Page 1 VES-1616F-3x Series VDSL Switch User’s Guide Version 3.60 5/2007 Edition 2 www.zyxel.com...
Page 3: About This User's Guide
About This User's Guide Intended Audience This manual is intended for people who want to configure the Switch series VDSL switch using the web configurator or via commands. You should have at least a basic knowledge of TCP/IP networking concepts and topology.
Page 4: Warnings And Notes
Syntax Conventions • The VES-1616F-34 or VES-1616F-35 may be referred to as the “Switch”, the “device”, the “system” or the “switch” in this User’s Guide. • Product labels, screen names, field labels and field choices are all in bold font.
Page 5 Icons Used in Figures Figures in this User’s Guide may use the following generic icons. The Switch icon is not an exact representation of your device. Switch Notebook computer Central Office/ ISP VES-1616F-3x Series User’s Guide Computer Server DSLAM Gateway...
Page 6: Safety Warnings
Safety Warnings For your safety, be sure to read and follow all warning notices and instructions. • Do NOT use this product near water, for example, in a wet basement or near a swimming pool. • Do NOT expose your device to dampness, dust or corrosive liquids. •...
Page 7 Safety Warnings VES-1616F-3x Series User’s Guide...
Page 8 Safety Warnings VES-1616F-3x Series User’s Guide...
Page 9: Table Of Contents
Hardware Installation... 35 2.1 Mounting the Switch on a Rack ... 35 2.1.1 Rack-mounted Installation Requirements ... 35 2.1.2 Attaching the Mounting Brackets to the Switch ... 36 2.1.3 Mounting the Switch on a Rack ... 36 Chapter 3 Hardware Overview... 37 3.1 Front Panel Connection ...
Page 10 6.1 Overview ... 63 6.2 System Information ... 63 6.3 General Setup ... 65 6.4 Introduction to VLANs ... 67 6.5 Switch Setup Screen ... 68 6.6 IP Setup ... 69 6.6.1 Management IP Address ... 70 6.7 Port Setup ... 72 6.8 VDSL Parameters ...
Page 11 6.8.6 Rate Adaption ... 76 6.8.7 RFI (Radio Frequency Interference) ... 77 6.8.8 VDSL Profiles ... 77 6.9 VDSL Profile Setup ... 77 6.10 VDSL Alarm Profile Setup ... 80 6.11 VDSL PSD Profile Setup ... 82 Part III: Advanced... 85 Chapter 7 VLAN ...
Page 12 Table of Contents 10.2 STP Status ... 103 10.3 Configure STP ... 104 Chapter 11 Bandwidth Control... 107 11.1 Configuring Bandwidth Control ... 107 11.1.1 CIR and PIR ... 107 Chapter 12 Broadcast Storm Control ... 109 12.1 Broadcast Storm Control Overview ... 109 12.2 Broadcast Storm Control Setup ...
Page 13 17.1.2 Weighted Fair Scheduling (WFS) ... 124 17.2 Configuring Queuing ... 124 Chapter 18 Classifier... 127 18.1 Classifier Overview ... 127 18.2 Configuring a Classifier ... 127 18.3 Classifier Example ... 130 Chapter 19 Policy ... 133 19.1 Policy Overview ... 133 19.1.1 DiffServ ...
Page 14 Table of Contents Chapter 22 Differentiated Services ... 157 22.1 DiffServ Overview ... 157 22.1.1 DSCP and Per-Hop Behavior ... 157 22.1.2 DiffServ Network Example ... 157 22.2 Activating DiffServ ... 158 22.3 DSCP-to-IEEE802.1p Priority Setting ... 159 22.3.1 Configuring DSCP Setting ... 159 Part IV: Routing Protocol ...
Page 15 26.4 Setting Up Login Accounts ... 182 26.5 SSH Overview ... 184 26.6 How SSH works ... 184 26.7 SSH Implementation on the Switch ... 185 26.7.1 Requirements for Using SSH ... 185 26.7.2 SSH Login Example ... 185 26.8 Introduction to HTTPS ... 186 26.9 HTTPS Example ...
Page 16 Part VI: Commands, Troubleshooting and Specifications ... 207 Chapter 32 Introducing the Commands ... 209 32.1 Overview ... 209 32.1.1 Switch Configuration File ... 209 32.2 Accessing the CLI ... 210 32.2.1 Multiple Login ... 210 32.2.2 The Console Port ... 210 32.2.3 Telnet ...211...
Page 17 33.2 show Commands ... 243 33.2.1 show interface ... 243 33.2.2 show ip ... 244 33.2.3 show logging ... 244 33.2.4 show mac address-table all ... 244 33.2.5 show multi-login ... 245 33.2.6 show system-information ... 245 33.2.7 show vdsl-alarmprofile ... 246 33.2.8 show vdsl-profile ...
Page 18 34.7 Show VLAN Setting ... 264 Chapter 35 Troubleshooting... 267 35.1 Problems Starting Up the Switch ... 267 35.2 Problems Accessing the Switch ... 267 35.3 Problem with the VDSL Connection ... 268 35.3.1 Pop-up Windows, JavaScripts and Java Permissions ... 268 35.4 Problems with the Password ...
Page 19: Contents Overview
Introduction ... 29 Getting to Know Your Switch ... 31 Hardware Installation ... 35 Hardware Overview ... 37 Status and Basic ... 43 The Web Configurator ... 45 System Status and Port Statistics ... 53 Basic Setting ... 63 Advanced ... 85 VLAN ...
Page 20 Contents Overview Cluster Management ... 197 MAC Table ... 203 ARP Table ... 205 Commands, Troubleshooting and Specifications ... 207 Introducing the Commands ... 209 Command Examples ... 243 IEEE 802.1Q Tagged VLAN Commands ... 259 Troubleshooting ... 267 Product Specifications ... 275 Appendices and Index ...
Page 21: List Of Figures
Figure 11 Web Configurator Home Screen (Status) ... 46 Figure 12 Change Administrator Login Password ... 50 Figure 13 Resetting the Switch: Via the Console Port ... 52 Figure 14 Web Configurator: Logout Screen ... 52 Figure 15 Status ... 53 Figure 16 Status: VDSL Summary ...
Page 22 List of Figures Figure 39 Bandwidth Control ... 108 Figure 40 Broadcast Storm Control ... 109 Figure 41 Mirroring ...111 Figure 42 Link Aggregation Control Protocol Status ...114 Figure 43 Link Aggregation Control Protocol > Configuration ...115 Figure 44 RADIUS Server ...117 Figure 45 Port Authentication ...118 Figure 46 Port Authentication >...
Page 23 Figure 101 Cluster Management Status ... 198 Figure 102 Cluster Management: Cluster Member Web Configurator Screen ... 199 Figure 103 Example: Uploading Firmware to a Cluster Member Switch ... 199 Figure 104 Clustering Management Configuration ... 200 Figure 105 MAC Table Flowchart ... 203 Figure 106 MAC Table ...
Page 24 List of Figures Figure 125 Conflicting Computer and Router IP Addresses Example ... 294 VES-1616F-3x Series User’s Guide...
Page 25: List Of Tables
Table 28 Bandwidth Control ... 108 Table 29 Broadcast Storm Control ... 109 Table 30 Mirroring ...112 Table 31 Link Aggregation ID: Local Switch ...114 Table 32 Link Aggregation ID: Peer Switch ...114 Table 33 Link Aggregation Control Protocol Status ...114 Table 34 Link Aggregation Control Protocol >...
Page 26 Table 56 Static Routing ... 163 Table 57 DHCP Relay ... 166 Table 58 Maintenance ... 169 Table 59 Switch Hardware Version ... 173 Table 60 Filename Conventions ... 175 Table 61 Access Control Overview ... 179 Table 62 SNMP Commands ... 181 Table 63 SNMP Traps ...
Page 27 Table 84 vdsl-alarmprofile Commands ... 237 Table 85 vdsl-profile Commands ... 238 Table 86 vlan Commands ... 240 Table 87 Troubleshooting the Start-Up of Your Switch ... 267 Table 88 Troubleshooting Accessing the Switch ... 267 Table 89 Troubleshooting VDSL Connection ... 268 Table 90 Troubleshooting the Password ...
Page 28 List of Tables VES-1616F-3x Series User’s Guide...
Page 29: Part I Introduction
Introduction Getting to Know Your Switch (31) Hardware Installation (35) Hardware Overview (37)
Page 31: Getting To Know Your Switch
Internet access to all tenants. Note that VDSL service can coexist with voice service on the same line. The Switch is connected to a backbone switch (labeled C) using an Ethernet cable or a fiber-optic cable. The fiber connection allows distances of up to several kilometers (depending on your transceivers).
Page 32: Curbside Application
ISP (Internet Service Provider) to receive DSL services. Residents only need to be within range of the Switch (not the ISP) to receive high-speed VDSL Internet access, and have enough bandwidth for data, voice, and video services. In the following example, the Switch (labeled B) is placed a considerable distance from the ISP and connected to a backbone switch (labeled C).
Page 33: Good Habits For Managing The Switch
179. 1.4 Good Habits for Managing the Switch Do the following things regularly to make the Switch more secure and to manage the Switch more effectively. • Change the password. Use a password that’s not easy to guess and that consists of different types of characters, such as numbers and letters.
Page 34 Chapter 1 Getting to Know Your Switch VES-1616F-3x Series User’s Guide...
Page 35: Hardware Installation
• Make sure the rack will safely support the combined weight of all the equipment it contains. • Make sure the position of the switch does not make the rack unstable or top-heavy. Take all necessary precautions to anchor the rack securely before installing the unit.
Page 36: Attaching The Mounting Brackets To The Switch
Chapter 2 Hardware Installation 2.1.2 Attaching the Mounting Brackets to the Switch 1 Position a mounting bracket on one side of the switch, lining up the four screw holes on the bracket with the screw holes on the side of the switch.
Page 37: Chapter 3 Hardware Overview
H A P T E R This chapter describes the front panel and rear panel of the switch and shows you how to make the hardware connections. 3.1 Front Panel Connection The front panel contains switch LEDs and all the network ports and port connections.
Page 38: Gigabit Ethernet Ports
These are slots for mini-GBIC (Gigabit Interface Converter) transceivers. A transceiver is a single unit that houses a transmitter and a receiver. The switch does not come with transceivers. You must use transceivers that comply with the Small Form-factor Pluggable (SFP) Transceiver MultiSource Agreement (MSA).
Page 39: Console Port
Figure 6 Transceiver Installation Example 2 Press the transceiver firmly until it clicks into place. 3 The switch automatically detects the installed transceiver. Check the LEDs to verify that it is functioning properly. Figure 7 Installed Transceiver 3.1.3.2 Transceiver Removal Use the following steps to remove a mini GBIC transceiver (SFP module).
Page 40: Power Connector
• No parity, 8 data bits, 1 stop bit • No flow control Connect the male 9-pin end of the console cable to the console port of the switch. Connect the female end to a serial port (COM1, COM2 or other COM port) of your computer.
Page 41 Table 2 LEDs (continued) COLOR Green Green MGMT Green Amber VES-1616F-3x Series User’s Guide STATUS DESCRIPTION The port has a successful connection. No Ethernet device is connected to this port. Blinking The port is sending or receiving data. The port is not sending or receiving data. The link to a 10 Mbps Ethernet network is up.
Page 42 Chapter 3 Hardware Overview VES-1616F-3x Series User’s Guide...
Page 43: Part Ii: Status And Basic
Status and Basic The Web Configurator (45) System Status and Port Statistics (53) Basic Setting (63)
Page 45: The Web Configurator
4.2 System Login 1 Start your web browser. 2 Type “http://” and the IP address of the switch (for example, the default for the management port is 192.168.0.1 and for the switch port is 192.168.1.1) in the Location or Address field. Press [ENTER].
Page 46: The Status Screen
Chapter 4 The Web Configurator 4 Click OK to view the first web configurator screen. 4.3 The Status Screen The Status screen is the first screen that displays when you access the web configurator. The following figure shows the navigating components of a web configurator screen. Figure 11 Web Configurator Home Screen (Status) In the navigation panel, click a main link to reveal a list of submenu links.
Page 47: Table 3 Navigation Panel Sub-Links Overview
Table 3 Navigation Panel Sub-links Overview BASIC SETTING The following table lists the various web configurator screens within the sub-links VES-1616F-3x Series User’s Guide ADVANCED ROUTING APPLICATION PROTOCOL Chapter 4 The Web Configurator MANAGEMENT...
Page 48: Table 4 Web Configurator Screen Sub-Links Details
This link takes you to a screen where you can configure general identification information about the switch. Switch Setup This link takes you to a screen where you can set up global switch parameters such as VLAN type, MAC address learning, IGMP snooping, GARP and priority queues. IP Setup This link takes you to a screen where you can configure the IP address, subnet mask (necessary for switch management) and DNS (domain name server).
Page 49 This link takes you to a screen where you can configure SPQ or WFQ with associated queue weights for each port. Classifier This link takes you to a screen where you can configure the switch to group packets based on the specified criteria. Policy Rule This link takes you to a screen where you can define actions on classified traffic flows.
Page 50: Change Your Password
Figure 12 Change Administrator Login Password 4.4 Switch Lockout You are locked out from managing the switch if another administrator is currently logged in. You must wait until he/she has logged out before you can log in. Any of the following could also lock you and others out from using in-band management (managing through the data ports).
Page 51: Resetting The Switch
Be careful not to lock yourself and others out of the switch. 4.5 Resetting the Switch If you lock yourself (and others) out of the switch, you can try using out-of-band management. If you still cannot correct the situation or forgot the password, you will need to reload the factory-default configuration file.
Page 52: Logging Out Of The Web Configurator
393216 bytes received. Erasing.. sysname> atgo The switch is now reinitialized with a default configuration file including the default password of “1234”. 4.6 Logging Out of the Web Configurator Click Logout in a screen to exit the web configurator. You have to log in with your password again after you log out.
Page 53: System Status And Port Statistics
H A P T E R System Status and Port This chapter describes the system status (web configurator home page) and port details screens. 5.1 Overview The home screen of the web configurator displays a port statistical summary with links to each port showing statistical details.
Page 54: System Status And Port Statistics
Chapter 5 System Status and Port Statistics The following table describes the labels in this screen. Table 6 Status LABEL DESCRIPTION System up This field shows how long the system has been running since the last time it was Time started.
Page 55: Vdsl Port Details
Click a number in the Port column in the Status screen to display individual port statistics. Use this screen to check status and detailed performance data about an individual port on the switch. Figure 17 Status: VDSL Port Details VES-1616F-3x Series User’s Guide...
Page 56: Table 7 Status: Vdsl Port Details
Chapter 5 System Status and Port Statistics The following table describes the labels in this screen. Table 7 Status: VDSL Port Details LABEL Port Info Number Name Link Type State Up Time Remote LAN Link 1 .. 4 VDSL Status Line Rate DESCRIPTION This field displays the port number.
Page 57 Table 7 Status: VDSL Port Details (continued) LABEL DESCRIPTION Payload Rate This field displays the upstream/downstream payload rate. SNR Margin This field displays the upstream/downstream SNR margin. Interleave Delay This field displays the upstream/downstream interleave delay. Transmit Power This field displays the upstream/downstream transmission power of the line. Attenuation This field displays the upstream/downstream attenuation.
Page 58 Chapter 5 System Status and Port Statistics Table 7 Status: VDSL Port Details (continued) LABEL 128-255 256-511 512-1023 1024-1518 Giant VDSL Performance BMIN BERR Curr. 15 Min. Time Elapsed LOS (15Min) LOF (15Min) BMIN (15Min) BERR (15Min) Curr. 1 Day Time Elapsed LOS (1Day) LOF (1 Day)
Page 59: Ethernet Port Details
Click a number in the Port column in the Status screen to display the Ethernet port statistics. Use this screen to check status and detailed performance data about an Ethernet port on the switch. Figure 18 Status: Port Details VES-1616F-3x Series User’s Guide...
Page 60: Table 8 Status: Port Details
Chapter 5 System Status and Port Statistics The following table describes the labels in this screen. Table 8 Status: Port Details LABEL DESCRIPTION Port Info Link This field displays the speed (either 10M for 10Mbps, 100M for 100Mbps or 1000M for 1000Mbps) and the duplex (F for full duplex or H for half duplex).
Page 61 Table 8 Status: Port Details (continued) LABEL DESCRIPTION Error Packet The following fields display detailed information about packets received that were in error. RX CRC This field shows the number of packets received with CRC (Cyclic Redundant Check) error(s). Length This field shows the number of packets received with a length that was out of range.
Page 62 Chapter 5 System Status and Port Statistics VES-1616F-3x Series User’s Guide...
Page 63: Chapter 6 Basic Setting
The real time is then displayed in the switch logs. The Switch Setup screen allows you to set up and configure global switch features. The IP Setup screen allows you to configure a switch IP address, subnet mask(s) and DNS (domain name server) for management purposes.
Page 64: Figure 19 System Info
DESCRIPTION System Name This field displays the descriptive name of the switch for identification purposes. OS F/W This field displays the version number of the switch 's current firmware including the Version date created. Modem Code This field displays the version number of the switch 's current VDSL modem code F/W Version version.
Page 65: General Setup
Normal indicates that this fan is functioning above the minimum speed. Error indicates that this fan is functioning below the minimum speed. If Error displays, it is recommended that the fan(s) on the switch be replaced by a qualified technician.
Page 66: Figure 20 General Setup
Location Enter the geographic location (up to 30 characters) of your switch. Contact Person's Enter the name (up to 30 characters) of the person in charge of this switch. Name Login Use this drop-down list box to select which database the switch should use (first) to Precedence authenticate an administrator (user for switch management).
Page 67: Introduction To Vlans
Enter the time service protocol that a timeserver sends when you turn on the when Bootup switch. Not all time servers support all protocols, so you may have to use trial and error to find a protocol that works. The main differences between them are the time format.
Page 68: Switch Setup Screen
Chapter 7 on page 87 6.5 Switch Setup Screen Click Basic Setting and then Switch Setup in the navigation panel to display the screen as shown. The VLAN setup screens change depending on whether you choose 802.1Q or Port Based in the VLAN Type field in this screen. Refer to the chapter on VLAN.
Page 69: Ip Setup
Use the following fields to configure the priority level-to-physical queue mapping. The switch has eight physical queues that you can map to the 8 priority levels. On the switch, traffic assigned to higher index queues gets through faster while traffic in lower index queues is dropped if the network is congested.
Page 70: Management Ip Address
Chapter 6 Basic Setting 6.6.1 Management IP Address The switch needs an IP address for it to be managed over the network. The factory default in- band IP address is 192.168.1.1 and out-of-band management IP is 192.168.0.1. The subnet mask specifies the network number portion of an IP address. The factory default subnet mask is 255.255.255.0.
Page 71: Table 12 Ip Setup
Click Cancel to reset the fields to your previous configuration. In-band IP Addresses You can create up to 128 IP addresses, which are used to access and manage the switch from the ports belonging to the pre-defined VLAN(s). You must configure a VLAN first.
Page 72: Port Setup
Select this option to allow device management using this IP address setting. Clear this option to set the switch to block management access using this IP address. Click Add to save the new rule to the switch. It then displays in the summary table at the bottom of the screen. Cancel Click Cancel to reset the fields to your previous configuration.
Page 73: Figure 23 Port Setup
Figure 23 Port Setup The following table describes the labels in this screen. Table 13 Port Setup LABEL DESCRIPTION Ports 1 .. 16 Port This is the port index number. Active Select this check box to enable a port. The factory default for all ports is enabled. A port must be enabled for data transmission to occur.
Page 74 Flow Control is used to regulate transmission of signals to match the bandwidth of the receiving port. The switch uses IEEE 802.3x flow control in full duplex mode and back pressure flow control in half duplex mode.
Page 75: Vdsl Parameters
Flow Control is used to regulate transmission of signals to match the bandwidth of the receiving port. The switch uses IEEE802.3x flow control in full duplex mode and back pressure flow control in half duplex mode.
Page 76: Psd
Enable UPBO (Upstream Power Back Off) to allow the switch to adjust the transmit PSD of all lines based on a reference line length so that the PSD at the receiving end is the same.
Page 77: Rfi (Radio Frequency Interference)
VDSL lines and other radio systems interfere with each other. To avoid performance degradation due to RFI, set the switch to not transmit VDSL signals in the RFI band. 6.8.8 VDSL Profiles A profile is a table that contains a list of pre-configured VDSL line settings or VDSL alarm threshold settings.
Page 78: Figure 24 Vdsl Profile Setup
Chapter 6 Basic Setting Figure 24 VDSL Profile Setup The following table describes the labels in this screen. Table 14 VDSL Profile Setup LABEL DESCRIPTION Name Enter a descriptive name for identification purposes. Slow Channel Specifies the maximum/minimum slow channel data rate in bits/second. Enter a Payload Rate number between 104960 and 64.
Page 79 Select a rate adaptive mode. Select Manual to disable transmission rate adjustment. Select AdaptAtInit to enable the switch to adjust to a new lower rate when the line quality deteriorates until the connection is broken. Max SNR Select the maximum SNR (Signal to Noise Ratio) margin allowed on the channel.
Page 80: Vdsl Alarm Profile Setup
This displays the VDSL line type (fastOrInterleaved), that means either fast or interleaved channel exists, but only one works at a time. Click Add to save the new profile to the switch. It then displays in the summary table at the bottom of the screen.
Page 81: Figure 25 Vdsl Alarm Profile Setup
Select On to trigger an alarm for an initialization failure trap. Failure Select Off to disable trap sending when a line fails to initialize. Click Add to save the new rule to the switch. It then displays in the summary table at the bottom of the screen. Cancel Click Cancel to reset the fields to your previous configuration.
Page 82: Vdsl Psd Profile Setup
PSD level. The set of breakpoints forms a PSD mask that specifies the maximum transmission power of each VDSL frequency band. If the frequency range used by the Switch and other devices overlap, you can configure the PSD of your Switch to prevent interference with other nearby signals.
Page 83: Figure 27 Vdsl Psd Profile Setup
Add New Profile link. Add New Profile Click this link to add a new profile. Click Add to save the new profile to the Switch. It then displays in the summary table at the bottom of the screen. Down Stream /...
Page 84 Chapter 6 Basic Setting VES-1616F-3x Series User’s Guide...
Page 85: Part Iii: Advanced
Advanced VLAN (87) Static MAC Forward Setup (97) Filtering (99) Spanning Tree Protocol (101) Bandwidth Control (107) Broadcast Storm Control (109) Mirroring (111) Link Aggregation (113) Port Authentication (117) Port Security (121) Queuing Method (123) Classifier (127) Policy (133) VLAN Stacking (139) Multicast (145) Differentiated Services (157)
Page 87: Vlan
H A P T E R The type of screen you see here depends on the VLAN Type you selected in the Switch Setup screen. This chapter shows you how to configure 802.1Q tagged and port-based VLANs. 7.1 Introduction to IEEE 802.1Q Tagged VLAN...
Page 88: Automatic Vlan Registration
GVRP (GARP VLAN Registration Protocol) is a registration protocol that defines a way for switches to register necessary VLAN members on ports across the network. Enable this function to permit VLANs groups beyond the local switch. Table 17 IEEE 802.1Q Terminology...
Page 89: Port Vlan Trunking
C, D and E; otherwise they will drop frames with unknown VLAN group tags. However, with VLAN Trunking enabled on a port(s) in each intermediary switch you only need to create VLAN groups in the end devices (A and B). C, D and E automatically allow frames with VLAN group tags 1 and 2 (VLAN groups that are unknown to those switches) to pass through their VLAN trunking port(s).
Page 90: Static Vlan Status
This field shows how long it has been since a normal VLAN was registered or a static VLAN was set up. Status This field shows how this VLAN was added to the switch; dynamic - using GVRP, static - added as a permanent entry or other - added using Multicast VLAN Registration (MVR).
Page 91: Configure A Static Vlan
7.5.2 Configure a Static VLAN To configure a static VLAN, click Static VLAN in the VLAN Status screen to display the screen as shown next. Use a static VLAN to decide whether an incoming frame on a port should be •...
Page 92: Configure Vlan Port Setting
GVRP (GARP VLAN Registration Protocol) is a registration protocol that defines a way for switches to register necessary VLAN members on ports across the network. Select this check box to permit VLAN groups beyond the local switch. Port Isolation Port Isolation allows each port to communicate only with the CPU management port and the uplink ports but not communicate with each other.
Page 93: Port-Based Vlan
Port-based VLANs are specific only to the switch on which they were created. When you activate port-based VLAN, the switch uses a default VLAN ID of 1. You cannot change it.
Page 94: Figure 33 Port Based Vlan Setup (All Connected)
Chapter 7 VLAN Figure 33 Port Based VLAN Setup (All Connected) VES-1616F-3x Series User’s Guide...
Page 95: Figure 34 Port Based Vlan Setup (Port Isolation)
(its outgoing port). CPU refers to the switch management port. By default it forms a VLAN with all Ethernet ports. If it does not form a VLAN with a particular port then the switch cannot be managed from that port.
Page 96 Chapter 7 VLAN Table 21 Port Based VLAN Setup (continued) LABEL DESCRIPTION Apply Click Apply to save the changes. Cancel Click Cancel to start configuring the screen again. VES-1616F-3x Series User’s Guide...
Page 97: Static Mac Forward Setup
H A P T E R Static MAC Forward Setup Use these screens to configure static MAC address forwarding. 8.1 Static MAC Forwarding Overview A static MAC address is an address that has been manually entered in the MAC address learning table.
Page 98 Chapter 8 Static MAC Forward Setup Table 22 Static MAC Forwarding (continued) LABEL DESCRIPTION MAC Address Enter the MAC address in valid MAC address format, that is, six hexadecimal character pairs. Note: Static MAC addresses do not age out. Enter the VLAN identification number. Port Select a port where the MAC address entered in the previous field will be automatically forwarded.
Page 99: Filtering
H A P T E R This chapter discusses static IP and MAC address port filtering. 9.1 Filtering Overview Filtering means sifting traffic going through the switch based on the source and/or destination MAC addresses and VLAN group (ID). 9.2 Configure a Filtering Rule Click Advanced Application >...
Page 100 Type a MAC address in valid MAC address format, that is, six hexadecimal character pairs. Type the VLAN group identification number. Click Add to save the new rule to the switch. It then displays in the summary table at the bottom of the screen. Cancel Click Cancel to reset the fields to your previous configuration.
Page 101: Spanning Tree Protocol
(R)STP detects and breaks network loops and provides backup links between switches, bridges or routers. It allows a switch to interact with other (R)STP -compliant switches in your network to ensure that only one path exists between any two stations on the network.
Page 102: How Stp Works
On each bridge, the root port is the port through which this bridge communicates with the root. It is the port on this switch with the lowest path cost to the root (the root path cost). If there is no root port, then this switch has been accepted as the root bridge of the spanning tree network.
Page 103: Stp Status
This switch may also be the root bridge. Bridge ID This is the unique identifier for this bridge, consisting of bridge priority plus MAC address. This ID is the same for Root and Our Bridge if the switch is the root switch. Hello Time...
Page 104: Configure Stp
Select this check box to activate STP. Clear this checkbox to disable STP. Bridge priority is used in determining the root switch, root port and designated port. The switch with the highest priority (lowest numeric value) becomes the STP root switch.
Page 105 (provided in the last BPDU) becomes the designated port for the attached LAN. If it is a root port, a new root port is selected from among the switch ports attached to the network. The allowed range is 6 to 40 seconds.
Page 106 Chapter 10 Spanning Tree Protocol VES-1616F-3x Series User’s Guide...
Page 107: Bandwidth Control
H A P T E R This chapter shows you how you can cap the maximum bandwidth allowed on the ports using the Bandwidth Control screen. 11.1 Configuring Bandwidth Control Bandwidth control means defining a maximum allowable bandwidth for incoming and/or out- going traffic on a port.
Page 108: Figure 39 Bandwidth Control
Table 28 Bandwidth Control LABEL DESCRIPTION Active Select this check box to enable bandwidth control on the switch. Port This field displays the port number. Active Make sure to select this check box to activate your rule. You may temporarily deactivate a rule without deleting it by deselecting this check box.
Page 109: Broadcast Storm Control
Broadcast storm control limits the number of broadcast, multicast and destination lookup failure (DLF) packets the switch receives per second on the ports. When the maximum number of allowable broadcast, multicast and/or DLF packets is reached per second, the subsequent packets are discarded.
Page 110 Select this option and specify how many destination lookup failure (DLF) packets the port receives per second. Click Apply to save your changes back to the switch. Click Cancel to begin configuring this screen afresh. VES-1616F-3x Series User’s Guide...
Page 111: Chapter 13 Mirroring
H A P T E R This chapter shows you how to configure mirroring on the switch. 13.1 Mirroring Overview Port mirroring allows you to copy a traffic flow to a monitor port (the port you copy the traffic to) in order that you can examine the traffic from the monitor port without interference.
Page 112: Table 30 Mirroring
Table 30 Mirroring LABEL DESCRIPTION Active Clear this check box to deactivate port mirroring on the switch. Monitor The monitor port is the port you copy the traffic to in order to examine it in more detail Port without interfering with the traffic flow on the original port(s). Select this port from this drop-down list box.
Page 113: Chapter 14 Link Aggregation
“standby” ports become operational without user intervention. Please note that: • You must connect all ports point-to-point to the same Ethernet switch and configure the ports for LACP trunking.
Page 114: Link Aggregation Id
Chapter 14 Link Aggregation 14.1.2 Link Aggregation ID LACP aggregation ID consists of the following information Table 31 Link Aggregation ID: Local Switch SYSTEM PRIORITY MAC ADDRESS 0000 Table 32 Link Aggregation ID: Peer Switch SYSTEM PRIORITY MAC ADDRESS 0000 14.2 Link Aggregation Status...
Page 115: Link Aggregation Setup
Select this checkbox to enable Link Aggregation Control Protocol (LACP). System LACP system priority is a number between 1 and 65,355. The switch with the lowest Priority system priority (and lowest port number if system priority is the same) becomes the LACP “server”.
Page 116 Select either 1 second or 30 seconds. Apply Click Apply to save your changes back to the switch. Cancel Click Cancel to begin configuring this screen afresh. VES-1616F-3x Series User’s Guide...
Page 117: Port Authentication
Figure 44 RADIUS Server 15.2 Configure Port Authentication To enable port authentication, first activate IEEE802.1x security (both on the switch and the port(s)) then configure the RADIUS server settings. Click Advanced Application > Port Authentication in the navigation panel to display the screen as shown.
Page 118: Activate Ieee 802.1X Security
Active Select this checkbox to permit 802.1x authentication on this port. You must first allow 802.1x authentication on the switch before configuring it on each port. Reauthenticatio Specify if a subscriber has to periodically re-enter his or her username and password to stay connected to the port.
Page 119: Configuring Radius Server Settings
Specify a password (up to 32 alphanumeric characters) as the key to be shared between the external RADIUS server and the switch. This key is not sent over the network. This key must be the same on the external RADIUS server and the switch.
Page 120 Chapter 15 Port Authentication VES-1616F-3x Series User’s Guide...
Page 121: Port Security
Port security allows only packets with dynamically learned MAC addresses and/or configured static MAC addresses to pass through a port on the switch. The switch can learn up to 16K MAC addresses in total with no limit on individual ports other than the sum cannot exceed 16K.
Page 122: Table 37 Port Security
MAC addresses aged out. MAC address aging out time can be set in the Switch Setup screen. The valid range is from 0 to 16K. “0” means this feature is disabled, so the switch will learn MAC addresses up to the global limit of 16K.
Page 123: Queuing Method
Queuing algorithms allow switches to maintain separate queues for packets from each individual source or flow and prevent a source from monopolizing the bandwidth. The switch has eight physical queues, Q0 to Q7. Q7 has the highest priority and Q0 has the lowest.
Page 124: Weighted Fair Scheduling (Wfs)
Chapter 17 Queuing Method 17.1.2 Weighted Fair Scheduling (WFS) Weighted Fair Scheduling is used to guarantee each queue's minimum bandwidth based on their bandwidth weight (portion) (the number you configure in the Weight field) when there is traffic congestion. WFS is activated only when a port has more traffic than it can handle. Queues with larger weights get more guaranteed bandwidth than queues with smaller weights.
Page 125: Table 39 Queuing Method
This field is applicable only when you select Weighted Fair Scheduling. Enable Select a queue (Q0 to Q7) to have the switch use Strictly Priority to service the subsequent queue(s) after and including the specified queue for the 10/100 Mbps Ethernet ports.
Page 126 Chapter 17 Queuing Method VES-1616F-3x Series User’s Guide...
Page 127: Classifier
H A P T E R This chapter introduces and shows you how to configure the packet classifier on the switch. 18.1 Classifier Overview Quality of Service (QoS) refers to both a network’s ability to deliver data with minimum delay, and the networking methods used to control the use of bandwidth. Without QoS, all traffic data is equally likely to be dropped when the network is congested.
Page 128: Figure 50 Classifier
Chapter 18 Classifier Figure 50 Classifier The following table describes the related labels in this screen. Table 40 Classifier LABEL DESCRIPTION Active Select this option to enable this rule. Name Type a descriptive name (up to 32 printable ASCII characters) for this rule. This is for identification purpose only.
Page 129 Select an IP protocol type or select Other and enter the protocol number in decimal value. Refer to You may select Establish Only for TCP protocol type. This means that the switch will pick out the packets that are sent to establish TCP connections.
Page 130: Classifier Example
Chapter 18 Classifier Table 40 Classifier (continued) LABEL DESCRIPTION Name This field displays the descriptive name for this rule. This is for identification purpose only. Rule This field displays a summary of the classifier rule’s settings. Delete Click Delete to remove the selected entry from the summary table. Cancel Click Cancel to clear the Delete check boxes.
Page 131: Figure 51 Classifier Example
Chapter 18 Classifier Figure 51 Classifier Example VES-1616F-3x Series User’s Guide...
Page 132 Chapter 18 Classifier VES-1616F-3x Series User’s Guide...
Page 133: Policy
H A P T E R This chapter shows you how to configure policy rules. 19.1 Policy Overview A classifier distinguishes traffic into flows based on the configured criteria (refer to 18 on page 127 for more information). A policy rule ensures that a traffic flow gets the requested treatment in the network.
Page 134: Configuring A Policy
Chapter 19 Policy 19.2 Configuring a Policy You must first configure a classifier in the Classifier screen. Refer to 18 on page 127 Click Advanced Application and then Policy Rule in the navigation panel to display the screen as shown. for more information.
Page 135: Figure 52 Policy
Chapter 19 Policy Figure 52 Policy The following table describes the labels in this screen. VES-1616F-3x Series User’s Guide...
Page 136: Table 43 Policy
Select an outgoing port. Outgoing Select Tag to add the specified VID to packets on the specified outgoing port. packet format Otherwise, select Untag. The switch removes the VLAN tag from the packets. for Egress Port Priority Specify a priority level.
Page 137: Policy Example
Table 43 Policy (continued) LABEL DESCRIPTION Outgoing Select Send the packet to the mirror port to sent the packet to the mirror port. Select Send the packet to the egress port to send the packet to the egress port. Select Send the matching frames (broadcast or DLF, multicast, marked for dropping or to be sent to the CPU) to the egress port to send the broadcast, multicast, DLF, marked-to-drop or CPU frames to the egress port.
Page 138: Figure 53 Policy Example
Chapter 19 Policy Figure 53 Policy Example VES-1616F-3x Series User’s Guide...
Page 139: Vlan Stacking
H A P T E R This chapter shows you how to configure VLAN stacking on your switch. See the chapter on VLANs for more background information on Virtual LAN 20.1 VLAN Stacking Overview A service provider can use VLAN stacking to allow it to distinguish multiple customers VLANs, even those with the same (customer-assigned) VLAN ID, within its network.
Page 140: Vlan Stacking Port Roles
Chapter 20 VLAN Stacking Figure 54 VLAN Stacking Example 20.2 VLAN Stacking Port Roles Each port can have three VLAN stacking “roles”, Normal, Access Port and Tunnel Port (the latter is for Gigabit ports only). • Select Normal for “regular” (non-VLAN stacking) IEEE 802.1Q frame switching. •...
Page 141: Vlan Tag Format
TPID (Tag Protocol Identifier) is the customer IEEE 802.1Q tag. • If the VLAN stacking port role is Access Port, then the switch adds the SP TPID tag to all incoming frames on the service provider's edge devices (1 and 2 in the VLAN stacking example figure).
Page 142: Configuring Vlan Stacking
VLAN stacking tags. Anything you configure in SPVID and Priority are ignored. Select Access Port to have the switch add the SP TPID tag to all incoming frames received on this port. Select Access Port for ingress ports at the edge of the service provider's network.
Page 143 Note: Configure the priority level of the inner IEEE 802.1Q tag in the Port Setup screen. Apply Click Apply to save your changes back to the switch. Cancel Click Cancel to begin configuring this screen afresh. VES-1616F-3x Series User’s Guide...
Page 144 Chapter 20 VLAN Stacking VES-1616F-3x Series User’s Guide...
Page 145: Multicast
(such as content information distribution) based on service plans and types of subscription. You can set the switch to filter the multicast group join reports on a per-port basis by configuring an IGMP filtering profile and associating the profile to a port.
Page 146: Multicast Status
Without IGMP snooping, multicast traffic is treated in the same manner as broadcast traffic, you can configure the switch to forward or discard unknown multicast group traffic. With IGMP snooping, group multicast traffic is only forwarded to ports that are members of that group.
Page 147: Figure 57 Multicast
IGMP snooping membership entry when an IGMP leave message is received from a host. 802.1p Priority Select a priority level (0-7) to which the switch changes the priority in outgoing IGMP control packets. Otherwise, select No-Change to not replace the priority.
Page 148: Igmp Filtering Profile
(or server). The switch forwards IGMP join or leave packets to an IGMP query port. Select Auto to have the switch use the port as an IGMP query port if the port receives IGMP query packets. Select Fixed to have the switch always use the port as an IGMP query port. Select this when you connect an IGMP multicast server to the port.
Page 149: Mvr Overview
If you want to add a single multicast IP address, enter it in both the Start Address and End Address fields. Click Add to save the settings to the switch. Clear Click Clear to clear the fields to the factory defaults.
Page 150: Types Of Mvr Ports
Chapter 21 Multicast 21.5.1 Types of MVR Ports In MVR, a source port is a port on the switch that can send and receive multicast traffic in a multicast VLAN while a receiver port can only receive multicast traffic. Once configured, the switch maintains a forwarding table that matches the multicast stream to the associated multicast group.
Page 151: General Mvr Configuration
You can create up to three multicast VLANs and up to 266 multicast rules on the switch. Your switch automatically creates a static VLAN (with the same VID) when you create a multicast VLAN in this screen. Figure 61 MVR VES-1616F-3x Series User’s Guide...
Page 152: Mvr Group Configuration
Multicast VLAN Enter the VLAN ID (1 to 4094) of the multicast VLAN. 802.1p Priority Select a priority level (0-7) with which the switch replaces the priority in outgoing IGMP control packets (belonging to this multicast VLAN). Mode Specify the MVR mode on the switch. Choices are Dynamic and Compatible.
Page 153: Figure 62 Mvr > Group Configuration
Configure MVR IP multicast group address(es) in the Group Configuration screen. Click Group Configuration in the MVR screen. A port can belong to more than one multicast VLAN. However, IP multicast group addresses in different multicast VLANs cannot overlap. Figure 62 MVR > Group Configuration The following table describes the labels in this screen.
Page 154: Mvr Configuration Example
Chapter 21 Multicast 21.7.1 MVR Configuration Example The following figure shows a network example where ports 1, 2 and 3 on the switch belong to VLAN 1. In addition, port 17 belongs to the multicast group with VID 200 to receive multicast traffic (the News and Movie channels) from the remote streaming media server, S.
Page 155: Figure 65 Mvr Group Configuration Example
Chapter 21 Multicast Figure 65 MVR Group Configuration Example VES-1616F-3x Series User’s Guide...
Page 156 Chapter 21 Multicast VES-1616F-3x Series User’s Guide...
Page 157: Differentiated Services
H A P T E R Differentiated Services This chapter shows you how to configure Differentiated Services (DiffServ) on the switch. 22.1 DiffServ Overview Quality of Service (QoS) is used to prioritize source-to-destination traffic flows. All packets in the flow are given the same priority. You can use CoS (class of service) to give different priorities to different packet types.
Page 158: Activating Diffserv
Chapter 22 Differentiated Services Figure 67 DiffServ Network Example Switch A marks traffic flowing into the network based on the configured marking rules. Intermediary network devices 1 and 2 allocate network resources (such as bandwidth) by mapping the DSCP values and the associated policies.
Page 159: Dscp-To-Ieee802.1P Priority Setting
22.3 DSCP-to-IEEE802.1p Priority Setting You can configure the DSCP (DiffServ Code Point) to IEEE802.1p mapping to allow the switch to prioritize all traffic based on the incoming DSCP value according to the DiffServ-to- IEEE802.1p mapping table. The following table shows the default DSCP-to-IEEE802.1P mapping.
Page 160 Chapter 22 Differentiated Services VES-1616F-3x Series User’s Guide...
Page 161: Part Iv: Routing Protocol
Routing Protocol Static Route (163) DHCP Relay (165)
Page 163: Chapter 23 Static Route
This chapter shows you how to configure static routes. 23.1 Configuring Static Route Static routes tell the switch how to forward IP traffic when you configure the TCP/IP parameters manually. Click Routing Protocol > Static Routing in the navigation panel to display the screen as shown.
Page 164 Gateway This field displays the IP address of the gateway. The gateway is an immediate Address neighbor of your switch that will forward the packet to the destination. Metric This field displays the cost of transmission for routing purposes. Delete Click Delete to remove the selected entry from the summary table.
Page 165: Dhcp Relay
DHCP (Dynamic Host Configuration Protocol RFC 2131 and RFC 2132) allows individual computers to obtain TCP/IP configuration at start-up from a server. You can configure the switch to relay client DHCP requests to a DHCP server and the server’s responses back to the clients.
Page 166: Figure 71 Dhcp Relay
Information This read-only field displays the system name you configure in the General Setup screen. Select the check box for the switch to add the system name to client DHCP requests that it relays to a DHCP server. Apply Click Apply to save the changes.
Page 167: Part V: Management
Management Maintenance (169) Access Control (179) Diagnostic (191) Syslog (193) Cluster Management (197) MAC Table (203) ARP Table (205)
Page 169: Maintenance
25.1 The Maintenance Screen The maintenance screens can allow you to upload new firmware (to the switch), manage configuration, reset to factory defaults and restart your switch. Click Management > Maintenance in the navigation panel to open the screen as shown next.
Page 170: Load Factory Default
3 Click OK to begin resetting all switch configurations to the factory defaults and then wait for the switch to restart. This takes up to two minutes. If you want to access the switch web configurator again, you may need to change the IP address of your computer to be in the same subnet as that of the default switch IP address (192.168.1.1).
Page 171: Remote Device Upgrade
2 Click OK to display the screen shown next. Figure 76 Reboot System: Start 3 Click OK again and then wait for the switch to restart. This takes up to two minutes. This does not affect the switch’s configuration. 25.4 Remote Device Upgrade The switch allows you to perform remote firmware upgrade on the connected CPE device(s).
Page 172: Vdsl Chip Reset
[SHIFT] or [CTRL] key and clicking the mouse at the same time. 3 Type the path and file name of the firmware file you wish to upload to the switch in the File Path text box or click Browse to locate it.
Page 173: Firmware Upgrade
Resetting the VDSL lines does NOT restart the switch. 25.7 Firmware Upgrade You can only upload the firmware of the same VDSL standard as your Switch. Use the show hardware-version command to check whether your device is a VDSL1 switch (100100, or 10050) or VDSL2 switch (5030). See...
Page 174: Restore A Configuration File
Figure 80 Firmware Upgrade Type the path and file name of the firmware file you wish to upload to the switch in the File Path text box or click Browse to locate it. After you have specified the file, click Upgrade.
Page 175: Ftp Command Line
Back up your current switch configuration to a computer using the Backup Configuration screen. Figure 82 Backup Configuration Follow the steps below to back up the current switch configuration to your computer in this screen. 1 Click Backup. 2 Click Save to display the Save As screen.
Page 176: Ftp Command Line Procedure
If your (T)FTP client does not allow you to have a destination filename different than the source, you will need to rename them as the switch only recognizes “config” and “ras”. Be sure you keep unaltered copies of both files for later use.
Page 177: Ftp Restrictions
• FTP service is disabled in the Access Control screen. • The IP address(es) in the Secured Client Set in the Remote Management screen does not match the client IP address. If it does not match, the switch will disconnect the Telnet session immediately.
Page 178 Chapter 25 Maintenance VES-1616F-3x Series User’s Guide...
Page 179: Access Control
The following error message displays. Connection to host lost. C:\> If you disable multiple login while another administrator is accessing the switch via telnet, the switch will immediately log out the administrator and disconnect the telnet session. The following error message displays.
Page 180: About Snmp
An SNMP managed network consists of two main components: agents and a manager. An agent is a management software module that resides in a managed switch (this device). An agent translates the local management information from the managed switch into a form compatible with SNMP.
Page 181: Supported Mibs
RFC 2012 SNMPv2 MIB for TCP, RFC 2013 SNMPv2 MIB for UDP 26.3.2 SNMP Traps The switch sends traps to an SNMP manager when an event occurs. SNMP traps supported are outlined in the following table. Table 63 SNMP Traps...
Page 182: Configuring Snmp
Click Cancel to begin configuring this screen afresh. 26.4 Setting Up Login Accounts Up to five people (one administrator and four non-administrators) may access the switch via web configurator at any one time. • An administrator is someone who can both view and configure switch changes. The username for the Administrator is always admin.
Page 183: Figure 86 Access Control: Logins
Enter your new system password. Set a user name (up to 30 characters long). Enter your new system password. Click Apply to save your changes back to the switch. Click Cancel to begin configuring this screen afresh. Chapter 26 Access Control...
Page 184: Ssh Overview
Chapter 26 Access Control 26.5 SSH Overview Unlike Telnet or FTP, which transmit data in clear text, SSH (Secure Shell) is a secure communication protocol that combines authentication and data encryption to provide secure encrypted communication between two hosts over an unsecured network. Figure 87 SSH Communication Example 26.6 How SSH works The following table summarizes how a secure connection is established between two remote...
Page 185: Ssh Implementation On The Switch
SSH. 26.7.2 SSH Login Example You can use an SSH client program to access the switch. The following figure shows an example using a text-based SSH client program. Refer to the documentation that comes with your SSH program for information on using it.
Page 186: Introduction To Https
(you know if data has been changed). It relies upon certificates, public keys, and private keys. HTTPS on the switch is used so that you may securely access the switch using the web configurator. The SSL protocol specifies that the SSL server (the switch) must always...
Page 187: Https Example
2 HTTP connection requests from a web browser go to port 80 (by default) on the switch’s WS (web server). Figure 90 HTTPS Implementation If you disable HTTP in the Service Access Control screen, then the switch blocks all HTTP connection attempts.
Page 188: Netscape Navigator Warning Messages
Chapter 26 Access Control 26.9.2 Netscape Navigator Warning Messages When you attempt to access the switch HTTPS server, a Website Certified by an Unknown Authority screen pops up asking if you trust the server certificate. Click Examine Certificate if you want to verify that the certificate is from the switch.
Page 189: Service Access Control
Figure 94 26.10 Service Access Control Service Access Control allows you to decide what services you may use to access the switch. You may also change the default service port and configure “trusted computer(s)” for each service in the Remote Management screen (discussed later). Click Access Control to go back to the main Access Control screen.
Page 190: Remote Management
From the Access Control screen, display the Remote Management screen as shown next. You can specify a group of one or more “trusted computers” from which an administrator may use a service to manage the switch. Click Access Control to return to the Access Control screen.
Page 191: Chapter 27 Diagnostic
IP Ping Type the IP address of a device that you want to ping in order to test a connection. Click Ping to have the switch ping the IP address (in the field to the left). Port Test From the Port drop-down list box, select a port number and click Internal Test to perform internal loopback test or click External Test (on VDSL ports) to perform loopback test to the remote devices.
Page 192 Chapter 27 Diagnostic VES-1616F-3x Series User’s Guide...
Page 193: Chapter 28 Syslog
H A P T E R This chapter explains the syslog screens. 28.1 Syslog Overview The syslog protocol allows devices to send event notification messages across an IP network to syslog servers that collect the event messages. A syslog-enabled device can generate a syslog message and send it to a syslog server.
Page 194: Syslog Server Setup
Chapter 28 Syslog Figure 98 Syslog Setup The following table describes the labels in this screen. Table 70 Syslog LABEL Syslog Logging Type Active Facility Apply Cancel 28.3 Syslog Server Setup Click Management and then Syslog in the navigation panel to display the Syslog Setup screen.
Page 195: Figure 99 Syslog Server Setup
Figure 99 Syslog Server Setup The following table describes the labels in this screen. Table 71 Syslog Server Setup LABEL DESCRIPTION Active Select this check box to have the device send logs to this syslog server. Clear the check box if you want to create a syslog server entry but not have the device send logs to it (you can edit the entry later).
Page 196 Chapter 28 Syslog VES-1616F-3x Series User’s Guide...
Page 197: Cluster Management
Cluster Member Models Cluster Manager Cluster Members In the following example, switch A in the basement is the cluster manager and the other switches on the upper floors of the building are cluster members. Figure 100 Clustering Application Example VES-1616F-3x Series User’s Guide...
Page 198: Cluster Management Status
This field displays the role of this switch within the cluster. Manager Member (you see this if you access this screen in the cluster member switch directly and not via the cluster manager) None (neither a manager nor a member of a cluster) Manager This field displays the cluster manager switch’s hardware MAC address.
Page 199: Cluster Member Switch Management
Go to the Clustering Management Status screen of the cluster manager switch and then click on an Index hyperlink from the list of members to go to that cluster member switch's web configurator home page. This cluster member web configurator home page and the home page that you'd see if you accessed it directly are different.
Page 200: Configuring Cluster Management
FTP PARAMETER User Password 360AIH0.bin fw-00-13-49-00-00-01 config-00-13-49-00-00-01 This is the cluster member switch’s configuration file name as seen 29.3 Configuring Cluster Management Click Configuration from the Cluster Management screen to display the next screen. Refer to Section 29.1 on page 197...
Page 201: Table 75 Clustering Management Configuration
Type a name to identify the Clustering Manager. You may use up to 32 printable characters (spaces are allowed). This is the VLAN ID and is only applicable if the switch is set to 802.1Q VLAN. All switches must be directly connected and in the same VLAN group to belong to the same cluster.
Page 202 Chapter 29 Cluster Management VES-1616F-3x Series User’s Guide...
Page 203: Chapter 30 Mac Table
• If the switch has already learned the port for this MAC address, then it forwards the frame to that port. • If the switch has not already learned the port for this MAC address, then the frame is flooded to all ports. Too much port flooding leads to network congestion.
Page 204: Viewing The Mac Table
Port This is the port from which the above MAC address was learned. Type This shows whether the MAC address is dynamic (learned by the switch) or static (manually entered in the Static MAC Forwarding screen). VES-1616F-3x Series User’s Guide...
Page 205: Arp Table
If no entry is found for the IP address, ARP broadcasts the request to all the devices on the LAN. The switch fills in its own MAC and IP address in the sender address fields, and puts the known IP address of the target in the target IP address field. In addition, the switch puts all ones in the target MAC field (FF.FF.FF.FF.FF.FF is the Ethernet broadcast address).
Page 206: Figure 107 Arp Table
Index This is the ARP Table entry number. IP Address This is the learned IP address of a device connected to a switch port with corresponding MAC address below. MAC Address This is the MAC address of the device with corresponding IP address above.
Page 207: Part Vi: Commands, Troubleshooting And Specifications
Commands, Troubleshooting and Specifications Introducing the Commands (209) Command Examples (243) IEEE 802.1Q Tagged VLAN Commands (259) Troubleshooting (267) Product Specifications (275)
Page 209: Introducing The Commands
32.1.1 Switch Configuration File When you configure the switch using either the CLI or web configurator, the settings are saved as a series of commands in a configuration file on the switch. You can perform the following with a configuration file: •...
Page 210: Accessing The Cli
Chapter 32 Introducing the Commands 32.2 Accessing the CLI You can use a direct console connection or Telnet to access the CLI on the switch. The switch automatically logs you out of the management interface after five minutes of inactivity. If this happens to you, simply log back in again.
Page 211: Initial Screen
1 For local management, connect your computer to the RJ-45 management port (labeled MGMT) on the switch. 2 Make sure your computer IP address and the switch IP address are on the same subnet. In Windows, click Start (usually in the bottom left corner), Run and then type (the default management IP address) and click OK.
Page 212: Ssh
Chapter 32 Introducing the Commands 32.2.4 SSH You can use an SSH client program to access the switch. The following figure shows an example using a text-based SSH client program. Refer to the documentation that comes with your SSH program for information on using it.
Page 213: Getting Help
“ automatically displays. • Each interface refers to a port on the switch. Commands configured after the interface command correspond to the port. • Type multiple ports or port ranges separated by a comma. Ranges of port numbers are typed separated by a dash.
Page 214: Detailed Command Information
Chapter 32 Introducing the Commands sysname> ? enable exit help history logout ping show traceroute sysname> 32.5.2 Detailed Command Information Enter <command> help Enter <command> ? parameters. sysname> ping help Commands available: ping <ip> < [ in-band|out-of-band|vlan <vlan-id> ] [ size <0-1472> ] [ -t ] >...
Page 215: Account Privilege Levels
Config Commands available in this mode allow you to configure settings that affect the switch globally. Command modes that follow are sub-modes of the config mode and can only be accessed from within the config mode. VES-1616F-3x Series User’s Guide Chapter 32 Introducing the Commands ).
Page 216: Using Command History
32.9 Using Command History The switch keeps a list of command(s) you have entered for the current CLI session. You can use any commands in the history again by pressing the up ( ) or down ( ) arrow key to scroll through the previously used commands and press the list of commands.
Page 217: Saving Your Configuration
32.11 Command Summary The following sections summarize the commands available in the switch together with a brief description of each command. Commands listed are in alphabetical order. The P column on the right indicates the administrator privilege level needed to use the command.
Page 218: Enable Mode
DESCRIPTION Displays current hardware monitor information with the specified temperature unit (Celsius C or Fahrenheit F). Displays whether the Switch is a VDSL1 (100100 or 10050) or VDSL2 device (5030). Displays the IP settings. Displays general system information. Connects to an SSH server with the specified SSH version.
Page 219 Displays GARP information. Displays current hardware monitor information with the specified temperature unit (Celsius C or Fahrenheit F). Displays whether the Switch is a VDSL1 (100100 or 10050) or VDSL2 device (5030). Displays the HTTPS information. Displays the HTTPS certificates.
Page 220 Chapter 32 Introducing the Commands Table 80 Command Summary: Enable Mode (continued) COMMAND igmp-filtering igmp-snooping interfaces <port- number> interfaces config <port-list> lacp logging loginPrecedence logins mac address-table mac-aging-time multicast multi-login DESCRIPTION Displays IGMP filtering profile profile settings. Displays global IGMP snooping settings.
Page 221 Table 80 Command Summary: Enable Mode (continued) COMMAND policy port-access- authenticator port-security radius-server remote-management running-config service-control snmp-server spanning-tree system-information time timesync trunk vdsl-alarmprofile vdsl-profile VES-1616F-3x Series User’s Guide Chapter 32 Introducing the Commands DESCRIPTION Displays the specified MVR group <VID> settings.
Page 222 Sets the port(s) to test the connection to the remote CPE device(s). Clears port statistics and connection information. This re-initializes the connection. Sets the port(s) to establish the connection again. Saves current configuration to the configuration file the switch is currently using. VES-1616F-3x Series User’s Guide...
Page 223: General Configuration Mode
Sets the cluster member password switch's hardware MAC <password-str> address and password. Configures a name to identify the cluster manager. Logs into a cluster member switch. Specifies through which traffic flow the switch is to send packets. Enables DHCP relay settings.
Page 224 Configures GARP time settings. Displays help information. Displays a list of previous command(s) that you have executed. Sets the switch’s name for identification purposes. Re-generates a certificate. Sets how many seconds a management session (via the web configurator) can be left idle before the session times out.
Page 225 Control Protocol (LACP). Sets the priority of an active <1-65535> port using LACP. Select which database the switch should use (first) to authenticate a user. Configures up to four read- password <pwd> only login accounts. Sets the access privilege for privilege <0-14>...
Page 226 Removes a specified IP static route. Enables a specified IP static inactive route. Disables the link aggregation control protocol (dynamic trunking) on the switch. Disables login access for the username <name> specified account name. Disables the specified MAC filter rule. Enables the specified MAC- inactive filter rule.
Page 227 VLAN group (if any) forwarded through an interface(s). Disables port mirroring on the switch. Disables multiple logins. Disable MVR on the switch. Deletes the specified policy. A policy sets actions for the classified traffic. Enables a policy. inactive Disables port authentication on the switch.
Page 228 <T1> vdsl-alarmprofile vdsl-profile vdsl-psd profile DESCRIPTION Disables SSH (Secure Shell) server access to the switch. Disables telnet access to the telnet switch. Disables sending of SNMP trap-destination traps to a station. <ip> Disables (R)STP. Disables (R)STP on the <port-list>...
Page 229 VDSL PSD physide <1|2> profile. frequence <0 - 30000> Deletes the static VLAN entry. <vlan-id> Disables GVRP on the switch. gvrp Disables port isolation. port-isolation Disables VLAN stacking. Disables Strict Priority Queuing on the fast Ethernet (10/100Mbps) ports.
Page 230 Specifies a group of trusted start-addr <ip> computer(s) from which an end-addr <ip> administrator may use a service <[telnet] service to manage the switch. [ftp] [http] [icmp] [snmp] [ssh] [https]> Allows FTP access on the specified service port. Allows HTTP access on the specified service port and defines the timeout period.
Page 231 Age and Forward Delay. Displays command help information. Sets the bridge priority of the switch. Sets the switch to use Strictly Priority Queuing (SPQ). Adds a remote host to which the switch can access using SSH service. Enables broadcast storm control on the switch.
Page 232 Chapter 32 Introducing the Commands Table 81 Command Summary: Configuration Mode (continued) COMMAND type <type> time <Hour:Min:Sec> date <month/day/year> help timezone <- 1200|...|1200> timesync <daytime|time|ntp> server <ip> trunk <T1> interface <port-list> vdsl- alarmprofile <name> vdsl-port <port-list> vdsl-profile <name> vdsl-psd physide <1 | 2> profile frequence <0 - 30000>...
Page 233: Interface Commands
Sets the service provider’s TP (Tagged Protocol) ID. Specifies the VLAN type. Sets the switch to use Weight Fair Queuing (WFQ) queuing. Sets the switch to use WFQ to service all queues for the Ethernet port. commands in configuration mode. interface port-channel...
Page 234 IGMP query port after it receives IGMP query fixed packets. as an IGMP query port. the switch from using the port as an IGMP query port. Disables the specified port(s) on the switch. Enables the device to discard incoming frames for VLANs that are not included in a port member set.
Page 235 Disables IGMP group limitation. igmp-group-limit Disables the IGMP immediate leave igmp-immediate- function. leave Enables the port(s) on the switch. inactive Disables ingress checking on the ingress-check port(s). Disables intrusion-lock on a port so intrusion-lock that a port can be connected again after you disconnected the cable.
Page 236: Mvr Commands
DESCRIPTION Enters the MVR (Multicast VLAN Registration) configuration mode. Select a priority level (0-7) with which the switch replaces the priority in outgoing IGMP control packets (belonging to this multicast VLAN). Exist from the MVR configuration mode.
Page 237: Vdsl-Alarmprofile Commands
Table 83 mvr Commands (continued) COMMAND group <name-str> start-address <ip> end-address <ip> inactive mode <dynamic|compatible> name <name> receiver-port <port- list> source-port <port- list> tagged <port-list> 32.11.6 vdsl-alarmprofile Commands The following table lists the Table 84 vdsl-alarmprofile Commands COMMAND vdsl- alarmprofile <name>...
Page 238: Vdsl-Profile Commands
DESCRIPTION Enters VDSL profile command mode. Sets a standard your switch uses for VDSL services. 2: ETSI Sets a VDSL band plan to use for the line. 2: Bandplan998 Sets the starting band of the frequency range used by VDSL services.
Page 239 Table 85 vdsl-profile Commands (continued) COMMAND maxpower optusage <1..2> payloadrate psdtemplate ratemode VES-1616F-3x Series User’s Guide Chapter 32 Introducing the Commands DESCRIPTION Specify the maximum aggregate ds <0..58> power level for downstream transmission. Specify the maximum aggregate us <0..58> power level for upstream transmission.
Page 240: Vlan Commands
Specifies the port(s) you want to prohibit from joining this VLAN group. Displays a list of available VLAN commands. Disables the specified VLAN. Sets the IP address and subnet mask of the <ip-address> switch in the specified VLAN for packet <mask> loopback test. VES-1616F-3x Series User’s Guide...
Page 241 Sets the default in-band interface to use a ip address static IP address in this VLAN. inband-default dhcp-bootp The switch will use the default IP address of 0.0.0.0 if you do not configure a static IP address. Specifies the port(s) you want to tag all untagged outgoing frames transmitted with this VLAN <port-list>...
Page 242 Chapter 32 Introducing the Commands VES-1616F-3x Series User’s Guide...
Page 243: Chapter 33 Command Examples
H A P T E R This chapter describes some commands in more detail. 33.1 Overview These are commands that you may use frequently in maintaining your switch. 33.2 show Commands These are the commonly used 33.2.1 show interface Syntax: show interface [port-number] This command displays statistics of a port.
Page 244: Show Ip
33.2.2 show ip Syntax: show ip This command displays the IP related information (such as IP address and subnet mask) on all switch interfaces. The following figure shows the default interface settings. sysname> show ip Out-of-band Management IP Address = 192.168.0.1 Management IP Address IP[192.168.0.1], Netmask[255.255.255.0], VID[0]...
Page 245: Show Multi-Login
This command displays the MAC address(es) stored in the switch. The following example shows the MAC address table. sysname# show mac address-table all Port VLAN ID sysname# 33.2.5 show multi-login Syntax: show multi-login This command displays the multiple login settings or the number of CLI management sessions.
Page 246: Show Vdsl-Alarmprofile
Chapter 33 Command Examples This command shows the general system information (such as the firmware version and system up time). An example is shown next. sysname# show system-information System Name System Contact System Location Ethernet Address ZyNOS F/W Version RomRasSize System up Time Bootbase Version ZyNOS CODE...
Page 247: Ping
This command displays a summary list of VDSL profiles or displays the settings of a VDSL profile. The following example shows the summary table. sysname# show vdsl-profile Name =========================================================================== DEFVAL test sysname# The following example shows the settings of the test VDSL profile. sysname# show vdsl-profile test Profile Name: test --------------------------+------------------------+--------------------...
Page 248: Traceroute
Specifies the network interface or the VLAN ID to which the Ethernet device belongs. Specifies the Time To Live (TTL) period. Specifies the time period to wait. Specifies how many tries the switch performs the traceroute function. VES-1616F-3x Series User’s Guide in-band reply from 192.168.1.100...
Page 249: Enabling Rstp
VDSL ports 1 to 5 to use the sysname(config)# vdsl-port 1-5 profilename test 33.7 Configuration File Maintenance This section shows you how to backup or restore the configuration file on the switch using TFTP. 33.7.1 Backing up Configuration Syntax: copy running-config tftp <ip>...
Page 250: Restoring Configuration
Syntax: copy tftp config <index> <ip> <remote-file> where <index> <ip> <remote-file> This command restores a configuration file on the switch. The following example uploads the configuration file ( test.cfg sysname# copy tftp config 1 172.23.19.96 test.cfg Restoring (683)Bytes Done! sysname# 33.7.3 Resetting to the Factory Default...
Page 251: No Command Examples
33.8 no Command Examples These are the commonly used command examples that belong to the 33.8.1 no mirror port Syntax: no mirror-port Disables port mirroring on the switch. An example is shown next. sysname(config)# no mirror-port 33.8.2 no https timeout Syntax: no https timeout Resets the https session timeout to default.
Page 252: No Port-Access-Authenticator
= Disables port authentication on the switch. = Disables the re-authentication mechanism on the listed port(s). = Disables authentication on the listed ports. Disables the secure shell server encryption key. Your switch supports SSH versions 1 and 2 using RSA and DSA authentication.
Page 253: Interface Commands
• Remove the remote host with IP address 172.165.1.9 and with an SSH-RSA encryption key from the list of known hosts. sysname(config)# no ssh key rsa1 sysname(config)# no ssh known-hosts 172.165.1.8 sysname(config)# no ssh known-hosts 172.165.1.9 ssh-rsa 33.9 interface Commands These are some commonly used commands that belong to the commands.
Page 254: Broadcast-Limit
• Set the outgoing traffic bandwidth limit to 7Mbps. , to forward BPDUs received on ports one, three, four tunnel Enables broadcast storm control limit on the switch. Sets how many broadcast packets the interface receives per second. VES-1616F-3x Series User’s Guide...
Page 255: Mirror
GVRP (GARP VLAN Registration Protocol) is a registration protocol that defines a way for switches to register necessary VLAN members on ports across the network. Enable this function to permit VLANs groups beyond the local switch. VES-1616F-3x Series User’s Guide Chapter 33 Command Examples Enables port mirroring on the interface.
Page 256: Ingress-Check
Chapter 33 Command Examples An example is shown next. • Enable the IEEE 802.1Q tagged VLAN command to configure tagged VLAN for the switch. • Enable ports one, three, four and five for configuration. • Enable GVRP on the interface.
Page 257: Qos Priority
<port-list> An example is shown next. • Enable port-based VLAN tagging on the switch. • Enable ports one, three, four and five for configuration. • Set the outgoing traffic ports as the CPU (0), seven (7), eight (8) and nine (9).
Page 258: Speed-Duplex
Chapter 33 Command Examples 33.9.12 speed-duplex Syntax: speed-duplex <auto|10-half|10-full|100-half|100-full|1000-full> where <auto|10-half|10- full|100-half|100- full|1000-full> An example is shown next. • Enable ports one, three, four and five for configuration. • Set the speed to 10 Mbps in half duplex mode. sysname(config)# interface port-channel 1,3-5 sysname(config-interface)# speed-duplex 10-half Sets the duplex mode (half or full) and speed (10, 100 or 1000 Mbps) of the connection on the port.
Page 259: Ieee 802.1Q Tagged Vlan Commands
2000 sysname(config-interface)# exit 2 Configure your management VLAN. • Use the vlan <vlan-id> managing the switch, and the switch will activate the new management VLAN. • Use the command to disable the new management VLAN. inactive VES-1616F-3x Series User’s Guide Commands for background information on VLANs.
Page 260: Global Vlan1Q Tagged Vlan Configuration Commands
This section shows you how to configure and monitor the IEEE 802.1Q Tagged VLAN. 34.2.1 GARP Status Syntax: show garp This command shows the switch’s GARP timer settings, including the join, leave and leave all timers. An example is shown next. sysname# show garp...
Page 261: Gvrp Timer
This command sets the switch’s GARP timer settings, including the join, leave and leave all timers. Switches join VLANs by making a declaration. A declaration is made by issuing a Join message using GARP. Declarations are withdrawn by issuing a Leave message. A Leave All message terminates all registrations.
Page 262: Set Acceptable Frame Type
Chapter 34 IEEE 802.1Q Tagged VLAN Commands where Specifies the VLAN number between 1 and 4094 <VID> This command sets the default VLAN ID on the port(s). The following example sets the default VID to 200 on ports 1 to 5. sysname(config)# interface port-channel 1-5 sysname(config-interface)# pvid 200 34.3.2 Set Acceptable Frame Type...
Page 263: Forwarding Process Example
34.3.5 Forwarding Process Example 34.3.5.1 Tagged Frames 1 First the switch checks the VLAN ID (VID) of tagged frames or assigns temporary VIDs to untagged frames. 2 The switch then checks the VID in a frame’s tag against the SVLAN table.
Page 264: Delete Vlan Id
The switch also does not forward frames to “forbidden” ports. 4 If after looking at the SVLAN, the switch does not have any ports to which it will send the frame, it won’t check the port filter.
Page 265 An example is shown next. sysname# show vlan The Number of VLAN : Idx. Status ---- ---- --------- Static Static sysname# VES-1616F-3x Series User’s Guide Chapter 34 IEEE 802.1Q Tagged VLAN Commands Elap-Time TagCtl ----------- -------------------------------------- 0:54:40 Untagged :1-18 Tagged 0:54:41 Untagged : Tagged...
Page 266 Chapter 34 IEEE 802.1Q Tagged VLAN Commands VES-1616F-3x Series User’s Guide...
Page 267: Troubleshooting
IP address, your computer’s IP address must match it. Refer to the chapter on access control for details. Your computer’s and the switch’s IP addresses must be on the same subnet. See the following section to check that pop-up windows, JavaScripts and Java permissions are allowed.
Page 268: Problem With The Vdsl Connection
Check the port connection. Make sure the cable is faulty. The VDSL port may be faulty. Try connecting to a different VDSL port on the switch. The target transmission rate(s) may be too high. Set the switch to use a lower link transmission rate.
Page 269: Figure 108 Pop-Up Blocker
Figure 108 Pop-up Blocker You can also check if pop-up blocking is disabled in the Pop-up Blocker section in the Privacy tab. 1 In Internet Explorer, select Tools, Internet Options, Privacy. 2 Clear the Block pop-ups check box in the Pop-up Blocker section of the screen. This disables any web pop-up blockers you may have enabled.
Page 270: Figure 110 Internet Options
Chapter 35 Troubleshooting Figure 110 Internet Options 3 Type the IP address of your device (the web page that you do not want to have blocked) with the prefix “http://”. For example, http://192.168.1.1. 4 Click Add to move the IP address to the list of Allowed sites. Figure 111 Pop-up Blocker Settings VES-1616F-3x Series User’s Guide...
Page 271: Figure 112 Internet Options
5 Click Close to return to the Privacy screen. 6 Click Apply to save this setting. 35.3.1.2 JavaScripts If pages of the web configurator do not display properly in Internet Explorer, check that JavaScripts are allowed. 1 In Internet Explorer, click Tools, Internet Options and then the Security tab. Figure 112 Internet Options 2 Click the Custom Level...
Page 272: Figure 113 Security Settings - Java Scripting
Chapter 35 Troubleshooting Figure 113 Security Settings - Java Scripting 35.3.1.3 Java Permissions 1 From Internet Explorer, click Tools, Internet Options and then the Security tab. 2 Click the Custom Level... button. 3 Scroll down to Microsoft VM. 4 Under Java permissions make sure that a safety level is selected. 5 Click OK to close the window.
Page 273: Problems With The Password
CORRECTIVE ACTION Cannot access the The password field is case sensitive. Make sure that you enter the correct switch. password using the proper casing. The administrator username is “admin”. The default administrator password is “1234”. The username and password are case-sensitive. Make sure that you enter the correct password and username using the proper casing.
Page 274 Chapter 35 Troubleshooting VES-1616F-3x Series User’s Guide...
Page 275: Product Specifications
Fixed Rate and Rate Adaptive. Power back off Interleave delay setting RFI configuration Resynchronization Diagnostics The switch can perform self-diagnostic tests. These tests check the operation of the following Capabilities circuits: FLASH memory DRAM LAN port local and remote loopback test...
Page 276 Chapter 36 Product Specifications Table 91 Product Specifications (continued) Security Static MAC address forward MAC address learning: 10 per port Block unresolved address forwarding/Port security 802.1x port authentication Multicasting Support IGMP snooping and filtering IGMP V1 and V2 (RFC2236 and RFC112) Bridging 16K MAC addresses learning Static MAC address forwarding, 256 entries...
Page 277: Table 92 Co Impedance Splitter Board Specifications
Consumption Temperature Three temperature sensors: Threshold T1 (VDSL Chipset): 81 °C ON; 60 °C OFF T2 (Switch): 73 °C ON; 65 °C OFF T3 (Monitor chipset): 88 °C ON; 60 °C OFF Voltage Threshold Four voltages: 2.5V: +- 6% 1.2V: +- 6% 3.5V: +- 6%...
Page 278: Hardware Telco-50 Connector Pin Assignments
COUNTRY Netherlands Norway Russia Sweden Swiss Hardware Telco-50 Connector Pin Assignments The following table and diagram show the pin assignments of the Telco-50 connectors on the switch. Table 93 Hardware Telco-50 Pin Assignments VDSL PIN1 P+PORT16 PIN2 P-PORT16 PIN3 NULL...
Page 279: Figure 116 Hardware Telco-50 Pin Assignments
Table 93 Hardware Telco-50 Pin Assignments PIN24 NULL PIN25 NULL Figure 116 Hardware Telco-50 Pin Assignments This table lists the ports and matching pin numbers for the hardware Telco-50 connector. Table 94 Hardware Telco-50 Connector Port and Pin Numbers VDSL PORT NUMBER VES-1616F-3x Series User’s Guide PIN49 P-PORT1...
Page 280: Figure 117 Telco-50 Cable Vdsl Telco-50 Pin Assignments
Use Telco-50 cables to connect the VDSL LINE port to the user equipment (VDSL modem) and the POTS/ISDN LINE port to the central office switch or PBX (Private Branch Exchange). The following diagram shows the pin assignments that you need to have on the Telco-50 connectors on the Telco-50 cables.
Page 281: Figure 119 Console Cable Db-9 End Pin Layout
In a serial communications connection, generally a computer is DTE (Data Terminal Equipment) and a modem is DCE (Data Circuit-terminating Equipment). The Switch is DCE when you connect a computer to the console port. The following diagrams and chart show the pin assignments of the console cable.
Page 282 Chapter 36 Product Specifications VES-1616F-3x Series User’s Guide...
Page 283: Part Vii: Appendices And Index
VIII Appendices and Index The appendices provide general information. Some details may not apply to your Switch. Legal Information (295) Customer Support (299) Index (303)
Page 285: Introduction To Ip Addresses
P P E N D I X IP Addresses and Subnetting This appendix introduces IP addresses and subnet masks. IP addresses identify individual devices on a network. Every networking device (including computers, servers, routers, printers, etc.) needs an IP address to communicate across the network.
Page 286: Figure 120 Network Number And Host Id
Appendix A IP Addresses and Subnetting Figure 120 Network Number and Host ID How much of the IP address is the network number and how much is the host ID varies according to the subnet mask. Subnet Masks A subnet mask is used to determine which bits are part of the network number, and which bits are part of the host ID (using a logical AND operation).
Page 287: Table 97 Subnet Masks
Subnet masks are expressed in dotted decimal notation just like IP addresses. The following examples show the binary and decimal notation for 8-bit, 16-bit, 24-bit and 29-bit subnet masks. Table 97 Subnet Masks BINARY OCTET 8-bit mask 11111111 16-bit mask 11111111 24-bit mask 11111111...
Page 288: Figure 121 Subnetting Example: Before Subnetting
Appendix A IP Addresses and Subnetting Table 99 Alternative Subnet Mask Notation (continued) SUBNET MASK 255.255.255.192 255.255.255.224 255.255.255.240 255.255.255.248 255.255.255.252 Subnetting You can use subnetting to divide one network into multiple sub-networks. In the following example a network administrator creates two sub-networks to isolate a group of servers from the rest of the company network for security reasons.
Page 289: Figure 122 Subnetting Example: After Subnetting
Figure 122 Subnetting Example: After Subnetting In a 25-bit subnet the host ID has 7 bits, so each sub-network has a maximum of 2 possible hosts (a host ID of all zeroes is the subnet’s address itself, all ones is the subnet’s broadcast address).
Page 290: Table 101 Subnet 2
Appendix A IP Addresses and Subnetting Table 101 Subnet 2 IP/SUBNET MASK IP Address IP Address (Binary) Subnet Mask (Binary) Subnet Address: 192.168.1.64 Broadcast Address: 192.168.1.127 Table 102 Subnet 3 IP/SUBNET MASK IP Address IP Address (Binary) Subnet Mask (Binary) Subnet Address: 192.168.1.128 Broadcast Address:...
Page 291: Table 105 24-Bit Network Number Subnet Planning
Table 104 Eight Subnets (continued) SUBNET SUBNET ADDRESS Subnet Planning The following table is a summary for subnet planning on a network with a 24-bit network number. Table 105 24-bit Network Number Subnet Planning NO. “BORROWED” HOST BITS The following table is a summary for subnet planning on a network with a 16-bit network number.
Page 292: Configuring Ip Addresses
You must also enable Network Address Translation (NAT) on the Switch. Once you have decided on the network number, pick an IP address for your Switch that is easy to remember (for instance, 192.168.1.1) but make sure that no other device on your network is using that IP address.
Page 293: Figure 123 Conflicting Computer Ip Addresses Example
IP Address Conflicts Each device on a network must have a unique IP address. Devices with duplicate IP addresses on the same network will not be able to access the Internet or other resources. The devices may also be unreachable through the network. Conflicting Computer IP Addresses Example More than one device can not use the same IP address.
Page 294: Conflicting Computer And Router Ip Addresses Example
Appendix A IP Addresses and Subnetting Conflicting Computer and Router IP Addresses Example More than one device can not use the same IP address. In the following example, the computer and the router’s LAN port both use 192.168.1.1 as the IP address. The computer cannot access the Internet.
Page 296: Appendix B Legal Information
Appendix B Legal Information FCC Warning This device has been tested and found to comply with the limits for a Class A digital switch, pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a commercial environment. This device generates, uses, and can radiate radio frequency energy and, if not installed and used in accordance with the instruction manual, may cause harmful interference to radio communications.
Page 297 condition. Any replacement will consist of a new or re-manufactured functionally equivalent product of equal or higher value, and will be solely at the discretion of ZyXEL. This warranty shall not apply if the product has been modified, misused, tampered with, damaged by an act of God, or subjected to abnormal working conditions.
Page 298 Appendix B Legal Information VES-1616F-3x Series User’s Guide...
Page 299: Appendix C Customer Support
José, Costa Rica Czech Republic • E-mail: info@cz.zyxel.com • Telephone: +420-241-091-350 • Fax: +420-241-091-359 • Web Site: www.zyxel.cz • Regular Mail: ZyXEL Communications, Czech s.r.o., Modranská 621, 143 01 Praha 4 - Modrany, Ceská Republika VES-1616F-3x Series User’s Guide Customer Support...
Page 300: Appendix C Customer Support
• Support E-mail: support@zyxel.fi • Sales E-mail: sales@zyxel.fi • Telephone: +358-9-4780-8411 • Fax: +358-9-4780 8448 • Web Site: www.zyxel.fi • Regular Mail: ZyXEL Communications Oy, Malminkaari 10, 00700 Helsinki, Finland France • E-mail: info@zyxel.fr • Telephone: +33-4-72-52-97-97 • Fax: +33-4-72-52-19-20 •...
Page 301 • Sales E-mail: sales@zyxel.com • Telephone: +1-800-255-4101, +1-714-632-0882 • Fax: +1-714-632-0858 • Web Site: www.us.zyxel.com • FTP Site: ftp.us.zyxel.com • Regular Mail: ZyXEL Communications Inc., 1130 N. Miller St., Anaheim, CA 92806- 2001, U.S.A. Norway • Support E-mail: support@zyxel.no • Sales E-mail: sales@zyxel.no •...
Page 302 Appendix C Customer Support • Web Site: www.zyxel.es • Regular Mail: ZyXEL Communications, Arte, 21 5ª planta, 28033 Madrid, Spain Sweden • Support E-mail: support@zyxel.se • Sales E-mail: sales@zyxel.se • Telephone: +46-31-744-7700 • Fax: +46-31-744-7701 • Web Site: www.zyxel.se • Regular Mail: ZyXEL Communications A/S, Sjöporten 4, 41764 Göteborg, Sweden Ukraine •...
Page 303: Index
197, 201 member memeber web configurator screen network example setup specification status switch models warning icon cluster manager cluster member clustering Command Forwarding Process Example Summary Syntax conventions command exit command interface...
Page 304 Index Configuration file Restore configuration restore configure port authentication configuring STP connection test Console port Settings console port initial screen contact information copyright CPU management port CRC (Cyclic Redundant Check) create login account customer support destination lookup failure See DLF device MAC address DHCP option 82...
Page 305 GVRP GARP VLAN Registration Protocol See GVRP GVRP (GARP VLAN Registration Protocol) gvrp disable gvrp enable gvrp status hardware connection hardware installation rack mount hardware monitor hop count HTTP HTTP over SSL See HTTPS HTTPS example HyperText Transfer Protocol over Secure Socket Layer See HTTPS IANA IEEE 802.1p...
Page 306 Index management interface managing the device good habits using FTP. See FTP. using SNMP. See SNMP. using Telnet. See command interface. using the command interface. See command interface. using the web configurator. See web configurator. supported MIBs Mini GBIC ports Connection speed Connector type Transceiver installation...
Page 307 PVID 87, 92 127, 157 Quality of Service See QoS queue weight Queuing Queuing algorithm queuing algorithm select Queuing method rack mouting requirement Radio Frequency Interference See RFI RADIUS RADIUS server Advantages Network example Settings setup shared secret UDP port Rapid Spanning Tree Protocol See RSTP rate adaption 76, 79...
Page 308 Terminology terminology Strict Priority Queuing See SPQ subnet subnet mask subnetting Switch lockout Switch reset switch setup syntax conventions sys Commands examples 243, 251, 253 sys log disp syslog log type protocol...
Page 309 VDSL port connection VDSL port detail ventilation 90, 141 view log Virtual Local Area Network See VLAN VLA stacking frame format VLAN 67, 139 acceptable frame type double-tagged frame IEEE 802.1q parameter ingress check Introduction number of possible VIDs Number of VLANs port isolation 92, 95 port trunking...
Page 310 Index VES-1616F-3x Series User’s Guide...

This manual is also suitable for:

Ves-1616f-3x series

ZyXEL Communications VDSL SWITCH VES-1616F-3X User Manual

Chapter 1 Getting to Know Your Switch

Chapter 2 Hardware Installation

Chapter 3 Hardware Overview

Chapter 4 The Web Configurator

Chapter 5 System Status and Port Statistics

Chapter 6 Basic Setting

Chapter 7 VLAN

Chapter 8 Static MAC Forward Setup

Chapter 9 Filtering

Chapter 10 Spanning Tree Protocol

Chapter 11 Bandwidth Control

Chapter 12 Broadcast Storm Control

Chapter 13 Mirroring

Chapter 14 Link Aggregation

Chapter 15 Port Authentication

Chapter 16 Port Security

Chapter 17 Queuing Method

Chapter 18 Classifier

Chapter 19 Policy

Chapter 20 VLAN Stacking

Chapter 21 Multicast

Chapter 22 Differentiated Services

Chapter 23 Static Route

Chapter 24 DHCP Relay

Quick Links

Troubleshooting

Need help?

Questions and answers

Related Manuals for ZyXEL Communications VDSL SWITCH VES-1616F-3X

Summary of Contents for ZyXEL Communications VDSL SWITCH VES-1616F-3X