Equitel N968, User Manual

Page 1: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 User manual Managed industrial switch N968 ...

Page 2: ...ación Optoelectrónicos S A Zaragoza Spain Sep 2011 Ed 2 0 Equipos de Telecomunicación Optoelectrónicos S A Polígono de Malpica c F oeste G Quejido nave 74 50057 Zaragoza SPAIN Tel 34 976 570 353 Fax 34 976 571 383 E mail mail equitel es www equitel es The information included in this manual cannot be copied or reproduced in any way without the previous written authorisation of Equipos de Telecomun...

Page 3: ...s 3 Technical Specifications 4 Packing List 7 Safety Precaution 7 Hardware Description 8 Physical Dimensions 8 LED Indicators 9 Installation 10 RJ 45 Cabling 10 SFP Cabling 13 Grounding the Industrial Switch 16 Wiring the Power Inputs 17 Wiring the P Fail Alarm Contacts 19 DIN Rail Mounting 20 ...

Page 4: ... 232 Console 24 Pin Assignments 24 Login in the Console Interface 25 SSH 27 Configuring PuTTY 27 Web Based Management 32 SSL 33 System Information 35 IP Configuration 36 DHCP Server 39 TFTP 43 System Event Log 46 Fault Relay Alarm 52 SNTP Configuration 53 IP Security 57 User Authentication 59 Port Statistics 60 ...

Page 5: ...MI 75 VLAN Configuration 77 Rapid Spanning Tree 87 SNMP Configuration 92 QoS Configuration 98 X Ring2 101 LLDP Configuration 104 802 1X Radius 105 MAC Address Table 109 IGMP MLD Snooping 113 Static Filtering 114 Factory Default 115 Save Configuration 116 System Reboot 117 Troubleshooting 118 Appendix A Command Sets 119 ...

Page 6: ...ds Set 131 QOS Commands Set 133 IGMP Commands Set 134 MLD Commands Set 135 Multicast Static Filtering Table Commands Set 136 MAC Filter Table Commands Set 136 SNMP Commands Set 137 Port Mirroring Commands Set 140 802 1x Commands Set 141 TFTP Commands Set 143 SystemLog SMTP and Event Commands Set 143 SNTP Commands Set 145 X ring2 Commands Set 147 Fault Relay Alarm Commands Set 147 LLDP Commands Set...

Page 7: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 IPv6 Commands Set 148 ...

Page 8: ...smission to fit the field request flexibility Heavy Duty Designed with metal housing the Managed Industrial Switch provides the rugged construction which complies with IP30 standards Dual Power Inputs The redundant power input design for the Managed Industrial Switch gives a backup power solution With both the power inputs supplied If either one fails the other one will be activated to keep the sy...

Page 9: ...dustrial Switch is between 40 and 75o C With such a wide range you can deploy the Managed Industrial Switch in some of the harshest industrial environments Easy Troubleshooting LED indicators make troubleshooting quick and easy Users can identify status of the switch by observing the LED indicators with the definition table ...

Page 10: ...echnical Manual N968 3 Features 16Gbps back plane switching fabric 4 x 100 1000Base FX dual mode SFP Wide range redundant power IPv6 X Ring II path redundant supported TFTP firmware update and system configuration restoration backup ...

Page 11: ... Console 1 x RJ 45 RS 232 Power Relay Alarm 1 x 6 plug terminal block Receptacle LED Indicators System Power1 Power2 P Fail R Master 10 100 1000BaseT Link Active Speed SFP Link Activity Management Configuration Web browser serial console SNMP v1 v2c v3 Telnet TFTP IPv6 SNTP SNMP MIB RFC 1215 Trap RFC1213 MIBII RFC 1157 SNMP MIB RFC 1493 Bridge MIB RFC 2674 VLAN MIB RFC1643 RFC 1757 RSTP MIB LLDP M...

Page 12: ...Power Power Consumption 11 2 watts VDC max Power Input 12 48 VDC 18 30 VAC Mechanism Dimensions WxHxD 59 6 x 152 x 105 mm Enclosure IP30 protection aluminum shell Installation Wall DIN rail mounting Environment Operating Temperature 40 75o C 40 167o F Operating Humidity 5 95 non condensing Storage Temperature 40 85o C 40 185o F Storage Humidity 5 95 non condensing Certifications Safety UL508 suita...

Page 13: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 6 CE EN61000 4 6 CS CE EN61000 4 8 Magnetic Field CE EN61000 4 11 Voltage Dip Free Fall IEC60068 2 32 Shock IEC60068 2 27 Vibration IEC60068 2 6 ...

Page 14: ...ble 1 x User Manual CD ROM 1 x Wall mount kit Compare the contents of the industrial switch with the standard checklist above If any item is damaged or missing please contact the local dealer for service Safety Precaution Attention If DC voltage is supplied by an external circuit please use a protection device on the power supply input ...

Page 15: ...n This section is intended to introduce the industrial switch s hardware specification port cabling and wiring information Physical Dimensions The figure below illustrates the dimensions 59 6mm x 152mm x 105mm W x H x D for the Managed Industrial Switch Mechanical Dimensions ...

Page 16: ...een On Power input 1 is active Off Power input 1 is inactive PWR2 Green On Power input 2 is active Off Power input 2 is inactive P Fail depends on the Fault Relay Alarm configuration Red On Power or Ethernet port linking failure occurs Off No failure occurs P1 P4 10 100 1000T Green On Connected to network Blinks Data is transmitting or receiving Off Not connected to network Green On 1000M Off Disc...

Page 17: ...00Base T connections Auto MDI MDIX means that the switch can connect to another switch or workstation without changing straight through or crossover cabling 10 100Base TX Pinouts Pin Number MDI X Signal Name MDI Signal Name 1 Receive Data plus RD Transmit Data plus TD 2 Receive Data minus RD Transmit Data minus TD 3 Transmit Data plus TD Receive Data plus RD 6 Transmit Data minus TD Receive Data m...

Page 18: ... Description 1 BI_DA Bi directional pair A 2 BI_DA Bi directional pair A 3 BI_DB Bi directional pair B 4 BI_DC Bi directional pair C 5 BI_DC Bi directional pair C 6 BI_DB Bi directional pair B 7 BI_DD Bi directional pair D 8 BI_DD Bi directional pair D 10 100 1000Base T Cable Schema The following two figures illustrate the 10 100 1000Base T cable schema Straight Through Cable Schema ...

Page 19: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 12 Crossover Cable Schema ...

Page 20: ...ng SFP Connection To connect the transceiver and the LC cable please follow the steps shown below First insert the transceiver into the SFP slot Notice that the triangle mark indicates the bottom of the slot Insert transceiver into the SFP slot Transceiver Inserted ...

Page 21: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 14 Second insert LC connector of the fiber cable into the transceiver LC connector to the transceiver ...

Page 22: ...ector from the transceiver please follow the steps below First press down the latches and pull the LC connector out of the transceiver Press down the latches to remove the LC connector Second push down the metal loop and pull out the transceiver by the handle Pull the transceiver out of the slot ...

Page 23: ...tach the industrial switch to ground When installing the industrial switch the ground connection must always be made first and disconnected last 1 On the top of the industrial switch locate and remove the dome screw which has a ground symbol beside it 2 Attach the ground wire to the screw hole with the dome screw ATTENTION ...

Page 24: ...l block connection See the symbols printed on the panel indicating the polarities and DC input power range in voltage Plugs for Power 1 Power 2 4 Insert the exposed wires into the terminal block plugs Only wires with insulation should extend from the terminal block plugs Note that the polarities between the wires and the terminal block plugs must be positive to positive and negative to negative 5 ...

Page 25: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 18 ...

Page 26: ... upon powering up of the switch and remain energized until a critical error occurs including power failure and Ethernet port disconnection Take the wiring illustration below as an example that illustrates the proper relay connection forming a normally closed circuit and the connection is to be broken when an error occurs Terminal Block Plugs for Fault Alarm Contacts Fault Alarm Wiring Example 24Vd...

Page 27: ...rail clip is screwed on the industrial switch when out of factory If not please refer to the following steps to secure the DIN rail clip on the switch 1 Use the included screws to secure the DIN rail clip on the industrial switch 2 To remove the DIN rail clip reverse step 1 Rear Side of the Switch DIN Rail Clip ...

Page 28: ...rial switch on the DIN rail 1 First position the rear side of the switch directly in front of the DIN rail Make sure the top of the clip hooks over the top of the DIN rail 2 Push the unit downward 3 Check the DIN Rail clip is tightly fixed on the DIN rail 4 To remove the industrial switch from the track reverse the steps above ...

Page 29: ... switch on the wall please follow the steps below 1 Remove the DIN rail clip 2 Prepare the two wall mount plates and six screws included 3 Align the screw holes bewteen the wall mount plates and the unit as the figure illustrated 4 Secure the plates to the unit with the accompanying screws ...

Page 30: ...er And then the power LED on the Industrial switch will light up Please refer to the LED Indicators section for indication of LED lights 5 Prepare the appropriate cables for Ethernet connection 6 The Ethernet port LED on the Industrial switch will light up when the cable is connected with the network device Please refer to the LED Indicators section for LED light indication 7 When all connections ...

Page 31: ...e Attach the supplied cable which one end is D sub 9 and the other end is RJ 45 to connect the the industrial switch and your host PC or terminal The connected PC or terminal must support the terminal emulation program Pin Assignments D sub 9 Connector RJ 45 Connector NC 1 Orange White 2 2 Orange 3 3 Green White NC 4 Blue 5 5 Blue White NC 6 Green NC 7 Brown White NC 8 Brown ...

Page 32: ...Switch and PC is ready turn on the PC and run a terminal emulation program like Hyper Terminal and configure its communication parameters to match the following default characteristics of the console port Baud Rate 9600 bps Data Bits 8 Parity none Stop Bit 1 Flow control None The settings of communication parameters ...

Page 33: ... press Enter to switch between and then press Enter to have the Main Menu of console management show up Please see the figure below Console login interface The system supports the console management CLI command After you log in on to the system you will see a command prompt To enter CLI management interface type in enable command CLI command interface For further details about the CLI commands ple...

Page 34: ...ng PuTTY Launch PuTTy and you will see a dialog box which allows you to control everything PuTTY can do You don t usually need to change most of the configuration options To start the simplest kind of session please follow the steps below 1 In the Host Name or IP address field enter the Internet host name or IP address of the server you want to connect to 2 Now select a login session protocol to u...

Page 35: ...ions 5 Click the Connection SSH Tunnel node of the tree menu to configure options for controlling SSH port forwarding 6 Tick the check box labeled Local ports accept connection from other hosts that allows you to set up local to remote port forwardings including dynamic port forwardings in such a way that machines other than your client PC can connect to the forwarded port 7 Add a new forwarded po...

Page 36: ...n And you will see an entry added to the list box Entry of Port Forwarding Added 9 You can also save your preferred PuTTY options for quick connection the next time Just go back to the Session node and click the Save button with a session name filled When you see the saved session in the list box the session is saved Saving Sessions ...

Page 37: ... session name and click the Open button And then you will see a window shows up with prompt message login as Type guest for both user name and password Logging in interface 11 Run the cmd command to start the command prompt interface Type telnet localhost 23 and press Enter Command Prompt interface ...

Page 38: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 31 12 When finished a telnet session is successfully made using the SSH protocol Console via SSH ...

Page 39: ...r Ethernet cable Before to use web management install the industrial switch on the network and make sure that any one of the PCs on the network can connect with the industrial switch through the web browser The industrial switch default value of IP subnet mask username and password are as below IP Address 192 168 16 1 Subnet Mask 255 255 255 0 Default Gateway 192 168 16 254 User Name root Password...

Page 40: ... password in the User Authentication section Login dialog box SSL The Ethernet switch also provides an option for you to connect with your browser via HTTP over SSL called HTTPS The SSL Secure Socket Layer protocol allows users to make a secured session between the browser client and the Ethernet switch server You can then type the prefix https followed by the IP address of the Ethernet switch in ...

Page 41: ...L Technical Manual N968 34 In the main page you can find the tree menu structure of the Ethernet switch in the left side Click the symbol to unroll the hiding hyperlink and click any one of the hyperlinks to open its function page ...

Page 42: ...ystem Description A read only field displaying the description of the switch System Location Assign the switch physical location The maximum length is 64 bytes System Contact Enter the name of contact person or department Firmware Version Displays the switch s firmware version Kernel Version Displays the kernel software version MAC Address Displays the unique hardware address assigned by manufactu...

Page 43: ... and the user should find the new IP on the DHCP server IP Address Assign the IP address for the industrial switch With the DHCP Client function enabled the switch is configured as a DHCP client and users doesn t need to assign the IP address that is assigned by the DHCP server The default IP is 192 168 16 1 or the user has to assign an IP address manually when DHCP Client is disabled Subnet Mask ...

Page 44: ...EQUITEL Technical Manual N968 37 translate to 192 168 16 1 DNS2 The backup for DNS1 When DNS1 cannot function DNS2 will then replace DNS1 When finished click Apply to have the configuration take effect IP configuration IPv4 ...

Page 45: ...ters connected the Ethernet switch will be assigned an address known as Global Unicast Address by the router s Being assigned the Global Unicast Address the Ethernet switch can then have access to different network segments Link Local Address A display only field Link Local Address is for use during auto configuration and when no any router presents Being assigned the Link Local Address the Ethern...

Page 46: ...P address can even change while it is still connected DHCP also supports a mix of static and dynamic IP addresses Dynamic addressing simplifies network administration because the software keeps track of IP addresses rather than requires an administrator to manage the task This means that a new computer can be easily added to a network without the hassle of manually assigning it a unique IP address...

Page 47: ... of the range High IP Address Type in an IP address as the beginning of a range of the dynamic IP address As the figure shown below for example 192 168 16 200 is the relatively high IP address of the range Subnet Mask Type in the subnet mask of the IP configuration Gateway Type in the IP address of the gateway in your network DNS Type in the IP address of Domain Name Server in your network Lease T...

Page 48: ...1 Client Entries When the DHCP Server function is enabled the system will collect the DHCP client information including the assigned IP address the MAC address of the client device the IP assigning type states and lease time DHCP Client Entries interface ...

Page 49: ...sign the IP address to the connected client according to the Port IP binding table The user is allowed to fill each port with one particular IP address When the device is connecting to the port and asks for IP assigning the system will assign the IP address bound with the port to the device Port and IP Bindings interface ...

Page 50: ...ansfer Protocol TFTP server Before updating make sure the TFTP server is ready and the firmware image is located on the TFTP server Update Firmware TFTP Server IP Address Type in the IP address of the TFTP server Firmware File Name Type in the name of the firmware image file to be updated When finished click Apply to start updating Update Firmware interface ...

Page 51: ...r the settings Before doing that you must locate the image file on the TFTP server first for the switch to download back the flash image TFTP Server IP Address Type in the IP address of the TFTP server Restore File Name Type in the correct file name for restoring When finished click Apply to start configuration restoration Restore Configuration interface ...

Page 52: ...TP server for the purpose of recovering the configuration later It helps you avoid wasting time on configuring the settings by backing up the entire configuration TFTP Server IP Address Type in the IP address of the TFTP server Backup File Name Type in the file name When finished click Apply to start backing up Backup Configuration interface ...

Page 53: ...ient Only means the system event log will only be sent to this interface of the switch but on the other hand Server Only means the system log will only be sent to the remote system log server with its IP assigned If the mode is set in Both the system event log will be sent to the remote server and this interface Syslog Server IP Address When the Syslog Mode item is set as Server Only Both the user...

Page 54: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 47 Syslog Configuration interface ...

Page 55: ...n the events occur SMTP Server IP Address Assign the mail server IP address when Email Alert is enabled this field will then be available Sender Type in an alias of the switch in complete email address format e g switch101 123 com to identify where the e mail alert comes from Authentication Tick the checkbox to have the mail account password and confirm password fields show up Configure the email ...

Page 56: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 49 SMTP Configuration interface ...

Page 57: ...tting the trigger condition for each port respectively System event selection There are two event types Device Cold Start and Authentication Failure Device Cold Start Tick the Syslog SMTP checkboxes respectively to have the system issue the event log email alert to the system log SMTP server when the device executes the cold start action Authentication Failure When the SNMP authentication fails th...

Page 58: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 51 Event Configuration interface ...

Page 59: ...e Fault Alarm Contacts for the external warning device installation Power Failure With the checkbox ticked the relay device inside the industrial switch changes its state and the FAULT LED indicator is on if a power failure occurs Port Link Down Broken With the checkbox ticked the relay device inside the industrial switch changes its state and the FAULT LED indicator is on if the corresponding por...

Page 60: ...cipating subnet peer Daylight Saving Time DST is the convention of advancing clocks so that afternoons have more daylight and mornings have less Typically clocks are adjusted forward one hour near the start of spring and are adjusted backward in autumn SNTP Client Enable disable the SNTP function to get the time from the SNTP server Daylight Saving Time This function is used to enable disable Dayl...

Page 61: ...ndard 9 hours 3 am HAW Hawaiian Standard 10 hours 2 am Nome Alaska 11 hours 1 am CET Central European FWT French Winter MET Middle European MEWT Middle European Winter SWT Swedish Winter 1 hour 1 pm EET Eastern European USSR Zone 1 2 hours 2 pm BT Baghdad USSR Zone 2 3 hours 3 pm ZP4 USSR Zone 3 4 hours 4 pm ZP5 USSR Zone 4 5 hours 5 pm ZP6 USSR Zone 5 6 hours 6 pm WAST West Australian Standard 7 ...

Page 62: ...ing period Please key in the value in the format of YYYYMMDD and HH MM leave a space between YYYYMMDD and HH MM YYYYMMDD an eight digit year month day specification HH MM a five digit including a colon mark hour minute specification For example key in 20070701 02 00 and 20071104 02 00 in the two fields respectively to represent that DST begins at 2 00 a m on March 11 2007 and ends at 2 00 a m on N...

Page 63: ...Technical Manual N968 56 auto synchronized feature in the SNTP client mode You can enable the feature by filling the interval range from 64 1024 seconds Click Apply to have the configuration take effect SNTP Configuration interface ...

Page 64: ...erver With this checkbox ticked Ethernet devices whose IP addresses match any one of the ten IP addresses in the Security IP table will be given permission to access this switch via the HTTP service Enable Telnet Server With this checkbox ticked Ethernet devices whose IP addresses match any one of the ten IP addresses in the Security IP table will be given permission to access this switch via the ...

Page 65: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 58 IP Security interface ...

Page 66: ... The user account is root by default Type in the User Name field with a new name as you wish New Password The password to the user account is root by default Type in the New Password field with a new password as you wish Confirm password Type in the new password again for confirmation When finished click Apply to have the configuration take effect User Authentication interface ...

Page 67: ...nsmit or receive any packet Tx Good Packet The counts of transmitting good packets via this port Tx Bad Packet The counts of transmitting bad packets including undersize less than 64 bytes oversize CRC Align errors fragments and jabbers packets via this port Rx Good Packet The counts of receiving good packets via this port Rx Bad Packet The counts of receiving good packets including undersize less...

Page 68: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 61 Port Statistics interface ...

Page 69: ...ation field is set on Force When the Negotiation field is set on Auto this field becomes a read only field displaying in grey Duplex It is available for selecting when the Negotiation field is set on Force When the Negotiation field is set on Auto this field becomes a read only field displaying in grey Flow Control Whether the receiving node sends feedback to the sending node is determined by this...

Page 70: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 63 Port Control interface ...

Page 71: ... of the LACP link system Group ID There are four trunk groups to be selected Assign the group ID to the particular trunk group LACP Click the pull down menu to enable disable LACP for the trunk group With LACP enabled a port which joins an LACP trunk group has to make an agreement with its member ports first Please notice that a trunk group including member ports split between two switches has to ...

Page 72: ... the right list box will be shifted to the left list box To remove unwanted ports select the ports in the left list box and click the Remove button When LACP enabled you can configure LACP Active Passive states for each member port on the State Activity tab When finished click Apply to take the configuration take effect To remove a trunk group select the Group ID by clicking the pull down menu lab...

Page 73: ... disabled you can check the static trunk group information on the Aggregator Information tab Assigning 2 ports to a trunk group with LACP disabled Static Trunking Group Information tab Group Key This is a read only field that displays the trunk group ID Port Member This is a read only field that displays the members of the static trunk group ...

Page 74: ...tab Configuration for Switch 1 1 Set System Priority of the trunk group The field displays with 1 by default 2 Select a trunk group ID by clicking the pull down menu 3 Enable LACP 4 Include the member ports by highlighting the ports in the right list box and then click the Add button Note the number in the Work Ports field changes automatically depending on how many ports you have selected Switch ...

Page 75: ...2 0 EQUITEL Technical Manual N968 68 Aggregation Information of Switch 1 5 Click on the Aggregator Information tab to check the trunked group information as the illustration shown above after the two switches configured ...

Page 76: ...of the trunk group The field displays with 1 by default 2 Select a trunk group ID by clicking the pull down menu 3 Enable LACP 4 Include the member ports by highlighting the ports in the right list box and then click the Add button Note the number in the Work Ports field changes automatically depending on how many ports you have selected ...

Page 77: ...2 0 EQUITEL Technical Manual N968 70 Aggregation Information of Switch 2 5 Click on the Aggregator Information tab to check the trunked group information as the illustration shown above after the two switches configured ...

Page 78: ...ick mark of the corresponding port and click the Apply button the port state activity will change to Passive Active The port automatically sends LACP protocol packets Passive The port does not actively send LACP protocol packets It responds only if it receives LACP protocol packets from the opposite device NOTE A link having two passive LACP nodes will not perform dynamic LACP trunk because both p...

Page 79: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 72 State Activity of Switch 2 ...

Page 80: ... Port Select one port to be the destination mirroring port for monitoring both RX and TX traffic coming from the source port Or select two ports for monitoring RX traffic and TX traffic respectively Users can forward the traffic captured by the mirroring port to the packet analyzer like Netxray for further analyses Source Port Tick the checkbox to monitor the corresponding port All monitored port ...

Page 81: ...Limit Frame Type Select the limit type for ingress frames Four options are available as follows All Broadcast Multicast Flooded Unicast Broadcast Multicast Broadcast only The egress rate will limit all types of frame Rate Limiting interface Click the Ingress Egress pull down menus to select the bandwidth limit When finished click Apply to have the configuration take effect ...

Page 82: ...ipients can be specified via the SMTP configuration Please refer to the System Event Log SMTP Configuration section DMI interface Port No Click the pull down menu to select a particular SFP port to display its information and define reaction options Temperature The fields showing values measured in degrees Celsius Click the radio button labeled as Off to shut down the device or the other one label...

Page 83: ...hen the port current reaches the threshold TX PWR The fields showing values measured in milliwatts Click the radio button labeled as Off to shut down the device or the other one labeled as e mail to send e mail for notifications when the port transmitting power reaches the threshold RX PWR The fields showing values measured in milliwatts Click the radio button labeled as Off to shut down the devic...

Page 84: ...l receive traffic from the ones among the same VLAN Basically creating a VLAN on a switch is logically equivalent of reconnecting a group of network devices to another Layer 2 switch however all the network devices are still plugged into the same switch physically This switch supports Port based and 802 1Q tagged based VLAN Please read the following instructions to configure the appropriate type o...

Page 85: ...is technically a single broadcast domain If the port based VLAN is enabled the VLAN tagging will be ignored Port based VLAN allows the user to create separate VLANs to limit the unnecessary packet flooding however for the purpose of sharing resource a single port called a common port can belongs to different VLANs which all the member devices ports in different VLANs have the permission to access ...

Page 86: ...name and VLAN ID Select the port number available in the left list box and click the Add button to move the highlighted ports to the right list box Or you can select any of the ports listed in the right field and click Remove to remove port s from the VLAN When finished click Apply to have the VLAN configuration take effect And then you will see the VLAN list shows up ...

Page 87: ...select VLAN s and click the Delete button to get rid of the VLAN s Highlight a VLAN and click the Edit button to change group name VLAN ID or to add remove the members of the existing VLAN group NOTE Remember to execute the Save Configuration action otherwise the new configuration will lose when the switch powers off ...

Page 88: ...ices For example with GVRP enabled the switches are able to automatically exchange the information of their VLAN database Therefore the user needn t manually configure the link type The packets belonging to the same VLAN can communicate across switches Each member port of 802 1Q is on either an Access Link VLAN tagged or a Trunk Link no VLAN tagged All frames on an Access Link carry no VLAN identi...

Page 89: ...x to enable GVRP protocol This checkbox is available while the VLAN Operation Mode is set on 802 1Q Management VLAN ID Only the VLAN members whose Untagged VID PVID equals to the value specified in this field have permission to access the switch The default value is 0 that means this limit is not enabled all members in different VLANs can access this switch After you have configured the three para...

Page 90: ... more stations to the VLAN aware device like switches An Access Port untagged port connecting to the access link has an untagged VID also called PVID After an untagged frame gets into the access port the switch inserts a four byte tag in the frame The contents of the last 12 bit of the tag is the untagged VID When this frame is sent out through any of the access ports of the same PVID the switch w...

Page 91: ...port of the other switch Both the tagged VID of the two ports have to be the same Hybrid Link A segment which consists of Access and Trunk links The hybrid port has both the features of the access and trunk ports A hybrid port has a PVID belonging to a particular VLAN and also forwards the specified tagged frames for the purpose of VLAN communications between switches NOTE 1 It s not necessary to ...

Page 92: ...mation of each port shown in the table on the screen Group Configuration Edit the existing VLAN Groups Click the Group Configuration tab Select a VLAN group in the list box and click the Edit button Group Configuration interface After clicking the Edit button you can change group name and VLAN ID of the selected VLAN group ...

Page 93: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 86 Group Configuration interface When finished click Apply to have the modification take effect ...

Page 94: ... users must reboot the switch Note the value specified in this field must be a multiple of 4096 according to the protocol rule Max Age 6 40 Enter the time in seconds between 6 and 40 for which the switch waits to attempt to save its configuration Hello Time 1 10 Enter the time in seconds between 1 and 10 that controls the switch to send out the BPDU packet to check current states of RSTP Forward D...

Page 95: ... the root bridge When the switch is set as the root bridge the word Root shows here Root Path Cost This field displays the path cost between the switch s root port and the designated port of the root bridge Path cost is a value to each port typically based on rules described as part of 802 1d For the root bridge this is zero For all other bridges it is the sum of the port path costs on the least c...

Page 96: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 89 RSTP System Configuration interface ...

Page 97: ...pon whether the port concerned can only be connected to exactly another bridge i e it is served by a point to point LAN segment or can be connected to two or more bridges i e it is served by a shared medium LAN segment This function allows the P2P states of the link to be manipulated administratively True means the port is regarded as a point to point link False means the port is regarded as a sha...

Page 98: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 91 RSTP Port Configuration interface ...

Page 99: ...also specify the type of access permission and the agent mode String Enter the community string in the field as a password for authentication RO Read only With this radio button selected the community string is given the read only permission for the MIB objects RW Read write With this radio button selected the community string is given the read write permission for the MIB objects Click Add to fin...

Page 100: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 93 SNMP System Configuration interface ...

Page 101: ...ement station as a trap manager assign an IP address enter the SNMP community strings and select the SNMP trap version IP Address Enter the IP address of the trap manager Community Enter the community string for the trap station Trap Version Select the SNMP trap version v1 or v2c When finished click Add To remove a specific manager station select the entries listed in the Current Managers field an...

Page 102: ...on password to the user ID Privacy Password Assign the private password to the user ID Click the Add button to create a new user profile To remove a user profile select an entry in the Current User Profiles listbox and click the Remove button to remove the unwanted user profile Group Table Configure the SNMPv3 group table Security Name User ID Specify the user name that you have set up in the user...

Page 103: ...MPv3 access table Context Prefix In this filed type in the prefix letters of the context name that is assigned in the context table Group Name Type in the group name that is assigned in the group table Security Level Select a radio button to determine which security level is assigned to the group The options include ...

Page 104: ...t exists in the User Table Write View Name Assign permission of writing to a user ID typed that exists in the User Table Notify View Name Assign permission of notifying to a user ID typed that exists in the User Table Click Add to create a new access entry Select an entry in the Current Access Tables listbox and click Remove to delete the unwanted access entry MIBview Table Configure the SNMPv3 MI...

Page 105: ...cate traffic in the rate of 8 4 2 1 As for the strict priority scheme traffic will be identified according to the priority determined Qos Policy Select the QoS policy rule Use an 8 4 2 1 weighted fair queuing scheme The switch will follow the ratio of 8 4 2 1 to process priority queues including High Middle Low and Lowest For example while the system processing 1 frame in the lowest queue 2 frames...

Page 106: ...e priority level for each port Any packet received from a single port is sent to the Lowest queue by default This item allows users to change the priority level for each port respectively Port x Four priority levels High Middle Low and Lowest are available Click the Apply button to have the configuration take effect ...

Page 107: ...he corresponding queue for the identified COS value priority to which the identified frame will be sent Click the Apply button to have the configuration take effect TOS Configuration Configure this item to allocate the identified packet to different queues according to the packet s 6 bit DSCP Differentiated Service Code Point value inside the 1 byte ToS Type of Service field The 6 bit DSCP value d...

Page 108: ...rking forwarding switches and both their two member ports are working forwarding ports If the failure of network connection occurs the backup ports of master switches ring master devices will automatically become working forwarding ports to recover from the failure X Ring2 Operation Mode Click the pull down menu to configure the operation mode for X Ring2 or disable the X Ring2 function X Ring2 Mo...

Page 109: ...face Legacy_Ring Mode Setting the X Ring2 Operation Mode on Legacy Ring mode means the switch is configured as a backward compatible device that could only be a non master switch when joining a legacy X Ring group 1st Ring Port Click the pull down menu to select a port as the first ring port 2nd Ring Port Click the pull down menu to select a port as the second ring port When finished click the App...

Page 110: ...ace NOTE 1 When the X Ring function is enabled the user must disable the RSTP function The X Ring and RSTP functions cannot work simultaneously on a switch 2 Remember to execute the Save Configuration action otherwise the new configuration will lose when the switch powers off ...

Page 111: ...n a standard Management Information Base MIB where the information can be accessed by a Network Management System NMS using a protocol like the Simple Network Management Protocol SNMP LLDP runs on all 802 media The protocol runs over the data link layer only allowing two systems running different network layer protocols to learn about each other LLDP Protocol Click the pull down menu to disable or...

Page 112: ... function IEEE 802 1x Protocol Click the pull down menu to enable or disable the 802 1x protocol on the switch Radius Server IP Assign the RADIUS Server IP address Server Port Set the UDP destination port for authentication requests to the specified RADIUS Server Accounting Port Set the UDP destination port for accounting requests to the specified RADIUS Server Shared Key Set an encryption key for...

Page 113: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 106 802 1x System Configuration interface ...

Page 114: ...unauthorized state Accept The specified port is required to be held in the authorized state Authorize The specified port is set to the Authorized or Unauthorized state in accordance with the outcome of an authentication exchange between the supplicant and the authentication server Disable When disabled the specified port works without complying with 802 1x protocol Click Apply to have the configur...

Page 115: ...eriod of time the switch waits for a supplicant response to an EAP request Server Timeout Set the period of time the switch waits for a server response to an authentication request Max Requests Set the number of authentication that must time out before authentication fails and the authentication session ends Reauth Period Set the period of time the connected clients authenticated to be authenticat...

Page 116: ... to the switch This saves the switch from having to re learn a device s MAC address when the disconnected or powered off device is active on the network again Via this interface you can add modify and delete entries of static MAC address Add the Static MAC Address You can add static MAC addresses up to 256 entries in the switch MAC table here MAC Address Enter entries of MAC address on the port th...

Page 117: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 110 Static MAC Addresses interface ...

Page 118: ...evices with the MAC address listed in this table will be blocked by the switch MAC Filtering interface MAC Address Enter the MAC address up to 256 entries Click the Add button If you want to delete the MAC address from the table select the MAC address entry and click the Delete button ...

Page 119: ...tab displays dynamic and static MAC addresses on each port Port No Click the pull down menu to select a particular port to show its MAC address information Click the Clear MAC Table button to clear the listed entries of the current MAC address information All MAC Address interface ...

Page 120: ...st Listener Discovery MLD is used in a similar way by IPv6 systems With the switch supporting IP multicast you can enable IGMP MLD protocol via this interface Destination IP multicast addresses range from 224 0 0 0 to 239 255 255 255 Mode Click the pull down menu to specify the snooping mode IGMP or MLD Query Click the pull down menu to select the IGMP query functions including enable disable and ...

Page 121: ...xx xx xx for the multicast group from which end stations can receive multicast traffic via the connected ports which have been included in the specific multicast groups With multicast filtering network devices only forward multicast traffic to the ports that are connected to the registered end stations MAC Address Assign a multicast group MAC address in the format of 01 00 5E xx xx xx Member Ports...

Page 122: ...echnical Manual N968 115 Factory Default Click the Reset button to reset the switch back to factory defaults Before resetting you can tick the checkboxes to keep the current IP address and user name password Factory Default interface ...

Page 123: ...iguration Save all changes you have made in the system To ensure the configurations you have made will be implemented the next time you power on the switch remember to click the Save button to save all configurations into the flash memory Save Configuration interface ...

Page 124: ...September 2011 Ed 2 0 EQUITEL Technical Manual N968 117 System Reboot Reboot the switch under software control Click the Reboot button to restart the system System Reboot interface ...

Page 125: ...ed through LED indicators on the front panel which describes common problems you may encounter and where you can find possible solutions to assist in identifying problems If the power indicator does not light up when the power cord is plugged in you may have a problem with power cord Then check for loose power connections power losses or surges at power outlet IF you still cannot resolve the probl...

Page 126: ...s mode to Perform basic tests Displays system information Privileged EXEC Enter the enable command while in user EXEC mode switch Enter disable to exit The privileged commands are the advanced mode Use this mode to Display advance function states Save configurations Global Configuration Enter the configure command while in privileged EXEC mode switch config To exit to Privileged EXEC mode enter ex...

Page 127: ...on switch show terminal write memory P Save user configuration into permanent memory flash rom switch write memory system name System Name G Configure system name switch config system name xxx system location System Location G Set switch system location string switch config system location xxx system description System Description G Set switch system description string switch config system descrip...

Page 128: ...fault Keep current IP address setting yes Keep current user ID password yes Default setting restored Do you want to reboot the system now yes admin username Username G Configure the administrator s login username maximum 10 words switch config admin username xxxxxx admin password Password G Configure the password for the administrator account maximum 10 words switch config admin password xxxxxx sh...

Page 129: ...ng IP address I Set static IP for DHCP clients by port switch config interface fastEthernet 2 switch config if dhcpserver ipbinding 192 168 1 1 show dhcpserver configuration P Show configuration of DHCP server switch show dhcpserver configuration show dhcpserver clients P Show client entries of DHCP server switch show dhcpserver clients show dhcpserver ip binding P Show IP Binding information of D...

Page 130: ...y telnet Port Commands Set Commands Level Description Example interface fastEthernet Portid G Choose the port for modification switch config interface fastEthernet 2 state enable disable I Use the state interface configuration command to specify the state mode of operation for Ethernet ports Use the disable form of this command to disable the port switch config interface fastEthernet 2 switch conf...

Page 131: ... fastEthernet 2 switch config if no security bandwidth type all I Set interface ingress limit frame type to accept all frame switch config interface fastEthernet 2 switch config if bandwidth type all bandwidth type broadcast multicast floo ded unicast I Set interface ingress limit frame type to accept broadcast multicast and flooded unicast frame switch config interface fastEthernet 2 switch confi...

Page 132: ...102400 kbps or to 256000 kbps for giga ports Zero means no limit switch config interface fastEthernet 2 switch config if bandwidth out 160 show bandwidth I Show interfaces bandwidth control switch config interface fastEthernet 2 switch config if show bandwidth alias name Set port alias name switch config interface fastEthernet 2 switch config if alias 1111 show interface configuration I show inter...

Page 133: ...ator priority 22 aggregator group GroupID Port list lacp workp Workport G Assign a trunk group with LACP active GroupID 1 3 Port list Member port list This parameter could be a port range ex 1 4 or a port list separate by a comma ex 2 3 6 Workport The amount of work ports This value could not be less than zero or greater than the amount of member ports switch config aggregator group 1 1 4 lacp wor...

Page 134: ...egator 1 or switch show aggregator 2 or switch show aggregator 3 no aggregator lacp GroupID G Disable the LACP function of trunk group switch config no aggregator lacp 1 no aggregator group GroupID G Remove a trunk group switch config no aggregator group 1 DMI Commands Set Commands Level Description Example show dmi I Display DMI status for Mini GBIC ports switch config interface fastEthernet 7 sw...

Page 135: ...urrent monitoring switch config interface fastEthernet 7 switch config if dmi current highalarm shutdown dmi txpwr HighAlarm HighWarning LowWarning LowAlarm E mail ShutDown I Set reactions for port transmitting power monitoring switch config interface fastEthernet 7 switch config if dmi txpwr highwarning e mail dmi rxpwr HighAlarm HighWarning LowWarning LowAlarm E mail ShutDown I Set reactions for...

Page 136: ... test grpid 2 port 2 4 or switch vlan vlan port based grpname test grpid 2 port 2 3 4 show vlan GroupID or show vlan V Show VLAN information switch vlan show vlan 2 no vlan group GroupID V Delete port base group ID switch vlan no vlan group 2 IEEE 802 1Q VLAN vlan 8021q mnt vid VID V Configure management VID 0 means disabled switch vlan vlan 8021q mnt vid 22 Is Management VLAN ID equal to Manageme...

Page 137: ... 3 hybrid link untag 4 tag 3 6 8 or switch vlan vlan 8021q port 3 hybrid link untag 5 tag 6 8 vlan 8021q trunk PortNumber access link untag UntaggedVID V Assign an access link for VLAN by trunk group switch vlan vlan 8021q trunk 3 access link untag 33 vlan 8021q trunk PortNumber trunk link tag TaggedVID List V Assign a trunk link for VLAN by trunk group switch vlan vlan 8021q trunk 3 trunk link ta...

Page 138: ...age seconds G Use the spanning tree max age global configuration command to change the interval between messages the spanning tree receives from the root switch If a switch does not receive a bridge protocol data unit BPDU message from the root switch within this interval it recomputed the Spanning Tree Protocol STP topology switch config spanning tree max age 15 spanning tree hello time seconds G...

Page 139: ...time determines how long each of the listening and learning states last before the port begins forwarding switch config spanning tree forward time 20 stp path cost 1 200000000 I Use the spanning tree cost interface configuration command to set the path cost for Spanning Tree Protocol STP calculations In the event of looping the spanning tree considers the path cost when selecting an interface to p...

Page 140: ...rface switch config interface fastEthernet 2 switch config if stp admin p2p Auto stp admin edge True False I Configure Admin Edge of STP priority on this interface switch config interface fastEthernet 2 switch config if stp admin edge True stp admin non stp True False I Configure Admin NonSTP of STP priority on this interface switch config interface fastEthernet 2 switch config if stp admin non s ...

Page 141: ... middle qos priority tos Priority lowest low mid dle high G Configure TOS Priority switch config qos priority tos 3 high show qos P Display information of QoS configuration Switch show qos no qos G Disable QoS function switch config no qos IGMP Commands Set Commands Level Description Example igmp enable G Enable IGMP snooping function switch config igmp enable igmp query auto G Set IGMP query to a...

Page 142: ...unction switch config mld enable mld query auto G Configure MLD query mode switch config mld query auto mld query enable G Set MLD query to force mode switch config mld query enable mld unregister flooding blocking G Configure MLD unregister stream switch config igmp unregister flooding show mld configuration P Show MLD configuration switch show mld configuration show mld multi P Show MLD multicas...

Page 143: ...Addr I Remove entries for the multicast filtering switch config interface fastEthernet 2 switch config if no multicast filtering 01 00 5e 00 00 01 or switch config if no multicast filtering 33 33 00 00 00 01 MAC Filter Table Commands Set Commands Level Description Example mac address table static hwaddr MAC I Configure the MAC address table static switch config interface fastEthernet 2 switch conf...

Page 144: ...hwaddr 000012345678 no mac address table filter hwaddr MAC G Remove an entry from the MAC address table filter switch config no mac address table filter hwaddr 000012348678 no mac address table G Remove dynamic entries from the MAC address table switch config no mac address table SNMP Commands Set Commands Level Description Example snmp system name System Name G Set SNMP agent system name switch c...

Page 145: ... name Context Name G Configure the context name switch config snmpv3 context name Test snmpv3 user User Name group Group Name password Authentication Password Privacy Password G Configure the userprofile for SNMPV3 agent Privacy password can be empty switch config snmpv3 user test01 group G1 password AuthPW PrivPW snmpv3 access context name Context Name group Group Name security level NoAuthNoPriv...

Page 146: ...ch config no snmp community strings public no snmp server host Host address G Remove the SNMP server host switch config no snmp server host 192 168 1 50 no snmpv3 user User Name G Remove the specified user of the SNMPv3 agent switch config no snmpv3 user test01 no snmpv3 access context name Context Name group Group Name security level NoAuthNoPriv AuthNoP riv AuthPriv match rule Exact Prifix views...

Page 147: ...monitor function switch config interface fastEthernet 2 switch config if monitor RX monitor rx Port ID G Set RX destination port of monitor function switch config monitor rx 3 monitor tx Port ID G Set TX destination port of monitor function switch config monitor tx 4 show monitor P Show port monitor information switch show monitor show monitor I Show port monitor information switch config interfac...

Page 148: ...on command to change the radius server port switch config 8021x system serverport 1815 8021x system accountport port ID G Use the global configuration command to change the accounting port switch config 8021x system accountport 1816 8021x system sharedkey ID G Use the global configuration command to change the shared key value switch config 8021x system sharedkey 123456 8021x system nasid words G ...

Page 149: ... global configuration command to set the server timeout in seconds switch config 8021x misc servertimeout 20 8021x misc maxrequest number G Use the global configuration command to set the maximum requests switch config 8021x misc maxrequest 3 8021x misc reauthperiod sec G Use the global configuration command to set the reauthorized period in seconds switch config 8021x misc reauthperiod 3000 8021x...

Page 150: ...ver IP address of the TFTP server and the file name of the image are required switch config backup flash backup_cfg restore flash restore_cfg G Get configuration from the TFTP server IP address of the TFTP server and the file name of the image are required switch config restore flash restore_cfg upgrade flash upgrade_fw G Upgrade firmware via TFTP IP address of the TFTP server and the file name of...

Page 151: ... sender G Send the sender identification when an event occurs switch config smtp sender test01 smtp authentication G Enable SMTP authentication switch config smtp authentication smtp account account G Configure authentication account switch config smtp account John smtp password password password confirm password password G Configure authentication password switch config smtp password password 123...

Page 152: ...ystemlog SMTP Both G Disable cold start event type switch config no event device cold start both no event authentication failure Systemlog SMTP Both G Disable the event type of Authentication failure switch config no event authentication failure both no event systemlog I Disable port event for system log switch config interface fastethernet 3 switch config if no event systemlog no event smpt I Dis...

Page 153: ...tp daylight offset 3 sntp ip IP G Set the SNTP server IP If SNTP is inactive this command can t be applied switch config sntp ip 192 168 1 1 sntp timezone Timezone G Set timezone index Use the show sntp timzezone command to get more information of index number switch config sntp timezone 22 sntp sync interval Secs G Set synchronization interval in seconds switch config sntp sync interval 1024 show...

Page 154: ...ng 1st 2nd Ring Port switch config ring2 ringport 1 2 ring2 del Index G Delete an X Ring2 entry switch config ring2 del 1 ring2 show G Show X Ring2 configuration switch config ring2 show no ring2 G Disable X Ring2 switch config no ring2 show ring2 P Show X Ring2 configuration switch show ring2 Fault Relay Alarm Commands Set Commands Level Description Example faultrelay power number enable disable ...

Page 155: ...le lldp interval TIME sec G Configure LLDP interval in seconds switch config lldp interval 1800 show lldp P Show LLDP information switch show lldp no lldp G Disable LLDP switch config no lldp IPv6 Commands Set Commands Level Description Example show ipv6 P Show ipv6 and ND cache information switch show ipv6 ping6 ipv6 address G Start ICMPv6 ping switch config ping6 ff02 1 show ndclear G Clear neig...