GS700TS Smart Switch Software Administration Manual NETGEAR, Inc.
GS700TS Smart Switch Software Administration Manual © 2009 by NETGEAR, Inc. All Rights reserved Trademarks NETGEAR and the NETGEAR logo are registered trademarks of NETGEAR, Inc. in the United States and/or other countries. Microsoft, Windows, and Windows NT are registered trademarks and Vista is a trademark of Microsoft Corporation. Other brand and product names are trademarks or registered trademarks of their respective holders.
GS700TS Smart Switch Software Administration Manual determined by turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of the following measures: • • • • Reorient or relocate the receiving antenna. Increase the separation between the equipment and receiver. Connect the equipment into an outlet on a circuit different from that which the receiver is connected. Consult the dealer or an experienced radio/TV technician for help.
GS700TS Smart Switch Software Administration Manual FCC Requirements for Operation in the United States FCC Information to User: This product does not contain any user-serviceable components and is to be used with approved antennas only. Any product changes or modifications will invalidate all applicable regulatory certifications and approvals FCC Guidelines for Human Exposure: This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment.
Contents About This Manual Who Should Use this Book ................................................................................................ x How to Use This Book ....................................................................................................... x Conventions, Formats, and Scope ................................................................................... xi How to Use This Manual ...........................................................................................
GS700TS Smart Switch Software Administration Manual Chapter 3 Managing System Settings Using the System Settings Utility ....................................................................................3-1 Management ...................................................................................................................3-1 System Information ..................................................................................................3-1 IP Configuration ...................................
GS700TS Smart Switch Software Administration Manual Advanced ...............................................................................................................4-16 Voice VLAN ..................................................................................................................4-21 Basic ......................................................................................................................4-22 Advanced ...................................................................
GS700TS Smart Switch Software Administration Manual Port Security ...........................................................................................................6-17 Protected Ports ......................................................................................................6-19 ACL ...............................................................................................................................6-20 MAC ACL ...................................................................
GS700TS Smart Switch Software Administration Manual Download ........................................................................................................................8-5 Download .................................................................................................................8-5 File Management ............................................................................................................8-6 Active Image ............................................................
About This Manual The NETGEAR® GS700TS Smart Switch Software Administration Manual describes how to install, configure, operate, and troubleshoot the GS700TS Gigabit Stackable Smart Switch using its included software. This book describes the software configuration procedures and explains the options available within those procedures. Who Should Use this Book The information in this manual is intended for readers with intermediate to advanced system management skills.
GS700TS Smart Switch Software Administration Manual • Chapter 6, “Managing Security” describes how to configure security. • Chapter 7, “Monitoring the Switch” describes how to configure switch monitoring. • Chapter 8, “Maintenance” describes the firmware upgrade procedure and reset functions. • Chapter 9, “Online Help” describes how to obtain online help and support. • Chapter A, “Default Settings” gives GS700TS Smart Switch specifications and lists default feature values.
GS700TS Smart Switch Software Administration Manual Danger: This is a safety warning. Failure to take heed of this notice may result in personal injury or death. • Scope. This manual is written for the GS700TS Smart Switch according to these specifications: Product Version GS700TS Gigabit Stackable Smart Switch Manual Publication Date June 2009 . Note: Product updates are available on the NETGEAR, Inc. website at http://www.netgear.com/support.
GS700TS Smart Switch Software Administration Manual How to Print this Manual To print this manual, select one of the following options: • Printing a Page from HTML. Each page in the HTML version of the manual is dedicated to a major topic. Select File > Print from the browser menu to print the page contents. • Printing from PDF. Your computer must have the free Adobe Acrobat reader installed in order to view and print PDF files. The Acrobat reader is available on the Adobe Web site at http://www.adobe.
GS700TS Smart Switch Software Administration Manual Chapter 1 Getting Started with Switch Management This section provides an overview of switch management, including the methods you can choose to start managing your NETGEAR GS700TS Gigabit Stackable Smart Switch. It also leads you through the steps necessary to get started, using the SmartWizard Discovery utility.
GS700TS Smart Switch Software Administration Manual Note: For complete hardware installation instructions, refer to the GS700TS Smart Switch Hardware Installation Manual included on your Resource CD, or go to http://www.netgear.com/support. Switch Management Interface Your NETGEAR GS700TS Gigabit Stackable Smart Switch contains an embedded web server and management software for managing and monitoring switch functions. This switch operates as a simple switch without using the management software.
GS700TS Smart Switch Software Administration Manual Table 1-1.
GS700TS Smart Switch Software Administration Manual Figure 1-1 6. Note the displayed IP address assigned by the DHCP server. You will need this value to access the switch directly from a web browser (without using the SmartWizard Discovery utility). 7. Select your switch by highlighting the name of the switch. Then click Web Access. The discovery utility displays a login window similar to the following: Figure 1-2 8. Use your web browser to manage your switch. The default password is password.
GS700TS Smart Switch Software Administration Manual Network without a DHCP Server This section describes how to set up your switch in a network without a DHCP server, and is divided into the following tasks: • Manually assign network parameters for your switch • Configure the NIC settings on the host PC • Log in to the web-based switch management utility Manually Assigning Network Parameters If your network has no DHCP service, you must assign a static IP address to your switch.
GS700TS Smart Switch Software Administration Manual Figure 1-3 7. Select Disable to disable DHCP. 8. The default IP address is 192.168.0.239 and the default subnet mask is 255.255.255.0. If you want different values, enter the switch IP address, gateway IP address and subnet mask. 9. Type your password and click Set. Please ensure that your PC and the GS700TS Gigabit Stackable Smart Switch are in the same subnet. Note the settings for later use.
GS700TS Smart Switch Software Administration Manual Figure 1-4 You need Windows Administrator privileges to change these settings. 1. On your PC, access the MS Windows operating system TCP/IP Properties. 2. Set IP address and subnet mask appropriately. The subnet mask value is identical to that set in the switch. The PC IP address must be different from that of the switch but lie in the same subnet. 3.
GS700TS Smart Switch Software Administration Manual You must work from the same network segment that contains the switch (i.e., the subnet mask values of switch and PC host must be the same) and you must point your browser using the switch IP address. If you used the SmartWizard Discovery utility to set up IP address and subnet mask, either with or without DHCP server, use that IP address in your browser window.
GS700TS Smart Switch Software Administration Manual Password Change You can set a new password of up to 20 ASCII characters. 1. Click Password Change from the Switch Setting section. The Password Change screen appears. You can set a new password. You must enter the old and new passwords and confirm the new one. 2. Click Set to enable the new password.
GS700TS Smart Switch Software Administration Manual Figure 1-6 1. Enter the following values into the appropriate places in the form: • Product Assigned Firmware: The location of the new firmware. If you do not know the location, click Browse to locate the file. • Upgrade Password: Enter your password; the default password is password. 2. Click Apply to apply the settings to the Upgrade Configuration. 3. Click Start Upgrade to begin loading the upgrade.
Chapter 2 Introduction to the Web Browser Interface This section introduces the web browser interface that enables you to configure and manage your NETGEAR GS700TS Gigabit Stackable Smart Switch. Your GS700TS Smart Switch provides a built-in browser interface that enables you to configure and manage it remotely using a standard Web browser such as Microsoft Internet Explorer or Netscape Navigator. Online Help is also provided for many of the basic functions and features of the switch.
GS700TS Smart Switch Software Administration Manual 2. Enter the password (the factory default is password) and click Login. The home screen of the GS700TS Smart Switch browser interface displays. The Navigation Menu As shown below, logging in brings you to the view of the web browser interface. Figure 2-2 The NETGEAR GS700TS web browser interface contains the following views: Main Navigation Area – Located on the top of the NETGEAR GS700TS web browser interface and marked as 1 in Figure 2-2.
GS700TS Smart Switch Software Administration Manual Work Area – Located on the right side of the NETGEAR GS700TS web browser interface and marked as 3 in Figure 2-2. The Work Area contains device tables, general device information, and configurable device parameters. For further description of the functions, refer to the appropriate section of this manual: • Chapter 3, “Managing System Settings” describes how to configure the System functions.
GS700TS Smart Switch Software Administration Manual Table 2-1. Device Management Buttons Button Name Description CLEAR ALL Refreshes device information. CLEAR ALL COUNTERS Resets statistics counters. CLEAR LOGS Clears logs. CURRENT MEMBERS Displays current members of a LAG. DELETE Deletes information from tables or information windows. GO Selects the specified interface. REFRESH Refreshes the screen with current data. TAGGED PORT MEMBERS Displays tagged port members of a VLAN.
GS700TS Smart Switch Software Administration Manual Figure 2-3 A help window for the screen opens. Figure 2-4 Using Screen and Table Options The NETGEAR GS700TS web browser interface contains screens and tables for configuring devices. This section describes the table options: • “Selecting an Entry” • “Adding an Entry” • “Modifying an Entry” • “Deleting an Entry” • “Special Table Options” 2-5 Introduction to the Web Browser Interface v1.
GS700TS Smart Switch Software Administration Manual Selecting an Entry To select an entry: 1. Check the entry’s Select box. The selected entry is highlighted and the information appears in the first row, which contains the editable fields. Figure 2-5 To select all entries: 1. Check the Select box in the first row to select all entries in the table. Fields that are unique are grayed out and displayed as read-only fields.
GS700TS Smart Switch Software Administration Manual To add an entry by creating a new entry in the table: 1. Enter the fields for the new entry in the provided fields in the first row. Figure 2-7 2. Click ADD to update the device. The new entry is displayed. Figure 2-8 Modifying an Entry An entry may be modified by editing its values in the first row. To modify an entry: 1. Select the entry to be modified. Its contents are displayed in the first row. Figure 2-9 2. Modify the fields in the first row.
GS700TS Smart Switch Software Administration Manual Deleting an Entry To delete entries from a table: 1. Select the entries to be deleted. 2. Click DELETE to update the device. Special Table Options The NETGEAR web browser interface tables have a unique GUI design which includes the following options: • Gold Buttons • Quick Boxes • Interface View and Selection Gold Buttons Gold Buttons provide flexibility in viewing and configuring VLANs/LAGs on a port level.
GS700TS Smart Switch Software Administration Manual Quick Boxes Quick Boxes provide users with flexibility in configuring VLANs for all ports (on a stacking unit level) or LAGs. Clicking on the quick box toggles between the various options that exist for this field. A quick box appears to the right of the arrow on the left-hand side of the gold button. The following example displays quick box basic usage options. To mark or unmark all Unit 1 ports: 1.
GS700TS Smart Switch Software Administration Manual Figure 2-13 4. Click again on the Unit 1 quick box, and the quick box and all the port boxes for Unit 1 appear blank, marking the ports as neither tagged nor untagged. 5. You may click on individual port boxes to toggle their tagged/untagged status Interface View and Selection A port or LAG interface may be selected from a table by using the interface selection row, located above the row of column headers. Clicking on the Unit No.
GS700TS Smart Switch Software Administration Manual To display all interfaces in all stacking units: 1. Click All in the interface selection row. A confirmation window opens. Figure 2-15 2. Click OK. The screen displays a table of all interfaces in all stacking units. To display the LAG table: 1. Click LAGS in the interface selection row. The screen displays a table of all LAGs. Figure 2-16 To select an interface: 1. Enter the number of the interface in the GO TO INTERFACE box. 2.
GS700TS Smart Switch Software Administration Manual Figure 2-17 Introduction to the Web Browser Interface v1.
Chapter 3 Managing System Settings Using the System Settings Utility The navigation pane at the top of the web browser interface contains a System tab that enables you to manage your GS700TS Smart Switch displaying configurable features under the following main menu options: • “Management” • “Device View” • “Stacking” • “SNMP” • “LLDP” The description that follows in this chapter describes configuring and managing system settings in the GS700TS Smart Switch.
GS700TS Smart Switch Software Administration Manual To configure system parameters: 1. Click System > Management > System Information. The System Information screen displays: Figure 3-1 The System Information screen contains the following fields: • System Name – Enter the user-defined device name. The field may contain 0-160 characters. • System Location – Enter the location where the system is currently running. The field may contain 0-160 characters.
• Idle Timeout – Enter the amount of time (minutes) that elapses before an idle station is timed out. Idle stations that are timed out must login to the system. The field range is 5 30 minutes. The field default value is 10 minutes. • Base MAC Address – Displays the MAC Address. If the device is in stack mode, the Base MAC Address of the master unit is displayed. • Serial Number – Displays the device serial number. • Unit Mode – Indicates if the device is currently in standalone or stacking mode.
GS700TS Smart Switch Software Administration Manual IP Configuration The IP Configuration screen contains fields for assigning IP addresses. IP addresses are either defined as static or are retrieved using the Dynamic Host Configuration Protocol (DHCP). The DHCP assigns dynamic IP addresses to devices on a network. DHCP ensures that network devices can have a different IP address every time the device connects to the network.
GS700TS Smart Switch Software Administration Manual • Subnet Mask – Enter the IP address mask. • Gateway – Enter the default gateway IP address. The following option is available: – • Delete – Deletes the default gateway IP address. Management VLAN ID – Select an existing VLAN to be defined as the management VLAN. By default, the default VLAN defined on the device is VLAN1. 2. Select the method of assigning the IP address by selecting either Get Dynamic IP from DHCP Server or Static IP Address. 3.
GS700TS Smart Switch Software Administration Manual Figure 3-3 The Time Configuration screen contains the following fields: • Clock Source – Select the source used to set the system clock. The possible field values are: – Local – Indicates system time is set locally. This is the default value. – SNTP – Indicates system time is set via an SNTP server. The Date and Time fields are disabled once you select the SNTP server. • Date – Enter the local system date.
GS700TS Smart Switch Software Administration Manual SNTP Server Configuration The SNTP Server Configuration screen allows network administrators to define primary and secondary SNTP servers. The system time is initially retrieved through the primary SNTP server. If the device is unable to retrieve the system time through the primary server, the device retrieves the system time from the secondary server. To configure SNTP servers: 1. Click System > Management > Time > SNTP Server Configuration.
GS700TS Smart Switch Software Administration Manual Device View The Device View menu displays the Device View screen, which provides a graphic representation of the device, including the port and LED statuses. To display the Device View screen: 1. Click System > Device View. The Device View screen displays: Figure 3-5 Stacking All stack members are accessed through a single IP address through which the stack is managed.
GS700TS Smart Switch Software Administration Manual • Inter-unit Stacking Link Failure • Unit Insertion • Removal of a Stacking Unit Operation Modes A stack unit can operate in one of the following modes: • Standalone – Indicates the device is operating as a single unit and is not connected in a stack. • Stacking Master – Manages the stacking configuration for all stack members. • Secondary Master – Operates as a backup to the Stacking Master.
GS700TS Smart Switch Software Administration Manual connects stacking members from one to the next. This provides a single data path flow. The stacking members linked in the middle of the chain are connected to the stacking member on either side of them. The members at the end of the chain only have one connection. Stacking Ring Topology One of the benefits of the Ring topology is that it offers redundancy in case the connections between two units fail, including the case where a unit in the stack fails.
GS700TS Smart Switch Software Administration Manual Removing and Replacing Stacking Members Stacking member 1 and stacking member 2 are Stacking Master enabled units. Unit Numbers 1 and 2 are designated as either Master Unit or Secondary Master Unit. The Stacking Master assignment is performed during the configuration process.
GS700TS Smart Switch Software Administration Manual to a topology failure, the stacking member is no longer connected to the stack. The device can be booted, but it cannot be managed through the Stacking Master. The network manager can either reset the device defaults, or correct the topology failure, and then reconnect the unit to the stack. Configuration files are changed only through explicit user configuration.
GS700TS Smart Switch Software Administration Manual Switching the Stacking Master The Secondary Master replaces the Stacking Master if one of the following events occur: • The Stacking Master fails or is removed from the stack. • Links from the Stacking Master to the stacking members fails. • A soft switchover is performed via the web interface. Switching between the Stacking Master and the Secondary Master results in a limited service loss. Any dynamic tables are relearned if a failure occurs.
GS700TS Smart Switch Software Administration Manual Figure 3-6 The Basic Stack Configuration screen contains the following fields: • Master Election – Select the mode by which the Stacking Master is elected. When the stack is powered up and completes the boot-up process, the Master unit is elected within 0.5 seconds. Master election is based on MAC address selection. The possible field values are: – Automatically – Indicates the Stacking Master is selected automatically by software.
GS700TS Smart Switch Software Administration Manual Advanced The Stacking Advanced menu contains the following options: • “Stack Configuration” • “Stack Management” Stack Configuration The Advanced Stack Configuration screen allows network managers to define the stacking master election mode. A unique Unit No. (1-6) identifies a stack member. The configuration is saved and managed by the master unit.
GS700TS Smart Switch Software Administration Manual – Force Master – Forces the selection of a Stacking Master. This causes the new Master unit to take control of the current configuration of the Stack. The old Master is reset and becomes the Secondary Master. Note that only Unit 1 or Unit 2 can be the Stacking Master. 2. Select the Master Election mode. 3. If you selected Force Master, select either 1 or 2 from the stack list. 4. Click APPLY to update the device. 5.
GS700TS Smart Switch Software Administration Manual • Unit No. After Reset – Select the stacking member’s Unit number after the device is reset. The possible field values are: – 1-6 – Assigns the selected Unit number to the stacking member after the device is reset. – Auto – Assigns the Unit number to the stacking member automatically after the device is reset. 2. Select the entry whose Unit ID number is to be changed. 3. Select the Unit No. After Reset from the list. 4.
GS700TS Smart Switch Software Administration Manual • Privacy – Protects against the disclosure of message content. Cipher Block-Chaining (CBC) is used for encryption. Either authentication is enabled on an SNMP message, or both authentication and privacy. However, privacy cannot be enabled without authentication. • Timeliness – Protects against message delay or message redundancy. The SNMP agent compares the incoming message to the message time information.
GS700TS Smart Switch Software Administration Manual Figure 3-9 The SNMPv1/v2 Community Configuration screen contains the following fields: • Management Station IP – Enter the management station IP address for which the Basic SNMP community is defined. • Management Station IP Mask – Enter the management station IP mask for which the Basic SNMP community is defined. If the Management Station IP Mask is set to 255.255.255.
GS700TS Smart Switch Software Administration Manual 5. Click APPLY to update the device. To add a new SNMP community: 1. Click System > SNMP > SNMPv1/v2 > Community Configuration. The Community Configuration screen displays. 2. Enter the Management Station IP, Management Station IP Mask and Community String in the provided fields in the first row. 3. Select the Access Mode from the list in the provided field in the first row. 4. Click ADD to update the device. To remove an SNMP community: 1.
GS700TS Smart Switch Software Administration Manual Figure 3-10 The SNMPv1/v2 Trap Configuration screen contains the following fields: • Recipients IP – Enter the IP address to which the traps are sent. • Notification Type – (Configurable only if the Notification Version is SNMPv2.) Select the type of notification sent. The possible field values are: – Traps – Indicates Traps are sent. – Informs – Informs are sent only when SNMPv2 is enabled.
GS700TS Smart Switch Software Administration Manual To add a new SNMP trap: 1. Click System > SNMP > SNMPv1/v2 > Trap Configuration. The SNMPv1/v2 Trap Configuration screen displays. 2. Enter the fields in the first row. 3. Click ADD to update the device. To remove an SNMP trap: 1. Click System > SNMP > SNMPv1/v2 > Trap Configuration. The SNMPv1/v2 Trap Configuration screen displays. 2. Select the entry to be removed. 3. Click DELETE to remove the entry.
GS700TS Smart Switch Software Administration Manual Figure 3-11 The SNMPv3 Engine ID screen contains the following fields: • Local Engine ID (10-64 Hex Characters) – Enter the local device Engine ID. The field value is a hexadecimal string. Each byte in hexadecimal character strings is two hexadecimal digits. The Engine ID must be defined before SNMPv3 is enabled. • Use Default – Check the box to use the device-generated Engine ID.
GS700TS Smart Switch Software Administration Manual Figure 3-12 The SNMPv3 View Name screen contains the following field: • View Name – Enter the user-defined view name. The view name can contain a maximum of 30 alphanumeric characters. 2. Select the entry. 3. Enter the View Name field in the first row. 4. Click APPLY to update the device. To add a new SNMP View Name: 1. Click System > SNMP > SNMPv3 > View Name. The SNMPv3 View Name screen displays. 2. Enter the View Name field in the first row. 3.
GS700TS Smart Switch Software Administration Manual View Content The View Content screen allows the network manager to assign view attributes to views created in the “View Content” screen. Views provide or block access to device features or portions of features. For example, a view can be defined to provide a view that SNMP group A has Read Only (R/O) access to Multicast groups, while SNMP group B has Read-Write (R/W) access to Multicast groups. Feature access is granted via the MIB name or MIB Object ID.
GS700TS Smart Switch Software Administration Manual 4. Select either Included or Excluded from the View Type provided field in the first row. 5. Click APPLY to update the device. To add a new SNMP OID entry: 1. Click System > SNMP > SNMPv3 > View Content. The SNMPv3 View Content screen displays. 2. Select the View Name from the list in the provided field in the Views table. 3. Enter the Object ID Subtree in the provided field in the first row. 4.
GS700TS Smart Switch Software Administration Manual Figure 3-14 The SNMPv3 Community Configuration screen contains the following fields: • Management Station IP – Enter the management station IP address for which the SNMP community is defined. • Community String – Enter the password used to authenticate the management station to the device. • Group Name – Select the SNMP group from a list of SNMP groups defined in the SNMP Group Configuration screen. 2. Select the SNMP community entry. 3.
GS700TS Smart Switch Software Administration Manual To remove an SNMPv3 community: 1. Click System > SNMP > SNMPv3 > Community Configuration. The SNMPv3 Community Configuration screen displays. 2. Select the community entry. 3. Click DELETE to remove the entry. Group Configuration The SNMPv3 Groups screen provides information for creating SNMP groups and assigning SNMP access control privileges to SNMP groups.
GS700TS Smart Switch Software Administration Manual – • • SNMPv3 – SNMPv3 is defined for the group. Security Level – Select the security level attached to the group. Security levels apply to SNMPv3 only. The possible field values are: – No Authentication – Neither the Authentication nor the Privacy security levels are assigned to the group. – Authentication – Authenticates SNMP messages and ensures that the SNMP message’s origin is authenticated. – Privacy – Encrypts SNMP messages.
GS700TS Smart Switch Software Administration Manual 2. Select the group entry. 3. Click DELETE to remove the entry. User Configuration The SNMPv3 User Configuration screen provides information for creating users, assigning the user a group, an Engine Id, and Authentication attributes. To define SNMP users: 1. Click System > SNMP > SNMPv3 > User Configuration.
GS700TS Smart Switch Software Administration Manual – SHA Password – Users are authenticated using the HMAC-SHA-96 authentication level. The user must enter a password. – MD5 Key – Users are authenticated using the HMAC-MD5 algorithm. – SHA Key – Users are authenticated using the HMAC-SHA-96 authentication level. • Password (1-32 Characters) – Enter the password for the group member. • Authentication Key – Enter the HMAC-MD5-96 or HMAC-SHA-96 authentication level.
GS700TS Smart Switch Software Administration Manual To remove an SNMPv3 user: 1. Click System > SNMP > SNMPv3 > Users Configuration. The SNMPv3 User Configuration screen displays. 2. Select the user entry. 3. Click DELETE to remove the entry. Global Trap Configuration The SNMPv3 Global Trap Settings screen contains parameters for defining SNMP notification parameters. To configure SNMP notification global parameters: 1. Click System > SNMP > SNMPv3 > Global Trap Configuration.
GS700TS Smart Switch Software Administration Manual • Authentication Notifications – Select the SNMP authentication failure notification status on the device. The possible field values are: – Disable – Disables the device from sending authentication failure notifications. – Enable – Enables the device to send authentication failure notifications. This is the default value. 2. Select either Enable or Disable in the SNMP Notifications provided field. 3.
GS700TS Smart Switch Software Administration Manual The SNMPv3 Trap Configuration screen contains the following fields: • Recipients IP – Enter the IP address to which the traps are sent. • Notification Type – Select the type of notification sent. The possible field values are: – Traps – Indicates traps are sent. – Informs – Indicates informs are sent. • User Name – Enter the user name. The field range is up to 30 alphanumeric characters.
GS700TS Smart Switch Software Administration Manual 2. Enter the Recipients IP address in the provided field in the first row. 3. Select either Traps or Informs in the Notification Type provided field in the first row. 4. Enter the User Name in the provided field in the first row. 5. Select the Security Level from the list in the provided field in the first row. 6. Enter the UDP Port in the provided field in the first row. 7. Select the Filter Name from the list in the provided field in the first row. 8.
GS700TS Smart Switch Software Administration Manual Figure 3-19 The SNMPv3 Trap Filter Name screen contains the following field: • Filter Name – Enter the trap filter name. 2. Select the trap filter entry. 3. Enter the trap Filter Name in the provided field in the first row. 4. Click APPLY to update the device. To add a new trap filter name: 1. Click System > SNMP > SNMPv3 > Trap Filter Name. The SNMPv3 Trap Filter Name screen displays. 2.
GS700TS Smart Switch Software Administration Manual To define SNMPv3 Trap Filter settings: 1. Click System > SNMP > SNMPv3 > Trap Filter Content. The SNMPv3 Trap Filter Content screen displays: Figure 3-20 The SNMPv3 Trap Filter Content screen contains the following fields: Trap Filter Settings • Filter Name – Select the user-defined notification filter from the list. Trap Filter Settings • Object ID Subtree – Enter the OID for which notifications are sent or blocked.
GS700TS Smart Switch Software Administration Manual To add a new trap filter content entry: 1. Click System > SNMP > SNMPv3 > Trap Filter Content. The SNMPv3 Trap Filter Content screen displays. 2. Select the Filter Name from the list in the provided field. 3. Enter the Object ID Subtree in the provided field in the first row. 4. Select the Filter Type from the list in the provided field in the first row. 5. Click ADD to update the device. To remove a trap filter content entry: 1.
GS700TS Smart Switch Software Administration Manual Basic The LLDP Basic menu contains the following option: • “LLDP Configuration” LLDP Configuration The Basic LLDP Configuration screen allows network managers to assign global LLDP and LLDP-MED (LLDP - Media Endpoint Discovery) parameters. To configure LLDP settings: 1. Click System > LLDP > Basic > LLDP Configuration.
GS700TS Smart Switch Software Administration Manual • TLV Advertised Interval – Enter the rate in seconds at which LLDP advertisement updates are sent. The possible field range is 5 - 32768 seconds. The default value is 30 seconds. • Topology Change Notification Interval – Displays the amount of time that has elapsed since the bridge was initialized or reset or the last topology change that occurred.
GS700TS Smart Switch Software Administration Manual • “LLDP-MED Network Policy” • “LLDP-MED Port Settings” • “Local Information” • “Neighbors Information” • , “LLDP Statistics” LLDP Configuration The Advanced LLDP Configuration screen allows network managers to assign global LLDP and LLDP-MED (LLDP - Media Endpoint Discovery) parameters. To configure LLDP settings: 1. Click System > LLDP > Advanced > LLDP Configuration.
GS700TS Smart Switch Software Administration Manual • LLDPDU Handling – Select LLDPDU (LLDP Data Unit) packet handling when LLDP is disabled. The possible field values are: – Flooding – LLDPDU packets are flooded to all ports in the system. – Filtering – LLDPDU packets are filtered. This is the default. • TLV Advertised Interval – Enter the rate in seconds at which LLDP advertisement updates are sent. The possible field range is 5 - 32768 seconds. The default value is 30 seconds.
GS700TS Smart Switch Software Administration Manual LLDP Port Settings The LLDP Port Settings screen allows network administrators to define LLDP port settings, including the port type, the LLDP port state, and the type of port information advertised. To define LLDP Port Properties: 1. Click System > LLDP > Advanced > LLDP Port Settings.
GS700TS Smart Switch Software Administration Manual – • • AutoAdvertise – Advertises the device’s current IP address as the management IP address. Notification – Select the topology change notification status on the interface. – Enable – Enables topology change notification on the interface. This is the default value. – Disable – Disables topology change notification on the interface. Optional TLVs – Select whether optional TLVs are advertised from the interface.
GS700TS Smart Switch Software Administration Manual • Provides troubleshooting information. LLDP-MED sends network managers alerts for: – Port speed and duplex mode conflicts – QoS policy misconfigurations To configure LLDP-MED Network Policy: 1. Click System > LLDP > Advanced > LLDP-MED Network Policy. The LLDP-MED Network Policy screen displays: Figure 3-24 The LLDP-MED Network Policy screen contains the following fields: • Network Policy Number – Select the network policy number.
GS700TS Smart Switch Software Administration Manual – Streaming Video – Indicates the network policy is defined for a Streaming Video application. – Video Signaling – Indicates the network policy is defined for a Video Signaling application. • VLAN ID – Enter the VLAN ID for which the network policy is defined. • VLAN Type – Select the VLAN type for which the network policy is defined. The possible field values are: – Tagged – Indicates the network policy is defined for tagged VLANs.
GS700TS Smart Switch Software Administration Manual To remove a network policy entry: 1. Click System > LLDP > Advanced > LLDP-MED Network Policy. The LLDP-MED Network Policy screen displays. 2. Select the Network Policy entry. 3. Click DELETE to remove the entry. LLDP-MED Port Settings The LLDP-MED Port Settings screen contains parameters for assigning LLDP-MED network policies to specific ports. To configure LLDP-MED port settings: 1. Click System > LLDP > Advanced > LLDP-MED Port Settings.
GS700TS Smart Switch Software Administration Manual – • Disable – Disables notification on the selected port. Network Policies – Click on the gold button to select the network policy numbers to apply to the selected port. 2. Select the Port from the list in the provided field. 3. Select the LLDP-MED status of the selected port from the list in the provided field. 4. Select the Notification Status of the selected port from the list in the provided field. 5.
GS700TS Smart Switch Software Administration Manual • Chassis ID – Displays the chassis identification of the device transmitting the LLDP frame. • System Name – Displays the administratively assigned device name. • System Description – Describes the device. For example, system hardware type and version, operating system and network software. • System Capabilities – Describes the primary device function. For example: Bridge, Router. Port Information • Interface – Displays the port number.
GS700TS Smart Switch Software Administration Manual MAC/PHY Details • • Auto-Negotiation Supported – Displays the port speed auto-negotiation support status. The possible values are: – True – Indicates auto-negotiation is supported on the port. – False – Indicates auto-negotiation is not supported on the port. Auto-Negotiation Enabled – Displays the port speed auto-negotiation active status. The possible values are: – True – Indicates auto-negotiation is enabled on the port.
GS700TS Smart Switch Software Administration Manual • VLAN Type – Displays the VLAN type for which the network policy is defined. The possible field values are: – Tagged – Indicates the network policy is defined for tagged VLANs. – Untagged – Indicates the network policy is defined for untagged VLANs. • User Priority – Displays the network policy user priority. • DSCP – Displays the network policy DSCP. 3. Click the Network Policies gold bar to display the network policies applied to the port.
GS700TS Smart Switch Software Administration Manual • Port ID SubType – Displays the port ID subtype. For example, MAC address. • Port ID – Displays the port identification of the port transmitting the LLDP frame. • System Name – Displays the administratively assigned device name. • Time To Live – Displays the amount of time (in seconds) in which the information received in the LLDPDU from the remote device remains valid. 2. Click REFRESH to refresh the Neighbors Information screen.
GS700TS Smart Switch Software Administration Manual The Neighbors Information window contains the following fields: Port Details • Local Port – Displays the port number. • MSAP Entry – Displays the device’s Media Service Access Point (MSAP) entry number. Basic Details • Chassis ID SubType – Displays the chassis ID subtype. For example, MAC address. • Chassis ID – Displays the chassis identification of the device transmitting the LLDP frame. • Port ID SubType – Displays the port ID subtype.
GS700TS Smart Switch Software Administration Manual • Auto-Negotiation Enabled – Displays the port speed auto-negotiation active status. The possible values are: – True – Indicates Auto-negotiation is enabled on the port. – False – Indicates Auto-negotiation is not enabled on the port. • Auto-Negotiation Advertised Capabilities – Displays the port speed auto-negotiation capabilities. For example, 1000BASE-T half duplex mode, 100BASE-TX full duplex mode.
GS700TS Smart Switch Software Administration Manual • Supported – Displays the supported Port and Protocol VLAN IDs. • Enabled – Displays the Enabled Port and Protocol VLAN IDs. VLAN IDs • VID – Displays the Port and Protocol VLAN ID. • VLAN Names – Displays the advertised VLAN names. Protocol IDs • Protocol ID – Displays the advertised protocol IDs. MED Details • Capabilities Supported – Displays the MED capabilities enabled on the port.
GS700TS Smart Switch Software Administration Manual Location Information • Civic – Displays the device’s civic or street address location. For example, 123 45th St E. The field value length range is 6 - 160 characters. • Coordinates – Displays the device’s location map coordinates - latitude, longitude and altitude. • ECS ELIN – Displays the device’s Emergency Call Service (ECS) Emergency Location Identification Number (ELIN). The field range is 10 - 25.
GS700TS Smart Switch Software Administration Manual Figure 3-29 The LLDP Statistics screen contains the following fields: • Last Update – Indicates the last time the LLDP statistics were updated. The date and time are displayed inthe following format, day-month-year hour:minute:second. • Total Inserts – Indicates the total number of new entries since the last time the table was last updated. • Total Deletes – Indicates the total number of deleted entries since the table was last updated.
GS700TS Smart Switch Software Administration Manual • – Discarded – Indicates the total number of TLVs discarded on the port. – Unrecognized – Indicates the total number of TLV which were not recognized by the port. Rx Age-outs Total – Indicates the total amount of LLDP entries that were aged out on the port. 2. Select a stacking member in the Unit No. field. The LLDP statistics for the stacking member are displayed. Managing System Settings 3-58 v1.
Chapter 4 Configuring Switching Settings Configuring Switching Settings The navigation pane at the top of the web browser interface contains a Switching tab that enables you to manage your GS700TS Smart Switch with features under the following main headings: • “Ports” • “LAG” • “VLAN” • “Voice VLAN” • “STP” • “Multicast” • “Address Table” The description that follows in this chapter describes configuring and managing switching settings in the GS700TS Smart Switch.
GS700TS Smart Switch Software Administration Manual Figure 4-1 The Port Configuration screen contains the following fields: • Port – Displays the port number. • Port Description – Enter a user-defined port description. • Status – Select the port’s operational status. The possible field values are: • • – Up – Indicates the port is operational. – Down – Indicates the port is not operational.
GS700TS Smart Switch Software Administration Manual • • • • • – 10M – Indicates the port is currently operating at 10 Mbps. – 100M – Indicates the port is currently operating at 100 Mbps. – 1000M – Indicates the port is currently operating at 1000 Mbps. Duplex Mode – Select the port duplex mode. This field is configurable only when auto negotiation is disabled and the port speed is set to 10M or 100M.
GS700TS Smart Switch Software Administration Manual • – MDI (Media Dependent Interface) – Connects end stations. – MDIX (Media Dependent Interface with Crossover) – Connects HUBs and switches. – Auto – Provides automatic cable type detection. LAG ID – Select the LAG ID to which the selected port is assigned. 2. Select the interface. 3. Enter or modify the fields in the first row. 4. Click APPLY to update the device.
GS700TS Smart Switch Software Administration Manual Basic The LAG Basic menu contains the following options: • “LAG Configuration” • “LAG Membership” LAG Configuration The Basic LAG Configuration screen contains fields for configuring LAG parameters. The system supports 8 LAGs, and each LAG can contain up to 8 ports. To define LAG parameters: 1. Click Switching > LAG > Basic > LAG Configuration.
GS700TS Smart Switch Software Administration Manual • • • • • – Enable – Reactivates the suspended LAG. – Disable – Does not reactivate the suspended LAG. Type – Displays the LAG type. The possible field values are: – Static – Indicates the LAG is configured manually. – LACP – Indicates the LAG is configured automatically. Speed – Select the data transmission rate for the LAG. The LAG type determines what speed setting options are available.
GS700TS Smart Switch Software Administration Manual LAG Membership The Basic LAG Membership screen allows network managers to assign ports to LAGs. To assign ports to LAGs: 1. Click Switching > LAG > Basic > LAG Membership. The Basic LAG Membership screen displays: Figure 4-3 The Basic LAG Membership screen contains the following fields: • LAG ID – Select the LAG ID. • LAG Name – Displays the user-defined LAG name. • LAG Type – Select the LAG type.
GS700TS Smart Switch Software Administration Manual Figure 4-4 Advanced The LAG Advanced menu contains the following options: • “LAG Configuration” • “LAG Membership” • “LACP Configuration” • “LACP Port Configuration” LAG Configuration The Advanced LAG Configuration screen contains fields for configuring LAG parameters. The system supports 8 LAGs, and each LAG can contain up to 8 ports. To define LAG parameters: 1. Click Switching > LAG > Advanced > LAG Configuration.
GS700TS Smart Switch Software Administration Manual Figure 4-5 The Advanced LAG Configuration screen contains the following fields: • Interface – Displays the LAG number. • Description – Enter a user-defined LAG description. • Status – Select the current link operation. The possible field values are: • • • – Up – Indicates the LAG is currently linked and forwarding traffic. – Down – Indicates the LAG is currently not linked.
GS700TS Smart Switch Software Administration Manual – • • • 1000M – Indicates the LAG is currently operating at 1000 Mbps. Duplex Mode – Displays the duplex mode of the LAG. The possible field values are: – Full – Indicates the interface supports transmission between the device and its link partner in both directions simultaneously. – None – Indicates Duplex mode is not enabled on the LAG. Auto Negotiation – Select the auto negotiation status of the LAG.
GS700TS Smart Switch Software Administration Manual Figure 4-6 The Advanced LAG Membership screen contains the following fields: • LAG ID – Select the LAG ID. • LAG Name – Displays the user-defined LAG name. • LAG Type – Select the LAG type. The possible field values are: – Static – Indicates the LAG is configured manually. – LACP – Indicates the LAG is configured automatically. 2. Select the LAG ID and LAG Type. 3. Click on the unit’s gold button. The unit’s port panel displays. 4.
GS700TS Smart Switch Software Administration Manual Figure 4-7 LACP Configuration Aggregated links can be set up manually or automatically established by enabling LACP on the relevant links. Aggregated ports can be linked into link-aggregation port-groups. Each group is comprised of ports with the same speed. The LACP Configuration screen contains a field for configuring a global LACP priority value. To configure LACP: 1. Click Switching > LAG > Advanced > LACP Configuration.
GS700TS Smart Switch Software Administration Manual The LACP Configuration screen contains the following field: • LACP System Priority – Enter the system priority value. The field range is 1-65535. The field default is 1. 2. Enter the LACP System Priority in the provided field. 3. Click APPLY to update the device. LACP Port Configuration The LACP Port Configuration screen provides information and parameters for configuring the LACP Priority and Timeout fields on interfaces.
GS700TS Smart Switch Software Administration Manual 2. Select the interface. 3. Enter the LACP Priority and select the Timeout in the provided fields in the first row. 4. Click APPLY to update the device. VLAN VLANs are logical subgroups with a Local Area Network (LAN) which combine user stations and network devices into a single unit, regardless of the physical LAN segment to which they are attached. VLANs allow network traffic to flow more efficiently within subgroups.
GS700TS Smart Switch Software Administration Manual To define VLAN properties: 1. Click Switching > VLAN > Basic > VLAN Configuration. The Basic VLAN Configuration screen displays: Figure 4-10 The Basic VLAN Configuration screen contains the following fields: • VLAN ID – Enter the VLAN ID. The field range is 2-4093. • VLAN Name – Enter the user-defined VLAN name. • Type – Displays the VLAN type. The possible field values are: – Static – Indicates the VLAN is user-defined.
GS700TS Smart Switch Software Administration Manual To remove a VLAN: Note: Prior to deleting a VLAN, ensure all multicast group configuration entries associated with the VLAN are deleted. Refer to “Multicast Group Configuration” for deleting multicast group entries. 1. Click Switching > VLAN > Basic > VLAN Configuration. The Basic VLAN Configuration screen displays. 2. Select the VLAN entry. 3. Click DELETE to remove the entry.
GS700TS Smart Switch Software Administration Manual The Advanced VLAN Configuration screen contains the following fields: • VLAN ID – Enter the VLAN ID. The field range is 2-4093. • VLAN Name – Enter the user-defined VLAN name. • Type – Displays the VLAN type. The possible field values are: – Static – Indicates the VLAN is user-defined. – Default – Indicates the default VLAN ID is 1. It cannot be modified by the user. 2. Select the VLAN entry. 3.
GS700TS Smart Switch Software Administration Manual Figure 4-12 The VLAN Membership screen contains the following fields: • VLAN ID – Select the VLAN ID to be displayed and configured. VLAN ID 1 cannot be modified. • VLAN Name – Displays the name of the VLAN. • VLAN Type – Displays the VLAN type. The possible field values are: • – Static – Indicates the VLAN is user-defined. – Default – Indicates the VLAN is the default VLAN. The default VLAN is enabled.
GS700TS Smart Switch Software Administration Manual To tag or untag selected ports or LAGs: 1. Click Switching > VLAN > Advanced > VLAN Membership. The VLAN Membership screen displays. 2. Click a gold button to display the ports or LAGs. 3. Click the boxes below the selected ports or LAGs to mark them as tagged (T) or untagged (U). 4. Click APPLY to update the device. To tag or untag all the ports within a stacking unit or all the LAGs: 1. Click Switching > VLAN > Advanced > VLAN Membership.
GS700TS Smart Switch Software Administration Manual To view VLAN untagged port members: 1. Click Switching > VLAN > Advanced > VLAN Membership. The VLAN Membership screen displays. 2. Click UNTAGGED PORT MEMBERS. The VLAN Untagged Ports screen opens: Figure 4-14 Port PVID Configuration The Port PVID Configuration screen contains parameters for assigning Port VLAN ID (PVID) values to interfaces. All ports must have a defined PVID. If no value is defined, the default VLAN PVID is used.
GS700TS Smart Switch Software Administration Manual Figure 4-15 The Port PVID Configuration screen contains the following fields: • Interface – Displays the interface (port number or LAG number) to which the PVID tag is assigned. • PVID – Enter the PVID value. The possible field range is 1-4093. 2. Select an interface. 3. Enter the PVID in the provided field in the first row. 4. Click APPLY to update the device.
GS700TS Smart Switch Software Administration Manual There are two operational modes for IP Phones: • IP phones are configured with VLAN-mode as enabled, ensuring that tagged packets are used for all communications. • If the IP phone’s VLAN-mode is disabled, the phone uses untagged packets. The phone uses untagged packets while retrieving the initial IP address through DHCP. The phone eventually uses the Voice VLAN and starts sending tagged packets.
GS700TS Smart Switch Software Administration Manual The Voice VLAN Basic Properties screen contains the following fields: • VoiceVLAN Status – Select the VoiceVLAN status on the device. The possible field values are: – Disable – Disables Voice VLAN on the device. This is the default value. – Enable – Enables Voice VLAN on the device. • VoiceVLAN ID – Select the Voice VLAN ID number. • Class of Service – Select the CoS tag to add to incoming packets not containing a VPT received on the Voice VLAN.
GS700TS Smart Switch Software Administration Manual Properties The Voice VLAN Advanced Properties screen contains information about Voice VLAN on the device, including the ports enabled and included in the Voice VLAN. To define Voice VLAN settings: 1. Click Switching > Voice VLAN > Advanced > Properties. The Voice VLAN Advanced Properties screen displays: Figure 4-17 The Voice VLAN Advanced Properties screen contains the following fields: • VoiceVLAN Status – Select the Voice VLAN status on the device.
GS700TS Smart Switch Software Administration Manual • Voice VLAN Aging Time – Enter the Voice VLAN aging time. The Voice VLAN aging time sets the maximum inactivity time for a Voice VLAN port member after its MAC Address is aged out. If the time since the last MAC Address with telephony MAC Address was aged out exceeds the Voice VLAN aging time, the port is dropped from the Voice VLAN. The default time is one day. The field format is Day, Hour, Minute.
GS700TS Smart Switch Software Administration Manual The Voice VLAN Port Setting screen contains the following fields: • Interface – Displays the interface for which the Voice VLAN settings are applied. • Voice VLAN Mode – Select the Voice VLAN mode. The possible field values are: • • – None – Maintains the current Voice VLAN port/LAG settings. This is the default value. – Auto – Enables the port/LAG to join the Voice VLAN if traffic with an IP Phone MAC Address is transmitted on the port/LAG.
GS700TS Smart Switch Software Administration Manual Figure 4-19 The Voice VLAN OUI screen contains the following fields: • • Telephony OUI(s) – Enter the OUI to enable on the Voice VLAN. The following OUIs are enabled by default. – 00-E0-BB – Assigned to 3COM IP Phones. – 00-03-6B – Assigned to Cisco IP Phones. – 00-E0-75 – Assigned to Polycom/Veritel IP Phones. – 00-D0-1E – Assigned to Pingtel IP Phones. – 00-01-E3 – Assigned to Siemens IP Phones.
GS700TS Smart Switch Software Administration Manual To remove a Voice VLAN OUI: 1. Click Switching > Voice VLAN > Advanced > OUI. The Voice VLAN OUI screen displays. 2. Select the OUI entry. 3. Click DELETE to remove the entry. To restore Voice VLAN OUI factory defaults: 1. Click Switching > Voice VLAN > Advanced > OUI. The Voice VLAN OUI screen displays. 2. Click RESTORE DEFAULTS to restore the factory defaults. STP Spanning Tree Protocol (STP) provides network topology for any arrangement of bridges.
GS700TS Smart Switch Software Administration Manual Figure 4-20 The Basic STP Configuration screen contains the following fields: Global Settings • • Spanning Tree State – Select the STP state on the device. The possible field values are: – Disable – Disables STP on the device. – Enable – Enables STP on the device. This is the default value. STP Operation Mode – Specifies the STP mode enabled on the device. The possible field values are: – STP – Enables Classic STP on the device.
GS700TS Smart Switch Software Administration Manual • Filtering – Filters BPDU packets when Spanning Tree is disabled on an interface or globally on the device. Filtering is used when a bridge interconnects two regions and there is a need to have a separate spanning tree for each region. Filtering the BPDU in the bridge connecting the two regions will serve this purpose. • Flooding – Floods BPDU packets when Spanning Tree is disabled on an interface or globally on the device. This is the default value.
GS700TS Smart Switch Software Administration Manual Advanced The STP Advanced menu contains the following options: • “STP Configuration” • “CST Configuration” • “CST Port Configuration” • “RSTP” • “MST Configuration” • “MST Port Configuration” STP Configuration The Advanced STP Configuration screen contains parameters for enabling STP on the device. To configure STP on the device: 1. Click Switching > STP > Advanced > STP Configuration.
GS700TS Smart Switch Software Administration Manual The Advanced STP Configuration screen contains the following fields: STP Configuration • • Spanning Tree State – Select the STP state on the device. The possible field values are: – Disable – Disables STP on the device. – Enable – Enables STP on the device. This is the default value. STP Operation Mode – Select the STP mode on the device. The possible field values are: – STP – Enables STP on the device. – RSTP – Enables Rapid STP on the device.
GS700TS Smart Switch Software Administration Manual • Forward Delay (Sec) – Displays the device Forward Delay Time. The Forward Delay Time is the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets. The default is 15 seconds. • Hello Time (Sec) – Displays the device Hello Time. The Hello Time indicates the amount of time in seconds a Root Bridge waits between configuration messages. The default is 2 seconds.
GS700TS Smart Switch Software Administration Manual Figure 4-22 The CST Configuration screen contains the following fields: CST Configuration • Bridge Priority – Enter the bridge priority value. When switches or bridges are running STP, each is assigned a priority. After exchanging BPDUs, the device with the lowest priority value becomes the Root Bridge. The default value is 32768. The bridge priority value is provided in increments of 4096. • Hello Time – Enter the device Hello Time.
GS700TS Smart Switch Software Administration Manual • Root Port – Displays the port number that offers the lowest cost path from this bridge to the Root Bridge. This field is significant when the bridge is not the Root Bridge. The current root port is zero when the device is not connected to the network. • Root Path Cost – Displays the cost of the path from this bridge to the Root Bridge. The current root path cost is zero when the device is not connected to the network.
GS700TS Smart Switch Software Administration Manual The CST Port Configuration screen contains the following fields: • Interface – Displays the port or LAG for which the STP information is displayed. • STP Status – Select the STP status on the interface. The possible field values are: • • – Enable – Enables STP on the interface. This is the default. – Disable – Disables STP on the interface. Fast Link – Select the Fast Link state on the interface.
GS700TS Smart Switch Software Administration Manual 2. Select the STP Status and Fast Link status in the provided fields. 3. Enter the Path Cost in the provided field. 4. Select the Priority from the list in the provided field. 5. Click APPLY to update the device. RSTP While Classic STP prevents forwarding loops in a general network topology, convergence can take between 30-60 seconds. This time may delay detecting possible loops and propagating status topology changes.
GS700TS Smart Switch Software Administration Manual • • • • – Designated – Indicates the port or LAG through which the designated switch is attached to the LAN. – Alternate – Provides an alternate path to the root switch from the root interface. – Backup – Provides a backup path to the designated port path toward the Spanning Tree leaves. Backup ports occur only when two ports are connected in a loop by a point-to-point link, or when a LAN has two or more connections connected to a shared segment.
GS700TS Smart Switch Software Administration Manual – Disables – Disables point-to-point link. – Auto – Enables the device to automatically establish a point-to-point link. This is the default value. • Point-to-Point Operational Status – Displays the point-to-point operational status which depends on the connecting link. • Activate Protocol Migration – Activate sending Link Control Protocol (LCP) packets to configure and test that the data link is enabled. 2. Select the interface. 3.
GS700TS Smart Switch Software Administration Manual Figure 4-25 The MST Configuration screen contains the following fields: • MST ID – Specifies the instance to which the VLAN is assigned. • Priority – Specifies the selected spanning tree instance device priority. The field range is 0-61440. The field default is 32768. • VLAN ID – Maps the selected VLANs to the selected instance. Each VLAN belongs to one instance. • Bridge Identifer – Indicates the bridge ID of the selected instance.
GS700TS Smart Switch Software Administration Manual Figure 4-26 The MST Port Configuration screen contains the following fields: • Select MST – Select an MST to be displayed. • Interface – Displays the Port or LAG for which the MSTP settings are displayed. • Port Priority – Defines the interface priority for the specified instance. The field range is 0-240. The default value is 128. • Port Path Cost – Indicates the port contribution to the Spanning Tree instance.
GS700TS Smart Switch Software Administration Manual • – Listening — Indicates that the port is in Listening mode. The port cannot forward traffic nor can it learn MAC addresses. – Learning — Indicates that the port is in Learning mode. The port cannot forward traffic, however it can learn new MAC addresses. – Forwarding — Indicates that the port is in Forwarding mode. The port can forward traffic and learn new MAC addresses.
GS700TS Smart Switch Software Administration Manual Multicast Multicast forwarding allows a single packet to be forwarded to multiple destinations. L2 Multicast service is based on L2 switch receiving a single packet addressed to a specific Multicast address. Multicast forwarding creates copies of the packet, and transmits the packets to the relevant ports.
GS700TS Smart Switch Software Administration Manual To configure Basic IGMP Snooping: 1. Click Switching > Multicast > Basic > IGMP Snooping Configuration. The Basic IGMP Snooping Configuration screen displays: Figure 4-27 The Basic IGMP Snooping Configuration screen contains the following fields: IGMP Snooping Configuration • IGMP Snooping Status – Select the IGMP Snooping status on the device. The possible field values are: – – Disable – Disables IGMP Snooping on the device. This is the default value.
GS700TS Smart Switch Software Administration Manual 2. Select the VLAN ID entry in the Interface Settings table. 3. Select the Status from the list in the provided field in the first row. 4. Click APPLY to update the device. Advanced The Multicast Advanced menu contains the following options: • “IGMP Snooping Configuration” • “Multicast Group Configuration” • “Multicast Group Membership” • “Multicast Forward All” IGMP Snooping Configuration To configure Advanced IGMP Snooping: 1.
GS700TS Smart Switch Software Administration Manual The Advanced IGMP Snooping Configuration screen contains the following fields: IGMP Snooping Configuration • • Status – Select the IGMP Snooping status on the device. IGMP Snooping is operational if both the Status and Bridge Multicast Filtering fields are enabled. The possible field values are: – Disable – Disables IGMP Snooping on the device. This is the default value. – Enable – Enables IGMP Snooping on the device.
GS700TS Smart Switch Software Administration Manual 2. Select the IGMP Snooping Status and Bridge Multicast Filtering Status in the provided fields. 3. Click APPLY to update the device. To configure IGMP Snooping on a VLAN: 1. Click Switching > Multicast > Advanced > IGMP Snooping Configuration. The Advanced IGMP Snooping Configuration screen displays. 2. Select the VLAN ID entry in the Interface Settings table. 3.
GS700TS Smart Switch Software Administration Manual • VLAN Name – Displays the user-defined VLAN name. • Multicast Address – Enter the Multicast group MAC Address associated with the VLAN. • Type – Indicates the VLAN ID status in relation to the Multicast group. – Static – Attaches the VLAN ID to the Multicast group as static member. – Dynamic – Dynamically joins the VLAN ID to the Multicast group. 2. Select the group entry. 3. Enter the Multicast Address in the provided field in the first row. 4.
GS700TS Smart Switch Software Administration Manual The Multicast Group Membership screen contains the following information: Multicast Group Membership • VLAN ID – Enter the VLAN ID. • VLAN Name – Displays the user defined VLAN name. • Multicast Address – Enter the Multicast group MAC address. Multicast Group • Interface – Displays the ports and LAGs for which the Multicast settings are displayed. • Interface Status – Select the interface status.
GS700TS Smart Switch Software Administration Manual Figure 4-31 The Multicast Forward All screen contains the following information: Multicast Forward All • VLAN ID – Enter the VLAN ID. • VLAN Name – Displays the user defined VLAN name. Multicast Forward All • Interface – Displays the interface for which the Multicast settings are displayed. • Interface Status – Select the interface status.
GS700TS Smart Switch Software Administration Manual 5. Click APPLY to update the device. Address Table Packets addressed to destinations stored in either the Static or Dynamic databases are immediately forwarded to the port. The Dynamic MAC Address Table can be sorted by interface, VLAN, or MAC Address. Dynamic MAC addresses are learned from packets from sources that arrive at the device, while Static addresses are configured manually.
GS700TS Smart Switch Software Administration Manual To query the Basic Address Table: 1. Click Switching > Address Table > Basic > Address Table. The Basic Address Table screen displays: Figure 4-32 The Basic Address Table screen contains the following fields: • Search By – Display the MAC Address list according to selected category and query field. The possible field values are: – VLAN ID – Display the MAC Address table entries that relate to the specific VLAN ID.
GS700TS Smart Switch Software Administration Manual To delete all addresses from the Basic Address Table: 1. Click Switching > Address Table > Basic > Address Table. The Basic Address Table screen displays. 2. Click CLEAR ALL to delete all entries in the address table. Advanced The Address Table Advanced menu contains the following options: • “Static Addresses” • “Dynamic Addresses” • “Address Table” Static Addresses The Static Addresses screen contains a list of static MAC addresses.
GS700TS Smart Switch Software Administration Manual • Interface – Enter the interface to which the entry refers. • Status – Select the MAC Address duration period status within the table. The possible field values are: – Permanent – Indicates the MAC address is permanent. – Delete on Reset – Indicates the MAC address is deleted when the device is reset. – Delete on Timeout – Indicates the MAC address is deleted when the Address Aging Interval expires.
GS700TS Smart Switch Software Administration Manual • Address Aging – Enter the amount of time the MAC address remains in the Dynamic MAC Address table before it is timed out if no traffic from the source is detected. The range is 10 - 630 seconds. The default value is 300 seconds. 2. Enter the Address Aging in the provided field in the first row. 3. Click APPLY to update the device. Address Table The Advanced Address Table screen displays the MAC Address table according to the defined categories.
GS700TS Smart Switch Software Administration Manual – Interface – Display the MAC Address table entries that relate to the specific interface. • VLAN ID – Displays the VLAN ID number to which the entry refers. • MAC Address – Displays the MAC address to which the entry refers. • Interface – Displays the interface to which the entry refers. 2. Select the Search By key from the list in the provided field. 3. Enter the value to be searched for in the provided box. 4. Click GO to execute the query.
Chapter 5 Configuring QoS Configuring the Basic and Advanced QoS Settings The navigation pane at the top of the web browser interface contains a QoS tab that enables you to manage your GS700TS Smart Switch with features under the following main heading: • “CoS” The description that follows in this chapter describes configuring and managing QoS settings in the GS700TS Smart Switch. CoS Quality of Service (QoS) provides the ability to implement QoS and priority queuing within a network.
GS700TS Smart Switch Software Administration Manual • Weighted Round Robin – Ensures that a single application does not dominate the device forwarding capacity. Weighted Round Robin (WRR) forwards entire queues in a round robin order. All queues can participate in WRR, except SP queues. If the traffic flow is minimal, and SP queues do not occupy the whole bandwidth allocated to a port, the WRR queues can share the bandwidth with the SP queues.
GS700TS Smart Switch Software Administration Manual Figure 5-1 The CoS Global Configuration screen contains the following: • • QoS Status – Select whether QoS is enabled or disabled on the device. The possible values are: – Enable – Enables QoS globally. This is the default value. – Disable – Disables QoS globally. QoS Mode – Select whether basic or advanced mode is enabled on the device. The possible values are: – Basic – Indicates that basic QoS mode is enabled on the device.
GS700TS Smart Switch Software Administration Manual • Trust Mode – Select which packet fields to use for classifying packets entering the device. The possible Trust Mode field values are: – CoS – Classifies traffic based on the CoS (VPT) tag value. – DSCP – Classifies traffic based on the DSCP tag value. 2. Select Enable or Disable in the QoS Status field. 3. Select the QoS Mode and Trust Mode in the provided fields. 4. Click APPLY to update the device.
GS700TS Smart Switch Software Administration Manual The CoS Interface Configuration screen contains the following fields: • Interface – Displays the interface for which the default CoS parameters are defined. • Default CoS – Select the default CoS value for incoming packets to the selected interface for which a VLAN priority (VPT) is not defined. • Restore Defaults – Restore the factory CoS default settings to the selected interface.
GS700TS Smart Switch Software Administration Manual 2. Select either Strict Priority or WRR to specify the traffic scheduling method. 3. Click APPLY to update the device. Bandwidth After packets are assigned to a queue, a scheduling scheme can be assigned to an interface, using either: • Committed Burst Size – Indicates the maximum number of data bits transmitted within a specific time interval. • Committed Information Rate – Indicates the rate that data is transmitted.
GS700TS Smart Switch Software Administration Manual – Disable – Disables ingress rate limiting on the interface. • Ingress Rate Limit – Enter the rate limit in kilobits per second. The possible field range is 3500 to the maximum port speed. GE (Gigabit Ethernet) ports have a maximum speed of 1000000 kilobits per second. The field default value is 3500. • Egress Shaping Rates Status – Select whether egress shaping is defined on the interface.
GS700TS Smart Switch Software Administration Manual CoS to Queue Mapping The CoS to Queue Mapping screen contains fields for mapping CoS values to traffic queues. To map CoS values to queues: 1. Click QoS > CoS> Advanced > CoS to Queue Mapping. The CoS to Queue Mapping screen displays: Figure 5-5 The CoS to Queue Mapping screen contains the following fields: CoS to Queue Mapping • CoS – Displays the CoS priority tag values, where 0 is the lowest and 7 is the highest.
GS700TS Smart Switch Software Administration Manual 4. Click APPLY to update the device. DSCP to Queue Mapping The DSCP To Queue Mapping screen contains fields for mapping DSCP values to traffic queues for various PHBs (Per-Hop Behaviors). These include the CS (Class Selector), AF (Assured Forwarding) and EF (Expedited Forwarding). For example, a packet with a DSCP tag value of 1 can be assigned to the High queue. To map DSCP values to queues: 1. Click QoS > CoS> Advanced > DSCP To Queue Mapping.
GS700TS Smart Switch Software Administration Manual • Queue – Select the traffic-forwarding queue to which the DSCP is mapped. Four traffic priority queues are supported (Lowest, Low, Normal and High). The High Queue is reserved for special traffic and is not recommended for use. Restore Default Mapping • Restore Defaults – Restore the DSCP Mapping device factory default values. The possible field values are: – Checked – Restores the factory default settings for DSCP mapping values.
GS700TS Smart Switch Software Administration Manual • IPv4 ACL – Select a user-defined IPv4 ACL from the list. • Or – Indicates the criteria used to match class maps with an IP ACL address. Matches either IPv4 or IPv6 or MAC to the packet. • IPv6 ACL – Select a user-defined IPv6 ACL from the list. • And/Or – Indicates the criteria used to match class maps with an IP ACL address. Matches both IPv4 or IPv6 and/Or MAC to the packet. • MAC ACL – Select a user-defined MAC ACL from the list. 2.
GS700TS Smart Switch Software Administration Manual An aggregate policer can be applied to multiple classes in the same policy map, but an aggregate policer cannot be used across different policy maps. Define an aggregate policer if the policer is shared with multiple classes. policers in one port cannot be shared with other policers in another device. Traffic from two different ports can be aggregated for policing purposes. To define policies: 1. Click QoS > CoS> Advanced > Policy Table screen.
GS700TS Smart Switch Software Administration Manual 7. Select an Action and define a new value in the first row. 8. Click ADD to update the device. To remove a class mapping entry: 9. Click QoS > CoS> Advanced > Policy Table screen. The Policy Table screen displays. 10. Select the Policy Name from the list in the provided field. 11. Click DELETE to remove the entry. Policy Binding The Policy Binding screen contains information for attaching policies on interfaces. 1.
Chapter 6 Managing Security Setting Security Configuration Options The navigation pane at the top of the web browser interface contains a Security tab that enables you to manage your GS700TS Smart Switch with features under the following main menu options: • “Management Security” • “Port Authentication” • “Traffic Control” • “ACL” The description that follows in this chapter describes configuring and managing security settings in the GS700TS Smart Switch.
GS700TS Smart Switch Software Administration Manual Change Password The Change Password screen contains parameters for configuring device passwords. Authentication on this device uses only a password, not a username. To change the device password: 1. Click Security > Management Security > User Configuration > Change Password. The Change Password screen displays: Figure 6-1 The Change Password screen contains the following fields: • User Name – Displays the User Name.
GS700TS Smart Switch Software Administration Manual Figure 6-2 The RADIUS screen contains the following fields: • Host IP Address – Enter the RADIUS Server IP address. • Authentication Port – Enter the authentication port number. The authentication port is used to verify the RADIUS Server authentication. The field default is 1812. • Number of Retries – Enter the number of transmitted requests sent to the RADIUS Server before a failure occurs. Possible field values are 1-10. The default value is 3.
GS700TS Smart Switch Software Administration Manual • Active – Select the priority in which the system performs authentication with a RADIUS Server. The system performs authentication initially with the RADIUS Primary Server, and if it fails, it performs authentication with the RADIUS Backup Server. The possible values are: – Primary – Defines the RADIUS Primary Server. – Backup – Defines the RADIUS Backup Server. 2. Select the RADIUS Server entry. 3.
GS700TS Smart Switch Software Administration Manual Figure 6-3 The RADIUS Accounting Server Configuration screen contains the following fields: • Accounting Mode – Select the RADIUS accounting method. The possible field values are: – None – Indicates RADIUS accounting is disabled. This is the default. – 802.1x – Indicates 802.1x authentication sessions are recorded. – Login – Indicates device management (Web login and logout) sessions are recorded. – Both – Indicates both 802.
GS700TS Smart Switch Software Administration Manual TACACS+ Terminal Access Controller Access Control System (TACACS+) provides centralized security user access validation. The system supports up-to 2 TACACS+ servers. TACACS+ provides a centralized user management system, while still retaining consistency with RADIUS and other authentication processes. The TACACS+ protocol ensures network integrity through encrypted protocol exchanges between the client and TACACS+ server.
GS700TS Smart Switch Software Administration Manual • • Single Connection – Select whether a single open connection between the host Authentication Port and the TACACS+ server is enabled or disabled. The possible field values are: – Enable – Enables a single connection. – Disable – Disables a single connection. Active – Select whether this server is the Primary or Backup TACACS+ server used for authentication. The possible values are: – Primary – Defines the TACACS+ server as the Primary Server.
GS700TS Smart Switch Software Administration Manual Authentication List The Authentication List screen contains information for defining an authentication method for the selected Authentication List. For example, if the user selects TACACS+ as the first entry, None as the second, this causes authentication to first occur at the TACACS+ server. If the TACACS+ server is inaccessible or not defined, the session is permitted.
GS700TS Smart Switch Software Administration Manual 3. Select the order of authentication (1,2,3) for each method from the list in the provided field in the first row. 4. Click APPLY to update the device. Port Authentication The Port Authentication menu contains the following options: • “Basic” • “Advanced” Basic The Port Authentication Basic menu contains the following option: • “802.1x Configuration” 802.1x Configuration The Basic 802.
GS700TS Smart Switch Software Administration Manual The Basic 802.1x Configuration screen contains the following fields: • • • Port Based Authentication State – Select whether port-based authentication is enabled or disabled on the device. The possible field values are: – Disable – Disables port-based authentication on the device. – Enable – Enables port-based authentication on the device. Authentication Method – Select the authentication method used for port authentication.
GS700TS Smart Switch Software Administration Manual 6. If you selected Disable for the Port Based Authentication State, select the EAPOL Handling mode in the provided field. 7. Click APPLY to update the device. Advanced The Port Authentication Advanced menu contains the following options: • “802.1x Configuration” • “Port Authentication” 802.1x Configuration The Advanced 802.1x Configuration screen allows network managers to configure network authentication parameters.
GS700TS Smart Switch Software Administration Manual • • Authentication Method – Enter the authentication method used for port authentication. The possible field values are: – RADIUS, None – Indicates port authentication is first attempted through the RADIUS server. If the RADIUS server is inaccessible or not defined, then no authentication method (None) is used and the session is permitted. – RADIUS – Indicates port authentication is through the RADIUS server.
GS700TS Smart Switch Software Administration Manual To configure port-based authentication global properties: 1. Click Security > Port Authentication > Advanced > Port Authentication. The Port Authentication screen displays Figure 6-8 The Port Authentication screen contains the following fields: • Interface – Displays the interfaces. • User Name – Displays the supplicant (client) user name, once the user is authenticated. • Port Control – Select the port authorization state.
GS700TS Smart Switch Software Administration Manual • • Guest VLAN – Select whether the Guest VLAN is enabled or disabled on the port. The default VLAN cannot be defined as a Guest VLAN. The possible field values are: – Enable – Enables using a Guest VLAN for the unauthorized port. If a Guest VLAN is enabled, the unauthorized port automatically joins the VLAN selected in the VLAN List field. – Disable – Disables the Guest VLAN on the port. This is the default value.
GS700TS Smart Switch Software Administration Manual 3. Select the Port Control state, Guest VLAN mode and Periodic Reauthentication status in the provided fields in the first row. 4. If you selected Enable as the Periodic Reauthentication status, enter the Reauthentication Period in the provided field in the first row. 5. Enter the Quiet Period, Resending EAP time, Max EAP Requests, Supplicant Timeout and Server Timeout in the provided field in the first row. 6. Click APPLY to update the device.
GS700TS Smart Switch Software Administration Manual Figure 6-9 The Storm Control screen contains the following fields: • Interface – Displays the port number for which the storm control information is displayed. • Broadcast Control – Select whether storm control is enabled or disabled on the interface according to Broadcast mode. The possible field values are: • – Enable – Enables storm control on the interface. – Disable – Disables storm control on the interface.
GS700TS Smart Switch Software Administration Manual 2. Select the interface. 3. Select Enable or Disable Broadcast Control in the provided field in the first row. 4. If you selected Enable Broadcast Control, select the Broadcast Mode from the list in the provided field in the first row. 5. If you selected Enable Broadcast Control, enter the Broadcast Rate Threshold in the provided field in the first row. 6. Click APPLY to update the device.
GS700TS Smart Switch Software Administration Manual Figure 6-10 The Port Security screen contains the following fields: • Interface – Displays the port or LAG name. • Status – Select the port security status. The possible field values are: • – Locked – Indicates the port is currently locked. – Unlocked – Indicates the port is currently unlocked. This is the default value. Learning Mode – Select the locked port type.
GS700TS Smart Switch Software Administration Manual • • – Forward – Forwards packets from an unknown source without learning the MAC address. – Discard – Discards packets from any unlearned source. This is the default value. – Shutdown – Discards packets from any unlearned source and shut down the port. The port remains shut down until reactivated or until the device is reset. Trap – Select whether traps are enabled or disabled when a packet from an unknown source is received on a locked port.
GS700TS Smart Switch Software Administration Manual Figure 6-11 The Protected Ports Membership screen contains the following fields: Protected Ports Membership Table • Port Number (1-XX) – Displays the unprotected and protected ports on the device. 2. Select the interfaces to the be defined as a Protected Port by one of the following methods. a.
GS700TS Smart Switch Software Administration Manual • “MAC Rules” • “MAC Binding Configuration” • “IPv4 ACL” • “IPv4 Rules” • “IPv4 Binding Configuration” • “IPv6 ACL” • “IPv6 Rules” • “IPv6 Binding Configuration” • “Binding Table” MAC ACL The MAC Configuration screen allows a MAC Based ACL to be defined. To view or rename MAC Based ACLs: 1. Click Security > ACL > MAC ACL.
GS700TS Smart Switch Software Administration Manual • Name – Enter the user-defined MAC based ACL name. • Number of Rules – Displays the current number of rules in the ACL. 2. Select the ACL entry. 3. Enter the new ACL Name in the provided field in the first row. 4. Click APPLY to update the device. To add a new MAC-based ACL entry: 1. Click Security > ACL > MAC ACL. The MAC Configuration screen displays. 2. Enter the ACL Name in the provided field in the first row. 3. Click ADD to update the device.
GS700TS Smart Switch Software Administration Manual The MAC Rules screen contains the following fields: MAC Rules • ACL Name – Select the ACL Name from the list. MAC Rules Table • Priority – Enter the rule priority. When the packet is matched to a rule, user groups are either granted permission or denied device management access. The rule number is essential to matching packets to rules, as packets are matched on a first-fit basis. • Source MAC Address – Enter the source MAC Address.
GS700TS Smart Switch Software Administration Manual 1. Click Security > ACL > MAC Rules. The MAC Rules screen displays. 2. Select the ACL Name from the list in the provided field. 3. Select the rule entry. 4. Click DELETE to remove the entry. MAC Binding Configuration The MAC Binding Configuration screen contains information for mapping ACLs to MAC addressess. When an ACL is bound to an interface, all the ACE rules that have been defined are applied to the selected interface.
GS700TS Smart Switch Software Administration Manual 2. Select the interfaces to which the ACLs are bound. 3. Select the ACL Name from the list in the provided field. 4. Select the interfaces to bind to the selected ACL Name by one of the following methods. a. Click on the Unit’s or LAG’s gold bar to display the associated interfaces, and then select the interfaces to bind by clicking on the boxes below the interfaces. or b. Click on the Unit’s or LAG’s quick box to select all the associated interfaces. 5.
GS700TS Smart Switch Software Administration Manual • Number of Rules – Displays the current number of rules in the ACL. IPv4 Rules The IPv4 Rules screen allows an IP Rule to be defined within a configured ACL. Rules can be added only if the ACL is not bound to an interface. To define IPv4 Rules: 1. Click Security > ACL > IPv4 Rules.
GS700TS Smart Switch Software Administration Manual • Source Port – Enter the source port that is matched to packets. • Destination Port – Enter the destination port that is matched to packets. • Action – Select the action applied to packets with IP addresses that have been filtered. The possible field values are: – Permit – Permits access to the device. – Deny – Denies access to packets originating from the blocked IP address.
GS700TS Smart Switch Software Administration Manual IPv4 Binding Configuration The IPv4 Binding Configuration screen contains information for mapping ACLs to IPv4 interfaces. When an ACL is bound to an interface, all the ACE rules that have been defined are applied to the selected interface. Whenever an ACL is assigned on a port, LAG or, VLAN, flows from that ingress interface that do not match the ACL are matched to the default rule, which is Drop unmatched packets. To bind IPv4 interfaces to an ACL: 1.
GS700TS Smart Switch Software Administration Manual IPv6 ACL The IPv6 ACL screen allows an IPv6 Based ACL to be defined. To view or rename IPv6 Based ACLs: 1. Click Security > ACL > IPv6 ACL. The IPv6 ACL screen displays: Figure 6-18 The IPv6 ACL screen contains the following fields: IPv6 ACL • Current number of ACL – Displays the current number of user-defined ACLs. IPv6 ACL Table • Name – Enter the user-defined IP based ACL name.
GS700TS Smart Switch Software Administration Manual 4. Enter the ACL Name in the provided field in the first, editable row. 5. Click APPLY to update the device. To remove an IP-based ACL entry: 1. Click Security > ACL > IPv6 ACL. The IPv6 ACL screen displays. 2. Select the ACL entry. 3. Click DELETE to remove the entry. IPv6 Rules The IPv6 Rules screen allows an IPv6 Rule to be defined within a configured ACL. Rules can be added only if the ACL is not bound to an interface. To define IPv6 Rules: 1.
GS700TS Smart Switch Software Administration Manual • Source IP Address – Enter the source IP Address. • Prefix Length – Enter the source IP Prefix Length. The Prefix field is applicable only when the IPV6 Static IP address is defined as a Global IPv6 address. The range is 5 - 128. • Destination IP Address – Enter the destination IP address. • Prefix Length – Enter the destination IP Prefix Length.
GS700TS Smart Switch Software Administration Manual 1. Click Security > ACL > IPv6 Rules. The IPv6 Rules screen displays. 2. Select the ACL Name from the list in the provided field. 3. Select the rule entry. 4. Click DELETE to remove the entry. IPv6 Binding Configuration The IPv6 Binding Configuration screen contains information for mapping ACLs to IPv6 interfaces. When an ACL is bound to an interface, all the ACE rules that have been defined are applied to the selected interface.
GS700TS Smart Switch Software Administration Manual 3. Select the ACL Name from the list in the provided field. 4. Select the interfaces to bind to the selected ACL Name by one of the following methods. a. Click on the port or LAG gold bar to display the associated interfaces, and then select the interfaces to bind by clicking on the boxes below the interfaces. or b. Click on the port’s or LAG’s quick box to select all the associated interfaces. 5. Click APPLY to update the device.
Chapter 7 Monitoring the Switch Setting Monitoring Options The navigation pane at the top of the web browser interface contains a Monitoring tab that enables you to manage your GS700TS Smart Switch with features under the following main menu options: • “Logs” • “RMON” • “Port Mirroring” The description that follows in this chapter describes configuring and managing monitoring settings in the GS700TS Smart Switch.
GS700TS Smart Switch Software Administration Manual This section provides information for managing logs. The logs enable viewing device events in real time, and recording the events for later usage. Logs record and manage events and report errors and informational messages.
GS700TS Smart Switch Software Administration Manual Log Filter The Log Filter screen contains fields for defining which events are recorded to which logs. Log messages are listed from the highest severity to the lowest severity level. To configure log filters: 1. Click Monitoring > Logs > Log Filter. The Log Filter screen displays: Figure 7-2 The Log Filter screen contains the following fields: • RAM Logs – Select the minimum message severity level to appear in the RAM Log.
GS700TS Smart Switch Software Administration Manual – • Debug – Provides debugging messages. Log File – Select the minimum message severity level to appear in the log file. The following are the available message severity levels: – Emergency – Indicates the device is not functioning. Emergency is the highest warning level. If the device is down or not functioning properly, an emergency log message is saved to the specified logging location. – Alert – Indicates the device needs immediate attention.
GS700TS Smart Switch Software Administration Manual Figure 7-3 The Memory Log screen contains the following fields: • Log Index – Displays the log number. • Log Time – Displays the time at which the log was generated. • Severity – Displays the log severity and urgency level. The following are the available log severity levels: • – Emergency – Indicates the device is not functioning. Emergency is the highest warning level.
GS700TS Smart Switch Software Administration Manual 2. Click REFRESH or CLEAR LOGS to refresh or reset the Memory Logs screen. Flash Log The Flash Log screen contains information about log entries saved to the log file in Flash, including the time the log was generated, the log severity, and a description of the log message. The message log is available after reboot. To view the message logs in Flash: 1. Click Monitoring > Logs > Flash Log.
GS700TS Smart Switch Software Administration Manual • – Alert – Indicates the device needs immediate attention. Alert is the second highest warning level. An alert log is saved, if there is a serious device malfunction; for example, all device features are down. – Critical – Indicates the device is in a critical state. Critical is the third highest warning level.
GS700TS Smart Switch Software Administration Manual The Server Log screen contains the following fields: • Server IP – Enter the server’s IP address to which logs can be sent. • UDP Port – Enter the UDP port to which the server logs are sent. The possible range is 1 - 65535. The default value is 514. • Facility – Select an application from which device logs are sent to the remote server. Only one facility can be assigned to a single server.
GS700TS Smart Switch Software Administration Manual 6. Enter an optional server Description in the provided field in the first row. 7. Select the Minimum Severity level message sent to the server from the list in the provided field in the first row. 8. Click APPLY to update the device. To add a remote log server: 1. Click Monitoring > Logs > Server Log. The Server Log screen displays. 2. Enter the Server IP address in the provided field in the first row. 3.
GS700TS Smart Switch Software Administration Manual Statistics The RMON Basic Statistics screen contains fields for viewing information about device utilization and errors that occurred on the device. To view RMON Basic Statistics: 1. Click Monitoring > RMON > Basic > Statistics. The RMON Basic Statistics screen displays: Figure 7-6 The RMON Basic Statistics screen contains the following fields: • Interface – Displays the port or LAG for which statistics are displayed.
GS700TS Smart Switch Software Administration Manual • Multicast Packets Received – Displays the number of good Multicast packets received on the interface since the device was last refreshed. • CRC & Alignment Errors – Displays the number of CRC and Align errors that have occurred on the interface since the device was last refreshed. 2. Click REFRESH or CLEAR ALL COUNTERS to refresh or reset the RMON Basic Statistics screen.
GS700TS Smart Switch Software Administration Manual Figure 7-7 The RMON Advanced Statistics screen contains the following fields: RMON Interface Statistics • Interface – Select the device for which statistics are displayed. The possible field values are: – Port – Select the specific port for which RMON statistics are displayed. – LAG – Select the specific LAG for which RMON statistics are displayed.
GS700TS Smart Switch Software Administration Manual • Undersize Packets – Displays the number of undersized packets (less than 64 octets) received on the interface since the device was last refreshed. • Oversize Packets – Displays the number of oversized packets (over 1518 octets) received on the interface since the device was last refreshed.
GS700TS Smart Switch Software Administration Manual • Received Packets – Displays the number of packets received on the interface, including bad packets, Multicast, and Broadcast packets, since the device was last refreshed. • Broadcast Packets Received – Displays the number of good broadcast packets received on the interface since the device was last refreshed. This number does not include Multicast packets.
GS700TS Smart Switch Software Administration Manual Figure 7-8 The RMON History Control screen contains the following fields: • History Entry No. – Displays the entry number for the History Control Table screen. • Source Interface – Enter the interface from which the history samples were taken. • Sampling Interval – Enter in seconds the time that samples are taken from the ports. The field range is 1-3600. The default is 1800 seconds (equal to 30 minutes).
GS700TS Smart Switch Software Administration Manual To remove a history control entry: 1. Click Monitoring >RMON > Advanced > History Control. The RMON History Control screen displays. 2. Select the history control entry. 3. Click DELETE to remove the history control entry. History Table The RMON History Table screen contains interface specific statistical network samples. Each table entry represents all counter values compiled during a single sample. To view the RMON History Table: 1.
GS700TS Smart Switch Software Administration Manual • Received Bytes – Displays the number of octets received on the interface since the device was last refreshed. This number includes bad packets and FCS octets, but excludes framing bits. • Received Packets – Displays the number of packets received on the interface since the device was last refreshed, including bad packets, Multicast, and Broadcast packets.
GS700TS Smart Switch Software Administration Manual Events Control The RMON Events Control screen contains fields for defining RMON events. To configure RMON events control: 1. Click Monitoring > RMON > Advanced > Events Control. The RMON Events Control screen displays: Figure 7-10 The RMON Events Control screen contains the following fields: • Event Entry Interface – Displays the event. • Community – Enter the community to which the event belongs.
GS700TS Smart Switch Software Administration Manual 4. Select the event Type from the list in the provided field in the first row. 5. Click APPLY to update the device. To add an events control entry: 1. Click Monitoring > RMON > Advanced > Events Control. The RMON Events Control screen displays. 2. Enter the Community, Description and Owner in the provided field in the first row. 3. Select the event Type from the list in the provided field in the first row. 4. Click ADD to update the device.
GS700TS Smart Switch Software Administration Manual The RMON Events Log screen contains the following fields: • Event – Displays the RMON Events. • Log Number – Displays the log number. • Log Time – Displays the time when the log entry was entered. • Description – Displays the log entry description. 2. To refresh the RMON Events Log screen, click REFRESH. Alarms The RMON Alarms screen contains fields for setting network alarms. Network alarms occur when a network problem or event, is detected.
GS700TS Smart Switch Software Administration Manual • Sample Type – Select the sampling method for the selected variable and comparing the value against the thresholds. The possible field values are: – Absolute – Compares the values directly with the thresholds at the end of the sampling interval. – Delta – Subtracts the last sampled value from the current value. The difference in the values is compared to the threshold.
GS700TS Smart Switch Software Administration Manual 5. Select the Sample Type from the list in the provided field in the first row. 6. Select the Startup Alarm from the list in the provided field in the first row. 7. If you selected Rising Alarm or Rising and Falling as the Startup Alarm, enter the Rising Threshold and select the Rising Event number in the provided fields in the first row. 8.
GS700TS Smart Switch Software Administration Manual Port Mirroring Port mirroring monitors and mirrors network traffic by forwarding copies of incoming and outgoing packets from one port to a monitoring port. Port mirroring can be used as a diagnostic tool as well as a debugging feature. Port mirroring also enables switch performance monitoring. Network administrators can configure port mirroring by selecting a specific port from which to copy all packets, and other ports to which the packets are copied.
GS700TS Smart Switch Software Administration Manual • Type – Select the port mode configuration for port mirroring. The possible field values are: – TX Only – Indicates port mirroring is configured on transmitting ports only. – RX Only – Indicates port mirroring is configured on receiving ports only. – TX and RX – Indicates port mirroring is configured on both receiving and transmitting ports. This is the default value. 2. Enter the Destination Port in the provided field. 3.
Chapter 8 Maintenance Using the Maintenance Options The navigation pane at the top of the web browser interface contains a Maintenance tab that enables you to manage your GS700TS Smart Switch with features under the following main menu options: • “Reset” • “Upload” • “Download” • “File Management” • “Troubleshooting” The description that follows in this chapter describes configuring and managing maintenance options in the GS700TS Smart Switch.
GS700TS Smart Switch Software Administration Manual Figure 8-1 The Device Reboot screen contains the following fields: • • Reboot Unit Number – Select the unit to be reset. The possible field values are: – 1, 2, 3, 4, 5, 6 – Reboots the stacking member associated with the selected unit number. – All – Reboots all stacking members. Check this box and click Apply below to reboot unit(s) – Select the confirmation box to confirm unit changes. 2.
GS700TS Smart Switch Software Administration Manual Figure 8-2 2. Check the confirmation box. 3. Click APPLY to reset the device to the factory defaults. Upload The Upload menu contains the following option: • “Upload” Upload System Files can be backed up using the Upload screen. To back up files: 1. Click Maintenance > Upload. The Upload screen displays: 8-3 Maintenance v1.
GS700TS Smart Switch Software Administration Manual Figure 8-3 The Upload screen contains the following fields: • File Type – Enter the type of file to be uploaded. The possible field values are: – Firmware – Upload the Firmware File. – Configuration – Upload the Configuration File. • via TFTP – Select to upload the Firmware or Configuration File to the TFTP Server. • via HTTP – Select to upload the Configuration File via the web browser interface (HTTP).
GS700TS Smart Switch Software Administration Manual Download The Download menu contains the following option: • “Download” Download System files can be downloaded using the Download screen. To download system files: 1. Click Maintenance > Download. The Download screen displays: Figure 8-4 The Download screen contains the following fields: • File Type – Enter the file type to be downloaded. The possible field values are: – Firmware – Downloads the Firmware file.
GS700TS Smart Switch Software Administration Manual 2. Select Firmware, Boot File or Configuration as the download File Type from the provided field. 3. Select whether to download via TFTP or via HTTP. 4. If you selected via HTTP, enter the file name in the provided box. 5. If you selected via TFTP, enter the TFTP Server IP address in the provided field. 6. If you selected via TFTP, enter the Remote Filename in the provided field. 7. Click APPLY to download the file.
GS700TS Smart Switch Software Administration Manual • Active Image – Displays the image file which is currently active on the unit. • After Reset – Select the image file that is active after the specific unit is reset. The possible field values are: – Image 1 – Activates Image file 1 after the device is reset. – Image 2 – Activates Image file 2 after the device is reset. 2. Select the unit entry. 3. Select the image file to be active in the After Reset provided field in the first row. 4.
GS700TS Smart Switch Software Administration Manual Figure 8-6 The Cable Test screen contains the following fields: • Interface – Enter the port to which the cable is connected. • Test Result – Displays the cable test results. Possible values are: – No Cable – Indicates a cable is not connected to the port. – Open Cable – Indicates a cable is connected on only one side. – Short Cable – Indicates a short has occurred in the cable. – OK – Indicates the cable passed the test.
Chapter 9 Online Help Online Help The navigation pane at the top of the web browser interface contains a Help tab that provides access to informational services including support and an online user guide in PDF format. The Help menu contains the following options: • “Support” • “User Guide” The description that follows in this chapter covers these features. c Support The Support screen provides access to the NETGEAR online support site at www.netgear.com. To access the Support screen: 1.
GS700TS Smart Switch Software Administration Manual User Guide The User Guide screen provides access to the online User Guide. To view the User Guide screen: 1. Click Help > Online Help > User Guide. The User Guide screen displays: Figure 9-2 2. Click APPLY to open a window and display the User Guide in PDF format. Online Help 9-2 v1.
Chapter A Default Settings This appendix provides default settings for the NETGEAR Model GS700TS Smart Switch. You can always configure the switch to default settings by using the Factory Reset function from a Web browser. Table A-1. Default Settings Feature GS700TS Default Setting Port Speed Auto-negotiation Port Duplex Auto-negotiation Flow Control (half duplex) Disabled Flow Control (full duplex) Disabled IP Configuration DHCP enabled Password password VLAN 802.
Index A F ACE 24, 28, 32 Firmware Download 5 ACL 20 binding 24, 28, 32 Firmware Upload 4 B G Bandwidth Settings 6 getting started 1 Flash Logs 6 Boot File Download 5 C H History Table Page 16 changing the password 9 configuration monitoring 1 network parameters 5 QoS 1 security 1 switch 1 system settings 1 Configuration Download 5 Configuration Upload 4 I IGMP Snooping 43 installing 3, 5 interfaces switch management 2 Web browser 1 IP address default 8 CoS 4 CPU 43 D defaults IP address 8
GS700TS Smart Switch Software Administration Manual M map CoS 8 Memory Logs 4 menus 2 Multicast Forward All Page 49 Multicast Groups 47, 48 N SNMP v3 17 stacking 8 STP 28 subnet mask 8 switch device 8 switch configuration 1 switch monitoring 1 system configuration 8 navigation menu 2 System Logs 1 network alarms 20 system requirements 1 network parameters 5 NIC settings 6 P T TACACS+ 6 TDR 7 password changing 9 Terminal Access Controller Access Control System (TACACS+) 6 Port mirroring 23 traf