GarrettCom MNS-6K manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329

Ir para a página of

Bom manual de uso

As regras impõem ao revendedor a obrigação de fornecer ao comprador o manual com o produto GarrettCom MNS-6K. A falta de manual ou informações incorretas fornecidas ao consumidor são a base de uma queixa por não conformidade do produto com o contrato. De acordo com a lei, pode anexar o manual em uma outra forma de que em papel, o que é frequentemente utilizado, anexando uma forma gráfica ou manual electrónicoGarrettCom MNS-6K vídeos instrutivos para os usuários. A condição é uma forma legível e compreensível.

O que é a instrução?

A palavra vem do latim "Instructio" ou instruir. Portanto, no manual GarrettCom MNS-6K você pode encontrar uma descrição das fases do processo. O objetivo do manual é instruir, facilitar o arranque, a utilização do equipamento ou a execução de determinadas tarefas. O manual é uma coleção de informações sobre o objeto / serviço, um guia.

Infelizmente, pequenos usuários tomam o tempo para ler o manual GarrettCom MNS-6K, e um bom manual não só permite conhecer uma série de funcionalidades adicionais do dispositivo, mas evita a formação da maioria das falhas.

Então, o que deve conter o manual perfeito?

Primeiro, o manual GarrettCom MNS-6K deve conte:
- dados técnicos do dispositivo GarrettCom MNS-6K
- nome do fabricante e ano de fabricação do dispositivo GarrettCom MNS-6K
- instruções de utilização, regulação e manutenção do dispositivo GarrettCom MNS-6K
- sinais de segurança e certificados que comprovam a conformidade com as normas pertinentes

Por que você não ler manuais?

Normalmente, isso é devido à falta de tempo e à certeza quanto à funcionalidade específica do dispositivo adquirido. Infelizmente, a mesma ligação e o arranque GarrettCom MNS-6K não são suficientes. O manual contém uma série de orientações sobre funcionalidades específicas, a segurança, os métodos de manutenção (mesmo sobre produtos que devem ser usados), possíveis defeitos GarrettCom MNS-6K e formas de resolver problemas comuns durante o uso. No final, no manual podemos encontrar as coordenadas do serviço GarrettCom na ausência da eficácia das soluções propostas. Atualmente, muito apreciados são manuais na forma de animações interessantes e vídeos de instrução que de uma forma melhor do que o o folheto falam ao usuário. Este tipo de manual é a chance que o usuário percorrer todo o vídeo instrutivo, sem ignorar especificações e descrições técnicas complicadas GarrettCom MNS-6K, como para a versão papel.

Por que ler manuais?

Primeiro de tudo, contem a resposta sobre a construção, as possibilidades do dispositivo GarrettCom MNS-6K, uso dos acessórios individuais e uma gama de informações para desfrutar plenamente todos os recursos e facilidades.

Após a compra bem sucedida de um equipamento / dispositivo, é bom ter um momento para se familiarizar com cada parte do manual GarrettCom MNS-6K. Atualmente, são cuidadosamente preparados e traduzidos para sejam não só compreensíveis para os usuários, mas para cumprir a sua função básica de informação

Índice do manual

  • Página 1

    MAGNUM 6K F AMIL Y OF SWIT CHES Mana ged Netw ork Software (MNS) for Ma gnum 6K family of Switches – MNS-6K Release 3.7.1 CLI User Guide[...]

  • Página 2

    Pr eface This guide describes how to use the Command Line Interface (CLI) for the Magnum 6K family of switches. For the Web Management Interface please refer to the Web Management Guide. Some simple guidelines which will be use ful for configuring and using the Magnum 6K family of switches -  If you need information on a specific command in the [...]

  • Página 3

    ii T r ademar ks GarrettCom Inc. reserves the right to change spe cifications, perf ormance characteristics and/or model offerings with out notice. Garrett Com, Magnum, S-Ring, Link-L oss-Learn, Converter Switch, Conve nient Switch and Personal Switch are trademarks and P ersonal Hu b is a registered trademark of Garrett Com, Inc. NEBS is a registe[...]

  • Página 4

    T able of Contents 1 – Conventions Followed ............................................................... 18 Flow of the User Guide .......................................................... 19 2 – Getting Started ............................................................................ 22 Before starting ..................................[...]

  • Página 5

    List of commands in this chapter .......................................... 33 3 – IP Address and System Information ..................................... 35 IP Addressing ............................................................................... 35 Importance of an IP address .................................................. 35 DHCP and bo[...]

  • Página 6

    Network security .......................................................................... 65 Configuring Port Security ........................................................... 65 Logs ............................................................................................ 71 Authorized managers .............................................[...]

  • Página 7

    Private VLANs ....................................................................... 106 Using Port VLANs ................................................................ 107 Creating VLANs ..................................................................... 107 Using Tag VLANs .................................................................111 [...]

  • Página 8

    Dual-Homing concepts ............................................................ 168 Dual-Homing Modes ............................................................. 171 Configuring Dual-Homing ...................................................171 List of commands in this chapter ........................................173 14 – Link Aggregation [...]

  • Página 9

    Configuring SNMP ................................................................221 Configuring RMON ..............................................................230 List of commands in this chapter ........................................231 19 – Miscellaneous Commands .......................................... 235 Alarm Relays ...............[...]

  • Página 10

    Chapter 16 - IGMP ................................................................ 271 Chapter 17 - GVRP ............................................................... 272 Chapter 18 – SNMP .............................................................. 272 Chapter 19 – Miscellaneous Commands ............................275 APPENDIX 2 - Command[...]

  • Página 11

    x Updating boot code over the network ................................ 319 Index ................................................................................... 321[...]

  • Página 12

    List of Figures F IGURE 1 - HyperTerminal screen showing the serial settings ................................................................. 24 F IGURE 2 - Prompt indicating the switch model number as well as mode of operation – note the commands to switch between the levels is not shown here. ...................................................[...]

  • Página 13

    F IGURE 25 - Querying the serial port settings ...................................................................................... 41 F IGURE 26 - System parameters using the show setup co mmand. Most parameters here cannot be changed ................................................................................................................[...]

  • Página 14

    F IGURE 49 – Viewing port security settings on a switch. On port 9, learning is enabled. This port has 6 stations connected to it with the MAC addresses as shown. Other ports have learning disabled and the M AC addresse s are not configured on those ports ................................ 68 F IGURE 50 – Enabling learning on a port. Note – aft[...]

  • Página 15

    F IGURE 72 – Example for Tag VLAN ........................................................................................... 118 F IGURE 73 – Editing the VLAN information for enabling or disabling management ......................... 121 Figure 74 – STP default values – refer to next sect ion “Using STP” for more detailed explanation o[...]

  • Página 16

    In case of a connectivity break – the connection switches to the standby path or standby link ............................................................................................................................... ......... 169 F IGURE 95 – Using S-Ring, RS-Ring and dual-homing, it is possible to build networks resilient not only to a s[...]

  • Página 17

    through R6 - irrespective of whether they want to view the surveillance traffic or not. The traffic is compounded when additional cameras are added to the network. End result is that users R1 through R6 see the network as heavi ly loaded and simple day to day operations may appear sluggish. ..........................................................[...]

  • Página 18

    xvii F IGURE 140 – Display of the internal switching decision table ............................................................. 254 F IGURE 141 – Accessing the GarrettCom site for download. ................................................................ 305 F IGURE 142 – Select the proper version to use after successf ul login ............[...]

  • Página 19

    Chapter 1 1 – Con v entions F ollo w ed Conventions followed in the manual… o best use this document, please review some of the conventions followed in the manual, including screen captures, inte ractions and commands with the switch, etc. T Box shows interaction with the switch comma nd line or screen captures from the switch or computer for c[...]

  • Página 20

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Related Topics Related topics show that GarrettCom strongly recommends reading about those topics. You may choose to skip those if you already have prior detailed knowledge on those subjects. j Tool box – Necessary software and hard ware components needed (or recommended to have) as a prerequisi te. These inc[...]

  • Página 21

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Chapter 3 focuses on operational issues of the switch . This includes time synchronization using the command line or using a time server on the network. Chapter 4 through Chapter 6 focuses on security and access consideration. Bad passwords trump any security setup, so setup the manager passwords carefully as d[...]

  • Página 22

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 21 Chapter 15 focuses on IGMP. Chapter 16 focuses on GVRP. Chapter 17 shows how the SNMP para meters can be setup for ma naging the switch with network management software suc h as Castle Rock SNMPc™ Chapter 18 includes miscellaneous commands to improve the overall ease of use and other diagnostic information[...]

  • Página 23

    Chapter 2 2 – Getting Star ted First few sim ple step s … his section explains how the GarrettCom Magnum 6K family of switches can be setup using the console port on the switch. Some of the functionality includes setting up the IP address of the switch, securing the switch with a user name and password, setting up VLAN’s and more. T Bef or e [...]

  • Página 24

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE The same procedure can also be used for other configuration changes or updates – e.g. changing the IP address, VLAN assignments and more. Once the IP address is assigned and a PC is networked to the switch, the switch’s command line interface (CLI) can be accessed via telnet. To manage the switch through in[...]

  • Página 25

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE The interface through the console or the Console Management Interface (or CMI) enables you to reconfigure the switch and to monitor switch status and performance. Once the switch is configured with an IP address, the Command Line Interface (or CLI) is also accessible using telnet as well as the serial port. Acc[...]

  • Página 26

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE The switch has three modes of operation – Operator (least privilege), Manager and Configuration. The prompts for the switches change as the switch changes modes from Operator to Manager to Configurati on. The prompts are shown in Figure 2 below, with a brief explanation of what the different prompts indicate.[...]

  • Página 27

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Should a situation arise when there are mu ltiple new switch es powered up at the same time, there could be a situation of dup licate IP addresses. In this situation, only one Magnum switch will be assigned the IP address of 192.168.1.2 and netmask of 255.255.255.0. The other switches will not be assigned an IP[...]

  • Página 28

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Reboot gives an opportunity to save the configuration prior to shutdown. For a reboot – simply type in the command “reboot ”. (Note – even though the passwords are not changed, they can be changed later.) Magnum6K25# reboot Proceed on rebooting the swit ch? [ 'Y' or 'N' ] Y Do you wi[...]

  • Página 29

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Some of the parameters in the Magnum 6K family of switches are shown above. The list of parameters below indicates some of the key parameters on the switch and the recommendations for changing them (or optionally keeping them the same). Privile ge le v e ls Two privilege levels are available - Manager and Opera[...]

  • Página 30

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Add User To add a user, use the command “add” as shown below. The user name has to be a unique name and can be up to 24 characters long. The password is recommended to be at least 8 characters long with a mix of upper case, lower case, numbers and special characters. Syntax add user=<name> level=<n[...]

  • Página 31

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25(user)## chlevel user=peter level=1 Access Permission Modified Magnum6K25(user)## F IGURE 10 - Changing the privilege levels for a user In this example, user ‘peter’ was modified to Operator privileges. Modify Access Privile ges for a user Syntax useraccess user=<name> service=<t elnet|we[...]

  • Página 32

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Help Typing the ‘ help ’ command lists the commands you can execute at the current privilege level. For example, typing ‘ help ’ at the Operator level shows Magnum6K25> help logout ping set terminal telnet walk mib Contextless Commands: ! ? clear enable exit help show whoami alarm Magnum6K25> F IG[...]

  • Página 33

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Usage show active-stp show active-snmp show active-vlan show address-table show age show alarm show arp show auth <config|ports> show backpressure show bootmode --more-- F IGURE 14 - Options for the ‘show’ command Conte xt help Other ways to display help, specifically, wi th reference to a command or [...]

  • Página 34

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE OR Magnum6K25> se<TAB> password timeout vlan Magnum6K25> set F IGURE 17 - Listing commands options – note the comma nd was not completed and the TAB key completed the command. Exiting To exit from the CLI interface and terminate the console session use the ‘ logout ’ command. The logout comman[...]

  • Página 35

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 34 Syntax passwd user=<name> - changing a password for a user Syntax chlevel user=<name> level=<number> - changing the user privilege level Syntax help <command string> - help for a specific command Syntax command <Enter> - options for a command Syntax <TAB> - listing all com[...]

  • Página 36

    Chapter 3 3 – IP Addr ess and System Inf or ma tion First simple steps to follow … his section explains how the Magnum 6K fam ily of switches can be setup using other automatic methods such as bootp and DHCP . Besides this, other parameters required for proper operation of the switch in a network are discussed. T IP Addressing j It is assumed t[...]

  • Página 37

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 36 To verify the IP address settings, the ‘show ipconfig’ command can be used. Magnum6K25> show ipconfig IP Address : 192.168.1.150 Subnet Mask : 255.255.255.0 Default Gateway : 192.168.1.10 Magnum6K25> F IGURE 19 - Checking the IP settings Besides manually assigning IP addresses, ther e are other mea[...]

  • Página 38

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE ht: is the “hardware type”. For the Magnum 6K family of switches, set this to ether (for Ethernet). This tag must precede the “ ha” ta g. ha: is the “hardware address”. Use th e switch’s 12-digit MAC address ip: is the IP address to be assigned to the switch sm: is the subnet mask of the subnet in[...]

  • Página 39

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE switch is put on a network and the speci fic configurations are loaded from a centralized BootP server Magnum6K25# set bootmode type=dhcp Save Configuration and Restart System Magnum6K25# set bootmode type=aut o Save Configuration and Restart System Magnum6K25# set bootmode type=bootp bo otimg=enable bootcfg=di[...]

  • Página 40

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25# show console Console/Serial Link Inbound Telnet Enabled : Yes Outbound Telnet Enabled : Yes Web Console Enabled : Yes SNMP Enabled : Yes Terminal Type : VT100 Screen Refresh Interval (sec) : 3 Baud Rate : 38400 Flow Control : None Session Inactivity Time (min) : 10 Magnum6K25# F IGURE 22 - Reviewing[...]

  • Página 41

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25# user Magnum6K25(us er)## use raccess user=peter service=telnet enable Telnet Access Enabled. Magnum6K25(us er)## exit Magnum6K25# show session Current Sessions: SL # Session Id Connection User Name User Mode 1 1 163.10.10.14 manager Manager 2 2 163.11.11.15 peter Manager 3 3 163.12.12.16 operator Op[...]

  • Página 42

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Warning – changing these parameters through the serial port will cause loss of connectivity – the parameters of th e terminals software (e.g. Hyper Terminal etc.) will also have to be changed to match the new settings. To see the current settings of the serial port, use the ‘show serial’ command. Magnum[...]

  • Página 43

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25# show sysconfig System Name : Magnum6K25 System Contact : support@garrettcom.com System Location : HO, Fremont, CA Boot Mode : manual Inactivity Timeout(min) : 10 Address Age Interval(min) : 300 Inbound Telnet Enabled : Yes Web Agent Enabled : Yes Time Zone : GMT-08hours:00minutes Day Light Time Rule[...]

  • Página 44

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Da te and time It may be necessary to set the day, time or the time zone manually. This can be done by using the ‘set’ command with the necessary date and time options. These are listed below: Syntax set timezone GMT=[+ or -] hour=<0-14> min=<0-59> Syntax set date year=<2001-2035> month=&l[...]

  • Página 45

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 44 Daylight savings location name : USA Magnum6K25# F IGURE 30 - Setting the system daylight saving time See Appendix 3 for additiona l information on Daylight Savings T ime. The lists of countries for the time zone are Australia, Belgium, Canada, Chile, Cuba , Egypt, France , Finland, Germany, Gree ce, Iraq, I[...]

  • Página 46

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25# sntp Magnum6K25(sntp)## se tsntp server=204.65.129.201 timeout=3 retry=3 SNTP server is added to SNTP server d atabase Magnum6K25(sntp)## sy nc hour=5 Magnum6K25(sntp)## sntp enable Do not forget to enable sntp for time s y nchroniz ation. SNTP is already enabled. Magnum6K25(sntp)## exit Magnum6K25([...]

  • Página 47

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 46 software is updated, it is advised to save the configurations. The re-loading of the configuration is not usually necessary; however, in certain situations it maybe needed and it is advised to save configurations before a software update. The ‘loadconf’ command requires a reboot for the new configuration[...]

  • Página 48

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE [type=<app|config|oldco nf|script|hosts|log>] – optional type field. This is useful to specify whether a log file or host file is uploaded or downloaded. This can also perform the task of exporti ng a configuration file or uploading a new image to the switch [host=<hostname>] [ip=<ipa ddress>[...]

  • Página 49

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Prior to Release 3.2, the configuration was saved only as a binary object (file). With Release 3.2 and beyond, the configuration ca n be saved in the ol der fo rmat – binary object or in a newer format as an ASCII (readable) file. The new format is preferred by GarrettCom and GarrettCom recommends all c onfig[...]

  • Página 50

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE # rights in Technical Data and Computer Software clause at # 52.227-7013. # # This file is provided as a sample template to cre ate a backup # of Magnum 6K switch configurations. As such, this script # provides insights into the configuratio n of Magnum 6K switch's # settings. GarrettCom recommends th at m[...]

  • Página 51

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE computed and stored in the file wi ll not be matched. Should you want to edit, edit the System portion of the file only. GarrettCom recommends editing the “script” file (see below) Note 2 – File names cannot have special characters such as *#!@$^&* space and control characters. To ease the process of [...]

  • Página 52

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Where module-name can be Name Areas affected system IP Configuration, Boot mode, Users settings (e.g. login names, passwords) event Event Log and Alarm settings port Port settings, Broadcast Protection and QoS settings bridge Age time setting stp STP, RSTP, S- Ring and LLL settings ps Port Security settings mir[...]

  • Página 53

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE <additional lines deleted for succinct viewing> F IGURE 37 – ‘ show config’ command output Magnum6K25# show config modu le=snm p [HARDWARE] type=Magnum6K25 slotB=8 Port TP Mod ule ########### ######### ####### ######### ######## ######### ##### # Network Management - This area config ures the SNMPv3[...]

  • Página 54

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE snmp_access=enable web_access=enabl e --more— <additional lines deleted for succinct viewing> F IGURE 39 – displaying configuration for different modules. No te – multiple modules ca n be specified on the command line Er asing configur a tion To erase the configuration and reset the configurations t[...]

  • Página 55

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE tacacs TACACS+ settings auth 802.1x Settings igmp IGMP Settings smtp SMTP settings If the module name is not specified the whole configuration is erased. For example, ‘kill config save=system’ preserves the system IP address, netmask and default gateway. Magnum6K25# kill config save=system Do you want to er[...]

  • Página 56

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE List of commands in this chapter Syntax set bootmode type=<dhcp|bootp|manual |auto> [bootimg=<enable|disable>] [bootcfg=[<enable|disable>] – assign the boot mode for the switch Where <dhcp|bootp|manual|auto> - where dhcp – look only for DHCP servers on the network for the IP address.[...]

  • Página 57

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax set time hour=<0-23> min=<0-59> sec=<0-59> [zone=GMT[+/-]hh:mm] – sets the time (as well as the timezone) Syntax set timeformat format=<12|24> - sets the display time in the 12/24 hour mode Syntax set daylight country=< country name> - sets the daylight saving time Syntax [...]

  • Página 58

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax tftp <get|put> [type=<app|confi g|oldconf|script|hosts|log>] [host=<hostname>] [ip=<ipa ddress>] [file=<filename>] – upload and download information using tftp command Where <get|put> - different tftp operations – get a file from the server or put the information o[...]

  • Página 59

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 58 Syntax show ipconfig – shows IP parameters set Syntax show console – reviews console settings Syntax show serial – reviews serial settings Syntax show setup – reviews system parameters Syntax show sysconfig – reviews settabl e system parameters Syntax show time – shows the system time Syntax show[...]

  • Página 60

    Chapter 4 4 – IPv6 Next generation IP addr essing his section explains how the access to the GarrettCom Magnum MNS-6K can setup using IPv6 instead of IPv4 addressing described earlie r. IPv6 provides a much larger address space and is required today by many. T Assumptions j It is assumed here that the user is familiar with IP addressing schemes a[...]

  • Página 61

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE and IPv6 hosts. The transition to a new vers ion of the Internet Protocol is normally incremental, with few or no critical interdepe ndencies. Most of today's internet uses IPv4, which is now nearly twenty years old. IPv4 has b een remarkably resilient in spite of its age, but it is beginning to have probl[...]

  • Página 62

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE IPv6 Addr essing IPv6 addresses are 128-bits long and are identi fiers for individual interfaces and sets of interfaces. IPv6 addresses of all types are assigned to interfaces, not nodes. Since each interface belongs to a single node, any of th at node's interfaces' unicast addresses may be used as an[...]

  • Página 63

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum 6K25# ipconfig ? ipconfig : Configures the system IP address, subnet mask and gateway Usage ipconfig [ip=<ipaddress>] [mask =<subn et-ma sk>] [dgw=<gateway>] Magnum 6K25# ipconfig ip=fe80::220:6ff:fe25:ed80 mask=ffff:ff ff:ffff:ffff:: Action Parameter Missing. "add" assumed. I[...]

  • Página 64

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax ping6 <IPv6 address> - pings an IPv6 statio n Syntax show ipv6 - displays the IPv6 information Syntax ftp <IPv6 address> - ftp to an IPv6 station Syntax telnet <IPv6 address> - telnet to an IPv6 station 63[...]

  • Página 65

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Chapter 5 5 – Access Consider ations Securing the switch access…. his section explains how the access to the GarrettCom Magnum MNS-6K can be secured. Further security considerations are also covered such as securing access by IP address or MAC address. T Securing access j It is assumed here that the user is[...]

  • Página 66

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE P or t Security The port security feature can be used to bloc k computers from accessing the network by requiring the port to validate the MAC addre ss against a known list of MAC addresses. This port security feature is provided on an Et hernet, Fast Ethernet, or Gigabit Ethernet port. In case of a security vi[...]

  • Página 67

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25# port-security Magnum6K25(port-security )## F IGURE 45 – Port security configuration mode From the port-security configuration mode , the switch can be configured to: 1) Auto-learn the MAC addresses 2) Specify individual MAC addresses to allow access to the network 3) Validate or change the setting[...]

  • Página 68

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Note 1: There is a limitation of 200 MAC addresses per port and 500 MAC addresses per Switch for Port Security. Note 2: All the commands listed above have to be executed under the port-security configuration mode. Syntax clear <history|log [1..5 |informational |activity |critical |fatal |debug] |terminal |ar[...]

  • Página 69

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 10 ENABLE NONE NONE DISABLE 0 Not Configured 11 ENABLE NONE NONE DISABLE 0 Not Configured 12 ENABLE NONE NONE DISABLE 0 Not Configured 13 ENABLE NONE NONE DISABLE 0 Not Configured 14 ENABLE NONE NONE DISABLE 0 Not Configured 15 ENABLE NONE NONE DISABLE 0 Not Configured 16 ENABLE NONE NONE DISABLE 0 Not Configur[...]

  • Página 70

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 00:01:03:e2:27:89 00:07:50:ef:31:40 00:e0:29:22:15:85 00:03:47:ca:ac :45 00:30:48:70:71:23 00:c1:00:7f:ec :00 11 ENABLE NONE NONE ENABLE 0 00:c1:00:7f:ec:00 13 ENABLE NONE NONE DISABLE 0 00:c1:00:7f:ec:00 F IGURE 51 – Allowing specific MAC address on specific po rts. After the MAC addr ess is specified, the p[...]

  • Página 71

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 8) Disable access to the network fo r unauthorized devices (Use ‘action port=11 <diable|drop>’ depending on whether the port should be disabled or the packed dropped. Follow that with a ‘show port-security’ command to verify the setting) 9) (Optional step) Set the notification to notif y the manag[...]

  • Página 72

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25# F IGURE 54 – Steps for setting up port security on a speci fic port Once port security is setup, it is important to manage the log and review the log often. If the signals are sent to the trap receiver, the traps should also be reviewed for intrusion and other infractions. Logs All events occurrin[...]

  • Página 73

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE The ‘show log’ command displays the log information and the ‘clear log’ command clears the log entries. Syntax show log [fatal|alert|crit| error|warn|note|info|debug] – display the log Syntax clear log [fatal|alert|c rit|error|warn|note|info|debug] – clear the log Syntax set logsize size=<1-1000&[...]

  • Página 74

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE F IGURE 55 – Show log and clear log command. The show log command indicates the type of log activity in the S column The log shows the most recent intrusion at the to p of the listing. If the log is filled when the switch detects a new intrusion, the oldest entry is dropped off the listing. As discussed in th[...]

  • Página 75

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax remove ip=<ipaddress> mask=<netmask> - remove specific IP address(s) or subnet Syntax removeall - remove all managers Syntax show ip-access – display list of authorized managers access – context are the access commands allow – allow specified services for specified IP addresses – IP a[...]

  • Página 76

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25# show ip-access ============== ============= ============== ============= ============= ======= IP Address | Mask | Telnet | Web | SNMP | ============== ============= ============== ============= ============= ======= 192.168.5.0 255.255.255.0 ALLOWED DENIED DENIED 192.168.15.25 255.255.255.255 ALLOW[...]

  • Página 77

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 76 Syntax removeall – remove all IP addresses of trusted hosts Syntax show ip-access – display all trusted hosts Syntax clear <history|log [1..5 |informationa l |activity |critical |fatal |debug] |terminal |arp|portstats|addr] – clear command to clear various aspects of the MNS- 6K information – most[...]

  • Página 78

    Chapter 6 6 – Access Using RADIUS Using a RADIUS ser ver to authenticate access…. he IEEE 802.1x standard, Port Based Network Access Control , defines a mechanism for port- based network access control that makes use of the physical access char acteristics of IEEE 802 LAN infrastructure. It provides a means of authenticating and authorizing dev[...]

  • Página 79

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE allowing access to services that are accessible via that port. The authenticator is responsible for communication with the supplicant and for submitting the information received from the supplicant to a suitable authentication server. This allows the verification of user credentials to determine the consequent [...]

  • Página 80

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 79 F IGURE 58 – 802.1x authentication details 1. The supplicant (laptop/host) is initially blocked from accessing the network. The supplicant wanting to access these services starts with an EAPOL-Start frame 2. The authenticator (Magnum 6K switch), upon receiving an EAPOL-start frame, sends a response with an[...]

  • Página 81

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE The Magnum MNS-6K software implements the 802. 1x authenticator. It fully conforms to the standards as described in IEEE 802.1x, implementing all the state machines needed for port- based authentication. The Magnum MNS-6K So ftware authenticator supports both EAPOL and EAP over RADIUS to communicate to a standa[...]

  • Página 82

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE maxreq – [optional] The maximum number of time s the authenticator will retransmit an EAP Request packet to the Supplicant before it times out the authentication session. Its default value is 2. It can be set to any integer value from 1 to 10. Syntax portaccess port=<num|list|range> [q uiet=<0-65535&[...]

  • Página 83

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25(auth)## auth disable 802.1X Authenticator is disabled. Magnum6K25(auth)## au thserver ip=192.168.1.239 secret=secret This command is not necess ary, however is shown for completeness in case there wa s a RADIUS server defined and a previously se t authentication scheme Successfully set RADIUS Aut hen[...]

  • Página 84

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25(auth)## show-port bac kend Port Supp Timeout Server Timeout Max Request (s ec) (sec) ========== ============= ============= ============= 1 30 30 2 2 45 60 5 3 30 30 2 4 30 30 2 5 30 30 2 6 30 30 2 7 30 30 2 8 30 30 2 9 30 30 2 10 30 30 2 11 30 30 2 12 30 30 2 13 30 30 2 14 30 30 2 15 30 30 2 16 30 3[...]

  • Página 85

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25(auth)## show-port reauth Port Reauth Status Reauth Period (sec) ========== ============= ============= ============= 1 Enabled 300 2 Enabled 3600 3 Enabled 3600 4 Enabled 3600 5 Enabled 3600 6 Enabled 3600 7 Enabled 3600 8 Enabled 3600 9 Enabled 3600 10 Enabled 3600 11 Enabled 3600 12 Enabled 3600 13[...]

  • Página 86

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE List of commands in this chapter Syntax auth - configuration mode to conf igure the 802.1x parameters Syntax show auth <config|ports> - show the 802.1x configuration or port status Syntax authserver [ip=<ip-addr>] [ udp=<num>] [secret=<string>] - define the RADIUS server – use UDP sock[...]

  • Página 87

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 86 Syntax reauth port=<num|list|range> [status=<e nable|disable>] [period=<10-86400>] - set values on how the authenticator (Magnum 6K switch) does the re-authentication with the supplicant or PC port – [mandatory] – ports to be configured status – [optional] This enables/disables re-aut[...]

  • Página 88

    Chapter 7 7 – Access Using T ACA CS+ Using a TACACS+ ser ver to authenticate access…. ACACS+, short for Terminal Access Controller Access Control System, protocol provides access control for routers, netwo rk access servers and other n etworked computing devices via one or more centralized servers. TACACS+ pr ovides separate authentication, aut[...]

  • Página 89

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE T ACA CS+ F low TACACS works in conjunction with the local use r list on the MNS-6K software (operating system.) Please refer to User Management for adding users on the MNS-6K software. The process of authentication as well as authoriz ation is shown in the flow chart below. Login User in Local User List? Yes I[...]

  • Página 90

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE is authentication where the user is verified against the network user database. The second stage is authorization, where it is determined whether th e user has operator access or manager privileges. T ACA CS+ Pac k et Packet encryption is a supported and is a configurable option for the Magnum MNS-6K software. [...]

  • Página 91

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax show tacplus <status|servers> - show status of TACACS or servers configured as TACACS+ servers Syntax tacplus <enable|disable> [ or der=<tac,local | local,tac>] - enable or disable TACACS authentication, specifying the order in which the serv er or local database is l ooked up where “[...]

  • Página 92

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE ID TACACS+ Server Port Encrypt Key ========== ============= ============= ============ 1 10.21.1.170 49 Enabled secret 2 10.21.1.123 49 Enabled some 3 -- -- -- -- 4 -- -- -- -- 5 -- -- -- -- Magnum6K25(user)## tacserver delete id=2 TACACS+ server is d elete d. Magnum6K25(user)## show tacplus servers ID TACACS+ [...]

  • Página 93

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 92 [port=<tcp-port>] – [optional for add] TCP port number on which the server is listening [encrypt=<enable|disable>] – [optional for add] enable or disable packet encryption [key=<string>] – [optional for add, mandatory with encrypt] when encryption is enabled, the secret shared key str[...]

  • Página 94

    Chapter 8 8 – P or t Mir r oring and Setup Setup the ports for netw ork speeds , perfor mance as w ell as for monitoring…. his section explains how individual characteris tics of a port on the GarrettCom Magnum 6K family of switches are setup. For monitoring a specific port, the traffic on a port can be mirrored on another port and viewed by pr[...]

  • Página 95

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE The set of commands show how port 11 is mirrored on port 13. Any traffic on port 11 is also sent on port 13. Magnum6K25# show port-mirror Sniffer Port : 0 Monitor Port : 0 Mirroring State : disabled Magnum6K25# port-mirror Magnum6K25(port-mirror)## setpor t monitor=11 sniffer=13 Port 11 set as Monitor Port Port[...]

  • Página 96

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE speed – specifically sets the speed to be 10 or 100Mbps. Note – this works only with 10/100 ports – with 10Mbps ports, the option is ignored. No error is shown. See speed settings section below. flow – sets up flow control on the port. See Flow Control section below bp – back pressure – enables back[...]

  • Página 97

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE with the 802.3u standard, then the port conf iguration on the switch must be manually set to match the port configuration on the other device. Possible port setting combinations for copper ports are: • 10HDx: 10 Mbps, Half-Duplex • 10FDx: 10 Mbps, Full-Duplex • 100HDx: 100 Mbps, Half-Duplex • 100FDx: 10[...]

  • Página 98

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE where xonlimit can be from 3 to 30, default value is 4 xofflimit from 3 to 127, default value is 6 Syntax show flowcontrol Bac k Pr essur e Back Pressure is for half duplex operations and the controls provided indicates the number of buffers allowed for incoming traffic before a xon/xoff message is sent. Disabl[...]

  • Página 99

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25# device Magnum6K25(device)## show flowcontrol XOnLimit : 4 XOffLimit : 6 Magnum6K25(device)## flowcontrol xonlimit=10 xofflimit=15 XOn Limit set successf ully XOff Limit set success fully Magnum6K25(device)## show flowcontrol XOnLimit : 10 XOffLimit : 15 Magnum6K25(device)## show backpressure Rx Buff[...]

  • Página 100

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Port Flow Control : Disable Port Back Pressure : Disable Magnum6K25(device)## setport port=11 flow=enable bp=enable Magnum6K25(device)## show port Keys: E = Enable D = Disable H = Half Duplex F = Full Duplex M = Multiple VLAN's NA = Not Applicable LI = Listening LE = Learning F = Forwarding B = Blocking Po[...]

  • Página 101

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Pr e v enting br oadcast stor ms The Magnum 6K family of switches is capa ble of detecting and limiting storms on each port. A network administrator can also set the maximum rate of br oadcast packets (frames) that are permitted from a partic ular interface. If the maximum number is exceeded, a storm condition [...]

  • Página 102

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 16 Enabled 19531 0 NO Magnum6K25(de vice)## rate-threshold port=11 rate=3500 Broadcast Rate Threshold set Magnum6K25(de vice)## show broadcast-prote ct ======================= ==================== ==================== ======= PORT | STATUS | THRESHOLD (frms/sec) | CURR RATE (frms/sec) | ACTIVE =================[...]

  • Página 103

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 102 Syntax show flowcontrol – display flow control buffers Syntax backpressure rxthreshold=<value> - configure backpressure b uffers Syntax show backpressure – display backpressure buffers Syntax broadcast-protect <enable|disable> - protect switch from broadcast storms Syntax rate-threshold port[...]

  • Página 104

    103 9 – VLAN Cr eate se parate network segments (collision domains) acr oss Magnum 6K family of switches….. hort for virtual LAN (VLAN) , a VLAN creat es separate collision domains or network segments that can span multiple Magnum 6K fam ily of switches. A VLAN is a group of ports designated by the switch as belonging to the same broadcast doma[...]

  • Página 105

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 104 A group of network users (ports) assigned to a VLAN form a broadcast domain. Packets are forwarded only between ports that are de signated for the same VLAN. Cross-domain broadcast traffic in the switch is elimina ted and bandwidth is saved by not allowing packets to flood out on all ports. For many reas on[...]

  • Página 106

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 105 F IGURE 69 – routing between different VLANs is perfor med usi ng a router or a Layer 3 switch (L3- switch) The Magnum 6K family of switches supports up to 32 VLANs per switch T a g VLAN or P or t VLAN? What is the difference between tag and port VL AN? In a nutshell – the term port vlan is specific to [...]

  • Página 107

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE In the tag VLAN, an identifier called the VLAN identifier (VID) is either inserted or manipulated. This manipulated VLAN tag allows VLAN info rmation to be propagated across devices or switches, allowing VLAN information to span multiple switches. As described earlier, VLAN is an administrative ly configured LA[...]

  • Página 108

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE The reasons Private VLANs are constructed are fo r security. For example, if some confidential data were residing on VLAN 5, then only the people connected to that switch on VLAN 5 can have access to that information. No one else can access that VLAN. Similarly, if another switch had video surveillance equipmen[...]

  • Página 109

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE VLAN Configuration Syntax configure vlan type=port OR Syntax vlan type=port Adding VLANs Syntax add id=<vlan Id> [name=<v lan na me>] port=<number|list|range> [forbid=<number|list|range>] [<mgt|nomgt>] Disabling Management on VLAN Use the <nomgt> option when creating a VLAN a[...]

  • Página 110

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE interaction shows how VLANs 10, 20 , 30 are added to port 14 and th e VLANs activated. A typical use for such a port would be to connect a “dumb” switch to this port and allow traf fic from three different VLANs to pass through tra nsparently to the “dumb” switch, which will be connected to port 14. Not[...]

  • Página 111

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE VLAN ID : 10 Name : engineering Status : Pending ======================= = PORT | STATUS ======================= = 14 | DOWN VLAN ID : 20 Name : sales Status : Pending ======================= = PORT | STATUS ======================= = 14 | DOWN VLAN ID : 30 Name : marketing Status : Pending =====================[...]

  • Página 112

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Status : Active ======================= = PORT | STATUS ======================= = 14 | DOWN VLAN ID : 30 Name : marketing Status : Active ======================= = PORT | STATUS ======================= = 14 | DOWN Magnum6K25(por t-vlan)## exit Magnum6K25# F IGURE 71 – Example of setting up port based VLANs Us[...]

  • Página 113

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax set-port port=<number|list |range> leave id=<number> releases a specific port from a VLAN. For example if port 1 belongs to VLAN 10, 20, 30, 40 the command set-port port=1 leave id=40 makes port 1 belong to VLAN 10, 20, 30, dropping VLAN 40 Syntax show-port [port=<port|list|range>] show[...]

  • Página 114

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE VLAN ID: 10 Name : engineering Status : Active ========== ============= = PORT | STATUS ========== ============= = 14 | DOWN VLAN ID: 20 Name : sales Status : Active ========== ============= = PORT | STATUS ========== ============= = 14 | DOWN VLAN ID: 30 Name : marketing Status : Active ========== ============[...]

  • Página 115

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 11 | UNTAGGED | DOWN 12 | UNTAGGED | DOWN 13 | UNTAGGED | UP 14 | UNTAGGED | DOWN 15 | UNTAGGE D | DOWN 16 | UNTAGGE D | DOWN Magnum6K25# vlan type=tag Magnum6K25(tag-vlan)## add id=10 name=mkt port=14-16 Tag based vlan Added Successfully. Vlan id :10 Vlan name : mkt Ports :14-16 Magnum6K25(tag-vlan)## edit id=[...]

  • Página 116

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 12 | UNTAGGED | DOWN 13 | UNTAGGED | UP 14 | UNTAGGED | DOWN 15 | UNTAGGE D | DOWN 16 | UNTAGGE D | DOWN VLAN ID: 10 Name : engineering Status : Pending ---------- -------------- ---------------- ------------ PORT | MODE | STATUS ---------- -------------- ---------------- ------------ 14 | UNTAGGE D | DOWN 15 |[...]

  • Página 117

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Do you want to continue? [ 'Y' or 'N'] Y WARNING: PVID does not match the port(14)'s VLAN ID(s). If you are us ing telnet session on this port, setting ingress might stop the session. Do you want to continue? [ 'Y' or 'N'] Y WARNING: PVID does not match the port(16)&[...]

  • Página 118

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE VLAN ID: 30 Name : marketing Status : Active ---------- -------------- ---------------- ------------ PORT | MODE | STATUS ---------- -------------- ---------------- ------------ 14 | UNTAGGE D | DOWN 15 | UNTAGGE D | DOWN 16 | UNTAGGED | DOWN Magnum6K25(tag-vlan)## set-port port=14-16 tagging id=10 status=tagge[...]

  • Página 119

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE ---------- -------------- ---------------- ------------ PORT | MODE | STATUS ---------- -------------- ---------------- ------------ 14 | TAGGED | DOWN 15 | TAGGED | DOWN 16 | TAGGED | DOWN VLAN ID: 30 Name : marketing Status : Active ---------- -------------- ---------------- ------------ PORT | MODE | STATUS [...]

  • Página 120

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum 6K25(tag-vl an)## add id= 5 name=engineering port=10-14 Tag based vlan Added Successfully. Vlan id :5 Vlan name : engineering Ports :10-14 Magnum 6K25(tag-vl an)## add id= 10 name=marketing port=15,16 nomgt Tag based vlan Added Successfully. Vlan id :10 Vlan name : marketing Ports :15,16 Magnum 6K25(tag-[...]

  • Página 121

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Name : marketing Status : Pending Management Port Excluded from this VLAN ---------- -------------- ---------------- ------- PORT | MODE | STATUS ---------- -------------- ---------------- ------- 15 | UNTAGGED | DOWN 16 | UNTAGGED | DOWN Magnum 6K25(tag-vl an)## edit id= 5 port=14 nomgt Tag based vlan edited S[...]

  • Página 122

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 1 | UNTAGGED | UP 2 | UNTAGGED | DOWN 3 | UNTAGGED | DOWN 4 | UNTAGGED | DOWN 5 | UNTAGGED | DOWN 6 | UNTAGGED | DOWN 7 | UNTAGGED | DOWN 8 | UNTAGGED | DOWN 9 | UNTAGGED | DOWN 10 | UNTAGGED | DOWN 11 | UNTAGGED | DOWN 12 | UNTAGGED | DOWN 13 | UNTAGGED | DOWN 14 | UNTAGGED | DOWN 15 | UNTAGGED | DOWN 16 | UNT[...]

  • Página 123

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 122 Syntax configure vlan type=port enter the VLAN configuration commands Syntax vlan type=port enter the VLAN configuration commands Syntax add id=<vlan Id> [name=<v lan na me>] port=<number|list|range> [forbid=<number|list|range>] [<mgt|nomgt>] - adding VLAN Syntax edit id=<vl[...]

  • Página 124

    Chapter 10 10 – Spanning T r ee Pr otocol (STP) Cr eate and manage alter nate paths to the netw ork panning Tree Protocol was designed to avoi d loops in an Ethernet network. An Ethernet network using switches can have redundant pa ths – this may however cause loops and to prevent the loops MNS-6K software uses spanni ng tree protocol. As a man[...]

  • Página 125

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Variable or Attribute Default Value STP capabilities Disabled reconfiguring general operation priority 32768 Bridge maximum age 20 seconds Hello time 2 seconds Forward delay 15 seconds Reconfiguring per-port STP path cost 0 Priority 32768 Mode Normal Monitoring of STP Not Available Root Port Not set Figure 74 ?[...]

  • Página 126

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Bridge Hello Time : 2 Bridge Max Age : 20 Root Port : 0 Root Path Cost : 0 Designated Root : 80:00:00:20:06:25:ed:80 Designated Root Priority : 32768 Root Bridge Forward Delay : 15 Root Bridge Hello Time : 2 Root Bridge Max Age : 20 RSTP CONFIGURATION ------------ ----- Rapid STP/STP Enabled(Global) : NO Magnum[...]

  • Página 127

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Designated Root : shows the MAC address of the bridge in the network elected or designated as the root bridge. Normally when STP is not enabled the switch designates itself as the root switch Designated Root Priority : shows the designated root brid ge’s priority. Default value is 32768 Root Bridge Forward De[...]

  • Página 128

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Priority: STP uses this to determine which por ts are used for forwarding. Lower the number means higher priority. Value ranges from 0 to 255. Default is 128 Path Cost: This is the assigned port cost value used for the switch to determine the forwarding points. Values range from 1 to 65535 State: indicates the [...]

  • Página 129

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE STP CONFIGURATION ------------ ----- Spanning Tree Enabled(Global) : YES Spanning Tree Enabled(Ports) : YES, 9,10,11,12,13,14,15,16 Protocol : Normal STP Bridge ID : 80:00:00:20 :06:25:ed:80 Bridge Priority : 32768 Bridge Forward Delay : 15 Bridge Hello Time : 2 Bridge Max Age : 20 Root Port : 0 Root Path Cost [...]

  • Página 130

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Priority : specifies the switch (bridge) priority va lue. This value is used along with the switch MAC address to determine which switch in the network is the root device. Lower values mean higher priority. Value ranges from 0 to 65535. Default value is 32768 Cost : A path cost is assigned to individual ports f[...]

  • Página 131

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE STP Port Configuration ---------- -------------- ---------------- -------------- ---------------- ---------------- -------------- ---------------- ---- Port# Type Priority Path Cost State Des. Bri dge Des. Port ---------- -------------- ---------------- -------------- ---------------- ---------------- ---------[...]

  • Página 132

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 14 TP(10/100) 128 100 Disabled 80:00:00:20:06:25:ed:80 80:0e 15 TP(10/100) 128 100 Disabled 80:00:00:20:06:25:ed:80 80:0f 16 TP(10/100) 128 100 Disabled 8 0:00:00:20:06:25:ed:80 80:10 Magnum6K25(stp)## priority value= 15535 Successfully set the bridge priority Magnum6K25(stp)## show stp config STP CONFIGURATION[...]

  • Página 133

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Setting cost for STP...Successfully set the path cost for port 13 Magnum6K25(stp)## show stp ports STP Port Configuration ---------- -------------- ---------------- -------------- ---------------- ---------------- -------------- ---------------- ---- Port# Type Priority Path Cost State Des. Bri dge Des. Port --[...]

  • Página 134

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25(stp)## show stp config STP CONFIGURATION ------------ ----- Spanning Tree Enabled(Global) : YES Spanning Tree Enabled(Ports) : YES, 9,10,11,12,13,14,15,16 Protocol : Normal STP Bridge ID : 80:00:00:20:06:25:ed:80 Bridge Priority : 15535 Bridge Forward Delay : 15 Bridge Hello Time : 2 Bridge Max Age :[...]

  • Página 135

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 134 RSTP CONFIGURATION ------------ ----- Rapid STP/STP Enabled(Global) : NO Magnum6K25(stp)## F IGURE 78 – Configuring STP parameters List of commands in this chapter Syntax show stp <config|ports > - regardless of whether STP is enabled or disabled (def ault) this command lists the switch’s full STP[...]

  • Página 136

    Chapter 11 11 – Rapid Spanning T r ee Pr otocol (RSTP) Cr eate and manage alter nate paths to the netw ork apid Spanning Tree Protocol (RTSP), like STP, was designed to avoid loops in an Ethernet network. Rapid Spanning Tree Protocol (RSTP) (IEEE 802.1w) is an evolution of the Spanning Tree Protocol (STP) (802.1d standard ) and provides for faste[...]

  • Página 137

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE RSTP switches (bridges) generate their ow n configuration messages, even if they fail to receive one from the root bridge. This leads to quicker failure detection • RSTP offers edge port recognition, allowi ng ports at the edge of the network to forward frames immediately after activa tion while at the same t[...]

  • Página 138

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE GarrettCom recommends that all your network devices be updated to support RSTP. RSTP offers convergence times typically of less than one second. However, to make best use of RSTP and achieve the fastest possible convergence times there are some changes that you should make to the RSTP default configuration. 1. [...]

  • Página 139

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax port port=<number|list|range> [status=<enable|disable>] [migration=<enable>] [edge=<enable|disable>] [p2p=<on|off|auto>] Example port port=<number|list|range> p2p= off - Set the “point-to-point” value to off on all ports that are connected to shared LAN segments (i[...]

  • Página 140

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Designated Root Priority : 0 Root Bridge Forward Delay : 15 Root Bridge Hello Time : 02 Root Bridge Max Age : 20 Topology Change count : 0 Time Since topology Chg : 12 F IGURE 79 – Enabling RSTP and reviewing the RSTP variables The variables listed by the “ show stp config ” command are: Rapid Spanning Tr[...]

  • Página 141

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Root Bridge Forward Delay : indicates the designated root brid ge’s forward delay. This is the time the switch waits before it switches from the listening to the forwarding state. The default is 15 seconds. This value can be set between 4-30 seconds Root Bridge Hello Time : indicates the designated root bridg[...]

  • Página 142

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Port Type STP Path cost RSTP Path cost 10 Mbps 100 2,000,000 100 Mbps 19 200,000 1 Gbps 4 20,000 10 Gbps 2 2,000 Figure 81 – Path cost as defined in IEEE 802.1d (STP) and 802.1w (RSTP) State: indicates the STP state of individual ports. Va lues can be Listening, Learning, Forwarding, Blocking and Disabled. De[...]

  • Página 143

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE connected to other switches. From the state column, it indicates that port 7 is in a standby state as that port is discarding all traffic. More CLI commands associated with RSTP in the RSTP configuration mode are: Syntax forceversion <stp|rstp> - set the STP or RSTP compatibility mode Syntax show-forcever[...]

  • Página 144

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Age : This is the maximum time a message with STP information is allowed by the switch before the switch discards the information and updates the address table again. Value ranges from 6 to 40 seconds with default value of 20 seconds Magnum6K25# rstp Magnum6K25(rstp)## show stp config RSTP CONFIGURATION -------[...]

  • Página 145

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE ---------- -------------- ---------------- -------------- ---------------- ---------------- -------------- --------------- Port# Type Priority Path Cost State Des. Bridge Des. Port ---------- -------------- ---------------- -------------- ---------------- ---------------- -------------- --------------- 09 TP(10[...]

  • Página 146

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE ------------ ----- Rapid STP/STP Enabled(Global) : YES RSTP/STP Enabled Ports : 9,10,11,12,13,14,15,16 Protocol : Normal RSTP Bridge ID : 00:00:00:20:06:25:ed:89 Bridge Priority : 0 Bridge Forward Delay : 15 Bridge Hello Time : 02 Bridge Max Age : 20 Root Port : 0 Root Path Cost : 0 Designated Root : 00:00:00:2[...]

  • Página 147

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 12 TP(10/100) 128 2000000 Disabled 00:0c 13 TP(10/100) 100 200000 Forwarding 00:00:00:20:06:25:ed:89 00:0d 14 TP(10/100) 128 2000000 Disabled 00:0e 15 TP(10/100) 128 2000000 Disabled 00:0f 16 TP(10/100) 128 2000000 Disabled 00:10 Magnum6K25(rstp)## cost port=13 value=2 50000 Magnum6K25(rstp)## show stp ports RS[...]

  • Página 148

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 11 TP(10/100) 128 2000000 Disabled 00:0b 12 TP(10/100) 128 2000000 Disabled 00:0c 13 TP(10/100) 100 250000 Forwarding 00:00:00:20:06:25:ed:89 00:0d 14 TP(10/100) 128 2000000 Disabled 00:0e 15 TP(10/100) 128 2000000 Disabled 00:0f 16 TP(10/100) 128 2000000 Disabled 00:10 Magnum6K25(rstp)## timers forward-delay=2[...]

  • Página 149

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 148 Syntax port port=<number|list|range> [status=<enable|disable>] [migration=<enable>] [edge=<enable|disable>] [p2p=<on|off|auto>] - set the port type for RSTP Example port port=<number|list|range> p2p= off - Set the “point-to-point” value to off on all ports that are co[...]

  • Página 150

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Chapter 12 12 – RS-Ring™, S-Ring™ and Link- Loss-Lear n™ (LLL) Speed up r ecover y fr om faults in Ether net netw orks -Ring and RS-Ring use ring topology to prov ide fast recovery from faults. These are based on industry standard STP and RSTP technologies. These technologies have been adapted to ring r[...]

  • Página 151

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE • The ring is made up of devices which are managed switches only from Magnum 6K family of switches • Each of the switches in the ring topology are configured for RSTP • The RS-Ring product license key is conf igured on each switch in the ring S-Ring and LLL concepts S-Ring is built upon networking softwar[...]

  • Página 152

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 1. The S-Ring feature is a separately licen sed module for the MNS-6K software package. This module must be enabled by means of a software key 2. Only one switch is the “Ring Master”. That switch has S-Ring Software authorized (enabled) for that device. Thus only one license key is needed per ring (and not [...]

  • Página 153

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 152 4. The same license key needs to be config ured for each switch on the ring and RS-Ring capability has to be enabled on all switches (and hence all the devices in the ring have to be a managed Magnum 6K switches) 5. RS-Ring topologies support one failure in the network. The second failure may create isolate[...]

  • Página 154

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Comparing r esilienc y methods So far we have briefly covered S-Ring with LLL, RS-Ring, RSPT as well as STP. The table below summarizes some decision criteria on selecti ng RSPT vs STP vs S-Ring (and LLL) vs RS-Ring. RS-Ring S-Ring with LLL RSTP STP License Same license key as S-Ring. One license key needs to b[...]

  • Página 155

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE RS-Ring S-Ring with LLL RSTP STP Resiliency Fast recovery from a single point of failure. No centralized decision making Fast recovery from a single point of failure. Ring Master is responsible for decision making Multiple points of failure – each connected node can be in stand-by Multiple points of failure ?[...]

  • Página 156

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE F IGURE 84 – Normal RSTP/STP operations in a series of sw itches. Note – this normal status is designated RING_CLOSED BPD U T ra f fi c Forwarding Port Block ing Port BPD U T ra f fi c Forwarding Port Block ing Port This normal status is designated as RING_CLOSED. Operations will continue this way indefinit[...]

  • Página 157

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 156 F IGURE 85 – A fault in the ring interrupts traffic. The bl ocking port now becomes forwarding so that traffic can reach all switches in the network Note – the mP62 as well as the ESD42 switches support LLL and can participate in S-Ring as an access switch When this change is made by RSTP/STP and bot h [...]

  • Página 158

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE F IGURE 86 – More than one S-Ring pair can be selected an d more than one S-Ring can be defined per switch. Note – the mP62 as well as the ESD42 sw itches support LLL and can pa rticipate in S-Ring as an access switch Ring 1 Ring 2 Ring 1 Ring 2 More than one S-Ring port-pair may be selec ted per ring contr[...]

  • Página 159

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE through the two strings for all normal LAN tra ffic to move as needed to maintain LAN operations. When the fault is cured, the re-emergence of th e ring structure enables the BPDU packets to flow again between the ring’s port-pair. This is recognized by S-Ring (and RSTP/STP) as well as by RS-Ring (and RSTP) ,[...]

  • Página 160

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Configuring S-Ring S-Ring is a licensed software feature from GarrettCom Inc. Before using the S-Ring capabilities; authorize the use of the software with the license key. To obtain the license key, please contact GarrettCom Inc. Sales (for purchasing the S-Ring feature) or Technical Support (to obtain the 12 c[...]

  • Página 161

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Ports associated with S-Ring should have the following settings • Auto negotiation - disable • Speed - Fixed • Same Speed • Same Duplex and • LLL - enable The necessary commands are Syntax stp – STP Configuration mode Syntax stp <enable|disable> - Start (Enable) or stop (Disable) ST P Syntax s[...]

  • Página 162

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Port 1 Port 2 Status Magnum6K25(stp)## s-ring add port=1,7 Ports 1 and 7 Configured f or sRing O peration Magnum6K25# show s-ring Magnum Ring Status: sRing Status: ENABLED Port 1 Port 2 Status 1 7 CLOSED F IGURE 88 – S-Ring configuration commands for root switch If the BPDU stream is broken, or it finds the L[...]

  • Página 163

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 162 Magnum6K25# stp Magnum6K25(stp)## lll enable Link-Loss-Learn Enabled. Magnum6K25(stp)## lll a dd port=1,2,3 Added Ports: 1,2,3 Magnum6K25(stp)## show lll Link-Loss-Learn Status: LLL Status: ENABLED LLL Enabled on Ports: 1,2,3 Magnum6K25(stp)## lll d el port=2,3 Deleted Ports: 2,3 Magnum6K25(stp)## lll d isa[...]

  • Página 164

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE F IGURE 90 – More than one RS-Ring cannot be define d per managed Magnum 6K switch. Note – unmanaged switches cannot participate in RS -Ring. Ring 1 Ring 2 Ring 1 Ring 2 The port-pairs may be of any media type, and th e media type does not have to be the same for the pair. With the Magnum 6K family of switc[...]

  • Página 165

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Rings are simple structures. Either one port of a pair is forwarding or both are. Not complicated; not much to go wrong. Configuring RS-Ring RS-Ring is a licensed software feature from GarrettCom Inc. Before using the RS-Ring capabilities; authorize the use of the software with the S-Ring license key. The same [...]

  • Página 166

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax rstp <enable|disable> - Start (Enable) or stop (Disable) STP Syntax set stp type=<stp|rstp> - set the spanning tree protocol to be IEEE 802.1w (Rapid Spanning Tree Protocol) Syntax show active-stp – Display which version of STP is currently active Syntax show rs-ring – show the status of [...]

  • Página 167

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum 6K25( rstp)## rs-ring enable RS-RING enabled. Magnum 6K25( rstp)## show rs-ring RS-RING status : Enabled RS-RING set on p orts : 13,14 Magnum 6K25( rstp)## rs-ring disable RS-RING disabled. Magnum 6K25( rstp)## rs-ring del port=13,14 Deleted Ports: 13,14 Magnum 6K25( rstp)## show rs-ring RS-RING status :[...]

  • Página 168

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 167 Syntax s-ring del port=<port1,port2> - remove the switch from S-Ri ng topology by eliminating the end ports on the switch Syntax lll <enable|disable> - enable or disable LLL on the switc h Syntax lll add port=<port|list|range> - enable LLL on the list of specified ports Syntax lll del port[...]

  • Página 169

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Chapter 13 13 – Dual-Homing F ault tolerance options for edge de vices esigning and implementing high-availa bility Ethernet LAN topologies in networks can be challenging. Traditi onally, the choices for redundancy for edge of the network devices were too limited, too expensive, and too complicated to be cons[...]

  • Página 170

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE F IGURE 93 – Dual-homing using ESD42 switch and Magnum 6K family of switches. In case of a connectivity break – the connection switch es to the standby path or standby link = Active li nk = Standby Link In those situations where the end device is a PoE device (for example, a video surveillance camera, as sh[...]

  • Página 171

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 170 switches upstream. With MNS-6K, the user has to define the set of ports which m ake up the dual-home ports. F IGURE 95 – Using S-Ring, RS-Ring and dual-homing, it is possible to build networks resilient not only to a single link failure but also fo r one device failing on the network The following points [...]

  • Página 172

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Dual-Homing Modes There are two modes in which the dual-homing works. The first one is where the ports are “equivalent” i.e. if one port fa ils, the other one take over, however, if the first (failed) port recovers, the active port does not switch back. The second mode of operation is primary-sec ondary mod[...]

  • Página 173

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum 6K25# dualhome ? dualhome : Configures Dual homing Usage dualhome <enter> Magnum 6K25# show dualhome Dual Homing Status : DISABLED Magnum 6K25# dualhome Magnum 6K25(dualhome)## d ualhome add port1=10 port2=11 Dual Homing Ports configured Magnum 6K25(dualhome)## d ualhome enable Dual Homing Enabled.[...]

  • Página 174

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 173 List of commands in this chapter Syntax dualhome – enter the dual-homing configuration sub-system Syntax dualhome <enable|disable> – enable or disable dual- homing Syntax dualhome add port1=<p ort#> port2=<port#> – dual-homing setup similar to that of unmanaged switches such as ESD42[...]

  • Página 175

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Chapter 14 14 – Link Ag g r e gation Control Pr otocol (LA C P) Incr ease Network thr oughput and r eliability ink aggregation Link Aggregation Control Pr otocol (LACP) is part of an IEEE specification (IEEE 802.3ad) that allows several physical ports to be grouped or bundled together to form a single logical[...]

  • Página 176

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE The performance is improved because the capacity of an aggregated link is higher than each individual link alone. 10Mbps or 10/100Mbps or 100Mbps ports can be grouped together to form one logical link. Instead of adding new hardware to increase speed on a trunk – one can now use LACP to incrementally increase[...]

  • Página 177

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE F IGURE 97 – Some valid LACP configurations. Should trunks be created so as to span mu ltiple ports, a “tru nk mismatch” error message is printed on the console. An example of an incorrect configuration is shown below. F IGURE 98 – an incorrect LACP connection scheme for Magnum 6K family of switches. Al[...]

  • Página 178

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE F IGURE 99 – In this figure, even though the connections are fr om one module to another, this is still not a valid configuration (for LACP using 4 ports) as the trunk group belongs to two different VLANs. VLAN 20 VLAN 10 Switch 2 Switch 1 However – on each switch, the set of ports can belong to same VLANs [...]

  • Página 179

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE F IGURE 101 – This configuration is similar to the prev ious configuration, except there is a common VLAN (VLAN 1) between the two sets of LAC P ports. This is a valid configuration. VLAN 1,10 VLAN 1,20 Switch 2 Switch 1 Switch 3 Switch 2 Switch 1 F IGURE 102 – In the architecture above, using RSTP and LAC [...]

  • Página 180

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 179 Using the Magnum edge switch with dual-homing allows the edge devices to have link level redundancy as well – bringing the fault tolerance from the network to the edge. F IGURE 103 – LACP, along with RSTP/STP brings redund ancy to the network core or backbone. Using this reliable core with a dual -homed[...]

  • Página 181

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE F IGURE 104 – This architecture is not recommende d S-Rin g 2 S-Rin g 1 LACP can be used for creating a reliable ne twork between two fac ilities connected via a wireless bridge. As shown in the figure belo w, four trunk ports are connected to four wireless bridge pairs. This increases the e ffective throughp[...]

  • Página 182

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 181 F IGURE 105 – Creating a reliable infrastruc ture using wireless bridges (bet ween two facilities) and LACP. “A” indicates a Wi-Fi wireless Bridge or other wireless Bridges. The list of commands to c onfigure, edit and manage LACP on the Magnum 6K family of switches is the following: Syntax lacp - ena[...]

  • Página 183

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Some other definitions a re worth noting are primary port. Primary port is the port over which specific traffic like Mu lticast (IGMP), unknown Unicast and broadcast traffic is transm itted. As shown by the add port command, the port with the lowest priority value has the highest priority and is designated a s [...]

  • Página 184

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Port Priority Trunk ========== =========== 13 32768 Link Down 14 32768 Link Down 15 32768 Link Down Magnum 6K25(lacp)## add port=12 Port(s) added succ es sfully. Magnum 6K25(lacp)## show lacp Orphan Ports: Port Priority Trunk ========== =========== 12 32768 Link Down 13 32768 Link Down 14 32768 Link Down 15 327[...]

  • Página 185

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Trunk Mismatch The other s witch sent a BPDU which did not match the trunk information associated with this por t. This happens when the port is connected to a different switch, or a different module in the Magnum 6K switch The output of the LACP command in the network shown below F IGURE 107 – The network fo[...]

  • Página 186

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 185 Trunk Partner : 00:20:06:25:72:90 Member Ports: Port Priority Trunk ========== =========== 17 32768 Primary Port 23 32768 Member Port F IGURE 108 – LACP information over a network List of commands in this chapter Syntax lacp - enable the LACP configur ation module within CLI Syntax lacp <enable | disab[...]

  • Página 187

    Chapter 15 15 – Quality of Ser vice Prioritize traf fic in a netw ork uality of Service (QoS) refers to the capa bility of a network to provide different priorities to different types of traffic. Not all traffic in the network has the same priority. Being able to differentiate different types of traffic and allowing this traffic to accelerate thr[...]

  • Página 188

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE the packet into one of the two qu eues, and depending on the precedence levels the queue could be rearranged to meet the QoS requirements. QoS refers to the level of preferential tr eatment a packet recei ves when it is being sent through a network. QoS allows time sensitive packets such as voice and video, to [...]

  • Página 189

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE IP Pr ecedence IP Precedence utilizes the three pr ecedence bits in the IPv4 head er's Type of Service (ToS) field to specify class of service for each packet. You can partition traffic in up to eight classes of service using IP precedence. The queuing technologies throughout the network can then use this [...]

  • Página 190

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Not all packets received on a port have high priority. IGMP and BPDU packets have high priority by default. The Magnum 6K family of switches has the capability to set the priorities based on three different functions. They are Port QoS : assigns a high priority to all packets received on a port, regardless of t[...]

  • Página 191

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax set-weight weight=<0-7> - sets the port priority weight for All the ports. Once the weight is set, all the ports will be the same weight across the switch. The valid value for weight is 0-7. A weight is a number calculated from the IP precedence setting for a packet. This weight is used in an algor[...]

  • Página 192

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax show qos [type=<port|tag|tos>] [port=<port|list|range>] – displays the QoS settings Sometimes it is necessary to change the prio rity of the packets going out of a switch. For example, when a packet is received untagged and has to be transmitted with an addition of the 802.1p priority tag, [...]

  • Página 193

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE ========== ============= ========= PORT | PRIORITY | STATUS ========== ============= ========= 9 | Low | UP 10 | High | DOWN 11 | Low | DOWN 12 | Low | DOWN 13 | Low | UP 14 | Low | DOWN 15 | Low | DOWN 16 | Low | DOWN Magnum6K25(qos)## setqos port=11 priority =high type=tag tag=6 Successfully set QOS . Magnum6[...]

  • Página 194

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 9 | | UP 10 | | DOWN 11 | 6 | DOWN 12 | 5 | DOWN 13 | | UP 14 | | DOWN 15 | | DOWN 16 | | DOWN Magnum6K25(qos)## show-portweight Port priority Weight set to 1 High : 1 Low. Magnum6K25(qos)## set-weight weight=4 The queue behavior is set so that for 8 high priority packets, 1 low priority pack et is sent out Mag[...]

  • Página 195

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 194 Syntax show qos [type=<port|tag|tos>] [port=<port|list|range>] – displays the QoS settings Syntax set-untag port=<port|list|range> priority=<high|low> t ag=<0-7> - The 802.1p user priority assigned to untagged received packets to be transmitted as tagged from the priority que[...]

  • Página 196

    195 16 – IGMP Multicast traf fic on a netw ork nternet G roup M anagement P rotocol (IGMP) is defined in RF C 1112 as the standard for IP multicasting in the Internet. It is used to establish host memberships in particular multicast groups on a single network. The mechanisms of the protocol allows a host to inform its local router, using Host Mem[...]

  • Página 197

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE The creation of transient groups and the maintenance of group membership information is the responsibility of "multicast agents", entities th at reside in internet gateways or other special- purpose hosts. There is at least one multicast agen t directly attached to every IP network or sub- network tha[...]

  • Página 198

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE F IGURE 113 – IGMP concepts – advantages of using IGMP • PCs 1 and 4, switch 2, and all of the routers are members of an IP multicast group. (The routers operate as queriers.) • Switch 1 ignores IGMP traffic and does not distinguish between IP multicast group members and non-members. Thus, it is sending[...]

  • Página 199

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE The next figure (below) shows a network running IP multicasting using IGMP without a multicast router. In this case, the IGMP-configured switch runs as a querier. PCs 2, 5, and 6 are members of the same IP multicast group. IGMP is configured on switches 3 and 4. Either of these switches can operate as querier b[...]

  • Página 200

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE groups in the IP address range of 224.0.0.0 to 224.0.0.255 will always be flooded because addresses in this range are “well known” or “reser ved” addresses. Thus, if IP Multicast is enabled and there is an IP multicast group within the rese rved address range, traffic to that group will be flooded inste[...]

  • Página 201

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE For a Layer 2 IGMP environment, all Magnum 6K fa mily of switches have to be enabled in the IGMP-L2. This is done using the CLI command 'set igmp mode=l2' which will be described later. In a Layer 2 network, without IGMP-L2, there is no querier nor is there any capability for the devices to use IGMP s[...]

  • Página 202

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE F IGURE 116 - Using IGMP-L2 on Magnum 6K family of switches, a Layer 2 net work can minimize multicast traffic as shown above. Each switch has the IGMPL2 t urned on. Each switch can exchange the IGMP query message and respond properly. R4 wants to view surveillance traffic from T1. As shown by (1), a join reque[...]

  • Página 203

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE • Multicast forwarding is done based on MAC addresses – so datagram to IP addresses 224.1.2.3 and 239.129.2.3 can be forwarded on the same port groups. It is not possible to do forwarding based on IP addresses as th e Magnum 6K family of switches operate at Layer-2 • Magnum 6K family of switches, configur[...]

  • Página 204

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE MCAST is disabled Magnum6K25(igmp)## show igmp IGMP State : Enabled ImmediateLeave : Disabled Querier : Enabled Querier Interval : 125 Querier Resp onse Interval : 10 Multicasting unknown streams : Disabled Magnum6K25(igmp)## igmp disable IGMP is disabled Magnum6K25(igmp)## show igmp IGMP State : Disabled Immed[...]

  • Página 205

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax show-group – shows the multicast groups Magnum6K25(igmp)## show-group GroupIp PortNo Timer LeavePending ------------ -------------- -- -------------- -- -------------- -- ------------ 224.1.0.1 9 155 0 224.0.1.40 9 155 0 Magnum6K25(igmp)## F IGURE 118 – Displaying IGMP groups The output of the “sho[...]

  • Página 206

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Synta x set-qi interval=<value> - The IGMP querier router period ically se nds general host-query messages. These messages are sent to ask for group membership information. This is sent to the all- system multicast group address, 224.0.0.1. The de fault value is 125 seconds. The valid range ca n be from 6[...]

  • Página 207

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Querier Interval : 125 Querier Response Interval : 10 Magnum6K25(igmp)## set-leave disable IGMP immediate leave status is disabl ed Magnum6K25(igmp)## show igmp IGMP State : Enabled ImmediateLeave : Disabled Querier : Enabled Querier Interval : 125 Querier Response Interval : 10 Magnum6K25(igmp)## set-querier e[...]

  • Página 208

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Query response interval successfully set Magnum6K25(igmp)## show igmp IGMP State : Enabled ImmediateLeave : Disabled Querier : Disabled Querier Interval : 125 Querier Response Interval : 11 F IGURE 119 – Configuring IGMP For setting IGMP L2 mode, make sure the set of commands listed below ar e executed on all[...]

  • Página 209

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 208 Syntax set igmp mode=<normal|l2> - set the IGMP mode. Normal is when a L3 device is in the network and is the IGMP root. The IGMP-L2 is used when there is no L3 device in the network Syntax show-group – shows the multicast groups Syntax set-port port=< port|list|rang e> mode=<auto|forward|b[...]

  • Página 210

    Chapter 17 17 – GVRP Generic Attribute Registration Protocol ( GARP) VLAN Registration Prot ocol (GVRP) eneric A ttribute R egistration P rotocol (GARP) and VLAN registration over GARP is called GVRP. GVRP is defined in the IE EE 802.1q and GARP in the IEEE 802.1p standards. In order to utilize the capab ilities of GVRP, GarrettCom Inc. strongly [...]

  • Página 211

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE configured as untagged on every port of the Magn um 6K family of switches. That is, on ports used as GVRP links, leave the default VLAN set to u ntagged and configure other static VLANs on the ports as either “Tagged or Forbid ” . (“Forbid” is discussed later in this chapter.) GVRP Oper ations A GVRP-en[...]

  • Página 212

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 11. Port 2 receives advertisement of VID 3. (Port 2 was already statically configured for VIDs 1, 2, 3) If a static VLAN is configured on at leas t one port of a switch, and that port has established a link with another device, then all other ports of that switch will send advertisements for that VLAN. In the f[...]

  • Página 213

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE VLANs must be disabled in GVRP-unaware devices to allow tagged packets to pass through. A GVRP-aware port receiving advertisements has these options: • If there is no static VLAN with the adve rtised VID on the receiving port, then dynamically create a VLAN with the same VID as in the advertisement, and allow[...]

  • Página 214

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25# gvrp Magnum6K25(gvrp)## show-vlan ========== ============= ============= ======== VLAN ID | NAME | VLAN STATUS ========== ============= ============= ======== 1 | Default VLAN | Static Active 2 | Blue | Static Active 10 | dyn10 | Dynamic Active Magnum6K25(gvrp)## F IGURE 124 – Command to check for[...]

  • Página 215

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Per-Port Static VLAN Options Per Port “unknown VLAN” (GVRP) configuration Tagged or Untagged Auto Forbid Learn Generate advertisements. Forward advertisements for other VLANs Receive advertisements and dynamically join any advertised VLAN Receive advertisements and dynamically join any advertised VLAN that [...]

  • Página 216

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Configuring GVRP The commands used for configuring GVRP are Syntax show gvrp - shows whether GVRP is disabled, along with the current settings for the maximum number of VLANs and the current Primary VLAN Syntax gvrp <enable|disable > - enable or disable GVRP Syntax show-vlan – list all the VLANs (includ[...]

  • Página 217

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE ========== ============= ============= ======== VLAN ID | NAME | VLAN STATUS ========== ============= ============= ======== 1 | Default VLAN | Static Active 2 | Blue | Static Ac tive 10 | dyn10 | Static Active Magnum6K25(gvrp)## set-forb id vlan=2 forbid=11-15 Magnum6K25(gvrp)## show-forb id ========== =======[...]

  • Página 218

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 217 List of commands in this chapter Syntax show gvrp - shows whether GVRP is disabled, along with the current settings for the maximum number of VLANs and the current Primary VLAN Syntax gvrp <enable|disable > - enable or disable GVRP Syntax show-vlan – list all the VLANs (including dynamic VLANs) on t[...]

  • Página 219

    Chapter 18 18 – SNMP Managing y our netw ork using SNMP imple Network Management Protocol (SNMP) enables management of the network. There are many software packages which prov ide a graphical interface and a graphical view of the network and its devices. The graphi cal interface and view would not be possible without SNMP. SNMP is thus the buildi[...]

  • Página 220

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Simple Network Management Protocol Version 3 (SNMPv3) – The third version of SNMP, the enhancements made to secure access, different levels of access and security. SNMP engine – A copy of SNMP that can either reside on the local or remote device SNMP group – A collection of SNMP users that belong to a com[...]

  • Página 221

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Notification host – An SNMP entity to which notifications (traps and informs) are to be sent Notify view – A view name (not to exceed 64 characters) for each group that defines the list of notifications that can be sent to each user in the group Privacy – An encrypted state of the contents of an SNMP pack[...]

  • Página 222

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE • RMON MIB (RFC 1757) • RMON: groups 1, 2, 3, and 9 (Statistics, Events, Alarms, and History) • Version 1 traps (Warm Start, Cold Start, Li nk Up, Link Down, Authentication Failure, Rising Alarm, Falling Alarm) RFC 1901-1908 – SNMPv2 • RFC 1901, Introduction to Community-Ba sed SNMPv2. SNMPv2 Working [...]

  • Página 223

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax community [write=<write community>] [read=<read community>] [trap=<trap community>] – set the necessary community strings Syntax authtraps <enable|disable> - enables or disables authentication trap s generation Syntax traps <add|delete> type=<Snmp| Rmon|Snmp,Rmon|Enterp[...]

  • Página 224

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax com2sec <add|delete> id=<id> [secname=<name> ] [source=<source>] [community=<community>] - a part of the View based Acc ess control model (VACM) as defined in RFC 2275. This specifies the mapping from a source/community pair to a security name. On MNS- 6K, up to 10 entries c[...]

  • Página 225

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE SNMP MANAGERS INFO ------------ ------ SNMP TRAP STATIONS INFO ------------ ----------- Magnum6K25# snmp Magnum6K25(snmp)## comm unity write=private read=public SNMP Read community name successf ully set SNMP Write community name successfully set Magnum6K25(snmp)## show snmp SNMP CONFIGURATION INFORMATION -----[...]

  • Página 226

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE SNMP TRAP STATIONS INFO ------------ ----------- Magnum6K25(snmp)## traps add ty pe=Snmp,Rmon ip=192.168.1.2 Successfully Added. Magnum6K25(snmp)## show snmp SNMP CONFIGURATION INFORMATION ------------ -------------- -- -- SNMP Get Community Name : public SNMP Set Community Name : private SNMP Trap Community Na[...]

  • Página 227

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 6K SNMP Agent supports all (v1/v2c/v3) versions. Magnum6K25# show snmp SNMP v3 Configuration Information ========== ============= ====== System Name : Magnum6K25 System Location : Fremont, CA System Contact : support@garrettcom.com Authentication Trap : Disabled Default Trap Comm. : public V3 Engine ID : 6K_v3E[...]

  • Página 228

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25(snmpv3)## show-trap ID Trap Type Host IP Community Port ========== ============= ============= ============== ============= = 1 v1 10.21.1.100 -- -- 2 -- -- -- -- 3 -- -- -- -- 4 -- -- -- -- 5 -- -- -- -- Magnum6K25(snmpv3)## show-trap id=1 Trap ID : 1 Trap Type : v1 Host IP : 10.21.1.100 Community :[...]

  • Página 229

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25(snmpv3)## group add id=1 groupname=v1 model=v1 com2secid=1 Entry is added successfully Magnum6K25(snmpv3)## show-group ID Group Name Sec. Model Com2Sec ID ========== ============= ============= ============== 1 v1 v1 1 2 public v2c 1 3 public usm 1 4 -- -- -- 5 -- -- -- 6 -- -- -- 7 -- -- -- 8 -- -- [...]

  • Página 230

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25(snmpv3)## access add id=1 accessname=v1 model=v1 level=noauth read=1 writ e=none notify=none Entry is added successfully Magnum6K25(snmpv3)## show-access ID View Name Model Level R/View W/View N/View Context Prefix ========== ============= ============= ============== ============ 1 v1 v1 noauth 1 no[...]

  • Página 231

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25(snmpv3)## show-user id=1 User ID : 1 User Name : jsmith User Type : read-write Auth. Pass so mething Priv. Pass : Auth. Type : MD5 Auth. Level : auth Subtree : Magnum6K25(snmpv3)## exit Magnum6K25# show snmp SNMPv3 Configuration Information ============== ============= ======= System Name : Magnum6K2[...]

  • Página 232

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE The following RMON communities, when defined, enable the specific RMON group as show above. Syntax rmon – enter the RMON configuration mode to setup RMON groups and communities Syntax history def-owner=<stri ng> def-comm=<string> - define the RMON history group and the community string associated [...]

  • Página 233

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax snmpv3 – enter the SNMP V3 configuration mode – note enable SNMP V3 by using the “set snmp” command which follows Syntax show active-snmp – shows the version of SNMP currently in use Syntax community [write=<write community>] [read=<read community>] [trap=<trap community>] –[...]

  • Página 234

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax trap <add|delete> id=<id> [type=<v 1|v2|inform>] [host=<host-ip>] [community=<string>] [port=<1-65534>] - define the trap and inform manager stations. The station can receive v1, v2 traps and/or inform notifications. An inform notification is an acknowledgments that a [...]

  • Página 235

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 234 Syntax statistics def-owner=<string> def-comm=<string> - define the RMON statistics group and the community string asso ciated with the group Syntax alarm def-owner=<string> def-comm=<string> - define the RMON alarm group and the community string associated with the group Syntax even[...]

  • Página 236

    Chapter 19 19 – Miscellaneous Commands Impr oving pr oducti vity and manageability here are several features built into the Magn um 6K family of switches which help with the overall productivity and manageability of the switch. These items are examined individually in this chapter. T Alar m R elays In a wiring closet, it would be helpful if there[...]

  • Página 237

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 236 Event ID Event Description Signal Type 1 S-RING OPEN SUSTAINED 2 Cold Start MOMENTARY 3 Warm Start MOMENTARY 4 Link Up MOMENTARY 5 Link Down MOMENTARY 6 Authentication Failure MOMENTARY 7 RMON Rising Alarm 9 MOMENTARY 8 RMON Falling Alarm MOMENTARY 9 Intruder Alarm MOMENTARY 10 Link Loss Learn Triggered MOM[...]

  • Página 238

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax period time=<1..10> - sets the duration of relay action for the momentary type signal. This may be needed to adjust to the behavior of the circuit or relay. Default is 3 secon ds. Time is in seconds Syntax del event=<event-id|list|range|all> - disables alarm action in response to the specifie[...]

  • Página 239

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 5 Link Down MOMENTARY 6 Authentication Failure MOMENTARY 7 RMON Raising Alarm MOMENTARY 8 RMON Falling Alarm MOMENTARY 9 Intruder Alarm MOMENTARY 10 Link Loss Learn Triggered MOMENTARY 11 Broadcast Storm Detected MOMENTARY 12 STP/RSTP Reconfigured MOMENTARY Magnum6K25(alarm)## add event=2 Alarm Event(s) Added: [...]

  • Página 240

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 8 RMON Falling Alarm MOMENTARY 9 Intruder Alarm MOMENTARY 10 Link Loss Learn Triggered MOMENTARY 11 Broadcast Storm Detected MOMENTARY 12 STP/RSTP Reconfigured MOMENTARY Magnum6K25(alarm)## alarm disable Alarm system Disabled Magnum6K25(alarm)## d el event=1,3,5,7 Alarm Event(s) Deleted: 1, 3, 5, 7 Magnum6K25(a[...]

  • Página 241

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE either POP3 or IMAP for receiving messages that have been arrived from the outside world. While SMTP (and its related protocols such as POP3, IMAP etc.) are useful transports for sending and receiving emails, it is extremely beneficial for a network administrator to receive emails in case of faults and alerts. [...]

  • Página 242

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE email – [mandatory] email address of the recipient traps – [optional] this is the trap filter. If valu e is “all”, all traps of any type will be sent to this recipient. If value is none, no traps are sent to this recipient. Value can also be a combination of ‘S’ (SNMP), ‘R’ (RMON) and ‘E’ (E[...]

  • Página 243

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE retry – [optional] specifies how many times to retry if an error occurs when sending email. Range from 0 to 3. Default is 0. Syntax smtp <enable|disable> - enables or disables SMTP to send SNMP alerts by email Magnum6K25# smtp Magnum6K25(smtp)## show smtp config SMTP Global Configuration ========== ====[...]

  • Página 244

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 5 -- -- -- -- -- Magnum6K25(smtp)## add id=2 email=jsmith@g arrettcom.com traps=S events=CF ip=192.168.10.13 Recipient su c cessfully added Magnum6K25(smtp)## show smtp recipients ID E-mail Address SMTP Server Port Traps Events ============== ============= ============== ============= ===== 1 rk@gci,sys@gci.com[...]

  • Página 245

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25(smtp)## exit Magnum6K25# F IGURE 132 – setting SMTP to receive SNMP trap information via email Email alerts can be forwarded to be receiv ed by other devices such as Cell phones, pagers etc. Most interfaces to SMTP are already provided by the cell phone service provider or the paging service provid[...]

  • Página 246

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Note – this is needed if you plan to cut and past e between a serial window and another file. This allows the buffer management of the serial port on the Magnum 6K family of switches. Miscellaneous commands Some of the commands listed below may be useful in repeating several commands over and over again. They[...]

  • Página 247

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Baud Rate : 38400 Data : 8 Parity : No Parity Stop : 1 Flow Control : None Magnum6K25# show history 1 : show version 2 : show setup 3 : show serial 4 : show history Magnum6K25# !1 show vers ion MNS-6K Ver: 3.6 Date:Oct 20 2006 Time:17:22:35 B uild ID 116 1390154 Magnum6K25# F IGURE 134 – History commands Pr o[...]

  • Página 248

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25# snmp Magnum6K25(snmp)## setvar sysname=Core System variable(s) set successfully Magnum6K25(snmp)## exit Magnum6K25# set prompt $n Core# set prompt $n$b$i Core 192.168.5.5# set prompt $n$b$i$b Core 192.168.5.5 # snmp Core 192.168.5.5 (snmp)## setvar sysname=Magn um6K25 System variable(s) set successf[...]

  • Página 249

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Many devices do not respond to ping or block ping commands. Make sure that the target device does respond or the network does allow the ping packets to propagate through. FTP modes The file transfer protocol or ftp is supported on MNS-6K. MNS-6K supports normal ftp as well as passive ftp. Passive FTP is used by[...]

  • Página 250

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE important to erase the log periodically or use syslog capability to download the logs to a syslog server. The event log window contains 22 log entry lines. Magnum6K25# show log S DATE TIME Log Description -- -------- -------- -------- -------------- -- -------------- -- -------------- -- ---- I 03-02-2005 5:14:[...]

  • Página 251

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Magnum6K25# exportlog Usage exportlog mode=<serial|tftp|ftp> [<ipad dress>] [file=<name>] [doctype= <raw|html>] Magnum6K25# exportlog mode=tftp 192.168.5. 2 file=eventlog doctype=html Do you wish to export the event logs? [ 'Y' or 'N'] Y Successfully uploaded the even[...]

  • Página 252

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE For the alerts, the events per subsystem function are listed below. The table is sorted by the subsystem function first and then by the severity level. Subsystem Description Severity BRIDGE Unable to delete MAC address from FDB D BRIDGE Unable to insert MAC address to FDB D BRIDGE Bridge init failed for ethx F [...]

  • Página 253

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Subsystem Description Severity RMON Alarm : internal error , unable to get memory F RMON Alarm : internal error, unable to get memory for alarm entry F RMON History : internal error, unable to get memory for history control entry F RMON History : internal error, unable to get memory for history data entry F RMO[...]

  • Página 254

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Subsystem Description Severity TCP/IP Duplicate IP a.b.c.d sent from MAC address XXXXXX C TCP/IP Unable to allocate memory for an ICMP packet C TCP/IP IP packet from a.b.c.d , with checksum error dropped D TCP/IP Bad IP fragments from a.b.c.d dropped D TCP/IP UDP checksum error in the received packet a.b.c.d D [...]

  • Página 255

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Sometimes it is useful to see which port a specifi c packet will be switched to by examining the internal MAC address table. The ‘show address-table’ command displays the internal switching table. Magnum6K25# show address-table Sl# MAC Address Port ------------ -------------- -- -------------- -- --------- [...]

  • Página 256

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax show smtp <config|recipients> - config – displays the current SMTP global settings and recipients displays the currently config ured recipients of email alerts Syntax add id=<1-5> email=<email-addr> [t raps=<all|none|S|R|E >] [events=<all|none|I|A |C|F|D>] [ip=<ip-addr&[...]

  • Página 257

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 256 body – [mandatory] email body Syntax server ip=<ip-addr> [port =<1-65535>] [retry=<0-3>] – configure the global SMTP server settings ip – [mandatory] SMTP server IP address port – [mandatory] TCP port to be used for SMTP communications – default is 25 retry – [optional] specifi[...]

  • Página 258

    APPENDIX 1 APPENDIX 1 - Command listing by Chapter A rich envir onment – this A ppendix pr ovides a r ef er ence to the com mands by chapter Chapter 2 – Getting Star ted Syntax ipconfig [ip=<ip-address> ] [mas k=<subnet-mask>] [dgw=<gateway>] – to set IP address on the switch Syntax save – save changes made to the configur[...]

  • Página 259

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax command <Enter> - options for a command Syntax <TAB> - listing all commands available at the privilege level Syntax <command string> <TAB> - options for a command Syntax <first character of the command> <TAB> - listing commands starting with the character Syntax logout[...]

  • Página 260

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax set serial [baud=<rate>] [data=<5|6 |7|8>] [parity=<none|odd|even>] [stop=<1|1.5|2>] [flowctrl=<none|xonxoff> ] – sets serial port parameters Syntax snmp – enter the snmp configuration mode Syntax setvar [sysname|syscontact|syslocation]=<string> - sets the system n[...]

  • Página 261

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax ftp <get|put|list|del> [type=<app |config|oldconf|script|ho sts|log>] [host=<hostname>] [ip=<ipaddress>] [file=<filename>] [user=<user>] [pass=<password>] – upload and download information using ftp command Where <get|put|list|del> - different ftp operati[...]

  • Página 262

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax climode <script|console|show> - set the intera ctive CLI mode on (console) or off (script). To see the mode – use the show option Syntax more <enable|disable|show> - enable or disable the scroll ing of lines one page at a time Syntax configure access – sets the access parameters (e.g. dis[...]

  • Página 263

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax telnet <IPv6 address> - telnet to an IPv6 station Chapter 5 – Access Consider ations Syntax set password – set or change password Syntax configure port-security – sets the port authorization based on MAC addresses Syntax port-security – configure port security settings Syntax allow mac=<[...]

  • Página 264

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax allow ip=<ipaddress> mask=<ne tmask> service=<name|list> - allow specific IP address or range of addre sses as a trusted host(s) Syntax deny ip=<ipaddress> mask=< netmask> service=<name|li st> - deny specific IP address or range of IP addresses Syntax remove ip=<ipa[...]

  • Página 265

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE maxreq – [optional] The maximum number of time s the authenticator will retransmit an EAP Request packet to the Supplicant before it times out the authentication session. Its default value is 2. It can be set to any integer value from 1 to 10. Syntax portaccess port=<num|list|range> [q uiet=<0-65535&[...]

  • Página 266

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax tacserver <add|delete> id=<num> [i p=<ip-addr>] [port=<tcp-port>] [encrypt=<enable|disable>] [key =<string>] [mgrlevel=<level>] [oprlevel=<level>] – adds a list of up to five TACACS+ servers where <add|delete> – [mandatory] adds or delete a TACACS[...]

  • Página 267

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax broadcast-protect <enable|disable> - protect switch from broadcast storms Syntax rate-threshold port=<port|li st|range> rate=<frames/sec> - change the allowed broadcast rate threshold Chapter 9 - VLAN Syntax set vlan type=<port|tag|none> defines the VLAN type Syntax configure vlan[...]

  • Página 268

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Chapter 10 – Spanning T r ee Pr otocol (STP) Syntax show stp <config|ports > - regardless of whether STP is enabled or disabled (def ault) this command lists the switch’s full STP configuration, including ge neral settings and port settings Syntax stp – STP Configuration mode Syntax stp <enable|d[...]

  • Página 269

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Example port port=<number|list|range> p2p= off - Set the “point-to-point” value to off on all ports that are connected to shared LAN segments (i.e. connections to hubs). The default value is auto. P2P ports would typically be end stations or computers on the netwo rk Example port port=<number|list|[...]

  • Página 270

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax set stp type=<stp|rstp> - set the spanning tree protocol to be IEEE 802.1d or 802.1w (Spanning Tree Protocol or Rapid Spanning Tree Protocol) Syntax show active-stp – Display which version of STP is currently active Syntax show s-ring – show the status of S-ring status and configuration Syntax [...]

  • Página 271

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Chapter 13 – Dual-Homing Syntax dualhome – enter the dual-homing configuration sub-system Syntax dualhome <enable|disable> – enable or disable dual- homing Syntax dualhome add port1=<p ort#> port2=<port#> – dual-homing setup similar to that of unmanaged switches such as ESD42 OR Syntax[...]

  • Página 272

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax setqos type=<port|tag|tos|none> port=<por t|list|range> [priority=<high|low>] [tos=<0-63|list|range> ][tag=<0-7|list|range>] - depending on the type of QOS, the corresponding field has to be set. Fo r example, for QOS type tag, the ta g levels have to be set, and for QOS typ[...]

  • Página 273

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Synta x set-qi interval=<value> - The IGMP querier router periodically sends general host-query messages. These messages are sent to ask for group membership info rmation. This is sent to the all-system multicast group address, 224.0.0.1. The defa ult value is 125 seconds. The vali d range can be from 60 [...]

  • Página 274

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax community [write=<write community>] [read=<read community>] [trap=<trap community>] – set the necessary community strings Syntax authtraps <enable|disable> - enables or disables authentication trap s generation Syntax traps <add|delete> type=<Snmp| Rmon|Snmp,Rmon|Enterp[...]

  • Página 275

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax com2sec <add|delete> id=<id> [secname=<name> ] [source=<source>] [community=<community>] - a part of the View based Acc ess control model (VACM) as defined in RFC 2275. This specifies the mapping from a source/community pair to a security name. On MNS- 6K, up to 10 entries c[...]

  • Página 276

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Syntax show rmon <stats|hist|event|alarm> - list the specific RMON data as defined by the group type Chapter 19 – Miscellaneous Commands Syntax alarm – enter the alarm configuration mode Syntax add event=<event-id|list|range|all> - enables alarm action in resp onse to the specified event ID Synt[...]

  • Página 277

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE “event=ACF” implies that events of severity type s activity, critical and fatal will be sent to recipients by email. If this optio n is not defined, a value of “all” is taken ip – [optional] SMTP server IP address. This is the SMTP server to connect to for this particular user. If this option is not d[...]

  • Página 278

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 277 Syntax !<n> - repeat the “n”th command (a s indicated by a show history) Syntax show history – show the last 25 commands executed – if less than 25 commands are executed, only those commands executed are shown Syntax <Up-arrow> - every time the key is pressed, the last command is printed[...]

  • Página 279

    APPENDIX 2 - Commands sor ted alpha beticall y Command Description !! repeat the last command !<n> repeat the “n”th command (as indicated by a show history) <command string> <TAB> options for a command <Down-arrow> opposite of Up-arrow key <first character of the command> <TAB> listing commands starting with [...]

  • Página 280

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description add port=<number|list|range> [priority=<0-65535>] add the specified list of ports to form the logical LACP trunk. Default value for priority is 32768. The lower the value assigned to priority, the higher the priority. T he port with the highest priority is the primary port (over [...]

  • Página 281

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description clear <history|log [1..5 |informational |activity |critical |fatal |debug] |terminal |arp|portstats|addr] clear command to clear various aspects of the MNS-6K information – most notably “clear addr” – clears the addresses learnt or “clear log” to clear the logs (and the type o[...]

  • Página 282

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description del event=<event-id|list|range|all> disables alar m action in response to the specified event ID del port=<number|list|range> delete specified ports from the LACP membership. Requires the lacp module. delete id=<1-5> delete the specific id specified. The deleted id no longe[...]

  • Página 283

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description enable <user-name> changing the privilege level engineid string = <string> Every agent has to have an engineID (name) to be able to respond to SNMPv3 messages. The default engine ID value is “6K_v3Engine”. This command allows the user to change the engine ID event def-owner=&[...]

  • Página 284

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description group <add|delete> id=<id> [groupname=<name>] [model=<v1|v2c|usm>] [com2secid=<com2sec-id>] a part of the View ba sed Access control model (VACM) as defined in RFC 2275. This command defines the mappi ng from sec model or a sec name to a group. A sec model is on[...]

  • Página 285

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description lll <enable|disable> enable or disable LLL on the switch lll add port=<port|list|range> enable LLL on the list of specified ports lll del port=<port|list|range> disable LLL on the list of specified ports loadconf mode=<serial|tftp|ftp> [<ipaddress>] [file=<na[...]

  • Página 286

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description port-mirror <enter> configure port mirror settings port-security configure port security settings priority [port=<number|list|range>] value=<0-255 | 0-65535> specifies the port or switch level priority. When a port(s) are specified the priority is associated with ports and [...]

  • Página 287

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description rmon enter the RMON configuration mode to setup RMON groups and communities rs-ring <enable| disable> enable or disable RS-Ring capabilities rs-ring add port=<port1,port2> define ports which make up the RS-Ring ports. Note as discussed earlier, you can create m ultiple RS-rings o[...]

  • Página 288

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description set ftp mode=<normal|passive> set the ftp mode of operation set igmp mode= <normal|l2> set the IGMP mode. Normal is when a L3 device is in the networ k and is the IGMP root. The IGMP-L2 is used when there is no L3 device in the network set logsize size=<1-1000> set the log [...]

  • Página 289

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description set vlan type=<port|tag|none> defines the VLAN type set-forbid vlan=<tag vlanid> forbid=<port-number|list|range> sets the forbid GVRP capability on the ports specified set-leave <enable|disable> enables or disables t he switch to immediately process a host sending a l[...]

  • Página 290

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description setport port=<num|list|range> [status=<enable|disable>] [control=<auto|forceauth|forceunauth> ] [initialize=<assert|deassert>] setting the port characteristic for an 802.1x network setport port=<port#|list|range> [name=<name>] [speed=<10|100>] [duple[...]

  • Página 291

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description set-qi interval=<value> The IGMP querier router periodically sends general host-query messages. These messages are sent to ask for group membership information. This is sent to the all-system multicast group address, 224.0.0.1 . The default value is 125 seconds. The valid range can be [...]

  • Página 292

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description set-untag port=<port|list|range> priority=<high|low> tag=<0-7> The 802.1p user priority assigned to unt agged received packets to be transmitted as tagged from the priority queue setvar [sysname|syscontact|syslocation]=<stri ng> set the system name, contact and locati[...]

  • Página 293

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description show host display the hosts table entries show igmp IGMP operation status show ip-access display all trusted hosts show ipconfig shows the IP parameters set in the switch show lacp displays the status and other relevant LACP information show lll display the status of LLL show log [fatal|aler[...]

  • Página 294

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description show snmp displays the SNMP configuration information show s-ring show the status of S-Ring show stp <config|ports > regardless of whether STP is enabled or disabled (default) this command lists the switch’s full STP configuration, including general settings and port settings show st[...]

  • Página 295

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description show-router displays detected IGMP-enabled rout er ports show-stats port=<num> displays 802.1x related statistics show-timers show the values of the timers set for RSTP show-trap [id=<id#>] shows the configured trap stati ons in tabular format - id is optional and is the number c[...]

  • Página 296

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description start vlan=<name|number|list|range> activate the VLAN configuration static vlan=<VID> convert a dynamic VLAN to a static VLAN statistics def-owner=<string> def- comm=<string> define the RMON statistics group and the community string associated with the group stp STP C[...]

  • Página 297

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description timers forward-delay=<4-30> hello=<1- 10> age=<6-40> change the STP Forward Delay, Hello timer and Aging timer values tftp <get|put> [type=<app|config|oldconf|script|host s|log>] [host=<hostname>] [ip=<ipaddress>] [file=<filename>] where <ge[...]

  • Página 298

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE Command Description user <add|delete> id=<id> [username=<name>] [usertype=<readonly|readwrite>] [authpass=<pass-phrase>] [privpass=<pass-phrase>] [level=<noauth|auth|priv>] [subtree=<oid>] for quickly adding or deleting v3 USM based security, this command adds use[...]

  • Página 299

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 298 Intentionally left blank[...]

  • Página 300

    APPENDIX 3 APPENDIX 3 - Daylight Sa vings No time lik e the pr esent... Daylight Sa vings Time Magnum6K Switches provide a way to automatically adjust the system clock for Daylight Savings Time (DST) changes. In addition to the value " none" (no time changes), there are fifteen pre- defined settings, a few examples are: • Alaska • Can[...]

  • Página 301

    MAGNUM 6K SWITCHES, MNS-6K USER GUIDE 300 Australia, Belgium, Canada, Chile, Cuba, Egypt, France, Finland, Germany, Greece, Iraq, Italy, London, Namibia, Portugal, Russia, Spai n, Sweden, Switzerland, Syria, USA Note – as of Release 3.7, the new daylight saving times dates enforced as of 2007, for the time zones and states in US, ha ve been imple[...]

  • Página 302

    UPDATING MNS-6K APPENDIX 4 APPENDIX 4 – Upda ting MNS-6K Softw ar e Keep up to date.... The steps required to update the MNS-6K so ftware on your Magnum switch are listed. Intentionally left blank 301[...]

  • Página 303

    UPDATING MNS-6K – STEP 1 Ste p 1 1. Getting Star ted Decide w hich version to use….. his document describes how to upgrade the MNS -6K software on a Magnum 6K switch. The methods described for updating the MNS-6K software are either locally at the console port on the Magnum 6K switch or remotely over the network using FTP or TFTP. This step inv[...]

  • Página 304

    UPDATING MNS-6K – STEP 1 2) Enough disk space to store and retrieve the configuration files as well as copy software files from GarrettCom. We reco mmend at least 15MB of disk space for this purpose 3) Connection to the Internet. Make sure the connection does n ot block FTP file transfers 4) IP address of the switch that is being upgraded. Along [...]

  • Página 305

    UPDATING MNS-6K – STEP 1 b) If the site uses another socket number for ftp connections, use the socket number at the end of the URL. For example, if the network administrator has setup a firewall to use socket number 1684, the URL would be as follows: ftp://ftp.garrettcom.com:1684 c) NOTE - You can use any other FTP progra m available on the Inte[...]

  • Página 306

    UPDATING MNS-6K – STEP 1 F IGURE 141 – Accessing the GarrettCom site for download. Note – if the browser does not support th e login prompt, you ca n type in the user name and password on the URL as follows: ftp://m6kuser:m6kuser@ftp.garrettcom.com 3) After successful login, select the proper fo lder for downloading the proper MNS-6K software[...]

  • Página 307

    UPDATING MNS-6K – STEP 1 F IGURE 142 – Select the proper version to use after successful login 4) Navigate to the folder MNS-6K. See Figure 3. (There are other folders with additional software, MIBs as well as additional useful information for the Magnum-6K switches which you may want to use later.) From the MNS-6K folder download the latest ?[...]

  • Página 308

    UPDATING MNS-6K – STEP 1 307 F IGURE 144 – Use the copy command to copy t he files to the proper location 6) Make sure you remember where the files are stored as these files will be needed for the next step. Ne xt steps 1) Access the GarrettCom Magnum 6K switch. The access can be over the console port using the null modem cable or through the n[...]

  • Página 309

    UPDATING SOFTWARE – STEP 2 Ste p 2 2. Pr eparing to load the software Backup y our existing configuration….. nce the MNS-6K software is downloaded fr om the GarrettCom site, it is strongly recommended that the existing configuration of the switch is preserved before the MNS-6K software upgrade is performed. Th is section will show you how to sa[...]

  • Página 310

    UPDATING SOFTWARE – STEP 2 309 F IGURE 145 - HyperTerminal screen showing the serial settings Netw or k Access Prerequisites - a PC (or workst ation/computer) with telnet sof tware and the IP address of the Magnum 6K switch (or DNS name associated with the switch) to be upgraded. Access the Magnum 6K switch by using the telnet command. For exampl[...]

  • Página 311

    UPDATING SOFTWARE – STEP 2 1) Serial file transfer capability such as X-m odem or equivalent 2) TFTP server 3) FTP server As a good practice, GarrettCom recommends that y ou should have all these capabilities ava ilable on your local computer if you plan to upgrade additional sw itches as well as switches in the future. The command used for savin[...]

  • Página 312

    UPDATING SOFTWARE – STEP 2 F IGURE 148 – Invoke the “Receive File” to start the Xmodem transfer pr ogram. In the figure above the Windows XP based HyperTerminal screen is shown Once the “Receive File” is invoked (as shown in Figure 8) follow the dialog to save the file in the proper directory with the proper name as shown in Figure 9. F[...]

  • Página 313

    UPDATING SOFTWARE – STEP 2 F IGURE 150 – Status window for Xmodem (using HyperTerminal under Windows XP) When the file transfer is completed, the window shown in Figure 10 exits and the completion message is displayed as shown in Figure 11. Successfully uploaded the configuration Magnum6K25 # F IGURE 151 – Message which shows the completion o[...]

  • Página 314

    UPDATING SOFTWARE – STEP 2 313 This will save the file 6kconfig-10.11 to the specified IP address (192.168.10.99) in the default TFTP fo lder. Using FTP would be the sa me as Figure 12, except replace 'mode=tftp' with 'mode=ftp' In some situations (e.g. routed networks), TFTP or FTP services may be blocked. Check for network c[...]

  • Página 315

    UPDATING SOFTWARE – STEP 3 Ste p 3 3. Loading the MNS-6K softw are Load the new version of the MNS-6K image….. T this stage, the Magnum MNS-6K sof tware has been downloaded from the GarrettCom site, and the config uration saved. The Magnum-6K switch is now ready to upload the new MNS-6K software image. A Bef or e loading the MNS-6K software It [...]

  • Página 316

    UPDATING SOFTWARE – STEP 3 Serial Connection Prerequisites - make sure the di rectory and the file name of the MNS-6K software image downloaded in steps 1 and 2 is known. To use the serial c onnection to update the MNS-6K image, the command dialog is shown below: Magnum6K25# show ve rsion Version 2.6.0, Build Date: Jan 29 2004, Time: 12: 02:32 Ma[...]

  • Página 317

    UPDATING SOFTWARE – STEP 3 Upgrade is Succes sful. Please rebo ot Magnum 6Kxx to start the ap plication Magnum6K25# reboot Proceed on rebooting the swit ch? [ 'Y' or 'N' ] Y Do you wish to save current configuration? [ 'Y' or 'N' ] Y (The switch will now reboot. After the reboot, the Magnum 6K switch may pr[...]

  • Página 318

    UPDATING SOFTWARE – STEP 3 317 Magnum6K25# show ve rsion Version 2.6.0, Build Date: Jan 29 2004, Time: 12: 02:32 Magnum6K25# upgrade mode=tftp 192.168.10.99 file=Rel3.0.bin Do you wish to upgrade th e image? [ 'Y' or 'N'] Y Upgrade is Successful. Please reb oot Magnum 6Kxx to sta rt the application Magnum6K25# reboot Proceed o[...]

  • Página 319

    UPDATING SOFTWARE – STEP 4 Ste p 4 4. (Optional Step) R estoring the configur a tion Optionally , r estor e back the original conf iguration and update the boot code….. t this optional step, the original configuration has been saved, MNS-6K image copied from the www.garrettcom.com site and then onto the Magnum 6K sw itch and finally, if require[...]

  • Página 320

    UPDATING SOFTWARE – STEP 4 319 Upda ting boot code o v er the networ k As discussed in step 1 – selecting the proper version , with either upgrade path (to Version 2.7.1B or to Version 3.0), the boot code will be updated. At boot up time, the Ma gnum 6K sw itch identifies that there is a new version of the boot code and asks if the new boot cod[...]

  • Página 321

    UPDATING SOFTWARE – STEP 4 320 Make sure there is no power failur e during the boot loader update. If the boot code does not load properly, please contact GarrettCom Inc technical support at (510) 438-9071, email – support@garrettcom.com Intentionally left blank[...]

  • Página 322

    INDEX Inde x !!, 276 !<n>, 277 802.1d, 123, 127, 135, 136, 138, 141, 148, 268 802.1q, 209 802.1Q, 103, 106, 123 802.1w, 135, 136, 141, 150, 151 802.1x, 77, 78, 79, 80, 85, 263 access, 50, 73, 74, 75, 229, 262 action, 66, 67, 70, 75, 262 action port, 66 add, 29, 33, 69, 108, 109, 114, 122, 181, 183, 185, 236, 237, 238, 240, 242, 243, 254, 255,[...]

  • Página 323

    INDEX config, 46, 47, 260, 282 , 297 configure, 57, 75, 107, 108, 122, 261, 262, 266 configure access, 38, 57, 261 configure vlan, 108, 122, 266 CoS, 188 cost, 126, 128, 131, 134, 142, 146, 148, 267, 268 default user name, 25 DEFAULT-VLAN, 104, 107 deftrap, 222, 226, 232, 273 del, 46, 181, 182, 185, 237, 239, 254, 260, 270, 275, 281, 282 del port, [...]

  • Página 324

    INDEX IEEE 802.1q, 186, 209 IEEE 802.3ad, 174 IETF, 187 igmp, 202, 203, 205, 20 7, 271 IGMP, 20, 189, 195, 196, 197, 198, 199, 202, 203, 204, 205, 206, 207, 208, 209, 218, 235, 257, 271, 272, 299, 301 IGMP-L2, 199, 200, 201, 202, 207, 208, 271, 272, 284, 287 IMAP, 239 ipconfig, 26, 33, 62, 257, 261 IPv4, 59, 60, 61, 188, 189, 282, 295 IPv6, 59, 60,[...]

  • Página 325

    INDEX portaccess, 83, 85, 264 port-mirror, 93, 101, 265 port-security, 65, 69, 70, 75, 262 priority, 126, 128, 131, 134, 142, 145, 148, 186, 267, 268 Private VLAN, 106 privilege level, 28 prtmr, 93, 101, 265 ps, 66, 67, 75, 262 put, 46, 47, 260, 282, 297 qos, 189, 193, 270 QoS, 20, 97, 186, 187, 188, 189 , 191, 193, 194, 270, 271 quickcfg, 222, 226[...]

  • Página 326

    INDEX saveconf, 45, 53, 56, 259 saveconf mode, 56, 259 script, 46, 47, 260, 282, 297 sendmail, 241, 243, 255 , 276 serial number, 54 server, 241, 256, 276 service, 74 set, 24, 25, 28, 31, 32, 33, 35, 37, 40, 42, 43, 44, 46, 48, 55, 56, 57, 58, 64, 67, 69, 70, 72, 73, 75, 93, 94, 95, 96, 107, 109, 113, 122, 127, 137, 147, 160, 165, 166, 167, 200, 22[...]

  • Página 327

    INDEX 268, 269, 270, 271, 272, 273, 275, 277, 291 show ip-access, 74 show ipconfig, 62, 261 show active-snmp, 221, 223, 225, 232, 272 show active-stp, 127, 138, 143 , 148, 160, 165, 166, 167, 268, 269 show active-vlan, 113 show address-table, 253, 254 show alarm, 237, 238, 239, 275 show auth config, 81 show auth ports, 82 show backpressure, 97, 98,[...]

  • Página 328

    INDEX show-forceversion, 142, 144, 148, 268 show-group, 204, 208, 223, 228, 233, 271, 274 show-port, 83, 84, 112, 122, 204, 205, 208, 266, 271 show-portweight, 190, 193, 194, 271 show-router, 204, 205, 208, 271 show-stats, 84, 86, 264 show-timers, 142, 145, 148, 268 show-trap, 222, 227, 233, 273 show-user, 223, 229, 230, 233, 274 show-view, 223, 22[...]

  • Página 329

    INDEX 328 T A C AC S+ , 87, 88, 89, 90 , 91, 264, 265, 295 TACACSD, 87 tacplus, 90, 91, 264, 295 tacserver, 90, 91, 265, 295 tag VLAN, 106 TCP, 25, 87, 90, 92, 265, 295 telnet, 38, 39, 55, 62, 63, 258, 262 telnet enable, 38 tftp, 46, 48, 57, 250, 260, 296 timers, 126, 128, 133, 134, 142 , 147, 148, 267, 268 ToS, 187, 188, 189, 193, 271 trap, 222, 2[...]