Go to page of
Similar user manuals
-
Switch
ZyXEL Communications GS2200-24
358 pages 8.45 mb -
Switch
ZyXEL Communications VES-1000
155 pages 0.95 mb -
Switch
ZyXEL Communications MSAP2000
248 pages 4.17 mb -
Switch
ZyXEL Communications es-105e
2 pages 10.4 mb -
Switch
ZyXEL Communications ONU-6040B-21
19 pages 0.38 mb -
Switch
ZyXEL Communications ES-2024 Series
266 pages 7.87 mb -
Switch
ZyXEL Communications Dimension Ethernet Switches
22 pages 0.67 mb -
Switch
ZyXEL Communications MM-7201
6 pages 0.88 mb
A good user manual
The rules should oblige the seller to give the purchaser an operating instrucion of ZyXEL Communications XGS-4528F, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.
What is an instruction?
The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of ZyXEL Communications XGS-4528F one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.
Unfortunately, only a few customers devote their time to read an instruction of ZyXEL Communications XGS-4528F. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.
What should a perfect user manual contain?
First and foremost, an user manual of ZyXEL Communications XGS-4528F should contain:
- informations concerning technical data of ZyXEL Communications XGS-4528F
- name of the manufacturer and a year of construction of the ZyXEL Communications XGS-4528F item
- rules of operation, control and maintenance of the ZyXEL Communications XGS-4528F item
- safety signs and mark certificates which confirm compatibility with appropriate standards
Why don't we read the manuals?
Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of ZyXEL Communications XGS-4528F alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of ZyXEL Communications XGS-4528F, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the ZyXEL Communications service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of ZyXEL Communications XGS-4528F.
Why one should read the manuals?
It is mostly in the manuals where we will find the details concerning construction and possibility of the ZyXEL Communications XGS-4528F item, and its use of respective accessory, as well as information concerning all the functions and facilities.
After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.
Table of contents for the manual
-
Page 1
www .zyxel.com XGS-4528F Intelligent Layer 3+ Switch User ’ s Guide V ersion 3.80 8/2007 Edition 1 DEFAULT LOGIN IP Address http://1 92 .168.1.1 User Name admin Password 1234[...]
-
Page 2
[...]
-
Page 3
About This User's Guide XGS-4528F User’s Guide 3 About This User's Guide Intended Audience This manual is intended for people who want to configure the Switch using the web configurator or via commands. Y ou should have at least a basic knowledg e of TCP/IP networking conce pts and topology . Related Document ation • Quick Start Guide[...]
-
Page 4
Document Conventions XGS-4528F User’s Guide 4 Document Conventions W arnings and Notes These are how warnings and notes are shown in this User ’ s Guide. 1 W arnings tell you about things that could harm you or your device. " Notes tell you other important informati on (for example, other things you may need to configure or helpful tip s) [...]
-
Page 5
Document Conventions XGS-4528F User’s Guide 5 Icons Used in Figures Figures in this User ’ s Guide may use the followi ng generic icons. The Switch icon is n ot an exact representation of your device. The Switch Computer Notebook computer Server DSLAM Firewall T elephone Switch Router[...]
-
Page 6
Safety Warnings XGS-4528F User’s Guide 6 Safety Warnings 1 For your safety , be sure to read and follow all warni ng notices and instructions. • Do NOT use this product near water , for example, in a wet basement or near a swimming pool. • Do NOT expose your device to dampness, dust or corrosive liquids. • Do NOT store thin gs on the device[...]
-
Page 7
Safety Warnings XGS-4528F User’s Guide 7 This product is recyclable . Dispose of it properly .[...]
-
Page 8
Safety Warnings XGS-4528F User’s Guide 8[...]
-
Page 9
Contents Overview XGS-4528F User’s Guide 9 Contents Overview Introduction .......................................... ........................................................................ .......... 33 Getting to Know Y our Sw itch .............. ................ ................ ................ ................ ................ ..... .. 35 Ha[...]
-
Page 10
Contents Overview XGS-4528F User’s Guide 10 Differentiated Services ................. ................ ................. ................ ................ ................ ..... ...... 251 DHCP ............. ............. ................ ................ ................. ................ ............. ................ .. . ........... 259 VRRP [...]
-
Page 11
Table of Contents XGS-4528F User’s Guide 11 Table of Contents About This User's Guide ..................................................... ................................................... .. 3 Document Conventions.................................................................. ......................................... .4 Safety Warning[...]
-
Page 12
Table of Contents XGS-4528F User’s Guide 12 3.1.3 Mini-GBIC Slots ......... ................ ................ ................. ................ ............. ................ .. .4 4 3.2 Rear Panel .......... ................ ................ ................ ................. ................ ............. ........ ........... 46 3.2.1 Power Co[...]
-
Page 13
Table of Contents XGS-4528F User’s Guide 13 7.3 General Setup ...... ............. ................ ................. ................ ................ ................ ..... ........ 75 7.4 Introduction to VLANs ...................... ................ ................ ................ ................. .............. ..... 77 7.5 Switch Setup Sc[...]
-
Page 14
Table of Contents XGS-4528F User’s Guide 14 1 1.1 STP/R STP Overview ............................. ................ ................ ................ ................ ........ 1 07 1 1.1.1 STP T erminology .................. ................ ................ ................ ................. ................ . 1 07 1 1.1.2 How STP Works ........[...]
-
Page 15
Table of Contents XGS-4528F User’s Guide 15 16.1.2 MAC Authentication ............................. ................ ................ ................. ................ . 1 42 16.2 Port Authentication Config uration ..... ................ ................. ................ ................ .............. 143 16.2.1 Activate IEEE 802.1x Security .[...]
-
Page 16
Table of Contents XGS-4528F User’s Guide 16 Chapter 22 Multicast ............................................................................... ....................................... .......... 173 22.1 Multicast Overview .............. ................ ................. ................ ................ ............. ........... ... 173 22.1.1[...]
-
Page 17
Table of Contents XGS-4528F User’s Guide 17 24.5.1 DHCP Snooping Port Configure ........... ............. ................ ................ ................ ......21 1 24.5.2 DHCP Snooping VLAN Configure ........ ... ................. ................ ............. ................ . 213 24.6 ARP Inspection S tatus ...... ................ .......[...]
-
Page 18
Table of Contents XGS-4528F User’s Guide 18 29.1 IGMP Overview ....................... ................ ................ ............. ................ ................ ........ ... 243 29.1.1 How IGMP Works ........... ................ ................ ................ ............. ................ ........... 244 29.2 Port-based IGMP .........[...]
-
Page 19
Table of Contents XGS-4528F User’s Guide 19 33.1 VRRP Overview ...... ................. ................ ................ ................ ................ ................ ..... ... 267 33.2 VRRP S tatus ... ............. ................ ................ ................ ................ ................. ........... ...... 268 33.3 VRRP Config[...]
-
Page 20
Table of Contents XGS-4528F User’s Guide 20 35.6 SSH Implementation on the Switch ............ ................ ................ ............. ................ ........ 296 35.6.1 Requirements for Usi ng SSH .................. ............. ................ ................. ................ . 2 96 35.7 Introduction to HTTPS ............. .......[...]
-
Page 21
Table of Contents XGS-4528F User’s Guide 21 Chapter 42 Routing T able ................... ............................................................................................... ...... 321 42.1 Overview ................. ................. ................ ................ ................ ................ ............. .. ......... 321 42[...]
-
Page 22
Table of Contents XGS-4528F User’s Guide 22[...]
-
Page 23
List of Figures XGS-4528F User’s Guide 23 List of Figures Figure 1 Bridging Application ......... ......... .... ................ ................ ............. ................ ............ .......... ....... 36 Figure 2 High Performance Switching ... ................ ... ................. ................ ............. ................ ....... [...]
-
Page 24
List of Figure s XGS-4528F User’s Guide 24 Figure 39 Advanced Application > VLAN > VLAN Port Setting > Protocol Bas ed VLAN ............. .......... 97 Figure 40 Protocol Based VLAN Configurat ion Example ...... ................. ................ ................ ................ 99 Figure 41 Advanced Application > VL AN > Port Bas[...]
-
Page 25
List of Figures XGS-4528F User’s Guide 25 Figure 82 Advanced Application > Multicast > Multicast Setting .. ................ ................ ................... ..... 175 Figure 83 Advanced Application > Multicast > Multicast Setting > IGMP Snooping VLAN ............. ..... 177 Figure 84 Advanced Application > Multicast > Mu[...]
-
Page 26
List of Figure s XGS-4528F User’s Guide 26 Figure 125 IP Application > OSP F Configuration > OSPF Interfac e ...... ................ ............. ................ . 2 39 Figure 126 IP Application > OSP F Configuration > O SPF Virtual Link ........... ................ ................ ..... 240 Figure 127 IP Multicast ................[...]
-
Page 27
List of Figures XGS-4528F User’s Guide 27 Figure 168 Load Factory Default: S tart ............ ................ ................ ............. ................ ............... ........ . 280 Figure 169 Reboot System: Conf irmation ............. .......... ................ ................ ................ ............. .... .... 281 Figure 170 Ma[...]
-
Page 28
List of Figure s XGS-4528F User’s Guide 28 Figure 21 1 Subnetting Example: B e fore Subnetting .................. ................ ................ ................ ........... 3 48 Figure 212 Subnetting Example: After Subnetting .................... ................ ................ ................ ........... 349[...]
-
Page 29
List of Tables XGS-4528F User’s Guide 29 List of Tables T able 1 Panel Connections .......... ................. ................... ................ ................ ................ ....... ................ 43 T able 2 Panel Connections .......... ................. ................... ................ ................ ................ ....... ..[...]
-
Page 30
List of Tables XGS-4528F User’s Guide 30 T able 39 Advanced Application > Li nk Aggregation > Link Aggregation Setting ................. ................. 136 T able 40 Advanced Application > Li nk Aggregation > Link Aggregation Setting > LACP ................ ..... 1 37 T able 41 Advanced Applicat ion > Port Authentication >[...]
-
Page 31
List of Tables XGS-4528F User’s Guide 31 T able 82 Advanced Application > Loop Gu ard ...... .......... ................ ................ ................ ............. ....... .2 2 3 T able 83 IP Application > S tatic Routing ....................... ................ ................ ................ ............... ........ . 227 T able 84[...]
-
Page 32
List of Tables XGS-4528F User’s Guide 32 T able 125 Management > Diagnos tic ........... ................ ................ ................ ................ ................ .. ...... 303 T able 126 Syslog Severity Levels .................... ................ ................ ................ ................ .......... ........... 3 05 T able[...]
-
Page 33
33 P ART I Introduction Getting to Know Y our Switch (35) Hardware Installation and Connectio n (39) Hardware Overview (43)[...]
-
Page 34
34[...]
-
Page 35
XGS-4528F User’s Guide 35 C HAPTER 1 Getting to Know Your Switch This chapter introduces the main features and applications of the Switch. 1.1 Introduction Y our Switch is a stand-alone, layer -3, Giga bit Ethernet (GbE) switch with two 12 Gigabit stacking ports as well as support for an op tional 2-port 10 Giga bit uplink module. By integrating [...]
-
Page 36
Chapter 1 Getting to Know Your Switch XGS-4528F User’s Guide 36 Figure 1 Bridging Application 1.1.2 High Performa nce Switching Example The Switch is ideal for connecting two geograph ically dispersed networks that need high bandwidth. In the follow ing example, a co mpany uses the option al 10 Gigabit uplink modu les to connect the headquarters [...]
-
Page 37
Chapter 1 Getting to Kn ow Your Switch XGS-4528F User’s Guide 37 1.1.3 Gigabit Ethern et to the Desktop The Switch is an ideal solution for small networ ks which demand high bandwidth for a group of heavy traffic users. Y ou can connect computers and servers directly to the Switch’ s port or connect other switches to the Switch. Use the optiona[...]
-
Page 38
Chapter 1 Getting to Know Your Switch XGS-4528F User’s Guide 38 Figure 4 Shared Server Using VLAN Example 1.2 W ays to Manage the Switch Use any of the following meth ods to manage the Switch. • W eb Configurator . This is recommended for everyday management of the Switch using a (supported) web browser . See Chapter 4 o n page 51 . • Command[...]
-
Page 39
XGS-4528F User’s Guide 39 C HAPTER 2 Hardware Installation and Connection This chapter shows you how to install and connect the Switch. 2.1 Freest anding Inst allation 1 Make sure the Switch is clean and dry . 2 Set the Switch on a smooth, level surface stro ng enou gh to support the weight of the Switch and the connected cables. Make sure there [...]
-
Page 40
Chapter 2 Hardware Installation and Connection XGS-4528F User’s Guide 40 " For proper ventilation, allow at least 4 inches (10 cm) of clearance at the front and 3.4 inches (8 cm) at the back of the Switch. This is especially important for enclosed rack installations. 2.2 Mounting the Switch on a Rack This section lists the rack mounting requ[...]
-
Page 41
Chapter 2 Hard ware Installation an d Connection XGS-4528F User’s Guide 41 3 Repeat steps 1 and 2 to install the second mounting br acket on the other side of the Switch. 4 Y ou may now mount the Switch on a rack. Proceed to the next section. 2.2.3 Mounting the Switch on a Rack 1 Position a mounting bracket (that is already a ttached to the Switc[...]
-
Page 42
Chapter 2 Hardware Installation and Connection XGS-4528F User’s Guide 42[...]
-
Page 43
XGS-4528F User’s Guide 43 C HAPTER 3 Hardware Overview This chapter describes the front panel and rear panel of the Switc h and shows you how to make the hardware conn ections. 3.1 Front Panel Connections The figure below shows the fro nt panel of the Switch. Figure 8 Front Panel The following table describes the ports. 3.1.1 Dual Personality Int[...]
-
Page 44
Chapter 3 Hard ware Overview XGS-4528F User’s Guide 44 3.1.2 1000Base-T Port s The Switch has 24 1000Base-T auto-negotiating, auto-crossover Ethern et ports. In 100/1000 Mbps Gigabit Ethernet, the speed can be 100 Mbps or 1000 Mbps. The duplex mode can be both half or full duplex at 100 Mbps and full duplex only at 100 0 Mbps. An auto-negoti atin[...]
-
Page 45
Chapter 3 Hardware Overview XGS-4528F User’s Guide 45 Figure 9 T ran sceiver Installation Ex ample 2 Press the transceiver firmly until it clicks into place. 3 The Switch automatically detects the installed transceiver . Check the LEDs to verify that it is functioning properly . Figure 10 Installed T ransc eiver 3.1.3.2 T ransceiver Removal Use t[...]
-
Page 46
Chapter 3 Hard ware Overview XGS-4528F User’s Guide 46 3.2 Rear Panel The following figures sh ow the rear panels of the AC an d DC power input model switches. The rear panels contain: • A connector for the back up power supply ( A ) • An optional upl ink module ( B ) • T wo stacking ports ( C ) • An RJ-45 out-of-band ma nagement port ( D[...]
-
Page 47
Chapter 3 Hardware Overview XGS-4528F User’s Guide 47 3.2.1 Power Connector Make sure you are using the correct power source as shown on the panel. T o connect the power to the Switch, insert th e female end of power cord to the power receptacle on the rear panel. Connect the ot her end of the supplied power cord to a power outlet. Make sure that[...]
-
Page 48
Chapter 3 Hard ware Overview XGS-4528F User’s Guide 48 ALM Red On There is a ha rdware failure. Off The system is functioning normally . S1 Green On The Switch is connected to other switches i n the stack on S tacking Port 1. Off The Switch is not connected to o ther switches in the stack on S tacking Port 1. S2 Green On The Switch is connected t[...]
-
Page 49
49 P ART II Basic Configuration The W eb Configurator (51 ) Initial Setup Example (61) System Status and Port S tatistics (67) Basic Setting (73)[...]
-
Page 50
50[...]
-
Page 51
XGS-4528F User’s Guide 51 C HAPTER 4 The Web Configurator This section introduces the con figuration and functions of the web config urator . 4.1 Introduction The web configurator is an HTML-based mana ge ment interface that a llows easy Switch setup and management via Interne t browser . Use In ternet Explorer 6.0 and later or Netscape Navigator[...]
-
Page 52
Chapter 4 The Web Configurator XGS-4528F User’s Guide 52 Figure 15 Web Configura t or: Login 4 Click OK to view the first w eb configurator screen. 4.3 The St atus Screen The St a t u s screen is the first screen that displa ys when you access the web co nfigurator . The following figure shows the navigat ing co mponents of a web configurator scr[...]
-
Page 53
Chapter 4 The Web Configurator XGS-4528F User’s Guide 53 B, C, D, E - These are quick links which allo w you to perform certain tasks no matter which screen you are currently working in. B - Click this link to save your configuration into the Switch’ s nonvolatile memory . Nonvolatile memory is saved in the configuration file from which the Swi[...]
-
Page 54
Chapter 4 The Web Configurator XGS-4528F User’s Guide 54 The following table lists the various web configurator screens within the sub-links.[...]
-
Page 55
Chapter 4 The Web Configurator XGS-4528F User’s Guide 55 T able 5 Web Configurator Screen Sub-lin ks Details BASIC SETTING ADVANCED APPLICATION IP APPLICATION MANAGEMENT System Info General Setup Switch Setup IP Setup Port Setup VLAN (S tatus) VLAN Port Setting - Subnet Based VLAN - Protocol Based VLAN S tatic VLAN S tatic MAC Forw arding Filteri[...]
-
Page 56
Chapter 4 The Web Configurator XGS-4528F User’s Guide 56 The following table describes the links in the navigation panel. T able 6 Navigation Panel Links LINK DESCRIPTION Basic Settings System Info This link takes you to a scr een that displays general system and hardware monitoring information. General Setup This link takes you to a screen where[...]
-
Page 57
Chapter 4 The Web Configurator XGS-4528F User’s Guide 57 Auth and Acct This link takes you to screens where you can configu re authenticati on and accounting services via external servers. The external servers can be either RADIUS (Remote Authentication Dial-In User Service) or T ACACS+ (T erminal Access Controller Access-Control System Plus). IP[...]
-
Page 58
Chapter 4 The Web Configurator XGS-4528F User’s Guide 58 4.3.1 Change Y our Password After you log in for the first time, it is reco mmended y ou change the default administrator password. Click Management > Access Control > Logins to display the next screen. Figure 17 Change Administr ator Login Password 4.4 Saving Y our Configuration When[...]
-
Page 59
Chapter 4 The Web Configurator XGS-4528F User’s Guide 59 6 Forget the password and/or IP address. 7 Prevent all services from accessing the Switch. 8 Change a service port nu mber but forget it. " Be careful not to lock y ourself and others out of the Switch. If you do lock yourself out, try using out-of-band management (via the manage ment [...]
-
Page 60
Chapter 4 The Web Configurator XGS-4528F User’s Guide 60 Figure 18 Resetting the Switch: V ia the Console Port The Switch is now reinitialized wi th a defau lt configuration file including the default password of “1234”. 4.7 Logging Out of the W eb Configurator Click Logout in a screen to exit the web configurator . Y o u have to log in with [...]
-
Page 61
XGS-4528F User’s Guide 61 C HAPTER 5 Initial Setup Example This chapter shows how to set up the Switch for an example network. 5.1 Overview The following lists the configura tion steps for the example network: • Configure an IP interface • Configure DHCP server settings • Create a V LAN • Set port VLAN ID • Enable RIP 5.1.1 Configuring [...]
-
Page 62
Chapter 5 Initial Set up Example XGS-4528F User’s Guide 62 2 Open your web browser and enter 19 2.168.0.1 (the default MGMT port IP address) in the address bar to access the web configurat or . See Section 4.2 on page 51 for more information. 3 Click Basic Setting and IP Setup in the navigation panel. 4 Configure the related fields in the IP Setu[...]
-
Page 63
Chapter 5 Initial Set up Example XGS-4528F User’s Guide 63 5.1.3 Creating a VLAN VLANs confine broadcast frames to the VLAN gr oup in which the port(s) belongs. Y ou can do this with port-based VLAN or tagged static VLAN with fixed port members. In this example, you want to con figure port 1 as a member of VLAN 2. Figure 21 Initial Setup Network [...]
-
Page 64
Chapter 5 Initial Set up Example XGS-4528F User’s Guide 64 " The VLAN Group ID field in this screen and the VID field in the IP Se tup screen refer to t he same VLAN ID. 3 Since the VLAN2 network is connected to port 1 on the Switch, select Fixed to configure port 1 to be a permanent member of the VLAN only . 4 T o ensure that VLAN-unaware d[...]
-
Page 65
Chapter 5 Initial Set up Example XGS-4528F User’s Guide 65 5.1.5 Enabling RIP T o exchange routing information with other ro uting devices across different routing domains , enable RIP (Routing Inform ation Protocol) in the RIP screen. 1 Click IP Application and RIP in the navigation panel. 2 Select Both in the Direction field to set the Switch t[...]
-
Page 66
Chapter 5 Initial Set up Example XGS-4528F User’s Guide 66[...]
-
Page 67
XGS-4528F User’s Guide 67 C HAPTER 6 System Status and Port Statistics This chapter describes the system status (web configurator ho me page) and port details screens. 6.1 Overview The home screen of the web configurato r displays a port statistical summary with links to each port showing statistical details. 6.2 Port S t atus Summary T o view th[...]
-
Page 68
Chapter 6 S ystem Status and Port Statist ics XGS-4528F User’s Guide 68 The following table describes the labels in this screen. 6.2.1 St atus: Port Det ails Click a number in the Port column in the St a t u s screen to display indivi dual port statistics. Use this screen to check status and detailed performance data about an individual port on t[...]
-
Page 69
Chapter 6 System Status and Port Statistics XGS-4528F User’s Guide 69 Figure 24 S tatus: Port Det ails The following table describes the labels in this screen. T able 8 S tatus > Port Details LABEL DESCRIPTION Port Info Port NO. T his field displays the port number you a re viewing. Name This field displays the name of the port. Link This fiel[...]
-
Page 70
Chapter 6 S ystem Status and Port Statist ics XGS-4528F User’s Guide 70 Rx KB/s This field shows the transmission speed of data received on this port in kilobytes per second. Up T ime This field shows the total amount of time the connection has been up. Tx Packet The following fields display detailed information about packets transmitted. TX Pack[...]
-
Page 71
Chapter 6 System Status and Port Statistics XGS-4528F User’s Guide 71 256-51 1 This field shows the number of packets (including bad packet s) received tha t were between 256 and 51 1 octets in length. 512-1023 This field shows th e number of packets (incl uding bad packets) received that were between 512 and 1023 octets in length . 1024- 1518 Th[...]
-
Page 72
Chapter 6 S ystem Status and Port Statist ics XGS-4528F User’s Guide 72[...]
-
Page 73
XGS-4528F User’s Guide 73 C HAPTER 7 Basic Setting This chapter describes how to configure the System Info, General Setup , Switch Setup , IP Setup and Port Setup screens. 7.1 Overview The System Info screen displays general Switch inform ation (such as firmware version number) and hardware polling inform ation (such as fan speeds). The General S[...]
-
Page 74
Chapter 7 Basic Setting XGS-4528F User’s Guide 74 Figure 25 Basic Setting > System Info The following table describes the labels in this screen. T able 9 B asic Setting > System Info LABEL DESCRIPTION System Name This field displ ays the descriptive name of the Switch for identificati on purposes. ZyNOS F/W Ve r s i o n This field displays [...]
-
Page 75
Chapter 7 Basic Setting XGS-4528F User’s Guide 75 7.3 General Setup Use this screen to configure general settings such as the system name and time. Cl ick Basic Setting and General Setup in the navigation panel to di splay the screen as shown. Figure 26 Basic Setting > General Setup The following table describes the labels in this screen. Thre[...]
-
Page 76
Chapter 7 Basic Setting XGS-4528F User’s Guide 76 Contact Person's Name T ype the name of the person in charge of this Switch. Y ou can use up to 32 printable ASCII characters; spaces are allowed. Use T ime Server when Bootup T ype the time service protocol that your timeserver uses. Not all time servers support all protocols, so you may hav[...]
-
Page 77
Chapter 7 Basic Setting XGS-4528F User’s Guide 77 7.4 Introduction to VLANs A VLAN (V irtual Local Area Network) allows a physical network to be partitioned into multiple logical networks. Device s on a logical network belong to one group. A device can belong to more than one group. W ith VLAN, a device cannot directly talk to or hear from device[...]
-
Page 78
Chapter 7 Basic Setting XGS-4528F User’s Guide 78 Figure 27 Basic Setting > Switch Setup The following table describes the labels in this screen. Ta b l e 11 Basic Setting > Switch Setup LABEL DESCRIPTION VLAN T ype Choose 802.1Q or Port Ba sed . The VLAN Setup screen changes depend ing on whether you choose 802.1Q VLAN type or Port Based V[...]
-
Page 79
Chapter 7 Basic Setting XGS-4528F User’s Guide 79 7.6 IP Setup Use the IP Setup screen to configure the default gate way device, the default domain name server and add IP domains. 7.6.1 IP Interfaces The Switch needs an IP address for it to be mana ged over the network. The factory default IP address is 192.168.1.1. The subnet mask sp ecifies the[...]
-
Page 80
Chapter 7 Basic Setting XGS-4528F User’s Guide 80 Figure 28 Basic Setting > IP Setup The following table describes the labels in this screen. T able 12 Basic Setting > IP Setup LABEL DESCRIPTION Default Gateway T ype the IP address of the default outgoing gateway in dotted decimal notation, for example 192.168.1.2 54. Domain Name Serve r DN[...]
-
Page 81
Chapter 7 Basic Setting XGS-4528F User’s Guide 81 7.7 Port Setup Use this screen to configure Switch port settings.Click Basic Setting > Port Setup in the navigation panel to di splay the configuration screen. Apply Click Apply to save your chan ges to the Switch ’s run-time memory . The Switch loses these changes if it is turned off or lose[...]
-
Page 82
Chapter 7 Basic Setting XGS-4528F User’s Guide 82 Figure 29 Basic Setting > Port Setup The following table describes the labels in this screen. T able 13 Basic Setting > Port Setup LABEL DESCRIPTION Port This is the port index numbe r . * Settings in this row apply to all port s. Use this row only if you want to make some settings the same [...]
-
Page 83
Chapter 7 Basic Setting XGS-4528F User’s Guide 83 S peed/Duplex Sel ect the speed and the duplex mode of the Ethe rnet connection on this port. The choices are Auto , 10M/Half Duplex , 10M/Full Duplex , 100M/Half Duplex and 100M/Full Duplex fo r a 1000Base-T connecti on. 1000M/Full Duplex is su pported by both 1000Base-T and 10 00Base-X connectio[...]
-
Page 84
Chapter 7 Basic Setting XGS-4528F User’s Guide 84[...]
-
Page 85
85 P ART III Advanced Setup VLAN (87) Stat ic MAC Forward Setup (103) Filtering (105) Spanning T ree Protocol (107) Bandwidth Control (127) Broadcast Storm Control (129) Mirroring (131) Link Aggregation (133) Port Authentication (141) Port Security (147) Classifier (151) Policy Rule (157) Queuing Method (163) VLAN Stacking (167) Multicast (173) Aut[...]
-
Page 86
86[...]
-
Page 87
XGS-4528F User’s Guide 87 C HAPTER 8 VLAN The type of screen you see here depends o n the VLAN T ype you selected in the Switch Setup screen. This chapter shows you how to conf igure 802.1Q tagge d and port-based VLANs. 8.1 Introduction to IEEE 802.1Q T agged VLANs A tagged VLAN uses an explicit tag (VLAN ID) in the MAC header to identify the VLA[...]
-
Page 88
Chapter 8 VLAN XGS-4528F User’s Guide 88 8.2 Automatic VLAN Registration GARP and GVRP are the protocols used to auto matically register VLAN membership acros s switches. 8.2.1 GARP GARP (Generic Attribute Registration Protocol) allows network switches to register and de- register attribute values with other GARP par ticipants within a brid ged L[...]
-
Page 89
Chapter 8 VLAN XGS-4528F User’s Guide 89 8.3 Port VLAN T runking Enable VLAN T runking on a port to allow frames belong ing to unknown VLAN groups to pass through that port. This is useful if yo u want to set up VLAN groups on end devices without having to configure the same VLAN groups on intermediary devices. The following figure describes VLAN[...]
-
Page 90
Chapter 8 VLAN XGS-4528F User’s Guide 90 8.5.1 St atic VLAN S tatus See Section 8.1 on page 8 7 for more information on Stat ic VLAN. Click Advanced Application > VLAN from the navigation panel to display the VLAN S tatus screen as shown next. Figure 32 Advanced Application > VLAN: VLAN S tatus The following table describes the labels in th[...]
-
Page 91
Chapter 8 VLAN XGS-4528F User’s Guide 91 The following table describes the labels in this screen. 8.5.3 Configure a St atic VLAN Use this screen to configure and view 80 2.1Q VLAN parameters for the Switch. See Section 8.1 on page 87 for more information on static VLAN. T o configure a static VLAN, c lick St a t i c V L A N in the VLAN S tatus sc[...]
-
Page 92
Chapter 8 VLAN XGS-4528F User’s Guide 92 The following table describes the rela ted labels in this screen. 8.5.4 Configure VLAN Port Settings Use the VLAN Port Setting screen to configure the static VLAN (IEEE 802.1Q) settings on a port. See Section 8.1 on page 87 for more information on static VLAN. Click the VLAN Port Setting link in the VLAN S[...]
-
Page 93
Chapter 8 VLAN XGS-4528F User’s Guide 93 Figure 35 Advanced Application > VL AN > VLAN Port Setting The following table describes the labels in this screen. T able 18 Advanc ed Application > VL AN > VLAN Port Setting LABEL DESCRIPTION GVRP GVRP (GARP VLAN Registra tion Protocol) is a registra tion protocol tha t defines a way for swit[...]
-
Page 94
Chapter 8 VLAN XGS-4528F User’s Guide 94 8.6 Subnet Based VLANs Subnet based VLANs allow yo u to group traffi c into logical VLANs based on the source IP subnet you specify . When a frame is received on a port, the Switch checks if a tag is added already and the IP subnet it came from. The unta gged packets from the same IP subnet ar e then place[...]
-
Page 95
Chapter 8 VLAN XGS-4528F User’s Guide 95 8.7 Configuring Subnet Based VLAN Click Subnet Based VLAN in the VLAN Port Setting screen to display the configuration screen as shown. " Subnet based VLAN applie s to un-tagged p ackets and is applicable only when you use IEEE 802.1Q tagged VLAN. Figure 37 Advanced Application > VLAN > VLAN Por[...]
-
Page 96
Chapter 8 VLAN XGS-4528F User’s Guide 96 8.8 Protocol Based VLANs Protocol based VLANs allow you to group traffi c into logical VLANs based on the protocol you specify . When an upstream frame is receive d on a port (configured fo r a protocol based VLAN), the Switch checks if a tag is added already and its protocol. The untagged packets of the s[...]
-
Page 97
Chapter 8 VLAN XGS-4528F User’s Guide 97 For example, ports 1, 2, 3 and 4 belong to static VLAN 100, and ports 4, 5, 6, 7 belong to static VLAN 120. Y ou can co nfigure a protocol ba sed VLAN A with priority 3 for ARP traffic received on port 1, 2 and 3 . Y ou can also ha ve a protocol based VLAN B with prio rity 2 for Apple T alk traffic receive[...]
-
Page 98
Chapter 8 VLAN XGS-4528F User’s Guide 98 The following table describes the labels in this screen. 8.10 Create an IP-based VLAN Example This example shows you how to create an IP VLAN which includes ports 1, 4 and 8. Follow these steps using the screen below: 1 Activate this protocol based VLAN. 2 T ype the port numb er you want to include in this[...]
-
Page 99
Chapter 8 VLAN XGS-4528F User’s Guide 99 6 Leave the priority set to 0 and click Ad d . Figure 40 Protocol Based VLAN Con figuration Example T o add more ports to th is protocol based VLAN. 1 Click the index number of the pr otocol based VLAN entry . Click 1 2 Change the value in the Port field to the next port you want to add. 3 Click Add . 8.1 [...]
-
Page 100
Chapter 8 VLAN XGS-4528F User’s Guide 100 The port-based VLAN setup sc reen is shown next. The CPU management port forms a VLAN with all Ethernet ports. 8.1 1.1 Configure a Port-based VLAN Select Port Based as the VLAN T ype in the Switch Setup screen and then click VLAN from the navigation panel to display th e following sc reen. Select either A[...]
-
Page 101
Chapter 8 VLAN XGS-4528F User’s Guide 101 Figure 42 Advanced Application > VLAN: Port Based VLAN Setup (Port Isolation)[...]
-
Page 102
Chapter 8 VLAN XGS-4528F User’s Guide 102 The following table describes the labels in this screen. T able 21 Advanced Application > VLAN : Port Based VLAN S etup LABEL DESCRIPTION Setting Wizard Choose All connected or Port isolation . All connected means all p orts can communicate with each other , that is, there are no virtual LANs. All inco[...]
-
Page 103
XGS-4528F User’s Guide 103 C HAPTER 9 Static MAC Forward Setup Use these screens to configure static MAC address forwarding. 9.1 Overview This chapter discusses how to configure forwarding rules based on MAC addresses of device s on your network. 9.2 Configuring S t atic MAC Forwarding A static MAC address is an address that has been ma nually en[...]
-
Page 104
Chapter 9 Static MAC Forward Setup XGS-4528F User’s Guide 104 The following table describes the labels in this screen. T able 22 Advanced Application > S tatic MAC Forwardin g LABEL DESCRIPTION Active Select this check box to activa te your rule. Y ou may temporarily deactivate a rule without deleting it by clearing this check box. Name Enter [...]
-
Page 105
XGS-4528F User’s Guide 105 C HAPTER 10 Filtering This chapter discusses MAC address port filtering. 10.1 Configure a Filtering Rule Configure the Switch to filter tr affic based on the traf fic’ s so urce, destination MAC addresses and/or VLAN group (ID). Click Advanced App lication > Filtering in the navigation panel to display the screen a[...]
-
Page 106
Chapter 10 Filtering XGS-4528F User’s Guide 106 Action Select Discar d source to drop frames from the sou rce MAC address (specified in the MAC field). The Switch can still send frames to the MAC address. Select Discard destination to drop frames to the destination MAC address (specified in the MAC address). The Switch can still receive frames or[...]
-
Page 107
XGS-4528F User’s Guide 107 C HAPTER 11 Spanning Tree Protocol The Switch supports Spanning T ree Protocol (STP), Rapid Spanning T ree Protocol (RSTP) and Multiple Spanning T ree Protocol (MSTP) as defined in the followi ng standards. • IEEE 802.1D Span ning Tree P rotocol • IEEE 802.1w Rap id Spanning T ree Protocol • IEEE 802.1s Mult iple [...]
-
Page 108
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 108 Path cost is the cost of tr ansmitting a frame onto a LAN thro ugh that port. The recommended cost is assigned according to the speed of the link to which a port is attached. The slower the media, the higher the cost. On each bridge, the bridge communicates with the root thro ugh the [...]
-
Page 109
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 109 1 1.1.4 Multiple RSTP MRSTP (Multiple RSTP) is ZyXEL ’ s proprietary feature that is comp atible with RSTP and STP . W ith MRSTP , you can have more than one spann ing tree on your Switch and assign port(s) to each tree. Each spanning tree operates independently with its own bridge [...]
-
Page 110
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 11 0 • One Common and Internal S panning Tree (C IST) that represents the entire network’ s connectivity . • Grouping of multiple bridges (o r switching devic es) into regions that appear as one single bridge on the network. • A VLAN can be mapped to a specific Multiple Spanning T[...]
-
Page 111
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 111 Figure 47 MSTP Network Example 1 1.1.5.2 MST Regio n An MST region is a logical grouping of multiple network devices that appears as a single device to the rest of the network. Each MS TP-enabled device can only belong to one MST region. When BPDUs enter an MST region, external path c[...]
-
Page 112
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 11 2 Figure 48 MSTIs in Different Regions 1 1.1.5.4 Co mmon and Internal Sp anning T ree (CIST) A CIST represents the connectivity of the entire ne twork and it is equivalent to a spanning tree in an STP/RSTP . The CIST is the default MS T instance (MSTID 0). Any VLANs that are not member[...]
-
Page 113
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 11 3 Figure 50 Advanced Application > S pa n ning T ree Protocol This screen differs depending on which STP mode (RSTP , MRSTP or MSTP) y ou configure on the Switch. This screen is described in detail i n the section that fo llows the configuration section for each STP mode. Click Conf[...]
-
Page 114
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 11 4 1 1.4 Configure Rapid Sp a nning T ree Protocol Use this screen to configure RSTP settings, see Section 11.1 on page 107 for more information on RSTP . Click RSTP in the Advanced Application > Spanning T ree Pr otocol screen. Figure 52 Advanced Application > S pann ing Tree Pro[...]
-
Page 115
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 11 5 Bridge Priority Bridg e priority is used in determini ng the root switch, root port and d esignated port. The switch with the highest priority (low est numeric value) be comes the STP roo t switch. If all switches have the same prio rity , the switch with t he lowest MAC address will[...]
-
Page 116
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 11 6 1 1.5 Rapid Sp anning T r ee Protocol St atus Click Advanced App lication > Spanning T ree Protocol in the navigation panel to display the status screen as shown next. See Section 1 1.1 on page 107 for more information on RSTP . " This screen is only available afte r you acti[...]
-
Page 117
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 11 7 1 1.6 Configure Multiple Rapid Sp anning T ree Protocol T o configure MRSTP , click MRSTP in the Advanced Application > Spanning T ree Pro tocol screen. Se e Section 1 1.1 on page 107 for more information on MRSTP . Figure 54 Advanced Application > S pan n ing Tree Protocol >[...]
-
Page 118
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 11 8 Bridge Priority Bridg e priority is used in determini ng the root switch, root port and d esignated port. The switch with the highest priority (low est numeric value) be comes the STP roo t switch. If all switches have the same prio rity , the switch with t he lowest MAC address will[...]
-
Page 119
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 11 9 1 1.7 Multiple Rapid Sp anning T r ee Protocol St atus Click Advanced App lication > Spanning T ree Protocol in the navigation panel t o display the status screen as shown next. See Section 1 1.1 on page 107 for more information on MRSTP . " This screen is only available afte[...]
-
Page 120
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 120 1 1.8 Configure Multiple Sp anning T ree Protocol T o configure MSTP , click MSTP in the Advanced Application > Spanning T ree Pr otocol screen. See Section 1 1.1.5 on page 109 for more information on MSTP . T opol ogy Changed T imes This is the number of times the spanning tree ha[...]
-
Page 121
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 121 Figure 56 Advanced Application > S pann ing Tree Protocol > MSTP[...]
-
Page 122
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 122 The following table describes the labels in this screen. T able 31 Advanc ed Application > S panning T r ee Protocol > MSTP LABEL DESCRIPTION S tatus Click St a tu s to display the MSTP St atus screen (see Figure 57 on page 124 ). Active Select this check box to activate MS TP o[...]
-
Page 123
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 123 1 1.9 Multiple Sp anning T ree Protocol St atus Click Advanced App lication > Spanning T ree Protocol in the navigation panel t o display the status screen as shown next. See Section 1 1.1.5 on pa ge 109 for more information on MSTP . VLAN Range Enter the start of the VLAN ID ran g[...]
-
Page 124
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 124 " This screen is only available afte r you activate MSTP on the Switch. Figure 57 Advanced Application > S pa n ning T ree Protocol > S tatus: MSTP The following table describes the labels in this screen. T able 32 Advanc ed Application > S panning Tree Protocol > S t[...]
-
Page 125
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 125 Forwarding Delay (secon d) This is the time (in seconds) the root swit ch will wait before changing states (that is, listening to learning to forwarding ). Cost to Bridge This is the path cost from the root port on this Switch to the root switch. Port ID This is the priority and numbe[...]
-
Page 126
Chapter 11 Spanning T ree Protoc ol XGS-4528F User’s Guide 126[...]
-
Page 127
XGS-4528F User’s Guide 127 C HAPTER 12 Bandwidth Control This chapter shows you h ow you can cap the maximum bandwi dth using the Bandwidth Control screen. 12.1 Bandwid th Control Overview Bandwidth control mean s defining a maximum allowable bandwidth for incoming and/or out- going traf fic flows on a port. 12.1.1 CIR and PIR The Committed Infor[...]
-
Page 128
Chapter 12 Bandwidth Control XGS-4528F User’s Guide 128 Figure 58 Advanced Application > Bandwidth Control The following table describes the re lated labels in this screen. T able 33 Advanc ed Application > Bandwidth Control LABEL DESCRIPTION Active Select this check box to enable bandwidth control on th e Switch. Port This field displays t[...]
-
Page 129
XGS-4528F User’s Guide 129 C HAPTER 13 Broadcast Storm Control This chapter introduces and sh ows you how to configure the broadcast storm co ntrol feature. 13.1 Broadcast S torm Control Setup Broadcast storm control limits the number of broadcast, multicast and destination lookup failure (DLF) packets the Swit ch receives per second on the ports[...]
-
Page 130
Chapter 13 Broadcast Storm Control XGS-4528F User’s Guide 130 The following table describes the labels in this screen. T able 34 Advanc ed Application > Broadcast Storm Control LABEL DESCRIPTION Active Select this check box to enable traffic storm control on the Switch. Clear this check box to disable this feature. Port This field displays a p[...]
-
Page 131
XGS-4528F User’s Guide 131 C HAPTER 14 Mirroring This chapter discusses port mirroring setup screens. 14.1 Port Mirroring Setup Port mirroring allows you to copy a traffic flow to a monitor port (the port you copy the traffi c to) in order that you can examine the traffi c from the monitor port without interference. Click Advanced App lication &g[...]
-
Page 132
Chapter 14 Mirr oring XGS-4528F User’s Guide 132 The following table describes the labels in this screen. T able 35 Advanc ed Application > Mirroring LABEL DESCRIPTION Active Select this chec k box to activate port mirroring on the Switch. Clear this check box to disable the featu re. Monitor Port The monitor port is the port you copy the traf[...]
-
Page 133
XGS-4528F User’s Guide 133 C HAPTER 15 Link Aggregation This chapter shows you how to logically aggreg ate physical links to form one logical, high er- bandwidth link. 15.1 Link Aggregation Overview Link aggregation (trunking) is the grouping of physical ports into one logical higher -c apacity link. Y ou may want to trunk ports if for example, i[...]
-
Page 134
Chapter 15 Link Aggregation XGS-4528F User’s Guide 134 • Y ou must connect all ports point-to-point to the same Ethernet sw itch and configure the ports for LACP trunking. • LACP only works on full-duplex links. • All ports in the same trunk group must have the same media type, speed, duplex mode and flow control settings. Configure trunk g[...]
-
Page 135
Chapter 15 Link Aggregation XGS-4528F User’s Guide 135 15.4 Link Aggregation Setting Click Advanced App lication > Link Aggregation > Link Aggr egation Setting to display the screen shown next. See Section 15.1 on p age 133 for more information on link aggregation. Figure 62 Advanced Application > Link Aggre gation > Link Agg regation[...]
-
Page 136
Chapter 15 Link Aggregation XGS-4528F User’s Guide 136 The following table describes the labels in this screen. 15.5 Link Aggregation Control Protocol Click in the Advanced Application > Link Aggregation > Link Aggr egation Setting > LACP to display the screen shown next. See Section 15.2 on page 1 33 for more information on dynamic link[...]
-
Page 137
Chapter 15 Link Aggregation XGS-4528F User’s Guide 137 Figure 63 Advanced Application > Link Aggregatio n > Link Aggre gation Setting > LACP The following table describes the labels in this screen. T able 40 Advanced Application > Link Aggregation > Link Aggregatio n Setting > LACP LABEL DESCRIPTION Link Aggregation Control Prot[...]
-
Page 138
Chapter 15 Link Aggregation XGS-4528F User’s Guide 138 15.6 S t atic T runking Example This example shows you how to create a static port trunk group for ports 2-5. 1 Make your physi cal conn ections - make sure that the ports that you want to belong to the trunk group are connected to the same de stination. The followi ng figure shows ports 2-5 [...]
-
Page 139
Chapter 15 Link Aggregation XGS-4528F User’s Guide 139 Figure 65 T runking Example - Configuration Screen Y our trunk group 1 ( T1 ) configuration is now complete; you do not need to go to any additional screens. EXAMPLE[...]
-
Page 140
Chapter 15 Link Aggregation XGS-4528F User’s Guide 140[...]
-
Page 141
XGS-4528F User’s Guide 141 C HAPTER 16 Port Authentication This chapter describes the IEEE 802. 1x and MAC authentication methods. 16.1 Port Authentication Overview Port authentication is a way to validate access to ports on the Switch to clients based on an external server (authentication server). The Switch supports the followi ng methods for p[...]
-
Page 142
Chapter 16 Port Authentication XGS-4528F User’s Guide 142 Figure 66 IEEE 802.1x Authent ication Process 16.1.2 MAC Authentication MAC authentication works in a very similar wa y to IEEE 802.1x authentication. The main difference is that the Switch does not prompt the client for login credentials. The login credentials are based on the source MAC [...]
-
Page 143
Chapter 16 Port Au thentication XGS-4528F User’s Guide 143 16.2 Port Authentication Configuration T o enable port authentication, first activate the port authentica tion method(s) you want to use (both on the Switch and the po rt(s)), then configure the RADIUS server settings in the Auth and Acct > Radius Server Setup screen. T o activate a p [...]
-
Page 144
Chapter 16 Port Authentication XGS-4528F User’s Guide 144 The following table describes the labels in this screen. 16.2.2 Activate MAC Authentication Use this screen to activate MAC authentication. In the Port Authentication screen click MAC Authentication to display the configuratio n screen as shown. T able 41 Advanced Application > Port Aut[...]
-
Page 145
Chapter 16 Port Au thentication XGS-4528F User’s Guide 145 Figure 70 Advanced Application > Port Au thentication > MAC Authentication The following table describes the labels in this screen. T able 42 Advanced Application > Port Au thentication > MAC Authentication LABEL DESCRIPTION Active Select this check box to perm it MAC authenti[...]
-
Page 146
Chapter 16 Port Authentication XGS-4528F User’s Guide 146 * Use this row to make the setting the same for al l ports. Use this row first a nd then make adjustments on a port-by-port basis. Note: Changes in this row are copied to all the port s as soon as you make them. Active Select this checkbox to permit MAC aut hen tication on this port. Y ou [...]
-
Page 147
XGS-4528F User’s Guide 147 C HAPTER 17 Port Security This chapter shows you how to set up port security . 17.1 About Port Security Port security allows only packets w ith dynami cally learned MAC addresses and/or configured static MAC addresses to pass through a port on the Switch. The Switch can learn up to 16K MAC addresses in total with no lim[...]
-
Page 148
Chapter 17 Port Secu rity XGS-4528F User’s Guide 148 Figure 71 Advanced Application > Port Security The following table describes the labels in this screen. T able 43 Advanced Application > Port Security LABEL DESCRIPTION Active Select this option to enable port security on the Switch. Port This field displays a port nu mber . * Settings in[...]
-
Page 149
Chapter 17 Port Security XGS-4528F User’s Guide 149 Apply Click Apply to save your changes to the Switch’s run-time memory . The Switch loses these changes if it i s turned off or loses powe r , so use the Save link on th e top navigation panel to save your changes to the non-volatile memory whe n you are done configuring. Cancel Click Cancel t[...]
-
Page 150
Chapter 17 Port Secu rity XGS-4528F User’s Guide 150[...]
-
Page 151
XGS-4528F User’s Guide 151 C HAPTER 18 Classifier This chapter introduces and shows you how to configure the packet cl assifier on the Switch. 18.1 About the Classifier and QoS Quality of Service (QoS) refers to both a networ k's ability to deliver data with minimum delay , and the networking methods used to control th e use of bandwidth. W [...]
-
Page 152
Chapter 18 Classifier XGS-4528F User’s Guide 152 Figure 72 Advanced Application > Classifier The following table describes the labels in this screen. T able 44 Advanc ed Applicat ion > Classifier LABEL DESCRIPTION Active Select this optio n to enable this rule. Name Enter a descriptive name for th is rule for identifying purposes. Packet Fo[...]
-
Page 153
Chapter 18 Classifier XGS-4528F User’s Guide 153 Ethernet Ty p e Select an Ethernet type or select Other and enter the Ethernet type number in hexadecimal value. Refer to T able 46 on page 154 for information. Source MAC Address Select Any to apply the rule to all MAC addresses. T o specify a source, select the second choi ce and type a MAC addre[...]
-
Page 154
Chapter 18 Classifier XGS-4528F User’s Guide 154 18.3 V iewing and Editing Classifier Configuration T o view a summary of the classifier configuration, scroll down to th e summar y table at the bottom of the Clas sifier screen. T o change the settings of a rule, click a number in the Index field. " When two rules conflict with eac h other , [...]
-
Page 155
Chapter 18 Classifier XGS-4528F User’s Guide 155 Some of the most common IP ports are: 18.4 Classifier Example The following screen shows an example of conf iguring a classifier that identifies all traf fic from MAC address 00:50:ba:ad :4f:81 on port 2. Figure 74 Classifier: Example T able 47 Common IP Ports PORT NUMBER PORT NAME 21 FTP 23 T eln [...]
-
Page 156
Chapter 18 Classifier XGS-4528F User’s Guide 156 After you have configured a classifier , you can configure a policy to define action(s) on the classified traffic flow . See Chapter 19 on page 157 for information on configuring a policy rule.[...]
-
Page 157
XGS-4528F User’s Guide 157 C HAPTER 19 Policy Rule This chapter shows you how to configure policy rules. 19.1 Policy Rules Overview A classifier distinguishes traffic into flows based on the configured criteria (refer to Chapter 18 on page 151 for more information). A policy rule ensures that a traffic flow gets the requested treatment in the net[...]
-
Page 158
Chapter 19 Policy Rule XGS-4528F User’s Guide 158 19.2 Configuring Policy Rules Y ou must first configure a classifier in the Classifier screen. Refer to Section 18.2 on page 151 for more information. Click Advanced App lications > Policy Rule in the navigation panel to display the screen as shown. Figure 75 Advanced Application > Policy Ru[...]
-
Page 159
Chapter 19 Policy Rule XGS-4528F User’s Guide 159 The following table describes the labels in this screen. T able 48 Advanced Application > Policy R ule LABEL DESCRIPTION Active Select this option to enable the policy . Name Enter a descriptive name for identification purposes. Classifier(s) This field di splays the acti ve classifier(s) you c[...]
-
Page 160
Chapter 19 Policy Rule XGS-4528F User’s Guide 160 19.3 V iewing and Editing Policy Configuration T o view a summary of the classifier configuration, scroll down to th e summar y table at the bottom of the Policy screen. T o change the settings of a rule, click a number in the Index field. Figure 76 Advanced Application > Policy Rule: Summary T[...]
-
Page 161
Chapter 19 Policy Rule XGS-4528F User’s Guide 161 Figure 77 Policy Example EXAMPLE[...]
-
Page 162
Chapter 19 Policy Rule XGS-4528F User’s Guide 162[...]
-
Page 163
XGS-4528F User’s Guide 163 C HAPTER 20 Queuing Method This chapter introduces th e queuing methods sup ported. 20.1 Queuing Method Overview Queuing is used to help solve performance degradation when there is network congestion. Use the Queuing Method screen to configure queuing algorithms for outgoing traf fic. See also Priority Queu e Assignment[...]
-
Page 164
Chapter 20 Que uing Method XGS-4528F User’s Guide 164 20.1.3 We ighted Round Robin Scheduling (WRR) Round Robin Scheduling services queues on a rotati ng basis and is activated only when a port has more traffic than it can handle. A queue is given an amou nt of bandwidth irrespective of the incoming traf fic on that port . This queue then moves t[...]
-
Page 165
Chapter 20 Queuing Me thod XGS-4528F User’s Guide 165 The following table describes the labels in this screen. T able 50 Advanced Application > Queuing Method LABEL DESCRIPTION Port This label shows the port you are configuring. * Settings in this row apply to all port s. Use this row only if you want to make some settings the same for all por[...]
-
Page 166
Chapter 20 Que uing Method XGS-4528F User’s Guide 166[...]
-
Page 167
XGS-4528F User’s Guide 167 C HAPTER 21 VLAN Stacking This chapter shows you h o w to configure VLAN stacking on your Switch. See the chapter on VLANs for more background informatio n on V irtual LAN 21.1 VLAN S tacking Overview A service provider can use VLAN stacking to allow it to distinguis h multiple customers VLANs, even those with the same [...]
-
Page 168
Chapter 21 VLAN Stacking XGS-4528F User’s Guide 168 Figure 79 VLAN S tacking Exam ple 21.2 VLAN S tacking Port Roles Each port can have three VLAN stacking “roles”, Normal , Access Port and T unnel (the latter is for Gigabit ports only). • Select Normal for “regular” (non-VLAN stacking) IEEE 802.1Q frame switching. • Select Access Por[...]
-
Page 169
Chapter 21 VLAN Stacking XGS-4528F User’s Guide 169 21.3 VLAN T ag Format A VLAN tag (service provider VLAN stacking or customer IEEE 802.1Q) consists of the following three fields. Ty p e is a standard Ethernet type code identifyi ng the frame and indicates that whether the frame carries IEEE 802.1Q tag information. SP TPID (Service Provider T a[...]
-
Page 170
Chapter 21 VLAN Stacking XGS-4528F User’s Guide 170 21.4 Configuring VLAN S t acking Click Advanced App lications > VLAN S tacking to dis play the screen as shown. Figure 80 Advanced Application > VLAN S tacking The following table describes the labels in this screen. (SP)TPID (Service Provider) T ag Pr otocol IDentifie r Data Frame data VI[...]
-
Page 171
Chapter 21 VLAN Stacking XGS-4528F User’s Guide 171 Role Select Normal to have th e Switch ignore frames received (or transmitted) on this port with VLAN stacking tags. Anything you configure in SPVID and Priority are ignored. Select Access Port to have the Switch add the SP TPID t ag to al l incoming frames received on this port. Select Access P[...]
-
Page 172
Chapter 21 VLAN Stacking XGS-4528F User’s Guide 172[...]
-
Page 173
XGS-4528F User’s Guide 173 C HAPTER 22 Multicast This chapter shows you how to conf igure various multicast features. 22.1 Multicast Overview T raditionally , IP packets are transmitted in one of either two ways - Unicast (1 sender to 1 recipient) or Broadcast (1 sender to everybod y on the network). Multicast delivers IP packets to just a group [...]
-
Page 174
Chapter 22 Multicast XGS-4528F User’s Guide 174 The Switch forwards multicast tr affic destined for multicast gr oups (that it has learned from IGMP snooping or that you have manually configured) to ports that are members of that group. IGMP snooping generates no additional ne twork traf fic, allowing you to significantly reduce multicast traffic[...]
-
Page 175
Chapter 22 Multicast XGS-4528F User’s Guide 175 Figure 82 Advanced Application > Mult icast > Multicast Setting The following table describes the labels in this screen. T able 56 Advanced Application > Mult icast > Multicast S etting LABEL DESCRIPTION IGMP Snooping Use these settings to configure IGMP Snooping. Active Select Active to[...]
-
Page 176
Chapter 22 Multicast XGS-4528F User’s Guide 176 Unknown Multicast Fr ame S pecify the acti on to perform when the Switch receives an unknown multicast frame. Select Drop to discard the frame(s). Select Flooding to send the frame(s) to all ports. Reserved Multicast Group Multicast addresses (224.0.0.0 to 224.0. 0.255) are reserved for the local sc[...]
-
Page 177
Chapter 22 Multicast XGS-4528F User’s Guide 177 22.4 IGMP Snooping VLAN Click Advanced Applications > Multicast in the navigation panel. Click the Multicast Setting link and then the IGMP Snooping VLAN link to display the screen as shown. See Section 22.1.4 on page 1 7 4 for more information on IGMP Snooping VLAN. Figure 83 Advanced Applicatio[...]
-
Page 178
Chapter 22 Multicast XGS-4528F User’s Guide 178 22.5 IGMP Filtering Profile An IGMP filtering profile specif ies a range of multicas t groups that clients connected to the Switch are able to join. A profile contains a range of multicast IP addresses which you want clients to be able to join. Prof iles are assigned to ports (in the Multicast Setti[...]
-
Page 179
Chapter 22 Multicast XGS-4528F User’s Guide 179 The following table describes the labels in this screen. 22.6 MVR Overview Multicast VLAN Registration (MVR) is designed for applications (such as M e dia-on-Demand (MoD)) that use multicast traffi c across an Ethe rnet ring-based servic e provider network. MVR allows one single multicast VLAN to be[...]
-
Page 180
Chapter 22 Multicast XGS-4528F User’s Guide 180 Figure 85 MVR Network Example 22.6.1 T ypes of MVR Port s In MVR, a source port is a port on the Switch that can send and receive multicast traf fic in a multicast VLAN while a receiver port can only r eceive multicast traffic. Once configured, the Switch maintains a forwarding table that matc hes t[...]
-
Page 181
Chapter 22 Multicast XGS-4528F User’s Guide 181 Figure 86 MVR Multicast T elevision Example 22.7 General MVR Configuration Use the MVR screen to create multicast VLANs a nd select the receiver port(s) and a source port for each multicast VLAN. Click Advanced Applications > Multicast > Multicast Setting > MVR link to display the screen as[...]
-
Page 182
Chapter 22 Multicast XGS-4528F User’s Guide 182 Figure 87 Advanced Application > Multic ast > Multicast Setting > MVR The following table describes the re lated labels in this screen. T able 59 Advanced Application > Multic ast > Multicast Setting > MVR LABEL DESCRIPTION Active Se lect this check box to enable MVR to allow one s[...]
-
Page 183
Chapter 22 Multicast XGS-4528F User’s Guide 183 22.8 MVR Group Configuration All source ports and receiver ports belonging to a multicast group can receive multicast data sent to this multicast group. Configure MVR IP multicast group address(es) in the Group Configuration screen. Click Group Configuration in the MVR screen. " A port can belo[...]
-
Page 184
Chapter 22 Multicast XGS-4528F User’s Guide 184 Figure 88 Advanced Application > Multicast > Multic ast Setting > MVR: Group Configuration The following table describes the labels in this screen. 22.8.1 MVR Conf iguration Example The following figure shows a n e twork example where ports 1, 2 and 3 on the Switch belong to VLAN 1. In addi[...]
-
Page 185
Chapter 22 Multicast XGS-4528F User’s Guide 185 Figure 89 MVR Configuration Example T o configure the MVR settings on the Switch, create a multic ast group in the MVR screen and set the receiver and source ports. Figure 90 MVR Configuration Example T o set the Switch to forward the multicast group tra ffic to the subscriber s, configure multicast[...]
-
Page 186
Chapter 22 Multicast XGS-4528F User’s Guide 186 Figure 91 MVR Group Configuration Exampl e Figure 92 MVR Group Configuration Exampl e EXAMPLE EXAMPLE[...]
-
Page 187
XGS-4528F User’s Guide 187 C HAPTER 23 Authentication & Accounting This chapter describes how to configure authen tication and accounting settings on the Switch. 23.1 Authentication, Auth orization and Accounting Authentication is the process of determining who a user is and validating access to the Switch. The Switch can authenticate users w[...]
-
Page 188
Chapter 23 Authen tication & Accounting XGS-4528F User’s Guide 188 23.1.2 RADIUS and T ACACS+ RADIUS and T ACACS+ are security protocols used to authenticate users by means of an external server instead of (or in addition to) an internal device user data base that is limited to the memory capacity of the device. In es sence, RADIUS and T ACAC[...]
-
Page 189
Chapter 23 Authentication & Accounting XGS-4528F User’s Guide 189 Figure 95 Advanced Application > Auth an d Acct > RADIUS Server Setup The following table describes the labels in this screen. T able 62 Advanc ed Application > Auth a nd Acct > RADIUS Server Setup LABEL DESCRIPTION Authentication Serve r Use this section to configu[...]
-
Page 190
Chapter 23 Authen tication & Accounting XGS-4528F User’s Guide 190 23.2.2 T ACACS+ Server Setup Use this screen to configure your T ACACS+ server settings. See Section 23.1.2 on page 188 for more information on T ACACS+ servers. Click on the T ACACS+ Server Setup link in the Authentication and Accounting screen to view the screen as show n. D[...]
-
Page 191
Chapter 23 Authentication & Accounting XGS-4528F User’s Guide 191 Figure 96 Advanced Application > Auth an d Acct > T ACACS+ Server Setup The following table describes the labels in this screen. T able 63 Advanc ed Application > Auth a nd Acct > T ACACS+ Serv er Setup LABEL DESCRIPTION Authentication Serve r Use this section to co[...]
-
Page 192
Chapter 23 Authen tication & Accounting XGS-4528F User’s Guide 192 23.2.3 Authentication an d Accounting Setup Use this screen to configure authentication a nd accounting settings on th e Switch. Click on the Auth and Acct Setup link in the Authentication and Accounting screen to view the screen as shown. Shared Secret Specify a password (up [...]
-
Page 193
Chapter 23 Authentication & Accounting XGS-4528F User’s Guide 193 Figure 97 Advanced Application > Auth and Acct > Auth and Acct Setup The following table describes the labels in this screen. T able 64 Advanc ed Application > Auth a nd Acct > Auth and Acct Setup LABEL DESCRIPTION Authentication Use thi s section to specify th e me[...]
-
Page 194
Chapter 23 Authen tication & Accounting XGS-4528F User’s Guide 194 Login The se fields specify which database the S witch sho uld use (first, second and th ird) to authenticate administrator accounts (users for Switch management). Configure the local user accounts in the Access Control > Logins screen . The T ACACS+ and RADIUS are external[...]
-
Page 195
Chapter 23 Authentication & Accounting XGS-4528F User’s Guide 195 23.2.4 V endor Specific Attribute RFC 2865 standard specifies a method for sending vendor -sp ecific information between a RADIUS server and a network acce ss device (for example, the Switch). A company can create V endor Specific Attributes (VSAs) to expa nd the functionality [...]
-
Page 196
Chapter 23 Authen tication & Accounting XGS-4528F User’s Guide 196 23.2.5 T unnel Protocol Attribute Y ou can configure tunnel protocol attributes on the RADIUS server (refer to your RADIUS server documentation) to assign a port on the Switch to a VLAN based on IEEE 802.1x authentication. The port VLAN settings are fixed and untagged. This wi[...]
-
Page 197
Chapter 23 Authentication & Accounting XGS-4528F User’s Guide 197 23.3.1 Attributes U sed for Authentication The following sections list the attributes sent from the Switch to the RADIUS server when performing authentication. 23.3.1.1 Attributes Used for Authe nticating Privilege Access User-Name - the format of the User-Name attribute is $en[...]
-
Page 198
Chapter 23 Authen tication & Accounting XGS-4528F User’s Guide 198 23.3.2.2 Attributes Used for Acc ounting Exec Events The attributes are listed in th e following table along with the time that they are sent (the difference between Console and T elnet/SSH Exec events is that the T elnet/SSH events utilize the Calling-Station -Id attribute): [...]
-
Page 199
Chapter 23 Authentication & Accounting XGS-4528F User’s Guide 199 Calling-S tation-Id DD D NAS-Identifier DD D NAS-Port-T ype DD D Acct-S tatus-T ype DD D Acct-Delay-T ime DD D Acct-Session-Id DD D Acct-Authentic DD D Acct-Input-Octets DD Acct-Output -Octets DD Acct-Session-T ime DD Acct-Input-Packets DD Acct-Output -Packets DD Acct-T erminat[...]
-
Page 200
Chapter 23 Authen tication & Accounting XGS-4528F User’s Guide 200[...]
-
Page 201
XGS-4528F User’s Guide 201 C HAPTER 24 IP Source Guard Use IP source guard to filter unauthorized DHCP and ARP packets in your network. 24.1 IP Source Guard Overview IP source guard u s es a binding tabl e to distinguish between authorized and unauthorized DHCP and ARP packets in your network. A b inding contains these ke y attributes: • MAC ad[...]
-
Page 202
Chapter 24 IP Source G uard XGS-4528F User’s Guide 202 T rusted ports are connected to DHCP servers or other switches. The Switch discards DHCP packets from trusted ports only if the rate at which DHCP packets arrive is too high. The Switch learns dynamic bindings from trusted ports. " The Switch will drop al l DHCP requests if you enable DH[...]
-
Page 203
Chapter 24 IP Source Guard XGS-4528F User’s Guide 203 24.1.1.3 DHCP Relay Option 82 Informa tion The Switch can add information to DHCP requests that it does not discard. This provides the DHCP server more information about the source of the requests. The Switc h can add the following information: • Slot ID (1 byte), port ID (1 by te), and sour[...]
-
Page 204
Chapter 24 IP Source G uard XGS-4528F User’s Guide 204 24.1.2.1 ARP Inspection and MAC Address Filters When the Switch identifies an unauthorized ARP packet, it automatically creates a MAC address filter to block traffic from the source MAC address and source VLAN ID of the unauthorized ARP packet. Y ou can configure how long the MAC address filt[...]
-
Page 205
Chapter 24 IP Source Guard XGS-4528F User’s Guide 205 24.2 IP Source Guard Use this screen to look at the current bi ndings for DHCP snooping and ARP inspection. Bindings are used by DHCP snoo ping and ARP inspection to distinguis h between authorized and unauthorized packets in the network. The Switch learns th e bindings by snooping DHCP packet[...]
-
Page 206
Chapter 24 IP Source G uard XGS-4528F User’s Guide 206 Figure 101 IP Source Guard S tatic Binding The following table describes the labels in this screen. T able 71 IP Source Guard Static Binding LABEL DESCRIPTION MAC Address Enter the source MAC add ress in the binding. IP Address Enter the IP address assigned to the MAC add ress in the binding.[...]
-
Page 207
Chapter 24 IP Source Guard XGS-4528F User’s Guide 207 24.4 DHCP Snooping Use this screen to look at various statistics ab ou t the DHCP snooping da tabase. T o open this screen, click Advanced Application > IP Sour ce Guard > DHCP Snooping . Figure 102 DHCP Snooping[...]
-
Page 208
Chapter 24 IP Source G uard XGS-4528F User’s Guide 208 The following table describes the labels in this screen. T able 72 DHCP Snooping LABEL DESCRIPTION Dat abase S tatus This section displays the current settings for the DHCP snoo ping database. Y ou can co nfigure them in the DHCP Snooping Configure screen. See Secti on 24.5 on page 210 . Agen[...]
-
Page 209
Chapter 24 IP Source Guard XGS-4528F User’s Guide 209 Successful writes Thi s field displays the nu mber of times the Switch updated the bindings in the DHCP snooping da tabase successfully . Failed writes This field displays the numb er of times the Sw itch was unable to update the bindings in the DHCP snooping database. Database detail First su[...]
-
Page 210
Chapter 24 IP Source G uard XGS-4528F User’s Guide 210 24.5 DHCP Snooping Configure Use this scr een to enable DHCP snoo ping on the Switch (not on specific VLAN), specify the VLAN where the default DHCP server is located, and configure the DHCP snooping database. The DHCP snooping database stores the current bi ndings on a secure, external TFTP [...]
-
Page 211
Chapter 24 IP Source Guard XGS-4528F User’s Guide 21 1 24.5.1 DHCP Snoopi ng Port Configure Use this screen to specify whether ports are tr usted or untrusted ports for DHCP snoopin g . " The Switch will drop al l DHCP requests if you enable DHCP sn ooping and there are no trusted ports. Y ou can also specify the maximum number for DHCP pack[...]
-
Page 212
Chapter 24 IP Source G uard XGS-4528F User’s Guide 212 Figure 104 DHCP Snooping Port Configure The following table describes the labels in this screen. T able 74 DHCP Snooping Port Configure LABEL DESCRIPTION Port This field displays the port number . If you configure the * port, the settings are applied to all of the ports. Server Trusted st ate[...]
-
Page 213
Chapter 24 IP Source Guard XGS-4528F User’s Guide 213 24.5.2 DHCP Snoo ping VLAN Configure Use this scr een to enable DHCP snoo ping on each VLAN and to specify whether or not the Switch adds DHCP relay agen t option 82 informat ion ( Chap ter 32 on page 259 ) to DHCP requests that the Switch relays to a DHCP serve r for each VLAN. T o open this [...]
-
Page 214
Chapter 24 IP Source G uard XGS-4528F User’s Guide 214 24.6 ARP Inspection St atus Use this screen to look at the current list of MAC address f ilters that were cr eated because the Switch identified an unauthoriz ed A RP packet. When the Switc h identifies an unauthorized ARP packet, it automatically creates a MAC ad dress filter to block traf f[...]
-
Page 215
Chapter 24 IP Source Guard XGS-4528F User’s Guide 215 Figure 107 ARP Inspection VLAN S tatus The following table describes the labels in this screen. 24.6.2 ARP Inspection Log St atus Use this screen to look at log messages that we re generated by ARP packets and th at have not been sent to the syslog server ye t. T o open this screen, click Adva[...]
-
Page 216
Chapter 24 IP Source G uard XGS-4528F User’s Guide 216 Figure 108 ARP Inspection Log S tatus The following table describes the labels in this screen. T able 78 ARP Inspection Log Status LABEL DESCRIPTION Clearing log status table Click Apply to remove all the log messages that were generated by ARP packets and that have not been sent to the syslo[...]
-
Page 217
Chapter 24 IP Source Guard XGS-4528F User’s Guide 217 24.7 ARP Inspection Configure Use this screen to enable ARP in spection on the Switch. Y ou can also configure the length of time the Switch stores records of discarded AR P packets and global settings for the ARP inspection log. T o open this screen, click Advanced Application > IP Sour ce[...]
-
Page 218
Chapter 24 IP Source G uard XGS-4528F User’s Guide 218 24.7.1 ARP Inspection Port Configure Use this screen to specify whether ports are trus ted or untrusted ports for ARP inspection. Y ou can also specify the maximum rate at whic h the Switch receives ARP packets on each untrusted port. T o open this screen, click Advanced Application > IP S[...]
-
Page 219
Chapter 24 IP Source Guard XGS-4528F User’s Guide 219 The following table describes the labels in this screen. 24.7.2 ARP Inspection VLAN Configure Use this screen to enable ARP inspection on each VLAN and to specify when the Switch generates log messages for receiving ARP packet s from each VLAN. T o open this screen, click Advanced Application [...]
-
Page 220
Chapter 24 IP Source G uard XGS-4528F User’s Guide 220 The following table describes the labels in this screen. T able 81 ARP Inspec tion VLAN Configure LABEL DESCRIPTION VLAN Use this section to specify the VLANs you want to manage in the section below . S tart VID Enter the lowest VLAN ID you want to manag e in the section below . End VID Enter[...]
-
Page 221
XGS-4528F User’s Guide 221 C HAPTER 25 Loop Guard This chapter shows you how to configure the Switch to guard against loops on the edge of your network. 25.1 Loop Guard Overview Loop guard allows you to config ure the Switch to shut down a port if it detects that packets sent out on that port loop back to the Switch. W hile you can use Spanning T[...]
-
Page 222
Chapter 25 Lo op Guard XGS-4528F User’s Guide 222 The following figure shows port N on switch A connected to switch B . Switch B is in loop state. When broadcast or multicast packets leave port N and reach switch B , they are sent back to port N on A as they are rebroadcast from B . Figure 1 13 Switch in Loop S tate The loop guard feature checks [...]
-
Page 223
Chapter 25 Loop Guar d XGS-4528F User’s Guide 223 " After resolving the loop problem on your network you can re-activate the disabled port via the w eb configurator (see Section 7.7 on page 81 ) or via commands (see Section 44.12.4 on p age 377 ) . 25.2 Loop Guard Setup Click Advanced App lication > Loop Guard in the navigation panel to d[...]
-
Page 224
Chapter 25 Lo op Guard XGS-4528F User’s Guide 224 Active Select this check box to enable the loop guard feature on this port. The Switch sends probe packets from this port to check if the Sw itch it is connected to is in loop state. If the Switch that this port is connected is in loop state the Switch will shu t down this port. Clear this check b[...]
-
Page 225
225 P ART IV IP Application S tatic Route (227) RIP (229) OSPF (231) IGMP (243) DVMRP (247) Differentiated Services (251) DHCP (259) VRRP (267)[...]
-
Page 226
226[...]
-
Page 227
XGS-4528F User’s Guide 227 C HAPTER 26 Static Route This chapter shows you how to configure static routes. 26.1 Configuring S tatic Routing Stat ic routes tell the Switch how to forward IP traffic when yo u configure the TCP/IP parameters manually . Click IP Application > S tatic Routing in the navigation pa nel to display th e screen as shown[...]
-
Page 228
Chapter 26 Static Rou te XGS-4528F User’s Guide 228 Metric The metric represen ts the “cost” of transmission for rout ing purposes. IP ro uting uses hop count as the measurement of cost, wi th a minimum o f 1 for directly connected networks. Enter a number that approximates the cost for this link. The number need not be precise, but it must b[...]
-
Page 229
XGS-4528F User’s Guide 229 C HAPTER 27 RIP This chapter shows you h o w to configure RIP (Routi ng Information Protocol). 27.1 RIP Overview RIP (Routing Information Protocol) allows a rou ting device to exchange routing information with other routers. The Direction field contro ls the sending an d receiving of RIP packets. When set to: • Both -[...]
-
Page 230
Chapter 27 RIP XGS-4528F User’s Guide 230 Figure 1 18 IP Application > RIP The following table describes the labels in this screen. T able 84 IP Application > RIP LABEL DESCRIPTION Active Select this check box to enable RIP on the Switch. Index This field disp lays the index number of an IP interface. Network This field displays th e IP in [...]
-
Page 231
XGS-4528F User’s Guide 231 C HAPTER 28 OSPF This chapter describes the OSPF (Open Shortest Path First) routing protocol and shows you how to configure OSPF . 28.1 OSPF Overview OSPF (Open Shortest Path First) i s a link-state protocol designed to distribut e routing information within an autonomo us system (AS). An autonomous system is a collecti[...]
-
Page 232
Chapter 28 OSPF XGS-4528F User’s Guide 232 The following figure depicts an OSPF networ k example. The backbone is area 0 with a backbone router . The internal routers are in ar ea 1 and 2. The area border routers connect area 1 and 2 to the backbone. Figure 1 19 OSPF Network Examp le 28.1.2 How OSPF Wo rks Layer 3 devices exchange routing informa[...]
-
Page 233
Chapter 28 OSPF XGS-4528F User’s Guide 233 Figure 120 OSPF Router Election Example Y ou can assign a priority to an interface which determines whether this router will be elected to be a DR or BDR. The router with the highes t priority becomes the DR , while a router with a priority of 0 does not particip ate in router elections. In Figure 120 on[...]
-
Page 234
Chapter 28 OSPF XGS-4528F User’s Guide 234 Figure 121 IP Application > OSPF S tatus The following table describes the labels in this screen. The following table describes some common output fields. T able 87 IP Application > OSPF S tatus LABEL DESCRIPTION OSPF This field displays whether OSPF is activate d ( Running ) or not ( Down ). Inter[...]
-
Page 235
Chapter 28 OSPF XGS-4528F User’s Guide 235 28.3 OSPF Configuration Use this screen to activate OSPF and set ge neral settings. Click IP Application > OSPF and the Configuration link to display the OSPF Configuration screen. See Section 28.1 on page 231 for more information on OSPF . S tate This fi eld displays the state of the Switch ( backup [...]
-
Page 236
Chapter 28 OSPF XGS-4528F User’s Guide 236 Figure 122 IP Application > OSPF Configuration: Activati ng and General Settings The follow table describes the related labels in this screen. T able 89 IP Application > OSPF Configuratio n: Activating and General Settings LABEL DESCRIPTION Active OSPF is disa bled by default. Select this option to[...]
-
Page 237
Chapter 28 OSPF XGS-4528F User’s Guide 237 28.4 Configure OSPF Areas T o ensure that the Switch receives only routin g information from a trusted layer 3 devices, activate authentication. The OSPF supports three levels of authentication: • None – no authentication is used. • Simple – authenticate link state upda tes usi ng an 8 printable [...]
-
Page 238
Chapter 28 OSPF XGS-4528F User’s Guide 238 28.4.1 V iew OSPF Area Information T able The bottom of the OSPF Configuration screen displays a summary table of all the OSPF areas you have configured. Figure 124 IP Application > OSPF Configuration: Summary T able The following table describes the re lated labels in this screen. 28.5 Configuring OS[...]
-
Page 239
Chapter 28 OSPF XGS-4528F User’s Guide 239 In the OSPF Configuration screen, click Interface to display the OSPF Interface screen. Figure 125 IP Application > OSPF Configuration > OSPF Interface The following table describes the labels in this screen. T able 92 IP Application > OSPF Configuration > OSPF Interface LABEL DESCRIPTION Net[...]
-
Page 240
Chapter 28 OSPF XGS-4528F User’s Guide 240 28.6 OSPF V irtual-Links Configure and view virtual link settings in this screen. See Section 28.1 on page 231 for more information on OSPF . In the OSPF Configuration screen, click V irtual-Link to display the sc reen as shown next. Figure 126 IP Application > OSPF Config uration > OSPF Virtual Li[...]
-
Page 241
Chapter 28 OSPF XGS-4528F User’s Guide 241 The following table describes the re lated labels in this screen. T able 93 IP Application > OSPF Configuration > OSPF Vir t ual Link LABEL DESCRIPTION Name Enter a descriptive name (up to 32 prin table ASCII characters) for identification purposes. Area ID Select the area ID (in an IP address form[...]
-
Page 242
Chapter 28 OSPF XGS-4528F User’s Guide 242[...]
-
Page 243
XGS-4528F User’s Guide 243 C HAPTER 29 IGMP This chapter shows you how to configure the Switch as a multicast rout er . See also Section 22.4 on page 177 for information on IGMP snooping. 29.1 IGMP Overview IP multicast is an IETF standard for distributi ng data to multiple recipients. The following figure shows a multicast session and the rela t[...]
-
Page 244
Chapter 29 IGM P XGS-4528F User’s Guide 244 IGMP (Internet Group Management Protocol) is used by multicast host s to indicate their multicast group membership to multicast router s. Multicast routers can also use IGMP to periodically check if multicast ho sts still want to receive transmission from a multicast server . In other words, multicast r[...]
-
Page 245
Chapter 29 IGMP XGS-4528F User’s Guide 245 Figure 129 IGMP V ersion 2 Example IGMP version 3 allows a multicast host to join a multicast group and specify from which source (multicast server) it wants to receive multi cast packets. Alternatively , a multicast host can specify from which multicast servers it does not want to receive multic ast pac[...]
-
Page 246
Chapter 29 IGM P XGS-4528F User’s Guide 246 Figure 131 IP Application > IGMP The following table describes the labels in this screen. T able 94 IP Application > IGMP LABEL DESCRIPTION Active Select this check box to enable IGMP on the Switch. Note: Y ou cannot enable both IGMP snooping and IGMP at the same time. Refer to Section 22.4 on p a[...]
-
Page 247
XGS-4528F User’s Guide 247 C HAPTER 30 DVMRP This chapter introduces DVMRP an d tells you how to configure it. 30.1 DVMRP Overview DVMRP (Distance V ector Multicast Routing Protoc ol) is a protocol used for routing multicast data within an autonomous system (AS). This DVMRP implementation is based on draft-ietf- idmr-dvmrp-v3-10. DVMRP provides m[...]
-
Page 248
Chapter 30 DVMR P XGS-4528F User’s Guide 248 Figure 132 How DVMRP Works 30.2.1 DVMRP T erminology DVMRP probes are used to discover other DVMRP Neighbors on a network. DVMRP reports are used to exch ange DVMRP source routing in formation. These packets are used to build the DVMRP multicast routing table that is used to build source trees and also[...]
-
Page 249
Chapter 30 DVMRP XGS-4528F User’s Guide 249 30.3.1 DVMRP Configuration Error Messages Y ou must have IGMP/RIP enabled when you en able DVMRP; otherwise you see the scre en as in the next figure. Figure 134 DVMRP: IGMP/RIP Not Set Error When you disable IGMP , but DVMRP is still active you also see another warning screen. Figure 135 DVMRP: Unable [...]
-
Page 250
Chapter 30 DVMR P XGS-4528F User’s Guide 250 Figure 136 DVMRP: Duplicate VID Error Message 30.4 Default DVMRP T imer V alues The following are some default DVMRP timer values. T able 96 DVMRP: Default Timer Values DVMRP FIELD DEFAULT V ALUE Probe interval 10 sec Report interval 35 sec Route expiration ti me 140 sec Prune lifetime V ariable (less [...]
-
Page 251
XGS-4528F User’s Guide 251 C HAPTER 31 Differentiated Services This chapter shows you how to configure Dif fe rentiated Services (DiffServ) on the Switch. 31.1 DiffServ Overview Quality of Service (QoS) is used to prioritize so urce-to-destination traffic flows. All packets in the flow are given the same priority . Y ou can use CoS (class of serv[...]
-
Page 252
Chapter 31 Differe ntiated Services XGS-4528F User’s Guide 252 31.1.2 DiffServ Network Example The following figure depicts a DiffServ networ k consisting of a group of directly connected DiffServ-compliant network devices. The boundary node ( A in Figure 138 ) in a Dif fServ network classifies (marks with a DSCP value) th e incoming packets into[...]
-
Page 253
Chapter 31 Differentiated Se rvices XGS-4528F User’s Guide 253 • Green (low loss priority level) packets are forwarded. TR TCM operates in one of two modes: color-bl ind or color-aware. In color-blind mode, packets are marked based on evaluating against the PIR and CIR regardless of if they have previously been marked or not. In the color-aware[...]
-
Page 254
Chapter 31 Differe ntiated Services XGS-4528F User’s Guide 254 31.3 Activating DiffServ Activate DiffServ to apply marking rules or I EEE 802.1p pri o rity mapping on the selected port(s). Click IP Application > DiffServ in th e navigation panel to display the screen as sho w n. Figure 141 IP Application > Dif fServ The following table desc[...]
-
Page 255
Chapter 31 Differentiated Se rvices XGS-4528F User’s Guide 255 " Y ou cannot enable both TRTCM and Bandwid th Control at the same time. Figure 142 IP Application > Dif fServ > 2-rate 3 Co lor Marker The following table describes the labels in this screen. T able 98 IP Application > DiffServ > 2-rate 3 Colo r Marker LABEL DESCRIPT[...]
-
Page 256
Chapter 31 Differe ntiated Services XGS-4528F User’s Guide 256 31.4 DSCP-to-IEEE 802.1p Priority Settings Y ou can configure the DSCP to IEEE 80 2.1p ma pping to allow the Switch to prioritize all traffic based on the in coming DSCP value according to th e DiffServ to IEEE 802.1p mapping table. The following table shows t he default DSCP-to-IEEE8[...]
-
Page 257
Chapter 31 Differentiated Se rvices XGS-4528F User’s Guide 257 The following table describes the labels in this screen. T able 100 IP Application > DiffServ > DSCP Setting LABEL DESCRIPTION 0 … 63 This is the DSCP classification identification nu mber . T o set the IEEE 802.1p priority mapping, select the priority level from the drop-down[...]
-
Page 258
Chapter 31 Differe ntiated Services XGS-4528F User’s Guide 258[...]
-
Page 259
XGS-4528F User’s Guide 259 C HAPTER 32 DHCP This chapter shows you how to configure the DHCP feature. 32.1 DHCP Overview DHCP (Dynamic Host Configuration Protocol RFC 2131 and RFC 2132) allows individual computers to obtain TCP/IP configuration at start-up from a server . Y ou can configure the Switch as a DHCP server or a DHCP relay agen t. When[...]
-
Page 260
Chapter 32 DHCP XGS-4528F User’s Guide 260 32.2 DHCP S tatus Click IP Application > DHCP in the navigation panel. The DHCP S tatus screen displays. Figure 144 IP Application > DHCP S tatus The following table describes the labels in this screen. 32.3 DHCP Server S t atus Detail Click IP Application > DHCP in the navig ation panel and the[...]
-
Page 261
Chapter 32 DHCP XGS-4528F User’s Guide 261 The following table describes the labels in this screen. 32.4 DHCP Relay Configure DHCP relay on the Switch if the DH CP clients and the DHCP server are not in the same broadcast domain. During the initial IP address leasing, the Switch helps to relay network information (such as the IP address an d subn[...]
-
Page 262
Chapter 32 DHCP XGS-4528F User’s Guide 262 The DHCP Relay Agent Information feature adds an Agent Information field to the Option 82 field. The Option 82 field is in the DHCP headers of client DHCP request frames that the Switch relays to a DHCP server . Relay Agent Information can include the System Name of the Switch if you select this option. [...]
-
Page 263
Chapter 32 DHCP XGS-4528F User’s Guide 263 32.4.3 Global DHCP Re lay Configuration Example The follow figure shows a network exam ple where the Switch is us ed to relay DHCP reque sts for the VLAN1 and VLAN2 domains. There is only one DHCP server that s ervices the DHCP clients in both domains. Figure 147 Global DHCP Relay Network Exam ple Config[...]
-
Page 264
Chapter 32 DHCP XGS-4528F User’s Guide 264 32.5 Configuring DHCP VLAN Settings Use this screen to configure your DHCP settin gs based on the VLAN domain of the DHCP clients. Click IP Application > DHCP in the navigation panel, then click the VLAN link In the DHCP S tatus screen that displays. " Y ou must set up a management IP address for[...]
-
Page 265
Chapter 32 DHCP XGS-4528F User’s Guide 265 The following table describes the labels in this screen. T able 105 IP Application > DH CP > VLAN LABEL DESCRIPTION VID Enter the ID number of the VLAN to which these DHCP setting s apply . DHCP S tatus Select whether the Swit ch should fun ction as a DHCP Server or Relay for the specified VID. If [...]
-
Page 266
Chapter 32 DHCP XGS-4528F User’s Guide 266 32.5.1 Example: DHCP Relay for T wo VLANs The following examp le displays two VLANs (VIDs 1 and 2) for a campus network . T wo DHCP servers are installed to serve each VLAN. The system is set up to forward DHCP requests from the dormitory rooms (VLAN 1) to the DHCP server with an IP address of 192.168.1.[...]
-
Page 267
XGS-4528F User’s Guide 267 C HAPTER 33 VRRP This chapter shows you how to configure and monitor the V irtual Router Redundan c y Protocol (VRRP) on the Switch. 33.1 VRRP Overview Each host on a network is configur ed to send pa ckets to a statically co nfigured default gateway (this Switch). The default gateway ca n become a single point of failu[...]
-
Page 268
Chapter 33 VRRP XGS-4528F User’s Guide 268 If switch A (the master router) is unavailable, switch B takes over . T raffic is then processed by switch B . 33.2 VRRP S tatus Click IP Application > VRRP in the navigation pa nel to display the VRRP S tatus screen as shown next. Figure 153 IP Application > VRRP S tatus The following table descri[...]
-
Page 269
Chapter 33 VR RP XGS-4528F User’s Guide 269 Click IP Application , VRRP and click the Configuration link to di splay the VRRP Configuration screen as shown next. " Y ou can only configure VRRP on interfaces wi th unique VLAN IDs. " Routing domains with the same VLAN ID are not displa yed in the table indicated. Figure 154 IP Application[...]
-
Page 270
Chapter 33 VRRP XGS-4528F User’s Guide 270 33.3.2 VRRP Parameters This section describes the VRRP parameters. 33.3.2.1 Advertisement Interval The master router sends out Hello messages to le t the other backup routers know that it is still up and running. The time inte rval between sending the Hello messages is the advertise ment interval. By def[...]
-
Page 271
Chapter 33 VR RP XGS-4528F User’s Guide 271 Figure 155 IP Application > VRRP Confi guration > VRRP Parame ters The following table describes the labels in this screen. 33.3.4 Configuring VRRP Parameters V iew the VRRP configura tion summ ary at the bottom of the screen. T able 108 IP Application > VRR P Config urat ion > VRRP Para met[...]
-
Page 272
Chapter 33 VRRP XGS-4528F User’s Guide 272 Figure 156 VRRP Configuration: Summary The following table describes the labels in this screen. 33.4 VRRP Configuration Examples The following sections show two VRRP configuration examples on the Switch. 33.4.1 One Subnet Network Example The figure below shows a simple VRRP ne twork with only one virtual[...]
-
Page 273
Chapter 33 VR RP XGS-4528F User’s Guide 273 Y ou want to set switch A as the master r outer . Configure the VRRP parameters in t h e VRRP Configuration screens on the switches as shown in the figures below . Figure 158 VRRP Example 1: VRRP Parame ter Settings on Switch A Figure 159 VRRP Example 1: VRRP Parame ter Settings on Switch B After config[...]
-
Page 274
Chapter 33 VRRP XGS-4528F User’s Guide 274 Figure 162 VRRP Configurat ion Example: T wo Virtual Router Netw ork Y ou need to config ure the VRRP Configuration screen for virtual router VR2 on each switch, while keeping the VR RP configuration in examp le 1 for virtual router VR1 (refer to Section 33.4.2 on page 2 7 3 ). Configure the VRRP paramet[...]
-
Page 275
Chapter 33 VR RP XGS-4528F User’s Guide 275 Figure 165 VRRP Example 2: VRRP S tatus on Switch A Figure 166 VRRP Example 2: VRRP S tatus on Switch B EXAMPLE EXAMPLE[...]
-
Page 276
Chapter 33 VRRP XGS-4528F User’s Guide 276[...]
-
Page 277
277 P ART V Management Maintenance (279) Access Control (285) Diagnostic (303) Syslog (305) Cluster Managemen t (309) MAC T able (315) IP T able (317) ARP T able (319) Routing T able (321) Configure Clone (323)[...]
-
Page 278
278[...]
-
Page 279
XGS-4528F User’s Guide 279 C HAPTER 34 Maintenance This chapter explains how to configure the ma intenance screens that let you maintain the firmware and configuration files. 34.1 The Maintenance Screen Use this screen to manage firmware and you r configuration files. Click Management > Maintenance in the navigation panel to open the followi n[...]
-
Page 280
Chapter 34 Maintenance XGS-4528F User’s Guide 280 34.2 Load Factory Default Follow the steps below to reset the Switch back to the factory defaults. 1 In the Maintenance screen, click the Click Here button next to Load Fact ory Default to clear all Switch configuration informatio n y ou configured and return t o the factory defaults. 2 Click OK t[...]
-
Page 281
Chapter 34 Maintenance XGS-4528F User’s Guide 281 34.4 Reboot System Reboot System allows you to restart the Switch withou t physically turning the power off. It also allows you to lo ad configuration o ne ( Config 1 ) or configuration two ( Config 2 ) when you reboot. Follow the steps be low to reboot the Switch. 1 In the Maintenance screen, cli[...]
-
Page 282
Chapter 34 Maintenance XGS-4528F User’s Guide 282 34.6 Restore a Configuration File Restore a previously saved configuration fro m your computer to the Switc h using the Restore Configuration screen. Figure 171 Management > Maintena nce > Restore Configuration T ype the path and file name of the config uration file you wish to restore in th[...]
-
Page 283
Chapter 34 Maintenance XGS-4528F User’s Guide 283 34.8 FTP Command Line This section shows some examples of uploadin g to or downloading files from the Switch using FTP commands. First, understan d the filename conventions. 34.8.1 Filename Conventions The configuration file (also known as the romf ile or ROM) contains t he factory default setting[...]
-
Page 284
Chapter 34 Maintenance XGS-4528F User’s Guide 284 5 Enter bin to set transfer mode to binary . 6 Use put to transfer files from the comput er to the Switch, for example, put firmware.bin ras transfers the firmware on your computer (firmware.bin) to the Switch and renames it to “ras”. Similarly , put config.cfg c onfig transfers the configurat[...]
-
Page 285
XGS-4528F User’s Guide 285 C HAPTER 35 Access Control This chapter describes how to control access to the Switch. 35.1 Access Control Overview A console port and FTP are allowe d one session each, T elnet and SSH share nine sessions, up to five W eb sessions (five di fferent usernames and passwords ) and/or limitless SNMP access control sessions [...]
-
Page 286
Chapter 35 Access Control XGS-4528F User’s Guide 286 35.3 About SNMP Simple Network Management Protocol (SNMP) is an application layer protocol us ed to manage and monitor TCP/IP-based devices. SNMP is used to exchange management information between th e network manageme nt system (NMS) and a network element (NE). A manager station can m anage an[...]
-
Page 287
Chapter 35 Access Control XGS-4528F User’s Guide 287 35.3.1 SNMP v3 and Security SNMP v3 enhances security for SNMP manage ment. SNMP managers can be required to authenticate with agents before co nducting SNMP mana gement sessions. Security can be further enhanced by encryp ting the SNMP mes sages sent from the managers. Encryption protects the [...]
-
Page 288
Chapter 35 Access Control XGS-4528F User’s Guide 288 temperature T emperatu reEventOn 1. 3.6.1.4.1.890.1. 5.8.39.31.2 .1 This trap is sent when the temperature goes above or below the normal operating rang e. T emperatur eEventClear 1.3.6.1.4.1.890.1.5.8. 39.31 .2.2 This trap is sent when the temperature returns to the normal operating range. vol[...]
-
Page 289
Chapter 35 Access Control XGS-4528F User’s Guide 289 autonegotiation Autonegotiation FailedEventO n 1.3.6.1.4.1.890.1.5. 8.39.31.2.1 This trap is sent when an Ethernet interface fails to auto- negotiate with the pee r Ethernet interfac e. AutonegotiationFailedEve ntCl ear 1.3.6.1.4.1.890.1.5. 8.39.31.2.2 This trap is sent when an Ethernet int e r[...]
-
Page 290
Chapter 35 Access Control XGS-4528F User’s Guide 290 35.3.4 Configuring SNMP From the Access Control screen, display the SNMP screen. Y ou can click Access Control to go back to the Access C ontro l screen. T able 1 19 SNMP Switch Traps OPTION OBJECT LABEL OBJECT ID DESCRIPTION stp STPNewRoot 1.3.6.1.2.1. 17.0.1 T his trap is sent when the STP ro[...]
-
Page 291
Chapter 35 Access Control XGS-4528F User’s Guide 291 Figure 175 Management > Acce ss Control > SNMP The following table describes the labels in this screen. T able 120 Management > Access Control > SNMP LABEL DESCRIPTION General Setting Use this section to specify the SNMP version and community (password) values. V ersion Select the S[...]
-
Page 292
Chapter 35 Access Control XGS-4528F User’s Guide 292 35.3.5 Configuring SNMP T rap Group From the SNMP sc reen, click Tr a p G r o u p to view the screen as shown. Use the Tr a p Gr oup screen to specify the types of SNMP traps that should be sent to each SNMP manager . Username Enter the username to be sent to the SNMP manager along with the SNM[...]
-
Page 293
Chapter 35 Access Control XGS-4528F User’s Guide 293 Figure 176 Management > Acce ss Control > SNMP > Trap Group The following table describes the labels in this screen. 35.3.6 Setting Up Login Account s Up to five people (one ad ministrator and four non-administrators) may access the Switch via web configurator at any one time. • An a[...]
-
Page 294
Chapter 35 Access Control XGS-4528F User’s Guide 294 • A non-administrato r (username is something o ther than admin ) is some one who can view but not configure Switch settings. Click Management > Access Contr ol > Logins to view the screen as shown. Figure 177 Management > Acce ss Control > Logins The following table describes the[...]
-
Page 295
Chapter 35 Access Control XGS-4528F User’s Guide 295 35.4 SSH Overview Unlike T elnet or FTP , which transmit data in clear text, SSH (Secure Shell) is a secure communication protoc ol that combines authenticatio n and data encryption to provide secure encrypted communication bet w een two hosts over an un secured network. Figure 178 SSH Communic[...]
-
Page 296
Chapter 35 Access Control XGS-4528F User’s Guide 296 2 Encryption Method Once the identification is verified, both the c lient and server must agree on the type of encryption method to use. 3 Authentication and Data T ransmission After the identification is verified and data encryption activated, a secure tunnel is established between the client [...]
-
Page 297
Chapter 35 Access Control XGS-4528F User’s Guide 297 Figure 180 HTTPS Implement ation " If you disable HTTP in the Service Access Control screen, then the Switch blocks all HTTP connection attempts. 35.8 HTTPS Example If you haven’t changed the default HTTPS port on the Switch, then in your browser enter “https://Switch IP Address/” as[...]
-
Page 298
Chapter 35 Access Control XGS-4528F User’s Guide 298 35.8.2 Net scape Navigator W arning Messages When you attempt to access the Switch HTTPS server , a W ebsite Certified by an Unknown Authority screen pops up asking if you trus t the server certificate. Click Examine Certificate if you want to verify that th e certificate is from the Switch. If[...]
-
Page 299
Chapter 35 Access Control XGS-4528F User’s Guide 299 Figure 184 Example: Lock Denotin g a Secure Connectio n 35.9 Service Port Access Control Service Access Control allows you to decide wh at service s you may use to access the Switch. Y ou may also change the defau lt service port an d configure “truste d co mputer(s)” for each service in th[...]
-
Page 300
Chapter 35 Access Control XGS-4528F User’s Guide 300 The following table describes th e fields in this screen. 35.10 Remote Management From the Access Control screen, display the Remote Management screen as shown next. Y ou can specify a group of one or more “trust ed computers” from which an administrator may use a service to manage the Swit[...]
-
Page 301
Chapter 35 Access Control XGS-4528F User’s Guide 301 Te l n e t / F T P / HTTP/ICMP/ SNMP/SSH/ HTTPS Select services that may be used for managi ng the Switch from the specified tru sted computers. Apply Click Apply to save your changes to the Switch ’s run-time memory . The Switch loses these changes if it is turned off or loses power , so use[...]
-
Page 302
Chapter 35 Access Control XGS-4528F User’s Guide 302[...]
-
Page 303
XGS-4528F User’s Guide 303 C HAPTER 36 Diagnostic This chapter explains the Diagnostic screen. 36.1 Diagnostic Click Management > Diagnostic in the navigation panel to open this screen. Use this screen to check system logs, ping IP addresses or perform port tests. Figure 187 Management > Diagn ostic The following table describes the labels [...]
-
Page 304
Chapter 36 Diagnostic XGS-4528F User’s Guide 304[...]
-
Page 305
XGS-4528F User’s Guide 305 C HAPTER 37 Syslog This chapter explains the syslog screens. 37.1 Syslog Overview The syslog protocol allows devices to send event notification messages across an IP network to syslog servers that collect the event mes sages. A syslog-enabled device can generate a syslog message and send it to a syslog server . Syslog i[...]
-
Page 306
Chapter 37 Syslog XGS-4528F User’s Guide 306 Figure 188 Management > Syslo g The following table describes the labels in this screen. 37.3 Syslog Server Setup Click Management > Syslog > Syslog Server Setup to open the following screen. Use this screen to configure a list of external syslog servers. T able 127 Management > Syslog LABE[...]
-
Page 307
Chapter 37 Sy slog XGS-4528F User’s Guide 307 Figure 189 Management > Syslo g > Server Setup The following table describes the labels in this screen. T able 128 Management > Syslog > Server Setu p LABEL DESCRIPTION Active Select this check box to have the devic e send logs to this syslog server . Clear the check box if you want to cre[...]
-
Page 308
Chapter 37 Syslog XGS-4528F User’s Guide 308[...]
-
Page 309
XGS-4528F User’s Guide 309 C HAPTER 38 Cluster Management This chapter introduces cluster management. 38.1 Clustering Management S t atus Overview Cluster Managemen t allows you to manage s w itches through one Switch, called the cluster manager . The switches must be directly connec ted and be in the same VLAN group so as to be able to communica[...]
-
Page 310
Chapter 38 Cluster Management XGS-4528F User’s Guide 310 Figure 190 Clustering Application Example 38.2 Cluster Management S tatus Click Management > Cluster Manage ment in the navigation panel to display the following screen. " A cluster can only have one manager . Figure 191 Management > Cluster Ma nagement[...]
-
Page 311
Chapter 38 Cluster Management XGS-4528F User’s Guide 31 1 The following table describes the labels in this screen. 38.2.1 Cluster Member Switch Management Go to the Clustering Management S tatus screen of the cluster manager switch and then select an Index hyperlink from the list of members to go to that cluster member switch's web configura[...]
-
Page 312
Chapter 38 Cluster Management XGS-4528F User’s Guide 312 38.2.1.1 Uploading Firm ware to a Cluster Member Switch Y ou can use FTP to upload firmwa re to a cluster member switch thr ough the cluster manager switch as shown in the following example. Figure 193 Example: Uploading Firmware to a Cluster Mem ber Switch The following table explains some[...]
-
Page 313
Chapter 38 Cluster Management XGS-4528F User’s Guide 313 Figure 194 Management > Clusterin g Management > Configuration The following table describes the labels in this screen. T able 132 Management > Clustering Management > Configuration LABEL DESCRIPTION Clustering Manager Active Select Active to have this Switch b ecome the cluster[...]
-
Page 314
Chapter 38 Cluster Management XGS-4528F User’s Guide 314 Clustering Candidate The following fields relate to the swit ches that are potential clu ster members. List A list of suitabl e candidates found b y auto-discovery is sho wn here. The switches must be directly con nected. Dir ectly connected switches that are set to be cluster managers will[...]
-
Page 315
XGS-4528F User’s Guide 315 C HAPTER 39 MAC Table This chapter introduces the MAC T able screen. 39.1 MAC T able Overview The MAC T able screen (a MAC table is also known as a filtering database) shows how frames are forwarded or filtered across the Switc h’ s ports. When a device (which may belong to a VLAN group) sends a packet which is forwar[...]
-
Page 316
Chapter 39 MAC Ta ble XGS-4528F User’s Guide 316 Figure 195 MAC T able Flowchart 39.2 V iewing the MAC T able Click Management > MAC T ab le in the navigation panel to display the following screen. Figure 196 Management > MAC T able The following table describes the labels in this screen. T able 133 Management > MAC Table LABEL DESCRIPTI[...]
-
Page 317
XGS-4528F User’s Guide 317 C HAPTER 40 IP Table This chapter introduces the IP table. 40.1 IP T able Overview The IP T able screen shows how packets are forwarded or filtered across the Switch’ s ports. When a device (which may belong to a VLAN group) sends a packet which i s forwarded to a port on the Switch, the IP address of the device is sh[...]
-
Page 318
Chapter 40 IP Table XGS-4528F User’s Guide 318 40.2 V iewing the IP T able Click Management > IP T able in the navigation panel to display the following screen. Figure 198 Management > IP T able The following table describes the labels in this screen. T able 134 Management > IP Table LABEL DESCRIPTION Sort by Click one of the following b[...]
-
Page 319
XGS-4528F User’s Guide 319 C HAPTER 41 ARP Table This chapter introduces ARP T able. 41.1 ARP T able Overview Address Resolution Protocol (ARP) is a prot ocol for mapping an Internet Protocol address (IP address) to a physical machine address, al so known as a Media Access Control or MAC address, on the local area network. An IP (version 4) addre[...]
-
Page 320
Chapter 41 ARP Table XGS-4528F User’s Guide 320 Figure 199 Management > ARP T able The following table describes the labels in this screen. T able 135 Management > ARP Table LABEL DESCRIPTION Index This is th e ARP T ab le entry number . IP Address This is the learned IP address of a device connected to a Switch port with the corresponding [...]
-
Page 321
XGS-4528F User’s Guide 321 C HAPTER 42 Routing Table This chapter introduces the routing table. 42.1 Overview The routing table contains the route information to the networ k(s) that the Switch can reach. The Switch automatically updates the routing table with the RIP information received from other Ethernet devices. 42.2 V iewing the Routing T a[...]
-
Page 322
Chapter 42 Routin g Table XGS-4528F User’s Guide 322[...]
-
Page 323
XGS-4528F User’s Guide 323 C HAPTER 43 Configure Clone This chapter shows you how you can copy the settings of one port onto other ports. 43.1 Configure Clone Cloning allows you to co py the basic and advanced settings fro m a sour ce port to a destination port or ports. Click Management > Configure Clone to open the fo llowing screen. Figure [...]
-
Page 324
Chapter 43 Config ure Clone XGS-4528F User’s Guide 324 The following table describes the labels in this screen. T able 137 Management > Configure Clone LABEL DESCRIPTION Source/ Destination Port Enter the source port under the Source label. This port’s attributes are copied. Enter the destination port or ports under the Destination label. Th[...]
-
Page 325
325 P ART VI T roubleshooting & Product S pecifications T roubleshooting (327) Product Specification s (335)[...]
-
Page 326
326[...]
-
Page 327
XGS-4528F User’s Guide 327 C HAPTER 44 Troubleshooting This chapter covers potential problems and possible remedies. 44.1 Problems St arting Up the Switch 44.2 Problems Accessing the Switch T able 138 Troubleshooting the Start-Up of Your Switch PROBLEM CORRECTIVE ACTION None of the LEDs turn on when you turn on the Switch. Check the power connect[...]
-
Page 328
Chapter 44 Trou bleshooting XGS-4528F User’s Guide 328 44.2.1 Pop-up Windows, Ja vaScript s and Java Permissions In order to use the web configurator you need to allow: • W eb browser pop-up windows fro m your device. • JavaScripts (enabled by default). • Java permissions (enabled by default). " Internet Explorer 6 screens are used her[...]
-
Page 329
Chapter 44 Trou bleshooting XGS-4528F User’s Guide 329 Figure 203 Intern et Options 3 Click Apply to save this setting. 44.2.1.1.2 Enable pop-up Blockers with Exceptions Alternatively , if you only want to allow pop-up windows from your device, see the following steps. 1 In Internet Explorer , select To o l s , Internet Options and then the Priva[...]
-
Page 330
Chapter 44 Trou bleshooting XGS-4528F User’s Guide 330 Figure 204 Internet Options 3 T ype the IP address of your device (the web page that you do not want to have blocked) with the prefix “http://”. For example, http://192.168.1.1. 4 Click Add to move the IP address to the list of Allowed sites . Figure 205 Pop-up Blocker Settings 5 Click Cl[...]
-
Page 331
Chapter 44 Trou bleshooting XGS-4528F User’s Guide 331 6 Click Apply to save this setting. 44.2.1.2 JavaScript s If pages of the web configura tor do not display properly in Internet Explorer , ch eck that JavaScripts are allowed. 1 In Internet Explorer , click T ools , Internet Options and then the Security tab. Figure 206 Internet Options 2 Cli[...]
-
Page 332
Chapter 44 Trou bleshooting XGS-4528F User’s Guide 332 Figure 207 Security Settings - Java Scripting 44.2.1.3 Java Permissions 1 From Internet Explorer , click To o l s , Internet Options and then the Security tab. 2 Click the Custom Level... button. 3 Scroll down to Microsoft VM . 4 Under Java permissions make sure that a safety leve l is select[...]
-
Page 333
Chapter 44 Trou bleshooting XGS-4528F User’s Guide 333 44.2.1.3.1 JA V A (Sun) 1 From Internet Explorer , click To o l s , Internet Options and then the Advanced tab. 2 Make sure that Use Java 2 for <applet> under Java (Sun) is sele cted. 3 Click OK to clos e the window . Figure 209 Java (Sun) 44.3 Problems with the Password T able 140 Trou[...]
-
Page 334
Chapter 44 Trou bleshooting XGS-4528F User’s Guide 334[...]
-
Page 335
XGS-4528F User’s Guide 335 C HAPTER 45 Product Specifications The following tables summarize the Switc h’ s hardware and firmware features. T able 141 Hardware Specifications SPECIFICATIO N DESCRIPTION Dimensions S tandard 19” rack moun table 438 mm (W) x 310 mm (D) x 44.45 mm (H) Weight 4.9 Kg Power S pecification AC: 100 - 240 V AC 50/60 Hz[...]
-
Page 336
Chapter 45 Product Specifications XGS-4528F User’s Guide 336 Ground Wire Gauge 18 A WG or larger Power Wire Gauge 18 A WG or larger Fuse S pecification 250 V AC, T4A. For DC version switchboard. Approvals Safety UL 60950-1, CSA 60950-1, EN 60950 -1, IEC 60950-1 EMC FCC Part 15 (Class A), CE EMC (Class A) T able 142 Firmware Specifications FEATURE[...]
-
Page 337
Chapter 45 Product Specifications XGS-4528F User’s Guide 337 Queuing Queuing is used to help solve performan ce degradation when there is network congestion. Three scheduling services are supported: S trict Priority Queuing (SPQ), Weighted Round Robin (WRR) and Weighted Fair Queuing (WFQ). This allows the Sw itch to maintain separate queues for p[...]
-
Page 338
Chapter 45 Product Specifications XGS-4528F User’s Guide 338 Authentication and Accounting The Switch supports authenticat ion and accounting services via RADIUS and T ACACS+ AAA servers. Device Management Use the w eb configurator or commands to easily configure the rich range of features on the Switch. Port Cloning Use the port cloning feature [...]
-
Page 339
Chapter 45 Product Specifications XGS-4528F User’s Guide 339 T able 143 Switching Specifications Layer 2 Features Bridging 8K MAC addresses S tatic MAC address filtering by sou rce/destination Broadcast storm control S tatic MAC address forwarding Switching Switching fabric : 144Gbps, non-blocking Max. Frame size: 9 kbytes Forwarding frame: IEEE [...]
-
Page 340
Chapter 45 Product Specifications XGS-4528F User’s Guide 340 The following list, which is not exhaustive, i llustrates the standards su pported in the Switch. T able 144 Standards Supported ST ANDARD DESCRIPTION RFC 826 Address Resolution Protocol (ARP) RFC 867 Daytime Protocol RFC 868 T ime Protocol RFC 894 Ethernet II Encapsulation RFC 1058 RIP[...]
-
Page 341
Chapter 45 Product Specifications XGS-4528F User’s Guide 341 IEEE 802.3ah Ethernet OAM (Operati ons , Administration and Maintenance) IEEE 802.3x Flow Control IEEE 802.3z 1000BASE-X For optical fiber link 1000BASE-SX/LX. T able 144 Standards Supported (continued) ST ANDARD DESCRIPTION[...]
-
Page 342
Chapter 45 Product Specifications XGS-4528F User’s Guide 342[...]
-
Page 343
343 P ART VII Appendices and Index IP Addresses and Subnetting (345) Legal Information (353) Customer Support (357) Index (363)[...]
-
Page 344
344[...]
-
Page 345
XGS-4528F User’s Guide 345 A PPENDIX A IP Addresses and Subnetting This appendix introduces IP addresses and subnet masks. IP addresses identify ind ividual devices on a network. Every networking device (includin g computers, servers, routers, printe rs, etc.) ne eds an IP address to communicate across the network. These networking devices a re a[...]
-
Page 346
Appendix A IP Addre sses and Subnetting XGS-4528F User’s Guide 346 Figure 210 Network Number and Host ID How much of the IP address is the network number and how much is the host ID varies according to the subnet mask. Subnet Masks A subnet mask is used to dete rmine which bits are part of th e network number , and which bits are part of the host[...]
-
Page 347
Appendix A IP Addresses and Subnetting XGS-4528F User’s Guide 347 Subnet masks are expressed in dotted decimal no tation just like IP addresses. The follow ing examples show the binary and decimal not ation for 8-bit, 16-bit, 24-bit an d 29-bit subnet masks. Network Size The size of the network number determines the maximum number of possib le ho[...]
-
Page 348
Appendix A IP Addre sses and Subnetting XGS-4528F User’s Guide 348 Subnetting Y ou can use subnetting to divide one network into multiple sub-networks. In the following example a network administrator creates two sub-networks to isolate a group of servers from the rest of the c ompany network for security reasons. In this example, the company net[...]
-
Page 349
Appendix A IP Addresses and Subnetting XGS-4528F User’s Guide 349 Figure 212 Subnetting Example: Af ter Subnetting In a 25-bit subnet the host ID has 7 bits , so each sub-network has a maximum of 2 7 – 2 or 126 possible hosts (a host ID of all zeroes is the subnet’ s address itself, all ones is the subnet’ s broadcast address). 192.168.1.0 [...]
-
Page 350
Appendix A IP Addre sses and Subnetting XGS-4528F User’s Guide 350 Example: Eight Subnet s Similarly , use a 27-bit mask to create eight subnets (000, 001, 010, 01 1, 100, 101, 1 10 and 111 ) . The following table shows IP address last octet values for each subnet. T able 150 Subnet 2 IP/SUBNET MASK NETWORK NUMBER LAST OCTE T BIT VA L U E IP Addr[...]
-
Page 351
Appendix A IP Addresses and Subnetting XGS-4528F User’s Guide 351 Subnet Planning The following table is a summary for su bnet planning on a network with a 24-bit network number . The following table is a summary for su bnet planning on a network with a 16-bit network number . 5 128 129 158 159 6 160 161 190 191 7 192 193 222 223 8 224 225 254 25[...]
-
Page 352
Appendix A IP Addre sses and Subnetting XGS-4528F User’s Guide 352 Configuring IP Addresses Where you obtain your netwo rk number depends on yo ur particular situation. If the ISP or your network administrator assigns yo u a bloc k of registered IP addresses, follow their instructions in selecting the IP addresses and the subnet mask. If the ISP [...]
-
Page 353
XGS-4528F User’s Guide 353 A PPENDIX B Legal Information Copyright Copyright © 2007 by ZyXEL Communications Corporation. The contents of this publication may not be reprod uced in any part or as a whole, transcribed, stored in a retrieval system, tran slated into any language, or transmitted in any form or by any means, el ectronic, mechanical ,[...]
-
Page 354
Appendix B Legal In formation XGS-4528F User’s Guide 354 FCC W arning This device has been tested and foun d to comply with the limits for a Class A digital switch, pursuant to Part 15 of the FCC Rules. Thes e limits are designed to provide reasonable protection against harmful interference in a co mmercial environment. Thi s device generates, us[...]
-
Page 355
Appendix B Legal Information XGS-4528F User’s Guide 355 condition. Any replacement will consist of a ne w or re-manufactured f unctionally equivalent product of equal or higher value, and will be so lely at the discretion of ZyXEL. This warranty shall not apply if the product has been modified, misused, tamp ered with, damaged by an act of God, o[...]
-
Page 356
Appendix B Legal In formation XGS-4528F User’s Guide 356[...]
-
Page 357
XGS-4528F User’s Guide 357 A PPENDIX C Customer Support Please have the following information r eady when you contact customer support. Required Information • Product model and serial number . • W arranty Information. • Date that you received your de vice. • Brief description of the problem and the steps you took to solv e it. “+” is [...]
-
Page 358
Appendix C Custo mer Support XGS-4528F User’s Guide 358 • Re g u la r M ai l : ZyXEL Communications, Czech s.r .o., Modranská 621, 143 01 Praha 4 - Modrany , Ceská Republika Denmark • Support E-mail: support@zyxel.dk • Sales E-mail: sales@zyxel.dk • T elephone: +45-39-55-07-00 • Fax: +45-39-55-07-07 • W eb: www .zyxel.dk • Re g u [...]
-
Page 359
Appendix C Customer Support XGS-4528F User’s Guide 359 India • Support E-mail: support@zyxel.in • Sales E-mail: sales@zyxel.in • T elephone: +91-1 1-30888144 to +91-1 1-30888 153 • Fax: +91-1 1-30888149, +91 -11-2 6810715 • W eb: http://www .zyxel.in • Re g u l ar M ai l : India - ZyXEL T echnology Indi a Pvt Ltd. , II - F l oo r, F2/[...]
-
Page 360
Appendix C Custo mer Support XGS-4528F User’s Guide 360 • Re g ul a r Ma i l: ZyXEL Communications Inc., 1 130 N. Mi ller St., Anaheim, CA 92806- 2001, U.S.A. Norway • Support E-mail: support@zyxel.no • Sales E-mail: sales@zyxel.no • T elephone: +47-22-80-61-80 • Fax: +47-22-80-61-81 • W eb: www .zyxel.no • Re g u la r Ma i l : ZyXE[...]
-
Page 361
Appendix C Customer Support XGS-4528F User’s Guide 361 Sweden • Support E-mail: support@zyxel.se • Sales E-mail: sales@zyxel.se • T elephone: +46-31-744-7700 • Fax: +46-31-744-7701 • W eb: www .zyxel.se • Re g ul a r M a i l: ZyXEL Communications A/S, Sjöporten 4, 41764 Götebor g, Sweden Thailand • Support E-mail: support@zyxel.co[...]
-
Page 362
Appendix C Custo mer Support XGS-4528F User’s Guide 362[...]
-
Page 363
Index XGS-4528F User’s Guide 363 Index Numerics 802.1P priority 83 A access control limitations 285 login account 293 remote management 300 service port 299 SNMP 286 accounting setup 192 address learning, MAC 95 , 97 Address Resolution Protocol (ARP) 319 , 323 , 324 administrator password 294 age 122 aggregator ID 135 , 136 aging time 78 allowing[...]
-
Page 364
Index XGS-4528F User’s Guide 364 cluster manager 309 , 313 cluster me mber 309 , 314 cluster member firmware upgrade 312 network example 309 setup 312 specification 309 status 310 switch models 309 VID 313 web configurator 31 1 cluster manager 309 cluster me mber 309 command interface 38 Common and Internal S panning Tree (CIST) 11 0 Common and I[...]
-
Page 365
Index XGS-4528F User’s Guide 365 F fan speed 74 FCC interf erence statemen t 353 feature summary 54 file transfer using FTP command example 283 filename convention, configuratio n configuration file names 283 filtering 105 rules 105 filtering database, MAC table 315 firmware 74 upgrade 281 , 312 flow control 83 back pressure 83 IEEE802.3x 83 forw[...]
-
Page 366
Index XGS-4528F User’s Guide 366 setup 79 IP multicast example 243 IP source guard 201 ARP inspection 201 , 203 DHCP snooping 201 static bindings 201 IP table 317 how it works 317 J Java permissions 332 L LACP 133 system priority 137 timeout 138 layer 2 features 339 layer 3 features 339 LEDs 47 limit MAC address learning 148 Link Aggregate Contro[...]
-
Page 367
Index XGS-4528F User’s Guide 367 MSTI (Multiple S panning T ree Instance) 11 0 MSTP 107 , 109 bridge ID 124 , 125 configuration 120 configuration digest 125 forwarding delay 122 Hello T ime 124 hello time 122 Max Age 124 max age 122 max hops 122 MST region 111 network example 11 0 path cost 12 3 port priority 123 revision level 122 MSTP (Multip l[...]
-
Page 368
Index XGS-4528F User’s Guide 368 direction 132 egress 132 ingress 132 port redundancy 133 port security 147 address learning 148 limit MAC address learning 148 MAC address learning 147 overview 147 setup 147 , 223 port setup 81 port status 67 port VLAN trunking 89 port-based VLAN 99 all connected 102 port isolation 102 settings wizard 102 ports ?[...]
-
Page 369
Index XGS-4528F User’s Guide 369 Simple Network Management Protocol, see SNMP SNMP 38 , 286 agent 286 and MIB 286 authentication 292 communities 291 management model 286 manager 286 MIB 287 network components 286 object variables 286 protocol operations 286 security 292 setup 290 traps 292 version 3 and security 287 versions supported 286 SNMP tr[...]
-
Page 370
Index XGS-4528F User’s Guide 370 trademarks 353 transceiver installation 44 removal 45 traps destination 291 troubleshooting 327 accessing the switch 327 accessing the web configu rator 327 passw ord problems 333 start-up 327 TRTCM and bandwidth control 255 and DiffServ 255 color-aware mode 253 color-blind mode 253 setup 254 trunk group 133 trunk[...]
-
Page 371
Index XGS-4528F User’s Guide 371 note 355 web configurator 38 , 51 getting help 60 home 52 login 51 logout 60 navigation panel 53 screen summary 54 weight, queuing 164 Weighted Round Robin Sche duling (WRR) 16 4 WFQ (Weighted Fair Queuing) 164 WRR (Weighted Round Robin Scheduling 164 Z ZyNOS (ZyXEL Network Operating System) 283[...]
-
Page 372
Index XGS-4528F User’s Guide 372[...]