1. Manuals
  2. Brands
  3. ZyXEL Communications Manuals
  4. Network Router
  5. Dimension ES-4124 L3
  6. Support notes

ZyXEL Communications Dimension ES-4124 L3 Support Notes

L3 ethernet switch
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
ZyXEL ES-4124 L3 Switch
Ethernet Switch

Support Notes

Version 3.60
July 2006

Advertisement

Table of Contents
loading

Related Manuals for ZyXEL Communications Dimension ES-4124 L3

Summary of Contents for ZyXEL Communications Dimension ES-4124 L3

  • Page 1: Support Notes

    ZyXEL ES-4124 L3 Switch Ethernet Switch Support Notes Version 3.60 July 2006...
  • Page 2 Introduction of SNMPc and NetAtlas * NetAtlas Version 1.02 or below does not support ES-4124 Cluster Management -- iStacking Remote Monitoring (RMON) What is the default setting of the IP parameters? All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 3 What is default login password of the console, telnet, and FTP? How to change the password? How to access the Command Line Interface? If I forgot the Switch password, how can I reset the password to default? How do I configure an IP address?

  • Page 4: Firmware Upgrade

    Click on the “Click Here” link of the Firmware Upgrade to bring up the following screen. Browse the firmware located or type in the path into the “File Path” field. Click on the Upgrade button. All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 5 Enter “ATGO” to restart the switch after done uploading the firmware. From Command Line FTP: Download (and unzipped) the correct model firmware to your computer. Launch the FTP client on your PC to login to Switch. (From the command prompt, type “ftp <Switch IP>” Press “Enter” for the User name Enter password to get the ftp prompt.

  • Page 6: Restore A Configuration File

    Browse to locate the file with the file name or type in the path and the file name into the “File Path” field. Click on the Restore button. From Console Port: Connect to the console port and open the Terminal Emulation Software. All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 7 From Command Line FTP: Download (and unzipped) the correct model firmware to your computer. Launch the FTP client on your PC to login to Switch. (From the command prompt, type “ftp <Switch IP>”. Press “Enter” for the User name Enter password to get the ftp prompt.

  • Page 8: Backing Up A Configuration File

    Save button to backup the configuration rom file to a proper location. From Console Port: Connect to the console port and open the Terminal Emulation Software. Restarting the Switch to enter the debug mode via the terminal. Enter “ATTD” All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 9 From Command Line FTP: Download (and unzipped) the correct model firmware to your computer. Launch the FTP client on your PC to login Switch. (From the command prompt, type “ftp <Switch IP>” Press “Enter” for the User name Enter password to get the ftp prompt.

  • Page 10: Load Factory Defaults

    Click OK to go to the following dialog. Click on the OK button. Now, all switch configurations has been reset to the factory defaults and the system will be restarted. Please note that the switch IP address is now 192.168.1.1.
  • Page 11 Physical Switch connection How to connect two switches via Fiber Channel Your Switch may come with one or many mini-GB ports. ZyXEL offers Small Form-factor Pluggable (SFP) transceivers for Gigabit Ethernet and Fiber Channel applications. These small, modular optical interface transceivers offer...
  • Page 12 Here is the photo of the SFP-SX Transceiver & the LC/LC Fiber Cable. Steps to complete this scenario 1. First, pick up your ES-2108-LC and GS-4024Switch and power them up. All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 13 ES-4124 Support Notes Photo of the ES-2108-LC Switch 2. Find both Mini-GB Port on ES-2108-LC and GS-4024. 3. Get one transceiver and plug it into the Mini-GB Port of ES-2108-LC All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 14 ES-4124 Support Notes 4. Plug another transceiver into the Mini-GB Port of GS-4024 Switch All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 15 5. Remove both side of the protection cap from the LC/LC Fiber Cable. 6. Plug the LC/LC Fiber Cable into the transceivers on both ES-2108-LC and GS-4024 Switch. If you connected the cable correctly, the LED of the “LINK” will light up. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 16 10. From PC “Delta”, PING PC” Alpha” at 192.168.1.4 11. Now you can confirm that the network connection between ES-2108-LC and GS-4024 is up and running. All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes PC “Delta” : 192.168.1.5/24)

  • Page 17: General Networking

    Switch port, VLAN ID and option 82 string. They can easily to achieve this with DHCP Relay Option 82 feature and a DHCP server supporting Option 82 function. Network DHCP Server 192.168.1.99 Ethernet Port Port 25 DHCP Client All contents copyright (c) 2006 ZyXEL Communications Corporation.

  • Page 18: How To Set Up Dhcp Relay Option 82 Environment

    Here, we will set up an environment to allow a PC to get DHCP IP address in specific IP pool according to its Switch port, VLAN ID and the option 82 string. In this case, we are using GS-3012 for the demonstration. PC is behind 25 Switch port and the option 82 string is a string “GS-3012”.
  • Page 19 3. IP Commander settings Open IP Commander. Right click “IP commander and then click “connect new server”. Input the DHCP IP address or domain name and click “ok”. Our IP is 192.168.1.99. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 20 ES-4124 Support Notes Input user name and password. The default user name is “administrator” and password is “incognito”. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 21 ES-4124 Support Notes It will bring up the following screen, please make sure that your DHCP is in “online” status. Then click “wizard” in the top tool bars and select “rule wizard”. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 22 ES-4124 Support Notes Give a name and description to the new rule. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 23 Assign a range of IP addresses or just one IP address to this rule. In our case, we set the IP pool from 192.168.1.201 to 192.168.1.203. After input IP pool, we select “DHCP Option” in Keywords combobox. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 24 25, VLAN 1, “GS-3012”, please key in “0019000147532d33303132” as the key value and click OK. Please note that the first 2 bytes define port number, the second 2 bytes is VLAN ID and the other bytes are the Option 82 string. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 25 ES-4124 Support Notes After you finish above step, you will see the following figure. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 26 ES-4124 Support Notes Then pop up the following screen and you can just press Next button. Then you can add DHCP template (option) such as gateway, DNS server and so on. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 27 ES-4124 Support Notes Here we use “192.168.1.1” as gateway IP address of DHCP client PC. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 28 ES-4124 Support Notes You can apply DDNS service to DHCP server or not. The rule creation has been finished. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 29 ES-4124 Support Notes After finishing all above procedures, your PC will get the IP address 192.168.1.201 when you send a DHCP request. All contents copyright (c) 2006 ZyXEL Communications Corporation.

  • Page 30: Vlan Overview

    Layer-2 switch but Port-based VLAN cannot. Port-based VLAN Port-based VLANs are VLANs where the packet forwarding decision is based on the destination MAC address and its associated port. All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes You must define...
  • Page 31 An egress port is an outgoing port, that is, a port through which a data packet leaves. There are 5 hosts (Host A, B, C, D and E) connected to a 5-port layer-2 switch which supported port-based VLAN.
  • Page 32 Egress port for port 5: port 1, port 4 Port-based VLAN across different switch Port-based VLAN is specific only to the switch on which it was created. Definitely, Port-based VLAN can't across different switches. As the following network diagram shown in most MTU case, for the sake of security, subscribers are isolated with each other except for the gateway.
  • Page 33 Switch-2 VLAN 3 member port: port 4 and port 1 Host A can't talk to Host B due to the port-based VLAN in Switch-2, and Host C can't talk to Host D due to the port-based VLAN in Switch-3. But both Switch-2 and Switch-3 uplink to the none VLAN Switch-1.
  • Page 34 For Switch-1, port 1, port2, and port 3 are allowed to communicate back and forth with uplink port 4, but not with other ports. Switch-1 VLAN 1 member port: port 1 and port 4 Switch-1 VLAN 2 member port: port 2 and port 4...
  • Page 35 ES-4124 Support Notes Scenario In this scenario, Port Based VLAN is used to separate one physical Switch into two smaller logical Switches. Port 1~4 and 9, 10 are in one group. And Port 5~10 are in another group. Port-based VLANs are specific only to the switch on which they were created.
  • Page 36 6. After you login successfully, you will see a similar screen like below. 7. First, we need to tell the Switch to run VLAN as port based instead of 802.1q based. In order to do so, we first click on the “Basic Setting”, then “Switch Setup”;...
  • Page 37 ES-4124 Support Notes 8. Now, you need to tell the Switch how you are going to separate the physical Switch into some logical small Switches. Thus, we click “Advanced Application” then “VLAN”. On the right screen, check the boxes to suit your need. In this case, we need to make port 1~4 and port 9, 10 in a group in order for them to communicate in both ways.
  • Page 38 10. For example, PC A: 192.168.1.4/24 PC B: 192.168.1.5/24 PC C: 192.168.1.6/24 PC D: 192.168.1.7/24 PC Z: 192.168.1.99/24 11. PING PC B from PC A (Should work) All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 39 ES-4124 Support Notes 12. PING PC Z from PC A (Should work) 13. PING PC C from PC A (Should NOT work) All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 40 5. Put “en” or “enable” to go into the privileged mode. Then put “config” to go into the configuration mode. 6. Put the following commands to setup Port Based VLAN on your Switch in this All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 41 VLAN and QoS (Quality of Service) priority identification. The VLANs can be created statically by hand or dynamically through GVRP. The VLAN ID associates a frame with a specific VLAN and provides the information that switches need to All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 42 VID (VLAN Identifier) of null (0) is called a priority frame, meaning that only the priority level is significant and the default VID of the ingress port is given as the VID of the frame. All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 43 How 802.1Q VLAN works According to the VID information in the tag, the switch forward and filter the frames among ports. These ports with same VID can communicate with each other. IEEE 802.1Q VLAN function contains the following three tasks, Ingress Process, Forwarding Process and Egress Process.
  • Page 44 The VLAN entries in Filtering Database have the following information: VID: VLAN ID Port: The switch port number Ad Control: Registration administration control. There are 3 type of ad control, including forbidden registration, fixed registration and normal registration. All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 45 3. Egress Process: The Egress Process decides if the outgoing frames but be sent tagged or untagged. The Egress Process refers to the egress tag control information in All contents copyright (c) 2006 ZyXEL Communications Corporation. Port Ad Control Tag Control...
  • Page 46 7 VLAN on second switch. Trunk port will be port 25 on both switches as well. I made VLAN s on both switch, but I did not find trunk options on both switches. How can I use Port 25 as trunk port?
  • Page 47 VID:103 (port 7,8,9,10,"25 TAG") VID:104 (port 23,24,"25 TAG") VID:105 (port 11,12,13,14,"25 TAG") VID:106 (port 15,16,17,"25 TAG") VID:107 (port 18,19.20,21,"25 TAG") ------------------------------------- In switch B, add port 25 in each VLAN VID:101 (port 1,2,3,,4,"25 TAG") All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 48 Port 1, 2, 3, 4 : Port 6, 7, 8, 9, 10, : Port 11, 12, 13, 14, : Port 15, 16, 17, 18: Port 19, 20, 21, 22, 23: Port 25:PVID=any All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 49 1 can communicate with PC2 with another VLAN tag frames in switch 2 via VLAN trunking port. In our example, we set up port 5 in switch 1 as the VLAN Trunking port while in switch 2, we set up port 10 as the VLAN Trunking port.
  • Page 50 ES-4124 Support Notes In the switch 2, the configuration is In the switch 1, we set port 2 as VLAN 2 untag All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 51 In the switch 2, we set port 6 as VLAN 2 untag. The switch 1 IP address: 192.168.1.31 The switch 2 IP address: 192.168.1.21 After the configuration, we can observe that in the switch 1, the PC running on port 2 can find the PC running on port 6 in the switch 2.
  • Page 52 IGMP router. Thus this significantly reduces the multicast traffic forwarded down to the clients. Another advantage of IGMP snooping is to allow the intermediate switch to learn multicast group information without manually configuring switches. All contents copyright (c) 2006 ZyXEL Communications Corporation.

  • Page 53: Configuration Of Igmp Snooping By Web

    In this example, we enable the IGMP function on the GS-4024 (an IGMP router) to connect to a multimedia server. Also, we enable IGMP snooping function on the ES-3124 or other ZyXEL L2 Switch to connect to the multimedia clients. Figure 2: IGMP snooping Example...

  • Page 54: Configuration Of Igmp And Igmp Snooping By Cli

    Figure 4: IGMP Snooping Setup Configuration of IGMP and IGMP snooping by CLI Step one: Enable IGMP function In the configure mode GS-4024(config)# router igmp Step two: Enable IGMP snooping All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 55 In the exec mode of CLI L2Switch# show igmp-snooping ______________________________________________________________ Note: One thing needs to be mentioned is that in the IGMP router, we do not need to enable IGMP snooping function. All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...

  • Page 56: Overview Of Mvr

    6 times. In the Figure 2, on the contrary, with MVR, a media server is required to transmit multicast traffic once to clients in different VLANs. Figure 1 All contents copyright (c) 2006 ZyXEL Communications Corporation.

  • Page 57: Mvr Mode

    Multicast router must be statically configured. Operation Mode Join Operation A subscriber sends an IGMP report message to the switch to join the appropriate multicast. Whether IGMP report matches the switch All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...

  • Page 58: Scenario Of Mvr

    Immediate Leave Operation Subscriber sends an IGMP leave message to the switch to leave the multicast. Subscribers do not need to wait the switch CPU to send an IGMP group-specific query through the receiver port VLAN. The switch will immediately eliminate this receiver port.

  • Page 59: Configuration Via Web

    VLAN. In the VLAN port Setting, please be noted to set the PVID of the port 10 to 100 as the multicast traffic that flowing from media server in port 10 must be tagged with PVID=100 to communicate with the port in MVR VLAN 100 in ES-3124. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 60 22 as a source port to receive traffic from the media server. Also, we select mode as dynamic mode. The switch sends IGMP report message to multicast router through its source port. Figure 6 MVR Configuration All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 61 Application to browse the VLAN Status and see we have add a new VLAN 100 in the VLAN list. We also create three separate VLANs, 20, 30, 40 and assign their PVID as 20, 30 and 40 respectively. Figure 7 VLAN Status All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 62 Step 5: Before we start to use the MVR, it is quite fundamental to enable the IGMP Snooping first. In the ES-3124 Menu, click the Multicast and go toe the Multicast Setting, activate the IGMP Snooping. Figure 10 Multicast Setting All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 63 Here, we configure 233.1.1.1~ 233.1.1.100 as the range of multicast address and only the clients belong to that range of multicast group will receive the multicast traffic. Figure 11 Group Configuration All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 64 ES-3124(config)# vlan 40 ES-3124(config-vlan)# untagged 6 ES-3124(config-vlan)# fixed 6 ES-3124(config-vlan)# untagged 16 ES-3124(config-vlan)# fixed 16 Step 6: On the ES-3124, set the PVID of specific VLAN 20 ES-3124(config)# interface port-channel 4 All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 65 ES-3124(config-mvr)# end-address 233.1.1.100 Step 13: In the MVR 100, specify receiver ports on port 14~16 as tagged ports ES-3124(config-mvr)# receiver-port 14-16 ES-3124(config-mvr)# untagged 14-16 All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes group test start-address 233.1.1.1...
  • Page 66 ES-4124 Support Notes Step 14: Then, specify the source port 22 and assign it to be tagged ports ES-3124(config-mvr)# source-port 22 ES-3124(config-mvr)# tagged 22 All contents copyright (c) 2006 ZyXEL Communications Corporation.

  • Page 67: What Is Spanning Tree Protocol

    When the broadcast frame arrives at Switch B, Switch will repeat above process, flood it to Segment A. The broadcast frame will endlessly travel around the loop network even Router has already received this frame. All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 68 2. Filtering Database Instability: When multiple copies of a frame arrive at different ports of a switch, the MAC entry instability in Filtering Database will occur. Host sends an unicast frame to Router (source MAC address is Host's MAC, destination MAC address is Router's MAC). Both Switch A and Switch B will receive this frame and learn MAC address of Host on Port 2.

  • Page 69: How Stp Works

    STP operation is listed as the following: 1. Select a root bridge Only one switch/ bridge can be selected as the root bridge in a given network. All other decisions in the network, such as which port is blocked and which port is put in forwarding mode, are made regarding this root bridge.
  • Page 70 2. Select a root port for the non-root bridge For the non-root switch/bridge, there will be one root port. The root port is the port through which this non-root switch / bridge communicates with the root bridge (the "leaf"...
  • Page 71 Priority = 32768 Priority = 32768 Port 1 Port 2 Cost Cost Priority 128 Priority 128 All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes Switch C: MAC = 00A0C5333333 Priority = 1 Port 1 Port 2 Port 1...
  • Page 72 For non-root bridge Switch A, Port 1 path cost to root bridge is 19, Port 2 path cost is 119, 100 (Switch A Port 2) + 19 (Switch B Port 1). For Switch B, Port 1 path cost is 19, Port 2 path cost is 119. Root port = Port 1 of Switch A and Switch B because it has the lowest path cost to the root bridge Switch C.

  • Page 73: Switching Security

    ES-4124 Support Notes Switching security MAC freeze As an added protection against network intrusion attacks, ZyXEL has implemented the MAC Freeze feature on ES-2108 Series, ES-3124, ES-2024, ES-3100 Series and ES-4124. Security has been the focus of our Ethernet switch design. This feature will also be available for GS-4024, GS-4012F, GS-3012 Series, GS-2024 and new switch models in future firmware releases.
  • Page 74 MAC addresses. Figure 2: Displaying MAC Addresses From MAC Freeze After you enabled MAC freeze on port 6 using the CLI command, the switch automatically disables MAC address learning on that port. Display the Port Security screen to verify this.
  • Page 75 ES-4124 Support Notes All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 76 Authentication and click Apply button to enable 802.1x authentication. Check Enable to turn on 802.1x authentication on that port. You can leave other settings as default values. Click Apply to save your changes. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 77 MUST use the account in RADIUS server. Windows XP(Supplicant) settings: There are many supplicants we can choose like MeetingHouse Aegis client, Funk Odyssey client and Microsoft 802.1x client. We take Microsoft All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 78 MD5-challenge in EAP type combobox. Please see the following figure. When the 802.1x starts, it will prompt you to enter the user name and password. Please see the following figure. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 79 After click the icon, there will be a dialog for entering the user name and password. Click ok after input the correct user name and password that are in the database of authentication server. The settings of client site are finished. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 80 ES-4124 Support Notes After finishing the above procedures, we can allow the authenticated port the access the server. If the switch port doesn’t be authenticated, the PCs behind the port can’t access the network. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 81 Finally, the last policy rule is set to forward the traffic that is ARP packet format. Below is the configuration of classifier and policy rule. Classifier 1 All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 82 ES-4124 Support Notes Classifier 2 3. Classifier 3 All contents copyright (c) 2006 ZyXEL Communications Corporation.

  • Page 83: Policy Rule Configuration

    ES-4124 Support Notes Policy Rule Configuration 1. Policy rule on Classifier 1 2. Policy rule on classifier 2 All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 84 ES-4124 Support Notes 3. Policy rule on classifier 3 All contents copyright (c) 2006 ZyXEL Communications Corporation.

  • Page 85: Overview Of Vrrp

    VRRP (Virtual Redundancy Routing Protocol) provides a fail-over solution to increase network high availability and prevent single point of failure. Basically, VRRP utilizes two or more switches to work together. The master switch All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 86 The network administrator Peter of ZyCompany wants to ensure the high available of their server farm from LAN users. According to vendor’s recommendation, they buy two ZyXEL ES-4024 switches and have the configuration step by step as following. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 87 ES-4124 Support Notes IP:192.168.1.x Gateway:192.168.1.100 Switch A – ES-4024 downlink network:192.168.1.6 uplink IP:192.168.254.2 uplink gateway:192.168.254.1 virtual IP:192.168.1.100 Switch B – GS-4012F downlink network:192.168.1.5 uplink IP:192.168.254.3 uplink gateway:192.168.254.1 virtual IP:192.168.1.100 All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 88 Step 2. Setup the switch A’s VLAN info to apply the environment. By default, ZyXEL switch has all ports with VLAN=1 setting already. We need to create another VLAN2 for uplink interface. In addition, please notice the “Tx tagging”...
  • Page 89 Static VLAN, and configure all ports with “Fixed” and uncheck “Tx Tagging”. Press Add button then. See the figure below. c. Configure uplink port in GUI menu. Set the PVID to the same ID with uplink is 20. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 90 Step 3. Setup the switch A’s IP address of two interfaces for layer 3 routing and its uplink gateway. Take ES-4024 for example. Configure Switch A’s IP setting via GUI menu Basic Setting >> IP Setup. Default Gateway: 192.168.254.1 1st IP address: 192.168.1.6/24 with VID=1, see figure example as below.
  • Page 91 Step 4. Setup the switch A’s VRRP as the Master of group 1. In the GUI menu Advanced Application >> VRRP, enter the “Configuration” link. 1. choose ‘Simple’ for authentication 2. Enter type ‘12345’ for the key. 3. Press ‘add’ button.
  • Page 92 2nd IP address for uplink Step 7. Setup the switch B’s VRRP as the Backup of group 1. Please refer to Step6. Please note to use All contents copyright (c) 2006 ZyXEL Communications Corporation. interface: 192.168.1.5/24 with VID=1, interface: 192.168.254.3/24 with VID=2...
  • Page 93 ‘Init’. Note: The redundancy works when it detect uplink gateway can be ping and other VRRP group members are not available or the switch is with the highest priority among alive VRRP switches. Step 9. Check the VRRP status via GUI. Both Master and Backup switches should be alive as following.
  • Page 94 Furthermore, ZyCompany wants to achieve load sharing based on the high availability application. To reach this target, two VRRP groups would be recommended. Each switch is a Master of one VRRP group and also acts a Backup of another VRRP group.
  • Page 95 Interface IP 192.168.254.3 192.168.254.1 192.168.253.3 192.168.253.1 Note1. Two IPs in switch A and switch B should be in different vlan groups. For example: Switch A: 192.168.1.6 in vlan 1; 192.168.253.2 in vlan 2 Switch B: 192.168.1.5 in vlan 1; 192.168.254.3 in vlan 2 Note2.
  • Page 96 Create the VLAN3 via GUI menu Advanced Application >> VLAN >> Static VLAN, and configure all ports with “Fixed” and uncheck “Tx Tagging”. Press Add button then. See the figure below. Step 3. Add one more Switch A’s IP setting via GUI menu Basic Setting >> IP Setup. Default Gateway: no change Add 3rd IP address: 192.168.253.2/24 with VID=3, see following figure...
  • Page 97 Step 5. Setup the switchB’s VLAN to apply the environment. Refer to Step2 for the same setting. Step 6. Add one more interface info for the switch B’s IP. Similar as switch A’s setting at Step3, but different IP address as following.
  • Page 98 Configure Switch B’s IP setting via GUI menu Basic Setting >> IP Setup. Default Gateway: no change Add 3rd IP address for VID=3 Step 7. Setup the switch B as the Master role of VRRP group 1. Please note to authentication: no change 2. key: no change 3.
  • Page 99 Description: Sets the VRRP authentication key in the routing domain. Ex: ip vrrp authentication-key 12345 router vrrp network <ip>/<mask-bits> vr-id <1-7> uplink-gateway <ip> Description: Set VRRP detail information. Ex: router vrrp network 192.168.1.5/24 vr-id 7 uplink-gateway 192.168.254.1 All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 100 ES-4124 Support Notes name VRRP-7-B primary-virtual-ip 192.168.1.100 no inactive no preempt All contents copyright (c) 2006 ZyXEL Communications Corporation.

  • Page 101: Centralized Management

    SNMPc manager to perform network configuration, system management, event/alarm management, performance management and security for all ZyXEL’s Ethernet Switch solutions. SNMPc is network management software produced by Castle Rock that constantly probe the network element (NE) and collect information of those NE for EMS.
  • Page 102 View Window Area: Map View, Mib Tables and Mib Graph windows are displayed here. View Window Area: Map View, Mib Tables and Mib Graph windows. Figure 2 Main elements of SNMPc All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 103 Green is working and Rd is no response from the device. System message Panel: View the alarm Status and port status of the selected switch. Figure 3 Overview of EMS All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 104 Netatlas with adding a new device. Follow the procedures from Step 1 to Step Step 1: In the edit button bar shown in the Figure 4 where you may select the icon to insert a new element. Figure 4 Adding a new Device All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 105 Figure 5 Map Object Properties Step 4: In the map object properties, select Access tab to set the parameters of Read Access Mode to SNMP V2c shown in Figure 6. Change the value of All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 106 Step 5: In the map object properties, select Access tab to set the parameters of Read /Write Access Mode to SNMP V2c shown in Figure 7. Change the value of Read/write Access Mode to SNMP V2c. Figure 7 Read/Write Access Mode All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 107 ES-4124 Support Notes Step 6: In the map object properties, select Access tab to set the parameters of Read community to public as shown in Figure 8. Figure 8 Read Community All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 108 Read community to public in Figure 9. Change the value of Read//write Community to Public. Figure 9 Read/write Community Step 8: In the Selection tool menu, Click the name of your Switch to manage the device. Figure 10 Device Selection...
  • Page 109 ES-4124 Support Notes Step 9: After the selection, a pop-up menu will display the NetAtlas switch manager diagram. Click the Switch Manager to enter the EMS Mapping shown in Figure 11 Figure 11 Device Selection Step 10: In the EMS mapping, it display a logical hierarchy for the device. In the device list, you may see the devices are added in the Rootmap shown in All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 110 ES-4124 Support Notes Figure 12. Figure 12 Rootmap Step 11: Click the your Switch to configure the device shown in Figure 13. Figure 13 Device mapping All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 111 VLAN2 in GS-4024. Here are the procedures. Step 1: In the device panel list shown in Figure 12, right-click Configuration, Switch Configuration and then Switch Setup tab as shown in Figure 12 and Figure 13. Step 2: Define the VLAN type, there are two types of VLAN, one is 802.1Q and the other is Port-based VLAN.
  • Page 112 After the VLAN type selection, a pop-up window indicates that you have finished the configuration. Then after we have defined the VLAN type to be the 802.1Q, go back to click the Configuration and then VLAN configuration in All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 113 Click the New button to create a new VLAN ID in Figure 16. Figure 16 Creating a new VLAN ID Selecting Egress ports and defines them to be tagged or untagged in Figure 17 Figure 17 Selecting the ports All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 114 ES-4124 Support Notes For more information, reference the user guide of NetAtlas. All contents copyright (c) 2006 ZyXEL Communications Corporation.

  • Page 115: Cluster Management Overview

    To discover the clustering members, the clustering Manager broadcasts a HDAP (Host Discovery and Address assignment Protocol) Discover request. Step 2: Cluster manager (Master device) All contents copyright (c) 2006 ZyXEL Communications Corporation. 1. HDAP Discover REQ 2. HDAP Discover RSP ES-4124 Support Notes Cluster member...

  • Page 116: Cluster Member

    "Set Address" request. The hardware address uniquely identifies the sender of this response. After the processes are done, the cluster master will be able to manage the All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes Cluster member...
  • Page 117 Cluster Manager. In the middle of this page, there is a table shows all the clustering candidates which can be selected and added as the clustering members. Step 2: All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 118 ES-4124 Support Notes Select a device in the Clustering Candidate table and enter the password which is the admin password for the candidate device to add the clustering member. Step 3: All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 119 Click on the index number to manage the selected clustering member. Step 4: In “Member Menu” pages, you can change any setting of the clustering member, except Cluster Management, Firmware Upgrade and Restore Configuration. Step 5: All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 120 Enter “Management”->”Cluster Management”->”Clustering Management Status:” In “Clustering Management Status” pages, you can check the status for each member. Step 6: Enter “Management”->”Cluster Management”->”Clustering Management Configuration:” In “Clustering Management Configuration” pages , by All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 121 ES-4124 Support Notes checking the remove checkbox and then, click on the Remove button to remove a cluster member. All contents copyright (c) 2006 ZyXEL Communications Corporation.

  • Page 122: Overview Of Rmon

    The SMON MIB extends RMON by providing RMON analysis for switched networks. RMON Groups RMON delivers information in nine RMON groups of monitoring elements, each providing specific sets of data to meet common network-monitoring All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 123 HostTopN Prepares tables that describe the top hosts. All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes Elements Packets dropped, packets sent, bytes sent (octets), broadcast packets, multicast packets, CRC errors, runts, giants, fragments, jabbers, collisions,...
  • Page 124 Matrix (1.3.6.1.2.1.16.6) Filter (1.3.6.1.2.1.16.7) Capture (1.3.6.1.2.1.16.8) All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes Source and destination address pairs and packets, bytes, and errors for each pair. Bit-filter type (mask or not mask), filter expression (bit level), conditional expression (and, or not) to other filters.
  • Page 125 PC. And this PC is defined as “RMON management console”. This PC can ping both ZyXEL ES-3148 (both Switch A & Switch B). And there are some probes / networking devices to generate the traffic to the ZyXEL Switches in order to verify the RMON result.
  • Page 126 Packets by using SNMPc Enterprise Edition Version 5.1.6c. Methodology of Scenario Verification 1.Open your SNMPc program first, then pick the ZyXEL-3148 Switch (it is first named as device “root”) and give it the correct IP information to get the SNMP information. Also, you can rename it to whatever you want.
  • Page 127 ES-4124 Support Notes Secondly, click on the “Mib” tab and expend the SNMP Mibs’ tree. You will find that there is an “rmon” group over there and again you can expend its sub-tree. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 128 ES-4124 Support Notes Right click the “etherStatsTable” and choose “View Table” All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 129 Find the interface or port that you are looking for. And you can look at the corresponding field and therefore find the value that you want to monitor. In this case, we are looking for the Broadcast Packets. All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 130 Switch RMON Group(s), otherwise, it will return 0 and always stays 0. Without the supporting of RMON, then it is impossible to monitor those elements in the RMON MIB Group All contents copyright (c) 2006 ZyXEL Communications Corporation.
  • Page 131 Connect the male 9-pin end of the console cable to the console port of the Switch. Connect the female end to a serial port (COM1, COM2 or other COM port) of your computer, which has terminal emulation software configured to...
  • Page 132 How to access the Command Line Interface? There are two ways to access the Command Line Interface. One is “Telnet to the switch” and another is “Connect a computer to the console port and use the terminal emulation software.” Please check “How to access the Switch through the console port?”...
  • Page 133 Power off and then power on the Switch, and press any key to enter the debug mode when the screen shows “Press any key to enter Debug Mode within 3 seconds.” Type “atlc” and press the enter key When the message “starting XMODEM upload” appears, do XMODEM upload of the default rom file to the Switch After it is done uploading the rom file successfully, type “atgo”...
  • Page 134 From console, issuing a command, “show system-information” will return the information of the firmware version installed on the switch. Is the mini GBIC transceiver hot-swappable? Yes, it is hot-swappable. You can change transceivers while the switch is All contents copyright (c) 2006 ZyXEL Communications Corporation. ES-4124 Support Notes...
  • Page 135 Dual-Personality GbE interface means that one 1000Base-T Copper port and one SFP port share the same physical interface. Only one of them can be used at one of a time. Dual-Personality interface is also called "Combo Port" in some cases. All contents copyright (c) 2006 ZyXEL Communications Corporation.

This manual is also suitable for:

Es-4124

Table of Contents