Download Print this page

Advertisement

ADMINISTRATION
GUIDE
Cisco 220 Series Smart Plus Switches
Administration Guide Release 1.0.0.x

Advertisement

   Also See for Cisco 220 Series Smart Plus

   Summary of Contents for Cisco 220 Series Smart Plus

  • Page 1

    ADMINISTRATION GUIDE Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 2

    Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company.

  • Page 3: Table Of Contents

    Getting Started 7 Getting Started with the Web-based Interface 7 Before you Begin 8 Logging In To the Web-based Interface 8 HTTP/HTTPS 9 Changing the Administrative Password 10 Logging Out 11 Quick Start Switch Configuration 12 Interface Naming Conventions 13 Window Navigation 14 Application Header 14 Management Buttons 15...

  • Page 4

    Auto Configuration Process 52 Configuring DHCP Auto Configuration Parameters 52 Administration: General Information 55 Device Models 56 Viewing System Summary 58 Configuring System Settings 60 Configuring Console Settings 61 Rebooting the Switch 61 Defining Idle Session Timeout 62 Ping a Host 63 Using Traceroute 63 Administration: Time Settings 65 System Time Options 66...

  • Page 5

    Static and Dynamic LAG Workflow 107 Configuring LAG Management 108 Configuring LAG Settings 109 Configuring LACP 110 LACP Priotity and Rules 110 LACP With No Link Partner 111 Configuring LACP Parameters 112 Configuring Energy Efficient Ethernet 113 Power-over-Ethernet 114 PoE Considerations 114 PoE on the Switch 116 PoE Features 116 PoE Operation 117...

  • Page 6

    Configuring Static MAC Addresses 153 Configuring Static MAC Address Filter 154 Configuring Dynamic MAC Address Aging Time 154 Querying Dynamic Addresses 155 Configuring Reserved MAC Addresses 156 Multicast Forwarding 157 Multicast Forwarding 157 Typical Multicast Setup 158 Multicast Address Properties 160 Configuring Multicast Properties 160 Configuring IP Multicast Group Addresses 161 Configuring IGMP Snooping 162...

  • Page 7

    Configuring 802.1X Port Authentication 202 Viewing Authenticated Hosts 204 Configuring DoS Protection 205 Secure Core Technology (SCT) 205 Default Configuration 205 Configuring DoS Security Suite Settings 206 Configuring DoS Interface Settings 207 Configuring SYN Protection 208 Configuring DHCP Snooping 209 Configuring DHCP Snooping Properties 210 Configuring DHCP Snooping on VLANs 211 Configuring DHCP Snooping Trusted Interfaces 211...

  • Page 8

    Mapping DSCP to Queue 246 Mapping Queues to CoS/802.1p 247 Mapping Queues to IP Precedences 247 Mapping Queue to DSCP 248 Configuring Interface Remark 248 Configuring Bandwidth 249 Configuring Egress Shaping per Queue 250 Configuring VLAN Rate Limit 251 Configuring VLAN Port Rate Limit 251 Configuring TCP Congestion Avoidance 252 Configuring QoS Basic Mode 253 Configuring Basic QoS Global Settings 254...

  • Page 9: Getting Started

    Window Navigation Getting Started with the Web-based Interface The Cisco 220 switch can be accessed and managed by two methods; over your IP network by using the web-based interface, or by using the command-line interface through the console interface. Using the console interface requires Cisco 220 Series Smart Plus Switches Command advanced user skills.

  • Page 10: Before You Begin

    Locate the IP address of the switch. STEP 3 a. The switch can be accessed and managed by Cisco network tools and services including the Cisco FindIT Network Discovery Utility that enables you to automatically discover all supported Cisco devices in the same local network segment as your computer.

  • Page 11: Http/https

    When the login page appears, choose the language that you prefer to use in the STEP 7 web-based interface and enter the username and password. The default username is cisco and the default password is cisco. Both username and password are case sensitive. Click Log In.

  • Page 12: Changing The Administrative Password

    If you do not want to change the password, check Disable Password NOTE Strength Enforcement and click Apply. You are not required to set a new password and can be directed to the Getting Started page. Click Apply. STEP 2 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 13: Logging Out

    When a timeout occurs or you intentionally log out of the switch, a message is displayed and the login page opens, with a message indicating the logged-out state. After you log in, the application returns to the initial page. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 14: Quick Start Switch Configuration

    Port Statistics Status and Statistics > Interface page RMON Statistics Status and Statistics > RMON > Statistics page View Log Status and Statistics > View Log > RAM Memory page Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 15: Interface Naming Conventions

    Administration > Diagnostics > Port and VLAN Mirroring page There are two hot links on the Getting Started page that take you to Cisco web pages for more information. Clicking on the Support link takes you to the device product support page, and clicking on the Forums link takes you to the Cisco Support Community page.

  • Page 16: Window Navigation

    Running Configuration. Username Displays the name of the user logged on to the switch. The default username is cisco. (The default password is cisco) Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 17: Management Buttons

    The following table describes the commonly-used buttons that appear on various pages in the system. Button Name Description Use the pull-down menu to configure the number of entries per page. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 18

    Clears table entries. Close Returns to the main page. If any changes were not applied to the Running Configuration, a message appears. Copper Test Click Copper Test to perform the related test. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 19

    Click to see the statistics counters for all interfaces on Statistics a single page. View Interface Click to see the statistics counters for the selected Statistics interface on a single page. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 20: Status And Statistics

    Refresh Rate—Select the time period that passes before the Ethernet statistics are refreshed. The available options are: No Refresh —Statistics are not refreshed. 15 sec —Statistics are refreshed every 15 seconds. 30 sec —Statistics are refreshed every 30 seconds. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 21

    Select an interface and click View Interface Statistics to see the statistics counters for the selected interface on a single page. • Click Refresh to manually refresh the statistics counters for all interfaces. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 22: Viewing Etherlike Statistics

    Click Clear Interface Counters to clear the statistics counters for the selected STEP 3 interface. Click Refresh to manually refresh the statistics counters for the selected interface. STEP 4 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 23: Viewing Tcam Utilization

    To view TCAM utilization, click Status and Statistics > TCAM Utilization. The following fields are displayed: • Maximum TCAM Entries—Maximum TCAM Entries available. • In Use—Number of TCAM entries used. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 24: Viewing Fan Status And Temperature

    Status—Displays the status of the switch thermal(s). Operational Status —Displays OK when the thermal operates normally, or displays Fault when the thermal does not operate normally. Temperature Value —Displays the current temperature in Celsius. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 25

    °C) °F ( °C) SG220-28MP °F ( °C) °F ( °C) °F ( °C) °F ( °C) SG220-50P °F ( °C) °F ( °C) °F ( °C) °F ( °C) Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 26: Managing Rmon

    This section includes the following topics: • Viewing RMON Statistics • Configuring and Viewing RMON Histories • Configuring and Viewing RMON Events • Configuring RMON Alarms Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 27: Viewing Rmon Statistics

    RMON Multicast Packets Received—Number of good Multicast packets received. • RMON CRC & Align Errors—Number of CRC and Align errors that have occurred. • RMON Undersize Packets—Number of undersized packets (less than 64 octets) received. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 28

    2000 bytes, and Jumbo Frames, that were received. Click Clear Interface Counters to clear RMON statistics counters for the selected STEP 3 interface. Click Refresh to manually refresh RMON statistics counters for the selected STEP 4 interface. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 29: Configuring And Viewing Rmon Histories

    Enter the following information: STEP 3 • New History Entry—Displays the number of the history entry. • Source Interface—Select the port or LAG from where the history samples are to be taken. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 30: Viewing Rmon History Statistics

    • Bytes Received—Number of octets received that including bad packets and FCS octets, but excluding framing bits. • Packets Received—Number of packets received, including bad packets, Multicast, and Broadcast packets. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 31: Configuring And Viewing Rmon Events

    This is performed as follows: • Events Page—Configures what happens when an alarm is triggered. This can be any combination of logs and traps. • Alarms Page—Configures the occurrences that trigger an alarm. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 32: Configuring Rmon Events

    Click Apply. The RMON event is added, and the Running Configuration is updated. STEP 4 Click Event Log Table to display the log of alarms that have occurred and that STEP 5 have been logged. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 33: Viewing Rmon Event Logs

    Use the Alarms page to configure alarms and to bind them with events. Alarm counters can be monitored by either absolute values or changes (delta) in the counter values. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 34

    —A falling counter value triggers the falling threshold alarm. Rising and Falling Alarm —Both a rising and falling counter values trigger the alarm. • Interval—Enter the alarm interval time in seconds. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 35

    • Owner—Enter the name of the user or network management system that receives the alarm. Click Apply. The RMON alarm is added, and the Running Configuration is updated. STEP 4 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 36: Administration: System Logs

    • Emergency—System is not usable. • Alert—Immediate action is needed. • Critical—System is in a critical condition. • Error—System is in error condition. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 37

    Click Apply. The global log settings are defined, and the Running Configuration is STEP 3 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 38: Configuring Remote Logging Settings

    Log in RAM (cleared during reboot). See Viewing RAM Memory Logs more information. • Log in flash memory (cleared only upon user command). See Viewing Flash Memory Logs for more information. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 39: Viewing Ram Memory Logs

    STEP 3 message, above the critical severity level, is logged. To disable this alert icon blinking, click Disable Alert Icon Blinking. The SYSLOG Alert Status icon is no longer displayed. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 40: Viewing Flash Memory Logs

    Log Index—Log entry number. • Log Time—Time when message was generated. • Severity—Event severity. • Description—Message text describing the event. Click Clear Logs to clear the log messages. STEP 2 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 41: Administration: File Management

    The possible methods of file transfer are: • Internal copy. • HTTP/HTTPS that uses the facility that the browser provides. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 42

    You can copy the Mirror Configuration, Startup Configuration, or Running Configuration to the Backup Configuration. The Backup Configuration exists in Flash and is preserved if the switch is rebooted. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 43: File Actions

    Save configuration files on the switch to a location on another device as described in the Download/Backup Configuration or Logs section. • Clear the Startup Configuration or Backup Configuration file types as described in the Configuration File Properties section. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 44: Upgrade/backup Firmware/language

    The following methods for transferring files are supported: • HTTP/HTTPS that uses the facilities provided by the browser. • TFTP that requires a TFTP server. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 45: Upgrading/saving The Firmware Image

    Click Apply. STEP 3 To replace the firmware image on the switch with a new version located on STEP 4 another device such as your local PC, enter the following information: Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 46

    TFTP Server IP Address/Name—Enter the IP address or domain name of the TFTP server. • Destination File Name—Enter the name of the firmware image that will be saved to the TFTP server. Click Apply. STEP 7 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 47: Upgrading The Language File

    Save Action—Select Upgrade as the action. • File Type—Select Language File as the file type. • File Name—Click Browse to select a new language file located on another device such as your local PC. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 48: Active Image

    The Download/Backup Configuration/Log page enables: • Backing up configuration files or logs from the switch to an external device. • Restoring configuration files from an external device to the switch. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 49: Uploading Configuration File

    To replace a file type on the switch with a version of that file type on another STEP 4 device such as your local PC, enter the following information: • Transfer Method—Select via HTTP/HTTPS as the transfer method. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 50: Saving Configuration File Or Logs

    Click Apply. The file is backed up on the TFTP server (depending upon the file STEP 3 type). To copy a file type on the switch to a file on another device such as your local PC, STEP 4 enter the following information: Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 51: Configuration File Properties

    Creation Time—The date and time that file was modified. If required, select either the Startup Configuration, Backup Configuration, or both STEP 2 and click Clear Files to delete these files. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 52: Copy/save Configuration Files

    Source File Name—Select the configuration file type to be copied. • Destination File Name—Select the configuration file type to be overwritten by the source file. Click Apply. The file is copied and the switch is updated. STEP 3 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 53: Dhcp Auto Configuration

    When DHCPv6 messages are received from the server. When DHCPv6 information is refreshed by the switch. After rebooting the switch when stateless DHCPv6 client is enabled. • When the DHCPv6 server packets contain the configuration filename option. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 54: Dhcp Server Options

    Configure the DHCPv4 and/or DHCPv6 servers to send the required options. This process is not described in this guide. • Configure the DHCP Auto Configuration parameters as described in this section. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 55

    TFTP server. If no configuration file name is specified in the DHCP message, the switch will download the backup configuration file from the backup TFTP server. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 56

    Last Auto Configuration File Name—Displays the name of the configuration file located on the TFTP server that is currently using. Click Apply. The DHCP Auto Configuration parameters are defined, and the STEP 3 Running Configuration is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 57: Administration: General Information

    Device Models • Viewing System Summary • Configuring System Settings • Configuring Console Settings • Rebooting the Switch • Defining Idle Session Timeout • Ping a Host • Using Traceroute Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 58: Device Models

    SF220-48P-K9-NA, and 2 special-purpose SF220-48P-K9-EU, combo ports (GE/SFP) SF220-48P-K9-UK, SF220-48P-K9-AU, SF220-48P-K9-CN Gigabit Ethernet SG220-26 24 GE copper ports SG220-26-K9-NA, and 2 special-purpose SG220-26-K9-EU, combo ports (GE/SFP) SG220-26-K9-UK, SG220-26-K9-AU, SG220-26-K9-BR, SG220-26-K9-AR Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 59

    (-CN), indicating that these features are only applicable for their China SKUs. These features are noted in this guide. You can find the PID information of your switch from the System Summary page. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 60: Viewing System Summary

    Firmware Version (Active Image)—Version number of the active firmware image. • Firmware MD5 Checksum (Active Image)—MD5 checksum of the active firmware image. • Firmware Version (Non-active)—Version number of the non-active firmware image. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 61

    You can click Detail to go to the Port Management > PoE > PoE NOTE Properties page to see more details about the PoE settings. Other Summary Information • Serial Number—Serial number. • PID VID—Part number and version ID. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 62: Configuring System Settings

    The banners defined on the web-based interface can also be NOTE activated on the command-line interfaces (Console, Telnet, and SSH). Click Apply. The system settings are modified, and the Running Configuration is STEP 4 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 63: Configuring Console Settings

    STEP 1 Click Reboot to reboot the switch. Since any unsaved information in the Running STEP 2 Configuration is discarded when the switch is rebooted, you must click Save in the Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 64: Defining Idle Session Timeout

    Select the timeout for the session from the corresponding drop-down menu. The STEP 2 default value is 10 minutes. Click Apply. The idle session timeout settings are defined, and the Running STEP 3 Configuration is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 65: Ping A Host

    To use the Traceroute utility: Click Administration > Traceroute. STEP 1 Enter the following information: STEP 2 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 66

    The Traceroute command terminates when the destination is reached or when this value is reached. To use the default value (30), select Use Default. Click Apply. STEP 3 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 67: Administration: Time Settings

    This chapter describes how to configure the system time, time zone, and Daylight Savings Time (DST). It includes the following topics: • System Time Options • Configuring System Time • Configuring SNTP Server Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 68: System Time Options

    Check Enable beside the Main Clock Source (SNTP Servers) field to use the STEP 2 SNTP source to set the system clock. The system time is obtained from an SNTP Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 69

    Selecting Recurring allows further customization of the start and stop of DST: • From—Enter the date when DST begins each year. Day—Day of the week on which DST begins every year. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 70: Configuring Sntp Server

    SNTP Server Port—Enter the UDP port number to be specified in the SNTP message headers. By default, the port number is the well-known IANA value of 123. Click Apply. The SNTP server is added, and the Running Configuration is updated. STEP 3 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 71: Administration: Diagnostics

    Select a port on which to run the copper test. STEP 2 Click Copper Test. STEP 3 The following fields for the test are displayed: • Test Results—Summary of the test results. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 72: Viewing Optical Module Status

    • MGBSX1—1000BASE-SX SFP transceiver, for multimode fiber, 850 nm wavelength, supports up to 550 m. • MGBT1: 1000BASE-T SFP transceiver for category 5 copper wire, supports up to 100 m. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 73: Configuring Port And Vlan Mirroring

    (destination) port. If more data is sent to the analyzer port than it can support, some data might be lost. The RSPAN VLAN feature is only applicable for the China switch models. NOTE Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 74

    The options are: Rx Only—Port mirroring on incoming packets. Tx Only—Port mirroring on outgoing packets. Tx and Rx—Port mirroring on both incoming and outgoing packets. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 75

    Destination Port—Select the analyzer port to where packets are copied. • Allow Ingress Packets—Check Enable to allow the destination port to receive ingress packets that are not copied. Click Apply. The Running Configuration is updated. STEP 9 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 76: Viewing Cpu Utilization

    The CPU Utilization field displays the rate of input frames to the CPU per second. Select the Refresh Rate (time period in seconds) that passes before the CPU STEP 2 utilization is refreshed. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 77: Administration: Discovery

    When Bonjour Discovery is disabled, the switch stops any service type advertisements and does not respond to requests for service from network management applications. By default, Bonjour is enabled on all interfaces that are members of the Management VLAN. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 78: Lldp And Cdp

    STEP 3 Configuration is updated. LLDP and CDP Link Layer Discovery Protocol (LLDP) and Cisco Discovery Protocol (CDP) are link layer protocols for directly-connected LLDP and CDP-capable neighbors to advertise themselves and their capabilities to each other. By default, the switch sends an LLDP/CDP advertisement periodically to all its interfaces and terminates and processes incoming LLDP and CDP packets as required by the protocols.

  • Page 79: Configuring Lldp

    Information Base (MIB). The network management system models the topology of the network by querying these MIB databases. LLDP is a link layer protocol. By default, the switch terminates and processes all incoming LLDP packets as required by the protocol. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 80

    Neighbors Information section. • View LLDP statistics of each port as described in the Viewing LLDP Statistics section. • View LLDP overloading information as described in the Viewing LLDP Overloading section. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 81: Configuring Lldp Properties

    In the Fast Start Repeat Count field, enter the number of times that LLDP packets STEP 3 are sent when the LLDP MED Fast Start mechanism is initialized. This occurs when Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 82: Configuring Lldp Port Settings

    System Description—Description of the network entity (in alpha- numeric format). This includes the system's name and versions of the hardware, operating system, and networking software supported by the switch. The value equals the sysDescr object. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 83: Configuring Lldp Med Network Policy

    LLDP packets to the attached LLDP media endpoint device. The media endpoint device should send its traffic as specified in the network policy that it receives. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 84

    VLAN ID—Enter the VLAN ID to which the traffic should be sent. • VLAN Tag—Select whether the traffic is Tagged or Untagged. • User Priority—Select the traffic priority applied to traffic defined by this network policy. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 85: Configuring Lldp Med Port Settings

    Location Coordinate—Enter the coordinate location to be published by LLDP. • Location Civic Address—Enter the civic address to be published by LLDP. • Location (ECS) ELIN—Enter the Emergency Call Service (ECS) ELIN location to be published by LLDP. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 86: Viewing Lldp Port Status

    • LLDP MED Status—Enabled or disabled. • Local PoE—(Only applicable for PoE models) Local PoE information advertised. • Remote PoE—(Only applicable for PoE models) PoE information advertised by the neighbor. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 87: Viewing Lldp Local Information

    Management Address—Displays the table of addresses of the local LLDP agent. Other remote managers can use this address to obtain information related to the local device. The address consists of the following elements: Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 88

    MED Details Capabilities Supported —MED capabilities supported on the port. Current Capabilities —MED capabilities enabled on the port. Device Class —LLDP MED endpoint device class. The possible device classes are: Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 89

    —Emergency Call Service (ECS) Emergency Location Identification Number (ELIN). • Network Policy Table Application Type —Network policy application type, for example, Voice. VLAN ID —VLAN ID for which the network policy is defined. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 90: Viewing Lldp Neighbors Information

    Time to Live—Time interval in seconds after which the information for this neighbor is deleted. Click Detail to display the details of LLDP port status in a table. STEP 3 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 91: Viewing Lldp Statistics

    PDU size supported by an interface. The LLDP Overloading page displays the number of bytes of LLDP/LLDP MED information, the number of available bytes for additional LLDP information, and the overloading status of each port. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 92

    —Total LLDP MED network policies packets byte size. Status —If the LLDP MED network policies packets were sent, or if they were overloaded. • LLDP MED Expanded Power via MDI Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 93

    • Total Total (Bytes) —Total number of bytes of LLDP information in each packet. Available Bytes Left —Total number of available bytes left for additional LLDP information in each packet. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 94: Configuring Cdp

    Administration: Discovery Configuring CDP Configuring CDP Similar to LLDP, Cisco Discovery Protocol (CDP) is a link layer protocol for directly connected neighbors to advertise themselves and their capabilities to each other. Unlike LLDP, CDP is a Cisco proprietary protocol. This section describes how to configure CDP and includes the following topics: •...

  • Page 95

    Syslog Native VLAN Mismatch—Check Enable to send a SYSLOG message when a native VLAN mismatch is detected. This means that the native VLAN information in the incoming frame does not match what the local device is advertising. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 96: Configuring Cdp Port Settings

    Syslog Voice VLAN Mismatch—Check Enable to send a SYSLOG message when a voice VLAN mismatch is detected. This means that the voice VLAN information in the incoming frame does not match what the local device is advertising. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 97: Viewing Cdp Local Information

    —IP addresses (advertised in the device address TLV). • Port TLV Port ID —Identifier of port advertised in the port TLV. • Capabilities TLV Capabilities —Capabilities advertised in the port TLV. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 98

    —(Only applicable for PoE models) Last power request ID received echoes the Request-ID field last received in a Power Requested TLV. It is 0 if no Power Requested TLV was received since the interface last transitioned to Up. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 99: Displaying Cdp Neighbor Information

    • Capabilities—Capabilities advertised by neighbor. • Platform—Information from Platform TLV of neighbor. • Neighbor Interface—Outgoing interface of the neighbor. Select a device, and click Detail. STEP 2 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 100: Viewing Cdp Statistics

    CDP statistics for a port are only displayed if CDP is enabled globally and on the port. This is done in the CDP Properties page and the CDP Port Settings page. To view CDP statistics: Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 101

    Click Clear Interface Counters to clear the CDP statistics counters for a specific STEP 2 interface. Click Clear All Interfaces Counters to clear the CDP statistics counters for all STEP 3 interfaces. Click Refresh to refresh the CDP statistics counters. STEP 4 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 102: Port Management

    By default, all LAGs are empty. Configure the Ethernet parameters, such as speed and auto-negotiation for the STEP 4 LAGs on the LAG Settings page, as described in the Configuring LAG Settings section. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 103: Configuring Basic Port Settings

    Port Type—Displays the port type. • Administrative Status—Select whether the port should be operational (Up) or non-operational (Down) when the switch is rebooted. • Operational Status—Displays the current port connection status. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 104

    Auto Advertisement Duplex—Select the duplex mode to be advertised by the port. The options are: All Duplex—All duplex modes can be accepted. Full—The interface supports transmission between the switch and the client in both directions simultaneously. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 105

    Member in LAG—If the port is a member of a LAG, the LAG number appears; otherwise this field is left blank. Click Apply. The port settings are modified, and the Running Configuration is STEP 6 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 106: Configuring Error Recovery Settings

    —Check Enable to enable the timer to recover from the unicast flood causes. Unknown Multicast Flood —Check Enable to enable the timer to recover from the unknown multicast flood causes. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 107: Configuring Link Aggregation

    This section describes how to configure the link aggregation features and includes the following topics: • Load Balancing • LAG Management • Static and Dynamic LAG Workflow • Configuring LAG Management • Configuring LAG Settings • Configuring LACP Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 108: Load Balancing

    When the port is removed from the LAG, its original configuration is reapplied. • Protocols, such as Spanning Tree, consider all the ports in the LAG to be one port. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 109: Static And Dynamic Lag Workflow

    STEP 2 Configuring LAG Settings for more information. Configure the LACP parameters of the ports in the LAG on the LACP page. See STEP 3 Configuring LACP for more information. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 110: Configuring Lag Management

    Port List to the LAG Members list. Up to 8 ports per static LAG can be assigned, and 16 ports can be assigned to a dynamic LAG. Click Apply. The LAG membership is defined, and the Running Configuration is STEP 6 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 111: Configuring Lag Settings

    Auto Advertisement Speed—Select the speed capability to be advertised by the port. The options are: All Speed—All port speed settings can be accepted. 10M—10 Mbps speed. 100M—100 Mbps speed. 10/100M—10 and 1000 Mbps speeds. 1000M—1000 Mbps speed. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 112: Configuring Lacp

    LAG. If both priorities are the same, the local and remote MAC addresses are compared. The priority of the device with the lowest MAC address controls candidate port selection to the LAG. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 113: Lacp With No Link Partner

    LACP LAG and becomes active (the other ports become non-candidates). In this way, the neighbor device can, for example, get its IP Address using DHCP and get its configuration using autoconfiguration. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 114: Configuring Lacp Parameters

    LACP Timeout—Select the periodic transmissions of LACP PDUs occur at either a slow or fast transmission rate, depending upon the expressed LACP timeout preference. Click Apply. The Running Configuration is updated. STEP 6 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 115: Configuring Energy Efficient Ethernet

    Energy Efficient Ethernet—Check Enable to enable Energy Efficient Ethernet on the port. Click Apply. The Energy Efficient Ethernet is enabled on the port, and the Running STEP 3 Configuration is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 116: Power-over-ethernet

    802.3at on port 1 to 4, and 802.3af on port 5 to 24 SF220-48P 375 Watts 1 to 48 802.3at on port 1 to 4, and 802.3af on port 5 to 48 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 117

    PoE switch may not operate properly and may not be able to properly supply power to its attaching PDs. To prevent false detection, you should disable PoE on the ports on the PoE switches Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 118: Poe On The Switch

    PoE can be used in any enterprise network that deploys relatively low-powered devices connected to the Ethernet LAN, such as: • IP phones • Wireless access points • IP gateways • Audio and video remote monitoring devices Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 119: Poe Operation

    The power values per port that were configured for the Port Limit mode are retained. Changing the mode from Class Limit to Port limit and vice versa when NOTE the switch is operational forces the PD to be reconnected. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 120: Configuring Poe Properties

    Click Port Management > PoE > PoE Properties. STEP 1 Enter the following information: STEP 2 • Power Mode—Select one of the following options: Port Limit—The maximum power limit per each port is configured by the user. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 121

    Allocated Power—Displays the amount of power allocated for the PoE ports. • Available Power—Nominal power minus the amount of allocated power. Click Apply. The PoE properties are defined, and the Running Configuration is STEP 3 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 122: Configuring Poe Port Settings

    PD connected to the selected port. In Class Limit mode, the value of the maximum power allocation will be determined on the class detection of PD connected, 15.4 w (802.3af, class 0 to 3), and 30 W Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 123

    PSE. Signatures are generated during powered device detection, classification, or maintenance. Click Apply. The PoE port settings are defined, and the Running Configuration is STEP 4 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 124: Managing Vlans

    VLAN have no VLAN tag. A port is a tagged member of a VLAN if all packets destined for that port into the VLAN have a VLAN tag. A port can be a member of one or more VLANs. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 125: Vlan Roles

    VLANs function at Layer 2. All VLAN traffic (Unicast, Broadcast, and Multicast) remains within its VLAN. Devices attached to different VLANs do not have direct connectivity to each other over the Ethernet MAC layer. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 126: Workflow To Configure Vlans

    Enable GVRP globally as well as on each port as described in the Configuring GVRP section. • Configure the voice VLAN parameters as described in the Configuring Voice VLAN section. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 127: Configuring Default Vlan

    Enter the following information: STEP 2 • Current Default VLAN ID—Displays the current default VLAN ID. • Default VLAN ID After Reboot—Enter a new VLAN ID to replace the default VLAN ID. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 128: Creating Vlans

    To create a range of VLANs, select the Range radio button, and specify the range STEP 4 of VLANs to be created in the VLAN Range area. Click Apply. The VLAN(s) is created, and the Running Configuration is updated. STEP 5 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 129: Configuring Vlan Interface Settings

    The switch will be in QinQ mode when it has one or more customer ports. • Administrative PVID—Enter the Port VLAN ID (PVID) of the VLAN to which incoming untagged and priority tagged frames are classified. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 130: Configuring Port To Vlan

    To map ports or LAGs to a VLAN: Click VLAN Management > Port to VLAN. STEP 1 Select a VLAN and the interface type (Port or LAG), and click Go. STEP 2 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 131: Viewing Vlan Membership

    To forward the packets properly, intermediate VLAN-aware devices that carry VLAN traffic along the path between end nodes, must either be manually configured or must dynamically learn the VLANs and their port memberships from GVRP. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 132

    The default VLAN might appear in the right list if it is tagged, but it cannot be selected. • Tagging—Select one of the following tagging or PVID options: Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 133: Configuring Gvrp

    GARP Packet Data Units (GPDUs). VLANs that are defined but not active are not propagated. To propagate the VLAN, it must be up on at least one port. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 134

    Creation on this interface. • GVRP Registration—Select the VLAN Registration mode using GVRP on this interface. Click Apply. The GVRP settings are modified, and the Running Configuraion is STEP 7 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 135: Configuring Voice Vlan

    CDP and/or LLDP MED, if enabled. Add a port to the voice VLAN if it detects an attaching device to the port that advertises itself as a phone or media end points through CDP and/or LLDP MED. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 136: Voice Vlan Constraints

    Add an interface to the voice VLAN on the basis of the OUI identifier and to configure the OUI QoS mode of voice VLAN as described in the Adding Interfaces to Voice VLAN on Basis of OUIs section. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 137: Configuring Voice Vlan Properties

    VLAN. The OUI Global table can hold up to 16 OUIs. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 138

    Click Apply. The OUI is added, and the Running Configuration is updated. STEP 6 Click Restore Default OUI to delete all user-created OUIs, and leave only the STEP 7 default OUIs in the table. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 139: Adding Interfaces To Voice Vlan On Basis Of Ouis

    —Assigned manually to the voice VLAN. • Telephony OUI QoS Mode—Select one of the following options: Telephony Source MAC Address —QoS attributes are applied only on packets from IP phones. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 140

    —QoS attributes are applied only on all packets that are classified to the Voice VLAN. Click Apply. The Telephony OUI interface settings are defined, and the Running STEP 4 Configuration is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 141: Spanning Tree Protocol

    STP provides a tree topology for any arrangement of switches and interconnecting links, creating a unique path between end stations on a network, eliminating loops. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 142: Configuring Stp Status And Global Settings

    STEP 1 In the Global Settings area, enter the following information: STEP 2 • Spanning Tree State—Enable or disable STP on the switch. • STP Operation Mode—Select a STP mode. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 143

    Root Port—The port that offers the lowest cost path from this bridge to the Root Bridge. (This is significant when the bridge is not the root.) • Root Path Cost—The cost of the path from this bridge to the root. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 144: Configuring Stp Interface Settings

    Disable—Disables Fast Link. • BPDU Guard—If enabled, the port shuts down if a BPDU message is received. • BPDU Filter—If enabled, the port will not send and receive BPDU message. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 145: Configuring Rstp Interface Settings

    Use the RSTP Interface Settings page to configure RSTP per port. Any configuration that is done on this page is active when the global STP mode is set to RSTP or MSTP. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 146

    Root—Lowest cost path to forward packets to the Root Bridge. Designated—The port through which the bridge is connected to the LAN, that provides the lowest cost path from the LAN to the Root Bridge. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 147

    Forwarding—The port is in Forwarding mode. The port can forward traffic and learn new MAC addresses. Click Apply. The RSTP interface settings are defiend, and the Running STEP 7 Configuration is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 148: Configuring Multiple Spanning Tree

    For two or more switches to be in the same MST region, they must have the same VLANs to MST instance mapping, the same configuration revision number, and the same region name. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 149: Mapping Vlans To An Mst Instance

    MST instances, the switch automatically maps them to the Core and Internal Spanning Tree (CIST) instance. The CIST instance is MST instance 0. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 150: Configuring Mstp Instance Settings

    VLANs are mapped to the common and internal spanning tree (CIST) instance (instance 0). • Priority—Enter the priority of this bridge for the selected MST instance. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 151: Configuring Mstp Interface Settings

    Path Cost—Select User Defined to set the port contribution to the root path cost, or select Use Default to use the default value. The root path cost is the cost of the switch to the Root Bridge of the specified MST instance. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 152

    Disabled—The interface does not participate in the Spanning Tree. • Mode—Displays the current Spanning Tree mode. STP—Classic STP is enabled on the port. Rapid STP—Rapid STP is enabled on the port. MSTP—MSTP is enabled on the port. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 153

    Ports with a lower cost are less likely to be blocked if STP detects loops. • Remaining Hops—Displays the hops remaining to the next destination. Click Apply. The Running Configuration is updated. STEP 5 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 154: Mac Address Tables

    MAC address that is not found in the tables, they are transmitted/broadcasted to all the ports on the relevant VLAN. Such frames are referred to as unknown Unicast frames. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 155: Configuring Static Mac Addresses

    Delete on Timeout—The MAC address is deleted when aging occurs. Secure—The MAC address is secure when the interface is in classic locked mode. Click Apply. The static MAC address is added, and the Running Configuration is STEP 4 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 156: Configuring Static Mac Address Filter

    For example, if you entered 300 seconds, the aging time is between 300 and 599 seconds. Click Apply. The dynamic MAC address aging time is updated, and the Running STEP 3 Configuration is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 157: Querying Dynamic Addresses

    The address table can be sorted by VLAN ID, MAC address, or interface. Click Go. The Dynamic Address Table is queried and the results are displayed. STEP 3 Click Clear Table to delete all dynamic MAC addresses. STEP 4 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 158: Configuring Reserved Mac Addresses

    Bridge—Forwards the packet to all VLAN members. Discard—Deletes the packet. Peer—Drops or deals with the packet depending on the protocol. Click Apply. The MAC address is reserved, and the Running Configuration is STEP 4 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 159: Multicast Forwarding

    The data is sent only to relevant ports. Forwarding the data only to the relevant ports conserves bandwidth and host resources on links. For Multicast forwarding to work across IP subnets, nodes, and routers must be Multicast-capable. A Multicast-capable node must be able to: Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 160: Typical Multicast Setup

    Multicast stream, it forwards the Multicast frame to all the ports that have registered to receive the Multicast stream using IGMP Join messages. The switch can forward Multicast streams only based on Multicast MAC Group Address. It can be configured per VLAN. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 161

    IGMP traffic (queries) detected from a Multicast router. In the presence of other IGMP Queriers, the device might (or might not) stop sending queries, based on the results of the standard querier selection process. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 162: Multicast Address Properties

    By default, IGMP Snooping is enabled on the switch. When enabling IGMP Snooping, the devices that monitor network flow will determine which hosts have requested to receive multicast traffic, and the switch only executes IGMP Snooping. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 163: Configuring Ip Multicast Group Addresses

    Click Add to add a static IP Multicast group address. STEP 4 Enter the following information: STEP 5 • VLAN ID—Select the VLAN ID of the group to be added. • IP Version—Select either Version 4 or Version 6. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 164: Configuring Igmp Snooping

    Ports asking to join a specific Multicast group issue an IGMP report that specifies which group(s) the host wants to join. This results in the creation of a forwarding entry in the Multicast forwarding database. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 165

    VLAN ID—Select the VLAN ID where IGMP Snooping is defined. • IGMP Snooping Status—Enable or disable the monitoring of network traffic to determine which hosts have asked to be sent Multicast traffic. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 166

    Select IGMPv3 if there are switches and/or Multicast routers in the VLAN that perform source-specific IP Multicast forwarding. Click Apply. The IGMP Snooping settings are defined, and the Running STEP 5 Configuration is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 167: Configuring Mld Snooping

    To enable MLD Snooping: Click Multicast > MLD Snooping. STEP 1 Enter the following IGMP Snooping general paramters: STEP 2 • MLD Snooping Version—Select either MLDv1 or MLDv2. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 168

    • Immediate Leave—When enabled, reduces the time it takes to block unnecessary MLD traffic sent to a switch port. Click Apply. The Running Configuration is updated. STEP 6 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 169: Querying Igmp/mld Ip Multicast Groups

    MLD registration messages. This is required in order for all Mrouters can, in turn, forward the Multicast streams and propagate the registration messages to other subnets. Use the Multicast Router Port page to statically configure or see dynamically- detect ports connected to Mrouters. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 170: Configuring Forward All Multicast

    You can statically configure a port to Forward All, if the devices connecting to the port do not support IGMP and/or MLD. The configuration affects only the ports that are members of the selected VLAN. NOTE Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 171: Configuring Maximum Igmp And Mld Groups

    • IGMP Exceed Action—Denies or replaces the existing group with the new group for which the IGMP report was recevied when the limit is reached. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 172: Configuring Multicast Filtering

    Profile Index—Enter the sequence number for the profile. • IP Version—Select ether Version 4 or Version 6 to apply the filter profile to IPv4 or IPv6 Multicast traffic. • Start Multicast Address—Enter the starting Multicast group address. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 173: Configuring Interface Filter Settings

    Filter Profile Index—Select a specified Multicast filter profile to be applied. The Multicast filter settings defined in the profile are applied to the interface. Click Apply. The Running Configuration is updated. STEP 5 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 174: Ip Configuration

    If the ARP response shows that the IPv4 address is in use, the switch sends a DHCPDECLINE message to the offering DHCP server, and sends another DHCPDISCOVER packet that restarts the process. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 175

    IP address must be defined and known. The default configuration of the switch is to use its factory default IP address of 192.168.1.254. The switch IP address can be manually configured. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 176: Ipv4 Management And Interface

    Operational Default Gateway—Displays the current default gateway IP address. If the switch is not configured with a default gateway, it cannot NOTE communicate with other devices that are not in the same IP subnet. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 177: Ipv6 Management And Interface

    IPv6 Address—Enter the IPv6 address of the switch. • Prefix_Length—Enter the length of the global IPv6 prefix of the switch. • IPv6 Gateway—Enter the link local IPv6 address of the default router. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 178: Configuring Domain Name System

    This section describes how to define DNS servers and includes the following topics: • Configuring General DNS Settings • Viewing Static and Dynamic DNS Servers • Configuring Host Mapping Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 179: Configuring General Dns Settings

    Preference—Select the preference value for the DNS server. Each server has a preference value, a lower value means a higher chance of being used. Click Apply. The DNS server is defined, and the Running Configuration is updated. STEP 8 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 180: Viewing Static And Dynamic Dns Servers

    The Host Mapping Table displays the following fields: • Host Name—User-defined host name or fully-qualified name. • IP Address—The host IP address. • IP Version—IP version of the host IP address. • Type—Static entry to the cache. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 181

    IP Address(es)—Enter a single address or up to eight associated IP addresses (IPv4 or IPv6). Click Apply. The host mapping is added, and the Running Configuration is STEP 4 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 182: Configuring Security

    Configuring Security The Cisco 220 switch handles various types of security, such as permission to administer the switch, protection from attacks directed at the switch CPU, access control of end-users to the network through the switch, protection from other network users (provent the attacks that pass through, but are not directed at, the switch).

  • Page 183: Configuring Users

    Configuring Users Configuring Users The default username/password is cisco/cisco. The first time that you log in with the default username and password or when the current password expires, you are required to set a new password. Password complexity is enabled by default.

  • Page 184: Configuring Tacacs+ Servers

    15 to be granted permission to administer the switch. To define a TACACS+ server and default authentication parameters: Click Security > TACACS+. STEP 1 In the Use Default Parameters area, enter the following default TACACS+ STEP 2 parameters: Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 185

    Timeout for Reply—Select User Defined to manually enter the amount of time that passes before the connection between the switch and the TACACS+ server times out, or select Use Default to use the default value. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 186: Configuring Radius Servers

    Key String—Enter the default key string used for authenticating and encrypting between the switch and the RADIUS server. This key must match the key configured on the RADIUS server. A key string is used to encrypt Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 187

    Retries—Select User Defined to manually enter the number of requests that are sent to the RADIUS server before a failure is considered to have occurred, or select Use Default to use the default value. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 188: Configuring Management Access Methods

    The rules are executed in order of their priority within the access profile (top to bottom). Rules are composed of filters that include the following elements: Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 189: Active Access Profile

    After an access profile has been defined, additional rules can be added or edited on the Profiles Rules page. See Configuring Profile Rules for more details. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 190: Configuring Access Profiles

    —Users requesting access to the switch who meet the Telnet access profile criteria, are permitted or denied access. Secure Telnet (SSH) —Users requesting access to the switch who meet the SSH access profile criteria, are permitted or denied access. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 191

    —Select the subnet to which the source IP address belongs and enter the subnet mask in dotted decimal format. Prefix Length —Select the Prefix Length and enter the number of bits that comprise the source IP address prefix. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 192: Configuring Profile Rules

    —Users requesting access to the switch who meet the Telnet access profile criteria, are permitted or denied access. Secure Telnet (SSH) —Users requesting access to the switch who meet the Telnet access profile criteria, are permitted or denied access. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 193

    —Select the subnet to which the source IP address belongs and enter the subnet mask in dotted decimal format. Prefix Length —Select the Prefix Length and enter the number of bits that comprise the source IP address prefix. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 194: Configuring Password Complexity Rules

    Contain no character that is repeated more than three times consecutively. Have a minimum length of eight characters. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 195: Configuring Management Access Authentication

    For example, if the selected authentication methods are RADIUS and Local, and all configured RADIUS servers are queried in priority order and do not reply, the user is authenticated locally. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 196

    NOTE authentication methods selected after Local or None are ignored. Click Apply. The selected authentication methods are associated with the access STEP 4 method, and the Running Configuration is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 197: Configuring Tcp/udp Services

    —The socket is waiting after close to handle packets still in the network. CLOSED —The socket is not being used. CLOSE_WAIT —The remote end has shut down, waiting for the socket to close. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 198

    SSH Service—Check Enable to enable the SSH service, or uncheck to disable this service. The default is disabled. Click Apply. The services are enabled or disabled, and the Running Configuration STEP 3 is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 199: Configuring Storm Control

    Unicast traffic. It will count unknown Unicast traffic towards the bandwidth threshold. • Storm Control Rate Threshold—Enter the maximum rate at which unknown Unicast packets can be forwarded. The default for this threshold is 10,000. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 200: Configuring Port Security

    Limited Dynamic Lock—The switch learns MAC addresses up to the configured limit of allowed addresses. After the limit is reached, the switch does not learn additional addresses. In this mode, the addresses are subject to aging and re-learning. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 201

    Max No. of Addresses Allowed—Enter the maximum number of MAC addresses that can be learned on the interface if Limited Dynamic Lock learning mode is selected. The range is 1 to 256 and the default is 1. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 202: Configuring 802.1x

    Otherwise, the authenticator discards the supplicant data unless the data is sent to a Guest VLAN and/or non-authenticated VLANs. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 203: Guest Vlan

    Configure 802. 1 X port-based authentication on each port. See Configuring 802.1X Port Authentication for more details. • View complete details of the authenticated hosts. See Viewing Authenticated Hosts for more details. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 204: Configuring 802.1x Properties

    Click Security > 802.1X > Port Authentication. STEP 1 Select a port, and click Edit. STEP 2 Enter the following information: STEP 3 • Interface—Select a port to be configured. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 205

    After the port is authenticated, the state is shown as Authenticated. • Quiet Period—Enter the number of seconds that the switch remains in the quiet state following a failed authentication exchange. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 206: Viewing Authenticated Hosts

    Session Time (DD:HH:MM:SS)—Amount of time that the supplicant was logged on the port. • Authentication Method—Displays the method used to authenticate the last session. • MAC Address—Displays the supplicant MAC address. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 207: Configuring Dos Protection

    One method of resisting DoS attacks employed by the switch is the use of SCT. SCT is enabled by default on the switch and cannot be disabled. The Cisco device is an advanced device that handles management traffic, protocol traffic and snooping traffic, in addition to end-user (TCP) traffic. SCT ensures that the switch receives and processes management and protocol traffic, no matter how much total traffic is received.

  • Page 208: Configuring Dos Security Suite Settings

    DA Equals SA • ICMP Frag Packets • ICMP Ping Maximum Length • IPv6 Minimum Frag Length • Land • Null Scan • • Smurf Netmask • TCP Source Port Less 1024 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 209: Configuring Dos Interface Settings

    • IP Gratuitous ARPs Protection—Check Enable to enable the IP gratuitous ARP protection feature on the port, or uncheck to disable this feature on the port. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 210: Configuring Syn Protection

    Block SYN-FIN Packets—Check Enable to enable the feature. All TCP packets with both SYN and FIN flags are dropped on all ports. • SYN Protection Mode—Select one of the following protection modes: Disable—The feature is disabled on the port. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 211: Configuring Dhcp Snooping

    • Configuring DHCP Snooping Trusted Interfaces • Querying DHCP Snooping Binding Database • Viewing Option 82 Statistics • Configuring Option 82 Interface Settings • Configuring Option 82 Port CID Settings Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 212: Configuring Dhcp Snooping Properties

    Write Delay—Enter the duration in seconds for which the transfer should be delayed after the DHCP Snooping binding database changes. The default is 300 seconds. The range is from 15 to 86400 seconds. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 213: Configuring Dhcp Snooping On Vlans

    Select the interface type (Port or LAG), and click Go. STEP 2 Select an interface and click Edit. STEP 3 Enter the following information: STEP 4 • Interface—Select a port or a LAG. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 214: Querying Dhcp Snooping Binding Database

    VLAN ID—VLAN ID to which the IP address is attached in the DHCP Snooping Database. • MAC Address—MAC address found during the query. • IP Address—IP address found during the query. • Interface—Interface connected to the address found during the query. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 215: Viewing Option 82 Statistics

    Invalid Drop—Total number of packets that are dropped due to invalid. Click Refresh to refresh the data in the table, or click Clear to clear all data in the STEP 3 table. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 216: Configuring Option 82 Interface Settings

    STEP 3 • Interface—Select a port or a LAG. • VLAN Status—Check Enable to use circuit ID on a specific VLAN, or uncheck to use circuit ID on all VLANs. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 217: Configuring Ip Source Guard

    STEP 4 • Interface—Select a port or LAG. • IP Source Guard—Check Enable to enable IP Source Guard on the interface, or uncheck to disable this feature on the interface. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 218: Quering Ip Source Binding Database

    —Indicates the IP address is a static IP address. • Lease Time—The amount of time that the IP address is active. IP addresses whose lease times are expired are deleted from the database. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 219: Configuring Dynamic Arp Inspection

    Interaction Between ARP Inspection and DHCP Snooping • Workflow to configure ARP Inspection • Configuring ARP Inspection Properties • Configuring ARP Inspection Trusted Interfaces • Viewing ARP Inspection Statistics • Configuring ARP Inspection VLAN Settings Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 220: Arp Cache Poisoning

    IA and IB, it can forward the intercepted traffic to those hosts by using the correct MAC address as the destination. Host C has inserted itself into the traffic stream from Host A to Host B, the classic man-in-the-middle attack. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 221: How Arp Prevents Cache Poisoning

    IP Address—Compares the ARP body for invalid and unexpected IP addresses. Addresses include 0.0.0.0, 255.255.255.255, and all IP Multicast addresses. Packets with invalid ARP Inspection bindings are logged and dropped. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 222: Interaction Between Arp Inspection And Dhcp Snooping

    Configuring ARP Inspection VLAN Settings for more details. View ARP Inspection statistical information on the Security > ARP Inspection > STEP 4 Statistics page. See Viewing ARP Inspection Statistics for more details. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 223: Configuring Arp Inspection Properties

    Click Security > ARP Inspection > Interface Settings. STEP 1 Select the interface type (Port or LAG), and click Go. STEP 2 Select an interface, and click Edit. STEP 3 Enter the following information: STEP 4 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 224: Viewing Arp Inspection Statistics

    Source IP Address Valication Failures —Total number of ARP packets that the source IP address validation fails. • Destination IP Address Valication Failures —Total number of ARP packets that the destination IP address validation fails. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 225: Configuring Arp Inspection Vlan Settings

    Select the VLANs from the Avaliable VLANs column and add them to the Enabled STEP 2 VLANs column. Click Apply. ARP Inspection settings are applied on the selected VLANs, and the STEP 3 Running Configuration is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 226: Access Control

    Access Control Lists An Access Control List (ACL) is an ordered list of classification filters and actions. Each single classification rule, together with its action, is called an Access Control Element (ACE). Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 227

    MAC-based ACL—Examines Layer 2 fields only, as described in the Configuring MAC-based ACLs section. • IP ACL—Examines the L3 layer of IP frames, as described in the Configuring IPv4-based ACLs section. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 228: Creating Acls Workflow

    See Configuring IPv6-based ACLs Configuring IPv6-based ACEs for more details. Associate the ACL with interfaces on the ACL Binding page. See Configuring ACL STEP 2 Binding for more details. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 229: Modifying Acls Workflow

    To define a MAC-based ACL: Click Access Control > MAC-Based ACL. STEP 1 The MAC-Based ACL Table displays a list of all currently defined MAC-based ACLs. Click Add. STEP 2 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 230: Configuring Mac-based Aces

    —Enter the mask to define a range of MAC addresses. Note that this mask is different than in other uses, such as subnet mask. Here, setting a bit as 1 indicates don't care and 0 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 231: Configuring Ipv4-based Acls

    The following fields can be matched: • IP protocol (by name for well-known protocols, or directly by value) • Source/destination IP addresses (including wildcards) • Source/destination ports for TCP/UDP traffic Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 232: Configuring Ipv4-based Aces

    Click Add. STEP 3 Enter the following information: STEP 4 • ACL Name—Displays the name of the ACL. • Priority—Enter the priority. ACEs with higher priority are processed first. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 233

    —Internet Control Message Protocol OSPF —Open Shortest Path First —Protocol Independent Multicast L2TP —Layer 2 Tunneling Protocol • Protocol ID to match—Instead of selecting the name, enter the protocol ID. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 234

    Destination Port—Select one of the available values that are the same as for the Source Port field described above. You must specify the IP protocol for the ACE before you can enter the NOTE source and/or destination port. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 235

    IGMP Type to match —Number of message type that will be used for filtering purposes. Click Apply. The IPv4-based ACE is defined, and the Running Configuration is STEP 5 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 236: Configuring Ipv6-based Acls

    • Action—Select the action assigned to the packet matching the ACE. The options are as follows: Permit—Forwards packets that meet the ACE criteria. Deny—Drops packets that meet the ACE criteria. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 237

    This field is active only if 800/6-TCP or 800/17-UDP is selected from the Protocol drop-down menu. Range—Select a range of TCP/UDP source ports to which the packet is matched. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 238

    ICMP Code—The ICMP messages may have a code field that indicates how to handle the message. Select one of the following options, to configure whether to filter on this code: Any—Accept all codes. User Defined—Enter an ICMP code for filtering purposes. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 239: Configuring Acl Binding

    To unbind all ACLs from an interface, select the interface, and click Clear. NOTE Select an interface, and click Edit. STEP 3 Select the Interface to which the ACLs are to be bound. STEP 4 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 240

    Click Apply. The ACL binding setting is modified, and the Running Configuration is STEP 6 updated. If no ACL is selected, the ACL(s) that is previously bound to the interface is NOTE unbound. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 241: Quality Of Service

    (CoS) or QoS classification. • Assignment to Hardware Queues—Assigns incoming packets to forwarding queues. Packets are sent to a particular queue for handling as a Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 242

    When changing from QoS basic mode to QoS advanced mode, the QoS trust mode configuration in QoS basic mode is not retained. • When disabling QoS, the shaper and queue setting (WRR/SP bandwidth setting) are reset to default values. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 243: Workflow To Configure Qos Settings

    Mapping Queue to DSCP section. Enter bandwidth and rate limits: STEP 7 • Set ingress rate limit and egress shaping rate per port as descirbed in the Configuring Bandwidth section. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 244: Configuring Qos Properties

    (that do not have a VLAN tag). The range is 0 to 7. The default CoS value is applicable only if the switch is in QoS basic mode and CoS/802. 1 p is the trusted mode. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 245: Configuring Qos Queues

    WRR queues. Only after the SP queues have been emptied is traffic from the WRR queues forwarded. (The relative portion from each WRR queue depends on its weight). Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 246: Mapping Cos/802.1p To A Queue

    802.1p Values Queue Notes (0 to 7, 7 being (8 queues, 8 being the highest) the highest priority) Background Best Effort Excellent Effort Critical Application LVS phone SIP Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 247

    Click Apply. 801. 1 p priority values to queues are mapped, and the Running STEP 3 Configuration is updated. Click Restore Defaults to restore the CoS/802. 1 p to Queue mappings to their STEP 4 factory default settings. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 248: Mapping Ip Precedence To Queue

    The switch is in QoS basic mode and DSCP is the trusted mode. • The switch is in QoS advanced mode and the packets belongs to flows that is DSCP trusted. Non-IP packets are always classified to the best-effort queue. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 249: Mapping Queues To Cos/802.1p

    Click Quality of Service > General > Queues to IP Precedence. STEP 1 For each output queue select the IP precedence to which egress traffic from the STEP 2 queue is remarked. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 250: Mapping Queue To Dscp

    Enter the following information for the selected port or LAG: STEP 4 • Remark CoS—Check Enable to remark the CoS/802. 1 p priority for egress traffic on this port or LAG. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 251: Configuring Bandwidth

    Egress Shaping Rates—Check Enable to enable egress shaping on the interface, which is defined in the following field. Uncheck to disable this feature. Click Apply. The bandwidth settings are modified, and the Running Configuration STEP 4 is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 252: Configuring Egress Shaping Per Queue

    Committed Information Rate (CIR)—Enter the maximum rate (CIR) in Kbits per second (Kbps). CIR is the average maximum amount of data that can be sent. Click Apply. The Running Configuration is updated. STEP 5 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 253: Configuring Vlan Rate Limit

    When VLAN port ingress rate limiting is configured, it limits aggregate traffic from the specified ports on the switch. This features requires that the switch is in QoS basic mode or in QoS advanced mode. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 254: Configuring Tcp Congestion Avoidance

    Click Quality of Service > General > TCP Congestion Avoidance. STEP 1 Click Enable to enable TCP congestion avoidance. STEP 2 Click Apply. The Running Configuration is udpated. STEP 3 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 255: Configuring Qos Basic Mode

    We recommend that you disable the trusted mode at the ports where the CoS/802. 1 p and/or DSCP values in the incoming packets are not trustworthy. Otherwise, it might negatively affect the performance of your network. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 256: Configuring Basic Qos Global Settings

    Use the Interface Settings page to configure QoS on each port of the switch, as follows: • QoS State Disabled on an Interface—All inbound traffic on the port is mapped to the best effort queue and no classification/prioritization takes place. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 257: Configuring Qos Advanced Mode

    The QoS of a class map (flow) is enforced by the associating policer. There are two type of policers, single policer and aggregate policer. Each policer is configured with a QoS specification. A single policer applies the QoS to a Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 258

    STEP 5 Class Mapping page, as described in the Configuring Class Mapping section. Create a policy on the Policy Table page, as described in the Configuring QoS STEP 6 Policies section. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 259: Configuring Advanced Qos Global Settings

    IP header. The actual mapping of the DSCP to queue can be configured on the DSCP to Queue page. If traffic is not IP traffic, it is mapped to the best effort queue. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 260: Configuring Class Mapping

    (see the Configuring QoS Policies section). To define a class map: Click Quality of Service > QoS Advanced Mode > Class Mapping. STEP 1 Click Add. STEP 2 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 261: Qos Policers

    QoS on the class map (flow) at ports that are otherwise independent of each other. A single policer is created on the Policy Class Maps page. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 262: Configuring Aggregate Policers

    Enter the following information: STEP 3 • Aggregate Policer Name—Enter the name of the aggregate policer. • Ingress Committed Information Rate (CIR)—Enter the maximum bandwidth allowed in bits per second. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 263: Configuring Qos Policies

    Click Apply. The QoS policy profile is added, and the Running Configuration is STEP 4 updated. Click Policy Class Map Table to display the Policy Class Maps page. STEP 5 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 264: Configuring Policy Class Maps

    , select a previously- defined aggregate policer. • Ingress Committed Information Rate (CIR)—If Police Type is Single , enter the CIR in Kbps/sec. See description in the Configuring Bandwidth section. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 265: Configuring Policy Binding

    To view the policies bound to all interafces, click Show Policy Binding Per Port. STEP 5 The Policy Binding Table displays the policy bound to each interface. Click Back to return to the previous page. STEP 6 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 266: Snmp

    Configuring SNMP Notification Recipients SNMP Versions and Workflow The Cisco 220 switch functions as an SNMP agent and supports SNMP v1, v2, and v3. It also reports system events to trap receivers using the traps defined in the Management Information Base (MIB) that it supports.

  • Page 267

    Key Management—Defines key generation, key updates, and key use. The switch supports SNMP notification filters based on Object IDs (OIDs). OIDs are used by the switch to manage device features. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 268: Snmp Workflow

    The access rights of a group are Read, Write, and Notify. Define the notification recipient(s) on the SNMP > Notification Recipients STEP 4 SNMPv1,2 page, as described in the Configuring SNMPv1,2 Notification Recipients section. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 269: Supported Mibs

    Define the notification recipient(s) on the SNMP > Notification Recipients SNMPv3 STEP 5 page, as described in the Configuring SNMPv3 Notification Recipients section. Supported MIBs The following standard MIBs are supported by the Cisco 220 switch: • RFC1213 MIB-II • RFC1215 Generic-Traps MIB •...

  • Page 270: Model Object Ids

    1.3.6. 1 .4. 1 .9.6. 1 .84.50.2 SG220-28 1.3.6. 1 .4. 1 .9.6. 1 .84.28.5 SG220-28MP 1.3.6. 1 .4. 1 .9.6. 1 .84.28.3 SG220-52 1.3.6. 1 .4. 1 .9.6. 1 .84.52.5 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 271: Configuring Snmp Engine Id

    SNMP engine and Engine ID. Click Add to add a new remote Engine ID. Enter the following information: STEP 5 • Server IP Address/Name—Enter the IP address or domain name of the remote host that receives the traps. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 272: Configuring Snmp Views

    Include In View—Check to include the selected MIBs in this view, otherwise they are excluded. Click Apply. The SNMP view is defined, and the Running Configuration is updated. STEP 5 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 273: Configuring Snmp Groups

    Click Add to add a new SNMP group. STEP 2 Enter the following information: STEP 3 • Group Name—Enter the new group name. • Security Model—Choose the SNMP version (SNMPv1, SNMPv2, or SNMPv3) attached to the group. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 274

    Otherwise, there is no restriction on the contents of the traps. This can only be selected for SNMP v3. Click Apply. The SNMP group is defined, and the Running Configuration is STEP 4 updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 275: Managing Snmp Users

    • Authentication Password—The password that is used for generating a key by the MD5 or Secure Hash Algorithm (SHA) authentication method. Encrpted —Select to enter an encrpted authentication password. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 276: Configuring Snmp Communities

    Read, Write, and Notify. To define SNMP communities: Click SNMP > Communities. STEP 1 Click Add to add a new SNMP community. STEP 2 Enter the following information: STEP 3 Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 277: Configuring Snmp Notification Recipients

    SNMP credentials corresponding to the version that will be included in the trap message. When an event arises that requires a trap message to be sent, it is sent to every node listed in the Notification Recipient Table. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 278: Configuring Snmpv1,2 Notification Recipients

    The default is 15 seconds. • Retries—Enter the number of times that the switch resends an inform request. The default is 3. • Community String—Select the SNMP community of the trap manager. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 279: Configuring Snmpv3 Notification Recipients

    Users page, and its Engine ID must be remote. • Security Level—Select how much authentication is applied to the packet. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 280

    —Indicates that the packet is authenticated but not encrypted. Privacy —Indicates that the packet is both authenticated and encrypted. Click Apply. The SNMPv3 notification recipient is defined, and the Running STEP 4 Configuration is updated. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 281: Using The Console Interface

    Using the Console Interface The Cisco 220 switch provides a console interface for basic configuration of the switch. The console interface is useful for switch configuration when the switch does not have a defined IP address, the IP address is not known, or only a direct console cable connection can be used to communicate with the switch.

  • Page 282

    If you connected to the switch with the supplied console cable, select the COM STEP 5 port that links your PC to the switch from the Connect using drop-down menu. Otherwise, select TCP/IP. HyperTerminal - Connect To Window (COM option selected) Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 283: Communicating By Using A Console Cable Connection

    Configure the COM3 Properties > Port Settings with the following connection STEP 1 parameters: • Bits per second = 9,600 • Data bits = 8 • Parity = None • Stop bits = 1 • Flow control = None Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 284

    Have a minimum length of eight characters. • Contain characters from at least three character classes (uppercase letters, lowercase letters, numbers, and special characters available on a standard keyboard). • Are different from the current password. Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 285: Communicating By Using A Tcp/ip Connection

    You are now ready to configure the switch. Refer to the Plus Switches Command Line Interface Reference Guide for further information. Make sure that any configuration changes made are saved before exiting. NOTE Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 286: Connecting By Using Telnet

    You are now ready to configure the switch. Refer to the Cisco 220 Series Smart Plus Switches Command Line Interface Reference Guide for further information. Make sure that any configuration changes made are saved before exiting. NOTE Cisco 220 Series Smart Plus Switches Administration Guide Release 1.0.0.x...

  • Page 287: Where To Go From Here

    Where to Go From Here Cisco provides a wide range of resources to help you and your customer obtain the full benefits of the Cisco 220 Series Smart Plus Switches. Cisco Support Community www.cisco.com/go/smallbizsupport Cisco Support and www.cisco.com/go/smallbizhelp Resources Phone Support Contacts www.cisco.com/en/US/support/...

Comments to this Manuals

Symbols: 0
Latest comments: