Page 2: Fcc Warning
User’s Manual of WGSD-10020 Series Trademarks Copyright © PLANET Technology Corp. 2012. Contents subject to which revision without prior notice. PLANET is a registered trademark of PLANET Technology Corp. All other trademarks belong to their respective owners. Disclaimer PLANET Technology does not warrant that the hardware will work properly in all environments and applications, and makes no warranty and representation, either implied or expressed, with respect to the quality, performance, merchantability, or fitness for a particular purpose.
Page 3: Table Of Contents
User’s Manual of WGSD-10020 Series TABLE OF CONETNTS 1. INTRODUTION ........................20 1.1 Packet Contents ............................20 1.2 Product Description ...........................20 1.3 How to Use This Manual ..........................22 1.4 Product Features............................23 1.5 Product Specification ..........................26 2. INSTALLATION ........................29 2.1 Hardware Description ..........................29 2.1.1 Switch Front Panel ..............................29 2.1.2 LED Indications ..............................30 2.1.3 Switch Rear Panel ...............................32...
Page 4 User’s Manual of WGSD-10020 Series 4.2.5 Privilege Levels ..............................55 4.2.6 NTP Configuration ...............................57 4.2.7 UPnP ...................................58 4.2.8 DHCP Relay ................................59 4.2.9 DHCP Relay Statistics ............................61 4.2.10 CPU Load ................................63 4.2.11 System Log ................................64 4.2.12 Detailed Log ..............................65 4.2.13 Remote Syslog ..............................66 4.2.14 LED Power Reduction ............................67 4.2.15 EEE Power Reduction ............................68 4.2.16 Thermal Protection ............................69...
Page 5 User’s Manual of WGSD-10020 Series 4.5.4 LACP Port Status...............................105 4.5.5 LACP Port Statistics............................106 4.6 VLAN................................107 4.6.1 VLAN Overview ..............................107 4.6.2 IEEE 802.1Q VLAN ............................108 4.6.3 VLAN Basic Information............................. 111 4.6.4 VLAN Port Configuration ........................... 112 4.6.5 VLAN Membership ............................116 4.6.6 VLAN Membership Status..........................
Page 6 User’s Manual of WGSD-10020 Series 4.8.9 MLD Snooping VLAN Configuration ........................166 4.8.10 MLD Snooping Port Group Filtering.........................167 4.8.11 MLD Snooping Status ............................168 4.8.12 MLD Group Information ...........................170 4.8.13 MLDv2 Information ............................170 4.8.14 MVR.................................171 4.8.15 MVR Status..............................173 4.8.16 MVR Groups Information ..........................174 4.9 Quality of Service .............................175 4.9.1 Understand QOS ...............................175 4.9.2 Port Policing ..............................176...
Page 7 User’s Manual of WGSD-10020 Series 4.11.4 Network Access Overview ..........................232 4.11.5 Network Access Statistics ..........................233 4.11.6 Authentication Server Configuration.........................240 4.11.7 RADIUS Overview ............................243 4.11.8 RADIUS Details ...............................244 4.11.9 Windows Platform RADIUS Server Configuration....................251 4.11.10 802.1X Client Configuration ...........................256 4.12 Security ..............................259 4.12.1 Port Limit Control .............................259 4.12.2 Access Management ............................262 4.12.3 Access Management Statistics ........................263...
Page 8 User’s Manual of WGSD-10020 Series 4.15.4 Cable Diagnostics............................303 4.16 Power over Ethernet (WGSD-10020HP) ....................305 4.16.1 Power over Ethernet Powered Device ......................305 4.16.2 Power Configuration ............................306 4.16.3 Port Configuration............................309 4.16.4 PoE Status............................... 311 4.16.5 PoE Schedule..............................312 4.16.6 LLDP PoE Neighbours.............................314 4.16.7 PD Alvie-check ..............................315 5.
Page 9 User’s Manual of WGSD-10020 Series IP DNS Proxy ..............................333 IPv6 AUTOCINFIG ..............................333 IPv6 Setup................................334 IPv6 Ping ................................335 IP NTP Configuration............................335 IP NTP Mode ...............................336 IP NTP Server Add ..............................336 IP NTP Server IPv6 Add ............................337 IP NTP Server Delete ............................337 6.3 Port Management Command........................339 Port Configuration ...............................339 Port Mode................................339...
Page 10 User’s Manual of WGSD-10020 Series VLAN Add................................354 VLAN Forbidden Add............................355 VLAN Delete................................355 VLAN Forbidden Delete............................356 VLAN Forbidden Lookup .............................356 VLAN Lookup ..............................356 VLAN Name Add ..............................357 VLAN Name Delete .............................358 VLAN Name Lookup............................358 VLAN Status ................................359 6.6 Private VLAN Configuration Command ....................360 PVLAN Configuration ............................360 PVLAN Add .................................361 PVLAN Delete ..............................361...
Page 11 User’s Manual of WGSD-10020 Series Security Switch Access Statistics ........................375 Security Switch SNMP Configuration ........................375 Security Switch SNMP Mode..........................376 Security Switch SNMP Version..........................376 Security Switch SNMP Read Community ......................377 Security Switch SNMP Write Community ......................377 Security Switch SNMP Trap Mode........................378 Security Switch SNMP Trap Version........................378 Security Switch SNMP Trap Community ......................379 Security Switch SNMP Trap Destination......................379...
Page 12 User’s Manual of WGSD-10020 Series Security Network Limit Aging..........................396 Security Network Limit Agetime...........................397 Security Network Limit Port ..........................397 Security Network Limit Limit ..........................398 Security Network Limit Action ..........................398 Security Network Limit Reopen ...........................399 Security Network NAS Configuration........................400 Security Network NAS Mode ..........................400 Security Network NAS State..........................401 Security Network NAS Reauthentication ......................402 Security Network NAS ReauthPeriod ........................402...
Page 13 User’s Manual of WGSD-10020 Series Security Network IP Source Guard Port Mode ....................419 Security Network IP Source Guard Limit ......................420 Security Network IP Source Guard Entry ......................420 Security Network IP Source Guard Status......................421 Security Network ARP Inspection Configuration....................421 Security Network ARP Inspection Mode ......................422 Security Network ARP Inspection Port Mode ......................422 Security Network ARP Inspection Entry.......................423 Security Network ARP Inspection Status ......................423...
Page 14 User’s Manual of WGSD-10020 Series STP Port Mcheck..............................441 STP MSTI Port Configuration ..........................441 STP MSTI Port Cost ............................442 STP MSTI Port Priority ............................442 6.9 Link Aggregation Command ........................444 Aggregation Configuration...........................444 Aggregation Add..............................444 Aggregation Delete..............................444 Aggregation Lookup ............................445 Aggregation Mode ...............................445 6.10 Link Aggregation Control Protocol Command..................447 LACP Configuration.............................447 LACP Mode .................................447...
Page 15 User’s Manual of WGSD-10020 Series 6.13 EEE Command............................463 EEE Configuration...............................463 EEE Mode ................................463 EEE Urgent Queues ............................464 6.14 Power over Ethernet Command......................465 PoE Configuration ...............................465 PoE Mode................................465 AF/AT Mode.................................466 PoE Priority .................................466 PoE Mamagement Mode.............................467 PoE Maximum Power ............................467 PoE Allocated Power ............................467 PoE Power Supply ..............................468 PoE Status................................468 6.15 Thermal Command..........................469...
Page 16 User’s Manual of WGSD-10020 Series QoS Port QueueShaper Mode ..........................479 QoS Port QueueShaper Rate..........................480 QoS Port QueueShaper Excess..........................480 QoS Port Shaper Mode ............................481 QoS Port Shaper Rate ............................482 QoS Port TagRemarking Mode..........................482 QoS Port TagRemarking PCP ..........................483 QoS Port TagRemarking DEI..........................483 QoS Port TagRemarking Map..........................484 QoS Port DSCP Translation ..........................484 QoS Port DSCP Classification..........................485...
Page 17 User’s Manual of WGSD-10020 Series UPnP Mode .................................498 UPnP TTL................................499 UPnP Advertising Duration ..........................499 6.22 MVR Command............................500 MVR Configuration ..............................500 MVR Group .................................500 MVR Status .................................501 MVR Mode ................................501 MVR Port Mode..............................501 MVR Multicast VLAN ............................502 MVR Port Type ..............................502 MVR Immediate Leave ............................503 6.23 Voice VLAN Command...........................504 Voice VLAN Configuration ...........................504...
Page 18 User’s Manual of WGSD-10020 Series IPMC SSM................................518 IPMC Parameter RV............................519 IPMC Parameter QI.............................519 IPMC Parameter QRI ............................520 IPMC Parameter LLQI ............................520 IPMC Parameter URI ............................521 6.25 VLAN Control List Command........................522 VCL MAC-based VLAN Configuration .........................522 VCL MAC-based VLAN Add ..........................522 VCL MAC-based VLAN Delete ..........................522 VCL Stasus................................523 VCL Protocol-based VLAN Add Ethernet II ......................523...
Page 19 User’s Manual of WGSD-10020 Series Power Disconnection Scenarios ..........................532 9. TROUBLE SHOOTING...................... 534 APPENDEX A ........................536 A.1 Switch's RJ-45 Pin Assignments ......................536 A.2 10/100Mbps, 10/100Base-TX ........................536 APPENDEX B : GLOSSARY....................538...
Page 20: Introdution
8-Port 10/100/1000Mbps + 2 100/1000X SFP Managed Ethernet Switch WGSD-10020 8-Port 10/100/1000Mbps PoE Plus + 2 100/1000X SFP Managed Ethernet Switch WGSD-10020HP Terms of “Managed Switch” means the Switches mentioned titled in the cover page of this User’s manual, i.e. WGSD series Managed Switch.
Page 21 User’s Manual of WGSD-10020 Series High-Performance, Cost-effective Gigabit solution for backbone of SMB The PLANET WGSD-10020 series is the Layer 2 Managed Gigabit Switch which can handle extremely large amounts of data in a secure topology linking to an Enterprise backbone or high capacity network server with 20Gbps switching fabric. The powerful features of QoS and network security make WGSD-10020 series Switch to offer effective data traffic control for ISPs and Enterprises, such as VoIP, video streaming and multicast applications.
Page 22: How To Use This Manual
550 meters (Multi-Mode fiber) up to above 10/50/70/120 kilometers (Single-Mode fiber or WDM fiber). They are well suited for applications within the enterprise data centers and distributions. Centralized Power Management for Gigabit Ethernet PoE Networking (WGSD-10020HP Only) To fulfill the needs of higher power required PoE network applications with Gigabit speed transmission, PLANET introduces new member –...
Page 23: Product Features
8-Port 10/100/1000Base-T Gigabit Ethernet RJ-45  2 100/1000Base-X SFP slots  RS-232 DB9 console interface for Switch basic management and setup WGSD-10020HP  8-Port 10/100/1000Base-T Gigabit Ethernet RJ-45 with IEEE 802.3af / 802.3at PoE Injector  2 100/1000Base-X SFP slots ...
Page 24 User’s Manual of WGSD-10020 Series  Quality of Service ■ Ingress Shaper and Egress Rate Limit per port bandwidth control ■ 8 priority queues on all switch ports ■ Traffic classification: IEEE 802.1p CoS TOS / DSCP / IP Precedence of IPv4/IPv6 packets IP TCP/UDP port number Typical network application ■...
Page 25 ■ Reset button for system reboot or reset to factory default ■ PLANET Smart Discovery Utility for deploy management ■ ICMPv6  (WGSD-10020HP Only) Power over Ethernet ■ Complies with IEEE 802.3af Power over Ethernet End-Span PSE ■ Complies with IEEE 802.3at high-power Power over Ethernet End-Span PSE ■...
Page 26: Product Specification
User’s Manual of WGSD-10020 Series 1.5 Product Specification Product WGSD-10020 WGSD-10020HP Hardware Specification 8 10/ 100/1000Base-T RJ-45 Auto-MDI/MDI-X ports Copper Ports 2 1000Base-SX/LX/BX SFP interfaces (Port-9 and Port-10) SFP/mini-GBIC Slots Compatible with 100Base-FX SFP 1 x RS-232 DB9 serial port (115200, 8, N, 1)
Page 27 User’s Manual of WGSD-10020 Series SSH, SSL, SNMP v3 Secure Management Interface Port disable/enable. Auto-negotiation 10/100/1000Mbps full and half duplex mode selection. Flow Control disable / enable. Port configuration Bandwidth control on each port. Power saving mode control Display each port’s speed duplex mode, link status, Flow control status. Port Status Auto negotiation status, trunk status.
Page 28 User’s Manual of WGSD-10020 Series RFC-2737 Entity MIB RFC-2618 RADIUS Client MIB RFC-2933 IGMP-STD-MIB RFC3411 SNMP-Frameworks-MIB IEEE 802.1X PAE LLDP MAU-MIB Standards Conformance FCC Part 15 Class A, CE Regulation Compliance IEEE 802.3 10Base-T IEEE 802.3u 100Base-TX/100Base-FX IEEE 802.3z Gigabit SX/LX IEEE 802.3ab Gigabit 1000T IEEE 802.3x Flow Control and Back pressure IEEE 802.3ad Port trunk with LACP...
Page 29: Installation
Managed Switches. WGSD-10020 Front Panel Figure 2-1 WGSD-10020 front panel. WGSD-10020HP Front Panel Figure 2-2 WGSD-10020HP front panel. ■ Gigabit TP interface 10/100/1000Base-T Copper, RJ-45 Twist-Pair: Up to 100 meters. ■ SFP slots 100/1000Base-X mini-GBIC slot, SFP (Small Factor Pluggable) transceiver module: From 550 meters (Multi-mode fiber), up to 10/30/50/70/120 kilometers (Single-mode fiber).
Page 30: Led Indications
User’s Manual of WGSD-10020 Series Reset Button Pressed and Released Function < 5 sec: System reboot Reboot the Managed Switch Reset the Managed Switch to Factory Default configuration. The Managed Switch will then reboot and load the default settings as below: Default Username: admin 。...
Page 31 Lights to indicate the link through that port is successfully established. Green Blink: indicate that the switch is actively sending or receiving data over that port. WGSD-10020HP LED indication Figure 2-4 WGSD-10020HP LED panel System Color Function Lights to indicate that the fan is fail.
Page 32: Switch Rear Panel
WGSD-10020 Rear Panel Figure 2-5 Rear panel of WGSD-10020 WGSD-10020HP Rear Panel Figure 2-6 Rear panel of WGSD-10020HP ■ AC Power Receptacle For compatibility with electric service in most areas of the world, the Managed Switch’s power supply automatically adjusts to line power in the range 100-240VAC and 50/60 Hz.
Page 33: Install The Switch
User’s Manual of WGSD-10020 Series 2.2 Install the Switch This section describes how to install your Managed Switch and make connections to the Managed Switch. Please read the following topics and perform the procedures in the order being presented. To install your Managed Switch on a desktop or shelf, simply complete the following steps.
Page 34: Rack Mounting
User’s Manual of WGSD-10020 Series Supply power to the Managed Switch. Step5: Connect one end of the power cable to the Managed Switch. Connect the power plug of the power cable to a standard wall outlet. When the Managed Switch receives power, the Power LED should remain solid Green. 2.2.2 Rack Mounting To install the Managed Switch in a 19-inch standard rack, please follows the instructions described below.
Page 35: Installing The Sfp Transceiver
User’s Manual of WGSD-10020 Series Figure 2-9 Mounting WGSD-10020 in a Rack Proceeds with the steps 4 and steps 5 of session 2.2.1 Desktop Installation to connect the network cabling and supply Step6: power to the Managed Switch. 2.2.3 Installing the SFP transceiver The sections describe how to insert an SFP transceiver into an SFP slot.
Page 36 User’s Manual of WGSD-10020 Series  Approved PLANET SFP Transceivers PLANET Managed Switch supports both Single mode and Multi-mode SFP transceiver. The following list of approved PLANET SFP transceivers is correct at the time of publication: Gigabit SFP Transceiver modules ...
Page 37 User’s Manual of WGSD-10020 Series Converter.. Check the LNK/ACT LED of the SFP slot on the front of the Managed Switch. Ensure that the SFP transceiver is operating correctly. Check the Link mode of the SFP port if the link failed. Co works with some fiber-NICs or Media Converters, set the Link mode to “1000 Force”...
Page 38: Switch Management
User’s Manual of WGSD-10020 Series 3. SWITCH MANAGEMENT This chapter explains the methods that you can use to configure management access to the Managed Switch. It describes the types of management applications and the communication and management protocols that deliver data between your management device (workstation or personal computer) and the system.
Page 39: Management Access Overview
User’s Manual of WGSD-10020 Series 3.2 Management Access Overview The Managed Switch gives you the flexibility to access and manage it using any or all of the following methods:  An administration console  Web browser interface  An external SNMP-based network management application The administration console and Web browser interface support are embedded in the Managed Switch software and are available for immediate use.
Page 40 User’s Manual of WGSD-10020 Series Figure 3-1 Console management Direct Access Direct access to the administration console is achieved by directly connecting a terminal or a PC equipped with a terminal-emulation program (such as HyperTerminal) to the Managed Switch console (serial) port. When using this management method, a straight DB9 RS-232 cable is required to connect the switch to the PC.
Page 41: Web Management
User’s Manual of WGSD-10020 Series 3.4 Web Management The Managed Switch offers management features that allow users to manage the Managed Switch from anywhere on the network through a standard browser such as Microsoft Internet Explorer. After you set up your IP address for the switch, you can access the Managed Switch's Web interface applications directly in your Web browser by entering the IP address of the Managed Switch.
Page 42: Snmp-Based Network Management
User’s Manual of WGSD-10020 Series 3.5 SNMP-Based Network Management You can use an external SNMP-based application to configure and manage the Managed Switch, such as SNMPc Network Manager, HP Openview Network Node Management (NNM) or What’s Up Gold. This management method requires the SNMP agent on the switch and the SNMP Network Management Station to use the same community string.
Page 43: Web Configuration
User’s Manual of WGSD-10020 Series 4. WEB CONFIGURATION This section introduces the configuration and functions of the Web-Based management. About Web-based Management The Managed Switch offers management features that allow users to manage the Managed Switch from anywhere on the network through a standard browser such as Microsoft Internet Explorer.
Page 44 User’s Manual of WGSD-10020 Series  Logging on the switch Use Internet Explorer 7.0 or above Web browser. Enter the factory-default IP address to access the Web interface. The factory-default IP Address as following: http://192.168.0.100 When the following login screen appears, please enter the default username "admin" with password “admin” (or the username/password you have changed via console) to login the main screen of Managed Switch.
Page 45 User’s Manual of WGSD-10020 Series Figure 4-1-3 Default main page Now, you can use the Web management interface to continue the switch management or manage the Managed Switch by Web interface. The Switch Menu on the left of the web page let you access all the commands and statistics the Managed Switch provides.
Page 46: Main Web Page
User’s Manual of WGSD-10020 Series 4.1 Main Web Page The SGSW Managed Switch provides a Web-based browser interface for configuring and managing it. This interface allows you to access the Managed Switch using the Web browser of your choice. This chapter describes how to use the Managed Switch’s Web browser interface to configure and manage it.
Page 47 User’s Manual of WGSD-10020 Series Figure 4-1-5 Managed Switch Main Functions Menu...
Page 48: System
User’s Manual of WGSD-10020 Series 4.2 System Use the System menu items to display and configure basic administrative details of the Managed Switch. Under System the following topics are provided to configure and view the system information: This section has the following items: The switch system information is provided here.
Page 49: System Information
User’s Manual of WGSD-10020 Series 4.2.1 System Information The System Info page provides information for the current device information. System Info page helps a switch administrator to identify the hardware MAC address, software version and system uptime. The screen in Figure 4-2-1 appears.
Page 50: Ip Configuration
User’s Manual of WGSD-10020 Series 4.2.2 IP Configuration The IP Configuration includes the IP Address, Subnet Mask and Gateway. The Configured column is used to view or change the IP configuration. Fill up the IP Address, Subnet Mask and Gateway for the device. The screen in Figure 4-2-2 appears.
Page 51: Ipv6 Configuration
User’s Manual of WGSD-10020 Series : Click to undo any changes made locally and revert to previously saved values. : Click to undo any changes made locally and revert to previously saved values. 4.2.3 IPv6 Configuration Configure the switch-managed IPv6 information on this page. The Configured column is used to view or change the IPv6 configuration.
Page 52: Users Configuration
User’s Manual of WGSD-10020 Series 16-bit groups of contiguous zeros; but it can only appear once. It also used a following legally IPv4 address. For example, '::192.1.2.34'. Provide the IPv6 SNTP Server address of this switch. IPv6 address is in 128-bit records represented as eight fields of up to four hexadecimal digits with a colon separates each field (:).
Page 53 User’s Manual of WGSD-10020 Series Add / Edit User This page configures a user – add, edit or delete user. Figure 4-2-5 Add / Edit User Configuration page screenshot The page includes the following fields: Object Description  Username The name identifying the user. ...
Page 54 User’s Manual of WGSD-10020 Series After change the default password, if you forget the password. Please press the “Reset” button in the front panel of the Managed Switch over 10 seconds and then release, the current setting includes VLAN, will be lost and the Managed Switch will restore to the default mode.
Page 55: Privilege Levels
User’s Manual of WGSD-10020 Series 4.2.5 Privilege Levels This page provides an overview of the privilege levels. After setup completed, please press “Save” button to take effect. Please login web interface with new user name and password, the screen in Figure 4-2-7 appears.
Page 56 User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description  Group Name The name identifying the privilege group. In most cases, a privilege level group consists of a single module (e.g. LACP, RSTP or QoS), but a few of them contains more than one.
Page 57: Ntp Configuration
User’s Manual of WGSD-10020 Series 4.2.6 NTP Configuration Configure NTP on this page. NTP is an acronym for Network Time Protocol, a network protocol for synchronizing the clocks of computer systems. NTP uses UDP (data grams) as transport layer. You can specify NTP Servers and set GMT Time zone. The NTP Configuration screen in Figure 4-2-8 appears.
Page 58: Upnp
User’s Manual of WGSD-10020 Series 4.2.7 UPnP Configure UPnP on this page. UPnP is an acronym for Universal Plug and Play. The goals of UPnP are to allow devices to connect seamlessly and to simplify the implementation of networks in the home (data sharing, communications, and entertainment) and in corporate environments for simplified installation of computer components.
Page 59: Dhcp Relay
User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. Figure 4-2-10 UPnP devices shows on Windows My Network Places 4.2.8 DHCP Relay Configure DHCP Relay on this page. DHCP Relay is used to forward and to transfer DHCP messages between the clients and the server when they are not on the same subnet domain.
Page 60 User’s Manual of WGSD-10020 Series The Remote ID sub-option was designed to carry information relating to the remote host end of the circuit. The definition of Circuit ID in the switch is 4 bytes in length and the format is "vlan_id" "module_id" "port_no". The parameter of "vlan_id"...
Page 61: Dhcp Relay Statistics
User’s Manual of WGSD-10020 Series contains relay agent information. It will enforce the policy. And it only works under DHCP relay information operation mode enabled. Possible policies are: Replace: Replace the original relay information when receive a DHCP message that already contains it. Keep: Keep the original relay information when receive a DHCP message that already contains it.
Page 62 User’s Manual of WGSD-10020 Series missing. Circuit ID  Receive Missing The packets number that received packets which Remote ID option was missing. Remote ID  Receive Bad Circuit ID The packets number that the Circuit ID option did not match known circuit ID. ...
Page 63: Cpu Load
User’s Manual of WGSD-10020 Series 4.2.10 CPU Load This page displays the CPU load, using a SVG graph. The load is measured as averaged over the last 100ms, 1sec and 10 seconds intervals. The last 120 samles are graphed, and the last numbers are displayed as text as well.
Page 64: System Log
User’s Manual of WGSD-10020 Series 4.2.11 System Log The switch system log information is provided here. The System Log screen in Figure 4-2-14 appears. Figure 4-2-14 System Log page screenshot The page includes the following fields: Object Description  ID The ID (>= 1) of the system log entry.
Page 65: Detailed Log
User’s Manual of WGSD-10020 Series 4.2.12 Detailed Log The switch system detailed log information is provided here. The Detailed Log screen in Figure 4-2-15 appears. Figure 4-2-15 Detailed Log page screenshot The page includes the following fields: Object Description  ID The ID (>= 1) of the system log entry.
Page 66: Remote Syslog
User’s Manual of WGSD-10020 Series 4.2.13 Remote Syslog Configure remote syslog on this page. The Remote Syslog screen in Figure 4-2-16 appears. Figure 4-2-16 Remote Syslog page screenshot The page includes the following fields: Object Description  Mode Indicates the server mode operation. When the mode operation is enabled, the syslog message will send out to syslog server.
Page 67: Led Power Reduction
User’s Manual of WGSD-10020 Series 4.2.14 LED Power Reduction The LEDs power consumption can be reduced by lowering the LEDs intensity. LEDs intensity could for example be lowered during night time, or they could be turn completely off. It is possible to configure 24 different hours of the day, at where the LEDs intensity should be set.
Page 68: Eee Power Reduction
User’s Manual of WGSD-10020 Series 4.2.15 EEE Power Reduction This page allows the user to inspect and configure the current EEE port settings. EEE is a power saving option that reduces the power usage when there is very low traffic utilization (or no traffic). EEE works by powering down circuits when there is no traffic.
Page 69: Thermal Protection
User’s Manual of WGSD-10020 Series be transmitted. Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.2.16 Thermal Protection This page allows the user to inspect and configure the current setting for controlling thermal protection. Thermal protection is used to protect the chip from getting overheated.
Page 70: Web Firmware Upgrade
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description  Temperature settings The temperature at which the ports with the corresponding priority will be turned off. Temperatures between 0 and 255 C are supported. for priority groups ...
Page 71: Tftp Firmware Upgrade
User’s Manual of WGSD-10020 Series Figure 4-2-21 Software successfully loaded notice screen the Managed Switch until the update progress is complete. DO NOT Power OFF Do not quit the Firmware Upgrade page without press the “OK” button - after the image be loaded.
Page 72: Configuration Backup
User’s Manual of WGSD-10020 Series  Firmware File Name The name of firmware image. (Maximum length : 24 characters) Buttons : Click to upgrade firmware. the Managed Switch until the update progress is complete. DO NOT Power OFF Do not quit the Firmware Upgrade page without press the “OK” button - after the image be loaded.
Page 73 User’s Manual of WGSD-10020 Series <mode>, <entry> etc. These tags identify parameters for the specific section, module and Parameter tags: group. The <entry> tag is used for table entries. Configuration parameters are represented as attribute values. When saving the configuration from the switch, the entire configuration including syntax descriptions is included in the file.
Page 74: Configuration Upload
User’s Manual of WGSD-10020 Series Chose the file save path in management workstation. Figure 4-2-25 File save screen 4.2.20 Configuration Upload This function allows backup and reload the current configuration of the Managed Switch to the local management station. The Configuration Upload screen in Figure 4-2-26 appears.
Page 75: Factory Default
User’s Manual of WGSD-10020 Series Figure 4-2-27 Windows file selection menu popup Select on the configuration file then click “ ”, the bottom of the browser shows the upload status. After down, the main screen appears “Transfer Completed”. 4.2.21 Factory Default You can reset the configuration of the stack switch on this page.
Page 76: System Reboot
User’s Manual of WGSD-10020 Series Buttons : Click to reset the configuration to Factory Defaults. : Click to return to the Port State page without resetting the configuration. After the “Factory” button be pressed and rebooted, the system will load the default IP settings as following: Default IP address: 192.168.0.100 。...
Page 77 User’s Manual of WGSD-10020 Series Buttons : Click to reboot the system. : Click to return to the Port State page without reboot the system. You can also check the SYS LED at the front panel to identify the System is load completely or not. If the SYS LED is blinking, then it is in the firmware load stage;...
Page 78: Simple Network Management Protocol
User’s Manual of WGSD-10020 Series 4.3 Simple Network Management Protocol 4.3.1 SNMP Overview The Simple Network Management Protocol (SNMP) is an application layer protocol that facilitates the exchange of management information between network devices. It is part of the Transmission Control Protocol/Internet Protocol (TCP/IP) protocol suite. SNMP enables network administrators to manage network performance, find and solve network problems, and plan for network growth.
Page 79: Snmp System Configuration
User’s Manual of WGSD-10020 Series  Configure SNMPv3 users table on this page. SNMPv3 Users  Configure SNMPv3 groups table on this page. SNMPv3 Groups  Configure SNMPv3 views table on this page. SNMPv3 Views  Configure SNMPv3 accesses table on this page. SNMPv3 Accesses 4.3.2 SNMP System Configuration Configure SNMP on this page.
Page 80 User’s Manual of WGSD-10020 Series  Indicates the SNMPv3 engine ID. The string must contain an even number Engine ID between 10 and 64 hexadecimal digits, but all-zeros and all-'F's are not allowed. Change of the Engine ID will clear all original local users. Configure SNMP trap on this page.
Page 81: Snmp System Information
User’s Manual of WGSD-10020 Series representing multiple 16-bit groups of contiguous zeros; but it can only appear once. It also used a following legally IPv4 address. For example, '::192.1.2.34'.  Indicates the SNMP entity is permitted to generate authentication failure traps. Trap Authentication Possible modes are: Failure...
Page 82: Snmpv3 Configuration
User’s Manual of WGSD-10020 Series  The textual identification of the contact person for this managed node, together System Contact with information on how to contact this person. The allowed string length is 0 to 255, and the allowed content is the ASCII characters from 32 to 126. ...
Page 83: Snmpv3 Users
User’s Manual of WGSD-10020 Series allowed string length is 1 to 32, and the allowed content is the ASCII characters from 33 to 126.  Indicates the SNMP access source address. Source IP  Indicates the SNMP access source address mask. Source Mask Buttons : Click to add a new community entry.
Page 84 User’s Manual of WGSD-10020 Series Auth, NoPriv: Authentication and none privacy. Auth, Priv: Authentication and privacy. The value of security level cannot be modified if entry already exist. That means must first ensure that the value is set correctly.  Indicates the authentication protocol that this entry should belong to.
Page 85: Snmpv3 Groups
User’s Manual of WGSD-10020 Series 4.3.4.3 SNMPv3 Groups Configure SNMPv3 groups table on this page. The entry index keys are Security Model and Security Name. The SNMPv3 Groups screen in Figure 4-3-6 appears. Figure 4-3-6 SNMPv3 Groups Configuration page screenshot The page includes the following fields: Object Description...
Page 86: Snmpv3 Views
User’s Manual of WGSD-10020 Series 4.3.4.4 SNMPv3 Views Configure SNMPv3 views table on this page. The entry index keys are View Name and OID Subtree. The SNMPv3 Views screen in Figure 4-3-7 appears. Figure 4-3-7 SNMPv3 Views Configuration page screenshot The page includes the following fields: Object Description...
Page 87: Snmpv3 Access
User’s Manual of WGSD-10020 Series 4.3.4.5 SNMPv3 Access Configure SNMPv3 accesses table on this page. The entry index keys are Group Name, Security Model and Security Level. The SNMPv3 Access screen in Figure 4-3-8 appears. Figure 4-3-8 SNMPv3 Accesses Configuration page screenshot The page includes the following fields: Object Description...
Page 88 User’s Manual of WGSD-10020 Series Buttons : Click to add a new access entry. : Click to save changes. : Click to undo any changes made locally and revert to previously saved values.
Page 89: Port Management
User’s Manual of WGSD-10020 Series 4.4 Port Management Use the Port Menu to display or configure the Managed Switch's ports. This section has the following items:  Configures port connection settings Port Configuration  Lists Ethernet and RMON port statistics Port Statistics Overview ...
Page 90 User’s Manual of WGSD-10020 Series  Select any available link speed for the given switch port. Draw the menu bar to Configured Link Speed select the mode. Auto Speed - Setup Auto negotiation. 10 Half - Force sets 10Mbps/Half-Duplex mode. 10 Full - Force sets 10Mbps/Full-Duplex mode.
Page 91: Port Statistics Overview
User’s Manual of WGSD-10020 Series : Click to refresh the page. Any changes made locally will be undone. 4.4.2 Port Statistics Overview This page provides an ov erview of general traffic statistics for all switch ports. The Port Statistics Overview screen in Figure 4-4-2 appears.
Page 92: Port Thermal Protection Status
User’s Manual of WGSD-10020 Series 4.4.3 Port Thermal Protection Status This page allows the user to inspect status information related to thermal protection. The Port Thermal Protection Status screen Figure 4-4-3 appears. Figure 4-4-3 Thermal Protection Status page screenshot The displayed counters are: Object Description ...
Page 93 User’s Manual of WGSD-10020 Series Figure 4-4-4 Detailed Port Statistics Port 1 page screenshot The page includes the following fields: Receive Total and Transmit Total Object Description  The number of received and transmitted (good and bad) packets Rx and Tx Packets ...
Page 94 User’s Manual of WGSD-10020 Series The number of received and transmitted packets per input and output queue. Receive Error Counters Object Description  The number of frames dropped due to lack of receive buffers or egress Rx Drops congestion.  The number of frames received with CRC or alignment errors.
Page 95: Sfp Information
User’s Manual of WGSD-10020 Series 4.4.5 SFP Information You can check the physical or operational status of an SFP module via the SFP Module Information page. This page shows the operational status, such as the transceiver type, speed, and wavelength and supports distance of SFP module on a specific interface.
Page 96: Port Mirror
User’s Manual of WGSD-10020 Series 4.4.6 Port Mirror Configure port Mirroring on this page. This function provide to monitoring network traffic that forwards a copy of each incoming or outgoing packet from one port of a network Switch to another port where the packet can be studied. It enables the manager to keep close track of switch performance and alter it if necessary.
Page 97 User’s Manual of WGSD-10020 Series Mirror Port Configuration The Port Mirror screen in Figure 4-4-7 appears. Figure 4-4-7 Mirror Configuration page screenshot The page includes the following fields: Object Description  Port to mirror on Frames from ports that have either source (rx) or destination (tx) mirroring enabled are mirrored to this port.
Page 98 User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values.
Page 99: Link Aggregation
User’s Manual of WGSD-10020 Series 4.5 Link Aggregation Port Aggregation optimizes port usage by linking a group of ports together to form a single Link Aggregated Groups (LAGs). Port Aggregation multiplies the bandwidth between the devices, increases port flexibility, and provides link redundancy. Each LAG is composed of ports of the same speed, set to full-duplex operations.
Page 100 User’s Manual of WGSD-10020 Series The Link Aggregation Control Protocol (LACP) provides a standardized means for exchanging information between Partner Systems that require high speed redundant links. Link aggregation lets you group up to eight consecutive ports into a single dedicated connection.
Page 101: Static Aggregation
User’s Manual of WGSD-10020 Series 4.5.1 Static Aggregation This page is used to configure the Aggregation hash mode and the aggregation group. The aggregation hash mode settings are global, whereas the aggregation group relate to the currently selected stack unit, as reflected by the page header. Hash Code Contributors The Static Aggeration screen in Figure 4-5-2...
Page 102 User’s Manual of WGSD-10020 Series Figure 4-5-3 Aggregation Group Configuration page screenshot The page includes the following fields: .Object Description  Indicates the group ID for the settings contained in the same row. Group ID Group ID "Normal" indicates there is no aggregation. Only one group ID is valid per port. ...
Page 103: Lacp Configuration
User’s Manual of WGSD-10020 Series 4.5.2 LACP Configuration Link Aggregation Control Protocol (LACP) - LACP LAG negotiate Aggregated Port links with other LACP ports located on a different device. LACP allows switches connected to each other to discover automatically whether any ports are member of the same LAG.
Page 104: Lacp System Status
User’s Manual of WGSD-10020 Series  The Role shows the LACP activity status. The Active will transmit LACP packets Role each second, while Passive will wait for a LACP packet from a partner (speak if spoken to). Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values.
Page 105: Lacp Port Status
User’s Manual of WGSD-10020 Series 4.5.4 LACP Port Status This page provides a status overview for LACP status for all ports. The LACP Port Status screen in Figure 4-5-6 appears. Figure 4-5-6 LACP Status page screenshot The page includes the following fields: Object Description ...
Page 106: Lacp Port Statistics
User’s Manual of WGSD-10020 Series 4.5.5 LACP Port Statistics This page provides an overview for LACP statistics for all ports. The LACP Port Statistics screen in Figure 4-5-7 appears. Figure 4-5-7 LACP Statistics page screenshot The page includes the following fields: Object Description ...
Page 107: Vlan
User’s Manual of WGSD-10020 Series 4.6 VLAN 4.6.1 VLAN Overview A Virtual Local Area Network (VLAN) is a network topology configured according to a logical scheme rather than the physical layout. VLAN can be used to combine any collection of LAN segments into an autonomous user group that appears as a single LAN.
Page 108: Ieee 802.1Q Vlan
User’s Manual of WGSD-10020 Series 4.6.2 IEEE 802.1Q VLAN In large networks, routers are used to isolate broadcast traffic for each subnet into separate domains. This Managed Switch provides a similar service at Layer 2 by using VLANs to organize any group of network nodes into separate broadcast domains. VLANs confine broadcast traffic to the originating group, and can eliminate broadcast storms in large networks.
Page 109 User’s Manual of WGSD-10020 Series Untagging - The act of stripping 802.1Q VLAN information out of the packet header. ■ 802.1Q VLAN Tags The figure below shows the 802.1Q VLAN tag. There are four additional octets inserted after the source MAC address. Their presence is indicated by a value of 0x8100 in the Ether Type field.
Page 110 User’s Manual of WGSD-10020 Series ■ Port VLAN ID Packets that are tagged (are carrying the 802.1Q VID information) can be transmitted from one 802.1Q compliant network device to another with the VLAN information intact. This allows 802.1Q VLAN to span network devices (and indeed, the entire network –...
Page 111: Vlan Basic Information
User’s Manual of WGSD-10020 Series ■ VLAN Classification When the switch receives a frame, it classifies the frame in one of two ways. If the frame is untagged, the switch assigns the frame to an associated VLAN (based on the default VLAN ID of the receiving port). But if the frame is tagged, the switch uses the tagged VLAN ID to identify the port broadcast domain of the frame.
Page 112: Vlan Port Configuration
User’s Manual of WGSD-10020 Series  Current number of Display the current number of VLANs VLANs  VLAN Learning Display the VLAN learning mode. The Managed Switch supports IVL (IVL Independent vlan learning).  Configurable PVID Indicates whether or not configurable PVID tagging is implemented. Tagging 4.6.4 VLAN Port Configuration This page is used for configuring the Managed Switch port VLAN.
Page 113 User’s Manual of WGSD-10020 Series QinQ tunneling is used to maintain customer-specific VLAN and Layer 2 protocol configurations even when different customers use the same internal VLAN IDs. This is accomplished by inserting Service Provider VLAN (SPVLAN) tags into the customer’s frames when they enter the service provider’s network, and then stripping the tags when the frames leave the network.
Page 114 User’s Manual of WGSD-10020 Series VLAN Port Configuration The VLAN Port Configuration screen in Figure 4-6-2 appears. Figure 4-6-2 VLAN Port Configuration page screenshot The page includes the following fields: Object Description  This is the logical port number for this row. Port ...
Page 115 User’s Manual of WGSD-10020 Series - Tagged: outgoing frames with VLAN-Tagged.  Q-in-Q Mode Sets the Managed Switch to QinQ mode, and allows the QinQ tunnel port to be configured. The default is for the Managed Switch to function in Disable mode. - Disable: The port operates in its normal VLAN mode.
Page 116: Vlan Membership
User’s Manual of WGSD-10020 Series 4.6.5 VLAN Membership  Adding Static Members to VLANs (VLAN Index) Use the VLAN Static Table to configure port members for the selected VLAN index. The VLAN membership configuration for the selected stack switch / unit switch can be monitored and modified here. Up to 255 VLANs are supported. This page allows for adding and deleting VLANs as well as adding and deleting port members of each VLAN.
Page 117: Vlan Membership Status
User’s Manual of WGSD-10020 Series click "Save". The button can be used to undo the addition of new VLANs. Buttons : Click to add new VLAN. : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. : Refreshes the displayed table starting from the "VLAN ID"...
Page 118 User’s Manual of WGSD-10020 Series member ports.  A VLAN User is a module that uses services of the VLAN management VLAN User functionality to configure VLAN memberships and VLAN port configuration such as PVID, UVID. Currently we support following VLAN : - CLI/Web/SNMP : This are reffered as static.
Page 119: Vlan Port Status
User’s Manual of WGSD-10020 Series 4.6.7 VLAN Port Status This page provides VLAN Port Staus. The VLAN Port Status screen in Figure 4-6-5 appears. Figure 4-6-5 VLAN Port Status for Static User page screenshot The page includes the following fields: Object Description ...
Page 120: Private Vlan
User’s Manual of WGSD-10020 Series requests to set VLAN membership or VLAN port configuration, the following conflicts can occur: Functional Conflicts between feature. Conflicts due to hardware limitation. Direct conflict between user modules.  A VLAN User is a module that uses services of the VLAN management VLAN User functionality to configure VLAN memberships and VLAN port configuration such as PVID, UVID.
Page 121: Port Isolation
User’s Manual of WGSD-10020 Series The Private VLAN screen in Figure 4-6-6 appears. Figure 4-6-6 Private VLAN Membership Configuration page screenshot The page includes the following fields: Object Description  Delete To delete a private VLAN entry, check this box. The entry will be deleted during the next save.
Page 122 User’s Manual of WGSD-10020 Series For private VLANs to be applied, the switch must first be configured for standard VLAN operation When this is in place, one or more of the configured VLANs can be configured as private VLANs. Ports in a private VLAN fall into one of these two groups: ...
Page 123: Vlan Setting Example
User’s Manual of WGSD-10020 Series Figure 4-6-7 Port Isolation Configuration page screenshot The page includes the following fields: Object Description  Port Members A check box is provided for each port of a private VLAN. When checked, port isolation is enabled on that port. When unchecked, port isolation is disabled on that port.
Page 124 User’s Manual of WGSD-10020 Series Figure 4-6-8 two separate VLAN diagram VLAN Group Untagged Members Tagged Members VLAN Group 1 Port-7 ~ Port-10 VLAN Group 2 Port-1,Port-2 Port-3 VLAN Group 3 Port-4,Port-5 Port-6 Table 4-1 VLAN and Port Configuration The scenario described as follow: ...
Page 125 User’s Manual of WGSD-10020 Series While [PC-4] transmit an untagged packet enters Port-4, the switch will tag it with a VLAN Tag=3. [PC-5] and [PC-6] will received the packet through Port-5 and Port-6. While the packet leaves Port-5, it will be stripped away it tag becoming an untagged packet. While the packet leaves Port-6, it will keep as a tagged packet with VLAN Tag=3.
Page 126: Vlan Trunking Between Two 802.1Q Aware Switch
User’s Manual of WGSD-10020 Series Port-4,Port-5 and Port-6 : PVID=3 Port-7~Port-24 : PVID=1 Enable VLAN Tag for specific ports Link Type: Port-3 (VLAN-2) and Port-6 (VLAN-3) The Per Port VLAN configuration in Figure 4-6-10 appears. Figure 4-6-10 Port 1-Port 6 VLAN Configuration 4.6.10.2 VLAN Trunking between two 802.1Q aware switch The most cases are used for “Uplink”...
Page 127 User’s Manual of WGSD-10020 Series Setup steps Create VLAN Group Set VLAN Group 1 = Default-VLAN with VID (VLAN ID) =1 Add two VLANs – VLAN 2 and VLAN 3 VLAN Group 2 with VID=2 VLAN Group 3 with VID=3 Assign VLAN Member : VLAN 2 : Port-1,Port-2 and Port-3 VLAN 3 : Port-4, Port-5 and Port-6...
Page 128: Port Isolate
User’s Manual of WGSD-10020 Series Figure 4-6-12 VLAN overlap port setting & VLAN 1 – The public area member assign Specify Port-8 to be the 802.1Q VLAN Trunk port, and the Trunking port must be a Tagged port while egress. The Port-8 configuration as the following screen in Figure 4-6-13.
Page 129 User’s Manual of WGSD-10020 Series Setup steps Assign Port Mode Set Port-1~Port-4 in Isolate port. Set Port5 and Port-6 in Promiscuous port. The screen in Figure 4-6-15 appears. Figure 4-6-15 The configuration of Isolate and Promiscuous port Assign VLAN Member : VLAN 1 : Port-1,Port-2 ,Port-5 and Port-3 VLAN 2 : Port-3~Port-6.
Page 130: Mac-Based Vlan
User’s Manual of WGSD-10020 Series 4.6.11 MAC-based VLAN The MAC-based VLAN enties can be configured here. This page allows for adding and deleting MAC-based VLAN entries and assigning the entries to different ports. This page shows only static entries. The MAC-based VLAN screen in Figure 4-6-17 appears.
Page 131: Mac-Based Vlan Status
User’s Manual of WGSD-10020 Series 4.6.12 MAC-based VLAN Status This page shows MAC-based VLAN entries configured by various MAC-based VLAN users. The MAC-based VLAN Status screen in Figure 4-6-18 appears. Figure 4-6-18 MAC-based VLAN Membership Configuration for User Static page screenshot The page includes the following fields: Object Description...
Page 132: Protocol-Based Vlan
User’s Manual of WGSD-10020 Series 4.6.13 Protocol-based VLAN This page allows you to add new protocols to Group Name (unique for each Group) mapping entries as well as allow you to see and delete already mapped entries for the switch. The Protocol-based VLAN screen in Figure 4-6-19 appears.
Page 133: Protocol-Based Vlan Mambership
User’s Manual of WGSD-10020 Series sub-values. a.OUI: OUI (Organizationally Unique Identifier) is value in format of xx-xx-xx where each pair (xx) in string is a hexadecimal value ranges from 0x00-0xff. b. PID: If the OUI is hexadecimal 000000, the protocol ID is the Ethernet type (EtherType) field value for the protocol running on top of SNAP;...
Page 134 User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description  Delete To delete a Group Name to VLAN map entry, check this box. The entry will be deleted on the switch during the next Save  Group Name A valid Group Name is a string of atmost 16 characters which consists of a combination of alphabets (a-z or A-Z) and integers(0-9), no special character is allowed.
Page 135: Spanning Tree Protocol
User’s Manual of WGSD-10020 Series 4.7 Spanning Tree Protocol 4.7.1 Theory The Spanning Tree protocol can be used to detect and disable network loops, and to provide backup links between switches, bridges or routers. This allows the switch to interact with other bridging devices in your network to ensure that only one route exists between any two stations on the network, and provide backup links which automatically take over when a primary link goes down.
Page 136 User’s Manual of WGSD-10020 Series The switch sends BPDUs to communicate and construct the spanning-tree topology. All switches connected to the LAN on which the packet is transmitted will receive the BPDU. BPDUs are not directly forwarded by the switch, but the receiving switch uses the information in the frame to calculate a BPDU, and, if the topology changes, initiates a BPDU transmission.
Page 137 User’s Manual of WGSD-10020 Series Figure 4-7-1 STP Port State Transitions You can modify each port state by using management software. When you enable STP, every port on every switch in the network goes through the blocking state and then transitions through the states of listening and learning at power up. If properly configured, each port stabilizes to the forwarding or blocking state.
Page 138 User’s Manual of WGSD-10020 Series Parameter Description Default Value A combination of the User-set priority and 32768 + MAC Bridge Identifier(Not user the switch’s MAC address. configurable The Bridge Identifier consists of two parts: except by setting priority a 16-bit priority and a 48-bit Ethernet MAC below) address 32768 + MAC A relative priority for each switch –...
Page 139 User’s Manual of WGSD-10020 Series The Switch’s factory default setting should cover the majority of installations. However, it is advisable to keep the default settings as set at the factory; unless, it is absolutely necessary. The user changeable parameters in the Switch are as follows: Priority –...
Page 140 User’s Manual of WGSD-10020 Series Figure 4-7-5 Before Applying the STA Rules In this example, only the default STP values are used. Figure 4-7-6 After Applying the STA Rules...
Page 141: Stp System Configuration
User’s Manual of WGSD-10020 Series The switch with the lowest Bridge ID (switch C) was elected the root bridge, and the ports were selected to give a high port cost between switches B and C. The two (optional) Gigabit ports (default port cost = 20,000) on switch A are connected to one (optional) Gigabit port on both switch B and C.
Page 142 User’s Manual of WGSD-10020 Series Basic Settings Object Description  The STP protocol version setting. Valid values are STP, RSTP and MSTP. Protocol Version  Bridge Priority Controls the bridge priority. Lower numeric values have better priority. The bridge priority plus the MSTI instance number, concatenated with the 6-byte MAC address of the switch forms a Bridge Identifier.
Page 143: Bridge Status
User’s Manual of WGSD-10020 Series  The time that has to pass before a port in the error-disabled state can be Port Error Recovery enabled. Valid values are between 30 and 86400 seconds (24 hours). Timeout The Gigabit Ethernet Switch implement the Rapid Spanning Protocol as the default spanning tree protocol.
Page 144: Cist Port Configuration
User’s Manual of WGSD-10020 Series 4.7.4 CIST Port Configuration This page allows the user to inspect the current STP CIST port configurations, and possibly change them as well. The CIST Port Configuration screen in Figure 4-7-9 appears. Figure 4-7-9 STP CIST Port Configuration page screenshot The page includes the following fields: Object Description...
Page 145 User’s Manual of WGSD-10020 Series Default: 128 Range: 0-240, in steps of 16  operEdge (state flag) Operational flag describing whether the port is connecting directly to edge devices. (No Bridges attached). Transition to the forwarding state is faster for edge ports (having operEdge true) than for other ports.The value of this flag is based on AdminEdge and AutoEdge fields.
Page 146 User’s Manual of WGSD-10020 Series By default, the system automatically detects the speed and duplex mode used on each port, and configures the path cost according to the values shown below. Path cost “0” is used to indicate auto-configuration mode. When the short path cost method is selected and the default path cost recommended by the IEEE 8021w standard exceeds 65,535, the default is set to 65,535.
Page 147: Msti Priorities
User’s Manual of WGSD-10020 Series 4.7.5 MSTI Priorities This page allows the user to inspect the current STP MSTI bridge instance priority configurations, and possibly change them as well. The MSTI Priority screen in Figure 4-7-10 appears. Figure 4-7-10 MSTI Priority page screenshot The page includes the following fields: Object Description...
Page 148 User’s Manual of WGSD-10020 Series Figure 4-7-11 MSTI Configuration page screenshot The page includes the following fields: Configuration Identification Object Description  Configuration Name The name identifiying the VLAN to MSTI mapping. Bridges must share the name and revision (see below), as well as the VLAN-to-MSTI mapping configuration in order to share spanning trees for MSTI's.
Page 149: Msti Ports Configuration
User’s Manual of WGSD-10020 Series  Configuration Revision The revision of the MSTI configuration named above. This must be an integer between 0 and 65535. MSTI Mapping Object Description  MSTI The bridge instance. The CIST is not available for explicit mapping, as it will receive the VLANs not explicitly mapped.
Page 150 User’s Manual of WGSD-10020 Series Figure 4-7-13 MST1 MSTI Port Configuration page screenshot The page includes the following fields: MSTx MSTI Port Configuration Object Description  Port The switch port number of the corresponding STP CIST (and MSTI) port.  Path Cost Controls the path cost incurred by the port.
Page 151: Port Status
User’s Manual of WGSD-10020 Series : Click to set MSTx configuration : Click to refresh the page immediately. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. 4.7.8 Port Status This page displays the STP CIST port status for port physical ports in the currently selected switch. The STP Port Status screen in Figure 4-7-14 appears.
Page 152: Port Statistics
User’s Manual of WGSD-10020 Series Forwarding Non-STP  Uptime The time since the bridge port was last initialized. Buttons : Click to refresh the page immediately. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. 4.7.9 Port Statistics This page displays the STP port statistics counters for port physical ports in the currently selected switch.
Page 153 User’s Manual of WGSD-10020 Series : Click to refresh the page immediately. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. : Click to clear the information immediately.
Page 154: Multicast
User’s Manual of WGSD-10020 Series 4.8 Multicast 4.8.1 IGMP Snooping The Internet Group Management Protocol (IGMP) lets host and routers share information about multicast groups memberships. IGMP snooping is a switch feature that monitors the exchange of IGMP messages and copies them to the CPU for feature processing.
Page 155 User’s Manual of WGSD-10020 Series Figure 4-8-2 Multicast flooding Figure 4-8-3 IGMP Snooping multicast stream control...
Page 156 User’s Manual of WGSD-10020 Series IGMP Versions 1 and 2 Multicast groups allow members to join or leave at any time. IGMP provides the method for members and multicast routers to communicate when joining or leaving a multicast group. IGMP version 1 is defined in RFC 1112. It has a fixed packet size and no optional data. The format of an IGMP packet is shown below: IGMP Message Format Octets...
Page 157 User’s Manual of WGSD-10020 Series message, and query messages that are specific to a given group. The states a computer will go through to join or to leave a multicast group are shown below: Figure 4-8-4 IGMP State Transitions  IGMP Querier –...
Page 158: Igmp Snooping Configuration
User’s Manual of WGSD-10020 Series 4.8.2 IGMP Snooping Configuration This page provides IGMP Snooping related configuration. The IGMP Snooping Configuration screen in Figure 4-8-5 appears. Figure 4-8-5 IGMP Snooping Configuration page screenshot The page includes the following fields: Object Description ...
Page 159: Igmp Snooping Vlan Configuration
User’s Manual of WGSD-10020 Series  Fast Leave Enable the fast leave on the port.  Throtting Enable to limit the number of multicast groups to which a switch port can belong. Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.8.3 IGMP Snooping VLAN Configuration Each page shows up to 99 entries from the VLAN table, default being 20, selected through the "entries per page"...
Page 160: Igmp Snooping Port Group Filtering
User’s Manual of WGSD-10020 Series by the Querier. The allowed range is 1 to 255 seconds, default query interval is 125 seconds.  QRI Query Response Interval. The Max Response Time used to calculate the Max Resp Code inserted into the periodic General Queries. The allowed range is 0 to 31744 in tenths of seconds, default query response interval is 100 in tenths of seconds (10 seconds).
Page 161: Igmp Snooping Status
User’s Manual of WGSD-10020 Series Figure 4-8-7 IGMP Snooping Port Group Filtering Configuration page screenshot The page includes the following fields: Object Description  Check to delete the entry. It will be deleted during the next save. Delete  Port The logical port for the settings.
Page 162 User’s Manual of WGSD-10020 Series Figure 4-8-8 IGMP Snooping Status page screenshot The page includes the following fields: Object Description  The VLAN ID of the entry. VLAN ID  Working Querier Version currently. Querier Version  Working Host Version currently. Host Version ...
Page 163: Igmp Group Information
User’s Manual of WGSD-10020 Series 4.8.6 IGMP Group Information Entries in the IGMP Group Table are shown on this page. The IGMP Group Table is sorted first by VLAN ID, and then by group. Each page shows up to 99 entries from the IGMP Group table, default being 20, selected through the "entries per page" input field.
Page 164: Mld Snooping Configuration
User’s Manual of WGSD-10020 Series IGMP SSM Information Table. The "Start from VLAN", and "Group" input fields allow the user to select the starting point in the IGMP SSM Information Table. The IGMPv3 Information screen in Figure 4-8-10 appears. Figure 4-8-10 IGMP SSM Information page screenshot The page includes the following fields: Object Description...
Page 165 User’s Manual of WGSD-10020 Series Figure 4-8-11 MLD Snooping Configuration page screenshot The page includes the following fields: Object Description  Enable the Global MLD Snooping. Snooping Enabled  Enable unregistered IPMCv6 traffic flooding. Please note that disabling Unregistered IPMC unregistered IPMCv6 traffic flooding may lead to failure of Neighbor Discovery.
Page 166: Mld Snooping Vlan Configuration
User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.8.9 MLD Snooping VLAN Configuration Each page shows up to 99 entries from the VLAN table, default being 20, selected through the "entries per page" input field. When first visited, the web page will show the first 20 entries from the beginning of the VLAN Table.
Page 167: Mld Snooping Port Group Filtering
User’s Manual of WGSD-10020 Series Maximum Response Code inserted into the periodic General Queries. The allowed range is 0 to 31744 in tenths of seconds, default query response interval is 100 in tenths of seconds (10 seconds).  LLQI Last Listener Query Interval. The Last Listener Query Interval is the Maximum Response Delay used to calculate the Maximum Response Code inserted into Multicast Address Specific Queries sent in response to Version 1 Multicast Listener Done messages.
Page 168: Mld Snooping Status
User’s Manual of WGSD-10020 Series Figure 4-8-13 MLD Snooping Port Group Filtering Configuration page screenshot The page includes the following fields: Object Description  Check to delete the entry. It will be deleted during the next save. Delete  Port The logical port for the settings.
Page 169 User’s Manual of WGSD-10020 Series Figure 4-8-14 MLD Snooping Status page screenshot The page includes the following fields: Object Description  The VLAN ID of the entry. VLAN ID  Working Querier Version currently. Querier Version  Working Host Version currently. Host Version ...
Page 170: Mld Group Information
User’s Manual of WGSD-10020 Series 4.8.12 MLD Group Information Entries in the MLD Group Table are shown on this page. The MLD Group Table is sorted first by VLAN ID, and then by group. Each page shows up to 99 entries from the MLD Group table, default being 20, selected through the "entries per page" input field.
Page 171: Mvr
User’s Manual of WGSD-10020 Series The "Start from VLAN", and "group" input fields allow the user to select the starting point in the MLD SSM Information Table. The MLDv2 Information screen in Figure 4-8-16 appears. Figure 4-8-16 MLD SSM Information page screenshot The page includes the following fields: Object Description...
Page 172 User’s Manual of WGSD-10020 Series Layer 3- network, it might be necessary to replicate the multicast stream to the same group in different subnets, even if they are on the same physical network. Multicast VLAN Registration (MVR) routes packets received in a multicast source VLAN to one or more receive VLANs.
Page 173: Mvr Status
User’s Manual of WGSD-10020 Series  Type Specify the MVR port type on the port.  Immediate Leave Enable the fast leave on the port. Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.8.15 MVR Status This page provides MVR status.
Page 174: Mvr Groups Information
User’s Manual of WGSD-10020 Series 4.8.16 MVR Groups Information Entries in the MVR Group Table are shown on this page. The MVR Group Table is sorted first by VLAN ID, and then by group. Each page shows up to 99 entries from the MVR Group table, default being 20, selected through the "entries per page" input field.
Page 175: Quality Of Service
User’s Manual of WGSD-10020 Series 4.9 Quality of Service 4.9.1 Understand QOS Quality of Service (QoS) is an advanced traffic prioritization feature that allows you to establish control over network traffic. QoS enables you to assign various grades of network service to different types of traffic, such as multi-media, video, protocol-specific, time critical, and file-backup traffic.
Page 176: Port Policing
User’s Manual of WGSD-10020 Series 4.9.2 Port Policing This page allows you to configure the Policer settings for all switch ports. The Port Policing screen in Figure 4-9-1 appears. Figure 4-9-1 QoS Ingress Port Policers page screenshot The page includes the following fields: Object Description ...
Page 177: Port Classification
User’s Manual of WGSD-10020 Series 4.9.3 Port Classification This page allows you to configure the basic QoS Ingress Classification settings for all switch ports. The Port Classification screen in Figure 4-9-2 appears. Figure 4-9-2 QoS Ingress Port Classification page screenshot The page includes the following fields: Object Description...
Page 178: Qos Ingress Port Tag Classification
User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.9.3.1 QoS Ingress Port Tag Classification The clasification mode for tagged frames are configured on this page. The QoS Ingress Port Tag Classification screen in Figure 4-9-3 appears.
Page 179: Port Scheduler
User’s Manual of WGSD-10020 Series Object Description  Controls the classification mode for tagged frames on this port. Tag Classification Disabled: Use default QoS class and DP level for tagged frames. Enabled: Use mapped versions of PCP and DEI for tagged frames. ...
Page 180: Port Shaping
User’s Manual of WGSD-10020 Series For more detail, please refer to chapter 4.9.5.1.  Mode Shows the scheduling mode for this port.  Shows the weight for this queue and port. Q0 ~ Q5 4.9.5 Port Shaping This page provides an overview of QoS Egress Port Shapers for all switch ports. The Port Shapping screen in Figure 4-9-5 appears.
Page 181 User’s Manual of WGSD-10020 Series Figure 4-9-6 QoS Egress Port Schedule and Shapers page screenshot The page includes the following fields: Object Description  Schedule Mode Controls whether the scheduler mode is "Strict Priority" or "Weighted" on this switch port. ...
Page 182: Port Tag Remarking
User’s Manual of WGSD-10020 Series restricted to 100-1000000 when the "Unit" is "kbps", and it is restricted to 1-3300 when the "Unit" is "Mbps".  Controls the unit of measure for the port shaper rate as "kbps" or "Mbps". The Port Shaper Unit default value is "kbps".
Page 183: Qos Egress Port Tag Remarking
User’s Manual of WGSD-10020 Series 4.9.6.1 QoS Egress Port Tag Remarking The QoS Egress Port Tag Remarking for a specific port are configured on this page. The QoS Egress Port Tag Remarking sscreen in Figure 4-9-8 appears. Figure 4-9-8 QoS Egress Port Tag Remarking page screenshot The page includes the following fields: Object Description...
Page 184 User’s Manual of WGSD-10020 Series Figure 4-9-9 QoS Port DSCP Configuration page screenshot The page includes the following fields: Object Description  Port The Port coulmn shows the list of ports for which you can configure dscp ingress and egress settings. ...
Page 185: Dscp-Based Qos
User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. : Click to refresh the page immediately.
Page 186 User’s Manual of WGSD-10020 Series Figure 4-9-10 DSCP-Based QoS Ingress Classification page screenshot...
Page 187: Dscp Translation
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description  DSCP Maximum number of support ed DSCP values are 64.  Trust Click to check if the DSCP value is trusted.  QoS Class QoS Class value can be any of (0-7) ...
Page 188 User’s Manual of WGSD-10020 Series...
Page 189 User’s Manual of WGSD-10020 Series Figure 4-9-11 DSCP Translation page screenshot The page includes the following fields: Object Description  DSCP Maximum number of supported DSCP values are 64 and valid DSCP value ranges from 0 to 63.  Ingress Ingress side DSCP can be first translated to new DSCP before using the DSCP for QoS class and DPL map.
Page 190: Dscp Classification
User’s Manual of WGSD-10020 Series 4.9.10 DSCP Classification This page allows you to map DSCP value to a QoS Class and DPL value. The DSCP Classification screen in Figure 4-9-12 appears. Figure 4-9-12 DSCP Classification page screenshot The page includes the following fields: Object Description ...
Page 191: Qos Control List
User’s Manual of WGSD-10020 Series 4.9.11 QoS Control List This page shows the QoS Control List(QCL), which is made up of the QCEs. Each row describes a QCE that is defined. The maximum number of QCEs is 256 on each switch. Click on the lowest plus sign to add a new QCE to the list.
Page 192: Qos Control Entry Configuration
User’s Manual of WGSD-10020 Series range 1-4095 or 'Any'  Displays QCE status. It may happen that resources required to add a QCE may Confict not available, in that case it shows conflict status as 'Yes', otherwise it is always 'No'.Please note that conflict can be resolved by releaseing the resource required by the QCE and pressing 'Refresh' button.
Page 193 User’s Manual of WGSD-10020 Series Figure 4-9-14 QCE Configuration page screenshot The page includes the following fields: Object Description  Check the checkbox button in case you what to make any port member of the Port Members QCL entry. By default all ports will be checked ...
Page 194 User’s Manual of WGSD-10020 Series SNAP IPv4 IPv6 Note: all frame types are explained below.  Any Allow all types of frames.  Ethernet Ethernet Type Valid ethernet type can have value within 0x600-0xFFFF or 'Any' but excluding 0x800(IPv4) and 0x86DD(IPv6), default value is 'Any'. ...
Page 195: Qos Status
User’s Manual of WGSD-10020 Series  Class QoS Class: "class (0-7)", default- basic classification Action Configuration DP Valid DP Level can be (0-3)", default- basic classification DSCP Valid dscp value can be (0-63, BE, CS1-CS7, EF or AF11-AF43) Buttons : Click to save the configuration and move to main QCL page : Click to undo any changes made locally and revert to previously saved values : Return to the previous page without saving the configuration change 4.9.12 QoS Status...
Page 196: Storm Control Configuration
User’s Manual of WGSD-10020 Series IPv4: The QCE will match only IPV4 frames. IPv6: The QCE will match only IPV6 frames.  Indicates the classification action taken on ingress frame if parameters Action configured are matched with the frame's content. There are three action fields: Class, DPL and DSCP.
Page 197: Qos Statistics
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description  The settings in a particular row apply to the frame type listed here: Frame Type unicast multicast  Enable or disable the storm control status for the given frame type. Enable ...
Page 198: Voice Vlan Configuration
User’s Manual of WGSD-10020 Series Buttons : Click to refresh the page immediately. : Clears the counters for all ports. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. 4.9.15 Voice VLAN Configuration The Voice VLAN feature enables voice traffic forwarding on the Voice VLAN, then the switch can classify and schedule network traffic.
Page 199 User’s Manual of WGSD-10020 Series Object Description  Mode Indicates the Voice VLAN mode operation. We must disable MSTP feature before we enable Voice VLAN. It can avoid the conflict of ingress filter. Possible modes are: Enabled: Enable Voice VLAN mode operation. Disabled: Disable Voice VLAN mode operation.
Page 200: Voice Vlan Oui Table
User’s Manual of WGSD-10020 Series 4.9.16 Voice VLAN OUI Table Configure VOICE VLAN OUI table on this page. The maximum entry number is 16. Modifying the OUI table will restart auto detection of OUI process. The Voice VLAN OUI Table screen in Figure 4-9-19 appears.
Page 201: Access Control Lists
User’s Manual of WGSD-10020 Series 4.10 Access Control Lists ACL is an acronym for Access Control List. It is the list table of ACEs, containing access control entries that specify individual users or groups permitted or denied to specific traffic objects, such as a process or a program. Each accessible traffic object contains an identifier to its ACL.
Page 202: Access Control List Configuration
User’s Manual of WGSD-10020 Series EType: The ACE will match Ethernet Type frames. Note that an Ethernet Type based ACE will not get matched by IP and ARP frames. ARP: The ACE will match ARP/RARP frames. IPv4: The ACE will match all IPv4 frames. IPv4/ICMP: The ACE will match IPv4 frames with ICMP protocol.
Page 203 User’s Manual of WGSD-10020 Series Figure 4-10-2 Access Control List Configuration page screenshot The page includes the following fields: Object Description  Ingress Port Indicates the ingress port of the ACE. Possible values are: Any: The ACE will match any ingress port. Policy: The ACE will match ingress ports with a specific policy.
Page 204: Ace Configuration
User’s Manual of WGSD-10020 Series Disabled: Port shut down is disabled for the ACE.  Counter The counter indicates the number of times the ACE was hit by a frame.  Modification Buttons You can modify each ACE (Access Control Entry) in the table using the following buttons: : Inserts a new ACE before the current row.
Page 205 User’s Manual of WGSD-10020 Series Figure 4-10-3 ACE Configuration page screenshot The page includes the following fields: Object Description  Select the ingress port for which this ACE applies. Ingress Port Any: The ACE applies to any port. Port n: The ACE applies to this port number, where n is the number of the switch port. Policy n: The ACE applies to this policy number, where n can range from 1 through 8.
Page 206 User’s Manual of WGSD-10020 Series  Specify the action to take with a frame that hits this ACE. Action Permit: The frame that hits this ACE is granted permission for the ACE operation. Deny: The frame that hits this ACE is dropped. ...
Page 207 User’s Manual of WGSD-10020 Series  When "Specific" is selected for the DMAC filter, you can enter a specific destination DMAC Value MAC address. The legal format is "xx-xx-xx-xx-xx-xx". A frame that hits this ACE matches this DMAC value.  VLAN Parameters Object Description...
Page 208 User’s Manual of WGSD-10020 Series Host: Sender IP filter is set to Host. Specify the sender IP address in the SIP Address field that appears. Network: Sender IP filter is set to Network. Specify the sender IP address and sender IP mask in the SIP Address and SIP Mask fields that appear. ...
Page 209 User’s Manual of WGSD-10020 Series Any: Any value is allowed ("don't-care").  Ethernet Specify whether frames can hit the action according to their ARP/RARP protocol address space (PRO) settings. 0: ARP/RARP frames where the PRO is equal to IP (0x800). 1: ARP/RARP frames where the PRO is equal to IP (0x800).
Page 210 User’s Manual of WGSD-10020 Series No: IPv4 frames where the options flag is set must not be able to match this entry. Yes: IPv4 frames where the options flag is set must be able to match this entry. Any: Any value is allowed ("don't-care"). ...
Page 211 User’s Manual of WGSD-10020 Series appears.  When "Specific" is selected for the ICMP code filter, you can enter a specific ICMP Code Value ICMP code value. The allowed range is 0 to 255. A frame that hits this ACE matches this ICMP code value.
Page 212 User’s Manual of WGSD-10020 Series 0: TCP frames where the FIN field is set must not be able to match this entry. 1: TCP frames where the FIN field is set must be able to match this entry. Any: Any value is allowed ("don't-care"). ...
Page 213: Acl Ports Configuration
User’s Manual of WGSD-10020 Series : Click to undo any changes made locally and revert to previously saved values. : Return to the previous page. 4.10.4 ACL Ports Configuration Configure the ACL parameters (ACE) of each switch port. These parameters will affect frames received on a port unless the frame matches a specific ACE.
Page 214: Acl Rate Limiter Configuration
User’s Manual of WGSD-10020 Series The default value is "Disabled".  Logging Specify the logging operation of this port. The allowed values are: Enabled: Frames received on the port are stored in the System Log. Disabled: Frames received on the port are not logged. The default value is "Disabled".
Page 215 User’s Manual of WGSD-10020 Series Figure 4-10-5 ACL Rate Limiter Configuration page screenshot The page includes the following fields: Object Description  The rate limiter ID for the settings contained in the same row. Rate Limiter ID  The allowed values are: 0-3276700 in pps or 0, 100, 200, 300, ..., 1000000 in Rate kbps.
Page 216: Authentication
User’s Manual of WGSD-10020 Series 4.11 Authentication This section is to control the access of the Managed Switch, includes the user access and management control. The Authentication section contains links to the following main topics:  IEEE 802.1X Port-Based Network Access Control ...
Page 217: Understanding Ieee 802.1X Port-Based Authentication
User’s Manual of WGSD-10020 Series to authenticate. The disadvantage is that MAC addresses can be spoofed by malicious users, equipment whose MAC address is a valid RADIUS user can be used by anyone, and only the MD5-Challenge method is supported. The 802.1X and MAC-Based Authentication configuration consists of two sections, a system- and a port-wide.
Page 218 User’s Manual of WGSD-10020 Series Figure 4-11-1 Client—the device (workstation) that requests access to the LAN and switch services and responds to requests from  the switch. The workstation must be running 802.1X-compliant client software such as that offered in the Microsoft Windows XP operating system.
Page 219 User’s Manual of WGSD-10020 Series authentication server must support EAP within the native frame format. When the switch receives frames from the authentication server, the server's frame header is removed, leaving the EAP frame, which is then encapsulated for Ethernet and sent to the client. ...
Page 220: Authentication Configuration
User’s Manual of WGSD-10020 Series  Ports in Authorized and Unauthorized States The switch port state determines whether or not the client is granted access to the network. The port starts in the unauthorized state. While in this state, the port disallows all ingress and egress traffic except for 802.1X protocol packets. When a client is successfully authenticated, the port transitions to the authorized state, allowing all traffic for the client to flow normally.
Page 221: Network Access Server Configuration
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description  Client The management client for which the configuration below applies.  Authentication Method Authentication Method can be set to one of the following values: None: authentication is disabled and login is not possible. local: use the local user database on the switch stack for authentication.
Page 222 User’s Manual of WGSD-10020 Series Figure 4-11-4 Network Access Server Configuration page screenshot The page includes the following fields: System Configuration Object Description  Mode Indicates if NAS is globally enabled or disabled on the switch. If globally disabled, all ports are allowed forwarding of frames. ...
Page 223 User’s Manual of WGSD-10020 Series configuration has changed. It does not involve communication between the switch and the client, and therefore doesn't imply that a client is still present on a port.  Reauthentication Determines the period, in seconds, after which a connected client must be reauthenticated.
Page 224 User’s Manual of WGSD-10020 Series In MAC-based Auth. mode, the The switch will ignore new frames coming from the client during the hold time. The Hold Time can be set to a number between 10 and 1000000 seconds.  RADIUS-Assigned QoS RADIUS-assigned QoS provides a means to centrally control the traffic class to which traffic coming from a successfully authenticated supplicant is assigned on Enabled...
Page 225 User’s Manual of WGSD-10020 Series this setting. The value can only be changed if the Guest VLAN option is globally enabled. Valid values are in the range [1; 255].  Allow Guest VLAN if The switch remembers if an EAPOL frame has been received on the port for the life-time of the port.
Page 226 User’s Manual of WGSD-10020 Series switch's IP address, name, and the supplicant's port number on the switch. EAP is very flexible, in that it allows for different authentication methods, like MD5-Challenge, PEAP, and TLS. The important thing is that the authenticator (the switch) doesn't need to know which authentication method the supplicant and the authentication server are using, or how many information exchange frames are needed for a particular method.
Page 227 User’s Manual of WGSD-10020 Series successfully authenticated.  Multi 802.1X In port-based 802.1X authentication, once a supplicant is successfully authenticated on a port, the whole port is opened for network traffic. This allows other clients connected to the port (for instance through a hub) to piggy-back on the successfully authenticated client and get network access even though they really aren't authenticated.
Page 228 User’s Manual of WGSD-10020 Series particular client, using the Port Security module. Only then will frames from the client be forwarded on the switch. There are no EAPOL frames involved in this authentication, and therefore, MAC-based Authentication has nothing to do with the 802.1X standard.
Page 229 User’s Manual of WGSD-10020 Series  RADIUS-Assigned When RADIUS-Assigned VLAN is both globally enabled and enabled (checked) for a given port, the switch reacts to VLAN ID information carried in the RADIUS VLAN Enabled Access-Accept packet transmitted by the RADIUS server when a supplicant is successfully authenticated.
Page 230 User’s Manual of WGSD-10020 Series This option is only available for EAPOL-based modes, i.e.:  Port-based 802.1X  Single 802.1X  Multi 802.1X For trouble-shooting VLAN assignments, use the "Monitor→VLANs→VLAN Membership and VLAN Port" pages. These pages show which modules have (temporarily) overridden the current Port VLAN configuration.
Page 231 User’s Manual of WGSD-10020 Series  Restart Two buttons are available for each row. The buttons are only enabled when authentication is globally enabled and the port's Admin State is in an EAPOL-based or MAC-based mode. Clicking these buttons will not cause settings changed on the page to take effect. Reauthenticate: Schedules a reauthentication to whenever the quiet-period of the port runs out (EAPOL-based authentication).
Page 232: Network Access Overview
User’s Manual of WGSD-10020 Series 4.11.4 Network Access Overview This page provides an overview of the current NAS port states for the selected switch. The Network Access Overview screen in Figure 4-11-5 appears. Figure 4-11-5 Network Access Server Switch Status page screenshot The page includes the following fields: Object Description...
Page 233: Network Access Statistics
User’s Manual of WGSD-10020 Series Buttons Click to refresh the page immediately. Auto-refresh : Check this box to enable an automatic refresh of the page at regular intervals. 4.11.5 Network Access Statistics This page provides detailed NAS statistics for a specific switch port running EAPOL-based IEEE 802.1X authentication. For MAC-based ports, it shows selected backend server (RADIUS Authentication Server) statistics, only.
Page 234 User’s Manual of WGSD-10020 Series Port Counters Object Description  EAPOL Counters These supplicant frame counters are available for the following administrative states: Force Authorized Force Unauthorized Port-based 802.1X Single 802.1X Multi 802.1X Direction Name IEEE Name Description dot1xAuthEapolFrames The number of valid EAPOL Total frames of any type that have been received by the switch.
Page 235 User’s Manual of WGSD-10020 Series which the Packet Body Length field is invalid. dot1xAuthEapolFrames The number of EAPOL Total frames of any type that have been transmitted by the switch. dot1xAuthEapolReqIdFr The number of EAPOL Request ID amesTx Request Identity frames that have been transmitted by the switch.
Page 236 User’s Manual of WGSD-10020 Series table). dot1xAuthBackendOther Other 802.1X-based: RequestsToSupplicant Counts the number of times Requests that the switch sends an EAP Request packet following the first to the supplicant. Indicates that the backend server chose an EAP-method. MAC-based: Not applicable. dot1xAuthBackendAuth Auth.
Page 237 User’s Manual of WGSD-10020 Series packets sent from the switch towards the backend server for a given port (left-most table) or client (right-most table). Possible retransmissions are not counted.  Last Supplicant/Client Information about the last supplicant/client that attempted to authenticate. This information is available for the following administrative states: Info Port-based 802.1X...
Page 238 User’s Manual of WGSD-10020 Series MAC-based Auth. The table is identical to and is placed next to the Port Counters table, and will be empty if no MAC address is currently selected. To populate the table, select one of the attached MAC Addresses from the table below.
Page 239 User’s Manual of WGSD-10020 Series Click to clear the counters for the selected port. : This button is available in the following modes: • Multi 802.1X • MAC-based Auth.X Click to clear both the port counters and all of the attached client's counters. The "Last Client" will not be cleared, however.
Page 240: Authentication Server Configuration
User’s Manual of WGSD-10020 Series 4.11.6 Authentication Server Configuration This page allows you to configure the Authentication Servers. The Authentication Server Configuration screen in Figure 4-11-7 appears. Figure 4-11-7 Authentication Server Configuration page screenshot The page includes the following fields:...
Page 241 User’s Manual of WGSD-10020 Series Port State These setting are common for all of the Authentication Servers. Object Description  Timeout The Timeout, which can be set to a number between 3 and 3600 seconds, is the maximum time to wait for a reply from a server. If the server does not reply within this timeframe, we will consider it to be dead and continue with the next enabled server (if any).
Page 242 User’s Manual of WGSD-10020 Series RADIUS Accounting Server Configuration The table has one row for each RADIUS Accounting Server and a number of columns, which are: Object Description  # The RADIUS Accounting Server number for which the configuration below applies.
Page 243: Radius Overview
User’s Manual of WGSD-10020 Series 4.11.7 RADIUS Overview This page provides an overview of the status of the RADIUS servers configurable on the Authentication configuration page. The RADIUS Authentication/Accounting Server Overview screen in Figure 4-11-8 appears. Figure 4-11-8 RADIUS Authentication/Accounting Server Overview page screenshot The page includes the following fields: RADIUS Authentication Servers Object...
Page 244: Radius Details
User’s Manual of WGSD-10020 Series but will get re-enabled when the dead-time expires. The number of seconds left before this occurs is displayed in parentheses. This state is only reachable when more than one server is enabled. RADIUS Accounting Servers Object Description ...
Page 245 User’s Manual of WGSD-10020 Series Figure 4-11-9 RADIUS Authentication/Accounting for Server Overview page screenshot The page includes the following fields: RADIUS Authentication Servers The statistics map closely to those specified in RFC4668 - RADIUS Authentication Client MIB. Use the server select box to switch between the backend servers to show details for. Object Description ...
Page 246 User’s Manual of WGSD-10020 Series ccessRejects Access-Reject packets (valid or invalid) received from the server. radiusAuthClientExtA The number of RADIUS Access ccessChallenges Access-Challenge packets Challenges (valid or invalid) received from the server. radiusAuthClientExt The number of malformed Malformed MalformedAccessRe RADIUS Access-Response Access sponses packets received from the...
Page 247 User’s Manual of WGSD-10020 Series ccessRequests to the server. This does not Requests include retransmissions. radiusAuthClientExtA The number of RADIUS Access ccessRetransmission Access-Request packets Retransmissio retransmitted to the RADIUS authentication server. radiusAuthClientExtP The number of RADIUS Pending endingRequests Access-Request packets Requests destined for the server that have not yet timed out or...
Page 248 User’s Manual of WGSD-10020 Series up and running, and the RADIUS module is ready to accept access attempts. Dead (X seconds left): Access attempts were made to this server, but it did not reply within the configured timeout. The server has temporarily been disabled, but will get re-enabled when the dead-time expires.
Page 249 User’s Manual of WGSD-10020 Series radiusAcctClientExt The number of RADIUS BadAuthenticators packets containing invalid Authenticators authenticators received from the server. radiusAccClientExt The number of RADIUS Unknown Types UnknownTypes packets of unknown types that were received from the server on the accounting port. radiusAccClientExt The number of RADIUS Packets Dropped...
Page 250 User’s Manual of WGSD-10020 Series different server is counted as a Request as well as a timeout.  Other Info This section contains information about the state of the server and the latest round-trip time. Name RFC4670 Name Description Shows the state of the server. It takes one of State the following values: Disabled: The selected server is disabled.
Page 251: Windows Platform Radius Server Configuration
User’s Manual of WGSD-10020 Series 4.11.9 Windows Platform RADIUS Server Configuration Setup the RADIUS server and assign the client IP address to the Managed switch. In this case, field in the default IP Address of the Managed Switch with 192.168.0.100. And also make sure the shared secret key is as same as the one you had set at the Managed Switch’s 802.1x system configuration –...
Page 252 User’s Manual of WGSD-10020 Series Figure 4-11-11 Windows Server – add new RADIUS client setting Assign the client IP address to the Managed switch Figure 4-11-12 Windows Server RADIUS Server setting...
Page 253 User’s Manual of WGSD-10020 Series The shared secret key should be as same as the key configured on the Managed Switch. Figure 4-11-13 Windows Server RADIUS Server setting...
Page 254 User’s Manual of WGSD-10020 Series Configure ports attribute of 802.1X, the same as “802.1X Port Configuration”. Figure 4-11-14 802.1x Port Configuration Create user data. The establishment of the user data needs to be created on the Radius Server PC. For example, the Radius Server founded on Win2003 Server, and then: Figure 4-11-15 Windows 2003 AD server setting path...
Page 255 User’s Manual of WGSD-10020 Series Enter ” Active Directory Users and Computers”, create legal user data, the next, right-click a user what you created to enter properties, and what to be noticed: Figure 4-11-16 Add User Properties screen Figure 4-11-17 Add User Properties screen...
Page 256: Client Configuration
User’s Manual of WGSD-10020 Series Set the Ports Authenticate Status to “Force Authorized” if the port is connected to the RADIUS server or the port is a uplink port that is connected to another switch. Or once the 802.1X stat to work, the switch might not be able to access the RADIUS server.
Page 257 User’s Manual of WGSD-10020 Series Select “Authentication” tab. Select “Enable network access control using IEEE 802.1X” to enable 802.1x authentication. Select “MD-5 Challenge” from the drop-down list box for EAP type. Figure 4-11-19 Click “OK”. When client has associated with the Managed Switch, a user authentication notice appears in system tray. Click on the notice to continue.
Page 258 User’s Manual of WGSD-10020 Series Figure 4-11-20 Windows client popup login request message Enter the user name, password and the logon domain that your account belongs. 10. Click “OK” to complete the validation process. Figure 4-11-21...
Page 259: Security
User’s Manual of WGSD-10020 Series 4.12 Security This section is to control the access of the Managed Switch, includes the user access and management control. The Security page contains links to the following main topics:  Port Limit Control  Access Management ...
Page 260 User’s Manual of WGSD-10020 Series Figure 4-12-1 Port Limit Control Configuration Overview page screenshot The page includes the following fields: System Configuration Object Description  Mode Indicates if Limit Control is globally enabled or disabled on the switchstack. If globally disabled, other modules may still use the underlying functionality, but limit checks and corresponding actions are disabled.
Page 261 User’s Manual of WGSD-10020 Series To understand why aging may be desired, consider the following scenario: Suppose an end-host is connected to a 3rd party switch or hub, which in turn is connected to a port on this switch on which Limit Control is enabled. The end-host will be allowed to forward if the limit is not exceeded.
Page 262: Access Management
User’s Manual of WGSD-10020 Series no new will be learned. Even if the link is physically disconnected and reconnected on the port (by disconnecting the cable), the port will remain shut down. There are three ways to re-open the port: 1) Boot the stack or elect a new masterthe switch, 2) Disable and re-enable Limit Control on the port or the stackswitch, 3) Click the Reopen button.
Page 263: Access Management Statistics
User’s Manual of WGSD-10020 Series Figure 4-12-2 Access Management Configuration Overview page screenshot The page includes the following fields: Object Description  Mode Indicates the access management mode operation. Possible modes are: Enabled: Enable access management mode operation. Disabled: Disable access management mode operation. ...
Page 264: Https
User’s Manual of WGSD-10020 Series Figure 4-12-3 Access Management Statistics Overview page screenshot The page includes the following fields: Object Description  Interface The interface that allowed remote host can access the switch.  Receive Packets The received packets number from the interface under access management mode is enabled.
Page 265: Ssh
User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description  Mode Indicates the HTTPS mode operation. Possible modes are: Enabled: Enable HTTPS mode operation. Disabled: Disable HTTPS mode operation.  Automatic Redirect Indicates the HTTPS redirect mode operation. Automatic redirect web browser to HTTPS during HTTPS mode enabled.
Page 266: Port Security Status
User’s Manual of WGSD-10020 Series Buttons : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. 4.12.6 Port Security Status This page shows the Port Security status. Port Security is a module with no direct configuration. Configuration comes indirectly from other modules - the user modules.
Page 267 User’s Manual of WGSD-10020 Series Object Description  User Module Name The full name of a module that may request Port Security services.  Abbr A one-letter abbreviation of the user module. This is used in the Users column in the port status table.
Page 268: Port Security Detail
User’s Manual of WGSD-10020 Series 4.12.7 Port Security Detail This page shows the MAC addresses secured by the Port Security module. Port Security is a module with no direct configuration. Configuration comes indirectly from other modules - the user modules. When a user module has enabled port security on a port, the port is set-up for software-based learning.
Page 269: Dhcp Snooping
User’s Manual of WGSD-10020 Series 4.12.8 DHCP Snooping DHCP Snooping is used to block intruder on the untrusted ports of DUT when it tries to intervene by injecting a bogus DHCP reply packet to a legitimate conversation between the DHCP client and server. Configure DHCP Snooping on this page. The DHCP Snooping Configuration screen in Figure 4-12-8 appears.
Page 270: Dhcp Snooping Statistics
User’s Manual of WGSD-10020 Series : Click to save changes. Click to undo any changes made locally and revert to previously saved values. 4.12.9 DHCP Snooping Statistics This page provides statistics for DHCP snooping. The statistics only counter packet under DHCP snooping mode is enabled and relay mode is disabled.
Page 271: Ip Source Guard Configuration
User’s Manual of WGSD-10020 Series  Rx and Tx Release The number of release (option 53 with value 7) packets received and transmitted.  Rx and Tx Inform The number of inform (option 53 with value 8) packets received and transmitted. ...
Page 272 User’s Manual of WGSD-10020 Series Figure 4-12-10 IP Source Guard Configuration screen page screenshot The page includes the following fields: Object Description  Mode of IP Source Enable the Global IP Source Guard or disable the Global IP Source Guard. All configured ACEs will be lost when the mode is enabled.
Page 273: Ip Source Guard Static Table
User’s Manual of WGSD-10020 Series 4.12.11 IP Source Guard Static Table This page provides Static IP Source Guard Table. The Static IP Source Guard Table screen in Figure 4-12-11 appears. Figure 4-12-11 Static IP Source Guard Table screen page screenshot The page includes the following fields: Object Description...
Page 274 User’s Manual of WGSD-10020 Series Figure 4-12-12 ARP Inspection Configuration screen page screenshot The page includes the following fields: Object Description  Mode of ARP Enable the Global ARP Inspection or disable the Global ARP Inspection. Inspection Configuration  Port Mode Specify ARP Inspection is enabled on which ports.
Page 275: Arp Inspection Static Table
User’s Manual of WGSD-10020 Series 4.12.13 ARP Inspection Static Table This page provides Static ARP Inspection Table. The Static ARP Inspection Table screen in Figure 4-12-13 appears. Figure 4-12-13 Static ARP Inspection Table screen page screenshot The page includes the following fields: Object Description ...
Page 276: Address Table
User’s Manual of WGSD-10020 Series 4.13 Address Table Switching of frames is based upon the DMAC address contained in the frame. The Managed Switch builds up a table that maps MAC addresses to switch ports for knowing which ports the frames should go to (based upon the DMAC address in the frame ). This table contains both static and dynamic entries.
Page 277 User’s Manual of WGSD-10020 Series Aging Configuration By default, dynamic entries are removed from the MAC table after 300 seconds. This removal is also called aging. Object Description  Disable Automatic Enables/disables the the automatic aging of dynamic entries Aging ...
Page 278: Mac Address Table Status
User’s Manual of WGSD-10020 Series Buttons : Click to add a new entry. : Click to save changes. Click to undo any changes made locally and revert to previously saved values. 4.13.2 MAC Address Table Status Dynamic MAC Table Entries in the MAC Table are shown on this page. The MAC Table contains up to 8192 entries, and is sorted first by VLAN ID, then by MAC address.
Page 279: Dynamic Arp Inspection Table
User’s Manual of WGSD-10020 Series Object Description  Indicates whether the entry is a static or dynamic entry. Type  The VLAN ID of the entry. VLAN  The MAC address of the entry. MAC address  The ports that are members of the entry. Port Members Buttons Auto-refresh...
Page 280: Dynamic Ip Source Guard Table
User’s Manual of WGSD-10020 Series more entries" is shown in the displayed table. Use the “|<<” button to start over. The page includes the following fields: Object Description  The port number for which the status applies. Click the port number to see the Port status for this particular port.
Page 281 User’s Manual of WGSD-10020 Series The "Start from port address", "VLAN", "IP address" and "IP mask" input fields allow the user to select the starting point in the Dynamic IP Source Guard Table. Clicking the “Refresh” button will update the displayed table starting from that or the closest next Dynamic IP Source Guard Table match.
Page 282: Lldp
User’s Manual of WGSD-10020 Series 4.14 LLDP 4.14.1 Link Layer Discovery Protocol Link Layer Discovery Protocol (LLDP) is used to discover basic information about neighboring devices on the local broadcast domain. LLDP is a Layer 2 protocol that uses periodic broadcasts to advertise information about the sending device. Advertised information is represented in Type Length Value (TLV) format according to the IEEE 802.1ab standard, and can include details such as device identification, capabilities and configuration settings.
Page 283 User’s Manual of WGSD-10020 Series The page includes the following fields: LLDP Parameters Object Description  The switch is periodically transmitting LLDP frames to its neighbors for having the Tx Interval network discovery information up-to-date. The interval between each LLDP frame is determined by the Tx Interval value.
Page 284 User’s Manual of WGSD-10020 Series  Select LLDP mode. Mode Rx only The switch will not send out LLDP information, but LLDP information from neighbor units is analyzed. Tx only The switch will drop LLDP information received from neighbors, but will send out LLDP information.
Page 285: Lldpmed Configuration
User’s Manual of WGSD-10020 Series 4.14.3 LLDPMED Configuration This page allows you to configure the LLDP-MED. The LLDPMED Configuration screen in Figure 4-14-2 appears. Figure 4-14-2 LLDPMED Configuration page screenshot The page includes the following fields: Fast start repeat count Object Description ...
Page 286 User’s Manual of WGSD-10020 Series advertise LLDP-MED TLVs in outgoing LLDPDUs on the associated port. The LLDP-MED application will temporarily speed up the transmission of the LLDPDU to start within a second, when a new LLDP-MED neighbor has been detected in order share LLDP-MED information as fast as possible to new neighbors.
Page 287 User’s Manual of WGSD-10020 Series WGS84: (Geographical 3D) - World Geodesic System 1984, CRS Code 4327, Prime Meridian Name: Greenwich. NAD83/NAVD88: North American Datum 1983, CRS Code 4269, Prime Meridian Name: Greenwich; The associated vertical datum is the North American Vertical Datum of 1988 (NAVD88).
Page 288 User’s Manual of WGSD-10020 Series  Building Building (structure) - Example: Low Library  Apartment Unit (Apartment, suite) - Example: Apt 42  Floor Floor - Example: 4  Room no. Room number - Example: 450F  Place type Place type - Example: Office ...
Page 289 User’s Manual of WGSD-10020 Series 4. Video Conferencing 5. Streaming Video 6. Control / Signaling (conditionally support a separate network policy for the media types above) A large network may support multiple VoIP policies across the entire organization, and different policies per application type. LLDP-MED allows multiple policies to be advertised per port, each corresponding to a different application type.
Page 290 User’s Manual of WGSD-10020 Series Streaming Video - for use by broadcast or multicast based video content distribution and other similar applications supporting streaming video services that require specific network policy treatment. Video applications relying on TCP with buffering would not be an intended use of this application type. Video Signaling (conditional) - for use in network topologies that require a separate policy for the video signaling than for the video media.
Page 291: Lldp-Med Neighbor
User’s Manual of WGSD-10020 Series Buttons : click to add new policy. : Click to save changes. Click to undo any changes made locally and revert to previously saved values. 4.14.4 LLDP-MED Neighbor This page provides a status overview for all LLDP-MED neighbors. The displayed table contains a row for each port on which an LLDP neighbor is detected.
Page 292 User’s Manual of WGSD-10020 Series 4. IEEE 802.11 Wireless Access Point 5. Any device that supports the IEEE 802.1AB and MED extensions defined by TIA-1057 and can relay IEEE 802 frames via any method. LLDP-MED Endpoint Device Definition Within the LLDP-MED Endpoint Device category, the LLDP-MED scheme is broken into further Endpoint Device Classes, as defined in the following.
Page 293 User’s Manual of WGSD-10020 Series communication appliances that directly support the end user. Discovery services defined in this class include provision of location identifier (including ECS / E911 information), embedded L2 switch support, inventory management  LLDP-MED LLDP-MED Capabilities describes the neighbor unit's LLDP-MED capabilities. The possible capabilities are: Capabilities 1.
Page 294: Neighbor
User’s Manual of WGSD-10020 Series Defined: The network policy is defined.  TAG TAG is indicating whether the specified application type is using a tagged or an untagged VLAN. Can be Tagged ot Untagged Untagged: The device is using an untagged frame format and as such does not include a tag header as defined by IEEE 802.1Q-2003.
Page 295 User’s Manual of WGSD-10020 Series  Remote Port ID The Remote Port ID is the identification of the neighbor port.  System Name System Name is the name advertised by the neighbor unit.  Port Description Port Description is the port description advertised by the neighbor unit. ...
Page 296: Port Statistics
User’s Manual of WGSD-10020 Series 4.14.6 Port Statistics This page provides an overview of all LLDP traffic. Two types of counters are shown. Global counters are counters that refer to the whole stack, switch, while local counters refers to counters for the currently selected switch. The LLDP Statistics screen in Figure 4-14-5 appears.
Page 297: Port Statistics
User’s Manual of WGSD-10020 Series Object Description  The port on which LLDP frames are received or transmitted. Local Port  The number of LLDP frames transmitted on the port. Tx Frames  The number of LLDP frames received on the port. Rx Frames ...
Page 298 User’s Manual of WGSD-10020 Series This page provides an overview of EEE information exchanged by LLDP. The LLDP Neighbors EEE Information screen in Figure 4-14-6 appears. Figure 4-14-6 LLDP Neighbors EEE Information page screenshot The page includes the following fields: Object Description ...
Page 299 User’s Manual of WGSD-10020 Series  The resolved Rx Tw for this link. Note : NOT the link parther Resolved Rx Tw The resolved value that is the actual "tx wakeup time " used for this link (based on EEE information exchanged via LLDP). Buttons : Click to refresh the page immediately.
Page 300: Network Diagnostics
User’s Manual of WGSD-10020 Series 4.15 Network Diagnostics This section provide the Physical layer and IP layer network diagnostics tools for troubleshoot. The diagnostic tools are designed for network manager to help them quickly diagnose problems between point to point and better service customers. Use the Diagnastics menu items to display and configure basic administrative details of the Managed Switch.
Page 301: Ipv6 Ping
User’s Manual of WGSD-10020 Series Figure 4-15-1 ICMP Ping page screenshot The page includes the following fields: Object Description  The destination IP Address. IP Address  The payload size of the ICMP packet. Values range from 8 bytes to 1400 bytes. Ping Size Be sure the target IP Address is within the same network subnet of the switch, or you had setup the correct gateway IP address.
Page 302: Remote Ip Ping Test
User’s Manual of WGSD-10020 Series Object Description  The destination IPv6 Address. IPv6 Address  The payload size of the ICMPv6 packet. Values range from 8 bytes to 1400 Ping Size bytes. Buttons : Click to transmit ICMP packets. 4.15.3 Remote IP Ping Test This page allows you to issue ICMP PING packets to troubleshoot IP connectivity issues on special port.
Page 303: Cable Diagnostics
User’s Manual of WGSD-10020 Series  The destination IP Address. Remote IP Address  The payload size of the ICMP packet. Values range from 8 bytes to 1400 bytes. Ping Size  Display the ping result. Result 4.15.4 Cable Diagnostics This page is used for running the Cable Diagnostics.
Page 304 User’s Manual of WGSD-10020 Series  Port: Port number. Cable Status Pair: The status of the cable pair. Length: The length (in meters) of the cable pair. Buttons : Click to run the diagnostics.
Page 305: Power Over Ethernet (Wgsd-10020Hp)
4.16 Power over Ethernet (WGSD-10020HP) Providing up to 8 PoE, in-line power interface, the WGSD-10020HP PoE Switch can easily build a power central-controlled IP phone system, IP Camera system, AP group for the enterprise. For instance, 8 camera / AP can be easily installed around the corner in the company for surveillance demands or build a wireless roaming environment in the office.
Page 306: Power Configuration
User’s Manual of WGSD-10020 Series PoE Splitter PoE Splitter split the PoE 56V DC over the Ethernet cable into 5/12V DC power output. It frees the device deployment from restrictions due to power outlet locations, which eliminate the costs for additional AC wiring and reduces the 3~12 watts installation time.
Page 307 User’s Manual of WGSD-10020 Series In this mode the Maximum Power fields have no effect.  Allocation mode In this mode the user allocates the amount of power that each port may reserve. The allocated/reserved power for each port/PD is specified in the Maximum Power fields. The ports are shut down when total reserved powered exceeds the amount of power that the power supply can deliver.
Page 308 : Click to save changes. : Click to undo any changes made locally and revert to previously saved values. For WGSD-10020HP, the total PoE power reservation from Port-1~8 is up to 150W PD Classifications A PD may be classified by the PSE based on the classification information provided by the PD. The intent of PD classification is to provide information about the maximum power required by the PD during operation.
Page 309: Port Configuration
User’s Manual of WGSD-10020 Series Class Usage Range of maximum power used by the PD Class Dsecription Default 0.44 to 12.95 Watts Classification unimplement Optional 0.44 to 3.84 Watts Very low power Optional 3.84 to 6.49 Watts Low power Optional 6.49 to 12.95 Watts (or to 15.4Watts) Mid power Optional...
Page 310 User’s Manual of WGSD-10020 Series class3 level on the 802.3at mode will be reserved the same PoE power with 802.3af mode.  Priority The Priority represents PoE ports priority. There are three levels of power priority named Low, High and Critical. The priority is used in the case when total power consumption has been over total power budget.
Page 311: Poe Status
User’s Manual of WGSD-10020 Series 4.16.4 PoE Status This page allows the user to inspect the total power consumption, total power reserved and current status for all PoE ports. The screen in Figure 4-16-4 appears. Figure 4-16-4 PoE Status screenshot The page includes the following fields: Object Description...
Page 312: Poe Schedule
User’s Manual of WGSD-10020 Series  Port Status The Port Status shows the port's status.  Total Show the total watts usage of all PDs. Buttons Auto-refresh Check this box to enable an automatic refresh of the page at regular intervals. : Click to refresh the page immediately.
Page 313 User’s Manual of WGSD-10020 Series The page includes the following fields: Object Description  Profile Set the schedule profile mode. Possible porifles are: Profile1 Profile2 Profile3 Profile4  Week Day Allows user to set week day for defining PoE function should be enabled on the day. ...
Page 314: Lldp Poe Neighbours
User’s Manual of WGSD-10020 Series 4.16.6 LLDP PoE Neighbours This page provides a status overview for all LLDP PoE neighbors. The displayed table contains a row for each port on which an LLDP PoE neighbor is detected. The columns hold the following information: The screen in Figure 4-16-6 appears.
Page 315: Pd Alvie-Check
WGSD-10020HP PoE switch can be configured to monitor connected PD’s status in real-time via ping action. Once the PD stops working and without response, WGSD-10020HP is going to restart PoE port port power, and bring the PD back to work. It will greatly enhance the reliability and reduces administrator management burden.
Page 316 PD Alive-check is not a defining standard, so the PoE device on the market doesn’t report reboots done information to WGSD-10020HP, so user has to make sure how long the PD will be finished to boot, and then set the time value to this column.
Page 317: Command Line Interface
User’s Manual of WGSD-10020 Series 5. COMMAND LINE INTERFACE 5.1 Accessing the CLI When accessing the management interface for the switch over a direct connection to the server’s console port, or via a Telnet connection, the switch can be managed by entering command keywords and parameters at the prompt. Using the switch's command-line interface (CLI) is very similar to entering commands on a UNIX system.
Page 318: Configure Ip Address
5-2. Figure 5-2 Show IP information screen  Configure IP address On “WGSD-10020HP/> ” prompt, enter the following command and press <Enter>. As show in Figure 5-3. WGSD-10020HP/> ip setup 192.168.0.101 255.255.255.0 192.168.0.253 1 The previous command would apply the follow settings for the Switch.
Page 319 User’s Manual of WGSD-10020 Series Figure 5-3 Set IP address screen Repeat Step 1 to check if the IP address is changed. If the IP address is successfully configured, the Managed Switch will apply the new IP address setting immediately. You can access the Web interface of Managed Switch through the new IP address.
Page 320: Telnet Login
User’s Manual of WGSD-10020 Series 5.2 Telnet Login The Managed Switch also supports telnet for remote management. The switch asks for user name and password for remote login when using telnet, please use “admin” for username & password.
Page 321: Command Line Mode
User’s Manual of WGSD-10020 Series 6. Command Line Mode The CLI groups all the commands in appropriate modes according to the nature of the command. A sample of the CLI command modes are described below. Each of the command modes supports specific software commands. Command Groups: System System settings and reset options...
Page 322: System Log Configuration
: 00:10:55 Software Version: Beta1109061425 Software Date : 2011-09-06 14:27:40 +0800 Previous Restart: Cold WGSD-10020HP:/> System Log Configuration Description: Show system log configuration. Syntax: System Log Configuration Example: To display system log information: WGSD-10020HP:/>System log configuration System Log Configuration: =========================...
Page 323: System Version
WGSD-10020HP:/> System Version Description: Show system version information. Syntax: System Version Example: To display system version: WGSD-10020HP:/>System version Version : Beta1109061425 Build Date : 2011-09-06 14:27:40 +0800 WGSD-10020HP:/> System Log Server Mode Description: Show or set the system log server mode.
Page 324: System Name
User’s Manual of WGSD-10020 Series Example: To show the log server mode: WGSD-10020HP:/>System log server mode System Log Server Mode : Disabled System Name Description: Set or show the system name. Syntax: System Name [<name>] [clear] Parameters: <name>: System name string. (1-255) Use 'clear' or ""...
Page 325: System Log Server Address
Parameters: <ip_addr_string>: IP host address (a.b.c.d) or a host name string Default Setting: empty Example: To set log server address: WGSD-10020HP:/> log server address 192.168.0.21 System Location Description: Set or show the system location. Syntax: System Location [<location>] [clear] Parameters: <location>: System location string.
Page 326: System Log Level
: Send informations, warnings and errors info warning : Send warnings and errors : Send errors error Default Setting: info Example: To set log level: WGSD-10020HP:/> log level warning System Timezone Description: Set or show the system timezone offset. Syntax: System Timezone [<offset>]...
Page 327: System Log Lookup
User’s Manual of WGSD-10020 Series Parameters: <offset>: Time zone offset in minutes (-720 to 720) relative to UTC Default Setting: Example: To set timezone: WGSD-10020HP:/>system timezone 0 System Log Lookup Description: Show or clear the system log. Syntax: System Log Lookup [<log_id>] [all|info|warning|error] [clear] Parameters: <log_id>: System log ID or range (default: All entries)
Page 328: System Reboot
Keep IP configuration, default: Restore full configuration Example: To restore default value but not reset IP address: WGSD-10020HP:/>system restore default keep_ip System Load Description: Show current CPU load: 100ms, 1s and 10s running average (in percent, zero is idle).
Page 329 User’s Manual of WGSD-10020 Series Syntax: System Load Example: To show current CPU load: WGSD-10020HP:/>system load Load average(100ms, 1s, 10s):...
Page 330: Ip Command
User’s Manual of WGSD-10020 Series 6.2 IP Command IP Configuration Description: Show IP configuration. Syntax: IP Configuration Example: Show IP configuration: WGSD-10020HP:/>ip configuration IP Configuration: ================= DHCP Client : Disabled IP Address : 192.168.0.101 IP Mask : 255.255.255.0 IP Router : 192.168.0.253...
Page 331: Ip Setup
<ip_router>: IP router (a.b.c.d), default: Show IP router : VLAN ID (1-4095), default: Show VLAN ID <vid> Default Setting: IP Address : 192.168.0.100 IP Mask : 255.255.255.0 IP Router : 192.168.0.1 DNS Server : 0.0.0.0 VLAN ID Example: Set IP address: WGSD-10020HP:/>ip setup 192.168.0.100 255.255.255.0...
Page 332: Ip Ping
<ip_addr_string>: IP host address (a.b.c.d) or a host name string : Ping data length (8-1400), excluding MAC, IP and ICMP headers <ping_length> Example: WGSD-10020HP:/>ip ping 192.168.0.21 PING server 192.168.0.21 60 bytes from 192.168.0.21: icmp_seq=0, time=0ms 60 bytes from 192.168.0.21: icmp_seq=1, time=0ms 60 bytes from 192.168.0.21: icmp_seq=2, time=0ms...
Page 333: Ip Dns Proxy
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>ip dns 168.95.1.1 IP DNS Proxy Description: Set or show the IP DNS Proxy mode. Syntax: IP DNS_Proxy [enable|disable] Parameters: enable : Enable DNS Proxy disable: Disable DNS Proxy Default Setting: disable Example: Enable DNS proxy function: WGSD-10020HP:/>ip dns_proxy enable...
Page 334: Ipv6 Setup
It also used a following legally IPv4 address. For example,'::192.1.2.34'. Default Setting: IPv6 AUTOCONFIG mode : Disabled IPv6 Link-Local Address: fe80::6082:cdb9:19ab:c0e2 IPv6 Address : ::192.168.0.100 IPv6 Prefix : 96 IPv6 Router : :: Example: Set IPv6 address: WGSD-10020HP:/>ip ipv6 setup 2001::0002 64 2100::0001...
Page 335: Ipv6 Ping
16-bit groups of contiguous zeros; but it can only appear once. It also used a following legally IPv4 address. For example,'::192.1.2.34'. <ping_length>: Ping data length (8-1400), excluding MAC, IP and ICMP headers Example: WGSD-10020HP:/>ip ipv6 ping 2001::0002 PING6 server 2001::2 68 bytes from 2001::2: icmp_seq=0, time=0ms 68 bytes from 2001::2: icmp_seq=1, time=0ms...
Page 336: Ip Ntp Mode
: Enable NTP mode enable : Disable NTP mode disable (default: Show NTP mode) Default Setting: disable Example: Enable NTP mode: WGSD-10020HP:/>ip ntp mode enable IP NTP Server Add Description: Add NTP server entry. Syntax: IP NTP Server Add <server_index> <ip_addr_string>...
Page 337: Ip Ntp Server Ipv6 Add
It also used a following legally IPv4 address. For example,'::192.1.2.34'. Example: To add IPv6 NTP server: WGSD-10020HP:/>ip ntp server ipv6 add 1 2001:7b8:3:2c::123 IP NTP Server Delete Description: Delete NTP server entry.
Page 338 User’s Manual of WGSD-10020 Series <server_index>: The server index (1-5) Example: To delete NTP server: WGSD-10020HP:/>ip ntp server delete 1...
Page 339: Port Management Command
<port_list>: Port list or 'all', default: All ports : Show ports, which are up : Show ports, which are down down (default: Show all ports) Example: Display port1~4 status WGSD-10020HP:/>port configuration 1-4 Port Configuration: =================== Port State Mode Flow Control MaxFrame Power Excessive Link...
Page 340: Port Flow Control
Port Flow Control [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports : Enable flow control enable : Disable flow control disable (default: Show flow control mode) Default Setting: Disable Example: Enable flow control function for port1 WGSD-10020HP:/>port flow control 1 enable...
Page 341: Port State
: Disable port disable (default: Show administrative mode) Default Setting: Enable Example: Disable port1 WGSD-10020HP:/>port state 1 disable Port Maximum Frame Description: Set or show the port maximum frame size. Syntax: Port MaxFrame [<port_list>] [<max_frame>] Parameters: <port_list>: Port list or 'all', default: All ports <max_frame>: Port maximum frame size (1518-9600), default: Show maximum frame size...
Page 342: Port Power
Enable ActiPHY power control dynamic: Enable Dynamic power control Default Setting: disable Example: Disable port power function for port1-4 WGSD-10020HP:/>port power 1-4 enable Port Excessive Description: Set or show the port excessive collision mode. Syntax: Port Excessive [<port_list>] [discard|restart] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 343: Port Statistics
User’s Manual of WGSD-10020 Series Example: WGSD-10020HP:/>port excessive 1 restart Port Statistics Description: Show port statistics. Syntax: Port Statistics [<port_list>] [<command>] [up|down] Parameters: <port_list>: Port list or 'all', default: All ports <command> : The command parameter takes the following values:...
Page 344: Port Sfp
Port SFP Description: Show SFP port information. Syntax: Port SFP [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show SFP information for port21-24 WGSD-10020HP:/>port sfp Port Type Speed Wave Length(nm) Distance(m) ---- -------------- -------- --------------- ----------- 1000Base-LX...
Page 345: Mac Address Table Command
Show MAC address table configuration. Syntax: MAC Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show Mac address state WGSD-10020HP:/>mac configuration MAC Configuration: ================== MAC Address : 00-30-4f-24-04-d1 MAC Age Time: 300 Port Learning ---- --------...
Page 346: Mac Delete
<port_list>: Port list or 'all' or 'none' : VLAN ID (1-4095), default: 1 <vid> Example: Add Mac address 00-30-4F-01-01-02 in port1 and vid1 WGSD-10020HP:/>mac add 00-30-4f-01-01-02 1 1 MAC Delete Description: Delete MAC address entry. Syntax: MAC Delete <mac_addr> [<vid>] Parameters: <mac_addr>: MAC address (xx-xx-xx-xx-xx-xx)
Page 347: Mac Age Time
User’s Manual of WGSD-10020 Series Parameters: <mac_addr>: MAC address (xx-xx-xx-xx-xx-xx) : VLAN ID (1-4095), default: 1 <vid> Example: Lookup state of Mac address 00-30-4F-01-01-02 WGSD-10020HP:/>mac lookup 00-30-4f-01-01-02 MAC Age Time Description: Set or show the MAC address age timer. Syntax: MAC Agetime [<age_time>] Parameters: <age_time>: MAC address age time (0,10-1000000) 0=disable,...
Page 348: Mac Dump
Disable learning secure : Secure learning (default: Show learn mode) Default Setting: Auto Example: Set secure learning mode in port1 WGSD-10020HP:/>mac learning 1 secure MAC Dump Description: Show sorted list of MAC address entries. Syntax: MAC Dump [<mac_max>] [<mac_addr>] [<vid>] Parameters: <mac_max>...
Page 349: Mac Statistics
Syntax: MAC Statistics [<port_list>] Parameters: <port_list>: Port list or 'all', (default: All ports) Example: Set all of MAC statistics WGSD-10020HP:/>mac statistics Port Dynamic Addresses ---- ----------------- Total Dynamic Addresses: 0 Total Static Addresses : 4 MAC Flush Description: Flush all learned entries.
Page 350: Vlan Configuration Command
VLAN Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', (default: All ports) Example: Show VLAN status of port1 WGSD-10020HP:/>vlan configuration 1 VLAN Configuration: =================== Mode : IEEE 802.1Q Port PVID IngrFilter FrameType LinkType Q-in-Q Mode Eth type ---- ---- ---------- ---------- -------- ----------- --------...
Page 351: Vlan Frame Type
<vid>|none : Port VLAN ID (1-4095) or 'none', (default: Show port VLAN ID) Default Setting: Example: Set PVID2 for port10 WGSD-10020HP:/>vlan pvid 10 2 VLAN Frame Type Description: Set or show the port VLAN frame type. Syntax: VLAN FrameType [<port_list>] [all|tagged] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 352: Vlan Ingress Filter
: Disable VLAN ingress filtering disable (default: Show VLAN ingress filtering) Default Setting: Disable Example: Enable VLAN ingress filtering for port10 WGSD-10020HP:/>vlan ingressfilter 10 enable VLAN Mode Description: Set or show the VLAN Mode. Syntax: VLAN Mode [portbased|dot1q] Parameters: : Port-Based VLAN Mode portbased : 802.1Q VLAN Mode...
Page 353: Vlan Link Type
: VLAN Link Type Untagged tagged (default: Show VLAN link type) Default Setting: Un-tagged Example: Enable tagged frame for port2 WGSD-10020HP:/>vlan linktype 2 tagged VLAN Q-in-Q Mode Description: Set or show the port Q-in-Q mode. Syntax: VLAN QinQ [<port_list>] [disable|man|customer] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 354: Vlan Ethernet Type
User’s Manual of WGSD-10020 Series Example: Set port2 in man port WGSD-10020HP:/>vlan qinq 2 man VLAN Ethernet Type Description: Set or show out layer VLAN tag ether type in Q-in-Q VLAN mode. Syntax: VLAN Ethtype [<port_list>] [man|dot1q] Parameters: <port_list>: Port list or 'all', default: All ports : Set out layer VLAN tag ether type : MAN : Set out layer VLAN tag ether type : 802.1Q...
Page 355: Vlan Forbidden Add
Parameters: <vid>|<name>: VLAN ID (1-4095) or VLAN Name <port_list> : Port list or 'all', default: All ports Example: Frobidden add port1 to port4 in VLAN10 WGSD-10020HP:/>vlan forbidden add 10 1-4 VLAN Delete Description: Delete VLAN entry. Syntax: VLAN Delete <vid>|<name>...
Page 356: Vlan Forbidden Delete
Delete VLAN entry. Syntax: LAN Forbidden Delete <vid>|<name> Parameters: <vid>|<name>: VLAN ID (1-4095) or VLAN Name Example: Forbidden delete VLAN10 WGSD-10020HP:/>vlan forbidden delete 10 VLAN Forbidden Lookup Description: Lookup VLAN Forbidden port entry. Syntax: VLAN Forbidden Lookup [<vid>] [(name <name>)] Parameters: <vid>...
Page 357: Vlan Name Add
<name>: VLAN name - Maximum of 32 characters. VLAN Name can only contain alphabets or numbers. VLAN name should contain atleast one alphabet. <vid> : VLAN ID (1-4095) Example: Add VLAN name for VLAN 1 WGSD-10020HP:/>vlan name add test 1...
Page 358: Vlan Name Delete
<name>: VLAN name - Maximum of 32 characters. VLAN Name can only contain alphabets or numbers. VLAN name should contain atleast one alphabet. Example: Delete VLAN name WGSD-10020HP:/>vlan name delete test VLAN Name Lookup Description: Show VLAN Name table. Syntax: VLAN Name Lookup [<name>]...
Page 359: Vlan Status
: All VLAN Users configuration (default: combined VLAN Users configuration) Default Setting: Promiscous Example: Show VLAN configuration of port10 WGSD-10020HP:/>status 1 Port VLAN User PortType PVID Frame Type Ing Filter Tx Tag UVID Conflicts ---- ----------- ------------- ---- ---------- ----------- ----------- ----- ---------...
Page 360: Private Vlan Configuration Command
PVLAN Configuration Description: Show Private VLAN configuration. Syntax: PVLAN Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show private VLAN configuration WGSD-10020HP:/> pvlan configuration Private VLAN Configuration: =========================== Port Isolation ---- --------- Disabled Disabled Disabled Disabled...
Page 361: Pvlan Add
<pvlan_id> : Private VLAN ID. The allowed range for a Private VLAN ID is the same as the switch port number range. <port_list>: Port list or 'all', default: All ports Example: Add port1 to port4 in PVLAN10 WGSD-10020HP:/>pvlan add 10 1-4 PVLAN Delete Description: Delete Private VLAN entry.
Page 362: Pvlan Isolate
PVLAN Isolate [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports : Enable port isolation enable : Disable port isolation disable (default: Show port isolation port list) Default Setting: disable Example: Enable isolate for port10 WGSD-10020HP:/>pvlan isolate 10 enable...
Page 363: Security Command
Description: Show users configuration. Syntax: Security Switch Users Configuration Default Setting: User Name Privilege admin Example: Show users configuration WGSD-10020HP:/>security switch user configuration Users Configuration: ==================== User Name Privilege Level -------------------------------- ---------------- admin Security Switch User Add Description: Add or modify users entry.
Page 364: Security Switch User Delete
User’s Manual of WGSD-10020 Series Example: Add new user: username: test, password: test & privilege: 10 WGSD-10020HP:/>security switch users add test test 10 Security Switch User Delete Description: Delete users entry. Syntax: Security Switch Users Delete <user_name> Parameters: <user_name>: A string identifying the user name that this entry should belong to. The allowed string length is (1-32). The...
Page 365: Security Switch Privilege Level Group
User’s Manual of WGSD-10020 Series CRO CRW SRO SRW -------------------------------- --- --- --- --- Aggregation 5 10 5 10 Debug 15 15 15 15 Diagnostics 5 10 5 10 DualCPU 5 10 5 10 5 10 5 10 5 10 5 10 LACP 5 10...
Page 366: Security Switch Privilege Level Current
<sro> : Status/Statistics read-write privilege level (1-15) <srw> Example: Change privilege level of MVR group. WGSD-10020HP:/>security switch privilege level group mvr 15 15 15 15 Security Switch Privilege Level Current Description: Show the current privilege level. Syntax: Security Switch Privilege Level Current...
Page 367: Security Switch Auth Method
: Enable local authentication if remote authentication fails enable : Disable local authentication if remote authentication fails disable (The parameter is effective when it is typed) Default Setting: disable Example: Use RADIUS authentication method for telnet. WGSD-10020HP:/>security switch auth method telnet radius enable...
Page 368: Security Switch Ssh Configuration
Security Switch SSH Mode Description: Set or show the SSH mode. Syntax: Security Switch SSH Mode [enable|disable] Parameters: enable : Enable SSH disable: Disable SSH (default: Show SSH mode) Default Setting: enable Example: Enable SSH function. WGSD-10020HP:/>security switch ssh mode enable...
Page 369: Security Switch Https Configuration
Security Switch HTTPs Mode Description: Set or show the HTTPS mode. Syntax: Security Switch HTTPS Mode [enable|disable] Parameters: enable : Enable HTTPs disable: Disable HTTPs (default: Show HTTPs mode) Default Setting: enable Example: Enable HTTPs function. WGSD-10020HP:/>security switch https mode enable...
Page 370: Security Switch Https Redirect
: Enable HTTPs redirect disable: Disable HTTPs redirect (default: Show HTTPs redirect mode) Default Setting: disable Example: Enable HTTPs redirect function. WGSD-10020HP:/>security switch https redirect enable Security Switch Access Configuration Description: Show access management configuration. Syntax: Security Switch Access Configuration Example: Show access management configuration.
Page 371: Security Switch Access Mode
: Enable access management disable: Disable access management (default: Show access management mode) Default Setting: disable Example: Enable access management function. WGSD-10020HP:/>security switch access mode enable Security Switch Access Configuration Description: Show access management configuration. Syntax: Security Switch Access Configuration Example: Show access management configuration.
Page 372: Security Switch Access Mode
(default: Show access management mode) Default Setting: disable Example: Enable switch access mode WGSD-10020HP:/>security switch access mode enable Security Switch Access Add Description: Add access management entry, default: Add all supported protocols. Syntax: Security Switch Access Add <access_id> <start_ip_addr> <end_ip_addr> [web] [snmp] [telnet]...
Page 373: Security Switch Access Ipv6 Add
: Indicates that the host can access the switch from TELNET/SSH telnet Example: Add access management list from 192.168.0.1 to 192.168.0.200 via web interface. WGSD-10020HP:/>security switch access add 1 192.168.0.1 192.168.0.200 web Security Switch Access IPv6 Add Description: Add access management IPv6 entry, default: Add all supported protocols.
Page 374: Security Switch Access Delete
User’s Manual of WGSD-10020 Series WGSD-10020HP:/> security switch access add 2001::0001 2001::0100 web Security Switch Access Delete Description: Delete access management entry. Syntax: Security Switch Access Delete <access_id> Parameters: <access_id>: entry index (1-16) Example: Delete access management ID 1 WGSD-10020HP:/>security switch access delete 1...
Page 375: Security Switch Access Statistics
User’s Manual of WGSD-10020 Series Syntax: Security Switch Access Clear Example: Clear access management entry. WGSD-10020HP:/>security switch access clear Security Switch Access Statistics Description: Show or clear access management statistics. Syntax: Security Switch Access Statistics [clear] Parameters: clear: Clear access management statistics Example: Show access management statistics.
Page 376: Security Switch Snmp Mode
: Enable SNMP disable: Disable SNMP (default: Show SNMP mode) Default Setting: enable Example: Disable SNMP mode. WGSD-10020HP:/>security switch snmp mode disable Security Switch SNMP Version Description: Set or show the SNMP protocol version. Syntax: Security Switch SNMP Version [1|2c|3] Parameters:...
Page 377: Security Switch Snmp Read Community
(default: Show SNMP read community) Default Setting: public Example: Set SNMP read community private. WGSD-10020HP:/>security switch snmp read community private Security Switch SNMP Write Community Description: Set or show the community string for SNMP write access. Syntax: Security Switch SNMP Write Community [<community>] Parameters: <community>: Community string.
Page 378: Security Switch Snmp Trap Mode
User’s Manual of WGSD-10020 Series Example: Set public value in SNMP write community. WGSD-10020HP:/>security switch snmp write community public Security Switch SNMP Trap Mode Description: Set or show the SNMP trap mode. Syntax: Security Switch SNMP Trap Mode [enable|disable] Parameters:...
Page 379: Security Switch Snmp Trap Community
User’s Manual of WGSD-10020 Series Default Setting: Example: Set SNMP trap version in version 2c. WGSD-10020HP:/>security switch snmp trap version 2c Security Switch SNMP Trap Community Description: Set or show the community string for SNMP traps. Syntax: Security Switch SNMP Trap Community [<community>] Parameters: <community>: Community string.
Page 380: Security Switch Snmp Trap Ipv6 Destination
16-bit groups of contiguous zeros; but it can only appear once. It also used a following legally IPv4 address. For example,'::192.1.2.34'. Example: Set SNMP trap IPv6 destination address for 2001::0001 WGSD-10020HP:/>security switch snmp trap ipv6 destination 2001::0001 Security Switch SNMP Trap Authentication Failure Description: Set or show the SNMP authentication failure trap mode.
Page 381: Security Switch Snmp Trap Link-Up
User’s Manual of WGSD-10020 Series Default Setting: enable Example: Disable SNMP trap authentication failure WGSD-10020HP:/>security switch snmp trap authentication failure disable Security Switch SNMP Trap Link-up Description: Set or show the port link-up and link-down trap mode. Syntax: Security Switch SNMP Trap Link-up [enable|disable]...
Page 382: Security Switch Snmp Trap Inform Timeout
(default: Show SNMP inform mode) Default Setting: enable Example: Disable SNMP trap inform mode. WGSD-10020HP:/>security switch snmp trap inform mode disable Security Switch SNMP Trap Inform Timeout Description: Set or show the SNMP trap inform timeout (usecs). Syntax: Security Switch SNMP Trap Inform Timeout [<timeout>] Parameters: <timeout>: SNMP trap inform timeout (0-2147 seconds)
Page 383: Security Switch Snmp Trap Probe Security Engine Id
(default: Show SNMP trap security engine ID probe mode) Default Setting: enable Example: Disable SNMP trap probe security engine ID WGSD-10020HP:/>security switch snmp trap probe security engine id disable Security Switch SNMP Trap Security Engine ID Description: Set or show SNMP trap security engine ID.
Page 384: Security Switch Snmp Trap Security Name
<engineid>: Engine ID, the format may not be all zeros or all 'ff'H and is restricted to 5 - 32 octet string Example: Set the SNMP trap security engine ID WGSD-10020HP:/>security switch snmp trap security engine id 800007e5017f000011 Security Switch SNMP Trap Security Name Description: Set or show SNMP trap security name.
Page 385: Security Switch Snmp Community Add
<ip_addr> : IP address (a.b.c.d), default: Show IP address <ip_mask> : IP subnet mask (a.b.c.d), default: Show IP mask Example: Add SNMPv3 community entry. WGSD-10020HP:/>security switch snmp community add public 192.168.0.20 255.255.255.0 Security Switch SNMP Community Delete Description: Delete SNMPv3 community entry.
Page 386: Security Switch Snmp Community Lookup
User’s Manual of WGSD-10020 Series Example: Delete SNMPv3 community entry WGSD-10020HP:/>security switch snmp community delete 3 Security Switch SNMP Community Lookup Description: Lookup SNMPv3 community entry. Syntax: Security Switch SNMP Community Lookup [<index>] Parameters: <index>: entry index (1-64) Example: Lookup SNMPv3 community entry WGSD-10020HP:/>security switch snmp community lookup...
Page 387: Security Switch Snmp User Delete
<priv_password>: A string identifying the privacy pass phrase. The allowed string length is (8-40), and the allowed content is ASCII characters from 33 to 126 Example: Add SNMPv3 user entry WGSD-10020HP:/>security switch snmp user add 800007e5017f000003 admin_snmpv3 md5 12345678 des abcdefgh Security Switch SNMP User Delete Description: Delete SNMPv3 user entry.
Page 388: Security Switch Snmp User Lookup
<priv_password>: A string identifying the privacy pass phrase. The allowed string length is (8-40), and the allowed content is ASCII characters from 33 to 126 Example: Delete SNMPv3 user entry WGSD-10020HP:/>security switch snmp user changekey 800007e5017f000003 admin_snmpv3 87654321 12345678 Security Switch SNMP User Lookup Description: Lookup SNMPv3 user entry.
Page 389: Security Switch Snmp Group Delete
: A string identifying the group name that this entry should belong to. The allowed string length is <group_name> (1-32), and the allowed content is ASCII characters from 33 to 126 Example: Add SNMPv3 group entry WGSD-10020HP:/>security switch snmp group add usm admin_snmpv3 group_snmpv3 Security Switch SNMP Group Delete Description: Delete SNMPv3 group entry. Syntax: Security Switch SNMP Group Delete <index>...
Page 390: Security Switch Snmp View Add
Lookup SNMPv3 group entry. Syntax: Security Switch SNMP Group Lookup [<index>] Parameters: <index>: entry index (1-64) Example: Lookup SNMPv3 group entry WGSD-10020HP:/>security switch snmp group lookup Idx Model Security Name Group Name --- ----- -------------------------------- -------------------------------- public default_ro_group private default_rw_group...
Page 391: Security Switch Snmp View Delete
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>security switch snmp view add snmpv3_view include .1 Security Switch SNMP View Delete Description: Delete SNMPv3 view entry. Syntax: Security Switch SNMP View Delete <index> Parameters: <index>: entry index (1-64) Example: Delete SNMPv3 view entry WGSD-10020HP:/>security switch snmp view delete 3...
Page 392: Security Switch Snmp Access Add
The name of "None" is reserved. The allowed string length is (1-32), and the allowed content is ASCII characters from 33 to 126 Example: Add SNMPv3 access entry WGSD-10020HP:/>security switch snmp access add group_snmpv3 usm authpriv snmpv3_view snmpv3_view Security Switch SNMP Access Delete Description:...
Page 393: Security Switch Snmp Access Lookup
Syntax: Security Switch SNMP Access Delete <index> Parameters: <index>: entry index (1-64) Example: Delete SNMPv3 access entry WGSD-10020HP:/>security switch snmp access delete 3 Security Switch SNMP Access Lookup Description: Lookup SNMPv3 access entry. Syntax: Security Switch SNMP Access Lookup [<index>] Parameters: <index>: entry index (1-64)
Page 394: Security Network Psec Port
User’s Manual of WGSD-10020 Series Security Network Psec Switch [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show port security status. WGSD-10020HP:/>security network psec switch Users: L = Limit Control 8 = 802.1X D = DHCP Snooping V = Voice VLAN...
Page 395: Security Network Limit Configuration
User’s Manual of WGSD-10020 Series Show MAC address learned on port 1 WGSD-10020HP:/>security network psec port 1 Port 1: ------- MAC Address State Added Age/Hold Time ----------------- ---- ---------- ------------------------- ------------- <none> Security Network Limit Configuration Description: Show Limit Control configuration.
Page 396: Security Network Limit Mode
: Globally disable port security (default: Show current global enabledness of port security limit control) Default Setting: disable Example: Enable the limit mode WGSD-10020HP:/>security network limit mode enable Security Network Limit Aging Description: Set or show aging enabledness. Syntax: Security Network Limit Aging [enable|disable]...
Page 397: Security Network Limit Agetime
(default: Show current enabledness of aging) Default Setting: disable Example: Enable limit aging WGSD-10020HP:/>security network limit aging enable Security Network Limit Agetime Description: Time in seconds between check for activity on learned MAC addresses. Syntax: Security Network Limit Agetime [<age_time>] Parameters: <age_time>: Time in seconds between checks for activity on a MAC address (10-10000000 seconds)
Page 398: Security Network Limit Limit
Default Setting: disable Example: Enable port limit for port 1 WGSD-10020HP:/>security network limit port 1 enable Security Network Limit Limit Description: Set or show the max. number of MAC addresses that can be learned on this set of ports. Syntax: Security Network Limit Limit [<port_list>] [<limit>]...
Page 399: Security Network Limit Reopen
(default: Show current action) Default Setting: none Example: Set trap mode for limit action for port 1 WGSD-10020HP:/>security network limit action 1 trap Security Network Limit Reopen Description: Reopen one or more ports whose limit is exceeded and shut down. Syntax: Security Network Limit Reopen [<port_list>]...
Page 400: Security Network Nas Configuration
Show 802.1X configuration. Syntax: Security Network NAS Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show 802.1X configuration of port 1 WGSD-10020HP:/>security network nas configuration 1 802.1X Configuration: ===================== Mode : Disabled Reauth. : Disabled Reauth. Period...
Page 401: Security Network Nas State
Globally disable 802.1X (default: Show current 802.1X global enabledness) Default Setting: disable Example: Enable IEEE802.1X function WGSD-10020HP:/>security network nas mode enable Security Network NAS State Description: Set or show the port security state. Syntax: Security Network NAS State [<port_list>] [auto|authorized|unauthorized|single|multi|macbased] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 402: Security Network Nas Reauthentication
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>security network nas state 1 Port Admin State Port State Last Source Last ID ---- ------------------ --------------------- ----------------- ------------------ Force Authorized Globally Disabled Security Network NAS Reauthentication Description: Set or show Reauthentication enabledness. Syntax: Security Network NAS Reauthentication [enable|disable]...
Page 403: Security Network Nas Eapoltimeout
Disable RADIUS-assigned VLAN either globally or on one or more ports (default: Show current RADIUS-assigned VLAN enabledness) Default Setting: disable Example: Enable RADIUS-assigned VLAN. WGSD-10020HP:/>security network nas radius_vlan enable Security Network NAS EapolTimeout Description: Set or show the time between EAPOL retransmissions. Syntax: Security Network NAS EapolTimeout [<eapol_timeout>] Parameters: <eapol_timeout>: Time between EAPOL retransmissions (1-65535 seconds)
Page 404: Security Network Nas Holdtime
<age_time>: Time between checks for activitiy on a MAC address that succeeded autentication (default: Show current age time) Default Setting: Example: Set NAS age time in 1000sec WGSD-10020HP:/>security network nas agetime 1000 Security Network NAS Holdtime Description: Time in seconds before a MAC-address that failed authentication gets a new authentication chance. Syntax: Security Network NAS Holdtime [<hold_time>]...
Page 405: Security Network Nas Radius_Vlan
(default: Show current RADIUS-assigned QoS enabledness) Default Setting: disable Example: Enable NAS RADIUS QoS WGSD-10020HP:/>security network nas radius_qos enable Security Network NAS RADIUS_VLAN Description: Set or show either global enabledness (use the global keyword) or per-port enabledness of RADIUS-assigned VLAN. Syntax: Security Network NAS RADIUS_VLAN [global|<port_list>] [enable|disable]...
Page 406: Security Network Nas Guest_Vlan
:The Guest VLAN can be entered even if an EAPOL frame has been received during the lifetime of the port (default: Show current setting) Default Setting: disable Example: Enable NAS guest VLAN WGSD-10020HP:/>security network nas guest_vlan enable Security Network NAS Authenticate Description: Refresh (restart) 802.1X authentication process.
Page 407: Security Network Nas Statistics
Parameters: <port_list>: Port list or 'all', default: All ports now: Force reauthentication immediately Example: Start NAS authentication now for port 1. WGSD-10020HP:/>security network nas authenticate 1 now Security Network NAS Statistics Description: Show or clear 802.1X statistics. Syntax: Security Network NAS Statistics [<port_list>] [clear|eapol|radius] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 408: Security Network Acl Configuration
User’s Manual of WGSD-10020 Series Port 1 Backend Server Statistics: Rx Access Challenges: Tx Responses: Rx Other Requests: Rx Auth. Successes: Rx Auth. Failures: Security Network ACL Configuration Description: Show ACL Configuration. Syntax: Security Network ACL Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Security Network ACL Action Description: Set or show the ACL port default action.
Page 409: Security Network Acl Policy
: Policy number (1-8) <policy> Default Setting: Example: Set ACL policy 2 for port 1 WGSD-10020HP:/>security network acl policy 1 2 Security Network ACL Rate Description: Set or show the ACL rate limiter. Syntax: Security Network ACL Rate [<rate_limiter_list>] [<rate_unit>] [<rate>] Parameters: <rate_limiter_list>: Rate limiter list (1-16), default: All rate limiters...
Page 410: Security Network Acl Add
<rate> Default Setting: Example: Set rate limit value in 100 for port 1 WGSD-10020HP:/>security network acl rate 1 100 Security Network ACL Add Description: Add or modify Access Control Entry (ACE). If the ACE ID parameter <ace_id> is specified and an entry with this ACE ID already exists, the ACE will be modified.
Page 411: Security Network Acl Delete
User’s Manual of WGSD-10020 Series : Policy number (1-8) <policy> : Tagged of frames: any|enable|disable <tagged> : VLAN ID (1-4095) or 'any' <vid> : VLAN tag priority (0-7) or 'any' <tag_prio> : DMAC type: any|unicast|multicast|broadcast <dmac_type> : Ethernet Type keyword etype : Ethernet Type: 0x600 - 0xFFFF or 'any' but excluding, <etype>...
Page 412: Security Network Acl Lookup
User’s Manual of WGSD-10020 Series Syntax: Security Network ACL Delete <ace_id> Parameters: <ace_id>: ACE ID (1-256) Example: Delete ACE 1 WGSD-10020HP:/>security network acl delete 1 Security Network ACL Lookup Description: Show ACE, default: All ACEs. Syntax: Security Network ACL Lookup [<ace_id>] Parameters: <ace_id>: ACE ID (1-256)
Page 413: Security Network Acl Status
Show ACL status. WGSD-10020HP:/>security network acl status Security Network DHCP Relay Configuration Description: Show DHCP relay configuration. Syntax: Security Network DHCP Relay Configuration Example: Show DHCP relay configuration. WGSD-10020HP:/>security network dhcp relay configuration DHCP Relay Configuration: ========================= DHCP Relay Mode : Disabled...
Page 414: Security Network Dhcp Relay Mode
Disable DHCP relaly mode (default: Show flow DHCP relaly mode) Default Setting: disable Example: Enable DHCP relay mode WGSD-10020HP:/>security network dhcp relay mode enable Security Network DHCP Relay Server Description: Show or set DHCP relay server. Syntax: Security Network DHCP Relay Server [<ip_addr>] Parameters: <ip_addr>: IP address (a.b.c.d), default: Show IP address...
Page 415: Security Network Dhcp Relay Information Mode
Default Setting: disable Example: Enable DHCP relay agent information option mode. WGSD-10020HP:/>security network dhcp relay information mode enable Security Network DHCP Relay Information Policy Description: Set or show the DHCP relay mode. When enable DHCP relay information mode operation, if agent receive a DHCP message that already contains relay...
Page 416: Security Network Dhcp Relay Statistics
(default: Show DHCP relay information policy) Default Setting: replace Example: Keep the original relay information when receive a DHCP message that already contains it WGSD-10020HP:/>security network dhcp relay information policy keep Security Network DHCP Relay Statistics Description: Show or clear DHCP relay statistics. Syntax:...
Page 417: Security Network Dhcp Snooping Mode
(default: Show flow DHCP snooping mode) Default Setting: disable Example: Enable DHCP snooping mode WGSD-10020HP:/>security network dhcp snooping mode enable Security Network DHCP Snooping Port Mode Description: Set or show the DHCP snooping port mode. Syntax: Security Network DHCP Snooping Port Mode [<port_list>] [trusted|untrusted] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 418: Security Network Dhcp Snooping Statistics
User’s Manual of WGSD-10020 Series Default Setting: trusted Example: Set untrusted DHCP snooping port mode in port 1 WGSD-10020HP:/>security network dhcp snooping port mode 1 untrusted Security Network DHCP Snooping Statistics Description: Show or clear DHCP snooping statistics. Syntax: Security Network DHCP Snooping Statistics [<port_list>] [clear] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 419: Security Network Ip Source Guard Configuration
Disable IP Source Guard Default Setting: disable Example: Enable IP source guard mode WGSD-10020HP:/>security network ip source guard mode enable Security Network IP Source Guard Port Mode Description: Set or show the IP Source Guard port mode. Syntax: Security Network IP Source Guard Port Mode [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 420: Security Network Ip Source Guard Limit
Default Setting: disable Example: Enable IP source guard port mode for port1~4 WGSD-10020HP:/>security network ip source guard port mode 1-4 enable Security Network IP Source Guard Limit Description: Set or show the IP Source Guard port limitation for dynamic entries.
Page 421: Security Network Ip Source Guard Status
<allowed_mac>: MAC address (xx-xx-xx-xx-xx-xx), MAC address allowed for doing IP source guard Example: Add IP source guard static entry. WGSD-10020HP:/>security network ip source guard entry 1 add 1 192.168.0.20 Security Network IP Source Guard Status Description: Show IP source guard static and dynamic entries.
Page 422: Security Network Arp Inspection Mode
Disable ARP Inspection Default Setting: disable Example: Enable ARP inspection mode WGSD-10020HP:/>security network arp inspection mode enable Security Network ARP Inspection Port Mode Description: Set or show the ARP Inspection port mode. Syntax: Security Network ARP Inspection Port Mode [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 423: Security Network Arp Inspection Entry
<allowed_mac>: MAC address (xx-xx-xx-xx-xx-xx), MAC address allowed for doing ARP request <allowed_ip> : IP address (a.b.c.d), IP address allowed for doing ARP request Example: Add ARP inspection static entry. WGSD-10020HP:/>security network arp inspection entry 1 add 1 00-30-4f-00-00-11 192.168.0.11 Security Network ARP Inspection Status Description: Show ARP inspection static and dynamic entries.
Page 424: Security Aaa Configuration
User’s Manual of WGSD-10020 Series Show ARP inspection static and dynamic entries. WGSD-10020HP:/>security network arp inspection status Security AAA Configuration Description: Show Auth configuration. Syntax: Security AAA Configuration Example: Show Auth configuration. WGSD-10020HP:/>security aaa configuration AAA Configuration: ================== Server Timeout...
Page 425: Security Aaa Timeout
Security AAA Timeout Description: Set or show server timeout. Syntax: Security AAA Timeout [<timeout>] Parameters: <timeout>: Server response timeout (3-3600 seconds) (default: Show server timeout configuration) Default Setting: Example: Set 30sec for server timeout WGSD-10020HP:/>security aaa timeout 30 Security AAA Deadtime Description:...
Page 426: Security Aaa Radius
<dead_time>: Time that a server is considered dead if it doesn't answer a request (0-3600 seconds) (default: Show server dead time configuration) Default Setting: Example: Set 1000sec for server dead time WGSD-10020HP:/>security aaa deadtime 1000 Security AAA RADIUS Description: Set or show RADIUS authentication server setup. Syntax: Security AAA RADIUS [<server_index>] [enable|disable] [<ip_addr_string>] [<secret>] [<server_port>]...
Page 427: Security Aaa Acct_Radius
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>security aaa radius 1 enable 192.168.0.20 12345678 1812 Security AAA ACCT_RADIUS Description: Set or show RADIUS accounting server setup. Syntax: Security AAA ACCT_RADIUS [<server_index>] [enable|disable] [<ip_addr_string>] [<secret>] [<server_port>] Parameters: The server index (1-5) (default: Show RADIUS accounting server configuration)
Page 428: Security Aaa Statistics
Quotes in the secret are not allowed. : Server TCP port. Use 0 to use the default TACACS+ port (49) <server_port> Example: Set TACACS+ authentication server configuration. WGSD-10020HP:/>security aaa tacacs+ 1 enable 192.168.0.20 12345678 49 Security AAA Statistics Description: Show RADIUS statistics. Syntax: Security AAA Statistics [<server_index>]...
Page 429: Spanning Tree Protocol Command
User’s Manual of WGSD-10020 Series 6.8 Spanning Tree Protocol Command STP Configuration Description: Show STP configuration. Syntax: STP Configuration Example: Show STP configuration. WGSD-10020HP:/>stp cofiguration STP Configuration: ================== Protocol Version: MSTP Max Age : 20 Forward Delay : 15 Tx Hold Count...
Page 430: Stp Tx Hold
User’s Manual of WGSD-10020 Series Example: Set the STP Bridge protocol version. WGSD-10020HP:/> stp version rstp STP Tx Hold Description: Set or show the STP Bridge Transmit Hold Count parameter. Syntax: STP Txhold [<holdcount>] Parameters: <holdcount>: STP Transmit Hold Count (1-10)
Page 431: Stp Maxage
User’s Manual of WGSD-10020 Series Example: Set STP maximum hops in 25 WGSD-10020HP:/>stp maxhops 25 STP MaxAge Description: Set or show the bridge instance maximum age. Syntax: STP MaxAge [<max_age>] Parameters: <max_age>: STP maximum age time (6-40, and max_age <= (forward_delay-1)*2)
Page 432: Stp Cname
: Integer value <integer> Default Setting: Configuration name: MAC address Configuration rev.: 0 Example: Set MSTP configuration name and revision. WGSD-10020HP:/>stp cname 9f_WGSD-10020 1 STP BPDU Filter Description: Set or show edge port BPDU Filtering. Syntax: STP bpduFilter [enable|disable] Parameters:...
Page 433: Stp Bpdu Guard
User’s Manual of WGSD-10020 Series Example: Set edge port BPDU filtering WGSD-10020HP:/>stp bpdufilter enable STP BPDU Guard Description: Set or show edge port BPDU Guard. Syntax: STP bpduGuard [enable|disable] Parameters: enable|disable: enable or disable BPDU Guard for Edge ports Default Setting:...
Page 434: Stp Status
User’s Manual of WGSD-10020 Series Example: Set STP recovery value in 30 sec. WGSD-10020HP:/>stp recovery 30 STP Status Description: Show STP Bridge status. Syntax: STP Status [<msti>] [<port_list>] Parameters: : STP bridge instance no (0-7, CIST=0, MSTI1=1, ...) <msti> <port_list>: Port list or 'all', default: All ports...
Page 435: Stp Msti Priority
: STP bridge instance no (0-7, CIST=0, MSTI1=1, ...) <msti> <priority> : STP bridge priority (0/16/32/48/.../224/240) Default: Example: Set MST1 priority value in 48. WGSD-10020HP:/>stp msti priority 1 48 STP MSTI Map Description: Show or clear MSTP MSTI VLAN mapping configuration. Syntax: STP Msti Map [<msti>] [clear] Parameters: <msti>: STP bridge instance no (0-7, CIST=0, MSTI1=1, ...)
Page 436: Stp Msti Add
STP Msti Add <msti> <vid> Parameters: <msti>: STP bridge instance no (0-7, CIST=0, MSTI1=1, ...) <vid> : VLAN ID (1-4095) Example: Add MST1 in vlan1. WGSD-10020HP:/>stp msti add 1 1 STP Port Configuration Description: Show STP Port configuration. Syntax: STP Port Configuration [<port_list>] Parameters: <port_list>: Port list or 'all'.
Page 437: Stp Port Mode
Enable : Disable MSTP protocol Disable Default: disable Example: Enable STP function on port1 WGSD-10020HP:/>stp port mode 1 enable STP Port Edge Description: Set or show the STP adminEdge port parameter. Syntax: STP Port Edge [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 438: Stp Port Autoedge
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>stp port edge 1 enable STP Port AutoEdge Description: Set or show the STP autoEdge port parameter. Syntax: STP Port AutoEdge [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports : Enable MSTP autoEdge...
Page 439: Stp Port Restrictedrole
User’s Manual of WGSD-10020 Series Default: auto Example: Disable STP P2P function on port1 WGSD-10020HP:/>stp port p2p 1 disable STP Port RestrictedRole Description: Set or show the MSTP restrictedRole port parameter. Syntax: STP Port RestrictedRole [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 440: Stp Port Bpduguard
: Disable MSTP restricted TCN disable Default: disable Example: Eisable STP restricted TCN on port1 WGSD-10020HP:/>stp port restrictedtcn 1 enable STP Port bpduGuard Description: Set or show the bpduGuard port parameter. Syntax: STP Port bpduGuard [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 441: Stp Port Mcheck
STP Port Mcheck [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Set the STP mCheck (Migration Check) variable for port 1. WGSD-10020HP:/>stp port mcheck 1 STP MSTI Port Configuration Description: Show the STP port instance configuration. Syntax: STP Msti Port Configuration [<msti>] [<port_list>]...
Page 442: Stp Msti Port Cost
<port_list>: Port list or 'all'. Port zero means aggregations. <path_cost>: STP port path cost (1-200000000) or 'auto' Default: auto Example: Set MSTI7 in port1 WGSD-10020HP:/>stp msti port cost 7 1 MSTI Port Path Cost ---- ---- ---------- MST7 1 Auto...
Page 443 User’s Manual of WGSD-10020 Series <priority> : STP port priority (0/16/32/48/.../224/240) Default:...
Page 444: Link Aggregation Command
Syntax: Aggr Add <port_list> [<aggr_id>] Parameters: <port_list>: Port list or 'all', default: All ports <aggr_id> : Aggregation ID Example: Add port 1~4 in Group1 WGSD-10020HP:/>aggr add 1-4 1 Aggregation Delete Description: Delete link aggregation. Syntax: Aggr Delete <aggr_id> Parameters: <aggr_id>: Aggregation ID...
Page 445: Aggregation Lookup
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>aggr delete 2 Aggregation Lookup Description: Lookup link aggregation. Syntax: Aggr Lookup [<aggr_id>] Parameters: <aggr_id>: Aggregation ID Aggregation Mode Description: Set or show the link aggregation traffic distribution mode. Syntax: Aggr Mode [smac|dmac|ip|port] [enable|disable] Parameters:...
Page 446 User’s Manual of WGSD-10020 Series WGSD-10020HP:/>Aggr mode smac disable...
Page 447: Link Aggregation Control Protocol Command
LACP Configuration Description: Show LACP configuration. Syntax: LACP Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show LACP configuration WGSD-10020HP:/>lacp configuration Port Mode Role ---- -------- ---- ------ Disabled Auto Active Disabled Auto Active Disabled Auto Active...
Page 448: Lacp Key
: Enable LACP protocol disable: Disable LACP protocol (default: Show LACP mode) Default Setting: disable Example: Enable LACP for port1~4 WGSD-10020HP:/>lacp mode 1-4 enable LACP Key Description: Set or show the LACP key. Syntax: LACP Key [<port_list>] [<key>] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 449: Lacp Status
: Initiate LACP negotiation passive: Listen for LACP packets (default: Show LACP role) Default Setting: active Example: Set passive for port1~4 WGSD-10020HP:/>lacp role 1-4 passive LACP Status Description: Show LACP Status. Syntax: LACP Status [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 450: Lacp Statistics
LACP Statistics [<port_list>] [clear] Parameters: <port_list>: Port list or 'all', default: All ports : Clear LACP statistics clear Example: Show LACP statistics of port1~4 WGSD-10020HP:/>lacp statistics 1-4 Port Rx Frames Tx Frames Rx Unknown Rx Illegal ------ --------------- --------------- ---------------...
Page 451: Lldp Command
Description: Show LLDP configuration. Syntax: LLDP Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show LLDP configuration of port1~4 WGSD-10020HP:/>lldp configuration 1-4 LLDP Configuration: =================== Interval : 30 Hold Tx Delay Reinit Delay: 2 Port Mode...
Page 452: Lldp Optional Tlv
: Enable LLDP reception only : Enable LLDP transmission only (default: Show LLDP mode) Default Setting: disable Example: Enable port1 LLDP function. WGSD-10020HP:/>lldp mode 1 enable LLDP Optional TLV Description: Show or Set LLDP Optional TLVs. Syntax: LLDP Optional_TLV [<port_list>] [port_descr|sys_name|sys_descr|sys_capa|mgmt_addr] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 453: Lldp Interval
User’s Manual of WGSD-10020 Series System capabilities: Enable Master's IP address: Enable Example: Disable description of the port for port1 WGSD-10020HP:/>lldp optional_tlv 1 port_descr disable LLDP Interval Description: Set or show LLDP Tx interval. Syntax: LLDP Interval [<interval>] Parameters: <interval>: LLDP transmission interval (5-32768)
Page 454: Lldp Delay
User’s Manual of WGSD-10020 Series Example: Set LLDP hold value in 10 WGSD-10020HP:/>lldp hold 10 LLDP Delay Description: Set or show LLDP Tx delay. Syntax: LLDP Delay [<delay>] Parameters: <delay>: LLDP transmission delay (1-8192) Default Setting: Example: Set LLDP delay value in 1 WGSD-10020HP:/>lldp delay 1...
Page 455: Lldp Statistics
User’s Manual of WGSD-10020 Series Example: Set LLDP reinit delay value in 3 WGSD-10020HP:/>lldp reinit 3 LLDP Statistics Description: Show LLDP Statistics. Syntax: LLDP Statistics [<port_list>] [clear] Parameters: <port_list>: Port list or 'all', default: All ports : Clear LLDP statistics...
Page 456: Lldp Info
User’s Manual of WGSD-10020 Series LLDP Info Description: Show LLDP neighbor device information. Syntax: LLDP Info [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 457: Lldpmed Command
Show LLDP-MED configuration. Syntax: LLDPMED Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show LLDP-MED configuration of port1~4 WGSD-10020HP:/>lldpmed configuration 1-4 LLDP-MED Configuration: ======================= Fast Start Repeast Count : 4 Location Coordinates : Latitude - 0.0000 North Longitude - 0.0000 East...
Page 458: Lldpmed Ecs
User’s Manual of WGSD-10020 Series Syntax: LLDPMED Civic [country|state|county|city|district|block|street|leading_street_direction|trailing_street_suffix|str_suf|house_no|house_no_s uffix|landmark|additional_info|name|zip_code|building|apartment|floor|room_number|place_type|postal_com_name|p_o_ box|additional_code] [<civic_value>] Parameters: : Country country : National subdivisions (state, caton, region, province, prefecture) state : County, parish,gun (JP), district(IN) county : City, townchip, shi (JP) city : City division,borough, city, district, ward,chou (JP) district : Neighborhood, block block...
Page 459: Lldpmed Policy Delete
Delete the selected policy. Syntax: LLDPMED policy delete [<policy_list>] Parameters: <policy_list>: List of policies to delete Example: Delete the policy 1 WGSD-10020HP:/>lldpmed policy delete 1 LLDPMED Policy Add Description: Adds a policy to the list of polices. Syntax: LLDPMED policy add [voice|voice_signaling|guest_voice|guest_voice_signaling|softphone_voice|video_conferencing|streaming_video|video_si gnaling] [tagged|untagged] [<vlan_id>] [<l2_priority>] [<dscp>]...
Page 460: Lldpmed Port Policy
User’s Manual of WGSD-10020 Series visitors with their own IP Telephony handsets and other similar appliances supporting interactive voice services. guest_voice_signaling : Guest Voice Signaling (conditional) for use in network topologies that require a different policy for the guest voice signaling than for the guest voice media. : Softphone Voice for use by softphone applications on typical data centric devices, such as softphone_voice PCs or laptops.
Page 461: Lldpmed Coordinates
User’s Manual of WGSD-10020 Series LLDPMED Coordinates Description: Set or show LLDP-MED Location. Syntax: LLDPMED Coordinates [latitude|longitude|altitude] [north|south|west|east|meters|floor] [coordinate_value] Parameters: : Latitude, 0 to 90 degress with max. 4 digits (Positive numbers are north of the equator and negative latitude numbers are south of the equator).
Page 462: Lldpmed Fast
User’s Manual of WGSD-10020 Series LLDPMED Fast Description: Set or show LLDP-MED Fast Start Repeat Count. Syntax: LLDPMED Fast [<count>] Parameters: <count>: The number of times the fast start LLDPDU are being sent during the activation of the fast start mechanism defined by LLDP-MED (1-10).
Page 463: Eee Command
Description: Show eee configuration. Syntax: EEE Configuration [<port_list>] Parameters: <port_list>: Port list or 'all', default: All ports Example: Show EEE configuration of port1~4 WGSD-10020HP:/>eee configuration 1-4 EEE Configuration: ================== Port Mode Urgent queues ---- ------- ------------- Disabled none Disabled none...
Page 464: Eee Urgent Queues
User’s Manual of WGSD-10020 Series disable: Disable EEE (default: Show eee mode) Default Setting: Disabled Example: Enable EEE mode for port1~4 WGSD-10020HP:/>eee mode enable 1-4 EEE Urgent Queues Description: Set or show EEE Urgent queues. Syntax: EEE Urgent_queues [<port_list>] [<queue_list>] Parameters: <port_list>...
Page 465: Power Over Ethernet Command
User’s Manual of WGSD-10020 Series 6.14 Power over Ethernet Command PoE Configuration Description: Show PoE configuration. Syntax: PoE Configuration Example: Show PoE configuration. WGSD-10020HP:/>poe configuration Port Mode AF/AT Mode Priority Max.Power[W] PowerAlloc[W] ---- ------- ---------- -------- --------------- ------------- Enabled 802.3at High 30.8...
Page 466: Af/At Mode
(default: Show PoE's mode) Default Setting: enable Example: Disable PoE function of port1~4 WGSD-10020HP:/>poe mode1-4 disable AF/AT Mode Description: Allows user to set up 802.3af (type1) or 802.3at (type2) mode to per port. Syntax: PoE mode [<port_list>] [af|at] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 467: Poe Mamagement Mode
User’s Manual of WGSD-10020 Series Example: Set low priority for port1~4 WGSD-10020HP:/>poe priority 1-4 low PoE Mamagement Mode Description: Show / Set PoE management mode. Syntax: PoE Mgmt_mode [mgt_class|mgt_alloc|mgt_consumption|mgt_priority] PoE Maximum Power Description: Set or show PoE maximum power per port (0-30.8, with one digit).
Page 468: Poe Power Supply
<alloc_power>: PoE maiximum power allocated for the port ( 0-30.8 ) Default Setting: 30.8 Example: Set PoE maximum power allocated in 10 watts for port1~4. WGSD-10020HP:/>poe alloc_power 1-4 10 PoE Power Supply Description: Set or show the value of the power supply. Syntax: PoE Power_Supply [<supply_power>]...
Page 469: Thermal Command
Thermal prio_temp [<prio_list>] [<shut_down_temp>] Parameters: : List of priorities (0-3) <prio_list> <shut_down_temp>: Temperature at which ports shall be shut down (0-255 degree C) Example: Show thermal priority temperature. WGSD-10020HP:/> Thermal prio_temp Priority Temp. --------- ----- 255 C 255 C 255 C 255 C...
Page 470: Thermal Status
Parameters: <port_list>: Port list or 'all', default: All ports : Priority (0-3) <prio> Default Setting: Example: Set thermal port priority in 2 WGSD-10020HP:/> Thermal port_prio 2 Thermal Status Description: Shows the chip temperature. Syntax: Thermal status Example: Shows the chip temperature.
Page 471: Thermal Configuration
: The hour (0-24) at which to change LEDs intensity <hour> <intensity>: The LED intensity in % (0-100) Example: Show the time and intensity for the LEDs. WGSD-10020HP:/> led_power timer Time Intensity ---- --------- 00:00 20% LED Power Delete Timer Description: Deletes a timer.
Page 472: Led Power Maintenance
User’s Manual of WGSD-10020 Series LED Power Maintenance Description: Set or show the maintenance settings. Syntax: led_power maintenance [<maintenance_time>] [on_at_errors|leave_at_errors] Parameters: : Time in seconds (0-65535) that the LEDs shall be turned on, when any port changes <maintenance_time> link state on_at_errors|leave_at_errors: on_at_error if LEDs shall be turned on if any errors has been detected.
Page 473: Quality Of Service Command
Set or show the default QoS class. Syntax: QoS Port Classification Class [<port_list>] [<class>] Parameters: <port_list>: Port list or 'all', default: All ports : QoS class (0-7) <class> Default Setting: Example: Set default QoS class in 1 for port 1 WGSD-10020HP:/>qos Port Classification Class 1 1...
Page 474: Qos Port Classification Dpl
: Drop Precedence Level (0-1) <dpl> Default Setting: Example: Set the default Drop Precedence Level in 1 for port1 WGSD-10020HP:/>qos Port Classification dpl 1 1 QoS Port Classification PCP Description: Set or show the default PCP for an untagged frame. Syntax: QoS Port Classification PCP [<port_list>] [<pcp>]...
Page 475: Qos Port Classification Dei
Default Setting: Example: Set the default DEI for an untagged frame in 1 for port1. WGSD-10020HP:/>qos Port Classification dei 1 1 QoS Port Classification Tag Description: Set or show if the classification is based on the PCP and DEI values in tagged frames.
Page 476: Qos Port Classification Map
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>qos Port Classification tag 1-10 enable QoS Port Classification Map Description: Set or show the port classification map. This map is used when port classification tag is enabled,and the purpose is to translate the Priority Code Point (PCP) and Drop Eligible Indicator (DEI) from a tagged frame to QoS class and DP level.
Page 477: Qos Port Policer Mode
User’s Manual of WGSD-10020 Series Example: Enable QoS port classification DSCP. WGSD-10020HP:/>qos Port Classification dscp 1-10 enable QoS Port Policer Mode Description: Set or show the port policer mode Syntax: QoS Port Policer Mode [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 478: Qos Port Policer Unit
User’s Manual of WGSD-10020 Series Default Setting: Example: Set the port policer rate in 1000 WGSD-10020HP:/>qos Port Policer Rate 1-10 1000 QoS Port Policer Unit Description: Set or show the port policer unit. Syntax: QoS Port Policer Unit [<port_list>] [kbps|fps] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 479: Qos Port Scheduler Weight
(default: Show port scheduler mode) Default Setting: strict Example: Set the port schedule mode in weighted mode WGSD-10020HP:/>qos Port Scheduler Mode 1-10 weighted QoS Port Scheduler Weight Description: Set or show the port scheduler weight. Syntax: QoS Port Scheduler Weight [<port_list>] [<queue_list>] [<weight>] Parameters: <port_list>...
Page 480: Qos Port Queueshaper Rate
(default: Show port queue shaper mode) Default Setting: disable Example: Enable port queue shaper for all port & queue WGSD-10020HP:/>qos Port QueueShaper Mode 1-10 0-7 enable QoS Port QueueShaper Rate Description: Set or show the port queue shaper rate. Syntax: QoS Port QueueShaper Rate [<port_list>] [<queue_list>] [<bit_rate>]...
Page 481: Qos Port Shaper Mode
(default: Show port queue excess bandwidth mode) Default Setting: disable Example: Enable the port queue excess bandwidth mode. WGSD-10020HP:/>qos Port QueueShaper Excess 1-10 0-7 enable QoS Port Shaper Mode Description: Set or show the port shaper mode. Syntax: QoS Port Shaper Mode [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 482: Qos Port Shaper Rate
<bit_rate> : Rate in kilo bits per second (100-3300000) Default Setting: 500kbps Example: Set the port shaper rate in 1000. WGSD-10020HP:/>qos Port Shaper Rate 1-10 1000 QoS Port TagRemarking Mode Description: Set or show the port tag remarking mode. Syntax: QoS Port TagRemarking Mode [<port_list>] [classified|default|mapped]...
Page 483: Qos Port Tagremarking Pcp
User’s Manual of WGSD-10020 Series WGSD-10020HP:/>qos Port TagRemarking Mode 1-10 mapped QoS Port TagRemarking PCP Description: Set or show the default PCP. This value is used when port tag remarking mode is set to 'default'. Syntax: QoS Port TagRemarking PCP [<port_list>] [<pcp>] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 484: Qos Port Tagremarking Map
User’s Manual of WGSD-10020 Series Set the default EDI in 1. WGSD-10020HP:/>qos Port TagRemarking EDI 1-10 1 QoS Port TagRemarking Map Description: Set or show the port tag remarking map. This map is used when port tag remarking mode is set to 'mapped', and the purpose is to translate the classified QoS class (0-7) and DP level (0-1) to PCP and DEI.
Page 485: Qos Port Dscp Classification
(default: Show port DSCP ingress classification mode) Default Setting: none Example: Set DSCP classification based on QoS class and DP level in zero WGSD-10020HP:/> QoS Port DSCP Classification 1-10 zero QoS Port DSCP EgressRemark Description: Set or show the port DSCP remarking mode. Syntax: QoS Port DSCP EgressRemark [<port_list>] [disable|enable|remap_dp_unaware|remap_dp_aware]...
Page 486: Qos Dscp Map
Default Setting: disable Example: Enable DSCP egress rewrite WGSD-10020HP:/> QoS Port DSCP EgressRemark 1-10 enable QoS DSCP Map Description: Set or show DSCP mapping table. This table is used to map QoS class and DP level based on DSCP value.
Page 487: Qos Dscp Trust
User’s Manual of WGSD-10020 Series Parameters: <dscp_list> : DSCP (0-63, BE, CS1-CS7, EF or AF11-AF43) list or 'all' (default: Show DSCP translation table) <trans_dscp>: Translated DSCP: 0-63, BE, CS1-CS7, EF or AF11-AF43 QoS DSCP Trust Description: Set or show trusted DSCP value which is used for QoS classification. The DSCP value to be checked for trust is either translated value ifDSCP translation is enabled for the ingress port or incoming frame DSCPvalue if translation is disabled for the port.
Page 488: Qos Dscp Egressremap
: Enable unicast storm control enable : Disable unicast storm control disable <packet_rate>: Rate in fps (1, 2, 4, ..., 512, 1k, 2k, 4k, ..., 32768k) Default Setting: disable Example: Enable unicast storm control in 2fps WGSD-10020HP:/> QoS Storm Unicast enable 2...
Page 489: Qos Storm Multicast
Default Setting: disable Example: Enable multicast storm control in 2fps WGSD-10020HP:/> QoS Storm multicast enable 2 QoS QCL Add Description: Add or modify QoS Control Entry (QCE). If the QCE ID parameter <qce_id> is specified and an entry with this QCE ID already exists, the QCE will be modified.
Page 490: Qos Qcl Delete
User’s Manual of WGSD-10020 Series : Next QCE ID: "next_id (1-256) or 'last'" <qce_id_next> : Port List: "port <port_list> or 'all'", default: All ports <port_list> : Frame tag: untag|tag|any <tag> : VID: 1-4095 or 'any', either a specific VID or range of VIDs <vid>...
Page 491: Qos Qcl Lookup
User’s Manual of WGSD-10020 Series <qce_id>: QCE ID (1-256), default: Next available ID Default Setting: disable Example: Enable multicast storm control in 2fps WGSD-10020HP:/> QoS Storm multicast enable 2 QoS QCL Lookup Description: Lookup QoS Control List. Syntax: QoS QCL Lookup [<qce_id>] Parameters: <qce_id>: QCE ID (1-256), default: Next available ID...
Page 492: Qos Qcl Refresh
: Shows the static user configured status static : Shows the status by Voice VLAN voice_vlan : Shows all conflict status conflicts (default : Shows the combined status) Default Setting: disable Example: Enable multicast storm control in 2fps WGSD-10020HP:/> QoS Storm multicast enable 2...
Page 493: Mirror Command
Show mirror configuration. WGSD-10020HP:/>mirror configuration Mirror Port Description: Set or show the mirror port. Syntax: Mirror Port [<port>|disable] Parameters: <port>|disable: Mirror port or 'disable', default: Show port Default Setting: disable Example: Set port 2 for the mirror port. WGSD-10020HP:/>mirror port 2...
Page 494: Mirror Mode
<port_list>: Port list or 'all', default: All ports enable : Enable Rx and Tx mirroring disable: Disable Mirroring : Enable Rx mirroring : Enable Tx mirroring (default: Show mirror mode) Default Setting: disable Example: Enable the mirror mode for port 1-4. WGSD-10020HP:/>mirror mode 1-4 enable...
Page 495: Configuration Command
User’s Manual of WGSD-10020 Series 6.19 Configuration Command Configuration Save Description: Save configuration to TFTP server. Syntax: Config Save <ip_server> <file_name> Parameters: <ip_server>: TFTP server IP address (a.b.c.d) <file_name>: Configuration file name Configuration Load Description: Load configuration from TFTP server. Syntax: Config Load <ip_server>...
Page 496: Firmware Command
User’s Manual of WGSD-10020 Series 6.20 Firmware Command Firmware Load Description: Load new firmware from TFTP server. Syntax: Firmware Load <ip_addr_string> <file_name> Parameters: <ip_addr_string>: IP host address (a.b.c.d) or a host name string : Firmware file name <file_name> Firmware IPv6 Load Description: Load new firmware from IPv6 TFTP server.
Page 497 User’s Manual of WGSD-10020 Series Activate the alternate firmware image.. Syntax: Firmware Swap...
Page 498: Upnp Command
User’s Manual of WGSD-10020 Series 6.21 UPnP Command UPnP Configuration Description: Show UPnP configuration. Syntax: UPnP Configuration Example: Show UPnP configuration. WGSD-10020HP:/>upnp configuration UPnP Configuration: =================== UPnP Mode : Disabled UPnP TTL UPnP Advertising Duration : 100 UPnP Mode Description: Set or show the UPnP mode.
Page 499: Upnp Ttl
WGSD-10020HP:/>upnp ttl 10 UPnP Advertising Duration Description: Set or show UPnP Advertising Duration. Syntax: UPnP Advertising Duration [<duration>] Parameters: <duration>: duration range (100..86400), default: Show UPnP duration range Default Setting: Example: Set value 1000 for UPnP Advertising Duration. WGSD-10020HP:/>upnp advertising duration 1000...
Page 500: Mvr Command
6.22 MVR Command MVR Configuration Description: Show the MVR configuration. Syntax: MVR Configuration Example: Show the MVR configuration. WGSD-10020HP:/>mvr configuration MVR Configuration: ================== MVR Mode: Disabled Muticast VLAN ID: 100 Port Port Mode Port Type Immediate Leave ---- ----------- ----------- ---------------...
Page 501: Mvr Status
: Enable MVR mode enable : Disable MVR mode disable (default: Show MVR mode) Default Setting: disable Example: Enable MVR mode. WGSD-10020HP:/>mvr mode enable MVR Port Mode Description: Set or show the MVR port mode. Syntax: MVR Port Mode [<port_list>] [enable|disable]...
Page 502: Mvr Multicast Vlan
: Disable MVR mode disable (default: Show MVR mode) Default Setting: disable Example: Enable the MVR port mode for port 1-4. WGSD-10020HP:/>mvr port mode 1-4 enable MVR Multicast VLAN Description: Set or show MVR multicast VLAN ID. Syntax: MVR Multicast VLAN [<vid>] Parameters: <vid>: VLAN ID (1-4095), default: Show current MVR multicast VLAN ID...
Page 503: Mvr Immediate Leave
(default: Show MVR port type) Default Setting: receive Example: Set source type for MVR port type of port 1. WGSD-10020HP:/>mvr port type 1 source MVR Immediate Leave Description: Set or show MVR port state about immediate leave. Syntax: MVR Immediate Leave [<port_list>] [enable|disable] Parameters: <port_list>: Port list or 'all', default: All ports...
Page 504: Voice Vlan Command
Voice VLAN Configuration Description: Show Voice VLAN configuration. Syntax: Voice VLAN Configuration Example: Show Voice VLAN configuration. WGSD-10020HP:/>voice vlan configuration V oice VLAN Configuration: ========================= Voice VLAN Mode : Disabled Voice VLAN VLAN ID : 1000 Voice VLAN Age Time(seconds) : 86400...
Page 505: Voice Vlan Mode
It can avoid the conflict of ingress filter. Syntax: Voice VLAN Mode [enable|disable] Parameters: enable : Enable Voice VLAN mode. disable: Disable Voice VLAN mode (default: Show flow Voice VLAN mode) Default Setting: disable Example: Enable the Voice VLAN mode. WGSD-10020HP:/>voice vlan mode enable...
Page 506: Voice Vlan Id
Voice VLAN ID [<vid>] Parameters: <vid>: VLAN ID (1-4095) Default Setting: 1000 Example: Set ID 2 for Voice VLAN ID. WGSD-10020HP:/>voice vlan id 2 Voice VLAN Agetime Description: Set or show Voice VLAN age time. Syntax: Voice VLAN Agetime [<age_time>] Parameters: <age_time>: MAC address age time (10-10000000) default: Show age time...
Page 507: Voice Vlan Traffic Class
: OUI address (xx-xx-xx). The null OUI address isn't allowed <oui_addr> <description>: Entry description. Use 'clear' or "" to clear the string No blank or space characters are permitted as part of a contact. (only in CLI) Example: Add Voice VLAN OUI entry. WGSD-10020HP:/>voice vlan oui add 00-11-22 test...
Page 508: Voice Vlan Oui Delete
Parameters: <oui_addr>: OUI address (xx-xx-xx). The null OUI address isn't allowed Example: Delete Voice VLAN OUI entry. WGSD-10020HP:/>voice vlan oui delete 00-11-22 Voice VLAN OUI Clear Description: Clear Voice VLAN OUI entry. Modify OUI table will restart auto detect OUI process.
Page 509: Voice Vlan Port Mode
Example: Set auto mode for port 1-4 of Voice VLAN port mode. WGSD-10020HP:/>voice vlan port mode 1-4 auto Voice VLAN Security Description: Set or show the Voice VLAN port security mode. When the function is enabled, all non-telephone MAC address in Voice VLAN will be blocked 10 seconds.
Page 510 <port_list>: Port list or 'all', default: All ports enable : Enable Voice VLAN security mode. disable: Disable Voice VLAN security mode (default: Show flow Voice VLAN security mode) Default Setting: disable Example: Enable the Voice VLAN port security mode for port 1-4. WGSD-10020HP:/>voice vlan security 1-4 enable...
Page 511: Ipmc Command
IPMC Mode [mld|igmp] [enable|disable] Parameters: mld|igmp: mld : IPMC for IPv6 MLD igmp: IPMC for IPv4 IGMP enable : Enable IPMC snooping disable: Disable IPMC snooping (default: Show global IPMC snooping mode) Default Setting: disable Example: Enable IGMP snooping WGSD-10020HP:/>ipmc mode igmp enable...
Page 512: Ipmc Flooding
Disable IPMC flooding (default: Show global IPMC flooding mode) Default Setting: enable Example: Enable IGMP flooding WGSD-10020HP:/>ipmc flooding igmp enable IPMC Leave Proxy Description: Set or show the mode of IPMC Leave Proxy. Syntax: IPMC Leave Proxy [mld|igmp] [enable|disable]...
Page 513: Ipmc Proxy
User’s Manual of WGSD-10020 Series Default Setting: disable Example: Enable IGMP Leave Proxy WGSD-10020HP:/>ipmc leave proxy igmp enable IPMC Proxy Description: Set or show the mode of IPMC Proxy. Syntax: IPMC Proxy [mld|igmp] [enable|disable] Parameters: mld|igmp: mld : IPMC for IPv6 MLD...
Page 514: Ipmc Querier
: Enable MLD snooping disable: Disable MLD snooping Default Setting: disable Example: Enable IGMP snooping state for VLAN 1 WGSD-10020HP:/>ipmc state igmp 1 enable IPMC Querier Description: Set or show the IPMC snooping querier mode for VLAN. Syntax: IPMC Querier [mld|igmp] [<vid>] [enable|disable]...
Page 515: Ipmc Fastleave
Disable MLD fast leave (default: Show IPMC fast leave mode) Default Setting: disable Example: Enable IGMP fast leave for all port WGSD-10020HP:/>ipmc fastleave igmp 1-10 enable IPMC Throttling Description: Set or show the IPMC port throttling status. Syntax: IPMC Throttling [mld|igmp] [<port_list>] [limit_group_number]...
Page 516: Ipmc Filtering
(default: Show IPMC Port Throttling) Default Setting: Unlimited Example: Set the max. learn 10 groups for ICMP port throttling WGSD-10020HP:/>ipmc throttling igmp 1-10 10 IPMC Filtering Description: Set or show the IPMC port group filtering list. Syntax: IPMC Filtering [mld|igmp] [<port_list>] [add|del] [group_addr]...
Page 517: Ipmc Status
: Enable IPMC router port disable : Disable IPMC router port (default: Show IPMC router port mode) Example: Enable port 1 in IPMC router port WGSD-10020HP:/>ipmc riuter igmp 1 enable IPMC Status Description: Show IPMC operational status, accordingly. Syntax: IPMC Status [mld|igmp] [<vid>]...
Page 518: Ipmc Version
: IPMC for IPv6 MLD igmp: IPMC for IPv4 IGMP : VLAN ID (1-4095) or 'any', default: Show all VLANs <vid> Example: Show VLAN 1 IPMC group addresses, accordingly. WGSD-10020HP:/>ipmc groups igmp 1 IPMC Version Description: Show IPMC Versions. Syntax: IPMC Version [mld|igmp] [<vid>]...
Page 519: Ipmc Parameter Rv
: VLAN ID (1-4095) or 'any', default: Show all VLANs <vid> <port_list>: Port list or 'all', default: All ports Example: Show VLAN 1 & port 1-10 SSM related information for IPMC. WGSD-10020HP:/>ipmcssm igmp 1 1-10 IPMC Parameter RV Description: Set or show the IPMC Robustness Variable. Syntax: IPMC Parameter RV [mld|igmp] [<vid>] [ipmc_param_rv]...
Page 520: Ipmc Parameter Qri
User’s Manual of WGSD-10020 Series igmp: IPMC for IPv4 IGMP : VLAN ID (1-4095) or 'any', default: Show all VLANs <vid> ipmc_param_qi: : Default Value (125) 1~31744 : Query Interval in seconds (default: Show IPMC Interface Query Interval IPMC Parameter QRI Description: Set or show the IPMC Query Response Interval.
Page 521: Ipmc Parameter Uri
User’s Manual of WGSD-10020 Series : VLAN ID (1-4095) or 'any', default: Show all VLANs <vid> ipmc_param_llqi: : Default Value (10) 0~31744 : Last Listener Query Interval in tenths of seconds (default: Show IPMC Interface Last Listener Query Interval IPMC Parameter URI Description: Set or show the IPMC Unsolicited Report Interval.
Page 522: Vlan Control List Command
: VLAN ID (1-4095) <vid> <port_list>: Port list or 'all', default: All ports Example: Add 00-11-22-33-44-55-66 in VLAN 20 for all port WGSD-10020HP:/>vcl macvlan add 00-11-22-33-44-55-66 20 1-10 VCL MAC-based VLAN Delete Description: Delete VCL MAC-based VLAN entry. Syntax: VCL Macvlan Del <mac_addr>...
Page 523: Vcl Stasus
User’s Manual of WGSD-10020 Series Example: Delete 00-11-22-33-44-55-66 in MAC-based VLAN list WGSD-10020HP:/> vcl macvlan del 00-11-22-33-44-55-66 VCL Stasus Description: Show VCL MAC-based VLAN users configuration. Syntax: VCL Status [combined|static|nas|all] Parameters: combined|static|nas|all: VCL User VCL Protocol-based VLAN Add Ethernet II Description: Add VCL protocol-based VLAN Ethernet-II protocol to group mapping.
Page 524: Vcl Protocol-Based Vlan Add Llc
User’s Manual of WGSD-10020 Series : PID value (0x0-0xFFFF). If OUI is 00-00-00, valid range of PID is from 0x0600-0xFFFF. <pid> : Protocol group ID <group_id> VCL Protocol-based VLAN Add LLC Description: Add VCL protocol-based VLAN LLC protocol to group mapping. Syntax: VCL ProtoVlan Protocol Add Llc <dsap>...
Page 525: Vcl Protocol-Based Vlan Delete Llc
User’s Manual of WGSD-10020 Series : PID value (0x0-0xFFFF). If OUI is 00-00-00, valid range of PID is from 0x0600-0xFFFF. <pid> VCL Protocol-based VLAN Delete LLC Description: Delete VCL protocol-based VLAN LLC protocol to group mapping. Syntax: VCL ProtoVlan Protocol Delete Llc <dsap> <ssap> Parameters: <dsap>: DSAP value (0x00-0xFF) <ssap>: SSAP value (0x00-0xFF)
Page 526: Vcl Protocol-Based Vlan Configuration
User’s Manual of WGSD-10020 Series <group_id> : Protocol group ID VCL Protocol-based VLAN Configuration Description: Show VCL protocol-based VLAN entries. Syntax: VCL ProtoVlan Conf...
Page 527: Switch Operation
User’s Manual of WGSD-10020 Series 7. SWITCH OPERATION 7.1 Address Table The Switch is implemented with an address table. This address table composed of many entries. Each entry is used to store the address information of some node in network, including MAC address, port no, etc. This in-formation comes from the learning process of Ethernet Switch.
Page 528: Auto-Negotiation
User’s Manual of WGSD-10020 Series 7.5 Auto-Negotiation The STP ports on the Switch have built-in "Auto-negotiation". This technology automatically sets the best possible bandwidth when a connection is established with another network device (usually at Power On or Reset). This is done by detect the modes and speeds at the second of both device is connected and capable of, both 10Base-T and 100Base-TX devices can connect with the port in either Half- or Full-Duplex mode.
Page 529: Power Over Ethernet Overview
User’s Manual of WGSD-10020 Series 8. POWER OVER ETHERNET OVERVIEW What is PoE? Based on the global standard IEEE 802.3af, PoE is a technology for wired Ethernet, the most widely installed local area network technology adopted today. PoE allows the electrical power necessary for the operation of each end-device to be carried by data cables rather than by separate power cords.
Page 530 User’s Manual of WGSD-10020 Series Figure 8-1 - Power Supplied over the Spare Pins The data pairs are used. Since Ethernet pairs are transformer coupled at each end, it is possible to apply DC power to the center tap of the isolation transformer without upsetting the data transfer. In this mode of operation the pair on pins 3 and 6 and the pair on pins 1 and 2 can be of either polarity.
Page 531: The Poe Provision Process
User’s Manual of WGSD-10020 Series References: IEEE Std 802.3af-2003 (Amendment to IEEE Std 802.3-2002, including IEEE Std 802.3ae-2002), 2003 Page(s):0_1-121 White Paper on Power over Ethernet (IEEE802.3af) http://www.poweroverethernet.com/articles.php?article_id=52 Microsemi /PowerDsine http://www.microsemi.com/PowerDsine/ Linear Tech http://www.linear.com/ The PoE Provision Process While adding PoE support to networked devices is relatively painless, it should be realized that power cannot simply be transferred over existing CAT-5 cables.
Page 532: Classification
User’s Manual of WGSD-10020 Series Classification Once a PD is detected, the PSE may optionally perform classification, to determine the maximal power a PD is to consume. The PSE induces 15.5-20.5 VDC, limited to 100 mA, for a period of 10 to 75 ms responded by a certain current consumption by the PD, indicating its power class.
Page 533 User’s Manual of WGSD-10020 Series DC Disconnect DC Disconnect detection involves measurement of current. Naturally, a disconnected PD stops consuming current, which can be inspected by the PSE. The PSE must therefore disconnect power within 300 to 400 ms from the current flow stop. The lower time boundary is important to prevent shutdown due to random fluctuations.
Page 534: Trouble Shooting
User’s Manual of WGSD-10020 Series 9. TROUBLE SHOOTING This chapter contains information to help you solve problems. If the Ethernet Switch is not functioning properly, make sure the Ethernet Switch was set up according to instructions in this manual. ■ The Link LED is not lit Solution: Check the cable connection and remove duplex mode of the Ethernet Switch ■...
Page 535 User’s Manual of WGSD-10020 Series If that device works, refer to the next step. If that device does not work, check the AC power  While IP Address be changed or forgotten admin password – To reset the IP address to the default IP Address “192.168.0.100” or reset the password to default value. Press the hardware reset button at the front panel about 10 seconds.
Page 536: Appendex A
User’s Manual of WGSD-10020 Series APPENDEX A A.1 Switch's RJ-45 Pin Assignments 1000Mbps, 1000Base T Contact MDI-X BI_DA+ BI_DB+ BI_DA- BI_DB- BI_DB+ BI_DA+ BI_DC+ BI_DD+ BI_DC- BI_DD- BI_DB- BI_DA- BI_DD+ BI_DC+ BI_DD- BI_DC- Implicit implementation of the crossover function within a twisted-pair cable, or at a wiring panel, while not expressly forbidden, is beyond the scope of this standard.
Page 537 User’s Manual of WGSD-10020 Series The standard cable, RJ-45 pin assignment The standard RJ-45 receptacle/connector There are 8 wires on a standard UTP/STP cable and each wire is color-coded. The following shows the pin allocation and color of straight cable and crossover cable connection: Straight Cable SIDE 1 SIDE2...
Page 538: Appendex B : Glossary
User’s Manual of WGSD-10020 Series APPENDEX B : GLOSSARY ACE is an acronym for Access Control Entry. It describes access permission associated with a particular ACE ID. There are three ACE frame types (Ethernet Type, ARP, and IPv4) and two ACE actions (permit and deny). The ACE also contains many detailed, different parameter options that are available for individual application.
Page 539 User’s Manual of WGSD-10020 Series ranging from 1-1024K packets per seconds. Under "Ports" and "Access Control List" web-pages you can assign a Rate Limiter ID to the ACE(s) or ingress port(s). AES is an acronym for Advanced Encryption Standard. The encryption key protocol is applied in 802.1i standard to improve WLAN security.
Page 540 User’s Manual of WGSD-10020 Series CCM is an acronym for Continuity Check Message. It is a OAM frame transmitted from a MEP to it's peer MEP and used to implement CC functionality. CDP is an acronym for Cisco Discovery Protocol. DEI is an acronym for Drop Eligible Indicator.
Page 541 User’s Manual of WGSD-10020 Series The DHCP option 82 enables a DHCP relay agent to insert specific information into a DHCP request packets when forwarding client DHCP packets to a DHCP server and remove the specific information from a DHCP reply packets when forwarding server DHCP packets to a DHCP client.
Page 542 User’s Manual of WGSD-10020 Series EPS is an abbreviation for Ethernet Protection Switching defined in ITU/T G.8031. Ethernet Type Ethernet Type, or EtherType, is a field in the Ethernet MAC header, defined by the Ethernet networking standard. It is used to indicate which protocol is being transported in an Ethernet frame. FTP is an acronym for File Transfer Protocol.
Page 543 User’s Manual of WGSD-10020 Series HTTPS is really just the use of Netscape's Secure Socket Layer (SSL) as a sublayer under its regular HTTP application layering. (HTTPS uses port 443 instead of HTTP port 80 in its interactions with the lower layer, TCP/IP.) SSL uses a 40-bit key size for the RC4 stream encryption algorithm, which is considered an adequate degree of encryption for commercial exchange.
Page 544 User’s Manual of WGSD-10020 Series IP is an acronym for Internet Protocol. It is a protocol used for communicating data across a internet network. IP is a "best effort" system, which means that no packet of information sent over it is assured to reach its destination in the same condition it was sent.
Page 545 User’s Manual of WGSD-10020 Series LLDP-MED LLDP-MED is an extendsion of IEEE 802.1ab and is defined by the telecommunication industry association (TIA-1057). LOC is an acronym for Loss Of Connectivity and is detected by a MEP and is indicating lost connectivity in the network. Can be used as a switch criteria by EPS MAC Table Switching of frames is based upon the DMAC address contained in the frame.
Page 546 User’s Manual of WGSD-10020 Series Multicast VLAN Registration (MVR) is a protocol for Layer 2 (IP)-networks that enables multicast-traffic from a source VLAN to be shared with subscriber-VLANs. The main reason for using MVR is to save bandwidth by preventing duplicate multicast streams being sent in the core network, instead the stream(s) are received on the MVR-VLAN and forwarded to the VLANs where hosts have requested it/them(Wikipedia).
Page 547 User’s Manual of WGSD-10020 Series It is a protocol described in ITU-T Y.1731 used to implement carrier ethernet functionality. MEP functionality like CC and RDI is based on this. Optional TLVs. A LLDP frame contains multiple TLVs For some TLVs it is configurable if the switch shall include the TLV in the LLDP frame. These TLVs are known as optional TLVs.
Page 548 User’s Manual of WGSD-10020 Series Power Over Ethernet is used to transmit electrical power, to remote devices over standard Ethernet cable. It could for example be used for powering IP telephones, wireless LAN access points and other equipment, where it would be difficult or expensive to connect the equipment to main power supply.
Page 549 User’s Manual of WGSD-10020 Series There are six QCE frame types: Ethernet Type, VLAN, UDP/TCP Port, DSCP, TOS, and Tag Priority. Frames can be classified by one of 4 different QoS classes: "Low", "Normal", "Medium", and "High" for individual application. QCL is an acronym for QoS Control List.
Page 550 User’s Manual of WGSD-10020 Series RSTP In 1998, the IEEE with document 802.1w introduced an evolution of STP: the Rapid Spanning Tree Protocol, which provides for faster spanning tree convergence after a topology change. Standard IEEE 802.1D-2004 now incorporates RSTP and obsoletes STP, while at the same time being backwards-compatible with STP. SAMBA Samba is a program running under UNIX-like operating systems that provides seamless integration between UNIX and Microsoft Windows machines.
Page 551 User’s Manual of WGSD-10020 Series SNTP SNTP is an acronym for Simple Network Time Protocol, a network protocol for synchronizing the clocks of computer systems. SNTP uses UDP (datagrams) as transport layer. SPROUT Stack Protocol using ROUting Technology. An advanced protocol for almost instantaneous discovery of topology changes within a stack as well as election of a master switch.
Page 552 User’s Manual of WGSD-10020 Series Tag Priority Tag Priority is a 3-bit field storing the priority level for the 802.1Q frame. TCP is an acronym for Transmission Control Protocol. It is a communications protocol that uses the Internet Protocol (IP) to exchange the messages between computers. The TCP protocol guarantees reliable and in-order delivery of data from sender to receiver and distinguishes data for multiple connections by concurrent applications (for example, Web server and e-mail server) running on the same host.
Page 553 User’s Manual of WGSD-10020 Series TKIP TKIP is an acronym for Temporal Key Integrity Protocol. It used in WPA to replace WEP with a new encryption algorithm. TKIP comprises the same encryption engine and RC4 algorithm defined for WEP. The key used for encryption in TKIP is 128 bits and changes the key used for each packet.
Page 554 User’s Manual of WGSD-10020 Series VLAN aware switching: This is based on the IEEE 802.1Q standard. All ports are VLAN aware. Ports connected to VLAN aware switches are members of multiple VLANs and transmit tagged frames. Other ports are members of one VLAN, set up with this Port VLAN ID, and transmit untagged frames.
Page 555 User’s Manual of WGSD-10020 Series 'pre-shared key' (PSK) mode, where every allowed computer is given the same passphrase. In PSK mode, security depends on the strength and secrecy of the passphrase. The design of WPA is based on a Draft 3 of the IEEE 802.11i standard (Wikipedia) WPA-Radius WPA-Radius is an acronym for Wi-Fi Protected Access - Radius (802.1X authentication server).
Page 556: Ec Declaration Of Conformity
EC Declaration of Conformity For the following equipment: *Type of Product: WGSD-10020 *Model Number: 8-Port 10/100/1000Mbps + 2 100/1000X SFP Managed Ethernet Switch * Produced by: Manufacturer‘s Name : Planet Technology Corp. Manufacturer‘s Address: 10F., No.96, Minquan Rd., Xindian Dist., New Taipei City 231, Taiwan (R.O.C.).
Page 557 EC Declaration of Conformity For the following equipment: *Type of Product: WGSD-10020HP *Model Number: 8-Port 10/100/1000Mbps + 2 100/1000X SFP Managed 802.3at PoE Switch * Produced by: Manufacturer‘s Name : Planet Technology Corp. Manufacturer‘s Address: 10F., No.96, Minquan Rd., Xindian Dist., New Taipei City 231, Taiwan (R.O.C.).

This manual is also suitable for:

Wgsd-10020

Planet Networking & Communication WGSD-10020HP User Manual

1 Introdution

2 Installation

3 Switch Management

4 Web Configuration

5 Command Line Interface

6 Command Line Mode

Quick Links

Related Manuals for Planet Networking & Communication WGSD-10020HP

Summary of Contents for Planet Networking & Communication WGSD-10020HP