1. Manuals
  2. Brands
  3. Comnet Manuals
  4. Switch
  5. CNGE3FE7MS2 Series
  6. User manual

Comnet CNGE3FE7MS2 Series User Manual

Managed industrial switch
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
CNGE3FE7MS2 Series
Managed Industrial Switch
User Manual
V1.2
August – 2009

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the CNGE3FE7MS2 Series and is the answer not in the manual?

Questions and answers

Related Manuals for Comnet CNGE3FE7MS2 Series

Summary of Contents for Comnet CNGE3FE7MS2 Series

  • Page 1 CNGE3FE7MS2 Series Managed Industrial Switch User Manual V1.2 August – 2009...

  • Page 2: Fcc Warning

    FCC Warning This Equipment has been tested and found to comply with the limits for a Class-A digital device, pursuant to Part 15 of the FCC rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation. This equipment generates, uses, and can radiate radio frequency energy.

  • Page 3: Table Of Contents

    Content Chapter 1 Introduction ..........1 Hardware Features ........1 Software Features.......... 4 Package Contents.......... 7 Chapter 2 Hardware Description ......8 Physical Dimension........8 Front Panel............. 8 Top View ............9 LED Indicators..........10 Chapter 3 Hardware Installation ......12 Installation Steps..........
  • Page 4 Login in the Console Interface ..... 28 CLI Management.......... 30 Commands Level ......... 30 Chapter 6 Web-Based Management..... 32 About Web-based Management ....32 Preparing for Web Management ....32 System Login ..........33 System Information ........34 IP Configuration ........... 35 DHCP Server ..........
  • Page 5 6.14 Port Statistics ..........61 6.15 Port Control ..........63 6.16 Port Trunk ............ 65 6.16.1 Aggregator setting ........65 6.16.2 Aggregator Information ......... 67 6.16.3 State Activity ..........73 6.17 Port Mirroring ..........75 6.18 Rate Limiting ..........76 6.19 VLAN configuration ........
  • Page 6 6.25.2 Port Configuration........107 6.25.3 Misc Configuration ........108 6.26 MAC Address Table ........109 6.26.1 Static MAC Address........109 6.26.2 MAC Filtering ..........111 6.26.3 All MAC Addresses........112 6.27 Factory Default........... 115 6.28 Save Configuration........115 6.29 System Reboot........... 115 Troubleshooting ............
  • Page 7 SNTP Commands Set.......... 143 X-ring Commands Set.......... 145...

  • Page 8: Chapter 1 Introduction

    Chapter 1 Introduction The CNGE3FE7MS2 Managed Industrial Switch is a cost-effective solution and meets high reliability requirements demanded industrial applications. CNGE3FE7MS2 Managed Industrial Switch can be easily managed through the Web GUI and NS-View. Using the fiber ports can extend the connection distance that increases the network elasticity and performance.
  • Page 9 Flash ROM 4M bytes DRAM 32M bytes 10/100TX: 7 x RJ-45 10/100/1000T Mini-GBIC Combo: 3 x RJ-45 + 3 x Connector 100/1000 SFP sockets RS-232 connector: RJ-45 type 2 Digital Input (DI): Level 0 : -30~2V Level 1 : 10~30V DI/DO Max.
  • Page 10 removable terminal block Power 10.2Watts Consumption Operating 5% to 95% (Non-condensing) Humidity Operating C ~ 75 Temperature Storage C ~ 85 Temperature Case Dimension IP-30, 72mm (W) x 105mm (D) x 152mm (H) Fan Number Installation DIN rail and wall mount ear FCC Class A, CE EN61000-4-2 (ESD), CE EN61000-4-3 (RS), CE EN-61000-4-4 (EFT), CE EN61000-4-5 (Surge), CE EN61000-4-6 (CS), CE EN61000-4-8,...

  • Page 11: Software Features

    1.2 Software Features Management SNMP v1 v2c, v3/ Web/Telnet/CLI/NS-View RFC 1215 Trap, RFC1213 MIBII, RFC 1157 SNMP MIB, SNMP MIB RFC 1493 Bridge MIB, RFC 2674 VLAN MIB, RFC 1643 , RFC 1757, RSTP MIB, Private MIB Port Based VLAN IEEE 802.1Q Tag VLAN (256 entries)/ VLAN ID (Up to 4K, VLAN VLAN ID can be assigned from 1 to 4096.)
  • Page 12 Supports 10 IP addresses that have permission to access IP Security the switch management and to prevent unauthorized intruder. Login Security Supports IEEE802.1X Authentication/RADIUS Supports ingress packet filter and egress packet limit The egress rate control supports all of packet type and the limit rates are 100K~250Mbps Bandwidth Ingress filter packet type combination rules are...
  • Page 13 SNTP Supports SNTP to synchronize system clock in Internet Firmware Update Supports TFTP firmware update, TFTP backup and restore. Configuration Supports binary format file for configuration backup and Upload/Download restore Each port allows importing 128-bit of alphabetic string of ifAlias word on SNMP and CLI interface...

  • Page 14: Package Contents

    1.3 Package Contents Please refer to the package content list below to verify them against the checklist. CNGE3FE7MS2 Managed Industrial Switch x 1 User manual x 1 Pluggable Terminal Block x 2 Mounting plate x 2 RJ-45 to DB9-Female cable x 1 Wall mount power supply Compare the contents of the industrial switch with the standard checklist above.

  • Page 15: Chapter 2 Hardware Description

    Chapter 2 Hardware Description In this paragraph, it will describe the Industrial switch’s hardware spec, port, cabling information, and wiring installation. 2.1 Physical Dimension CNGE3FE7MS2 Managed Industrial Switch dimensions (W x D x H) are 72mm x 105mm x 152mm. 2.2 Front Panel The Front Panel of the CNGE3FE7MS2 Managed Industrial Switch is shown below: Front Panel of the industrial switch...

  • Page 16: Top View

    2.3 Top View The Top panel of the CNGE3FE7MS2 Managed Industrial Switch has two terminal block connectors—power connector and DI/DO connector. The power connector consists of two DC power inputs and one fault alarm. As for DI/DO connector, it comprises two digital inputs—DI0 and DI1and two digital outputs—DO0 and DO1.

  • Page 17: Led Indicators

    2.4 LED Indicators The diagnostic LEDs that provide real-time information on system and operational status are located on the front panel of the industrial switch. The following table provides the description of the LED status and their meaning for the switch. Color Status Meaning...
  • Page 18 The SFP port is linking Link/Active The port is transmitting or receiving packets (P7, P9, P10 Green Blinks from the TX device. SFP) No device attached A network device is detected. The port is transmitting or receiving packets Green Blinking from the TX device.

  • Page 19: Chapter 3 Hardware Installation

    Chapter 3 Hardware Installation In this paragraph, we will describe how to install the CNGE3FE7MS2 Managed Industrial Switch. 3.1 Installation Steps 1. Unpack the Industrial switch 2. Check if the DIN-Rail is screwed on the Industrial switch or not. If the DIN-Rail is not screwed on the Industrial switch, please refer to DIN-Rail Mounting section for DIN- Rail installation.

  • Page 20: Din-Rail Mounting

    3.2 DIN-Rail Mounting The DIN-Rail is screwed on the industrial switch when shipped from the factory. If the DIN-Rail is not screwed on the industrial switch, please see the following pictures to screw the DIN-Rail on the switch. Follow the steps below to hang the industrial switch. Back Side...
  • Page 21 First, insert the top of DIN-Rail into the track. Then, lightly push the DIN-Rail into the track. Check if the DIN-Rail is correctly mounted on the track or not. To remove the industrial switch from the track, reverse above steps.

  • Page 22: Wall Mount Plate Mounting

    3.3 Wall Mount Plate Mounting Follow the steps below to mount the industrial switch with wall mount plate. 1. Remove the DIN-Rail from the industrial switch; loosen the screws to remove the DIN-Rail. 2. Place the wall mount plate on the rear panel of the industrial switch. 3.

  • Page 23: Wiring The Power Inputs

    3.4 Wiring the Power Inputs Please follow the steps below to insert the power wires. 1. Insert DC power wires into the contacts 1 and 2 for power 1, or 5 and 6 for power 2. Power inputs can support either polarity. 2.

  • Page 24: Wiring The Fault Alarm Contact

    3.5 Wiring the Fault Alarm Contact The fault alarm contacts are in the middle of the terminal block connector as the picture shows below. Insert the wires, the switch will detect the fault status of the power failure, or port link failure and then forms an open circuit. The following illustration shows an application example for wiring the fault alarm contacts.

  • Page 25: Wiring The Digital Inputs/ Outputs

    3.6 Wiring the Digital inputs/ Outputs There is another terminal block comprising two sets of digital input/output contacts on the top side of this switch. Please refer to page 57 for how to configure Digital Input/Output. The following illustration shows the pin assignment of the DIDO connector.

  • Page 26: Cabling

    3.7 Cabling 10/100Tx RJ-45 port: Use four twisted-pair, Category 5e or above cabling for RJ-45 port connection. The cable between the switch and the link partner (switch, hub, workstation, etc.) must be less than 100 meters (328 ft.) long. Gigabit Copper/SFP (mini-GBIC) combo port: The Industrial switch has auto-detection Gigabit ports—Gigabit Copper/SFP combo ports.
  • Page 27 To connect the transceiver and LC cable, please follow the steps shown as below: First, insert the transceiver into the SFP slot. Notice that the triangle mark is on the bottom of the module. Transceiver to the SFP module Make sure the module is aligned correctly and then slide the module into the SFP slot until a click is heard.
  • Page 28 LC connector to the transceiver...
  • Page 29 To remove the LC connector from the transceiver, please follow the steps shown below: First, press the upper side of the LC connector from the transceiver and pull it out to release. Remove LC connector Second, push down the metal loop and pull the transceiver out by the plastic part. Pull out from the SFP module...

  • Page 30: Chapter 4 Network Application

    Chapter 4 Network Application This chapter provides some sample applications to help the user understand the industrial switch function application. A sample application of the industrial switch is shown below:...

  • Page 31: X-Ring Application

    4.1 X-Ring Application The industrial switch supports the X-Ring protocol that can help the network system to recover from a network connection failure within 20ms or less, and make the network system more reliable. The X-Ring algorithm is similar to spanning tree protocol (STP) algorithm but its recovery time is faster than STP.

  • Page 32: Coupling Ring Application

    4.2 Coupling Ring Application In the network, it may have more than one X-Ring group. By using the coupling ring function, it can connect each X-Ring for redundant backup. It can ensure the transmissions between two ring groups do not fail. The following figure is a sample of coupling ring application.

  • Page 33: Dual Homing Application

    4.3 Dual Homing Application Dual Homing function is to prevent a connection loss between X-Ring groups and upper level/core switches. Assign two ports to be the Dual Homing port that is the backup port in the X-Ring group. The Dual Homing function only works when the X-Ring function is active.

  • Page 34: Chapter 5 Console Management

    Chapter 5 Console Management 5.1 Connecting to the Console Port The supplied cable which one end is RS-232 connector and the other end is RJ-45 connector. Attach the end of RS-232 connector to PC or terminal and the other end of RJ-45 connector to the console port of the switch.

  • Page 35: Login In The Console Interface

    5.3 Login in the Console Interface When the connection between Switch and PC is ready, turn on the PC and run a terminal emulation program or Hyper Terminal and configure its communication parameters to match the following default characteristics of the console port: Baud Rate: 9600 bps Data Bits: 8 Parity: none...
  • Page 36 Console login interface...

  • Page 37: Cli Management

    5.4 CLI Management The system supports the console management—CLI command. After you log in on to the system, you will see a command prompt. To enter CLI management interface, type in “enable” command. CLI command interface The following table lists the CLI commands and description. 5.5 Commands Level Access Exit...
  • Page 38 • Save configuration Enter the To exit to Use this mode to configure privileged configure those Global command switch EXEC parameters that are Configuration while in (config)# mode, enter going to be applied to privileged exit or end. your switch. EXEC mode.

  • Page 39: Chapter 6 Web-Based Management

    Chapter 6 Web-Based Management This section introduces the configuration and functions of the Web-Based management. 6.1 About Web-based Management There is an embedded HTML web site residing in flash memory on CPU board of the switch, which offers advanced management features and allows users to manage the switch from anywhere on the network through a standard browser such as Microsoft Internet Explorer.

  • Page 40: System Login

    6.3 System Login Launch the Internet Explorer on the PC Key in “http:// “+” the IP address of the switch”, as shown below, and then Press “Enter”. The login screen will appear right after Key in the user name and password. The default user name and password are the same as ‘admin’.

  • Page 41: System Information

    6.4 System Information User can assign the system name, description, location and contact personnel to identify the switch. The version table below is a read-only field to show the basic information of the switch. System Name: Assign the system name of the switch (The maximum length is 64 bytes) System Description: Describes the switch.

  • Page 42: Ip Configuration

    6.5 IP Configuration The switch is a network device which needs to be assigned an IP address for being identified on the network. Users have to decide a means of assigning IP address to the switch. DHCP Client: Enable or disable the DHCP client function. When DHCP client function is enabled, the switch will be assigned an IP address from the network DHCP server.
  • Page 43 IP configuration interface...

  • Page 44: Dhcp Server

    6.6 DHCP Server DHCP is the abbreviation of Dynamic Host Configuration Protocol that is a protocol for assigning dynamic IP addresses to devices on a network. With dynamic addressing, a device can have a different IP address every time it connects to the network. In some systems, the device's IP address can even change while it is still connected.

  • Page 45: System Configuration

    6.6.1 System configuration DHCP Server: Enable or Disable the DHCP Server function. Enable—the switch will be the DHCP server on your local network. Low IP Address: Type in an IP address. Low IP address is the beginning of the dynamic IP range. For example, dynamic IP is in the range between 192.168.10.100 ~ 192.168.10.200.

  • Page 46: Client Entries

    6.6.2 Client Entries When the DHCP server function is enabled, the system will collect the DHCP client information including the assigned IP address, the MAC address of the client device, the IP assigning type, status and lease time. DHCP Client Entries interface...

  • Page 47: Port And Ip Bindings

    6.6.3 Port and IP Bindings Assign the dynamic IP address bound with the port to the connected client. The user is allowed to fill each port column with one particular IP address. When the device is connecting to the port and asks for IP assigning, the system will assign the IP address bound with the port.

  • Page 48: Tftp

    6.7 TFTP It provides the functions allowing the user to update the switch firmware via the Trivial File Transfer Protocol (TFTP) server. Before updating, make sure the TFTP server is ready and the firmware image is located on the TFTP server. 6.7.1 Update Firmware TFTP Server IP Address: Type in your TFTP server IP.

  • Page 49: Restore Configuration

    6.7.2 Restore Configuration You can restore a previous backup configuration from the TFTP server to recover the settings. Before doing that, you must locate the image file on the TFTP server first and the switch will download the flash image. TFTP Server IP Address: Type in the TFTP server IP.

  • Page 50: Backup Configuration

    6.7.3 Backup Configuration You can back up the current configuration from flash ROM to the TFTP server for the purpose of recovering the configuration later. It helps you to avoid wasting time on configuring the settings by backing up the configuration. TFTP Server IP Address: Type in the TFTP server IP.

  • Page 51: System Event Log

    6.8 System Event Log This page allows the user to decide whether to send the system event log, and select the mode which the system event log will be sent to client only, server only, or both client and server. What kind of event log will be issued to the client/server depends on the selection on the Event Configuration tab.
  • Page 52 Syslog Configuration interface...

  • Page 53: System Event Log-Smtp Configuration

    6.8.2 System Event Log—SMTP Configuration Simple Mail Transfer Protocol (SMTP) is the standard for email transmissions across the network. You can configure the SMTP server IP, mail subject, sender, mail account, password, and the recipient email addresses which the e-mail alert will send to.
  • Page 54 SMTP Configuration interface...

  • Page 55: System Event Log-Event Configuration

    6.8.3 System Event Log—Event Configuration Having ticked the Syslog/SMTP checkboxes, the event log/email alert will be sent to the system log server and the SMTP server respectively. Also, Port event log/alert (link up, link down, and both) can be sent to the system log server/SMTP server respectively by setting the trigger condition.
  • Page 56 Event Configuration interface...

  • Page 57: Fault Relay Alarm

    6.9 Fault Relay Alarm The Fault Relay Alarm function provides Power Failure and Port Link Down/Broken detection. With both power input 1 and power input 2 installed and the check boxes of power 1/power 2 ticked, the FAULT LED indicator will then be possible to light up when any one of the power failures occurs.

  • Page 58: Sntp Configuration

    6.10 SNTP Configuration SNTP (Simple Network Time Protocol) is a simplified version of NTP which is an Internet protocol used to synchronize the clocks of computers to some time reference. Because time usually just advances, the time on different node stations will be different. With the communicating programs running on those devices, it would cause time to jump forward and back, a non-desirable effect.
  • Page 59 EST - Eastern Standard - 5 hours 7 am CDT - Central Daylight CST - Central Standard - 6 hours 6 am MDT - Mountain Daylight MST - Mountain Standard - 7 hours 5 am PDT - Pacific Daylight PST - Pacific Standard - 8 hours 4 am ADT - Alaskan Daylight...
  • Page 60 CCT - China Coast, + 8 hours 8 pm USSR Zone 7 JST - Japan Standard, + 9 hours 9 pm USSR Zone 8 EAST - East Australian Standard GST + 10 hours 10 pm Guam Standard, USSR Zone 9 IDLE - International Date Line + 12 hours...
  • Page 61 SNTP Configuration interface...

  • Page 62: Ip Security

    6.11 IP Security IP security function allows the user to assign 10 specific IP addresses that have permission to manage the switch through the http and telnet services for securing switch management. The purpose of giving the limited IP addresses permission is to allow only the authorized personnel/device to perform the management tasks on the switch.
  • Page 63 IP Security interface...

  • Page 64: Digital Input/Output

    6.12 Digital Input/Output The CNGE3FE7MS2 Managed Industrial Switch contains two digital inputs and two digital outputs. The digital inputs may be used to receive the voltage-changing signal of remote equipment to sense the state of the remote equipment like heater, pump, and other electrical equipment.
  • Page 65 Digital Input interface Digital Output When First/Second Digital Output function is enabled, First Digital Output/Second Digital Output will then be available respectively. Condition: The system will send an electrical Low-to-High or High-to-Low signal to First Digital Output (DO0)/Second Digital Output (DO1) when the condition of ticked checkbox is met.
  • Page 66 Note: Besides ticking the checkboxes in the Condition column field, the power/port failure checkboxes of Fault Relay Alarm have to be ticked as the pre-condition. Please refer to Fault Relay Alarm section. Also, please note that the digital output can’t connect to the external device using power higher than 40V/200mA.

  • Page 67: User Authentication

    6.13 User Authentication Change web management login user name and password. User name: Type in the new user name (The default is ‘root’) Password: Type in the new password (The default is ‘root’) Confirm password: Re-type the new password And then, click User Authentication interface...

  • Page 68: Port Statistics

    6.14 Port Statistics The following chart provides the current statistic information which displays the real-time packet transfer status for each port. The user might use the information to plan and implement the network, or check and find the problem when a collision or heavy traffic occurs.
  • Page 69 Port Statistics interface...

  • Page 70: Port Control

    6.15 Port Control In Port control you can configure the settings of each port to control the connection parameters, and the status of each port is listed beneath. Port: Use the scroll bar and click on the port number to choose the port to be configured.
  • Page 71 Port Control interface...

  • Page 72: Port Trunk

    6.16 Port Trunk Port trunking is the combination of several ports or network cables to expand the connection speed beyond the limits of any one single port or network cable. Link Aggregation Control Protocol (LACP), which is a protocol running on layer 2, provides a standardized means in accordance with IEEE 802.3ad to bundle several physical ports together to form a single logical channel.
  • Page 73 ports to be aggregated in a trunk group. Click and the ports focused in the right side will be shifted to the left side. To remove unwanted ports, select the ports and click When LACP enabled, you can configure LACP Active/Passive status for each port on the State Activity tab.

  • Page 74: Aggregator Information

    6.16.2 Aggregator Information LACP disabled Having set up the aggregator setting with LACP disabled, you will see the local static trunk group information on the tab of Aggregator Information. Assigning 2 ports to a trunk group with LACP disabled Static Trunking Group information...
  • Page 75 Group Key: This is a read-only column field that displays the trunk group ID. Port Member: This is a read-only column field that displays the members of this static trunk group.
  • Page 76 LACP enabled Having set up the aggregator setting with LACP enabled, you will see the trunking group information between two switches on the tab of Aggregator Information. Switch 1 configuration Set System Priority of the trunk group. The default is 1. Select a trunk group ID by pull down the drop-down menu bar.
  • Page 77 Aggregation Information of Switch 1 Click on the tab of Aggregator Information to check the trunked group information as the illustration shown above after the two switches configured.
  • Page 78 Switch 2 configuration Switch 2 configuration interface Set System Priority of the trunk group. The default is 1. Select a trunk group ID by pull down the drop-down menu bar. Enable LACP. Include the member ports by clicking the Add button after selecting the port number and the column field of Work Ports changes automatically.
  • Page 79 Aggregation Information of Switch 2 Click on the tab of Aggregator Information to check the trunked group information as the illustration shown above after the two switches configured.

  • Page 80: State Activity

    6.16.3 State Activity Having set up the LACP aggregator on the tab of Aggregator Setting, you can configure the state activity for the members of the LACP trunk group. You can tick or cancel the checkbox beside the state label. When you remove the tick mark of the port and click , the port state activity will change to Passive.
  • Page 81 State Activity of Switch 2...

  • Page 82: Port Mirroring

    6.17 Port Mirroring Port mirroring is a method for monitoring traffic in switched networks. Traffic through ports can be monitored by one specific port, which means traffic going in or out of monitored (source) ports will be duplicated into mirror (destination) port. Destination Port: Only one port can be selected to be destination (mirror) port for monitoring both RX and TX traffic which come from source port(s).

  • Page 83: Rate Limiting

    6.18 Rate Limiting You can set up every port’s bandwidth rate and frame limitation type. Ingress Limit Frame type: select the frame type that you want to filter. There are four frame types for selecting: Broadcast/Multicast/Flooded Unicast Broadcast/Multicast Broadcast only Broadcast/Multicast/Flooded Unicast, Broadcast/Multicast and Bbroadcast only types are only for ingress frames.
  • Page 84 specified rate Ingress: Enter the port effective ingress rate (The default value is “0”). Egress: Enter the port effective egress rate (The default value is “0”). And then, click to apply the settings...

  • Page 85: Vlan Configuration

    6.19 VLAN configuration A Virtual LAN (VLAN) is a logical network grouping that limits the broadcast domain, which would allow you to isolate network traffic, so only the members of the same VLAN will receive traffic from the ones of the same VLAN. Basically, creating a VLAN on a switch is logically equivalent of reconnecting a group of network devices to another Layer 2 switch.

  • Page 86: Port-Based Vlan

    6.19.1 Port-based VLAN A port-based VLAN basically consists of its members—ports, which means the VLAN is created by grouping the selected ports. This method provides the convenience for users to configure a simple VLAN easily without complicated steps. Packets can go among only members of the same VLAN group.
  • Page 87 Pull down the selection item and focus on Port Based then press to set the VLAN Operation Mode in Port Based mode. Click to add a new VLAN group (The maximum VLAN groups are up to 64). VLAN—Port Based Add interface Enter the group name and VLAN ID.
  • Page 88 And then, click to have the configuration take effect. You will see the VLAN list displayed. VLAN—Port Based Edit/Delete interface to delete the VLAN. to modify group name, VLAN ID, or add/remove the members of the existing VLAN group. [NOTE] Remember to execute the “Save Configuration” action, otherwise the new configuration will be lost when the switch powers off.

  • Page 89: Q Vlan

    6.19.2 802.1Q VLAN Virtual Local Area Network (VLAN) can be implemented on the switch to logically create different broadcast domains. When the 802.1Q VLAN function is enabled, all ports on the switch belong to default VLAN of VID 1, which means they logically are regarded as members of the same broadcast domain.
  • Page 90 802.1Q Configuration Pull down the selection item and focus on 802.1Q then press to set the VLAN Operation Mode in 802.1Q mode. Enable GVRP Protocol: GVRP (GARP VLAN Registration Protocol) is a protocol that facilitates control of virtual local area networks (VLANs) within a larger network. GVRP conforms to the IEEE 802.1Q specification, which defines a method of tagging frames with VLAN configuration data.
  • Page 91 Trunk Link: A segment which provides the link path for one or more VLAN- aware devices (switches). A Trunk Port, connected to the trunk link, has an understanding of tagged frame, which is used for the communication among VLANs across switches. Which frames of the specified VIDs will be forwarded depends on the values filled in the Tagged VID column field.
  • Page 92 802.1Q VLAN interface Group Configuration Edit the existing VLAN Group. Select the VLAN group in the table list. Click...
  • Page 93 Group Configuration interface You can modify the VLAN group name and VLAN ID.
  • Page 94 Group Configuration interface...

  • Page 95: Rapid Spanning Tree

    6.20 Rapid Spanning Tree The Rapid Spanning Tree Protocol (RSTP) is an evolution of the Spanning Tree Protocol and provides for faster spanning tree convergence after a topology change. The system also supports STP and the system will auto-detect the connected device that is running STP or RSTP protocol.
  • Page 96 RSTP System Configuration interface...

  • Page 97: Port Configuration

    6.20.2 Port Configuration This web page provides the port configuration interface for RSTP. You can assign higher or lower priority to each port. Rapid spanning tree will have the port with the higher priority in forwarding state and block other ports to make certain that there is no loop in the LAN.
  • Page 98 RSTP Port Configuration interface...

  • Page 99: Snmp Configuration

    6.21 SNMP Configuration Simple Network Management Protocol (SNMP) is the protocol developed to manage nodes (servers, workstations, routers, switches and hubs etc.) on an IP network. SNMP enables network administrators to manage network performance, find and solve network problems, and plan for network growth. Network management systems learn of problems by receiving traps or change notices from network devices implementing SNMP.
  • Page 100 SNMP System Configuration interface...

  • Page 101: Trap Configuration

    6.21.2 Trap Configuration A trap manager is a management station that receives the trap messages generated by the switch. If no trap manager is defined, no traps will be issued. To define a management station as a trap manager, assign an IP address, enter the SNMP community strings, and select the SNMP trap version.

  • Page 102: Snmpv3 Configuration

    6.21.3 SNMPV3 Configuration Configure the SNMP V3 function. Context Table Configure SNMP v3 context table. Assign the context name of context table. Click to add context name. Click to remove unwanted context name. User Table Configure SNMP v3 user table.. User ID: set up the user name.
  • Page 103 SNMP V3 configuration interface Access Table Configure SNMP v3 access table. Context Prefix: set up the context name. Group Name: set up the group. Security Level: select the access level. Context Match Rule: select the context match rule. Read View Name: set up the read view. Write View Name: set up the write view.
  • Page 104 MIBview Table Configure MIB view table. ViewName: set up the name. Sub-Oid Tree: fill the Sub OID. Type: select the type – exclude or included. Click to add context name. Click to remove unwanted context name.

  • Page 105: Qos Configuration

    6.22 QoS Configuration Quality of Service (QoS) is the ability to provide different priority to different applications, users or data flows, or to guarantee a certain level of performance to a data flow. QoS guarantees are important if the network capacity is insufficient, especially for real-time streaming multimedia applications such as voice over IP or Video Teleconferencing, since these often require fixed bit rate and are delay sensitive, and in networks where the capacity is a limited resource, for example in cellular data communication.

  • Page 106: Port-Based Priority

    QoS Configuration interface 6.22.2 Port-based Priority Configure the priority level for each port. With the drop-down selection item of Priority Type above being selected as Port-based, this control item will then be available to set the queuing policy for each port. Port x: Each port has 4 priority levels—High, Middle, Low, and Lowest—to be chosen.

  • Page 107: Cos Configuration

    6.22.3 COS Configuration Set up the COS priority level. With the drop-down selection item of Priority Type above being selected as COS only/COS first, this control item will then be available to set the queuing policy for each port. COS priority: Set up the COS priority level 0~7—High, Middle, Low, Lowest. Click 6.22.4 TOS Configuration Set up the TOS priority.

  • Page 108: Igmp Configuration

    6.23 IGMP Configuration The Internet Group Management Protocol (IGMP) is an internal protocol of the Internet Protocol (IP) suite. IP manages multicast traffic by using switches, routers, and hosts that support IGMP. Enabling IGMP allows the ports to detect IGMP queries, report packets, and manage IP multicast traffic through the switch.
  • Page 109 IGMP Configuration interface...

  • Page 110: X-Ring

    6.24 X-Ring X-Ring provides a faster redundant recovery than Spanning Tree topology. The action is similar to STP or RSTP, but the algorithms between them are not the same. In the X- Ring topology, every switch should be enabled with X-Ring function and two ports should be assigned as the member ports in the ring.
  • Page 111 Enable Couple Ring: To enable the couple ring function, tick the checkbox beside the Enable Couple Ring string label. Couple Port: Assign the member port which is connected to the other ring group. Control Port: When the Enable Couple Ring checkbox is ticked, you have to assign the control port to form a couple-ring group between the two X-rings.

  • Page 112: Security-802.1X/Radius Configuration

    6.25 Security—802.1X/Radius Configuration 802.1x is an IEEE authentication specification which prevents the client from accessing a wireless access point or wired switch until it provides authority, like the user name and password that are verified by an authentication server (such as RADIUS server).
  • Page 113 802.1x System Configuration interface...

  • Page 114: Port Configuration

    6.25.2 Port Configuration You can configure the 802.1x authentication state for each port. The state provides Disable, Accept, Reject, and Authorize. Reject: The specified port is required to be held in the unauthorized state. Accept: The specified port is required to be held in the authorized state. Authorize: The specified port is set to the Authorized or Unauthorized state in accordance with the outcome of an authentication exchange between the Supplicant and the authentication server.

  • Page 115: Misc Configuration

    6.25.3 Misc. Configuration Quiet Period: Set the period which the port doesn’t try to acquire a supplicant. TX Period: Set the period the port waits for retransmit next EAPOL PDU during an authentication session. Supplicant Timeout: Set the period of time the switch waits for a supplicant response to an EAP request.

  • Page 116: Mac Address Table

    6.26 MAC Address Table Use the MAC address table to ensure the port security. 6.26.1 Static MAC Address You can add a static MAC address that remains in the switch's address table regardless of whether the device is physically connected to the switch. This saves the switch from having to re-learn a device's MAC address when the disconnected or powered-off device is active on the network again.
  • Page 117 Static MAC Addresses interface...

  • Page 118: Mac Filtering

    6.26.2 MAC Filtering By filtering MAC address, the switch can easily filter the pre-configured MAC address and reduce the un-safety. You can add and delete filtering MAC address. MAC Filtering interface MAC Address: Enter the MAC address that you want to filter. Click If you want to delete the MAC address from the filtering table, select the MAC address and click...

  • Page 119: All Mac Addresses

    6.26.3 All MAC Addresses You can view all of the MAC addresses learned by the selected port. Select the port number. The selected port of static & dynamic MAC address information will be displayed in here. Click to clear the dynamic MAC addresses information of the current port shown on the screen.

  • Page 120: Factory Default

    6.27 Factory Default Reset switch to default configuration. Click to reset all configurations to the default value. Factory Default interface...

  • Page 121: Save Configuration

    6.27 Save Configuration Save all configurations that you have made in the system. To ensure that all configuration will be saved. Click to save the all configuration to the flash memory. Save Configuration interface...

  • Page 122: System Reboot

    6.29 System Reboot Reboot the switch in software reset. Click to reboot the system. System Reboot interface...

  • Page 123: Troubleshooting

    Troubleshooting Verify that the switch is using the right power cord/adapter (DC 12-48V), please don’t use a power adapter with DC output higher than 48V, or it may damage this device. Select the proper UTP/STP cable to construct the user network. Use unshielded twisted-pair (UTP) or shield twisted-pair (STP) cable for RJ-45 connections that depend on the connector type the switch equipped: 100 Category 3, 4 or 5 cable...

  • Page 124: Appendix A-Rj-45 Pin Assignment

    Appendix A—RJ-45 Pin Assignment RJ-45 Pin Assignments The UTP/STP ports will automatically sense for Fast Ethernet (10Base-T/100Base-T connections), or Gigabit Ethernet (10Base-T/100Base-T/1000Base-T connections). Auto MDI/MDIX means that the switch can connect to another switch or workstation without changing straight through or crossover cabling. See the figures below for straight through and crossover cable schematic.
  • Page 125 Transmit Data plus (TD+) Receive Data plus (RD+) Transmit Data minus (TD-) Receive Data minus (RD-) 10/100Base-T Cable Schematic The following two figures show the 10/100Base-T cable schematic. Straight-through cable schematic Cross over cable schematic 10/100/1000Base-T Pin outs The following figure shows the 10/100/1000 Ethernet RJ-45 pin outs.
  • Page 126 10/100/1000Base-TX Cable Schematic Straight through cables schematic...
  • Page 127 Cross over cables schematic...

  • Page 128: Appendix B-Command Sets

    Appendix B—Command Sets Commands Set List User EXEC Privileged EXEC Global configuration VLAN database Interface configuration System Commands Set Comnet Commands Level Description Example show config Show switch switch>show config configuration show terminal Show console switch#show terminal information write memory...
  • Page 129 mask] [Gateway] 192.168.1.254 ip dhcp Enable DHCP client switch(config)#ip dhcp function of switch show ip Show IP information of switch#show ip switch no ip dhcp Disable DHCP client switch(config)#no ip dhcp function of switch reload Halt and perform a cold switch(config)#reload restart default...
  • Page 130 dhcpserver ipbinding Set static IP for DHCP switch(config)#interface [IP address] clients by port fastEthernet 2 switch(config)#dhcpserver ipbinding 192.168.1.1 show dhcpserver Show configuration of switch#show dhcpserver configuration DHCP server configuration show dhcpserver clients Show client entries of switch#show dhcpserver clients DHCP server show dhcpserver ip- Show IP-Binding switch#show dhcpserver ip-...

  • Page 131: Port Commands Set

    Port Commands Set Comnet Commands Level Description Example interface fastEthernet Choose the port for switch(config)#interface [Portid] modification. fastEthernet 2 duplex Use the duplex switch(config)#interface [full | half] configuration fastEthernet 2 command to specify switch(config-if)#duplex full the duplex mode of operation for Fast Ethernet.
  • Page 132 bandwidth type Set interface ingress switch(config)#interface broadcast-multicast- limit frame type to fastEthernet 2 flooded-unicast “accept broadcast, switch(config-if)#bandwidth type multicast, and flooded broadcast-multicast-flooded- unicast frame” unicast bandwidth type Set interface ingress switch(config)#interface broadcast-multicast limit frame type to fastEthernet 2 “accept broadcast and switch(config-if)#bandwidth type multicast frame”...

  • Page 133: Trunk Commands Set

    2 switch(config-if)#show interface accounting no accounting Clear interface switch(config)#interface accounting information fastEthernet 2 switch(config-if)#no accounting Trunk Commands Set Comnet Commands Level Description Example aggregator priority Set port group system switch(config)#aggregator priority...
  • Page 134 [1~65535] priority aggregator activityport Set activity port switch(config)#aggregator [Group ID] activityport 2 [Port Numbers] aggregator group Assign a trunk group switch(config)#aggregator group [GroupID] [Port-list] with LACP active. 1 1-4 lacp workp 2 lacp [GroupID] :1~3 workp [Port-list]:Member port switch(config)#aggregator group [Workport] list, This parameter 2 1,4,3 lacp workp 3...

  • Page 135: Vlan Commands Set

    [GroupID] function of trunk group no aggregator group Remove a trunk group switch(config)#no aggreator [GroupID] group 2 VLAN Commands Set Comnet Commands Level Description Example vlan database Enter VLAN configure switch#vlan database mode Vlanmode To set switch VLAN switch(vlan)#vlanmode portbase [portbase| 802.1q |...
  • Page 136 IEEE 802.1Q VLAN vlan 8021q name Change the name of switch(vlan)#vlan 8021q name [GroupName] VLAN group, if the test vid 22 [VID] group didn’t exist, this command can’t be applied. vlan 8021q port Assign a access link switch(vlan)#vlan 8021q port 3 [PortNumber] for VLAN by port, if the access-link untag 33...

  • Page 137: Spanning Tree Commands Set

    23 information show vlan no vlan group Delete port base switch(vlan)#no vlan group 2 [GroupID] group ID Spanning Tree Commands Set Comnet Commands Level Description Example spanning-tree enable Enable spanning tree switch(config)#spanning-tree enable spanning-tree priority Configure spanning switch(config)#spanning-tree...
  • Page 138 Protocol (STP) topology. spanning-tree hello- Use the spanning-tree switch(config)#spanning-tree time [seconds] hello-time global hello-time 3 configuration command to specify the interval between hello bridge protocol data units (BPDUs). spanning-tree forward- Use the spanning-tree switch(config)#spanning-tree time [seconds] forward-time global forward-time 20 configuration command to set the forwarding-time for the...
  • Page 139 spanning tree considers the path cost when selecting an interface to place into the forwarding state. stp-path-priority Use the spanning-tree switch(config)#interface [Port Priority] port-priority interface fastEthernet 2 configuration switch(config-if)#stp-path-priority command to configure a port priority that is used when two switches tie for position as the root switch.

  • Page 140: Qos Commands Set

    QOS Commands Set Comnet Commands Level Description Example qos policy Select QOS policy switch(config)#qos policy [weighted-fair|strict] scheduling weighted-fair qos prioritytype Setting of QOS priority switch(config)#qos prioritytype [port-based|cos- type only|tos-only|cos- first|tos-first] qos priority portbased Configure Port-based switch(config)#qos priority [Port] Priority portbased 1 low...

  • Page 141: Mac / Filter Table Commands Set

    Block unregistered switch(config)#igmp unregister packet block multicast packets block Mac / Filter Table Commands Set Comnet Commands Level Description Example mac-address-table static Configure MAC switch(config)#interface hwaddr address table of fastEthernet 2 [MAC] interface (static).

  • Page 142: Snmp Commands Set

    000012348678 [MAC] (filter) no mac-address-table Remove dynamic switch(config)#no mac-address- entry of MAC address table table SNMP Commands Set Comnet Commands Level Description Example snmp system-name Set SNMP agent switch(config)#snmp system- [System Name] system name name l2switch snmp system-location...
  • Page 143 snmpv3 context-name Configure the context switch(config)#snmpv3 context- [Context Name ] name name Test snmpv3 user Configure the switch(config)#snmpv3 user [User Name] userprofile for test01 group G1 password group SNMPV3 agent. AuthPW PrivPW [Group Name] Privacy password password could be empty. [Authentication Password] [Privacy Password]...
  • Page 144 no snmp community- Remove the specified switch(config)#no snmp strings [Community] community. community-strings public no snmp-server host Remove the SNMP switch(config)#no snmp-server [Host-address] server host. host 192.168.1.50 no snmpv3 user Remove specified switch(config)#no snmpv3 user [User Name] user of SNMPv3 Test agent.

  • Page 145: Port Mirroring Commands Set

    Port Mirroring Commands Set Comnet Commands Level Description Example monitor Configure source port switch(config)#interface [RX|TX|Both] of monitor function fastEthernet 2 switch(config-if)#monitor RX monitor rx [Port ID] Set RX destination switch(config)#monitor rx 2 port of monitor function monitor tx [Port ID]...
  • Page 146 the radius server IP. 8021x system serverport Use the 802.1x switch(config)# 8021x system [port ID] system server port serverport 1812 global configuration command to change the radius server port 8021x system Use the 802.1x switch(config)# 8021x system accountport system account port accountport 1813 [port ID] global configuration...
  • Page 147 TX period. 8021x misc supptimeout Use the 802.1x misc switch(config)# 8021x misc [sec.] supp timeout global supptimeout 20 configuration command to set the supplicant timeout. 8021x misc Use the 802.1x misc switch(config)#8021x misc servertimeout [sec.] server timeout global servertimeout 20 configuration command to set the server timeout.

  • Page 148: Tftp Commands Set

    8021x Disable 802.1x switch(config)#no 8021x function TFTP Commands Set Comnet Commands Level Description Defaults Example backup Save configuration to switch(config)#backup flash:backup_cfg TFTP and need to flash:backup_cfg specify the IP of TFTP server and the file name of image. restore...
  • Page 149 information no systemlog Disable systemlog switch(config)#no systemlog functon smtp enable Enable SMTP function switch(config)#smtp enable smtp serverip Configure SMTP switch(config)#smtp serverip [IP address] server IP 192.168.1.5 smtp authentication Enable SMTP switch(config)#smtp authentication authentication smtp account Configure switch(config)#smtp account [account] authentication account John smtp password Configure...

  • Page 150: Sntp Commands Set

    3 switch(config-if)#no event smtp show systemlog Show system log switch#show systemlog client & server information SNTP Commands Set Comnet Commands Level Description Example sntp enable Enable SNTP function switch(config)#sntp enable sntp daylight Enable daylight saving switch(config)#sntp daylight time, if SNTP function is inactive, this command can’t be...
  • Page 151 applied. sntp daylight-period Set period of daylight switch(config)# sntp daylight- [Start time] [End time] saving time, if SNTP period 20060101-01:01 function is inactive, 20060202-01:01 this command can’t be applied. Parameter format: [yyyymmdd-hh:mm] sntp daylight-offset Set offset of daylight switch(config)#sntp daylight- [Minute] saving time, if SNTP offset 3...

  • Page 152: X-Ring Commands Set

    X-ring Commands Set Comnet Commands Level Description Example ring enable Enable X-ring switch(config)#ring enable ring master Enable ring master switch(config)#ring master ring couplering Enable couple ring switch(config)#ring couplering ring dualhoming Enable dual homing switch(config)#ring dualhoming ring ringport Configure 1st/2nd...
  • Page 153 ComNet Customer Service Customer Care is ComNet Technology’s global service center, where our professional staff is ready to answer your questions at any time. Email address of ComNet Global Service Center: customercare@ComNet.net World Headquarters ComNet Europe Ltd 3 Corporate Drive...

Table of Contents