Korenix JetNet 5428G Series User Manual
  1. Manuals
  2. Brands
  3. Korenix Manuals
  4. Switch
  5. JetNet 5428G Series
  6. User manual

Korenix JetNet 5428G Series User Manual

Rackmount managed ethernet switch
Hide thumbs Also See for JetNet 5428G Series:
Table of Contents

Advertisement

Quick Links

See also: User Manual
Korenix JetNet 5428G Series
Rackmount Managed Ethernet Switch

User Manual

Version 1.0, Nov., 2009
www.korenix.com
1

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the JetNet 5428G Series and is the answer not in the manual?

Questions and answers

Related Manuals for Korenix JetNet 5428G Series

Summary of Contents for Korenix JetNet 5428G Series

  • Page 1: User Manual

    Korenix JetNet 5428G Series Rackmount Managed Ethernet Switch User Manual Version 1.0, Nov., 2009 www.korenix.com...
  • Page 2 Korenix JetNet 5428G Series Rackmount Managed Ethernet Switch User’s Manual Copyright Notice Copyright © 2006-2009 Korenix Technology Co., Ltd. All rights reserved. Reproduction in any form or by any means without permission is prohibited.
  • Page 3 Federal Communications Commission (FCC) Statement This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment.

  • Page 4: Table Of Contents

    VLAN....................60 Traffic Prioritization...............68 Multicast Filtering .................73 SNMP...................78 Security ..................82 4.10 Warning..................94 4.11 Monitor and Diag................99 4.12 Device Front Panel..............107 4.13 Save to Flash ................108 4.14 Logout ..................109 Appendix....................110 Pin Assignment of the RS-232 Console Cable......110 Korenix SFP family..............111...
  • Page 5 Korenix Private MIB ..............112 Revision History ................. 113 About Korenix ................114...

  • Page 6: Overview

    When the lower industrial switches are aggregated to the JetNet 5428G, the 24+4G design allows connecting up to 12 100M rings plus 2 Gigabit rings. Each of the ring has its own ring redundancy protection. This is a unique and Korenix patent protected ring technology.

  • Page 7: Package List

    Note: The detail spec is listed in latest datasheet. Please download the latest datasheet in Korenix Web site. Package List Korenix JetNet 5428G Series products are shipped with following items: JetNet 5428G 24+4G Rackmount Managed Ethernet Ring Switch JetNet 5428G...

  • Page 8: Hardware Introduction

    2 Hardware Installation This chapter includes hardware introduction, installation and configuration information. Following topics are covered in this chapter: 2.1 Hardware Introduction Dimension Panel Layout Bottom View 2.2 Wiring Power Inputs 2.3 Wiring Earth Ground 2.4 Wiring Ethernet Ports 2.5 Wiring Fiber Ports 2.6 Wiring Gigabit Combo Ports 2.7 Wiring RS-232 console cable 2.8 Rack Mounting Installation...

  • Page 9: Wiring Power Inputs

    The console port chooses RS-232 DB-9 types. The pin arrangement is “Pin2: TxD, Pin3: RxD, Pin5:GND”. Korenix attached the console cable within the shipped box. In the Rear panel, there are 2 types power input connector applied to JetNet 5428G and JetNet 5428G-DC.

  • Page 10: Wiring Earth Ground

    JetNet 5428G-DC DC Power Input The suggested power input is 24VDC, the available range is from 12-48VDC. Follow below steps to wire JetNet 5428G redundant DC power inputs. Insert positive and negative wires into V+ and V- contacts respectively of the terminal block connector Tighten the wire-clamp screws to prevent DC wires from being loosened.

  • Page 11: Wiring Fiber Ports

    Transceiver. The web UI will show Unknown vendor type when choosing the SFP which is not certificated by Korenix. The certificated SFP transceiver includes 100Base-FX single/multi mode, 100/Gigabit BIDI/WDM, 1000Base-SX/LX single/multi mode ranger from 550m to 80KM. The way to connect the SFP transceiver is to Plug in SFP fiber transceiver fist. Cross-connect the transmit channel at each end to the receive channel at the opposite end as illustrated in the figure below.

  • Page 12: Wiring Gigabit Combo Ports

    Wiring RS-232 Console Cable Korenix JetNet 5428G attaches one RS-232 DB-9 to DB-9 cable in the box. Connect the DB-9 connector to the COM port of your PC, open Terminal tool and set up serial settings to 9600, N,8,1.
  • Page 13 (The picture is JetNet 5628G, the mounting method is the same.) 2.2.2 Mount the device in the 19’ rack by using four rack-mounting screws provided by the rack manufacturer. (The picture is JetNet 5628G, the mounting method is the same.) When installing multiple switches, mount them in the rack one below the other.

  • Page 14: Safety Warming

    Safety Warming 2.2.1 The Equipment intended for installation in a Restricted Access Location. 2.2.2 The warning test is provided in user manual. Below is the information: ”For tilslutning af de ovrige ledere, se medfolgende installationsvejledning”. “Laite on liitettava suojamaadoitus-koskettimilla varustettuun pistorasiaan” „Apparatet ma tilkoples jordet stikkontakt“...

  • Page 15: Preparation For Serial Console

    3.3 Preparation for Telnet console Preparation for Serial Console In JetNet 5428G package, Korenix attached one RS-232 DB-9 to DB-9 console cable. Please attach RS-232 DB-9 connector to your PC COM port, connect the other end to the Console port of the JetNet 5428G. If you lose the cable, please follow the console cable PIN assignment to find one.

  • Page 16: Preparation For Web Interface

    3.2.1 Web Interface Korenix web management page is developed by JAVA. It allows you to use a standard web-browser such as Microsoft Internet Explorer, or Mozila, to configure and interrogate the switch from anywhere on the network. Before you attempt to use the embedded web interface to manage switch operation,...
  • Page 17 3.2.2 Secured Web Interface Korenix web management page also provides secured management HTTPS login. All the configuration commands will be secured and will be hard for the hackers to sniff the login password and configuration commands.

  • Page 18: Preparation For Telnet Console

    3.3.1 Telnet Korenix JetNet 5428G supports Telnet console. You can connect to the switch by Telnet and the command lines are the same as what you see by RS232 console port. Below are the steps to open Telnet connection to the switch.
  • Page 19 The copyright of PuTTY Open SSH Client/PuTTY    Figure 0. . . In the Session configuration, enter the Host Name (IP Address of your JetNet 5428G) and Port number (default = 22). Choose the “SSH” protocol. Then click on “Open” to start the SSH session console.
  • Page 20 3. After few seconds, the SSH connection to JetNet 5428G is opened. You can see the login screen as the below figure. 4. Type the Login Name and its Password. The default Login Name and Password are admin / admin. 5.

  • Page 21: Feature Configuration

    Then you can remotely connect to its embedded HTML web pages or Telnet console. Korenix web management page is developed by JAVA. It allows you to use a standard web-browser such as Microsoft Internet Explorer, or Mozila, to configure and interrogate the switch from anywhere on the network.

  • Page 22: Command Line Interface Introduction

    Command Line Interface Introduction The Command Line Interface (CLI) is the user interface to the switch’s embedded software system. You can view the system information, show the status, configure the switch and receive a response back from the system by keying in a command. There are some different command modes.
  • Page 23 Global Configuration Mode: Press configure terminal in privileged EXEC mode. You can then enter global configuration mode. In global configuration mode, you can configure all the features that the system provides you. Type interface IFNAME/VLAN to enter interface configuration mode, exit to leave. ? to see the command list.
  • Page 24 Available command lists of the global configuration mode. Switch(config)# interface fa1 Switch(config-if)# acceptable Configure 802.1Q acceptable frame types of a port. auto-negotiation Enable auto-negotiation state of a given port description Interface specific description duplex Specify duplex mode of operation for a port End current mode and change to enable mode exit Exit current mode and down to previous mode...
  • Page 25 Summary of the 5 command modes. Command Main Function Enter and Exit Method Prompt Mode Enter: Login successfully User EXEC This is the first level of access. Switch> Exit: exit to logout. User can ping, telnet remote Next mode: Type enable to device, and show some basic information enter privileged EXEC mode.
  • Page 26 Here are some useful commands for you to see these available commands. Save your time in typing and avoid typing error. ? To see all the available commands in this mode. It helps you to see the next command you can/should type as well. Switch(config)# interface (?) IFNAME Interface's name vlan...

  • Page 27: Basic Setting

    Basic Setting The Basic Setting group provides you to configure switch information, IP address, User name/Password of the system. It also allows you to do firmware upgrade, backup and restore configuration, reload factory default, and reboot the system. Following commands are included in this group: 4.2.1 Switch Setting 4.2.2 Admin Password 4.2.3 IP Configuration...
  • Page 28 the name in CLI system. System Location: You can specify the switch’s physical location here. The available characters you can input are 64. System Contact: You can specify contact people here. You can type the name, mail address or other information of the administrator. The available characters you can input are 64.
  • Page 29 4.2.3 IP Configuration This function allows users to configure the switch’s IP address settings. DHCP Client: You can select to Enable or Disable DHCP Client function. When DHCP Client function is enabled, an IP address will be assigned to the switch from the network’s DHCP server.
  • Page 30 Manual Setting: User can select “Manual setting” to change time as user wants. User also can click the button “Get Time from PC” to get PC’s time setting for switch. NTP client: Select the Time Setting Source to NTP client can let device enable the NTP client service.
  • Page 31 Time-zone: Select the time zone where the switch is located. Following table lists the time zones for different locations for your reference. The default time zone is GMT Greenwich Mean Time. Switch(config)# clock timezone 01 (GMT-12:00) Eniwetok, Kwajalein 02 (GMT-11:00) Midway Island, Samoa 03 (GMT-10:00) Hawaii 04 (GMT-09:00) Alaska 05 (GMT-08:00) Pacific Time (US &...
  • Page 32 50 (GMT+06:00) Almaty, Novosibirsk 51 (GMT+06:00) Astana, Dhaka 52 (GMT+06:00) Sri Jayawardenepura 53 (GMT+06:30) Rangoon 54 (GMT+07:00) Bangkok, Hanoi, Jakarta 55 (GMT+07:00) Krasnoyarsk 56 (GMT+08:00) Beijing, Chongqing, Hong Kong, Urumqi 57 (GMT+08:00) Irkutsk, Ulaan Bataar 58 (GMT+08:00) Kuala Lumpur, Singapore 59 (GMT+08:00) Perth 60 (GMT+08:00) Taipei 61 (GMT+09:00) Osaka, Sapporo, Tokyo...
  • Page 33 Once you finish your configuration, click on Apply to apply your configuration. 4.2.6 DHCP Server You can select to Enable or Disable DHCP Server function. JetNet 5428G will assign a new IP address to link partners. DHCP Server configuration After selecting to enable DHCP Server function, type in the Network IP address for the DHCP server IP pool, Subnet Mask, Default Gateway address and Lease Time for client.
  • Page 34 Manual Binding: JetNet 5428G provides a MAC address and IP address binding and removing function. You can type in the specified IP and MAC address, then click Add to add a new MAC&IP address binding rule for a specified link partner, like PLC or any device without DHCP client function.
  • Page 35 DHCP Relay Agent: The DHCP Relay Agent is also known as DHCP Option 82. It can help relay the DHCP Request to remote DHCP server located in different subnet. Note: The DHCP Server can not work with DHCP Relay Agent at the same time. Relay Agent: Choose Enable or Disable the relay agent.
  • Page 36 will be kept and work after power cycle. You can use show startup-config to view it in CLI. The Backup command can only backup such configuration file to your PC or TFTP server. Technical Tip: Default Configuration File: The switch provides the default configuration file in the system.
  • Page 37 4.2.8 Firmware Upgrade In this section, you can update the latest firmware for your switch. Korenix provides the latest firmware in Korenix Web site. The new firmware may include new features, bug fixes or other software changes. We’ll also provide the release notes for the update as well. For technical viewpoint, we suggest you use the latest firmware before installing the switch to the customer site.
  • Page 38 Figure 4.2.6.3 Error Message due to the file error or not a firmware for the switch. Before upgrading firmware, please check the file name and switch model name first and carefully. Korenix switch provide protection when upgrading incorrect firmware file, the system would not crash even download the incorrect firmware. Even we have the protection, we still ask you don’t try/test upgrade incorrect firmware, the unexpected event...
  • Page 39 Figure 4.2.6.5 Firmware Upgrade – TFTP Server mode. Type the IP address of TFTP Server and Firmware File Name. Then click on Upgrade to start the process. After finishing transmitting the firmware, the system will copy the firmware file and replace the firmware in the flash.
  • Page 40 Figure 4.2.7.2 Popup message screen to show you that have done the command. Click on OK to close the screen. Then please go to Reboot page to reboot the switch. Click on OK. The system will then auto reboot the device. Note: If you already configured the IP of your device to other IP address, when you use this command by CLI and Web UI, our software will not reset the IP address to default IP.
  • Page 41 Switch(config)# hostname System Name WORD Network name of this system Switch(config)# hostname JN5428G SWITCH(config)# SWITCH(config)# snmp-server location Taipei System Location SWITCH(config)# snmp-server contact korecare@korenix.com System Contact SWITCH# show snmp-server name Display SWITCH SWITCH# show snmp-server location Taipei SWITCH# show snmp-server contact korecare@korenix.com...
  • Page 42 SWITCH(config-if)# ip dhcp client SWITCH(config-if)# ip dhcp client renew Gateway SWITCH(config)# ip route 0.0.0.0/0 192.168.10.254/24 Remove Gateway SWITCH(config)# no ip route 0.0.0.0/0 192.168.10.254/24 SWITCH# show running-config Display ……… interface vlan1 ip address 192.168.10.8/24 no shutdown ip route 0.0.0.0/0 192.168.10.254/24 Time Setting SWITCH(config)# ntp peer NTP Server enable...
  • Page 43 DHCP Switch(config)# router dhcp DHCP Commands Switch(config-dhcp)# default-router DHCP Default Router Exit current mode and down to previous enable mode exit Exit current mode and down to previous mode IP protocol lease DHCP Lease Time list Print command list network dhcp network remove quit...
  • Page 44 Switch# show ip dhcp server statistics DHCP Server Information DHCP Server ON Address Pool 1 network:192.168.10.0/24 default-router:192.168.10.254 lease time:604800 Excluded Address List IP Address --------------- 192.168.10.123 Manual Binding List IP Address MAC Address --------------- -------------- 192.168.10.99 0012.7701.0203 Leased Address List IP Address MAC Address Leased Time Remains...
  • Page 45 Factory Default Switch# reload default-config file Factory Default Reload OK! Switch# reboot System Reboot Switch# reboot Reboot...

  • Page 46: Port Configuration

    Port Configuration Port Configuration group enables you to enable/disable port state, or configure port auto-negotiation, speed, and duplex, flow control, rate limit control and port aggregation settings. It also allows you to view port status and aggregation information. Following commands are included in this group: 4.3.1 Understand the port mapping 4.3.2 Port Control 4.3.3 Port Status...
  • Page 47 Select the port you want to configure and make changes to the port. In State column, you can enable or disable the state of this port. Once you disable, the port stop to link to the other end and stop to forward any traffic. The default setting is Enable which means all the ports are workable when you receive the device.
  • Page 48 Distance: The transmission distance of the SFP transceiver you plugged. Apply to fiber port. Note: The UI can display vendor name, wave length and distance of all Korenix Gigabit SFP transceiver family. If you see Unknown information, it may mean that the vendor doesn’t provide their information or that the information of their transceiver can’t be read.
  • Page 49 4.3.5 Storm Control The Storm Control is similar to Rate Control. Rate Control filters all the traffic over the threshold you input by UI. Storm Control allows user to define the Rate for specific Packet Types. Figure 4.3.5.1...
  • Page 50 The aggregated ports can interconnect to the other switch which also supports Port Trunking. Korenix Supports 2 types of port trunking. One is Static Trunk, the other is 802.3ad. When the other end uses 802.3ad LACP, you should assign 802.3ad LACP to the trunk.
  • Page 51 Trunk Size: The switch can support up to 8 trunk groups. Each trunk group can support up to 8 member ports. Since the member ports should use same speed/duplex, the maximum trunk size is decided by the port volume. Group ID: Group ID is the ID for the port trunking group. Ports with same group ID are in the same group.
  • Page 52 Group ID: Display Trunk 1 to Trunk 8 set up in Aggregation Setting. Type: Static or LACP set up in Aggregation Setting. Aggregated: When LACP links well, you can see the member ports in Aggregated column. Individual: When LACP is enabled, member ports of LACP group which are not connected to correct LACP member ports will be displayed in the Individual column.
  • Page 53 Switch(config-if)# flowcontrol off Flowcontrol off for port 1 set ok! Port Status Switch# show interface fa1 Port Status Interface fastethernet1 Administrative Status : Enable Operating Status : Connected Duplex : Full Speed : 100 MTU: 1518 Flow Control :off Default Port VLAN ID: 1 Ingress Filtering : Disabled Acceptable Frame Type : All Port Security : Disabled...
  • Page 54 Set rate limit for Destination Lookup Failue packets. Port Trunking Switch(config)# lacp group 1 gi8-10 LACP Group 1 based on LACP(802.3ad) is enabled! Note: The interface list is fa1,fa3-5, gi8-10 Note: different speed port can’t be aggregated together. Switch(config)# trunk group 2 fa6-7 Static Trunk Trunk group 2 enable ok! etNet 5428G# show lacp internal...

  • Page 55: Network Redundancy

    Multiple Super Ring (MSR) technology is Korenix’s 3 generation Ring redundancy technology. This is patented and protected by Korenix and is used in countries all over the world. MSR ranks the fastest restore and failover time in the world, 0 ms for restore and about 10 milliseconds for failover for 100Base-TX copper port.
  • Page 56 RSTP Mode: You must first enable STP/RSTP mode, before configuring any related parameters. Parameter settings required for both STP and RSTP are the same. Note that 802.1d refers to STP mode, while 802.1w refers to faster RSTP mode. Bridge Configuration Priority (0-61440): RSTP uses bridge ID to determine the root bridge, the bridge with the highest bridge ID becomes the root bridge.
  • Page 57 Since different RSTP aware switches may have their own mechanism to calculate the message age. So that this is most possibly occurred when interoperate different vendors’ RSTP aware switches together. The maximum volume of the Korenix RSTP domain is 23, configure the MAX Age lower than 23 is recommended.
  • Page 58 The most common industrial network redundancy is to form a ring or loop. Typically, the managed switches are connected in series and the last switch is connected back to the first one. In such connection, you can implement Korenix Super Ring, Rapid Super Ring, and Multiple Super Ring technology.
  • Page 59 Ring Port2: Assign another port for ring connection Path Cost: Change the Path Cost of Ring Port2 Rapid Dual Homing: Rapid Dual Homing is an important feature of Korenix 3 generation Ring redundancy technology. When you want to connect multiple RSR or form redundant...
  • Page 60 topology with other vendors,RDH could allow you to have maximum 7 multiple links for redundancy without any problem. In Dual Homing I released with JetNet 4000/4500 series, you have to configure additional port as Dual Homing port to two uplink switches. In Rapid Dual Homing, you don’t need to configure specific port to connect to other protocol.
  • Page 61 Status: If this field is Normal which means the redundancy is approved. If any one of the link in this Ring is broken, then the status will be Abnormal. RM MAC: The MAC address of Ring Master of this Ring. It helps to find the redundant path.
  • Page 62 Root Times : max-age 20 sec, hello-time 2 sec, forward-delay 15 sec Bridge Address 0012.77ff.0102 Priority 4096 Bridge Times : max-age 10 sec, hello-time 2 sec, forward-delay 15 sec Aging time : 300 Port Role Port-State Cost Prio.Nbr Type ------- ---------- ------------ --------- ---------- ----------- Designated Forwarding 200000 128.6...
  • Page 63 cost path cost Switch(config-multiple-super-ring)# port fa1,fa2 Ring Port Cost Switch(config-multiple-super-ring)# port cost <0-255> valid range is 0 or 255 default set default (128)valid range is 0 or 255 Switch(config-multiple-super-ring)# port cost 100 <0-255> valid range is 0 or 255 default set default (128)valid range is 0 or 255 Switch(config-super-ring-plus)# port cost 100 200 Set path cost success.

  • Page 64: Vlan

    Layer 2 switch, without actually disconnecting these devices from their original switches. JetNet 5428G Series Industrial Ethernet Switch supports 802.1Q VLAN. 802.1Q VLAN is also known as Tag-Based VLAN. This Tag-Based VLAN allows VLAN to be created across different switches (see Figure 1).
  • Page 65 PVID: The abbreviation of the Port VLAN ID. Enter port VLAN ID here. PVID allows the switches to identify which port belongs to which VLAN. To keep things simple, it is recommended that PVID is equivalent to VLAN IDs. The values of PVIDs are from 0 to 4095. But, 0 and 4095 are reserved. You can’t input these 2 PVIDs.
  • Page 66 Management VLAN ID: The switch supports management VLAN. The management VLAN ID is the VLAN ID of the CPU interface so that only member ports of the management VLAN can ping and access the switch. The default management VLAN ID is Static VLAN: You can assign a VLAN ID and VLAN Name for new VLAN here.
  • Page 67 the port attached by the administrator should be the member port of the management VLAN; otherwise the administrator can’t access the switch via th e network. ote: Currently JetNet 5428G supports max 256 group VLAN. Static VLAN Configuration You can see the created VLA Ns and specify the egress (outgoing) port rule to be Untagged or Tagged here.
  • Page 68 4.5.3 GVRP configuration GVRP allows users to set-up VLANs automatically rather than manual configuration on every port of every switch in the network. In low volume and stable network, the GVRP can reduce the configuration effort. For high volume and high secure request network, the Static VLAN configuration is always preferred.
  • Page 69 After created the VLAN, the status of this VLAN will remain in Unused status until you add ports to the VLAN. 4.5.5 CLI Commands of the VLAN Command Lines of the VLAN port configuration, VLAN configuration and VLAN table display Feature Command Line VLAN Port Configuration...
  • Page 70 Ingress Filtering : Disabled Acceptable Frame Type : All Port Security : Disabled Auto Negotiation : Enable Loopback Mode : None STP Status: disabled Default CoS Value for untagged packets is 0. Mdix mode is Auto. Medium mode is Copper. Display –...
  • Page 71 Create multiple VLANs Switch(config)# interface vlan 5-10 (VLAN 5-10) Shut down VLAN Switch(config)# interface vlan 2 Switch(config-if)# shutdown Switch(config-if)# no shutdown ->Turn on the VLAN Display – VLAN table Switch# sh vlan VLAN Name Status Trunk Ports Access Ports ---- ------------ ------- -------------------------- -------------------------- VLAN1 Static...

  • Page 72: Traffic Prioritization

    Traffic Prioritization Quality of Service (QoS) provides traffic prioritization mechanism which allows users to deliver better service to certain flows. QoS can also help to alleviate congestion problems and ensure high-priority traffic is delivered first. This section allows you to configure Traffic Prioritization settings for each port with regard to setting priorities.
  • Page 73 In JetNet, users can freely assign the mapping table or follow the suggestion of the 802.1p standard. Korenix uses 802.p suggestion as default values. You can find CoS values 1 and 2 are mapped to physical Queue 0, the lowest queue. CoS values 0 and 3 are mapped to physical Queue 1, the low/normal physical queue.
  • Page 74 After configuration, press Apply to enable the settings. 4.6.4 DSCP-Queue Mapping This page is to change DSCP values to Physical Queue mapping table. Since the switch fabric of JetNet only supports 4 physical queues, Lowest, Low, Middle and High. Users should therefore assign how to map DSCP value to the level of the physical queue.
  • Page 75 Queue Scheduling – Switch(config)# qos queue-sched Strict Priority Strict Priority wrr Weighted Round Robin Switch(config)# qos queue-sched sp The queue scheduling scheme is setting to Strict Priority. Queue Scheduling - Switch(config)# qos queue-sched wrr <1-10> Weights for COS queue 0 (queue_id 0) Switch(config)# qos queue-sched wrr 10 <1-10>...
  • Page 76 Note: Format: qos cos-map priority_value queue_value Map CoS 0 to Queue 1 Switch(config)# qos cos-map 0 1 The CoS to queue mapping is set ok. Map CoS 1 to Queue 0 Switch(config)# qos cos-map 1 0 The CoS to queue mapping is set ok. Map CoS 2 to Queue 0 Switch(config)# qos cos-map 2 0 The CoS to queue mapping is set ok.

  • Page 77: Multicast Filtering

    Multicast Filtering For multicast filtering, JetNet 5428G uses IGMP Snooping technology. IGMP (Internet Group Management Protocol) is an Internet Protocol that provides a way for internet device to report its multicast group membership to adjacent routers. Multicasting allows one computer on the internet to send data to a multitude of other computers that have identified themselves as being interested in receiving the originating computers data.
  • Page 78 Select All checkbox for all VLANs. Then press Enable. In the same way, you can also Disable IGMP Snooping for certain VLANs. IGMP Snooping Table: In the table, you can see multicast group IP address, VLAN ID it belongs to, and member ports of the multicast group. JetNet 5428G supports 256 multicast groups.
  • Page 79 This page allows users to configure IGMP Query feature. Since JetNet 5428G can only be configured by member ports of the management VLAN, IGMP Query can only be enabled on the management VLAN. If you want to run IGMP Snooping feature in several VLANs, you should notice that whether each VLAN has its own IGMP Querier first.
  • Page 80 4.7.4 CLI Commands of the Multicast Filtering Command Lines of the multicast filtering configuration Feature Command Line IGMP Snooping IGMP Snooping - Switch(config)# ip igmp snooping Global IGMP snooping is enabled globally. Please specify on which vlans IGMP snooping enables IGMP Snooping - VLAN Switch(config)# ip igmp snooping vlan VLANLIST allowed vlan list all existed vlan...
  • Page 81 …. interface vlan1 ip address 192.168.10.17/24 ip igmp no shutdown ……. Unknown Multicast Unknown Multicast - Switch(config)# mac-address-table multicast filtering Enable Force filtering Filtering unknown multicast addresses ok! (Send to All Ports) Switch(config)# no mac-address-table multicast filtering Flooding unknown multicast addresses ok! Disable Force filtering (Discard) Unknown Multicast –...

  • Page 82: Snmp

    SNMP Simple Network Management Protocol (SNMP) is a protocol used for exchanging management information between network devices. SNMP is a member of the TCP/IP protocol suite. JetNet 5428G series support SNMP v1 and v2c and V3. An SNMP managed network consists of two main components: agents and a manager.
  • Page 83 4.8.2 SNMP V3 Profile SNMP v3 can provide more security functions when the user performs remote management through SNMP protocol. It delivers SNMP information to the administrator with user authentication; all of data between JetNet 5428G and the administrator are encrypted to ensure secure communication.
  • Page 84 This page allows users to Enable SNMP Trap, configure the SNMP Trap server IP, Community name, and trap Version V1 or V2. After configuration, you can see the change of the SNMP pre-defined standard traps and Korenix pre-defined traps. The pre-defined traps can be found in Korenix private MIB.
  • Page 85 4.8.4 CLI Commands of the SNMP Command Lines of the SNMP configuration Feature Command Line SNMP Community Read Only Community Switch(config)# snmp-server community public ro community string add ok Read Write Community Switch(config)# snmp-server community private rw community string add ok SNMP Trap Enable Trap Switch(config)# snmp-server enable trap...

  • Page 86: Security

    Security JetNet 5428G provides several security features for you to secure your connection. The Filter Set is also known as Access Control List. The ACL feature includes traditional Port Security and IP Security. Following commands are included in this group: 4.9.1 Filter Set (Access Control List) 4.9.2 IEEE 802.1x 4.9.3 CLI Commands of the Security...
  • Page 87 MAC Filter (Port Security): The MAC Filter allows user to define the Access Control List for specific MAC address or a group of MAC addresses. Filter ID/Name: The name for this MAC Filter entry. Action: Permit to permit traffic from specified sources. Deny to deny traffic from those sources.
  • Page 88 Egress Port: Bind the MAC Filter rule to specific front port. Once you finish configuring the ACE settings, click on Add to apply your configuration. You can see below screen is shown. Example of the below Entry: Permit Source MAC “0012.7700.0000” to Destination MAC “0012.7700.0002”. The Permit rule is egress rule and it is bind to Gigabit Ethernet Port 25.
  • Page 89 Example: IP Standard Access List: This kind of ACL allows user to define filter rules according to the source IP address. IP Extended Access List: This kind of ACL allows user to define filter rules according to the source IP address, destination IP address, Source TCP/UDP port, destination TCP/UDP port and ICMP type and code.
  • Page 90 Filter ID/Name: The ID or the name for this IP Filter entry. Action: Permit to permit traffic from specified sources. Deny to deny traffic from those sources. Source/Destination Address: Type the source/destination IP address you want configure. Source/Destination Wildcard: This command allows user to define single host or a group of hosts based on the wildcard.
  • Page 91 4.9.2 Filter Set (Access Control List) After configured the ACL filter rules, remember associate this filter with the physical ports. Then the port has the capability to filter traffic/attach based on the packets lost. 4.9.3 IEEE 802.1x 4.9..1 802.1X configuration IEEE 802.1X is the protocol that performing authentication to obtain access to IEEE 802 LANs.
  • Page 92 System AuthControl: To enable or disable the 802.1x authentication. Authentication Method: Radius is a authentication server that provide key for authentication, with this method, user must connect switch to server. If user select Local for the authentication method, switch use the local user data base which can be create in this page for authentication.
  • Page 93 4.9.3.2 802.1x Port Configuration After the configuration of Radius Server or Local user list, user also need configure the authentication mode, authentication behavior, applied VLAN for each port and permitted communication. The following information will explain the port configuration. Once you finish configuring the settings, click on Apply to apply your configuration. Port control: Force Authorized means this port is authorized;...
  • Page 94 Supplicant Timeout: the timeout for the client authenticating Sever Timeout: The timeout for server response for authenticating. Click Initialize Selected to set the authorize state of selected port to initialize status. Click Reauthenticate Selected to send EAP Request to supplicant to request reauthentication.
  • Page 95 Negate a command or set its defaults quit Exit current mode and down to previous mode Add IP Standard access Switch(config)# ip access-list list extended Extended access-list standard Standard access-list Switch(config)# ip access-list standard <1-99> Standard IP access-list number <1300-1999> Standard IP access-list number (expanded range) WORD Access-list name...
  • Page 96 Any Internet Protocol Transmission Control Protocol User Datagram Protocol icmp Internet Control Message Protocol Switch(config-ext-acl)#permit ip A.B.C.D Source address Any source host host A single source host Switch(config-ext-acl)#permit ip 192.168.10.1 A.B.C.D Source wildcard bits Switch(config-ext-acl)#permit ip 192.168.10.1 0.0.0.1 A.B.C.D Destination address Any destination host host A single destination host...
  • Page 97 RADIUS Accounting Port number NOT given. (default=1813) Secondary RADIUS Server IP : 192.168.10.250 Secondary RADIUS Server Key : 5678 Secondary RADIUS Server Port : 1812 Secondary RADIUS Accounting Port : 1813 User name/password Switch(config)# dot1x username korenix passwd korenix vlan for authentication...

  • Page 98: Warning

    4.10 Warning JetNet 5428G provides several types of Warning features for you to remote monitor the status of end devices or the change of your network. The features include System Log and SMTP E-mail Alert. Following commands are included in this group: 4.10.1 Event Selection 4.10.2 Syslog Configuration 4.10.3 SMTP Configuration...
  • Page 99 Once you finish configuring the settings, click on Apply to apply your configuration. 4.10.2 SysLog Configuration System Log is useful to provide system administrator locally or remotely monitor switch events history. There are 2 System Log modes provided by JetNet 5428G, local mode and remote mode.
  • Page 100 Note: When enabling Local or Both mode, you can monitor the system logs in [Monitor and Diag] / [Event Log] page. 4.10.3 SMTP Configuration JetNet 5428G supports E-mail Warning feature. The switch will send the occurred events to remote E-mail server. The receiver can then receive notification by E-mail. The E-mail warning is conformed to SMTP standard.
  • Page 101 Switch(config)# log syslog remote 192.168.10.33 Disable Switch(config)# no log syslog local SMTP Configuration SMTP Enable Switch(config)# smtp-server enable email-alert SMTP Email Alert set enable ok. Sender mail Switch(config)# smtp-server server 192.168.10.100 ACCOUNT SMTP server mail account, ex: admin@korenix.com Switch(config)# smtp-server server 192.168.10.100 admin@korenix.com...
  • Page 102 SMTP Email Alert set Server: 192.168.10.100, Account: admin@korenix.com ok. Receiver mail Switch(config)# smtp-server receipt 1 korecare@korenix.com SMTP Email Alert set receipt 1: korecare@korenix.com ok. Authentication with Switch(config)# smtp-server authentication username admin username and password admin password SMTP Email Alert set authentication Username: admin, Password: admin Note: You can assign string to username and password.

  • Page 103: Monitor And Diag

    4.11 Monitor and Diag JetNet 5428G provides several types of features for you to monitor the status of the switch or diagnostic for you to check the problem when encountering problems related to the switch. The features include MAC Address Table, Port Statistics, Port Mirror, Event Log and Ping.
  • Page 104 4.11.2 Port Statistics In this page, you can view operation statistics for each port. The statistics that can be viewed include Link Type, Link State, Rx Good, Rx Bad, Rx Abort, Tx Good, Tx Bad and Collision. Rx means the received packet while Tx means the transmitted packets. Note: If you see many Bad, Abort or Collision counts increased, that may mean your network cable is not connected well, the network performance of the port is poor…etc.
  • Page 105 4.11.3 Port Mirroring Port mirroring (also called port spanning) is a tool that allows you to mirror the traffic from one or more ports onto another port, without disrupting the flow of traffic on the original port. Any traffic that goes into or out of the Source Port(s) will be duplicated at the Destination Port.
  • Page 106 4.11.4 Event Log In the 4.10.3, we have introduced System Log feature. When System Log Local mode is selected, JetNet 5428G will record occurred events in local log table. This page shows this log table. The entry includes the index, occurred data and time and content of the events. Click on Clear to clear the entries.
  • Page 107 4.11.6 Ping Utility This page provides Ping Utility for users to ping remote device and check whether the device is alive or not. Type Target IP address of the target device and click on Start to start the ping. After few seconds, you can see the result in the Result field.
  • Page 108 4.11.7 CLI Commands of the Monitor and Diag Command Lines of the Monitor and Diag configuration Feature Command Line MAC Address Table Ageing Time Switch(config)# mac-address-table aging-time 350 mac-address-table aging-time set ok! Note: 350 is the new ageing timeout value. Add Static Unicast MAC Switch(config)# mac-address-table static 0012.7701.0101 address...

  • Page 109: Port Mirroring

    Port Statistics Port Statistics Switch# show rmon statistics fa4 (select interface) Interface fastethernet4 is enable connected, which has Inbound: Good Octets: 178792, Bad Octets: 0 Unicast: 598, Broadcast: 1764, Multicast: 160 Pause: 0, Undersize: 0, Fragments: 0 Oversize: 0, Jabbers: 0, Disacrds: 0 Filtered: 0, RxError: 0, FCSError: 0 Outbound: Good Octets: 330500...
  • Page 110 Ping Ping IP Switch# ping 192.168.10.33 PING 192.168.10.33 (192.168.10.33): 56 data bytes 64 bytes from 192.168.10.33: icmp_seq=0 ttl=128 time=0.0 ms 64 bytes from 192.168.10.33: icmp_seq=1 ttl=128 time=0.0 ms 64 bytes from 192.168.10.33: icmp_seq=2 ttl=128 time=0.0 ms 64 bytes from 192.168.10.33: icmp_seq=3 ttl=128 time=0.0 ms 64 bytes from 192.168.10.33: icmp_seq=4 ttl=128 time=0.0 ms --- 192.168.10.33 ping statistics --- packets transmitted, 5 packets received, 0% packet loss...

  • Page 111: Device Front Panel

    4.12 Device Front Panel Device Front Panel command allows you to see LED status of the switch. You can see LED and link status of the Power, DO, DI, R.M. and Ports. Feature On / Link UP Off / Link Down Note Power Green...

  • Page 112: Save To Flash

    4.13 Save to Flash Save Configuration allows you to save any configuration you just made to the Flash. Powering off the switch without clicking on Save Configuration will cause loss of new settings. After selecting Save Configuration, click on Save to Flash to save your new configuration.

  • Page 113: Logout

    4.14 Logout The switch provides 2 logout methods. The web connection will be logged out if you don’t input any command after 30 seconds. The Logout command allows you to manually logout the web connection. Click on Yes to logout, No to go back the configuration page. Command Lines: Feature Command Line...

  • Page 114: Pin Assignment Of The Rs-232 Console Cable

    5 Appendix Pin Assignment of the RS-232 Console Cable The total cable length is 150cm.

  • Page 115: Korenix Sfp Family

    Korenix certificated SFP transceivers when you constructing your network. Korenix will keep on certificating and updating the certificated SFP transceivers in Korenix web site and purchase list. You can refer to the web site to get the latest information about SFP transceivers.

  • Page 116: Korenix Private Mib

    SNMP. But, since some commands can’t be found in standard MIB, Korenix provides Private MIB to meet up the need. Compile the private MIB file by your SNMP tool. You can then use it. Private MIB can be found in product CD or downloaded from Korenix Web site.

  • Page 117: Revision History

    Revision History Edition Date Modifications V1.0_1116 Nov. 16, 2009 Update 2 pages web UI. V1.0 Nov. 16, 2009 Modify some UI and description. Change to V1.0. V0.1 Nov. 8, 2009 The first version.

  • Page 118: About Korenix

    Less Time At Work! Fewer Budget on applications! The Korenix business idea is to let you spend less time at work and fewer budget on your applications. Do you really want to go through all the troubles but still end up with low quality products and lousy services? Definitely not! This is why you need Korenix.

This manual is also suitable for:

Jetnet 5428g-dc

Table of Contents