ZyXEL Communications GS-4012F/4024 manuel d'utilisation

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326

Aller à la page of

Un bon manuel d’utilisation

Les règles imposent au revendeur l'obligation de fournir à l'acheteur, avec des marchandises, le manuel d’utilisation ZyXEL Communications GS-4012F/4024. Le manque du manuel d’utilisation ou les informations incorrectes fournies au consommateur sont à la base d'une plainte pour non-conformité du dispositif avec le contrat. Conformément à la loi, l’inclusion du manuel d’utilisation sous une forme autre que le papier est autorisée, ce qui est souvent utilisé récemment, en incluant la forme graphique ou électronique du manuel ZyXEL Communications GS-4012F/4024 ou les vidéos d'instruction pour les utilisateurs. La condition est son caractère lisible et compréhensible.

Qu'est ce que le manuel d’utilisation?

Le mot vient du latin "Instructio", à savoir organiser. Ainsi, le manuel d’utilisation ZyXEL Communications GS-4012F/4024 décrit les étapes de la procédure. Le but du manuel d’utilisation est d’instruire, de faciliter le démarrage, l'utilisation de l'équipement ou l'exécution des actions spécifiques. Le manuel d’utilisation est une collection d'informations sur l'objet/service, une indice.

Malheureusement, peu d'utilisateurs prennent le temps de lire le manuel d’utilisation, et un bon manuel permet non seulement d’apprendre à connaître un certain nombre de fonctionnalités supplémentaires du dispositif acheté, mais aussi éviter la majorité des défaillances.

Donc, ce qui devrait contenir le manuel parfait?

Tout d'abord, le manuel d’utilisation ZyXEL Communications GS-4012F/4024 devrait contenir:
- informations sur les caractéristiques techniques du dispositif ZyXEL Communications GS-4012F/4024
- nom du fabricant et année de fabrication ZyXEL Communications GS-4012F/4024
- instructions d'utilisation, de réglage et d’entretien de l'équipement ZyXEL Communications GS-4012F/4024
- signes de sécurité et attestations confirmant la conformité avec les normes pertinentes

Pourquoi nous ne lisons pas les manuels d’utilisation?

Habituellement, cela est dû au manque de temps et de certitude quant à la fonctionnalité spécifique de l'équipement acheté. Malheureusement, la connexion et le démarrage ZyXEL Communications GS-4012F/4024 ne suffisent pas. Le manuel d’utilisation contient un certain nombre de lignes directrices concernant les fonctionnalités spécifiques, la sécurité, les méthodes d'entretien (même les moyens qui doivent être utilisés), les défauts possibles ZyXEL Communications GS-4012F/4024 et les moyens de résoudre des problèmes communs lors de l'utilisation. Enfin, le manuel contient les coordonnées du service ZyXEL Communications en l'absence de l'efficacité des solutions proposées. Actuellement, les manuels d’utilisation sous la forme d'animations intéressantes et de vidéos pédagogiques qui sont meilleurs que la brochure, sont très populaires. Ce type de manuel permet à l'utilisateur de voir toute la vidéo d'instruction sans sauter les spécifications et les descriptions techniques compliquées ZyXEL Communications GS-4012F/4024, comme c’est le cas pour la version papier.

Pourquoi lire le manuel d’utilisation?

Tout d'abord, il contient la réponse sur la structure, les possibilités du dispositif ZyXEL Communications GS-4012F/4024, l'utilisation de divers accessoires et une gamme d'informations pour profiter pleinement de toutes les fonctionnalités et commodités.

Après un achat réussi de l’équipement/dispositif, prenez un moment pour vous familiariser avec toutes les parties du manuel d'utilisation ZyXEL Communications GS-4012F/4024. À l'heure actuelle, ils sont soigneusement préparés et traduits pour qu'ils soient non seulement compréhensibles pour les utilisateurs, mais pour qu’ils remplissent leur fonction de base de l'information et d’aide.

Table des matières du manuel d’utilisation

  • Page 1

    GS-4012F/4024 Ethernet Switch User ’ s Guide V ersion 3.60 1/2006 Edition 2[...]

  • Page 2

    GS-4012F/4024 User ’s Guide Copyright 2 Copyright Copyright © 2006 by ZyXEL Communication s Corporation . The contents of this publication ma y not be reproduced in any part or as a whol e, transcribed, stored in a retrieval system, translated into an y language, or transmitted in any fo rm or by any means, electronic, mechanical, magnetic, opti[...]

  • Page 3

    GS-4012F/4024 User ’s Guide 3 Interference Statements and War nings Interference S t atement s and Wa r n i n g s FCC St atement This switch complies with Part 15 of the FCC rules. Operation is subj ect to the following two conditions: 1 This switch may not ca use harmful interference. 2 This switch must accept any interference received , includi[...]

  • Page 4

    GS-4012F/4024 User ’s Guide Interference Statements an d Warnings 4 Certifications 1 Go to www .zyxel.com 2 Select your product from the drop-down list box on the ZyXEL home page to go to that product's page. 3 Select the certification you wi sh to view from this page. Registration Register your product online for free future product updates[...]

  • Page 5

    GS-4012F/4024 User ’s Guide 5 ZyXEL Limited Warranty ZyXEL Limited W arranty ZyXEL warrants to the original end user (purchaser) th at this product is free from any defects in materials or workmanship for a period of up to two year s from the date of purchase. During the warranty period, and upon proof of purchase, sh ould the product have indica[...]

  • Page 6

    GS-4012F/4024 User ’s Guide Customer Support 6 Customer Support Please have the following information rea dy when you contact customer support. • Product model and serial number . • W arranty Information. • Date that you received your device. • Brief description of the problem and the steps you took to solve it. METHOD LOCATION SUPPORT E-[...]

  • Page 7

    GS-4012F/4024 User ’s Guide 7 Customer Suppo rt POLAND info@pl.zyxel.com +48 (22) 333 8250 www .pl.zyxel.com ZyXEL Communications ul. Okrzei 1A 03-715 W arszawa Poland +48 (22) 333 8251 RUSSIA http://zyxel.ru/support +7-095-542- 89-29 www .zyxel.ru ZyXEL Russia Ostrovityanova 37a S tr . Moscow , 1 17279 Russia sales@zyxel.ru +7-095-542-89-25 SP A[...]

  • Page 8

    GS-4012F/4024 User ’s Guide Table of Contents 8 T able of Content s Copyright .................................... .............................................................................. 2 Interference S tatement s and W arnings ......................................... ......................... 3 ZyXEL Limited W arranty ..................[...]

  • Page 9

    GS-4012F/4024 User ’s Guide 9 Table of Contents 3.1.1 Console Port .. ................. ................ ................ ................ ................... ..... 45 3.1.2 Gigabit Ethernet Ports ........ ................ ................... ................ ................. . 45 3.1.2.1 Default Ethernet Set tings .... ................. .......[...]

  • Page 10

    GS-4012F/4024 User ’s Guide Table of Contents 10 7.4 Introduction to VLANs .... ................ ................ ................ .................... .............. 76 7.5 IGMP Snooping .... ................ ................ ................. ................... ................ ........ 77 7.6 Switch Setup Screen ................ .............[...]

  • Page 11

    GS-4012F/4024 User ’s Guide 11 Table of Contents Chapter 12 Bandwid th Control .......................................................................... ..................... 104 12.1 Introduction to Bandwidth Control .... ............. ................ ................ ................ 104 12.1.1 CIR and PIR ......... ................ .........[...]

  • Page 12

    GS-4012F/4024 User ’s Guide Table of Contents 12 Chapter 19 Policy Rule...................................................... ..................................................... 128 19.1 Overview .................... ................ ................ ................ ................ ................ ... 128 19.1.1 DiffServ ....................[...]

  • Page 13

    GS-4012F/4024 User ’s Guide 13 Table of Contents Chapter 24 RIP .............................................. .......................................................................... 158 24.1 Overview ..................... ................ ................ ................ ................ ................ ... 158 24.2 Configuring ............[...]

  • Page 14

    GS-4012F/4024 User ’s Guide Table of Contents 14 29.2 Activating DiffServ ........ ................ ... ................ ................. ................ ............ 181 29.3 DSCP-to-IEEE802.1p Priority Mapping ................ ................ ................ ...... 182 29.3.1 Configuring DSCP Se ttings ..... ................ ...............[...]

  • Page 15

    GS-4012F/4024 User ’s Guide 15 Table of Contents 32.7.2 FTP Command Line Procedure ....... ....................... ................ ............ 204 32.7.3 GUI-based FTP Clients ........... ....... ......... ................. ................ ............ 204 32.7.4 FTP Restrictions ............... ...... ....... ................... .............[...]

  • Page 16

    GS-4012F/4024 User ’s Guide Table of Contents 16 Chapter 37 IP T able .................................................. ..................................................... .......... 230 37.1 Overview ..................... ................ ................ ................ ................ ................ ... 230 37.2 Viewing the IP T able ..[...]

  • Page 17

    GS-4012F/4024 User ’s Guide 17 Table of Contents Chapter 41 Command Examples...................................................................... ..................... 268 41.1 Overview ..................... ................ ................ ................ ................ ................ ... 268 41.2 show Commands .............. ............[...]

  • Page 18

    GS-4012F/4024 User ’s Guide Table of Contents 18 Chapter 42 IEEE 802.1Q T agged VLAN Commands ........................................ ..................... 288 42.1 IEEE 802.1Q T agged VL AN Overview ....... ................ ................ ............. ...... 288 42.2 VLAN Databases ........... ................ ................... ...........[...]

  • Page 19

    GS-4012F/4024 User ’s Guide 19 Table of Contents[...]

  • Page 20

    GS-4012F/4024 User ’s Guide List of Figure s 20 List of Figures Figure 1 Backbone Application ................ ................ .................... ................... ....... 37 Figure 2 Bridging Application .. .......... ...... ................ ................. ................ ............. 37 Figure 3 High Performance Switched Workgr oup Ap[...]

  • Page 21

    GS-4012F/4024 User ’s Guide 21 List of Figures Figure 39 Port Based VLAN Setup (Port Is olat ion) ........ ................ ................... .... 92 Figure 40 S tatic MAC Forwarding ............... .................... ................ ................... .... 94 Figure 41 Filtering .... ... ............. ................ ................ ....[...]

  • Page 22

    GS-4012F/4024 User ’s Guide List of Figure s 22 Figure 82 OSPF Virtual Link .............. ................... ................ ................ ................. 169 Figure 83 IGMP ....... ................ ................... ................. ................ ................ .......... 172 Figure 84 How DVMRP Works .......... ................ [...]

  • Page 23

    GS-4012F/4024 User ’s Guide 23 List of Figures Figure 125 Access Control ...... ................... ................. ................ ................... ....... 207 Figure 126 SNMP Management Model ..... .... ................ ................ ................ ....... 207 Figure 127 Access Control: SNMP . ......... ... .................... .....[...]

  • Page 24

    GS-4012F/4024 User ’s Guide List of Figure s 24 Figure 168 CLI: Backup Configuration Exam ple ......... ................ ................ .......... 274 Figure 169 CLI: Restore Configuration Exam ple ............... ................ .................... 275 Figure 170 CLI: boot config C ommand Example ......... ................... ...............[...]

  • Page 25

    GS-4012F/4024 User ’s Guide 25 List of Figures Figure 21 1 Java (Sun) . ....... ......... ................ ................. ................ ................ .......... 306[...]

  • Page 26

    GS-4012F/4024 User ’s Guide List of Tables 26 List of T ables T able 1 Front Panel ........... ................... ................ .................... ................ ............. 44 T able 2 Front Panel LED s ........ ................ .................... ................ ................... ....... 48 T able 3 Navigation Panel Sub-links Ove[...]

  • Page 27

    GS-4012F/4024 User ’s Guide 27 List of Tables T able 39 Policy: Summary T able .......... ................... ................. ................... .......... 131 T able 40 Physical Qu eue Priority ....................... ................ ................... ................. 134 T able 41 Queuing Method .................... ................... .[...]

  • Page 28

    GS-4012F/4024 User ’s Guide List of Tables 28 T able 82 Access Control: Service Access Control .................... ................... .......... 217 T able 83 Access Control: Remote Management ............... ................... ................. 218 T able 84 Diagnostic ....... ................. ................ ................... ...........[...]

  • Page 29

    GS-4012F/4024 User ’s Guide 29 List of Tables[...]

  • Page 30

    GS-4012F/4024 User ’s Guide Preface 30 Preface Congratulations on your purchase of the GS-4012F/402 4 Ethernet Switch. This preface introduces you to the GS-4012F/4024 Ethernet Switch and discusses the conventions of this User ’ s Guide. It also provides information on other related documentation. There are two GS-4012F models. The GS-4012F DC [...]

  • Page 31

    GS-4012F/4024 User ’s Guide 31 Preface Graphics Icons Key User Guide Feedback Help us help you. E-mail all User Guide-related comments, questions or suggestions for improvement to techwriters@zyxel.com.tw or send regular mail to The T echnical W riting T eam, ZyXEL Communications Corp., 6 In novatio n Road II, Science-Based Industrial Park, Hsinc[...]

  • Page 32

    GS-4012F/4024 User ’s Guide Chapter 1 Getting to K now Your Switch 32 C HAPTER 1 Getting to Know Y our Switch This chapter introduces the main feat ures and applications of the switch. 1.1 Introduction Y our switch is a stand-alone layer-3 Gigabit Ethe rnet switch. By i ntegr ating router functions, the switch performs wire-speed layer-3 ro uting[...]

  • Page 33

    GS-4012F/4024 User ’s Guide 33 Chapte r 1 Getting to Know Your Switch VLAN A VLAN (V irtual Local Area Network) allows a physical network to be partitioned into multiple logical networks. Device s on a logical network belong to one group. A device can belong to more than one group. W ith VLAN, a device cannot directly talk to or hear from devices[...]

  • Page 34

    GS-4012F/4024 User ’s Guide Chapter 1 Getting to K now Your Switch 34 IGMP IGMP (Internet Group Multicast Protocol) is a session-layer protocol used to establish membership in a multicast group - it is not used to carry user data. IGMP Snooping The switch supports IGMP snoopi ng enabling group multicast traffic to be only forwarded to ports that [...]

  • Page 35

    GS-4012F/4024 User ’s Guide 35 Chapte r 1 Getting to Know Your Switch VRRP V irtua l Router Redundancy Protocol (VRRP), define d in RFC 2338, allows you to create redundant backup gateways to ensure that the de fault gateway of a host is always available. STP (S panni ng T ree Protoc ol) / RSTP (Rapid STP) (R)STP detects and b reaks network loops[...]

  • Page 36

    GS-4012F/4024 User ’s Guide Chapter 1 Getting to K now Your Switch 36 Gigabit Ethernet Port s The ports allow the switch to connect to another W AN switch or daisy-chain to other switches. Management Port Connect a computer to this port for m anage ment purposes. Y o u cannot access the network through this port. Console Port Use the console port[...]

  • Page 37

    GS-4012F/4024 User ’s Guide 37 Chapte r 1 Getting to Know Your Switch Figure 1 Backbone Application 1.4.2 Bridging Example In this example application the switch connects dif ferent company departme nts ( RD and Sales ) to the corpora te backbone. It can allevi ate bandwidth conten tion and eliminate server and network bottlenecks. All users that[...]

  • Page 38

    GS-4012F/4024 User ’s Guide Chapter 1 Getting to K now Your Switch 38 Switching to higher-speed LA Ns such as A T M (Asynchronous T ransmission Mode) is not feasible for most people due to the expense of replacing all existing Ethernet cables and adapter cards, restructuring y our network and comp lex maintenance. The switch can provide the same [...]

  • Page 39

    GS-4012F/4024 User ’s Guide 39 Chapte r 1 Getting to Know Your Switch Figure 4 T ag-based VLAN Application 1.4.4.2 VLAN Shared Server Exa mple Shared resources such as a server can be us ed by all ports in the same VLAN as the server , as shown in the following example. In this example, only ports that need access to the server need belong to VLA[...]

  • Page 40

    GS-4012F/4024 User ’s Guide Chapter 2 Hardware Installation and Connection 40 C HAPTER 2 Hardware Inst allation and Connection This chapter shows you how to install th e hardware and make port connections. Note: Example graphics are shown. 2.1 Freest anding Inst allation 1 Make sure the switch is clean and dry . 2 Set the switch on a smooth, leve[...]

  • Page 41

    GS-4012F/4024 User ’s Guide 41 Chapter 2 Hardware Inst allation and Conne ction 2.2 Mounting the Switch on a Rack This section lists the rack mounting requirements and precautions and describes the installation steps. 2.2.1 Rack-mounted Installation Requirement s • T wo mounting brackets. • Eight M3 flat head screws and a #2 Philips screwdriv[...]

  • Page 42

    GS-4012F/4024 User ’s Guide Chapter 2 Hardware Installation and Connection 42 Figure 8 Mounting the Switch on a Ra ck 2 Using a #2 Philips screwdriver , install the M5 flat head screws through the mounting bracket holes into the rack. 3 Repeat steps 1 and 2 to attach the second mounting bracke t on the other side of the rack.[...]

  • Page 43

    GS-4012F/4024 User ’s Guide 43 Chapter 2 Hardware Inst allation and Conne ction[...]

  • Page 44

    GS-4012F/4024 User ’s Guide Chapter 3 Hardware Overview 44 C HAPTER 3 Hardware Overview This chapter describes the front panel a nd rear pa nel of the switch and shows you how to make the hardware conn ections. 3.1 Front Panel Connection The figure below shows the fro nt panel of the switch. Figure 9 Front Panel: GS-4024 Figure 10 Front Panel: GS[...]

  • Page 45

    GS-4012F/4024 User ’s Guide 45 Chapter 3 Hardware Overview 3.1.1 Console Port For local management, you can use a computer w ith terminal emulation software configured to the following parameters: • VT100 terminal emulation • 9600 bps • No parity , 8 data bits, 1 stop bit • No flow control Connect the male 9-pin end of the console cable t[...]

  • Page 46

    GS-4012F/4024 User ’s Guide Chapter 3 Hardware Overview 46 • T ype: SFP connection interface • Connection speed: 1 Gigabit per second (Gbp s) Note: T o avoid possible eye injury , do NOT look into an operating fiber-optic module’ s connectors. 3.1.3.1 T ransceiver Installation Use the following steps to install a mini-GBIC transceiver (SFP [...]

  • Page 47

    GS-4012F/4024 User ’s Guide 47 Chapter 3 Hardware Overview Figure 14 T ransceiver Removal Example 3.2 Rear Panel The following figure shows the re ar panel of the switch. The rear panel contains the ventilation holes, a connector for external backup power supply (BPS), the power receptacle and the power switch (for DC model). The following figure[...]

  • Page 48

    GS-4012F/4024 User ’s Guide Chapter 3 Hardware Overview 48 3.2.2 External Backup Po wer Supply Connector The backup power supply co nstantly monitors the status of the internal power supply . The backup power supply automatically provides po wer to the switch in the event of a power failure. Once the switch rece ives power from the backup power s[...]

  • Page 49

    GS-4012F/4024 User ’s Guide 49 Chapter 3 Hardware Overview MGMT Port 10 Green On The link to a 10 Mbps Ethernet network is up. Blinking The port is receiving or transmitting data. at 10 Mbps. Off The link to a 10 Mbps Ethernet network is up. 100 Amber On The link to a 100 Mbps Ethernet network is up. Blinking The port is receiving or transmitting[...]

  • Page 50

    GS-4012F/4024 User ’s Guide Chapter 4 The Web Configurator 50 C HAPTER 4 The W eb Configurator This section introduces the con figuration and functions of the web configurator . 4.1 Introduction The web configu rator is an HTML-based mana ge ment interface that allows easy switch setup and management via Interne t browser . Use In ternet Explorer[...]

  • Page 51

    GS-4012F/4024 User ’s Guide 51 Chapter 4 The Web Configurator Figure 18 Web Configura tor: Login 4 Click OK to view the first web configurator screen. 4.3 The St atus Screen The St a t u s screen is the first screen that displa ys when yo u access the web configura tor . The following figure shows the navigat ing co mponen ts of a web configurato[...]

  • Page 52

    GS-4012F/4024 User ’s Guide Chapter 4 The Web Configurator 52 In the navigation panel, click a main l ink to reveal a list of submenu links. Table 3 Navigation Panel Sub-links Overview BASIC SETTING ADVANCED APPLICATION IP APPLICATIO N MANAGEMENT[...]

  • Page 53

    GS-4012F/4024 User ’s Guide 53 Chapter 4 The Web Configurator The following table lists the various web configurator screens within the sub-links. The following table describes the links in the navigation panel. Table 4 Web Configurator Screen Sub- links Details BASIC SETTING ADVANCED APPLICATION IP APPLICATION MANAGEMENT System Info General Setu[...]

  • Page 54

    GS-4012F/4024 User ’s Guide Chapter 4 The Web Configurator 54 IP Setup This link takes you to a screen where you can confi gure the IP address, subnet mask (necessary for switch management) and DNS (domain name server) and set up to 64 IP routing domains. Port Setup This link takes you to screens where you can configure settings for individual sw[...]

  • Page 55

    GS-4012F/4024 User ’s Guide 55 Chapter 4 The Web Configurator 4.3.1 Change Y our Password After you log in for the first time, it is reco mmended y ou change the default admin istrator password. Click Management , Access Control and then Logins to display the next screen. DVMRP T his link takes you to a screen w here you can configure the DVMRP ([...]

  • Page 56

    GS-4012F/4024 User ’s Guide Chapter 4 The Web Configurator 56 Figure 20 Change Administr ator Login Password 4.4 Switch Lockout Note: Y ou cannot log into the switch using the same administrator account concurrently on dif ferent IP routing domains. Y ou could lock yourself (and all others) out from the switch by: 1 Deleting all IP routing domain[...]

  • Page 57

    GS-4012F/4024 User ’s Guide 57 Chapter 4 The Web Configurator 4.5.1 Reload the Config uration File Uploading the factory-default conf iguration file replaces the current configuration file with the factory-default configuration file. This means that you will lose all pr evious configurations and the speed of the console port will be reset to the [...]

  • Page 58

    GS-4012F/4024 User ’s Guide Chapter 4 The Web Configurator 58 Figure 22 Web Configu rator: Logout Screen 4.7 Help The web configur ator ’ s online help has des criptions of individual screen s and some supplementary information. Click the Help link from a web configurator screen to view an online help description of that screen.[...]

  • Page 59

    GS-4012F/4024 User ’s Guide 59 Chapter 4 The Web Configurator[...]

  • Page 60

    GS-4012F/4024 User ’s Guide Chapter 5 Initial Setup Example 60 C HAPTER 5 Initial Setup Example This chapter shows how to set up the switch for an example network. 5.1 Overview The following lists the configura tion steps for the example network: • Configure an IP interface • Configure DHCP server settings • Create a V LAN • Set port VLAN[...]

  • Page 61

    GS-4012F/4024 User ’s Guide 61 Chapter 5 Initial Setup Example 2 Open your web browser and enter 19 2.168.0.1 (the default MGMT port IP address) in the address bar to access the web configurat or . Se e Section 4.2 on page 50 for more information. 3 Click Basic Setting and IP Setup in the navigation panel. 4 Configure the related fields in the IP[...]

  • Page 62

    GS-4012F/4024 User ’s Guide Chapter 5 Initial Setup Example 62 5.1.3 Creating a VLAN VLANs confine broadcast frames to the VLAN gr oup in which the port(s) belongs. Y ou can do this with port-based VLAN or tagged static VLAN with fixed port members. In this example, you want to con figure port 10 as a member of VLAN 2 . Figure 24 Initial Setup Ne[...]

  • Page 63

    GS-4012F/4024 User ’s Guide 63 Chapter 5 Initial Setup Example 2 In the S tatic VLAN screen, select ACTIVE , enter a descriptive name in the Na me field and enter 2 in the VLAN Group ID field for the Sales network. Note: The VLAN Group ID field in this screen and the VID fie ld in the IP Setup screen refer to the same VLAN ID. 3 Since the Sales n[...]

  • Page 64

    GS-4012F/4024 User ’s Guide Chapter 5 Initial Setup Example 64 1 Click Advanced Applications and VLAN in the navigation panel. Then click the VLAN Port Setting link. 2 Enter 2 in the PVID field for port 10 and click Apply to save the settings. 5.1.5 Enabling RIP T o exchange routing information with other ro uting devices across different routing[...]

  • Page 65

    GS-4012F/4024 User ’s Guide 65 Chapter 5 Initial Setup Example[...]

  • Page 66

    GS-4012F/4024 User ’s Guide Chapter 6 Syst em Status an d Port Statistics 66 C HAPTER 6 System S t atus and Port S t atistics This chapter describes the system status (web configurator ho me page) and port details screens. 6.1 Overview The home screen of the web configurato r displays a port statistical summary with links to each port showing sta[...]

  • Page 67

    GS-4012F/4024 User ’s Guide 67 Chapter 6 System Status and Port Statistics 6.2.1 Port Det ails Click a number in the Port column i n the St a t u s screen to display indivi dual port statistics. Use this screen to check status and detailed performance data about an individual port on the switch. Table 6 Status LABEL DESCRIPTION System up T ime Th[...]

  • Page 68

    GS-4012F/4024 User ’s Guide Chapter 6 Syst em Status an d Port Statistics 68 Figure 27 S tatus: Port Details The following table describes the labels in this screen. Table 7 Status: Port Details LABEL DESCRIPTION Port Info Link Th is field displays the speed (either 10M for 10Mbps, 100M for 100Mbps or 1000M for 1000Mbps) and the duplex ( F for fu[...]

  • Page 69

    GS-4012F/4024 User ’s Guide 69 Chapter 6 System Status and Port Statistics Up T ime This field shows the total amount of time the connection has been up. Tx Packet The following fields di splay detailed information about packets transmitted. TX Packet This field shows the number of good packets (unicast, multicast and broadcast) transmitte d. Mul[...]

  • Page 70

    GS-4012F/4024 User ’s Guide Chapter 6 Syst em Status an d Port Statistics 70 256-51 1 This field shows the numbe r of packet s (including bad packets) received that were between 256 and 51 1 octets in length. 512-1023 This field shows the number of packets (including bad packets) received that were between 512 and 1023 octets in length. 1024-1518[...]

  • Page 71

    GS-4012F/4024 User ’s Guide 71 Chapter 6 System Status and Port Statistics[...]

  • Page 72

    GS-4012F/4024 User ’s Guide Chapter 7 Basic Setting 72 C HAPTER 7 Basic Setting This chapter describes how to configure the System Info, General Setup , Switch Setup , IP Setup and Port Setup screens. 7.1 Overview The System Info screen displays general switch info rmation (such as fi rmware version number) and hardware polling inform ation (such[...]

  • Page 73

    GS-4012F/4024 User ’s Guide 73 Chapter 7 Basic Setting Figure 28 System Info The following table describes the labels in this screen. Table 8 System Info LABEL DESCRIPTION System Name This field di splays the descriptive name of the switch for id entification purposes. ZyNOS F/W Ve r s i o n This field displays th e version number of t he switch [...]

  • Page 74

    GS-4012F/4024 User ’s Guide Chapter 7 Basic Setting 74 7.3 General Setup Click Basic Setting and General Setup in the navigation panel to display the screen as shown. Fan S peed (RPM) A properly functioning fan is an essentia l compon ent (along with a sufficiently ventilated, cool operating env ironment) in order for the device to stay within th[...]

  • Page 75

    GS-4012F/4024 User ’s Guide 75 Chapter 7 Basic Setting Figure 29 General Setup The following table describes the labels in this screen. Table 9 General Setup LABEL DESCRIPTION System Name Cho ose a descriptive name for identification purposes. This name consists of up to 32 printable characters; spaces are allowed. Location Enter the geogra phic [...]

  • Page 76

    GS-4012F/4024 User ’s Guide Chapter 7 Basic Setting 76 7.4 Introduction to VLANs A VLAN (V irtual Local Area Network) allows a physical network to be partitioned into multiple logical networks. Device s on a logical network belong to one group. A device can belong to more than one group. W ith VLAN, a device cannot directly talk to or hear from d[...]

  • Page 77

    GS-4012F/4024 User ’s Guide 77 Chapter 7 Basic Setting See Chapter 8 on pa ge 84 for information on port-based and 802.1Q tagged VLANs. 7.5 IGMP Snooping A switch can passively snoop on IGMP Query , Report and Leave (IGMP version 2) packets transferred between IP multicast routers/switc hes and IP multicast hosts to learn the IP multicast group m[...]

  • Page 78

    GS-4012F/4024 User ’s Guide Chapter 7 Basic Setting 78 . Table 10 Switch Setup LABEL DESCRIPTION VLAN T ype Choose 802.1Q or Port Based . The VLAN Se tup screen changes d epending on whether you choose 802.1Q VLAN type or Port Based VLAN type in th is screen. See Chapter 8 o n page 84 for more information. Bridge Control Protocol T ransparency Se[...]

  • Page 79

    GS-4012F/4024 User ’s Guide 79 Chapter 7 Basic Setting 7.7 IP Setup Use the IP Setup screen to configure the default gate way device, the default domain name server and add IP domains. 7.7.1 IP Interfaces The switch needs an IP address for it to be mana ged over the network. The factory default IP address is 192.168.1.1. The subnet mask sp ecifie[...]

  • Page 80

    GS-4012F/4024 User ’s Guide Chapter 7 Basic Setting 80 Figure 31 IP Setup The following table describes the labels in this screen. Ta b l e 11 IP Setup LABEL DESCRIPTION Default Gateway Enter the IP address of the default outgo in g gateway in dotted decimal notation, for example 192.168.1.254. Domain Name Server DNS (Domain Name System) is for m[...]

  • Page 81

    GS-4012F/4024 User ’s Guide 81 Chapter 7 Basic Setting 7.8 Port Setup Click Basic Setting and the n Port Setup in the navigation panel to di splay the configuration screen. Default Gateway Enter the IP address of the default o utgoing gateway in dotted decimal notation, for example 192.168.0.25 4 Apply Click Apply to save the settings. Cancel Cli[...]

  • Page 82

    GS-4012F/4024 User ’s Guide Chapter 7 Basic Setting 82 Figure 32 Port Setup The following table describes the labels in this screen. Table 12 Port Setup LABEL DESCRIPTION Port This is the port i ndex number . Active Select this check box to enable a port. The factory default for all ports is enabled. A port must be enabled for data transmission t[...]

  • Page 83

    GS-4012F/4024 User ’s Guide 83 Chapter 7 Basic Setting 802.1P Priority This priority value is added to inco ming frames without a (802. 1p) prio rity queue tag. See Priority Queue Assi gnment in T able 10 on page 78 for more information. BPDU Control Configure the way to treat BPDUs received on th is port. Y ou must activate bridging control prot[...]

  • Page 84

    GS-4012F/4024 User ’s Guide Chapter 8 VLAN 84 C HAPTER 8 VLAN The type of screen you see here depends o n the VLAN T ype you selected in the Switch Setup screen. This chapter shows you how to conf igure 802.1Q tagge d and port-based VLANs. 8.1 Introduction to IEEE 802.1Q T agged VLANs A tagged VLAN uses an explicit tag (VLAN ID) in the MAC header[...]

  • Page 85

    GS-4012F/4024 User ’s Guide 85 Chapter 8 VLAN The egress (outgoing) port(s) of a frame is determined on the combination of the destination MAC address and the VID of the frame. For a unicast frame, the egress port (based on the destination MAC address) must be a member of the VID, also; otherwise, the frame is blocked. A broadcast frame (or a mul[...]

  • Page 86

    GS-4012F/4024 User ’s Guide Chapter 8 VLAN 86 8.3 Port VLAN T runking Enable VLAN T runking on a port to allow frames b elonging to unknown VLAN groups to pass through that port. This is useful if yo u want to set up VLAN groups on end devices without having to configure the same VLAN groups on intermediary devices. Refer to the following figure.[...]

  • Page 87

    GS-4012F/4024 User ’s Guide 87 Chapter 8 VLAN Figure 34 Switch Setup: Se lect VLAN T ype 8.5 St atic VLAN Use a static VLAN to decide whether an incoming frame on a port should be • sent to a VLAN group as normal d epends on its VLAN tag. • sent to a group whether it has a VLAN tag or not. • blocked from a VLAN group regardless of its VLAN [...]

  • Page 88

    GS-4012F/4024 User ’s Guide Chapter 8 VLAN 88 8.5.2 Configure a St atic VLAN T o configure a static VLAN, click S tatic VLAN in the VLAN S tatus screen to display the screen as shown next. Table 14 VLAN: VLAN S tatus LABEL DESCRIPTION The Number of VLAN This is the number of VLAN s configured on the switch. Index This is the VLAN index number. VI[...]

  • Page 89

    GS-4012F/4024 User ’s Guide 89 Chapter 8 VLAN Figure 36 VLAN: S tatic VLAN The following table describes the re lated labels in this screen. Table 15 VLAN: S tatic VLAN LABEL DESCRIPTION ACTIVE Select this check box to activate the VLA N settings. Name Enter a descriptive name (up to 12 prin table ASCII characters) for the VLAN group for identifi[...]

  • Page 90

    GS-4012F/4024 User ’s Guide Chapter 8 VLAN 90 8.5.3 Configure VL AN Port Settings T o configure the VLAN settings on a port, click the VLAN Port Setting link in the VLAN St a t u s screen. Figure 37 VLAN: VLAN Port Setting The following table describes the labels in this screen. Delete Click Dele te to remove the selected entry from the summary t[...]

  • Page 91

    GS-4012F/4024 User ’s Guide 91 Chapter 8 VLAN 8.6 Port-based VLANs Port-based VLANs are VLANs where the packet forwarding de cision is based on the destination MAC address and its associated port. Port-based VLANs require allowed outgoing ports to be defined for each port. Therefore, if you wish to allow two subscriber ports to talk to each other[...]

  • Page 92

    GS-4012F/4024 User ’s Guide Chapter 8 VLAN 92 Figure 38 Port Based VLAN Se tup (All Conn ected) Figure 39 Port Based VLAN Setu p (Port Isolation) The following table describes the labels in this screen.[...]

  • Page 93

    GS-4012F/4024 User ’s Guide 93 Chapter 8 VLAN ] Table 17 Port Based VLAN Setup LABEL DESCRIPTION Setting Wizard Choose All connected or Port isolat ion . All connecte d mea ns all ports can communicate wit h each other , that is, th ere are no virtual LANs. All incoming and outgoi ng ports are selected. This option is th e most flexible but al so[...]

  • Page 94

    GS-4012F/4024 User ’s Guide Chapter 9 Static MAC Forward Setup 94 C HAPTER 9 S t atic MAC Forward Setup Use these screens to configure static MAC address forwarding. 9.1 Overview A static MAC address is an address that has been ma nually entered in the MAC addres s table. St atic MAC addresses d o not age out. Wh en you set up static MAC address [...]

  • Page 95

    GS-4012F/4024 User ’s Guide 95 Chapter 9 Static MAC Forward Setup Table 18 S tatic MAC Forw arding LABEL DESCRIPTION Active Select this check box to activate your rule. Y ou may temporarily deacti vate a rule without deleting it by clearing this check box. Name Ente r a descriptive name (up to 32 prin table ASCII characters) for identification pu[...]

  • Page 96

    GS-4012F/4024 User ’s Guide Chapter 10 Filtering 96 C HAPTER 10 Filtering This chapter discusses stat ic MAC address filtering. 10.1 Overview Filtering means sifting traf fic going through the switch based on the sour c e and/or destin ation MAC addresses and VLAN group (ID). 10.2 Configure a Filtering Rule Click Advanced Application , Filtering [...]

  • Page 97

    GS-4012F/4024 User ’s Guide 97 Chapter 10 Fil tering Action Select Discard sourc e to drop frame from the sour ce MAC address (specified in the MAC field). The switch can still s end frames to the MAC address. Select D iscard destination to drop frames to the d esti nation MAC address (specified in the MAC field). The switch can sti ll receive fr[...]

  • Page 98

    GS-4012F/4024 User ’s Guide Chapter 11 S panning Tr ee Protocol 98 C HAPTER 11 S p anning T ree Protocol This chapter introduces the Spanning T ree Prot ocol (STP) and Ra pid Spanning T ree Proto col (RSTP). 1 1.1 STP/RSTP Overview (R)STP detects and b reaks network loops and pro v ides backup lin ks between switches, bridges or routers. It allow[...]

  • Page 99

    GS-4012F/4024 User ’s Guide 99 Chapter 11 Spanning Tree Prot ocol On each bridge, the root port is the port thro ugh which this bridge communicates with the root. It is the port on this switch with the lowest path cost to the root (the root path cost). If there is no root port, then this switch has been accepte d as the root bridge of the spannin[...]

  • Page 100

    GS-4012F/4024 User ’s Guide Chapter 11 S panning Tr ee Protocol 100 Figure 42 S panning T ree Protocol: S tatus The following table describes the labels in this screen. Table 22 S panning T ree Protocol: S tatus LABEL DESCRIPTION S panning Tree Protocol This field displ ays Running if STP is activated. Otherwise, it displays Down . Configuration [...]

  • Page 101

    GS-4012F/4024 User ’s Guide 101 Chapter 11 Spa nning Tree Pr otocol 1 1.2.1 Configure STP T o configure STP , click the Configuration link in the Spanning T ree Pr otocol screen as shown next. Figure 43 S panning T ree Protocol: Configuration The following table describes the labels in this screen. Poll Interval(s) The text box displays how of te[...]

  • Page 102

    GS-4012F/4024 User ’s Guide Chapter 11 S panning Tr ee Protocol 102 Bridge Prio rity Bridge priority is used in determini ng the root switch, root port and designated port. The switch with the highest priority (low est numeric value) becomes the STP root switch. If all switches have the same pri ority , the switch with the lowest MAC address will[...]

  • Page 103

    GS-4012F/4024 User ’s Guide 103 Chapter 11 Spa nning Tree Pr otocol[...]

  • Page 104

    GS-4012F/4024 User ’s Guide Chapter 12 Bandwidth Control 104 C HAPTER 12 Bandwid th Control This chapter shows you h ow you can cap th e maximum bandwi dth allowed from sp ecific source(s) to specified destination(s) using the Bandwidth Control screen. 12.1 Introduction to Bandwid th Control Bandwidth control mean s defining a maximum allowable b[...]

  • Page 105

    GS-4012F/4024 User ’s Guide 105 Chapter 12 Bandwidth Control Figure 44 Bandwidt h Control The following table describes the re lated labels in this screen. Table 24 Bandwidt h Control LABEL DESCRIPTION Active Select this check box to enable ban dwidth control on the switch. Port This field di splays the port number . Active Make sure to select th[...]

  • Page 106

    GS-4012F/4024 User ’s Guide Chapter 13 Broadcast Storm Control 106 C HAPTER 13 Broadcast S torm Control This chapter introduces and sh ows you how to configure t he broadcast storm control feat ure. 13.1 Overview Broadcast storm control limits the number of broadcast, multicast and destination lookup failure (DLF) packets the switch receives per [...]

  • Page 107

    GS-4012F/4024 User ’s Guide 107 Chapter 13 Broadcast Storm Control The following table describes the labels in this screen. Table 25 Broadcast Storm Control LABEL DESCRIPTION Active Select this check box to enable broadcast storm control on the switch. Port This field displ ays a port numb er . Broadcast (pkt/s) Select this option and specify ho [...]

  • Page 108

    GS-4012F/4024 User ’s Guide Chapter 14 Mirroring 108 C HAPTER 14 Mirroring This chapter shows you how to configure mirroring on the switch. 14.1 Overview Port mirroring allows you to copy traf fic going from one or all ports to another or all ports in order that you can examine the traffic from the mi rror port (the port you copy the traf fic to)[...]

  • Page 109

    GS-4012F/4024 User ’s Guide 109 Chapter 14 Mirroring Table 26 Mirroring LABEL DESCRIPTION Active Clear this check box to deactivate port mirroring on the switch. Monitor Port The monitor port is the port you copy the traffic to in order to examine it in more detail without interfering with the traffic flow on the original port(s). Select this por[...]

  • Page 110

    GS-4012F/4024 User ’s Guide Chapter 15 Link Aggregation 110 C HAPTER 15 Link Aggregation This chapter shows you how to logically aggreg ate physical links to fo rm one logical, higher - bandwidth link. 15.1 Overview Link aggregation (trunking) is the grouping of physical ports into one logical higher-capacity link. Y ou may want to trunk ports if[...]

  • Page 111

    GS-4012F/4024 User ’s Guide 111 Chapter 15 Link Aggregation 15.1.2 Link Aggregation ID LACP aggregation ID consists of the following information 1 : 15.2 Link Aggregation St atus Click Advanced App lication , Link Aggr egation in the navigation panel. The Li nk Aggregation Control Pr otocol S t atus screen disp lays by default. Figure 47 Link Agg[...]

  • Page 112

    GS-4012F/4024 User ’s Guide Chapter 15 Link Aggregation 112 15.3 Link Aggregation Setup Click Configuration in the Link Aggr egation Control P rotocol S tatus screen to display the screen shown next. Table 29 Link Aggregation Control Protocol: S tatus LABEL DESCRIPTION Index This field displays the trunk ID to identif y a trunk gro up, that is, o[...]

  • Page 113

    GS-4012F/4024 User ’s Guide 113 Chapter 15 Link Aggregation Figure 48 Link Aggregation Control Protocol: Configuration The following table describes the labels in this screen. Table 30 Link Aggregation Control Protocol: Configur ation LABEL DESCRIPTION Link Aggregation Control Protocol Active Select this checkbox to enable Link Aggregati on Contr[...]

  • Page 114

    GS-4012F/4024 User ’s Guide Chapter 15 Link Aggregation 114 LACP T imeout Timeout is the time interval between the individual port exchanges of LACP packets in order to check that the peer po rt i n the trunk group is still up. If a port does not respond after three tries, t hen it is deemed to be “down” and is removed from the trunk. Set a s[...]

  • Page 115

    GS-4012F/4024 User ’s Guide 115 Chapter 15 Link Aggregation[...]

  • Page 116

    GS-4012F/4024 User ’s Guide Chapter 16 Port Authentication 116 C HAPTER 16 Port Authentication This chapter describes the 802.1x authenti cation method and RADIUS server connection setup. 16.1 Overview IEEE 802.1x is an extended authenticat ion protocol 2 that allows support of RADIUS (Remote Authentication Dial In User Service, RFC 2138, 2139) f[...]

  • Page 117

    GS-4012F/4024 User ’s Guide 117 Chapter 16 Port A uthentication Click Advanced App lication , Port Authentication in the navigation pa nel to display the screen as shown. Figure 50 Port Authentication 16.2.1 Activating IEEE 802.1x Security From the Port Authentication screen, display the config uration screen as shown. Figure 51 Port Authenticati[...]

  • Page 118

    GS-4012F/4024 User ’s Guide Chapter 16 Port Authentication 118 16.2.2 Configuring RADI US Server Settings From the Port Authentication screen, click RADIUS to display the conf iguration screen as shown. Figure 52 Port Authentication: RADIUS The following table describes the labels in this screen. Reauthentication Ti m e r S pecify how often a cli[...]

  • Page 119

    GS-4012F/4024 User ’s Guide 119 Chapter 16 Port A uthentication[...]

  • Page 120

    GS-4012F/4024 User ’s Guide Chapter 17 Port Security 120 C HAPTER 17 Port Security This chapter shows you how to set up port security . 17.1 Overview Port security allows only packets w ith dynami cally learned MAC addresses and/or configured static MAC addresses to pass through a port on the switch. For maximum port security , enable this featur[...]

  • Page 121

    GS-4012F/4024 User ’s Guide 121 Chapter 17 Port Security Table 33 Port Security LABEL DESCRIPTION Active Select this check box to en able port security on the switch. Port This field displays a port number . Active Select this check box to enable the port security fe ature on this port. The switch forwards packets whose MAC address(es) is in the [...]

  • Page 122

    GS-4012F/4024 User ’s Guide Chapter 18 Classifier 122 C HAPTER 18 Classifier This chapter introduces and shows you how to configure the packet cl assifier on the switch. 18.1 Overview Quality of Service (QoS) refers to both a ne twork’ s ability to deliver data with minimum delay , and the networking methods used to co ntrol the use of bandwidt[...]

  • Page 123

    GS-4012F/4024 User ’s Guide 123 Chapter 18 Classifier Figure 54 Classifier The following table describes the re lated labels in this screen. Table 34 Classifier LABEL DESCRIPTION Active Select this option to enable this rule. Name T ype a descripti ve name (up to 32 printable ASCII characters) for this rule. This is for identifica tion purpose on[...]

  • Page 124

    GS-4012F/4024 User ’s Guide Chapter 18 Classifier 124 Layer 2 S pecify the fields below to configure a laye r-2 classifier . VLAN Select Any to classify traffic from any VLAN or select the second option and specify the source VLAN ID in the field provided. Priority Select Any to classify traf fic from any priority level or select MAC and speci fy[...]

  • Page 125

    GS-4012F/4024 User ’s Guide 125 Chapter 18 Classifier 18.3 V iewing and Editing Classifier Configuration T o view a summary of the classifier configuration, scroll down to th e summa ry table at the bottom of the Clas sifier screen. T o change the settings of a rule, click a number in the Index field. When two rules conflict w ith each other , a [...]

  • Page 126

    GS-4012F/4024 User ’s Guide Chapter 18 Classifier 126 Some of the most common IP ports are: 18.4 Classifier Example The following screen shows an example where yo u configure a classifier that identifies all traffic from MAC address 00:50:ba:ad:4f:81 on port 2. After you have configured a classifier , you can configure a policy (in the Policy scr[...]

  • Page 127

    GS-4012F/4024 User ’s Guide 127 Chapter 18 Classifier Figure 56 Classifier: Example[...]

  • Page 128

    GS-4012F/4024 User ’s Guide Chapter 19 Policy Rule 128 C HAPTER 19 Policy Rule This chapter shows you how to configure policy rules. 19.1 Overview A classifier distinguishes traffic into flows based on the configured criteria (refer to Chapter 18 on page 122 for more information). A policy rule ensures that a traffic flow gets the requested treat[...]

  • Page 129

    GS-4012F/4024 User ’s Guide 129 Chapter 19 Policy Rule Click Advanced App lications and t hen Policy Rule in the navigation panel to display the screen as shown. Figure 57 Policy The following table describes the labels in this screen.[...]

  • Page 130

    GS-4012F/4024 User ’s Guide Chapter 19 Policy Rule 130 Table 38 Policy LABEL DESCRIPTION Active Select this option to enable the policy . Name Enter a descriptive name (up to 32 printable ASCII characters) for identification purposes. Classifier(s) This field disp lays the active classifie r(s) you configure in the Classifier screen (refer to Cha[...]

  • Page 131

    GS-4012F/4024 User ’s Guide 131 Chapter 19 Policy Rule 19.3 V iewing and Editing Policy Configuration T o view a summary of the classifier configuration, scroll down to th e summa ry table at the bottom of the Policy screen. T o change the settings of a rule, click a number in the Index field. Figure 58 Policy: Summary T able The following table [...]

  • Page 132

    GS-4012F/4024 User ’s Guide Chapter 19 Policy Rule 132 19.4 Policy Example The figure below shows an example Policy screen where you configure a policy to limit bandwidth and discard out-of-profile traffi c on a traf fic flow classified using the Example classifier (refer to Section 18.4 on page 126 ). Name Enter a descriptive name (up to 32 prin[...]

  • Page 133

    GS-4012F/4024 User ’s Guide 133 Chapter 19 Policy Rule Figure 59 Policy Example[...]

  • Page 134

    GS-4012F/4024 User ’s Guide Chapter 20 Q ueuing Me thod 134 C HAPTER 20 Queuing Method This chapter introduces th e queuing methods sup ported. 20.1 Overview Queuing is used to help solve performance degradation when there is network congestion. Use the Queuing Method screen to configure queuing algorith ms for outgoing traf fic. See also Priorit[...]

  • Page 135

    GS-4012F/4024 User ’s Guide 135 Chapter 20 Que uing Method 20.1.2 We ighted Round Robin Scheduling (WRR) Round Robin Scheduling services queues on a rotati ng basis and is activated only when a port has more traffic than it can handle. A queue is a given an amount of bandwidth irrespective of the incoming traf fic on that port . This queue then m[...]

  • Page 136

    GS-4012F/4024 User ’s Guide Chapter 20 Q ueuing Me thod 136 The following table describes the labels in this screen. Table 41 Queuing Me thod LABEL DESCRIPTION Port This label shows the po rt you are configuring. Method Select SPQ (S trict Priority Queuing) o r WRR (Weighted Round Robin). S trict Priority Queuing (SPQ) services queues based on pr[...]

  • Page 137

    GS-4012F/4024 User ’s Guide 137 Chapter 20 Que uing Method[...]

  • Page 138

    GS-4012F/4024 User ’s Guide Chapter 21 VLAN Stacking 138 C HAPTER 21 VLAN S t acking This chapter shows you how to configure VLAN stacking on your switch. See the chapter on VLANs for more background informatio n on V irtual LAN 21.1 Introduction A service provider can use VLAN stacking to allow it to distinguis h multiple customers VLANs, even t[...]

  • Page 139

    GS-4012F/4024 User ’s Guide 139 Chapter 21 VLAN Stacking Figure 61 VLAN S tacking Example 21.2 VLAN S t acking Port Roles Each port can have three VLAN stacking “roles”, Normal , Access Port and T unnel (the latter is for Gigabit ports only). • Select Normal for “regular” (non-VLAN stacking) IEEE 802.1Q frame switching. • Select Acces[...]

  • Page 140

    GS-4012F/4024 User ’s Guide Chapter 21 VLAN Stacking 140 Ty p e is a standard Ethernet type code identifyi ng the frame and indicates that whether the frame carries IEEE 802.1Q tag information. SP TPID (Service Provider T ag Protocol Identifier) is the service provider VLAN stacking tag type. M any vendors use 0x8100 or 0x9100. TPID (T ag Protoco[...]

  • Page 141

    GS-4012F/4024 User ’s Guide 141 Chapter 21 VLAN Stacking 21.4 Configuring VLAN S t acking Click Advanced App lications and then VLAN S tacking in the navigation panel to display the screen as shown. Figure 62 VLAN S tacking The following table describes the labels in this screen. Table 45 VLAN Stacking LABEL DESCRIPTION Active Select this checkbo[...]

  • Page 142

    GS-4012F/4024 User ’s Guide Chapter 21 VLAN Stacking 142 Priority Select a number from the dr op-down list box to configure the priority level of the outer tag. "0" is the lowest priority level and "7" is the highest. Note: Configure the priority level of the inner IEEE 802.1Q t ag in the Port Setup screen. Apply Click Apply t[...]

  • Page 143

    GS-4012F/4024 User ’s Guide 143 Chapter 21 VLAN Stacking[...]

  • Page 144

    GS-4012F/4024 User ’s Guide Chapter 22 Multicast 144 C HAPTER 22 Multicast This chapter shows you how to conf igure various multicast features. 22.1 Overview T raditionally , IP packets are transmitted in one of either two ways - Unicast (1 sender to 1 recipient) or Broadcast (1 sender to everybod y on the network). Multicast delivers IP packets [...]

  • Page 145

    GS-4012F/4024 User ’s Guide 145 Chapter 22 Multicast The switch forwards multicast traffic destined for multicast groups (that it has learned from IGMP snooping) to ports that are members of that grou p. The switch discards multicast traf fic destined for multicast groups that it does not know . IGMP snooping generates no additional network traff[...]

  • Page 146

    GS-4012F/4024 User ’s Guide Chapter 22 Multicast 146 Figure 64 Multicast: Setting The following table describes the labels in this screen. Table 47 Multicast: Setting LABEL DESCRIPTION IGMP Snooping Select Ac tive to enable IGMP snooping to forward group multicast traffic only to ports that are members of that group IGMP Filtering Select Active t[...]

  • Page 147

    GS-4012F/4024 User ’s Guide 147 Chapter 22 Multicast 22.2.2 IGMP Filtering Profile IGMP filter profiles allow you to control access to IGMP multicast groups. This allows you to have a service available to a specific IGMP multicast group. Y ou can configure an IGMP filter profile for an IGMP multicast group that has access to a service (like a SIP[...]

  • Page 148

    GS-4012F/4024 User ’s Guide Chapter 22 Multicast 148 The following table describes the labels in this screen. 22.3 MVR Overview Multicast VLAN Registration (MVR) is designed for applications (such as M edia-on-Demand (MoD)) that use multicast traffi c ac ross a service provider network. MVR allows one single multicast VLAN to be shared among dif [...]

  • Page 149

    GS-4012F/4024 User ’s Guide 149 Chapter 22 Multicast Figure 66 MVR Network Example 22.3.1 T ypes of MVR Ports In MVR, a source port is a port on the switch that can send and receive multicast traf fic in a multicast VLAN while a receiver port can only r eceive multicast traffic. Once configured, the switch maintains a forwarding table that matc h[...]

  • Page 150

    GS-4012F/4024 User ’s Guide Chapter 22 Multicast 150 Figure 67 MVR Multicast T elevision Example 22.4 General MVR Configuration Use the MVR screen to create multicast VLANs a nd select the receiver port(s) and a source port for each multicast VLAN. Click Advanced App lications and Multicast in the navigation panel. Click the Multicast Setting lin[...]

  • Page 151

    GS-4012F/4024 User ’s Guide 151 Chapter 22 Multicast The following table describes the re lated labels in this screen. 22.5 MVR Group Configuration All source ports and receiver ports belonging to a multicast group can receive multicast data sent to this multicast group. Configure MVR IP multicast group address(es) in the Group Configuration scre[...]

  • Page 152

    GS-4012F/4024 User ’s Guide Chapter 22 Multicast 152 Note: A port can belong to more than o ne multicast VLAN. However , IP multicast group addresses in dif ferent multicast VLANs cannot overlap. Figure 69 MVR: Group Configuratio n The following table describes the labels in this screen. Table 50 Multicast: Setting: MV R: Group Configuratio n LAB[...]

  • Page 153

    GS-4012F/4024 User ’s Guide 153 Chapter 22 Multicast 22.5.1 MVR Conf iguration Example The following figure shows a network example wh ere ports 1, 2 and 3 on the switch belong to VLAN 1. In addition, port 7 belo ngs to the multicast group with VID 200 to receive multicast traffic (the News and Movie channels) from the remote streaming media serv[...]

  • Page 154

    GS-4012F/4024 User ’s Guide Chapter 22 Multicast 154 Figure 72 MVR Group Configuration Exampl e Figure 73 MVR Group Configuration Exampl e[...]

  • Page 155

    GS-4012F/4024 User ’s Guide 155 Chapter 22 Multicast[...]

  • Page 156

    GS-4012F/4024 User ’s Guide Chapter 23 Static Rout e 156 C HAPTER 23 S t atic Route This chapter shows you how to configure static routes. 23.1 Configuring Stat ic routes tell the switch how to forwar d IP traffic when you configure the TCP/IP parameters manually . Click IP Application , S tatic Routing in the navigation panel to di splay the scr[...]

  • Page 157

    GS-4012F/4024 User ’s Guide 157 Chapter 23 Static Route Metric The metric represents the “cost” of trans mission for routing pu rposes. IP routing uses hop count as the measurement of cost, with a minimum of 1 for directly connected networks. Enter a number that approximates the cost for this link. The number ne ed not be precise, but it must[...]

  • Page 158

    GS-4012F/4024 User ’s Guide Chapter 24 RIP 158 C HAPTER 24 RIP This chapter shows you h ow to configure RIP (Routing Information Protocol). 24.1 Overview RIP (Routing Information Protocol allows a ro uting device to exchan ge routing information with other routers. The Direction field controls the sending an d receiving of RIP packets. When set t[...]

  • Page 159

    GS-4012F/4024 User ’s Guide 159 Chapter 24 RIP Figure 75 RIP The following table describes the labels in this screen. Table 52 RIP LABEL DESCRIPTION Active Select this check box to enable RIP on the switch. Index This field displays the ind e x number of an IP interface. Network This field displays the IP interface configured on the switch. Refer[...]

  • Page 160

    GS-4012F/4024 User ’s Guide Chapter 25 OSPF 160 C HAPTER 25 OSPF This chapter describes the OSPF (Open Shortest Path First) routing protocol and shows you how to configure OSPF . 25.1 Overview OSPF (Open Shortest Path First) i s a link-state proto col designed to distribut e routing information within an autonomo us system (AS). An autonomous sys[...]

  • Page 161

    GS-4012F/4024 User ’s Guide 161 Chapter 25 OSPF The following figure depicts an OSPF networ k example. The backbone is area 0 with a backbone router . The internal routers are in ar ea 1 and 2. The area border routers connect area 1 and 2 to the backbone. Figure 76 OSPF Networ k Example 25.1.2 How OSPF Wo rks Layer 3 devices exchange routin g inf[...]

  • Page 162

    GS-4012F/4024 User ’s Guide Chapter 25 OSPF 162 25.2 OSPF S t atus T o view current OSPF status, click IP Application , OSPF in the navigation pane l to display the screen as shown next. Figure 77 OSPF S tatus The following table describes the labels in this screen. Table 55 OSPF S tatus LABEL DESCRIPTION OSPF This field displays whether OSPF is [...]

  • Page 163

    GS-4012F/4024 User ’s Guide 163 Chapter 25 OSPF The following table describes some common output fields. 25.3 Enabling OSPF and General Settings T o activate OSPF and set general settings, click IP Appli c ation , OSPF and the Configuration link to display the OSPF Configuration screen. Table 56 OSPF Status: Common Output Fi elds FIELD DESCRIPTIO[...]

  • Page 164

    GS-4012F/4024 User ’s Guide Chapter 25 OSPF 164 Figure 78 OSPF Configuration: Acti vating and General Settings The follow table describes the related labels in this screen. Table 57 OSPF Configuration: Activating and Ge neral Settings LABEL DESCRIPTION Active OSPF is disabled by default. Select thi s option to e nable it. Router ID Router ID uniq[...]

  • Page 165

    GS-4012F/4024 User ’s Guide 165 Chapter 25 OSPF 25.4 Configuring OSPF Areas T o ensure that the switch receives only rou ting information from a trusted layer 3 devices, activate authentication. The OSPF sup ports three authentication methods: • None – no authentication is used. • Simple – authenticate link state upda tes usi ng an 8 prin[...]

  • Page 166

    GS-4012F/4024 User ’s Guide Chapter 25 OSPF 166 25.4.1 V iewing OSPF Area Information T able The bottom of the OSPF Configuration screen displays a summary table of all the OSPF areas you have configured. Figure 80 OSPF Configuration: Su mmary T able The following table describes the re lated labels in this screen. Authentication Select an authen[...]

  • Page 167

    GS-4012F/4024 User ’s Guide 167 Chapter 25 OSPF 25.5 Configuring OSPF Interfaces T o configure an OSPF interface, first create an IP ro uting domain in the IP Setup screen (see Section 7.7 on page 79 for more information). Once you cr eate an IP routing domain, an OSPF interface entry is automatically created. In the OSPF Configuration screen, cl[...]

  • Page 168

    GS-4012F/4024 User ’s Guide Chapter 25 OSPF 168 25.6 OSPF V irtual Links Configure and view virtual link settings in the OSPF V irtual Link screen. In the OSPF Configuration screen, click V i rtual Link to display the screen as shown next. Key When you select Simple in the Authentication field, enter a password eight-character long. Characters af[...]

  • Page 169

    GS-4012F/4024 User ’s Guide 169 Chapter 25 OSPF Figure 82 OSPF Virtua l Link The following table describes the re lated labels in this screen. Table 61 OSPF Vi rtual Link LABEL DESCRIPTION Name Enter a descriptive name (up to 32 printable ASCII characters) for i dentification purposes. Area ID Sel ect the area ID (that uses the format of an IP ad[...]

  • Page 170

    GS-4012F/4024 User ’s Guide Chapter 25 OSPF 170 Name T his field displays a descriptive name of a virtual link. Peer Router ID This field displays th e ID (that us es the format of an IP address in dotted decimal notation) of a peer border router . Authentication This field displays the authenticati on method used ( Same-as-Area , None , Simple o[...]

  • Page 171

    GS-4012F/4024 User ’s Guide 171 Chapter 25 OSPF[...]

  • Page 172

    GS-4012F/4024 User ’s Guide Chapter 26 IGMP 172 C HAPTER 26 IGMP This chapter shows you how to configure IGMP . 26.1 Overview IGMP (Internet Group Multicast Protocol) is a session-layer protocol used to establish membership in a multicast group - it is not used to carry user data. Refer to RFC 1 1 12 and RFC 2236 for information on IGMP vers ion [...]

  • Page 173

    GS-4012F/4024 User ’s Guide 173 Chapter 26 IGMP Network This field displays the IP domain co nfigured on the sw itch. Refer to Section 7.7 on p age 79 for more information on configuring IP domains. V ersion Select an IGMP version fro m the drop-down list box. Choices are IGMP-v1 , IGMP-v2 and None . Apply Click Apply to save your change s back t[...]

  • Page 174

    GS-4012F/4024 User ’s Guide Chapter 27 DVMRP 174 C HAPTER 27 DVMRP This chapter introduces DVMRP an d tells you how to configure it. 27.1 Overview DVMRP (Distance V ector Multicast Routing Protoc ol) is a protocol used for routing multicast data within an autonomous system (AS). This DVMRP implementation is based on draft-ietf- idmr-dvmrp-v3-10. [...]

  • Page 175

    GS-4012F/4024 User ’s Guide 175 Chapter 27 DVMRP Figure 84 How DVMRP W orks 27.2.1 DVMRP T erminology DVMRP probes are used to discover other DVMRP Neighbors on a network. DVMRP reports are used to exch ange DVMRP source routing in formation. These packets are used to build the DVMRP multicast routing table that is used to build source trees and [...]

  • Page 176

    GS-4012F/4024 User ’s Guide Chapter 27 DVMRP 176 27.3.1 DVMRP Configuration Error Messages Y ou must have IGMP/RIP enabled when you en able DVMRP; otherwise you see the screen as in the next figure. Figure 86 DVMRP: IGMP/RIP Not Set Error When you disable IGMP , but DVMRP is still active you also see another warning screen. Figure 87 DVMRP: Unabl[...]

  • Page 177

    GS-4012F/4024 User ’s Guide 177 Chapter 27 DVMRP Figure 88 DVMRP: Duplicate VID Error Message 27.4 Default DVMRP T imer V alues The following are some default DVMRP timer values. These may be changed using line commands. Please see the commands chap ter later in this User's Guide. Table 64 DVMRP: Default Timer Values DVMRP FIELD DEFAUL T V A[...]

  • Page 178

    GS-4012F/4024 User ’s Guide Chapter 28 IP Multicast 178 C HAPTER 28 IP Multicast This chapter shows you how to configure the IP Multicast screen. 28.1 Overview T raditionally , IP pack ets are transmitted in one of either tw o ways - Unicast (one sender to one recipient) or Broadcast (one sender to every body on the network). IP Multicast is a th[...]

  • Page 179

    GS-4012F/4024 User ’s Guide 179 Chapter 28 IP Multicast Table 65 IP Multicast LABEL DESCRIPTION Port Th is read-only field displays the port number . IP Multicast Egress Untag Vlan ID The switch removes the VLAN tag from IP multicast packets belonging to the specified VLAN before transmission on this port. Enter a VLAN group ID i n this field. En[...]

  • Page 180

    GS-4012F/4024 User ’s Guide Chapter 29 Different iated Services 180 C HAPTER 29 Differentiated Services This chapter shows you how to configure Dif ferentiated Servi ces (Dif fServ) on the switch. 29.1 Overview Quality of Service (QoS) is used to prioritize so urce-to-destination traffic flows. All packets in the flow are given the same priority [...]

  • Page 181

    GS-4012F/4024 User ’s Guide 181 Chapter 29 Differentiated Services Figure 91 DiffServ Network Exam ple Switch A marks traf fic flowing into the network based on the configured marking rules. Intermediary network devices 1 and 2 allocate network resources (such as bandwidth ) by mapping the DSCP values and the associated polic ies. 29.2 Activating[...]

  • Page 182

    GS-4012F/4024 User ’s Guide Chapter 29 Different iated Services 182 29.3 DSCP-to-IEEE802.1p Priority Mapping Y ou can configure the DSCP to IEEE802.1p mapp ing to allow the switch to prioritize all traffic based on the incoming D SCP value accord ing to the DiffServ to IEEE802.1p mapping table. The following table shows t he default DSCP-to-IEEE8[...]

  • Page 183

    GS-4012F/4024 User ’s Guide 183 Chapter 29 Differentiated Services Table 68 DiffServ: DSCP Setting LABEL DESCRIPTION 0 … 63 Th is is the DSCP classi fica tion identificati on number . T o set the IEEE802.1p priority mapping, select t he priority level from the drop-down l ist box. Apply Cli ck Apply to save the changes. Cancel Click Cancel to d[...]

  • Page 184

    GS-4012F/4024 User ’s Guide Chapter 30 DHCP 184 C HAPTER 30 DHCP This chapter shows you how to configure the DHCP feature. 30.1 Overview DHCP (Dynamic Host Configuration Protocol RFC 2131 and RFC 2132 ) allows individual computers to obtain TCP/IP configuration at start-up from a server . Y ou can configure the switch as a DHCP server or disable [...]

  • Page 185

    GS-4012F/4024 User ’s Guide 185 Chapter 30 DHCP Figure 94 DHCP: DHCP Server S tatus The following table describes the labels in this screen. 30.3 Configuring DHCP Server Click IP Application , DHCP in the navigation panel. Click the Server link In the DHCP Server S tatus screen that displays. Table 69 DHCP: DHCP Server Status LABEL DESCRIPTION In[...]

  • Page 186

    GS-4012F/4024 User ’s Guide Chapter 30 DHCP 186 Figure 95 DHCP: Server The following table describes the labels in this screen. Table 70 DHCP: Server LABEL DESCRIPTION VID Enter the ID number of th e VLAN group to which this DHCP settings apply . Client IP Pool S tarting Address S pecify the first of the contiguous addresses in the IP address poo[...]

  • Page 187

    GS-4012F/4024 User ’s Guide 187 Chapter 30 DHCP 30.3.1 DHCP Server Configuration Example The follow figure shows a network example wh ere the switch is used to assign network information to the DHCP clients in the RD and Sales network. Figure 96 DHCP Server Network Exam ple In the DHCP Server screen, configure two DHCP client IP address pools for[...]

  • Page 188

    GS-4012F/4024 User ’s Guide Chapter 30 DHCP 188 30.4.1 DHCP Relay Agent Information The switch can add informa tion to client DHCP requ ests that it relays to a DHCP server . This helps provide authentication abou t the source of the requests. Y ou can also specify additional information for the switch to add to the client DHCP requests that it r[...]

  • Page 189

    GS-4012F/4024 User ’s Guide 189 Chapter 30 DHCP 30.4.3 DHCP Relay Configuration Example The follow figure shows a network example wher e the switch is used to relay DHCP requests for the RD and Sales network. There is only one DHCP se rver that services the DHCP clients in both networks. Figure 99 DHCP Relay Network Example Configure the DHCP Rel[...]

  • Page 190

    GS-4012F/4024 User ’s Guide Chapter 31 VRRP 190 C HAPTER 31 VRRP This chapter shows you how to configure and monitor the V irtual Router Redundancy Protocol (VRRP) on the switch. 31.1 Overview Each host on a network is configur ed to send pa ckets to a statically co nfigured default gateway (this switch). The default gateway can become a single p[...]

  • Page 191

    GS-4012F/4024 User ’s Guide 191 Chapter 31 VRRP 31.2 V iewing VRRP S tatus Click IP Application , VRRP in the navigation panel to display the VRRP S tatus screen as shown next. Figure 102 VRRP S tatus The following table describes the labels in this screen. Table 72 VRRP Status LABEL DESCRIPTION Index This field displays the index number of a rul[...]

  • Page 192

    GS-4012F/4024 User ’s Guide Chapter 31 VRRP 192 31.3 Configuring VRRP Follow the instructions in the follow sections to configure VRRP on the switch. 31.3.1 IP Interface Setup Before configuring VRRP , first create an IP interface (or routing domain) in the IP Setup screen (see the Sectio n 7.7 on page 79 for more information). Click IP Applicati[...]

  • Page 193

    GS-4012F/4024 User ’s Guide 193 Chapter 31 VRRP 31.3.2 VRRP Parameters This section describes the VRRP parameters. 31.3.2.1 Advertisement Interval The master router sends out Hello messages to le t the other backup routers know that it is still up and running. The time inte rval between sending the Hello messages is the advertise ment interval. B[...]

  • Page 194

    GS-4012F/4024 User ’s Guide Chapter 31 VRRP 194 31.3.3 Configuring VRRP Parameters After you set up an IP interface, co nfigure the VRRP parameters in the VRRP Configuration screen. Figure 104 VRRP Configuration: VRRP Parameters The following table describes the labels in this screen. Table 74 VRRP Configuration: VRRP Parameters LABEL DESCRIPTION[...]

  • Page 195

    GS-4012F/4024 User ’s Guide 195 Chapter 31 VRRP 31.4 VRRP Configuration Summary T o view a summary of all VRRP configurations on the switch, scroll down to the bottom of the VRRP Configuration screen. Figure 105 VRRP Configuration: Summary The following table describes the labels in this screen. 31.5 VRRP Configuration Examples The following sect[...]

  • Page 196

    GS-4012F/4024 User ’s Guide Chapter 31 VRRP 196 Figure 106 VRRP Configuration Example: One V irtual Router Network Y ou want to set switch A as the master router . Configure the VRRP parameters in the VRRP Configuration screens on the switches as shown in the figures below . Figure 107 VRRP Example 1: VRRP Parame ter Settings on Switch A Figure 1[...]

  • Page 197

    GS-4012F/4024 User ’s Guide 197 Chapter 31 VRRP Figure 109 VRRP Example 1: VRRP S tatus on Switch A Figure 1 10 VRRP Example 1: V RRP S tatus on Switch B 31.5.2 T wo Su bnet s Example The following figure depicts an example in which two switches share the network traffic. Hosts in the two network g roups use dif ferent de fault gateways. Each swi[...]

  • Page 198

    GS-4012F/4024 User ’s Guide Chapter 31 VRRP 198 Figure 1 12 VRRP Example 2: VRRP Parameter Settings for VR2 on Switch A Figure 1 13 VRRP Example 2: VRRP Parameter Settings for VR2 on Switch B After configuring and saving the VRRP config uration, the VRRP S tatus sc reens for both switches are shown next. Figure 1 14 VRRP Example 2: V RRP S tatus [...]

  • Page 199

    GS-4012F/4024 User ’s Guide 199 Chapter 31 VRRP[...]

  • Page 200

    GS-4012F/4024 User ’s Guide Chapter 32 Maintenance 200 C HAPTER 32 Maintenance This chapter explains how to configure the ma intenance screens that let you maintain the firmware and configuration files. 32.1 The Maintenance Screen Click Management , Maintenance in the navigation panel to open the following scre en. Figure 1 16 Maintenance 32.2 Fi[...]

  • Page 201

    GS-4012F/4024 User ’s Guide 201 Chapter 32 Maintenance After the firmware upgrade pr ocess is complete, see the System Info screen to verify your current firmware version number . 32.3 Restore a Configuration File Restore a previously save d configuration from your co mputer to the switch using the Res tore Configuration screen. Figure 1 18 Resto[...]

  • Page 202

    GS-4012F/4024 User ’s Guide Chapter 32 Maintenance 202 3 Choose a location to save the file on your computer from the Save in drop-down list box and type a descriptive name for it in the File name list box. Click Save to save the configuration file to your computer . 32.5 Load Factory Default s Follow the steps below to reset the sw itch back to [...]

  • Page 203

    GS-4012F/4024 User ’s Guide 203 Chapter 32 Maintenance Figure 123 Reboot System: S tart 3 Click OK again and then wait for the switch to restart. This takes up to two minutes. This does not affect the switch’ s configuration. 32.7 FTP Command Line This section shows some exampl es of uploading to or downloading files fro m the switch using FTP [...]

  • Page 204

    GS-4012F/4024 User ’s Guide Chapter 32 Maintenance 204 If your (T)FTP client does not allow you to ha ve a destination filena me different than the source, you will need to rename them as the switch only recognizes “config” and “ras”. Be sure you keep unaltered copies of both files for later use. Note: Be sure to upload the correct model [...]

  • Page 205

    GS-4012F/4024 User ’s Guide 205 Chapter 32 Maintenance 32.7.4 FTP Restrictions FTP will not work when: • FTP service is disabled in the Access Control screen. • The IP address(es) in the Secured Client S et in the Remote Management screen doe s not match the client IP address. If it does not match, the sw itch will disconnect the T e lnet ses[...]

  • Page 206

    GS-4012F/4024 User ’s Guide Chapter 33 Access Control 206 C HAPTER 33 Access Control This chapter describes how to control access to the switch. 33.1 Overview • A console port access control session and T e lnet access control session cannot coexist. The console port has higher priority . If you telnet to the switch an d someone is already logg[...]

  • Page 207

    GS-4012F/4024 User ’s Guide 207 Chapter 33 Access Control Figure 125 Access Cont rol 33.3 About SNMP Simple Network Management Protocol (SNMP) is an application lay e r protocol used to manage and monitor TCP/IP-based devices. SNMP is used to exchange management information between th e network manageme nt system (NMS) and a network element (NE).[...]

  • Page 208

    GS-4012F/4024 User ’s Guide Chapter 33 Access Control 208 SNMP itself is a simple request/response prot ocol based on the manager/agent model. The manager issues a request and the agent retu rns responses using the following protocol operations: 33.3.1 Supported MIBs MIBs let administrators collect statisti c s and monitor status and performance.[...]

  • Page 209

    GS-4012F/4024 User ’s Guide 209 Chapter 33 Access Control 33.3.3 Configuring SNMP From the Access Control screen, display the SNMP screen. Y ou can click A ccess Control to go back to the Access C ontr ol screen. Figure 127 Access Cont rol: SNMP The following table describes the labels in this screen. 33.3.4 Setting Up Login Account s Up to five [...]

  • Page 210

    GS-4012F/4024 User ’s Guide Chapter 33 Access Control 210 • An administrator is someone who can bot h view and configure switch changes. The username for the Admi nistrator is always admin . The default administrator password is 1234 . Note: It is highly recommended tha t you change the default administrator p assword ( 1234 ). • A non-admini[...]

  • Page 211

    GS-4012F/4024 User ’s Guide 211 Chapter 33 Access Control 33.4 SSH Overview Unlike T elnet or FTP , which transmit data in clear text, SSH (Secure Shell) is a secure communication protoc ol that combines authenticatio n and data encryption to provide secure encrypted communication between two hosts over an unsecured network. Figure 129 SSH Commun[...]

  • Page 212

    GS-4012F/4024 User ’s Guide Chapter 33 Access Control 212 The client automatically saves any new server p ublic keys. In subsequent conn ections, the server public key is ch ecked against the saved version on the client computer . 2 Encryption Method Once the identification is verified, both the c lient and server must agree on the type of encryp[...]

  • Page 213

    GS-4012F/4024 User ’s Guide 213 Chapter 33 Access Control 2 HTTP connection requests from a web browser go to port 80 (by default) on the switch’ s WS (web server). Figure 131 HTTPS Implement ation Note: If you disable HTTP in the Service Access Control screen, then the switch blocks all HTTP connection attempts. 33.8 HTTPS Example If you haven[...]

  • Page 214

    GS-4012F/4024 User ’s Guide Chapter 33 Access Control 214 Figure 132 Security Alert Dialog Box (Inter net Explorer) 33.8.2 Net scape Navigator W arning Messages When you attempt to access the switch HTTPS server , a W ebsite Certified by an Unknown Authority screen pops up asking if you trus t the server certificate. Click Examine Certi ficate if[...]

  • Page 215

    GS-4012F/4024 User ’s Guide 215 Chapter 33 Access Control Figure 134 Security Certificate 2 (Net scape) 33.8.3 The Main Screen After you accept the certificat e an d enter the login username and password, the switch main screen appears. The lock displayed in the botto m right of the browser status bar denotes a secure conn ection.[...]

  • Page 216

    GS-4012F/4024 User ’s Guide Chapter 33 Access Control 216 Figure 135 Login Screen (Internet E xplorer) Figure 136 Login Screen (Netsca pe)[...]

  • Page 217

    GS-4012F/4024 User ’s Guide 217 Chapter 33 Access Control 33.9 Service Port Access Control Service Access Control allows you to decide what services you may use to access the switch. Y ou may also change the default service port an d config ure “trusted co mputer(s)” for each service in the Remote Management screen (discussed later). Click Ac[...]

  • Page 218

    GS-4012F/4024 User ’s Guide Chapter 33 Access Control 218 Figure 138 Access Control: Remote Management The following table describes the labels in this screen. Table 83 Access Control: Remote Management LABEL DESCRIPTION Entry This is the client set index number . A “client set” is a group of one or more “trusted computers” from which an [...]

  • Page 219

    GS-4012F/4024 User ’s Guide 219 Chapter 33 Access Control[...]

  • Page 220

    GS-4012F/4024 User ’s Guide Chapter 34 Diagnostic 220 C HAPTER 34 Diagnostic This chapter explains the Diagnostic screen. 34.1 Diagnostic Click Management , Diagnostic in the navi gation pane l to open th is scree n. Use this screen to check system logs, reset the sy stem or ping IP addresses. Figure 139 Diagnostic The following table describes t[...]

  • Page 221

    GS-4012F/4024 User ’s Guide 221 Chapter 34 Diagnostic[...]

  • Page 222

    GS-4012F/4024 User ’s Guide Chapter 35 Clu ster Manage ment 222 C HAPTER 35 Cluster Management This chapter introduces cluster management. 35.1 Overview Cluster Managemen t allows you to manage switche s through one switch, calle d the cluster manager . The switches must be directly connec ted and be in the same VLAN group so as to be able to com[...]

  • Page 223

    GS-4012F/4024 User ’s Guide 223 Chapter 35 Cluste r Management 35.2 Cluster Management S t atus Click Management , Cluster Management in the navigation panel to display the following screen. Note: A cluster can only have one manager . Figure 141 Cluster Management: S tatu s The following table describes the labels in this screen. Table 86 Cluster[...]

  • Page 224

    GS-4012F/4024 User ’s Guide Chapter 35 Clu ster Manage ment 224 35.2.1 Cluster Member Switch Management Go to the Clustering Management S tatus screen of the cluster manager switch and then select an Index hyperlink from the list of members to go to that cluster member switch's web configurator home page. This cluster me mber web configurat [...]

  • Page 225

    GS-4012F/4024 User ’s Guide 225 Chapter 35 Cluste r Management Figure 143 Example: Uploading Firmware to a Clu ster Member Switch The following table explains some of the FTP parameters. 35.3 Configuring Cluster Management Click Configuration from the Clu ster Management screen to display the next screen. C:>ftp 192.168.1.1 Connected to 192.1[...]

  • Page 226

    GS-4012F/4024 User ’s Guide Chapter 35 Clu ster Manage ment 226 Figure 144 Clustering Manageme n t Configuration The following table describes the labels in this screen. Table 88 Clustering Mana gement Configuration LABEL DESCRIPTION Clustering Manager Active Select Active to have this switch become the cluster manager switch. A cluster can only [...]

  • Page 227

    GS-4012F/4024 User ’s Guide 227 Chapter 35 Cluste r Management Password Each cluster member ’s p assword is its web configurator password. Select a member in the Clustering Cand idate list and then enter its web configurator password. If that switch administrato r changes the web configurator password afterwards, then it cannot be managed from [...]

  • Page 228

    GS-4012F/4024 User ’s Guide Chapter 36 MAC Table 228 C HAPTER 36 MAC T able This chapter introduces the MAC T able scre en. 36.1 Overview The MAC T able screen (a MAC table is also known as a filtering database) shows how frames are forwarded or filtered across the switch’ s ports. It shows what device MAC address, belonging to what VLAN group [...]

  • Page 229

    GS-4012F/4024 User ’s Guide 229 Chapter 36 MAC Table 36.2 V iewing the MAC T able Click Management , MAC T able in the navigation panel to di splay the following screen. Figure 146 MAC T able The following table describes the labels in this screen. Table 89 MAC Table LABEL DESCRIPTION Sort by Click one of the followi ng buttons to di splay and ar[...]

  • Page 230

    GS-4012F/4024 User ’s Guide Chapter 37 IP Table 230 C HAPTER 37 IP T able This chapter introduces the IP table. 37.1 Overview The IP T able screen shows how packets are forwarded or filtered across the switch’ s ports. It shows what de vice IP address, belon ging to wh at VLAN group (if any) is forwarded to which port(s) and whether the IP addr[...]

  • Page 231

    GS-4012F/4024 User ’s Guide 231 Chapter 37 IP Table 37.2 V iewing the IP T able Click Management , IP T able in the navigation panel to display the following screen. Figure 148 IP T able The following table describes the labels in this screen. Table 90 IP Table LABEL DESCRIPTION Sort by Click one of the follow ing buttons to displa y and arrange [...]

  • Page 232

    GS-4012F/4024 User ’s Guide Chapter 38 ARP Table 232 C HAPTER 38 ARP T able This chapter introduces ARP T able. 38.1 Overview Address Resolution Protocol (ARP) is a prot ocol for mapping an Internet Protocol address (IP address) to a physical machine address, al so known as a Media Access Control or MAC address, on the local area network. An IP ([...]

  • Page 233

    GS-4012F/4024 User ’s Guide 233 Chapter 38 ARP Table Figure 149 ARP T able The following table describes the labels in this screen. Table 91 ARP Table LABEL DESCRIPTION Index This is the ARP T able entry number . IP Address This is the learned IP address of a device connecte d to a switch port with corresponding MAC address below . MAC Address Th[...]

  • Page 234

    GS-4012F/4024 User ’s Guide Chapter 39 Routing T able 234 C HAPTER 39 Routing T able This chapter introduces the routing table. 39.1 Overview The routing table contains the ro ute information to the network( s) that the switch can reach. The switch automatically updates the routing table with th e RIP information received from other Ethernet devi[...]

  • Page 235

    GS-4012F/4024 User ’s Guide 235 Chapter 39 Routing Table[...]

  • Page 236

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 236 C HAPTER 40 Introducing the Commands This chapter introduces th e commands and gives a summary of commands available. 40.1 Overview In addition to the web con figurator , you can us e line commands to conf igure the switch. Use line commands for ad vanced switch diagn osis and[...]

  • Page 237

    GS-4012F/4024 User ’s Guide 237 Chapter 40 Introducing the Co mmands 40.2.1 Access Priority • Y ou can only access the CLI with the admini strator ac count (the default username is admin and password is 1234 ). • By default, only one CLI management session is allowed via either the console port or T elnet. Console port access has higher prior[...]

  • Page 238

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 238 3 A login screen displays (refer to Section 40.3 on page 238 ). 40.3 The Login Screen After you have successfully established a conn ection to the switch using a direct console connection or T elnet, a login screen displays as shown below . For your first login, enter the defa[...]

  • Page 239

    GS-4012F/4024 User ’s Guide 239 Chapter 40 Introducing the Co mmands 40.5 Getting Help The system includes a help faci lity to provi de you with the following information about the commands: • List of available commands under a command group. • Detailed descriptions of the commands. 40.5.1 List of A vailable Commands Enter “ help ” to dis[...]

  • Page 240

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 240 Figure 154 CLI Help: List of Commands: Example 2 40.5.2 Det ailed Command Information Enter <command> help to display detailed sub command and parameters. Enter <command> ? to display detailed help inform ation about the sub commands and parameters. Figure 155 CLI [...]

  • Page 241

    GS-4012F/4024 User ’s Guide 241 Chapter 40 Introducing the Co mmands T o enter Enable (or pr ivileged) mode, type enable and enter a password when prom pted (the default is 1234). When you enter the Enable mode, the command prompt changes to the pound sign ( # ). T o enter the config uration mode, type configure or config . The Configure mo de co[...]

  • Page 242

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 242 Note: The write memory command is not available in User mode. Y ou must save your changes after e ach CLI session. All unsaved configuration changes are lost once you rest art the switch. 40.8.1 Logging Out In User mode, enter the exit or logout command to log out of the CLI. [...]

  • Page 243

    GS-4012F/4024 User ’s Guide 243 Chapter 40 Introducing the Co mmands 40.9.2 Enable Mode The following table describes the co mmands available for Enable mode. traceroute <ip|host-name> [in-band|out-of-band|vlan <vlan-id>] [ttl <1-255>] [wait <1-60>] [queries <1-10>] Determines the path a pa cket takes to a device. he[...]

  • Page 244

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 244 <port-num> Removes all learned MAC address on the specified port(s). no logging Disables syslog logging. ping <IP|host- name> Sends Ping request to an Ethernet device. [vlan <vlan-id>][..] Sends Ping request to an Ethernet device in the specified VLAN(s). rel[...]

  • Page 245

    GS-4012F/4024 User ’s Guide 245 Chapter 40 Introducing the Co mmands bandwidth- control Displays bandwidth control settings. bstorm-control Displays broadcast storm control settings. egress Displays outgoing port information. igmp-filtering Displays IGMP filt ering settings. igmp-group- limited Displays the IGMP group limit. igmp-immediate- leave[...]

  • Page 246

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 246 mac-aging-time Displays MAC learning aging time. mac-count Displays the count of MAC addresses learnt. multicast Displays multicast settings. multi-login Displays mult i-login in formation mvr DIsplays all MVR settings. <VID> Displays the specified MVR group settings. po[...]

  • Page 247

    GS-4012F/4024 User ’s Guide 247 Chapter 40 Introducing the Co mmands 40.9.3 General Configuration Mode The following table lists the commands in Configuration (or Config) mode. known-hosts Displays known SSH hosts information. key <rsa1|rsa|dsa> Displays internal SSH public and private key information. session Displays current SSH session(s[...]

  • Page 248

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 248 bcp- transparency Enables Bridge Control Protocol (BCP) transparency . classifier <name> <[packet- format <802.3untag|802.3tag | EtherIIuntag| EtherIItag>] [priority <0-7>] [vlan <vlan- id>][ethernet-type <ether-num|ip|ipx| arp|rarp| appletalk|dec[...]

  • Page 249

    GS-4012F/4024 User ’s Guide 249 Chapter 40 Introducing the Co mmands dhcp relay Enables DHCP relay . helper-address <remote-dhcp- server1> <remote- dhcp-server2> <remote-dhcp- server3> Sets the IP addresses of up to 3 DHCP servers. information Allows the switch to add system name to agent information. option Allows the switch to[...]

  • Page 250

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 250 route-domain <ip- address>/<mask-bits> Enables a routing domain for configuration. See Section 40.9.5 on page 264 for more details. ip address <ip> <mask> Set s the IP address and subnet mask of the out-of-band management port. default-gateway <ip>[...]

  • Page 251

    GS-4012F/4024 User ’s Guide 251 Chapter 40 Introducing the Co mmands multi-login Enables multi-login . mvr <vlan-id> Enters the MVR (Multicast VLAN Registration) configuration mode. Refer to Section 40.10 on page 266 for more information. no bandwidth-control Disable bandwidth control on the switch. bcp-transparency classifier <name> [...]

  • Page 252

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 252 route <ip> <mask> Removes a specified IP static route. route <ip> <mask> inactive Enables a specified IP static route. lacp Disables the link aggregati on control protocol (dynamic trunking) on the switch. logins Disables login access to the specified n[...]

  • Page 253

    GS-4012F/4024 User ’s Guide 253 Chapter 40 Introducing the Co mmands <port-list> Disables port security on the specified ports. <port-list> learn inactive Enables MAC address l earning on the spe cified port s. radius-server Disables th e use of authenti cation fr om the RA DIUS server . remote-management <index> Clears a secure[...]

  • Page 254

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 254 known-hosts <host-ip> [1024|ssh- rsa|ssh-dsa] Removes remote known host s with the specified public key (1024-bit RSA1, RSA or DSA). storm-control Disables broadcast storm control. timesync Disables timeserver settings. trunk <T1|T2|T3|T4|T5|T 6> Disables the speci[...]

  • Page 255

    GS-4012F/4024 User ’s Guide 255 Chapter 40 Introducing the Co mmands policy <name> classifier <classifier-list> < [vlan<vlan-id>] [egress-port <port- num>] [priority <0-7>] [dscp <0-63>] [tos <0-7>] [bandwidth <bandwidth>] [outgoing-packet- format <tagged|untagged>] [out-of-profile-dscp <[...]

  • Page 256

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 256 learn inactive Disab les MAC address learning on the specified port(s). address-limit <number> Limits the number of (dynamic) MAC addresses that may be learned on a port. queue level <0-7> priority <0-7> Sets the priority level-to- physical queue mapping. rad[...]

  • Page 257

    GS-4012F/4024 User ’s Guide 257 Chapter 40 Introducing the Co mmands area <area-id> virtual-link <router-id> authentication- key <key> Enables simple authen tication and sets the authentication key for the specified virtual link in the area. area <area-id> virtual-link <router-id> authentication- same-as-area Sets th[...]

  • Page 258

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 258 no area <area-id> virtual-link <router-id> authentication- same-as-area Resets the authentication settings on this virtual area. no area <area-id> virtual-link <router-id> Deletes the virtual link from the area. no network <ip- addr/bits> Deletes [...]

  • Page 259

    GS-4012F/4024 User ’s Guide 259 Chapter 40 Introducing the Co mmands preempt Enables pree mption mode. primary-virtual- ip < ip> Sets the primary VRRP virtual gateway IP address. priority <1-254> Sets the priroity of the uplink- gateway . secondary- virtual-ip < ip> Sets the secondary VRRP virtual gateway IP address. service-con[...]

  • Page 260

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 260 priority <0-61440> Sets the bridge priority of the switch. ssh known-hosts <host- ip> <1024|ssh- rsa|ssh-dsa> <key> Adds a remote host to which the switch can access using SSH service. storm-control Enables broadcast storm control on the switch. time &l[...]

  • Page 261

    GS-4012F/4024 User ’s Guide 261 Chapter 40 Introducing the Co mmands 40.9.4 interface port-channel Commands The following table lists the interface port-channel commands in configuration mode. Use these commands to configure the ports. Table 96 interface port-c hannel Commands COMMAND DESCRIPTION interface port-channel <port-list> Enables a[...]

  • Page 262

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 262 gvrp Enables this function to permit VLAN groups beyond the local switch. help Displays a description of the interface port-channel commands. igmp-filtering profile <profile> Applies the specified IGMP filtering profile. igmp-group-limit Enables the IGMP group limiting f[...]

  • Page 263

    GS-4012F/4024 User ’s Guide 263 Chapter 40 Introducing the Co mmands broadcast-limit Disables broadcas t storm control limit on the port(s). diffserv Disables DiffServ on the port(s). dlf-limit Disables destination lookup failure (DLF) on the switch. egress-set <port- list> Disables the egress port setting. flow-control Disables flow contro[...]

  • Page 264

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 264 40.9.5 interface ro ute-domain Commands The following table lists the interface route-domain commands in configuration mo de. Use these comm ands to config ure the IP routing domains. vlan-stacking priority <0-7> Sets the priority of the specified port(s) in VLAN stackin[...]

  • Page 265

    GS-4012F/4024 User ’s Guide 265 Chapter 40 Introducing the Co mmands 40.9.6 config-vlan Commands The following table lists the vlan commands in configuration mode. rip direction <Outgoing|In> Sets the RIP direction in this routing do main. vrrp authentication- key <k> Sets the VRRP authentication key in the routing domain. no ip dvmrp[...]

  • Page 266

    GS-4012F/4024 User ’s Guide Chapter 40 Introd u cing the Co mmands 266 40.10 mvr Commands The following table lists the mvr commands in configuration mode. forbidden <port- list> Sets forbidden port(s) to normal port(s). inactive Enables the specified VLAN. ip address <ip- address> <mask> Deletes the IP address and subnet mask f[...]

  • Page 267

    GS-4012F/4024 User ’s Guide 267 Chapter 40 Introducing the Co mmands source-port <port- list> Disables the sourc e port(s).An MVR source port can send and receive multicast tr affic in a mu lticast VLAN. tagged <port-list> Sets the port(s) to untag VLAN tags. receiver-port <port-list> Sets the receiver port(s).An MVR receiver po[...]

  • Page 268

    GS-4012F/4024 User ’s Guide Chapter 41 C ommand Exam ples 268 C HAPTER 41 Command Examples This chapter describes some commands in more detail. 41.1 Overview These are commands that you may use fre quently in maintaining your switch. 41.2 show Commands These are the commonly used show commands. 41.2.1 show system-information Syntax: show system-i[...]

  • Page 269

    GS-4012F/4024 User ’s Guide 269 Chapter 41 Co mmand Examples 41.2.2 show hardware-monito r Syntax: show hardware-monitor [c|f] This command displays the current hardware stat us (such as temperature and voltage levels). The following figure shows an example usin g degree Celsius as the temperature unit. Figure 160 show hardware -monitor Command E[...]

  • Page 270

    GS-4012F/4024 User ’s Guide Chapter 41 C ommand Exam ples 270 Figure 161 show ip Command Example 41.2.4 show logging Note: This command is not av ailable in User mode. Syntax: show logging This command displays the system logs. The following figure shows an example. Figure 162 show logging Comma nd Example Note: If you clear a log (by entering y [...]

  • Page 271

    GS-4012F/4024 User ’s Guide 271 Chapter 41 Co mmand Examples Figure 163 show interface Command Examp le 41.2.6 show mac address-table Syntax: show mac address-table <all <sort>|s tatic> Where <sort> = Specifies the sorting criteria (MAC, VID or port). This command displays the MAC address(es) st ored in the switch. The following[...]

  • Page 272

    GS-4012F/4024 User ’s Guide Chapter 41 C ommand Exam ples 272 Figure 164 show mac address-t able Command Example 41.3 ping Syntax: ping <ip> < [in-band|out-of-band|vla n <vlan-id> ] [ size <0- 8024> ] [ -t ]> where This command sends Ping packets to an Ethe rnet device. The following examp le sends Ping requests to and dis[...]

  • Page 273

    GS-4012F/4024 User ’s Guide 273 Chapter 41 Co mmand Examples 41.4 traceroute Syntax: traceroute <ip> [in-band|out-of-band |vlan <vlan-id>][ttl <1- 255>] [wait <1-60>] [queries <1-10>] where This command displays information about the route to an Ethernet device. The following example displays route information to an [...]

  • Page 274

    GS-4012F/4024 User ’s Guide Chapter 41 C ommand Exam ples 274 Figure 167 Enable RSTP Comm and Example 41.6 Configuration File Maintenance This section shows you how to backup or rest ore the configuration f ile on the switch using TFTP . 41.6.1 Configuration Backup Syntax: copy running-config tftp <ip> <remot e-file> where This comman[...]

  • Page 275

    GS-4012F/4024 User ’s Guide 275 Chapter 41 Co mmand Examples This command restores a configuratio n file on the switch. The followi ng example upload s the configuration file ( test.cfg ) from the TFTP server ( 172.23.19.96 ) to the switch. Figure 169 CLI: Restore Configuration Exa m ple 41.6.3 Using a Different Configuration File Y ou can store [...]

  • Page 276

    GS-4012F/4024 User ’s Guide Chapter 41 C ommand Exam ples 276 The following example resets bo th configuration files to the factory default settings. Figure 172 CLI: Reset to the Factory Default Example 41.7 no Command Examples These are the commonly used comm and examples that belong to the no group of commands. 41.7.1 no mirror-port Syntax: no [...]

  • Page 277

    GS-4012F/4024 User ’s Guide 277 Chapter 41 Co mmand Examples 41.7.3 no trunk Syntax: no trunk <T1|T2|T3|T4|T5|T6> no trunk <T1|T2|T3|T4|T5|T6> lacp no trunk <T1|T2|T3|T4|T5|T6> interfa ce <port-list> where • An example is sh own next. • Disable trunk one (T 1). • Disable LAPC on trunk three (T3). • Remove ports one[...]

  • Page 278

    GS-4012F/4024 User ’s Guide Chapter 41 C ommand Exam ples 278 Figure 176 no port-access-authenticato r Command Example 41.7.5 no ssh Syntax: no ssh key <rsa1|rsa|dsa> no ssh known-hosts <host-ip> no ssh known-hosts <host-ip> [1024|s sh-rsa|ssh-dsa] where An example is shown next. • Disable the secure shell RSA1 encryption key [...]

  • Page 279

    GS-4012F/4024 User ’s Guide 279 Chapter 41 Co mmand Examples 41.8.1 interface port-channel Syntax: interface port-channel <port-list> Use this command to enable the specified ports for configuration. T ype multiple ports or port ranges separated by a comma. Ranges of po rt numbers are typed separated by a dash. An example is shown next. •[...]

  • Page 280

    GS-4012F/4024 User ’s Guide Chapter 41 C ommand Exam ples 280 Figure 179 interface Command Exampl e 41.8.3 bp du-control Syntax: bpdu-control <peer|tunnel|discard|ne twork> where An example is shown next. • Enable ports one, three, four an d five for configuration. • Set the BPDU control to tunnel , to forward BPDUs received on ports on[...]

  • Page 281

    GS-4012F/4024 User ’s Guide 281 Chapter 41 Co mmand Examples where An example is shown next. • Enable port one for config uration. • Enable broadca st control. • Set the number of b roadband packet s the interface receives per second. Figure 181 broadcast-limit Command Examp le 41.8.5 bandwid th-limit Syntax: bandwidth-limit bandwidth-limit[...]

  • Page 282

    GS-4012F/4024 User ’s Guide Chapter 41 C ommand Exam ples 282 41.8.6 mirror Syntax: mirror mirror dir <ingress|egress|both> where An example is shown next. • Enable port mirroring. • Enable the monitor port three. • Enable ports one, four, fiv e and six for configuration. • Enable port mirroring on the ports. • Enable port mirrori[...]

  • Page 283

    GS-4012F/4024 User ’s Guide 283 Chapter 41 Co mmand Examples • Enable the IEEE 802.1Q tagg ed VLAN command to config ure tagged VLAN for the switch. • Enable ports one, three, four an d five for configuration. • Enable GVRP on the interface. Figure 184 gvrp Command Examp le 41.8.8 ingress-check Syntax: ingress-check Enables the device to di[...]

  • Page 284

    GS-4012F/4024 User ’s Guide Chapter 41 C ommand Exam ples 284 Figure 186 frame-type Co mmand Example 41.8.10 spq Syntax: spq Sets the interface to use S trict Priority Queuing. An example is shown next. • Enable ports one, three, four an d five for configuration. • Enable VLAN T runking on the ports. Figure 187 spq Command Example 41.8.1 1 wr[...]

  • Page 285

    GS-4012F/4024 User ’s Guide 285 Chapter 41 Co mmand Examples Figure 188 wrr Command Exam ple 41.8.12 egress set Syntax: egress set <port-list> where An example is shown next. • Enable port-based VLAN tagging on the switch. • Enable ports one, three, four an d five for configuration. • Set the outgoing traffic ports as the CPU (0), sev[...]

  • Page 286

    GS-4012F/4024 User ’s Guide Chapter 41 C ommand Exam ples 286 Figure 190 qos priority Comm and Example 41.8.14 name Syntax: name <port-name-string> where An example is shown next. • Enable ports one, three, four an d five for configuration. • Set a name for the ports. Figure 191 name Command Example 41.8.15 speed-duplex Syntax: speed-du[...]

  • Page 287

    GS-4012F/4024 User ’s Guide 287 Chapter 41 Co mmand Examples[...]

  • Page 288

    GS-4012F/4024 User ’s Guide Chapter 42 IEEE 802.1Q Tagg ed VLAN Commands 288 C HAPTER 42 IEEE 802.1Q T agged VLAN Commands This chapter describes the IEEE 802.1Q T agged VLAN and associated commands. 42.1 IEEE 802.1Q T agged VLAN Overview See the VLAN chapter for more information on VLANs. There are two kin ds of tagging: 1 Explicit T agging A VL[...]

  • Page 289

    GS-4012F/4024 User ’s Guide 289 Chapter 42 IEEE 802.1Q Tagged VLAN Commands 42.2.2 Dynamic Entries (DVLAN T able) Dynamic entries are learned by the switch and ca nnot be c reated or updated by adm inistrators. The switch learns this informa tion by obse rving what port, so urce address and VLAN ID (or VID) is associated with a frame. Entri es ar[...]

  • Page 290

    GS-4012F/4024 User ’s Guide Chapter 42 IEEE 802.1Q Tagg ed VLAN Commands 290 Figure 194 CPU VLAN Configuration and Activation Example 42.4 Global VLAN1Q T agged VLAN Configuration Commands This section shows you how to configure and monitor the IEEE 802.1Q T agged VLAN. 42.4.1 GARP St atus Syntax: show garp This command shows the switch’ s GARP[...]

  • Page 291

    GS-4012F/4024 User ’s Guide 291 Chapter 42 IEEE 802.1Q Tagged VLAN Commands This command sets the switch’ s GARP timer settings, including the join, leave and leave all timers. Switches join VLANs by making a declaration. A declaration is made by issuing a Join message using GARP . Declarations are withdraw n by issuing a Leave mes sage. A Leav[...]

  • Page 292

    GS-4012F/4024 User ’s Guide Chapter 42 IEEE 802.1Q Tagg ed VLAN Commands 292 This command turns on GVRP in order to propagate VLAN information beyond the switch. 42.4.5 Disable GVRP Syntax: no vlan1q gvrp This command turns off GVRP so that the switch does not propagate VLAN information to other switches. 42.5 Port VLAN Commands Y ou must configu[...]

  • Page 293

    GS-4012F/4024 User ’s Guide 293 Chapter 42 IEEE 802.1Q Tagged VLAN Commands This command sets the specified port to accept all Ethernet frames or only those with an IEEE 802.1Q VLAN tag. The following example sets ports 1 to 5 to accept only tagged frames. Figure 199 frame type Comma nd Example 42.5.3 Enable or Disable Port GVRP Use the gvrp comm[...]

  • Page 294

    GS-4012F/4024 User ’s Guide Chapter 42 IEEE 802.1Q Tagg ed VLAN Commands 294 •E n t e r forbidden to block a <port-list> from joining the static VLAN table with <vlan-id> . •E n t e r no fixed or no forbidden to change <port-list> to normal status. •E n t e r untagged to send outgoing frames without a tag. •E n t e r no [...]

  • Page 295

    GS-4012F/4024 User ’s Guide 295 Chapter 42 IEEE 802.1Q Tagged VLAN Commands where This command deletes the specified VLAN ID entry from the static VLAN table. The following example deletes entry 2 in the static VLAN table. Figure 202 no vlan Command Examp le 42.6 Enable VLAN Syntax: vlan <vlan-id> This command enables the specified VLAN ID [...]

  • Page 296

    GS-4012F/4024 User ’s Guide Chapter 42 IEEE 802.1Q Tagg ed VLAN Commands 296 Figure 203 show vlan Command Example ras# show vlan 802.1Q VLAN Static Entry: idx. Name VID Active Ad Ctl / TagCtl ---- ------------ ---- -------- -- ---------------------- 0 1 1 active FF FFFFFFFFFFFFFFFFFFFFFF UU UUUUUUUUUUUUUUUUUUUUUU 1 2 active -- -------------------[...]

  • Page 297

    GS-4012F/4024 User ’s Guide 297 Chapter 42 IEEE 802.1Q Tagged VLAN Commands[...]

  • Page 298

    GS-4012F/4024 User ’s Guide Chapter 43 Troubleshooting 298 C HAPTER 43 T roubleshooting This chapter covers potential problems and possible remedies. 43.1 Problems St arting Up the Switch 43.2 Problems Accessing the Switch Table 100 Troubleshooting the Start-Up of Your Switch PROBLEM CORRECTIVE ACTION None of the LEDs turn on when you turn on the[...]

  • Page 299

    GS-4012F/4024 User ’s Guide 299 Chapter 43 Troublesh ooting 43.2.1 Pop-up Windows, Ja vaScript s and Java Permissions In order to use the web configurator you need to allow: • W eb browser pop-u p windows from your device. • JavaScripts (enabled by default). • Java permissions (enabled by default). Note: Internet Explorer 6 screens are used[...]

  • Page 300

    GS-4012F/4024 User ’s Guide Chapter 43 Troubleshooting 300 Figure 205 Intern et Options 3 Click Apply to save this setting. 43.2.1.1.2 Enable pop-up Blockers with Exceptions Alternatively , if you only want to allow pop-up window s from your device, see th e following steps. 1 In Internet Explorer , select To o l s , Internet Options and then the[...]

  • Page 301

    GS-4012F/4024 User ’s Guide 301 Chapter 43 Troublesh ooting Figure 206 Internet Options 3 T ype the IP address of your device (the web page that you do not want to have blocked) with the prefix “http://”. For example, http://192.168.1.1. 4 Click Add to move the IP address to the list of Allowed sites .[...]

  • Page 302

    GS-4012F/4024 User ’s Guide Chapter 43 Troubleshooting 302 Figure 207 Pop-up Blocker Settings 5 Click Close to return to the Privacy screen. 6 Click Apply to save this setting. 43.2.1.2 JavaScript s If pages of the web configura tor do not display properly in Inte rnet Explorer , check that JavaScripts are allowed. 1 In Internet Explorer , click [...]

  • Page 303

    GS-4012F/4024 User ’s Guide 303 Chapter 43 Troublesh ooting Figure 208 Internet Options 2 Click the Custom Level... button. 3 Scroll down to Scripting . 4 Under Active scripting make sure that Enable is selected (the default). 5 Under Scripting of Java applets make sure that Enable is sele cted (the default). 6 Click OK to clos e the window .[...]

  • Page 304

    GS-4012F/4024 User ’s Guide Chapter 43 Troubleshooting 304 Figure 209 Security Settings - Java Scripting 43.2.1.3 Java Permissions 1 From Internet Explorer , click To o l s , Internet Options and then the Security tab. 2 Click the Custom Level... button. 3 Scroll down to Microsoft VM . 4 Under Java permissions ma ke sure that a safety level is se[...]

  • Page 305

    GS-4012F/4024 User ’s Guide 305 Chapter 43 Troublesh ooting Figure 210 Security Settings - Java 43.2.1.3.1 JA V A (Sun) 1 From Internet Explorer , click To o l s , Internet Options and then the Advanced tab. 2 make sure that Use Java 2 for <applet> u nder Java (Sun) is selected. 3 Click OK to clos e the window .[...]

  • Page 306

    GS-4012F/4024 User ’s Guide Chapter 43 Troubleshooting 306 Figure 21 1 Java (Sun) 43.3 Problems with the Password Table 102 Troubleshooting the Password PROBLEM CORRECTIVE ACTION Cannot access the switch. The password field is case se nsitive. Make sure that you enter the correct password using the proper casing. The administrator username is “[...]

  • Page 307

    GS-4012F/4024 User ’s Guide 307 Chapter 43 Troublesh ooting[...]

  • Page 308

    GS-4012F/4024 User ’s Guide Product Specifications 308 A PPENDIX A Product S pecifications The following table lists th e product specifications. Table 103 General Produ ct Specifications Interface G S-4012F: 12 mini-GBIC (SFP) slots GS-4024: 24 10/100/1000 Base-Tx ports 4 Gigabit/mini-GBIC ports One local management Ethernet port Auto-negotiatio[...]

  • Page 309

    GS-4012F/4024 User ’s Guide 309 Product Specifications Layer 3 Features IP forwarding W ire-speed 8K IP address table Filtering based on the source/destination IP add ress Routing protoc ols Unicast: RIP-V1/V2, OSPF V2 Multicast : DVMRP VRRP IP services DHCP server/relay Layer 4 Features TCP/UDP port-based filtering Bandwidth management Table 104[...]

  • Page 310

    GS-4012F/4024 User ’s Guide Product Specifications 310 Table 105 Physical and Environme n tal Specifications LEDs Per switch: BPS, PWR, SYS, ALM Per Gigabit Ethernet/mini-GBI C port: 100, 100 0/LNK, ACT Per mini-GBIC port: LNK, ACT Per Management port: 10, 100 Dimension S tandard 19” rack mountable GS-4012F: 438 mm (W) x 2 25 mm (D) x 44.45 mm [...]

  • Page 311

    GS-4012F/4024 User ’s Guide 311 Product Specifications[...]

  • Page 312

    GS-4012F/4024 User ’s Guide IP Subnetting 312 A PPENDIX B IP Subnetting IP Addressing Routers “route” based on the network number . The router that delivers the data packet to the correct destination host uses the host ID. IP Classes An IP address is made up of four octets (ei ght bits), wri tten in dotted decimal notation, for example, 192.1[...]

  • Page 313

    GS-4012F/4024 User ’s Guide 313 IP Subnetting Since the first octet of a class “A” IP address must contain a “0”, the first octet of a class “A” address can have a valu e of 0 to 127. Similarly the first octet of a class “B” must begi n with “10”, therefore the first octet of a class “B” address has a valid range of 128 to[...]

  • Page 314

    GS-4012F/4024 User ’s Guide IP Subnetting 314 Since the mask is always a continuous number of ones begin ning from the left, followe d by a continuous number of zeros for the remainder of the 32 bit mask, you can si mply specify the number of ones instead of writing the value of each octet. This is usually specified by writing a “/” followed [...]

  • Page 315

    GS-4012F/4024 User ’s Guide 315 IP Subnetting Note: In the following chart s, shaded/bolded last octet bit values indicate host ID bit s “borrowed” to form network ID bit s. The number of “borrowed” host ID bits determines the number of sub nets y ou can have. The remaining number of host ID bits (af ter “borrowing”) det ermines the n[...]

  • Page 316

    GS-4012F/4024 User ’s Guide IP Subnetting 316 Example: Four Subnet s The above exampl e illustrated using a 25-bit subne t mas k to divide a class “C” address space into two subnets. Similarly to divide a class “C” address into four subnets, you need to “borrow” two host ID bits to give four possible combinations of 00 , 01, 10 and 1 [...]

  • Page 317

    GS-4012F/4024 User ’s Guide 317 IP Subnetting Example Eight Subnet s Similarly use a 27-bit mask to create 8 subnets (001 , 010, 01 1, 100, 101, 1 10). The following table shows class C IP ad dress last octet values for each subnet. The following table is a summary for class “C” subnet planning. Table 116 Subnet 4 NETWORK NUMBER LAST OCT ET B[...]

  • Page 318

    GS-4012F/4024 User ’s Guide IP Subnetting 318 Subnetting With Class A and Class B Networks. For class “A” and class “B” addresses the subnet ma sk also determines which bits are part of the network number and which are part of the host ID. A class “B” address has two host ID octets ava ilable for subnetting and a class “A” address[...]

  • Page 319

    GS-4012F/4024 User ’s Guide 319 IP Subnetting[...]

  • Page 320

    GS-4012F/4024 User ’s Guide Index 320 Index Symbols “standby” ports 11 0 Numerics 802.1P priority 83 A Access control 206 Access priority 206 Limitation 206 Login account 209 Remote management 217 Service port 217 SNMP 207 Address Resolution Protocol (ARP) 232 Administrator password 21 0 Aggregator ID 11 2 Aging time 78 Alternative Subnet Mas[...]

  • Page 321

    GS-4012F/4024 User ’s Guide 321 Index Configure QoS 122 Console port 36 Settings 45 Copyright 2 CPU management port 91 CRC (Cyclic Redundant Check) 69 Current date 76 Current time 76 Customer Support 6 D Database Description (DD) 161 Default gateway 186 DHCP 32 , 184 Client IP pool 186 Modes 184 Relay agent 184 Server 184 Setup 185 DHCP (Dynamic [...]

  • Page 322

    GS-4012F/4024 User ’s Guide Index 322 GARP (Generic Attribute Registration Protocol) 85 garp status 290 GARP S tatus Command 290 GARP timer 78 , 85 General setup 74 Getting he lp 58 Gigabit Ethernet ports 45 GMT (Greenwich Mean Time) 76 GVRP 85 , 90 , 91 , 289 GVRP (GARP VLAN Registration Protocol) 85 , 282 gvrp disable 292 gvrp enable 291 gvrp s[...]

  • Page 323

    GS-4012F/4024 User ’s Guide 323 Index How it works 228 Vie w 229 Maintenance 200 Management Information Ba se (MIB) 207 Management port 93 MD5 165 Metric 164 MIB 207 Supported MIBs 208 Mini GBIC ports 45 Connection speed 46 Connector type 46 T ransceiver installation 46 T ransceiver removal 46 Modifications 3 Mounting brackets 41 MSA (MultiSource[...]

  • Page 324

    GS-4012F/4024 User ’s Guide Index 324 Q Quality of Service (QoS) 122 Queue priority 136 Queue weight 135 , 136 Queuing 33 , 134 Queuing algorithm 134 , 136 Queuing meth od 134 , 136 Calculate 136 R RADIUS 11 6 RADIUS (Rem ote Authentication Dial In User Service) 11 6 RADIUS server 11 6 Advantages 11 6 Network example 11 6 Settings 11 8 Rear panel[...]

  • Page 325

    GS-4012F/4024 User ’s Guide 325 Index Switch lockout 56 Switch reset 56 Switch setup 77 Syntax Conventions 30 sys Commands examples 268 , 276 , 278 sys log disp 270 , 276 , 279 sys sw mac list 271 System information 72 System log 220 System reboot 202 System up time 67 T T agged VLAN 84 TCP/UDP protocol port numbers 124 T empera ture 73 Ti m e Cu[...]

  • Page 326

    GS-4012F/4024 User ’s Guide Index 326 Priority 193 , 194 S tatus 191 Uplink gateway 194 Uplink status 191 Virtual IP 194 Virtual router 190 Virtual Router ID 194 VRID 191 W Web configuration Screen summary 53 Web configurator Getting he lp 58 Home 51 Login 50 Logout 57 Navigation panel 52 Weighted Fair Queuing (WFQ) Wei gh t 136 Weighted Round Ro[...]