Black Box SFP Managed Switch Eco manual

Go to page of 257

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of Black Box SFP Managed Switch Eco, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of Black Box SFP Managed Switch Eco one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of Black Box SFP Managed Switch Eco. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of Black Box SFP Managed Switch Eco should contain:
- informations concerning technical data of Black Box SFP Managed Switch Eco
- name of the manufacturer and a year of construction of the Black Box SFP Managed Switch Eco item
- rules of operation, control and maintenance of the Black Box SFP Managed Switch Eco item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of Black Box SFP Managed Switch Eco alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of Black Box SFP Managed Switch Eco, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the Black Box service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of Black Box SFP Managed Switch Eco.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the Black Box SFP Managed Switch Eco item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    B LAC K BO X ® Pro vid es ( 20 ) Giga bi t E the rn et S FP , ( 4 ) Gig abi t Et her ne t Co mbo R J - 45/ SFP , and (4 ) 1 G / 1 0G SFP+ connection s. Thi s m a n u a l c o n ta i n s i n f o rm a t io n f o r fi r m wa r e v e rsi on 1 . 5 9 . SFP Managed Switch Eco User’ s Manual L G B 512 8 A Ord er toll -free i n the U.S . : Call 877-8 77-B[...]

  • Page 2

    ii LGB5128A User's Manual SFP Managed Swi tch Eco Firmware versi on 1.59 *Supports LFP416 with auto mode of link s peed on Ports 1 – 20 and does not support LFP415. Compatible Black Box SFPs. Part Number Product Name LFP401 – LFP404 155 - Mbps Ex tend ed D iagn osti c S FP LFP411 – LFP414, LFP416* 1250 - Mbps Ex tend ed D iagn osti c SFP[...]

  • Page 3

    iii About This Manual Purpose This manual gives specific information on how to operate and use the manageme nt func tio ns o f the LGB5128A. Audience The manual is intended for use by network administrators who are responsible for operating and maintaining network equipmen t; consequently, it assumes a basic working knowledge of general switch func[...]

  • Page 4

    LGB5128A User Manual iv C AUT ION : Alert s y ou to a pot ent i al hazar d tha t coul d cau se los s of d at a, or damag e the s ys tem or eq ui p me n t.[...]

  • Page 5

    v Table of Contents INTROD UCTION ................................................................................................................................................... 1 CHAPTER 1 OP ERATION OF WEB - BASED MANAGEMENT .............................................................. 2 CHAP TER 2 SYSTEM CONFIGURATION ......................[...]

  • Page 6

    LGB5128A User Manual vi 3- 5.1 Instance ................................................................................................................................ .............. 63 3- 5.2 Port Configuration ............................................................................................................................. 65 3- 5.3 P[...]

  • Page 7

    vii 3- 16.9 DSCP Classification ....................................................................................................................... 145 3- 16.10 QoS Control List Configur ation ................................................................................................... 146 3- 16.11 QCL Status .............................[...]

  • Page 8

    LGB5128A User Manual viii 5- 3.3 Save User .......................................................................................................................................... 228 5- 3.4 Restore User ..................................................................................................................................... 228 5-4 E [...]

  • Page 9

    ix DELETE THIS PAGE[...]

  • Page 10

    [...]

  • Page 11

    LGB5128A User Manual 1 INTRODUCTION Overview This user’s manual explains how to install and connect your network system to configure and monitor the LGB 5128A through its built - in CL I a nd Web via the RS - 232 serial interface and Ethernet ports. Examples of hardware and software functions are shown as well a s the exam ples of the operation f[...]

  • Page 12

    LGB5128A User Manual 2 Chapter 1 Operation of Web-based Management Initial Configuration This chapter instructs you how to configure and manage the LG B5128A through the Web user interface. With this faci lity , you can easil y access and monitor status of all switches through any one port of the switch, including MIBs status, each port activity, S[...]

  • Page 13

    3 N OTE : DHCP is enabl ed on th e LGB5128A, but if you do n ot have a DHCP server to provide IP addresses to the switch, use the switch default ip 192.168.1.1 Figure 1 The login page[...]

  • Page 14

    LGB5128A User Manual 4 Chapte r 2 System Configuration This chapter describes all of the ba sic configuration tasks, including the switch’s system information and man agement ( for examp le, Time, Ac count, IP, Sy slog, and S NMP.) 2-1 System Information After you login, the switch shows you the system i nformati on. This is the defa ult page. It[...]

  • Page 15

    5 Parameter de scripti on:  Model name: The model name of t his device.  System descri ption: 8- port 10/ 100/1000BASE - T + 2 - Port TP/(100/1G) SFP Combo L2 Plus Managed Swit ch .  Location: Where th is swit ch is loc ated . U ser - defined.  Contact: Write down the contact person and phone her e for help managing and maint ain ing th[...]

  • Page 16

    LGB5128A User Manual 6 2- 1.2 Configuration You can identify the system by configurin g the contact information, nam e, and location of the switch. Web i nte rfa ce To configur e System I nformation i n the Web interface: 1. Click System, System Inf ormation, Confi guration. 2. Write System Contact , System Name, System Locati on informati on in th[...]

  • Page 17

    LGB5128A User Manual 7 2- 2 Time This page configures the switch time. Time configuration includes Time Configuration and NTP Confi gurat ion. 2- 2.1 Manual The switch provides manual and automatic ways to set the system time via NTP. Manual setting is simple — just inp ut Year, Month , D ay, Hour, Minu te, and Secon d within the valid value rang[...]

  • Page 18

    LGB5128A User Manual 8  Time Set Offset: Provides the Dayli ght saving t ime set offset . The offset is given in minutes east of GMT. The val id range is from 1 to 144 0 minut es . defau lt is 60 min utes.  Dayligh t Savi ngs Ty pe: Provide the Dayli ght savings t ype selection. You can select “By Dates” or “Recurring” for Daylight sa[...]

  • Page 19

    LGB5128A User Manual 9 2- 2.2 NTP NTP is Network Time Protocol and is used to sync the network time based on Greenwich Mean Time (GMT). If you use the NTP mode and select a buil t - in NTP time server or manual ly specify an user - defi ned NTP server as well as Time Zone, the sw itch will sync the time in shortly after pre ssing < Apply> but[...]

  • Page 20

    LGB5128A User Manual 10 2- 3 Account In this function, o nly the adm inistrator can crea te, m odify, o r delete the u sernam e an d password. The administrator can modify other guest identities’ passwords without conf irming the password but will also n eed to mod ify the ad ministrato r - equivalent ident ity. Gu est - equivalent i dentity can [...]

  • Page 21

    11  Privilege Level : The privilege level of the user. The allowed range is 1 to 15. If the privilege level v alue is 15 , the user can acce ss all grou ps, i.e . he is g ranted the full control of the device. Othe r values ne ed to refer to each grou p privilege leve l. A user’s privilege should be same or greater than the group privil ege le[...]

  • Page 22

    LGB5128A User Manual 12 Figure 2 - 3. 2 : The Privile ge Level configuration Parameter de scripti on:  Group Name The name identifying the privilege group. In most cases, a privilege level group consists of a single module (e.g. LAC P, RSTP or QoS), bu t a few groups con tain more than one . T he f oll owi ng d efi nes thes e pr ivi leg e l evel[...]

  • Page 23

    13 Mainte nance: CLI: System Reboot, System Restore Defaul t, System Password, Configura tion Sa ve, Confi gurati on Load, and Fi rmware Load. Web: User s, Pri vil ege Lev els , a nd e very thi ng in Main tena nce. Debug: Onl y present in CLI.  Privilege Levels Every group has an authorizati on Privilege level for the following sub groups: confi[...]

  • Page 24

    LGB5128A User Manual 14 Figure2 - 4.1 : The IP configuration Parameter de scripti on:  DHCP Client : Enable the DH CP client by checking this box. If DHCP fails and the configured IP add ress is zero, DHCP will retry. If DHCP fails and the configured IP address is no n - zero, DHC P will stop and the configured IP settings will be used. The DHCP[...]

  • Page 25

    15 2- 4.2 IPV6 This section describes how to configure the switch - managed IP v6 information. The Configu red column is used to view or chan ge the IPv6 conf igura tion. The Current column is used to show the active IPv6 configurati on. Configu re t he swi tch - managed IP v6 information on t his page. The Configur ed column i s used to view or c [...]

  • Page 26

    LGB5128A User Manual 16 2-5 Syslog The Syslog is a st andard for logging program m essages . It allow s separation of the software that ge nerates mes sages from the sy stem that stores them and the software that reports and analyzes them. It can be used as well a generalized informational, analysis, and debugging messag es. It is supp orte d by a [...]

  • Page 27

    17 2- 5.2 Log This sect ion how to display the system l og infor mation of the swit ch Web Int erf ac e To display the log configura tion in the Web int erface: 1. Click Sysl og, Log. 2. Display t he log inf ormation. Figure 2 - 5. 2 : The System Log co nfiguration Parameter de scripti on:  Auto - refresh When you cl ick on the auto - refresh ic[...]

  • Page 28

    LGB5128A User Manual 18 2- 5.3 Detailed Log This sect ion descri bes that display the detai led log informati on of t he switch Web Int erf ac e To display the deta iled log configur ation in the Web in terface: 1. Click Sysl og, Detailed Log. 2. Display t he log inf ormation. Figure 2 - 5. 3 : The Detail ed System Log Information Parameter de scri[...]

  • Page 29

    19 2-6 SNMP Any N etwork Management System (NMS) running the Simple Network Management Protocol (SNMP) can mana ge the M anaged devices e quipped w ith SNM P agent, p rovided tha t the Manageme nt Informa tion Base (MIB) is install ed correct ly on the managed devices. The SNMP i s a protocol t hat is used to govern the t ransfer of infor mation be[...]

  • Page 30

    LGB5128A User Manual 20 2- 6.2 Comm unities The function is used to conf igure SNMPv3 communities. The Community and User Name is unique. To create a new community account, please check <Add new community> button, and enter the account infor mation, then check <Save>. Max Group Number : 4. Web Int erf ac e To display the conf igure SNMP[...]

  • Page 31

    21 2- 6.3 Users The function is used to configure SNM Pv3 user. The Entry index key is Us erNam e. To create a new UserNam e account, click on the <Add new user> button, and enter the user informa tion then check < Save> . Max G roup N umbe r : 10. Web Int erf ac e To display the conf igure SNMP Users in the Web interfa ce: 1. Click SNM[...]

  • Page 32

    LGB5128A User Manual 22 MD5 : An optional flag to indi cate that t his user uses MD5 authenticat ion protocol. SHA : An opti onal flag to indicate that this user uses SHA authentication protocol. The value of security level cannot be modified if entry already exists. That means must fi rst en sure tha t t he valu e i s s et c orr ectl y.  Authen[...]

  • Page 33

    23 2- 6.4 Groups The function is used to confi gure SNMPv3 group. The Entry index key are S ecurity Model and Securit y Name. To create a new gro up ac count, please check <Add new group> button, and enter the gr oup informati on then check <Save>. Max Group Number : v1: 2, v2: 2, v3:10. Web Int erf ac e To display the conf igure SNMP G[...]

  • Page 34

    LGB5128A User Manual 24 2- 6.5 Views The functio n is used to configure SNMPv3 view. The Entry index keys are OID Subtree and View Name. To create a new view accoun t, please click on the <Add new view> but ton, and enter the view i nformation then cli ck on <Save>. Max Group Number : 28. Configu re SNMPv3 view table on th is pa ge. Th [...]

  • Page 35

    25  OID Subt ree The OID defining t he root of the subtree t o add to the named vi ew. The allowed OID length is 1 to 128. The allowe d string con tent is di gital number or asterisk(*).  Save Click t he Save icon to save t he confi gurati on to ROM. 2- 6.6 Access The function is u sed to configure SN MPv3 accesses. The Entry index keys are G[...]

  • Page 36

    LGB5128A User Manual 26 v2c: Reserved for SNMPv2c . usm: User - based Secur ity Model ( USM).  Security Level Indicates the security mo del that this entry should belong to. Possible secu ri ty model s ar e: NoAuth, NoPriv: No authe nticat ion and no pr ivacy. Auth, NoP riv: Authenti cation and no pr ivacy. Auth, Pr iv: Authen tication and priva[...]

  • Page 37

    27 Parameters descripti on:  Delete: Check <Delete> entry then clic k on the <Save> button, and the entry will be deleted.  Trap Version: You may choose v1, v2c, or v3 trap.  Server IP: Assign the SNMP Host IP add ress.  UDP Port: Assign the Port number. Default: 162  Community/Security Name: The length of “Community/Se[...]

  • Page 38

    LGB5128A User Manual 28  Privacy Pro tocol: You can set DES encryption f or UserName.  Privacy Pass word: The length of “Privacy Password” is r estricte d to 8 – 32.[...]

  • Page 39

    29 Chapte r 3. Configuration This chapter desc ribes all of the basic net work configur ation task s, includ ing the Ports, Layer 2 network protocol (e.g., VLANs, QoS, IGMP, ACLs, and PoE, etc.), and any setting of t he switch. 3-1 Port The section describes how to confi gure the Port det ail parameters of t he switch, to enable or disable switch P[...]

  • Page 40

    LGB5128A User Manual 30 Parameter de scripti on:  Port : This is t he logical port number f or this row.  Link : The current link state is displayed graphically. Green indicates the link is up and red that it is down.  Current Link Speed : Provides the cur rent link speed of the por t.  Configured Li nk Speed : Se lect any a vailable li[...]

  • Page 41

    31 3- 1.2 Port Description The secti on describe s how to configure the Port’s alias o r any descripti on for the P ort Identit y. The user can write down an alphanumeric str ing describi ng the full name and version identifica tion for the system ’s hard ware typ e, softw are vers ion, and netwo rking app lication. Web Int er face To configur [...]

  • Page 42

    LGB5128A User Manual 32 3- 1.3 Traffic Overview The section describes the Port statistics information and provides an overview of ge neral traffic statistics for all switch ports. The ports belong to the currently selected stack unit, as reflected by the page header. Web Int erf ac e To Display the Port Statist ics Overvi ew in the Web interface : [...]

  • Page 43

    33 3- 1.4 Detailed Stati st ics The section describes how to provide detailed traffic statistic s for a specific switch port. Use the port select box to select which switch port details to display. The selected port belongs to the currently selected st ack unit, as ref lected by the page header. The displayed counters are the totals for receive and[...]

  • Page 44

    LGB5128A User Manual 34  Rx and Tx Multic ast : The number of re ceived and tr ansmitted (good and bad) multic ast packets.  Rx and Tx Broadcast : The number of re ceived and tr ansmitted (good and bad) broadcas t packets.  Rx and Tx Pause : A count of the MAC Control frames received or transmitted on this po rt th at have an opcode i ndic[...]

  • Page 45

    35 3- 1.5 Qos Statistics The sectio n describes how a swit ch displ ays the QoS detailed Queuing counters for a specif ic switch port, and for the different queues for all sw itch ports. The ports belong to the currently selected stack unit, as reflected by t he page header. Web Int erf ac e To Display the Queueing Counters in the Web interfa ce: 1[...]

  • Page 46

    LGB5128A User Manual 36 3- 1.6 SFP Information The sec tion describes how a swit ch displays the SFP module detail information that you use to connect it to the switc h. T he information includes: Connec tor type, Fibe r ty pe, wavelength, baud rate, and Vendor OUI etc. Web Int erf ac e To Display the SFP in formation in the Web interf ace: 1. Clic[...]

  • Page 47

    37  Vendor Rev ( Revision): Display the modu le rev ision.  Vendor SN (Ser ial Number) : Show the seri al number ass igned by t he manufacturer .  Date Co de: Show the date this SFP modul e wa s mad e.  Temperature: Show the curr ent temperatur e of SFP modul e.  Vcc: Show the working DC voltage of SFP module.  Mon1(Bi as) mA: Sho[...]

  • Page 48

    LGB5128A User Manual 38 Figure 3 - 1. 7 : The EEE Configurati on Parameter de scripti on:  EEE Port Confi guration: The EEE port settings relate to the currently selected stack unit, as reflected by the page he ader.  Port : The switch port number of t he logical EEE port.  EEE Enabled : Controls whether EEE is enable d for this sw itch po[...]

  • Page 49

    39 3- 2.1 Ports The section describes how to confi gure the ACL parameters (ACE) of each swi tch port . These parameters will affect frames received on a port unl ess the fr ame matches a specifi c ACE. Web Int erf ac e To configur e the ACL Ports C onfiguratio n in the W eb interfa ce: 1. Click Conf iguration, ACL, then Ports. 2. Scroll to the spe[...]

  • Page 50

    LGB5128A User Manual 40  Mirro r : Specify th e mirror o peration of this port. The allowed val ues are: Enabled: Frames received on the port are m irrored. Disable d: Frames received on t he port are not mirrored. The default value is “Disabled.”  Logging : Specify th e logging operation of this port. The allowed val ues are: Enabled: Fr[...]

  • Page 51

    41 Figure 3 - 2. 2 : The ACL Rate Limite r Configuration Parameter de scripti on:  Rate Li miter I D : The rate l imiter ID for the se ttings cont ained in the same row.  Rate The allowed values are: 0 - 3276700 in pps or 0, 100, 200, 300, ..., 1000000 in kbps.  Unit : Specify th e rate uni t. The al lowed value s are: pps: packets per sec[...]

  • Page 52

    LGB5128A User Manual 42 Web Int erf ac e To configur e Access Cont rol List in the Web inter face: 1. Click Configuration, ACL, then Confi guration. 2. Click the “+” button to add a new ACL, or use the other ACL modific ation buttons to specify the editing action (i.e., edit, delete, or moving the relati ve posi tion of entry in the list). 3. S[...]

  • Page 53

    43  Action : Indicates the forw arding action of the ACE. Permit: Frames matching the ACE may be f orwarded and learned. Deny: Frames matching the ACE are dropped.  Rate Li miter : Indicates the rate limiter numb er of the ACE. T he a llowed range is 1 to 16. When Disa ble d i s d ispl aye d, the rat e l imi ter ope rati on is di sabl e d. ?[...]

  • Page 54

    LGB5128A User Manual 44  Buttons Save – Click to sa ve changes. Reset - Click to undo any changes made locally and revert to previousl y saved values.  Auto - refresh: To evoke the aut o - refresh to refresh the info rmation autom atically.  Upper ri ght i con (Ref resh, clear, Remove All) Click on these icons to refresh theACL configura[...]

  • Page 55

    45 Deny: Frames matching the ACE are dropped.  Rate Li miter : Indicates the rate limiter numb er of the ACE. T he a llowed range is 1 to 16. When Disa ble d i s d ispl aye d, the rat e l imiter ope ration is d isabled.  Port Copy : Indicates the p ort cop y op eration of the ACE. Frames matching the ACE a re copied to the port number. The al[...]

  • Page 56

    LGB5128A User Manual 46 Web Int erf ac e To configur e the Tr unk Aggregati on Hash mode and Aggregation Group in the Web int erface: 1. Click Conf iguration, Static Trunk, and then Aggr egation Mode Configurat ion. 2. Evoke to enabl e or disabl e the aggregat ion mode function. Evoke Aggre gation Group ID and Port members 3. Click t he save button[...]

  • Page 57

    47 Aggregation Group Confi guration  Locality : Indicates the aggrega tion group type. This field is only valid for stacka ble switches. Global: The group m embers may reside on different units in the stack. The device supports two 8 - por t global aggregations. Local: The group members reside on the same unit. Each local aggregation may c onsi [...]

  • Page 58

    LGB5128A User Manual 48 Figure 3 - 3.2.1: The LACP Port Co nfiguration Parameter de scripti on:  Port : The switch port number.  LACP Enabled : Controls wheth er L ACP i s en abled on thi s swi tch port. L ACP wi ll form an aggregation when 2 or more ports are connected to the same partner. LACP can form max 12 LLAGs per switch and 2 GLAGs pe[...]

  • Page 59

    49 3- 3.2.2 System Status This section describes how to set LACP function on the switch to provide a status overview for all LACP inst ances. Web Int erf ac e To display the LACP Syst em status in the Web interface : 1. Click Conf iguration, LACP, System Status. 2. If y ou want to aut o - refresh the info rmation then you need to evoke the “Auto [...]

  • Page 60

    LGB5128A User Manual 50 3- 3.2.3 Port Status This section describes how t o set LACP functi on on the switch then to provide a Port Status overview for all LACP instances. Web I nt erf ace To display the LACP Port status in the Web interfac e: 1. Click Conf iguration, LACP, Port Stat us. 2. If y ou want to aut o - refresh the info rmation then you [...]

  • Page 61

    51 3- 3.2.4 Port Statisti cs This section describes how to set LACP function on the switch to provide a Port Statisti cs overview for all LACP instances. Web Int erf ac e To display t he LACP Port stat us in the Web interface: 1. Click Conf iguration, LACP, Port Stati stics. 2. If y ou want to aut o - refresh the info rmation, click on the “Auto [...]

  • Page 62

    LGB5128A User Manual 52 3-4 Spanning Tree The Spanning Tr ee Protocol (STP) can be used to detect and disabl e network l oops, and to provide backup l inks between swit ches, bridges, or router s. This al lows the swit ch to int eract with othe r bridging devices (that is, an STP - compliant switch, bridge, or rout er) in your network to ensur e th[...]

  • Page 63

    53 Figure 3 -4.1 : The STP Bridge C onfiguration Parameter de scripti on: Basic Settings  Protocol Version : The STP protocol version set ting. Vali d values ar e STP, RSTP, and MSTP.  Bridge Pri ority : Controls the bridge priority. Lower numeric values have better priority. The bridge priority plus the MSTI instance number, concatenated wit[...]

  • Page 64

    LGB5128A User Manual 54 Advanced Settings  Edge Port BPDU Fil tering : Contro l w hether a port ex plicitly con figured a s Edge will trans mit and receive BPDUs.  Edge Port BPDU Guard : Control whether a port explicitl y configured as Edge will disable itself upon reception of a BPDU. The port will enter th e error - disabled state, and wil [...]

  • Page 65

    55 Figure 3 -4.2 : The MSTI Co nfigur ation Parameter de scripti on: Configuration Identification  Configuration Name : The name identifying the VLAN to M STI mapping. Bridges must share the name and revision (see below), as well as the VLAN - to - MSTI mapping confi gurati on in order to sh are spann ing trees for M STI's (Int ra - region)[...]

  • Page 66

    LGB5128A User Manual 56 Web Int erf ac e To configur e the Spann ing Tree MSTI Priorit ies parameter s in t he Web inte rface: 1. Click Conf iguration, Spanning Tree, MSTI Priori ties. 2. Scroll the Priori ty. The maximum is 240. Default is 128. 3. Click t he save button to save the setting 4. If you want to cancel the setting, then you need to cli[...]

  • Page 67

    57 Figure 3 - 4. 4 : The STP CIST Por t Configuration Parameter de scripti on:  Port : The switch port number of t he logical STP port.  STP Enabled : Controls whether STP is enabled o n this switch port.  Path Cost : Controls the path cost incurred by the port. The Auto setting will set the path cost as appropriate by the physical link sp[...]

  • Page 68

    LGB5128A User Manual 58  Restric ted Role : If e nabled, this cau ses the port not to be selected as R oot Port for the C IST or any MSTI, even i f it ha s th e be st sp anning tree prio rity v ector. Such a port w ill be selected as an Alternate Port after the Root Port has been selected. If set, it can cause lack of spanning tree connectivity.[...]

  • Page 69

    59 Figure 3 - 4. 5 : The MSTI Port Configur ation Parameter de scripti on:  Port : The switch port number of t he corresponding STP CIST (and MSTI) port.  Path Cost : Controls the path cost incurred by the port. The Auto setting will set the path cost as appropriate by the physical link speed, using the 802.1D recommended values. Using the Sp[...]

  • Page 70

    LGB5128A User Manual 60 3- 4.6 Bridge Status After you compl ete the MSTI Port confi gurati on, you could to ask the swi tch t o displ ay the Bridge St atus. The Sect ion pr ovides a statu s overvi ew of a ll STP bridge instances. The displayed tabl e contains a row for each STP bri dge instance, where the column displays the following in formatio [...]

  • Page 71

    61 3- 4.7 Port Status After you complete the STP configur ation, you could to ask the switch to display the STP Port Status. The section explains how to ask the switch to display the STP CIST port status for physical port s of the currently s elected switch. : Web I nte rfa ce To display the STP Por t status in the Web interf ace: 1. Click Configur[...]

  • Page 72

    LGB5128A User Manual 62 3- 4.8 Port Statisti cs After you complete the STP configurati on, then you can to enable the switch to display the STP Statis tics. The sectio n explains how to ask the switch to display the STP Statist ics detail counters of bridge port s in the currentl y selected switch. Web Int erf ac e To display the STP Por t status i[...]

  • Page 73

    63 It means th e switch supports the MRSTP. Several spanning trees exist at the same time and these sp anning tre es won ’t affect eac h other. A switch supports M RSTP and accepts two or m ore RSTP in signal equipment. These two RSTP group have differen t ports to join them and betwee n different Hello Time, Max Age, Forwarding Delay. The M RSTP[...]

  • Page 74

    LGB5128A User Manual 64  Priorit y : The priority parameter used in the CIST (Comm on and Internal Spanning Tree) connection. 0 / 4096 / 8192 / 12288 / 16384 / 20480 / 24576 / 28672 / 32768 / 36864 / 40960 / 45056 / 49152 / 53248 / 57344 / 61440.  Hello - ti me : Available value range: 1 / 2 In contrast with R STP, Hello Tim e in MRST P that [...]

  • Page 75

    LGB5128A User Manual 65 3- 5.2 Port Configuration The chapter describes how to configure the MRSTP port. After you configure the MRSTP instance , the n y ou c an a ssign the p ort to join the ins tance and se t th e pa ramete rs t o implem ent MR STP. Web Int erf ac e To configur e the MRSTP Port config uration i n the Web i nterface : 1. Click Con[...]

  • Page 76

    LGB5128A User Manual 66 Parameter de scripti on:  Port: The physical port index available va lue is 1 to 24.  Instance : Every MRSTP inst ance must have a unique i nstance ID.  Path Cost : Select “Auto” or “Specific.” If you select Specific, then you need to assign the path cost val ue. The avai lable range is from 1 to 200,000,000[...]

  • Page 77

    67 3- 5.3 Port Status The section describes how to configure a M RSTP Port status table. You will see the MRSTP configuration result, each port that joins the MRSTP group, and its st atistics. Web Int erf ac e To view th e MRSTP Port sta tus in t he Web inte rface: 1. Click Conf iguration, MRSTP, Port Status. 2. Check the “ Auto - refresh” box,[...]

  • Page 78

    LGB5128A User Manual 68 Display s the port priorit y. Priori ty here means Port Prior ity. Port Priority and Port Num ber are m ixed to form the Port ID. Port IDs are often com pared in order to determine which port of a bridge would become the Root Port. The range is 0 – 240.  Admin Edge : Display s the port admin edge statu s. If you don’t[...]

  • Page 79

    69 Figure 3 -5.1 : The IGMP Snooping Configuration. Parameter de scripti on:  Snooping Enable d: Enable the Gl obal IGMP Snoopi ng.  Unregist ered IPMC v4 Flooding enabled : Enable unregi stered IPMCv4 traffic flooding.  IGMP SSM Ran ge : SSM (Source - Specific Multi cast) Range allows the SSM - aware hosts and routers to run the SSM se rv[...]

  • Page 80

    LGB5128A User Manual 70 3- 5.2 VLAN Configuration The sec tion describes the VLAN configurati on s etting process integr ated with the I GMP Snooping fu nction. Each setti ng page shows up t o 99 entrie s from the VLAN ta ble (the de fault is 20) selecte d through t he "entries per page" input field. When first visited, the Web page will [...]

  • Page 81

    71  QRI : Query Response Inte rval. The M ax. Response Time used to calcu late the Ma x. R esp. Code insert ed into the periodi c General Queri es. The allowed range is 0 to 31744 in te nths of seconds; def ault query response interv al is 100 in tenths of seconds (10 seconds).  LLQI (LMQI for IGMP) : Last Member Query Interval. The Last M em[...]

  • Page 82

    LGB5128A User Manual 72 Figure 3 -5.3 : The IGMP Snoop ing Port Group Filt ering Configurati on. Parameter de scripti on:  Delete : Check t o del ete t he ent ry. It wi ll be del eted during the next save.  Port : Enable t he IGMP Sno oping Por t Group Filte ring f unction on the port.  Filtering Groups : The IP Mult icast Gro up that wi l[...]

  • Page 83

    73 3- 5.4 Status After you complet e the IGMP Snooping configura tion, the s witch can display the I GMP Snooping Status. The sec tion e xplains how to displa y the I GMP Snooping detai l stat us. Web Int erf ac e To display the IGMP Snoopi ng status in th e Web interf ace: 1. Click Configuration, IGMP Snooping, Stat us. 2. If y ou want to auto - r[...]

  • Page 84

    LGB5128A User Manual 74  V2 Leaves Rec eived : The number of Received V2 Leaves .  Auto - refresh Click the box next to auto - refresh and the device will refresh the log automatically.  Upper ri ght i con (Ref resh, clear) Click o n these icons t o refr esh the Status or cl ear manuall y. 3- 5.5 Group Information After you set the IGMP Sn[...]

  • Page 85

    75 3- 5.6 IPv4 SSM information Source Speci fic Mul ticast (SSM) is a d atagram del ivery model that b est suppor ts one - to - many applications, also known as broadcast applications. SSM is a core network technology of IP multicast t argeted for audio and video broadcast appli cation environments . For the SSM delive ry mode, an IP mult icast rec[...]

  • Page 86

    LGB5128A User Manual 76  Port : Switch p ort nu mber.  Mode : Indicates the filtering m ode maintained pe r (V LAN ID, por t nu mber, Group Address) basis. It can be e ither Includ e or Exc lude.  Source Address : IP Ad dress o f the s ource. Currently, sys tem lim its the total numbe r of IP sourc e addr esses for filtering to b e 128. ?[...]

  • Page 87

    77 3- 6.1 Basic Configuration The section explains how to configure the MLD Snooping basic configuration and the parameters. Web Interface To configur e the MLD Snoo ping Configu ration i n the Web i nterface: 1. Click Configuration, MLD Snooping, Basic Configuration. 2. Enable or disable t he Global confi guration parameter s. Select the por t to [...]

  • Page 88

    LGB5128A User Manual 78  Port: The Port i ndex to e nable or d isable t he MLD Snooping f unction.  Fast Leave : Enable t he fas t leave on the port.  Router Po rt : Specify which ports act as rout er ports . A rout er port is a por t on t he Etherne t switc h that leads towards th e La yer 3 mu lticast d evice or MLD quer ier. If an aggre[...]

  • Page 89

    79  Compatibilit y : Compatib ilit y is maintain ed by hosts and routers taking appropriate actions depending on the ver sions o f MLD opera ting on hosts and routers within a netw ork. T he allow ed selection is MLD - Auto , Forced MLDv1 , Forced MLDv2 , default compatibility value is MLD - Auto.  Rv : Robustne ss Vari able. T he Robustness [...]

  • Page 90

    LGB5128A User Manual 80 Figure 3 - 7. 3 : The MLD Snoopin g Port Group Fil tering Confi guration Parameter de scripti on:  Delete : Check t o del ete t he ent ry. It wi ll be del eted during the next save.  Port : The logical port for the set tings. You can enable the port to join filtering gr oups.  Filtering Groups The IP Mult icast Gro [...]

  • Page 91

    81 Figure 3 -6.4 : The MLD Snoop ing Status Parameter de scripti on:  VLAN ID : The VLAN ID of the en try.  Querier Vers ion : The current ly workin g Querier Ver sion.  Host Ve rsion : The current ly workin g Host Versi on.  Querier Stat us : Show the Querier status is " ACTIVE" or "IDLE."  Queries Trans mitted :[...]

  • Page 92

    LGB5128A User Manual 82 Web Int erf ac e To display the MLD Snoopi ng Group inf ormation i n the Web i nterface: 1. Click Configuration, MLD Snooping, Group I nformation. 2. If you w ant to auto - refresh the info rmation then you need to check the “Au to - refresh” box. 3. Click “ Refresh“ to refresh an entry of the MLD Snooping Group Info[...]

  • Page 93

    83 3- 6.6 IPv6 SSM Information The section describes how to configure the Entries in the MLDv2 Informati on Table are shown on this page. The M LDv2 Information Table is sorted first by VLAN ID, then by group, and then by Port N o. Differen t source addres ses tha t belong to the s ame g roup are treated a s a single entry. Each page shows up to 64[...]

  • Page 94

    LGB5128A User Manual 84 3-7 MVR The MVR feature enables multicast traffic forwarding on the Multicast VLAN. In a multicast television appl ication, a PC or a television wi th a set - top box can rec eive the multica st stream. Multi ple set - top b oxes or PC s c an be conn ected to one su bscriber po rt, w hich is a switch p ort configured as an M[...]

  • Page 95

    85  Immediate Leave : Enable t he fas t leave on the port.  Buttons: Save – Click to sa ve changes. Reset - Click to undo any cha nges made local ly and rever t to previ ously saved values. 3- 7.2 Groups I nfor mation The section describes how to display the MVR Groups detail informati on on the switch. Entries in the MVR Group Table are sh[...]

  • Page 96

    LGB5128A User Manual 86 3- 7.3 Statistics The section descr ibes how th e switch will di splay the MVR detail Statist ics aft er you configured MVR on the switch. It provides the detail MVR Statistics Information. Web Int erf ac e To display the MVR Stat istics Informati on in the Web interf ace: 1. Cli ck Conf igura tion, MVR, St atis tics. 2. To [...]

  • Page 97

    87 3- 8 LLDP The switch supports the LLDP. For current information on your switch model, the Link Layer Discovery Protocol (LLDP) provides a standards - based method for enabling switches to advertise th emselves to ad jacent devices an d to learn about adjacent LLD P devices . The Link Layer Discovery Protocol (LLDP) is a vendor - neutral Link Lay[...]

  • Page 98

    LGB5128A User Manual 88  Tx Hold : Each LLDP frame conta ins informa tion abou t how long th e informa tion in the LLDP fram e will be consid ered vali d. The LLDP information valid pe riod is set to Tx Ho ld multiplie d by Tx Interv al seconds. Valid v alues are restric ted to 2 – 10 times.  Tx Delay : If som e con figuration is ch anged ([...]

  • Page 99

    89 N OTE : When CDP awareness on a port is dis abled, the CDP informa tion isn't re moved imme diately, bu t gets w hen the hold time is exceeded.  Port Descr : Option al TLV : W hen checke d the "p ort description" is included in LLDP in formatio n transmitte d.  Sys Name : Option al TLV : When checke d the " system name&[...]

  • Page 100

    LGB5128A User Manual 90 Parameter de scripti on:  Local Port : The port on which t he LLDP frame was received.  Chassis ID : The Chassis ID is t he identi ficati on of t he neighbor' s LLDP fra mes.  Remote Port ID : The Remote Port ID is the ident ificat ion of the neighbor port.  System Name : System Name i s the name adver tised[...]

  • Page 101

    91 3- 8.3 LLDP - MED Conf igu rat ion Media Endpoint Discovery is an enhancement of LLDP, known as LLDP - MED, that pr ovid es the follow ing facilities: Auto - discovery of LAN policies (such as VLAN, Layer 2 Priority, and Differentiated services (Diffserv) settings) e nabling plug - and - play networking. Device locat ion discover y to allow crea[...]

  • Page 102

    LGB5128A User Manual 92 Parameter de scripti on: Fast start repeat count Rapid startup an d Emergency Call S ervice Location Identification Discovery of endpoints is a critically important aspe ct of VoIP systems in general. In addition, it is best to advertise only those pieces o f info rmation that are spe cifically relevant to pa rticula r endpo[...]

  • Page 103

    93 NAD83/MLLW: Nor th American Datum 1983, CRS Code 4269, Prime Merid ian Name: Greenwi ch; The associated vertical datum is Mean Lower Low Wat er (MLLW). This datum pair is t o be used when ref erencing locat ions on water/ sea/ocean. Civic Address Locati on IETF G eopriv C ivic Addre ss base d Locatio n Configu ration Info rmation (C ivic Add res[...]

  • Page 104

    LGB5128A User Manual 94  Floor : Floor - Example: 4.  Room no. : Room number - Example: 45 0F.  Place type : Place t ype - Example: Office.  Postal community name : Postal community name - Example: Leonia.  P.O. Box : Post of fice box (P.O. BOX) - Example: 12345.  Additio nal code : Additio nal cod e - Example: 1320300003.  Eme[...]

  • Page 105

    95 NOTE: LLDP - MED is n ot in te nde d to ru n on li nk s oth er t h an between Network Connect ivity Devices and E ndpoint s, s o it does not ne ed to advert ise the mul tit ude of netwo rk pol ici es tha t frequen tly run on a n aggreg ated link in terior to the LAN.  Delete : Check t o del ete t he pol icy. It will be de leted duri ng the ne[...]

  • Page 106

    LGB5128A User Manual 96  L2 Priority : L2 Priority is the Layer 2 priority to be used fo r the specified application typ e. L2 Prio rity may spec ify one of eight priori ty levels (0 thr ough 7), as defined by IEEE 802.1D - 2004. A value of 0 represent s use of the defaul t pri ority as defi ned in IEEE 802 .1D - 2004.  DSCP : DSCP value to b[...]

  • Page 107

    97 LLDP - MED Network Connec tivi ty Devic es, as defin ed in TIA - 1057, provide access to the IEEE 8 02 ba sed LA N infrastr ucture fo r LLDP - MED End point Devices. An LLDP - MED Network Connectiv ity De vice i s a LAN access dev ice ba sed on a ny of t he fo llowi ng technologies: 1. LAN Switch/Router 2. IEEE 802.1 Br idge 3. IEEE 802.3 Repeat[...]

  • Page 108

    LGB5128A User Manual 98 2. Network Poli cy 3. Location Identific ation 4. Extended Power vi a MDI - PSE 5. Extended Power vi a MDI - PD 6. Inventory 7. Reserved  Applicat ion Ty pe : Applicat ion Type indicati ng the primary function of the applica tion(s ) defin ed for this network policy, advertised by an Endpoint or Network C onnectivity Devi[...]

  • Page 109

    99  Priorit y : Priori ty i s the Layer 2 priority to be used for the specified applicatio n type. Cho ose one of the eight p riority levels (0 through 7).  DSCP : DSCP is the DSCP value to be used to provide Diffserv node behavior for the specified application t ype as defined in IETF RFC 2474. Contai n one of 64 code point values (0 through[...]

  • Page 110

    LGB5128A User Manual 100  Echo Tx Tw : The link partner' s Echo Tx Tw valu e. The respecti ve echo values will be defined as the local link par tner’s r eflecti on (echo) of the remote link p artner’s re spective values. When a local link partne r rece ives its echoed values from the remote link partner, it can determine wheth er or not[...]

  • Page 111

    101 3- 8.6 Port Statisti cs Two typ es of coun ters are shown. Global counters are counters that refer to the whole stack of switches, while local counters ref er to per port counter s for t he currentl y selected swit ch. Web Int erf ac e T o show LLDP Sta tisti cs : 1. Click LLDP, than click Port Stati stics t o show LLDP counters. 2. Click Ref r[...]

  • Page 112

    LGB5128A User Manual 102  Rx Frames : The number of LLDP frame s received on the p ort.  Rx Error s : The number of rec eived LLDP frames con taining som e kind o f error.  Frames Discarded : If an LLDP fr ame is received on a port, and the sw itch's internal table is full, the LLDP frame is counted and dis carded. This situatio n is [...]

  • Page 113

    103 3- 9 Filtering Data Base Filteri ng Data Base Configuration gathers many function s that cannot be categorized to some function ty pe, includ ing MAC Table In formatio n and Sta tic MAC Learnin g. MAC ta ble Frame switching is based upon the DM AC address contained in the frame. The switch builds up a table that m aps MAC addresses to switch po[...]

  • Page 114

    LGB5128A User Manual 104 Parameter de scripti on:  Aging Conf igurat ion : By default, dynamic entrie s are removed from the MAC table after 300 seconds. This removal is als o called aging. Configu re agi ng t ime by enter ing a value here in s econds; for exampl e, Age time seconds . The allowed range i s 10 to 1000000 s econds. To disable the [...]

  • Page 115

    105 3- 9.2 Dynamic MAC Table Entries in the MAC Tabl e are show n on this page. The MAC Table contains up to 8192 entries, and is sorted first by VLAN ID , then by MAC addres s. Web Int erf ac e To Display the MAC Address Table in the Web in terface: 1. Cli ck Dynamic MAC Table. 2. Specif y the VLAN and MAC Address. 3. Displ ay the MAC Address Tabl[...]

  • Page 116

    LGB5128A User Manual 106 3-10 VLAN Assign a specif ic VLAN for manag ement. The management VLAN is used to establ ish an IP connection to the switch fr om a workstation connected to a port in the VLAN. This connection supports a VSM, SNMP, and Telnet session. By default , the active management VLAN is VL AN 1, but you ca n desig nate any VLAN as t [...]

  • Page 117

    107  Port Members : A row of ch eck boxes for each port i s displa yed for each VLAN ID. To in clude a port in a VLAN, check the box. To remove or exclude the port from the VLAN, make sure the box is unchecked. By defaul t, no port s are members, and all boxes ar e unchecked.  Adding a New VLAN : Click to add a new VLAN ID. An empty row is ad[...]

  • Page 118

    LGB5128A User Manual 108 Figure 3 -10.2 : The VLAN Port Configuration Parameter de scripti on:  Ethertype for Custom S - ports : This field specifies the ether type used for Custom S - ports. This is a global setting for all the C ustom S - ports. Custom E thertype enables the user to change the Ether type value on a port to any value to support[...]

  • Page 119

    109 If Sp ecific (the defau lt valu e) is se lected, a Port VLA N ID c an be configure d ( see below) . Untagged frames received on the port are classified to the Port VLAN ID. If VLAN awareness is disabled, all frames received on the port are classified to the Port VLAN ID. If the c lassified VLAN ID of a fram e tran smitted on the p ort is differ[...]

  • Page 120

    LGB5128A User Manual 110 spanning trees in a network, which signif icantly improves network resource use while maint aini ng a l oop - free environm ent.  VLAN ID : Indicates the ID of th i s particular VLAN.  VLAN Membership : The VLAN Membership Status Page will show the current VLAN port m embers for all VLANs configur ed by a selecte d VL[...]

  • Page 121

    111 ingress filtering is enable d an d the ingr ess p ort is not a memb er of the classifie d V LAN, the frame is d iscarded .  Frame Type : Sho ws whethe r the port accepts all frames or only tagged frames. This pa rameter affec ts VLAN ingress processing. If the port only accepts tagged frames, untagged frames received on that port are disca r[...]

  • Page 122

    LGB5128A User Manual 112 Figure 3-10 .5 .1: The Private VLAN Me mbership Configura tion Parameter de scripti on:  Delete : To delete a private VLAN entry, check this box. The entry will be deleted during the next save.  Private VLAN ID : Indicates the ID of th is particular private VL AN.  Port Members : A row of chec k boxes fo r each por[...]

  • Page 123

    113 Figure 3 -10 .5. 2 : The Port Isolation Configurati on Parameter de scripti on:  Port Members : A check box is provide d for each port of a private VLAN. When checked, port isola tion is enabled on that port. When unchecked, port isolation is disabled on that port. By default , port isolat ion is di sabled on all ports.  Buttons: Save –[...]

  • Page 124

    LGB5128A User Manual 114 Figure 3 -10.6 .1 : The MAC - based VLAN Membership Configuration Parameter de scripti on:  Delete : To delete a MAC - based VLAN entry, check this box and press save. The entry will be deleted on the selected swit ch in the stack.  MAC Add ress : Indicates the MA C addre ss.  VLAN ID : Indicates the VLA N ID.  [...]

  • Page 125

    115 3- 10.6.2 Status This section shows MAC - based VLAN entries configured by var ious MAC - based VLAN users. Current ly, we supp ort f ollo wing VL AN User types: NAS : NAS provides port - based authenticati on, which involves comm unications between a Supplican t, Aut hentica tor, and an Aut hentic atio n Server. Web Int erf ac e To Display MAC[...]

  • Page 126

    LGB5128A User Manual 116 3- 10.7 Protocol - based VLAN This sect ion descri bes Protoc ol - based VLAN, Protocol s supported by the switch i nclude Ethernet LLC and SNAP. LLC The Logical Link Control (LLC) data com munication protocol layer is the upper su b - layer of the Data Link Layer (whi ch is itself layer 2, just abov e the Physical Layer ) [...]

  • Page 127

    117 2. LLC 3. SNAP N OTE : On changing the Frame type field, valid value of the following text field will va ry depe nding o n the n ew fram e type you selec ted .  Value : Valid value that can be entered in this text field depends on the option selecte d from the preceding Frame Type sel ection menu. Listed below ar e the cri teria for three di[...]

  • Page 128

    LGB5128A User Manual 118 3- 10.7.2 Group to VLAN This se ction allows you to map a alr eady - configure d G roup Name to a VLAN fo r the selected switch unit in t he switch stack. Web Int erf ac e To Display Group Name to VLAN map ping ta ble conf igur ed in the Web int erf ace: 1. Cli ck Group Name VLAN configurat ion and add new ent ry. 2. Specif[...]

  • Page 129

    119  Buttons: Save – Click to sa ve changes. Reset - Click to undo any cha nges made local ly and rever t to previ ously saved values.  Auto - refresh : Check the bo x next to aut o - refresh an d the device will refresh the info rmation automatica lly.  Upper ri ght i con (Ref resh): Click o n this icon to r efresh the Protocol Group Ma[...]

  • Page 130

    LGB5128A User Manual 120 Parameter de scripti on:  Port : The Port column shows the list of ports for which you can configure GARP set tings. There are 2 types configuration settings t hat can be c onfigured on per port bases. • Timer Values • Applicant ion • Attri bute Type • GARP Appl icant  Timer Values : To set t he GAR P join tim[...]

  • Page 131

    121 3- 12.2 Statistics The sectio n describes GARP port st atisti cs http://192.0.2.1/help/glossary.htm - qos for all switch ports. The port statistics relate to the cur rently selected stack unit , as reflected by the page header. Web Int erf ac e To display GA RP Port statist ics in the We b interfac e: 1. Click GARP statisti cs . 2. Scroll to th[...]

  • Page 132

    LGB5128A User Manual 122 3-13 GVRP GVRP is an ap plic ation based on Gene ric Attr ibute Regis trat ion P rotoc ol ( GARP), mainly used to automati cally and dynamical ly maintain the VLAN group membership i nformation. The GVRP provides the VLAN reg istrati on servic e through a GARP applicat ion. I t uses GARP Informa tion Decla ration (GID ) to [...]

  • Page 133

    123 1. GVRP Mode This confi gu ration is to enable/d isable GVR P Mode o n particular port loc ally.  Disable : Select to Di sable GVRP mode on t his po rt.  Enable: Sel ect t o Enable GVRP mode on this port. The default value of confi guration is disabl e. 2. GVRP rrol e This confi guration is used to confi gure restr icted r ole on an inter[...]

  • Page 134

    LGB5128A User Manual 124 3- 13.2 Statistics The sectio n describes how to show the basic GVRP Port sta tisti cs for all switch ports. The statistics r elate to the current ly selected stack unit , as reflected by the page header. Web Int erf ac e To display GV RP Port statist ics in the We b interfac e: 1. Click GVRP statistics . 2. Scrol l to t he[...]

  • Page 135

    125 3- 14 MRP This standard specifies protocols, procedures, and managed objects to support the Multiple Regist ratio n Protoc ol (MRP). MRP allows partici pants in a MRP Appli catio n to register attributes with other participants in a B ridged Local Area Network. The definition of attribute types, their values, and th e semantics associate d with[...]

  • Page 136

    LGB5128A User Manual 126  Applicat ion : Current ly t he onl y sup ported appli cati on is MVRP.  Attrib ute Type : Current ly t he onl y sup ported Attr ibute Type is VLAN.  MRP Appl ica nt : This configurati on is used to conf igure the Appli cant state m achine behavior for MRP on a perticular port local ly. • normal - participant : I[...]

  • Page 137

    127 3- 14.2 Statistics This page provides MRP port statis tics for all switch ports. The port statistics relate to the currently selected st ack unit, as ref lected by the page header. Web Int erf ac e To display MR P Por t st atistics in the Web in terface: 1. Click MRP statistics . 2. Scrol l to t he port you want to displ ay the MRP Cou nter inf[...]

  • Page 138

    LGB5128A User Manual 128 3-15 MVRP The Multiple VLAN Registrati on Protocol (MVRP) defines an MRP applicati on that provides the VLAN registration service. MVRP provides a m echanis m for dy namic mainten ance of the contents of D ynamic VLA N Registration Entries for each V LAN, and f or propagating the informa tion the y cont ain to other Brid ge[...]

  • Page 139

    129  Disable : Select to Di sable MVRP mode on t his por t.  Enable: Sel ect t o Enable MVRP mode on this port. The default value of confi guration is disabl e. 2. MVRP rrole This confi gur ation i s used to conf igure rest ricted rol e on an int erface.  Disable : Selec t to Disable MVRP rrol e on t his por t.  Enable: Se lect to Enabl[...]

  • Page 140

    LGB5128A User Manual 130 3- 15.2 Statistics This page shows the basic MVRP Po rt stat isti cs for all switch por ts. The st atist ics rel ate to the currently selected st ack unit, as ref lected by the page header. Web Int erf ac e To display MV RP Por t statistics in the Web i nterface: 1. Click MVRP statistics . 2. Scrol l to t he port for which [...]

  • Page 141

    131 3- 16 QoS The switch supports four QoS queues per port with strict or weighted fair qu euing scheduling. It suppo rts Qo S Con trol Lists (QCL) for adv anced program mab le QoS classific ation, ba sed on IEEE 8 02.1p, Eth ertype, V ID, IPv4/IP v6, DS CP, and UDP/T CP po rts and ra nges. Classi fying incoming frames to a QoS class is very fle xi[...]

  • Page 142

    LGB5128A User Manual 132 Parameter de scripti on:  Port : The port number for whi ch the co nfigurati on below app lies.  QoS cl ass : Control s the default QoS class, i.e., the QoS class for frames not classif ied in any other way. There is a one t o one mapping between Qo S class, queue and priorit y. A QoS class of 0 (zero) has the l owest[...]

  • Page 143

    133 3- 16.2 Port Policing This section pro vides an overview of QoS Ingress Port Policers for all switch port s The Port Polici ng is useful in cons traini ng traffi c flows and markin g frames above specif ic rates . Polici ng is primarily useful for data flows and voice or video flows because voice and video usually maintai n a steady r ate of tr[...]

  • Page 144

    LGB5128A User Manual 134 3- 16.3 Port Scheduler This section provi des an overview of QoS Egress Port Schedulers for all switc h ports. and the ports belong t o the curr ently select ed stack uni t, as ref lected by t he page header. Web Int erf ac e To display the QoS Port Schedulers in the Web interf ace: 1. Click Confi gurat ion, QoS, Po rt Sch [...]

  • Page 145

    135 Parameter de scripti on:  Port : The logical port for the settings contained in the sam e row. Click on the port num ber in order to conf igure the schedulers.  Mode : Shows the schedul ing mode f or th is port .  Weig ht (Qn ) : Shows the weight for t his que ue and po rt.  Scheduler Mode : Control s whet her t he sch eduler mode i[...]

  • Page 146

    LGB5128A User Manual 136  Queue Sch eduler Perce nt : Shows the weight in percent for this queue. This parameter is only shown if "Scheduler Mode" is set to "Wei ghte d."  Port Shaper Enable : Control s whet her t he por t sha per i s enabl ed f or th is swi tch port.  Port Shaper Rate : Control s the rate for the port [...]

  • Page 147

    137 If&you&sele ct&the&sche duler& mode&w ith& wigh ted& then & the&screen& will&ch ange& as& the&figure. &[...]

  • Page 148

    LGB5128A User Manual 138 Parameter de scripti on:  Port : The logical port for the settings contained in the sam e row. Click on the port num ber in order to conf igure the shapers.  Shapers (Qn) : Shows "di sabled" or act ual queu e shaper rate - e.g. " 800 Mbps".  Shapers (Port ) : Shows "di sabled" or act u[...]

  • Page 149

    139 3- 16.5 Port Tag Remarking The Section provides user to get an overview of QoS Egress Port Tag Remarking for all switch ports. Others the ports belong to the currently selected stack unit , as reflected by the page header. Web Int erf ac e To display the QoS Port Tag Remarking in the Web interf ace: 1. Click Confi gurat ion, QoS, Po rt Tag Rema[...]

  • Page 150

    LGB5128A User Manual 140 3- 16.6 Port DSCP The section will teach the user how to set the QoS Port DSCP configuration that allowed you to configur e the basic QoS Port DSCP Configurati on settings for all switch ports. The settings relate to the c urrently se lected sta ck unit, as r eflected b y the pag e heade r. Web Int erf ac e To configur e th[...]

  • Page 151

    141 • All: Classif y all DSCP.  Egress : Port Egr ess Rewri ting can be o ne of t hese par ameters: • Disabl e: No Egress rewri te. • Enable: Rewrite enable without remapped. • Remap: DSCP from analyze r is remappe d and frame is re m arked with remapped DSCP valu e. • Buttons: Save – Click to sa ve changes. Reset - Click to und o an[...]

  • Page 152

    LGB5128A User Manual 142 Figure 3 -16.7 : The DSCP - Based QoS Ingress Classifi cation Confi guration Parameter de scripti on: • DSCP : Maximum numbe r o f s uppor ted DSCP value s ar e 6 4. • Trust : Click to c heck i f t he DSCP v alue i s tr usted. • QoS Cl ass : QoS Cla ss val ue ca n be b etween 0 – 7. • DPL : Drop Precedence Level c[...]

  • Page 153

    143 3- 16.8 DSCP Translation The section describes how to configure the basic QoS DSCP Translati on settings for all switches. DSCP translation can be done i n Ingress or Egress. Web Int erf ac e To configur e the DSCP Tr anslation parameters i n the Web interfac e: 1. Click Conf iguration, QoS, DSCP Translation. 2. Scroll to set t he Ingress Trans[...]

  • Page 154

    LGB5128A User Manual 144  Ingress : Ingress side DSC P can be first tran slated to new D SCP before using the DS CP for QoS class and DPL map. There are t wo config uration pa rameters fo r DSCP Translat ion – 1. Translate : DSCP at Ing ress s ide c an be transl ated to any of (0 – 63) DSCP values. 2. Classi fy : Clic k to enable Class ific [...]

  • Page 155

    145 3- 16.9 DSCP Classification This sect ion descri bes how to configur e and map a DSCP va lue to a QoS Class an d DPL value. The settings relate to the currently select ed stack unit, as reflected by t he page header. Web Int erf ac e To configur e the DSCP Cl assificat ion paramet ers in the Web interface : 1.Click Confi guration, QoS, DSCP Tra[...]

  • Page 156

    LGB5128A User Manual 146 3- 16.10 QoS Control List Confi guratio n The section shows the QoS Control List ( QCL ), which is made up of the QCE s. Each row describes a QCE that is defined. The maximum number of QCEs is 256 on each switch. Click on the lowest plus sign t o add a new QCE to the list . Web Int erf ac e To configur e the QoS Cont rol Li[...]

  • Page 157

    147 Ethernet: Only Ether net f rames (wit h Ethe r Type 0x600 - 0xFFFF) are all owed. LLC: Only ( LLC ) frames are allowe d. SNAP: Only ( SNAP ) frames are allow ed IPv4: The QCE will match onl y IPV4 fr ames. IPv6: The QCE will match onl y IPV6 fr ames.  SMAC : Displa ys th e OUI f ield of So urce MAC addres s, i .e. firs t th ree oc tet ( byte[...]

  • Page 158

    LGB5128A User Manual 148 VID: Valid value of VLAN ID can be any value in the range 1 - 4095 or “Any”; a user can enter either a specifi c value or a range of VIDs. PCP Priority Code Point : Valid value PCP are specific (0, 1, 2, 3, 4, 5, 6, 7) or ran ge (0 - 1, 2- 3, 4 - 5, 6 - 7, 0 - 3, 4 - 7) or “Any.” DEI Dro p Eli gible Indi cator: Val [...]

  • Page 159

    149  Action Configur ation : Class QoS Clas s: "class (0 - 7)", def ault - basic classi fication. DP: Val id DP Level can b e (0 - 3)", default - basic cl assificat ion. DSCP: Val id d scp val ue ca n be ( 0 - 63, BE, CS1 - CS7, EF or AF11 - AF43) .  Buttons: Save – Click to sa ve changes. Reset - Click to und o any changes m[...]

  • Page 160

    LGB5128A User Manual 150  Action : Indicates the cla ssification action tak en on ingress frame if parameters configured are match ed wi th the fr ame's con tent . There are t hree acti on fiel ds: Class , DPL, and DSCP. Class: Class ifie d QoS Cl ass; If a fra me matche s the QCE, i t wi ll b e put in t he que ue. DPL: Drop Precedence Leve[...]

  • Page 161

    151 Parameter de scripti on:  Frame Type : The settings in a particular row apply to the frame type listed here: Unicast, Multicast, or Broadcast .  Enable : Enable or disab le the storm c ontrol status for the giv en frame type.  Rate : The rate unit is packets per second (pps). Valid values are: 1, 2, 4, 8, 16, 32, 64, 128, 256, 512, 1K [...]

  • Page 162

    LGB5128A User Manual 152 Parameter de scripti on:  Receiver Id : The “Receiver ID” input fields allow the user to select the receiver ID. It indicates the ID of this p articular sFlow Re ceiver. Curren tly, on e ID is suppo rted and one collector is supported.  IP Type : A drop - down list to select the type of IP of Collector is disp lay[...]

  • Page 163

    153 3- 18.2 Sampler The sect ion displays the sFlow sampler what you set or you can edit it for your requirement. That will help user based on a defined sampling rate, an average of 1 out of N packets/operati ons is randomly sampled. This type of sam pling does not provide a 100% accurate resul t, but i t does provi de a result with quanti fiab le [...]

  • Page 164

    LGB5128A User Manual 154  Max Hdr Si ze : Configu red s ize of the header of the sa mpled f rame.  Polling I nterval : Configu red po llin g int erval for the counter sampl ing.  Butto ns: Circle - E button — Edi ts the Dat a source sampl er configu ration. Save – Click to sa ve changes. Reset - Click to undo any cha nges made local ly[...]

  • Page 165

    155 Figure 3 -20 .1: The Mirror Co nfiguration Parameter de scripti on:  Port to mirror on : Port to mirror i s also known as the mirror port . Frames from ports that have either sourc e (rx) or de stination (tx) m irroring en abled are mirrored o n this po rt. Disabled disables mirr ori ng. Mirr or Por t Co nfi gur ati on The foll owing tabl e [...]

  • Page 166

    LGB5128A User Manual 156  Buttons: Save – Click to sa ve changes. R eset - Click to undo any changes m ade locally and rever t to previ ously saved values. 3-20 Trap Event Severity Use th is f uncti on to set a Alar m trap and g et t he Event log . The Trap Events Confi gurati on function e nables th e switch to send o ut the trap in formation[...]

  • Page 167

    157 3-21 SMTP Configuration Use this function to set a Alarm trap. When the switch alarm goes off, you can se t the SM TP server to send you the alar m mail. Web Int erf ac e To configur e the SMTP Conf igurati on in th e Web interf ace: 1. Click Conf iguration, SMTP Configuration. 2. Scroll to select the Severity Level. 3. Specify t he parameters [...]

  • Page 168

    LGB5128A User Manual 158 3- 22 802.3ah OAM For Carrier Ethernet applicati ons, you can reduce operating costs and increase the remote access for maintenance. Using E thernet as a m etropolitan and wide - area networking technolo gy requires a n ew set of OAM p rotocols. Se rvice provide r networks are large and complex with a wide user base, and th[...]

  • Page 169

    159 Parameter de scripti on:  Port Members : The switch port number and index f or port configur ation I EEE 802.3ah OAM.  OAM Enabl ed : You can set OAM enable or disable on the Port. Controls whether Link OAM is enabled on this switch port. Enab ling Link O AM en ables the network o perators to monito r the health of the netw ork and q uick[...]

  • Page 170

    LGB5128A User Manual 160 3- 22.2 Event Config This chapter explains how to inspect and chan ge the current Link OA M Event configu rations . It allows you to s et wha t kind of event trigg ers the 802.3ah OAM monito r and m anag ement function. Web Int erf ac e To configur e the Li nk event confi guration in the Web interf ace: 1. Click Conf igurat[...]

  • Page 171

    161 Frame Period Error Event: The Errored Fr ame Period Event TLV counts the nu mber o f er ror ed f rames det ecte d dur ing the s pecified period. Th e pe riod is specified by a nu mber of receive d fram es. T his e vent is generated if the errored frame count is greater than or equal to the specified threshol d for that pe riod (for example , if[...]

  • Page 172

    LGB5128A User Manual 162 3- 22.3 Po rt Status When y ou co nfi gur e th e IEE E802 .3a h OAM, then the swit ch w il l di spl ay t he Po rt St at us i n thi s page. It provides Link OAM configuration operational status. The displayed field shows the active confi guration st atus for t he selected port. Web Int erf ac e To display the Port Status i n[...]

  • Page 173

    163  Link Monitoring Support : If status is e nabled, D TE sup ports inter preting Lin k Events . The field w ill show e nabled.  MIB Ret rie val Suppor t : If status is e nabled, DTE suppor ts sen ding V ariable Respon se O AMPD Us.. The fie ld will show enabled.  MT U Siz e : This represents the largest OAM PDU, in octets, supported by t[...]

  • Page 174

    LGB5128A User Manual 164 3- 22.4 Link Events This chapter explains how to inspect and change the current Link OAM Link Event configurations. The Link OAM Link Event status rel ate to the currently selected stack unit, a s reflected b y the p age hea der. The left pan e displays the Ev ent status for th e Local OAM unit, while the right pane displ a[...]

  • Page 175

    165  Total Frame Error Events : This four - octet field indicates the number of Errored Frame Event TLVs that have been generated since the OAM sub - layer wa s reset.  Frame Period Error Event Timestamp : This two - octet field indicates the time reference when the event was generated, in 100 ms intervals .  Frame Period Error Event Windo[...]

  • Page 176

    LGB5128A User Manual 166  Event Seconds Summary Error Total : This four - octet field indicates the sum of errored frame seconds that have been detected since the OAM sub - layer w as reset .  Event Seconds Summary Event Tot al : This four - octet field indicat es the number of Errored Frame Seconds Summary Event TLVs that have been g enerate[...]

  • Page 177

    LGB5128A User Manual 167 3- 22.5 Statist ics This chapter explains how to provide detailed OA M traf fic statistics for a specific switch port. Use the port select box to select which switch port details to display. The disp layed counter s represent th e total num ber of O AM fram es receive d and tran smitted for the se lected p ort. Discont inui[...]

  • Page 178

    LGB5128A User Manual 168  Rx and Tx Variabl e Re sponse : A count of the number of Variabl e Response O AMPDUs received and transmitted on this interface .  Rx and Tx Org Speci fic PDU’s : A count of t he number of Organi zation Specif ic OAMPDUs t ransmitt ed on this interf ace.  Rx and Tx Unsupporte d Codes : A cou nt of the number of [...]

  • Page 179

    169 3-23 Ethernet OAM The chapter describes the Ethernet OAM configurati on. Before you configure the Ethernet OAM, you need to under stand MEP (Maintenan ce Enti ty Point). The MEP means the Points at the edge of the domain define the boundary for the dom ain. A MEP sends and recei ves CFM frames through the relay functi on, and drops all CFM fram[...]

  • Page 180

    LGB5128A User Manual 170 Ingress : This is a Ingress (dow n) MEP — monit ori ng i ngr ess tra ffi c on “Re side nce Port .” Egress: This is a Egress (up) MEP — monito ring egr ess tr affi c o n “ Resid ence Port .”  Residence Port : The port where MEP is monitoring — see “Direct ion.” You need to assign a port to monitor the ME[...]

  • Page 181

    171 3-23 EPS The chapter descr ibes the Ether net Protect ion Switchin g (EPS). Ethernet (Linear) Protection Switch i nstance s are c onfigur ed here. Web Int erf ac e To configur e the EPS i n the Web i nterface: 1. Click Conf iguration, EPS. 2. Click “ Add new EPS,” then y ou can create a new EPS entry on t he switch. 3. Assign each parameter[...]

  • Page 182

    LGB5128A User Manual 172  W SF ME P: This fi eld assi gns the work ing Signal Fail re porting MEP.  P SF MEP: This fi eld assi gns the pr otecting Signal Fai l report ing MEP.  APS MEP: This fi eld assi gns the APS PDU ha ndling MEP.  Alarm: There is an active al arm on the EPS. When you complete the setting, then the switch wil l show [...]

  • Page 183

    173 3-23 ERPS The chapt er desc ribes Ethernet Ring Prot ection Switching (ERPS ). ITU - T under G.8032 recomm ended this to pro vide sub - 50ms prot ection and recovery switching for Ethernet traffic in a rin g topo logy, a nd at the sa me tim e ens uring th at there are no loop s form ed at the Ethernet layer . Ether net Ring Protect ion Swi tch [...]

  • Page 184

    LGB5128A User Manual 174 The West APS PDU handling M EP. Only one APS MEP is ass ociated with interconnecte d sub - ring withou t virtual chann el, and it is c onfigured a s "0" for suc h ring instan ces. "0" in this field indic ates that n o west A PS M EP is ass ociated w ith this insta nce.  Rin g Type: To scroll to sel ec[...]

  • Page 185

    175 3-22 PTP For C arrier Ethernet application, PTP is an acronym for Precision Time Protocol, a network protocol for synchronizing the clocks of computer systems. The chapter explains how to configure and inspect the current PTP clock settings. 3- 22.1 Configuration This chapt er all ows the user to confi gure the PTP clock setting on the switch a[...]

  • Page 186

    LGB5128A User Manual 176  External Enable : This Select ion box will al low you to conf igure the E xternal Clock ou tput. The foll owing values are possi ble: 1. True : En able t he exter nal cl ock out put. 2. False : Di sable the extern al cl ock o utput.  VCXO_Enable : This Select ion box will al low you to configure the Exter nal VCXO ra[...]

  • Page 187

    177 N OTE : IPv4 unicast protocol only wo rks in Master only and Slave only clocks. See parameter Device Type. In a unicast Slave, the only clocks you need to configure are the m aster clocks to request Annou nce and Syn c messages from . See: Unicast Slave Co nfigura tion.  VLAN Tag Enabl e: Enables t he VLAN t agging for t he PTP fr ames. N OT[...]

  • Page 188

    LGB5128A User Manual 178 3- 22.2 Status This chapter allows the user to m onitor the PTP configuration stat us and inspect the current PTP clock setti ngs. Web Int erf ac e To monitor the PTP st atus in t he Web int erface: 1. Click Conf iguration, PTP then status. 2. Evoke “Auto - refresh” to enable the sw itch to update the PTP status a utoma[...]

  • Page 189

    179 5.SlaveOnly - Clock 's Dev ice Ty pe is Slave Only.  Port List : Shows the ports configu red for that Clock Instance .  Auto - refresh : Click t he box next to auto - refresh and to enable an automatic refr esh of the page at regular intervals .  Upper ri ght i con (Ref resh): Click to r efres h the page i mmediat ely.[...]

  • Page 190

    LGB5128A User Manual 180 Chapte r 4. Security This chapt er desc ribes all of th e switch securi ty conf igurati on task s t hat enhance the security of local networks, including IP Source Guard, A RP Inspection, DHCP Snooping, AAA, etc. 4-1 IP Source Guard The sectio n describes how to conf igure t he IP Sourc e Guard detai l paramet ers of t he s[...]

  • Page 191

    181 Parameter de scripti on:  Mode o f I P Sour ce Gu ard Confi gurat ion : Enable the Globa l IP Source Guard or disable the Globa l IP Source Guard. Al l configured ACEs will be l ost when the mode is enab led.  Port Mode Conf iguration : Specify which port s IP Source Guard is enabled on. Only when both Global Mode and Port Mode on a given[...]

  • Page 192

    LGB5128A User Manual 182 4- 1.2 Static Table The section descr ibes how to confi gure the Stat ic IP Source Guard Tabl e parameters of the switch. You could use the Stat ic IP Source Guard Table configure t o manage the entr ies. Web Int erf ac e To configur e a Stati c IP Source Guar d Table Configur ation in th e web int erface : 1. Click “Add [...]

  • Page 193

    183 4- 1.3 Dynamic Table The sect ion describes hhow to configure the Dynamic IP Source Guard Tab le parameters of the switc h. You c ould us e the Dy namic IP Sour ce Gua rd Table configure to ma nage the entries. Web Int erf ac e To configur e a Dynamic IP Source Guard Table Confi guration in the Web interf ace: 1. Specify the Start from port, VL[...]

  • Page 194

    LGB5128A User Manual 184 4-2 ARP Insprction The sectio n describes how to conf igure t he ARP Inspect ion parameter s of t he switch. You could use the ARP Inspection configure to manage the ARP table. 4- 2.1 Configuration This sect ion descri bes how to configur e ARP Inspecti on sett ing incl uding: Mode (Enabled and Disabled) Port ( Enabled a nd[...]

  • Page 195

    185 4- 2.2 Static Table The sectio n describes how to conf igure t he Static ARP Inspecti on Table parameters of the switch. You co uld use the St atic ARP Inspect ion Tab le conf igure to manage the ARP e ntries. Web Int erf ac e To configur e a Stat ic ARP Inspect ion Table Configurat ion in the Web int erface: 1. Click “Add new entry. ” 2. S[...]

  • Page 196

    LGB5128A User Manual 186 4- 2.3 Dynamic Table The section describes how to configure the Dynamic ARP Inspection Table parameters of the switch. The Dynamic ARP Inspection T able contains up to 1024 entries, and is sorted first by port, then by VLAN ID, then by MAC address, and t hen by IP address . Web Int erf ac e To configur e a Dynamic ARP Inspe[...]

  • Page 197

    187 4-3 DHCP Snooping The section describes how to configure the DHCP Snooping parameters of the switch. The DHCP Snoopi ng can preven t at tacker s fr om addi ng the ir own DHCP ser vers to t he net work. 4- 3.1 Configuration This section descri bes how to configure DHCP Snooping setting incl uding : Snooping Mode (Enabled and Dis abled) Port Mo[...]

  • Page 198

    LGB5128A User Manual 188 4- 3.2 Statistics The sectio n describes how to show the DHCP Snooping Statist ics in formation of the switch . The stati stics show only pac ket counter s when DHCP snoopi ng mode is enabled and relay mode i s d isab led. And it do esn' t c ount the DHCP pack ets for DHCP cli ent. Web Int erf ac e To configur e a DHCP[...]

  • Page 199

    189  Rx and Tx Lease Ac tive : The number of lease act ive (opti on 53 wit h value 13 ) packets received and transmit ted.  Auto - refresh : Click the box nex t to auto - refresh and the device will refresh the inform atio n automatically.  Upper ri ght i con (Ref resh, Clear ): Click on these icons to refresh the DHCP Snooping Port Statis[...]

  • Page 200

    LGB5128A User Manual 190 4-4 DHCP Relay The sectio n describes how to f orward DHCP request s to anot her speci fic DHCP serv ers via DHCP rel ay. Th e DHCP se rvers may be on ano ther network . 4- 4.1 Configuration This sect ion descri bes how to configur e DHCP Relay sett ing in cluding : Relay Mode (Enabled and Disabl ed) Relay S erver IP set [...]

  • Page 201

    191 Indicates the D HCP relay info r mati on opti on policy. When DHCP relay infor mati on mode operation is enabled, if agent receives a DHCP m essage that already contains relay agent informa tion it w ill enforce the po licy. And it only works un der DH CP if r elay info rmation operation mode is enab led. Poss ible policie s are: Replace: Repla[...]

  • Page 202

    LGB5128A User Manual 192 4- 4.2 Statistics The section describes the switch’s DHCP Relay S tatist ics informat ion. The stati stics show both Server and Client packet counters when DHCP Relay mode i s enabled. Web Int erf ac e To configur e a DHCP Snooping Statist ics Confi guration in the Web interf ace: 1. Check “Auto - refresh.” Figure 4 -[...]

  • Page 203

    193 The number of packets t hat were r eplaced wit h relay agent inf ormation opt ion.  Keep Agent Option : The number of packets whose relay agent infor mation was ret ained.  Drop Agen t Opti on : The number of packets that were dropped which were received with relay agent informa tion.  Auto - refresh : Click the box nex t to auto - ref[...]

  • Page 204

    LGB5128A User Manual 194 4- 5 NAS The section descri bes how to configur e the NAS parameters of the swit ch. You can use the NAS server to connec t users to a vari ety of resour ces including Interne t acce ss, co nferenc e calls, printi ng documents on shared printers, or by simply logging on to the Internet. 4- 5.1 Configuration This section des[...]

  • Page 205

    195  Mode : Indicates if NAS is glob ally ena bled or disabled on th e switch stack. If glob ally disab led, all ports are al lowed to for ward frames.  Reauthenti cation Enabled : If che cked, s uccessfu lly auth enticated sup plicants/clie nts a re rea uthentica ted a fter the interval specif ied by the Reauthentic ation Period. Reau thenti[...]

  • Page 206

    LGB5128A User Manual 196 RADIUS - assigned QoS centrally controls the traffic class to which traffic coming from a successfully authenticated supplicant is assigned on the switch. The RADIUS server must be configured to transmit special RADIUS attribute s to take advantage of this feature (see RADIUS - Assign ed QoS Enabl ed below for a detailed de[...]

  • Page 207

    197 In th is m ode, the sw itch will s end one EA POL Su ccess fram e w hen the port link com es up, and any client on the port will be allowed network access without authenticati on.  Force Unauthorized : In this mode, the switc h will send one EAP OL Failure fram e when the po rt link comes up, and any client on the port will be disallowed net[...]

  • Page 208

    LGB5128A User Manual 198 In po rt - based 802.1X authentication, once a supplicant is successfully authenticated on a port, the whole port is opened for network traffic. This allows other clients connected to the port (for instance through a hub) to piggyback on the successf ully authenticated client and get network access even though they really a[...]

  • Page 209

    199 order to successfully identify a QoS Class. The User - Priorit y - Table attribute defined in RFC4675 forms the ba sis for iden tifying the Q oS Clas s in an Ac cess - Accept packet. Only the first occurren ce of the attrib ute in the packet will be considered , and to be valid, it must fol low thi s r ule: • All 8 oc tets in the a ttr ibute&[...]

  • Page 210

    LGB5128A User Manual 200 Request Identity frames. If the number of transmission s of such frames exceeds Max. Reauth. Count and no EAPOL frames have been received in the meantime, the switch considers entering the Guest V LAN. The interval between transmission of EAPOL Request Identity frames is config ured with EAPOL Timeout . If All ow Guest VLAN[...]

  • Page 211

    201 4- 5.2 Switch Status The sect ion desc ribes each switch port’s NAS st atus i nformation. The status incl udes Admin State Po rt St ate, La st Sourc e, Last ID, QoS Class, and Por t VLAN I D. Web Int erf ac e To configur e a NAS Switc h Status Configurati on in t he Web int erface: 1.Check “Au to - refresh,” Figure 4 - 5. 2 : The Network [...]

  • Page 212

    LGB5128A User Manual 202  Auto - refresh : Click the box nex t to auto - refresh and the device will refresh the inform ation autom atically.  Upper ri ght i con (Ref resh): Click on t hese i cons t o ref resh the NAS Switc h Stat us manua lly.[...]

  • Page 213

    203 4- 5.3 Port Status The secti on provid es detai led NAS statist ics for a specific switch port running EAP OL - based IEEE 8 02.1X authentication. Web Int erf ac e To configur e a NAS Port Status Conf igurati on in the Web interf ace: 1. Specify t he Port t hat you want t o check. 2. Check “Auto - refresh.” Figure 4 - 5. 3 : The NAS Stat is[...]

  • Page 214

    LGB5128A User Manual 204 • Single 802.1X • Multi 802.1X  Backend Server Counters : These backend (RADIUS) frame counters are available for the following administrative states : • Port - based 802.1X • Single 802.1X • Multi 802.1X • MAC - based Auth.  Last Supplicant/Cli ent Info : Informa tion about th e la st supplicant/client th[...]

  • Page 215

    205 Shows the date and time of the last authentication of the client (successful as well as unsuccessful).  Auto - refresh : Click the box nex t to auto - refresh and the device will refresh the inform ation autom atically.  Upper ri ght i con (Ref resh, Clear) : Click on t hese icons to refres h the NA S Stat istics ma nually or to clear a l[...]

  • Page 216

    LGB5128A User Manual 206 4- 6 AAA This section shows you to use an AAA (Authentic ation, Authorizat ion, Accounting) server to provide access control to your network. The AAA server can be a TAC ACS+ or RADIUS server to create and manage objects that contain setti ngs for using AAA servers. 4- 6.1 Configuration This sect ion descri bes how to confi[...]

  • Page 217

    207 Figure 4- 5.3 .3 : The RADIUS Configuration Figure 4 - 5.3 .4 : The RADIUS Accounti ng Configuration Figure 4 - 5.3 .4 : The TACACS+ Authentication Configurati on Parameter de scripti on:  Timeout : T he Timeout, which can be set to a number between 3 and 3600 seconds, is the m axim um time to w ait for a reply from a se rver. If the server [...]

  • Page 218

    LGB5128A User Manual 208 RADIUS Aut henti catio n Serv er Conf igur ation The table has one ro w for each RADI US Authent icati on Server and a number of columns, which are:  # : T he RADIUS Authenticati on Server number f or which the configuration below applies.  Enabled : Enable t he RADIUS Aut hentic ation Server by checki ng thi s box. ?[...]

  • Page 219

    209  Secret : The secret — up t o 29 characters l ong — shared between the TACACS+ Authentication Server an d the switch stack.  Buttons: Save – Click to sa ve changes. Reset - Click to und o any changes made locally and revert to previously saved values. 4- 6.2 Radius Overview This section shows you an overview of the RADIUS Authentica[...]

  • Page 220

    LGB5128A User Manual 210 The IP address and UDP port number (in <IP Address>:<UDP Port> notation) of this server.  State : The current state of the s erver. Thi s fiel d has one of the f ollowing values: Disabl ed: Th e serv er is disa bled. Not Read y: Th e serv er is enabled, but IP communicati on is not yet up and r unning. Ready:[...]

  • Page 221

    211 Parameter de scripti on:  Auto - refresh : Click the box nex t to auto - refresh an d the device w ill refresh the inform ation autom atically.  Upper ri ght i con (Ref resh, Clear) : Click on thes e icons to refresh the RADIUS Sta tist ics infor mation by manual or to clear a ll entries. 4-7 Port Security This section shows you how to co[...]

  • Page 222

    LGB5128A User Manual 212 Parameter de scripti on: System Conf igurat ion  Mode : Indicates if Limit C ontrol is globa lly en abled or disa bled on the sw itch sta ck. If globally disabled, other modules m ay still use the underlying functionality, but limit checks and corresponding actions are disabled.  Aging Enabl ed : If check ed, se cured[...]

  • Page 223

    213 1) Boot t he stac k or e lect a new mast er swit ch, 2) Disabl e and re - enable Li mit Control on the port or the swit ch stack. 3) Click the Reopen butt on. Trap & Shutdown: If Limit + 1 MAC addresses is seen on the port, both the "Trap" and the "Shutdown" ac tions described abo ve will be taken.  State : This colum[...]

  • Page 224

    LGB5128A User Manual 214 4- 7.2 Switch Status This section shows th e Port Security status. Port Security is a module with no direct configuration. Configuration comes indirectly from other modules — the user m odules. W hen a user module has enabled port securit y on a port, the port is set up for softwar e - based learning. In th is m ode, fram[...]

  • Page 225

    215 Each of the user m odules has a column that shows whether that module has enabled Port Securit y or not. A ' - ' m ean s th at the co rrespo nding us er module is not enabl ed, whereas a letter in dicates that the user module abbreviated by that letter (see Abbr ) has enabled port security.  State : Shows the current stat e of t he[...]

  • Page 226

    LGB5128A User Manual 216 4- 7.3 Port Status This section shows the MAC addresses secured by the Port Security module. Port Security is a module with no di rect confi guration. Confi guration comes i ndirectly from other modules — the user modules. When a user module has enabled por t security on a port, the port is set up for software - based lea[...]

  • Page 227

    217 4- 8 Access Management This section shows you to configure access management table of the Switch including HTTP/HTTPS, SNMP, and TEL NET/SSH. You can manage the Swit ch over an Ethe rnet LAN, or over the Internet. 4- 8.1 Configuration This section shows you how to con figure access manag ement tabl e of the Sw itch. The maximum entry number i s[...]

  • Page 228

    LGB5128A User Manual 218  HTTP / HTTPS : Indicates that the h ost can access the switch from HTTP/HTTPS interface if the host IP address matches the IP address range provided in the entry.  SNMP : Indicates that the host can acce ss th e sw itch fro m SNMP inte rface if the host IP addre ss match es t he I P a ddres s r ange prov ided in the [...]

  • Page 229

    219 4- 8.2 Statistics This sectio n describes det ailed stat istics for the Access Management i ncluding HTTP, HTTPS, SSH. TELNET, and SSH. Web Int erf ac e To configur e an Assess Management Stat istics in the Web interf ace: 1. Check “Aut o - refresh.” Figure 4 -8.2 : The Access Manag ement Stati stics Parameter de scripti on:  Interface :[...]

  • Page 230

    LGB5128A User Manual 220 4-9 SSH This secti on shows you to use SSH (Secure SHell) to secur ely access the Switch. SSH is a secure comm unication protocol that combines authentication and data e ncryption to p rovide secure encrypted commu nication. Web Int erf ac e To configur e a SSH Confi guration in the Web interfac e: 1. Select “Enabl ed” [...]

  • Page 231

    221 4-10 HTTPs This section shows you how to use HTTPS to securely access the Switch. HTTPS is a secure communication protocol that com bines authentication and data encryption to provide secure encrypted communication via the br owser. Web Int erf ac e To configure a HTTPS Configuration in the Web interface: 1. Select “Enabled” in the Mode of [...]

  • Page 232

    LGB5128A User Manual 222 4-11 Auth Method This page shows how a user is authenticat ed when he logs into the switch stack via one of the man agem ent client inte rfaces. Web Int erf ac e To configur e a Authent ication Method Confi guration in the Web interfa ce: 1. Specify the Client (console, t elent, s sh, web) that you want to monitor. 2. Speci[...]

  • Page 233

    223 Chapte r 5. Maintenance Thi s chapte r des cr i be s switch Maintenance confi gur at i on task s to enhance the performance of the local network, includi ng Restart Device, Firmware upgrade, Save/Rest ore, Import/ Export , and Diagnost ics. 5-1 Restart Device This section describes how to restart switch for any maintenance needs. Any configurat[...]

  • Page 234

    LGB5128A User Manual 224 5- 2 Firmware This section describes how to upgrade Firmware. The Switch can be enhanced with more value - added functions by instal ling fir mware upgrades. 5- 2.1 Firmware Upgrade This page f acili tates an update of the fir mware control ling t he Web Int erf ac e To configur e a Fir mware Upgrade Confi guration in the W[...]

  • Page 235

    225 5- 2.2 Firmware Selection The switch supports Dual image for firmware redund ancy purpose. You can select the firmware imag e for your device start firm ware or op erating firmware. Th is page prov ides informa tion a bout the active and altern ate (b ackup ) firm ware image s in the devic e, an d allo ws you to revert to the alternate i mage. [...]

  • Page 236

    LGB5128A User Manual 226 NOTE: 1. In case the a ctive firmware im age is the alterna te image, o nly the "A ctive Im age" tab le is show n. In this case, the Activate Alternate Image button is also disabled. 2. If the alternate image is active (du e to a cor ruption of th e primary image or by manual inter vent ion), upl oading a new firm[...]

  • Page 237

    227 5-3 Save / Restore Thi s section des cri be s how to save and restore the Switch configuration, including reset to Factory Def aults, Save Start, Save Users , or Rest ore Users for any maintenance ne eds. 5- 3.1 Factory Defaults Thi s section des cri be s how to reset the Switch configurati on to Factory Defaults. Any configuration fil es or sc[...]

  • Page 238

    LGB5128A User Manual 228 5- 3.3 Save User This section descri bes how to save users inf ormation. Any current conf igurati on fi les will be saved as XML format. Web Int erf ac e To configur e a Save Us er Confi gurati on i n the Web in terfa ce: 1. Chick Save User. 2. Click Yes. Figure 5 - 3. 3 : The Save as Bac kup Configurati on Parameter de scr[...]

  • Page 239

    229 5-4 Export / Import This sec tion describes how to expor t and import the Switch configur ation. Any current configuration fil es will be exported as XML format. 5- 4.1 Export Config This section describe s how to export the Switch Configuration for maintenance needs. Any current configuration files will be exported as XML format. Web Int erf a[...]

  • Page 240

    LGB5128A User Manual 230 5- 4.2 Import Config This section describe s how to export the Switch Configuration for maintenance needs. Any current configuration files will be exported as XML format. Web Int erf ac e To configure an Import Confi g Configuration in t he Web interface: 1. Click Browser to sel ect the conf ig fil e in your dev ice. 2. Cli[...]

  • Page 241

    231 5-5 Diagmostics This section provides a set of basic system diagnosis. It let users know that w hether the system is healthy or needs to be f ixed. The basic system check includes ICMP Ping, ICMPv6, and VeriPHY Cable Di agnostics . 5- 5.1 Ping This sect ion all ows you to issue ICMP P ING pac kets to trou blesho ot IPv6 co nnectivity is sues. W[...]

  • Page 242

    LGB5128A User Manual 232 5- 5.2 Ping6 This section allows you to issue ICMP v6 PING packets to troubleshoot IPv6 connecti vity issues. Web Int erf ac e To configur e an ICMPv6 PING Config urati on in the Web int erfac e: 1.Specify ICMPv6 PING IP Address . 2.Specify ICMPv6 PING Siz e. 3.Click Star t. Figure 5 -5.2 : The IC MPv6 Ping Parameter de scr[...]

  • Page 243

    233 5- 5.3 VeriPHY This section is used for running the VeriPHY Cable Diagnostics. Press to run the diagnostics. This will take appr oximately 5 seconds. If all ports are sele cted, this can ta ke approximately 15 seconds. When com pleted, the page refreshes automatically, and you can view the cable diagnostics r esults in the cable st atus table. [...]

  • Page 244

    A. Glossary of Web - based Management A ACE ACE is an ac ronym for Acce ss Con trol Entry . It describ es acce ss perm ission a ssociate d with a part icul ar ACE ID. There are t hree ACE fr ame types ( Et hernet Type , ARP , and IPv4 ) and two ACE a ctions (permit and d eny). The AC E also con tains many d etailed, different pa rameter op tions th[...]

  • Page 245

    235 Aggregation Using multip le po rts i n par allel to incre ase t he li nk spe ed beyo nd the limi ts o f a port and to increas e the redundancy fo r higher availability. (Also Port Aggregation , Link A ggrega tion). ARP ARP is an ac ronym for Addr ess Res olution P rotocol. It is a prot ocol use d to con vert an IP address into a physical addr e[...]

  • Page 246

    LGB5128A User Manual 236 The DHCP server e nsures that all I P addresses are unique, for example, no I P address is assigned to a second client while the f irst cl ient's ass ignment is val id (its lease has not expired). Ther efore, IP address pool management i s done by the server and not by a human network administr ator. Dynamic address in[...]

  • Page 247

    237 EEE EEE is an ab breviatio n for Ene rgy Effic ient Ethe rnet de fined in IE EE 80 2.3az. EPS EPS is an ab breviatio n for Eth ernet Pr otection S witchin g define d in ITU /T G.80 31. Ethernet Type Ethernet Type , or EtherTy pe, is a field i n the Ethernet MAC header, defi ned by the Ethernet network ing st andard. It i s used to ind icate whi[...]

  • Page 248

    LGB5128A User Manual 238 HTTPS HTTPS is an acro nym for Hypert ext Tran sfer Pro tocol ove r Secu re S ocket Layer. It is used to indi cate a secure HTTP connection. HTTPS pro vide a uthent icati on and encry pted c ommunicat ion a nd is widel y used on t he Worl d Wi de Web for se cur it y - sensitive communic ation such as payment transact ions a[...]

  • Page 249

    239 IP IP is an a cronym for Inter net Prot ocol. It is a protoco l used fo r comm unicatin g data a cross an Internet network. IP is a "be st effort" sys tem, wh ich mea ns that no packet o f informa tion sent over is assured to reac h its dest ination in the same condit ion it was sent. Each devi ce connected to a Loca l Area N etwork ([...]

  • Page 250

    LGB5128A User Manual 240 LOC is an a cronym for Los s Of Co nnectivity and is d etected by a M EP. It ind icates lo st connectivity in the network. Can be used as switch cri teria by EPS . M MAC Table Switchin g of frames i s based upon the DMAC address contai ned in the f rame. The switc h builds up a table that maps MAC addresses to swit ch ports[...]

  • Page 251

    241 NetBIOS is an acrony m for Network Basi c Input/Output System. It is a progr am that allows applicat ions on separat e computers to communicate within a Local Area Network (LAN), and it is no t supported o n a Wide Are a Network (WAN). The NetBIOS gi ves each comput er in t h e network both a NetBIOS name and an IP address correspondi ng to a d[...]

  • Page 252

    LGB5128A User Manual 242 PING ping is a progra m that sends a series o f packets over a n etwork or the In ternet to a specific computer to generate a response from that computer. The ot her computer responds with an ackno wledgme n t that it rece ived the p ackets. P ing was c reated to verify whether a sp ecifi c comput er on a ne twork or th e I[...]

  • Page 253

    243 QCL is an acro nym fo r QoS C ontrol L ist. It is the list table o f QCE s that contains Qo S control entries t o classify a specif ic QoS class on specific traffic obj ects. Each acces sible traff ic obj ect co ntains an ident ifie r to its QCL. The pr ivile ges dete rmine specific traff ic o bject t o specific QoS class. QL QL In SyncE this i[...]

  • Page 254

    LGB5128A User Manual 244 SMTP SMTP is an ac ronym for Simp le Mail T ransfer Protoco l. It is a tex t - based protocol that uses the Transmissi on Control Prot ocol ( TCP ) and provides a ma il service modele d on the FTP file trans fer service . SMTP transfers mail me ssages betwee n system s and notificat ions regarding incoming mail. SNAP The Su[...]

  • Page 255

    245 SyncE SyncE Is an abbre viation for S ynchro nous Eth ernet. It is u sed to syc hronize a networ k “clock frequen cy.” Do not co nfuse this with rea l - time clock synchro nized (IEE E 1588 ). T TACACS+ TACACS+ is an a cronym for Ter minal A cess Co ntroller A ccess C ontrol S ystem Plus. It is a networking pr otocol that provides access co[...]

  • Page 256

    LGB5128A User Manual 246 U UDP UDP is an acr onym fo r User D atagra m Prot ocol. It is a comm unicatio ns proto col that u ses the Intern et Protoco l (IP ) to excha nge the m essages b etween com puters. UDP is an al ternat iv e to the Transmission Control Protoc ol ( TCP ) that uses the Interne t Protocol (IP) . Unli ke TCP, UDP does not provi d[...]

  • Page 257

    72 4 - 7 46 -5 50 0 | black box. co m About Bl ack B o x Black Box pr ovides an extensive range of networking and in fr astruc ture pr oduct s. Y ou’ll fi nd every thing from cabinets and racks and power and su rge prot ec tion product s to media con verters and Ethernet switches all s uppor ted by free , live 2 4 / 7 T e ch support avai lable in[...]