EtherWAN EX72129A User Manual
  1. Manuals
  2. Brands
  3. EtherWAN Manuals
  4. Switch
  5. EX72129A
  6. User manual

EtherWAN EX72129A User Manual

Etherwan managed switch
Hide thumbs
Table of Contents

Advertisement

Quick Links

EtherWAN Managed Switch – V1.94.2.1
FastFind Links
User's Guide
Unpacking and Installation
Computer Setup
Setting the initial IP address
1
EtherWAN Managed Switch Users Guide

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the EX72129A and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for EtherWAN EX72129A

Summary of Contents for EtherWAN EX72129A

  • Page 1 EtherWAN Managed Switch – V1.94.2.1 FastFind Links User’s Guide Unpacking and Installation Computer Setup Setting the initial IP address EtherWAN Managed Switch Users Guide...
  • Page 2 Disclaimer of Liability The information contained in this document is subject to change without notice. EtherWAN is not liable for any errors or omissions contained herein or for resulting damage in connection with the information provided in this manual.

  • Page 3: Table Of Contents

    VLAN Database Configuration Mode ..............25 Saving a Configuration from the CLI ..............25 System Menu ......................26 System Information ....................26 System Name/Password..................28 System Name/Password using the CLI ..............29 IP Address ....................... 30 EtherWAN Managed Switch Users Guide...
  • Page 4 User Account Page ....................51 Changing the User Mode ................... 51 Creating a New User ..................52 Changing an Existing User Account ..............53 User Privilege Configuration ..................54 User Account Settings using the CLI................ 56 Multi-User Mode....................56 EtherWAN Managed Switch Users Guide...
  • Page 5 Setting MAC Port Security ................. 79 Switching ........................ 81 Bridging ........................81 Aging Time......................82 Threshold Level ....................82 Storm Control Type .................... 82 Port Isolation ...................... 83 Block Multicast ....................83 Loopback Detect ...................... 85 EtherWAN Managed Switch Users Guide...
  • Page 6 Assigning a Port to a Link State Tracking Group ..........112 Setting PoE Power Budget ................112 PoE Port Settings..................... 113 PoE Scheduling ....................116 Trunking ....................... 119 Overview ....................... 119 Static Channel Trunking ................... 119 EtherWAN Managed Switch Users Guide...
  • Page 7 Setting Bridge Priority ..................145 Configuring the CST Network Diameter ............147 MSTP Properties Page ..................148 Configuring an MSTP Region................148 Configuring the IST Network Diameter ............. 150 MSTP Instance Setting Page ................. 151 EtherWAN Managed Switch Users Guide...
  • Page 8 Adding a Port to an MSTI Instance ..............161 STP/Ring Page - Alpha Ring ................162 Alpha Ring Setting Page ..................162 EtherWAN α-Ring Technology ................. 162 Implementing a Simple α-Ring ................. 162 Connecting two α-Ring Networks together ............164 Advanced Setting ....................
  • Page 9 Creating a ACL Class Map with an IP or MAC Access List ......218 Creating an ACL Policy Map ................219 Appling an Existing ACL Policy to a Port ............220 Deleting an ACL Class ..................220 Deleting an ACL Policy ..................221 EtherWAN Managed Switch Users Guide...
  • Page 10 Enabling LLDP Receive on a Port ..............250 Enabling LLDP Notify ..................251 Enabling Transmission of the Management IP ..........251 Enabling Specific TLV’s on a Port ..............252 Other Protocols....................253 GVRP ........................253 General Overview .................... 254 EtherWAN Managed Switch Users Guide...

  • Page 11: Table Of Figures

    GMRP Configuration Examples Using CLI Commands ........290 DHCP Server ......................292 General Overview .................... 292 Configuring the DHCP Server ................292 DHCP Configuration Examples Using CLI Commands ........295 TABLE OF FIGURES Figure 1: Login screen ......................21 EtherWAN Managed Switch Users Guide...
  • Page 12 Figure 40: PoE System Setting ................... 97 Figure 41: PoE Port Setting ....................99 Figure 42: Selecting a Port ....................100 Figure 43: PoE Power Scheduling ..................101 Figure 44: Port Trunking – Version 1 ................. 121 EtherWAN Managed Switch Users Guide...
  • Page 13 Figure 82: Global Configuration ..................184 Figure 83: 802.1p Priority ....................189 Figure 84: DSCP ....................... 191 Figure 85: Enabling QoS ....................196 Figure 86: Policy Map ......................197 Figure 87: IP Access List ....................198 xiii EtherWAN Managed Switch Users Guide...
  • Page 14 Figure 125: IGMP Mode ....................261 Figure 126: IGMP General Properties ................262 Figure 127: IGMP Passive Mode ..................263 Figure 128: Querier Mode Properties ................264 Figure 129: Disabled Mode Forwarding Port ..............265 Figure 130: PassiveForwardMode ..................266 EtherWAN Managed Switch Users Guide...
  • Page 15 Figure 136: Daylight Savings – Date Mode ............... 281 Figure 137: GMRP Global Setting ..................287 Figure 138: DHCP Server ....................293 Figure 139: DHCP Bindings ....................294 Figure 140: DHCP Binding Table ..................294 EtherWAN Managed Switch Users Guide...

  • Page 16: Preface

    Updated Port Security Section Updated Storm Control Section Updated Port Trunking Section to support multiple switch models New sections added: Storm Detect (GUI) Storm Detect CLI Global PoE GUI Global PoE CLI PoE Port GUI PoE Port CLI EtherWAN Managed Switch Users Guide...

  • Page 17: Document Conventions

    [ ] square Indicates optional values. brackets { } braces Indicates required or expected values. | vertical bar Indicates that you have a choice between two or more options or arguments. xvii EtherWAN Managed Switch Users Guide...

  • Page 18: Unpacking And Installation

    External power adapter/Cable (depending on model) Unpacking Follow these steps to unpack the EtherWAN Managed Switch and prepare it for operation: 1. Open the shipping container and carefully remove the contents. 2. Return all packing materials to the shipping container and save it.

  • Page 19: Required Equipment And Software

    The end user can employ any of the following web browsers during switch configuration: Internet Explorer, Firefox, or Chrome. Internet Explorer is the preferred browser for EtherWAN switch configuration. If there is trouble with other browsers while attempting to program the switch, Internet Explorer should be used.

  • Page 20: Computer Setup

     RS232 – The EtherWAN Managed Switch is equipped with a RS232 serial port that can be used to access the switches CLI. The Serial port is DCE DB9F. A straight through serial cable is used to connect to a typical computer serial port.

  • Page 21: Default Ip

    The following will appear in the browser window (See Figure  The Default Login is root (case sensitive)  There is no password by default  Enter the login name and click the Login button Figure 1: Login screen EtherWAN Managed Switch Users Guide...

  • Page 22: Setting The Initial Ip Address

    2. Click on IP address 3. Enter the desired IP address and subnet mask in the IP Address/Subnet Mask fields associated with VLAN 1 4. Click the Apply & Save button (See Figure Figure 2: Assigning an IP address EtherWAN Managed Switch Users Guide...

  • Page 23: Cli Command Usage

    CLI COMMAND USAGE This chapter describes accessing the EtherWAN Managed Switch by using Telnet, SSH, or serial ports to configure the switch, navigating the Command Line Interface (CLI), typing keyboard shortcuts, and moving between the levels. This chapter assumes the user has a working understanding of Telnet, SSH and Terminal emulation applications.

  • Page 24: Cli Command Modes

    2. configure terminal Example: switch_a>enable switch_a#configure terminal switch_a(config)# MSTP Configuration Mode To set the EtherWAN Managed Switch to General MSTP configuration mode, run the following commands from the CLI: 1. enable 2. configure terminal 3. spanning-tree mst configuration Example: switch_a>enable...

  • Page 25: Interface Configuration Mode

    Interface Configuration Mode Interface mode on the EtherWAN Managed Switch is used to configure the Ethernet ports and VLAN information. Valid interfaces are:  fe<port #> - 100mb ports use fe followed by the port number. Example: fe1  ge<port #> - Gigabit ports use ge followed by the port number. Example: ge1 ...

  • Page 26: System Menu

    One or more listings depending on the number o VLANs defined on the switch o Lists VLAN ID, IP address, and subnet mask of the VLAN Interface(s)  Current User Information o Lists the current the currently logged in user and their user privileges EtherWAN Managed Switch Users Guide...

  • Page 27: Figure 3: System Information

    Figure 3: System Information EtherWAN Managed Switch Users Guide...

  • Page 28: System Name/Password

    3. Use your mouse to place the cursor in the Password text box. 4. Enter the new password. 5. Retype the password in the Retype Password text box. 6. Click on the Update Setting button below the Retype Password text box. Figure 4: System Name/Password EtherWAN Managed Switch Users Guide...

  • Page 29: System Name/Password Using The Cli

    Password To enable a password on a switch, use the following CLI commands: CLI Command Mode: General Configuration Mode CLI Command Syntax: enable password <password> Usage Example switch_a>enable switch_a#configure terminal switch_a(config)#enable password mypassword switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 30: Ip Address

    2. Type in the default gateway in the Default Gateway text box. 3. Click on the Submit button. Note: After making changes to settings in the IP address section, the configuration needs to be saved using the System/Save configuration page (See Save Configuration) EtherWAN Managed Switch Users Guide...

  • Page 31: Figure 5: Ip Address

    Figure 5: IP Address EtherWAN Managed Switch Users Guide...

  • Page 32: Ip Address - Configuration Using The Cli

    169.254.1.1/16 switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q switch_a# Usage Example 2: Removing an IP address switch_a>enable switch_a#configure terminal switch_a(config)#no ip address switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 33: Default Gateway

    Usage Example 1: Setting the Gateway switch_a>enable switch_a#configure terminal switch_a(config)#ip default-gateway 169.254.0.1 switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q switch_a# Usage Example 2: Removing the Gateway switch_a>enable switch_a#configure terminal switch_a(config)#no ip default-gateway switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 34: Domain Name Server (Dns)

    169.254.0.253 switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q switch_a# Usage Example 2: Remove a DNS IP Address switch_a>enable switch_a#configure terminal switch_a(config)#no ip dns switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 35: Enable/Disable Dhcp Client On A Vlan

    CLI Command Syntax: ip address <A.B.C.D> no ip address <A.B.C.D> Usage Example 1 – Enable Static IP on VLAN2: switch_a>enable switch_a#configure terminal switch_a(config)#interface vlan1.2 switch_a(config-if)#ip address 169.254.1.1 switch_a(config-if)#q switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 36 Usage Example 2 – Enable DHCP Client on VLAN2: switch_a>enable switch_a#configure terminal switch_a(config)#interface vlan1.2 switch_a(config-if)#no ip address 169.254.1.11 switch_a(config-if)#q switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 37: Management Interface

    Configuration) Telnet. Telnet is a network protocol that allows a remote computer to log into the EtherWAN Managed Switch to access its CLI (Command Line Interface). The CLI can be access using Telnet, SSH and the serial port on the EtherWAN Managed Switch. The secure method of accessing the CLI over a network is SSH.

  • Page 38: Ssh (Secure Shell)

    Secure Shell or SSH is a network protocol that allows data to be exchanged using a secure channel between two networked devices such as a computer and the EtherWAN Managed Switch. SSH is disabled by default on the V1.94.2 EtherWAN Managed Switch.

  • Page 39: Management Interface Configuration Using The Cli

    [OK] switch_a#q Note: If using Telnet to run the CLI Commands that disable telnet you will lose your connection. To Disable Telnet using the CLI, use SSH or the RS232 Console port on the switch. EtherWAN Managed Switch Users Guide...

  • Page 40: Enabling/Disabling Ssh

    [OK] switch_a#q Note: If using SSH to run the CLI Commands that disable SSH you will lose your connection. To Disable SSH using the CLI, use Telnet or the RS232 Console port on the switch. EtherWAN Managed Switch Users Guide...

  • Page 41: Enabling/Disabling Http And/Or Https

    Usage Example 1: Enabling HTTP: switch_a>enable switch_a#configure terminal switch_a(config)#ip http server switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q switch_a# Usage Example 2: Disabling HTTP: switch_a>enable switch_a#configure terminal switch_a(config)#no ip http server switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q EtherWAN Managed Switch Users Guide...
  • Page 42 Usage Example 3: Enabling HTTPS: switch_a>enable switch_a#configure terminal switch_a(config)#ip http secure-server switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q switch_a# Usage Example 4: Disabling HTTPS: switch_a>enable switch_a#configure terminal switch_a(config)#no ip http secure-server switch_a(config)#q switch_a#write memory Building configuration..[OK] switch_a#q EtherWAN Managed Switch Users Guide...

  • Page 43: Save Configuration Page

    The Save Configuration page contains the following configuration functions (see Figure Save Configuration To save the currently running configuration to the flash memory on the EtherWAN Managed Switch: 1. Click the Save Configuration button 2. If the save is successful you will see the message: Building configuration…..

  • Page 44: Restore Default

    Restore Default To restore the V1.94.2 EtherWAN Managed Switch to factory defaults: 1. Click on the Restore Default button. Auto Save The Auto Save function is used to set the switch to automatically save the configuration to flash. If the saved configuration is the same as the running configuration then a save is not made.

  • Page 45: Save Configuration Page Using The Cli

    To restore the switch to its default settings, use the following CLI commands: CLI Command Mode: General Configuration Mode CLI Command Syntax: restore default Usage Example 1: Saving a Configuration switch_a>enable switch_a#restore default switch_a#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 46: Load Configuration From A Tftp Server

    To Save a Configuration to a TFTP server, use the following CLI commands: CLI Command Mode: Privileged Exec Mode CLI Command Syntax: write confige-file <tftpserver_ipaddress> <filename> Usage Example: Saving a Configuration switch_a>enable switch_a#write config-file 169.254.1.100 flash.tgz switch_a#q switch_a> EtherWAN Managed Switch Users Guide...

  • Page 47: Auto Save Configuration

    <number> Usage Example 1: Enabling Auto Save and setting the interval switch_a>enable switch_a#service auto-config enable switch_a#service auto-config inverval 10 switch_a#q switch_a> Usage Example 2: Disabling Auto Save switch_a>enable switch_a#no service auto-config enable switch_a#q switch_a> EtherWAN Managed Switch Users Guide...

  • Page 48: Firmware Upgrade

    To upgrade the firmware on the EtherWAN Managed Switch, a TFTP server is required. The firmware file for the V1.94.2 EtherWAN Managed Switch is in a .TGZ or .IMG format. This is a compressed file; however, it should not be decompressed before updating the V1.94.2 EtherWAN Managed Switch.

  • Page 49: Firmware Update Using The Cli

    <tftpserver_ipaddress> <filename> Usage Example: switch_a>enable switch_a#install image 169.254.1.100 flash.tgz switch_a#q switch_a# Note: Depending on the firmware being loaded, the extension may not be .tgz. The Switch does not use the extension to validate firmware. EtherWAN Managed Switch Users Guide...

  • Page 50: Reboot

    To navigate to the Reboot page: 1. Click on the + next to System 2. Click on Reboot To reboot the EtherWAN Managed Switch: 1. Click on the Reboot button. 2. Click OK on the popup message. Reboot using the CLI...

  • Page 51: User Account Page

    2. Click on the Update Setting button. 3. Click OK on the Popup message that appears. Note: Changing the mode to Multi-User Mode saves the configuration and reboots the switch Figure 9: User Mode EtherWAN Managed Switch Users Guide...

  • Page 52: Creating A New User

    5. Select a Privilege Level from the dropdown list next to the Privilege Level row heading. For more information on Privilege levels see the User Privilege Configuration. 6. Click on the Update button. 7. Save the configuration (See the Save Configuration Page) Figure 10: Creating Users EtherWAN Managed Switch Users Guide...

  • Page 53: Changing An Existing User Account

    3. To delete an existing user, select the user as in step 1 and then click on the Delete button (see Figure 12). Figure 11: Selecting an Existing User Account Figure 12: Deleting a User Account EtherWAN Managed Switch Users Guide...

  • Page 54: User Privilege Configuration

    To navigate to the User Privilege page: 1. Click on the + next to System. 2. Click on User Privilege. There are 3 different Privilege levels on the EtherWAN Managed Switch.  Admin – Has access to all configuration and administration of the switch.

  • Page 55: Figure 13: User Privilege Page

    Figure 13: User Privilege Page EtherWAN Managed Switch Users Guide...

  • Page 56: User Account Settings Using The Cli

    To enable the single-user feature, use the following CLI commands: CLI Command Mode: Line Configuration Mode CLI Command Syntax: login Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#line console 0 switch_a(config-line)#login % Switching Single/Multi-User mode need to reboot the switch to take effect! switch_a(config-line)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 57: Creating A New User

    8 1234 switch_a(config)#username user2 privilege technician password 4321 switch_a(config)#username user2 privilege technician password 8 4321 switch_a(config)#username user3 privilege admin password 5678 switch_a(config)#username user3 privilege admin password 8 5678 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 58: Permissions

    802.1p-Priority Switching Port-Security DSCP Trunking Bridging SNMP-General-Setting STP/Ring Loopback-Detect SNMP-v1/v2 VLAN Static-MAC-Entry SNMP-v3 Port-Mirroring Radius-Configuration SNMP Link-State-Tracking Port-Authentication 802.1X Port-Trunking LLDP-General-Settings LLDP LACP-Trunking LLDP-Ports-Settings LLDP-Neighbors Global-Configuration GVRP; IGMP-Snooping LLDP-Statistics RSTP-Port-Setting NTP GMRP Others-Protocols MSTP-Prties DHCP-Server EtherWAN Managed Switch Users Guide...
  • Page 59 Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#multiuser-access IP-Address tech read-write oper read-only switch_a(config)#multiuser-access System-Log tech show oper hide switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 60: Diagnostics

    1. Click on the + next to Diagnostics. 2. Click on Utilization. The Utilization page shows (see Figure 14):  CPU Utilization – Current and Max Utilization  Memory Utilization – Total, Used and Free Memory Figure 14: Utilization Page EtherWAN Managed Switch Users Guide...

  • Page 61: System Log

    System log using CLI command For more information on CLI command usage see CLI Command Usage. CLI Command Mode: Exec Mode or Privileged Exec Mode CLI Command Syntax: show system-log Usage Example: switch_a#show system-log switch_a#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 62: Remote Logging

    Syslog servers to report to (see Figure 16). To configure the Remote Logging on the EtherWAN Managed Switch: 1. Click on the Enable or Disable radio button under Remote Logging. 2. Click on the Update Setting button. To add a Syslog server: 1.

  • Page 63: Figure 16: Remote Logging Page

    Figure 16: Remote Logging Page EtherWAN Managed Switch Users Guide...

  • Page 64: Remote Logging Using Cli Commands

    <ip_address> remote-log del <ip_address> remote-log del all Usage Example 1: Add a Remote Logging Host switch_a>enable switch_a#remote-log add 169.254.1.100 switch_a#q switch_a# Usage Example 2: Delete a Remote Logging Host switch_a>enable switch_a#remote-log del 169.254.1.100 switch_a#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 65: Arp Table

    2 = Device responded to ARP Request o 0 = No response to ARP Request  Hardware Address – MAC Address of the listed device  VLAN – The VLAN that the listed device is on Figure 17: ARP Table EtherWAN Managed Switch Users Guide...

  • Page 66: Arp Table Using Cli Commands

    For more information on CLI command usage see CLI Command Usage. CLI Command Mode: General Configuration Mode CLI Command Syntax: show arp-table Usage Example: switch_a>enable switch_a#show arp-table IP address HW type Flags HW address Mask VLAN 10.58.7.130 00:50:B6:65:2A:22 switch_a#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 67: Route Table

    For more information on CLI command usage see CLI Command Usage. CLI Command Mode: General Configuration Mode CLI Command Syntax: show route-table Usage Example: switch_a>enable switch_a#show route-table Destination Gateway Genmask Flags Metric Ref VLAN 10.58.7.0 0.0.0.0 255.255.255.0 switch_a#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 68: Alarm Setting

    Figure 19). Figure 19: Alarm Trigger 3. Select YES or NO from the dropdown box next to Trigger Enabled (see Figure 20). 4. Click Update Setting to save any changes made. Figure 20: Trigger Enable EtherWAN Managed Switch Users Guide...

  • Page 69: Port

     Flow Control – State of Flow Control for the Port. To provide a description to a port on the EtherWAN Managed Switch: 1. Click in the Description text box for the appropriate port. 2. Type in the description of the port.

  • Page 70: Figure 21: Port Configuration

    To set the Port Speed and/or Port Duplex Settings on the EtherWAN Managed Switch: 1. Click on the drop-down box under Speed and select the desired port speed / duplex settings for that port. Please note, not all port types will have the same options. For...

  • Page 71: Port Status

    Port Description – User-supplied Port Description  Admin Setting – Administratively State of the Port.  Speed – Speed and Duplex Settings for Port.  Flow Control – State of Flow Control for the Port. Figure 22: Port Status EtherWAN Managed Switch Users Guide...

  • Page 72: Rate Control

    The Rate Control page is shown below (see Figure 23): To provide either an ingress or egress rate control for a port on the EtherWAN Managed Switch: 1. Click in the Ingress or Egress Text Box for the appropriate port.

  • Page 73: Rmon Statistics

    Figure 24). To view the RMON statistics for a particular port on the EtherWAN Managed Switch: 1. Click on the link to the port at the top of the RMON Statistics page. To clear the RMON statistics for a particular port on the EtherWAN Managed Switch: 1.

  • Page 74: Per Port Vlan Activities

    This is a read-only page that will allow the user to see what devices are connected to a particular port and the vlan associated with that device and port. To clear the MAC addresses for a particular port on the EtherWAN Managed Switch (see Figure 25): 1.

  • Page 75: Port Security

    To remove a MAC Address from a port 1. Select the MAC Address from the Dropdown list next to the port that you want to configure (see Figure 2. Click on Update Setting. Figure 26: Port Security EtherWAN Managed Switch Users Guide...

  • Page 76: Port Configuration Examples Using Cli Commands

    To administratively enable or disable a port use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: shutdown no shutdown Usage Example 1: Disabling a port: switch_a>enable switch_a#configure terminal switch_a(config)#int fe1 switch_a(config-if)#shutdown switch_a(config)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 77: Setting The Port Speed

    To set the duplex for a port use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: duplex <full | half | auto> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#int fe1 switch_a(config-if)#duplex full switch_a(config)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 78: Enable Or Disable Port Flowcontrol

    To set a ports rate control use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: rate-control <ingress | egress> value <value in kbps> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#int fe1 switch_a(config-if)#rate-control ingress value 100000 switch_a(config)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 79: Display A Ports Rmon Statistics

    Setting MAC Port Security To enable MAC port security use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: port-security enable Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#int fe1 switch_a(config-if)# port-security enable switch_a(config)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 80 To delete an allowed MAC address use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: no port-security allowed-address <value> 00aa.0062.c609 (in hex format. Ex. Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#int fe1 switch_a(config-if)# no port-security allowed-address 00aa.0062.c609 switch_a(config)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 81: Switching

    Add a MAC address permanently to the switching table  Prevent a MAC address from ever being registered in the switching table. To navigate to the Bridging page: 1. Click on the + next to Switching. 2. Click on Bridging. EtherWAN Managed Switch Users Guide...

  • Page 82: Aging Time

    300s (5 minutes) (see Figure 27). To update the Aging Time value on the EtherWAN Managed Switch: 1. Click in the Error Disable Recovery text box at the top of the Port Security Dynamic- MAC page. 2. Type in the desired value. Values can be from 0 to 65535 seconds. A value of 0 indicates that the port is not to return to normal operating condition until an administrator resets the port or the switch is restarted.

  • Page 83: Port Isolation

    Figure 27). To update the Port Isolation value for a port on the EtherWAN Managed Switch: 1. Click on the Port Isolation drop-down box for the port to be isolated. 2. Select the value enable on the Port Isolation drop-down box.

  • Page 84: Figure 27: Bridging

    Figure 27: Bridging EtherWAN Managed Switch Users Guide...

  • Page 85: Loopback Detect

    To navigate to the Loopback Detect page: 1. Click on the + next to Switching. 2. Click on Loopback Detect. Loopback Detection (Global) To globally enable the Loopback Detect feature of the EtherWAN Managed Switch (see Figure 28): 1. Click on the Loopback Detect drop-down box.

  • Page 86: Polling Interval

    To change the polling interval of the Loopback Detect function (see Figure 28): 1. Enter a value in the text box next to Interval. Valid values range from 1 to 65535 seconds. 2. Click on the Update Setting button. Figure 28: Loopback Detection EtherWAN Managed Switch Users Guide...

  • Page 87: Loopback Detection (Per Port)

    Loopback Detection (Per Port) To enable Loopback Detection for a particular port or ports on the EtherWAN Managed Switch (see Figure 29): 1. Select the value Enable from the Mode drop down list for a port on the Loopback Detect page.

  • Page 88: Storm Detect

    5. Set the type of packet to be monitored in the Dropdown box under By Broadcast / Multicast+Broadcast Packets Per Second. Set the value to BC to monitor Broadcast packets and BC-MC to monitor both Broadcast and Multicast packets. EtherWAN Managed Switch Users Guide...

  • Page 89: Figure 31: Storm Detect - Per Port

    6. Set the number of packets per second to a value between 0 and 1000000 packets. The default is 0 (not limited). Figure 31: Storm Detect – Per Port EtherWAN Managed Switch Users Guide...

  • Page 90: Static Mac Entry

    MAC address should be in the form aaaa:bbbb:cccc). 2. Select the VLAN that this MAC address is associated with from the VLAN ID drop down list for the port. 3. Click on the Submit button. Figure 32: MAC Static Entry EtherWAN Managed Switch Users Guide...

  • Page 91: Removing A Static Mac Address From A Port

    3. It should be noted that while static MAC address for forwarding are associated with the switch on a per-port basis. Static MAC discards are associated with the switch for all ports. 4. Click on the Submit button. Figure 34: Adding a MAC – Static-MAC-Entry Table EtherWAN Managed Switch Users Guide...

  • Page 92: Removing A Mac Address From The Static-Mac-Entry Discard Table

    To remove a MAC address from the Static-MAC-Entry Discard table (see Figure 35): 1. From the drop down box underneath Delete MAC Address, select the MAC address to be deleted. 2. Click on the Submit button. Figure 35: Deleting a MAC – Static-MAC-Entry Table EtherWAN Managed Switch Users Guide...

  • Page 93: Port Mirroring

    To navigate to the Port Mirroring menu: 1. Click on the + next to Switching. 2. Click on Port Mirroring. To configure port mirroring for a port or ports on the EtherWAN Managed Switch (see Figure 36): 1. Select the port or ports that traffic is to be mirrored from under the Mirror From column.

  • Page 94: Figure 36: Port Mirroring

    Figure 36: Port Mirroring To disable port mirroring for a port or ports on the EtherWAN Managed Switch (see Figure 37): 1. Under the Current Settings section, the current port mirroring configuration should be displayed. 2. Click on the Delete button.

  • Page 95: Link State Tracking

    1. Click on the + next to Switching. 2. Click on Link State Tracking. Enable/Disable Link State Tracking To enable Link State Tracking for a particular group on the EtherWAN Managed Switch (see Figure 38): 1. Under Group Setting, click the check box of the Link State groups that are to be enabled (or disabled).

  • Page 96: Figure 39: Link State Tracking - Port Settings

    2. Select if the port is upstream or downstream from the Up/Down Stream)drop down box. 3. Click on Update Setting. Figure 39: Link State Tracking – Port Settings EtherWAN Managed Switch Users Guide...

  • Page 97: Poe - System And Port Settings

    PoE - System and Port Settings This section only applies to Managed EtherWAN Switches with support for PoE. To navigate to the PoE page: 1. Click on the + next to Switching. 2. Click on PoE. PoE System Setting The PoE Page provides access to PoE System Setting information and configuration. The...

  • Page 98: Poe Port Setting

    8. Power Priority – Use the Drop-Down box in the Power Priority column to set the priority to High, Medium or Low. 9. Power Down Alarm – This setting only applies to EtherWAN Switches that have a relay. If this box is check, losing PoE power on a port triggers the relay on the switch.

  • Page 99: Figure 41: Poe Port Setting

    Figure 41: PoE Port Setting EtherWAN Managed Switch Users Guide...

  • Page 100: Poe Scheduling

    1. Select the port from the drop-down list (See Figure Figure 42: Selecting a Port 2. Select the hour(s) of day for each day of the week (see Figure 43). 3. Click on the Submit button. EtherWAN Managed Switch Users Guide...

  • Page 101: Figure 43: Poe Power Scheduling

    Figure 43: PoE Power Scheduling EtherWAN Managed Switch Users Guide...

  • Page 102: Switch Configuration Examples Using Cli Commands

    1 ageing time 300 switch_a(config)#q switch_a# Enabling Port Isolation To enable Port Isolation for a port on the EtherWAN Managed Switch, use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: port-isolation enable Usage Example: switch_a>enable...

  • Page 103: Enabling Block Multicast

    Enabling Block Multicast To enable Block Multicast for a port on the EtherWAN Managed Switch, use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: switchport block multicast Usage Example: switch_a>enable switch_a#configure terminal switch_a#configure interface fe1...

  • Page 104: Enabling Loopback Detect (Global)

    Setting the Loopback Detect Action To set the action for Loopback Detect on the EtherWAN Managed Switch, use the CLI commands below: CLI Command Mode: General Configuration Mode CLI Command Syntax: bridge 1 loopback-detect action <err-disable | none>...

  • Page 105: Setting The Loopback Detect Polling Interval

    Setting the Loopback Detect Polling Interval To set the polling interval for Loopback Detect on the EtherWAN Managed Switch, use the CLI commands below: CLI Command Mode: General Configuration Mode CLI Command Syntax: bridge 1 loopback-detect interval <1-65535> Usage Example: switch_a>enable...

  • Page 106: Configuring Storm-Detect

    To set the storm-detect interval use the following CLI commands: CLI Command Mode: General Configuration Mode CLI Command Syntax: bridge 1 storm-detect interval <2-65535> Default: 10 Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)# bridge 1 storm-detect interval 10 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 107 = broadcast only mc-bc = count broadcast & multicast packets together. Default: 0 (Disabled) Usage Example 1 – Enabling Multicast + Broadcast: switch_a>enable switch_a#configure terminal switch_a(config)# interface fe1 switch_a(config-if)#storm-detect mc-bc pps 50000 switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 108 To disable storm-detect on a port use the following CLI commands: CLI Command Mode: Interface Mode CLI Command Syntax: no storm-detect port enable Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)# interface fe1 switch_a(config-if)#no storm-detect port enable switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 109 To disable storm-detect on a port use the following CLI commands: CLI Command Mode: Interface Mode CLI Command Syntax: no storm-detect port enable Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)# interface fe1 switch_a(config-if)#no storm-detect port enable switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 110: Adding A Mac Address For Static-Mac-Entry Forwarding

    Adding a MAC Address for Static-MAC-Entry Forwarding To add a MAC address for Static-MAC-Entry Forwarding for a port on the EtherWAN Managed Switch, use the CLI commands below: CLI Command Mode: General Configuration Mode CLI Command Syntax: bridge 1 address <mac address> forward <interface> vlan <vlan id>...

  • Page 111: Configuring Port Mirroring

    Configuring Port Mirroring To configure a port for Port Mirroring on the EtherWAN Managed Switch, use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: mirror interface <interface> direction <both | tx | rx> Usage Example: switch_a>enable...

  • Page 112: Assigning A Port To A Link State Tracking Group

    Assigning a Port to a Link State Tracking Group To assign a port to a Link State Tracking group on the EtherWAN Managed Switch, use the following CLI commands: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: link state group <group #> <upstream | downstream>...

  • Page 113: Poe Port Settings

    Usage Example 1 – Enabling PoE on a port: switch_a>enable switch_a#configure terminal switch_a(config)# interface fe1 switch_a(config-if)# poe enable switch_a(config-if)#q switch_a(config)#q switch_a# Usage Example 2 – Disabling PoE on a port: switch_a>enable switch_a#configure terminal switch_a(config)# interface fe1 switch_a(config-if)# no poe enable switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 114 CLI Command Mode: Interface Configuration Mode CLI Command Syntax: poe power-classification enable no poe power-classification enable Usage Example 1 – Enabling PoE Power Classification on a port: switch_a>enable switch_a#configure terminal switch_a(config)# interface fe1 switch_a(config-if)# poe power-classification enable switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 115 This setting only applies to EtherWAN Switches that have a relay. If this setting is enabled, losing PoE power on a port triggers the relay on the switch. To enable or disable the power down alarm, use the following CLI commands:...

  • Page 116: Poe Scheduling

    CLI Command Mode: Interface Configuration Mode CLI Command Syntax: poe scheduling enable To disable PoE scheduling on a port use the no poe enable command Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)# interface fe1 switch_a(config-if)# poe scheduling enable switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 117 Usage Example 1: switch_a>enable switch_a#configure terminal switch_a(config)# interface fe1 switch_a(config-if)# poe schedule-time 0 10 switch_a(config-if)#q switch_a(config)#q switch_a# Usage Example 2 – Multiple hours: switch_a>enable switch_a#configure terminal switch_a(config)# interface fe1 switch_a(config-if)# poe schedule-time 0 10-14 switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 118 Day = 0 (Sunday) to 6 (Saturday) Hour = 1 to 23 To disable PoE scheduling on a port use the no poe enable command. Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)# interface fe1 switch_a(config-if)# poe schedule-time 0 10 switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 119: Trunking

    These aggregated links may be used to interconnect switches or to connect high-capacity servers to a network. The EtherWAN EtherWAN Managed Switch supports up to six trunks for 100Mbps ports and up to two gigabit trunks. Each 100Mbps trunk can be composed of up to eight 100Mbps ports while each gigabit trunk can support up to four gigabit ports.

  • Page 120: Port Trunking

    To navigate to the Port Trunking menu: 1. Click on the + next to Trunking. 2. Click on Port Trunking. There are 2 versions of Port Trunking supported depending on the model of EtherWAN Manage switch. Version 1 (see Figure To create a trunk consisting of 100Mbps ports: 1.

  • Page 121: Figure 44: Port Trunking - Version 1

    To create a static trunk consisting of 1000Mbps ports (see Figure 45): 3. In the GE Trunking section, click on the checkbox for each desired port in a particular trunk. 4. Click on the Submit button. EtherWAN Managed Switch Users Guide...

  • Page 122: Figure 45: Port Trunking - Version 2

    Figure 45: Port Trunking – Version 2 EtherWAN Managed Switch Users Guide...

  • Page 123: Lacp Trunking

    To navigate to the LACP Trunking menu: 1. Click on the + next to Trunking. 2. Click on LACP Trunking. There are 2 versions of Port Trunking supported depending on the model of EtherWAN Manage switch. Version 1 (see Figure To create a LACP trunk: 1.

  • Page 124: Figure 46: Lacp Trunking Version 1

    Figure 46: LACP Trunking Version 1 EtherWAN Managed Switch Users Guide...
  • Page 125 5. Enter a value in the Port Priority textbox. 6. Select a Timeout value of Short or Long. 7. Click on the Submit button. 8. Repeat steps 1-7 for each additional port that is to be used in the trunk. EtherWAN Managed Switch Users Guide...

  • Page 126: Figure 47: Lacp Trunking - Version 2

    Figure 47: LACP Trunking – Version 2 EtherWAN Managed Switch Users Guide...

  • Page 127: Trunking Configuration Examples Using Cli Commands

    For more information on CLI command usage see CLI Command Usage. Adding an Interface to a Static Trunk To add an interface to a static trunk on the EtherWAN Managed Switch, use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: static-channel-group <static channel>...

  • Page 128: Setting The Lacp Port Priority

    Setting the LACP Port Priority To set the port priority for an interface attached to a LACP trunk on the EtherWAN Managed Switch, use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: lacp port-priority <1 - 65535>...

  • Page 129: Stp/Ring Page - Overview

    Within each Region, the MSTP protocol can accommodate a network diameter of up to 40 switches. There can be a maximum of 40 Regions in a single MSTP network. Note: If a faster recovery time is required, EtherWAN’s proprietary α-Ring provides a recovery time of <15MS with up to 250 switches. See...

  • Page 130: Stp/Ring Page - Configuring Rstp

     Configuration BPDU, used by Spanning Tree Protocol to provide information to all switches.  TCN (Topology change), tells about changes in the topology.  TCA (Topology change Acknowledgment), confirm the reception of the TCN. EtherWAN Managed Switch Users Guide...

  • Page 131: Figure 48: Stp/Ring Global Configuration

    Figure 48: STP/Ring Global Configuration EtherWAN Managed Switch Users Guide...

  • Page 132: The Root Bridge & Backup Root Bridge

    Root Switch. To set a Backup Root Bridge set the Bridge ID to be between the Root Bridge and the rest of the network switches. EtherWAN Managed Switch Users Guide...

  • Page 133: Figure 50: Bridge Id Display

    Figure 50: Bridge ID Display EtherWAN Managed Switch Users Guide...

  • Page 134: Setting The Max Age, Forward Delay And Hello Timer

    3. Enter the Forward Delay in the text box to the right of the Forward Delay (4..30 sec) label. 4. Click on the Update Setting button. 5. Save the configuration (see the Save Configuration Page) EtherWAN Managed Switch Users Guide...

  • Page 135: Figure 51: Max Age, Hello Timer & Forward Delay

    Figure 51: Max Age, Hello Timer & Forward Delay EtherWAN Managed Switch Users Guide...

  • Page 136: Rstp Port Setting Page

    In a stable RSTP topology, each port on a switch can function in any one of 4 different Spanning Tree port roles. These Spanning Tree port roles are (see Figure 52):  Root Port  Designated Port  Alternate Port  Backup Port Figure 52: Spanning Tree Port Roles EtherWAN Managed Switch Users Guide...

  • Page 137: Path Cost & Port Priority

    The default values will work fine in most scenarios; however, there are times when you may need to adjust these values manually in order to influence the location of the Alternate Port, the Root Port or the Backup Port. EtherWAN Managed Switch Users Guide...

  • Page 138: Figure 54: Port Priority And Path Cost

    Enter the proper value under the Admin. Path Cost text entry box. a. The Path Cost range is between 1 and 200,000,000. 4. Click on the Update Setting button 5. Save your configuration (see the Save Configuration Page). Figure 54: Port Priority and Path Cost EtherWAN Managed Switch Users Guide...

  • Page 139: Point To Point Link

    1. Choose the correct port from the drop down list under Port, and choose Enable or Disable under Edge Port (see Figure 54). 2. Click on the Update Setting button. 3. Save the configuration (see the Save Configuration Page) EtherWAN Managed Switch Users Guide...

  • Page 140: Rstp Configuration Examples Using Cli Commands

    1 max-age <6-40> bridge 1 forward-time <4-30> bridge 1 hello-time <1-10> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#bridge 1 priority 4096 switch_a(config)#bridge 1 max-age 20 switch_a(config)#bridge 1 forward-time 15 switch_a(config)#bridge 1 hello-time 2 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 141: Modifying The Port Priority And Path Cost

    Usage Example 1: Setting port 1 to be point-to-point: switch_a>enable switch_a#configure terminal switch_a(config)#interface fe1 switch_a(config-if)#spanning-tree link-type point-to-point switch_a(config-if)#q switch_a(config)#q switch_a# Usage Example 2: Setting port 1 to be shared: switch_a>enable switch_a#configure terminal switch_a(config)#interface fe1 switch_a(config-if)#spanning-tree link-type shared switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 142: Enabling/Disabling A Port To Be An Edge Port

    Usage Example 1: Enabling edge port on port 1: switch_a>enable switch_a#configure terminal switch_a(config)#interface fe1 switch_a(config-if)#spanning-tree edgeport switch_a(config-if)#q switch_a(config)#q switch_a# Usage Example 2: Disabling edge port on port 1: switch_a>enable switch_a#configure terminal switch_a(config)#interface fe1 switch_a(config-if)#no spanning-tree edgeport switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 143: Stp/Ring Page - Configuring Mstp

    Enabled from the Spanning Tree Protocol drop down list. 4. Choose MSTP in the STP Version drop down list. 5. Click on the Update Setting button. 6. Save the configuration (see the Save Configuration Page). EtherWAN Managed Switch Users Guide...

  • Page 144: Figure 55: Enabling Mstp

    Figure 55: Enabling MSTP EtherWAN Managed Switch Users Guide...

  • Page 145: The Cist Root Bridge & Backup Cist Root Bridge

    Root Switch. To set a Backup Root Bridge set the Bridge ID to be between the Root Bridge and the rest of the network switches. EtherWAN Managed Switch Users Guide...

  • Page 146: Figure 57: Bridge Id Display

    Figure 57: Bridge ID Display EtherWAN Managed Switch Users Guide...

  • Page 147: Configuring The Cst Network Diameter

    3. Enter the Forward Delay in the text box to the right of the Forward Delay (4..30 sec) label. 4. Click on the Update Setting button. 5. Save the configuration (see the Save Configuration Page) EtherWAN Managed Switch Users Guide...

  • Page 148: Mstp Properties Page

    MSTP Region (see MSTP Instance Setting Page).  Region name  Revision level  Configuration Digest To navigate to the STP/Ring MSTP Properties page: 1. Click on the + next to STP/Ring. 2. Click on MSTP Properties. EtherWAN Managed Switch Users Guide...

  • Page 149: Figure 59: Mstp Region And Revision Level

    2. Enter the Revision Level value for the corresponding Region in the Revision Level text entry box, 3. Click on the Update Setting button. 4. Save the configuration (see the Save Configuration Page) Figure 59: MSTP Region and Revision Level EtherWAN Managed Switch Users Guide...

  • Page 150: Configuring The Ist Network Diameter

    1. Enter the desired hop count in the text entry box next to Max Hops 2. Click on the Update Setting button (see below). 3. Save the configuration (see the Save Configuration Page) Figure 60: MSTP Properties – Max Hops EtherWAN Managed Switch Users Guide...

  • Page 151: Mstp Instance Setting Page

    Page) Note: You can enter a new instance number here, which is how a new MSTI instance is created. You can use an existing MSTI instance if it has already been created on another switch. EtherWAN Managed Switch Users Guide...

  • Page 152: Modifying Mstp Parameters For Load Balancing

    To designate a specific switch in a MSTP Region to be the Root Bridge in a specific MSTI instance, the bridge priority must be set to be the lowest number of all the switches in a particular MSTI instance. EtherWAN Managed Switch Users Guide...

  • Page 153: Figure 63: Setting The Msti Regional Root Bridge

    3. Click on the Update Setting button. The valid values for this parameter are from 0 to 61440, in increments of 4096. 4. Save the configuration (see the Save Configuration Page) Figure 63: Setting the MSTI Regional Root Bridge EtherWAN Managed Switch Users Guide...

  • Page 154: Mstp Port Setting Page

    2. Choose the correct port number from the drop down list under Port, and enter the proper value under the Priority and the Admin. Path Cost text box, 3. Click on the Update Setting button (see Figure 64). 4. Save the configuration (see the Save Configuration Page) EtherWAN Managed Switch Users Guide...

  • Page 155: Figure 64: Port Cost & Priority

    Figure 64: Port Cost & Priority EtherWAN Managed Switch Users Guide...

  • Page 156: Msti Instance Port Membership

    3. Check the box next to all the ports that should be part of this instance 4. Click on the Update Setting button. 5. Save the configuration (see the Save Configuration Page) Figure 65: Port Instance Configuration EtherWAN Managed Switch Users Guide...

  • Page 157: Mstp Configuration Examples Using Cli Commands

    To enable the Spanning Tree function on a switch use the below CLI commands.: CLI Command Mode: General Configuration Mode CLI Command Syntax: no bridge shutdown 1 bridge 1 protocol mstp Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#no bridge shutdown 1 switch_a(config)#bridge 1 protocol mstp switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 158: Bridge Priority, Max Age, Forward Delay, And Hello Time

    To configure the IST Max Hops parameter on a switch, use the following CLI commands: CLI Command Mode: General Configuration Mode CLI Command Syntax: bridge 1 max-hops <1-40> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#bridge 1 max-hops 20 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 159: Mstp Regional Configuration Name And The Revision Level

    To create a MSTI instance and map it to a VLAN, use the following CLI commands: CLI Command Mode: MSTP Configuration Mode CLI Command Syntax: bridge 1 instance <1-15> vlan <vlan_ID> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#spanning-tree mst configuration switch_a(config-mst)#bridge 1 instance 1 vlan 10 switch_a(config-mst)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 160: Setting Msti Priority

    CLI Command Mode: Interface Configuration Mode (port) CLI Command Syntax: bridge-group 1 path-cost <1-200000000>; bridge-group 1 priority <0-240> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#interface fe1 switch_a(config-if)#bridge-group 1 path-cost 200000 switch_a(config-if)#bridge-group 1 priority 128 switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 161: Adding A Port To An Msti Instance

    MSTI instance), please use the below CLI commands: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: bridge-group 1 instance <1-15> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#interface fe1 switch_a(config-if)#bridge-group 1 instance 1 switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 162: Stp/Ring Page - Alpha Ring

    2. Click on α-Ring Setting. EtherWAN α-Ring Technology The α-Ring protocol was designed and developed by EtherWAN to overcome traditional STP and RSTP’s inability to provide fast network recovery and minimize packet loss caused by link failure. Among the advantages of α-Ring are: ...

  • Page 163: Figure 67: Α-Ring Settings

    Figure 67: α-Ring Settings EtherWAN Managed Switch Users Guide...

  • Page 164: Connecting Two Α-Ring Networks Together

    3. Choose the desired port from the dropdown list under Ring Coupling Port 1 4. Choose the desired port from the dropdown list under Ring Coupling Port 2 5. Click on the Update Setting button. 6. Save the configuration (see the Save Configuration Page) Figure 68: Ring Coupling EtherWAN Managed Switch Users Guide...

  • Page 165: Advanced Setting

    Interval.  Interval – Default is 300 seconds. This is the length of time a port will remain disabled after shutting down due to the bpdu-guard. Figure 69: Advanced Bridge Configuration EtherWAN Managed Switch Users Guide...

  • Page 166: Advanced Per Port Configuration

     BPDU-Guard Configuration – When set to Default the port will default to the Advanced Bridge Configuration settings. Enable or Disable to override the Bridge BPDU-Guard Figure 70: Advanced Per Port Configuration EtherWAN Managed Switch Users Guide...

  • Page 167: Configuring Spanning Tree Advanced Settings Using Cli Commands

    To enable the BPDU Guard feature on a individual switch port use the CLI commands below: CLI Command Mode: Switch-Port Interface Configuration Mode CLI Command Syntax: spanning-tree portfast; spanning-tree portfast bpdu-guard enable Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#interface fe1 switch_a(config-if)#spanning-tree portfast switch_a(config-if)#spanning-tree portfast bpdu-guard enable switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 168: Enabling Bpdu Guard Error Disable-Timeout

    To enable the Loop Guard feature on a switch port, use the CLI commands below: CLI Command Mode: Switch-Port Interface Configuration Mode CLI Command Syntax: spanning-tree guard loop Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#interface fe1 switch_a(config-if)# spanning-tree guard loop switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 169: Vlan

    VLAN Port Based VLAN vs. Tagged Based VLAN The EtherWAN Managed Switch can be configured to operate in one of two VLAN modes: Port based VLAN mode or Tagged based VLAN mode. In Port based VLAN mode, packets from different VLANs can only be segregated from one another while within a single switch, but not when the packets travel to other switches in the network.

  • Page 170: Port Based Vlan Configuration Examples

    VLAN. Since no ports are members of more than one VLAN, the ports in different groups cannot communicate with each other. Figure 72: Port Based VLAN – Example 1 EtherWAN Managed Switch Users Guide...

  • Page 171: Figure 73: Port Based Vlan - Example 2

    1. Select or deselect the checkbox to the right of the Port and below the VLAN ID for the port you want to add or remove from a VLAN. 2. Click on the Submit button. 3. Save the configuration (see the Save Configuration Page) EtherWAN Managed Switch Users Guide...

  • Page 172: Port Based Vlan Configuration Examples Using Cli Commands

    Usage Example (to add a port to multiple VLANs): switch_a>enable switch_a#configure terminal switch_a(config)#interface fe1 switch_a(config-if)#switchport portbase add vlan 1 switch_a(config-if)#switchport portbase add vlan 2 switch_a(config-if)#switchport portbase add vlan 3 switch_a(config-if)#switchport portbase add vlan 4 switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 173: Vlan Configuration In 802.1Q Tag Based Vlan Mode

    VLAN number that the packet belongs to. All ports on the EtherWAN Managed Switch can be configured with different Port Types that have different tagging restrictions as defined below.

  • Page 174: Enabling 802.1Q Tagged Based Vlan

    To enable 802.1Q Tagged Based VLAN on the switch: 1. Select Tag-based VLAN from the dropdown box (see below) 2. Click on the Submit button. 3. Save the configuration (see the Save Configuration Page) Figure 74: Tag-based VLAN EtherWAN Managed Switch Users Guide...

  • Page 175: Configuring 802.1Q Vlan Database

    Configuring the VLAN Egress (outgoing) Member Ports) 6. Click on Submit button. 7. Repeat for all the VLANs that are needed. 8. Save the configuration (see the Save Configuration Page) Figure 76: Add VLAN Page EtherWAN Managed Switch Users Guide...

  • Page 176: Q Tag Based Vlan Configuration Examples Using Cli Commands

    To configure the IP address for the management VLAN use the following CLI commands CLI Command Mode: Interface Configuration Mode CLI Command Syntax: ip address IP_ADDRESS/PREFIX [e.g. 10.0.0.1/24] Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#interface vlan1.100 switch_a(config-if)#ip address 169.254.1.1/16 switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 177: Removing An Ip Address From A Management Vlan

    CLI Command Mode: Interface Configuration Mode CLI Command Syntax: switchport mode access CLI Command Syntax: switchport access vlan <1 – 4094> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#interface fe1 switch_a(config-if)#switchport mode access switch_a(config-if)#switchport access vlan 100 switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 178: Configuring A Trunk Port

    CLI Command Syntax: switchport trunk allowed vlan add 100,200,300 CLI Command Syntax: switchport trunk native vlan 1 Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#interface fe7 switch_a(config-if)#switchport mode trunk switch_a(config-if)#switchport trunk allowed vlan add 100,200,300 switch_a(config-if)#switchport trunk native vlan 1 switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 179: Add An Ip To The Management Vlan

    2. Click on the Submit button. Warning: Before completing the steps above, make sure that you have already set up another management IP on another VLAN, and have set up a port properly for accessing that VLAN. EtherWAN Managed Switch Users Guide...

  • Page 180: Configuring The Port Type And The Pvid Setting

    VLAN membership and become a member port for the PVID VLAN only. You will lose your current connection to the switch, should you choose to modify the PVID of the port that connects your Computer to the switch. Figure 78: VLAN Port Setting EtherWAN Managed Switch Users Guide...

  • Page 181: Configuring The Vlan Egress (Outgoing) Member Ports

    VLAN by the switch. If a check box is not checked and is grayed out, it is because that port is an Access Port with the PVID set to be a different VLAN than the current VLAN. EtherWAN Managed Switch Users Guide...

  • Page 182: Figure 80: Vlan Ports

    (see Figure 81). 4. Select the correct Tag option in the drop down list under Tag or Untag for this port. 5. Click on the Submit button. Figure 81: Tag or Untag ports EtherWAN Managed Switch Users Guide...

  • Page 183: Qos

    QoS. QoS as it pertains to the EtherWAN Managed Switch can be broken down into two types, CoS and DCSP. CoS or Class of Service operates at Layer 2 and was developed by an IEEE working group in the 1990s.

  • Page 184: Global Configuration Page

    Strict Priority(Queue3) +WRR(Queue0-2) – Packets must be emptied from queue 3 first and the three remaining queues are emptied according the WRR weights in the Weighted Round Robin section (see below). EtherWAN Managed Switch Users Guide...
  • Page 185 3). A number from 1 to 20 can be assigned for each queue. This number is used with WRR policy and is the value of the number of packets that must be emptied from the queue before the next queue is considered. By default, these values are: Queue Weight EtherWAN Managed Switch Users Guide...

  • Page 186: Qos Global Configuration Using The Cli Interface

    Usage Example – Enabling QoS: switch_a>enable switch_a#configure terminal switch_a(config)#int fe1 switch_a(config-if)# mls qos enable switch_a(config)#q switch_a(config)#q switch_a# Usage Example – Disabling QoS: switch_a>enable switch_a#configure terminal switch_a(config)#int fe1 switch_a(config-if)# no mls qos switch_a(config)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 187: Enable/Disable Qos Trust

    <WRR_WTS> (4 values separated by spaces. Range is 1-20 (See the Usage Example). Usage Example – Enable QoS Strict Priority (Queue 0-3): switch_a>enable switch_a#configure terminal switch_a(config)# priority-queue strict switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 188 0, on the switch. WRR_WTS Weighted Round Robin (WRR) weights for the 4 queues (4 values separated by spaces). Range is 1-20. switch_a>enable switch_a#configure terminal switch_a(config)#mls qos 1 2 4 8 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 189: 802.1P Priority Page

    VLAN priorities 4 and 5; queue 1 assigned to VLAN priorities 2 and 3; and finally, queue 0 assigned to VLAN priorities 0 and 1. After making any changes on the page, click on the Submit button to ensure that the changes are stored. EtherWAN Managed Switch Users Guide...

  • Page 190: 802.1P Priority Submenu - Cli Interface

    COS_VALUE CoS values. Up to 8 values (separated by spaces). Usage Example The following example shows mapping CoS values 0 and 1 to queue 1 on the switch: switch_a>enable switch_a#configure terminal switch_a(config)#wrr-queue cos-map 1 0 1 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 191: Dscp Page - Http Interface

    0. For each DSCP priority, the user can change the value of the queue to between 0 and 3. See Figure 3 for more information: Figure 84: DSCP If the user changes any values on this page, clicking on the Submit button allows them to take effect. EtherWAN Managed Switch Users Guide...

  • Page 192: Dscp Submenu - Cli Interface

    Range is 0-3. Usage Example The following example shows mapping DSCP values 0 to 3 to queue 1 on the switch: switch_a>enable switch_a#configure terminal switch_a(config)# mls qos map dscp-queue 0 1 2 3 to 1 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 193: Qos Interface Commands - Cli Interface

    CLI Command Mode: Interface Configuration Mode CLI Command Syntax: user-priority <0-7> Usage Example The following example shows mapping DSCP values 0 to 3 to queue 1 on the switch: switch_a>enable switch_a#configure terminal switch_a(config)#interface fe1 switch_a(config-if) user-priority 4 switch_a(config)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 194: Acl (Access Control List)

    This section applies only to specific models of EtherWAN Switches. The settings in the ACL feature of the EtherWAN switch can be used to control which packets are allowed to enter the switch (Packet Filtering), as well as to control the amount of bandwidth that can be allocated for those packets (Bandwidth Policing).

  • Page 195: Configuring Acl

    1. Click on the + next to ACL. 2. Click on ACL Configuration. In order to enable the ACL feature on the EtherWAN switch, the QoS feature must be enabled on the switch as well. In order to apply the ACL packet filtering features on a port, you must: 1.

  • Page 196: Figure 85: Enabling Qos

    Figure 85: Enabling QoS EtherWAN Managed Switch Users Guide...

  • Page 197: Acl Policy Map

    List can be created during the initial ACL Policy Map creation process. After you have chosen just one Access List from below and have finished all the configuration steps for it, please continue onto step #3. EtherWAN Managed Switch Users Guide...

  • Page 198: Ip Access List

    7. Next, enter the Comparison Mask for the source IP address in reverse logic, into the text entry box from the Mask column. In reverse logic, 255.255.255.0 would be 0.0.0.255. 8. Next, click on the Add button. EtherWAN Managed Switch Users Guide...

  • Page 199: Ip Access List (Extended)

    Access List number for the previously configured Extended IP Access List from the drop-down list next to Access List. 3. if you want to create a new Extended IP Access List, verify that the Create option is selected from the drop-down list next to Access List. EtherWAN Managed Switch Users Guide...
  • Page 200 IP packet from entry to the switch that did not match any of the previous rules from all the previous access control lists, otherwise these additional IP packets will also be allowed entry into the switch. EtherWAN Managed Switch Users Guide...

  • Page 201: Mac Access List

    Ethernet packet entry into the switch. To do so, you must choose the permit option from the drop-down list under the Action column. 5. Next, enter the source Ethernet address of the Ethernet packet into the text entry box under the Source MAC column. EtherWAN Managed Switch Users Guide...
  • Page 202 ACL Policy Map to serve as the catch all deny rule in order to deny any and all types of packets from entry into the switch that did not match any of the previous rules from all the previous access control lists. EtherWAN Managed Switch Users Guide...

  • Page 203: Layer 4

    Access Lists. Otherwise all packets that did not match the classification rules of this Access List will also be allowed entry into the switch. EtherWAN Managed Switch Users Guide...

  • Page 204: Bandwidth Limiting

    Police Rate (1-1000000Kbps) (see Figure 92). 2. To allow certain amount of bursting in the traffic enter the maximum number of bytes that are allowed in a single continuous burst, under Burst (1-20000 Bytes). EtherWAN Managed Switch Users Guide...

  • Page 205: Figure 92: Police Rate

    3. Next, please enter a name in the text entry box next to “Policy Map Name” for the new ACL “Policy Map” that you are currently creating, and click on the submit button (see Figure 93). Figure 93: Policy Map Name EtherWAN Managed Switch Users Guide...

  • Page 206: Applying A Policy Map To A Port

    2. Next, check the boxes below Attach Class Map to Policy Map next to all the ports that you would like to apply this Policy Map to. 3. Click on the Attach button. Figure 94: Applying a Policy Map to a Port EtherWAN Managed Switch Users Guide...

  • Page 207: Modifying/Adding An Existing Policy Map

    If you would like to create a new ACL Class and add it to this ACL Policy Map follow the steps below 1. Make sure that the Create option is selected from the drop-down list under Class Name (see Figure Next, follow the instructions on how to create a new EtherWAN Managed Switch Users Guide...

  • Page 208: Adding An Existing Acl Class To An Existing Policy Map

    If you would like to add an existing ACL Class to this ACL Policy Map (see Figure 97): 1. Select the correct ACL Class from the drop-down list under Class Name, and then wait for the GUI to update itself. 2. Click on the Submit button. EtherWAN Managed Switch Users Guide...

  • Page 209: Figure 97: Policy Map Setting - Class Name

    “Class Name”. If you see the newly added ACL Class in the list above the dash line, then it has been added properly (see below). Figure 98: Policy Map Setting EtherWAN Managed Switch Users Guide...

  • Page 210: Removing An Acl Class

    Class Name. If you do not see the ACL Class in the list above the dash line, but see it below the dash line, then it means it has been removed from this Policy Map (see Figure 100). EtherWAN Managed Switch Users Guide...

  • Page 211: Figure 100: Verifying Acl Class Removal

    2. Next, detach the Policy Map from all the ports by deselecting all the check boxes below Attach Class Map to Policy Map for all the selected ports, 3. Click on the Attach button. 4. Next, click on the Remove button. EtherWAN Managed Switch Users Guide...

  • Page 212: Figure 101: Removing A Policy Map

    Figure 101: Removing a Policy Map EtherWAN Managed Switch Users Guide...

  • Page 213: Figure 102: Policy Map 2

    5. You can confirm that this ACL Class has been removed completely by checking the drop-down list under “Class Name”. If you do not see the ACL Class in the list then it means it has been completely removed (see below). EtherWAN Managed Switch Users Guide...

  • Page 214: Acl Configuration Examples Using Cli Commands

    For more information on CLI command usage see CLI Command Usage. Enabling QoS To enable the ACL feature on the EtherWAN switch by enabling the QoS feature on the switch, just follow the steps below: CLI Command Mode: General Configuration Mode CLI Command Syntax: mls qos enable Usage Example: switch_a>enable...

  • Page 215: Creating A Standard Ip Access List

    <100-199, 2000-2699> deny ip any any Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#ip-access-list 100 permit ip 169.254.0.224 0.0.0.31 169.254.1.224 0.0.0.31 switch_a(config)#ip-access-list 100 deny ip 169.254.1.224 0.0.0.31 169.254.1..224 0.0.0.31 switch_a(config)#ip-access-list 100 deny ip any any switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 216: Creating A Mac Access List

    2000 permit 00e0.b321.03de 0000.0000.0000 00e0.b321.03df 0000.0000.0000 1 ether-type 800 0000 switch_a(config)#mac-access-list 2000 deny 00e0.b321.03de 0000.0000.0000 00e0.b321.03df 0000.0000.0000 1 ether-type 800 0000 switch_a(config)#mac-access-list 2000 deny any any 1 ether-type 800 0000 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 217: Creating An Acl Class Map With Layer 4 Access List

    <Class Map Name> match layer4 source-port <TCP/UDP Port number> match layer4 destination-port <TCP/UDP Port number> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#class-map FTP switch_a(config-cmap)#match layer4 destination-port 21 switch_a(config-cmap)#q switch_a(config)# switch_a(config)#class-map FTP_Download switch_a(config-cmap)#match layer4 source-port 20 switch_a(config-cmap)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 218: Creating A Acl Class Map With An Ip Or Mac Access List

    CLI Command Mode: General Configuration Mode Class Map Configuration Mode CLI Command Syntax: class-map <ACL Class Name> match access-group <Access List ID> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#class-map Layer_2-3_Class switch_a(config-cmap)#match access-group 1 switch_a(config-cmap)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 219: Creating An Acl Policy Map

    <1-1000000> <1-20000> exceed-action drop Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#policy-map IP_Policy_1 switch_a(config-pmap)#class IP_Class_1 switch_a(config-pmap-c)#police 50000 5000 exceed-action drop switch_a(config-pmap-c)#q switch_a(config-pmap)#class IP_Class_2 switch_a(config-pmap-c)#police 50000 5000 exceed-action drop switch_a(config-pmap-c)#q switch_a(config-pmap)#class IP_Class_3 switch_a(config-pmap-c)#police 50000 5000 exceed-action drop switch_a(config-pmap-c)#q switch_a(config-pmap)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 220: Appling An Existing Acl Policy To A Port

    You can use the CLI commands below to delete an existing ACL Class. CLI Command Mode: General Configuration Mode CLI Command Syntax: no class-map <ACL Class Name> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#no class-map IP_Class_1 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 221: Deleting An Acl Policy

    You can use the below CLI commands to delete an existing ACL Policy: CLI Command Mode: General Configuration Mode CLI Command Syntax: no policy-map <ACL Policy Name> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#no policy-map IP_Policy_1 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 222: Snmp

    6. Enter an IP address, for the NMS host(s) that should be receiving traps from this switch, into the text entry box next to any one of the 5 Trap host IP address entry boxes from Trap Host 1 IP Address to Trap Host 5 IP Address EtherWAN Managed Switch Users Guide...
  • Page 223 MAC Notification Removed section. 14. Click on the Update button after you have finished the configuration of the SNMP Server (Agent) General Settings. 15. Save the configuration (see the Save Configuration Page) EtherWAN Managed Switch Users Guide...

  • Page 224: Figure 104: Snmp General Settings

    Figure 104: SNMP General Settings EtherWAN Managed Switch Users Guide...

  • Page 225: Configuring Snmp V1 & V2 Community Groups

    Name. This will allow a NMS to change the status of a data item in the switch. 3. Click on the Update Setting button after you have finished the configuration. 4. Save the configuration (see the Save Configuration Page) Figure 105: Community Name V1/V2c EtherWAN Managed Switch Users Guide...

  • Page 226: Configuring Snmp V3 Users

    56-bit DES encryption algorithm. e. SNMPv3 Priv Auth-SHA = User authentication will be required using the SHA-1 hashing Algorithm, and in addition, all data in protocol message will be encrypted using 56-bit DES encryption algorithm. EtherWAN Managed Switch Users Guide...

  • Page 227: Figure 107: Snmp V3 Settings

    3. Next, enter the desired username in the text entry box next to User Name. 4. Next, please select the desired access authorization for the user from the drop-down list next to Access Mode. See Figure 108. Figure 108: User name & Access Mode EtherWAN Managed Switch Users Guide...

  • Page 228: Figure 109: Auth Password

    Privacy PassPhrase will have been enabled. Enter a pass phrase inside this text entry box, as part of the key used to encrypt the protocol message for this user. See Figure 110. Figure 110: Privacy PassPhrase EtherWAN Managed Switch Users Guide...

  • Page 229: Deleting Snmp V3 Users From The Switch

    Figure 111: Delete User 2. Next, select the user that you wish to delete from the drop-down list next to Select User Name. 3. Click on the Submit button. See below. Figure 112: Select User EtherWAN Managed Switch Users Guide...

  • Page 230: Snmp Configuration Examples Using Cli Commands

    <1 -256 characters> snmp-server location <1 -256 characters> snmp-server contact <1 -256 characters> Usage Example: switch_a> enable switch_a#configure terminal switch_a(config)# snmp-server enable switch_a(config)# snmp-server description Hub_Switch_1 switch_a(config)# snmp-server location First_Floor_Closet switch_a(config)# snmp-server contact Administrator switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 231: Configuring Snmp Traps

    5 <IP Address> snmp-server trap-type enable linkDown snmp-server trap-type enable linkup snmp-server trap-type enable mac-notification snmp-server mac-notification interval <1 to 65535 seconds> snmp-server mac-notification history-size <1 to 500 entries> snmp-server trap mac-notification added snmp-server trap mac-notification removed EtherWAN Managed Switch Users Guide...
  • Page 232 60 switch_a(config)# snmp-server mac-notification history-size 100 switch_a(config)#interface fe1 switch_a(config-if)#snmp-server trap mac-notification added switch_a(config-if)#snmp-server trap mac-notification removed switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 233: Configuring Snmp V1 & V2 Community Groups

    <username> <ro|rw> priv <md5|sha> <password> des <pass_phrase> Usage Example: switch_a> enable switch_a#configure terminal switch_a(config)# snmp-server v3-user SNMP_User_1 ro noauth switch_a(config)# snmp-server v3-user SNMP_User_2 ro auth md5 User2 switch_a(config)# snmp-server v3-user SNMP_User_3 rw priv md5 User3 des Private_User switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 234: Ieee 802.1X

    When an end device is initially connected to a port on the EtherWAN switch where the 802.1X protocol is enabled on the port, the switch will only pass 802.1X authentication traffic (known as EAPOL traffic) on that port between the Supplicant on the end device and the RADIUS server, and will not allow any other traffic to pass.

  • Page 235: Adding A Radius Server

    RADIUS server due to no response. To do this, enter the number of seconds that the switch must wait (between 1 and 1000 seconds) into the text entry box next to Timeout <1-1000> . EtherWAN Managed Switch Users Guide...

  • Page 236: Figure 114: Radius Setup

    RADIUS server. To do this, please enter a number (from 1 to 100) into the text entry box next to Retransmit. 7. Click on the Submit button. Figure 114: Radius Setup EtherWAN Managed Switch Users Guide...

  • Page 237: Enabling 802.1X On A Port

    Control; this will allow the port to use 802.1X to authentic the end station. a. If you choose to have the port to be always unauthorized or to be always authorized, you can choose the appropriate choice in the drop-down list. EtherWAN Managed Switch Users Guide...

  • Page 238: Figure 116: Enabling 802.1X On A Port

    (1-4294967295), in to the text entry box next to Re- authentication Period. 6. Next, Update Setting button in order to activate all the configured settings (see the below screenshot) Figure 116: Enabling 802.1X on a Port EtherWAN Managed Switch Users Guide...

  • Page 239: Lldp

    LLDP-enabled device, regardless of manufacturer. Since LLDP runs over the data-link layer only, a switch running one network layer protocol can discover and learn about an access device running a different network layer protocol. EtherWAN Managed Switch Users Guide...

  • Page 240: Lldp General Settings

    1. Click on the + next to LLDP. 2. Click on General Settings. Enable/Disable LLDP To enable LLDP on the EtherWAN Managed Switch: 1. Select Enable or Disable from the Drop Down box in the LLDP field of the LLDP Transmit Settings box (see...

  • Page 241: Global Tlv Setting

    Global TLV Setting The global TLV (Time – Length – Value) settings are advertised by the switch to other LLDP devices. The TLVs supported by the EtherWAN Managed Switch are (see Figure 117):  Port Description  System Name ...

  • Page 242: Figure 117: Lldp Global Settings

    Figure 117: LLDP Global Settings EtherWAN Managed Switch Users Guide...

  • Page 243: Lldp Ports Settings

    1. Select Enable from the Drop Down box under the Notify field for each port that should send a notification whenever received LLDP information changes. 2. Click on the Submit button 3. Save the configuration (see the Save Configuration Page) after making changes shown on this page. EtherWAN Managed Switch Users Guide...

  • Page 244: Figure 118: Lldp Ports Settings

    Figure 118: LLDP Ports Settings EtherWAN Managed Switch Users Guide...

  • Page 245: Lldp Neighbors

    IP Address – The management IP address of the remote device.  TTL – Time to Live, the amount time remaining before the remote device’s LLDP is aged-out from the switch. Figure 119: LLDP Neighbors EtherWAN Managed Switch Users Guide...

  • Page 246: Lldp Statistics

    Errors – LLDP errors.  Ageout – LLDP information that has been aged out by the switch.  TLV Discards – TLV information discarded  TLV Unknown – TLV information that is unknown Figure 120: LLDP Statistics EtherWAN Managed Switch Users Guide...

  • Page 247: Lldp Configuration Examples Using Cli Commands

    LLDP Configuration Examples Using CLI Commands For more information on CLI command usage see CLI Command Usage. Enable/Disable LLDP To enable or disable LLDP on the EtherWAN Managed Switch use the CLI commands below: CLI Command Mode: General Configuration Mode CLI Command Syntax: lldp enable no lldp enable Usage Example –...

  • Page 248: Lldp Holdtime Multiplier

    LLDP Transmit Interval To modify LLDP Transmit Interval use the CLI commands below: CLI Command Mode: General Configuration Mode CLI Command Syntax: lldp txinterval <5-32768> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)# lldp txinterval 30 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 249: Enable/Disable Global Lldp Tlvs

    Port VLAN ID mac-phy MAC/PHY Configuration/Status port-and-protocol Port And Protocol VLAN ID vlan-name VLAN Name protocol-identity Protocol Identity link-aggregation (Link Aggregation max-frame Maximum Frame Size Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)# lldp tlv-global mgmt-addrs switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 250: Enabling Lldp Transmit On A Port

    To enable LLDP Receive for a port use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: lldp rcv-pkt Usage Example: switch_a>enable switch_a#configure terminal switch_a#interface fe1 switch_a(config)# lldp rcv-pkt switch_a(config)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 251: Enabling Lldp Notify

    To enable the transmission of the management IP address through a port use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: lldp mgmt-ip vlan <vlan id> Usage Example: switch_a>enable switch_a#configure terminal switch_a#interface fe1 switch_a(config)# lldp mgmt-ip vlan 1 switch_a(config)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 252: Enabling Specific Tlv's On A Port

    To enable specific TLVs on a port use the CLI commands below: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: lldp tlv-select <TLV ID> (see TLV Parameters on page 249) Usage Example: switch_a>enable switch_a#configure terminal switch_a#interface fe1 switch_a(config)# lldp tlv-select mgmt-addrs switch_a(config)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 253: Other Protocols

    Any IEEE 802.1Q compliant switch must implement this protocol. To navigate to the Other Protocols / GVRP page (see Figure 121): 1. Click on the + next to Other Protocols. 2. Click on GVRP. Figure 121: GVRP EtherWAN Managed Switch Users Guide...

  • Page 254: General Overview

    The appropriate Port Type (Access or Trunk) and the PVID have been configured for all the ports of the switch.  The GVRP protocol has been globally enabled and GVRP is locally enabled on the Trunk Ports as well.  The Dynamic VLAN Creation feature has been enabled. EtherWAN Managed Switch Users Guide...

  • Page 255: Enabling The Gvrp Protocol At The Global Level

    To enable the GVRP protocol globally on an Access Switch (see Figure 123): 1. Under GVRP Global Setting, choose the Enable option from the drop-down list next to GVRP. 2. Click on the Update Setting button. Figure 123: GVRP Configuration Access Switch EtherWAN Managed Switch Users Guide...

  • Page 256: Enabling The Gvrp Protocol At The Port Level

    3. For all the Trunk Ports under the Per Port Setting (include LAG) section, choose the Enable option from the drop-down list under the GVRP Registration column. 4. Click on the Update Setting button. 5. Save the configuration (see the Save Configuration Page) Figure 124: GVRP Per Port Settings EtherWAN Managed Switch Users Guide...

  • Page 257: Gvrp Configuration Examples Using Cli Commands

    1 switch_a(config)#q switch_a# To enable the dynamic VLAN creation feature of GVRP on the EtherWAN switch, you must use the following CLI commands: CLI Command Mode: General Configuration Mode CLI Command Syntax: set gvrp dynamic-vlan-creation disable bridge 1 Usage Example: switch_a>enable...
  • Page 258 To enable or disable GVRP locally on a port on the EtherWAN switch, you must use the following CLI commands: CLI Command Mode: General Configuration Mode CLI Command Syntax: set port gvrp enable <port id> set port gvrp disable <port id>...
  • Page 259 CLI Command Mode: General Configuration Mode CLI Command Syntax: set gvrp registration normal <port id> set gvrp registration forbidden <port id> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)# set gvrp registration normal fe1 switch_a(config)# set gvrp registration forbidden fe1 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 260: Igmp Snooping

    IGMP Snooping The settings in the IGMP Snooping feature of the EtherWAN switch controls how the switch forwards multicast packets. General Overview The EtherWAN Managed Switch has been outfitted with the IGMP Snooping function in three modes:  Disabled: o The switch will forward all multicast packets according to the Forced Forwarding Port setting based on the following rule: ...

  • Page 261: Enabling The Igmp Snooping Modes

    To put the IGMP Snooping feature in the correct Mode, follow the steps below:  Choose the appropriate choice from the dropdown list next to IGMP mode  Click on the Update Setting button (See below) Figure 125: IGMP Mode EtherWAN Managed Switch Users Guide...

  • Page 262: Configuring Igmp Snooping General Properties

    This allows the multicast stream to disappear from a port much faster. 2. Next, click on the Update Setting button Figure 126: IGMP General Properties EtherWAN Managed Switch Users Guide...

  • Page 263: Configuring Igmp Passive Mode Specific Properties

    These two parameters should configure to match that of the current active IGMP Querier. The formula for the membership registration timer is: 2 X query-interval + max-response- time = Timeout period. EtherWAN Managed Switch Users Guide...

  • Page 264: Configuring Igmp Querier Mode Specific Properties

    IGMP query. Any response received after this time will not be accepted by the Querier. It is recommended that you use the default setting of 10 seconds according to the IGMP standard. Figure 128: Querier Mode Properties EtherWAN Managed Switch Users Guide...

  • Page 265: Configuring Igmp Unknown Multicast Forwarding

    1. Click on the + next to Other Protocols. 2. Click on IGMP Snooping. With IGMP enabled, the EtherWAN switch will transmit all multicast packets to their only multicast receiver ports. However, some multicast packets will not have any known multicast receiver ports either due to IGMP Snooping being disabled on the switch, or because no multicast receiver has sent IGMP requests for these multicast packets.

  • Page 266: Figure 130: Passiveforwardmode

    Note: The presence of an IGMP Querier port will make the settings provided by the PassiveForwardMode to have no effect, and all unknown multicast packets will be forwarded to the IGMP Querier port only. Figure 130: PassiveForwardMode EtherWAN Managed Switch Users Guide...

  • Page 267: Figure 131: Forceforwardmode

    IGMP Querier port. In addition, when an IGMP Querier port is present, all unknown multicast packets will also be forwarded to the IGMP Querier port as well, in addition to the settings in the ForceForwardMode function. Figure 131: ForceForwardMode EtherWAN Managed Switch Users Guide...

  • Page 268: Figure 132: Igmp Querier Mode Forwarding

    Note: When the switch is in IGMP Snooping Querier mode, there will not be an IGMP Querier port present, and the settings according to the ForceForwardMode will always be in effect. Figure 132: IGMP Querier Mode Forwarding EtherWAN Managed Switch Users Guide...

  • Page 269: Monitoring Registered Multicast Groups

    Membership column as a checked box for the IGMP Querier port, even if an IGMP Join was never received for that Group ID on the Querier port. Figure 133: Current Multicast Groups EtherWAN Managed Switch Users Guide...

  • Page 270: Igmp Configuration Examples Using Cli Commands

    To put the IGMP Snooping feature in Passive Mode use the CLI commands below: CLI Command Mode: General Configuration Mode CLI Command Syntax: ip igmp snooping enable no ip igmp snooping querier Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#ip igmp snooping enable switch_a(config)#no ip igmp snooping querier switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 271 To set the IGMP version per VLAN, use the following CLI commands: CLI Command Mode: General Configuration Mode CLI Command Syntax: ip igmp version <1-3> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#interface vlan1.1 switch_a(config-if)#ip igmp version 2 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 272 CLI Command Mode: VLAN Interface Configuration Mode CLI Command Syntax: ip igmp snooping report-suppression no ip igmp snooping report-suppression Usage Example - Enabling the IGMP Report Suppression feature: switch_a>enable switch_a#configure terminal switch_a(config)#interface vlan1.1 switch_a(config-if)# ip igmp snooping report-suppression switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 273 Usage Example - Configuring the IGMP query-interval parameter: switch_a>enable switch_a#configure terminal switch_a(config)#interface vlan1.1 switch_a(config-if)# ip igmp query-interval 125 switch_a(config)#q switch_a# Usage Example - Configuring the IGMP max-response-time parameter: switch_a>enable switch_a#configure terminal switch_a(config)#interface vlan1.1 switch_a(config-if)# ip igmp query-max-response-time 10 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 274 Usage Example - Drop all unknown multicast packets: switch_a>enable switch_a#configure terminal switch_a(config)# ip igmp snooping passive-forward none switch_a(config)#q switch_a# Usage Example - Forward unknown multicast packets to the specified ports only: switch_a>enable switch_a#configure terminal switch_a(config)# ip igmp snooping passive-forward fe1,fe2,fe3 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 275 Usage Example - Drop all unknown multicast packets: switch_a>enable switch_a#configure terminal switch_a(config)# ip igmp snooping passive-forward none switch_a(config)#q switch_a# Usage Example - Forward unknown multicast packets to the specified ports only: switch_a>enable switch_a#configure terminal switch_a(config)# ip igmp snooping passive-forward fe1,fe2,fe3 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 276 Usage Example - Drop all unknown multicast packets: switch_a>enable switch_a#configure terminal switch_a(config)# ip igmp snooping force-forward none switch_a(config)#q switch_a# Usage Example - Forward unknown multicast packets to the specified ports only: switch_a>enable switch_a#configure terminal switch_a(config)# ip igmp snooping force-forward fe1,fe2,fe3 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 277 Usage Example - Drop all unknown multicast packets: switch_a>enable switch_a#configure terminal switch_a(config)# ip igmp snooping force-forward none switch_a(config)#q switch_a# Usage Example - Forward unknown multicast packets to the specified ports only: switch_a>enable switch_a#configure terminal switch_a(config)# ip igmp snooping force-forward fe1,fe2,fe3 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 278: Network Time Protocol

    To alter the polling period (how often the NTP client checks the server for the correct time), follow the steps below: 1. Enter the new polling period in the Polling Interval textbox. 2. Click on the Update Setting button EtherWAN Managed Switch Users Guide...

  • Page 279: Manually Syncing Time

    For example, if Daylight Saving Time begins on the second Sunday in March at 2:00AM and ends on the first Sunday in November at 2:00AM, then select the values as shown in Figure 135. 5. Click on the Update Setting button EtherWAN Managed Switch Users Guide...

  • Page 280: Daylight Savings Time - Date Mode

    For example, if Daylight Saving Time begins on March 9th at 2:00AM and ends on November 2nd at 2:00AM, then select the values as shown in Figure 136. 5. Click on the Update Setting button EtherWAN Managed Switch Users Guide...

  • Page 281: Figure 136: Daylight Savings - Date Mode

    Figure 136: Daylight Savings – Date Mode EtherWAN Managed Switch Users Guide...

  • Page 282: Network Time Protocol Configuration Examples Using Cli Commands

    To set the NTP server on the EtherWAN Managed Switch, use the CLI commands below: CLI Command Mode: General Configuration Mode CLI Command Syntax: ntp server <IP Address or Host Name of NTP Server> Usage Example: switch_a>enable...
  • Page 283 To have the NTP client sync the clock immediately on the EtherWAN Managed Switch, use the CLI commands below: CLI Command Mode: General Configuration Mode CLI Command Syntax: ntp sync-time Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#ntp sync-time switch_a(config)#q...
  • Page 284 To set the Daylight Savings Time settings using weekday mode for the EtherWAN Managed Switch, use the CLI commands below: CLI Command Mode: General Configuration Mode CLI Command Syntax: clock summer-time <Name of Time Zone> weekday <start week number> <start day>...

  • Page 285: Gmrp

    To navigate to the Other Protocols / GMRP page: 1. Click on the + next to Other Protocols. 2. Click on GMRP. General Overview The ports on the EtherWAN switch can be configured with the GMRP feature in five modes:  Disabled ...

  • Page 286: Gmrp Forbidden Mode

    2. Click on GMRP. To enable the GMRP function in the switch, follow the procedure below: 1. Choose the Enable option from the dropdown list next to GMRP 2. Click on the Update Setting button. (See Figure 137) EtherWAN Managed Switch Users Guide...

  • Page 287: Configuring The Gmrp Feature Per Port

     For each port that you wish to apply this application, select the Enable option from the drop-down list under the GMRP column. EtherWAN Managed Switch Users Guide...
  • Page 288  For each port that you wish to apply this application, select the “Enable” option from the drop-down list under the GMRP column. EtherWAN Managed Switch Users Guide...
  • Page 289 If you do not want a port to participate in the GMRP protocol, configure the items listed below:  For each port that you wish to apply this application, select the Disable option from the drop-down list under the GMRP column.  Click on the Update Setting button. EtherWAN Managed Switch Users Guide...

  • Page 290: Gmrp Configuration Examples Using Cli Commands

    1 switch_a(config)# set gmrp disable bridge 1 switch_a(config)#q switch_a# To enable GMRP locally on a port on the EtherWAN switch, you must use the below CLI commands: CLI Command Mode: General Configuration Mode CLI Command Syntax: set port gmrp enable <port id>...
  • Page 291 CLI Command Mode: General Configuration Mode CLI Command Syntax: set gmrp fwdall enable <port id> set gmrp fwdall disable <port id> Usage Example: switch_a>enable switch_a#configure terminal switch_a(config)#set gmrp fwdall enable fe1 switch_a(config)#set gmrp fwdall disable fe1 switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...

  • Page 292: Dhcp Server

    DNS servers. General Overview The EtherWAN switch can function as a DHCP server for a single VLAN (it can be any VLAN) on the switch. When functioning as a DHCP server, the EtherWAN switch can be configured with a range of IP addresses, default gateway and DNS servers, which will allow...

  • Page 293: Figure 138: Dhcp Server

    6. Enter the lease period in seconds, which the DHCP clients are allowed the use of their leased IP addresses, in the text entry box next to Lease Time. 7. Click on the Update Setting button. Figure 138: DHCP Server EtherWAN Managed Switch Users Guide...

  • Page 294: Figure 139: Dhcp Bindings

    1. Click on the DHCP Binding Table link (see Figure 139) 2. Click on the DHCP General Setting link to get back to the previous DHCP configuration Web GUI page (see Figure 140). Figure 139: DHCP Bindings Figure 140: DHCP Binding Table EtherWAN Managed Switch Users Guide...

  • Page 295: Dhcp Configuration Examples Using Cli Commands

    To enable the DHCP server and set the DHCP VLAN: CLI Command Mode: Interface Configuration Mode CLI Command Syntax: dhcp-server enable; no dhcp-server enable Usage Example: switch_a> enable switch_a#configure terminal switch_a(config)#interface vlan1.100 switch_a(config-if)#dhcp-server enable switch_a(config-if)#no dhcp-server enable switch_a(config-if)#q switch_a(config)#q switch_a# EtherWAN Managed Switch Users Guide...
  • Page 296 To check what IP addresses has been allocated: CLI Command Mode: enable CLI Command Syntax: show dhcp-server binding Usage Example: switch_a> enable switch_a#show dhcp-server binding Mac Address IP-Address Expires in a4:ba:db:de:d6:2f 169.254.1.100 23 hours, 57 minutes, 15 seconds switch_a# EtherWAN Managed Switch Users Guide...
  • Page 297 Phone: 714.779.3800 www.EtherWAN.com EtherWAN has made a good faith effort to ensure the accuracy of the information in this document and disclaims the implied warranties of merchantability and fitness for a particular purpose and makes no express warranties, except as may be stated in its written agreement with and for its customers.

Table of Contents