Unlimited...
  • Page 78 Rate Limiting: Normal Ingress Rate Limit Policy Description Factory Default Limit All Limit Broadcast, Select the ingress rate limit f or dif f erent packet types f rom the Multicast, Flooded f ollowing options: Unlimited, 128K, 256K, 512K, 1M, 2M, 4M, Unicast 8M, 10%(100Mbps), 15%(150Mbps), 25%(250Mbps), Limit Broadcast 8M...

  • Page 79: Security

    Rate Limiting: Port Disable Setting Description Factory Default Port disable duration When the ingress packets exceed the ingress rate limit, the 30 seconds (1-65535 seconds) port will be disabled f or a certain period. Select the ingress rate (f ps) limit f or all packets f rom the Ingress (f rames per f ollowing options: Not Limited, 4464, 7441, 14881, 22322, Unlimited...
  • Page 80 Enable HTTPS Setting Description Factory Default Select/Deselect Select the appropriate checkboxes to enable HTTPS. TCP Port: 443 Enable Telnet Setting Description Factory Default Select/Deselect Select the appropriate checkboxes to enable Telnet. TCP Port: 23 Enable SSH Setting Description Factory Default Select/Deselect Select the appropriate checkboxes to enable SSH.

  • Page 81: Trusted Access

    Trusted Access The Moxa switch uses an IP address-based f iltering method to control access. You may add or remove IP addresses to limit access to the Moxa switch. When the Trusted Access list is enabled, only addresses on the list will be allowed access to the Moxa switch. Each IP address and netmask entry can be tailored f or dif f erent situations: Grant access to one host with a specific IP address •...

  • Page 82: Ssl Certificate Management

    SSL Certificate Management Certificate Import Click Browse and select Public-Key Cryptography Standard (PKCS) #12 certif icate f ile Enter the Import Password and click Import The SSL certif icate is updated Regenerate SSL Certificate Setting Description Factory Default Select/Deselect Enable the SSL Certif icate Regeneration Deselect SSH Key Management SSH Key Re-generate...

  • Page 83: Authentication

    Authentication Login Authentication Moxa switches provide three dif f erent user login authentications: TACACS+ (Terminal Access Controller Access-Control System Plus), RADIUS (Remote Authentication Dial In User Service), and Local. The TACACS+ and RADIUS mechanisms are centralized “AAA” (Authentication, Authorization and Accounting) systems f or connecting to network services.
  • Page 84 NOTE The account privilege level is authorized under service type settings in RADIUS, and the privilege level is under TACACS+. RADIUS Server RADIUS Service type = 6 = read/write = administrator • RADIUS Service type = 1 = read only = user •...
  • Page 85 Authentication Protocol Setting Description Factory Default 802.1X Local Select this option when setting the 802.1X Local User (Max. of 32 users) Database as the authentication database. Select this option to set an external RADIUS server as the RADIUS authentication database. The authentication mechanism includes EAP-TLS, and PEAP-MSCHAPv2.
  • Page 86 IEEE 802.1X Local Database Setup Setting Description Factory Default User Name User Name f or the Local User Database None (Max. of 30 characters) Password f or the Local User Database. Input the MAC address Password without ":", while using MAC Authentication Bypass with the None (Max.
  • Page 87 Deselect ports NOTE If RADIUS Server is case sensitive, use lower-case characters f or the username and password. NOTE MAC Authentication Bypass is not available on the EDS-510E Series. RADIUS Server Settings Apply Login Authentication Setting Setting Description Factory Default Select/Deselect Enables using the same setting as Auth Server.

  • Page 88: Port Security

    Port Security Moxa switches provide a Port Security f unction that lets packets with allowed MAC Addresses access the switch’s ports. Two Port Security modes are supported: Static Port Lock and MAC Address Sticky. Static Port Lock: Allows users to conf igure specif ic MAC addresses that are allowed to access the port. MAC Address Sticky: Allows users to conf igure the maximum number of MAC addresses (the Limit) that a port can “learn.”...
  • Page 89 Limit (only active for MAC Address Sticky) Setting Description Factory Default The maximum number of learned MAC addresses allowed f or 1 to 1024 that port. Violation Port Disable (only active for MAC Address Sticky) Setting Description Factory Default When the port limit is reached and the port receives a packet Disable with an unknown MAC address (unlearned by the port), the packet will be discarded.
  • Page 90 MAC Address Setting Description Factory Default MAC Address Adds the static unicast MAC address into the address table None MAC Address Sticky Port Number Setting Description Factory Default Port Number Associates the static address to a dedicated port None Setting Description Factory Default VLAN ID...

  • Page 91: Port Access Control Table

    Port Access Control Table The port status will be indicated as authorized or unauthorized. Broadcast Storm Protection Broadcast Storm Protection is only supported by the EDS-G508E, EDS-G512E-4GSFP, EDS-G516E-4GSFP, IKS-6726A/6728A/6728A-8PoE, EDS-G512E-8PoE, EDS-518E, EDS-528E, and EDS-P506E Series. Broadcast Storm Protection Setting Description Factory Default Unchecked Broadcast storm protection is not activated.

  • Page 92: Loop Protection

    NOTE For the EDS-510E, IKS-G6000A, and ICS-G7000A Series, you can use "Rate Limiting" to limit the broadcast traf f ic in order to prevent traf f ic storm. Please ref er to the "Rate Limiting" section f or f urther details.
  • Page 93 Benefits of ACL ACLs support per interf ace, per packet direction, and per protocol f iltering capability. These f eatures can provide basic protection by f iltering specif ic packets. The main benef its of an ACL are: Manage authority of hosts: An ACL can restrict specif ic devices through MAC address f iltering. The •...
  • Page 94 Access Control List Configuration and Setup Access Control Profile Settings On this page, you can conf igure two settings: (1) Add/Modif y Access Control list, and (2) Adjust ACL ID. Add/Modify Access Control List This f unction lets you add a new access control prof ile or modif y an existing access control prof ile. The operation depends on the ACL ID you select.
  • Page 95 Access Control Rule Settings You can edit access control rules on this page. Each ACL includes up to 10 rules. First, select the access control prof ile you would like to edit based on the ACL ID, and then set up the rule content and ingress/egress ports.
  • Page 96 IP Based (Layer 3 Device) Action: Whether to deny or permit access if the rule criterion is met. • Source (Destination) IP Address / IP Address Mask: Def ines the IP address rule. By using the • mask, you can assign specif ic subnet ranges to f ilter. It allows checking the source or destination of the packet.
  • Page 97 MAC Based (Layer 2 Device) NOTE MAC-based ACL is not available on the EDS-510E Series. Moxa Managed Ethernet Switch (UI_2.0_FW_5.x) User Manual...
  • Page 98 MAC Based (Layer 3 Device) Action: Whether to deny or permit access if the rule criterion is met. • Source (Destination) MAC Address / MAC Address Mask: Def ines the MAC address rule. By using • the mask, you can assign specif ic MAC address ranges to f ilter. It allows checking the source or destination of the packet.

  • Page 99: Dhcp

    Access Control List Table The Access Control List Table page provides a complete view of all ACL settings. On this page, you can view the rules by Ingress port, Egress port, or ACL ID. Click the drop-down menu to select Port or ACL ID, and all the rules will be displayed in the table.
  • Page 100 DHCP Relay Agent (Option 82) Option 82 is used by the relay agent to insert additional inf ormation into the client’s DHCP request. The Relay Agent Inf ormation option is inserted by the DHCP relay agent when f orwarding client-originated DHCP packets to a DHCP server.
  • Page 101 2nd Server Setting Description Factory Default IP address f or the 2nd Assigns the IP address of the 2nd DHCP server that the switch None DHCP server tries to access. 3rd Server Setting Description Factory Default IP address f or the 3rd Assigns the IP address of the 3rd DHCP server that the switch None DHCP server...

  • Page 102: Snmp

    SNMP The Moxa switch supports SNMP V1, V2c, and V3. SNMP V1 and SNMP V2c use a community string match f or authentication, which means that SNMP servers access all objects with read-only or read/write permissions using the community strings public and private by def ault. SNMP V3 requires that you select an authentication level of MD5 or SHA, and is the most secure protocol.

  • Page 103: Snmp Read/Write Settings

    SNMP Read/Write Settings SNMP Versions Setting Description Factory Default V1, V2c, V3, or Specif ies the SNMP protocol version used to manage the V1, V2c, or V1, V2c switch. V3 only V1, V2c Read Community Setting Description Factory Default Specif ies the community string to authenticate the SNMP agent f or read-only access.

  • Page 104: Trap Settings

    Trap Settings SNMP traps allow an SNMP agent to notif y the NMS of a signif icant event. The switch supports two SNMP modes: Trap mode and Inf orm mode. SNMP Trap Mode—Trap In Trap mode, the SNMP agent sends an SNMP trap PDU to the NMS. No acknowledgment is sent back f rom the NMS so the agent has no way of knowing if the trap reached the NMS.
  • Page 105 SNMP Trap V3 User Name Setting Description Factory Default Max. 30 characters Specif ies the user name f or authentication. Auth. Type Setting Description Factory Default Allows the admin account to access objects without No-Auth authentication. Authentication will be based on the HMAC-MD5 algorithms. 8- MD5-Auth character passwords are the minimum requirement f or No-Auth...
  • Page 106 SNMP Trap Mode—Inform SNMPv2c, SNMPv3 provides an inf orm mechanism. When an inf orm message is sent f rom the SNMP agent to the NMS, the receiver sends a response to the sender acknowledging receipt of the event. This behavior is similar to that of the get and set requests.
  • Page 107 SNMPv3 Inform User Name Setting Description Factory Default Max. 30 characters Specif ies the user name f or authentication. Auth. Type Setting Description Factory Default Allows the admin account to access objects without No-Auth authentication. Authentication will be based on the HMAC-MD5 algorithms. 8- MD5-Auth character passwords are the minimum requirement f or No-Auth...

  • Page 108: Industrial Protocols

    Industrial Protocols The Moxa switch supports 3 industrial protocols, EtherNet/IP, Modbus TCP, and PROFITNET I/O. All three protocols can be enabled or disabled by checking the appropriate checkbox. Modbus TCP is enabled by def ault, with the other two options disabled. NOTE IGMP Snooping and IGMP Query f unctions will be enabled automatically to be properly integrated in Rockwell systems f or multicast Implicit (I/O) Messaging f or ef f icient EtherNet/IP communication.

  • Page 109: Ping

    Configuring LLDP Settings General Settings LLDP Setting Description Factory Default Enable or Disable Enables or disables the LLDP f unction. Enable Message Transmit Interval Setting Description Factory Default 5 to 32768 sec. Sets the transmit interval of LLDP messages, in seconds. 5 (seconds) LLDP Table The LLDP Table displays the f ollowing inf ormation:...

  • Page 110: Port Mirroring

    There are two types of port mirror f unction, depending on the series you are using. Type Series Type 1 EDS-G508E, EDS-G512E-4GSFP, EDS-G516E-4GSFP, EDS-G512E-8PoE EDS-510E, EDS-518E, EDS-528E, EDS-P506E-4PoE, IKS-6726A, IKS-6728A, IKS- 6728A-8PoE, IKS-G6524A, IKS-G6824A, ICS-G7526A, ICS-G7826A, ICS-G7528A, Type 2 ICS-G7828A, ICS-G7748A, ICS-G7848A, ICS-G7750A, ICS-G7850A, ICS-G7752A, ICS-G7852A, PT-G7728, PT-G7828 Type 1 For type 1, the mirror port can be set to more than one port (many-to-many).

  • Page 111: Monitoring

    Type 2 For type 2, the mirror port can only be set to one port (many-to-one). Setting Description Monitored Port Select which ports will be monitored Select one of the f ollowing options: RX: Select this option to monitor only those data packets coming into Moxa’s •...

  • Page 112: Statistics

    CPU Utilization Setting Description Factory Default The CPU usage volume in the past 5 seconds, 30 seconds, and 5 minutes. When the system is using less than 50% of CPU usage, the f irst green bar will f ill up. When the CPU usage is Read-only Past 5 secs between 51% and 75%, the green and yellow bars will be...
  • Page 113 Monitor by Port Access the Monitor by Port f unction by selecting FE or GE Ports or Port i, in which i = 1, 2, …, G2, f rom the lef t pull-down list. The Port i options are identical to the Monitor by System f unction discussed above, in that users can view graphs that show All Packets, TX Packets, RX Packets, or Error Packets activity, but in this case, only f or an individual port.

  • Page 114: Fiber Digital Diagnostics Monitoring (Sfp Ddm And Fiber Check)

    IKS-6726A, IKS-6728A, IKS-6728A-8PoE, IKS-G6524A, IKS-G6824A, ICS-G7526A, ICS- SFP DDM G7826A, ICS-G7528A, ICS-G7828A, ICS-G7748A, ICS-G7848A, ICS-G7750A, ICS- G7850A, ICS-G7752A, ICS-G7852A Series Fiber Check EDS-510E, EDS-518E, EDS-528E, EDS-G508E, EDS-G512E, EDS-G516E SFP Digital Diagnostic Monitor Parameter Description Port Switch port number that the SFP is plugged into...
  • Page 115 Fiber Check Fiber Check is used to diagnose the link status of f iber connectors, including SFP and f ixed type (Multi-mode SC/ST & Single-mode SC) connectors. Monitor the temperature, TX/RX power, and other parameters on f iber ports to determine if the ports are working properly. Enable the trap, email warning, and/or relay warning f unctions on the System Event Settings page to receive an alarm or relay if one of the f iber ports exceeds the threshold f or that port.

  • Page 116: Event Log

    Temperature Threshold Model Name Tx Power (Max./Min.) (dBm) Rx Power (Min.) (dBm) (°C) SFP-1GEZXLC-120 6.0/-5.0 -33.0 SFP-1G10ALC 0.0/-12.0 -21.0 SFP-1G10BLC -5.0/-21.0 -34.0 SFP-1G20ALC 1.0/-11.0 -23.0 SFP-1G20BLC -5.0/-21.0 -34.0 SFP-1G40ALC 5.0/-6.0 -23.0 SFP-1G40BLC -5.0/-21.0 -34.0 NOTE Certain tolerances exist between real data and measured data. Event Log The Event Log Table displays the f ollowing inf ormation: Index...

  • Page 117: Tracking

    NOTE The f ollowing events will be recorded into the Moxa switch’s Event Log Table: Cold start • Warm start • Conf iguration change activated • • Power 1/2 transition (Of f ( On), Power 1/2 transition (On ( Of f )) •...
  • Page 118 Enable Interface Tracking Setting Description Factory Default Select the Enable checkbox to enable the interf ace tracking Enable entry. Enabled Deselect the Enable checkbox to disable the interf ace tracking Disable entry. Tracking ID Setting Description Factory Default 1 to 64 The tracking ID of the interf ace tracking entry.

  • Page 119: Ping Tracking

    Ping Tracking Monitor an IP address. If the status of ping tracking is down, it means that the IP address is disconnected. Otherwise, the status of ping tracking is up. Enable Ping Tracking Setting Description Factory Default Select the Enable checkbox to enable ping Enable tracking.

  • Page 120: Logic Tracking

    NOTE If the Received is equal to or greater than 100 (times), then the status of ping tracking never changes f rom down to up. Lost Setting Description Factory Default The threshold that the status of ping tracking changes f rom up 1 to 100 to down when the switch continuously loses the ping replies greater than or equal to the lost value.

  • Page 121: Tracking Table

    NOTE Select at least two monitored tracking entries in the Logical List. Logic Operator Setting Description Factory Default The logic operator is used to operate the status of the logic tracking. NOTE The Logic Operator cannot be modif ied if the conf iguration is applied. Tracking Table The Tracking Table shows all the inf ormation of the dif f erent types of tracking.

  • Page 122: Mib Groups

    A. MIB Groups The Moxa switch comes with built-in SNMP (Simple Network Management Protocol) agent sof tware that supports cold/warm start trap, line up/down trap, and RFC 1213 MIB-II. The standard MIB groups that the Moxa switch supports are as f ollows: MIB II.1—System Group sysORTable MIB II.2—Interfaces Group...
  • Page 123 dot1dStpPortTable dot1dTp dot1dTpFdbTable dot1dTpPortTable dot1dTpHCPortTable dot1dTpPortOverf lowTable pBridgeMIB dot1dExtBase dot1dPriority dot1dGarp qBridgeMIB dot1qBase dot1qTp dot1qFdbTable dot1qTpPortTable dot1qTpGroupTable dot1qForwardUnregisteredTable dot1qStatic dot1qStaticUnicastTable dot1qStaticMulticastTable dot1qVlan dot1qVlanCurrentTable dot1qVlanStaticTable dot1qPortVlanTable The private MIB f ile can be downloaded f rom Moxa's website: www.moxa.com. Public Traps Cold Start •...

This manual is also suitable for:

Eds-518eEds-528eEds-g508eEds-g512eEdsg516eEds-p506e-4poe ... Show all

Table of Contents

Save PDF