Planet Technology WGSD-8000 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382

Go to page of

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of Planet Technology WGSD-8000, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of Planet Technology WGSD-8000 one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of Planet Technology WGSD-8000. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of Planet Technology WGSD-8000 should contain:
- informations concerning technical data of Planet Technology WGSD-8000
- name of the manufacturer and a year of construction of the Planet Technology WGSD-8000 item
- rules of operation, control and maintenance of the Planet Technology WGSD-8000 item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of Planet Technology WGSD-8000 alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of Planet Technology WGSD-8000, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the Planet Technology service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of Planet Technology WGSD-8000.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the Planet Technology WGSD-8000 item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    User’s Manual of WGSD-1022/WGSD-8000 - 1 – User's Manual WGSD-1022 8-Port 10/100Mbps + 2-Port Gigabit TP/SFP Combo Managed Ethernet Switch WGSD-8000 8-Port 10/100/1000Mbps with 2 Shared SFP Managed Ethernet Switch[...]

  • Page 2

    User’s Manual of WGSD-1022/WGSD-8000 - 2 – T rademarks Copyright © PLANET T echnology Corp. 2007. Contents subject to which revision without prior notice. PLANET is a registered trademark of PLANET T echnology Co rp. All other trademarks belong to the ir respective owners. Disclaimer PLANET T echnolo gy does not warrant that the hardware will [...]

  • Page 3

    User’s Manual of WGSD-1022/WGSD-8000 - 3 – T ABLE OF CONTENTS 1. INTRODUCTION ................................................................................................................ .................................................... 14 How to Use Th is Manual............................................................................[...]

  • Page 4

    User’s Manual of WGSD-1022/WGSD-8000 - 4 – 4.4.4 VLAN to Ports ............................................................................................................ .......................................... 47 4.4.5 GVRP .....................................................................................................................[...]

  • Page 5

    User’s Manual of WGSD-1022/WGSD-8000 - 5 – 4.10.2 Bridge Multic ast ........................................................................................................ ....................................... 121 4.10.3 Bridge Multic ast Forwar d All ...........................................................................................[...]

  • Page 6

    User’s Manual of WGSD-1022/WGSD-8000 - 6 – 5.3.10 us ername................................................................................................................ ......................................... 168 5.3.1 1 show us ers acco unts ..................................................................................................[...]

  • Page 7

    User’s Manual of WGSD-1022/WGSD-8000 - 7 – 5.6.1 copy ..................................................................................................................... .............................................. 195 5.6.4 show st artup-c onfig................................................................................................[...]

  • Page 8

    User’s Manual of WGSD-1022/WGSD-8000 - 8 – 5.9.6 ip igmp snoopi ng leave- time- out .......................................................................................... .............................. 228 5.9.7 show ip igmp snooping mrouter ............................................................................................ .......[...]

  • Page 9

    User’s Manual of WGSD-1022/WGSD-8000 - 9 – 5.15.3 chann el-group ........................................................................................................... ....................................... 252 5.15.4 show interf aces port- channel ...........................................................................................[...]

  • Page 10

    User’s Manual of WGSD-1022/WGSD-8000 - 10 – 5.20.2 snmp-ser ver cont act ..................................................................................................... ................................... 289 5.20.3 snmp-ser ver loca tion .................................................................................................... [...]

  • Page 11

    User’s Manual of WGSD-1022/WGSD-8000 - 11 – 5.23.6 ho stname ................................................................................................................ ......................................... 321 5.23.7 show users ............................................................................................................[...]

  • Page 12

    User’s Manual of WGSD-1022/WGSD-8000 - 12 – 5.27.4 interf ace vl an .......................................................................................................... ......................................... 346 5.27.5 interfac e range vlan ................................................................................................[...]

  • Page 13

    User’s Manual of WGSD-1022/WGSD-8000 - 13 – 5.29.14 show dot1 x statistics .................................................................................................. .................................... 374 5.29.15 dot1x aut h-not -req ..................................................................................................... [...]

  • Page 14

    User’s Manual of WGSD-1022/WGSD-8000 - 14 – 1. INTRODUCTION Thank you for purchasing PL ANET Desktop Managed Switch- WGSD-1022 and WGSD-8000. If an y of these are missing or damaged, please contact your dealer immed iately , if possible, retain the carton including the original packing material, and us e them against to repack the product in ca[...]

  • Page 15

    User’s Manual of WGSD-1022/WGSD-8000 - 15 – Product Feature ¾ Physical Port WGSD-1022  8-Port 10/100Base-TX RJ-45  2 10/100/1000Base-T RJ-45  2 SFP slots, shared w ith Port-9(g1) and Port-10(g2)  Console interface for Switch basic managem ent and setup WGSD-8000  8-Port 10/100/1000Bas e-T RJ-45  2 SFP slots, shared w ith Port[...]

  • Page 16

    User’s Manual of WGSD-1022/WGSD-8000 - 16 –  WEB-Based, T elnet, Console Comman d Line management  SSH( Secure Shell), SSL  Access through SNMPv1,v2c and v3 security set and get requ ests.  Four groups (history , statistics, alarms, and events) of embedded remote monitoring (RMO N) agents for network monitoring and traffic analysis [...]

  • Page 17

    User’s Manual of WGSD-1022/WGSD-8000 - 17 – Port St atus Display each port’s speed du plex mode, link status, Flow control status. Auto negotiation status, trunk status. VLAN 802.1q T agged Based VLAN , up to 255 VLAN groups Link A ggregation Supports 4 groups of 4-Port trunk support IEEE 802.3ad LACP QoS T raf fic classification based on Por[...]

  • Page 18

    User’s Manual of WGSD-1022/WGSD-8000 - 18 – 2. INSTALLATION This section describes the functionalities of the S witch's components and guides how to install it on the desktop or shelf. Bas ic knowledge of networking is assumed. Please r ead this chapter completely before continuing. 2.1 Product Description The PLANET WGSD-Series are Full M[...]

  • Page 19

    User’s Manual of WGSD-1022/WGSD-8000 - 19 – mini-GBIC 38400, N, 8, 1 8-Port Gigabit / 2 Shared SFP Managed Ethernet Switch 1357 4 26 8 PWR LNK/ACT 1000 78 Figure 2-2 WGSD-8000 front pa nel. 2.1.3 LED Indications  System LED Color Function PWR Green Lights to indicate that the Switch has power .  Per 10/100Mbps port LED Color Function LNK/[...]

  • Page 20

    User’s Manual of WGSD-1022/WGSD-8000 - 20 – 2.0A Figure 2-4 WGSD-8000 rear panel Power Notice: 1. The device is a power-required devic e, it means, it will not wo rk till it is powered. If your networks should active all the time, please consider using U PS (Uninterrupted Power Supply) for your device. It will prev ent you from network data los[...]

  • Page 21

    User’s Manual of WGSD-1022/WGSD-8000 - 21 – 2.2.2 Rack Mounting T o install the switch in a 19-inch standard rack, please follows the instructions described belo w . Ste p 1 : Place the s witch on a hard flat surface, with the front panel positioned towards the front side. Ste p 2 : Attach the rack-mount bracket to each side of the switch wi th[...]

  • Page 22

    User’s Manual of WGSD-1022/WGSD-8000 - 22 – Ste p 6 : Proceeds with the steps 4 and steps 5 of session 2.2.1 Desktop Installation to co nnect the network cabling and suppl y power to the switch. 2.2.3 Installing the SFP transceiver The sections describe how to insert an SFP transceiver into an SFP slot. The SFP transceivers are hot-pluggable an[...]

  • Page 23

    User’s Manual of WGSD-1022/WGSD-8000 - 23 – 1. Attach the duplex LC connector on the net work cable into the SFP transceiver . 2. Connect the other end of the cable to a device – s witches with SFP installed, fiber NIC on a workstation or a Media Converter .. 3. Check the LNK/ACT LED of the SFP slot on the front of the Sw itch. Ensure that t [...]

  • Page 24

    User’s Manual of WGSD-1022/WGSD-8000 - 24 – 3. CONFIGURATION This chapter explains the met hods that you can use to configure managem ent access to the switch. It describes the types of management applications an d the communication and managem ent protocols that del iver dat a between your management device (work-station or personal computer) [...]

  • Page 25

    User’s Manual of WGSD-1022/WGSD-8000 - 25 – ‧ Security can be compromis ed (hackers need only know the community na me) T able 3-1 Management Meth ods Comparison 3.1.1 Administration Console The administration cons ole is an internal, character-ori ented, and comma nd line user interface for performing s ystem administration such as displayin[...]

  • Page 26

    User’s Manual of WGSD-1022/WGSD-8000 - 26 – 3.2 Web Management The switch provides a bro wser interface t hat lets you configure and manage the switch remotely . After you set up your IP address for the switch, you can access the s witch's Web interface applications directl y in your Web browser by entering the IP address of the s witch. Y[...]

  • Page 27

    User’s Manual of WGSD-1022/WGSD-8000 - 27 – 3.4.3 Management Architecture All of the management application mod ules use the same Messaging Application Programming Interface (MAPI). By unifying management methods with a single MAPI, config uration parame ters set using one method (console port, for exampl e) are immediately displa yable by the [...]

  • Page 28

    User’s Manual of WGSD-1022/WGSD-8000 - 28 – 4. Web Configuration The WGSD-1022 can be configure d through an Ethernet connection, make sure the manager PC must be set on same the IP subnet address with the switch. For example, if you have chang ed the default IP address of t he Switch to 192.168.1.1 with subnet mask 255.255.255.0 via console, t[...]

  • Page 29

    User’s Manual of WGSD-1022/WGSD-8000 - 29 – Figure 4-2 WGSD-Switch W eb Login screen 3. After entering the usernam e and password, the mai n screen appears as Figure 4-3. Figure 4-3 Web Main Screen of WGSD-S witch Now , yo u can use the Web management in terface to conti nue the switch manageme nt or manage the switch by consol e interface. # N[...]

  • Page 30

    User’s Manual of WGSD-1022/WGSD-8000 - 30 – 4.1 Main Screen The Switch provides a Web-based browser interface for configur ing a nd managing the S witch. This interface allo ws you to access the switch using the Web browser of your ch oice. This c hapter describes ho w to use the switch’s W eb browser interfa ce to con-figure and manage the s[...]

  • Page 31

    User’s Manual of WGSD-1022/WGSD-8000 - 31 –  Security  QoS  Sp anning T ree  Multicast  SNMP  Adm in 4.2 Setup The Setup menus include the tree sub-menus:  Summary  Network Settings  Tim e 4.2.1 Summary The summary screen provides Device a nd System Information about the Switch. Figure 4-3 System Summar y screen The p[...]

  • Page 32

    User’s Manual of WGSD-1022/WGSD-8000 - 32 – • DNS Serv ers Display the current DNS Servers, no matter b y manual setting or assigned by the DHCP server • Default Gateway Display the current default gat eway setting • Address Mode Show the IP Address mode of the system – By S t atic or Dynamic (DHCP) • Base MAC A ddress The MAC address[...]

  • Page 33

    User’s Manual of WGSD-1022/WGSD-8000 - 33 – Figure 4-4 Network Setting screen The page includes the following fields:  Identification: • System Name T ype your system name • System Location T ype where the Switch is located • System Contact Enter the administrative contact person • System Object ID Tthe system object identifier is in[...]

  • Page 34

    User’s Manual of WGSD-1022/WGSD-8000 - 34 – • Subnet Mask Enter the IP subnet mask for the interface. The factory default value is 255.255.255.0 • Deafault Gatew ay Enter the default gateway for the IP interface. The factory default value is 0.0.0.0 • DNS Server Enter the IP Address of the DNS Server . The Domain Name System (DNS) convert[...]

  • Page 35

    User’s Manual of WGSD-1022/WGSD-8000 - 35 – • Hours / Minuntes / Seconds Defines the system time. The field forma t is HH:MM:SS, for ex ample, 21:15:03. • Month / Day / Y ear Defines the system date. The field format is Day:Month:Y ear , for example, 04 May 2050. • Time Zone The difference between Green wich Mean T ime (GMT) and local tim[...]

  • Page 36

    User’s Manual of WGSD-1022/WGSD-8000 - 36 – possible field range is 1-5. • Month -- The month of the year in which DST begins every year . The possible field range is Jan.-Dec. • Tim e - - The time at which DST begins every year . The field format is Hour:Minute, for example, 02:10. • To Defines the rec urring time that DST ends each year[...]

  • Page 37

    User’s Manual of WGSD-1022/WGSD-8000 - 37 – Figure 4-6 Port Settings screen The Port Settings screen contains the following fields: • Port Shows the port number . Y ou can click on the Detail button of the appropriate port (G1, G2) to use an SFP module, and the De tail button shows the Port Configur ation Detail screen, which include port, de[...]

  • Page 38

    User’s Manual of WGSD-1022/WGSD-8000 - 38 – Mode • Ty p e Shows the port type • LA G Sho ws whether the port is part of a LAG • PVE It bypasses the Forwarding Database and forwards all unic ast, multicast, and broadcast traffic to an uplink when a port is a Private VLAN Edge (PVE) port, Uplinks can be ports or LAGs. • Deta il It will op[...]

  • Page 39

    User’s Manual of WGSD-1022/WGSD-8000 - 39 – • Description Where can be entered by clicking on the Detail button • Port T ype This is the port type • Admin S t atus T he port can be taken offline by selecting the Down option. When Up is selected, the port can be acc essed normally . • Current Port St atus The current status of the port i[...]

  • Page 40

    User’s Manual of WGSD-1022/WGSD-8000 - 40 – • Flow Control The Flow Control feature of the sele cted port can be enabled or disabled • Current Flow Control Displays whether Flow Control is enabled or disable d on the currently selected port • MDI/ MDIX • Aut o - the port to automatical ly detect the cable type. • MDI - if the port is [...]

  • Page 41

    User’s Manual of WGSD-1022/WGSD-8000 - 41 – • Ty p e The port types that comprise the LAG . • Link S ta tus Shows an active connectio n when you choose the UP button, there is no active connection or the p ort has been taken offline by an Admiinistrator when you choose the Down button • Speed Shows the connection speed of the port and the[...]

  • Page 42

    User’s Manual of WGSD-1022/WGSD-8000 - 42 – 4.3.3 LACP Aggregated Links can be manuall y setup or automatically establish ed on the relevant links b y enabling Link Aggregation Contro l Protocol (LACP). Aggregate ports can be linked into link-aggr egation port-groups. Each group is comprised of ports with the same speed, set to full-duplex oper[...]

  • Page 43

    User’s Manual of WGSD-1022/WGSD-8000 - 43 – Figure 4-9 LACP configuration screen The page contains the following fields: • LACP System Priority Indicates the global LACP priority value. The possible range is 1- 65535 a nd the default value is 1. • Port Set the port number which need to timeout and the pri ority values are assigned • LACP [...]

  • Page 44

    User’s Manual of WGSD-1022/WGSD-8000 - 44 – IEEE 802.1Q (tagged) VLAN are implemented on the Switch. 802.1Q VLAN requ ire tagg ing, which enables them to span the entire network (assuming all switches on the network are I EEE 802.1Q-compliant). VLAN allow a net work to be segmented in order to reduce the si ze of broadcast domains. All packets [...]

  • Page 45

    User’s Manual of WGSD-1022/WGSD-8000 - 45 – Figure 4-10 Create VLAN screen The page contains the following fields:  Single VLAN • VLAN ID (2-4094) Y ou can configure the ID number of the VLAN by this item. Up to 256 VLANs can be created. This field is used to add VLANs one at a time. If you want to add the defined VLAN ID number , you can [...]

  • Page 46

    User’s Manual of WGSD-1022/WGSD-8000 - 46 – • Port Displays the port number included in the VL AN • Mode Indicates the port mode. Possible values are: • General - The port belongs to VLANs, and each VLAN is user-defined as tagged or untagged (full 802.1Q mode). • Access - The port belongs to a single untagged VLAN. When a port is in Acc[...]

  • Page 47

    User’s Manual of WGSD-1022/WGSD-8000 - 47 – Figure 4-12 Ports to VLAN screen The page contains the following fields: • VLAN Where means the VLAN number • Access Indicates the port belongs to a single u ntagged VLAN. When a port is in Access mode, the packet types which are acce pted on the port cannot be designated. Ingress filtering cannot[...]

  • Page 48

    User’s Manual of WGSD-1022/WGSD-8000 - 48 – Figure 4-13 VLA N to Ports The page contains the following fields: • Port Displays the interface number • Mode By which indicates the port to VLAN mode. Possible fiel d values are: • General - By which indicates the port belong s to VLANs, and each VLAN is user-defined as tagged or untagged (ful[...]

  • Page 49

    User’s Manual of WGSD-1022/WGSD-8000 - 49 – Figure 4-14 Join VLAN to Port screen 4.4.5 GVRP GARP VLAN Registration Protocol (GVRP) is specifically prov ided for automatic distributi on of VLAN membership information among VLAN-aware bridges. GVRP allows VLAN-aware bridges to automatically learn VLANs to bridge ports mapping, without having to i[...]

  • Page 50

    User’s Manual of WGSD-1022/WGSD-8000 - 50 – The page contains the following fields: • Enable GVRP Enables and disables GVRP on the device • Interface Displays the interface on which GVRP is enabled. Possible field values are: Port - indicates the port number on which GVRP is enabled. LA G - indicates the LAG number on which GVRP is enabled.[...]

  • Page 51

    User’s Manual of WGSD-1022/WGSD-8000 - 51 – 4.5 Statistics The S tatistic of the switch This field includes these parts as below: 4.5.1 RMON Statistic The RMON S tatistics screen (refer to figure 4-16) contains fields for viewing information about device utilization and err ors t hat occurred on the device. Figure 4-16 RMON St atistics screen T[...]

  • Page 52

    User’s Manual of WGSD-1022/WGSD-8000 - 52 – • Drop Event s which displays the number of drop ped event s that have occurred on the interface since the device was last refreshed • Received Bytes (Octets) Displays the number of octets received on the interface since the device was last refreshed. This number includes bad packe ts and FCS octe[...]

  • Page 53

    User’s Manual of WGSD-1022/WGSD-8000 - 53 – 4.5.2 RMON History The RMON History contains information about samples of da ta t aken from ports. For example, the samples may include interface definitions or polling periods. The RMON History Control screen is divid ed into RMON History and Log T a ble . Log T able includes the foll owing parts (se[...]

  • Page 54

    User’s Manual of WGSD-1022/WGSD-8000 - 54 – • Ow ner Where displays the RMON station or user that requested the RMON infor mation. The field range is 0-20 char acters Use the Add to List button when you add the configur ed RMON sampli ng to the Log T a ble at the bottom of the screen 1. RMON History T able The RMON History screen (see figure [...]

  • Page 55

    User’s Manual of WGSD-1022/WGSD-8000 - 55 – • Undersize Packets Displays the number of undersized packets ( less than 64 octets ) received on the interface since the device was last refreshed • Oversize Packets Displ ays the number of oversized packets ( over 1518 octet s ) receiv ed on the interface since the device was last refreshed • [...]

  • Page 56

    User’s Manual of WGSD-1022/WGSD-8000 - 56 – • larm Entry Indicates a specific alarm • Source Interface Displays the interface for which RMON stat istics are dis played. The possible field values are: • Port , displays t he selected port of the RMON statistics. • LAG , displays the RMON statistics for the selected LAG . • Counter Name [...]

  • Page 57

    User’s Manual of WGSD-1022/WGSD-8000 - 57 – • Interval Defines the alarm interv al time in seconds • Ow ner Dhere displays the device or user that defined the alarm Use the Add to List button when you add the RMON Alarms T able entry .[...]

  • Page 58

    User’s Manual of WGSD-1022/WGSD-8000 - 58 – 4.5.4 RMON Events The RMON Events screen (see figure 4-20) contains fields for defin ing RMON events. Figure 4-20 RMON Event screen The page contains the following fields:  Add Event: • Event Entry Displ ays the event • Community where displays the communit y to which the event belongs • Desc[...]

  • Page 59

    User’s Manual of WGSD-1022/WGSD-8000 - 59 – • Tim e Where displays the time that the event occu rred Press the RMON Event Log button to display the log store in the flash. On ly the Event type is Log or Log and T rap, then the entries appear . The screen in Figure 4-21 ap pears. Figure 4-21 RMON Event Log Screen[...]

  • Page 60

    User’s Manual of WGSD-1022/WGSD-8000 - 60 – 4.5.5 Port Utilization The Port Utilization screen (see figur e 4-22) indicates the amount of resour ces each inte rface is currently consuming. Ports in green are functioning normal ly , while ports in red are currently transmitting an excessive amount of net work traf fic. Figure 4-22 Port Utilizati[...]

  • Page 61

    User’s Manual of WGSD-1022/WGSD-8000 - 61 – 4.5.6 802.1x Statistic The 802.1X S tatistic screen (see figure 4-23) contains info rmation about EAP packet s received on a specific port. Figure 4-23 802.1x St atistics screen The page includes the following fields: • Port Indicates the port, which is polled for statistics • Refresh Rate Indicat[...]

  • Page 62

    User’s Manual of WGSD-1022/WGSD-8000 - 62 – 4.5.7 GVRP Statistics The GVRP S tatistics screen (see figure 4-2 4) contains device statistics for GVRP . The GVRP S tatistics screen is divided i nto two areas, GVRP S t atistics T able and GVRP Error St atistics T able . Figure 4-24 GVRP S tatistics screen The following fields are releva nt for bot[...]

  • Page 63

    User’s Manual of WGSD-1022/WGSD-8000 - 63 – • Leave Empty By which displays the device GVRP Leave Empty statistics • Join In By which displays the device GVRP Join In statistics • Leave In By which displays the device GVRP Leave in statistics • Leave A ll By which displays the device GVRP Leave all statistics The GVRP Error St atistics [...]

  • Page 64

    User’s Manual of WGSD-1022/WGSD-8000 - 64 – 4.6 ACL An ACL consists of a set of rul es which are matched sequentiall y against a packet. When a packet meets the match criteria of a rule, the specified rule action (Permit/Deny) i s taken and the additional rules are not checked for a match. On this menu the interfaces to which an ACL applies m u[...]

  • Page 65

    User’s Manual of WGSD-1022/WGSD-8000 - 65 – the network administrator , or a p acket assigned rate limiting restrictions for forwarding. The options are as follows: • Permit , by which forwards packets which meet the ACL criteria. • Deny , which drops packets which meet the ACL criteria. • Shut down , where drops p acket that meets the AC[...]

  • Page 66

    User’s Manual of WGSD-1022/WGSD-8000 - 66 – • Fin , indicates request to close a session. • Source Port Defines the TCP/UDP source port to which the ACE is matched. This field is active only if 800/6-TCP or 800/17-UDP is select ed in the Select from List drop-down menu. The possible field range is 0 - 65535 • Destination Port Defines the [...]

  • Page 67

    User’s Manual of WGSD-1022/WGSD-8000 - 67 – 1. Any packet s pass through the switch will be dropped – if the Destination IP Addresses match specific Class C . 2. Any packet s pass through the switch will be forwarded – if the Destination IP Addresses not match specific Class C . ¾ Case Design: Action DENY Match IP Source IP A ddress Any De[...]

  • Page 68

    User’s Manual of WGSD-1022/WGSD-8000 - 68 – 3. [DENY Rule] : Enter “ 172.16.0.0 ” in the “ Destination IP Address ” and “ 0.0.0.255 ” in the Wild Card Ma sk . 4. After click “ Add to List " button, the entry would be show at the table. ■ Create Permit AC L and add to list 5. [Permit Rule] : Within the same ACL “ Deny-IP D[...]

  • Page 69

    User’s Manual of WGSD-1022/WGSD-8000 - 69 – ■ Binding the IP ACL to specify interface 10. Select “ Security ” ” ACL Binding ” in the Menu bar . 11. Choose Port “ g1 ” at the Interface. 12. Choose “ IP Based A CL ”, select ACL name with “ Deny-Source A ” – that we had been crea ted at step-1. Click “ A dd to List "[...]

  • Page 70

    User’s Manual of WGSD-1022/WGSD-8000 - 70 – 4.6.3 MAC Based ACL The MAC Based ACL screen (see figure 4-27 ) allows a MAC based ACL to be defi ned. ACLs can be ad ded only if the ACL is no t bound to an interface. Figure 4-26 MAC-Base ACL screen The Page contains the following fields:[...]

  • Page 71

    User’s Manual of WGSD-1022/WGSD-8000 - 71 – • ACL N a m e Displays the user-defined MAC base d ACLs • New ACL Name S pecifies a new user-defined MAC based ACL name. • Delete ACL By which deletes the selected ACL • Action Indicates the ACL forwarding action. Possible field valu es are: • Permit , by which forwards packets which meet th[...]

  • Page 72

    User’s Manual of WGSD-1022/WGSD-8000 - 72 – When the workstation with IP address 192.168.99.1 88 and MAC address 00-11-08- 57-E0-1E ping to PC with IP address 192.168.99.57 and MAC addr ess 00-30-4F-1D-9F-DE, use MAC bas e d ACL function from ACL to deny or shutdown and permit the traffic transmit ability of noteboo k that connect to port 8 of [...]

  • Page 73

    User’s Manual of WGSD-1022/WGSD-8000 - 73 – ■ Create Permit MAC ACL and a dd to list ( T o allow all other packets be forwarde d) 9. [Permit Rule] : Within the same ACL “ Deny-MAC A ”, choose “Action”—“ Permit ”. 10. [Permit Rule] : Keep the “Source MAC Address” and “Wild Card Mask” be blanked. 11. [Permit Rule] : Keep t[...]

  • Page 74

    User’s Manual of WGSD-1022/WGSD-8000 - 74 – 13. Please press "Save Config" to save current setting. ■ Binding the MAC A CL to specify interface 14. Select “ Security ” ” ACL Binding ” in the Menu bar . 15. Choose Port “ g2 ” from Interface item. 16. Choose “ MAC Based A CL ”, select ACL name with “ Deny-MAC A ” [...]

  • Page 75

    User’s Manual of WGSD-1022/WGSD-8000 - 75 – 4.7 Security This section is to control the security access of the s w itch, includes the user access and management control. The Security function contains links to the follo wing topics: • ACL Binding • RADI US • TA C A C S + • 802.1x Settings • Port Security • Multiple Hosts • Storm C[...]

  • Page 76

    User’s Manual of WGSD-1022/WGSD-8000 - 76 – Use the Add to List button to add the ACL Bind ing configuration to t he ACL Bindi ng T able at the bottom of the screen. 4.7.2 Radius Remote Author ization Dial-In User Service (RADIUS) serv ers provide additional security for net works. RADIUS servers provide a centralized authenticat ion method for[...]

  • Page 77

    User’s Manual of WGSD-1022/WGSD-8000 - 77 – The possible field values are 1 - 30. Three is the default value. • Dead Time This defines the amount of time (minutes ) that a RADIUS server is bypassed for service requests. The range is 0-2000. The Dead T ime default is 0 minutes. • Key S tring T his defines the default key string us ed for aut[...]

  • Page 78

    User’s Manual of WGSD-1022/WGSD-8000 - 78 – 4.7.3 TACACS+ The device provides T erminal Access Controller Access Cont rol System (T ACACS+) client support. T ACACS+ provides centralized security for validation of users acc essing the dev ice. T ACACS+ provides a centralized user management system, while still retaining consistency with RADIUS a[...]

  • Page 79

    User’s Manual of WGSD-1022/WGSD-8000 - 79 – possible field values are: • Connected , there is currently a connecti on between the device and the T ACACS+ server . • Not Connected , there is not currently a con nection bet ween the device and the T ACACS+ server . • Single Connection Maintains a single open connection between the device an[...]

  • Page 80

    User’s Manual of WGSD-1022/WGSD-8000 - 80 – 4.7.4 802.1x settings Understa nding IEEE 802.1X Po rt-Based Authentication The IEEE 802.1X standard defines a client-server-b ased access cont rol and authenticati on protocol that restricts unauthorized clients from connecting to a LAN through publicly accessi bl e ports. The authentication serv er [...]

  • Page 81

    User’s Manual of WGSD-1022/WGSD-8000 - 81 – The switch includes the RADIUS clie nt, which is responsible for encapsulating and decapsulating the Extensible Authentication Protocol (EAP) frames and i nteracting with the authentication server. When the switch receives EAPOL frames and relays them to the authent ication server , the Ethernet heade[...]

  • Page 82

    User’s Manual of WGSD-1022/WGSD-8000 - 82 –  Ports in A uthorized and Unauthorized States The switch port state determines whether or not the client is granted acc ess to the network. The port starts in the unauthorized state. While in this state, the port disa llows all ingress and egress traffic except for 802.1X protocol packets. When a c[...]

  • Page 83

    User’s Manual of WGSD-1022/WGSD-8000 - 83 – state. ■ 802.1X Settings of WGSD-Switch Port based authentication enables authentic ating system users on a per-port basis via an external server. Only authenticated and approved s ystem users can transmit and receive data. Ports are authenticated via the RADIUS server using the Extensible A uthenti[...]

  • Page 84

    User’s Manual of WGSD-1022/WGSD-8000 - 84 – On this screen, it includes port, re-authenticat ion, resending EAP …. (Refer to figure 4-31) Figure 4-31 Setting T imer parameter screen The Page contains the following fields: • Quiet Period S pecifies the number of seco nds that the switch remains in the qu iet state following a failed authenti[...]

  • Page 85

    User’s Manual of WGSD-1022/WGSD-8000 - 85 – Unauthorized packets arriving at a locked port are either: Forwarde d, Discarded with no trap, Discarded with a trap,Cause the port to be shut down. Figure 4-32 Port Securit y screen Locked port security also enabl es storing a list of MAC addresses in the configuration file. The MAC address list can [...]

  • Page 86

    User’s Manual of WGSD-1022/WGSD-8000 - 86 – • Action on V iolation Where in dicates the action to be applied to packets arriving on a locked po rt. The possible field values are: • Discard , which discards packets from any unlearned source. This is the default value. • Forward Normal, forwards packets from an unknown source without learni[...]

  • Page 87

    User’s Manual of WGSD-1022/WGSD-8000 - 87 – 4.7.6 Multiple Hosts The Multiple Hosts screen (see figure 4-33) allo ws network m anagers to configure advanced por t-based authentication settings for specific ports and VLANs. Figure 4-33 Multiple Hosts screen The Page contains the following fields: • Port Displays the port number for which advan[...]

  • Page 88

    User’s Manual of WGSD-1022/WGSD-8000 - 88 – • Stat us Where indicates the host status. 4.7.7 Storm control A BroadcastStorm is a result of an excessive amount of broadc ast messages simultaneously transmitted across a network by a single port. Forwarded message responses a re heaped onto the network , straining net work resources or causing t[...]

  • Page 89

    User’s Manual of WGSD-1022/WGSD-8000 - 89 – 4.8 QoS Network traffic is usually unpredictable, and the only basic a ssu rance that can be offered is best effort traf fic delivery . T o overcome this challenge, Qualit y of Service (QoS) is applied throughout the net work. This ensures that network traffic is prioritized according to specifi ed cr[...]

  • Page 90

    User’s Manual of WGSD-1022/WGSD-8000 - 90 – Figure 4-35 CoS Settings screen The Page contains the following fields: • CoS Mode This indicates i f QoS is enabled on the interface. The possible values are: • Disable, disables QoS on the interface. • Basic , enables QoS on the interface. • Advanced, enabl es the Advanced Mo de QoS on the i[...]

  • Page 91

    User’s Manual of WGSD-1022/WGSD-8000 - 91 – Figure 4-36 Quere Setting sc reen The page contains the following fields: • Strict Priority This indicates that traffic scheduling for the selected queue is based strictly on the queue priority . • WRR This indicates that traffic scheduling for the selected queue is based strictly on the WRR. • [...]

  • Page 92

    User’s Manual of WGSD-1022/WGSD-8000 - 92 – Figure 4-37 DSCP Settings screen The DSCP Settings screen contains the following fields: • DSCP Indicates the Differentiated Services Code Point value in the incoming packet. • Queue Maps the DSCP value to the selected queue .,. 4.8.4 Bandwidth The Bandwidth screen (refer to figure 4-38) allows ne[...]

  • Page 93

    User’s Manual of WGSD-1022/WGSD-8000 - 93 – Figure 4-38 Band width screen Queue shaping can be based per qu eue and/or per interface. Shapi ng is determined by the lower specified value. The queue shaping type is selected i n the Bandwidth screen, include interf ace, port, LAG , Rate Limit, I ngress Rate Limit S tatus, Rate Limit…. The page c[...]

  • Page 94

    User’s Manual of WGSD-1022/WGSD-8000 - 94 – 4.8.5 Basic Mode The Basic Mode screen (see figure 4-39) con tains the following fields: Figure 4-39 Basic Mode screen The page contains the following fields: • T rust Mode Displays the trust mode. If a packet’ s CoS tag and DSCP tag are mapped to different queues, the T rust Mode determi nes the [...]

  • Page 95

    User’s Manual of WGSD-1022/WGSD-8000 - 95 – Figure 4-40 Advance Mode screen MA C A CLs and IP A CLs can be grouped together in more complex struct ures, calle d policies. Policies c an be applied to an interface. Policy A CLs are applied in the sequenc e they appear within the polic y . Only a single policy ca n be attached to a por t. In advan[...]

  • Page 96

    User’s Manual of WGSD-1022/WGSD-8000 - 96 – Figure 4-41 Out of Profile DSCP Assignments screen The page contains the following fields: • DSCP In This displays the DSCP In value. The value is form 0-63 . • DSCP Out This displays the current DSCP out value. A new value can be selected from the pull-down menu The Policy Settings button opens t[...]

  • Page 97

    User’s Manual of WGSD-1022/WGSD-8000 - 97 – The page contains the following fields: • Policy Name defines a new Policy n ame • Add to List this button will add the polic y to the Policy Name table • Select Policy which se lects an ex isting Po licy by na me • New Policy Name which defines a new Policy name • Class Map where selects an[...]

  • Page 98

    User’s Manual of WGSD-1022/WGSD-8000 - 98 –  Class Map setting New Class Map, by which the New Class Map butt on o pens the New Class Map screen (see figur e 4-33) Figure 4-43 Class Map Settin gs screen The page contains the following fields: • Class Map Name defines a new Class Map name • Preferred ACL which indicates if packets are fir[...]

  • Page 99

    User’s Manual of WGSD-1022/WGSD-8000 - 99 – Aggregate Policer , where user-defined a ggregate po licers. The Aggregate Polic er button opens the Ne w Aggregat e Policer screen.  Aggregate Policer Setting New Aggr egate Policer screen (see figure 4- 44): Figure 4-44 Aggregate Policer Settings screen The page contains the following fields: •[...]

  • Page 100

    User’s Manual of WGSD-1022/WGSD-8000 - 100 – 4.9. Spanning Tree ■ Theory of S p anning T ree Protocol The IEEE 802.1D S panning T ree Protocol an d IEEE 802.1W Rapid Sp anning T ree Protocol allow for the blocking of links between switches that form loops within the network. When mult iple links bet ween switches are detected, a primar y link[...]

  • Page 101

    User’s Manual of WGSD-1022/WGSD-8000 - 101 – It is to make the root port a fastest link. If all switches have STP enabled with default settings, the switch with the lowest MAC address in the net work will become the root sw itch. By increasing the prio rity (lowering the priority number) of the best switc h, STP can be forced to select the best[...]

  • Page 102

    User’s Manual of WGSD-1022/WGSD-8000 - 102 – Switch Blocking Listening Learning Forwarding Disable STP Port S tate T ransitions Y ou can modify each port state by using management software . When you enable ST P , every port on every s witch in the network goes through the blocking state a n d then transitions through the s tates of listening a[...]

  • Page 103

    User’s Manual of WGSD-1022/WGSD-8000 - 103 – chance of a given s witch being elected as the root bridge Hello Time The length of time bet ween broadcasts of the hello message by the s witch 2 seconds Maximum Age Timer Measures the age of a received BPDU for a port and ensures that the BPDU is discarded when its age exceeds the value of the maxi[...]

  • Page 104

    User’s Manual of WGSD-1022/WGSD-8000 - 104 – # Note : The Hello T ime cannot be longer than the Max. A ge. Otherwise, a configuration error will occur . Max. Age – The Max Age can be from 6 to 40 seconds. At the end of the Max Age, if a BPDU has still not been received from the Root Bridge, your Switch will start sending its own BPDU to all o[...]

  • Page 105

    User’s Manual of WGSD-1022/WGSD-8000 - 105 – Bridge ID = 15 Port 3 Port 1 Port 2 A Bridge ID = 20 Port 1 Port 2 Port 3 C Bridge ID = 30 Port 1 Port 2 Port 3 B LAN 1 LAN 2 LAN 3 Portcast = 19 Portcast = 19 Portcast = 19 Portcast = 4 Portcast = 4 Portcast = 19 Portcast = 4 Portcast = 4 Before Applying the ST A Rules In this example, only the defa[...]

  • Page 106

    User’s Manual of WGSD-1022/WGSD-8000 - 106 – ■ Supported S p anning T ree Protocol of WGSD Se ries Switch Sp anning T ree Protocol (STP ) provides tree topography for any arr angement of br idges. STP also provides one path bet ween end stations on a network, eliminating loops. Loops occur when alternate routes exist between hosts. Loops in a[...]

  • Page 107

    User’s Manual of WGSD-1022/WGSD-8000 - 107 – • Root Path Cost Where the cost of the path from this bridge to the root. • Root Maximum A ge (sec) This indicates the device Maxi mum Age T ime. The Maximum Age T ime indicates the amount of time in seconds a brid ge waits before sending configur ation messages. The default max age is 20 s econd[...]

  • Page 108

    User’s Manual of WGSD-1022/WGSD-8000 - 108 – 4.9.2 The Global STP The Global STP screen (see figure 4-46) contains parameters for enabling STP on the device. Global Setting S panning T ree St ate, which in dicates if STP is enabled on the device. Figure 4-46 Global ST P screen The page contains the following fields:  Global Setting • STP O[...]

  • Page 109

    User’s Manual of WGSD-1022/WGSD-8000 - 109 –  Bridge Settings • Priority S pecifies th e bridge priorit y value. When switches or bridges are runni ng STP , each is assigned a priorit y . After exchanging BPDUs, the device with the lowest priority value becomes the Root Bridg e. The port priority value is provi ded in in crements of 4096. [...]

  • Page 110

    User’s Manual of WGSD-1022/WGSD-8000 - 110 – • Interface Indicates the port or LAG on which STP is enabled • STP which indicates if ST P is enabled on the port • Port Fast Indicates if Fast Link is enable d on the port. If Fast Link mode is enabled for a port, the Port S tate is automatically placed in the Forwarding state when the port l[...]

  • Page 111

    User’s Manual of WGSD-1022/WGSD-8000 - 111 – • Forward T ransitions This indicates the number of times the port has changed from the Blocking state to Forwarding state.  STP Port st atus t able Figure 4-48 ST P Port st atus screen 4.9.4 RSTP Port settings While the classic spanning tree prevents Layer 2 forwarding loops in a general net wo[...]

  • Page 112

    User’s Manual of WGSD-1022/WGSD-8000 - 112 – Figure 4-49 RST P Port Settings screen The page contains the following fields: • Interface Where displays the port or LAG on which Rapi d STP is enabled. • Role Where indicates the port role assigned by the STP algorithm in order to provide to STP paths. T he possible field values are: • Root ,[...]

  • Page 113

    User’s Manual of WGSD-1022/WGSD-8000 - 113 – Admin S t atus • Aut o . Point-to- point links are automatical ly established by t he device. • Enabled , enables the device to establish a point-to-point lin k. • Disabled , where disables point-to-poi nt link. • Point-to-Point Oper Stat us Indicates the Point-to-Point operating state. T o r[...]

  • Page 114

    User’s Manual of WGSD-1022/WGSD-8000 - 114 – • Revision Where defines unsigned 16-bit number that identifi es the revision of the current MST configuration. The revision numbe r is requir ed as part of the MST configuration. The possible field range 0-65535 . • Max Hops Which indicates the total number of hops t hat occur in a specific regi[...]

  • Page 115

    User’s Manual of WGSD-1022/WGSD-8000 - 115 – Press the VLAN Instance Configuration button , a new window popup. Assgin selecte d VLAN to specify MST Instance at the VLAN Inst atnce Configura tion page. The screen in Figure 4-52 appears. Figure 4-52 MST P VLAN Inst ance Configuration screen • Instance ID Defines the VLAN group to which the int[...]

  • Page 116

    User’s Manual of WGSD-1022/WGSD-8000 - 116 – 4.9.7 MSTP Interface Settings Network Admi nistrators can assign MSTP Interface settings us ing the MSTP Interface Settings screen (see figure 4-53). Figure 4-53 MST P Interfance Settings screen The MSTP Interface Settings screen contains the following fields: • Instance ID Lists the MSTP inst ance[...]

  • Page 117

    User’s Manual of WGSD-1022/WGSD-8000 - 117 – interface. • Backup , provides a backup path to the designated port path toward the S p anning Tree leaves. Backup ports occur only when two ports are connected in a loop by a point-to-point link. Backup ports also occur when a LAN has two or more connections connected to a shar ed segment. • Dis[...]

  • Page 118

    User’s Manual of WGSD-1022/WGSD-8000 - 118 – 4.10 Multicast On this field, included IGMP Snoopi ng, Bridge Multicast, Forward All… About the Interne t Group Management Protocol ( IGMP) Snoopin g Computers and network devices that want to receive multic ast transmissi ons need to inform nearby routers that the y will become members of a multic[...]

  • Page 119

    User’s Manual of WGSD-1022/WGSD-8000 - 119 – on the network. The T ime-to-Live (TTL) field of query messages is set to 1 so that the queries will not be fo rwarded to other sub n etworks. IGMP version 2 introduces some enhancements such as a method to elect a multicast queried for each LAN, an explicit leave message, and query messag es that ar[...]

  • Page 120

    User’s Manual of WGSD-1022/WGSD-8000 - 120 – Report A message s ent by a host to the querier to in dicate that the host wants to be or is a member of a given group indi cated in the rep ort message. Leave Group A message sent by a host to the querier to indicate that the host h as quit to be a member of a specific multicast group. 4.10.1 IGMP S[...]

  • Page 121

    User’s Manual of WGSD-1022/WGSD-8000 - 121 – • VLAN ID S pecifies the VLAN ID. • IG M P Stat us Indicates if IGMP snooping is enable d on the VLAN. • Auto Learn Indicates if Auto Learn is enable d on t he device. If Auto Learn is enabled, the device automatically lear ns where ot her Multicast groups are located. Enables or disables Auto [...]

  • Page 122

    User’s Manual of WGSD-1022/WGSD-8000 - 122 – Figure 4-56 Bridge Multicast screen The Page contains the following fields:  Configure Multicast • Enable Bridge Multicast Filtering The check box allo ws to enable Bridge Multicast Filtering function. • VLAN ID This identifies a VLAN to be configured to a Multicast service. • Bridge Multica[...]

  • Page 123

    User’s Manual of WGSD-1022/WGSD-8000 - 123 – Figure 4-57 Bridge Multicast screen Example:  Adding Bridge Multicast A ddresses 1. Click the check box to enable t he Bridge Multicast Filtering. 2. Define the VLAN ID and New Bridge Multicast Address fields. 3. Check a port to Stat ic to join the port to the selected Multica st group. 4. Click ?[...]

  • Page 124

    User’s Manual of WGSD-1022/WGSD-8000 - 124 – Multicast router/switch. Once IGMP Snooping is enabled, Mult icast packets are forw arded to the appropri ate port or VLAN. Refer to figure 4-58. Figure 4-58 Multicast Bridge Forward All scr een The Bridge Multicast For ward All Screen contains the follo wing fields: • VLAN ID For which Multicast p[...]

  • Page 125

    User’s Manual of WGSD-1022/WGSD-8000 - 125 – 4.11 SNMP Simple Network Mana gement Protocol (S NMP) provides a method for managing network devices. Devices supporti ng SNMP run a local software (agent). The SNMP agents maintain a list of variables, which are us ed to manage the device. The variables are de fined in the Management Information Bas[...]

  • Page 126

    User’s Manual of WGSD-1022/WGSD-8000 - 126 – The default Engine ID is based on the device MAC address .  Notification • SNMP Notifications which indicates if the device can sen d SNMP notifications • Authentication Notifications which indicates if SNMP Authentication fa ilure notificatio n is enabled on the device 4.11.2 Views SNMP V iew[...]

  • Page 127

    User’s Manual of WGSD-1022/WGSD-8000 - 127 – • Select from List Select the Subtree from the list provided. • Insert Enables a Subtree not included in the Select from List field to be entered. • View T yp e This indicates if the define d OID branch will be included or excluded in the selected SNMP view . Use the button when you want to add[...]

  • Page 128

    User’s Manual of WGSD-1022/WGSD-8000 - 128 – 4.11.3 Group Profile The Group Profile screen (see figure 4-61) pr ovides informati on for creating SNMP groups and assigning SNMP access control privileges to SNMP groups. Group s allow network managers to assign access rights to specific device features, or features aspects. Figure 4-61 Group Profi[...]

  • Page 129

    User’s Manual of WGSD-1022/WGSD-8000 - 129 – • Wri te . The management access is read- write and changes can be made to the assigned SNMP view . • Notify . Sends traps for the assigned SNMP view . 4.11.4 Group Membership The Group Membership screen (see figure 4-62) provides informa tion for assigning SNM P access control privileges to SNMP[...]

  • Page 130

    User’s Manual of WGSD-1022/WGSD-8000 - 130 – Method • None , that no authenticati on method is used to authenticate the port. • MD5 Password , that port authentication is performed via HMAC-MD5-96 password authentication. • SHA Passw ord , that port authentication is performed via HMAC-SHA-96 password authentication. • MD5 Key , that po[...]

  • Page 131

    User’s Manual of WGSD-1022/WGSD-8000 - 131 – 4.11.5 Communities The Communities screen contains three areas: • Communities • Basic T able • Advanced T able The screens in Figure 4-63 an d 4-64 sppears  Communities Figure 4-63 Communities co nfiguration screen The page contains the following fields: • SNMP Manage ment St ation Defines[...]

  • Page 132

    User’s Manual of WGSD-1022/WGSD-8000 - 132 – • Advanced Enab les SNMP Advanced Mode for a selected commu nity and contains the following fields: Group Name - defines advanced SNMP communities group names. Use the button when you want to add the Communities confi gur ation to the respective T able at the bottom of the screen.  Base T able F[...]

  • Page 133

    User’s Manual of WGSD-1022/WGSD-8000 - 133 – management station to the device. • Group Name Displays advanced SNMP communities group name 4.11.6 Notification Filter The Notification Filter screen (see figur e 4-65) permits filteri ng traps based on OIDs. Each OID is linked to a device feature or a feature aspect. The Notification Filter scree[...]

  • Page 134

    User’s Manual of WGSD-1022/WGSD-8000 - 134 – • Filter T ype Indicates if inf orms or traps are sent regarding the OID to the trap recipients. • Excluded Restricts sending OID trap s or informs • Included Sends OID traps or informs. Use the button when you want to add the Notification Filter configur ation to the Notification Filter T able[...]

  • Page 135

    User’s Manual of WGSD-1022/WGSD-8000 - 135 –  SNMP V1 , w hich indicates SNMP V ersion 1 traps are sent.  SNMP V2 , w hich indicates SNMP V ersion 2 traps are sent. • SNMP V3 This enables SNMPv3 as the Notification Re cipient. Either SNMPv1.2 or SNMP V3, enabled at any one time, but not both at the same time. If SNMP V3, which is enable[...]

  • Page 136

    User’s Manual of WGSD-1022/WGSD-8000 - 136 –[...]

  • Page 137

    User’s Manual of WGSD-1022/WGSD-8000 - 137 – 4.12 Admin The Admin section provides information for devining system parameters including User account and file mana gement, device software. Under Admin the foll ing topics are provided to devi ne and view the system informatin:  User Authentication  St atic Address  Dynamic Address  Lo[...]

  • Page 138

    User’s Manual of WGSD-1022/WGSD-8000 - 138 – • Local , authenticates the user at the device level. The device checks the user name and password for authenticatio n. • RA DIU S , where authenticates the user at the RADIUS server . • TA C A C S + , which authenticates the user at the T ACACS+ server . • None , assigns none authentication [...]

  • Page 139

    User’s Manual of WGSD-1022/WGSD-8000 - 139 – parameters refer . • LA G , to w hich the specific LAG number the for warding database parameters refer . MAC Address, which displays the MAC address to which the entry refers. • VLAN ID Displays the V LAN ID number to which the entry refers. • VLAN Name Which displays the VLAN nam e to which t[...]

  • Page 140

    User’s Manual of WGSD-1022/WGSD-8000 - 140 – the Dynamic MAC Address table. The Dynamic MAC Address table cont ains address parameters by which packets are directly forwarded to the ports. The Dynamic Address T able can be sorted by interface, VLAN, and MAC Address. Figure 4-70 Dynamic Address screen The page contains the following fields: • [...]

  • Page 141

    User’s Manual of WGSD-1022/WGSD-8000 - 141 – 4.12.4 Logging The System Logs enable vie wing device events in real time, and recording the events for later usage. System Logs rec ord and manage events and report errors or information al messages (see figure 4-71). Figure 4-71 Loggi n screen Event messages have a unique format, as per the SYSLOG [...]

  • Page 142

    User’s Manual of WGSD-1022/WGSD-8000 - 142 – • Informational Provides device information. • Debug Provid es detailed information about the log. If a Debug error occurs, contact Customer T ech Support.[...]

  • Page 143

    User’s Manual of WGSD-1022/WGSD-8000 - 143 – 4.12.5 Port Mirroring Port mirroring monitors and mirrors net work traffic by forwardi ng copies of incoming and outgo ing packets from one port to a monitoring port. Port mirroring can be used as diagnostic tool and/or a debuggi n g f e a t u r e . P o r t mirroring also enables s witch performance [...]

  • Page 144

    User’s Manual of WGSD-1022/WGSD-8000 - 144 – Cable Length test. Figure 4-73 Cable T est screen The page contains the following fields: • Port This is the port to which the cable is connect ed. • T est Result • OK - indicates that the cable passed the test. • No Cable - means no cable connected to the port. • Open Cable -means the cabl[...]

  • Page 145

    User’s Manual of WGSD-1022/WGSD-8000 - 145 – Figure 4-74 Save Config uration via TFTP The page contains the following fields:  Via TFTP • Via TFTP Upgrade Select this option to upgrade the s wit ch from a file located on a TFTP Server . • TFTP Se rver The TFTP Server IP Address that contains the source file to upgr ade from. • Source F[...]

  • Page 146

    User’s Manual of WGSD-1022/WGSD-8000 - 146 – • Backup This is used to backup the configuration to th e local hard drive. • Source File T y pe in the name and path of the file or Browse to locate the up grade file. Use the Proceed button to save configuration via TFTP or HHTP that be selected. 4.12.8 Firmware Upgrade The Firmware Upgrade scr[...]

  • Page 147

    User’s Manual of WGSD-1022/WGSD-8000 - 147 –  Via HTTP See figure 4-77 Figure 4-77 Firmware Upgrade via HTTP • Via HTTP Allo ws you to upgrade the firmware us ing your Web browser . • Source File Name Specifies the file to be downloaded Use the Proceed button to upgrade the firmware via TFTP or HHTP that be selected. 4.12.9 Reboot The Re[...]

  • Page 148

    User’s Manual of WGSD-1022/WGSD-8000 - 148 – 4.12.10 Factory Defaults The Factory Reset screen (see figure 4-79) allo ws network managers to reset the device to the factory defaults settings, but if you restore factory defaults results in erasing the configurati on file. Although restoring the factory defaults will erase your config uration, yo[...]

  • Page 149

    User’s Manual of WGSD-1022/WGSD-8000 - 149 – 4.12.11 Server Logs The Global Log Parameters page contains fields for enabling logs glo bally , and fields for defining log parameters. The Severity log messages are listed from the highest sev erity to the lowest. Event messages have a unique format, as per the SYSLOG RFC recommended mess age forma[...]

  • Page 150

    User’s Manual of WGSD-1022/WGSD-8000 - 150 – Figure 4-80 Server Logs screen There are five items, as below: • Server S pecifies th e server to which logs can be sent. • UDP Port (1-65535) Defines the UDP port to which the server logs are sent. The possible range is 1 to 65535. The default value is 514 . • Facility Defines a user-defined a[...]

  • Page 151

    User’s Manual of WGSD-1022/WGSD-8000 - 151 – Index which shows the log number , Log T ime at which the log wa s generated, Severit y which shows the log severity , and the description that shows log message text. Figure 4-81 Memory Logs screen The page contains the following fields: • Log Index The log number in the Log File T able. • Log T[...]

  • Page 152

    User’s Manual of WGSD-1022/WGSD-8000 - 152 – Figure 4-82 Flash Logs scree n[...]

  • Page 153

    User’s Manual of WGSD-1022/WGSD-8000 - 153 – 5. COMMAND STRUCTURE The WGSD-Switch is a manage d Ethernet Switch that can be controlled b y the RS-232 console interface, telnet interface, a nd Web interface. This chapter describer how to configure the S witch through these interfaces. When you are read y to configure the smart functions of the S[...]

  • Page 154

    User’s Manual of WGSD-1022/WGSD-8000 - 154 – The Command Line Interface (CLI) s yntax, conventions and termi nology are described in this sectio n. Each CLI command is illustrated using the st ructure outlined belo w . Introduction T o assist in configur ing devices, the CLI command-line inte rface is divided into different comman d modes. Each[...]

  • Page 155

    User’s Manual of WGSD-1022/WGSD-8000 - 155 – T o return from Privileged mod e to User EXEC mode, use the following disable commands. The following example ill ustrates how to access Privileged mode and retur n back to the User EXEC mode: console > enable enter Password: * * * * * console # console # disable console > Exit is used to move [...]

  • Page 156

    User’s Manual of WGSD-1022/WGSD-8000 - 156 – Interface Configuration Mode an d Specific Configuration Modes Interface Configuration commands are to mo dify specific inte rface operations. The following ar e the Interf ace Configuration modes:  Line Interface —Cont ains commands to configure the manag ement co nnections. These include comma[...]

  • Page 157

    User’s Manual of WGSD-1022/WGSD-8000 - 157 – Note: The following steps are for use on the console line o nly . T o begin ru nning CLI, perform the following: 1. S tart the device and wait until t he startup procedure is complete. 2. The User Exec mode is entered into, and the prompt "console>" is dis played. 3. Configure the device[...]

  • Page 158

    User’s Manual of WGSD-1022/WGSD-8000 - 158 –  T o assist in using the CLI, the re is an assortment of editing features. The followi ng features are described:  T erminal Com mand Buffer  Command Completion  Keyboard Shortcuts Every time a command is entered in the CLI , it is recor ded on an internally managed Co mmand History buffe[...]

  • Page 159

    User’s Manual of WGSD-1022/WGSD-8000 - 159 – (config) # interface ethernet %missing mandatory parameter (config) # interface ethernet e5 Keyboard Shortcuts The CLI has a range of keyboard shortcuts to assist in ed iting the CLI commands. The follo wing table describes the CLI shortcuts. Keyboard Key Description Up-arrow key Recalls commands in [...]

  • Page 160

    User’s Manual of WGSD-1022/WGSD-8000 - 160 – Italic font Indicates a parameter . <Enter> Any individual key on the keyboard. For exa mple click <Enter> . Ctrl+F4 Any combination keys pressed simultaneous ly on the keyboard. Screen Display Indicates system messages and pr ompts appearing o n the console. all When a parameter is requi[...]

  • Page 161

    User’s Manual of WGSD-1022/WGSD-8000 - 161 – none Uses no authentication. radius Uses the list of all RADIUS se rvers for authe nticat ion. Uses username tacacs Uses the list of all T ACACS serv ers for authentication. Uses username Default Configuration The local user database is checked. Th is has the same effect as the command aaa authentica[...]

  • Page 162

    User’s Manual of WGSD-1022/WGSD-8000 - 162 –  method1 [ meth od2 ...]—S pecify at least one fr om the following table: Keyword Source or d estination Enable Uses the enab le password for authentication. Line Uses the li ne password for authentication None Uses no authentica tion Radius Uses the list of all radius servers for authe nticatio[...]

  • Page 163

    User’s Manual of WGSD-1022/WGSD-8000 - 163 – 5.3.3 login authentication The login authentication lin e conf iguration command specif ies the login authentication method list for a remote telnet or conso le. T o return to the default specifi ed by the authentication l ogin command, us e the no form of this command. Syntax login authenti cation {[...]

  • Page 164

    User’s Manual of WGSD-1022/WGSD-8000 - 164 – Command Mode Line Configuration mode User Guidelines There are no user guidel ines for this command. Example The following example specifi es the default authentic ation method when accessin g a higher privil ege level from a remote T elnet or console. console (config) # line cnsole console (config-l[...]

  • Page 165

    User’s Manual of WGSD-1022/WGSD-8000 - 165 – Example The following exampl e configur es the http authentic ation. console (config) # ip http authen tication radius local 5.3.6 ip https authentication The ip https authentication global config uration command spec ifi es authentication methods for https servers. T o return to the default, use the[...]

  • Page 166

    User’s Manual of WGSD-1022/WGSD-8000 - 166 – 5.3.7 show authentication methods The authen ticatio n methods privilege EXEC command displ ays inform ation about the aut hentication methods. Syntax show auth entication method s Default Configuration This command has no default configur ation. Command Mode Privileged EXEC mode User Guidelines Ther[...]

  • Page 167

    User’s Manual of WGSD-1022/WGSD-8000 - 167 –  password — Password for this level, from 1 to 159 characters in length.  encrypted — Encrypted pass word to be entered, copi ed from another device confi guration. Default Configuration This command has no default configur ation. Command Mode Line Configuration mode User Guidelines There a[...]

  • Page 168

    User’s Manual of WGSD-1022/WGSD-8000 - 168 – 5.3.10 username The username global configuration comm and establishes a username- bas ed authentication system. T o remove a us er name use the no form of this command. Syntax username na me [ password password ] [ privilege level ] [ encrypted ] no username  name — The name of the user .  p[...]

  • Page 169

    User’s Manual of WGSD-1022/WGSD-8000 - 169 – Example The following example disp lays the local users configured with access to the system. console (config)# show users account s U s e r n a m e P r i v i l e g e --------------- ------------- B o b 1 5 R o b e r t 1 5 5.4 Address Table Commands 5.4.1 bridge address The bridge address VLAN interf[...]

  • Page 170

    User’s Manual of WGSD-1022/WGSD-8000 - 170 – User Guidelines There are no user guidel ines for this command. Example The following example adds a permanent static MAC-layer stat ion source address 3aa2.64b3.a24 5 on port e8 to the bridge table. console (config)# interface vlan 2 console (config-vlan)# bridg e address 3aa2.64b3.a245 ethernet e8 [...]

  • Page 171

    User’s Manual of WGSD-1022/WGSD-8000 - 171 – bridge multicast a ddress { mac-multicast-address | ip-multicast-address } [ add | remove ] { ethernet interface-list | port-chann el port-channe l-number -list } no bridge multicast add ress { mac-multicast-addr ess | ip-multicast-address }  add — Adds ports to the group. If no option is specif[...]

  • Page 172

    User’s Manual of WGSD-1022/WGSD-8000 - 172 – no bridge multicast forb idden address { mac-multicast-address | ip-multicast-address }  add — Adds ports to the group.  remove — Removes ports from the group.  mac-multicast-address — MAC multicast ad dress.  ip- multicast-address — IP multicast address.  interface-list — Se[...]

  • Page 173

    User’s Manual of WGSD-1022/WGSD-8000 - 173 – Default Configuration Forward Command Modes Interface configuration (VLAN) mode User Guidelines If routers exist on the VLAN, do not change t he unregistered multicast addresses state to drop on the routers ports. Examples This example enables for warding unregistere d multicast addresses within VLAN[...]

  • Page 174

    User’s Manual of WGSD-1022/WGSD-8000 - 174 – Examples This example forbids port 1 to be a For warding-unregi stered-multicast-addresses port within VLAN 8. console (config)# interface vlan 8 console (config-if)# bridge multicast forw ard-unregistere d add ethernet 1 5.4.7 bridge multicast forward-all The bridge multicast forw ard-all interface [...]

  • Page 175

    User’s Manual of WGSD-1022/WGSD-8000 - 175 – Syntax bridge multicast forbidden forward -all { add | remo ve } { ethernet interface-list | port-channel port-channel-number-list } no bridge multicast forw ard-all  add — Forbids forwarding all multicast packets.  remove — Does not forbid for warding all multicast packet s.  interface-[...]

  • Page 176

    User’s Manual of WGSD-1022/WGSD-8000 - 176 – Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. Example In this example the bridge aging time is set to 250. console (config)# bridge aging-time 250 5.4.10 clear bridge The clear bridge privilege d EXEC command removes any learn ed entries from t[...]

  • Page 177

    User’s Manual of WGSD-1022/WGSD-8000 - 177 –  forward — Forwards frames with unlear ned source addresses, but does n ot learn the address.  discard — Discards frames with unlearned source addr esses. This is the default if no option is indicated.  discard-shu t do wn — Discards frames with unlearned sour ce addresses. The port is[...]

  • Page 178

    User’s Manual of WGSD-1022/WGSD-8000 - 178 – Example In this example, the MAC-layer addre ss 6 6:66:66:66:66:66 is added to port g1. console (config)# interface et h ernet g1 console (config-if)# port secu rity rout ed secure-address 66:66:6 6:66:66:66 5.4.13 show bridge address-table The show bridge address-table privileged EXEC c ommand displ[...]

  • Page 179

    User’s Manual of WGSD-1022/WGSD-8000 - 179 – 5.4.14 show bridge address-table static The show bridge address-table static privileged EXEC command displays statically created entries in the bridge-f orwarding database. Syntax show bridge address-table static [ vlan vlan ] [ eth ernet interface | port-channel port-channel-number ]  vlan — S [...]

  • Page 180

    User’s Manual of WGSD-1022/WGSD-8000 - 180 – Default Configuration This command has no default configur ation. Command Mode Privileged EXEC mode User Guidelines There are no user guidel ines for this command. Example In this example, the number of address e s present in the VLANs are displayed. console# show bridge address-table count Cap acity[...]

  • Page 181

    User’s Manual of WGSD-1022/WGSD-8000 - 181 – console # show bridge multicast address-table V l a n M A C A d d r e s s T y p e P o r t s ------ -------------------- -------- ---------- 1 0100.5e02.0203 static e1, g2 19 0100.5e02.0208 static e1-8 19 0100.5e02.0208 dynamic e9-1 1 Forbidden ports for multicast addresses: V l a n M A C A d d r e s [...]

  • Page 182

    User’s Manual of WGSD-1022/WGSD-8000 - 182 – console # show bridge multicast filtering 1 Filtering: Enabled VLAN: 1 Forward -All P o r t S t a t i c S t a t u s --------- ------------ ----------- e1 Forbidden Filter e 2 F o r w a r d F o r w a r d ( s ) e 3 - F o r w a r d ( d ) 5.4.18 show ports security The show ports security privileged E XE[...]

  • Page 183

    User’s Manual of WGSD-1022/WGSD-8000 - 183 – e 5 D i s a b l e d L o c k - 1 - - e 6 D i s a b l e d L o c k - 1 - - e 7 D i s a b l e d L o c k - 1 - - e 8 D i s a b l e d L o c k - 1 - - 5.5 Clock Commands 5.5.1 clock set The clock set privileg ed EXEC command manually sets the system clock. Syntax clock set hh:mm:ss day month year or clock s[...]

  • Page 184

    User’s Manual of WGSD-1022/WGSD-8000 - 184 – Syntax clock source { sntp } no clock source  sntp — SNTP servers Default Configuration No external clock source Command Mode Privileged EXEC mode User Guidelines There are no user guidel ines for this command. Examples The following example configu res an external time source for the system clo[...]

  • Page 185

    User’s Manual of WGSD-1022/WGSD-8000 - 185 – console# (config)# clock timezo n e -6 zone CST 5.5.4 clock summer-time The clock summer-time gl obal configuration command co nfi gures the s ystem to aut omatically switch to summer time (daylight saving time),. T o configure the softw are to not automatically sw itch to summer time, use the no for[...]

  • Page 186

    User’s Manual of WGSD-1022/WGSD-8000 - 186 – The end time is relative t o summer time. If the starting month is chronol ogically after the endi ng mo nth, the system assumes th at you are in the souther n hemisphere. USA rule for dayl ight saving time: S tart: First Sunday in Apri l End: Last Sunday in October T ime: 2 am local time EU rule for[...]

  • Page 187

    User’s Manual of WGSD-1022/WGSD-8000 - 187 – cnsole(config)# sntp authentication -key 8 md5 ClkKey console(config)# sntp trusted-key 8 console(config)# sntp au th enticate 5.5.6 sntp authenticate The sntp authen ticate gl obal configuration comman d grant s authentication for received Net work T ime Protocol (NTP) traffic from servers,. T o dis[...]

  • Page 188

    User’s Manual of WGSD-1022/WGSD-8000 - 188 – Default Configuration Not trusted. Command Mode Global configuration mode User Guidelines The command is relevant for both unicast an d broadcast. Examples The following example auth enticates key 8. Console(config )# sntp authentication-key 8 md5 ClkKe y Console(config )# sntp trusted-key 8 Console([...]

  • Page 189

    User’s Manual of WGSD-1022/WGSD-8000 - 189 – 5.5.9 sntp broadcast client enable The sntp bro adcast client en able global configuration command enables t he Simple Network T ime Protocol (SNTP) broadcast clients. T o disable the SNTP broadcast clients, use the no form of this command. Syntax sntp broadcast client enab le no sntp broadcast clien[...]

  • Page 190

    User’s Manual of WGSD-1022/WGSD-8000 - 190 – User Guidelines Polling time is determined by the sntp client poll timer global configuration command. Use the sntp client enable interface configu ration command to enabl e snt p client on specific interface. Examples The following example ena bles anycast clients. Console (config-if)# sntp anycast [...]

  • Page 191

    User’s Manual of WGSD-1022/WGSD-8000 - 191 – Syntax sntp unicast client enable no sntp unicast client enab le This command has no arguments or keywords. Default Configuration Disabled Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. Examples The following example ena bles the device to use t[...]

  • Page 192

    User’s Manual of WGSD-1022/WGSD-8000 - 192 – Examples The following example ena bles polling for the Simple N etw ork T ime Protocol (SNTP) predefined unicast clients. console (config)# sntp unicast client poll 5.5.14 sntp server The sntp ser ver global configuration command co nfigures the device to use the Simpl e Network T ime Protocol (SNT [...]

  • Page 193

    User’s Manual of WGSD-1022/WGSD-8000 - 193 – 5.5.15 show clock The show clock user EXEC command displays the time and date from the system clock. Syntax show clock Default Configuration This command has no default configur ation. Command Mode User EXEC mode User Guidelines There are no user guidel ines for this command. Example The following ex[...]

  • Page 194

    User’s Manual of WGSD-1022/WGSD-8000 - 194 – Examples Console# show sntp configurat ion Polling interval: 7200 sec onds. MD5 Authentic ation keys: 8, 9 Authentication is requir ed for synchronization. T rusted Keys: 8,9 Unicast Clients Polling: Enabled. S e r v e r P o l l i n g E n c r y p t i o n K e y ----------- ----------- ----------------[...]

  • Page 195

    User’s Manual of WGSD-1022/WGSD-8000 - 195 – User Guidelines There are no user guidel ines for this command. Examples The following example sho ws the status of the SNTP . Console# sho w sntp status Clock is synchronized, stratu m 4, reference is 176.1.1. 8 Reference time is AFE2525E.70597B 34 (00:10:22.438 PDT Jul 5 1993) Unicast servers: S e [...]

  • Page 196

    User’s Manual of WGSD-1022/WGSD-8000 - 196 – Keyword Source or de stination running-config Represents the curr ent runnin g configuration file. startup-config Represents the startup configuration file. backup-config Represents the backup configuration file. Image T he image is executable code which is dec ompressed during system startup, into t[...]

  • Page 197

    User’s Manual of WGSD-1022/WGSD-8000 - 197 – File download from a TFTP server may ta ke a long time, and ther efore fail, if there are man y Qu ality of Service elements (ACLs, policers, etc.) present. In this case, it is recommended to copy the TFTP file to the backup configuration file, and then cop y the backup file to the running / startup [...]

  • Page 198

    User’s Manual of WGSD-1022/WGSD-8000 - 198 – "configuration file", with the loaded "configuration file" havin g precedence. Copying a Configuration File from a Se rver to the S t artup Configuration Use the copy source-url st artup-config command to copy a "configuration file" from a network server to the device &q[...]

  • Page 199

    User’s Manual of WGSD-1022/WGSD-8000 - 199 – !!!!! [OK] Copy took 0:0:23 [hh:mm:ss] 5.6.4 show startup-config The show st artup-config privileged EXEC command displays the startup configuratio n file contents. Syntax show startup-config Default Configuration There is no default configur ation for this command. Command Mode Privileged EXEC mode [...]

  • Page 200

    User’s Manual of WGSD-1022/WGSD-8000 - 200 –[...]

  • Page 201

    User’s Manual of WGSD-1022/WGSD-8000 - 201 – 5.7 Ethernet Configuration Commands 5.7.1 interface ethernet The interface ethern et globa l configuration command enters the interface configuration mode to config ure an Ethernet type interface. Syntax interface ethernet interface  interface — V alid Ethernet port. Default Configuration This c[...]

  • Page 202

    User’s Manual of WGSD-1022/WGSD-8000 - 202 – User Guidelines Commands under the interface ran ge context are executed i ndepende ntl y on each active interfac e in the rang e. If the command returns an error on one of the active interfac es, it does not stop executing commands on other active interfaces. Example The following example sho ws how[...]

  • Page 203

    User’s Manual of WGSD-1022/WGSD-8000 - 203 – 5.7.4 description The description interface configuration command adds a descripti on to an interface. T o remove the description use the no form of this command. Syntax description string no description  string —Comment or a description of the port up to 64 char acters. Default Configuration By[...]

  • Page 204

    User’s Manual of WGSD-1022/WGSD-8000 - 204 – User Guidelines The command " no sp eed " in port-channel context returns each port in the port-channel to its maximum capability . Before attempting to force a particular duplex mode the port oper ating at 10/100 Mbps, disable the auto-negotiati on on that por t. Example The following exam[...]

  • Page 205

    User’s Manual of WGSD-1022/WGSD-8000 - 205 – 5.7.7 negotiation The negotiatio n interface configuration command enabl es auto-negotiation op eration for the speed an d duplex parameters of a given interface. T o disable negotiation, use th e no form of this command. Syntax negotiation no negotiatio n Default Configuration auto-negotiation Comma[...]

  • Page 206

    User’s Manual of WGSD-1022/WGSD-8000 - 206 – Default Configuration Flow Control is off. Command Mode Interface configuration (Ethernet, port-channel) mod e User Guidelines Flow Control will operate only if duple x mode is set to FULL. Ba ck Pressure will operate only if duplex mode is set to HALF . When Flow Control is ON, the head-of-line-bl o[...]

  • Page 207

    User’s Manual of WGSD-1022/WGSD-8000 - 207 – Example In the following example, automat ic crossover is enabled on g2. Console(config )# interface ethernet g2 Console(config-if)# mdix auto 5.7.10 back-pressure The back-pres sure interface configuratio n command enables Back Pressure on a given interface. T o disable Back Pressure, use the no for[...]

  • Page 208

    User’s Manual of WGSD-1022/WGSD-8000 - 208 – Default Configuration Jumbo Frames are not enable d. Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. Example In the following example, Jumbo Fr ames are enabled on the device. Console# port jumbo-frame 5.7.12 clear counters The clear counters use[...]

  • Page 209

    User’s Manual of WGSD-1022/WGSD-8000 - 209 – Syntax set interface active { ethernet interface | port-channel port-channel-n umber }  interface — V alid Ethernet port.  port-channel -number — V alid port-channel trunk index. Default Configuration This command has no default configur ation. Command Mode Privilege EXEC mode User Guidelin[...]

  • Page 210

    User’s Manual of WGSD-1022/WGSD-8000 - 210 – F l o w A d m i n B a c k M d i x P o r t T y p e D u p l e x S p e e d N e g c o n t r o l S t a t e P r e s s u r e M o d e -------- ------------ ------ ----- -------- ------- ----- -------- ---- e 1 1 0 0 M - C o p p e r F u l l 1 0 0 E n a b l e d O f f U p D i s a b l e d A u t o e 2 1 0 0 M - C[...]

  • Page 211

    User’s Manual of WGSD-1022/WGSD-8000 - 211 –  port-channel -number — A valid port-channel trunk inde x.  oob-interface — Out of band Ethernet p ort number . Default Configuration This command has no default configur ation. Command Mode Privilege EXEC mode User Guidelines There are no user guidel ines for this command. Example The foll[...]

  • Page 212

    User’s Manual of WGSD-1022/WGSD-8000 - 212 – 5.7.16 show interfaces description The show interfaces descrip tion user EXEC command di splays the description for all c onfigured interfaces. Syntax show interfaces desc ription [ethernet interface | port-channel port-channel-number | out-of-band--eth oobinterface ]  Interface — V alid Etherne[...]

  • Page 213

    User’s Manual of WGSD-1022/WGSD-8000 - 213 – Syntax show interfaces counters [ ethernet interface | port-channel port-channel-number ]  interface — A valid Ethern et port.  port-channel -number — A valid port-ch annel index. Default Configuration This command has no default configur ation. Command Modes Privilege EXEC mode User Guidel[...]

  • Page 214

    User’s Manual of WGSD-1022/WGSD-8000 - 214 – The following example disp lays counters for port g1. Console# show interfaces counters ethernet g1 Port OutOctets OutUcastPkt s OutMcastPkts OutBcastPkt s ------ ------------- ------------------- ------------------- ----- ------------- g 1 1 8 3 8 9 2 1 2 8 9 9 8 7 8 Port OutOctets OutUcastPkt s Out[...]

  • Page 215

    User’s Manual of WGSD-1022/WGSD-8000 - 215 – OutBcastPkts Counted transmitted broa dcast packets. FCS Errors Counted frames received that ar e an integral number of octets in length but do not pass the FCS check. Single Collision Frames Counted frames that are involved in a single collision, and are subsequ ently transmitted successfully . Late[...]

  • Page 216

    User’s Manual of WGSD-1022/WGSD-8000 - 216 – Jumbo frames will be enabled after reset 5.7.20 port storm-control broadcast enable The port storm-co n trol broadcast enable interface configurati on command enables broadc ast storm control. T o disable broadcast storm control, use the no form of this command. Syntax port storm-control broadca st e[...]

  • Page 217

    User’s Manual of WGSD-1022/WGSD-8000 - 217 – Default Configuration The default storm control broadcast rate is 12000. Command Mode Interface Configuration (Ethernet) User Guidelines Use the port storm-control broad cast en able interface configuration command to ena ble broadcast storm control. The rate is rounded to the nearest 64 kbytes /sec [...]

  • Page 218

    User’s Manual of WGSD-1022/WGSD-8000 - 218 – e 1 8 0 0 0 e 2 D i s a b l e d e 3 D i s a b l e d 5.8 GVRP Commands 5.8.1 gvrp enable (global) GVRP , or GARP VLAN Registration Protocol, is an industry-st andard protocol designed to propagate VLAN information from device to device. With GVRP , a single s witch is manually configured with all desi[...]

  • Page 219

    User’s Manual of WGSD-1022/WGSD-8000 - 219 – no gvrp enable Default Configuration GVRP is disabled on all interfaces by default. Command Mode Interface Configuration (Ethernet, port-channel) mod e User Guidelines An access port would not dynamicall y join a VLAN because it is al ways a member in only one VLAN. Example The following example ena [...]

  • Page 220

    User’s Manual of WGSD-1022/WGSD-8000 - 220 – User Guidelines The following relationsh ip for the various timer val ues must be maintained: Leave time must be greater than or equa l to three times the join time. Leaveall time must be greate r than the leave time. Set the same GARP timer values on all Layer 2-connected devices . If the GARP timer[...]

  • Page 221

    User’s Manual of WGSD-1022/WGSD-8000 - 221 – 5.8.5 gvrp registration-forbid The gvrp registration-forbid interface configuration com mand de-registers all dynamic VLANs, and prevents dynamic VLAN registration on the port. T o allow dynamic registering for VLA Ns on a port, use the no form of this command. Syntax gvrp registration-forbid no gvrp[...]

  • Page 222

    User’s Manual of WGSD-1022/WGSD-8000 - 222 – User Guidelines There are no user guidel ines for this command. Example The following example clears all the GVRP statistics information on port e8. Console# clear g vrp st atistics ethernet e8 5.8.8 show gvrp configuration The show gvrp configuration User EXEC command displays GVRP configurati on in[...]

  • Page 223

    User’s Manual of WGSD-1022/WGSD-8000 - 223 – 5.8.9 show gvrp statistics The show g vrp st atistics User EXEC command displa ys GVRP st atistics. Syntax show g vrp st atistics [ ethernet interface | port-channel port-channel-number ]  interface — A valid Ethernet interface.  port-channel -number — A vali d trunk index. Default Configur[...]

  • Page 224

    User’s Manual of WGSD-1022/WGSD-8000 - 224 – e 7 0 0 0 0 0 0 0 0 0 0 0 0 e 8 0 0 0 0 0 0 0 0 0 0 0 0 5.8.10 show gvrp error-statistics The show gvrp error-statistics user EXEC command displays GVRP error statistics. Syntax show g vrp error-statistics [ ethernet interface | port-channel port-channel-number ]  interface — V alid Ethernet int[...]

  • Page 225

    User’s Manual of WGSD-1022/WGSD-8000 - 225 – e 8 0 0 0 0 0 5.9 IGMP Snooping Commands 5.9.1 ip igmp snooping (Global) The ip igmp snooping global configuration command enables Internet Group Managem ent Protocol (IGMP) snooping. T o disable IGMP snooping use the no form of this command. Syntax ip igmp snooping no ip igmp snoopi ng Default Confi[...]

  • Page 226

    User’s Manual of WGSD-1022/WGSD-8000 - 226 – Command Mode Interface configuration (VLAN) mode User Guidelines IGMP snooping can only be enabled on static VLANs. Example The following example ena bles IGMP snooping on VLAN 2. Console (config)# interface vlan 2 Console (config-if)# ip igmp snooping 5.9.3 ip igmp snooping mrouter The ip igmp snoop[...]

  • Page 227

    User’s Manual of WGSD-1022/WGSD-8000 - 227 – Syntax ip igmp snoopin g host-time-out time-out no ip igmp snooping host-time-out Default Configuration The default host-time-out is 260 seconds. Command Mode Interface Configuration (VLAN) mode User Guidelines The timeout should be at least greater than 2 *quer y_interval+ max_response_t ime of the [...]

  • Page 228

    User’s Manual of WGSD-1022/WGSD-8000 - 228 – Console (config)# interface vlan 2 Console (config-if)# ip igmp snooping mrouter-time-out 200 5.9.6 ip igmp snooping leave-time-out The ip igmp snooping leav e-time-out command configures the leave-time-out. If an IGMP report for a multicast group is not received within the leave-time -out period aft[...]

  • Page 229

    User’s Manual of WGSD-1022/WGSD-8000 - 229 –  vlan_id — VLAN ID value. Default Configuration This command has no default configur ation. Command Mode User EXEC mode User Guidelines There are no user guidel ines for this command. Example The following example sho ws IGMP snooping mrouter information. Console # show ip igmp snooping mrouter [...]

  • Page 230

    User’s Manual of WGSD-1022/WGSD-8000 - 230 – IGMP Snooping is disabled on VLAN 1 IGMP host timeout is 260 sec IGMP Immediate leave is disabled. IGMP leave timeout is 60 sec IGMP mrouter timeout is 300 sec Automatic learning of multicast router ports is enabled 5.9.9 show ip igmp snooping gro ups The show ip igmp snooping grou ps user EXEC comma[...]

  • Page 231

    User’s Manual of WGSD-1022/WGSD-8000 - 231 – 5.10 IP Addressing Commands 5.10.1 ip address The ip add ress interface configuration command sets an IP address. T o remove an IP address, use the no form of this command. Syntax ip address ip-address { mask | prefix-l ength } no ip address [ ip-address ]  ip-address — IP address  mask — T[...]

  • Page 232

    User’s Manual of WGSD-1022/WGSD-8000 - 232 – mode. Default Configuration This command has no default configur ation. Command Mode Interface configuration (Ethernet, VLAN, por t-channel, out-of-band Ethernet) User Guidelines The ip add ress dhcp command allo ws any interface to dynamically learn its IP address by using the DHCP protocol. Some DH[...]

  • Page 233

    User’s Manual of WGSD-1022/WGSD-8000 - 233 – Default Configuration No default gateway is defined. Command Mode Interface configuration User Guidelines The setting of the default gateway on the out -of-band port must not precede the assignment of the IP address. Always assign the IP address to the out-of-ba nd port first, and then set the defaul[...]

  • Page 234

    User’s Manual of WGSD-1022/WGSD-8000 - 234 – 5.10.5 arp The arp globa l configuration command adds a perma nent entry in the Addr ess Resolution Protocol (ARP) cache. T o remove an entr y from the ARP cache, use the no form of this command. Syntax arp i p_addr hw_ad dr { ethernet i nterface-nu mber | vl an vlan-id | port-channel number | } no a[...]

  • Page 235

    User’s Manual of WGSD-1022/WGSD-8000 - 235 – Command Mode Global Configuration mode User Guidelines It Is recommended not to set the timeout value to less than 3600. Note: The ARP entry is deleted between the peri od of the "timeout value" and t w ice the "timeout value". Fo r example, if the timeout value is 20 seconds, the[...]

  • Page 236

    User’s Manual of WGSD-1022/WGSD-8000 - 236 – Syntax show arp Default Configuration This command has no default configur ation. Command Mode Privileged EXEC mode User Guidelines There are no user guidel ines for this command. Example The following example disp lays entries in the ARP table. Console# show arp ARP timeout: 60000 Seconds Interface [...]

  • Page 237

    User’s Manual of WGSD-1022/WGSD-8000 - 237 – Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. Example The following example config ures the system priority to 120. Console (config)# lacp syste m-p rio rity 120 5.11.2 lacp port-priority The lacp port-priority interface configuration comman d [...]

  • Page 238

    User’s Manual of WGSD-1022/WGSD-8000 - 238 – Syntax lacp timeout { long | short } no lacp timeout  long — S pecifies a long timeo ut value.  Short — S pecifies a short timeout value. Default Configuration The default port timeout value is long . Command Mode Interface Configurat ion (Ethernet) mode User Guidelines There are no user gu[...]

  • Page 239

    User’s Manual of WGSD-1022/WGSD-8000 - 239 – Port e1 LACP S tatistics: LACP PDUs sent:2 LACP PDUs received:2 5.11.5 show lacp port-channel The show lacp port-channel privileged EXEC command displays LAC P information for a port-channel. Syntax show lacp port-cha nne l [ port_channel_number ]  port_channel_number — The port-channel number .[...]

  • Page 240

    User’s Manual of WGSD-1022/WGSD-8000 - 240 – 5.12 Line Commands 5.12.1 line The lin e global configuratio n command identifies a specific line fo r configuration a nd enters the line configurati on command mode. Syntax line { console | telnet | ssh }  console — Console terminal line.  telnet — Virtual terminal for remote console acces[...]

  • Page 241

    User’s Manual of WGSD-1022/WGSD-8000 - 241 – User Guidelines There are no user guidel ines for this command, which is availabl e only on the conso le line. Examples The following example the ba ud rate is set to 19200. Console (config)# line console Console(config -line)# speed 1 9200 5.12.3 exec-timeout The exec-timeou t line configuration com[...]

  • Page 242

    User’s Manual of WGSD-1022/WGSD-8000 - 242 –  console — Console terminal line.  telnet — Virtual terminal for remote console access (T elnet).  ssh — Virtual terminal for secured remote console access ( SSH). Default Configuration This command has no default configur ation. Command Mode User EXEC mode User Guidelines There are no[...]

  • Page 243

    User’s Manual of WGSD-1022/WGSD-8000 - 243 – configuration. Once in the access-list c onfiguratio n mode, the denied or permitted a ccess conditions are configured with the deny and permit commands. T o remove an access list, use the no form of this command. Syntax management access-list na me no management acces s-list na me  name — The a[...]

  • Page 244

    User’s Manual of WGSD-1022/WGSD-8000 - 244 – 5.13.2 permit (management) The permit management acc ess-list configurati on command defines a per mit rule. Syntax permit [ ethernet interface-nu mber | vl an vlan-id | port-channel number | out-of-band-eth oob-interface ] [ service service ] permit ip-source ip-address [ mask mask | prefix-length ][...]

  • Page 245

    User’s Manual of WGSD-1022/WGSD-8000 - 245 – deny ip-source ip-address [ mask mask | prefix-length ] [ ethernet interface-number | vl a n vlan-id | port-channel number | out-of-band-eth oob-interface ] ] [ service service ]  ethernet interface-nu mber — A valid Ethernet port number .  vla n vlan-id — A valid VLAN number .  port-cha[...]

  • Page 246

    User’s Manual of WGSD-1022/WGSD-8000 - 246 – Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. Example The following example config ures an access-list called "mlist " as the management access-list. Console (config)# manage ment access- class mlist 5.13.5 show management access-list[...]

  • Page 247

    User’s Manual of WGSD-1022/WGSD-8000 - 247 – 5.13.6 show management access-class The show managemen t acc ess-class privileged E XEC command displays the active management acc ess-list. Syntax show manag ement access-class Default Configuration This command has no default configur ation. Command Mode Privileged EXEC mode User Guidelines There a[...]

  • Page 248

    User’s Manual of WGSD-1022/WGSD-8000 - 248 – The maximum disatance VCT can function is 120 meters. Examples The following example results in a rep ort on the cable attached to port e3. Console# test copper-port tdr e3 Cable is open at 100 meters The following example results in a failure to report on th e cable attached to port e4. Console# tes[...]

  • Page 249

    User’s Manual of WGSD-1022/WGSD-8000 - 249 – 5.14.3 show copper-ports cable-length The show copper-p orts cable-length privileged EXEC command displays the estimated copper cabl e length attached to a port. Syntax show copp er-ports cable-length [ interface ]  interface — A valid Ethernet port. Default Configuration This command has no def[...]

  • Page 250

    User’s Manual of WGSD-1022/WGSD-8000 - 250 – Default Configuration This command has no default configur ation. Command Mode Privileged EXEC mode User Guidelines T o test optical transceivers en sure a fiber link is present. Examples The following example disp lays the optical transceiver diagnostics. console# show fiber-port s optical-transce i[...]

  • Page 251

    User’s Manual of WGSD-1022/WGSD-8000 - 251 – ------ -------- ------------ ------------ ----------- ----- ----- --------- e1 48 5.15 50 1.789 No e2 43 5.15 10 1.789 No e 3 C o p p e r T emp – Interna lly measured transceiver temperature. V oltage - Internally measured supp ly voltage. Current – Measured TX bias current. Output Power – Meas[...]

  • Page 252

    User’s Manual of WGSD-1022/WGSD-8000 - 252 – Example The following example enters the c ontext of port-channel number 1. Console (config)# interface port-channel 1 5.15.2 interface range port-channel The interface rang e port-chann el global configuration co mmand ente rs the interface configuratio n mode to co nfigure multiple port-channel s. [...]

  • Page 253

    User’s Manual of WGSD-1022/WGSD-8000 - 253 –  on — Forces the port to join a channel.  auto — Allows the port to join a channel as a result of an LACP operation. Default Configuration The port is not assigned to any port-channel. Command Mode Interface Configurat ion (Ethernet) mode User Guidelines T urning off auto-negotiation on an [...]

  • Page 254

    User’s Manual of WGSD-1022/WGSD-8000 - 254 – User Guidelines There are no user guidel ines for this command. Example The following example sho ws how all port-channel informati on is displayed. Console (config)# show interfaces port-channel C h a n n e l P o r t s ------------ ----------------- c h 1 A c t i v e : g 2 c h 2 A c t i v e : e 3 , [...]

  • Page 255

    User’s Manual of WGSD-1022/WGSD-8000 - 255 – The port cannot be a member in a port-chan nel. An IP interface is not configured on the port. GVRP is not enabled on the port. The port is not a member in any VLAN, except for the default VLAN (will automatically be r emoved from the default VLAN). The following restrictions apply to ports configure[...]

  • Page 256

    User’s Manual of WGSD-1022/WGSD-8000 - 256 – User Guidelines There are no user guidel ines for this command. Example The following example sho ws how the port copy status is displayed. Console# show ports monitor Source Port Destination Port T ype St atus VLAN T agging ---------------- ----------------------- ------------ ----------- ----------[...]

  • Page 257

    User’s Manual of WGSD-1022/WGSD-8000 - 257 – Use the no form of this command to disable the QoS features on the device. Syntax qos [ advanced ] no qos  advanced — QoS advanc ed mode, which enables the full rang e of QoS configuration. Default Configuration By default QoS is enabled in basic mode. Command Mode Global Configuration mode User[...]

  • Page 258

    User’s Manual of WGSD-1022/WGSD-8000 - 258 – 5.17.3 wrr-queue cos-map The wrr-queue cos-map global configuration command maps assigned CoS va lues to select one of the egress queues. T o return to the default values, use the no form of this command. Syntax wrr-queue cos-map queue-id cos1...cos n no wrr-queue cos-map [ queue-id ]  queue-id ?[...]

  • Page 259

    User’s Manual of WGSD-1022/WGSD-8000 - 259 – 5.17.4 wrr-queue bandwidth The wrr-queue band widt h interface configuration command assigns Weight ed Round Robin (WRR) weights to egress queues. The weights ratio determines the frequenc y in which the packet scheduler deque ues packets from each queue. T o return to the default values, use the no [...]

  • Page 260

    User’s Manual of WGSD-1022/WGSD-8000 - 260 –  Queue 5—6/36  Queue 6—6/36  Queue 7—6/36  Queue 8—6/36 Console (config-if)# wrr-queue bandwidt h 6 6 6 6 6 6 6 6 5.17.5 priority-queue out num-of- queues The priority-queue out num -of-queues global configuration command en ables the eg ress que ues to be expedite queue s. Use th[...]

  • Page 261

    User’s Manual of WGSD-1022/WGSD-8000 - 261 –  vla n vlan-id — VLAN num ber .  port-channel number — Port-channel.  buffers — Displays buffer setting for the interface queues. For gi gabit Ethernet interfaces, the queue d epth for each of the 8 queues and the thresholds for the W RED/T ail Drop ar e displayed. For 10/100 interface[...]

  • Page 262

    User’s Manual of WGSD-1022/WGSD-8000 - 262 – qid MinDP0 MaxDP0 ProbDP0 MinDP1 MaxDP1 ProbDP1 MinDP2 MaxDP2 ProbDP2 W eight 1 N / A N / A N / A N / A N / A N / A N / A N / A N / A N / A 2 N / A N / A N / A N / A N / A N / A N / A N / A N / A N / A 3 N / A N / A N / A N / A N / A N / A N / A N / A N / A N / A 4 N / A N / A N / A N / A N / A N / A[...]

  • Page 263

    User’s Manual of WGSD-1022/WGSD-8000 - 263 – The following example disp lays output from the show qos interface g1 policers comman d Console# sho w qos interface ethernet g1 po licers Ethernet g1 Class map: A Policer type: aggregate Committed rate: 192000 bps Committed burst: 9600 bytes Exceed-action: polic ed-dscp-transmit Class map: B Policer[...]

  • Page 264

    User’s Manual of WGSD-1022/WGSD-8000 - 264 – Command Mode Global Configuration mode User Guidelines Queue settings for 3, 1 1, 19, ... cannot be modified. Example The following example maps DSCP values 33, 40 and 41 to queue 1. Console (config)# qos map dscp-queue 33 40 41 to 1 5.17.8 qos trust (Global) The qos trust global configur ation comma[...]

  • Page 265

    User’s Manual of WGSD-1022/WGSD-8000 - 265 – T o return to the untrusted state, use the no qos command to apply best effort service. Example The following example config ures the syst em in basic mode t o DSCP trust st ate. Console (config)# qos trust dscp 5.17.9 qos trust (Interface) The qos trust interface config uration command enables each [...]

  • Page 266

    User’s Manual of WGSD-1022/WGSD-8000 - 266 – Syntax qos cos default-cos no qos cos qos cos overri d e  default-cos — S pecifies the default CoS value bein g assigned to t he port. If the port is trust ed and the packet is untagged then the default CoS value becomes the CoS value. (Ra nge: 0 - 7) Default Configuration Port CoS is 0. Command[...]

  • Page 267

    User’s Manual of WGSD-1022/WGSD-8000 - 267 – Example The following example overri des the CoS of incoming packets. Console(config )# qos cos override 5.17.12 show qos map The show qos map user EXEC command displays a ll the QoS maps. Syntax show qo s map [ dscp-queue | policed-dscp | dscp-mutation ]  dscp-queue — D isplay s the DSCP to que[...]

  • Page 268

    User’s Manual of WGSD-1022/WGSD-8000 - 268 – Policed-dscp map: d 1 : d 2 0 1 2 3 4 5 6 7 8 9 ---- ------- ---- --- ---- ---- ---- ---- ---- ---- ---- 0 : 0 0 0 1 0 2 0 3 0 4 0 5 0 6 0 7 0 8 0 9 1 : 1 0 1 1 1 2 1 3 1 4 1 5 1 6 1 7 1 8 1 9 2 : 2 0 2 1 2 2 2 3 2 4 2 5 2 6 2 7 2 8 2 9 3 : 3 0 3 1 3 2 3 3 3 4 3 5 3 6 3 7 3 8 3 9 4 : 4 0 4 1 4 2 4 3 [...]

  • Page 269

    User’s Manual of WGSD-1022/WGSD-8000 - 269 –  ip-address — IP address of the RADIUS server host. An out-of-ban d IP address can be specified as described in the usage guidelines.  timeout — S pecifies the timeout value in seconds. If no timeout val ue is specified, the global value is used. (Range: 1 - 30)  retransmit — S pecifie[...]

  • Page 270

    User’s Manual of WGSD-1022/WGSD-8000 - 270 – 5.18.2 radius-server key The radiu s-server key global configur ation command sets the auth entication and encr yption key for all RADIUS communications bet ween the router and the RADI US daemon. T o reset to the default, use the no form of this command. Syntax radius-ser ver key [key-string] no rad[...]

  • Page 271

    User’s Manual of WGSD-1022/WGSD-8000 - 271 – User Guidelines There are no user guidel ines for this command. Example The following example config ures the number of times the softwa re searches the list of RADIUS server hosts to 5 attempts. Console (config)# radius-server retransmit 5 5.18.4 radius-server source-ip The radius-server source-ip g[...]

  • Page 272

    User’s Manual of WGSD-1022/WGSD-8000 - 272 –  timeout — S pecifies the timeout value in seconds. (Range: 1 - 30) Default Configuration The default value is 3 seconds. Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. Example The following example sets the interval for which a router wait[...]

  • Page 273

    User’s Manual of WGSD-1022/WGSD-8000 - 273 – Console (config)# radius-ser ver deadtime 10 5.18.7 show radius-servers The show radius-servers user EXEC comm and d isplays the RADIUS server settings. Syntax show radi us-servers Default Configuration This command has no default configur ation. Command Mode User EXEC mode User Guidelines There are [...]

  • Page 274

    User’s Manual of WGSD-1022/WGSD-8000 - 274 – 5.19 RMON Commands 5.19.1 show rmon statistics The show rmon statistics user EXEC command displays RMON Ethernet S tatistics. Syntax show rmon st atistics { ethernet interface number | port-channel port-channel-number }  interface num ber — V alid Ethernet port.  port-channel -number — V al[...]

  • Page 275

    User’s Manual of WGSD-1022/WGSD-8000 - 275 – times this condition has been detected. Octets T he total number of octets of dat a (including those in bad packets) received on the network (excluding framing bits but including F CS octets). Packets T he total number of p ackets (including bad packets, broadcast packet s, and multicast packets) rec[...]

  • Page 276

    User’s Manual of WGSD-1022/WGSD-8000 - 276 – 5.19.2 rmon collection history The rmon collection history interface configuration command enables a Remo te Monitoring (RMON) MIB histor y statistics group on an interface. T o remove a spec if ied RMON history statistics group, use the no form of this command. Syntax rmon collection history index [[...]

  • Page 277

    User’s Manual of WGSD-1022/WGSD-8000 - 277 – Default Configuration This command has no default configur ation. Command Mode User EXEC mode User Guidelines There are no user guidel ines for this command. Example The following example disp lays all RMON group statistics. Console# show rmon collection history Index Interface Interval Re quested Gr[...]

  • Page 278

    User’s Manual of WGSD-1022/WGSD-8000 - 278 –  period seconds — S pecifies the req uested period time to display . (Range: 1 - 4294967295) Default Configuration This command has no default configur ation. Command Mode User EXEC mode User Guidelines There are no user guidel ines for this command. Examples The following example disp lays RMON[...]

  • Page 279

    User’s Manual of WGSD-1022/WGSD-8000 - 279 – The following example disp lays RMON Ethernet S tat istics history for "other" on index number 5. Console# show rmon history 5 other S a m p l e S e t : 1 O w n e r : C L I I n t e r f a c e : 1 / g 1 I n t e r v a l : 1 8 0 0 Requested samples: 50 Granted samples: 50 Maximum table size: 50[...]

  • Page 280

    User’s Manual of WGSD-1022/WGSD-8000 - 280 – Fragments The total number of packets received during this sampling interval that were less than 64 octets in length (excluding framing bits but includi ng FCS octets) had either a bad Frame Check Seque nce (FCS) with an integral number of octets (FCS E rror), or a bad FCS with a non-integral number [...]

  • Page 281

    User’s Manual of WGSD-1022/WGSD-8000 - 281 –  startup direction — The alarm that may be sent when this entry is firs t set to valid. If the first sample (af ter this entry becomes valid) is greater than or equal to the rthreshold , and direction is equa l to rising or rising-falling , then a single rising alarm is generated. If the first s[...]

  • Page 282

    User’s Manual of WGSD-1022/WGSD-8000 - 282 – Command Mode User EXEC mode User Guidelines There are no user guidel ines for this command. Example The following example disp lays the alarms summary table. Console# show rmon alarm-ta ble I n d e x O I D O w n e r ------- --------------------------------------- ----------- 1 1 . 3 . 6.1.2.1.2.2.1. [...]

  • Page 283

    User’s Manual of WGSD-1022/WGSD-8000 - 283 – Example The following example disp lays RMON 1 alarms. Console# show rmon alarm 1 Alarm 1 ----------- OID: 1.3.6.1.2. 1.2.2.1.10.1 Last sample V alue: 878128 Interval: 30 Sample T ype: delta S tartup Alarm: rising Rising Threshold: 8700000 Falling Threshold: 78 Rising Event: 1 Falling Event: 1 Owne r[...]

  • Page 284

    User’s Manual of WGSD-1022/WGSD-8000 - 284 – is generated. Rising Threshold A sampled statistic threshold. W hen the current sampled value is gr eater than or equal to this threshold, and the value at the last samp ling interval is less than this thresh old, a single event is generated. Falling Threshold A sampled statistic threshold. When the [...]

  • Page 285

    User’s Manual of WGSD-1022/WGSD-8000 - 285 – Example The following example config ures an event with the trap index of 10 Console (config)# rmon e vent 10 log . 5.19.9 show rmon events The show rmon events user EXEC command displays the RMON event table. Syntax show rmon events Default Configuration This command has no default configur ation. C[...]

  • Page 286

    User’s Manual of WGSD-1022/WGSD-8000 - 286 – values: none , log , trap , log-trap . In the case of log, an entry is made in the log table for each event. In the case of trap, an SNMP trap is sent to one or more management stations. Community If an SNMP trap is to be sent, it is sent to the SNMP community specified by this octet string. Owne r T[...]

  • Page 287

    User’s Manual of WGSD-1022/WGSD-8000 - 287 – 1 E r r o r s J a n 1 8 2 0 0 2 2 3 : 4 8 : 1 9 1 E r r o r s J a n 1 8 2 0 0 2 2 3 : 5 8 : 1 7 2 High Broadcast Jan 18 2002 23:59:48 The following table describes the sign if icant fields shown in the disp lay: Field Description Event An inde x that uniquely identifies the event. Description A comme[...]

  • Page 288

    User’s Manual of WGSD-1022/WGSD-8000 - 288 – 5.20 SNMP Commands 5.20.1 snmp-server community The snmp-server com munity global c onfiguration command sets up the comm unity access string to permit access to the SNMP protocol. T o remove the s pecified co mmunity string, use the no form of this command. Syntax snmp-server commun ity community [r[...]

  • Page 289

    User’s Manual of WGSD-1022/WGSD-8000 - 289 – Default Configuration No community is defined. Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. Examples The following example sets up the communit y access string "pub lic" to permit administrativ e access to SNMP protocol, at an admini[...]

  • Page 290

    User’s Manual of WGSD-1022/WGSD-8000 - 290 – Console (config)# snmp -se rver contact abc_T ecnical _Support 5.20.3 snmp-server location The snmp-server locatio n global configuration command s ets up information on where the device is loc ated. T o remove the location string use, the no form of this command. Syntax snmp-server lo catio n text n[...]

  • Page 291

    User’s Manual of WGSD-1022/WGSD-8000 - 291 – Examples The following example disp lays the command to enable SNMP traps. Console (config)# snmp-se rver enable traps 5.20.5 snmp-server tr ap authentication The snmp-server trap authenticatio n global configuration command ena bles the sw itch to send Simple Net work Management Protocol traps when [...]

  • Page 292

    User’s Manual of WGSD-1022/WGSD-8000 - 292 –  community-string — Password-like communi ty string sent with the notif ication operation. (R ang e: 1 - 20 characters)  1 — SNMPv1 traps is used.  2 — SNMPv2 traps is used (Default). Default Configuration The default is SNMPv2. UDP Port - 162 timeout - 15 seconds retries - 3. Command [...]

  • Page 293

    User’s Manual of WGSD-1022/WGSD-8000 - 293 – Command Mode Global Configuration mode User Guidelines Although the CLI can set any required co nfig uration, there might be a situation where a SNMP user sets a MIB variable that does not have an equivalent comman d. In order to generate configuration files that su pport those situatio ns, the snmp-[...]

  • Page 294

    User’s Manual of WGSD-1022/WGSD-8000 - 294 – Community-S tring Community-Access IP address ------------------------- ---------------------------- ------------------ public read onl y All private read write 172.16.1.1 private read write 172.17.1.1 OOB management stations Community-S tring Community-Access IP address ------------------------- ---[...]

  • Page 295

    User’s Manual of WGSD-1022/WGSD-8000 - 295 – 5.21 Spanning-Tree Commands 5.21.1 spanning-tree The spanning-tree global con figuration command ena bles spanning-tree func tionality . T o disa ble spanning-tree functionality , use the no form of this command. Syntax spanning-tree no spanning-tree Default Configuration S p anning-tree is enable d.[...]

  • Page 296

    User’s Manual of WGSD-1022/WGSD-8000 - 296 – User Guidelines There are no user guidel ines for this command. Example The following example config ures the spanning-tree protocol to RSTP . Console(config )# spanning-tree mode rstp 5.21.3 spanning-tree forward-time The spanning-tree forw ard -time global configuration comm and configures the sp a[...]

  • Page 297

    User’s Manual of WGSD-1022/WGSD-8000 - 297 – Syntax spanning-tree hello-time seconds no spanning-tree hello-time  seconds — T ime in seconds. (Range: 1 - 10) Default Configuration The default hello time for IEEE S panning-T ree Protocol (STP) is 2 seconds. Command Modes Global Configuration mode User Guidelines There are no user guidel ine[...]

  • Page 298

    User’s Manual of WGSD-1022/WGSD-8000 - 298 – Console(config )# spanning-tree max-age 10 5.21.6 spanning-tree priority The spanning-tree priority global configurati on command configur es the spanning-tree priority . The priority value is used to determine which bridge is el ected as the root bridge. T o reset the defaul t spanning-tree priorit [...]

  • Page 299

    User’s Manual of WGSD-1022/WGSD-8000 - 299 – Default Configuration By default, all ports are enabled for spanning-tree. Command Modes Interface Configuration (Ethernet, port-channel) mod e User Guidelines There are no user guidel ines for this command. Example The following example disa bles spanning-tree on e5. Console (config)# interface e th[...]

  • Page 300

    User’s Manual of WGSD-1022/WGSD-8000 - 300 – Console(config )# interface ethernet e5 Console(config-if)# spanning-tree cost 35000 5.21.9 spanning-tree port-priority The spanning-tre e port-priority interface configuration command co nfigures port priority . T o reset the default port priorit y , use the no form of this command. Syntax sp anning[...]

  • Page 301

    User’s Manual of WGSD-1022/WGSD-8000 - 301 – Default Configuration PortFast mode is disabled. Command Modes Interface Configuration (Ethernet, port-channel) mod e User Guidelines This feature should be used o nly with inte rfaces connected to end stations. Otherwise , an accidental topolog y loop could cause a data packet loop and disrupt switc[...]

  • Page 302

    User’s Manual of WGSD-1022/WGSD-8000 - 302 – 5.21.12 spanning-tree pathcost method The spanning-tre e p athcost method command sets the default p ath cost method. T o revert to the default setting, use the no form of this command. Syntax sp anning-tree p athcost method { lon g | sho rt } no sp anning-tree p athcost method  long — S pecifie[...]

  • Page 303

    User’s Manual of WGSD-1022/WGSD-8000 - 303 – Command Modes Global Configuration mode User Guidelines The command is relevant when spanning-tree is disabled globally or on a single interfac e.. Example The following example defin es BPDU packet flooding when spanning-tree is disabled on an interface. Console(config )# sp anning-tree bp du floodi[...]

  • Page 304

    User’s Manual of WGSD-1022/WGSD-8000 - 304 – Sy nt a x show spanning-tree [ ethernet interface | port-channel port-channel-number ] show spanning-tree [ detail ] [ active | blocked port s ]  interface — The full syntax is: unit/port . (Range: V alid Ethernet port)  port-channel -number — Port channel index. (Range:V alid port channel)[...]

  • Page 305

    User’s Manual of WGSD-1022/WGSD-8000 - 305 – hello 2, max age 20, for ward delay 15 I n t e r f a c e P o r t I D C o s t S e t D e s i g n a t e d P o r t I D N a m e P r i o . N b r C o s t B r i d g e I D P r i o . N b r ------------- -------------- --------- ------ --------------- -------- --------------- g1 128.1 19 FW D 38 32768 0030 .944[...]

  • Page 306

    User’s Manual of WGSD-1022/WGSD-8000 - 306 – Default Configuration The default value is 22. Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. Example The following example specifies the port to b e used by the SSH server as 8080. Console (config)# ip ssh port 8080 5.22.2 ip ssh server The ip [...]

  • Page 307

    User’s Manual of WGSD-1022/WGSD-8000 - 307 – 5.22.3 crypto key generate dsa The ip ssh server glob al configuration command generate s DSA key pairs. Syntax crypto key generate dsa Default Configuration DSA key pairs do not exist. Command Mode Global Configuration mode User Guidelines DSA ke ys are generated in pairs: one public DSA key and one[...]

  • Page 308

    User’s Manual of WGSD-1022/WGSD-8000 - 308 – User Guidelines RSA ke ys are generated in pairs: one public RSA key and one private RSA key . If the device alread y has RSA keys, a warning and prompt to replace the exis ting ke ys with new keys is dis played. The maximum supported siz e for the RSA key is 2048 b its. This command is not saved in [...]

  • Page 309

    User’s Manual of WGSD-1022/WGSD-8000 - 309 – Syntax crypto key pubkey-chain s sh Default Configuration By default, there are no keys. Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. Example The following example enters the SSH Public Key-chain con figuration mode. Console(config )# crypto k[...]

  • Page 310

    User’s Manual of WGSD-1022/WGSD-8000 - 310 – Console(config -pubkey-chain)# user-key bob Console(config-pubk ey-key)# key-strin g rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCvTnRwPWl 5.22.8 key-string The key-string SSH public key-string configuration comm an d manually specifies a SSH public ke y . Syntax key-string text  text — Authentication str[...]

  • Page 311

    User’s Manual of WGSD-1022/WGSD-8000 - 311 – Rmt5nhhqdAtN/4oJfce166DqV X1gWmN zNR4DYDvSzg0lDn wCAC8Qh Fingerprint: a4:16:46:23:5a:8 d: 1d:b5:37:59:eb :44:13:b9:33: e9 5.22.9 show ip ssh The show ip ssh privilege d EXEC command displa ys the SSH server configuration. Syntax show ip ssh Default Configuration This command has no default configur a[...]

  • Page 312

    User’s Manual of WGSD-1022/WGSD-8000 - 312 – Auth Code Authentication Code (HMAC-MD5, HMAC-SHA1) 5.22.10 show crypto key mypubkey The show crypto key mypubke y privile ged EXEC command displa ys the SSH public keys on the devi ce. Syntax show cry pto key my pubkey [ rsa | dsa ] rsa —RSA key . dsa —DSA key . Default Configuration This comman[...]

  • Page 313

    User’s Manual of WGSD-1022/WGSD-8000 - 313 –  username — S pecifies the remote SSH client username.  bubble-babbl e — Fingerprints in Bubble Babble format.  hex — Fingerprint in Hex form at. If fingerprint is unspecified, it defaults to Hex format. Default Configuration This command has no default configur ation. Command Mode Pri[...]

  • Page 314

    User’s Manual of WGSD-1022/WGSD-8000 - 314 –  packet_size — Number of bytes in a packet. The actual packet size is eight bytes larger than the size specified because the switch adds header information.(R ange: 57 - 1472 bytes)  packet_count — Number of packets to send. If 0 is entered it pings until stopped. (Range: 1 - 65535 packets)[...]

  • Page 315

    User’s Manual of WGSD-1022/WGSD-8000 - 315 – Syntax traceroute ip- address | hostnme [ size packet_size ] [ ttl max-ttl ] [ count p acket_count ] [ timeout time_out ] [ source ip-address ] [ tos tos ]  ip-address — IP address of the destination host. An out-of-band IP address can be specified as described in the us age guidelines. (Range: [...]

  • Page 316

    User’s Manual of WGSD-1022/WGSD-8000 - 316 – Examples console> traceroute umaxp1.physics.lsa.umic h.edu T ype Esc to abort. T racing the route to umaxp1.phy sics.lsa.umic h.edu (141.21 1. 101.64) 1 i2-gateway .stanford.edu (192.68. 19 1.83) 0 msec 0 msec 0 msec 2 ST AN.POS.calren2.NET (171.64.1. 213) 0 msec 0 msec 0 msec 3 SUNV --ST AN.POS.c[...]

  • Page 317

    User’s Manual of WGSD-1022/WGSD-8000 - 317 – 5.23.3 telnet The telnet User EXEC comm and is used to log in to a host that supports T elnet. Syntax telnet ip-address | hostn ame [ port ] [ keyword1...... ]  ip-address — IP address of the destination host. An out-of-band IP address can be specified as described in the us age guidelines. (Ran[...]

  • Page 318

    User’s Manual of WGSD-1022/WGSD-8000 - 318 – Console> ‘Ctrl-shift-6’ ? [S pecial telnet escape help] Esc B sends telnet BREAK Esc C sends telnet IP Esc H sends telnet EC Esc O sends telnet AO Esc T sends telnet A YT Esc U sends telnet EL Several concurrent T elnet sess ions can be opened and s wit ched between them. T o open a subsequ en[...]

  • Page 319

    User’s Manual of WGSD-1022/WGSD-8000 - 319 – ftp File T ransfer Protocol 21 ftp-data FTP data connections 20 gopher Gopher 70 hostname NIC hostname server 101 ident Ident Protocol 1 13 irc Internet Relay Chat 194 klogin Kerberos login 543 kshell Kerberos shell 544 login Login 513 lpd Printer service 515 nntp Network News Transport Protocol 1 19[...]

  • Page 320

    User’s Manual of WGSD-1022/WGSD-8000 - 320 – Syntax resume [ connection]  connection — The connection number . The default is the most recent connection Default Configuration There is no default configur ation for this command. Command Mode EXEC mode User Guidelines There are no user guidel ines for this command. Examples The following com[...]

  • Page 321

    User’s Manual of WGSD-1022/WGSD-8000 - 321 – 5.23.6 hostname The hostname global configuration comm and specifies or modifies t he device host name . T o remove the existing host name, use the no form of the command. Syntax hostname name no hostname  name — The device host name. Default Configuration This command has no default configur at[...]

  • Page 322

    User’s Manual of WGSD-1022/WGSD-8000 - 322 – Example The following example disp lays information about the active users. Console# sho w users U s e r n a m e P r o t o c o l L o c a t i o n ---------------- ------------ ------------ B o b S e r i a l John SSH 172.16.0.1 Robert HTTP 172.16.0.8 5.23.8 show sessions The show sessions comman d in E[...]

  • Page 323

    User’s Manual of WGSD-1022/WGSD-8000 - 323 – Address IP address of the remote host. Port T elnet TCP port number Byte Number of unread bytes for the user to see on the connection. 5.23.9 show system The show system user EXEC comman d displa ys system information. Syntax show system Default Configuration This command has no default configur atio[...]

  • Page 324

    User’s Manual of WGSD-1022/WGSD-8000 - 324 – 15 59 20 68 25 77 30 86 35 95 40 104 5.23.10 show version The show vers ion user EXEC command displays the system versio n information. Syntax show vers ion Default Configuration This command has no default configur ation. Command Mode User EXEC mode User Guidelines There are no user guidel ines for [...]

  • Page 325

    User’s Manual of WGSD-1022/WGSD-8000 - 325 – Syntax logging on no logging o n Default Configuration Logging is enabled. Command Mode Global Configuration mode User Guidelines The logging process contro ls the distribution of logging messages to the various destinations, such as the logging b uffer , logg ing file, or syslog server . Logging on [...]

  • Page 326

    User’s Manual of WGSD-1022/WGSD-8000 - 326 – Default Configuration As described in the field descriptio ns. Command Mode Global Configuration mode User Guidelines Multiple syslog servers can be used. If no specific severity level is specified, the g lobal values apply to each server . T o define a lo gging server on the out-of-band port, use th[...]

  • Page 327

    User’s Manual of WGSD-1022/WGSD-8000 - 327 – 5.24.4 logging buffered The loggin g buffered global configuration command limits syslog messages displayed from an inter nal buffer based on severity . T o cancel the b uffer use, use the no form of this command. Syntax logging buffered level no logging bu ffered  level — Limits the message log[...]

  • Page 328

    User’s Manual of WGSD-1022/WGSD-8000 - 328 – Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. Example The following example chan ges the number of syslog messages stored i n the internal buffer to 300. Console (config)# logging buffered size 300 5.24.6 clear logging The clear logging privile[...]

  • Page 329

    User’s Manual of WGSD-1022/WGSD-8000 - 329 – logging file level no logging fil e  level — Limits the logging of messages to the buffer to a specified level: emergencies, a l erts , critical , errors, warnings , notifica tions, informational and debuggin g. Default Configuration The default severity level is errors . Command Mode Global Con[...]

  • Page 330

    User’s Manual of WGSD-1022/WGSD-8000 - 330 – 5.24.9 show logging The show logging privileged EXEC command dis plays the state of loggi ng and the syslog messages stored in the internal buffer . Syntax show logging Default Configuration This command has no default configur ation. Command Mode Privileged EXEC mode User Guidelines There are no use[...]

  • Page 331

    User’s Manual of WGSD-1022/WGSD-8000 - 331 – state to down 1 1-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Li ne protocol on Interface Ethernet g2, changed state to down 1 1-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Li ne protocol on Interface Ethernet e3, changed state to down 5.24.10 show logging file The show logging file privileged EXEC command d[...]

  • Page 332

    User’s Manual of WGSD-1022/WGSD-8000 - 332 – 1 1-Aug-2002 15:41:43: %SYS-5-CONFIG_I: Configured from memory by console 1 1-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Line pr otocol on Interface FastEthernet g0, changed state to up 1 1-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Li ne protocol on Interface Ethernet g0, changed state to down 1 1-Aug-200[...]

  • Page 333

    User’s Manual of WGSD-1022/WGSD-8000 - 333 – 5.25 TACACS Commands 5.25.1 tacacs-server host The tacacs-server host command in globa l configuration mode specifies a T ACACS+ host. T o delete the specifie d name or address, use the no form of this command. Syntax tacacs-server host { ip-address | hostname } [ singl e-connection ] [ port port-num[...]

  • Page 334

    User’s Manual of WGSD-1022/WGSD-8000 - 334 – Example The following example specifi es a T ACACS+ host. Console (config)# tacacs-server host 172. 16.1.1 5.25.2 tacacs-server key The tacacs-server key com mand in global configuration mode sets the aut hentication encryption ke y used for all T ACACS+ communications bet ween the device and the T A[...]

  • Page 335

    User’s Manual of WGSD-1022/WGSD-8000 - 335 –  timeout — S pecifies the timeout value in seconds. (Range: 1 - 1000) Default Configuration 5 seconds Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. Examples The following example sets the timeout value as 300. Console (config)# tacacs-serv[...]

  • Page 336

    User’s Manual of WGSD-1022/WGSD-8000 - 336 – 5.25.5 show tacacs The show tacacs command in Privileged EXEC mode displays co nfiguration and statistics for a T ACACS+ server . Syntax show tacacs [ ip-address ]  ip-address — Name or IP address of the host. Default Configuration This command has no default configur ation. Command Mode Privile[...]

  • Page 337

    User’s Manual of WGSD-1022/WGSD-8000 - 337 – --------------- ------------ 172.16.1.1 Connected 49 No Global G l o b a l 1 Global values -------------- T imeOut: 3 Source IP: 172.16.8.1 OOB Source IP: 176.16.8.1 5.26 User Interface Commands 5.26.1 enable The enable user EXEC command enters the privil eged EXEC mode. Syntax enable [ privilege-lev[...]

  • Page 338

    User’s Manual of WGSD-1022/WGSD-8000 - 338 – 5.26.2 disable The disable privile ged EXEC command returns to User EXEC mode. Syntax disable [ privilege-l evel ]  privilege-level — Privilege level to enter the system. (Range: 1 - 15) Default Configuration The default privilege lev el is 1. Command Mode Privileged EXEC mode User Guidelines Th[...]

  • Page 339

    User’s Manual of WGSD-1022/WGSD-8000 - 339 – confirming the command entry method is dis played. Console# configure Console (config)# 5.26.4 login The login user EXEC command changes a logi n username. Syntax login Default Configuration This command has no default configur ation. Command Mode User EXEC mode User Guidelines There are no user guid[...]

  • Page 340

    User’s Manual of WGSD-1022/WGSD-8000 - 340 – Command Mode All command modes User Guidelines There are no user guidel ines for this command. Example The following example chan ges the configuration mode fr om Interface Confi guration mode to User EXEC mode. Console(config-if)# exit Console(config )# exit Console# 5.26.6 exit(EXEC) The exit user [...]

  • Page 341

    User’s Manual of WGSD-1022/WGSD-8000 - 341 – Command Mode All Command modes User Guidelines There are no user guidel ines for this command. Example The following example ends th e current configuration session and returns to the previous command mode. Console (config)# end Console # 5.26.8 help The help command displays a brief descripti on of [...]

  • Page 342

    User’s Manual of WGSD-1022/WGSD-8000 - 342 – Command Mode Line Configuration mode User Guidelines There are no user guidel ines for this command. Example The following example ena bles the command history functi on for telnet. Console (config)# line telnet Console (config-line)# history 5.26.10 history size The history size lin e configuration [...]

  • Page 343

    User’s Manual of WGSD-1022/WGSD-8000 - 343 – Syntax show history Default Configuration This command has no default configur ation. Command Mode User EXEC command mode User Guidelines The commands are listed from the first to the latest command. The buffer is kept unchanged when entering to configuration mode a nd returning back. Example The fol[...]

  • Page 344

    User’s Manual of WGSD-1022/WGSD-8000 - 344 – Current privilege level is 15 5.27 VLAN Commands 5.27.1 vlan database The vlan database global configuration c ommand enters the VLAN configurati on mode. Syntax vlan dat abase Default Configuration This command has no default configur ation. Command Mode Global Configuration mode User Guidelines The[...]

  • Page 345

    User’s Manual of WGSD-1022/WGSD-8000 - 345 – Default Configuration This command has no default configur ation. Command Mode VLAN Database mode User Guidelines There are no user guidel ines for this command. Example The following example VLAN number 1972 is created. Console (config)# vlan database Console (config-vlan)# vla n 1972 5.27.3 default[...]

  • Page 346

    User’s Manual of WGSD-1022/WGSD-8000 - 346 – 5.27.4 interface vlan The interface vlan glob al configuration command e nters the interface configuration (VLAN) mode. Syntax interface vlan vlan-id  vlan-id — The ID of an existing VLAN (excluding GVRP dynamic VLANs). Default Configuration This command has no default configur ation. Command Mo[...]

  • Page 347

    User’s Manual of WGSD-1022/WGSD-8000 - 347 – User Guidelines Commands under the interface rang e context are executed in dependentl y on each interface in the range. If the command returns an error on one of the interfaces, an error messa ge is displayed and e xecution continues on other interfaces. Example The following example grou ps VLAN 22[...]

  • Page 348

    User’s Manual of WGSD-1022/WGSD-8000 - 348 – Syntax switchport mode { access | trunk | general } no switchport mode  access — Port belongs to a si ngle, untagged VLAN.  trunk — Port belongs to 1..4063 VLANs, all tagged (e xcept, optionally , for a single n ative VLAN).  general — Port belongs to 1..4063 VLANs, and each VLAN is ex[...]

  • Page 349

    User’s Manual of WGSD-1022/WGSD-8000 - 349 – User Guidelines The command automatically removes the p ort from t he previous VLAN, and adds it to the new VLAN. Example The following example config ures a VLAN ID of 23 to the untagged layer 2 VLAN interfac e number e8. Console (config)# interface e thernet e8 Console (config-if)# sw itch port acc[...]

  • Page 350

    User’s Manual of WGSD-1022/WGSD-8000 - 350 – 5.27.10 switchport trunk native vlan The sw i tc hp or t t ru nk na ti ve vl a n interface configuratio n command defines the port as a member of the specified VLAN, and the VLAN ID as the "port default VLAN ID (PVI D)". T o configure the d efault VLAN ID, use the no form of this command. S[...]

  • Page 351

    User’s Manual of WGSD-1022/WGSD-8000 - 351 –  t agged — Sets the port to transmit t agged packets for the VLANs. If the port is added to a VLAN without specifying tagged or untagged the default is tagged.  unt agged — Sets the port to transmit unt agged packets for the VLANs. Default Configuration This command has no default configur [...]

  • Page 352

    User’s Manual of WGSD-1022/WGSD-8000 - 352 – Console (config)# interface e thernet e8 Console (config-if)# switchport general p vid 234 5.27.13 switchport general ingress-filtering disable The switchport general ingress -filtering disable interface configuration command disa bles port ingress filtering. T o enabl e ingress filtering on a port, [...]

  • Page 353

    User’s Manual of WGSD-1022/WGSD-8000 - 353 – Default Configuration All frame types are accepted at ingress. Command Mode Interface Configuration (Ethernet, port-channel) mod e User Guidelines There are no user guidel ines for this command. Example The following example config ures e8 to discard untagged frames at ingress. Console (config)# inte[...]

  • Page 354

    User’s Manual of WGSD-1022/WGSD-8000 - 354 – Console (config)# interface e thernet e8 Console (config-if)# sw itch port forbidden vlan add 234- 256 5.27.16 map protocol protocols-group The map protocol protocols-group VLAN database command adds a speci al protocol to a named group of protoc ols, which may be used for protocol-based VLAN assignm[...]

  • Page 355

    User’s Manual of WGSD-1022/WGSD-8000 - 355 – 5.27.17 switchport general map protocols-group vlan The switchport genera l map protocols-gro up v lan interface configuration command sets a protocol-ba sed classification rule. T o delete a cla ssification, use the no form of this command. Syntax switchport general ma p protocols-group group vl an [...]

  • Page 356

    User’s Manual of WGSD-1022/WGSD-8000 - 356 – Command Mode Interface configuration (Ethernet, port-channel) User Guidelines An internal usage VLAN is require d when an IP interface is defined on Et hernet port or Port-channel. Using this command the user can define the internal usage VLAN of a port . If an internal-usage is not defined for a Por[...]

  • Page 357

    User’s Manual of WGSD-1022/WGSD-8000 - 357 – V l a n N a m e P o r t s T y p e A u t h o r i z a t i o n ---- ----------------- --------------------------- ----------- --- ---------------- 1 1 e ( 1 , 4 - 8 ) , g ( 1 - 2 ) , c h ( 1 - 8 ) o t h e r R e q u i r e d 2 VLAN_2 e2 permanent Required 3 VLAN_3 e3 permanent Required 5.27.20 show vlan i[...]

  • Page 358

    User’s Manual of WGSD-1022/WGSD-8000 - 358 – Syntax show interfaces switchport {ethernet interface | port-channel port-channel-number }  interface — S pecific interface, such as ethernet e8.  port-channel -number — V alid port-channel trunk index. Default Configuration This command has no default configur ation. Command Mode Privilege[...]

  • Page 359

    User’s Manual of WGSD-1022/WGSD-8000 - 359 – 219 372 5.28 Web Server Commands 5.28.1 ip http server The ip ht tp server global configurati on command enables the devic e to be c onfigured from a browser . T o disable th is function use the no form of this command. Syntax ip http server no ip http serv er Default Configuration This command has n[...]

  • Page 360

    User’s Manual of WGSD-1022/WGSD-8000 - 360 – Default Configuration This default port number is 80 . Command Mode Global Configuration mode User Guidelines There are no user guidel ines for this command. However , specif ying 0 as the port number will effectively disable HTT P access to the device. Example The following example sho ws how the ht[...]

  • Page 361

    User’s Manual of WGSD-1022/WGSD-8000 - 361 – 5.28.4 ip https port The ip http s p ort global configuration command configures a TCP port for use by a secure web browser to configure the device. T o use the default port, use the no form of this command. Syntax ip http s port port-number no ip https port  port-number — Port number for use by[...]

  • Page 362

    User’s Manual of WGSD-1022/WGSD-8000 - 362 – in the private configuration, which is never displayed to t he user or backed up to another device. Example The following example rege nerates a HTTPS certificate. Console (enabl e)# crypto certificate generate ke y-gene rate 5.28.6 show ip http The show ip http privileg ed EXEC command displays t he[...]

  • Page 363

    User’s Manual of WGSD-1022/WGSD-8000 - 363 – Command Mode Privileged EXEC command User Guidelines There are no user guidel ines for this command. Example The following example disp lays the HTTP server configuration. Console# show ip http s HTTPS server enabled. Port: 443 Certificate was generated. 5.29 802.1x Commands 5.29.1 aaa authentication[...]

  • Page 364

    User’s Manual of WGSD-1022/WGSD-8000 - 364 – Examples The following example uses th e aaa authentication dot 1x defau lt command with no auth enti cation. Console (config)# aaa auth entication dot1x default none 5.29.2 dot1x system-auth-control The dot1x system-auto-control comman d enables 802.1x globall y . Use the no form of this command to [...]

  • Page 365

    User’s Manual of WGSD-1022/WGSD-8000 - 365 –  force-authorized — Disable 802.1X authe ntication on the interface and c ause the port to transition to the authorized state without any authentication exchan ge requ ired. The port resends and rece ives normal traffic without 802.1X-based authentication of the client.  force-unauthorized ?[...]

  • Page 366

    User’s Manual of WGSD-1022/WGSD-8000 - 366 – Examples The following exampl e enables periodi c re-a uthentication of the client. Console (config)# interface e thernet e8 Console (config-if)# dot1x re-authentication 5.29.5 dot1x timeout re-authperiod The dot1x timeout re-authperiod interface configuration command sets the number of seconds bet w[...]

  • Page 367

    User’s Manual of WGSD-1022/WGSD-8000 - 367 – Default Configuration This command has no default configur ation. Command Mode Privileged EXEC mode User Guidelines There are no user guidel ines for this command. Examples The following command manually initiates a r e -authentication of t he 802.1X-enable d port. Console (config)# dot 1x re-a uthen[...]

  • Page 368

    User’s Manual of WGSD-1022/WGSD-8000 - 368 – exchange, to 3600. Console (config)# interface e thernet e8 Console (config-if)# dot1x timeout quiet-period 3600 5.29.8 dot1x timeout tx-period The dot1x timeout tx-period interface configuration command sets the number of seconds that the switch waits for a response to an Extensible Authentication P[...]

  • Page 369

    User’s Manual of WGSD-1022/WGSD-8000 - 369 – Syntax dot1x max-req count no dot1x max-req  count — Number of times that the switch sends an EAP - re quest/identity frame before re starting the authentication process. (Range: 1 - 10) Default Configuartion 2 Command Mode Interface configurat ion (Ethernet) mode User Guidelines There are no us[...]

  • Page 370

    User’s Manual of WGSD-1022/WGSD-8000 - 370 – specific behavioral probl ems with certain clients and authentication servers. Examples The following example sets the time for the retransmissi on of an EAP-req uest frame to the client, to 3600 seconds. Console (config)# dot1x timeout server-timeout 3600 5.29.11 dot1x timeout server-timeout The dot[...]

  • Page 371

    User’s Manual of WGSD-1022/WGSD-8000 - 371 –  interface — The full syntax is: unit/port . Default Configuration This command has no default configur ation. Command Mode Privileged EXEC mode User Guidelines There are no user guidel ines for this command. Examples The following example displa ys 802.1X status for the switch. console# show do[...]

  • Page 372

    User’s Manual of WGSD-1022/WGSD-8000 - 372 – S tate: held Quiet period: 60 Tx period: 30 Max req: 2 Login Time: n/a Last Authentication: n/a MAC Address: 0008.78 32.9878 Authentication Method: Remote T ermination C ause: Supplicant logoff The following table describes the sign if icant fields shown in the disp lay: Field Description Interface T[...]

  • Page 373

    User’s Manual of WGSD-1022/WGSD-8000 - 373 – Syntax show dot1x users [ usern ame username ]  username — Supplicant username Default Configuration This command has no default configur ation. Command Mode Privileged EXEC mode User Guidelines There are no user guidel ines for this command. Example The following example disp lays 802.1X users.[...]

  • Page 374

    User’s Manual of WGSD-1022/WGSD-8000 - 374 – 5.29.14 show dot1x statistics The show dot1x statistics privileged EXE C command displays 802.1X statistics for the specified interfa ce. Syntax show dot1x statistics ethernet interface  interface — The full syntax is: unit/port . Default Configuration This command has no default configur ation.[...]

  • Page 375

    User’s Manual of WGSD-1022/WGSD-8000 - 375 – Authenticator . EapolS t artFramesRx The number of EAPOL S tart frames that have been received by this Authenticator . EapolLogoffFramesRx T he number of EAPOL Logoff frames that ha ve been received by this Authenticator . EapolRespIdFramesRx The number of EAP Resp/Id frames that have been received b[...]

  • Page 376

    User’s Manual of WGSD-1022/WGSD-8000 - 376 – console config-if(Config-VLAN) # dot1x auth-no t-req 5.29.17 dot1x multiple-hosts The dot1x multiple-hosts interface configuration command allo ws multiple hosts (clients) on an 80 2.1X-authorized port, that has the dot1x port-control interface configuration command set to auto . Use the no form of t[...]

  • Page 377

    User’s Manual of WGSD-1022/WGSD-8000 - 377 –  discard — Discard frames with source addresses not the supplic ant address.  discard-shu t do wn — Discard frames with source addresses not the sup plicant address. The port is also shutdown.  trap seconds — Send SNMP traps, and specifies the minimum ti me between consecutive traps.(R[...]

  • Page 378

    User’s Manual of WGSD-1022/WGSD-8000 - 378 – Unauthenticated VLANs: 91, 92 Use user attributes from Authenticati on Server: Enabled User VLAN not created: Create Interface Multiple Hosts 1 / 1 D i s a b l e d 1 / 2 E n a b l e d console# sho w dot1x advanced eth ern et 1/1 Guest VLAN: 3978 Unauthenticated VLANs: 91, 92 Use user attributes from [...]

  • Page 379

    User’s Manual of WGSD-1022/WGSD-8000 - 379 – TROUBLE SHOOTING This chapter contains information to help you solve probl ems. If the Switch is not functioning properly , make sure the Ethernet Switch was set up according to instructions in this manual. The Link LED is not lit Solution: Check the cable connection and remov e duplex mode of the Sw[...]

  • Page 380

    User’s Manual of WGSD-1022/WGSD-8000 - 380 – APPENDEX A A.1 Switch's RJ-45 Pin Assignments When connecting your 10/10 0Mbps Ethernet Switch to another switch, a bridge or a hub, a straight or crossover cable is necessary . Each port of the Switch supports auto-MDI/MDI-X detect ion. That means you can direct l y connect the Switch to any Et[...]

  • Page 381

    User’s Manual of WGSD-1022/WGSD-8000 - 381 – The standard RJ-45 receptacle/connector There are 8 wires on a standard UT P/STP cable and each wire is color-coded. The following shows the pin allocation an d color of straight cable and crossover cable connection: S traight Cable SIDE 1 SIDE2 SIDE 1 12345678 12345678 SIDE 2 1 = White / Orange 2 = [...]

  • Page 382

    User’s Manual of WGSD-1022/WGSD-8000 - 382 – A.3 Available Modules The following list the available Modules f or WGSD-Switch MGB-GT SFP-port 1000Base-T Module MGB-SX SFP-port 1000Base-SX mini -GBIC module MGB-LX SFP-port 1000Base-LX mini-GBIC module MGB-L50 SFP-port 1000Base-LX mini-GBIC module-50KM MGB-L70 SFP-port 1000Base-LX mini-GBIC module[...]