Lantronix SM12XPA, User Manual

Page 1: ...SM12XPA 12 port Multi Gig SFP with 2 10G 25G SFP28 slots Managed Layer 3 Fiber Switch Web User Guide Part Number 33848 Revision A May 2022 ...

Page 2: ... 358 3601 or 1 800 260 1312 Email https www lantronix com technical support Sales Offices For a current list of our domestic and international sales offices go to www lantronix com about contact Disclaimer All information contained herein is provided AS IS Lantronix undertakes no obligation to update the information in this publication Lantronix does not make and specifically disclaims all warrant...

Page 3: ...ghbor 38 LLDP MED Neighbor 40 LLDP Neighbor EEE 43 LLDP Statistics 45 UPnP 47 4 Port Management 49 Port Configuration 49 Port Statistics 51 Detailed Port Statistics 52 SFP Port Info 54 Energy Efficient Ethernet 56 Link Aggregation 57 Static Configuration 57 LACP Configuration 59 System Status 60 Port Status 61 Link OAM 62 Port Settings 62 Event Settings 64 Statistics 65 Port Status 67 Event Status...

Page 4: ...ers 113 Port Shapers 114 Storm Control 116 Port Scheduler 117 Egress Port PCP Remarking 119 DSCP 120 Port DSCP 120 DSCP Translation 121 DSCP Classification 122 DSCP Based QoS 123 QoS Control List 124 Configuration 124 Status 129 QoS Statistics 131 WRED 132 7 Spanning Tree 134 STP Configuration 134 MSTI Configuration 137 STP Status 140 Port Statistics 143 8 MAC Address Tables 144 Configuration 144 ...

Page 5: ...atistics 180 Server 182 Configuration 182 Status 183 11 Security 184 Management 184 Account 184 Privilege Levels 186 Auth Method 188 Access Method 190 HTTPS 192 802 1X 194 Configuration 194 Status 201 IP Source Guard 203 Configuration 203 Static Table 204 Dynamic Table 205 ARP Inspection 206 Configuration 206 VLAN Configuration 208 Static Table 210 Dynamic Table 211 Port Security 212 Configuration...

Page 6: ...APS 272 14 1 Configuration 272 Status 275 16 ERPS 278 Control 278 Status 280 17 PTP 282 Configuration 282 Status 284 802 1AS Statistics 286 18 Event Notification 288 SNMP Trap 288 Log 291 Syslog 291 View Log 292 Event Configuration 294 19 TSN 295 Configuration 295 PTP Check 295 Frame Preemption Configuration 296 TAS Configuration Parameters 297 TAS SDU Configuration 299 PSFP 300 Flow Meter 302 Str...

Page 7: ...bal Status 335 Area Status 336 Neighbor Status 337 Interface Status 338 Routing Status 340 General Database 342 Router 344 Network 346 Summary 348 ASBR Summary 350 External 352 NSSA External 354 Troubleshooting OSPF 356 22 OSPF6 357 Configuration 357 Global Configuration 357 Passive Interface 359 Stub Area 360 Area Range 361 Interfaces 362 Status 363 Global Status 363 Area Status 364 Neighbor Stat...

Page 8: ...tenance 410 Configuration 410 Save running config to startup config 410 Backup Configuration 411 Restore Configuration 412 Activate 413 Delete 414 Restart Device 415 Factory Defaults 416 Firmware 417 Firmware Upgrade 417 Firmware Selection 418 26 Device Management System DMS 419 DMS Features 419 DMS DMS Mode 420 DMS Information page 421 DMS Management Map API Key 422 DMS Management Device List 423...

Page 9: ...ples 449 B 1 MRP Description 449 B 2 MRP Operation 449 B 3 Related Devices 450 B 4 MRP Sample Setup 450 B 5 MRP Pre Requisites General 450 B 6 MRP Web UI Configuration 451 Appendix C G 8032 Major and Sub Rings Configuration 455 Introduction 455 Basic Concepts 455 IP Addresses 455 Sample Configuration 456 Testing 461 Config files 463 ...

Page 10: ...e is easy to use and simplifies configuration installation and troubleshooting of devices in applications with high fiber density The SM12XPA offers an improved user experience and lowers operating and maintenance costs About This Manual This manual gives specific information on how to operate and use the management functions of the SM12XPA via HTTP HTTPs web browser This manual is intended for us...

Page 11: ...ssword are admin For the first time to use enter the default username and password and then click the Login button The login process now is completed In this Login menu you must input the complete username and password respectively the SM12XPA will not give you a shortcut to the username automatically This looks inconvenient but is safer The SM12XPA allows two or more admin users to manage this sw...

Page 12: ...ctions are OFF 1 2 3 4 5 10 20 30 40 and 60 minutes added at FW vB6 54 3494 The default is 10 minutes When set to OFF no Auto logout occurs Auto Logout Timeout After you change the Auto Logout timeout and then log out and log back in the Auto Logout timeout setting will be the setting saved to the start up config file When the Auto Logout timeout setting is changed it directly writes to running co...

Page 13: ...will be applied to running config immediately After Logout and login the timeout setting will be the setting saved in start up config After Logout and login the timeout setting will be the setting saved in start up configure After a switch reboot the timeout setting will be the setting saved in start up config After you reboot the switch the timeout setting will be the setting saved in start up co...

Page 14: ...t contain at least 8 characters at least 1 upper case letter 1 lower case letter and one numeric character The new password cannot be blank or the default value Click the Next button Figure 2 1 Change default password Step 2 Set IP address Select Obtain IP address via DHCP or Set IP address manually to set the IP address If setting manually enter IP address Subnet mask and Default router If obtain...

Page 15: ... z and w must be decimal numbers between 0 and 255 2 x must not be 0 unless also y z and w are 0 3 x must not be 127 and 4 x must not be greater than 223 Step 3 Set date and time Enable Automatic data and time or select Manually to set or select the desired date and time If you enable Automatic data and time then you must enter a Server Address and select a Time zone Click the Next button when don...

Page 16: ...me and System location Click the Apply button when done Figure 2 4 Set system information Message Password format error Message The value of DNS must be a valid IP address in dotted decimal notation x y z w The following restrictions apply 1 x y z and w must be decimal numbers between 0 and 255 2 x must not be 0 unless also y z and w are 0 3 x must not be 127 and 4 x must not be greater than 223 ...

Page 17: ...ighbor LLDP Neighbor EEE LLDP Statistics and UPnP System Information This is the startup page Here you can set the switch system name location and contact of the switch and view related switch information To view and set System Information in the web UI 1 Click System and System Information 2 Enter System Name Location and Contact information as desired 3 Click the Apply button to save the changes...

Page 18: ...ing on the switch if any System Uptime The period of time the device has been operational Bootloader Version Displays the current boot loader version number Firmware Version The software version of this switch e g v8 90 884 2022 02 16 Hardware Version Displays the hardware version of the device Mechanical Version Displays the mechanical version of the device Serial Number Displays the unique seria...

Page 19: ...rameter descriptions IPv4 DHCP Client Enable Enable the DHCP client by clicking here If this option is enabled on the system will configure the IPv4 address and mask of the interface using the DHCP protocol The DHCP client will announce the configured System Name as hostname to provide DNS lookup The default is off IPv4 Address The IPv4 address of the interface in dotted decimal notation If DHCP i...

Page 20: ...d be reachable e g via PING for activating DNS service Configured IPv6 Explicitly provide the valid IPv6 unicast except linklocal address of the DNS Server Make sure the configured DNS server could be reachable e g via PING6 for activating DNS service From any DHCPv4 interfaces The first DNS server offered from a DHCPv4 lease to a DHCPv4 enabled interface will be used From this DHCPv4 interface Sp...

Page 21: ...raffic is routed between all interfaces This must be set to Router mode for routing protocol operation see chapter 20 DNS Server 1 4 This setting controls the DNS name resolution done by the switch There are four servers available for configuration and the index of the server presents the preference less index has higher priority in doing DNS name resolution These modes are supported No DNS server...

Page 22: ...s The IPv4 address of the interface in dotted decimal notation If DHCP is enabled this field is not used The field may also be left bank if IPv4 operation on the interface is not desired IPv4 Mask Length The IPv4 network mask in number of bits prefix length Valid values are between 0 and 30 bits for a IPv4 address If DHCP is enabled this field is not used The field may also be left blank if IPv4 o...

Page 23: ...match anything Note You must provide this parameter if you will be configuring L3 Routing as described in Chapter 20 Gateway The IP address of the IP gateway Valid format is dotted decimal notation or a valid IPv6 notation Gateway and Network must be of the same type Next Hop VLAN Only for IPv6 The VLAN ID VID of the specific IPv6 interface associated with the gateway The given VID ranges from 1 t...

Page 24: ...ace Type Shows the address type of the entry This may be LINK or IPv4 Address Shows the current address of the interface of the given type Status Shows the status flags of the interface and or address IP Routes Network Shows the destination IP network or host address of this route Gateway Shows the gateway address of this route Status Shows the status flags of the route Neighbor cache IP Address S...

Page 25: ...icated in each item To configure Time parameters in the web UI 1 Click System and System Time 2 Specify the Time parameters 3 Click Apply Figure 2 3 Time Configuration Parameter descriptions Time Configuration Clock Source Select one of two modes for configuring where the system clock comes from Use Local Settings Clock Source from Local Time NTP Server Clock Source from NTP Server System Date Sho...

Page 26: ... Daylight Saving Time duration to repeat the configuration every year Select Non Recurring and configure the Daylight Saving Time duration for a one time configuration Start time settings Week Select the starting day date and time Day Select the starting day Month Select the starting month Hours Select the starting hour Minutes Select the starting minute End time settings Week Select the ending da...

Page 27: ...orm a time sync via NTP because the switch will combine this time zone offset and updated NTP time to come up with the local time Otherwise you will not be able to get the correct time The switch supports a configurable time zone from 12 to 13 in 1 hour steps The default Time zone is 8 Hrs Parameter descriptions Server 1 to 5 Provide the NTP IPv4 or IPv6 address of this switch IPv6 address is in 1...

Page 28: ...nt LLDP settings You can configure LLDP and detailed per port parameters the settings will take effect immediately To configure LLDP 1 Click System LLDP and LLDP Configuration 2 Modify the LLDP timing parameters 3 Set the required Mode for transmitting or receiving LLDP messages 4 Specify the information to include in the TLV field of advertised messages 5 Click Apply Figure 2 4 1 LLDP Configurati...

Page 29: ...hat can be mapped to a corresponding field in the LLDP neighbors table are decoded All other TLVs are discarded Unrecognized CDP TLVs and discarded CDP frames are not shown in the LLDP statistics CDP TLVs are mapped onto LLDP neighbors table as shown below CDP TLV Device ID is mapped to the LLDP Chassis ID field CDP TLV Address is mapped to the LLDP Management Address field The CDP address TLV can...

Page 30: ...ww lantronix com Page 30 of 473 Mgmt Addr Optional TLV When checked the management address is included in LLDP information transmitted Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 31: ...anagement allowing network administrators to track their network devices and determine their characteristics manufacturer software and hardware versions and serial or asset number This page lets you configure LLDP MED This function applies to VoIP devices which support LLDP MED Web Interface To configure LLDP MED 1 Click System LLDP and LLDP MED Configuration 2 Modify Fast start repeat count param...

Page 32: ...Lantronix SM12XPA Web User Guide 33848 Rev A https www lantronix com Page 32 of 473 Figure 2 4 2 LLDP MED Configuration ...

Page 33: ... count it is possible to specify the number of times the fast start transmission would be repeated The recommended value is 4 times given that 4 LLDP frames with a 1 second interval will be transmitted when an LLDP frame with new information is received It should be noted that LLDP MED and the LLDP MED Fast Start mechanism is only intended to run on links between LLDP MED Network Connectivity Devi...

Page 34: ...l even outside a building and represents ground level at the given latitude and longitude Inside a building 0 0 represents the floor level associated with ground level at the main entrance Map Datum The Map Datum is used for the coordinates given in these options WGS84 Geographical 3D World Geodesic System 1984 CRS Code 4327 and Prime Meridian Name Greenwich NAD83 NAVD88 North American Datum 1983 ...

Page 35: ...r ISDN trunk based PSAP Public Safety Answering Point This format consists of a numerical digit string corresponding to the ELIN to be used for emergency calling Policies Network Policy Discovery enables the efficient discovery and diagnosis of mismatch issues with the VLAN configuration along with the associated Layer 2 and Layer 3 attributes which apply for a set of specific protocol application...

Page 36: ...guest voice signalling than for the guest voice media This application type should not be advertised if all the same network policies apply as those advertised in the Guest Voice application policy Softphone Voice for use by softphone applications on typical data centric devices such as PCs or laptops This class of endpoints frequently does not support multiple VLANs if at all and are typically co...

Page 37: ...the default priority as defined in IEEE 802 1D 2004 DSCP The DSCP value to be used to provide Diffserv node behavior for the specified application type as defined in IETF RFC 2474 DSCP may contain one of 64 code point values 0 63 A value of 0 represents use of the default DSCP value as defined in RFC 2475 Buttons Add New Policy Click to add a new policy Specify the Application type Tag VLAN ID L2 ...

Page 38: ...P neighbor information found Parameter descriptions Local Port The port on which the LLDP frame was received Chassis ID The Chassis ID is the identification of the neighbor s LLDP frames Port ID The Remote Port ID is the identification of the neighbor port Port Description Port Description is the port description advertised by the neighbor unit System Name System Name is the name advertised by the...

Page 39: ...eighbor unit s address that is used for higher layer entities to assist discovery by the network management This could for instance hold the neighbor s IP address You can click the linked text to navigate to the device s webpage Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately ...

Page 40: ...ture for LLDP MED Endpoint Devices An LLDP MED Network Connectivity Device is a LAN access device based on any of the following technologies 1 LAN Switch Router 2 IEEE 802 1 Bridge 3 IEEE 802 3 Repeater included for historical reasons 4 IEEE 802 11 Wireless Access Point 5 Any device that supports the IEEE 802 1AB and MED extensions defined by TIA 1057 and can relay IEEE 802 frames via any method L...

Page 41: ... and Media Endpoint Class II classes and are extended to include aspects related to end user devices Example product categories expected to adhere to this class include but are not limited to end user communication appliances such as IP Phones PC based softphones or other communication appliances that directly support the end user Discovery services defined in this class include provision of locat...

Page 42: ...E 802 1Q tagged frame format VLAN ID VLAN ID is the VLAN identifier VID for the port as defined in IEEE 802 1Q 2003 A value of 1 through 4094 is used to define a valid VLAN ID A value of 0 Priority Tagged is used if the device is using priority tagged frames as defined by IEEE 802 1Q 2003 meaning that only the IEEE 802 1D priority level is significant and the default PVID of the ingress port is us...

Page 43: ... off to allow time for the receiver to wake from sleep Fallback Receive Tw The link partner s fallback receive Tw A receiving link partner may inform the transmitter of an alternate desired Tw_sys_tx Since a receiving link partner is likely to have discrete levels for savings this provides the transmitter with additional information that it may use for a more efficient allocation Systems that do n...

Page 44: ...up time used for this link based on EEE information exchanged via LLDP EEE in Sync Shows whether the switch and the link partner have agreed on wake times Red Switch and link partner have not agreed on wakeup times Green Switch and link partner have agreed on wakeup times Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immedia...

Page 45: ...ry was last deleted or added It also shows the time elapsed since the last change was detected Total Neighbors Entries Added Shows the number of new entries added since switch reboot Total Neighbors Entries Deleted Shows the number of new entries deleted since switch reboot Total Neighbors Entries Dropped Shows the number of LLDP frames dropped due to the entry table being full Total Neighbors Ent...

Page 46: ...ntry ages out TLVs Discarded Each LLDP frame can contain multiple pieces of information known as TLVs Type Length Values If a TLV is malformed it is counted and discarded TLVs Unrecognized The number of well formed TLVs but with an unknown type value Org Discarded The number of organizationally received TLVs Age Outs Each LLDP frame contains information about how long time the LLDP information is ...

Page 47: ...e modes are on Enable UPnP mode operation When the mode is enabled two ACEs are added automatically to trap UPNP related packets to CPU off Disable UPnP mode operation The ACEs are automatically removed when the mode is disabled TTL Time To Live value used by UPnP to send SSDP advertisement messages Valid values are 1 255 Advertising Duration The duration carried in SSDP packets is used to inform ...

Page 48: ...s the first available system IP address This is the default setting for UPnP Static User specifies the IP interface VLAN for choosing the IP address of the switch device Static VLAN Interface ID The index of the specific IP VLAN interface It will only be applied when IP Addressing Mode is Static Valid values are 1 4095 The default value is 1 Buttons Apply Click to save changes Reset Click to undo ...

Page 49: ... the logical port number for this row Link The current link state is displayed graphically Green indicates the link is up and red that it is down Description Enter up to 63 characters as a descriptive name that identifies this port Current Link Speed Status Provides the current link speed of the port Down or Up Configured Link Speed Selects any available link speed for the given switch port Only t...

Page 50: ...the specified speeds 10M 100M 1G 2 5G 5G 10G to the link partner By default ports will advertise all the supported speeds if speed is set as Auto Note The 100FX standard doesn t support Auto Negotiation so when in 100FX mode the flow control capabilities will always be shown as disabled PFC When PFC Priority Flow Control per 802 1Qbb is enabled on a port then flow control on a priority level is en...

Page 51: ...tistics Overview Parameter descriptions Port The logical port for the settings contained in the same row Click the linked Port number to display details of that port s statistics see below Packets The number of received and transmitted packets per port Bytes The number of received and transmitted bytes per port Errors The number of frames received in error and the number of incomplete transmission...

Page 52: ...f 473 Detailed Port Statistics To view the details of a port s statistics click that port The displayed counters are the totals for receive and transmit the size counters for receive and transmit and the error counters for receive and transmit Figure 3 2 Detailed Port Statistics ...

Page 53: ...ve and Transmit Size Counters The number of received and transmitted good and bad packets split into categories based on their respective frame sizes Receive Error Counters Rx Drops The number of frames dropped due to lack of receive buffers or egress congestion Rx CRC Alignment The number of frames received with CRC or alignment errors Rx Undersize The number of short 1 frames received with valid...

Page 54: ...n select which port to display the Port statistics Connector Type Displays the connector type for instance UTP SC ST L etc Fiber Type Displays the fiber mode e g Multi Mode Single Mode Tx Central Wavelength Displays the fiber optical transmitting central wavelength e g 850nm 1310nm 1550n etc Bit Rate Displays the nominal bit rate of the transceiver e g 1000 Mbps Vendor OUI Displays the Manufacture...

Page 55: ... temperature of SFP module Vcc Show the working DC voltage of SFP module Mon1 Bias mA Shows the Bias current of SFP module Mon2 TX PWR Shows the transmit power of SFP module Mon3 RX PWR Shows the receiver power of SFP module Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to manually refresh the page immediately ...

Page 56: ...ue of the wakeup time in order to make sure that both the receiving and transmitting device has all circuits powered up when traffic is transmitted The devices can exchange information about the device s wakeup time using the LLDP protocol Web Interface To configure Energy Efficient Ethernet in the web UI 1 Click Port Management and Energy Efficient Ethernet 2 Select enable or disable Energy Effic...

Page 57: ...ors Source MAC Address The Source MAC address can be used to calculate the destination port for the frame Check to enable the use of the Source MAC address or uncheck to disable By default Source MAC Address is enabled Destination MAC Address The Destination MAC Address can be used to calculate the destination port for the frame Check to enable the use of the Destination MAC Address or uncheck to ...

Page 58: ...valid per port Port Members Each switch port is listed for each group ID Select a radio button to include a port in an aggregation or clear the radio button to remove the port from the aggregation By default no ports belong to any aggregation group Only full duplex ports can join an aggregation and ports must be at the same speed in each group Buttons Apply Click to save changes Reset Click to und...

Page 59: ...rtner Key The Key value incurred by the port range 1 65535 The Auto setting will set the key as appropriate by the physical link speed 10Mb 1 100Mb 2 1Gb 3 Using the Specific setting a user defined value can be entered Ports with the same Key value can participate in the same aggregation group while ports with different keys cannot Role Shows the LACP activity status The Active will transmit LACP ...

Page 60: ...ciated with this aggregation instance For LLAG the ID is shown as isid aggr id and for GLAGs as aggr id Partner System ID The system ID MAC address of the aggregation partner Partner Key The Key that the partner has assigned to this aggregation ID Partner Prio The priority that the partner has assigned to this aggregation ID Last changed The time since this aggregation changed Local Ports Shows wh...

Page 61: ...nk is up No means that LACP is not enabled or that the port link is down Backup means that the port could not join the aggregation group but will join if other port leaves Meanwhile it s LACP status is disabled Key The key assigned to this port Only ports with the same key can aggregate together Aggr ID The Aggregation ID assigned to this aggregation group IDs 1 and 2 are GLAGs while IDs 3 14 are ...

Page 62: ...M peer entity in Active mode Active DTE s operate in a limited respect if the remote OAM entity is operating in Passive mode Active devices should not respond to OAM remote loopback commands and variable requests from a Passive peer Passive DTEs configured in Passive mode do not initiate the Discovery process Passive DTE s react to the initiation of the Discovery process by the remote DTE This eli...

Page 63: ...the switch port On enabling the MIB retrieval support the DTE supports polling of various Link OAM based MIB variables contents Loopback Operation If the Loopback support is enabled enabling this field will start a loopback operation for the port Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 64: ...of symbol errors that occurred during the specified period The period is specified by the number of symbols that can be received in a time interval on the underlying physical layer This event is generated if the symbol error count is equal to or greater than the specified threshold for that period Error Window for Symbol Period Error Event must be an integer value between 1 60 and its default valu...

Page 65: ...ved given the possibility that a frame may be lost in transit Duplicate Event Notification transmissions are counted by Duplicate Event Notification counters for Tx and Rx respectively A unique Event Notification OAMPDU is indicated as an Event Notification OAMPDU with a Sequence Number field that is distinct from the previously transmitted Event Notification OAMPDU Sequence Number Rx and Tx Dupli...

Page 66: ...ith an unsupported op code Rx and Tx Link fault PDUs A count of the number of Link fault PDUs received and transmitted on this interface Rx and Tx Dying Gasp A count of the number of Dying Gasp events received and transmitted on this interface Rx and Tx Critical Event PDUs A count of the number of Critical event PDUs received and transmitted on this interface Buttons Port select box determines whi...

Page 67: ...Fault state Active state Passive state SEND_LOCAL_REMOTE_STATE SEND_LOCAL_REMOTE_OK_STATE SEND_ANY_STATE Peer MAC Address The MAC address of the peer device Mode The Mode in which Link OAM is operating Active or Passive Unidirectional Operation Support This feature is not available to be configured by the user The status of this parameter is retrieved from the PHY Remote Loopback Support If status...

Page 68: ...Displays the 24 bit Organizationally Unique Identifier of the vendor PDU Revision It indicates the current revision of the Information TLV The value of this field shall start at zero and be incremented each time something in the Information TLV changes Upon reception of an Information TLV from a peer an OAM client may use this field to decide if it needs to be processed an Information TLV that is ...

Page 69: ...upper bound is one minute Frame error event threshold This four octet field indicates the number of detected errored frames in the period is required to be equal to or greater than for the event to be generated The default value is one frame error The lower bound is zero frame errors and the upper bound is unspecified Frame errors This four octet field indicates the number of detected errored fram...

Page 70: ...sublayer was reset Total Symbol period error events This four octet field indicates the number of Errored Symbol Period Event TLVs that have been generated since the OAM sublayer was reset Error Frame Seconds Summary Event Timestamp This two octet field indicates the time reference when the event was generated in terms of 100 ms intervals encoded as a 16 bit unsigned integer Error Frame Seconds Su...

Page 71: ...nt Loop Protection and Configuration 2 Evoke to select enable or disable the port loop Protection 3 Click the Apply button to save the settings 4 To cancel the settings click the Reset button to revert to previously saved values Figure 3 7 1 Loop Protection Configuration Parameter descriptions Global Configuration Enable Loop Protection Controls whether loop protections is enabled as a whole Trans...

Page 72: ... the action performed when a loop is detected on a port Valid values are Shutdown Port Shutdown Port and Log or Log Only Tx Mode Controls whether the port is actively generating loop protection PDUs or whether it is just passively looking for looped PDUs Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 73: ...n Status immediately Figure 3 7 2 Loop Protection Status Parameter descriptions Port The switch port number of the logical port Action The currently configured port action Transmit The currently configured port transmit mode Loops The number of loops detected on this port Status The current loop protection status of the port Loop Whether a loop is currently detected on the port Time of Last Loop T...

Page 74: ...values are Disable Normal and Aggressive Default mode is Disable Disable In disabled mode UDLD functionality doesn t exist on port Normal In normal mode if the link state of the port was determined to be unidirectional it will not affect the port state Aggressive In aggressive mode unidirectional detected ports will get shutdown To bring back the ports up need to disable UDLD on that port Message ...

Page 75: ...oop Protection Status Figure 3 7 2 UDLD Status Parameter descriptions UDLD Status UDLD Admin State The current port state of the logical port Enabled if the state Normal Aggressive is Enabled Device ID local The ID of Device Device Name local Name of the Device Bidirectional State The current state of the port Neighbor Status Port The current port of neighbor device Device ID The current ID of nei...

Page 76: ...able DDMI mode of operation DDMI Overview Port DDMI port Vendor Indicates the SFP vendor s name Part Number Indicates the Part number provided by the SFP vendor Serial Number Indicates Serial number provided by the SFP vendor Revision Indicates the Revision level provided by the SFP vendor Data Code Indicates the vendor s manufacturing date code Transceiver Indicates Transceiver compatibility Butt...

Page 77: ...es the part number provided by the SFP vendor Serial Number Indicates the serial number provided by the vendor Revision Indicates the Revision level provided by the vendor Data Code Indicates the vendor s manufacturing date code Transceiver Indicates Transceiver compatibility DDMI Information This webpage section displays DDMI information Current The current value of temperature voltage TX bias TX...

Page 78: ...ow Warn Threshold The low warn threshold value of temperature voltage TX bias TX power and RX power Low Alarm Threshold The low alarm threshold value of temperature voltage TX bias TX power and RX power Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Port select box At the dropdown select the desired port ...

Page 79: ...your management station and a port in the new management VLAN or connect to the new management VLAN through a multi VLAN route Web Interface To configure VLAN membership in the web UI 1 Click VLAN Management and VLAN Configuration 2 Modify Global VLAN Configuration parameters 3 Select the Port VLAN Configuration parameters 4 Click Apply to save the settings 5 To cancel the settings click the Reset...

Page 80: ... on egress Frames classified to the Port VLAN do not get C tagged on egress egress tagging can be changed to tag all frames in which case only tagged frames are accepted on ingress VLAN trunking may be enabled Hybrid Hybrid ports resemble trunk ports in many ways but adds additional port configuration features In addition to the characteristics described for trunk ports Hybrid ports have these abi...

Page 81: ...ed Only Only untagged frames are accepted on ingress Tagged frames are discarded Egress Tagging Ports in Trunk and Hybrid mode may control the tagging of frames on egress Untag Port VLAN Frames classified to the Port VLAN are transmitted untagged Other frames are transmitted with the relevant tag Tag All All frames whether classified to the Port VLAN or not are transmitted with a tag Untag All All...

Page 82: ...ication which involves communications between a Supplicant Authenticator and an Authentication Server GVRP Adjacent VLAN aware devices can exchange VLAN information with each other by using Generic VLAN Registration Protocol GVRP GVRP is based on the Generic Attribute Registration Protocol GARP and propagates VLAN information throughout a bridged network MVR MVR is used to eliminate the need to du...

Page 83: ...it shows this information for all the VLAN Users and this is by default VLAN membership allows the frames classified to the VLAN ID to be forwarded on the respective VLAN member ports User select dropdown At the dropdown choose the VLAN User to be displayed Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to manually refresh the page immediately F...

Page 84: ...ly reflects what is actually configured in hardware Admin Shows VLAN memberships as configured by an Admin and not by one of these internal software modules NAS NAS provides port based authentication which involves communications between a Supplicant Authenticator and an Authentication Server GVRP Adjacent VLAN aware devices can exchange VLAN information with each other by using Generic VLAN Regis...

Page 85: ...t VLAN ID PVID that a given user wants the port to have The field is empty if not overridden by the selected user Tx Tag Shows egress filtering frame status whether tagged or untagged Untagged VLAN ID If Tx Tag is overridden by the selected user and is set to Tag or Untag UVID then this field will show the VLAN ID that you want to tag or untag on egress The field is empty if not overridden by the ...

Page 86: ...ly Figure 5 4 1 MAC based VLAN Membership Configuration Parameter descriptions MAC Address Indicates the MAC address VLAN ID Indicates the VLAN ID Port Members A row of check boxes for each port is displayed for each MAC to VLAN ID mapping entry To include a port in the mapping check the box To remove or exclude the port from the mapping make sure the box is unchecked By default no ports are membe...

Page 87: ...ally and revert to previously saved values First Page Click to display the initial page of entries Next Page Click to display the next page of entries Delete To delete a MAC based VLAN entry check this box and press Apply Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to manually refresh the page immediately ...

Page 88: ...5 4 2 MAC based VLAN Membership Status Parameter descriptions MAC Address Indicates the MAC address VLAN ID Indicates the VLAN ID Port Members Port members of the MAC based VLAN entry Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to manually refresh the page immediately User select dropdown At the dropdown select the desired User Static Refers ...

Page 89: ...a mechanism for multiplexing on networks using IEEE 802 2 LLC more protocols than can be distinguished by the 8 bit 802 2 Service Access Point SAP fields SNAP supports identifying protocols by Ethernet type field values it also supports vendor private protocol identifier spaces It is used with IEEE 802 3 IEEE 802 4 IEEE 802 5 IEEE 802 11 and other IEEE 802 physical network layers as well as with n...

Page 90: ...comprised of two different sub values a OUI OUI Organizationally Unique Identifier is value in format of xx xx xx where each pair xx in string is a hexadecimal value ranges from 0x00 0xff b PID If the OUI is hexadecimal 000000 the protocol ID is the Ethernet type EtherType field value for the protocol running on top of SNAP if the OUI is an OUI for a particular organization the protocol ID is a va...

Page 91: ... which Group Name will be mapped A valid VLAN ID is 1 4095 Port Members A row of check boxes for each port is displayed for each Group Name to VLAN ID mapping To include a port in a mapping check the box To remove or exclude the port from the mapping make sure the box is unchecked By default no ports are members and all boxes are unchecked Buttons Auto refresh Check this box to automatically refre...

Page 92: ... https www lantronix com Page 92 of 473 Reset Click to undo any changes made locally and revert to previously saved values Delete To delete a Group Name to VLAN map entry check this box The entry will be deleted on the switch during the next Save ...

Page 93: ...r each port is displayed for each IP subnet to VLAN ID mapping entry To include a port in a mapping simply check the box To remove or exclude the port from the mapping make sure the box is unchecked By default no ports are members all boxes are unchecked Buttons Delete To delete a IP subnet based VLAN entry check this box and click Apply Add New Entry Click to add a new IP subnet based VLAN entry ...

Page 94: ...the success failure of the effort is also provided An SRP talker advertise message includes QoS requirements e g VLAN ID and Priority Code Point PCP to define traffic class rank emergency or nonemergency traffic specification maximum frame size and maximum number of frames in a traffic class measurement interval and accumulated worst case latency Talker advertise and listener ready messages can be...

Page 95: ...ck this box to refresh the page automatically every 3 seconds Refresh Click to manually refresh the page immediately Notes 1 MRP EtherType values MMRP EtherType 88 F6 MVRP EtherType 88 F5 MSRP EtherType 22 EA required for interoperability between MRP Participants 2 SRP supports emergency and non emergency traffic Emergency traffic will interrupt non emergency traffic if there is insufficient bandw...

Page 96: ...ey which may contain either destination MAC source MAC destination IP address or source IP address The matching will not use all fields in the key Figure 4 7 2 VCL MAC matching Configuration Parameter descriptions Port Port number of the switch VCL MAC Matching Select the VCL VLAN Control List MAC matching Possible values are Source MAC Use source MAC source IP address for matching the default set...

Page 97: ...te is a MAC address often a multicast address Replaces GMRP Stations or configured Bridge Ports make withdraw declarations if they do not need to receive frames for a given address If an address is registered on a Bridge Port by MMRP the Bridge knows that that frames for that address should be transmitted on that Bridge Port Ports The MRP Overall Port Configuration page lets you configure MRP over...

Page 98: ...age if the following conditions exist The participant receives a Join message before the Leave timer expires The Join message includes the attributes that have been encapsulated in the Leave or LeaveAll message If the participant does not receive a Join message for these attributes before the Leave timer expires MRP deregisters the attributes LeaveAll timer After startup an MRP participant starts ...

Page 99: ...supported All Groups must be encoded as the value 0 Forward all Multicast is used to support legacy devices that do not support MMRP GMRP All Unregistered Groups must be encoded as the value 1 Flood unregistered multicast traffic and other traffic is pruned by MMRP The remaining possible values 2 255 are reserved Bridge group filtering behavior for Forward All Groups and Forward Unregistered group...

Page 100: ... compliant dynamic VLAN creation and VLAN pruning on switch ports connecting core and access switches An MVRP aware switch can exchange VLAN configuration information with other MVRP aware switches prune unnecessary broadcast and unknown unicast traffic and dynamically create and manage VLANs on switches MVRP supports propagating VLAN information from one device to another Figure 4 8 1 MVRP Global...

Page 101: ...nable or disable the MVRP protocol on this switch port This will enable or disable the protocol on the switch port given that MVRP is also globally enabled Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page ...

Page 102: ...itch port Each port implementing the MVRP protocol maintains a count of the number of times it has received a VLAN registration request but has failed to register the VLAN due to lack of space in the Filtering Database Last PDU Origin The MAC address of the most recent MVRP PDU received on this switch port The MAC is 00 00 00 00 00 00 if the protocol is not enabled on that switch port or if the po...

Page 103: ... disable the Mode for each port as desired 5 Click Apply to save the settings 6 To cancel the settings click the Reset button to revert to previously saved values Figure 4 9 GVRP Port Configuration Parameter descriptions Enable GVRP The GVRP feature is enabled globally by checking the Enable GVRP checkbox to on Join time Enter a value in the range 1 20 in the units of centi seconds i e in units of...

Page 104: ... Port column shows the list of ports Mode Enable disable GVRP Mode on particular port locally Disabled Select to Disable GVRP mode on this port default Enabled Select to Enable GVRP mode on this port Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 105: ...rivate VLAN Membership Configuration Parameter descriptions Delete To delete a private VLAN entry check this box The entry will be deleted during the next Apply PVLAN ID Indicates the ID of this particular private VLAN Port Members A row of check boxes for each port is displayed for each private VLAN ID To include a port in a Private VLAN check the box To remove or exclude the port from the Privat...

Page 106: ...ports on the layer 2 switch as a protected port or a non protected port A destination address on a data packet is matched with a physical address on said layer 2 switch and a forwarding map is generated for the data packet based upon the destination address on the data packet The data packet is then sent to the plurality of ports pursuant to the forwarding map generated based on whether the ingres...

Page 107: ...ID correctly It should be configured through its own GUI Web Interface To configure Voice VLAN in the web UI 1 Click VLAN Management Voice VLAN and Configuration 2 Set Mode to on in the Voice VLAN Configuration section 3 Specify VLAN ID Aging Time and Traffic Class 4 Select Port Members in the Voice VLAN Configuration section 5 Specify Mode Security Discovery Protocol in the Port Configuration sec...

Page 108: ...s whether there is VoIP phone attached to the specific port and configures the Voice VLAN members automatically Forced Force join to Voice VLAN This field will be read only if the STP feature is enabled The STP Port mode will be read only if this field be set to a mode other than Disabled Port Security Select the Voice VLAN port security mode When the function is enabled all non telephonic MAC add...

Page 109: ...riptions Delete Check to delete the entry It will be deleted during the next save Telephony OUI A telephony OUI address is a global organizationally unique identifier assigned to a vendor by the IEEE It must be 6 characters long and the input format is xx xx xx where x is a hexadecimal digit Description The description of OUI address Normally it describes which vendor telephony device it belongs t...

Page 110: ...rict highest priority arbitration The ingress super priority queue allows traffic recognized as CPU traffic to be received and queued for transmission to the CPU even when all the QoS class queues are congested Port Classification This page lets you configure basic QoS Ingress Classification settings for all switch ports To configure QoS Ingress Port Classification in the web UI 1 Click Quality of...

Page 111: ...the frame is classified to the default PCP value DEI Controls the default DEI value All frames are classified to a DEI value If the port is VLAN aware and the frame is tagged then the frame is classified to the DEI value in the tag Otherwise the frame is classified to the default DEI value DSCP Based Click to Enable DSCP Based QoS Ingress Port Classification WRED Group At the dropdown select the W...

Page 112: ... for tagged frames Enabled Use mapped versions of PCP and DEI for tagged frames PCP DEI to Queue Priority DPL level Mapping Controls the mapping of the classified PCP DEI to Queue Priority DPL level values when Tag Classification is set to Enabled Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Cancel Click to undo any changes ...

Page 113: ... and Unit of measure 5 Click Apply to save the configuration 6 To cancel the settings click the Reset button It will revert to previously saved values Figure 6 2 QoS Ingress Port Policers Configuration Parameter descriptions Port The logical port for the settings contained in the same row Click on the port number in order to configure the schedulers Enabled To evoke which Port you need to enable t...

Page 114: ... the checkbox to enable the queue shaper for this queue on this switch port Queue Shaper Rate Select the rate for the queue shaper This value can be 100 13107100 when Unit is kbps and 1 13107 when Unit is Mbps The rate is internally rounded up to the nearest value supported by the queue shaper Queue Shaper Unit Controls the unit of measure for the queue shaper rate as kbps or Mbps Queue Shaper Rat...

Page 115: ...ate for the port shaper This value is restricted to 100 13107100 when Unit is kbps and 1 13107 when Unit is Mbps The rate is internally rounded up to the nearest value supported by the port shaper Port Shaper Unit Controls the unit of measure for the port shaper rate as kbps or Mbps Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved valu...

Page 116: ...vert to previously saved values Figure 6 4 Storm Control Configuration Parameter descriptions Global Storm Policer Configuration Global storm policers for the switch are configured on this page There is a unicast storm policer multicast storm policer and a broadcast storm policer These only affect flooded frames i e frames with a VLAN ID DMAC pair not present in the MAC Address table Frame Type Th...

Page 117: ...led as Strict and how many are scheduled as Weighted on this switch port Queue Shaper Enable Controls whether the queue shaper is enabled for this queue on this switch port Queue Shaper Rate Controls the rate for the queue shaper This value is restricted to 100 13107100 when Unit is kbps and 1 13107 when Unit is Mbps The rate is internally rounded up to the nearest value supported by the queue sha...

Page 118: ...ly rounded up to the nearest value supported by the port shaper Port Shaper Unit Controls the unit of measure for the port shaper rate as kbps or Mbps Port Shaper Rate type The rate type of the port shaper The allowed values are Line Specify that this shaper operates on line rate Data Specify that this shaper operates on data rate Buttons Apply Click to save changes Reset Click to undo any changes...

Page 119: ...4 Click the Apply button to save the settings 5 To cancel the settings click the Reset button It will revert to previously saved values Figure 6 6 Egress Port PCP Remarking Parameter descriptions Port The logical port for the settings contained in the same row At the dropdown select the port number to configure PCP remarking Mode Shows the PCP remarking mode for this port Keep Use classified PCP D...

Page 120: ...ranslation and classification settings for individual ports There are two configuration parameters available in Ingress Translate To Enable Ingress Translation check the checkbox Classify Classification for a port have 4 different values Disable No Ingress DSCP Classification DSCP 0 Classify if incoming or translated if enabled DSCP is 0 Selected Classify only selected DSCP for which classificatio...

Page 121: ...ton to revert to previously saved values Figure 6 7 2 DSCP Translation Configuration Parameter descriptions DSCP Maximum number of supported DSCP values are 64 and valid DSCP values are 0 63 Ingress Ingress side DSCP can be first translated to new DSCP before using the DSCP for QoS class and DPL map There are two configuration parameters for DSCP Translation Translate DSCP at Ingress side can be t...

Page 122: ...Reset button It will revert to previously saved values Figure 6 7 3 DSCP Classification Configuration Parameter descriptions Queue Priority Actual Class of Service 0 7 DSCP DP0 Select the classified DSCP value 0 63 for Drop Precedence Level 0 DSCP DP1 Select the classified DSCP value 0 63 for Drop Precedence Level 1 DSCP DP2 Select the classified DSCP value 0 63 for Drop Precedence Level 2 DSCP DP...

Page 123: ...and DPL parameters 4 Click the Apply button to save the settings 5 To cancel the settings click the Reset button It will revert to previously saved values Figure 6 7 4 DSCP Based QoS Ingress Classification Parameter descriptions DSCP Maximum number of supported DSCP values is 64 Trust Check the box if the DSCP value is to be trusted Queue Priority Queue Priority value can be 0 7 where 7 is the hig...

Page 124: ...QoS classes Low Normal Medium and High for an individual application Each row in the table describes a QCE that is defined The maximum number of QCEs is 256 per switch Click on the lowest plus sign to add a new QCE to the list Web Interface To configure QoS Control List parameters in the web UI 1 Click Quality of Service QoS Control List and Configuration 2 Click the plus sign to add a new QoS Con...

Page 125: ...atch specific DMAC SMAC Match specific source MAC address or Any If a port is configured to match on DMAC DIP this field indicates the DMAC Tag Type Indicates tag type Possible values are Any Match tagged and untagged frames The default value is Any Untagged Match untagged frames Tagged Match tagged frames C Tagged Match C tagged frames S Tagged Match S tagged frames VID Indicates VLAN ID either a...

Page 126: ...lowed LLC Only LLC frames are allowed SNAP Only SNAP frames are allowed IPv4 The QCE will match only IPV4 frames IPv6 The QCE will match only IPV6 frames Action Indicates the classification action taken on ingress frame if parameters configured are matched with the frame s content Possible actions are Queue Priority Classify Class of Service DPL Classify Drop Precedence Level DSCP Classify DSCP va...

Page 127: ...rame types are described below Any Allow all types of frames EtherType Valid Ether Type can be 0x600 0xFFFF excluding 0x800 IPv4 and 0x86DD IPv6 or Any LLC Valid selections are DSAP Address Valid DSAP Destination Service Access Point can vary from 0x00 to 0xFF or Any SSAP Address Valid SSAP Source Service Access Point can vary from 0x00 to 0xFF or Any Control Valid Control field can vary from 0x00...

Page 128: ...t Destination TCP UDP port 0 65535 or Any specific or port range applicable for IP protocol UDP TCP Action Parameters Queue Priority Class of Service 0 7 or Default DPL Drop Precedence Level 0 3 or Default DSCP 0 63 BE CS1 CS7 EF or AF11 AF43 or Default PCP 0 7 or Default Note PCP and DEI cannot be set individually DEI Drop Eligibility Indicator 0 1 or Default Policy ACL Policy number 0 127 or Def...

Page 129: ... 4 Click Refresh to refresh an entry of the Information Figure 6 8 2 QoS Control List Status Parameter descriptions User Indicates the QCL user QCE Indicates the index of QCE Port Indicates the list of ports configured with the QCE Frame Type Indicates the type of frame Possible values are Any Match any frame type Ethernet Match EtherType frames LLC Match LLC frames SNAP Match SNAP frames IPv4 Mat...

Page 130: ...asing the Hardware resources required to add QCL entry on clicking the Resolve Conflict button Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately User select dropdown Select the QCL status from this drop down list The default is Combined Resolve Conflict Click to release the resources required to add QCL entry if the ...

Page 131: ... 3 Click Refresh to refresh the Queuing Counters or clear all information when you click Clear Figure 6 9 Queuing Counters Parameter descriptions Port The logical port for the settings contained in the same row Qn Qn is the Queue number there are eight QoS queues per port Q0 is the lowest priority queue Rx Tx The number of received and transmitted packets per queue Buttons Auto refresh Check this ...

Page 132: ...6 10 Weighted Random Early Detection Configuration Parameter descriptions Group The WRED group number for which the configuration below applies Queue The queue number CoS for which the configuration below applies DPL The Drop Precedence Level for which the configuration below applies Enable Controls whether RED is enabled for this entry Min Controls the lower RED fill level threshold If the queue ...

Page 133: ...he fill level is just below 100 If Max Unit is Fill Level the red line Max controls the fill level where drop probability reaches 100 This configuration makes it possible to reserve a portion of the queue exclusively for frames marked with Drop Precedence Level 0 green frames The reserved portion is calculated as 100 Max Frames marked with Drop Precedence Level 0 green frames are never dropped The...

Page 134: ...igned as designated ports After determining the lowest cost spanning tree it enables all root ports and designated ports and disables all other ports Network packets are therefore only forwarded between root ports and designated ports eliminating any possible network loops Figure 7 The Spanning Tree Protocol Once a stable network topology has been established all bridges listen for Hello BPDUs Bri...

Page 135: ... For MSTP operation this is the priority of the CIST Otherwise this is the priority of the STP RSTP Bridge Hello Time The interval between sending STP BPDUs Valid values are 1 10 seconds default is 2 seconds Note Changing this parameter from the default value is not recommended and may have adverse effects on your network Forward Delay The delay used by STP Bridges to transit Root and Designated P...

Page 136: ...the error disabled state and will be removed from the active topology Port Error Recovery Control whether a port in the error disabled state automatically will be enabled after a certain time If recovery is not enabled ports have to be disabled and re enabled for normal STP operation The condition is also cleared by a system reboot Port Error Recovery Timeout The time to pass before a port in the ...

Page 137: ...empty i e not having any VLANs mapped to it To configure Spanning Tree MSTI in the web UI 1 Click Spanning Tree and MSTI Configuration 2 Specify the configuration identification parameters in the field Specify the VLANs Mapped blank field 3 Click the Apply button to save the settings 4 To cancel the settings click the Reset button It will revert to previously saved values 5 Click Edit to set STP C...

Page 138: ... with comma and or space A VLAN can only be mapped to one MSTI An unused MSTI should just be left empty I e not having any VLANs mapped to it Example 2 5 20 40 MSTI Priority Controls the bridge priority Lower numeric values have better priority The bridge priority plus the MSTI instance number concatenated with the 6 byte MAC address of the switch forms a Bridge Identifier MSTI Port This column di...

Page 139: ...the Root Port has been selected If set it can cause lack of spanning tree connectivity It can be set by a network administrator to prevent bridges external to a core region of the network influence the spanning tree active topology possibly because those bridges are not under the full control of the administrator This feature is also called Root Guard Restricted TCN If enabled causes the port not ...

Page 140: ...ge instance Web Interface To display STP Bridges status in the web UI 1 Click Spanning Tree and STP Status 2 To automatically refresh the page click Auto refresh or Click Refresh to manually refresh the page immediately 3 Click CIST to go to the next page STP Detailed Bridge Status Figure 7 3 STP Status Parameter descriptions MSTI The Bridge Instance This is also a link to the STP Detailed Bridge ...

Page 141: ...stance The Bridge instance e g CIST MST1 etc Bridge ID The Bridge ID of this Bridge instance Root ID The Bridge ID of the currently elected root bridge Root Port The switch port currently assigned the root port role Root Cost Root Path Cost For the Root Bridge this is zero For all other Bridges it is the sum of the Port Path Costs on the least cost path to the Root Bridge Regional Root The Bridge ...

Page 142: ...Edge Port is a switch port to which no Bridges are attached The flag may be automatically computed or explicitly configured Each Edge Port transits directly to the Forwarding Port State since there is no possibility of it participating in a loop Point to Point The current STP port point to point flag A point to point port connects to a non shared LAN media The flag may be automatically computed or...

Page 143: ...TP port MSTP The number of MSTP Configuration BPDUs received transmitted on the port RSTP The number of RSTP Configuration BPDUs received transmitted on the port STP The number of legacy STP Configuration BPDUs received transmitted on the port TCN The number of legacy Topology Change Notification BPDUs received transmitted on the port Discarded Unknown The number of unknown Spanning Tree BPDUs rec...

Page 144: ...C address is used by the switch to automatically update the MAC table with these dynamic MAC addresses Dynamic entries are removed from the MAC table if no frame with the corresponding SMAC address have been seen after a configurable age time Web Interface To configure MAC Address Table parameters in the web UI 1 Click MAC Address Tables and Configuration 2 Specify the Disable Automatic Aging and ...

Page 145: ...nfiguration Learning disabled VLANS This field shows the Learning disabled VLANs When a NEW MAC arrives into a learning disabled VLAN the MAC won t be learned By the default the field is empty More VLANs may be created by using a list syntax where the individual elements are separated by commas Ranges are specified with a dash separating the lower and upper bound The following example will create ...

Page 146: ...tes whether the entry is a static entry dynamic entry 802 1x or DMS entry VLAN The VLAN ID of the entry MAC Address The MAC address of the entry Port Members The ports that are members of the entry Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to manually refresh the page immediately Clear Click to clear the page First Page Updates the table st...

Page 147: ...ation Address With this function once a switch receives an IP multicast packet it will forward the packet to the members who joined in a specified IP multicast group before The packets will be discarded by the IGMP Snooping if the user transmits multicast packets to the multicast group that had not been built up in advance IGMP mode enables the switch to issue IGMP function that you enable IGMP pr...

Page 148: ...void forwarding unnecessary leave messages to the router side Proxy Enabled Enable IGMP Proxy This feature can be used to avoid forwarding unnecessary join and leave messages to the router side Port Related Configuration Port Shows the physical Port index of switch Router Port Specify which ports act as router ports A router port is a port on the Ethernet switch that leads towards the Layer 3 mult...

Page 149: ...Up to 64 VLANs can be selected for IGMP Snooping Querier Election Enable to join IGMP Querier election in the VLAN Disable to act as an IGMP Non Querier Querier Address Define the IPv4 address as source address used in IP header for IGMP Querier election When the Querier address is not set system uses IPv4 management address of the IP interface associated with this VLAN When the IPv4 management ad...

Page 150: ...rt Interval The URI is the time between repetitions of a host s initial report of membership in a group The valid range is 0 to 31744 seconds the default URI is 1 second Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Refresh Refreshes the displayed table starting from the VLAN input fields First Page Updates the table starting...

Page 151: ...ic interface is administratively disabled Queries Transmitted The number of Transmitted Queries Queries Received The number of Received Queries V1 Reports Received The number of Received V1 Reports V2 Reports Received The number of Received V2 Reports V3 Reports Received The number of Received V3 Reports V2 Leaves Received The number of Received V2 Leaves Router Port Displays which ports act as ro...

Page 152: ...User Guide 33848 Rev A https www lantronix com Page 152 of 473 Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Clear Click to clear the page ...

Page 153: ...rting from that or the closest next IGMP Group Table match In addition the two input fields will upon a Refresh button click assume the value of the first displayed entry allowing for continuous refresh with the same start address Web Interface To display the IGMP Snooping Group Information in the web UI 1 Click Multicast IGMP Snooping and Group Information 2 Specify how many entries to show in on...

Page 154: ...Page to change page Figure 9 1 5 IGMP SFM Information Parameter descriptions VLAN ID The VLAN ID of the group Group The Group address of the group displayed Port The switch port number Mode Indicates the filtering mode maintained per VLAN ID port number Group Address basis It can be either Include or Exclude Source Address IP Address of the source The system currently supports 128 IP source addres...

Page 155: ...traffic by sending packets to a multicast address In IPv6 addresses with the first eight bits set that is FF as the first two characters of the address are multicast addresses and any node that listens to such an address will receive the traffic sent to that address Application software running on the source and destination systems cooperates to determine what multicast address to use Note that th...

Page 156: ...enable MLD Leave Proxy This feature can be used to avoid forwarding unnecessary leave messages to the router side Proxy Enabled Check the box to enable MLD Proxy This feature can be used to avoid forwarding unnecessary join and leave messages to the router side Port Related Configuration Router Port Specify which ports act as router ports A router port is a port on the Ethernet switch that leads t...

Page 157: ...ity is maintained by hosts and routers taking appropriate actions depending on the versions of IGMP operating on hosts and routers within a network The allowed selections are MLD Auto Forced IGMPv1 or Forced IGMPv2 The default compatibility value is MLD Auto RV Robustness Variable The RV allows tuning for the expected packet loss on a network The valid range is 1 to 255 the default RV value is 2 Q...

Page 158: ...om the VLAN input fields First Page Updates the table starting from the first entry in the VLAN Table i e the entry with the lowest VLAN ID Next Page Updates the table starting with the entry after the last entry currently displayed Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 159: ... or IDLE The status DISABLE denotes the specific interface is administratively disabled Queries Transmitted Displays the number of Transmitted Queries Queries Received Displays the number of Received Queries V1 Reports Received Displays the number of Received V1 Reports V2 Reports Received Displays the number of Received V2 Reports V1 Leaves Received Displays the number of Received V1 Leaves Route...

Page 160: ...e 33848 Rev A https www lantronix com Page 160 of 473 Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Clear Clears the counters for the selected port ...

Page 161: ... Click Refresh to refresh the page immediately or click Auto refresh to automatically refresh the page 4 Click First Next Page to change page Figure 9 2 4 MLD Snooping Group Information Parameter descriptions VLAN ID VLAN ID of the group Groups Group address of the group displayed Port Members Ports under this group Buttons Auto refresh Check this box to refresh the page automatically occurs every...

Page 162: ...e 9 2 5 MLD SFM Information Parameter descriptions VLAN ID Displays the VLAN ID of the group Group Displays the IP Multicast Group address Port Displays the switch port number Mode Displays the filtering mode maintained per VLAN ID port number Group Address basis It can be either Include or Exclude Source Address Displays the IP Address of the source Currently the system limits the total number of...

Page 163: ...fault is off disabled 4 Specify MVR VID MVR Name IGMP Address Mode Tagging Priority LLQI Interface Channel Profile 5 Select which port to enable Immediate Leave The default is Disabled for all ports 6 Click Apply to save the settings 7 To cancel the settings click the Reset button It will revert to previously saved values Figure 9 3 1 MVR Configuration Parameter descriptions MVR Mode Enable Disabl...

Page 164: ...enths or one half second Interface Channel Profile When the MVR VLAN is created select the profile to expand the corresponding multicast channel settings for the specific MVR VLAN The file established on Filtering Profile Table Port The logical port for the settings Port Role Configure an MVR port of the designated MVR VLAN as one of these roles Inactive The designated port does not participate MV...

Page 165: ...ived Queries for IGMP and MLD respectively IGMP MLD Queries Transmitted The number of Transmitted Queries for IGMP and MLD respectively IGMPv1 Joins Received The number of Received IGMPv1 Joins IGMPv2 MLDv1 Reports Received The number of Received IGMPv2 Joins and MLDv1 Reports respectively IGMPv3 MLDv2 Reports Received The number of Received IGMPv3 Joins and MLDv2 Reports respectively IGMPv2 MLDv1...

Page 166: ...rs 3 To automatically refresh the information click Auto refresh 4 Click Refresh to refresh an entry of the MVR Groups Information 5 Click First Next Page to change pages Figure 9 3 3 MVR Groups Information Parameter descriptions VLAN ID VLAN ID of the group Groups Group ID of the group displayed Port Members Ports under this group Buttons Auto refresh Check this box to refresh the page automatica...

Page 167: ...roup IP Multicast Group address Port Switch port number Mode Indicates the filtering mode maintained per VLAN ID port number Group Address basis It can be either Include or Exclude Source Address IP Address of the source Currently system limits the total number of IP source addresses for filtering to be 128 When there is not any source filtering address the text None is shown in the Source Address...

Page 168: ...ast streams You can create a maximum 64 Profiles with at maximum 128 corresponding Rules for each Profile Web Interface To configure IPMC Profile parameters in the web UI 1 Click Multicast Multicast Filtering Profile and Filtering Profile Table 2 Enable or disable the Multicast Filtering Profile mode 3 Click Add New Filtering Profile 4 Specify Profile Name Profile Description and Rule 5 Click Appl...

Page 169: ...le will be shown by clicking the View button You can manage or inspect the rules of the designated profile by using these buttons Preview Preview the rules associated with the designated profile Edit Adjust the rules associated with the designated profile Profile Name Index The name of the designated profile to be associated This field is not editable Entry Name The name used in specifying the add...

Page 170: ...orresponding precedence order by using the following buttons Insert a new rule before the current entry of rule Delete the current entry of rule Move the current entry of rule up in the list Move the current entry of rule down in the list Buttons Add New Filtering Profile Click to add new IPMC profile Specify the name configure the new entry and click Apply Delete Check to delete the entry The des...

Page 171: ...ress Range Entry 3 Specify Entry Name Start Address and End Address 4 Click Apply to save the settings 5 To cancel the settings click the Reset button It will revert to previously saved values 6 Click Refresh to refresh an entry 7 Click First Entry Next Entry to change Entry Figure 9 4 2 IPMC Profile Address Configuration Parameter descriptions Entry Name The name used for indexing the address ent...

Page 172: ...sses then click Apply Delete Check to delete the entry The designated entry will be deleted during the next save Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values First Entry Updates the table starting from the first entry in the table Next Entry Updates the table starting with the entry after the last entry currently displayed ...

Page 173: ...uration 2 At Snooping Mode select on to enable snooping globally 3 At the Mode dropdown Select Trusted for the desired ports 4 Click Apply Figure 10 1 1 DHCP Snooping Configuration Parameter descriptions Snooping Mode Indicates the DHCP snooping mode operation Possible modes are on Enable DHCP snooping mode operation When DHCP snooping mode operation is enabled the DHCP request messages will be fo...

Page 174: ...antronix SM12XPA Web User Guide 33848 Rev A https www lantronix com Page 174 of 473 Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 175: ...ge Figure 10 1 2 DHCP Snooping Table Parameter descriptions Start from MAC address Choose the starting MAC address VLAN Choose the starting VLAN ID entries per page Choose how many items you want to be displayed per page MAC Address The User MAC address of the entry VLAN ID The VLAN ID in which the DHCP traffic is permitted Source Port The Switch Port Number for which the entries are displayed IP ...

Page 176: ...ter descriptions Server Statistics Rx and Tx Discover The number of discover option 53 with value 1 packets received and transmitted Rx and Tx Offer The number of offer option 53 with value 2 packets received and transmitted Rx and Tx Request The number of request option 53 with value 3 packets received and transmitted Rx and Tx Decline The number of decline option 53 with value 4 packets received...

Page 177: ...and transmitted Rx Discarded checksum error The number of discard packet that IP UDP checksum is error Rx Discarded from Untrusted The number of discarded packets that are coming from untrusted port Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Clear Click to clear the webpage statistics User select box At the dr...

Page 178: ...rs DHCP messages between the clients and the server when they are not in the same subnet domain And the DHCP broadcast message won t be flooded for security considerations off Disable DHCP relay mode operation Relay Server Indicates the DHCP relay server IP address Relay Information Mode Indicates the DHCP relay information mode option operation The option 82 circuit ID format as vlan_id module_id...

Page 179: ...he policy The Replace policy is invalid when relay information mode is disabled Possible policies are Replace Replace the original relay information when a DHCP message that already contains it is received Keep Keep the original relay information when a DHCP message that already contains it is received Drop Drop the package when a DHCP message that already contains relay information is received Bu...

Page 180: ...while being sent to clients Receive from Server The number of packets received from server Receive Missing Agent Option The number of packets received without agent information options Receive Missing Circuit ID The number of packets received with the Circuit ID option missing Receive Missing Remote ID The number of packets received with the Remote ID option missing Receive Bad Circuit ID The numb...

Page 181: ...ackets which were replaced with relay agent information option Keep Agent Option The number of packets whose relay agent information was retained Drop Agent Option The number of packets that were dropped which were received with relay agent information Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Clear Clear all...

Page 182: ...ions VLAN Configure the VLAN in which the DHCP server is enabled or disabled Allowed VLANs are 1 4095 Mode Indicate the operation mode per VLAN Possible modes are Enable Enable DHCP server per VLAN Disable Disable DHCP server pre VLAN Start IP and End IP Define the IP address range The Start IP must be smaller than or equal to the End IP address Lease Time Displays lease time of the pool in minute...

Page 183: ...ible types are Static and DMS Start IP and End IP Displays the Start IP address and the End IP address Lease Time Displays lease time of the pool in minutes Subnet Mask Displays subnet mask of the DHCP address Default Router Displays the destination IP network or host address of this route DNS Server Displays DNS server IP address IP Binding Status IP Displays the IP address of the binding VLAN Di...

Page 184: ...e web server is to close and reopen the browser Web Interface To add a User in the web UI 1 Click Security Management and Account 2 Click Add New User 3 Specify the User Name Password and Privilege Level parameters 4 Click Apply Figure 11 1 1 Account Configuration Parameter descriptions User Name The name identifying the user Enter up to 31 characters This is also a link to Add or Edit a User Pass...

Page 185: ...tions software upload factory defaults etc need user privilege level 15 Generally privilege level 15 is used for an administrator account privilege level 10 for a standard user account and privilege level 5 for a guest account Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Cancel Click to undo any changes made locally and retu...

Page 186: ...Ethernet Install_Wizard IP IPMC_Snooping LACP LLDP Loop_Protect MAC_Table MEP Miscellaneous MRP MVR NTP PoE Ports Private_VLANs PTP QoS RMirror Security_Access Security_network SFlow SMTP Spanning Tree System Trap_Event UDLD uFDMA_AIL uFDMA_CIL uPMP VCL VLAN_Translation VLANs Voice_VLAN Watchdog XXRP Each group can have a Privilege Level setting of 1 to 15 To configure Privilege Levels in the web ...

Page 187: ...nspection IP source guard IP Everything except ping Port Everything except Cable Diagnostics Diagnostics ping and Cable Diagnostics Maintenance CLI System Reboot System Restore Default System Password Configuration Save Configuration Load and Firmware Load Web Users Privilege Levels and everything in Maintenance Debug Only present in CLI Privilege Levels The Privilege Levels can be configured to 0...

Page 188: ...net ssh web which you want to monitor 3 Specify the Methods none local radius tacacs Service port Cmd Lvl Cfg Cmd Fallback Exec 4 Click Apply Figure 11 1 3 Authentication Method Configuration Parameter descriptions Authentication Method Configuration Client The management client for which the configuration below applies Method Authentication Method can be set to one of these values none authentica...

Page 189: ... to one of these values none authorization is disabled and login is not possible tacacs use a remote TACACS server for authorization Cmd Lvl Runs authorization for all commands at the specified privilege level Specific command level that should be authorized Valid entries are 0 15 Cfg Cmd Also authorize configuration commands Accounting Method Configuration The accounting section allows you to con...

Page 190: ...ly Figure 11 1 4 Access Method Configuration Parameter descriptions Mode Indicates the access management mode operation Possible modes are On Enable access management mode operation Off Disable access management mode operation VLAN ID Indicates the VLAN ID for the access management entry Delete Check to delete the entry It will be deleted during the next save Start IP address Indicates the start I...

Page 191: ...48 Rev A https www lantronix com Page 191 of 473 Buttons Add New Entry Click to add a new access management entry to the table Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 192: ... Upload Upload a certificate PEM file into the switch The file should contain the certificate and private key together If you have two separated files for saving certificate and private key Use the Linux cat command to combine them into a single PEM file For example cat my cert my key my pem Notice that the RSA certificate is recommended since most of the new version of browsers has removed suppor...

Page 193: ...rrent status of certificate on the switch Possible statuses are Switch secure HTTP certificate is presented Switch secure HTTP certificate is not presented Switch secure HTTP certificate is generating Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 194: ...tandard for port based Network Access Control It is part of the IEEE 802 1 group of networking protocols It provides an authentication mechanism to devices wishing to attach to a LAN or WLAN To configure IEEE 802 1X in the web UI 1 Click Security 802 1X and Configuration 2 Set the System Configuration section parameters 3 Set the Port Configuration section parameters 4 Click the Apply button to sa...

Page 195: ...wing modes i e modes using the Port Security functionality to secure MAC addresses Single 802 1X Multi 802 1X MAC Based Auth When the NAS module uses the Port Security module to secure MAC addresses the Port Security module needs to check for activity on the MAC address in question at regular intervals and free resources if no activity is seen within a given period of time This parameter controls ...

Page 196: ...orts ditto setting determines whether the port can be moved into Guest VLAN When unchecked the ability to move to the Guest VLAN is disabled on all ports Guest VLAN ID This is the value that a port s Port VLAN ID is set to if a port is moved into the Guest VLAN It can only be changed if the Guest VLAN option is globally enabled Valid values are in the range 1 4094 Max Reauth Count The number of ti...

Page 197: ...cated on a port the whole port is opened for network traffic This allows other clients connected to the port for instance through a hub to piggy back on the successfully authenticated client and get network access even though they really aren t authenticated To overcome this security breach use the Single 802 1X variant Single 802 1X is really not an IEEE standard but features many of the same cha...

Page 198: ...over 802 1X based authentication is that the clients don t need special supplicant software to authenticate The disadvantage is that MAC addresses can be spoofed by malicious users equipment whose MAC address is a valid RADIUS user can be used by anyone Also only the MD5 Challenge method is supported The maximum number of clients that can be attached to a port can be limited using the Port Securit...

Page 199: ...ked for a given port the switch considers moving the port into the Guest VLAN according to the rules outlined below This option is only available for EAPOL based modes i e Port based 802 1X Single 802 1X Multi 802 1X For troubleshooting VLAN assignments use the Monitor VLANs VLAN Membership and VLAN Port pages These pages show which modules have temporarily overridden the current Port VLAN configu...

Page 200: ...e for each row The buttons are only enabled when authentication is globally enabled and the port s Admin State is in an EAPOL based or MAC based mode Clicking these buttons will not cause settings changed on the page to take effect Re authenticate Schedules a re authentication whenever the quiet period of the port runs out EAPOL based authentication For MAC based authentication re authentication w...

Page 201: ...ndividual states Last Source The source MAC address carried in the most recently received EAPOL frame for EAPOL based authentication and the most recently received frame from a new client for MAC based authentication Last ID The user name supplicant identity carried in the most recently received Response Identity EAPOL frame for EAPOL based authentication and the source MAC address from the most r...

Page 202: ...that you want display 802 1X Statistics Admin State The port s current administrative state Refer to 802 1X Admin State for a description of possible values Port State The current state of the port Refer to 802 1X Port State for a description of the individual states Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to manually refresh the page imm...

Page 203: ... of IP Source Guard Configuration Select on to enable the Global IP Source Guard or select off to disable the Global IP Source Guard All configured ACEs will be lost when the mode is on enabled Port Mode Configuration Specify IP Source Guard is enabled on which ports Only when both Global Mode and Port Mode on a given port are enabled IP Source Guard is enabled on this given port Max Dynamic Clien...

Page 204: ... address in the entry 4 Click Apply Figure 11 3 2 Static IP Source Guard Table Parameter descriptions Port At the dropdown select the logical port for the settings VLAN ID The VID for the settings IP Address Allowed Source IP address MAC address Allowed Source MAC address Buttons Add New Entry Click to add a new entry to the Static IP Source Guard table Specify the Port IP address and MAC address ...

Page 205: ...ge Next Page to change page 5 Specify the Start from port VLAN IP Address and entries per page Figure 11 3 3 Dynamic IP Source Guard Table Parameter descriptions Port The switch Port number for which the entries are displayed VLAN ID The VLAN ID in which the IP traffic is permitted IP Address The User IP address of the entry MAC Address The Source MAC address Buttons Auto refresh Check this box to...

Page 206: ...ode Select on to enable ARP Inspection globally or select off to disable ARP Inspection globally The default is disabled off Port Mode Configuration section Mode Set ARP Inspection to Enabled or Disabled on each port ARP Inspection is enabled on a given port only when both Global Mode and Port Mode on a given port are enabled Possible modes are Enabled Enable ARP Inspection operation Disabled Disa...

Page 207: ...g types are None Log nothing Deny Log only denied entries Permit Log only permitted entries ALL Log all entries Buttons Translate dynamic to static Click to translate all dynamic entries to static entries Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 208: ...LAN Mode Configuration Parameter descriptions VLAN Mode Configuration Specify ARP Inspection is enabled on which VLANs First you must enable the port setting on the Port Mode Configuration web page Only when both Global Mode and Port Mode on a given port are enabled ARP Inspection is enabled on this given port Second specify which VLAN will be inspected on the VLAN Mode Configuration web page The ...

Page 209: ...entry It will be deleted during the next save Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values First Entry Updates the table starting from the first entry in the VLAN Mode Configuration table Next Entry Updates the table starting with the entry after the last entry currently displayed Refresh Click to refresh the page immediately ...

Page 210: ...ss MAC address and IP Address in the entry 4 Click Apply Figure11 4 3 Static ARP Inspection Table Parameter descriptions Port At the dropdown select the logical port for the settings VLAN ID The VLAN ID VID for the settings MAC Address Allowed Source MAC address in ARP request packets IP Address Allowed Source IP address in ARP request packets Buttons Add New Entry Click to add a new entry to the ...

Page 211: ...o refresh the port detailed statistics 4 Click First Next Page to change page Figure 11 4 4 Dynamic ARP Inspection Table Parameter descriptions Port The switch Port number for which the entries are displayed VLAN ID The VLAN ID in which the ARP traffic is permitted MAC Address The user MAC address of the entry IP Address The user IP address of the entry Buttons Auto refresh Check this box to refre...

Page 212: ...underlying functionality for securing MAC addresses they may have other requirements to the aging period The underlying functionality will use the shorter requested aging period of all modules that have aging enabled The Aging Period can be set to a number between 10 and 10000000 seconds with a default of 3600 seconds To understand why aging may be desired consider the following scenario Suppose a...

Page 213: ...can take one of the following actions Protect Do not allow more than Limit MAC addresses on the port but take no further action Restrict If Limit is reached subsequent MAC addresses on the port will be counted and marked as violating Such MAC addresses are removed from the MAC table when the hold time expires At most Violation Limit MAC addresses can be marked as violating at any given time Shutdo...

Page 214: ...tatus Parameter descriptions Port The port number for which the status applies Click the linked port number to see the status for this particular port Violation Mode Shows the configured Violation Mode of the port It displays one of four values Disabled Port Security is not administratively enabled on this port Protect Port Security is administratively enabled in Protect mode Restrict Port Securit...

Page 215: ...Indicates whether the corresponding MAC address is blocked or forwarding In the Blocked state it will not be allowed to transmit or receive traffic Time of Addition Shows the date and time when this MAC address was first seen on the port Age Hold If at least one user module has decided to block this MAC address it will stay in the Blocked state until the hold time measured in seconds expires If al...

Page 216: ...management for people or computers to connect and use a network service To configure a RADIUS server in the web UI 1 Click Security RADIUS and Configuration 2 Set Timeout Retransmit Deadtime Key NAS IP Address NAS IPv6 Address NAS Identifier 3 Click Add New Entry 4 Set Hostname Auth Port Acct Port Timeout Retransmit Key 5 Click the Apply button to save the settings 6 To cancel the settings click t...

Page 217: ... The IPv6 address to be used as Attribute 95 in RADIUS Access Request packets If this field is left blank the IP address of the outgoing interface is used NAS Identifier The identifier up to 255 characters long to be used as Attribute 32 in RADIUS Access Request packets If this field is left blank the NAS Identifier is not included in the packet Server Configuration The table has one row for each ...

Page 218: ...s left Access attempts were made to this server but it did not reply within the configured timeout The server has temporarily been disabled but will get re enabled when the dead time expires The number of seconds left before this occurs is displayed in parentheses This state is only reachable when more than one server is enabled Accounting Port UDP port number for accounting Accounting Status The ...

Page 219: ...ccess Rejects The number of RADIUS Access Reject packets valid or invalid received from the server Access Challenges The number of RADIUS Access Challenge packets valid or invalid received from the server Malformed Access Responses The number of malformed RADIUS Access Response packets received from the server Malformed packets include packets with an invalid length Bad authenticators or Message A...

Page 220: ...ere made to this server but it did not reply within the configured timeout The server has temporarily been disabled but will get re enabled when the dead time expires The number of seconds left before this occurs is displayed in parentheses This state is only reachable when more than one server is enabled Round Trip Time The time interval measured in milliseconds between the most recent Access Rep...

Page 221: ...tion is up and running and the RADIUS module is ready to accept accounting attempts Dead X seconds left Accounting attempts were made to this server but it did not reply within the configured timeout The server has temporarily been disabled but will get re enabled when the dead time expires The number of seconds left before this occurs is displayed in parentheses This state is only reachable when ...

Page 222: ...ACS 2 Click Add New Entry 3 Specify the Timeout Deadtime and Key 4 Specify the Hostname Port Timeout and Key in the server 5 Click Apply Figure 11 7 TACACS Server Configuration Parameter descriptions Global Configuration These setting are common for all of the TACACS servers Timeout Timeout is the number of seconds in the range 1 to 1000 to wait for a reply from a TACACS server before it is consid...

Page 223: ...has one row for each TACACS server and several columns which are Delete To delete a TACACS server entry check this box The entry will be deleted during the next Save Hostname The IP address or hostname of the TACACS server Port The TCP port to use on the TACACS server for authentication Timeout This optional setting overrides the global timeout value Leaving it blank will use the global timeout va...

Page 224: ...t The logical port for the settings contained in the same row Policy ID Select the policy to apply to this port Valid values are 1 8 The default value is 1 Action Select whether forwarding is permitted Permit or denied Deny The default value is Permit Rate Limiter ID Select which rate limiter to apply on this port The allowed values are Disabled or the values 1 16 The default value is Disabled Por...

Page 225: ...s received on the port the port will be disabled Disabled Port shut down is disabled The default value is Disabled State Specify the port state of this port The allowed values are Enabled To reopen ports by changing the volatile port configuration of the ACL user module The default value is Enabled Disabled To close ports by changing the volatile port configuration of the ACL user module Counter C...

Page 226: ...ings click the Reset button It will revert to previously saved values Figure 12 2 ACL Rate Limiter Configuration Parameter descriptions Rate Limiter ID The rate limiter ID for the settings contained in the same row its range is 1 to 16 Rate The valid rate is 0 10 20 30 5000000 in pps or 0 25 50 75 10000000 in kbps Unit Specify the rate unit of measure Valid values are 10pps packets per second or 2...

Page 227: ...d Access Control List 2 Click the button to add a new ACL or use the other ACL modification buttons to specify the editing action i e edit delete or moving the relative position of entry in the list 3 Specify the ACE parameters 4 Click the Apply button to save the settings 5 To cancel the settings click the Reset button It will revert to previously saved values 6 When editing an entry on the ACE C...

Page 228: ...Action Indicates the forwarding action of the ACE Permit Frames matching the ACE may be forwarded and learned Deny Frames matching the ACE are dropped Filter Frames matching the ACE are filtered Rate Limiter Indicates the rate limiter number of the ACE The valid range is 1 to 16 When Disabled is displayed the rate limiter operation is disabled Port Redirect Indicates the port redirect operation of...

Page 229: ...pattern is policy_value policy_bitmask For example if the policy value is 3 and the policy bitmask is 0x10 bit 0 is don t care bit then policy 2 and 3 are applied to this rule Frame Type Select the frame type for this ACE These frame types are mutually exclusive Any Any frame can match this ACE Ethernet Type Only Ethernet Type frames can match this ACE The IEEE 802 3 describes the value of Length ...

Page 230: ...han 1518 without VLAN tags Counter The counter indicates the number of times the ACE was hit by a frame MAC Parameter SMAC Filter Only displayed when the frame type is Ethernet Type or ARP Specify the source MAC filter for this ACE Any No SMAC filter is specified SMAC filter status is don t care Specific If you want to filter a specific source MAC address with this ACE choose this value A field fo...

Page 231: ...he ARP parameters can be configured when Frame Type ARP is selected ARP RARP Specify the available ARP RARP opcode OP flag for this ACE Any No ARP RARP OP flag is specified OP is don t care ARP Frame must have ARP opcode set to ARP RARP Frame must have RARP opcode set to RARP Other Frame has unknown ARP RARP Opcode flag Request Reply Specify the available Request Reply opcode OP flag for this ACE ...

Page 232: ...e is allowed don t care RARP Target MAC Match Specify whether frames can hit the action according to their target hardware address field THA settings 0 RARP frames where THA is not equal to the target MAC address 1 RARP frames where THA is equal to the target MAC address Any Any value is allowed don t care IP Ethernet Length Specify whether frames can hit the action according to their ARP RARP har...

Page 233: ...with a Time to Live field greater than zero must be able to match this entry Any Any value is allowed don t care IP Fragment Specify the fragment offset settings for this ACE This involves the settings for the More Fragments MF bit and the Fragment Offset FRAG OFFSET field for an IPv4 frame No IPv4 frames where the MF bit is set or the FRAG OFFSET field is greater than zero must not be able to mat...

Page 234: ...ar These fields are explained later in this manual TCP Select TCP to filter IPv6 TCP protocol frames Extra fields for defining TCP parameters will appear These fields are explained later in this document Next Header Value When Specific is selected for the IPv6 next header value you can enter a specific value The valid range is 0 to 255 A frame that hits this ACE matches this IPv6 protocol value SI...

Page 235: ...cific TCP UDP source range filter with this ACE you can enter a specific TCP UDP source range value A field for entering a TCP UDP source value appears TCP UDP Source No When Specific is selected for the TCP UDP source filter you can enter a specific TCP UDP source value The valid range is 0 to 65535 A frame that hits this ACE matches this TCP UDP source value TCP UDP Source Range When Range is se...

Page 236: ...d significant ACK value for this ACE 0 TCP frames where the ACK field is set must not be able to match this entry 1 TCP frames where the ACK field is set must be able to match this entry Any Any value is allowed don t care TCP URG Specify the TCP Urgent Pointer field significant URG value for this ACE 0 TCP frames where the URG field is set must not be able to match this entry 1 TCP frames where t...

Page 237: ...https www lantronix com Page 237 of 473 Refresh Click to manually refresh the page immediately Clear Click to clear the data manually Remove All Click to remove all to clean up all ACL configurations on the table Cancel Return to the previous page ...

Page 238: ... DMS CLIENT Combined etc ACE Indicates the ACE ID on local switch Ingress Port Indicates the ingress port of the ACE Possible values are All The ACE will match all ingress port Port The ACE will match a specific ingress port Frame Type Indicates the frame type of the ACE Possible values are Any The ACE will match any frame type EType The ACE will match Ethernet Type frames Note that an Ethernet Ty...

Page 239: ...d the port redirect operation is disabled Mirror Specify the mirror operation of this port The allowed values are Enabled Frames received on the port are mirrored Disabled Frames received on the port are not mirrored The default value is Disabled CPU Forward packets that matched the specific ACE to CPU CPU Once Forward first packet that matched the specific ACE to CPU Counter Indicates the number ...

Page 240: ...r If the SNMP Mode is set to off the SNMP agent will be de activated and the related Community Name Trap Host IP Address Trap and all MIB counters are ignored SNMPv1 v2c This page lets you set SNMP v1 and v2 parameters This function is used to configure SNMP settings community name trap host and public traps An SNMP manager must pass the authentication by identifying both community names then it c...

Page 241: ...nity Enter the security name to map the community to the SNMP Groups configuration The allowed string length is 1 to 32 characters and the allowed content is ASCII characters 33 126 Source IP Enter the SNMP access source address A particular range of source addresses can be used to restrict source subnet when combined with a Source Mask Source Mask Enter the IP source mask Buttons Add New Entry Cl...

Page 242: ...ol Model VACM for access control For the USM entry the usmUserEngineID and usmUserName are the entry s keys In a simple agent usmUserEngineID is always that agent s own snmpEngineID value The value can also take the value of the snmpEngineID of a remote SNMP engine with which this user can communicate In other words if user engine ID equals system engine ID then it is local user otherwise it s rem...

Page 243: ...acters For SHA authentication protocol the allowed string length is 8 to 39 characters The allowed content is ASCII characters 33 126 Privacy Protocol Indicates the privacy protocol that this entry should belong to Possible privacy protocols are DES An optional flag to indicate that this user uses DES authentication protocol AES An optional flag to indicate that this user uses AES authentication p...

Page 244: ... SNMP Groups Configuration Parameter descriptions Security Model Indicates the security model that this entry should belong to Possible security models are v1 Reserved for SNMPv1 v2c Reserved for SNMPv2c usm User based Security Model USM Security Name A string identifying the security name that this entry should belong to The allowed string length is 1 31 characters and the allowed content is ASCI...

Page 245: ... Add New Entry Click to add a new entry to the table Specify the name configure the new entry then click Apply Delete Check to delete the entry It will be deleted during the next save Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 246: ...to Possible view types are Included An optional flag to indicate that this view subtree should be included Excluded An optional flag to indicate that this view subtree should be excluded In general if a view entry s view type is Excluded there should be another view entry existing with view type as Included and it s OID subtree should overstep the Excluded view entry OID Subtree The OID defining t...

Page 247: ...onfiguration Parameter descriptions Group Name A string identifying the group name that this entry should belong to The allowed string length is 1 31 characters and the allowed content is ASCII characters 33 126 Security Model Indicates the security model that this entry should belong to Possible security models are Any Any security model accepted v1 v2c usm v1 Reserved for SNMPv1 v2c Reserved for...

Page 248: ...rite View Name The name of the MIB view defining the MIB objects for which this request may potentially set new values The allowed string length is 1 31 characters and the allowed content is ASCII characters 33 126 Buttons Add New Entry Click to add a new entry Specify the name configure the new entry and click Apply Delete Check to delete the entry It will be deleted during the next save Apply Cl...

Page 249: ...nfigure RMON Statistics in the web UI 1 Click Security RMON Statistics and Configuration 2 Click Add New Entry 3 Specify the ID parameters 4 Click Apply Figure 13 3 1 RMON Statistics Configuration Parameter descriptions ID Indicates the index of the entry The valid range is 1 65535 Data Source Enter the port ID which you want to be monitored Buttons Delete Check to delete the entry It will be dele...

Page 250: ...efresh the page every 3 seconds 4 Click Refresh to manually refresh the page immediately Figure 13 3 2 RMON Statistics Status Overview Parameter descriptions ID Indicates the index of Statistics entry Data Source if Index The port ID which wants to be monitored Drop The total number of events in which packets were dropped by the probe due to lack of resources Octets The total number of octets of d...

Page 251: ... bad packets received that were between 128 to 255 octets in length 256 511 The total number of packets including bad packets received that were between 256 to 511 octets in length 512 1023 The total number of packets including bad packets received that were between 512 to 1023 octets in length 1024 1588 The total number of packets including bad packets received that were between 1024 to 1588 octe...

Page 252: ...5535 Data Source Enter the port ID which you want to be monitored Interval Sets the interval in seconds for sampling history statistics data The valid range is 1 3600 the default value is 1800 seconds Buckets Sets the maximum data entries associated this History control entry stored in RMON The valid range is 1 3600 the default value is 50 Buckets Granted The number of data to be saved in the RMON...

Page 253: ... Click First Entry Next Entry to change Entry 4 Select Start from Control Index and Sample Index and entries per page Figure 13 4 2 RMON History Overview Parameter descriptions History Index Indicates the index of History control entry Sample Index Indicates the index of the data entry associated with the control entry Sample Start The value of sysUpTime at the start of the interval over which thi...

Page 254: ... CRC Coll The best estimate of the total number of collisions on this Ethernet segment Utilization The best estimate of the mean physical layer network utilization on this interface during this sampling interval in hundredths of a percent Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately First Entry Updates the table...

Page 255: ...aming characters InUcastPkts The number of unicast packets delivered to a higher layer protocol InNUcastPkts The number of broad cast and multi cast packets delivered to a higher layer protocol InDiscards The number of inbound packets that are discarded even the packets are normal InErrors The number of inbound packets that contained errors preventing them from being deliverable to a higher layer ...

Page 256: ...hresholds possible sample types are RisingTrigger alarm when the first value is larger than the rising threshold FallingTrigger alarm when the first value is less than the falling threshold RisingOrFallingTrigger alarm when the first value is larger than the rising threshold or less than the falling threshold default Rising Threshold Rising threshold value 2147483648 2147483647 Rising Index Rising...

Page 257: ...ton to start over Web Interface To display RMON Alarm Status in the web UI 1 Click SNMP Alarm and Status 2 Check Auto refresh 3 Click Refresh to refresh the port detailed statistics 4 Click First Entry Next Entry to change Entry Figure 13 5 2 RMON Alarm Status Parameter descriptions ID Indicates the index of Alarm control entry Interval Indicates the interval in seconds for sampling and comparing ...

Page 258: ...s Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately First Entry Updates the table starting from the first entry in the table Next Entry Updates the table starting with the entry after the last entry currently displayed ...

Page 259: ...to 127 default is a null string Type Enter the notification of the event the possible types are None No SNMP log is created and no SNMP trap is sent Log Create an SNMP log entry when the event is triggered Snmp trap Send an SNMP trap when the event is triggered Log and trap Create an SNMP log entry and send an SNMP trap when the event is triggered Event Last Time Shows the value of sysUpTime at th...

Page 260: ...ently displayed entry as a basis for the next lookup When the end is reached the text No more entries is displayed in the table Use the First Entry button to start over Web Interface To display RMON Event Status in the web UI 1 Click SNMP Event and Status 2 At the Show entries dropdown choose how many items you want to be displayed per page 3 Check Auto refresh 4 Click Refresh to refresh the port ...

Page 261: ...services offered by VLAN aware bridges and provider bridges 3 describes the protocols and procedures used by maintenance points to maintain and diagnose connectivity faults within a maintenance domain 4 provides means for future expansion of the capabilities of maintenance points and their protocols Global Configure global CFM parameters on this page Figure 13 1 CFM Global Configuration Parameter ...

Page 262: ...ion Specific TLVs in CCMs generated by this switch Can be overridden by Domain and Service level configuration Enable Send Organization Specific TLVs in CCMs generated by this switch Disable Do not send Organisation Specific TLVs in CCMs generated by this switch Organisation Specific TLV OUI This is the three bytes OUI transmitted with the Organization Specific TLVs Enter as six characters 0 9 a f...

Page 263: ... Level MD MEG level of this domain Valid values are 0 7 About leak prevention Leak prevention is about discarding OAM PDUs with MEG levels lower than the MEP they hit when the OAM PDUs are ingressing the port on which the MEP resides and to discard OAM PDUs with MEG levels at or lower than the MEP s when the OAM PDUs are ingressing other ports There are two categories of architectures when it come...

Page 264: ...bal configuration decide if Sender ID TLVs will be included may be overridden in service Port Status Include or exclude Port Status TLV in CCMs generated by this Domain or let higher level determine may be overridden in Service Disable Do not include Port Status TLVs Enable Include Port Status TLVs Defer Let the global configuration decide if Port Status TLVs will be included may be overridden in ...

Page 265: ...escribed under the Name parameter below Name The contents of this parameter depend on the value of the format member Besides the limitations explained for each of them the following applies in general If the Domain Format is None the size of this cannot exceed 45 bytes If the Domain Format is not None the size of this cannot exceed 44 bytes If Format is String the following applies Length must be ...

Page 266: ...nd to this Service TLV option select Sender Id Default Sender ID TLV format to be used in CCMs generated by this Service None Do not include Sender ID TLVs Chassis Enable Sender ID TLV and send Chassis ID MAC Address Manage Enable Sender ID TLV and send Management address IPv4 Address ChassisManage Enable Sender ID TLV and send both Chassis ID MAC Address and Management Address IPv4 Address Defer ...

Page 267: ...efresh Check this box to automatically refresh the page every 3 seconds Refresh Click to manually update webpage values immediately Add New Entry Click to add a new Domain entry to the table Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 268: ...ration Thus if a VLAN MEP is created on the Port s PVID and PVID is configured to be untagged OAM PDUs will be transmitted untagged VLAN MEPs are created when the encompassing service has type VLAN Down MEP creation rules There are a few rules for creating Down MEPs 1 There can only be one Port MEP on the same port 2 There can only be one VLAN MEP on the same port and VLAN 3 A VLAN MEP must have a...

Page 269: ...M Remote CCM 3 DefErrorCCM Error CCM Received 4 DefXconCCM Cross Connect CCM Received 5 Present The time in milliseconds that defects must be present before a fault alarm notification is issued Default is 2500 ms Absent The time in milliseconds that defects must be absent before a fault alarm notification is reset Default is 10000 ms State Control CCM Enable or disable generation of continuity che...

Page 270: ... is enabled but an error state exists up UP indicates the MEP Admin State is enabled and no errors and defects exist State Fng The current state of the Fault Notification Generator state machine Values will be one of these State Description reset No defect has been present since reset timer expired or State Machine was last reset defect A defect is present but not for a long enough time to be repo...

Page 271: ...es CCM interval from at least one remote MEP E errorCCMdefect Received CCM from an unknown remote MEP ID or CCM interval mismatch X xconCCMdefect Received CCM with an MD MEG level smaller than configured or wrong MAID MEGID cross connect CCM Rx CCM PDUs received by this MEP Valid Total number of CCMs that hit this MEP and passed the validation test Invalid Total number of CCMs that hit this MEP an...

Page 272: ... maximum of 14 APS Instances Click the plus sign to add a row to the table Figure 14 1 APS Configuration Parameter descriptions CCM Tx Total number of CCM PDUs transmitted by this MEP APS The ID of the APS You can create a maximum of 14 APS instances Click on the linked text to display the APS Instance page see below where you can reset counters and issue commands Port The Port this flow is attach...

Page 273: ... WTR Wait To Restore timer When unchecked the port recovery mode is non revertive and traffic is allowed to remain on the protect port after a switch reason has cleared TxAps Choose whether this end transmits APS PDUs Only used for 1 1 unidirectional WTR When Rev is checked WTR Wait To Restore sets how many seconds to wait before restoring to the working port after a fault condition has cleared Th...

Page 274: ...the page every 3 seconds Refresh Click to manually update table values immediately APS Instance page When you click on the linked text in the APS column see above the APS Instance page displays as shown and described below Here you can reset counters and issue commands To be supplied Figure 14 2 APS Instance Parameter descriptions To be supplied ...

Page 275: ...rotecting MEP is not found Working MEP is not administrative active Instance is inactive because the Working MEP is not admin enabled Protecting MEP is not administrative active Instance is inactive because the Protecting MEP is not admin enabled Working MEP is not a Down MEP Instance is inactive because the Working MEP is not a Down MEP Protecting MEP is not a Down MEP Instance is inactive becaus...

Page 276: ...ual Switch sd Signal Degrade sfW Signal Fail for Working fs Forced Switch sfP Signal Fail for Protect lo Lockout TxAps ReSignal Transmitted requested signal according to G 8031 figure 11 2 TxAps BrSignal Transmitted bridged signal according to G 8031 figure 11 2 RxAps ReSignal Received requested signal according to G 8031 figure 11 2 RxAps BrSignal Received bridged signal according to G 8031 figur...

Page 277: ...DU frames transmitted RxCnt Valid Number of valid APS PDU frames received on the protect port RxCnt Invalid Number of invalid APS PDU frames received on the protect port Buttons Auto refresh Check this box to automatically refresh the page every 3 seconds Refresh Click to manually update values immediately ...

Page 278: ... Link mode Possible values are None There is no link Owner The Ring Protection Link mode is Owner Neighbor The Ring Protection Link mode is Neighbor RPL Port Indicates whether it is port0 or port1 that is the Ring Protection Link Not used if RPL Mode is None Ver ERPS protocol version v1 and v2 are supported Type Type of ring Possible values Major ERPS major ring G 8001 2016 clause 3 2 39 Sub ERPS ...

Page 279: ...Rev Revertive true or Non revertive false mode Guard Guard time in ms Valid range is 10 2000 ms WTR Wait to Restore time in seconds Valid range 1 720 sec Hold Off Hold off time in ms Value is rounded down to 100ms precision The valid range is 0 10000 ms Enable The administrative state of this APS ERPS Check to make it function normally and uncheck to make it cease functioning Oper The operational ...

Page 280: ...S TxRapsActive Specifies whether the switch is to be transmitting R APS PDUs on its ring ports cFOPTo Failure of Protocol R APS Rx Time Out UpdateTimeSecs Time in seconds since boot that this structure was last updated Request Request state according to G 8032 table 10 3 Version Version of received used R APS Protocol 0 means v1 1 means v2 etc Rb RB RPL blocked bit of R APS info See Figure 10 3 of...

Page 281: ... lantronix com Page 281 of 473 ERPS detailed instance page Click on the linked ERPS to display the ERPS detailed instance page as shown and described below Here you can reset counters and issue commands To be supplied Parameter descriptions To be supplied ...

Page 282: ...tion Parameter descriptions PTP External Clock Mode External Enable This selection box lets you configure External Clock output These values are possible True Enable the external clock output False Disable the external clock output default Adjust Method This selection box lets you configure the Frequency adjustment configuration as follows LTC Select Local Time Counter LTC frequency control Single...

Page 283: ...ype of the Clock Instance There are five Device Types Ord Bound clock s Device Type is Ordinary Boundary Clock P2p Transp clock s Device Type is Peer to Peer Transparent Clock E2e Transp clock s Device Type is End to End Transparent Clock Master Only clock s Device Type is Master Only Slave Only clock s Device Type is Slave Only Profile Indicates the profile used by the clock Buttons Add New Entry...

Page 284: ...rnal clock output configuration True Enable the external clock output False Disable the external clock output Adjust Method Shows the current Frequency adjustment configuration LTC Use Local Time Counter LTC frequency control Single Use SyncE DPLL frequency control if allowed by SyncE Independent Use an oscillator independent of SyncE for frequency control if supported by the hardware Common Use s...

Page 285: ...ck P2p Transp Clock s Device Type is Peer to Peer Transparent Clock E2e Transp Clock s Device Type is End to End Transparent Clock Master Only Clock s Device Type is Master Only Slave Only Clock s Device Type is Slave Only Port List Shows the ports configured for that Clock Instance Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the p...

Page 286: ...stance At the dropdown select a PTP Instance Clock Instance 0 3 or CMLDS Common Mean Link Delay Service 802 1AS Received counters SyncCount A counter that increments every time when synchronization information is received FollowUpCount A counter that increments every time when a Follow Up message is received PdelayRequestCount A counter that increments every time when a Pdelay_Req message is recei...

Page 287: ...y time a Pdelay_Req message is transmitted PdelayResponseCount A counter that increments every time a Pdelay_Resp message is transmitted PdelayResponseFollowUpCount A counter that increments every time a Pdelay_Resp_Follow_Up message is transmitted AnnounceCount A counter that increments every time an Announce message is transmitted Buttons Auto refresh Check this box to refresh the page automatic...

Page 288: ...ion Parameter descriptions Trap Destination Configurations Delete Check the box to delete the instance at the next save operation Name Enter the trap Configuration s name Indicates the trap destination s name Mode Select the trap destination mode of operation Possible modes are Enabled SNMP trap mode of operation is on Disabled SNMP trap mode operation is off Version Select the SNMP trap supported...

Page 289: ...NMP trap supported version 2c SNMPv3 Set SNMP trap supported version 3 Trap Community Indicates the community access string when sending SNMP trap packet The allowed string length is 0 to 63 characters and the allowed content is ASCII characters 33 126 Trap Destination Address Indicates the SNMP trap destination address It allows a valid IP address in dotted decimal notation x y z w It also allows...

Page 290: ...e SNMP trap security name SNMPv3 traps and informs using USM for authentication and privacy A unique security name is needed when traps and informs are enabled Buttons Add New Entry Click to add a new entry Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 291: ... Mode Set the Syslog server mode of operation When the mode is enabled on a syslog message is sent to the Syslog server The Syslog protocol is based on UDP communication and received on UDP port 514 The Syslog server will not send acknowledgments back to the sender since UDP is a connectionless protocol and it does not provide acknowledgments The Syslog packet is always sent even if the Syslog ser...

Page 292: ...D 1 of the system log entry Level The level of the system log entry The following level types are supported Debug debug level message Info informational message Notice normal but significant condition Warning warning condition Error error condition Crit critical condition Alert action must be taken immediately Emerg system is unusable Time Displays the log record by device time The date and time o...

Page 293: ... the number of items you want to be displayed per page Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Updates the system log entries starting from the current entry ID Clear Clear all the system log entries Previous Updates the system log entries turn to the previous page Next Updates the system log entries turn to the next page ...

Page 294: ...erity group Severity Level Each group has a severity level These eight severity levels are supported Emergency System is unusable Alert Action must be taken immediately Critical Critical conditions Error Error conditions Warning Warning conditions Notice Normal but significant conditions Information Information messages Debug Debug level messages Syslog Check the box to select this Group Name in S...

Page 295: ...me reference It may cause malfunctioning of TAS and PSFP if config change is issued before PTP time is in a Locked or Locking state A function which can delay the issue of config change until PTP is Locked Locking or a configurable time has passed can be configured here Figure 1 1 1 TSN Configuration Parameters Parameter descriptions Procedure At the dropdown select how to ensure the PTP state Tim...

Page 296: ...rt This value determines whether frame preemption is enabled checked or disabled unchecked in the MAC Merge sublayer in the transmit direction The default is checkbox unchecked Start without LLDP When this field is checked Frame Preemption will be active when Frame Preemption TX is checked The default is FALSE checkbox unchecked Verify Disable TX The value of the 802 3br aMACMergeVerifyDisableTx p...

Page 297: ...s no effect If a Gate Control List does contain SetAndHold and SetAndRelease operations then When Always Guard Band is Enabled a guard band is implemented on all queues both Express and Preemptible queues The default is Enabled When Always Guard Band is Disabled a guard band is only implemented on Preemptible queues TAS Port Configuration Parameters Port Port number of the switch Gate Enabled The ...

Page 298: ...tended when a new cycle configuration is installed The default value is 256 nanoseconds Base Time The Admin value of base time expressed as an IEEE 1588 Precision Time Protocol PTP timescale Config Change The Configuration Change parameter signals the start of a configuration change After a successful configuration change the configured Admin values will become the Oper values which are displayed ...

Page 299: ...arameter for the traffic class supported by the port This value is represented as an unsigned integer in the range 0 10240 A value of 0 is interpreted as the Maximum SDU size supported by the underlying MAC 10240 The default value of the Maximum SDU parameter is 1536 The Max SDU Size parameter is used to calculate the guard band time Maximum SDU 8 LINK_SPEED sec If frame preemption is enabled and ...

Page 300: ...aximum bandwidth allowed to be sent on the egress interface measured in bits per second CBS The FlowMeterCBS parameter contains an integer value that represents the CBS value for the flow meter in octets Committed Burst Shape CBS is the burst of data allowed to be sent even though it is above the CIR This is defined in number of bytes of data EIR Excess Information Rate is the average rate in byte...

Page 301: ...evel Objectives such as frame loss rate delay delay variation etc are applicable to these frames In theory with proper policing at the edge of the network and proper allocation of buffer and bandwidth resources within the network it is possible to guarantee lossless and timely delivery of all committed frames Yellow Excess frames Service Level Objectives are not applicable to these frames Excess f...

Page 302: ...ailable for a burst of frames sent at the interface speed to remain EIR conformant CF Coupling flag CF allows the choice between two modes of operation of the rate enforcement algorithm CM Color mode CM indicates whether the color aware or color blind property is employed by the bandwidth profile Color Aware Algorithm considers the color indication of incoming frames Incoming frames without a colo...

Page 303: ... Guide 33848 Rev A https www lantronix com Page 303 of 473 Buttons Add New Entry Click to add a new Flow Meter entry Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 304: ...entry in the Stream Gate Table SGI Enable Shows current stream gate instance status Enable or Disable SDU Size The MaximumSDUSize parameter specifies the maximum allowed frame size for the stream Any frame exceeding this value will be dropped A value of 0 denote that the MaximumSDUSize filter is disabled for this stream FMI ID The FlowMeterInstanceID parameter contains the index of an entry in the...

Page 305: ...it Cycle Time unit The unit used for specifying the administrative cycle time possible values are ns us or ms Cycle Time extension The administrative value of the CycleTimeExtension parameter for the gate The value is an unsigned integer number of nanoseconds Base Time The administrative value of the BaseTime parameter for the gate The value is a representation of a PTPtime value consisting of dec...

Page 306: ...e start of a configuration change for the gate when it is set to TRUE This should only be done when the various administrative parameters are all set to appropriate values Buttons Add New Entry Click to add a new PSPF SGI entry Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 307: ...rrently recovering from a failure Enable FRER instance enabled or disabled up Enabled down Disabled Ingress Streams List of ingress stream IDs FRER VLAN The VLAN ID that ingress flows get classified to Egress Ports The port numbers that this FRER instance will hit Algorithm The algorithm used by the Recovery function Vector or match History Length History length of the vector algorithm Reset Timeo...

Page 308: ...ce up No warnings down There are warnings use tooltip to see which Latent Error up No errors down There are latent errors Buttons Auto refresh Check this box to refresh the page automatically Refresh Click to refresh the page immediately Configuration Buttons You can modify each FRER instance in the table using these buttons ʘEdit Edits the FRER row ʘDelete Deletes the FRER from the table Add Adds...

Page 309: ...rations for the Port has executed a Set And Hold MAC operation and release FALSE when the sequence of gate operations has executed a Set And Release MAC operation The value of this object is release FALSE on system initialization Status Verify The status of the MAC Merge sublayer verification for the given device LocPreemptsupport The value is TRUE when preemption is supported on the port and FALS...

Page 310: ...cycle configuration is installed Base Time The operational value of base time expressed as an IEEE 1588 Precision Time Protocol PTP timescale Current Time The current time in PTPtime as maintained by the local system The value is a representation of a PTPtime value consisting of a 48 bit integer number of seconds and a 32 bit integer number of nanoseconds Only the seconds are displayed Config Chan...

Page 311: ...ameter for the Port The integer value indicates the number of entries TLVs in the operational Gate Control List GCL A link to the Gate Control List Status parameter see below Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to manually refresh the page immediately Gate Control List Status To be supplied ...

Page 312: ...am Gate Instances The MaxStreamGateInstances parameter defines the maximum number of stream gate instances that are supported by this Bridge component Max Flow Meter Instances The MaxFlowMeterInstances parameter defines the maximum number of flow meter instances that are supported by this Bridge component Supported List Max The SupportedListMax parameter defines the maximum value supported by this...

Page 313: ...ed to mark an entry for clearance in next Clear operation SFI ID The id of the stream filter instance Blocked due to oversize frame True if the filter has been blocked due to an oversize frame otherwise false Buttons Auto refresh Check this box to on to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Clear Clears the blocked flag for selected entries Cl...

Page 314: ... gate associated with this stream filter Not Passing Frame Count The NotPassingFramesCount counter counts received frames that do not pass the gate associated with this stream filter Passing SDU Count The PassingSDUCount counter counts received frames that pass the SDU size filter specification associated with this stream filter Not Passing SDU Count The NotPassingSDUCount counter counts received ...

Page 315: ... the CycleTimeExtension parameter for the gate The value is an unsigned integer number of nanoseconds Base Time The operational value of the BaseTime parameter for the gate The value is a representation of a PTPtime value consisting of a 48 bit integer number of seconds and a 32 bit integer number of nanoseconds Current Time The current time in PTPtime as maintained by the local system The value i...

Page 316: ... is a recent addition to 802 1Q that supports more than eight Traffic Class queues RX Octets The number of received octets GCL Length The operational value of the ListMax parameter for the gate The integer value indicates the number of entries TLVs in the operControlList GCL Status A link to the GCL parameter status Buttons Auto refresh Check this box to refresh the page automatically every 3 seco...

Page 317: ...rnal error Warning Operational warnings of the FRER instance up No warnings down There are warnings use tooltip to see Latent Error up No errors down There are latent errors Statistics Check to reset statistics counters Reset Function Click to perform a reset function If this FRER instance is in generation mode this is used to reset the sequence number of the sequence generator If this FRER instan...

Page 318: ...t numbers Ingress Stream List of Ingress stream Ids Out of Order IEEE 802 1CB 2017 frerCpsSeqRcvyOutOfOrderPackets Rogue IEEE 802 1CB 2017 frerCpsSeqRcvyRoguePackets Passed IEEE 802 1CB 2017 frerCpsSeqRcvyPassedPackets Discarded IEEE 802 1CB 2017 frerCpsSeqRcvyDiscardedPackets Lost IEEE 802 1CB 2017 frerCpsSeqRcvyLostPackets Tagless IEEE 802 1CB 2017 frerCpsSeqRcvyTaglessPackets Recovery Reset IEE...

Page 319: ...mmunication paths and in reserving bandwidth and time slots possibly utilizing more than one simultaneous path to achieve fault tolerance The set of Time Sensitive Networking standards includes IEEE 802 1Qat Stream Reservation Protocol SRP 802 1aq Shortest Path Bridging SPB 802 1Qcc 2018 Stream Reservation Protocol SRP Enhancements and Performance Improvements 802 1Qci Per Stream Filtering and Pol...

Page 320: ...irects the packet to the next network on its journey Note At the System IP Settings Advanced IP Settings page there is a Network Mode parameter where you can set the IP stack to act as a Host or a Router A Router mode entry is required for L3 Routing operations On the same page in the IP Routes section you must provide this parameter if you will be configuring L3 Routing as described in this chapt...

Page 321: ...ured lifetimes This way the authentication algorithms and keys are dynamically changed to implement dynamic authentication Figure 19 2 Router Key Chain Key IDs Configuration Parameter descriptions VLAN ID At the dropdown select the set of VIDs to display All or a specific VLAN ID Delete Click to delete an existing entry Key Chain Name The given name of the key chain Key ID The assigned key chain i...

Page 322: ... Add New Entry Click to add a new entry to the table Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values You can filter incoming and outgoing routes for a given IP interface using two Standard Access Lists one for input and one for output The standard Access List is a named ordered list of pairs of IP prefix IP address and IP mask length a...

Page 323: ... OSPF process Note that the router ID must be unique in the Autonomous System and value 0 0 0 0 is invalid since it is reserved for the default algorithm Auto The default algorithm will choose the largest IP address assigned to the router Specific User specified router ID The valid range is from 0 0 0 1 to 255 255 255 254 Default Passive Mode Configure all interfaces as passive interface by defaul...

Page 324: ... Metric Value User specified metric value for the RIP routes The field is significant only when the RIP protocol is supported on the device and argument RipRedistIsSpecificMetric is TRUE The valid range is 0 to 16777214 Auto The redistributed metric is the same as the original metric value Specific User specified metric for the RIP routes Stub router during startup period Configures OSPF to advert...

Page 325: ...he original metric value Specific User specified metric for the default route Default Route Redistribution Always Specifies to always advertise a default route into all external routing capable areas Otherwise the router only to advertise the default route when the advertising router already has a default route Administrative Distance The OSPF administrative distance Buttons Clear OSPF Process Cli...

Page 326: ... network information to other OSPF routers via those interfaces Figure 20 1 2 OSPF Network Area Configuration Parameter descriptions Delete Check to delete the entry It will be deleted during the next save Network Address IPv4 network address Mask Length IPv4 network mask length Area ID The OSPF area ID Buttons Add New Entry Click to add a new entry to the table Apply Click to save changes Reset C...

Page 327: ...e Interface identification Passive Interface Enable the interface as OSPF passive interface When an interface is configured as a passive interface sending of OSPF routing updates is suppressed so the interface does not establish adjacencies no OSPF Hellos The subnet of all interfaces both passive and active is advertised by the OSPF router Buttons Apply Click to save changes Reset Click to undo an...

Page 328: ...rea Configure the area as stub area NSSA Configure the area as not so stubby area NSSA No Summary The value is true to configure the inter area routes do not inject into this stub area Translator Role The OSPF NSSA translator role Candidate this NSSA ABR router will participate in the translator election Never this NSSA ABR router never translates Always this NSSA ABR router always translates Butt...

Page 329: ...a ID Auth Type The authentication type on an area is applied to all the interfaces belong to that area The authentication type on an IP interface or a virtual link overrides the authentication type on an area and is useful if different interfaces in the same area use different authentication types Specify the authentication type Simple Password Simple password authentication Message Digest MD5 dig...

Page 330: ...ion Parameter descriptions Delete Check to delete the entry It will be deleted during the next save Area ID The OSPF area ID Network Address The IPv4 network address Mask Length The IPv4 network mask length Advertise When the value is true it summarizes intra area paths from the address range in one summary LSA Type 3 and advertised to other areas Otherwise the intra area paths from the address ra...

Page 331: ...e hello packet is sent Dead Interval defines how long to wait for hello packets before declaring the neighbor dead The hello and dead interval values can be different based on the OSPF network type Dead Interval The time interval in seconds between hello packets The valid range is 1 65535 seconds and the default value is 40 seconds Retransmit Interval The time interval in seconds between Link Stat...

Page 332: ... Entry Click to add a new entry to the table Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Edit the Message Digest key In the MD Key field click the icon to edit the Message Digest key To be supplied Parameter descriptions To be supplied ...

Page 333: ...ter ID Hello Interval The time interval in seconds between hello packets The valid range is 1 to 65535 seconds and the default value is 10 seconds OSPF uses Hello packets and two timers to check if a neighbor is still alive Hello Interval defines how often the hello packet is sent Dead Interval defines how long to wait for hello packets before declaring the neighbor dead The Hello and the Dead int...

Page 334: ... key for the entry see below Buttons Add New Entry Click to add a new entry to the table Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values Edit the Message Digest key In the MD Key field click the icon to edit the Message Digest key To be supplied Parameter descriptions To be supplied Parameter descriptions It doesn t matter which key nu...

Page 335: ...it time in milliseconds between consecutive SPF calculations Last Executed SPF Time Stamp Time in milliseconds that has passed between the start of the SPF algorithm execution and the current time Min LSA Interval Minimum interval in seconds between link state advertisements Min LSA Arrival Maximum arrival time in milliseconds of link state advertisements External LSA Count Number of external link...

Page 336: ...the total LSAs for the particular area Router LSA Count Number of the router LSAs Type 1 of a given type for the particular area Router LSA Checksum The router LSAs Type 1 checksum Network LSA Count Number of the network LSAs Type 2 of a given type for the particular area Network LSA Checksum The network LSAs Type 2 checksum Summary LSA Count Number of the summary LSAs Type 3 of a given type for t...

Page 337: ...e DR for the network The router with the highest priority becomes the DR State The state of OSPF neighbor It indicates the functional state of the neighbor router Dead Time Dead timer It indicates the amount of time remaining that the router waits to receive an OSPF hello packet from the neighbor before declaring the neighbor down Interface Address The IP address Interface The network interface Bu...

Page 338: ...and BDR on the network to which this interface is connected Cost The cost of the interface Hello Hello timer A time interval that a router sends an OSPF hello packet Dead Dead timer Dead timer is a time interval to wait before declaring a neighbor dead The unit of time is the second Wait This interval is used in Wait Timer Wait timer is a single shot timer that causes the interface to exit waiting...

Page 339: ...rface is configured as a passive interface sending of OSPF routing updates is suppressed so the interface does not establish adjacencies no OSPF Hellos The subnet of all interfaces both passive and active is advertised by the OSPF router Transmit Delay The estimated time to transmit a link state update packet on the interface Buttons Auto refresh Check this box to refresh the page automatically ev...

Page 340: ...elect Intra Area Inter Area Border Router External Type 1 or External Type 2 The default is Intra Area Destination Enter the destination IP address The default is 0 0 0 0 0 Area Enter the area IP address The default is 0 0 0 0 NextHop Enter the IP address of the next hop The default is 0 0 0 0 Codes i Intra area Router Path I Inter area Router Path Table parameters Route Type The OSPF route type I...

Page 341: ...utgoing IsConnected The destination is connected directly or not Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Updates the table entries starting from the first available entry If the first entry of the table is displayed the button is disabled Updates the table entries ending at the entry prior to the first entr...

Page 342: ...rtisement It is not required for external LSA Link State Type At the dropdown select the type of the link state advertisement e g Router Network Summary Summary ASBR Network Use Network type of link state advertisement default Router Use Router type of link state advertisement Summary Use Summary type of link state advertisement Summary ASBR Use Summary type of link state advertisement Link State ...

Page 343: ...button is disabled Updates the table entries starting from the entry next to the last entry currently displayed If the last entry of the table is displayed the button is disabled Updates the table entries ending at the last available entry If the last entry of the table is displayed the button is disabled OSPF LSA Types OSPF uses a Link State Database LSDB and fills it with LSAs Link State Adverti...

Page 344: ...change the starting point in this table The default is 0 0 0 0 Enter the OSPF area ID of the link state advertisement It is not required for external LSA Link State Type At the dropdown select the type of the link state advertisement e g Router Network Summary Summary ASBR Network Use Network type of link state advertisement default Router Use Router type of link state advertisement Summary Use Su...

Page 345: ...ox to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Updates the table entries starting from the first available entry If the first entry of the table is displayed the button is disabled Updates the table entries ending at the entry prior to the first entry currently displayed If the first entry of the table is displayed the button is disabled Updates ...

Page 346: ...ault is 0 0 0 0 Enter the OSPF area ID of the link state advertisement It is not required for external LSA Link State Type At the dropdown select the type of the link state advertisement e g Router Network Summary Summary ASBR Network Use Network type of link state advertisement default Router Use Router type of link state advertisement Summary Use Summary type of link state advertisement Summary ...

Page 347: ...Type 2 Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Updates the table entries starting from the first available entry If the first entry of the table is displayed the button is disabled Updates the table entries ending at the entry prior to the first entry currently displayed If the first entry of the table is d...

Page 348: ...ault is 0 0 0 0 Enter the OSPF area ID of the link state advertisement It is not required for external LSA Link State Type At the dropdown select the type of the link state advertisement e g Router Network Summary Summary ASBR Network Use Network type of link state advertisement default Router Use Router type of link state advertisement Summary Use Summary type of link state advertisement Summary ...

Page 349: ...ld is significant when the Link State Type is Summary ASBR Summary Link State Type 3 4 Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Updates the table entries starting from the first available entry If the first entry of the table is displayed the button is disabled Updates the table entries ending at the entry p...

Page 350: ...er the OSPF area ID of the link state advertisement It is not required for external LSA Link State Type At the dropdown select the type of the link state advertisement e g Router Network Summary Summary ASBR Network Use Network type of link state advertisement default Router Use Router type of link state advertisement Summary Use Summary type of link state advertisement Summary ASBR Use Summary ty...

Page 351: ...ield is significant only when the Link State Type is Summary ASBR Summary Link State Type 3 4 Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Updates the table entries starting from the first available entry If the first entry of the table is displayed the button is disabled Updates the table entries ending at the ...

Page 352: ...y type of link state advertisement Link State ID Enter the OSPF link state ID It identifies the piece of the routing domain that is being described by the LSA Advertising Router Enter the advertising router IP address which originated the LSA The default is 0 0 0 0 Table Parameters Link State Type The type of the link state advertisement Link State ID The OSPF link state ID It identifies the piece...

Page 353: ... only when the Link State Type is External NSSA External Link State Type 5 7 Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Updates the table entries starting from the first available entry If the first entry of the table is displayed the button is disabled Updates the table entries ending at the entry prior to th...

Page 354: ...age will show the beginning entries of this table Figure 20 2 12 OSPF NSSA External Link State Database Entry fields Start from Link State Type At the dropdown select the type of the link state advertisement e g Router Network Summary Summary ASBR Network Use Network type of link state advertisement default Router Use Router type of link state advertisement Summary Use Summary type of link state a...

Page 355: ...nificant only when the Link State Type is External NSSA External Link State Type 5 7 ForwardAddress The IP address of forward address The field is significant only when the Link State Type is External NSSA External Link State Type 5 7 Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Updates the table entries startin...

Page 356: ... networks have been assigned the desired area IDs by checking the output of the show ip ospf interface command 9 OSPF Does Not Start The OSPF process cannot start on a router if a router ID cannot be established Check the output of show ip ospf to see if a router ID has been established If a router ID has not been established check to see if the router has an active interface preferably a loopback...

Page 357: ...OSPF6 router mode Router ID The OSPF6 Router ID in IPv4 address format A B C D When the router s OSPF6 Router ID is changed if there is one or more fully adjacent neighbors in the current OSPF6 area the new router ID will take effect after restart OSPF6 process Note that the router ID should be unique in the Autonomous System and that the value 0 0 0 0 is invalid since it is reserved for the defau...

Page 358: ...e 33848 Rev A https www lantronix com Page 358 of 473 Buttons Clear OSPF Process Click to reset the current OSPF6 process Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 359: ...d this tells OSPF not to send hello packets on certain interfaces Figure 21 1 2 OSPF6 Passive Interface Configuration Parameter descriptions Interface Interface identification Area ID The OSPF6 interface Area ID Only valid if Router ID is_specific_id is true Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 360: ...ment by forbidding some LSAs Figure 21 1 3 OSPF6 Area Stub Configuration Parameter descriptions Delete Check to delete the entry It will be deleted during the next save Area ID The OSPF6 area ID No Summary The value is true to configure the inter area routes to not inject into this stub area Buttons Add New Entry Click to add a new entry to the table Apply Click to save changes Reset Click to undo...

Page 361: ... 4 OSPF6 Area Range Configuration Parameter descriptions Delete Check to delete the entry It will be deleted during the next save Area ID The OSPF6 area ID Network Address IPv6 network address Mask Length IPv6 network mask length Advertise When the value is true it summarizes intra area paths from the address range in one Inter Area Prefix LSA Type 0x2003 and advertised to other areas Otherwise th...

Page 362: ...val The number of Hello packets to be sent per second The valid range is 1 65535 and the default value is 10 per second OSPF uses Hello packets and two timers to check if a neighbor is still alive Hello Interval defines how often the hello packet is sent Dead Interval defines how long to wait for hello packets before declaring the neighbor dead The hello and dead interval values can be different b...

Page 363: ...time in seconds of SPF calculations SPF Hold Time The Minimum hold time in milliseconds between consecutive SPF calculations SPF Max Wait Time The Maximum wait time in milliseconds between consecutive SPF calculations Last Executed SPF Time Stamp Time in milliseconds that has passed between the start of the SPF algorithm execution and the current time Attached Area Count Number of areas attached f...

Page 364: ...one area or not Area Type The OSPF6 area type There are five types of OSPF areas Backbone area area 0 Standard area Stub area Totally stubby area and Not so stubby area NSSA Active Interfaces Number of active interfaces attached in the area SPF Executed Times Number of times SPF algorithm has been executed for the particular area LSA Count The total number of LSAs for the particular area Buttons A...

Page 365: ...ting the DR for the network The router with the highest priority becomes the DR State The state of OSPF6 neighbor It indicates the functional state of the neighbor router Dead Time The Dead timer indicates the amount of time remaining that the router waits to receive an OSPF6 hello packet from the neighbor before declaring the neighbor down Interface Address The IP address Interface The network in...

Page 366: ...formation instead of having to exchange info with all other routers in the broadcast network mesh This reduces greatly the link state database of routers Two factors influence DR BDR election 1 Router ID The Router ID is the highest IP address of the device or the highest IP address among loopback addresses if one is configured on the Cisco router or can be configured manually by router id a b c d...

Page 367: ... 473 Passive Indicates if the interface is passive interface Transmit Delay The estimated time to transmit a link state update packet on the interface Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately ...

Page 368: ...nter Area The destination is an OSPF6 route which is located on inter area Border Router The destination is a border router External Type 1 The destination is an external Type 1 route External Type 2 The destination is an external Type 2 route Destination Network and prefix example 10 0 0 0 16 of the given route entry Area Indicates which area the route or router can be reached via to NextHop An I...

Page 369: ...st entry of the table is displayed the button is disabled Updates the table entries ending at the entry prior to the first entry currently displayed If the first entry of the table is displayed the button is disabled Updates the table entries starting from the entry next to the last entry currently displayed If the last entry of the table is displayed the button is disabled Updates the table entri...

Page 370: ...e Database Area ID The OSPF6 area ID of the link state advertisement It is not required for external LSA Link State Type The type of the link state advertisement Link State ID The OSPF6 link state ID It identifies the piece of the routing domain that is being described by the LSA Advertising Router The advertising router ID which originated the LSA Age in seconds The time in seconds since the LSA ...

Page 371: ...the routing domain that is being described by the LSA Advertising Router The advertising router ID which originated the LSA Age in seconds The time in seconds since the LSA was originated Options The OSPF6 options field present in OSPF6 hello packets which enables OSPF6 routers to support or not support optional capabilities and to communicate their capability level to other OSPF6 routers Sequence...

Page 372: ...Updates the table entries starting from the entry next to the last entry currently displayed If the last entry of the table is displayed the button is disabled Updates the table entries ending at the last available entry If the last entry of the table is displayed the button is disabled ...

Page 373: ...A Age The time in seconds since the LSA was originated Options The OSPF6 option field which is present in OSPF6 hello packets which enables OSPF6 routers to support or not support optional capabilities and to communicate their capability level to other OSPF6 routers Sequence The LS sequence number of the LSA Checksum The checksum of the LSA contents Length The Length in bytes of the LSA Buttons Au...

Page 374: ...ch enables OSPF6 routers to support or not support optional capabilities and to communicate their capability level to other OSPF6 routers Sequence The LS sequence number of the LSA Checksum The checksum of the LSA contents Length The Length in bytes of the LSA Number of Links The count of the LSA Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to...

Page 375: ...n seconds since the LSA was originated Sequence The LS sequence number of the LSA Checksum The checksum of the LSA contents Length The Length in bytes of the LSA Number of Links The count of the Prefixes Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the page immediately Updates the table entries starting from the first available entr...

Page 376: ... The advertising router ID which originated the LSA Age The time in seconds since the LSA was originated Options The OSPF6 option field present in OSPF6 hello packets enables OSPF6 routers to support or not support optional capabilities and to communicate their capability level to other OSPF6 routers Sequence The LS sequence number of the LSA Checksum The checksum of the LSA contents Length The Le...

Page 377: ...Updates the table entries starting from the entry next to the last entry currently displayed If the last entry of the table is displayed the button is disabled Updates the table entries ending at the last available entry If the last entry of the table is displayed the button is disabled ...

Page 378: ...ing described by the LSA Advertising Router The advertising router ID which originated the LSA Age The time in seconds since the LSA was originated Options The OSPF6 option field which is present in OSPF6 hello packets which enables OSPF6 routers to support or not support optional capabilities and to communicate their capability level to other OSPF6 routers Sequence The LS sequence number of the L...

Page 379: ...Updates the table entries starting from the entry next to the last entry currently displayed If the last entry of the table is displayed the button is disabled Updates the table entries ending at the last available entry If the last entry of the table is displayed the button is disabled ...

Page 380: ...nated the LSA Age The time in seconds since the LSA was originated Options The OSPF6 option field which is present in OSPF6 hello packets which enables OSPF6 routers to support or not support optional capabilities and to communicate their capability level to other OSPF6 routers Sequence The LS sequence number of the LSA Checksum The checksum of the LSA contents Length The Length in bytes of the LS...

Page 381: ...able entries ending at the entry prior to the first entry currently displayed If the first entry of the table is displayed the button is disabled Updates the table entries starting from the entry next to the last entry currently displayed If the last entry of the table is displayed the button is disabled Updates the table entries ending at the last available entry If the last entry of the table is...

Page 382: ... then it MUST have at least one interface in Area 0 8 OSPF Area IDs When using multiple network area statements in the OSPF configuration the order of the statements is critical Check that the networks have been assigned the desired area IDs by checking the output of the show ip ospf interface command 9 OSPF Does Not Start The OSPF process cannot start on a router if a router ID cannot be establis...

Page 383: ...5 If a route has more than 15 hops the route will be discarded as invalid RIP is susceptible to routing loops and uses mechanisms such as split horizon and others to prevent routing loops RIP Global Configuration This page lets you set RIP global parameters Figure 22 1 1 RIP Global Configuration Parameter descriptions RIP Router Mode At the dropdown select Enable or Disable the RIP router operatin...

Page 384: ...________________ Metric Value A RIP message includes a metric number of hops for each route Select Auto default or Specific If Specific enter a specific metric value The valid range is 1 to __ The default is 1 Default Metric Value ______________________________________________________________ Default Route At the dropdown select the default route to use Default Passive Mode Transmission of routing...

Page 385: ...on Network Configuration menu path Figure 22 1 2 RIP Network Configuration Parameter descriptions Delete Click to delete the table entry Network Address Enter the IP address of the network Mask Length Enter the netmask of the network Buttons Add New Entry Click to add a new entry to the table Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved va...

Page 386: ...System RIP Configuration Neighbor Configuration menu path Figure 22 1 3 RIP Neighbor Configuration Parameter descriptions Delete Click to delete the table entry Neighbor Address Enter the IP address of the neighbor device Buttons Add New Entry Click to add a new entry to the table Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 387: ...n but don t talk This feature can reduce the routing load on the CPU by reducing the number of interfaces on which a protocol will communicate Use this function only if you are sure the routing protocol doesn t need to talk to anything on the specified interface Navigate to the System RIP Configuration Passive Interface menu path Figure 22 1 4 RIP Passive Interface Configuration Parameter descript...

Page 388: ...t Horizon Split Horizon prevents routing loops in distance vector routing protocols by prohibiting a router from advertising a route back onto the interface from which it was learned Receive Version At the dropdown select _______ _______ or ________ The default is Null Authentication Split Horizon Mode Enter the ________________ and ______________ RIP is susceptible to routing loops it uses the sp...

Page 389: ...n be adjusted as desired You must set the offset for each interface the default offset is 1 Navigate to the System RIP Configuration Offset List menu path Figure 22 1 6 RIP Offset List Configuration Parameter descriptions Delete Click the button to delete an existing entry from the table and the switch VLAN ID Enter the VLAN ID for entry Direction Enter the direction for entry Access List Name Ent...

Page 390: ... Figure 22 2 1 RIP Global Status Parameter descriptions Status Information Displays the current RIP router status information RIP Router Mode Displays the current RIP router mode setting ______________ or Disabled Buttons Auto refresh Check this box to automatically refresh the page every 3 seconds Refresh Click to manually refresh the page immediately Clear RIP Process Click to reset the current ...

Page 391: ...In addition these input fields will upon a Refresh button click assume the value of the first displayed entry allowing for continuous refresh with the same start input field Figure 22 2 2 RIP Interface Status Parameter descriptions Interface Displays the current RIP Interface Send Version Displays the currently configured send version v1 or v2 Receive Version Displays the currently configured rece...

Page 392: ...descriptions Gateway Displays the gateway ____________ Last Update Time Displays the time of the last update Version Displays the RIP peer version v1 or v2 Received Bad Packets Displays the number of bad packets received Received Bad Routes Displays the number of bad routes received Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to refresh the p...

Page 393: ... Next Hop Displays the entry s next hop IP address Metric Displays the entry s metric From Displays the entry s _________________ External Metric Displays the entry s external metric Tag Displays the entry s _____________________ Uptime Displays the amount of time that the entry has been running Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Click to ...

Page 394: ...Passive interface An interface that is configured as passive will not send any RIP updates 4 Version mismatch RIP has two versions both routers must use the same version 5 Max hop count When the hop count is 16 the network is considered unreachable If the network is small check for offset lists that increase the metric 6 Route Filtering Filters might prevent RIP updates from being sent or received...

Page 395: ...ount Specify the number of Ping requests sent The default value is 5 The valid range is 1 60 TTL Value Specify the Time To Live TTL field value in the IPv4 header The default value is 64 seconds The valid range is 1 255 seconds VID for Source Interface This field can be used to force the test to use a specific local VLAN interface as the source interface Leave this field empty for automatic select...

Page 396: ... type ICMP ECHO_REPLY will always be 8 bytes more than the requested payload data size the difference is the ICMP header The page refreshes automatically until responses to all packets are received or until a timeout occurs Ping output looks like this PING 172 16 1 1 172 16 1 1 from 172 16 1 10 56 data bytes 64 bytes from 172 16 1 1 seq 0 ttl 64 time 2 034 ms 64 bytes from 172 16 1 1 seq 1 ttl 64 ...

Page 397: ...e a specific local interface with the specified port number as the source interface The specified port must be configured with a suitable IP address Leave this field empty for automatic selection based on routing configuration Note You may only specify either the Source Port Number or the IP Address for the source interface Address for Source Interface This field can be used to force the test to u...

Page 398: ...from 2001 1 seq 1 ttl 64 time 2 009 ms 64 bytes from 2001 1 seq 2 ttl 64 time 1 852 ms 64 bytes from 2001 1 seq 3 ttl 64 time 2 869 ms 64 bytes from 2001 1 seq 4 ttl 64 time 1 845 ms 2001 01 ping statistics 5 packets transmitted 5 packets received 0 packet loss round trip min avg max 1 845 2 138 2 869 ms Buttons Start Click the Start button to start to ping the target IP Address New Ping Click to ...

Page 399: ...er is 3 seconds The valid range is 1 86400 First TTL Value Determines the value of the Time To Live TTL field in the IPv4 header in the first packet sent The default number is 1 The valid range is 1 30 Max TTL Value Determines the maximum value of the Time To Live TTL field in the IPv4 header If this value is reached before the specified remote host is reached the test stops The default number is ...

Page 400: ...instead Print Numeric Addresses By default the traceroute command will print out hop information using a reverse DNS lookup for the acquired host IP addresses This may slow down the display if the DNS information is not available Selecting this option will prevent the reverse DNS lookup and force the traceroute command to print numeric IP addresses instead Buttons Start Click the Start button to s...

Page 401: ...maximum value of the Time To Live TTL field in the IPv4 header If this value is reached before the specified remote host is reached the test stops The default is 255 The valid range is 1 255 VID for Source Interface This field can be used to force the test to use a specific local VLAN interface as the source interface Leave this field empty for automatic selection based on routing configuration No...

Page 402: ... 10M Cable is link up and correct Speed is 10Mbps 100M Cable is link up and correct Speed is 100Mbps 1G Cable is link up and correct Speed is 1Gbps Link Down Link down or cable is not correct Test Result Test Result of the cable OK Correctly terminated pair Abnormal Incorrectly terminated pair or link down Length The length in meters of the cable pair The resolution is 3 meters When Link Status is...

Page 403: ...Click the Apply button to save the settings 5 To cancel the settings click the Reset button to revert to previously saved values Figure 23 6 Mirror Configuration Parameter descriptions Monitor Session At the dropdown select a Session number instance Monitor Destination Port The Port to output the mirrored traffic also known as the mirror port Frames from ports that have either source rx or destina...

Page 404: ...antronix SM12XPA Web User Guide 33848 Rev A https www lantronix com Page 404 of 473 Buttons Apply Click to save changes Reset Click to undo any changes made locally and revert to previously saved values ...

Page 405: ...Flow collector and configuration of per port flow and counter samplers sFlow configuration is not persisted to non volatile memory which means that a reboot or master change will disable sFlow sampling Web Interface To configure sFlow in the web UI 1 Click Diagnostics sFlow and Configuration 2 Set the sFlow parameters 3 Click Apply to save the settings 1 To cancel the settings click the Reset butt...

Page 406: ...ow receiver listens to sFlow datagrams If set to 0 zero the default port 6343 is used Timeout The number of seconds remaining before sampling stops and the current sFlow owner is released While active the current time left can be updated with a click on the Refresh button If locally managed the timeout can be changed on the fly without affecting any other settings Max Datagram Size The maximum num...

Page 407: ...ocally and revert to previously saved values Release Click to release the current owner and disable sFlow sampling The Release button is disabled if sFlow is currently unclaimed If configured via SNMP the release must be confirmed a confirmation request will display Refresh Click to manually refresh the page immediately Note that unsaved changes will be lost ...

Page 408: ...igured via Web or CLI Owner contains Configured via local management If sFlow is currently configured via SNMP Owner contains a string identifying the sFlow receiver IP Address Hostname The IP address or hostname of the sFlow receiver Timeout The number of seconds remaining before sampling stops and the current sFlow owner is released Tx Successes The number of UDP datagrams successfully sent to t...

Page 409: ...vided into Rx and Tx flow samples where Rx flow samples contains the number of packets that were sampled upon reception ingress on the port and Tx flow samples contains the number of packets that were sampled upon transmission egress on the port Counter Samples The total number of counter samples sent to the sFlow receiver originating from this port Buttons Auto refresh Check this box to refresh t...

Page 410: ... startup config The startup configuration for the switch read at boot time default config A read only file with vendor specific configuration This file is read when the system is restored to default settings Save running config to startup config This copies the running config file to startup config ensuring that the current active configuration will be used at the next reboot Web Interface To save...

Page 411: ...e while to complete as the file must be prepared before backup Web Interface To perform a configuration backup in the web UI 1 Click Maintenance Configuration and Backup 2 Select a File Name 3 Click the Download Configuration button Figure 24 1 2 Backup Configuration Parameter descriptions running config A virtual file that represents the currently active configuration on the switch This file is v...

Page 412: ...ntenance Configuration and Restore 2 Click the Browse button and browse to and select a file 3 Select a File Name If you select running config select Replace mode or Merge mode 4 Click Restore Figure 24 1 3 Restore Configuration Parameter descriptions running config A virtual file that represents the currently active configuration on the switch This file is volatile Replace mode The current config...

Page 413: ...ace To activate a configuration in the web UI 1 Click Maintenance Configuration and Activate 2 Select a configuration file to activate The previous configuration will be completely replaced potentially leading to loss of management connectivity 3 Note The activated configuration file will NOT be saved to startup config automatically 4 Click the Activate Configuration button Figure 24 1 4 Activate ...

Page 414: ...switch to its default configuration Web Interface To delete a configuration file in the web UI 1 Click Maintenance Configuration and Delete 2 Select a configuration file to delete 3 Click the Delete Configuration File button Figure 24 1 5 Delete Configuration File Parameter descriptions File Name Select the filename radio button and enter the desired file name Buttons Delete Configuration File Cli...

Page 415: ...s To restart the switch in the web UI 1 Click Maintenance and Restart Device 2 At the Are you sure prompt click Yes Figure 24 2 Restart Device Parameter descriptions Restart Device You can restart the switch on this page After restart the switch will boot normally Non Stop PoE Check the box if you want the switch to keep providing PoE power to the PDs during the restart process Buttons Yes Click Y...

Page 416: ...tch to its Factory Defaults in the web UI 1 Click Maintenance and Factory Defaults 2 Check the Keep IP setup box if you want to keep the existing IP setup 3 At the Are you sure prompt click Yes Figure 24 3 Factory Defaults Buttons Keep IP Configuration Check the box if you want to keep the current IP configuration Yes Click to Yes button to reset the configuration to Factory Defaults No Click to c...

Page 417: ...nterface To update switch firmware in the web UI 1 Click Maintenance Firmware and Firmware Upgrade 2 Browse to and select the desired firmware file 3 Click the Upload button Figure 24 4 1 Firmware Upgrade Parameter descriptions Browse Click to search for the Firmware URL and filename Non Stop PoE Check the box if you want the switch to keep providing PoE power to the PDs during the firmware upgrad...

Page 418: ...view firmware information 2 Click the Activate Alternate Image button to swap firmware versions Figure 24 4 2 Firmware Selection Software Image Selection Image The file name of the firmware image from when the image was last updated Version The version of the firmware image Date The date and time that the firmware was produced Buttons Non Stop PoE Check the box if you want the switch to keep provi...

Page 419: ... issues Monitor and analyze traffic by Day Week Port Device Perform health checks with thresholds Auto Alarm on error conditions Management Pop up window interface Device Type Device Name MAC Address IP Address and PoE Wattage used by the PD Remotely log in configure monitor and reboot PDs Visibility Device Management System Visibility Click to enlarge image Topology View provides end to end visib...

Page 420: ...time will be selected as the DMS Controller switch If two switches have same up time the switch with the smaller MAC address will be assigned as the DMS Controller Switch 2 You can set two switches to High Priority for Controller Switch redundancy 3 The DMS Controller Switch should be put in a secure location such as a server room with access authority limited to IT staff 4 The DMS Controller Swit...

Page 421: ...or Disable the DMS function globally The default is Enabled Controller Priority At the dropdown select a Controller Priority when enabling DMS High High priority this switch will become the Controller Master switch Mid Mid level priority Low Low level priority default Non the switch will never become the Controller switch default Total Device Displays the number of IP devices that are detected and...

Page 422: ... a Google Cloud Platform billing account to access Google core product If not DMS Map View will not be able to load Google Maps correctly Visit the Google website below and follow the directions to get an API key https developers google com maps documentation directions get api key Key Enter the Google API Key Buttons Apply Click to save changes ...

Page 423: ...the network connectivity devices such as PC SWITCH AP IP Cam IP Phone or Others Model Name The model name of the network connectivity devices Device Name The device name of the network connectivity devices MAC The mac address of the device IP Address The IP address of the network connectivity devices Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Refr...

Page 424: ...vice s Name Edit HTTP Port Entry field to edit a device s HTTP port number Edit User Name Entry field to edit a device s user name Edit User Password Entry field to edit a device s user password Buttons Auto refresh Check this box to refresh the page automatically every 3 seconds Refresh Refreshes the displayed table starting from the input fields Edit Device Name Add the input fields for editing ...

Page 425: ...on status auto alarm notifications on critical events and remotely reboot a PoE device You can use the DMS platform to solve the abnormal issues anytime and anywhere by tablet or smart phone and keep the network works smoothly Click Graphical Monitoring Topology View to see a visual representation of the network topology Click the Setting icon to display additional right hand menu items Icon with ...

Page 426: ...w and advanced search functions for the topology Device Search Console Functions Filter devices by Device Type Search devices by key words full text search Save the whole View to SVG PNG or PDF Group Setting Console Uses MAC based VLAN to isolate groups One IP device only can join one VLAN group Functions Group devices by filtering searching clicking device icons or specifying OUI Assign VLAN ID o...

Page 427: ...t Provides 4 ranges for inputting manually In this case we suggest you adjust the switch subnet mask to 255 255 0 0 also to avoid IP devices that can t be recognized Icon with screen view type Click it to change to Full Screen View of Topology or return to the Normal View Icon with information list Select what kind of information should be shown on the topology view of each device Up to three item...

Page 428: ...e device consoles for further actions Dashboard Console displays device info and related actions for the device Different device types support different function If an IP device is recognized as DMS switch it will support Upgrade and Find Switch function If an IP device is recognized as PoE device it will support more Reboot function in addition to Upgrade If an IP device is recognized as IP Cam v...

Page 429: ...the device connection is alive or not by ping Cable Status Green icon Cable is connected correctly Red icon Cable is not connected correctly User can check the distance info XX meters to identify the broken cable location Connection Green icon Device is pinged correctly Red icon Device is not transmitted receiving data correctly Which means it might not be pinged successfully Reboot Click Reboot A...

Page 430: ...e User admin rebooted device No Message Monitor Console It displays the traffics for device health check purpose For each IP device except DMS switches you can set a threshold of throughput for IP devices and get notification when throughput is lower or higher than settings If both values are 0 it means the function is disabled Polling interval is 1 second when the page is closed the Polling inter...

Page 431: ... configuration page 1 Configure the PoE Auto Checking parameter at Switch PoE Management PoE Auto Checking The default value of the Failure Action parameter is Reboot Remote PD Note that PoE Auto Checking is called PoE Auto Power Reset in earlier firmware versions 2 Configure PoE parameters at DMS Graphical Monitoring Topology View Left click on the switch icon to display its device configuration ...

Page 432: ... plan IP devices installation locations by dragging the uploaded floor images into place Icon with plus and minus marks Zoom in and zoom out the floor view user can scroll up down with mouse to achieve the same purpose There is a Setting icon in the upper right corner When you click the icon it will pop up Device Config export floor view and advanced search functions for the device You can click i...

Page 433: ...he case we suggest you adjust the switch s subnet mask to 255 255 0 0 also to avoid IP devices that can t be recognized Floor View Anchor devices onto Floor Maps Find device location instantly 10 Maps can be stored per Switch IP Surveillance VoIP WiFi applications Other features same as Topology View To place and remove a device icon o Select a device and click its icon from the device list o The ...

Page 434: ...alid API key and a Google Cloud Platform billing account to access a Google core product If not DMS Map View will not be able to load Google Maps correctly See DMS Management Map API Key on page 420 There is a Settings icon in the upper right corner When you click the icon it will pop up Device Config export floor view and advanced search functions for the device 1 Device Search Console Function A...

Page 435: ...or return to the Normal View Map View Anchor Devices onto Google Maps Find Devices Instantly from Map View On Line Search Company Address Outdoor IP Cam WiFi Applications Other Features same as Topology View To place and remove a device icon o Select a device and click its icon from the device list o The device icon will show on the map s default location o Click and hold left mouse to drag and dr...

Page 436: ...in size 1 At the default Floor Image Management page click the Choose File icon 2 Navigate to and select a JPEG or PNG image 3 Enter a Name and click the Add button to display the selected image Select Check the checkbox to select an image from the list No Floor Image instance number maximum 10 image files File Name Displays the file name information e g Floor Plan 1st Floor 192 168 1 77 Image Dis...

Page 437: ...pload When done a snapshot will be available on screen Delete If you need to remove an existing floor map select its checkbox and click Delete to remove Messages Only jpg png are allowed displays if you selected a file type other than JPG or PNG Click OK to clear the message and select a PNG or JPG file Example ...

Page 438: ... The device name of the network connectivity devices MAC The mac address of the device IP Address The IP address of the network connectivity devices Version The Version of the network connectivity devices Buttons Refresh Refreshes the displayed table starting from the input fields Show x entries At the dropdown select the number of devices to display per page Search Enter a key word to search for ...

Page 439: ...Lantronix SM12XPA Web User Guide 33848 Rev A https www lantronix com Page 439 of 473 Example ...

Page 440: ...a week s traffic by selecting the check circle on top The same applies to the selection of Rx Tx traffic A single port s traffic is shown at the lower half of the screen Total Rx Tx Select the set of data to be displayed The default is Total yy mm dd Select the date of data displayed Day Week Select a day s worth of data or a week s worth of data to be displayed Device List Displays the set of dis...

Page 441: ...e Traffic Monitor feature is only available on master switch added at FW v8 40 1523 Meaning You clicked on Traffic Monitor at DMS Traffic Monitor but this switch is not the DMS Controller Master Switch Recovery Either make this switch the DMS Controller Master Switch or use the designated DMS Controller Master Switch for traffic monitoring See DMS Information page on page 419 ...

Page 442: ... Group and Config 3 Connect all switches and make sure DMS is working Set all switches with different IP addresses and in the same IP segment Make sure gateway IP address is configured 4 Left click the desired device icon to display the options 5 Enable the TFTP server and set the correct image path 6 Click the switch icon and then click the Upgrade button in the Dashboard 7 Enter the TFTP server ...

Page 443: ... Guide 33848 Rev A https www lantronix com Page 443 of 473 8 Click Apply to start the FW upgrade and save to Running config 9 Observe the upgrade status until completion Messages Starting please wait Error Firmware download fail ...

Page 444: ...played in DMS Topology View Problem DMS Connectivity diagnostics fails to ICMP reachable device Description DMS displays a device which is reachable via ICMP ping as failing the connection status in diagnostics Cable status displays as OK Resolution Contact Technical Support See Contact Us below Problem DMS will discover the device type name and model of some cameras and hosts but others are displ...

Page 445: ... supported on VLAN 1 When the DHCP Per Port function is enabled the switch software will automatically create the related DHCP pool named DHCP_Per _Port Once the DHCP Per Port function is enabled on one switch IPv4 DHCP client at VLAN1 mode DMS DHCP mode DHCP server mode are all limited to be enabled at the same time an error message displays if attempted If the DHCP server pool has been configure...

Page 446: ... be allocated a different IP range To configure DHCP Per Port via the Web UI navigate to the Configuration System IP menu path Parameter descriptions The DHCP Per Port parameters and buttons are described below DHCP Per Port Mode at the dropdown select Enable or Disable the DHCP Per Port function globally The default is Disabled IP enter the IPv4 IP address range to be used when the DHCP Per Port ...

Page 447: ...ate success displays Click the OK button to clear the message If any entries are invalid an error message displays Click the OK button to clear the message and enter valid values then click the Apply button again Reset Click to undo any changes made locally and revert to previously saved values To monitor DHCP Per Port status navigate to the Monitor System IP Status menu path ...

Page 448: ...ange entered for the DHCP Per Port function was invalid Recovery 1 Click the OK button to clear the webpage message 2 Re configure DHCP Per Port See the DHCP Per Port Mode Configuration section above On the screen below the range should be something like 192 168 1 80 192 168 1 85 to be valid Message The value of DNS Server must be a valid IP address in dotted decimal notation x y z w Meaning You e...

Page 449: ...ived frames b Blocked ring ports drop all the received frames except the MRP control frames c Forwarding ring ports forward all the received frames 5 Ring Reconfiguration speed is 200 ms for 50 switches on average 6 The MRM continuously sends Watchdog Packets into the ring network to verify communication between ring points 7 During normal operation no packets are transmitted over the redundant li...

Page 450: ...le below shows SISPM1040 384 LRT C switches one MRM and five MRCs Figure MRP Sample Setup B 5 MRP Pre Requisites General The following are required to perform MRP setups 1 Spanning Tree must be disabled at Configuration Spanning Tree CIST Port 2 Other Ring technologies must also be disabled G 8031 EPS G 8032 ERPS Rapid Ring Ring To Ring etc 3 Only one MRM Manager is supported per ring 4 Other pre ...

Page 451: ...ration MRP to initially configure two MRP Domains 2 Click Apply to save and then click the Edit button to configure the first MRP Domain Domian1 3 Edit the Domain Settings as required Click Apply to save the message Domain is enabled displays Click OK to clear the webpage message The Media Redundancy Protocol Configuration page displays again ...

Page 452: ...Click the Edit button to display the second MRP Domain Domian2 5 Edit the Domain Settings as required Click Apply to save the message Domain is enabled displays Click OK to clear the webpage message 6 When the Media Redundancy Protocol Configuration page displays again verify the settings ...

Page 453: ...box for UUID 8 Select the Primary and Secondary Port IDs 9 Enable Check Media Redundancy 10 Leave other settings as default 11 For the devices acting as MRCs in the Ring Domain Configuration Client Role page assign the first Primary and Secondary Port IDs for the ring ports 12 Enter the same VLAN ID as in step 4 above 13 Link Down Interval should be 20ms Link Up Interval should be 20ms Link change...

Page 454: ...traffic loss after path reconfiguration Example 3 MRP Roles Set in Web UI Setup This setup shows that the MRP can have both Manager and Undefined roles Procedure 1 Disable any other Ring technologies and disable Spanning tree at Configuration Spanning Tree CIST Port 2 BLOCKED State Supported should be enabled By default one ring port will be disabled for loop free communication 3 Configure ring po...

Page 455: ...e for broadcast packets See section 16 ERPS on page 278 for general G 8032 ERPS configuration information Basic Concepts There are some basic concepts that support ERPS Ring Ring Protection Link RPL Link designated by mechanism that is blocked during Idle state to prevent loop on Bridged ring RPL Owner node Node connected to RPL that blocks traffic on RPL during Idle state and unblocks during Prot...

Page 456: ...m Page 456 of 473 Sample Configuration Major Ring and Sub Ring 4 Switches Major SW 1 SW 2 SW 4 Sub SW 2 SW 3 SW 4 VLANs APS Data 10 20 5 RPL Mode Major Sub Major Sub Major Sub Owner Owner Neighbor Neighbor None None Switch Switch Switch Switch Switch Switch 1 3 2 2 4 4 ...

Page 457: ...VLAN MAC MEP ID Peer MAC Peer MEP ID 1 3 10 00 C0 F2 49 39 5F 1 00 40 C7 1C C7 30 4 2 4 10 00 C0 F2 49 39 60 5 00 C0 F2 53 EF FC 5 Note All MEPs are programed the same under the Functional Configuration Continuity Check Check Enable Priority 7 Frame rate 1f sec APS Protocol Check Enable Priority 7 Cast Multi Type R APS ERPS ERPS ID Port 0 Port 1 Port 0 SF Port 1 SF Port 0 APS Port 1 APS Ring RPL P...

Page 458: ...MEP ID 1 3 20 00 40 C7 1C C7 2F 3 00 C0 F2 53 F0 BA 8 2 4 10 00 C0 F2 49 39 60 4 00 C0 F2 49 39 5F 1 3 5 10 00 40 C7 1C C7 31 9 00 C0 F2 53 EF FE 10 Note All MEPs are programed the same under the Functional Configuration Continuity Check Check Enable Priority 7 Frame rate 1f sec APS Protocol Check Enable Priority 7 Cast Multi Type R APS ERPS ERPS ID Port 0 Port 1 Port 0 SF Port 1 SF Port 0 APS Por...

Page 459: ...t VLAN MAC MEP ID Peer MAC Peer MEP ID 1 3 20 00 C0 F2 53 F0 B9 7 00 C0 F2 53 EF FD 6 2 4 20 00 C0 F2 53 F0 BA 8 00 40 C7 1C C7 2F 3 Note All MEPs are programed the same under the Functional Configuration Continuity Check Check Enable Priority 7 Frame rate 1f sec APS Protocol Check Enable Priority 7 Cast Multi Type R APS ERPS ERPS ID Port 0 Port 1 Port 0 SF Port 1 SF Port 0 APS Port 1 APS Ring RPL...

Page 460: ... Peer MEP ID 1 3 10 00 C0 F2 53 EF FC 5 00 C0 F2 49 39 60 2 2 4 20 00 C0 F2 53 EF FD 6 00 C0 F2 53 F0 B9 7 3 5 10 00 C0 F2 53 EF FE 10 00 40 C7 1C C7 31 9 Note All MEPs are programed the same under the Functional Configuration Continuity Check Check Enable Priority 7 Frame rate 1f sec APS Protocol Check Enable Priority 7 Cast Multi Type R APS ERPS ERPS ID Port 0 Port 1 Port 0 SF Port 1 SF Port 0 A...

Page 461: ... 32 time 1ms TTL 64 Reply from 192 168 1 85 bytes 32 time 1ms TTL 64 Reply from 192 168 1 85 bytes 32 time 1ms TTL 64 Reply from 192 168 1 85 bytes 32 time 1ms TTL 64 Reply from 192 168 1 85 bytes 32 time 1ms TTL 64 Reply from 192 168 1 85 bytes 32 time 1ms TTL 64 Reply from 192 168 1 85 bytes 32 time 1ms TTL 64 Reply from 192 168 1 85 bytes 32 time 1ms TTL 64 Reply from 192 168 1 85 bytes 32 time...

Page 462: ...ms TTL 64 Reply from 192 168 1 125 bytes 32 time 1ms TTL 64 Reply from 192 168 1 125 bytes 32 time 1ms TTL 64 Reply from 192 168 1 125 bytes 32 time 1ms TTL 64 Reply from 192 168 1 125 bytes 32 time 1ms TTL 64 Reply from 192 168 1 125 bytes 32 time 7ms TTL 64 Reply from 192 168 1 125 bytes 32 time 1ms TTL 64 Cable Disconnect Reply from 192 168 1 125 bytes 32 time 1ms TTL 64 Reply from 192 168 1 12...

Page 463: ...ts interface GigabitEthernet 1 1 interface GigabitEthernet 1 2 interface GigabitEthernet 1 3 no spanning tree switchport trunk allowed vlan 5 10 switchport trunk vlan tag native switchport mode trunk poe mode disable interface GigabitEthernet 1 4 no spanning tree switchport trunk allowed vlan 5 20 switchport trunk vlan tag native switchport mode trunk poe mode disable interface GigabitEthernet 1 5...

Page 464: ...00 40 C7 1C C7 31 mep 3 cc 7 mep 3 aps 7 raps erps 1 major port0 interface GigabitEthernet 1 3 port1 interface GigabitEthernet 1 5 erps 1 mep port0 sf 1 aps 1 port1 sf 3 aps 3 erps 1 vlan 5 erps 2 sub port0 interface GigabitEthernet 1 4 interconnect 1 erps 2 mep port0 sf 2 aps 2 erps 2 vlan 5 spanning tree aggregation spanning tree link type point to point line console 0 line vty 0 line vty 1 line...

Page 465: ... timeout autologout 0 poe ping check enable snmp server contact DTroxel snmp server location DT Office system contact DTroxel system name SISPM1040 582 LRT system location DT Office system description Managed Hardened PoE Switch 8 10 100 1000Base T PoE Ports 2 100 1000Base X SFP Slot interface GigabitEthernet 1 1 no spanning tree poe ping ip addr 192 168 1 70 poe failure action reboot Remote PD in...

Page 466: ...4 mac 00 40 C7 1C C7 30 mep 1 cc 7 mep 1 aps 7 raps mep 2 down domain port level 4 interface GigabitEthernet 1 4 mep 2 mep id 2 mep 2 vid 10 mep 2 peer mep id 5 mac 00 C0 F2 53 EF FC mep 2 cc 7 mep 2 aps 7 raps erps 1 major port0 interface GigabitEthernet 1 3 port1 interface GigabitEthernet 1 4 erps 1 mep port0 sf 1 aps 1 port1 sf 2 aps 2 erps 1 rpl owner port0 erps 1 vlan 5 spanning tree aggregat...

Page 467: ...Lantronix SM12XPA Web User Guide 33848 Rev A https www lantronix com Page 467 of 473 line vty 13 line vty 14 line vty 15 map api key AIzaSyBItuM0hDtK6nJeZPEk7jnrcoGGi92EpFM end ...

Page 468: ...rame type ipv4 tcp dport 443 system name SISPM1040 384 LRT C system description Managed Hardened PoE Switch 8 10 100 1000Base T PoE Ports 4 100 1000Base X SFP interface GigabitEthernet 1 1 no spanning tree lldp cdp aware poe ping ip addr 192 168 1 100 poe failure action reboot Remote PD interface GigabitEthernet 1 2 no spanning tree lldp cdp aware speed 1000 duplex full interface GigabitEthernet 1...

Page 469: ...bitEthernet 1 3 mep 1 mep id 3 mep 1 vid 20 mep 1 peer mep id 8 mac 00 C0 F2 53 F0 BA mep 1 cc 7 mep 1 aps 7 raps mep 2 down domain port level 4 interface GigabitEthernet 1 4 mep 2 mep id 4 mep 2 vid 10 mep 2 peer mep id 1 mac 00 C0 F2 49 39 5F mep 2 cc 7 mep 2 aps 7 raps mep 3 down domain port level 4 interface GigabitEthernet 1 5 mep 3 mep id 9 mep 3 vid 10 mep 3 peer mep id 10 mac 00 C0 F2 53 E...

Page 470: ...onix com Page 470 of 473 line vty 0 line vty 1 line vty 2 line vty 3 line vty 4 line vty 5 line vty 6 line vty 7 line vty 8 line vty 9 line vty 10 line vty 11 line vty 12 line vty 13 line vty 14 line vty 15 map api key AIzaSyBItuM0hDtK6nJeZPEk7jnrcoGGi92EpFM end ...

Page 471: ...1 interface GigabitEthernet 1 2 interface GigabitEthernet 1 3 no spanning tree switchport trunk allowed vlan 5 20 switchport trunk vlan tag native switchport mode trunk poe mode disable interface GigabitEthernet 1 4 no spanning tree switchport trunk allowed vlan 5 20 switchport trunk vlan tag native switchport mode trunk poe mode disable interface GigabitEthernet 1 5 interface GigabitEthernet 1 6 ...

Page 472: ...hernet 1 4 erps 1 mep port0 sf 1 aps 1 port1 sf 2 aps 2 erps 1 rpl owner port1 erps 1 vlan 5 spanning tree aggregation spanning tree link type point to point line console 0 line vty 0 line vty 1 line vty 2 line vty 3 line vty 4 line vty 5 line vty 6 line vty 7 line vty 8 line vty 9 line vty 10 line vty 11 line vty 12 line vty 13 line vty 14 line vty 15 end ...

Page 473: ...35 Irvine Center Drive Suite100 Irvine CA 92618 USA Toll Free 800 526 8766 Phone 949 453 3990 Fax 949 453 3995 Technical Support Online https www lantronix com technical support Sales Offices For a current list of our domestic and international sales offices go to the Lantronix web site at www lantronix com about contact ...