User’s Manual of WGSD-10020 Series TABLE OF CONETNTS 1. INTRODUTION ........................20 1.1 Packet Contents ............................20 1.2 Product Description ...........................20 1.3 How to Use This Manual ..........................22 1.4 Product Features............................23 1.5 Product Specification ..........................26 2. INSTALLATION ........................29 2.1 Hardware Description ..........................29 2.1.1 Switch Front Panel ..............................29 2.1.2 LED Indications ..............................30 2.1.3 Switch Rear Panel ...............................32...
Page 4
User’s Manual of WGSD-10020 Series 4.2.5 Privilege Levels ..............................55 4.2.6 NTP Configuration ...............................57 4.2.7 UPnP ...................................58 4.2.8 DHCP Relay ................................59 4.2.9 DHCP Relay Statistics ............................61 4.2.10 CPU Load ................................63 4.2.11 System Log ................................64 4.2.12 Detailed Log ..............................65 4.2.13 Remote Syslog ..............................66 4.2.14 LED Power Reduction ............................67 4.2.15 EEE Power Reduction ............................68 4.2.16 Thermal Protection ............................69...
Page 5
User’s Manual of WGSD-10020 Series 4.5.4 LACP Port Status...............................105 4.5.5 LACP Port Statistics............................106 4.6 VLAN................................107 4.6.1 VLAN Overview ..............................107 4.6.2 IEEE 802.1Q VLAN ............................108 4.6.3 VLAN Basic Information............................. 111 4.6.4 VLAN Port Configuration ........................... 112 4.6.5 VLAN Membership ............................116 4.6.6 VLAN Membership Status..........................
Page 6
User’s Manual of WGSD-10020 Series 4.8.9 MLD Snooping VLAN Configuration ........................166 4.8.10 MLD Snooping Port Group Filtering.........................167 4.8.11 MLD Snooping Status ............................168 4.8.12 MLD Group Information ...........................170 4.8.13 MLDv2 Information ............................170 4.8.14 MVR.................................171 4.8.15 MVR Status..............................173 4.8.16 MVR Groups Information ..........................174 4.9 Quality of Service .............................175 4.9.1 Understand QOS ...............................175 4.9.2 Port Policing ..............................176...
Page 7
User’s Manual of WGSD-10020 Series 4.11.4 Network Access Overview ..........................232 4.11.5 Network Access Statistics ..........................233 4.11.6 Authentication Server Configuration.........................240 4.11.7 RADIUS Overview ............................243 4.11.8 RADIUS Details ...............................244 4.11.9 Windows Platform RADIUS Server Configuration....................251 4.11.10 802.1X Client Configuration ...........................256 4.12 Security ..............................259 4.12.1 Port Limit Control .............................259 4.12.2 Access Management ............................262 4.12.3 Access Management Statistics ........................263...
Page 8
User’s Manual of WGSD-10020 Series 4.15.4 Cable Diagnostics............................303 4.16 Power over Ethernet (WGSD-10020HP) ....................305 4.16.1 Power over Ethernet Powered Device ......................305 4.16.2 Power Configuration ............................306 4.16.3 Port Configuration............................309 4.16.4 PoE Status............................... 311 4.16.5 PoE Schedule..............................312 4.16.6 LLDP PoE Neighbours.............................314 4.16.7 PD Alvie-check ..............................315 5.
Page 9
User’s Manual of WGSD-10020 Series IP DNS Proxy ..............................333 IPv6 AUTOCINFIG ..............................333 IPv6 Setup................................334 IPv6 Ping ................................335 IP NTP Configuration............................335 IP NTP Mode ...............................336 IP NTP Server Add ..............................336 IP NTP Server IPv6 Add ............................337 IP NTP Server Delete ............................337 6.3 Port Management Command........................339 Port Configuration ...............................339 Port Mode................................339...
Page 10
User’s Manual of WGSD-10020 Series VLAN Add................................354 VLAN Forbidden Add............................355 VLAN Delete................................355 VLAN Forbidden Delete............................356 VLAN Forbidden Lookup .............................356 VLAN Lookup ..............................356 VLAN Name Add ..............................357 VLAN Name Delete .............................358 VLAN Name Lookup............................358 VLAN Status ................................359 6.6 Private VLAN Configuration Command ....................360 PVLAN Configuration ............................360 PVLAN Add .................................361 PVLAN Delete ..............................361...
Page 12
User’s Manual of WGSD-10020 Series Security Network Limit Aging..........................396 Security Network Limit Agetime...........................397 Security Network Limit Port ..........................397 Security Network Limit Limit ..........................398 Security Network Limit Action ..........................398 Security Network Limit Reopen ...........................399 Security Network NAS Configuration........................400 Security Network NAS Mode ..........................400 Security Network NAS State..........................401 Security Network NAS Reauthentication ......................402 Security Network NAS ReauthPeriod ........................402...
Page 13
User’s Manual of WGSD-10020 Series Security Network IP Source Guard Port Mode ....................419 Security Network IP Source Guard Limit ......................420 Security Network IP Source Guard Entry ......................420 Security Network IP Source Guard Status......................421 Security Network ARP Inspection Configuration....................421 Security Network ARP Inspection Mode ......................422 Security Network ARP Inspection Port Mode ......................422 Security Network ARP Inspection Entry.......................423 Security Network ARP Inspection Status ......................423...
Page 14
User’s Manual of WGSD-10020 Series STP Port Mcheck..............................441 STP MSTI Port Configuration ..........................441 STP MSTI Port Cost ............................442 STP MSTI Port Priority ............................442 6.9 Link Aggregation Command ........................444 Aggregation Configuration...........................444 Aggregation Add..............................444 Aggregation Delete..............................444 Aggregation Lookup ............................445 Aggregation Mode ...............................445 6.10 Link Aggregation Control Protocol Command..................447 LACP Configuration.............................447 LACP Mode .................................447...
Page 15
User’s Manual of WGSD-10020 Series 6.13 EEE Command............................463 EEE Configuration...............................463 EEE Mode ................................463 EEE Urgent Queues ............................464 6.14 Power over Ethernet Command......................465 PoE Configuration ...............................465 PoE Mode................................465 AF/AT Mode.................................466 PoE Priority .................................466 PoE Mamagement Mode.............................467 PoE Maximum Power ............................467 PoE Allocated Power ............................467 PoE Power Supply ..............................468 PoE Status................................468 6.15 Thermal Command..........................469...
Page 16
User’s Manual of WGSD-10020 Series QoS Port QueueShaper Mode ..........................479 QoS Port QueueShaper Rate..........................480 QoS Port QueueShaper Excess..........................480 QoS Port Shaper Mode ............................481 QoS Port Shaper Rate ............................482 QoS Port TagRemarking Mode..........................482 QoS Port TagRemarking PCP ..........................483 QoS Port TagRemarking DEI..........................483 QoS Port TagRemarking Map..........................484 QoS Port DSCP Translation ..........................484 QoS Port DSCP Classification..........................485...
Page 17
User’s Manual of WGSD-10020 Series UPnP Mode .................................498 UPnP TTL................................499 UPnP Advertising Duration ..........................499 6.22 MVR Command............................500 MVR Configuration ..............................500 MVR Group .................................500 MVR Status .................................501 MVR Mode ................................501 MVR Port Mode..............................501 MVR Multicast VLAN ............................502 MVR Port Type ..............................502 MVR Immediate Leave ............................503 6.23 Voice VLAN Command...........................504 Voice VLAN Configuration ...........................504...
Page 18
User’s Manual of WGSD-10020 Series IPMC SSM................................518 IPMC Parameter RV............................519 IPMC Parameter QI.............................519 IPMC Parameter QRI ............................520 IPMC Parameter LLQI ............................520 IPMC Parameter URI ............................521 6.25 VLAN Control List Command........................522 VCL MAC-based VLAN Configuration .........................522 VCL MAC-based VLAN Add ..........................522 VCL MAC-based VLAN Delete ..........................522 VCL Stasus................................523 VCL Protocol-based VLAN Add Ethernet II ......................523...
Page 19
User’s Manual of WGSD-10020 Series Power Disconnection Scenarios ..........................532 9. TROUBLE SHOOTING...................... 534 APPENDEX A ........................536 A.1 Switch's RJ-45 Pin Assignments ......................536 A.2 10/100Mbps, 10/100Base-TX ........................536 APPENDEX B : GLOSSARY....................538...
8-Port 10/100/1000Mbps + 2 100/1000X SFP Managed Ethernet Switch WGSD-10020 8-Port 10/100/1000Mbps PoE Plus + 2 100/1000X SFP Managed Ethernet Switch WGSD-10020HP Terms of “Managed Switch” means the Switches mentioned titled in the cover page of this User’s manual, i.e. WGSD series Managed Switch.
Page 21
User’s Manual of WGSD-10020 Series High-Performance, Cost-effective Gigabit solution for backbone of SMB The PLANET WGSD-10020 series is the Layer 2 Managed Gigabit Switch which can handle extremely large amounts of data in a secure topology linking to an Enterprise backbone or high capacity network server with 20Gbps switching fabric. The powerful features of QoS and network security make WGSD-10020 series Switch to offer effective data traffic control for ISPs and Enterprises, such as VoIP, video streaming and multicast applications.
550 meters (Multi-Mode fiber) up to above 10/50/70/120 kilometers (Single-Mode fiber or WDM fiber). They are well suited for applications within the enterprise data centers and distributions. Centralized Power Management for Gigabit Ethernet PoE Networking (WGSD-10020HP Only) To fulfill the needs of higher power required PoE network applications with Gigabit speed transmission, PLANET introduces new member –...
Page 24
User’s Manual of WGSD-10020 Series Quality of Service ■ Ingress Shaper and Egress Rate Limit per port bandwidth control ■ 8 priority queues on all switch ports ■ Traffic classification: IEEE 802.1p CoS TOS / DSCP / IP Precedence of IPv4/IPv6 packets IP TCP/UDP port number Typical network application ■...
Page 25
■ Reset button for system reboot or reset to factory default ■ PLANET Smart Discovery Utility for deploy management ■ ICMPv6 (WGSD-10020HP Only) Power over Ethernet ■ Complies with IEEE 802.3af Power over Ethernet End-Span PSE ■ Complies with IEEE 802.3at high-power Power over Ethernet End-Span PSE ■...
User’s Manual of WGSD-10020 Series 1.5 Product Specification Product WGSD-10020 WGSD-10020HP Hardware Specification 8 10/ 100/1000Base-T RJ-45 Auto-MDI/MDI-X ports Copper Ports 2 1000Base-SX/LX/BX SFP interfaces (Port-9 and Port-10) SFP/mini-GBIC Slots Compatible with 100Base-FX SFP 1 x RS-232 DB9 serial port (115200, 8, N, 1)
Page 27
User’s Manual of WGSD-10020 Series SSH, SSL, SNMP v3 Secure Management Interface Port disable/enable. Auto-negotiation 10/100/1000Mbps full and half duplex mode selection. Flow Control disable / enable. Port configuration Bandwidth control on each port. Power saving mode control Display each port’s speed duplex mode, link status, Flow control status. Port Status Auto negotiation status, trunk status.
Page 28
User’s Manual of WGSD-10020 Series RFC-2737 Entity MIB RFC-2618 RADIUS Client MIB RFC-2933 IGMP-STD-MIB RFC3411 SNMP-Frameworks-MIB IEEE 802.1X PAE LLDP MAU-MIB Standards Conformance FCC Part 15 Class A, CE Regulation Compliance IEEE 802.3 10Base-T IEEE 802.3u 100Base-TX/100Base-FX IEEE 802.3z Gigabit SX/LX IEEE 802.3ab Gigabit 1000T IEEE 802.3x Flow Control and Back pressure IEEE 802.3ad Port trunk with LACP...
User’s Manual of WGSD-10020 Series Reset Button Pressed and Released Function < 5 sec: System reboot Reboot the Managed Switch Reset the Managed Switch to Factory Default configuration. The Managed Switch will then reboot and load the default settings as below: Default Username: admin 。...
Page 31
Lights to indicate the link through that port is successfully established. Green Blink: indicate that the switch is actively sending or receiving data over that port. WGSD-10020HP LED indication Figure 2-4 WGSD-10020HP LED panel System Color Function Lights to indicate that the fan is fail.
WGSD-10020 Rear Panel Figure 2-5 Rear panel of WGSD-10020 WGSD-10020HP Rear Panel Figure 2-6 Rear panel of WGSD-10020HP ■ AC Power Receptacle For compatibility with electric service in most areas of the world, the Managed Switch’s power supply automatically adjusts to line power in the range 100-240VAC and 50/60 Hz.
User’s Manual of WGSD-10020 Series 2.2 Install the Switch This section describes how to install your Managed Switch and make connections to the Managed Switch. Please read the following topics and perform the procedures in the order being presented. To install your Managed Switch on a desktop or shelf, simply complete the following steps.
User’s Manual of WGSD-10020 Series Supply power to the Managed Switch. Step5: Connect one end of the power cable to the Managed Switch. Connect the power plug of the power cable to a standard wall outlet. When the Managed Switch receives power, the Power LED should remain solid Green. 2.2.2 Rack Mounting To install the Managed Switch in a 19-inch standard rack, please follows the instructions described below.
User’s Manual of WGSD-10020 Series Figure 2-9 Mounting WGSD-10020 in a Rack Proceeds with the steps 4 and steps 5 of session 2.2.1 Desktop Installation to connect the network cabling and supply Step6: power to the Managed Switch. 2.2.3 Installing the SFP transceiver The sections describe how to insert an SFP transceiver into an SFP slot.
Page 36
User’s Manual of WGSD-10020 Series Approved PLANET SFP Transceivers PLANET Managed Switch supports both Single mode and Multi-mode SFP transceiver. The following list of approved PLANET SFP transceivers is correct at the time of publication: Gigabit SFP Transceiver modules ...
Page 37
User’s Manual of WGSD-10020 Series Converter.. Check the LNK/ACT LED of the SFP slot on the front of the Managed Switch. Ensure that the SFP transceiver is operating correctly. Check the Link mode of the SFP port if the link failed. Co works with some fiber-NICs or Media Converters, set the Link mode to “1000 Force”...
User’s Manual of WGSD-10020 Series 3. SWITCH MANAGEMENT This chapter explains the methods that you can use to configure management access to the Managed Switch. It describes the types of management applications and the communication and management protocols that deliver data between your management device (workstation or personal computer) and the system.
User’s Manual of WGSD-10020 Series 3.2 Management Access Overview The Managed Switch gives you the flexibility to access and manage it using any or all of the following methods: An administration console Web browser interface An external SNMP-based network management application The administration console and Web browser interface support are embedded in the Managed Switch software and are available for immediate use.
Page 40
User’s Manual of WGSD-10020 Series Figure 3-1 Console management Direct Access Direct access to the administration console is achieved by directly connecting a terminal or a PC equipped with a terminal-emulation program (such as HyperTerminal) to the Managed Switch console (serial) port. When using this management method, a straight DB9 RS-232 cable is required to connect the switch to the PC.
User’s Manual of WGSD-10020 Series 3.4 Web Management The Managed Switch offers management features that allow users to manage the Managed Switch from anywhere on the network through a standard browser such as Microsoft Internet Explorer. After you set up your IP address for the switch, you can access the Managed Switch's Web interface applications directly in your Web browser by entering the IP address of the Managed Switch.
User’s Manual of WGSD-10020 Series 3.5 SNMP-Based Network Management You can use an external SNMP-based application to configure and manage the Managed Switch, such as SNMPc Network Manager, HP Openview Network Node Management (NNM) or What’s Up Gold. This management method requires the SNMP agent on the switch and the SNMP Network Management Station to use the same community string.
User’s Manual of WGSD-10020 Series 4. WEB CONFIGURATION This section introduces the configuration and functions of the Web-Based management. About Web-based Management The Managed Switch offers management features that allow users to manage the Managed Switch from anywhere on the network through a standard browser such as Microsoft Internet Explorer.
Page 44
User’s Manual of WGSD-10020 Series Logging on the switch Use Internet Explorer 7.0 or above Web browser. Enter the factory-default IP address to access the Web interface. The factory-default IP Address as following: http://192.168.0.100 When the following login screen appears, please enter the default username "admin" with password “admin” (or the username/password you have changed via console) to login the main screen of Managed Switch.
Page 45
User’s Manual of WGSD-10020 Series Figure 4-1-3 Default main page Now, you can use the Web management interface to continue the switch management or manage the Managed Switch by Web interface. The Switch Menu on the left of the web page let you access all the commands and statistics the Managed Switch provides.
User’s Manual of WGSD-10020 Series 4.1 Main Web Page The SGSW Managed Switch provides a Web-based browser interface for configuring and managing it. This interface allows you to access the Managed Switch using the Web browser of your choice. This chapter describes how to use the Managed Switch’s Web browser interface to configure and manage it.
Page 47
User’s Manual of WGSD-10020 Series Figure 4-1-5 Managed Switch Main Functions Menu...
User’s Manual of WGSD-10020 Series 4.2 System Use the System menu items to display and configure basic administrative details of the Managed Switch. Under System the following topics are provided to configure and view the system information: This section has the following items: The switch system information is provided here.
User’s Manual of WGSD-10020 Series 4.2.1 System Information The System Info page provides information for the current device information. System Info page helps a switch administrator to identify the hardware MAC address, software version and system uptime. The screen in Figure 4-2-1 appears.
User’s Manual of WGSD-10020 Series 4.2.2 IP Configuration The IP Configuration includes the IP Address, Subnet Mask and Gateway. The Configured column is used to view or change the IP configuration. Fill up the IP Address, Subnet Mask and Gateway for the device. The screen in Figure 4-2-2 appears.
User’s Manual of WGSD-10020 Series : Click to undo any changes made locally and revert to previously saved values. : Click to undo any changes made locally and revert to previously saved values. 4.2.3 IPv6 Configuration Configure the switch-managed IPv6 information on this page. The Configured column is used to view or change the IPv6 configuration.
User’s Manual of WGSD-10020 Series 16-bit groups of contiguous zeros; but it can only appear once. It also used a following legally IPv4 address. For example, '::192.1.2.34'. Provide the IPv6 SNTP Server address of this switch. IPv6 address is in 128-bit records represented as eight fields of up to four hexadecimal digits with a colon separates each field (:).
Page 53
User’s Manual of WGSD-10020 Series Add / Edit User This page configures a user – add, edit or delete user. Figure 4-2-5 Add / Edit User Configuration page screenshot The page includes the following fields: Object Description Username The name identifying the user. ...
Page 54
User’s Manual of WGSD-10020 Series After change the default password, if you forget the password. Please press the “Reset” button in the front panel of the Managed Switch over 10 seconds and then release, the current setting includes VLAN, will be lost and the Managed Switch will restore to the default mode.
User’s Manual of WGSD-10020 Series 4.2.5 Privilege Levels This page provides an overview of the privilege levels. After setup completed, please press “Save” button to take effect. Please login web interface with new user name and password, the screen in Figure 4-2-7 appears.
Page 56
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description Group Name The name identifying the privilege group. In most cases, a privilege level group consists of a single module (e.g. LACP, RSTP or QoS), but a few of them contains more than one.
User’s Manual of WGSD-10020 Series 4.2.6 NTP Configuration Configure NTP on this page. NTP is an acronym for Network Time Protocol, a network protocol for synchronizing the clocks of computer systems. NTP uses UDP (data grams) as transport layer. You can specify NTP Servers and set GMT Time zone. The NTP Configuration screen in Figure 4-2-8 appears.
User’s Manual of WGSD-10020 Series 4.2.7 UPnP Configure UPnP on this page. UPnP is an acronym for Universal Plug and Play. The goals of UPnP are to allow devices to connect seamlessly and to simplify the implementation of networks in the home (data sharing, communications, and entertainment) and in corporate environments for simplified installation of computer components.
User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. Figure 4-2-10 UPnP devices shows on Windows My Network Places 4.2.8 DHCP Relay Configure DHCP Relay on this page. DHCP Relay is used to forward and to transfer DHCP messages between the clients and the server when they are not on the same subnet domain.
Page 60
User’s Manual of WGSD-10020 Series The Remote ID sub-option was designed to carry information relating to the remote host end of the circuit. The definition of Circuit ID in the switch is 4 bytes in length and the format is "vlan_id" "module_id" "port_no". The parameter of "vlan_id"...
User’s Manual of WGSD-10020 Series contains relay agent information. It will enforce the policy. And it only works under DHCP relay information operation mode enabled. Possible policies are: Replace: Replace the original relay information when receive a DHCP message that already contains it. Keep: Keep the original relay information when receive a DHCP message that already contains it.
Page 62
User’s Manual of WGSD-10020 Series missing. Circuit ID Receive Missing The packets number that received packets which Remote ID option was missing. Remote ID Receive Bad Circuit ID The packets number that the Circuit ID option did not match known circuit ID. ...
User’s Manual of WGSD-10020 Series 4.2.10 CPU Load This page displays the CPU load, using a SVG graph. The load is measured as averaged over the last 100ms, 1sec and 10 seconds intervals. The last 120 samles are graphed, and the last numbers are displayed as text as well.
User’s Manual of WGSD-10020 Series 4.2.11 System Log The switch system log information is provided here. The System Log screen in Figure 4-2-14 appears. Figure 4-2-14 System Log page screenshot The page includes the following fields: Object Description ID The ID (>= 1) of the system log entry.
User’s Manual of WGSD-10020 Series 4.2.12 Detailed Log The switch system detailed log information is provided here. The Detailed Log screen in Figure 4-2-15 appears. Figure 4-2-15 Detailed Log page screenshot The page includes the following fields: Object Description ID The ID (>= 1) of the system log entry.
User’s Manual of WGSD-10020 Series 4.2.13 Remote Syslog Configure remote syslog on this page. The Remote Syslog screen in Figure 4-2-16 appears. Figure 4-2-16 Remote Syslog page screenshot The page includes the following fields: Object Description Mode Indicates the server mode operation. When the mode operation is enabled, the syslog message will send out to syslog server.
User’s Manual of WGSD-10020 Series 4.2.14 LED Power Reduction The LEDs power consumption can be reduced by lowering the LEDs intensity. LEDs intensity could for example be lowered during night time, or they could be turn completely off. It is possible to configure 24 different hours of the day, at where the LEDs intensity should be set.
User’s Manual of WGSD-10020 Series 4.2.15 EEE Power Reduction This page allows the user to inspect and configure the current EEE port settings. EEE is a power saving option that reduces the power usage when there is very low traffic utilization (or no traffic). EEE works by powering down circuits when there is no traffic.
User’s Manual of WGSD-10020 Series be transmitted. Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.2.16 Thermal Protection This page allows the user to inspect and configure the current setting for controlling thermal protection. Thermal protection is used to protect the chip from getting overheated.
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description Temperature settings The temperature at which the ports with the corresponding priority will be turned off. Temperatures between 0 and 255 C are supported. for priority groups ...
User’s Manual of WGSD-10020 Series Figure 4-2-21 Software successfully loaded notice screen the Managed Switch until the update progress is complete. DO NOT Power OFF Do not quit the Firmware Upgrade page without press the “OK” button - after the image be loaded.
User’s Manual of WGSD-10020 Series Firmware File Name The name of firmware image. (Maximum length : 24 characters) Buttons : Click to upgrade firmware. the Managed Switch until the update progress is complete. DO NOT Power OFF Do not quit the Firmware Upgrade page without press the “OK” button - after the image be loaded.
Page 73
User’s Manual of WGSD-10020 Series <mode>, <entry> etc. These tags identify parameters for the specific section, module and Parameter tags: group. The <entry> tag is used for table entries. Configuration parameters are represented as attribute values. When saving the configuration from the switch, the entire configuration including syntax descriptions is included in the file.
User’s Manual of WGSD-10020 Series Chose the file save path in management workstation. Figure 4-2-25 File save screen 4.2.20 Configuration Upload This function allows backup and reload the current configuration of the Managed Switch to the local management station. The Configuration Upload screen in Figure 4-2-26 appears.
User’s Manual of WGSD-10020 Series Figure 4-2-27 Windows file selection menu popup Select on the configuration file then click “ ”, the bottom of the browser shows the upload status. After down, the main screen appears “Transfer Completed”. 4.2.21 Factory Default You can reset the configuration of the stack switch on this page.
User’s Manual of WGSD-10020 Series Buttons : Click to reset the configuration to Factory Defaults. : Click to return to the Port State page without resetting the configuration. After the “Factory” button be pressed and rebooted, the system will load the default IP settings as following: Default IP address: 192.168.0.100 。...
Page 77
User’s Manual of WGSD-10020 Series Buttons : Click to reboot the system. : Click to return to the Port State page without reboot the system. You can also check the SYS LED at the front panel to identify the System is load completely or not. If the SYS LED is blinking, then it is in the firmware load stage;...
User’s Manual of WGSD-10020 Series 4.3 Simple Network Management Protocol 4.3.1 SNMP Overview The Simple Network Management Protocol (SNMP) is an application layer protocol that facilitates the exchange of management information between network devices. It is part of the Transmission Control Protocol/Internet Protocol (TCP/IP) protocol suite. SNMP enables network administrators to manage network performance, find and solve network problems, and plan for network growth.
User’s Manual of WGSD-10020 Series Configure SNMPv3 users table on this page. SNMPv3 Users Configure SNMPv3 groups table on this page. SNMPv3 Groups Configure SNMPv3 views table on this page. SNMPv3 Views Configure SNMPv3 accesses table on this page. SNMPv3 Accesses 4.3.2 SNMP System Configuration Configure SNMP on this page.
Page 80
User’s Manual of WGSD-10020 Series Indicates the SNMPv3 engine ID. The string must contain an even number Engine ID between 10 and 64 hexadecimal digits, but all-zeros and all-'F's are not allowed. Change of the Engine ID will clear all original local users. Configure SNMP trap on this page.
User’s Manual of WGSD-10020 Series representing multiple 16-bit groups of contiguous zeros; but it can only appear once. It also used a following legally IPv4 address. For example, '::192.1.2.34'. Indicates the SNMP entity is permitted to generate authentication failure traps. Trap Authentication Possible modes are: Failure...
User’s Manual of WGSD-10020 Series The textual identification of the contact person for this managed node, together System Contact with information on how to contact this person. The allowed string length is 0 to 255, and the allowed content is the ASCII characters from 32 to 126. ...
User’s Manual of WGSD-10020 Series allowed string length is 1 to 32, and the allowed content is the ASCII characters from 33 to 126. Indicates the SNMP access source address. Source IP Indicates the SNMP access source address mask. Source Mask Buttons : Click to add a new community entry.
Page 84
User’s Manual of WGSD-10020 Series Auth, NoPriv: Authentication and none privacy. Auth, Priv: Authentication and privacy. The value of security level cannot be modified if entry already exist. That means must first ensure that the value is set correctly. Indicates the authentication protocol that this entry should belong to.
User’s Manual of WGSD-10020 Series 4.3.4.3 SNMPv3 Groups Configure SNMPv3 groups table on this page. The entry index keys are Security Model and Security Name. The SNMPv3 Groups screen in Figure 4-3-6 appears. Figure 4-3-6 SNMPv3 Groups Configuration page screenshot The page includes the following fields: Object Description...
User’s Manual of WGSD-10020 Series 4.3.4.4 SNMPv3 Views Configure SNMPv3 views table on this page. The entry index keys are View Name and OID Subtree. The SNMPv3 Views screen in Figure 4-3-7 appears. Figure 4-3-7 SNMPv3 Views Configuration page screenshot The page includes the following fields: Object Description...
User’s Manual of WGSD-10020 Series 4.3.4.5 SNMPv3 Access Configure SNMPv3 accesses table on this page. The entry index keys are Group Name, Security Model and Security Level. The SNMPv3 Access screen in Figure 4-3-8 appears. Figure 4-3-8 SNMPv3 Accesses Configuration page screenshot The page includes the following fields: Object Description...
Page 88
User’s Manual of WGSD-10020 Series Buttons : Click to add a new access entry. : Click to save changes. : Click to undo any changes made locally and revert to previously saved values.
User’s Manual of WGSD-10020 Series 4.4 Port Management Use the Port Menu to display or configure the Managed Switch's ports. This section has the following items: Configures port connection settings Port Configuration Lists Ethernet and RMON port statistics Port Statistics Overview ...
Page 90
User’s Manual of WGSD-10020 Series Select any available link speed for the given switch port. Draw the menu bar to Configured Link Speed select the mode. Auto Speed - Setup Auto negotiation. 10 Half - Force sets 10Mbps/Half-Duplex mode. 10 Full - Force sets 10Mbps/Full-Duplex mode.
User’s Manual of WGSD-10020 Series : Click to refresh the page. Any changes made locally will be undone. 4.4.2 Port Statistics Overview This page provides an ov erview of general traffic statistics for all switch ports. The Port Statistics Overview screen in Figure 4-4-2 appears.
User’s Manual of WGSD-10020 Series 4.4.3 Port Thermal Protection Status This page allows the user to inspect status information related to thermal protection. The Port Thermal Protection Status screen Figure 4-4-3 appears. Figure 4-4-3 Thermal Protection Status page screenshot The displayed counters are: Object Description ...
Page 93
User’s Manual of WGSD-10020 Series Figure 4-4-4 Detailed Port Statistics Port 1 page screenshot The page includes the following fields: Receive Total and Transmit Total Object Description The number of received and transmitted (good and bad) packets Rx and Tx Packets ...
Page 94
User’s Manual of WGSD-10020 Series The number of received and transmitted packets per input and output queue. Receive Error Counters Object Description The number of frames dropped due to lack of receive buffers or egress Rx Drops congestion. The number of frames received with CRC or alignment errors.
User’s Manual of WGSD-10020 Series 4.4.5 SFP Information You can check the physical or operational status of an SFP module via the SFP Module Information page. This page shows the operational status, such as the transceiver type, speed, and wavelength and supports distance of SFP module on a specific interface.
User’s Manual of WGSD-10020 Series 4.4.6 Port Mirror Configure port Mirroring on this page. This function provide to monitoring network traffic that forwards a copy of each incoming or outgoing packet from one port of a network Switch to another port where the packet can be studied. It enables the manager to keep close track of switch performance and alter it if necessary.
Page 97
User’s Manual of WGSD-10020 Series Mirror Port Configuration The Port Mirror screen in Figure 4-4-7 appears. Figure 4-4-7 Mirror Configuration page screenshot The page includes the following fields: Object Description Port to mirror on Frames from ports that have either source (rx) or destination (tx) mirroring enabled are mirrored to this port.
Page 98
User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values.
User’s Manual of WGSD-10020 Series 4.5 Link Aggregation Port Aggregation optimizes port usage by linking a group of ports together to form a single Link Aggregated Groups (LAGs). Port Aggregation multiplies the bandwidth between the devices, increases port flexibility, and provides link redundancy. Each LAG is composed of ports of the same speed, set to full-duplex operations.
Page 100
User’s Manual of WGSD-10020 Series The Link Aggregation Control Protocol (LACP) provides a standardized means for exchanging information between Partner Systems that require high speed redundant links. Link aggregation lets you group up to eight consecutive ports into a single dedicated connection.
User’s Manual of WGSD-10020 Series 4.5.1 Static Aggregation This page is used to configure the Aggregation hash mode and the aggregation group. The aggregation hash mode settings are global, whereas the aggregation group relate to the currently selected stack unit, as reflected by the page header. Hash Code Contributors The Static Aggeration screen in Figure 4-5-2...
Page 102
User’s Manual of WGSD-10020 Series Figure 4-5-3 Aggregation Group Configuration page screenshot The page includes the following fields: .Object Description Indicates the group ID for the settings contained in the same row. Group ID Group ID "Normal" indicates there is no aggregation. Only one group ID is valid per port. ...
User’s Manual of WGSD-10020 Series 4.5.2 LACP Configuration Link Aggregation Control Protocol (LACP) - LACP LAG negotiate Aggregated Port links with other LACP ports located on a different device. LACP allows switches connected to each other to discover automatically whether any ports are member of the same LAG.
User’s Manual of WGSD-10020 Series The Role shows the LACP activity status. The Active will transmit LACP packets Role each second, while Passive will wait for a LACP packet from a partner (speak if spoken to). Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values.
User’s Manual of WGSD-10020 Series 4.5.4 LACP Port Status This page provides a status overview for LACP status for all ports. The LACP Port Status screen in Figure 4-5-6 appears. Figure 4-5-6 LACP Status page screenshot The page includes the following fields: Object Description ...
User’s Manual of WGSD-10020 Series 4.5.5 LACP Port Statistics This page provides an overview for LACP statistics for all ports. The LACP Port Statistics screen in Figure 4-5-7 appears. Figure 4-5-7 LACP Statistics page screenshot The page includes the following fields: Object Description ...
User’s Manual of WGSD-10020 Series 4.6 VLAN 4.6.1 VLAN Overview A Virtual Local Area Network (VLAN) is a network topology configured according to a logical scheme rather than the physical layout. VLAN can be used to combine any collection of LAN segments into an autonomous user group that appears as a single LAN.
User’s Manual of WGSD-10020 Series 4.6.2 IEEE 802.1Q VLAN In large networks, routers are used to isolate broadcast traffic for each subnet into separate domains. This Managed Switch provides a similar service at Layer 2 by using VLANs to organize any group of network nodes into separate broadcast domains. VLANs confine broadcast traffic to the originating group, and can eliminate broadcast storms in large networks.
Page 109
User’s Manual of WGSD-10020 Series Untagging - The act of stripping 802.1Q VLAN information out of the packet header. ■ 802.1Q VLAN Tags The figure below shows the 802.1Q VLAN tag. There are four additional octets inserted after the source MAC address. Their presence is indicated by a value of 0x8100 in the Ether Type field.
Page 110
User’s Manual of WGSD-10020 Series ■ Port VLAN ID Packets that are tagged (are carrying the 802.1Q VID information) can be transmitted from one 802.1Q compliant network device to another with the VLAN information intact. This allows 802.1Q VLAN to span network devices (and indeed, the entire network –...
User’s Manual of WGSD-10020 Series ■ VLAN Classification When the switch receives a frame, it classifies the frame in one of two ways. If the frame is untagged, the switch assigns the frame to an associated VLAN (based on the default VLAN ID of the receiving port). But if the frame is tagged, the switch uses the tagged VLAN ID to identify the port broadcast domain of the frame.
User’s Manual of WGSD-10020 Series Current number of Display the current number of VLANs VLANs VLAN Learning Display the VLAN learning mode. The Managed Switch supports IVL (IVL Independent vlan learning). Configurable PVID Indicates whether or not configurable PVID tagging is implemented. Tagging 4.6.4 VLAN Port Configuration This page is used for configuring the Managed Switch port VLAN.
Page 113
User’s Manual of WGSD-10020 Series QinQ tunneling is used to maintain customer-specific VLAN and Layer 2 protocol configurations even when different customers use the same internal VLAN IDs. This is accomplished by inserting Service Provider VLAN (SPVLAN) tags into the customer’s frames when they enter the service provider’s network, and then stripping the tags when the frames leave the network.
Page 114
User’s Manual of WGSD-10020 Series VLAN Port Configuration The VLAN Port Configuration screen in Figure 4-6-2 appears. Figure 4-6-2 VLAN Port Configuration page screenshot The page includes the following fields: Object Description This is the logical port number for this row. Port ...
Page 115
User’s Manual of WGSD-10020 Series - Tagged: outgoing frames with VLAN-Tagged. Q-in-Q Mode Sets the Managed Switch to QinQ mode, and allows the QinQ tunnel port to be configured. The default is for the Managed Switch to function in Disable mode. - Disable: The port operates in its normal VLAN mode.
User’s Manual of WGSD-10020 Series 4.6.5 VLAN Membership Adding Static Members to VLANs (VLAN Index) Use the VLAN Static Table to configure port members for the selected VLAN index. The VLAN membership configuration for the selected stack switch / unit switch can be monitored and modified here. Up to 255 VLANs are supported. This page allows for adding and deleting VLANs as well as adding and deleting port members of each VLAN.
User’s Manual of WGSD-10020 Series click "Save". The button can be used to undo the addition of new VLANs. Buttons : Click to add new VLAN. : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. : Refreshes the displayed table starting from the "VLAN ID"...
Page 118
User’s Manual of WGSD-10020 Series member ports. A VLAN User is a module that uses services of the VLAN management VLAN User functionality to configure VLAN memberships and VLAN port configuration such as PVID, UVID. Currently we support following VLAN : - CLI/Web/SNMP : This are reffered as static.
User’s Manual of WGSD-10020 Series 4.6.7 VLAN Port Status This page provides VLAN Port Staus. The VLAN Port Status screen in Figure 4-6-5 appears. Figure 4-6-5 VLAN Port Status for Static User page screenshot The page includes the following fields: Object Description ...
User’s Manual of WGSD-10020 Series requests to set VLAN membership or VLAN port configuration, the following conflicts can occur: Functional Conflicts between feature. Conflicts due to hardware limitation. Direct conflict between user modules. A VLAN User is a module that uses services of the VLAN management VLAN User functionality to configure VLAN memberships and VLAN port configuration such as PVID, UVID.
User’s Manual of WGSD-10020 Series The Private VLAN screen in Figure 4-6-6 appears. Figure 4-6-6 Private VLAN Membership Configuration page screenshot The page includes the following fields: Object Description Delete To delete a private VLAN entry, check this box. The entry will be deleted during the next save.
Page 122
User’s Manual of WGSD-10020 Series For private VLANs to be applied, the switch must first be configured for standard VLAN operation When this is in place, one or more of the configured VLANs can be configured as private VLANs. Ports in a private VLAN fall into one of these two groups: ...
User’s Manual of WGSD-10020 Series Figure 4-6-7 Port Isolation Configuration page screenshot The page includes the following fields: Object Description Port Members A check box is provided for each port of a private VLAN. When checked, port isolation is enabled on that port. When unchecked, port isolation is disabled on that port.
Page 124
User’s Manual of WGSD-10020 Series Figure 4-6-8 two separate VLAN diagram VLAN Group Untagged Members Tagged Members VLAN Group 1 Port-7 ~ Port-10 VLAN Group 2 Port-1,Port-2 Port-3 VLAN Group 3 Port-4,Port-5 Port-6 Table 4-1 VLAN and Port Configuration The scenario described as follow: ...
Page 125
User’s Manual of WGSD-10020 Series While [PC-4] transmit an untagged packet enters Port-4, the switch will tag it with a VLAN Tag=3. [PC-5] and [PC-6] will received the packet through Port-5 and Port-6. While the packet leaves Port-5, it will be stripped away it tag becoming an untagged packet. While the packet leaves Port-6, it will keep as a tagged packet with VLAN Tag=3.
User’s Manual of WGSD-10020 Series Port-4,Port-5 and Port-6 : PVID=3 Port-7~Port-24 : PVID=1 Enable VLAN Tag for specific ports Link Type: Port-3 (VLAN-2) and Port-6 (VLAN-3) The Per Port VLAN configuration in Figure 4-6-10 appears. Figure 4-6-10 Port 1-Port 6 VLAN Configuration 4.6.10.2 VLAN Trunking between two 802.1Q aware switch The most cases are used for “Uplink”...
Page 127
User’s Manual of WGSD-10020 Series Setup steps Create VLAN Group Set VLAN Group 1 = Default-VLAN with VID (VLAN ID) =1 Add two VLANs – VLAN 2 and VLAN 3 VLAN Group 2 with VID=2 VLAN Group 3 with VID=3 Assign VLAN Member : VLAN 2 : Port-1,Port-2 and Port-3 VLAN 3 : Port-4, Port-5 and Port-6...
User’s Manual of WGSD-10020 Series Figure 4-6-12 VLAN overlap port setting & VLAN 1 – The public area member assign Specify Port-8 to be the 802.1Q VLAN Trunk port, and the Trunking port must be a Tagged port while egress. The Port-8 configuration as the following screen in Figure 4-6-13.
Page 129
User’s Manual of WGSD-10020 Series Setup steps Assign Port Mode Set Port-1~Port-4 in Isolate port. Set Port5 and Port-6 in Promiscuous port. The screen in Figure 4-6-15 appears. Figure 4-6-15 The configuration of Isolate and Promiscuous port Assign VLAN Member : VLAN 1 : Port-1,Port-2 ,Port-5 and Port-3 VLAN 2 : Port-3~Port-6.
User’s Manual of WGSD-10020 Series 4.6.11 MAC-based VLAN The MAC-based VLAN enties can be configured here. This page allows for adding and deleting MAC-based VLAN entries and assigning the entries to different ports. This page shows only static entries. The MAC-based VLAN screen in Figure 4-6-17 appears.
User’s Manual of WGSD-10020 Series 4.6.12 MAC-based VLAN Status This page shows MAC-based VLAN entries configured by various MAC-based VLAN users. The MAC-based VLAN Status screen in Figure 4-6-18 appears. Figure 4-6-18 MAC-based VLAN Membership Configuration for User Static page screenshot The page includes the following fields: Object Description...
User’s Manual of WGSD-10020 Series 4.6.13 Protocol-based VLAN This page allows you to add new protocols to Group Name (unique for each Group) mapping entries as well as allow you to see and delete already mapped entries for the switch. The Protocol-based VLAN screen in Figure 4-6-19 appears.
User’s Manual of WGSD-10020 Series sub-values. a.OUI: OUI (Organizationally Unique Identifier) is value in format of xx-xx-xx where each pair (xx) in string is a hexadecimal value ranges from 0x00-0xff. b. PID: If the OUI is hexadecimal 000000, the protocol ID is the Ethernet type (EtherType) field value for the protocol running on top of SNAP;...
Page 134
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description Delete To delete a Group Name to VLAN map entry, check this box. The entry will be deleted on the switch during the next Save Group Name A valid Group Name is a string of atmost 16 characters which consists of a combination of alphabets (a-z or A-Z) and integers(0-9), no special character is allowed.
User’s Manual of WGSD-10020 Series 4.7 Spanning Tree Protocol 4.7.1 Theory The Spanning Tree protocol can be used to detect and disable network loops, and to provide backup links between switches, bridges or routers. This allows the switch to interact with other bridging devices in your network to ensure that only one route exists between any two stations on the network, and provide backup links which automatically take over when a primary link goes down.
Page 136
User’s Manual of WGSD-10020 Series The switch sends BPDUs to communicate and construct the spanning-tree topology. All switches connected to the LAN on which the packet is transmitted will receive the BPDU. BPDUs are not directly forwarded by the switch, but the receiving switch uses the information in the frame to calculate a BPDU, and, if the topology changes, initiates a BPDU transmission.
Page 137
User’s Manual of WGSD-10020 Series Figure 4-7-1 STP Port State Transitions You can modify each port state by using management software. When you enable STP, every port on every switch in the network goes through the blocking state and then transitions through the states of listening and learning at power up. If properly configured, each port stabilizes to the forwarding or blocking state.
Page 138
User’s Manual of WGSD-10020 Series Parameter Description Default Value A combination of the User-set priority and 32768 + MAC Bridge Identifier(Not user the switch’s MAC address. configurable The Bridge Identifier consists of two parts: except by setting priority a 16-bit priority and a 48-bit Ethernet MAC below) address 32768 + MAC A relative priority for each switch –...
Page 139
User’s Manual of WGSD-10020 Series The Switch’s factory default setting should cover the majority of installations. However, it is advisable to keep the default settings as set at the factory; unless, it is absolutely necessary. The user changeable parameters in the Switch are as follows: Priority –...
Page 140
User’s Manual of WGSD-10020 Series Figure 4-7-5 Before Applying the STA Rules In this example, only the default STP values are used. Figure 4-7-6 After Applying the STA Rules...
User’s Manual of WGSD-10020 Series The switch with the lowest Bridge ID (switch C) was elected the root bridge, and the ports were selected to give a high port cost between switches B and C. The two (optional) Gigabit ports (default port cost = 20,000) on switch A are connected to one (optional) Gigabit port on both switch B and C.
Page 142
User’s Manual of WGSD-10020 Series Basic Settings Object Description The STP protocol version setting. Valid values are STP, RSTP and MSTP. Protocol Version Bridge Priority Controls the bridge priority. Lower numeric values have better priority. The bridge priority plus the MSTI instance number, concatenated with the 6-byte MAC address of the switch forms a Bridge Identifier.
User’s Manual of WGSD-10020 Series The time that has to pass before a port in the error-disabled state can be Port Error Recovery enabled. Valid values are between 30 and 86400 seconds (24 hours). Timeout The Gigabit Ethernet Switch implement the Rapid Spanning Protocol as the default spanning tree protocol.
User’s Manual of WGSD-10020 Series 4.7.4 CIST Port Configuration This page allows the user to inspect the current STP CIST port configurations, and possibly change them as well. The CIST Port Configuration screen in Figure 4-7-9 appears. Figure 4-7-9 STP CIST Port Configuration page screenshot The page includes the following fields: Object Description...
Page 145
User’s Manual of WGSD-10020 Series Default: 128 Range: 0-240, in steps of 16 operEdge (state flag) Operational flag describing whether the port is connecting directly to edge devices. (No Bridges attached). Transition to the forwarding state is faster for edge ports (having operEdge true) than for other ports.The value of this flag is based on AdminEdge and AutoEdge fields.
Page 146
User’s Manual of WGSD-10020 Series By default, the system automatically detects the speed and duplex mode used on each port, and configures the path cost according to the values shown below. Path cost “0” is used to indicate auto-configuration mode. When the short path cost method is selected and the default path cost recommended by the IEEE 8021w standard exceeds 65,535, the default is set to 65,535.
User’s Manual of WGSD-10020 Series 4.7.5 MSTI Priorities This page allows the user to inspect the current STP MSTI bridge instance priority configurations, and possibly change them as well. The MSTI Priority screen in Figure 4-7-10 appears. Figure 4-7-10 MSTI Priority page screenshot The page includes the following fields: Object Description...
Page 148
User’s Manual of WGSD-10020 Series Figure 4-7-11 MSTI Configuration page screenshot The page includes the following fields: Configuration Identification Object Description Configuration Name The name identifiying the VLAN to MSTI mapping. Bridges must share the name and revision (see below), as well as the VLAN-to-MSTI mapping configuration in order to share spanning trees for MSTI's.
User’s Manual of WGSD-10020 Series Configuration Revision The revision of the MSTI configuration named above. This must be an integer between 0 and 65535. MSTI Mapping Object Description MSTI The bridge instance. The CIST is not available for explicit mapping, as it will receive the VLANs not explicitly mapped.
Page 150
User’s Manual of WGSD-10020 Series Figure 4-7-13 MST1 MSTI Port Configuration page screenshot The page includes the following fields: MSTx MSTI Port Configuration Object Description Port The switch port number of the corresponding STP CIST (and MSTI) port. Path Cost Controls the path cost incurred by the port.
User’s Manual of WGSD-10020 Series : Click to set MSTx configuration : Click to refresh the page immediately. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. 4.7.8 Port Status This page displays the STP CIST port status for port physical ports in the currently selected switch. The STP Port Status screen in Figure 4-7-14 appears.
User’s Manual of WGSD-10020 Series Forwarding Non-STP Uptime The time since the bridge port was last initialized. Buttons : Click to refresh the page immediately. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. 4.7.9 Port Statistics This page displays the STP port statistics counters for port physical ports in the currently selected switch.
Page 153
User’s Manual of WGSD-10020 Series : Click to refresh the page immediately. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. : Click to clear the information immediately.
User’s Manual of WGSD-10020 Series 4.8 Multicast 4.8.1 IGMP Snooping The Internet Group Management Protocol (IGMP) lets host and routers share information about multicast groups memberships. IGMP snooping is a switch feature that monitors the exchange of IGMP messages and copies them to the CPU for feature processing.
Page 155
User’s Manual of WGSD-10020 Series Figure 4-8-2 Multicast flooding Figure 4-8-3 IGMP Snooping multicast stream control...
Page 156
User’s Manual of WGSD-10020 Series IGMP Versions 1 and 2 Multicast groups allow members to join or leave at any time. IGMP provides the method for members and multicast routers to communicate when joining or leaving a multicast group. IGMP version 1 is defined in RFC 1112. It has a fixed packet size and no optional data. The format of an IGMP packet is shown below: IGMP Message Format Octets...
Page 157
User’s Manual of WGSD-10020 Series message, and query messages that are specific to a given group. The states a computer will go through to join or to leave a multicast group are shown below: Figure 4-8-4 IGMP State Transitions IGMP Querier –...
User’s Manual of WGSD-10020 Series 4.8.2 IGMP Snooping Configuration This page provides IGMP Snooping related configuration. The IGMP Snooping Configuration screen in Figure 4-8-5 appears. Figure 4-8-5 IGMP Snooping Configuration page screenshot The page includes the following fields: Object Description ...
User’s Manual of WGSD-10020 Series Fast Leave Enable the fast leave on the port. Throtting Enable to limit the number of multicast groups to which a switch port can belong. Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.8.3 IGMP Snooping VLAN Configuration Each page shows up to 99 entries from the VLAN table, default being 20, selected through the "entries per page"...
User’s Manual of WGSD-10020 Series by the Querier. The allowed range is 1 to 255 seconds, default query interval is 125 seconds. QRI Query Response Interval. The Max Response Time used to calculate the Max Resp Code inserted into the periodic General Queries. The allowed range is 0 to 31744 in tenths of seconds, default query response interval is 100 in tenths of seconds (10 seconds).
User’s Manual of WGSD-10020 Series Figure 4-8-7 IGMP Snooping Port Group Filtering Configuration page screenshot The page includes the following fields: Object Description Check to delete the entry. It will be deleted during the next save. Delete Port The logical port for the settings.
Page 162
User’s Manual of WGSD-10020 Series Figure 4-8-8 IGMP Snooping Status page screenshot The page includes the following fields: Object Description The VLAN ID of the entry. VLAN ID Working Querier Version currently. Querier Version Working Host Version currently. Host Version ...
User’s Manual of WGSD-10020 Series 4.8.6 IGMP Group Information Entries in the IGMP Group Table are shown on this page. The IGMP Group Table is sorted first by VLAN ID, and then by group. Each page shows up to 99 entries from the IGMP Group table, default being 20, selected through the "entries per page" input field.
User’s Manual of WGSD-10020 Series IGMP SSM Information Table. The "Start from VLAN", and "Group" input fields allow the user to select the starting point in the IGMP SSM Information Table. The IGMPv3 Information screen in Figure 4-8-10 appears. Figure 4-8-10 IGMP SSM Information page screenshot The page includes the following fields: Object Description...
Page 165
User’s Manual of WGSD-10020 Series Figure 4-8-11 MLD Snooping Configuration page screenshot The page includes the following fields: Object Description Enable the Global MLD Snooping. Snooping Enabled Enable unregistered IPMCv6 traffic flooding. Please note that disabling Unregistered IPMC unregistered IPMCv6 traffic flooding may lead to failure of Neighbor Discovery.
User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.8.9 MLD Snooping VLAN Configuration Each page shows up to 99 entries from the VLAN table, default being 20, selected through the "entries per page" input field. When first visited, the web page will show the first 20 entries from the beginning of the VLAN Table.
User’s Manual of WGSD-10020 Series Maximum Response Code inserted into the periodic General Queries. The allowed range is 0 to 31744 in tenths of seconds, default query response interval is 100 in tenths of seconds (10 seconds). LLQI Last Listener Query Interval. The Last Listener Query Interval is the Maximum Response Delay used to calculate the Maximum Response Code inserted into Multicast Address Specific Queries sent in response to Version 1 Multicast Listener Done messages.
User’s Manual of WGSD-10020 Series Figure 4-8-13 MLD Snooping Port Group Filtering Configuration page screenshot The page includes the following fields: Object Description Check to delete the entry. It will be deleted during the next save. Delete Port The logical port for the settings.
Page 169
User’s Manual of WGSD-10020 Series Figure 4-8-14 MLD Snooping Status page screenshot The page includes the following fields: Object Description The VLAN ID of the entry. VLAN ID Working Querier Version currently. Querier Version Working Host Version currently. Host Version ...
User’s Manual of WGSD-10020 Series 4.8.12 MLD Group Information Entries in the MLD Group Table are shown on this page. The MLD Group Table is sorted first by VLAN ID, and then by group. Each page shows up to 99 entries from the MLD Group table, default being 20, selected through the "entries per page" input field.
User’s Manual of WGSD-10020 Series The "Start from VLAN", and "group" input fields allow the user to select the starting point in the MLD SSM Information Table. The MLDv2 Information screen in Figure 4-8-16 appears. Figure 4-8-16 MLD SSM Information page screenshot The page includes the following fields: Object Description...
Page 172
User’s Manual of WGSD-10020 Series Layer 3- network, it might be necessary to replicate the multicast stream to the same group in different subnets, even if they are on the same physical network. Multicast VLAN Registration (MVR) routes packets received in a multicast source VLAN to one or more receive VLANs.
User’s Manual of WGSD-10020 Series Type Specify the MVR port type on the port. Immediate Leave Enable the fast leave on the port. Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.8.15 MVR Status This page provides MVR status.
User’s Manual of WGSD-10020 Series 4.8.16 MVR Groups Information Entries in the MVR Group Table are shown on this page. The MVR Group Table is sorted first by VLAN ID, and then by group. Each page shows up to 99 entries from the MVR Group table, default being 20, selected through the "entries per page" input field.
User’s Manual of WGSD-10020 Series 4.9 Quality of Service 4.9.1 Understand QOS Quality of Service (QoS) is an advanced traffic prioritization feature that allows you to establish control over network traffic. QoS enables you to assign various grades of network service to different types of traffic, such as multi-media, video, protocol-specific, time critical, and file-backup traffic.
User’s Manual of WGSD-10020 Series 4.9.2 Port Policing This page allows you to configure the Policer settings for all switch ports. The Port Policing screen in Figure 4-9-1 appears. Figure 4-9-1 QoS Ingress Port Policers page screenshot The page includes the following fields: Object Description ...
User’s Manual of WGSD-10020 Series 4.9.3 Port Classification This page allows you to configure the basic QoS Ingress Classification settings for all switch ports. The Port Classification screen in Figure 4-9-2 appears. Figure 4-9-2 QoS Ingress Port Classification page screenshot The page includes the following fields: Object Description...
User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.9.3.1 QoS Ingress Port Tag Classification The clasification mode for tagged frames are configured on this page. The QoS Ingress Port Tag Classification screen in Figure 4-9-3 appears.
User’s Manual of WGSD-10020 Series Object Description Controls the classification mode for tagged frames on this port. Tag Classification Disabled: Use default QoS class and DP level for tagged frames. Enabled: Use mapped versions of PCP and DEI for tagged frames. ...
User’s Manual of WGSD-10020 Series For more detail, please refer to chapter 4.9.5.1. Mode Shows the scheduling mode for this port. Shows the weight for this queue and port. Q0 ~ Q5 4.9.5 Port Shaping This page provides an overview of QoS Egress Port Shapers for all switch ports. The Port Shapping screen in Figure 4-9-5 appears.
Page 181
User’s Manual of WGSD-10020 Series Figure 4-9-6 QoS Egress Port Schedule and Shapers page screenshot The page includes the following fields: Object Description Schedule Mode Controls whether the scheduler mode is "Strict Priority" or "Weighted" on this switch port. ...
User’s Manual of WGSD-10020 Series restricted to 100-1000000 when the "Unit" is "kbps", and it is restricted to 1-3300 when the "Unit" is "Mbps". Controls the unit of measure for the port shaper rate as "kbps" or "Mbps". The Port Shaper Unit default value is "kbps".
User’s Manual of WGSD-10020 Series 4.9.6.1 QoS Egress Port Tag Remarking The QoS Egress Port Tag Remarking for a specific port are configured on this page. The QoS Egress Port Tag Remarking sscreen in Figure 4-9-8 appears. Figure 4-9-8 QoS Egress Port Tag Remarking page screenshot The page includes the following fields: Object Description...
Page 184
User’s Manual of WGSD-10020 Series Figure 4-9-9 QoS Port DSCP Configuration page screenshot The page includes the following fields: Object Description Port The Port coulmn shows the list of ports for which you can configure dscp ingress and egress settings. ...
User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. : Click to refresh the page immediately.
Page 186
User’s Manual of WGSD-10020 Series Figure 4-9-10 DSCP-Based QoS Ingress Classification page screenshot...
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description DSCP Maximum number of support ed DSCP values are 64. Trust Click to check if the DSCP value is trusted. QoS Class QoS Class value can be any of (0-7) ...
Page 189
User’s Manual of WGSD-10020 Series Figure 4-9-11 DSCP Translation page screenshot The page includes the following fields: Object Description DSCP Maximum number of supported DSCP values are 64 and valid DSCP value ranges from 0 to 63. Ingress Ingress side DSCP can be first translated to new DSCP before using the DSCP for QoS class and DPL map.
User’s Manual of WGSD-10020 Series 4.9.10 DSCP Classification This page allows you to map DSCP value to a QoS Class and DPL value. The DSCP Classification screen in Figure 4-9-12 appears. Figure 4-9-12 DSCP Classification page screenshot The page includes the following fields: Object Description ...
User’s Manual of WGSD-10020 Series 4.9.11 QoS Control List This page shows the QoS Control List(QCL), which is made up of the QCEs. Each row describes a QCE that is defined. The maximum number of QCEs is 256 on each switch. Click on the lowest plus sign to add a new QCE to the list.
User’s Manual of WGSD-10020 Series range 1-4095 or 'Any' Displays QCE status. It may happen that resources required to add a QCE may Confict not available, in that case it shows conflict status as 'Yes', otherwise it is always 'No'.Please note that conflict can be resolved by releaseing the resource required by the QCE and pressing 'Refresh' button.
Page 193
User’s Manual of WGSD-10020 Series Figure 4-9-14 QCE Configuration page screenshot The page includes the following fields: Object Description Check the checkbox button in case you what to make any port member of the Port Members QCL entry. By default all ports will be checked ...
Page 194
User’s Manual of WGSD-10020 Series SNAP IPv4 IPv6 Note: all frame types are explained below. Any Allow all types of frames. Ethernet Ethernet Type Valid ethernet type can have value within 0x600-0xFFFF or 'Any' but excluding 0x800(IPv4) and 0x86DD(IPv6), default value is 'Any'. ...
User’s Manual of WGSD-10020 Series Class QoS Class: "class (0-7)", default- basic classification Action Configuration DP Valid DP Level can be (0-3)", default- basic classification DSCP Valid dscp value can be (0-63, BE, CS1-CS7, EF or AF11-AF43) Buttons : Click to save the configuration and move to main QCL page : Click to undo any changes made locally and revert to previously saved values : Return to the previous page without saving the configuration change 4.9.12 QoS Status...
User’s Manual of WGSD-10020 Series IPv4: The QCE will match only IPV4 frames. IPv6: The QCE will match only IPV6 frames. Indicates the classification action taken on ingress frame if parameters Action configured are matched with the frame's content. There are three action fields: Class, DPL and DSCP.
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description The settings in a particular row apply to the frame type listed here: Frame Type unicast multicast Enable or disable the storm control status for the given frame type. Enable ...
User’s Manual of WGSD-10020 Series Buttons : Click to refresh the page immediately. : Clears the counters for all ports. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. 4.9.15 Voice VLAN Configuration The Voice VLAN feature enables voice traffic forwarding on the Voice VLAN, then the switch can classify and schedule network traffic.
Page 199
User’s Manual of WGSD-10020 Series Object Description Mode Indicates the Voice VLAN mode operation. We must disable MSTP feature before we enable Voice VLAN. It can avoid the conflict of ingress filter. Possible modes are: Enabled: Enable Voice VLAN mode operation. Disabled: Disable Voice VLAN mode operation.
User’s Manual of WGSD-10020 Series 4.9.16 Voice VLAN OUI Table Configure VOICE VLAN OUI table on this page. The maximum entry number is 16. Modifying the OUI table will restart auto detection of OUI process. The Voice VLAN OUI Table screen in Figure 4-9-19 appears.
User’s Manual of WGSD-10020 Series 4.10 Access Control Lists ACL is an acronym for Access Control List. It is the list table of ACEs, containing access control entries that specify individual users or groups permitted or denied to specific traffic objects, such as a process or a program. Each accessible traffic object contains an identifier to its ACL.
User’s Manual of WGSD-10020 Series EType: The ACE will match Ethernet Type frames. Note that an Ethernet Type based ACE will not get matched by IP and ARP frames. ARP: The ACE will match ARP/RARP frames. IPv4: The ACE will match all IPv4 frames. IPv4/ICMP: The ACE will match IPv4 frames with ICMP protocol.
Page 203
User’s Manual of WGSD-10020 Series Figure 4-10-2 Access Control List Configuration page screenshot The page includes the following fields: Object Description Ingress Port Indicates the ingress port of the ACE. Possible values are: Any: The ACE will match any ingress port. Policy: The ACE will match ingress ports with a specific policy.
User’s Manual of WGSD-10020 Series Disabled: Port shut down is disabled for the ACE. Counter The counter indicates the number of times the ACE was hit by a frame. Modification Buttons You can modify each ACE (Access Control Entry) in the table using the following buttons: : Inserts a new ACE before the current row.
Page 205
User’s Manual of WGSD-10020 Series Figure 4-10-3 ACE Configuration page screenshot The page includes the following fields: Object Description Select the ingress port for which this ACE applies. Ingress Port Any: The ACE applies to any port. Port n: The ACE applies to this port number, where n is the number of the switch port. Policy n: The ACE applies to this policy number, where n can range from 1 through 8.
Page 206
User’s Manual of WGSD-10020 Series Specify the action to take with a frame that hits this ACE. Action Permit: The frame that hits this ACE is granted permission for the ACE operation. Deny: The frame that hits this ACE is dropped. ...
Page 207
User’s Manual of WGSD-10020 Series When "Specific" is selected for the DMAC filter, you can enter a specific destination DMAC Value MAC address. The legal format is "xx-xx-xx-xx-xx-xx". A frame that hits this ACE matches this DMAC value. VLAN Parameters Object Description...
Page 208
User’s Manual of WGSD-10020 Series Host: Sender IP filter is set to Host. Specify the sender IP address in the SIP Address field that appears. Network: Sender IP filter is set to Network. Specify the sender IP address and sender IP mask in the SIP Address and SIP Mask fields that appear. ...
Page 209
User’s Manual of WGSD-10020 Series Any: Any value is allowed ("don't-care"). Ethernet Specify whether frames can hit the action according to their ARP/RARP protocol address space (PRO) settings. 0: ARP/RARP frames where the PRO is equal to IP (0x800). 1: ARP/RARP frames where the PRO is equal to IP (0x800).
Page 210
User’s Manual of WGSD-10020 Series No: IPv4 frames where the options flag is set must not be able to match this entry. Yes: IPv4 frames where the options flag is set must be able to match this entry. Any: Any value is allowed ("don't-care"). ...
Page 211
User’s Manual of WGSD-10020 Series appears. When "Specific" is selected for the ICMP code filter, you can enter a specific ICMP Code Value ICMP code value. The allowed range is 0 to 255. A frame that hits this ACE matches this ICMP code value.
Page 212
User’s Manual of WGSD-10020 Series 0: TCP frames where the FIN field is set must not be able to match this entry. 1: TCP frames where the FIN field is set must be able to match this entry. Any: Any value is allowed ("don't-care"). ...
User’s Manual of WGSD-10020 Series : Click to undo any changes made locally and revert to previously saved values. : Return to the previous page. 4.10.4 ACL Ports Configuration Configure the ACL parameters (ACE) of each switch port. These parameters will affect frames received on a port unless the frame matches a specific ACE.
User’s Manual of WGSD-10020 Series The default value is "Disabled". Logging Specify the logging operation of this port. The allowed values are: Enabled: Frames received on the port are stored in the System Log. Disabled: Frames received on the port are not logged. The default value is "Disabled".
Page 215
User’s Manual of WGSD-10020 Series Figure 4-10-5 ACL Rate Limiter Configuration page screenshot The page includes the following fields: Object Description The rate limiter ID for the settings contained in the same row. Rate Limiter ID The allowed values are: 0-3276700 in pps or 0, 100, 200, 300, ..., 1000000 in Rate kbps.
User’s Manual of WGSD-10020 Series 4.11 Authentication This section is to control the access of the Managed Switch, includes the user access and management control. The Authentication section contains links to the following main topics: IEEE 802.1X Port-Based Network Access Control ...
User’s Manual of WGSD-10020 Series to authenticate. The disadvantage is that MAC addresses can be spoofed by malicious users, equipment whose MAC address is a valid RADIUS user can be used by anyone, and only the MD5-Challenge method is supported. The 802.1X and MAC-Based Authentication configuration consists of two sections, a system- and a port-wide.
Page 218
User’s Manual of WGSD-10020 Series Figure 4-11-1 Client—the device (workstation) that requests access to the LAN and switch services and responds to requests from the switch. The workstation must be running 802.1X-compliant client software such as that offered in the Microsoft Windows XP operating system.
Page 219
User’s Manual of WGSD-10020 Series authentication server must support EAP within the native frame format. When the switch receives frames from the authentication server, the server's frame header is removed, leaving the EAP frame, which is then encapsulated for Ethernet and sent to the client. ...
User’s Manual of WGSD-10020 Series Ports in Authorized and Unauthorized States The switch port state determines whether or not the client is granted access to the network. The port starts in the unauthorized state. While in this state, the port disallows all ingress and egress traffic except for 802.1X protocol packets. When a client is successfully authenticated, the port transitions to the authorized state, allowing all traffic for the client to flow normally.
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description Client The management client for which the configuration below applies. Authentication Method Authentication Method can be set to one of the following values: None: authentication is disabled and login is not possible. local: use the local user database on the switch stack for authentication.
Page 222
User’s Manual of WGSD-10020 Series Figure 4-11-4 Network Access Server Configuration page screenshot The page includes the following fields: System Configuration Object Description Mode Indicates if NAS is globally enabled or disabled on the switch. If globally disabled, all ports are allowed forwarding of frames. ...
Page 223
User’s Manual of WGSD-10020 Series configuration has changed. It does not involve communication between the switch and the client, and therefore doesn't imply that a client is still present on a port. Reauthentication Determines the period, in seconds, after which a connected client must be reauthenticated.
Page 224
User’s Manual of WGSD-10020 Series In MAC-based Auth. mode, the The switch will ignore new frames coming from the client during the hold time. The Hold Time can be set to a number between 10 and 1000000 seconds. RADIUS-Assigned QoS RADIUS-assigned QoS provides a means to centrally control the traffic class to which traffic coming from a successfully authenticated supplicant is assigned on Enabled...
Page 225
User’s Manual of WGSD-10020 Series this setting. The value can only be changed if the Guest VLAN option is globally enabled. Valid values are in the range [1; 255]. Allow Guest VLAN if The switch remembers if an EAPOL frame has been received on the port for the life-time of the port.
Page 226
User’s Manual of WGSD-10020 Series switch's IP address, name, and the supplicant's port number on the switch. EAP is very flexible, in that it allows for different authentication methods, like MD5-Challenge, PEAP, and TLS. The important thing is that the authenticator (the switch) doesn't need to know which authentication method the supplicant and the authentication server are using, or how many information exchange frames are needed for a particular method.
Page 227
User’s Manual of WGSD-10020 Series successfully authenticated. Multi 802.1X In port-based 802.1X authentication, once a supplicant is successfully authenticated on a port, the whole port is opened for network traffic. This allows other clients connected to the port (for instance through a hub) to piggy-back on the successfully authenticated client and get network access even though they really aren't authenticated.
Page 228
User’s Manual of WGSD-10020 Series particular client, using the Port Security module. Only then will frames from the client be forwarded on the switch. There are no EAPOL frames involved in this authentication, and therefore, MAC-based Authentication has nothing to do with the 802.1X standard.
Page 229
User’s Manual of WGSD-10020 Series RADIUS-Assigned When RADIUS-Assigned VLAN is both globally enabled and enabled (checked) for a given port, the switch reacts to VLAN ID information carried in the RADIUS VLAN Enabled Access-Accept packet transmitted by the RADIUS server when a supplicant is successfully authenticated.
Page 230
User’s Manual of WGSD-10020 Series This option is only available for EAPOL-based modes, i.e.: Port-based 802.1X Single 802.1X Multi 802.1X For trouble-shooting VLAN assignments, use the "Monitor→VLANs→VLAN Membership and VLAN Port" pages. These pages show which modules have (temporarily) overridden the current Port VLAN configuration.
Page 231
User’s Manual of WGSD-10020 Series Restart Two buttons are available for each row. The buttons are only enabled when authentication is globally enabled and the port's Admin State is in an EAPOL-based or MAC-based mode. Clicking these buttons will not cause settings changed on the page to take effect. Reauthenticate: Schedules a reauthentication to whenever the quiet-period of the port runs out (EAPOL-based authentication).
User’s Manual of WGSD-10020 Series 4.11.4 Network Access Overview This page provides an overview of the current NAS port states for the selected switch. The Network Access Overview screen in Figure 4-11-5 appears. Figure 4-11-5 Network Access Server Switch Status page screenshot The page includes the following fields: Object Description...
User’s Manual of WGSD-10020 Series Buttons Click to refresh the page immediately. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. 4.11.5 Network Access Statistics This page provides detailed NAS statistics for a specific switch port running EAPOL-based IEEE 802.1X authentication. For MAC-based ports, it shows selected backend server (RADIUS Authentication Server) statistics, only.
Page 234
User’s Manual of WGSD-10020 Series Port Counters Object Description EAPOL Counters These supplicant frame counters are available for the following administrative states: Force Authorized Force Unauthorized Port-based 802.1X Single 802.1X Multi 802.1X Direction Name IEEE Name Description dot1xAuthEapolFrames The number of valid EAPOL Total frames of any type that have been received by the switch.
Page 235
User’s Manual of WGSD-10020 Series which the Packet Body Length field is invalid. dot1xAuthEapolFrames The number of EAPOL Total frames of any type that have been transmitted by the switch. dot1xAuthEapolReqIdFr The number of EAPOL Request ID amesTx Request Identity frames that have been transmitted by the switch.
Page 236
User’s Manual of WGSD-10020 Series table). dot1xAuthBackendOther Other 802.1X-based: RequestsToSupplicant Counts the number of times Requests that the switch sends an EAP Request packet following the first to the supplicant. Indicates that the backend server chose an EAP-method. MAC-based: Not applicable. dot1xAuthBackendAuth Auth.
Page 237
User’s Manual of WGSD-10020 Series packets sent from the switch towards the backend server for a given port (left-most table) or client (right-most table). Possible retransmissions are not counted. Last Supplicant/Client Information about the last supplicant/client that attempted to authenticate. This information is available for the following administrative states: Info Port-based 802.1X...
Page 238
User’s Manual of WGSD-10020 Series MAC-based Auth. The table is identical to and is placed next to the Port Counters table, and will be empty if no MAC address is currently selected. To populate the table, select one of the attached MAC Addresses from the table below.
Page 239
User’s Manual of WGSD-10020 Series Click to clear the counters for the selected port. : This button is available in the following modes: • Multi 802.1X • MAC-based Auth.X Click to clear both the port counters and all of the attached client's counters. The "Last Client" will not be cleared, however.
User’s Manual of WGSD-10020 Series 4.11.6 Authentication Server Configuration This page allows you to configure the Authentication Servers. The Authentication Server Configuration screen in Figure 4-11-7 appears. Figure 4-11-7 Authentication Server Configuration page screenshot The page includes the following fields:...
Page 241
User’s Manual of WGSD-10020 Series Port State These setting are common for all of the Authentication Servers. Object Description Timeout The Timeout, which can be set to a number between 3 and 3600 seconds, is the maximum time to wait for a reply from a server. If the server does not reply within this timeframe, we will consider it to be dead and continue with the next enabled server (if any).
Page 242
User’s Manual of WGSD-10020 Series RADIUS Accounting Server Configuration The table has one row for each RADIUS Accounting Server and a number of columns, which are: Object Description # The RADIUS Accounting Server number for which the configuration below applies.
User’s Manual of WGSD-10020 Series 4.11.7 RADIUS Overview This page provides an overview of the status of the RADIUS servers configurable on the Authentication configuration page. The RADIUS Authentication/Accounting Server Overview screen in Figure 4-11-8 appears. Figure 4-11-8 RADIUS Authentication/Accounting Server Overview page screenshot The page includes the following fields: RADIUS Authentication Servers Object...
User’s Manual of WGSD-10020 Series but will get re-enabled when the dead-time expires. The number of seconds left before this occurs is displayed in parentheses. This state is only reachable when more than one server is enabled. RADIUS Accounting Servers Object Description ...
Page 245
User’s Manual of WGSD-10020 Series Figure 4-11-9 RADIUS Authentication/Accounting for Server Overview page screenshot The page includes the following fields: RADIUS Authentication Servers The statistics map closely to those specified in RFC4668 - RADIUS Authentication Client MIB. Use the server select box to switch between the backend servers to show details for. Object Description ...
Page 246
User’s Manual of WGSD-10020 Series ccessRejects Access-Reject packets (valid or invalid) received from the server. radiusAuthClientExtA The number of RADIUS Access ccessChallenges Access-Challenge packets Challenges (valid or invalid) received from the server. radiusAuthClientExt The number of malformed Malformed MalformedAccessRe RADIUS Access-Response Access sponses packets received from the...
Page 247
User’s Manual of WGSD-10020 Series ccessRequests to the server. This does not Requests include retransmissions. radiusAuthClientExtA The number of RADIUS Access ccessRetransmission Access-Request packets Retransmissio retransmitted to the RADIUS authentication server. radiusAuthClientExtP The number of RADIUS Pending endingRequests Access-Request packets Requests destined for the server that have not yet timed out or...
Page 248
User’s Manual of WGSD-10020 Series up and running, and the RADIUS module is ready to accept access attempts. Dead (X seconds left): Access attempts were made to this server, but it did not reply within the configured timeout. The server has temporarily been disabled, but will get re-enabled when the dead-time expires.
Page 249
User’s Manual of WGSD-10020 Series radiusAcctClientExt The number of RADIUS BadAuthenticators packets containing invalid Authenticators authenticators received from the server. radiusAccClientExt The number of RADIUS Unknown Types UnknownTypes packets of unknown types that were received from the server on the accounting port. radiusAccClientExt The number of RADIUS Packets Dropped...
Page 250
User’s Manual of WGSD-10020 Series different server is counted as a Request as well as a timeout. Other Info This section contains information about the state of the server and the latest round-trip time. Name RFC4670 Name Description Shows the state of the server. It takes one of State the following values: Disabled: The selected server is disabled.
User’s Manual of WGSD-10020 Series 4.11.9 Windows Platform RADIUS Server Configuration Setup the RADIUS server and assign the client IP address to the Managed switch. In this case, field in the default IP Address of the Managed Switch with 192.168.0.100. And also make sure the shared secret key is as same as the one you had set at the Managed Switch’s 802.1x system configuration –...
Page 252
User’s Manual of WGSD-10020 Series Figure 4-11-11 Windows Server – add new RADIUS client setting Assign the client IP address to the Managed switch Figure 4-11-12 Windows Server RADIUS Server setting...
Page 253
User’s Manual of WGSD-10020 Series The shared secret key should be as same as the key configured on the Managed Switch. Figure 4-11-13 Windows Server RADIUS Server setting...
Page 254
User’s Manual of WGSD-10020 Series Configure ports attribute of 802.1X, the same as “802.1X Port Configuration”. Figure 4-11-14 802.1x Port Configuration Create user data. The establishment of the user data needs to be created on the Radius Server PC. For example, the Radius Server founded on Win2003 Server, and then: Figure 4-11-15 Windows 2003 AD server setting path...
Page 255
User’s Manual of WGSD-10020 Series Enter ” Active Directory Users and Computers”, create legal user data, the next, right-click a user what you created to enter properties, and what to be noticed: Figure 4-11-16 Add User Properties screen Figure 4-11-17 Add User Properties screen...
User’s Manual of WGSD-10020 Series Set the Ports Authenticate Status to “Force Authorized” if the port is connected to the RADIUS server or the port is a uplink port that is connected to another switch. Or once the 802.1X stat to work, the switch might not be able to access the RADIUS server.
Page 257
User’s Manual of WGSD-10020 Series Select “Authentication” tab. Select “Enable network access control using IEEE 802.1X” to enable 802.1x authentication. Select “MD-5 Challenge” from the drop-down list box for EAP type. Figure 4-11-19 Click “OK”. When client has associated with the Managed Switch, a user authentication notice appears in system tray. Click on the notice to continue.
Page 258
User’s Manual of WGSD-10020 Series Figure 4-11-20 Windows client popup login request message Enter the user name, password and the logon domain that your account belongs. 10. Click “OK” to complete the validation process. Figure 4-11-21...
User’s Manual of WGSD-10020 Series 4.12 Security This section is to control the access of the Managed Switch, includes the user access and management control. The Security page contains links to the following main topics: Port Limit Control Access Management ...
Page 260
User’s Manual of WGSD-10020 Series Figure 4-12-1 Port Limit Control Configuration Overview page screenshot The page includes the following fields: System Configuration Object Description Mode Indicates if Limit Control is globally enabled or disabled on the switchstack. If globally disabled, other modules may still use the underlying functionality, but limit checks and corresponding actions are disabled.
Page 261
User’s Manual of WGSD-10020 Series To understand why aging may be desired, consider the following scenario: Suppose an end-host is connected to a 3rd party switch or hub, which in turn is connected to a port on this switch on which Limit Control is enabled. The end-host will be allowed to forward if the limit is not exceeded.
User’s Manual of WGSD-10020 Series no new will be learned. Even if the link is physically disconnected and reconnected on the port (by disconnecting the cable), the port will remain shut down. There are three ways to re-open the port: 1) Boot the stack or elect a new masterthe switch, 2) Disable and re-enable Limit Control on the port or the stackswitch, 3) Click the Reopen button.
User’s Manual of WGSD-10020 Series Figure 4-12-3 Access Management Statistics Overview page screenshot The page includes the following fields: Object Description Interface The interface that allowed remote host can access the switch. Receive Packets The received packets number from the interface under access management mode is enabled.
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description Mode Indicates the HTTPS mode operation. Possible modes are: Enabled: Enable HTTPS mode operation. Disabled: Disable HTTPS mode operation. Automatic Redirect Indicates the HTTPS redirect mode operation. Automatic redirect web browser to HTTPS during HTTPS mode enabled.
User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.12.6 Port Security Status This page shows the Port Security status. Port Security is a module with no direct configuration. Configuration comes indirectly from other modules - the user modules.
Page 267
User’s Manual of WGSD-10020 Series Object Description User Module Name The full name of a module that may request Port Security services. Abbr A one-letter abbreviation of the user module. This is used in the Users column in the port status table.
User’s Manual of WGSD-10020 Series 4.12.7 Port Security Detail This page shows the MAC addresses secured by the Port Security module. Port Security is a module with no direct configuration. Configuration comes indirectly from other modules - the user modules. When a user module has enabled port security on a port, the port is set-up for software-based learning.
User’s Manual of WGSD-10020 Series 4.12.8 DHCP Snooping DHCP Snooping is used to block intruder on the untrusted ports of DUT when it tries to intervene by injecting a bogus DHCP reply packet to a legitimate conversation between the DHCP client and server. Configure DHCP Snooping on this page. The DHCP Snooping Configuration screen in Figure 4-12-8 appears.
User’s Manual of WGSD-10020 Series : Click to save changes. Click to undo any changes made locally and revert to previously saved values. 4.12.9 DHCP Snooping Statistics This page provides statistics for DHCP snooping. The statistics only counter packet under DHCP snooping mode is enabled and relay mode is disabled.
User’s Manual of WGSD-10020 Series Rx and Tx Release The number of release (option 53 with value 7) packets received and transmitted. Rx and Tx Inform The number of inform (option 53 with value 8) packets received and transmitted. ...
Page 272
User’s Manual of WGSD-10020 Series Figure 4-12-10 IP Source Guard Configuration screen page screenshot The page includes the following fields: Object Description Mode of IP Source Enable the Global IP Source Guard or disable the Global IP Source Guard. All configured ACEs will be lost when the mode is enabled.
User’s Manual of WGSD-10020 Series 4.12.11 IP Source Guard Static Table This page provides Static IP Source Guard Table. The Static IP Source Guard Table screen in Figure 4-12-11 appears. Figure 4-12-11 Static IP Source Guard Table screen page screenshot The page includes the following fields: Object Description...
Page 274
User’s Manual of WGSD-10020 Series Figure 4-12-12 ARP Inspection Configuration screen page screenshot The page includes the following fields: Object Description Mode of ARP Enable the Global ARP Inspection or disable the Global ARP Inspection. Inspection Configuration Port Mode Specify ARP Inspection is enabled on which ports.
User’s Manual of WGSD-10020 Series 4.12.13 ARP Inspection Static Table This page provides Static ARP Inspection Table. The Static ARP Inspection Table screen in Figure 4-12-13 appears. Figure 4-12-13 Static ARP Inspection Table screen page screenshot The page includes the following fields: Object Description ...
User’s Manual of WGSD-10020 Series 4.13 Address Table Switching of frames is based upon the DMAC address contained in the frame. The Managed Switch builds up a table that maps MAC addresses to switch ports for knowing which ports the frames should go to (based upon the DMAC address in the frame ). This table contains both static and dynamic entries.
Page 277
User’s Manual of WGSD-10020 Series Aging Configuration By default, dynamic entries are removed from the MAC table after 300 seconds. This removal is also called aging. Object Description Disable Automatic Enables/disables the the automatic aging of dynamic entries Aging ...
User’s Manual of WGSD-10020 Series Buttons : Click to add a new entry. : Click to save changes. Click to undo any changes made locally and revert to previously saved values. 4.13.2 MAC Address Table Status Dynamic MAC Table Entries in the MAC Table are shown on this page. The MAC Table contains up to 8192 entries, and is sorted first by VLAN ID, then by MAC address.
User’s Manual of WGSD-10020 Series Object Description Indicates whether the entry is a static or dynamic entry. Type The VLAN ID of the entry. VLAN The MAC address of the entry. MAC address The ports that are members of the entry. Port Members Buttons Auto-refresh...
User’s Manual of WGSD-10020 Series more entries" is shown in the displayed table. Use the “|<<” button to start over. The page includes the following fields: Object Description The port number for which the status applies. Click the port number to see the Port status for this particular port.
Page 281
User’s Manual of WGSD-10020 Series The "Start from port address", "VLAN", "IP address" and "IP mask" input fields allow the user to select the starting point in the Dynamic IP Source Guard Table. Clicking the “Refresh” button will update the displayed table starting from that or the closest next Dynamic IP Source Guard Table match.
User’s Manual of WGSD-10020 Series 4.14 LLDP 4.14.1 Link Layer Discovery Protocol Link Layer Discovery Protocol (LLDP) is used to discover basic information about neighboring devices on the local broadcast domain. LLDP is a Layer 2 protocol that uses periodic broadcasts to advertise information about the sending device. Advertised information is represented in Type Length Value (TLV) format according to the IEEE 802.1ab standard, and can include details such as device identification, capabilities and configuration settings.
Page 283
User’s Manual of WGSD-10020 Series The page includes the following fields: LLDP Parameters Object Description The switch is periodically transmitting LLDP frames to its neighbors for having the Tx Interval network discovery information up-to-date. The interval between each LLDP frame is determined by the Tx Interval value.
Page 284
User’s Manual of WGSD-10020 Series Select LLDP mode. Mode Rx only The switch will not send out LLDP information, but LLDP information from neighbor units is analyzed. Tx only The switch will drop LLDP information received from neighbors, but will send out LLDP information.
User’s Manual of WGSD-10020 Series 4.14.3 LLDPMED Configuration This page allows you to configure the LLDP-MED. The LLDPMED Configuration screen in Figure 4-14-2 appears. Figure 4-14-2 LLDPMED Configuration page screenshot The page includes the following fields: Fast start repeat count Object Description ...
Page 286
User’s Manual of WGSD-10020 Series advertise LLDP-MED TLVs in outgoing LLDPDUs on the associated port. The LLDP-MED application will temporarily speed up the transmission of the LLDPDU to start within a second, when a new LLDP-MED neighbor has been detected in order share LLDP-MED information as fast as possible to new neighbors.
Page 287
User’s Manual of WGSD-10020 Series WGS84: (Geographical 3D) - World Geodesic System 1984, CRS Code 4327, Prime Meridian Name: Greenwich. NAD83/NAVD88: North American Datum 1983, CRS Code 4269, Prime Meridian Name: Greenwich; The associated vertical datum is the North American Vertical Datum of 1988 (NAVD88).
Page 288
User’s Manual of WGSD-10020 Series Building Building (structure) - Example: Low Library Apartment Unit (Apartment, suite) - Example: Apt 42 Floor Floor - Example: 4 Room no. Room number - Example: 450F Place type Place type - Example: Office ...
Page 289
User’s Manual of WGSD-10020 Series 4. Video Conferencing 5. Streaming Video 6. Control / Signaling (conditionally support a separate network policy for the media types above) A large network may support multiple VoIP policies across the entire organization, and different policies per application type. LLDP-MED allows multiple policies to be advertised per port, each corresponding to a different application type.
Page 290
User’s Manual of WGSD-10020 Series Streaming Video - for use by broadcast or multicast based video content distribution and other similar applications supporting streaming video services that require specific network policy treatment. Video applications relying on TCP with buffering would not be an intended use of this application type. Video Signaling (conditional) - for use in network topologies that require a separate policy for the video signaling than for the video media.
User’s Manual of WGSD-10020 Series Buttons : click to add new policy. : Click to save changes. Click to undo any changes made locally and revert to previously saved values. 4.14.4 LLDP-MED Neighbor This page provides a status overview for all LLDP-MED neighbors. The displayed table contains a row for each port on which an LLDP neighbor is detected.
Page 292
User’s Manual of WGSD-10020 Series 4. IEEE 802.11 Wireless Access Point 5. Any device that supports the IEEE 802.1AB and MED extensions defined by TIA-1057 and can relay IEEE 802 frames via any method. LLDP-MED Endpoint Device Definition Within the LLDP-MED Endpoint Device category, the LLDP-MED scheme is broken into further Endpoint Device Classes, as defined in the following.
Page 293
User’s Manual of WGSD-10020 Series communication appliances that directly support the end user. Discovery services defined in this class include provision of location identifier (including ECS / E911 information), embedded L2 switch support, inventory management LLDP-MED LLDP-MED Capabilities describes the neighbor unit's LLDP-MED capabilities. The possible capabilities are: Capabilities 1.
User’s Manual of WGSD-10020 Series Defined: The network policy is defined. TAG TAG is indicating whether the specified application type is using a tagged or an untagged VLAN. Can be Tagged ot Untagged Untagged: The device is using an untagged frame format and as such does not include a tag header as defined by IEEE 802.1Q-2003.
Page 295
User’s Manual of WGSD-10020 Series Remote Port ID The Remote Port ID is the identification of the neighbor port. System Name System Name is the name advertised by the neighbor unit. Port Description Port Description is the port description advertised by the neighbor unit. ...
User’s Manual of WGSD-10020 Series 4.14.6 Port Statistics This page provides an overview of all LLDP traffic. Two types of counters are shown. Global counters are counters that refer to the whole stack, switch, while local counters refers to counters for the currently selected switch. The LLDP Statistics screen in Figure 4-14-5 appears.
User’s Manual of WGSD-10020 Series Object Description The port on which LLDP frames are received or transmitted. Local Port The number of LLDP frames transmitted on the port. Tx Frames The number of LLDP frames received on the port. Rx Frames ...
Page 298
User’s Manual of WGSD-10020 Series This page provides an overview of EEE information exchanged by LLDP. The LLDP Neighbors EEE Information screen in Figure 4-14-6 appears. Figure 4-14-6 LLDP Neighbors EEE Information page screenshot The page includes the following fields: Object Description ...
Page 299
User’s Manual of WGSD-10020 Series The resolved Rx Tw for this link. Note : NOT the link parther Resolved Rx Tw The resolved value that is the actual "tx wakeup time " used for this link (based on EEE information exchanged via LLDP). Buttons : Click to refresh the page immediately.
User’s Manual of WGSD-10020 Series 4.15 Network Diagnostics This section provide the Physical layer and IP layer network diagnostics tools for troubleshoot. The diagnostic tools are designed for network manager to help them quickly diagnose problems between point to point and better service customers. Use the Diagnastics menu items to display and configure basic administrative details of the Managed Switch.
User’s Manual of WGSD-10020 Series Figure 4-15-1 ICMP Ping page screenshot The page includes the following fields: Object Description The destination IP Address. IP Address The payload size of the ICMP packet. Values range from 8 bytes to 1400 bytes. Ping Size Be sure the target IP Address is within the same network subnet of the switch, or you had setup the correct gateway IP address.
User’s Manual of WGSD-10020 Series Object Description The destination IPv6 Address. IPv6 Address The payload size of the ICMPv6 packet. Values range from 8 bytes to 1400 Ping Size bytes. Buttons : Click to transmit ICMP packets. 4.15.3 Remote IP Ping Test This page allows you to issue ICMP PING packets to troubleshoot IP connectivity issues on special port.
User’s Manual of WGSD-10020 Series The destination IP Address. Remote IP Address The payload size of the ICMP packet. Values range from 8 bytes to 1400 bytes. Ping Size Display the ping result. Result 4.15.4 Cable Diagnostics This page is used for running the Cable Diagnostics.
Page 304
User’s Manual of WGSD-10020 Series Port: Port number. Cable Status Pair: The status of the cable pair. Length: The length (in meters) of the cable pair. Buttons : Click to run the diagnostics.
4.16 Power over Ethernet (WGSD-10020HP) Providing up to 8 PoE, in-line power interface, the WGSD-10020HP PoE Switch can easily build a power central-controlled IP phone system, IP Camera system, AP group for the enterprise. For instance, 8 camera / AP can be easily installed around the corner in the company for surveillance demands or build a wireless roaming environment in the office.
User’s Manual of WGSD-10020 Series PoE Splitter PoE Splitter split the PoE 56V DC over the Ethernet cable into 5/12V DC power output. It frees the device deployment from restrictions due to power outlet locations, which eliminate the costs for additional AC wiring and reduces the 3~12 watts installation time.
Page 307
User’s Manual of WGSD-10020 Series In this mode the Maximum Power fields have no effect. Allocation mode In this mode the user allocates the amount of power that each port may reserve. The allocated/reserved power for each port/PD is specified in the Maximum Power fields. The ports are shut down when total reserved powered exceeds the amount of power that the power supply can deliver.
Page 308
: Click to save changes. : Click to undo any changes made locally and revert to previously saved values. For WGSD-10020HP, the total PoE power reservation from Port-1~8 is up to 150W PD Classifications A PD may be classified by the PSE based on the classification information provided by the PD. The intent of PD classification is to provide information about the maximum power required by the PD during operation.
User’s Manual of WGSD-10020 Series Class Usage Range of maximum power used by the PD Class Dsecription Default 0.44 to 12.95 Watts Classification unimplement Optional 0.44 to 3.84 Watts Very low power Optional 3.84 to 6.49 Watts Low power Optional 6.49 to 12.95 Watts (or to 15.4Watts) Mid power Optional...
Page 310
User’s Manual of WGSD-10020 Series class3 level on the 802.3at mode will be reserved the same PoE power with 802.3af mode. Priority The Priority represents PoE ports priority. There are three levels of power priority named Low, High and Critical. The priority is used in the case when total power consumption has been over total power budget.
User’s Manual of WGSD-10020 Series 4.16.4 PoE Status This page allows the user to inspect the total power consumption, total power reserved and current status for all PoE ports. The screen in Figure 4-16-4 appears. Figure 4-16-4 PoE Status screenshot The page includes the following fields: Object Description...
User’s Manual of WGSD-10020 Series Port Status The Port Status shows the port's status. Total Show the total watts usage of all PDs. Buttons Auto-refresh Check this box to enable an automatic refresh of the page at regular intervals. : Click to refresh the page immediately.
Page 313
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description Profile Set the schedule profile mode. Possible porifles are: Profile1 Profile2 Profile3 Profile4 Week Day Allows user to set week day for defining PoE function should be enabled on the day. ...
User’s Manual of WGSD-10020 Series 4.16.6 LLDP PoE Neighbours This page provides a status overview for all LLDP PoE neighbors. The displayed table contains a row for each port on which an LLDP PoE neighbor is detected. The columns hold the following information: The screen in Figure 4-16-6 appears.
WGSD-10020HP PoE switch can be configured to monitor connected PD’s status in real-time via ping action. Once the PD stops working and without response, WGSD-10020HP is going to restart PoE port port power, and bring the PD back to work. It will greatly enhance the reliability and reduces administrator management burden.
Page 316
PD Alive-check is not a defining standard, so the PoE device on the market doesn’t report reboots done information to WGSD-10020HP, so user has to make sure how long the PD will be finished to boot, and then set the time value to this column.
User’s Manual of WGSD-10020 Series 5. COMMAND LINE INTERFACE 5.1 Accessing the CLI When accessing the management interface for the switch over a direct connection to the server’s console port, or via a Telnet connection, the switch can be managed by entering command keywords and parameters at the prompt. Using the switch's command-line interface (CLI) is very similar to entering commands on a UNIX system.
5-2. Figure 5-2 Show IP information screen Configure IP address On “WGSD-10020HP/> ” prompt, enter the following command and press <Enter>. As show in Figure 5-3. WGSD-10020HP/> ip setup 192.168.0.101 255.255.255.0 192.168.0.253 1 The previous command would apply the follow settings for the Switch.
Page 319
User’s Manual of WGSD-10020 Series Figure 5-3 Set IP address screen Repeat Step 1 to check if the IP address is changed. If the IP address is successfully configured, the Managed Switch will apply the new IP address setting immediately. You can access the Web interface of Managed Switch through the new IP address.
User’s Manual of WGSD-10020 Series 5.2 Telnet Login The Managed Switch also supports telnet for remote management. The switch asks for user name and password for remote login when using telnet, please use “admin” for username & password.
User’s Manual of WGSD-10020 Series 6. Command Line Mode The CLI groups all the commands in appropriate modes according to the nature of the command. A sample of the CLI command modes are described below. Each of the command modes supports specific software commands. Command Groups: System System settings and reset options...
: 00:10:55 Software Version: Beta1109061425 Software Date : 2011-09-06 14:27:40 +0800 Previous Restart: Cold WGSD-10020HP:/> System Log Configuration Description: Show system log configuration. Syntax: System Log Configuration Example: To display system log information: WGSD-10020HP:/>System log configuration System Log Configuration: =========================...
WGSD-10020HP:/> System Version Description: Show system version information. Syntax: System Version Example: To display system version: WGSD-10020HP:/>System version Version : Beta1109061425 Build Date : 2011-09-06 14:27:40 +0800 WGSD-10020HP:/> System Log Server Mode Description: Show or set the system log server mode.
User’s Manual of WGSD-10020 Series Example: To show the log server mode: WGSD-10020HP:/>System log server mode System Log Server Mode : Disabled System Name Description: Set or show the system name. Syntax: System Name [<name>] [clear] Parameters: <name>: System name string. (1-255) Use 'clear' or ""...
Parameters: <ip_addr_string>: IP host address (a.b.c.d) or a host name string Default Setting: empty Example: To set log server address: WGSD-10020HP:/> log server address 192.168.0.21 System Location Description: Set or show the system location. Syntax: System Location [<location>] [clear] Parameters: <location>: System location string.
: Send informations, warnings and errors info warning : Send warnings and errors : Send errors error Default Setting: info Example: To set log level: WGSD-10020HP:/> log level warning System Timezone Description: Set or show the system timezone offset. Syntax: System Timezone [<offset>]...
User’s Manual of WGSD-10020 Series Parameters: <offset>: Time zone offset in minutes (-720 to 720) relative to UTC Default Setting: Example: To set timezone: WGSD-10020HP:/>system timezone 0 System Log Lookup Description: Show or clear the system log. Syntax: System Log Lookup [<log_id>] [all|info|warning|error] [clear] Parameters: <log_id>: System log ID or range (default: All entries)
Keep IP configuration, default: Restore full configuration Example: To restore default value but not reset IP address: WGSD-10020HP:/>system restore default keep_ip System Load Description: Show current CPU load: 100ms, 1s and 10s running average (in percent, zero is idle).
Page 329
User’s Manual of WGSD-10020 Series Syntax: System Load Example: To show current CPU load: WGSD-10020HP:/>system load Load average(100ms, 1s, 10s):...
User’s Manual of WGSD-10020 Series 6.2 IP Command IP Configuration Description: Show IP configuration. Syntax: IP Configuration Example: Show IP configuration: WGSD-10020HP:/>ip configuration IP Configuration: ================= DHCP Client : Disabled IP Address : 192.168.0.101 IP Mask : 255.255.255.0 IP Router : 192.168.0.253...
<ip_router>: IP router (a.b.c.d), default: Show IP router : VLAN ID (1-4095), default: Show VLAN ID <vid> Default Setting: IP Address : 192.168.0.100 IP Mask : 255.255.255.0 IP Router : 192.168.0.1 DNS Server : 0.0.0.0 VLAN ID Example: Set IP address: WGSD-10020HP:/>ip setup 192.168.0.100 255.255.255.0...
<ip_addr_string>: IP host address (a.b.c.d) or a host name string : Ping data length (8-1400), excluding MAC, IP and ICMP headers <ping_length> Example: WGSD-10020HP:/>ip ping 192.168.0.21 PING server 192.168.0.21 60 bytes from 192.168.0.21: icmp_seq=0, time=0ms 60 bytes from 192.168.0.21: icmp_seq=1, time=0ms 60 bytes from 192.168.0.21: icmp_seq=2, time=0ms...
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>ip dns 168.95.1.1 IP DNS Proxy Description: Set or show the IP DNS Proxy mode. Syntax: IP DNS_Proxy [enable|disable] Parameters: enable : Enable DNS Proxy disable: Disable DNS Proxy Default Setting: disable Example: Enable DNS proxy function: WGSD-10020HP:/>ip dns_proxy enable...
16-bit groups of contiguous zeros; but it can only appear once. It also used a following legally IPv4 address. For example,'::192.1.2.34'. <ping_length>: Ping data length (8-1400), excluding MAC, IP and ICMP headers Example: WGSD-10020HP:/>ip ipv6 ping 2001::0002 PING6 server 2001::2 68 bytes from 2001::2: icmp_seq=0, time=0ms 68 bytes from 2001::2: icmp_seq=1, time=0ms...
It also used a following legally IPv4 address. For example,'::192.1.2.34'. Example: To add IPv6 NTP server: WGSD-10020HP:/>ip ntp server ipv6 add 1 2001:7b8:3:2c::123 IP NTP Server Delete Description: Delete NTP server entry.
Page 338
User’s Manual of WGSD-10020 Series <server_index>: The server index (1-5) Example: To delete NTP server: WGSD-10020HP:/>ip ntp server delete 1...
<port_list>: Port list or 'all', default: All ports : Show ports, which are up : Show ports, which are down down (default: Show all ports) Example: Display port1~4 status WGSD-10020HP:/>port configuration 1-4 Port Configuration: =================== Port State Mode Flow Control MaxFrame Power Excessive Link...
Port Flow Control [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports : Enable flow control enable : Disable flow control disable (default: Show flow control mode) Default Setting: Disable Example: Enable flow control function for port1 WGSD-10020HP:/>port flow control 1 enable...
: Disable port disable (default: Show administrative mode) Default Setting: Enable Example: Disable port1 WGSD-10020HP:/>port state 1 disable Port Maximum Frame Description: Set or show the port maximum frame size. Syntax: Port MaxFrame [<port_list>] [<max_frame>] Parameters: <port_list>: Port list or 'all', default: All ports <max_frame>: Port maximum frame size (1518-9600), default: Show maximum frame size...
Enable ActiPHY power control dynamic: Enable Dynamic power control Default Setting: disable Example: Disable port power function for port1-4 WGSD-10020HP:/>port power 1-4 enable Port Excessive Description: Set or show the port excessive collision mode. Syntax: Port Excessive [<port_list>] [discard|restart] Parameters: <port_list>: Port list or 'all', default: All ports...
User’s Manual of WGSD-10020 Series Example: WGSD-10020HP:/>port excessive 1 restart Port Statistics Description: Show port statistics. Syntax: Port Statistics [<port_list>] [<command>] [up|down] Parameters: <port_list>: Port list or 'all', default: All ports <command> : The command parameter takes the following values:...
Port SFP Description: Show SFP port information. Syntax: Port SFP [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show SFP information for port21-24 WGSD-10020HP:/>port sfp Port Type Speed Wave Length(nm) Distance(m) ---- -------------- -------- --------------- ----------- 1000Base-LX...
Show MAC address table configuration. Syntax: MAC Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show Mac address state WGSD-10020HP:/>mac configuration MAC Configuration: ================== MAC Address : 00-30-4f-24-04-d1 MAC Age Time: 300 Port Learning ---- --------...
<port_list>: Port list or 'all' or 'none' : VLAN ID (1-4095), default: 1 <vid> Example: Add Mac address 00-30-4F-01-01-02 in port1 and vid1 WGSD-10020HP:/>mac add 00-30-4f-01-01-02 1 1 MAC Delete Description: Delete MAC address entry. Syntax: MAC Delete <mac_addr> [<vid>] Parameters: <mac_addr>: MAC address (xx-xx-xx-xx-xx-xx)
User’s Manual of WGSD-10020 Series Parameters: <mac_addr>: MAC address (xx-xx-xx-xx-xx-xx) : VLAN ID (1-4095), default: 1 <vid> Example: Lookup state of Mac address 00-30-4F-01-01-02 WGSD-10020HP:/>mac lookup 00-30-4f-01-01-02 MAC Age Time Description: Set or show the MAC address age timer. Syntax: MAC Agetime [<age_time>] Parameters: <age_time>: MAC address age time (0,10-1000000) 0=disable,...
Disable learning secure : Secure learning (default: Show learn mode) Default Setting: Auto Example: Set secure learning mode in port1 WGSD-10020HP:/>mac learning 1 secure MAC Dump Description: Show sorted list of MAC address entries. Syntax: MAC Dump [<mac_max>] [<mac_addr>] [<vid>] Parameters: <mac_max>...
Syntax: MAC Statistics [<port_list>] Parameters: <port_list>: Port list or 'all', (default: All ports) Example: Set all of MAC statistics WGSD-10020HP:/>mac statistics Port Dynamic Addresses ---- ----------------- Total Dynamic Addresses: 0 Total Static Addresses : 4 MAC Flush Description: Flush all learned entries.
VLAN Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', (default: All ports) Example: Show VLAN status of port1 WGSD-10020HP:/>vlan configuration 1 VLAN Configuration: =================== Mode : IEEE 802.1Q Port PVID IngrFilter FrameType LinkType Q-in-Q Mode Eth type ---- ---- ---------- ---------- -------- ----------- --------...
<vid>|none : Port VLAN ID (1-4095) or 'none', (default: Show port VLAN ID) Default Setting: Example: Set PVID2 for port10 WGSD-10020HP:/>vlan pvid 10 2 VLAN Frame Type Description: Set or show the port VLAN frame type. Syntax: VLAN FrameType [<port_list>] [all|tagged] Parameters: <port_list>: Port list or 'all', default: All ports...
: VLAN Link Type Untagged tagged (default: Show VLAN link type) Default Setting: Un-tagged Example: Enable tagged frame for port2 WGSD-10020HP:/>vlan linktype 2 tagged VLAN Q-in-Q Mode Description: Set or show the port Q-in-Q mode. Syntax: VLAN QinQ [<port_list>] [disable|man|customer] Parameters: <port_list>: Port list or 'all', default: All ports...
User’s Manual of WGSD-10020 Series Example: Set port2 in man port WGSD-10020HP:/>vlan qinq 2 man VLAN Ethernet Type Description: Set or show out layer VLAN tag ether type in Q-in-Q VLAN mode. Syntax: VLAN Ethtype [<port_list>] [man|dot1q] Parameters: <port_list>: Port list or 'all', default: All ports : Set out layer VLAN tag ether type : MAN : Set out layer VLAN tag ether type : 802.1Q...
Parameters: <vid>|<name>: VLAN ID (1-4095) or VLAN Name <port_list> : Port list or 'all', default: All ports Example: Frobidden add port1 to port4 in VLAN10 WGSD-10020HP:/>vlan forbidden add 10 1-4 VLAN Delete Description: Delete VLAN entry. Syntax: VLAN Delete <vid>|<name>...
<name>: VLAN name - Maximum of 32 characters. VLAN Name can only contain alphabets or numbers. VLAN name should contain atleast one alphabet. <vid> : VLAN ID (1-4095) Example: Add VLAN name for VLAN 1 WGSD-10020HP:/>vlan name add test 1...
<name>: VLAN name - Maximum of 32 characters. VLAN Name can only contain alphabets or numbers. VLAN name should contain atleast one alphabet. Example: Delete VLAN name WGSD-10020HP:/>vlan name delete test VLAN Name Lookup Description: Show VLAN Name table. Syntax: VLAN Name Lookup [<name>]...
<pvlan_id> : Private VLAN ID. The allowed range for a Private VLAN ID is the same as the switch port number range. <port_list>: Port list or 'all', default: All ports Example: Add port1 to port4 in PVLAN10 WGSD-10020HP:/>pvlan add 10 1-4 PVLAN Delete Description: Delete Private VLAN entry.
PVLAN Isolate [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports : Enable port isolation enable : Disable port isolation disable (default: Show port isolation port list) Default Setting: disable Example: Enable isolate for port10 WGSD-10020HP:/>pvlan isolate 10 enable...
Description: Show users configuration. Syntax: Security Switch Users Configuration Default Setting: User Name Privilege admin Example: Show users configuration WGSD-10020HP:/>security switch user configuration Users Configuration: ==================== User Name Privilege Level -------------------------------- ---------------- admin Security Switch User Add Description: Add or modify users entry.
User’s Manual of WGSD-10020 Series Example: Add new user: username: test, password: test & privilege: 10 WGSD-10020HP:/>security switch users add test test 10 Security Switch User Delete Description: Delete users entry. Syntax: Security Switch Users Delete <user_name> Parameters: <user_name>: A string identifying the user name that this entry should belong to. The allowed string length is (1-32). The...
: Enable local authentication if remote authentication fails enable : Disable local authentication if remote authentication fails disable (The parameter is effective when it is typed) Default Setting: disable Example: Use RADIUS authentication method for telnet. WGSD-10020HP:/>security switch auth method telnet radius enable...
: Indicates that the host can access the switch from TELNET/SSH telnet Example: Add access management list from 192.168.0.1 to 192.168.0.200 via web interface. WGSD-10020HP:/>security switch access add 1 192.168.0.1 192.168.0.200 web Security Switch Access IPv6 Add Description: Add access management IPv6 entry, default: Add all supported protocols.
(default: Show SNMP read community) Default Setting: public Example: Set SNMP read community private. WGSD-10020HP:/>security switch snmp read community private Security Switch SNMP Write Community Description: Set or show the community string for SNMP write access. Syntax: Security Switch SNMP Write Community [<community>] Parameters: <community>: Community string.
User’s Manual of WGSD-10020 Series Example: Set public value in SNMP write community. WGSD-10020HP:/>security switch snmp write community public Security Switch SNMP Trap Mode Description: Set or show the SNMP trap mode. Syntax: Security Switch SNMP Trap Mode [enable|disable] Parameters:...
User’s Manual of WGSD-10020 Series Default Setting: Example: Set SNMP trap version in version 2c. WGSD-10020HP:/>security switch snmp trap version 2c Security Switch SNMP Trap Community Description: Set or show the community string for SNMP traps. Syntax: Security Switch SNMP Trap Community [<community>] Parameters: <community>: Community string.
16-bit groups of contiguous zeros; but it can only appear once. It also used a following legally IPv4 address. For example,'::192.1.2.34'. Example: Set SNMP trap IPv6 destination address for 2001::0001 WGSD-10020HP:/>security switch snmp trap ipv6 destination 2001::0001 Security Switch SNMP Trap Authentication Failure Description: Set or show the SNMP authentication failure trap mode.
<engineid>: Engine ID, the format may not be all zeros or all 'ff'H and is restricted to 5 - 32 octet string Example: Set the SNMP trap security engine ID WGSD-10020HP:/>security switch snmp trap security engine id 800007e5017f000011 Security Switch SNMP Trap Security Name Description: Set or show SNMP trap security name.
<ip_addr> : IP address (a.b.c.d), default: Show IP address <ip_mask> : IP subnet mask (a.b.c.d), default: Show IP mask Example: Add SNMPv3 community entry. WGSD-10020HP:/>security switch snmp community add public 192.168.0.20 255.255.255.0 Security Switch SNMP Community Delete Description: Delete SNMPv3 community entry.
User’s Manual of WGSD-10020 Series Example: Delete SNMPv3 community entry WGSD-10020HP:/>security switch snmp community delete 3 Security Switch SNMP Community Lookup Description: Lookup SNMPv3 community entry. Syntax: Security Switch SNMP Community Lookup [<index>] Parameters: <index>: entry index (1-64) Example: Lookup SNMPv3 community entry WGSD-10020HP:/>security switch snmp community lookup...
<priv_password>: A string identifying the privacy pass phrase. The allowed string length is (8-40), and the allowed content is ASCII characters from 33 to 126 Example: Add SNMPv3 user entry WGSD-10020HP:/>security switch snmp user add 800007e5017f000003 admin_snmpv3 md5 12345678 des abcdefgh Security Switch SNMP User Delete Description: Delete SNMPv3 user entry.
<priv_password>: A string identifying the privacy pass phrase. The allowed string length is (8-40), and the allowed content is ASCII characters from 33 to 126 Example: Delete SNMPv3 user entry WGSD-10020HP:/>security switch snmp user changekey 800007e5017f000003 admin_snmpv3 87654321 12345678 Security Switch SNMP User Lookup Description: Lookup SNMPv3 user entry.
: A string identifying the group name that this entry should belong to. The allowed string length is <group_name> (1-32), and the allowed content is ASCII characters from 33 to 126 Example: Add SNMPv3 group entry WGSD-10020HP:/>security switch snmp group add usm admin_snmpv3 group_snmpv3 Security Switch SNMP Group Delete Description: Delete SNMPv3 group entry. Syntax: Security Switch SNMP Group Delete <index>...
Lookup SNMPv3 group entry. Syntax: Security Switch SNMP Group Lookup [<index>] Parameters: <index>: entry index (1-64) Example: Lookup SNMPv3 group entry WGSD-10020HP:/>security switch snmp group lookup Idx Model Security Name Group Name --- ----- -------------------------------- -------------------------------- public default_ro_group private default_rw_group...
The name of "None" is reserved. The allowed string length is (1-32), and the allowed content is ASCII characters from 33 to 126 Example: Add SNMPv3 access entry WGSD-10020HP:/>security switch snmp access add group_snmpv3 usm authpriv snmpv3_view snmpv3_view Security Switch SNMP Access Delete Description:...
User’s Manual of WGSD-10020 Series Security Network Psec Switch [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show port security status. WGSD-10020HP:/>security network psec switch Users: L = Limit Control 8 = 802.1X D = DHCP Snooping V = Voice VLAN...
User’s Manual of WGSD-10020 Series Show MAC address learned on port 1 WGSD-10020HP:/>security network psec port 1 Port 1: ------- MAC Address State Added Age/Hold Time ----------------- ---- ---------- ------------------------- ------------- <none> Security Network Limit Configuration Description: Show Limit Control configuration.
: Globally disable port security (default: Show current global enabledness of port security limit control) Default Setting: disable Example: Enable the limit mode WGSD-10020HP:/>security network limit mode enable Security Network Limit Aging Description: Set or show aging enabledness. Syntax: Security Network Limit Aging [enable|disable]...
(default: Show current enabledness of aging) Default Setting: disable Example: Enable limit aging WGSD-10020HP:/>security network limit aging enable Security Network Limit Agetime Description: Time in seconds between check for activity on learned MAC addresses. Syntax: Security Network Limit Agetime [<age_time>] Parameters: <age_time>: Time in seconds between checks for activity on a MAC address (10-10000000 seconds)
Default Setting: disable Example: Enable port limit for port 1 WGSD-10020HP:/>security network limit port 1 enable Security Network Limit Limit Description: Set or show the max. number of MAC addresses that can be learned on this set of ports. Syntax: Security Network Limit Limit [<port_list>] [<limit>]...
(default: Show current action) Default Setting: none Example: Set trap mode for limit action for port 1 WGSD-10020HP:/>security network limit action 1 trap Security Network Limit Reopen Description: Reopen one or more ports whose limit is exceeded and shut down. Syntax: Security Network Limit Reopen [<port_list>]...
Show 802.1X configuration. Syntax: Security Network NAS Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show 802.1X configuration of port 1 WGSD-10020HP:/>security network nas configuration 1 802.1X Configuration: ===================== Mode : Disabled Reauth. : Disabled Reauth. Period...
Globally disable 802.1X (default: Show current 802.1X global enabledness) Default Setting: disable Example: Enable IEEE802.1X function WGSD-10020HP:/>security network nas mode enable Security Network NAS State Description: Set or show the port security state. Syntax: Security Network NAS State [<port_list>] [auto|authorized|unauthorized|single|multi|macbased] Parameters: <port_list>: Port list or 'all', default: All ports...
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>security network nas state 1 Port Admin State Port State Last Source Last ID ---- ------------------ --------------------- ----------------- ------------------ Force Authorized Globally Disabled Security Network NAS Reauthentication Description: Set or show Reauthentication enabledness. Syntax: Security Network NAS Reauthentication [enable|disable]...
Disable RADIUS-assigned VLAN either globally or on one or more ports (default: Show current RADIUS-assigned VLAN enabledness) Default Setting: disable Example: Enable RADIUS-assigned VLAN. WGSD-10020HP:/>security network nas radius_vlan enable Security Network NAS EapolTimeout Description: Set or show the time between EAPOL retransmissions. Syntax: Security Network NAS EapolTimeout [<eapol_timeout>] Parameters: <eapol_timeout>: Time between EAPOL retransmissions (1-65535 seconds)
<age_time>: Time between checks for activitiy on a MAC address that succeeded autentication (default: Show current age time) Default Setting: Example: Set NAS age time in 1000sec WGSD-10020HP:/>security network nas agetime 1000 Security Network NAS Holdtime Description: Time in seconds before a MAC-address that failed authentication gets a new authentication chance. Syntax: Security Network NAS Holdtime [<hold_time>]...
(default: Show current RADIUS-assigned QoS enabledness) Default Setting: disable Example: Enable NAS RADIUS QoS WGSD-10020HP:/>security network nas radius_qos enable Security Network NAS RADIUS_VLAN Description: Set or show either global enabledness (use the global keyword) or per-port enabledness of RADIUS-assigned VLAN. Syntax: Security Network NAS RADIUS_VLAN [global|<port_list>] [enable|disable]...
:The Guest VLAN can be entered even if an EAPOL frame has been received during the lifetime of the port (default: Show current setting) Default Setting: disable Example: Enable NAS guest VLAN WGSD-10020HP:/>security network nas guest_vlan enable Security Network NAS Authenticate Description: Refresh (restart) 802.1X authentication process.
Parameters: <port_list>: Port list or 'all', default: All ports now: Force reauthentication immediately Example: Start NAS authentication now for port 1. WGSD-10020HP:/>security network nas authenticate 1 now Security Network NAS Statistics Description: Show or clear 802.1X statistics. Syntax: Security Network NAS Statistics [<port_list>] [clear|eapol|radius] Parameters: <port_list>: Port list or 'all', default: All ports...
User’s Manual of WGSD-10020 Series Port 1 Backend Server Statistics: Rx Access Challenges: Tx Responses: Rx Other Requests: Rx Auth. Successes: Rx Auth. Failures: Security Network ACL Configuration Description: Show ACL Configuration. Syntax: Security Network ACL Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Security Network ACL Action Description: Set or show the ACL port default action.
<rate> Default Setting: Example: Set rate limit value in 100 for port 1 WGSD-10020HP:/>security network acl rate 1 100 Security Network ACL Add Description: Add or modify Access Control Entry (ACE). If the ACE ID parameter <ace_id> is specified and an entry with this ACE ID already exists, the ACE will be modified.
User’s Manual of WGSD-10020 Series : Policy number (1-8) <policy> : Tagged of frames: any|enable|disable <tagged> : VLAN ID (1-4095) or 'any' <vid> : VLAN tag priority (0-7) or 'any' <tag_prio> : DMAC type: any|unicast|multicast|broadcast <dmac_type> : Ethernet Type keyword etype : Ethernet Type: 0x600 - 0xFFFF or 'any' but excluding, <etype>...
Default Setting: disable Example: Enable DHCP relay agent information option mode. WGSD-10020HP:/>security network dhcp relay information mode enable Security Network DHCP Relay Information Policy Description: Set or show the DHCP relay mode. When enable DHCP relay information mode operation, if agent receive a DHCP message that already contains relay...
(default: Show DHCP relay information policy) Default Setting: replace Example: Keep the original relay information when receive a DHCP message that already contains it WGSD-10020HP:/>security network dhcp relay information policy keep Security Network DHCP Relay Statistics Description: Show or clear DHCP relay statistics. Syntax:...
(default: Show flow DHCP snooping mode) Default Setting: disable Example: Enable DHCP snooping mode WGSD-10020HP:/>security network dhcp snooping mode enable Security Network DHCP Snooping Port Mode Description: Set or show the DHCP snooping port mode. Syntax: Security Network DHCP Snooping Port Mode [<port_list>] [trusted|untrusted] Parameters: <port_list>: Port list or 'all', default: All ports...
User’s Manual of WGSD-10020 Series Default Setting: trusted Example: Set untrusted DHCP snooping port mode in port 1 WGSD-10020HP:/>security network dhcp snooping port mode 1 untrusted Security Network DHCP Snooping Statistics Description: Show or clear DHCP snooping statistics. Syntax: Security Network DHCP Snooping Statistics [<port_list>] [clear] Parameters: <port_list>: Port list or 'all', default: All ports...
Disable IP Source Guard Default Setting: disable Example: Enable IP source guard mode WGSD-10020HP:/>security network ip source guard mode enable Security Network IP Source Guard Port Mode Description: Set or show the IP Source Guard port mode. Syntax: Security Network IP Source Guard Port Mode [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
Default Setting: disable Example: Enable IP source guard port mode for port1~4 WGSD-10020HP:/>security network ip source guard port mode 1-4 enable Security Network IP Source Guard Limit Description: Set or show the IP Source Guard port limitation for dynamic entries.
<allowed_mac>: MAC address (xx-xx-xx-xx-xx-xx), MAC address allowed for doing IP source guard Example: Add IP source guard static entry. WGSD-10020HP:/>security network ip source guard entry 1 add 1 192.168.0.20 Security Network IP Source Guard Status Description: Show IP source guard static and dynamic entries.
Disable ARP Inspection Default Setting: disable Example: Enable ARP inspection mode WGSD-10020HP:/>security network arp inspection mode enable Security Network ARP Inspection Port Mode Description: Set or show the ARP Inspection port mode. Syntax: Security Network ARP Inspection Port Mode [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
User’s Manual of WGSD-10020 Series Show ARP inspection static and dynamic entries. WGSD-10020HP:/>security network arp inspection status Security AAA Configuration Description: Show Auth configuration. Syntax: Security AAA Configuration Example: Show Auth configuration. WGSD-10020HP:/>security aaa configuration AAA Configuration: ================== Server Timeout...
Security AAA Timeout Description: Set or show server timeout. Syntax: Security AAA Timeout [<timeout>] Parameters: <timeout>: Server response timeout (3-3600 seconds) (default: Show server timeout configuration) Default Setting: Example: Set 30sec for server timeout WGSD-10020HP:/>security aaa timeout 30 Security AAA Deadtime Description:...
<dead_time>: Time that a server is considered dead if it doesn't answer a request (0-3600 seconds) (default: Show server dead time configuration) Default Setting: Example: Set 1000sec for server dead time WGSD-10020HP:/>security aaa deadtime 1000 Security AAA RADIUS Description: Set or show RADIUS authentication server setup. Syntax: Security AAA RADIUS [<server_index>] [enable|disable] [<ip_addr_string>] [<secret>] [<server_port>]...
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>security aaa radius 1 enable 192.168.0.20 12345678 1812 Security AAA ACCT_RADIUS Description: Set or show RADIUS accounting server setup. Syntax: Security AAA ACCT_RADIUS [<server_index>] [enable|disable] [<ip_addr_string>] [<secret>] [<server_port>] Parameters: The server index (1-5) (default: Show RADIUS accounting server configuration)
Quotes in the secret are not allowed. : Server TCP port. Use 0 to use the default TACACS+ port (49) <server_port> Example: Set TACACS+ authentication server configuration. WGSD-10020HP:/>security aaa tacacs+ 1 enable 192.168.0.20 12345678 49 Security AAA Statistics Description: Show RADIUS statistics. Syntax: Security AAA Statistics [<server_index>]...
User’s Manual of WGSD-10020 Series Example: Set the STP Bridge protocol version. WGSD-10020HP:/> stp version rstp STP Tx Hold Description: Set or show the STP Bridge Transmit Hold Count parameter. Syntax: STP Txhold [<holdcount>] Parameters: <holdcount>: STP Transmit Hold Count (1-10)
User’s Manual of WGSD-10020 Series Example: Set STP maximum hops in 25 WGSD-10020HP:/>stp maxhops 25 STP MaxAge Description: Set or show the bridge instance maximum age. Syntax: STP MaxAge [<max_age>] Parameters: <max_age>: STP maximum age time (6-40, and max_age <= (forward_delay-1)*2)
: Integer value <integer> Default Setting: Configuration name: MAC address Configuration rev.: 0 Example: Set MSTP configuration name and revision. WGSD-10020HP:/>stp cname 9f_WGSD-10020 1 STP BPDU Filter Description: Set or show edge port BPDU Filtering. Syntax: STP bpduFilter [enable|disable] Parameters:...
User’s Manual of WGSD-10020 Series Example: Set edge port BPDU filtering WGSD-10020HP:/>stp bpdufilter enable STP BPDU Guard Description: Set or show edge port BPDU Guard. Syntax: STP bpduGuard [enable|disable] Parameters: enable|disable: enable or disable BPDU Guard for Edge ports Default Setting:...
User’s Manual of WGSD-10020 Series Example: Set STP recovery value in 30 sec. WGSD-10020HP:/>stp recovery 30 STP Status Description: Show STP Bridge status. Syntax: STP Status [<msti>] [<port_list>] Parameters: : STP bridge instance no (0-7, CIST=0, MSTI1=1, ...) <msti> <port_list>: Port list or 'all', default: All ports...
STP Msti Add <msti> <vid> Parameters: <msti>: STP bridge instance no (0-7, CIST=0, MSTI1=1, ...) <vid> : VLAN ID (1-4095) Example: Add MST1 in vlan1. WGSD-10020HP:/>stp msti add 1 1 STP Port Configuration Description: Show STP Port configuration. Syntax: STP Port Configuration [<port_list>] Parameters: <port_list>: Port list or 'all'.
Enable : Disable MSTP protocol Disable Default: disable Example: Enable STP function on port1 WGSD-10020HP:/>stp port mode 1 enable STP Port Edge Description: Set or show the STP adminEdge port parameter. Syntax: STP Port Edge [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>stp port edge 1 enable STP Port AutoEdge Description: Set or show the STP autoEdge port parameter. Syntax: STP Port AutoEdge [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports : Enable MSTP autoEdge...
User’s Manual of WGSD-10020 Series Default: auto Example: Disable STP P2P function on port1 WGSD-10020HP:/>stp port p2p 1 disable STP Port RestrictedRole Description: Set or show the MSTP restrictedRole port parameter. Syntax: STP Port RestrictedRole [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
: Disable MSTP restricted TCN disable Default: disable Example: Eisable STP restricted TCN on port1 WGSD-10020HP:/>stp port restrictedtcn 1 enable STP Port bpduGuard Description: Set or show the bpduGuard port parameter. Syntax: STP Port bpduGuard [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
STP Port Mcheck [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Set the STP mCheck (Migration Check) variable for port 1. WGSD-10020HP:/>stp port mcheck 1 STP MSTI Port Configuration Description: Show the STP port instance configuration. Syntax: STP Msti Port Configuration [<msti>] [<port_list>]...
<port_list>: Port list or 'all'. Port zero means aggregations. <path_cost>: STP port path cost (1-200000000) or 'auto' Default: auto Example: Set MSTI7 in port1 WGSD-10020HP:/>stp msti port cost 7 1 MSTI Port Path Cost ---- ---- ---------- MST7 1 Auto...
Page 443
User’s Manual of WGSD-10020 Series <priority> : STP port priority (0/16/32/48/.../224/240) Default:...
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>aggr delete 2 Aggregation Lookup Description: Lookup link aggregation. Syntax: Aggr Lookup [<aggr_id>] Parameters: <aggr_id>: Aggregation ID Aggregation Mode Description: Set or show the link aggregation traffic distribution mode. Syntax: Aggr Mode [smac|dmac|ip|port] [enable|disable] Parameters:...
Page 446
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>Aggr mode smac disable...
LACP Configuration Description: Show LACP configuration. Syntax: LACP Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show LACP configuration WGSD-10020HP:/>lacp configuration Port Mode Role ---- -------- ---- ------ Disabled Auto Active Disabled Auto Active Disabled Auto Active...
: Enable LACP protocol disable: Disable LACP protocol (default: Show LACP mode) Default Setting: disable Example: Enable LACP for port1~4 WGSD-10020HP:/>lacp mode 1-4 enable LACP Key Description: Set or show the LACP key. Syntax: LACP Key [<port_list>] [<key>] Parameters: <port_list>: Port list or 'all', default: All ports...
: Initiate LACP negotiation passive: Listen for LACP packets (default: Show LACP role) Default Setting: active Example: Set passive for port1~4 WGSD-10020HP:/>lacp role 1-4 passive LACP Status Description: Show LACP Status. Syntax: LACP Status [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports...
Description: Show LLDP configuration. Syntax: LLDP Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show LLDP configuration of port1~4 WGSD-10020HP:/>lldp configuration 1-4 LLDP Configuration: =================== Interval : 30 Hold Tx Delay Reinit Delay: 2 Port Mode...
User’s Manual of WGSD-10020 Series System capabilities: Enable Master's IP address: Enable Example: Disable description of the port for port1 WGSD-10020HP:/>lldp optional_tlv 1 port_descr disable LLDP Interval Description: Set or show LLDP Tx interval. Syntax: LLDP Interval [<interval>] Parameters: <interval>: LLDP transmission interval (5-32768)
User’s Manual of WGSD-10020 Series Example: Set LLDP hold value in 10 WGSD-10020HP:/>lldp hold 10 LLDP Delay Description: Set or show LLDP Tx delay. Syntax: LLDP Delay [<delay>] Parameters: <delay>: LLDP transmission delay (1-8192) Default Setting: Example: Set LLDP delay value in 1 WGSD-10020HP:/>lldp delay 1...
User’s Manual of WGSD-10020 Series Example: Set LLDP reinit delay value in 3 WGSD-10020HP:/>lldp reinit 3 LLDP Statistics Description: Show LLDP Statistics. Syntax: LLDP Statistics [<port_list>] [clear] Parameters: <port_list>: Port list or 'all', default: All ports : Clear LLDP statistics...
User’s Manual of WGSD-10020 Series LLDP Info Description: Show LLDP neighbor device information. Syntax: LLDP Info [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports...
Show LLDP-MED configuration. Syntax: LLDPMED Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show LLDP-MED configuration of port1~4 WGSD-10020HP:/>lldpmed configuration 1-4 LLDP-MED Configuration: ======================= Fast Start Repeast Count : 4 Location Coordinates : Latitude - 0.0000 North Longitude - 0.0000 East...
User’s Manual of WGSD-10020 Series Syntax: LLDPMED Civic [country|state|county|city|district|block|street|leading_street_direction|trailing_street_suffix|str_suf|house_no|house_no_s uffix|landmark|additional_info|name|zip_code|building|apartment|floor|room_number|place_type|postal_com_name|p_o_ box|additional_code] [<civic_value>] Parameters: : Country country : National subdivisions (state, caton, region, province, prefecture) state : County, parish,gun (JP), district(IN) county : City, townchip, shi (JP) city : City division,borough, city, district, ward,chou (JP) district : Neighborhood, block block...
Delete the selected policy. Syntax: LLDPMED policy delete [<policy_list>] Parameters: <policy_list>: List of policies to delete Example: Delete the policy 1 WGSD-10020HP:/>lldpmed policy delete 1 LLDPMED Policy Add Description: Adds a policy to the list of polices. Syntax: LLDPMED policy add [voice|voice_signaling|guest_voice|guest_voice_signaling|softphone_voice|video_conferencing|streaming_video|video_si gnaling] [tagged|untagged] [<vlan_id>] [<l2_priority>] [<dscp>]...
User’s Manual of WGSD-10020 Series visitors with their own IP Telephony handsets and other similar appliances supporting interactive voice services. guest_voice_signaling : Guest Voice Signaling (conditional) for use in network topologies that require a different policy for the guest voice signaling than for the guest voice media. : Softphone Voice for use by softphone applications on typical data centric devices, such as softphone_voice PCs or laptops.
User’s Manual of WGSD-10020 Series LLDPMED Coordinates Description: Set or show LLDP-MED Location. Syntax: LLDPMED Coordinates [latitude|longitude|altitude] [north|south|west|east|meters|floor] [coordinate_value] Parameters: : Latitude, 0 to 90 degress with max. 4 digits (Positive numbers are north of the equator and negative latitude numbers are south of the equator).
User’s Manual of WGSD-10020 Series LLDPMED Fast Description: Set or show LLDP-MED Fast Start Repeat Count. Syntax: LLDPMED Fast [<count>] Parameters: <count>: The number of times the fast start LLDPDU are being sent during the activation of the fast start mechanism defined by LLDP-MED (1-10).
Description: Show eee configuration. Syntax: EEE Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show EEE configuration of port1~4 WGSD-10020HP:/>eee configuration 1-4 EEE Configuration: ================== Port Mode Urgent queues ---- ------- ------------- Disabled none Disabled none...
(default: Show PoE's mode) Default Setting: enable Example: Disable PoE function of port1~4 WGSD-10020HP:/>poe mode1-4 disable AF/AT Mode Description: Allows user to set up 802.3af (type1) or 802.3at (type2) mode to per port. Syntax: PoE mode [<port_list>] [af|at] Parameters: <port_list>: Port list or 'all', default: All ports...
User’s Manual of WGSD-10020 Series Example: Set low priority for port1~4 WGSD-10020HP:/>poe priority 1-4 low PoE Mamagement Mode Description: Show / Set PoE management mode. Syntax: PoE Mgmt_mode [mgt_class|mgt_alloc|mgt_consumption|mgt_priority] PoE Maximum Power Description: Set or show PoE maximum power per port (0-30.8, with one digit).
<alloc_power>: PoE maiximum power allocated for the port ( 0-30.8 ) Default Setting: 30.8 Example: Set PoE maximum power allocated in 10 watts for port1~4. WGSD-10020HP:/>poe alloc_power 1-4 10 PoE Power Supply Description: Set or show the value of the power supply. Syntax: PoE Power_Supply [<supply_power>]...
Thermal prio_temp [<prio_list>] [<shut_down_temp>] Parameters: : List of priorities (0-3) <prio_list> <shut_down_temp>: Temperature at which ports shall be shut down (0-255 degree C) Example: Show thermal priority temperature. WGSD-10020HP:/> Thermal prio_temp Priority Temp. --------- ----- 255 C 255 C 255 C 255 C...
Parameters: <port_list>: Port list or 'all', default: All ports : Priority (0-3) <prio> Default Setting: Example: Set thermal port priority in 2 WGSD-10020HP:/> Thermal port_prio 2 Thermal Status Description: Shows the chip temperature. Syntax: Thermal status Example: Shows the chip temperature.
: The hour (0-24) at which to change LEDs intensity <hour> <intensity>: The LED intensity in % (0-100) Example: Show the time and intensity for the LEDs. WGSD-10020HP:/> led_power timer Time Intensity ---- --------- 00:00 20% LED Power Delete Timer Description: Deletes a timer.
User’s Manual of WGSD-10020 Series LED Power Maintenance Description: Set or show the maintenance settings. Syntax: led_power maintenance [<maintenance_time>] [on_at_errors|leave_at_errors] Parameters: : Time in seconds (0-65535) that the LEDs shall be turned on, when any port changes <maintenance_time> link state on_at_errors|leave_at_errors: on_at_error if LEDs shall be turned on if any errors has been detected.
Set or show the default QoS class. Syntax: QoS Port Classification Class [<port_list>] [<class>] Parameters: <port_list>: Port list or 'all', default: All ports : QoS class (0-7) <class> Default Setting: Example: Set default QoS class in 1 for port 1 WGSD-10020HP:/>qos Port Classification Class 1 1...
: Drop Precedence Level (0-1) <dpl> Default Setting: Example: Set the default Drop Precedence Level in 1 for port1 WGSD-10020HP:/>qos Port Classification dpl 1 1 QoS Port Classification PCP Description: Set or show the default PCP for an untagged frame. Syntax: QoS Port Classification PCP [<port_list>] [<pcp>]...
Default Setting: Example: Set the default DEI for an untagged frame in 1 for port1. WGSD-10020HP:/>qos Port Classification dei 1 1 QoS Port Classification Tag Description: Set or show if the classification is based on the PCP and DEI values in tagged frames.
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>qos Port Classification tag 1-10 enable QoS Port Classification Map Description: Set or show the port classification map. This map is used when port classification tag is enabled,and the purpose is to translate the Priority Code Point (PCP) and Drop Eligible Indicator (DEI) from a tagged frame to QoS class and DP level.
User’s Manual of WGSD-10020 Series Example: Enable QoS port classification DSCP. WGSD-10020HP:/>qos Port Classification dscp 1-10 enable QoS Port Policer Mode Description: Set or show the port policer mode Syntax: QoS Port Policer Mode [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
User’s Manual of WGSD-10020 Series Default Setting: Example: Set the port policer rate in 1000 WGSD-10020HP:/>qos Port Policer Rate 1-10 1000 QoS Port Policer Unit Description: Set or show the port policer unit. Syntax: QoS Port Policer Unit [<port_list>] [kbps|fps] Parameters: <port_list>: Port list or 'all', default: All ports...
(default: Show port scheduler mode) Default Setting: strict Example: Set the port schedule mode in weighted mode WGSD-10020HP:/>qos Port Scheduler Mode 1-10 weighted QoS Port Scheduler Weight Description: Set or show the port scheduler weight. Syntax: QoS Port Scheduler Weight [<port_list>] [<queue_list>] [<weight>] Parameters: <port_list>...
(default: Show port queue shaper mode) Default Setting: disable Example: Enable port queue shaper for all port & queue WGSD-10020HP:/>qos Port QueueShaper Mode 1-10 0-7 enable QoS Port QueueShaper Rate Description: Set or show the port queue shaper rate. Syntax: QoS Port QueueShaper Rate [<port_list>] [<queue_list>] [<bit_rate>]...
(default: Show port queue excess bandwidth mode) Default Setting: disable Example: Enable the port queue excess bandwidth mode. WGSD-10020HP:/>qos Port QueueShaper Excess 1-10 0-7 enable QoS Port Shaper Mode Description: Set or show the port shaper mode. Syntax: QoS Port Shaper Mode [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
<bit_rate> : Rate in kilo bits per second (100-3300000) Default Setting: 500kbps Example: Set the port shaper rate in 1000. WGSD-10020HP:/>qos Port Shaper Rate 1-10 1000 QoS Port TagRemarking Mode Description: Set or show the port tag remarking mode. Syntax: QoS Port TagRemarking Mode [<port_list>] [classified|default|mapped]...
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>qos Port TagRemarking Mode 1-10 mapped QoS Port TagRemarking PCP Description: Set or show the default PCP. This value is used when port tag remarking mode is set to 'default'. Syntax: QoS Port TagRemarking PCP [<port_list>] [<pcp>] Parameters: <port_list>: Port list or 'all', default: All ports...
User’s Manual of WGSD-10020 Series Set the default EDI in 1. WGSD-10020HP:/>qos Port TagRemarking EDI 1-10 1 QoS Port TagRemarking Map Description: Set or show the port tag remarking map. This map is used when port tag remarking mode is set to 'mapped', and the purpose is to translate the classified QoS class (0-7) and DP level (0-1) to PCP and DEI.
(default: Show port DSCP ingress classification mode) Default Setting: none Example: Set DSCP classification based on QoS class and DP level in zero WGSD-10020HP:/> QoS Port DSCP Classification 1-10 zero QoS Port DSCP EgressRemark Description: Set or show the port DSCP remarking mode. Syntax: QoS Port DSCP EgressRemark [<port_list>] [disable|enable|remap_dp_unaware|remap_dp_aware]...
Default Setting: disable Example: Enable DSCP egress rewrite WGSD-10020HP:/> QoS Port DSCP EgressRemark 1-10 enable QoS DSCP Map Description: Set or show DSCP mapping table. This table is used to map QoS class and DP level based on DSCP value.
User’s Manual of WGSD-10020 Series Parameters: <dscp_list> : DSCP (0-63, BE, CS1-CS7, EF or AF11-AF43) list or 'all' (default: Show DSCP translation table) <trans_dscp>: Translated DSCP: 0-63, BE, CS1-CS7, EF or AF11-AF43 QoS DSCP Trust Description: Set or show trusted DSCP value which is used for QoS classification. The DSCP value to be checked for trust is either translated value ifDSCP translation is enabled for the ingress port or incoming frame DSCPvalue if translation is disabled for the port.
Default Setting: disable Example: Enable multicast storm control in 2fps WGSD-10020HP:/> QoS Storm multicast enable 2 QoS QCL Add Description: Add or modify QoS Control Entry (QCE). If the QCE ID parameter <qce_id> is specified and an entry with this QCE ID already exists, the QCE will be modified.
User’s Manual of WGSD-10020 Series : Next QCE ID: "next_id (1-256) or 'last'" <qce_id_next> : Port List: "port <port_list> or 'all'", default: All ports <port_list> : Frame tag: untag|tag|any <tag> : VID: 1-4095 or 'any', either a specific VID or range of VIDs <vid>...
User’s Manual of WGSD-10020 Series <qce_id>: QCE ID (1-256), default: Next available ID Default Setting: disable Example: Enable multicast storm control in 2fps WGSD-10020HP:/> QoS Storm multicast enable 2 QoS QCL Lookup Description: Lookup QoS Control List. Syntax: QoS QCL Lookup [<qce_id>] Parameters: <qce_id>: QCE ID (1-256), default: Next available ID...
: Shows the static user configured status static : Shows the status by Voice VLAN voice_vlan : Shows all conflict status conflicts (default : Shows the combined status) Default Setting: disable Example: Enable multicast storm control in 2fps WGSD-10020HP:/> QoS Storm multicast enable 2...
Show mirror configuration. WGSD-10020HP:/>mirror configuration Mirror Port Description: Set or show the mirror port. Syntax: Mirror Port [<port>|disable] Parameters: <port>|disable: Mirror port or 'disable', default: Show port Default Setting: disable Example: Set port 2 for the mirror port. WGSD-10020HP:/>mirror port 2...
<port_list>: Port list or 'all', default: All ports enable : Enable Rx and Tx mirroring disable: Disable Mirroring : Enable Rx mirroring : Enable Tx mirroring (default: Show mirror mode) Default Setting: disable Example: Enable the mirror mode for port 1-4. WGSD-10020HP:/>mirror mode 1-4 enable...
User’s Manual of WGSD-10020 Series 6.19 Configuration Command Configuration Save Description: Save configuration to TFTP server. Syntax: Config Save <ip_server> <file_name> Parameters: <ip_server>: TFTP server IP address (a.b.c.d) <file_name>: Configuration file name Configuration Load Description: Load configuration from TFTP server. Syntax: Config Load <ip_server>...
User’s Manual of WGSD-10020 Series 6.20 Firmware Command Firmware Load Description: Load new firmware from TFTP server. Syntax: Firmware Load <ip_addr_string> <file_name> Parameters: <ip_addr_string>: IP host address (a.b.c.d) or a host name string : Firmware file name <file_name> Firmware IPv6 Load Description: Load new firmware from IPv6 TFTP server.
Page 497
User’s Manual of WGSD-10020 Series Activate the alternate firmware image.. Syntax: Firmware Swap...
WGSD-10020HP:/>upnp ttl 10 UPnP Advertising Duration Description: Set or show UPnP Advertising Duration. Syntax: UPnP Advertising Duration [<duration>] Parameters: <duration>: duration range (100..86400), default: Show UPnP duration range Default Setting: Example: Set value 1000 for UPnP Advertising Duration. WGSD-10020HP:/>upnp advertising duration 1000...
: Disable MVR mode disable (default: Show MVR mode) Default Setting: disable Example: Enable the MVR port mode for port 1-4. WGSD-10020HP:/>mvr port mode 1-4 enable MVR Multicast VLAN Description: Set or show MVR multicast VLAN ID. Syntax: MVR Multicast VLAN [<vid>] Parameters: <vid>: VLAN ID (1-4095), default: Show current MVR multicast VLAN ID...
(default: Show MVR port type) Default Setting: receive Example: Set source type for MVR port type of port 1. WGSD-10020HP:/>mvr port type 1 source MVR Immediate Leave Description: Set or show MVR port state about immediate leave. Syntax: MVR Immediate Leave [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
Voice VLAN ID [<vid>] Parameters: <vid>: VLAN ID (1-4095) Default Setting: 1000 Example: Set ID 2 for Voice VLAN ID. WGSD-10020HP:/>voice vlan id 2 Voice VLAN Agetime Description: Set or show Voice VLAN age time. Syntax: Voice VLAN Agetime [<age_time>] Parameters: <age_time>: MAC address age time (10-10000000) default: Show age time...
: OUI address (xx-xx-xx). The null OUI address isn't allowed <oui_addr> <description>: Entry description. Use 'clear' or "" to clear the string No blank or space characters are permitted as part of a contact. (only in CLI) Example: Add Voice VLAN OUI entry. WGSD-10020HP:/>voice vlan oui add 00-11-22 test...
Example: Set auto mode for port 1-4 of Voice VLAN port mode. WGSD-10020HP:/>voice vlan port mode 1-4 auto Voice VLAN Security Description: Set or show the Voice VLAN port security mode. When the function is enabled, all non-telephone MAC address in Voice VLAN will be blocked 10 seconds.
Page 510
<port_list>: Port list or 'all', default: All ports enable : Enable Voice VLAN security mode. disable: Disable Voice VLAN security mode (default: Show flow Voice VLAN security mode) Default Setting: disable Example: Enable the Voice VLAN port security mode for port 1-4. WGSD-10020HP:/>voice vlan security 1-4 enable...
Disable MLD fast leave (default: Show IPMC fast leave mode) Default Setting: disable Example: Enable IGMP fast leave for all port WGSD-10020HP:/>ipmc fastleave igmp 1-10 enable IPMC Throttling Description: Set or show the IPMC port throttling status. Syntax: IPMC Throttling [mld|igmp] [<port_list>] [limit_group_number]...
(default: Show IPMC Port Throttling) Default Setting: Unlimited Example: Set the max. learn 10 groups for ICMP port throttling WGSD-10020HP:/>ipmc throttling igmp 1-10 10 IPMC Filtering Description: Set or show the IPMC port group filtering list. Syntax: IPMC Filtering [mld|igmp] [<port_list>] [add|del] [group_addr]...
: Enable IPMC router port disable : Disable IPMC router port (default: Show IPMC router port mode) Example: Enable port 1 in IPMC router port WGSD-10020HP:/>ipmc riuter igmp 1 enable IPMC Status Description: Show IPMC operational status, accordingly. Syntax: IPMC Status [mld|igmp] [<vid>]...
: IPMC for IPv6 MLD igmp: IPMC for IPv4 IGMP : VLAN ID (1-4095) or 'any', default: Show all VLANs <vid> Example: Show VLAN 1 IPMC group addresses, accordingly. WGSD-10020HP:/>ipmc groups igmp 1 IPMC Version Description: Show IPMC Versions. Syntax: IPMC Version [mld|igmp] [<vid>]...
: VLAN ID (1-4095) or 'any', default: Show all VLANs <vid> <port_list>: Port list or 'all', default: All ports Example: Show VLAN 1 & port 1-10 SSM related information for IPMC. WGSD-10020HP:/>ipmcssm igmp 1 1-10 IPMC Parameter RV Description: Set or show the IPMC Robustness Variable. Syntax: IPMC Parameter RV [mld|igmp] [<vid>] [ipmc_param_rv]...
User’s Manual of WGSD-10020 Series igmp: IPMC for IPv4 IGMP : VLAN ID (1-4095) or 'any', default: Show all VLANs <vid> ipmc_param_qi: : Default Value (125) 1~31744 : Query Interval in seconds (default: Show IPMC Interface Query Interval IPMC Parameter QRI Description: Set or show the IPMC Query Response Interval.
User’s Manual of WGSD-10020 Series : VLAN ID (1-4095) or 'any', default: Show all VLANs <vid> ipmc_param_llqi: : Default Value (10) 0~31744 : Last Listener Query Interval in tenths of seconds (default: Show IPMC Interface Last Listener Query Interval IPMC Parameter URI Description: Set or show the IPMC Unsolicited Report Interval.
: VLAN ID (1-4095) <vid> <port_list>: Port list or 'all', default: All ports Example: Add 00-11-22-33-44-55-66 in VLAN 20 for all port WGSD-10020HP:/>vcl macvlan add 00-11-22-33-44-55-66 20 1-10 VCL MAC-based VLAN Delete Description: Delete VCL MAC-based VLAN entry. Syntax: VCL Macvlan Del <mac_addr>...
User’s Manual of WGSD-10020 Series Example: Delete 00-11-22-33-44-55-66 in MAC-based VLAN list WGSD-10020HP:/> vcl macvlan del 00-11-22-33-44-55-66 VCL Stasus Description: Show VCL MAC-based VLAN users configuration. Syntax: VCL Status [combined|static|nas|all] Parameters: combined|static|nas|all: VCL User VCL Protocol-based VLAN Add Ethernet II Description: Add VCL protocol-based VLAN Ethernet-II protocol to group mapping.
User’s Manual of WGSD-10020 Series : PID value (0x0-0xFFFF). If OUI is 00-00-00, valid range of PID is from 0x0600-0xFFFF. <pid> : Protocol group ID <group_id> VCL Protocol-based VLAN Add LLC Description: Add VCL protocol-based VLAN LLC protocol to group mapping. Syntax: VCL ProtoVlan Protocol Add Llc <dsap>...
User’s Manual of WGSD-10020 Series : PID value (0x0-0xFFFF). If OUI is 00-00-00, valid range of PID is from 0x0600-0xFFFF. <pid> VCL Protocol-based VLAN Delete LLC Description: Delete VCL protocol-based VLAN LLC protocol to group mapping. Syntax: VCL ProtoVlan Protocol Delete Llc <dsap> <ssap> Parameters: <dsap>: DSAP value (0x00-0xFF) <ssap>: SSAP value (0x00-0xFF)
User’s Manual of WGSD-10020 Series <group_id> : Protocol group ID VCL Protocol-based VLAN Configuration Description: Show VCL protocol-based VLAN entries. Syntax: VCL ProtoVlan Conf...
User’s Manual of WGSD-10020 Series 7. SWITCH OPERATION 7.1 Address Table The Switch is implemented with an address table. This address table composed of many entries. Each entry is used to store the address information of some node in network, including MAC address, port no, etc. This in-formation comes from the learning process of Ethernet Switch.
User’s Manual of WGSD-10020 Series 7.5 Auto-Negotiation The STP ports on the Switch have built-in "Auto-negotiation". This technology automatically sets the best possible bandwidth when a connection is established with another network device (usually at Power On or Reset). This is done by detect the modes and speeds at the second of both device is connected and capable of, both 10Base-T and 100Base-TX devices can connect with the port in either Half- or Full-Duplex mode.
User’s Manual of WGSD-10020 Series 8. POWER OVER ETHERNET OVERVIEW What is PoE? Based on the global standard IEEE 802.3af, PoE is a technology for wired Ethernet, the most widely installed local area network technology adopted today. PoE allows the electrical power necessary for the operation of each end-device to be carried by data cables rather than by separate power cords.
Page 530
User’s Manual of WGSD-10020 Series Figure 8-1 - Power Supplied over the Spare Pins The data pairs are used. Since Ethernet pairs are transformer coupled at each end, it is possible to apply DC power to the center tap of the isolation transformer without upsetting the data transfer. In this mode of operation the pair on pins 3 and 6 and the pair on pins 1 and 2 can be of either polarity.
User’s Manual of WGSD-10020 Series References: IEEE Std 802.3af-2003 (Amendment to IEEE Std 802.3-2002, including IEEE Std 802.3ae-2002), 2003 Page(s):0_1-121 White Paper on Power over Ethernet (IEEE802.3af) http://www.poweroverethernet.com/articles.php?article_id=52 Microsemi /PowerDsine http://www.microsemi.com/PowerDsine/ Linear Tech http://www.linear.com/ The PoE Provision Process While adding PoE support to networked devices is relatively painless, it should be realized that power cannot simply be transferred over existing CAT-5 cables.
User’s Manual of WGSD-10020 Series Classification Once a PD is detected, the PSE may optionally perform classification, to determine the maximal power a PD is to consume. The PSE induces 15.5-20.5 VDC, limited to 100 mA, for a period of 10 to 75 ms responded by a certain current consumption by the PD, indicating its power class.
Page 533
User’s Manual of WGSD-10020 Series DC Disconnect DC Disconnect detection involves measurement of current. Naturally, a disconnected PD stops consuming current, which can be inspected by the PSE. The PSE must therefore disconnect power within 300 to 400 ms from the current flow stop. The lower time boundary is important to prevent shutdown due to random fluctuations.
User’s Manual of WGSD-10020 Series 9. TROUBLE SHOOTING This chapter contains information to help you solve problems. If the Ethernet Switch is not functioning properly, make sure the Ethernet Switch was set up according to instructions in this manual. ■ The Link LED is not lit Solution: Check the cable connection and remove duplex mode of the Ethernet Switch ■...
Page 535
User’s Manual of WGSD-10020 Series If that device works, refer to the next step. If that device does not work, check the AC power While IP Address be changed or forgotten admin password – To reset the IP address to the default IP Address “192.168.0.100” or reset the password to default value. Press the hardware reset button at the front panel about 10 seconds.
User’s Manual of WGSD-10020 Series APPENDEX A A.1 Switch's RJ-45 Pin Assignments 1000Mbps, 1000Base T Contact MDI-X BI_DA+ BI_DB+ BI_DA- BI_DB- BI_DB+ BI_DA+ BI_DC+ BI_DD+ BI_DC- BI_DD- BI_DB- BI_DA- BI_DD+ BI_DC+ BI_DD- BI_DC- Implicit implementation of the crossover function within a twisted-pair cable, or at a wiring panel, while not expressly forbidden, is beyond the scope of this standard.
Page 537
User’s Manual of WGSD-10020 Series The standard cable, RJ-45 pin assignment The standard RJ-45 receptacle/connector There are 8 wires on a standard UTP/STP cable and each wire is color-coded. The following shows the pin allocation and color of straight cable and crossover cable connection: Straight Cable SIDE 1 SIDE2...
User’s Manual of WGSD-10020 Series APPENDEX B : GLOSSARY ACE is an acronym for Access Control Entry. It describes access permission associated with a particular ACE ID. There are three ACE frame types (Ethernet Type, ARP, and IPv4) and two ACE actions (permit and deny). The ACE also contains many detailed, different parameter options that are available for individual application.
Page 539
User’s Manual of WGSD-10020 Series ranging from 1-1024K packets per seconds. Under "Ports" and "Access Control List" web-pages you can assign a Rate Limiter ID to the ACE(s) or ingress port(s). AES is an acronym for Advanced Encryption Standard. The encryption key protocol is applied in 802.1i standard to improve WLAN security.
Page 540
User’s Manual of WGSD-10020 Series CCM is an acronym for Continuity Check Message. It is a OAM frame transmitted from a MEP to it's peer MEP and used to implement CC functionality. CDP is an acronym for Cisco Discovery Protocol. DEI is an acronym for Drop Eligible Indicator.
Page 541
User’s Manual of WGSD-10020 Series The DHCP option 82 enables a DHCP relay agent to insert specific information into a DHCP request packets when forwarding client DHCP packets to a DHCP server and remove the specific information from a DHCP reply packets when forwarding server DHCP packets to a DHCP client.
Page 542
User’s Manual of WGSD-10020 Series EPS is an abbreviation for Ethernet Protection Switching defined in ITU/T G.8031. Ethernet Type Ethernet Type, or EtherType, is a field in the Ethernet MAC header, defined by the Ethernet networking standard. It is used to indicate which protocol is being transported in an Ethernet frame. FTP is an acronym for File Transfer Protocol.
Page 543
User’s Manual of WGSD-10020 Series HTTPS is really just the use of Netscape's Secure Socket Layer (SSL) as a sublayer under its regular HTTP application layering. (HTTPS uses port 443 instead of HTTP port 80 in its interactions with the lower layer, TCP/IP.) SSL uses a 40-bit key size for the RC4 stream encryption algorithm, which is considered an adequate degree of encryption for commercial exchange.
Page 544
User’s Manual of WGSD-10020 Series IP is an acronym for Internet Protocol. It is a protocol used for communicating data across a internet network. IP is a "best effort" system, which means that no packet of information sent over it is assured to reach its destination in the same condition it was sent.
Page 545
User’s Manual of WGSD-10020 Series LLDP-MED LLDP-MED is an extendsion of IEEE 802.1ab and is defined by the telecommunication industry association (TIA-1057). LOC is an acronym for Loss Of Connectivity and is detected by a MEP and is indicating lost connectivity in the network. Can be used as a switch criteria by EPS MAC Table Switching of frames is based upon the DMAC address contained in the frame.
Page 546
User’s Manual of WGSD-10020 Series Multicast VLAN Registration (MVR) is a protocol for Layer 2 (IP)-networks that enables multicast-traffic from a source VLAN to be shared with subscriber-VLANs. The main reason for using MVR is to save bandwidth by preventing duplicate multicast streams being sent in the core network, instead the stream(s) are received on the MVR-VLAN and forwarded to the VLANs where hosts have requested it/them(Wikipedia).
Page 547
User’s Manual of WGSD-10020 Series It is a protocol described in ITU-T Y.1731 used to implement carrier ethernet functionality. MEP functionality like CC and RDI is based on this. Optional TLVs. A LLDP frame contains multiple TLVs For some TLVs it is configurable if the switch shall include the TLV in the LLDP frame. These TLVs are known as optional TLVs.
Page 548
User’s Manual of WGSD-10020 Series Power Over Ethernet is used to transmit electrical power, to remote devices over standard Ethernet cable. It could for example be used for powering IP telephones, wireless LAN access points and other equipment, where it would be difficult or expensive to connect the equipment to main power supply.
Page 549
User’s Manual of WGSD-10020 Series There are six QCE frame types: Ethernet Type, VLAN, UDP/TCP Port, DSCP, TOS, and Tag Priority. Frames can be classified by one of 4 different QoS classes: "Low", "Normal", "Medium", and "High" for individual application. QCL is an acronym for QoS Control List.
Page 550
User’s Manual of WGSD-10020 Series RSTP In 1998, the IEEE with document 802.1w introduced an evolution of STP: the Rapid Spanning Tree Protocol, which provides for faster spanning tree convergence after a topology change. Standard IEEE 802.1D-2004 now incorporates RSTP and obsoletes STP, while at the same time being backwards-compatible with STP. SAMBA Samba is a program running under UNIX-like operating systems that provides seamless integration between UNIX and Microsoft Windows machines.
Page 551
User’s Manual of WGSD-10020 Series SNTP SNTP is an acronym for Simple Network Time Protocol, a network protocol for synchronizing the clocks of computer systems. SNTP uses UDP (datagrams) as transport layer. SPROUT Stack Protocol using ROUting Technology. An advanced protocol for almost instantaneous discovery of topology changes within a stack as well as election of a master switch.
Page 552
User’s Manual of WGSD-10020 Series Tag Priority Tag Priority is a 3-bit field storing the priority level for the 802.1Q frame. TCP is an acronym for Transmission Control Protocol. It is a communications protocol that uses the Internet Protocol (IP) to exchange the messages between computers. The TCP protocol guarantees reliable and in-order delivery of data from sender to receiver and distinguishes data for multiple connections by concurrent applications (for example, Web server and e-mail server) running on the same host.
Page 553
User’s Manual of WGSD-10020 Series TKIP TKIP is an acronym for Temporal Key Integrity Protocol. It used in WPA to replace WEP with a new encryption algorithm. TKIP comprises the same encryption engine and RC4 algorithm defined for WEP. The key used for encryption in TKIP is 128 bits and changes the key used for each packet.
Page 554
User’s Manual of WGSD-10020 Series VLAN aware switching: This is based on the IEEE 802.1Q standard. All ports are VLAN aware. Ports connected to VLAN aware switches are members of multiple VLANs and transmit tagged frames. Other ports are members of one VLAN, set up with this Port VLAN ID, and transmit untagged frames.
Page 555
User’s Manual of WGSD-10020 Series 'pre-shared key' (PSK) mode, where every allowed computer is given the same passphrase. In PSK mode, security depends on the strength and secrecy of the passphrase. The design of WPA is based on a Draft 3 of the IEEE 802.11i standard (Wikipedia) WPA-Radius WPA-Radius is an acronym for Wi-Fi Protected Access - Radius (802.1X authentication server).