Manual

ManualsBrandsAllied Telesis ManualsComputer HardwareAT-S106

613-001339 Rev. A

Management

Software

AT-S106

Web Browser

User’s Guide

For the AT-GS950/48 Gigabit Ethernet Smart Switch

Version 1.0.0

Summary of content (226 pages)

PAGE 1
Management Software AT-S106 Web Browser User’s Guide For the AT-GS950/48 Gigabit Ethernet Smart Switch Version 1.0.0 613-001339 Rev.
PAGE 2
Copyright © 2010 Allied Telesis, Inc. All rights reserved. No part of this publication may be reproduced without prior written permission from Allied Telesis, Inc. Allied Telesis and the Allied Telesis logo are trademarks of Allied Telesis, Incorporated.
PAGE 3
Contents Preface ............................................................................................................................................................ 11 Where to Find Web-based Product Information ............................................................................................... 12 Contacting Allied Telesis .................................................................................................................................. 13 Online Support ................
PAGE 4
Contents Chapter 4: Quality of Service (QoS) ............................................................................................................... 59 Overview ........................................................................................................................................................... 60 Mapping CoS Priorities to Egress Queues ....................................................................................................... 63 Configuring CoS.....................
PAGE 5
AT-S79 Management Software User’s Guide Chapter 10: Bandwidth Control .................................................................................................................... 121 Overview......................................................................................................................................................... 122 Storm Control ...........................................................................................................................................
PAGE 6
Contents Chapter 17: Destination MAC Filter ..............................................................................................................185 Overview .........................................................................................................................................................186 Configuring a Destination MAC Filter..............................................................................................................187 Deleting a Destination MAC Filter ...
PAGE 7
List of Figures Figure 1. Entering a Switch’s IP Address in the URL Field..................................................................................................16 Figure 2. AT-S106 Login Dialog Box ...................................................................................................................................17 Figure 3. AT-GS950/48 Home Page....................................................................................................................................
PAGE 8
Figures Figure 51. Figure 52. Figure 53. Figure 54. Figure 55. Figure 56. Figure 57. Figure 58. Figure 59. Figure 60. Figure 61. Figure 62. Figure 63. Figure 64. Figure 65. Figure 66. Figure 67. Figure 68. 8 Designated Topology Information Page ...........................................................................................................163 Example of the Authenticator Role ...................................................................................................................
PAGE 9
Tables Table 1. Table 2. Table 3. Table 4. Table 5. Table 6. Table 7. Table 8. Default Mappings of IEEE 802.1p Priority Levels to Egress Port Priority Queues ...............................................61 Multiple Aggregators .............................................................................................................................................88 Bridge Priority Value Increments ........................................................................................................
PAGE 10
List of Tables 10
PAGE 11
Preface This guide contains instructions on how to use the AT-S106 Management software to manage and monitor the AT-GS950/48 Gigabit Ethernet Smart Switch. The AT-S106 Management software has a web browser interface that you can access from any management workstation on your network that has a web browser application.
PAGE 12
Preface Where to Find Web-based Product Information The installation and user guides are available for all Allied Telesis products in portable document format (PDF) on our web site. Management software updates are also available. Go to http://www.alliedtelesis.com/support/software/. Enter your hardware product model in the Search by Product Name field; for example, enter AT-GS950/48. You can view the documents online or download them onto your local workstation or server.
PAGE 13
AT-S106 Management Software Web Browser User’s Guide Contacting Allied Telesis This section provides Allied Telesis contact information for technical support as well as sales and corporate information. Online Support You can request technical support online by accessing the Allied Telesis Knowledge Base: www.alliedtelesis.com/support/kb.aspx. You can use the Knowledge Base to submit questions to our technical support staff and review answers to previously asked questions.
PAGE 14
Preface 14
PAGE 15
Chapter 1 Starting a Web Browser Management Session This chapter contains the procedures for starting, using, and quitting a web browser management session on the AT-GS950/48 Gigabit Ethernet Smart Switch.
PAGE 16
Chapter 1: Starting a Web Browser Management Session Establishing a Remote Connection to the Web Browser Interface The AT-GS950/48 Gigabit Ethernet Smart Switch is shipped with a preassigned IP address of 192.168.1.1. After your initial login, you may want to assign a new IP address to your switch. To manually assign an IP address to the switch, refer to “Configuring an IP Address, Subnet Mask and Gateway Address” on page 24.
PAGE 17
AT-S106 Management Software Web Browser User’s Guide The AT-S106 Management software displays the login dialog box, shown in Figure 2. Figure 2. AT-S106 Login Dialog Box 3. Enter the AT-S106 management login user name and password. The default user name is “manager” and the default password is “friend.” 4. Press OK. The login name and password are case-sensitive. The switch Home Page is displayed.
PAGE 18
Chapter 1: Starting a Web Browser Management Session Figure 3. AT-GS950/48 Home Page The main menu appears on the left side and is common for all of the management pages discussed in this manual. It consists of the following folders and web pages: Switch Info. Front Panel System Physical Interface Bridge SNMP Security Statistics Chart Tools Save Configuration 5. To see the front panel of the switch, select Front Panel from the main menu on the left side of the page.
PAGE 19
AT-S106 Management Software Web Browser User’s Guide The AT-S106 Management software displays the front of the switch. Ports that have a link to an end node are green. Ports without a link are grey. The AT-GS950/48 front panel page is shown in Figure 4. Figure 4. AT-GS950/48 Front Panel Page A web browser management session remains active even if you link to other sites. You can return to the management web pages anytime as long as you do not quit the browser.
PAGE 20
Chapter 1: Starting a Web Browser Management Session Web Browser Tools You can use the web browser tools to move around the management pages. Selecting Back on your browser’s toolbar returns you to the previous display. You can also use the browser’s bookmark feature to save the link to the switch.
PAGE 21
AT-S106 Management Software Web Browser User’s Guide Quitting a Web Browser Management Session To exit a web browser management session, close the web browser.
PAGE 22
Chapter 1: Starting a Web Browser Management Session 22
PAGE 23
Chapter 2 Basic Switch Parameters This chapter provides procedures to perform basic switch activities such as reassigning the IP address, enabling the DHCP Client, configuring new user names and passwords, and rebooting the system.
PAGE 24
Chapter 2: Basic Switch Parameters Configuring an IP Address, Subnet Mask and Gateway Address This procedure explains how to change the IP address, subnet mask, and gateway address of the switch. Before performing the procedure, note the following: A gateway address is only required if you want to remotely manage the device from a management station that is separated from the switch by a router.
PAGE 25
AT-S106 Management Software Web Browser User’s Guide 3. Change the IP configuration parameters by entering new information in the following fields: System MAC Address This parameter displays the MAC address of the switch. You cannot change this parameter. System IP Address Displays the current IP address of the switch. To change the IP address, enter a new IP address. System Subnet Mask Displays the current subnet mask of the switch. To change the subnet mask, enter a new subnet mask.
PAGE 26
Chapter 2: Basic Switch Parameters Setting Up the IP Access List When the IP Access List feature is enabled, remote access to the management software is restricted to the IP addresses entered into the IP Access List. It does not restrict the management ping response activity, only web access to the management software. Note By default, the IP Access List feature is disabled.
PAGE 27
AT-S106 Management Software Web Browser User’s Guide 3. Enter an IP address in the IP Address field using a xxx.xxx.xxx.xxx format. 4. Click Add. The IP address is added to the IP Access List Table. 5. To set the IP restriction status, select Disable or Enable in the pulldown menu next to the IP Restriction Status field. By default, the IP Restriction Status field is set to Disable. 6. Click Apply. 7.
PAGE 28
Chapter 2: Basic Switch Parameters Enabling and Disabling the DHCP Client Since the AT-GS950/48 Gigabit Ethernet Smart Switch only has a web management interface and does not have local console connections, you must be careful when you change the IP address of the switch by enabling the DHCP client. With DHCP enabled, the DHCP server automatically assigns the next available IP address to your switch from a range of unassigned IP addresses.
PAGE 29
AT-S106 Management Software Web Browser User’s Guide Caution Record the MAC address of your switch before you begin this procedure. To activate or deactivate the DHCP client on the switch, do the following procedure: 1. From the main menu on the left side of the page, click the System folder. The System folder expands. 2. From the System folder, select IP Setup. The IP Setup Page is shown in Figure 5 on page 24. 3. From the pull-down menu next to the DHCP Mode field, select Enable or Disable.
PAGE 30
Chapter 2: Basic Switch Parameters If you disable DHCP, enter a new IP address, and then save your configuration, you have saved the DHCP setting and the new IP address on the switch.
PAGE 31
AT-S106 Management Software Web Browser User’s Guide Configuring System Management Information This section explains how to assign a name to the switch, as well as the location of the switch, and the name of the switch’s administrator. Entering this information is optional. To set a switch’s administration information, do the following procedure: 1. From the main menu on the left side of the page, click the System folder. The System folder expands. 2. From the System folder, select Management.
PAGE 32
Chapter 2: Basic Switch Parameters Note Allied Telesis recommends that you assign a name to the switch. A name can help you identify the switch when you manage it and can also help you avoid performing a configuration procedure on the wrong switch. System Location Specifies the location of the switch. The location is optional and may contain up to 50 characters. System Contact Specifies the name of the network administrator responsible for managing the switch.
PAGE 33
AT-S106 Management Software Web Browser User’s Guide Configuring System Administration Information This section explains how to enable password protection and create users in the web interface. See the following sections: Adding System Administration Information “Adding System Administration Information” on page 33 “Modifying Administration Information” on page 34 “Deleting Administration Information” on page 35 To set a switch’s administration information, do the following procedure: 1.
PAGE 34
Chapter 2: Basic Switch Parameters 5. To create an entry number, type 1 through 8 in the box next to the Entry number field. An entry number cannot be duplicated if it already exists. This value appears as the Index value in the Administration table at the bottom of the page. 6. To create a user name, enter a user name in the box next to the User Name field. You can enter a value of up to 12 alphanumeric characters including special characters. See Appendix A, on page 213 for the specific characters. 7.
PAGE 35
AT-S106 Management Software Web Browser User’s Guide 4. To change a password, enter a password of up to 12 alphanumeric characters in the box next to the Password field including special characters. See Appendix A, on page 213 for the specific characters. 5. To confirm the above password, retype the password in the box next to the Confirm Password field. 6. Click Apply to activate your changes on the switch. 7.
PAGE 36
Chapter 2: Basic Switch Parameters Setting the User Interface Configuration This procedure explains how to adjust the user interface and security features on the switch. With this procedure you can enable an SNMP Agent. For more information on SNMP, go to Chapter 8, on page 99. To set the switch’s user interface configuration, do the following procedure: 1. From the main menu on the left side of the page, click the System folder. The System folder expands. 2. From the System folder, select User Interface.
PAGE 37
AT-S106 Management Software Web Browser User’s Guide Viewing System Information To view general information about the switch, do the following procedure: 1. From the main menu on the left side of the page, click the System folder. The System folder expands. 2. Select Switch Info. The Switch Information Page is displayed. See Figure 11. Figure 11.
PAGE 38
Chapter 2: Basic Switch Parameters The Switch Information Page displays the following information: System Up For The number of days, hours, and minutes that the switch has been running since it was last rebooted. Runtime Image The version number and build date of the runtime firmware. Boot Loader The version number and build date of the bootloader firmware. Hardware Information Section: Version The hardware version number. DRAM Size The size of the DRAM, in megabytes.
PAGE 39
AT-S106 Management Software Web Browser User’s Guide subnet mask or “Enabling and Disabling the DHCP Client” on page 28 to activate the DHCP client. Default Gateway Default gateway’s IP address. Refer to “Configuring an IP Address, Subnet Mask and Gateway Address” on page 24 to manually assign a gateway address or “Enabling and Disabling the DHCP Client” on page 28 to activate the DHCP client. Automatic Network Features Section: DHCP Mode The status of the DHCP client on the switch.
PAGE 40
Chapter 2: Basic Switch Parameters Rebooting a Switch This procedure reboots the switch and reloads the AT-S106 Management software from flash memory. You may want to reboot the device if you believe it is experiencing a problem. Caution The switch does not forward network traffic during the reboot process. Some network traffic may be lost. To reboot a switch, do the following procedure: 1. From the main menu on the left side of the page, select the Tools folder. The Tools folder expands. 2.
PAGE 41
AT-S106 Management Software Web Browser User’s Guide The switch immediately begins to reload the AT-S106 Management software. This process takes approximately one minute to complete. You can not manage the device during the reboot. After the reboot is finished, you can log in again if you want to continue to manage the device.
PAGE 42
Chapter 2: Basic Switch Parameters Pinging a Remote System This procedure instructs the switch to ping a node on your network. This procedure is useful in determining whether an active link exists between the switch and another network device. Note The device you are pinging must be a member of the Default VLAN and within the same local area network as your switch.
PAGE 43
AT-S106 Management Software Web Browser User’s Guide Timeout Value Specifies the length of time, in seconds, the switch waits for a response before assuming that a ping has failed. The default is 3 seconds. Number of Ping Requests Specifies the number of ping requests you want the switch to perform. The default is 10. 4. Click Start. 5. To view the ping results, click Show Ping Results. A sample Ping Test Results Page is displayed. See Figure 14. Figure 14.
PAGE 44
Chapter 2: Basic Switch Parameters Returning the AT-S106 Management Software to the Factory Default Values This procedure returns all AT-S106 Management software parameters to their default values and deletes all tagged and port-based VLANs on the switch. The AT-S106 Management software default values are listed in Appendix A, on page 213. Caution This procedure causes the switch to reboot. The switch does not forward network traffic during the reboot process. Some network traffic may be lost.
PAGE 45
Chapter 3 Virtual LANs This chapter contains a description of Virtual Local Area Networks (VLANs) and procedures for creating, modifying, and deleting port-based and tagged VLANs from a web browser management session.
PAGE 46
Chapter 3: Virtual LANs VLAN Overview A VLAN is a group of ports on an Ethernet switch that form a logical Ethernet segment. The ports of a VLAN form an independent traffic domain where the traffic generated by the nodes of a VLAN remains within the VLAN. With VLANs, you can segment your local area network through the switch’s AT-S106 Management software and group nodes with related functions into their own separate, logical, VLAN segments.
PAGE 47
AT-S106 Management Software Web Browser User’s Guide software. Also, you can change the VLAN memberships without moving the workstations physically or change group memberships without moving cables from one port to another. In addition, a virtual LAN can span more than one switch. This means that the end nodes of a VLAN do not need to be connected to the same switch and so are not restricted to being in the same physical location.
PAGE 48
Chapter 3: Virtual LANs Each port of a port-based VLAN can belong to as many VLANs as needed. Therefore, traffic can be forwarded to the members of the groups to which the port is assigned. For example, port 1 and port 2 are members of group 1 and ports 1 and 3 are members of group 2. In this case, traffic from port 1 is forwarded to ports 2 and 3, traffic from port 2 is forwarded only to port 1, and traffic from port 3 is forwarded only to port 1.
PAGE 49
AT-S106 Management Software Web Browser User’s Guide Tagged and Untagged Ports When you specify that a port is a member of a tagged VLAN, you need to specify that it is tagged or untagged. You can have a combination of tagged and untagged ports in the same VLAN. Packet transmission from a tagged port differs from packet transmission from an untagged port.
PAGE 50
Chapter 3: Virtual LANs Displaying Ports and Assigning Ports to a VLAN By default, all of the ports on the switch are assigned to the Tagged VLAN. The procedure described in this section allows you to display the current VLAN assignment of ports. In addition, it permits you to assign ports to tagged or a port-based VLAN. However, you can assign ports to a portbased VLAN only after you have created a port-based VLAN with the procedure described in “Creating a Port-Based VLAN” on page 56.
PAGE 51
AT-S106 Management Software Web Browser User’s Guide Creating a Tagged VLAN To create a tagged VLAN, do the following procedure: 1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands. 2. From the Bridge folder, select VLAN. The VLAN folder expands. 3. From the VLAN folder, select Tagged VLAN. The Tagged VLAN Page is displayed. See Figure 16 Figure 16. Tagged VLAN Page 4. To assign a VLAN ID, type a VLAN ID in the VLAN ID field. Choose a value between 2 and 4,093.
PAGE 52
Chapter 3: Virtual LANs 6. To assign ports to the VLAN, click on the port numbers labeled either Static Tagged or Static Untagged. By default, all the ports are assigned to the Not Member category. For an example of Tagged VLANs, see Figure 17. Figure 17. Example of Tagged VLAN Page 7. Click Apply. 8. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.
PAGE 53
AT-S106 Management Software Web Browser User’s Guide Modifying a Tagged VLAN To modify the name or port assignments of a tagged VLAN, do the following procedure: 1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands. 2. From the Bridge folder, select VLAN. The VLAN folder expands. 3. From the VLAN folder, select Tagged VLAN. An Example of a Tagged VLAN page is shown in Figure 17 on page 52. 4.
PAGE 54
Chapter 3: Virtual LANs 8. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.
PAGE 55
AT-S106 Management Software Web Browser User’s Guide Deleting a Tagged VLAN To delete a tagged VLAN, do the following procedure: 1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands. 2. From the Bridge folder, select VLAN. The VLAN folder expands. 3. From the VLAN folder, select Tagged VLAN. An example of the Tagged VLAN Page is shown in Figure 17 on page 52. 4. In the VLAN Action column, click delete next to the VLAN that you want to delete.
PAGE 56
Chapter 3: Virtual LANs Creating a Port-Based VLAN To create a port-based VLAN, do the following procedure: 1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands. 2. From the Bridge folder, select VLAN. The VLAN folder expands. 3. From the VLAN folder, select Port-Based VLAN. The Port-Based VLAN Page is displayed. See Figure 19. Figure 19. Port-Based VLAN Page 4. To assign a VLAN Index, type a VLAN ID in the VLAN Index field. Choose a value between 1 and 64. 5.
PAGE 57
AT-S106 Management Software Web Browser User’s Guide Modifying a Port-Based VLAN To modify the name or port assignments of a port-based VLAN, do the following procedure: 1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands. 2. From the Bridge folder, select VLAN. The VLAN folder expands. 3. From the VLAN folder, select Port-Based VLAN. The Port-Based VLAN Page is shown in Figure 19 on page 56. 4.
PAGE 58
Chapter 3: Virtual LANs Deleting a Port-Based VLAN To delete a port-based VLAN, do the following procedure: 1. From the main menu on the left side of the page, select Bridge. The Bridge folder expands. 2. From the Bridge folder, select VLAN. The VLAN folder expands. 3. From the VLAN folder, select Port-Based VLAN. The Port-Based VLAN Page is shown in Figure 19 on page 56. 4. In the VLAN Action column, click delete next to the VLAN that you want to delete. A confirmation prompt is displayed. 5.
PAGE 59
Chapter 4 Quality of Service (QoS) This chapter contains a description of the QoS feature and the procedures for configuring Quality of Service (QoS). This chapter includes the following sections: “Overview” on page 60 “Mapping CoS Priorities to Egress Queues” on page 63 “Configuring CoS” on page 65 Note To permanently save your new settings or any changes to the configuration file, select Save Configuration to Flash from the main menu on the left side of the page.
PAGE 60
Chapter 4: Quality of Service (QoS) Overview When a port on an Ethernet switch becomes oversubscribed—its egress queues contain more packets than the port can handle in a timely manner—the port may be forced to delay the transmission of some packets, which delays packets from reaching their destinations.
PAGE 61
AT-S106 Management Software Web Browser User’s Guide Each port on the AT-GS950/48 Gigabit Ethernet Smart Switch has four priority queues, 0 (low) to 3 (high). When a tagged packet enters a switch port, the switch responds by placing the packet into one of the queues according to the assignments shown in Table 1. A packet in a high priority egress queue is typically transmitted from a port sooner than a packet in a low priority queue. Table 1. Default Mappings of IEEE 802.
PAGE 62
Chapter 4: Quality of Service (QoS) because untagged packets do not contain a priority level information. By default, all untagged packets are placed in a port’s Q0 egress queue, the queue with the lowest priority. But you can override this and instruct a port’s untagged frames to be stored in a higher priority queue. The procedure for this is also explained in “Configuring CoS” on page 65. One last thing to note is that the CoS feature does not change the priority level in a tagged packet.
PAGE 63
AT-S106 Management Software Web Browser User’s Guide Mapping CoS Priorities to Egress Queues This procedure explains how to change the default mappings of CoS priorities to egress priority queues, as shown in Table 1 on page 61. This is set at the switch level. You cannot set these mappings on a per-port level. You can also use this procedure to enable and disable QoS on the switch.
PAGE 64
Chapter 4: Quality of Service (QoS) 5. Click Apply. Note The switch does not alter the original priority level in tagged frames. Frames leave the switch with the same priority level they had when they entered the switch. 6. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.
PAGE 65
AT-S106 Management Software Web Browser User’s Guide Configuring CoS As explained in “Overview” on page 60, a packet received by a port is placed it into one of four priority queues on the egress port according to the switch’s mapping of 802.1p priority levels to egress priority queues. The default mappings are shown in Table 1 on page 61. You can override the mappings at the port level by assigning a new default egress queue to a port.
PAGE 66
Chapter 4: Quality of Service (QoS) The columns in Figure 22 on page 65 display the following information: Port Index Displays the port number. The All value refers to ports 1 through 48 on the AT-GS950/48 switch. Trunk Displays the trunk number if the port is a member of a trunk. PVID Displays the Port VLAN identifier (PVID) of the port. For more information about this field, see “Port VLAN Identifier” on page 49.
PAGE 67
AT-S106 Management Software Web Browser User’s Guide Note The tagged information in a frame is not changed as the frame traverses the switch. A tagged frame leaves a switch with the same priority level that it had when it entered. 6. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.
PAGE 68
Chapter 4: Quality of Service (QoS) 68
PAGE 69
Chapter 5 Port Configuration This chapter provides a description of the physical characteristics of the ports and a procedure that explains how to view and change the port settings. This chapter includes the following sections: “Overview” on page 70 “Displaying and Configuring Ports Using the Port Configuration Page” on page 71 Note To permanently save your new settings or any changes to the configuration file, select Save Configuration to Flash from the main menu on the left side of the page.
PAGE 70
Chapter 5: Port Configuration Overview This chapter describes how to display and modify the physical characteristics of an AT-GS950/48 or AT-GS950/48 switch. You can display and modify the settings of all the ports on one web page. The port characteristics displayed are: Trunk Group Number Port type Link Status Admin Status setting Duplex Mode setting Flow control setting EAP Pass setting These characteristics are described in the next section.
PAGE 71
AT-S106 Management Software Web Browser User’s Guide Displaying and Configuring Ports Using the Port Configuration Page This procedure explains how to configure the ports on the switch using the Port Configuration Page. This page allows you to view and configure the parameter settings of all the switch ports at one time. To configure the ports, do the following procedure: 1. From the main menu on the left side of the page, select Physical Interface. The Physical Interface Page is displayed. See Figure 23.
PAGE 72
Chapter 5: Port Configuration Trunk Indicates the trunk group number. A number in this column indicates that the port has been added to a trunk. This parameter is can not be configured on this page, However, for information about configuring a trunk, refer to Chapter 6, “Static Port Trunking” on page 75. Type Indicates the port type.
PAGE 73
AT-S106 Management Software Web Browser User’s Guide Mode Indicates the speed and duplex mode settings for the port. You can use this parameter to set the speed and duplex mode of a port. Possible settings are: Ignore - Indicates the All setting does not apply to the Mode field. In other words, each port is set individually. Auto - The port is using Auto-Negotiation to set the operating speed and duplex mode. This is the default setting for all ports.
PAGE 74
Chapter 5: Port Configuration EAP Pass Extensible Authentication Protocol (EAP) packets are allowed on the port. Ignore—Indicates the All setting does not apply to the Admin. Status field. In other words, each port is set individually. Enabled—The port is able to send and receive EAP packets. Disabled—The port is disabled and is not able to send or receive EAP packets. This is the default setting for a port. 3. Click Apply to save the configuration. 4.
PAGE 75
Chapter 6 Static Port Trunking This chapter contains a description of port trunking and procedures for working with static port trunking. The following topics are discussed: “Port Trunking Overview” on page 76 “Creating a Port Trunk” on page 79 “Modifying a Port Trunk” on page 81 “Disabling a Port Trunk” on page 83 Note For information about Link Aggregation Control Protocol (LACP) port trunking, see Chapter 7, “LACP Port Trunks” on page 85.
PAGE 76
Chapter 6: Static Port Trunking Port Trunking Overview A port trunk is an economical way for you to increase the bandwidth between the Ethernet switch and another networking device, such as a network server, router, workstation, or another Ethernet switch. A port trunk is a group of ports that have been grouped together to function as one logical path.
PAGE 77
AT-S106 Management Software Web Browser User’s Guide Network equipment vendors tend to employ different techniques to implement static trunks. Consequently, a static trunk on one device may be incompatible with the same feature on a device from a different manufacturer. For this reason static trunks are typically employed only between devices from the same vendor.
PAGE 78
Chapter 6: Static Port Trunking The ports of a static trunk can be either untagged or untagged members of the same VLAN. The switch selects a port in the trunk to handle broadcast packets and packets of unknown destination. The switch makes this choice based on a hash algorithm, depending upon the source and destination MAC addresses.
PAGE 79
AT-S106 Management Software Web Browser User’s Guide Creating a Port Trunk This procedure explains how to create a static port trunk. Caution Do not connect the cables of a port trunk to the ports on the switch until you have configured the ports on both the switch and the end node. Connecting the cables prior to configuring the ports can create loops in your network topology. Loops can result in broadcast storms which can adversely affect the operation of your network.
PAGE 80
Chapter 6: Static Port Trunking If the switch does not contain a port trunk, all of the ports on the switch are unchecked. If there is a port trunk, the ports in the trunk are checked. 4. Click the dialog boxes of the ports that will make up the port trunk. A check in a box indicates the port is a member of the trunk. No check means the port is not a member. A port trunk can contain up to eight ports. 5. Change the Trunk Status from Disable to Manual.
PAGE 81
AT-S106 Management Software Web Browser User’s Guide Modifying a Port Trunk This procedure explains how to change the status of a port trunk and add or remove ports from a port trunk. Caution Before you disable a port trunk, disconnect all of the cables from the ports of the trunk. Leaving the cables connected during the reconfiguration of a trunk can create loops in your network topology because the ports of a disabled port trunk function as normal network ports, forwarding individual network traffic.
PAGE 82
Chapter 6: Static Port Trunking 6. Click Apply. 7. Modify the port trunk on the other switch and reconnect the cables. 8. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.
PAGE 83
AT-S106 Management Software Web Browser User’s Guide Disabling a Port Trunk This procedure explains how to disable a port trunk. Note Before you disable a port trunk, disconnect all of the cables from the ports of the trunk. Leaving the cables connected during the reconfiguration of a trunk can create loops in your network topology because the ports of a disabled port trunk function as normal network ports, forwarding individual network traffic. To disable a port trunk, do the following procedure: 1.
PAGE 84
Chapter 6: Static Port Trunking 84
PAGE 85
Chapter 7 LACP Port Trunks This chapter contains overview information about LACP port trunks and the procedures for setting this feature. This chapter contains the following sections: “LACP Overview” on page 86 “LACP System Priority” on page 90 “Key Parameter” on page 90 “LACP Port Priority Value” on page 90 “Guidelines” on page 92 “Displaying LACP Group Status” on page 94 “Selecting Port Priority” on page 97 Note For information about port trunking, see Chapter 6, on page 75.
PAGE 86
Chapter 7: LACP Port Trunks LACP Overview LACP (Link Aggregation Control Protocol) port trunks perform the same function as static trunks. They increase the bandwidth between network devices by distributing the traffic load over multiple physical links. The advantage of an LACP trunk over a static port trunk is its flexibility. While implementations of static trunking tend to be vendor specific, the AT-S106 Management software software implementation of LACP is compliant with the IEEE 802.
PAGE 87
AT-S106 Management Software Web Browser User’s Guide packets. If it begins to receive LACPDU packets, it automatically transitions to an active or standby mode as part of an aggregate trunk. If there is more than one aggregate trunk on a switch, each trunk may requires a separate aggregator or it may be possible to combine them under a common aggregator. The determining factor is whether the trunks are going to the same device or different devices.
PAGE 88
Chapter 7: LACP Port Trunks Here is how the example looks in a table format on the AT-GS950/48 switch. Table 2. Multiple Aggregators Aggregator Description Aggregator Ports Aggregate Trunk Ports Aggregator 1 4, 6, 8 4, 6, 8 Aggregator 2 20, 22, 24 20, 22, 24 If the aggregate trunks go to different devices, you can create one aggregator and the AT-GS950/48 Gigabit Ethernet Smart Switch form the trunk or trunks automatically.
PAGE 89
AT-S106 Management Software Web Browser User’s Guide Here is how this example looks in table format. Aggregator Description Aggregator Ports Aggregate Trunk Ports Aggregator 1 4, 6, 8, 20, 22, 24 4, 6, 8 20, 22, 24 You can create separate aggregators for the different aggregate trunks in the example above. However, letting the switch make the determination saves time later if you physically reassign ports to a different trunk connected to another device.
PAGE 90
Chapter 7: LACP Port Trunks LACP System Priority It is possible for two devices interconnected by an aggregate trunk to encounter a conflict when they form the trunk. For example, the two devices might not support the same number of active ports in an aggregate trunk or might not agree on which ports are active and which are in standby mode. If a conflict does occur, the two devices need a mechanism for resolving the problem and deciding whose LACP settings take precedence.
PAGE 91
AT-S106 Management Software Web Browser User’s Guide ports, and the others are placed in the standby mode. If an active link goes down on a active port, the standby port with the next highest priority is automatically activated to take its place. The selection of the active links in an aggregate trunk is dynamic and changes as links are added, removed, lost, or reestablished.
PAGE 92
Chapter 7: LACP Port Trunks Guidelines The following guidelines apply when creating aggregators: 92 LACP must be activated on both the switch and the other device. The other device must be 802.3ad-compliant. An aggregator can consist of any number of ports. The AT-S106 Management software supports up to eight active ports in an aggregate trunk at a time.
PAGE 93
AT-S106 Management Software Web Browser User’s Guide AT-GS950/48 Gigabit Ethernet Smart Switch. This can help avoid a conflict between the devices if some ports are placed in the standby mode when the devices create the trunk. For background information, refer to “LACP System Priority” on page 90. LACPDU packets are transmitted as untagged packets.
PAGE 94
Chapter 7: LACP Port Trunks Displaying LACP Group Status To display the LACP Group Status, do the following procedure: 1. Select the Bridge folder. The Bridge folder expands. 2. From the Bridge folder, select the Trunk Config. folder. The Trunk Config. folder expands. 3. From the Trunk Config. folder, select LACP Group Status. The LACP Group Status Page is displayed. See Figure 28 for an example of the default display. Figure 28.
PAGE 95
AT-S106 Management Software Web Browser User’s Guide The System Priority is a preassigned value that you cannot alter. This value applies to the switch. See “LACP System Priority” on page 90. The System ID is a MAC address value assigned to the switch. You cannot change this value. Key 1 - Key 10 Indicates the ID number of the trunk (aggregation group). See “Key Parameter” on page 90 for more information. 4.
PAGE 96
Chapter 7: LACP Port Trunks 5. Physically connect the network cables between the switch and a second LACP device configure with an LACP activated trunk of four or more ports. The LACP Group Status Page is updated. An example of these updates is shown in Figure 30 after four trunking cables are installed and the ports have Link-Up status. Figure 30.
PAGE 97
AT-S106 Management Software Web Browser User’s Guide Selecting Port Priority To select port priority, do the following procedure: 1. Select the Bridge folder. The Bridge folder expands. 2. From the Bridge folder, select the Trunk Config. folder. The Trunk Config. folder expands. 3. From the Trunk Config. folder, select Port Priority. The Port Priority Page is displayed. See Figure 31 for a partial view. Figure 31.
PAGE 98
Chapter 7: LACP Port Trunks The System Priority is a preassigned value that you cannot alter. This value applies to the switch. See “LACP System Priority” on page 90. The System ID is a MAC address value assigned to the switch. You cannot change this value. 4. To set the port priority, select a value from 0 to 255 in the Priority column for the port you want to alter. For more information, see “LACP Port Priority Value” on page 90 5. Select Apply. 6.
PAGE 99
Chapter 8 Simple Network Management Protocol (SNMP) This chapter contains a description of SNMP and procedures for working with this protocol.
PAGE 100
Chapter 8: Simple Network Management Protocol (SNMP) SNMP Overview You can manage a switch by viewing and configuring the management information base (MIB) objects on the device with the Simple Network Management Program (SNMP). The IP address of the switch and at least one of the switch’s community strings is required to manage the switch using SNMP. The AT-S106 Management software supports SNMPv1 and SNMPv2c.
PAGE 101
AT-S106 Management Software Web Browser User’s Guide above events occur. If you disable it, the switch does not send this trap. The default is disabled. If you enable this trap, be sure to add one or more IP addresses of trap receivers to the community strings so that the switch will know where to send the trap if it needs to. See “Trap Receivers” on page 102 for more information.
PAGE 102
Chapter 8: Simple Network Management Protocol (SNMP) Community String Attributes A community string has attributes for controlling who can use the string and what the string will allow a network management to do on the switch. The community string attributes are defined below. Community String Name A community string must have a name of one to eight alphanumeric characters. Spaces are allowed. Access Mode This attribute defines the permissions of a community string.
PAGE 103
AT-S106 Management Software Web Browser User’s Guide Trap receivers are the devices, typically management workstations or servers, that you want to receive the traps sent by the switch. You specify the trap receivers by their IP addresses. You assign the IP addresses to the community strings. Each community string can have up to eight trap IP addresses. When the switch sends a trap, it looks at all the community strings and sends the trap to all trap receivers on all community strings.
PAGE 104
Chapter 8: Simple Network Management Protocol (SNMP) Default SNMP Community Strings The AT-S106 Management software provides two default community strings: public and private. The public string has an access mode of ReadOnly and the private string has an access mode of Read/Write. If you activate SNMP management on the switch, you should delete or disable the private community string, which is a standard community string in the industry.
PAGE 105
AT-S106 Management Software Web Browser User’s Guide Creating an SNMP Community This procedure explains how to create an SNMP community. To create an SNMP community, do the following procedure: 1. From the main menu on the left side of the page, select the SNMP folder. The SNMP folder expands. 2. From the SNMP folder, select Community Table. The Community Table Page is displayed. See Figure 32. Figure 32. Community Table Page 3.
PAGE 106
Chapter 8: Simple Network Management Protocol (SNMP) Modifying an SNMP Community Use the following procedure to modify the access level or a community name of an SNMP community in the Community Table. 1. From the main menu on the left side of the page, select the SNMP folder. The SNMP folder expands. 2. From the SNMP folder, select Community Table. The Community Table Page is shown in Figure 32 on page 105. 3.
PAGE 107
AT-S106 Management Software Web Browser User’s Guide Deleting an SNMP Community Use the following procedure to delete an existing SNMP community in the Community Table. 1. From the main menu on the left side of the page, select the SNMP folder. The SNMP folder expands. 2. From the SNMP folder, select Community Table. The Community Table page is shown in Figure 32 on page 105. 3. To delete a community, select delete in the Community Table next to the community that you want to remove.
PAGE 108
Chapter 8: Simple Network Management Protocol (SNMP) Creating a Host Table Use the following procedure to create a Host Table. 1. From the main menu on the left side of the page, select the SNMP folder. The SNMP folder expands. 2. From the SNMP folder, select Host Table. The Host Table Page is displayed. See Figure 33. Figure 33. Host Table Page 3. To specify an entry number, type a value between 1 and 10 in the Entry number field. 4.
PAGE 109
AT-S106 Management Software Web Browser User’s Guide Modifying a Host Table Entry To modify the IP address or community name of an entry in the Host Table, use the following procedure: 1. From the main menu on the left side of the page, select the SNMP folder. The SNMP folder expands. 2. From the SNMP folder, select Host Table. The Host Table Page is shown in Figure 33 on page 108. 3. To change an IP Address in the table, type over the old IP address with a new one. 4.
PAGE 110
Chapter 8: Simple Network Management Protocol (SNMP) Deleting a Host Table Entry Use the following procedure to delete a Host Table entry: 1. From the main menu on the left side of the page, select the SNMP folder. The SNMP folder expands. 2. From the SNMP folder, select Host Table. The Host Table Page is shown in Figure 33 on page 108. 3. To delete an entry in the host table, click delete next to the entry in the table that you want to remove. The Host Table entry is removed from the table.
PAGE 111
AT-S106 Management Software Web Browser User’s Guide Enabling or Disabling Traps To enable or disable a trap for an SNMP community, do the following procedure: 1. From the main menu on the left side of the page, select the SNMP folder. The SNMP folder expands. 2. From the SNMP folder, select Trap Setting. The Trap Setting Page is displayed. See Figure 34. Figure 34. Trap Setting Page 3. Type a trap number between 1 and 10 in the Entry number field. 4.
PAGE 112
Chapter 8: Simple Network Management Protocol (SNMP) Modifying Traps To modify the SNMP version, IP address, or community name of a trap, do the following procedure: 1. From the main menu on the left side of the page, select the SNMP folder. The SNMP folder expands. 2. From the SNMP folder, select Trap Setting. The Trap Setting Page is shown in Figure 34 on page 111. 3.
PAGE 113
AT-S106 Management Software Web Browser User’s Guide Deleting Traps To delete a trap from an SNMP community, do the following procedure: 1. From the main menu on the left side of the page, select the SNMP folder. The SNMP folder expands. 2. From the SNMP folder, select Trap Setting. The Trap Setting Page is shown in Figure 34 on page 111. 3. In the Trap table, click delete next to the trap you want to delete from the table. The trap is removed from the Trap Setting Page. A warning message is not displayed.
PAGE 114
Chapter 8: Simple Network Management Protocol (SNMP) 114
PAGE 115
Chapter 9 IGMP Snooping This chapter contains a description of the IGMP Snooping procedure as well as procedures for working with IGMP Snooping in the web interface. The following topics are discussed: “Overview” on page 116 “Configuring IGMP Snooping” on page 118 Note To permanently save your new settings or any changes to the configuration file, select Save Configuration to Flash from the main menu on the left side of the page.
PAGE 116
Chapter 9: IGMP Snooping Overview IGMP enables IPv4 routers to create lists of nodes that are members of multicast groups. (A group of end nodes that receive multicast packets from a multicast application is defined as a multicast group.) The router creates a multicast membership list by periodically sending out queries to the local area networks connected to its ports.
PAGE 117
AT-S106 Management Software Web Browser User’s Guide Without IGMP snooping, a switch floods multicast packets from all of its ports, except the port on which it received the packet. Such flooding of packets can negatively impact network performance. The AT-GS950/48 switch maintains a list of multicast groups through an adjustable time out value, which controls how frequently it expects to see reports from end nodes that want to remain members of multicast groups, and by processing leave requests.
PAGE 118
Chapter 9: IGMP Snooping Configuring IGMP Snooping This procedure explains how to set IGMP snooping on the switch and set the IGMP Snooping age-out timer. To configure IGMP snooping, do the following procedure: 1. From the main menu on the left side of the page, select the Bridge folder. The Bridge folder expands. 2. From the Bridge folder, select IGMP Snooping. The IGMP Snooping Page is displayed. See Figure 35. Figure 35. IGMP Snooping Page 3.
PAGE 119
AT-S106 Management Software Web Browser User’s Guide 5. After you have configured a Group MAC Address on the Static Multicast Address Page, the IGMP Snooping Page is updated with the Multicast Group address. See Figure 36. Note The Multicast Group Address table contains MAC addresses of nodes that are members of multicast groups. To set a Multicast Group Address, see “Setting a Static Multicast Address” on page 138. Figure 36. IGMP Snooping Page with MAC Address 6.
PAGE 120
Chapter 9: IGMP Snooping Figure 37. IGMP Snooping —Group Members Page 7. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.
PAGE 121
Chapter 10 Bandwidth Control This chapter contains a description of the bandwidth features and procedures for configuring them. The following topics are discussed: “Overview” on page 122 “Setting Ingress Rate Limiting” on page 126 “Setting Egress Rate Limiting” on page 128 Note To permanently save your new settings or any changes to the configuration file, select Save Configuration to Flash from the main menu on the left side of the page.
PAGE 122
Chapter 10: Bandwidth Control Overview The features available in the AT-S106 Management software allow you to limit Ethernet traffic within your switch based on specific criteria. You can use Storm Control to limit the switching of various types of Ethernet packets. With Ingress and Egress Rate Limiting, you can limit the traffic volume at the input or output ports respectively.
PAGE 123
AT-S106 Management Software Web Browser User’s Guide Ingress Rate Limiting The Ingress Rate Limiting feature restricts the traffic to a pre-configured data rate that can flow into a port. This data rate limit can be configured in 64 Kbps increments within a range from 64 Kbps to 1000 Mbps. The formula for calculating the bandwidth limit is as follows: Bandwidth = 64Kbps x rate limit For the AT-GS950/48, the rate limit parameter is an integer ranging from 1 to 15625 ports 1 - 48.
PAGE 124
Chapter 10: Bandwidth Control Setting Storm Control This procedure explains how to set DLF, broadcast, multicast, and threshold levels for each port on the AT-GS950/48 Gigabit Ethernet Smart Switch. To change the default settings of the storm control feature, do the following procedure: 1. From the main menu on the left side of the page, select the Bridge folder. 2. From the Bridge folder, select Bandwidth Control. 3. The Bandwidth Control folder expands. 4.
PAGE 125
AT-S106 Management Software Web Browser User’s Guide 5. To enable or disable the DLF field, select Enable or Disable from the DLF pull-down menu next to the port that you want to change. The default is Disable. You can use the option next to the ALL row to set all of the ports to the same setting. 6. Click Apply. 7. To enable or disable ingress and egress Broadcast packets, select Enable or Disable from the Broadcast pull-down menu next to the port that you want to change. The default is Disable.
PAGE 126
Chapter 10: Bandwidth Control Setting Ingress Rate Limiting This procedure explains how to set Bandwidth levels and Status for Ingress Rate Limiting on each port of the AT-GS950/48 Gigabit Ethernet Smart Switch. To change the default settings, do the following procedure: 1. From the main menu on the left side of the page, select the Bridge folder 2. From the Bridge folder, select Bandwidth Control. 3. The Bandwidth Control folder expands. 4. From the Bandwidth Control folder, select Ingress Rate Filtering.
PAGE 127
AT-S106 Management Software Web Browser User’s Guide 6. To enable or disable ingress rate filter, select Enable or Disable from the Status pull-down menu next to the port that you want to change. The default is Disable. You can use the option next to the ALL row to set all of the ports to the same setting. 7. Click Apply. 8. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.
PAGE 128
Chapter 10: Bandwidth Control Setting Egress Rate Limiting This procedure explains how to set Bandwidth levels and Status for Egress Rate Limiting on each port of the AT-GS950/48 Gigabit Ethernet Smart Switch. To change the default settings, do the following procedure: 1. From the main menu on the left side of the page, select the Bridge folder. 2. From the Bridge folder, select Bandwidth Control. 3. The Bandwidth Control folder expands. 4. From the Bandwidth Control folder, select Egress Rate Filtering.
PAGE 129
AT-S106 Management Software Web Browser User’s Guide 6. To enable or disable egress rate filter, select Enable or Disable from the Status pull-down menu next to the port that you want to change. The default is Disable. You can use the option next to the ALL row to set all of the ports to the same setting. 7. Click Apply. 8. From the main menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.
PAGE 130
Chapter 10: Bandwidth Control 130
PAGE 131
Chapter 11 Port Mirroring This chapter describes the Port Mirroring feature and the procedure for setting up port mirroring. Port mirroring allows you to unobtrusively monitor the ingress and egress traffic on a port by having the traffic copied to another port.
PAGE 132
Chapter 11: Port Mirroring Overview The port mirroring feature allows you to unobtrusively monitor the traffic received and transmitted on one or more ports by copying the traffic to another switch port. You can connect a data analyzer to the port where the traffic is copied and monitor the traffic on the other ports without impacting network performance or speed. A port mirror has two component ports. The port or ports whose traffic you want to mirror is called the source port(s).
PAGE 133
AT-S106 Management Software Web Browser User’s Guide Configuring Port Mirroring To set up port mirroring, do the following procedure: 1. Select the Bridge folder. The Bridge folder expands. 2. From the Bridge folder, select Mirroring. The Mirroring Page is displayed. See Figure 41. Figure 41. Mirroring Page 3. Click Mirroring Port and from the pull-down menu select the port where the data analyzer is connected. 4.
PAGE 134
Chapter 11: Port Mirroring Disabling Port Mirroring To disable port mirroring, do the following procedure: 1. Select the Bridge folder. The Bridge folder expands. 2. From the Bridge folder, select Mirroring. The Mirroring page is shown in Figure 41 on page 133. 3. From the Mirroring Status list, select Disable and click Apply. Port mirroring is immediately disabled on the switch. You can now use the mirroring port for regular network operations. 4.
PAGE 135
Chapter 12 Static Multicast MAC Address This chapter contains a description of the static multicast MAC address feature and the procedure for configuring it.
PAGE 136
Chapter 12: Static Multicast MAC Address Overview The AT-GS950/48 switch has a MAC address table with a storage capacity of up to 8,000 entries. The table stores the MAC addresses of the network nodes connected to its ports and the port number where each address was learned. There are two types of MAC addresses - dynamic and static. Dynamic MAC addresses are addresses that the switch learns automatically by examining the source MAC addresses of the frames received by the ports.
PAGE 137
AT-S106 Management Software Web Browser User’s Guide allows the multicast stream to be forwarded immediately to those predefined ports entered in the MAC table without any configuration delays or loss of data.
PAGE 138
Chapter 12: Static Multicast MAC Address Setting a Static Multicast Address This procedure explains how to set the static multicast feature for each port on the AT-GS950/48 Gigabit Ethernet Smart Switch. To add a static MAC address to the switch, do the following procedure: 1. From the main menu on the left side of the page, select the Bridge folder. 2. From the Bridge folder, select Static Multicast. The Static Multicast Address Table Page is displayed. See Figure 42. Figure 42.
PAGE 139
AT-S106 Management Software Web Browser User’s Guide 4. In the Group MAC Address field, enter a multicast MAC address. The range is from 01:00:5E:00:01:00 to 01:00:5E:7F:FF:FF. 5. Assign the MAC address a Group Member (or members) for selecting the check box below each group member. Note Each group member corresponds to a port number. In addition, you can assign a maximum limit of 256 static multicast addresses on the switch. 6. Click Add.
PAGE 140
Chapter 12: Static Multicast MAC Address Modifying a Static Multicast Address To modify the port assignment of a multicast MAC address in the MAC address table, do the following procedure: 1. From the main menu on the left side of the page, select the Bridge folder. 1. From the Bridge folder, select Static Multicast. The Static Multicast Address Table Page is displayed. See Figure 42 on page 138. 2. Select modify next to the static MAC address that you want to modify.
PAGE 141
AT-S106 Management Software Web Browser User’s Guide Deleting a Static Multicast Address To delete a multicast MAC address from the MAC address table, do the following procedure: 1. From the main menu on the left side of the page, select the Bridge folder. 1. From the Bridge folder, select Static Multicast. The Static Multicast Address Table Page is displayed. See Figure 42 on page 138. 2. Select delete next to the static multicast address that you want to remove.
PAGE 142
Chapter 12: Static Multicast MAC Address 142
PAGE 143
Chapter 13 Spanning Tree and Rapid Spanning Tree Protocols This chapter provides background information about the Spanning Tree Protocol (STP) and the Rapid Spanning Tree Protocol (RSTP). In addition, there are procedures to configure STP and RSTP.
PAGE 144
Chapter 13: Spanning Tree and Rapid Spanning Tree Protocols Overview The performance of a Ethernet network can be negatively impacted by the formation of a data loop in the network topology. A data loop exists when two or more nodes on a network can transmit data to each other over more than one data path.
PAGE 145
AT-S106 Management Software Web Browser User’s Guide Bridge Priority and the Root Bridge The first task that bridges perform when a spanning tree protocol is activated on a network is the selection of a root bridge. A root bridge distributes network topology information to the other network bridges and is used by the other bridges to determine if there are redundant paths in the network.
PAGE 146
Chapter 13: Spanning Tree and Rapid Spanning Tree Protocols Path Costs and Port Costs After the root bridge has been selected, the bridges determine if the network contains redundant paths and, if one is found, select a preferred path while placing the redundant paths in a backup or blocking state.
PAGE 147
AT-S106 Management Software Web Browser User’s Guide . Table 4.
PAGE 148
Chapter 13: Spanning Tree and Rapid Spanning Tree Protocols Forwarding Delay and Topology Changes If there is a change in the network topology due to a failure, removal, or addition of any active components, the active topology also changes. This may trigger a change in the state of some blocked ports. However, a change in a port state is not activated immediately. It may take time for the root bridge to notify all bridges that a topology change has occurred, especially if it is a large network.
PAGE 149
AT-S106 Management Software Web Browser User’s Guide selected as the root bridge of a spanning tree domain, it transmits a BPDU every two seconds. Point-to-Point and Edge Ports This section applies only to RSTP. Part of the task of configuring RSTP is defining the port types on the bridge, which is directly related to the device(s) connected to the port. With the port types defined, RSTP can reconfigure a network much quicker than STP when a change in network topology is detected.
PAGE 150
Chapter 13: Spanning Tree and Rapid Spanning Tree Protocols A port operates as an edge port when it is connected to a network terminal device such as a workstation or a server. An edge port on a bridge should not have any STP or RSTP devices connected to it either directly or through another device connected to that port. In this configuration since the port has no STP or RSTP devices connected to it, it will always forward network traffic. Figure 45 illustrates a port functioning as an edge port.
PAGE 151
AT-S106 Management Software Web Browser User’s Guide Mixed STP and RSTP Networks RSTP IEEE 802.1w is fully compliant with STP IEEE 802.1d. Your network can consist of bridges running both protocols. STP and RSTP in the same network can operate together to create a single spanning tree domain. If you decide to activate spanning tree on the switch, Allied Telesis recommends RSTP instead of STP even when all of other switches in the network are running STP.
PAGE 152
Chapter 13: Spanning Tree and Rapid Spanning Tree Protocols Spanning Tree and VLANs The spanning tree implementation in the AT-S106 Management software is a single-instance spanning tree. The AT-GS950/48 Gigabit Ethernet Smart Switch both support just one spanning tree. You cannot define multiple spanning trees on either switch. The single spanning tree encompasses all ports on the switch. If the ports are divided into different VLANs, the spanning tree crosses the VLAN boundaries.
PAGE 153
AT-S106 Management Software Web Browser User’s Guide You can avoid this problem by connecting the switches using tagged instead of untagged ports when you plan to have STP or RSTP enabled on your network. If each port connecting the two bridges is a tagged member of all three VLANs, then traffic for each of the VLANs can still flow through one the data links if the other two are blocked by Spanning Tree.
PAGE 154
Chapter 13: Spanning Tree and Rapid Spanning Tree Protocols Basic STP and RSTP Configuration To configure the basic STP and RSTP settings, do the following procedure: 1. From the main menu on the left side of the page, select Bridge. The Spanning Tree folder is displayed. 2. From the Bridge folder, select the Spanning tree folder. 3. From the Spanning tree folder, select RSTP. The Rapid Spanning Tree Configuration Page is displayed. See Figure 48. Figure 48.
PAGE 155
AT-S106 Management Software Web Browser User’s Guide The RSTP Configuration page allows you to configure RSTP as well as to view the current settings. In the upper portion of the page, you can set the following parameters: Global RSTP Status Set this field to enable to activate RSTP on the switch. The default is disable. Protocol Version Set this field to activate RSTP or STP on the switch. This field is greyed out until you set the Global RSTP Status to enable.
PAGE 156
Chapter 13: Spanning Tree and Rapid Spanning Tree Protocols Hello Time The hello time. See “Hello Time and Bridge Protocol Data Units (BPDU)” on page 148. This parameter affects only the root bridge. Maximum Age The maximum amount of time that BPDUs are stored before being deleted on the root bridge. Forward Delay The time interval between generating and sending configuration messages by the root bridge. The bottom section of the web page provides information about the bridge.
PAGE 157
AT-S106 Management Software Web Browser User’s Guide Configuring RSTP Port Settings This section contains the following topics: Configuring the Basic RSTP Port Settings “Configuring the Basic RSTP Port Settings,” next “Configuring the Advanced RSTP Port Settings” on page 159 To configure the basic RSTP port settings, do the following procedure: From the main menu on the left side of the page, select Bridge. The Bridge folder expands. 5. From the Bridge folder, select the Spanning tree folder. 6.
PAGE 158
Chapter 13: Spanning Tree and Rapid Spanning Tree Protocols This page displays the following information about the ports: Port Indicates ports 1 through 48 on the AT-GS950/48 switch. Use the All row to apply the same settings for the STP Status, Priority, and Path Cost fields to your switch. Trunk Indicates the trunk assignment of a port. Link Status Indicates if the port link status is active (Up) or inactive (Down).
PAGE 159
AT-S106 Management Software Web Browser User’s Guide Designated— If this is the designated bridge for the LAN and if the root path cost information received on this port is greater than the root port's path cost and less than any other port's received information, then this port becomes the designated port. Backup— Any operational Bridge Port that is not a Root or Designated Port is a Backup Port if the Bridge is the Designated Bridge for the attached LAN.
PAGE 160
Chapter 13: Spanning Tree and Rapid Spanning Tree Protocols The RSTP Advanced Port Configuration Page is displayed. A partial view is shown in Figure 50. Figure 50. RSTP Advanced Port Configuration Page This page displays the following information about the ports: Port Indicates ports 1 through 48 on the AT-GS950/48 switch. Use the All row to apply the same settings to the STP Status, Priority, and Path Cost fields to all the ports on your switch. Trunk Indicates the trunk assignment of a port.
PAGE 161
AT-S106 Management Software Web Browser User’s Guide State Indicates one of the following port states: Blocking— A blocking state does not allow network traffic to be sent or received on a the port except for BPDU data. A port with a higher path cost to the root bridge than another on the switch causes a switching loop and is placed in the blocking state by the Spanning Tree algorithm.
PAGE 162
Chapter 13: Spanning Tree and Rapid Spanning Tree Protocols 4. In the Admin/OperEdge column for the port you want to configure, choose True or False to set whether or not the port will operate as an edge port. When you configure this parameter a True designating the port as an edge port, the port will always be in a forwarding state. 5. In the Admin/OperPtoP column for the port you want to configure, choose a setting based on the information in Table 5. Table 5.
PAGE 163
AT-S106 Management Software Web Browser User’s Guide Viewing the Spanning Tree Topology To view the current spanning tree topology, do the following procedure: 1. From the main menu on the left side of the page, select Bridge. This folder expands. 2. From the Bridge folder, select the Spanning tree folder. 3. From the Spanning tree folder, select Topology Info. The Designated Topology Information Page is displayed. A partial view is shown in Figure 51. Figure 51.
PAGE 164
Chapter 13: Spanning Tree and Rapid Spanning Tree Protocols This page is contains status information only and there are no parameters to configure. The following information is displayed about the ports: Port Indicates ports 1 through 48on the AT-GS950/48 switch. Port Trunk The trunk of which the port is a member. Link Status Whether the link on the port is up or down. Designated Root The designated root bridge to which the switch’s root port is actively connected.
PAGE 165
Chapter 14 802.1x Port-based Network Access Control This chapter contains information about the 802.1x Port-based Network Access Control and the procedures for setting this feature. This chapter includes the following sections: “Overview” on page 166 “Guest VLANs” on page 172 “Configuring 802.1x Port-based Network Access Control” on page 173 “Displaying the Port Access Control Status” on page 176 Note If you choose to use a remote RADIUS server for 802.
PAGE 166
Chapter 14: 802.1x Port-based Network Access Control Overview 802.1x Port-based Network Access Control (IEEE 802.1x) is used to control who can send traffic through and receive traffic from a switch port. With this feature, the switch does not allow an end node to send or receive traffic through a port until the user of the node logs on by entering a user name and password.
PAGE 167
AT-S106 Management Software Web Browser User’s Guide authentication server, this is where the actual verification of the supplicant user names and passwords is done. Authentication Process Authenticator Ports The authentication process involves communication between the authenticator and the supplicant using the standard EAPOL transaction to pass the user name and password of the supplicant to the authenticator.
PAGE 168
Chapter 14: 802.1x Port-based Network Access Control Figure 52 illustrates the practical examples of these three authenticator port control settings when a RADIUS server is in your network. Port 37 802.1x Port Control: Setting: Force-unauthorized 1869 Port 20 802.1x Port Control Setting: Auto Supplicant with 802.1x Client Software Port 34 802.1x Port Control: Setting: Force-authorized RADIUS Authentication Server Figure 52. Example of the Authenticator Role 168 Port 20 is set to Auto.
PAGE 169
AT-S106 Management Software Web Browser User’s Guide General Steps Following are the general steps to implementing 802.1x Port-based Network Access Control: 1. If you plan to select RADIUS as the authentication method, install RADIUS server software on one of your network servers. Note Radius server software is not available from Allied Telesis. Consult the vendor’s documentation for server installation instructions. 2. Install 802.
PAGE 170
Chapter 14: 802.1x Port-based Network Access Control Port-based Network Access Control Guidelines Following are the guidelines for using this feature: When using the RADIUS authentication mode, the appropriate setting for a port connected to the RADIUS authentication server is Forceauthorized, the default setting. This is because an authentication server cannot authenticate itself. Ports set to Auto do not support port trunking or dynamic MAC address learning.
PAGE 171
AT-S106 Management Software Web Browser User’s Guide Port 18 on Switch A: 802.1x Port Control Setting: Force-authorized Port 15 on Switch B: 802.1x Port Control Setting: Force-authorized Switch A Port 40: 802.1x Port Control Setting: Force-authorized 1870 RADIUS Authentication Server 24 Port 10/100 Mbps WebSmart Switch with 12 POE and 2 Combo SFP Ports SYSTEM POWER POE Ports 10, 14 & 20 on Switch B: 802.1x Port Control Setting: Auto Switch B Supplicants with 802.1x Client software Figure 53.
PAGE 172
Chapter 14: 802.1x Port-based Network Access Control Guest VLANs An authenticator port in the unauthorized state typically accepts and transmits only 802.1x packets while waiting to authenticate a supplicant. However, you can configure an authenticator port to be a member of a Guest VLAN when no supplicant is logged on. Any client using the port is not required to log on and has full access to the resources of the Guest VLAN. If the switch receives 802.
PAGE 173
AT-S106 Management Software Web Browser User’s Guide Configuring 802.1x Port-based Network Access Control To configure 802.1x port-based network access control, do the following procedure: 1. Select the Security folder from the main menu on the left side of the page. The Security folder expands. 2. From the Security folder, select Port Access Control. The 802.1x Access Control Configuration Page is displayed. See Figure 54. Figure 54. 802.1x Access Control Configuration Page 3.
PAGE 174
Chapter 14: 802.1x Port-based Network Access Control 4. Configure the following parameters as needed. The parameters are defined here: NAS ID This parameter assigns an 802.1x identifier to the switch that applies to all ports. The NAS ID can be up to sixteen characters. Valid characters are 0 to 9, a to z, and A to Z. Spaces are allowed. Specifying an NAS ID is optional. Authentication Method This parameter indicates the authentication method used by the switch. The options are RADIUS or local.
PAGE 175
AT-S106 Management Software Web Browser User’s Guide Quiet Period Sets the number of seconds that the port remains in the quiet state following a failed authentication exchange with the client. The default value is 60 seconds. The range is 0 to 65,535 seconds. Maximum Request Sets the maximum number of times that the switch retransmits an EAP Request packet to the client before it times out the authentication session. The default value for this parameter is 2 retransmissions.
PAGE 176
Chapter 14: 802.1x Port-based Network Access Control Displaying the Port Access Control Status To display the Port Access Control Status, do the following procedure: 1. Select the Security folder from the main menu on the left side of the page. The Security folder expands. 2. From the Security folder, select Port Access Control Status. The Port Access Control Status Page is displayed. See Figure 54. Figure 55. 802.1x Access Control Configuration Page 3.
PAGE 177
Chapter 15 RADIUS Authentication Protocol This chapter explains how to configure the RADIUS client on the switch. You can use the RADIUS client with 802.1x port-based network access control to control who can forward packets through the switch. This chapter contains the following sections: “Overview” on page 178 “Configuring the RADIUS Client” on page 179 Note To activate the RADIUS feature, you must also configure the 802.1x port-network access control feature. See Chapter 14, “802.
PAGE 178
Chapter 15: RADIUS Authentication Protocol Overview RADIUS (Remote Authentication Dial In User Services) is an authentication protocol for enhancing the security of your network. The protocol transfers the task of authenticating network access from a network device to an authentication protocol server. The AT-S106 Management software comes with RADIUS client software. You can use the client software together with 802.1x port-based network access control.
PAGE 179
AT-S106 Management Software Web Browser User’s Guide Configuring the RADIUS Client To configure the RADIUS client, do the following procedure: 1. From the main menu on the left side of the page, select the Security folder. The Security folder expands. 2. From the Security folder, select RADIUS. The RADIUS Page is displayed. See Figure 56. Figure 56. RADIUS Page 3. To enter the RADIUS server’s IP address, enter the address in the Server IP Address field. 4.
PAGE 180
Chapter 15: RADIUS Authentication Protocol 180
PAGE 181
Chapter 16 Dial-in User Configuration This chapter describes the Dial-in User feature and provides procedures for configuring this feature. Sections in the chapter include: “Dial-in User Configuration Overview” on page 182 “Configuring a Dial-in User” on page 183 Note To permanently save your new settings or any changes to the configuration file, select Save Configuration to Flash from the main menu on the left side of the page.
PAGE 182
Chapter 16: Dial-in User Configuration Dial-in User Configuration Overview The Dial-in User (local) authentication method allows you to set up 802.1x authentication parameters internally in the switch without a remote (RADIUS) server. In this case, the user name and password combinations are entered with an optional VLAN when they are defined.
PAGE 183
AT-S106 Management Software Web Browser User’s Guide Configuring a Dial-in User The procedures in this section describe how to create, delete, and modify dial-in users. See the following procedures: Add a Dial-in User “Add a Dial-in User” on page 183 “Modify a Dial-in User” on page 183 “Delete a Dial-in User” on page 184 To set up a user’s dial-in access, do the following procedure: 1. From the main menu, select Security > Dial-in User. The Dial-in User page is displayed. See Figure 57.
PAGE 184
Chapter 16: Dial-in User Configuration 2. In the list of dial-in users, highlight the user you want to modify. The user’s information is displayed in fields above. 3. In the User Name or Password fields, enter the revised user information. 4. In the Dynamic VLAN field, revise the VID of the VLAN which you will allow the user to access. 5. Click Apply. 6. To permanently save these settings in the configuration file, select Save Configuration to Flash from the main menu to permanently save your changes.
PAGE 185
Chapter 17 Destination MAC Filter This chapter contains an explanation of the Destination MAC Filter feature as well a procedure for configuring it. This chapter includes the following sections: “Overview” on page 186 “Configuring a Destination MAC Filter” on page 187 “Deleting a Destination MAC Filter” on page 188 Note To permanently save your new settings or any changes to the configuration file, select Save Configuration to Flash from the main menu on the left side of the page.
PAGE 186
Chapter 17: Destination MAC Filter Overview The Destination MAC Filter feature prevents both the AT-GS950/48 Gigabit Ethernet Smart Switch from forwarding packets to a specified device. On the Destination MAC Filter Page of the AT-S106 Management software, enter the MAC address of the device that you want to filter. After the switch receives a packet, it examines the destination MAC address of the packet.
PAGE 187
AT-S106 Management Software Web Browser User’s Guide Configuring a Destination MAC Filter To set MAC address in the Destination MAC Filter, do the following procedure: 1. From the main menu on the left side of the page, select the Security folder. The Security folder expands. 2. From the Security folder, select Destination MAC Filter. The Destination MAC Filter Page is displayed. See Figure 58. Figure 58. Destination MAC Filter Page 3.
PAGE 188
Chapter 17: Destination MAC Filter Deleting a Destination MAC Filter To delete a MAC address from the Destination MAC Filter, do the following procedure: 1. From the main menu on the left side of the page, select the Security folder. The Security folder expands. 2. From the Security folder, select Destination MAC Filter. The Destination MAC Filter Page is shown in Figure 58 on page 187 3. Select delete next to the MAC address that you want to delete. The MAC address is removed from the MAC address table.
PAGE 189
Chapter 18 Management Software Updates This chapter explains the methods for upgrading the AT-S106 Management software on the switch and saving configuration files.
PAGE 190
Chapter 18: Management Software Updates Overview You can use the Management Software Updates features to upgrade the AT-S106 Management software to a new version, save a configuration file or load a configuration file. in addition, you can upload a configuration file from the switch onto a PC, or download a configuration file from a PC onto the switch.
PAGE 191
AT-S106 Management Software Web Browser User’s Guide Upgrading a Firmware Image Using HTTP This section describes how to upgrade an firmware image of the AT-S106 Management software using HTTP on an Internet server. Before downloading a new version of the AT-S106 Management software onto the switch with HTTP, note the following: The current configuration of the switch is retained when a new AT-S106 software image is installed.
PAGE 192
Chapter 18: Management Software Updates 2. From the Firmware Upgrade folder, select via HTTP. The Firmware Upgrade via HTTP Page is displayed. See Figure 60. Figure 60. Firmware Upgrade via HTTP Page 3. Change the following parameter as necessary: Firmware File: Enter the path and the firmware file name or click the Browse button and select the file name. 4. To begin the upgrade process on the switch, click Apply. The software begins to download onto the switch immediately.
PAGE 193
AT-S106 Management Software Web Browser User’s Guide Upgrading a Firmware Image Using TFTP This section describes how to upgrade an firmware image of the AT-S106 Management software using TFTP on an TFTP server. Before downloading a new version of the AT-S106 Management software onto the switch, note the following: The current configuration of a switch is retained when a new AT-S106 Management software software image is installed.
PAGE 194
Chapter 18: Management Software Updates 2. From the Firmware Upgrade folder, select via TFTP. The Firmware Upgrade via TFTP page is shown in Figure 61. Figure 61. Firmware Upgrade via TFTP Page The Image/Version Date shows the current version and date of software installed on the switch. 3. Change the following parameters as necessary: TFTP Server IP The IP address of the TFTP server from which you are downloading the new software. Image File Name The name of the AT-S106 file you are downloading.
PAGE 195
AT-S106 Management Software Web Browser User’s Guide Downloading or Uploading a Configuration File via HTTP This section describes how to download or upload a configuration file using HTTP on an Internet server. Before you upload or download a configuration file via HTTP, note the following: You must be able to access the new AT-S106 image file from your PC. The switch that you are working with must have an IP address and subnet mask assigned, either manually or via DHCP.
PAGE 196
Chapter 18: Management Software Updates The following window shown in Figure 63 is displayed. Figure 63. File Download with HTTP 2. Click Save to save the configuration file onto the switch. 3. The “Save As” window is displayed. 4. Save the file in the appropriate directory. The software immediately begins to upload to your PC. Configuration File Download 1.
PAGE 197
AT-S106 Management Software Web Browser User’s Guide Figure 64. Result Page 3. Click on the “Return to previous page” link.
PAGE 198
Chapter 18: Management Software Updates Downloading or Uploading a Configuration File via TFTP This section describes how to download or upload a configuration file using TFTP on an TFTP server. Before uploading or downloading a configuration file onto the switch using TFTP, note the following: Your network must have a TFTP server. You must specify the path to the configuration file on the TFTP server. Start the TFTP server software before you begin the download procedure.
PAGE 199
AT-S106 Management Software Web Browser User’s Guide If you are downloading software, the switch initializes the software and reboots after the software download is complete. You will lose your web browser connection to the switch during the reboot process. Configuration File Download 1. Enter the name of the configuration file in the field next to the Config File Name parameter. 2. Select the Download button to download a configuration file onto the switch.
PAGE 200
Chapter 18: Management Software Updates 200
PAGE 201
Chapter 19 Statistics The sections in this chapter explain how to display traffic, error, and history statistics about the network traffic on the AT-GS950/48 Gigabit Ethernet Smart Switch and its ports.
PAGE 202
Chapter 19: Statistics Overview Statistics provide important information for troubleshooting switch problems at the port level. The AT-S106 Management software provides a versatile set of statistics charts that you can customize for your needs, including (depending upon the chart) the ports whose statistics you want to view and the color used to draw the chart. There are three types of statistics charts: 202 Traffic Comparison.
PAGE 203
AT-S106 Management Software Web Browser User’s Guide Displaying Traffic Comparison Statistics The Traffic Comparison statistics chart allows you to display a specified traffic statistic over all of the ports. You can select 24 statistics types and 12 colors for each port. To display traffic comparison statistics, perform the following procedure: 1. Select the Statistics Chart folder. The Statistics Chart folder expands. 2. From the Statistics Chart folder, select Traffic Comparison.
PAGE 204
Chapter 19: Statistics 3. To view traffic statistics, click on the arrow next to “Statistics” and select one of the options in Table 6. Table 6 Traffic Comparison Options Option Definition Inbound Octet Rate (Bytes/s) Measures the rate of inbound octet bits in bytes per second. Inbound Unicast Packet Rate (Pkts/s) Measures the rate of inbound unicast packets in packets per second.
PAGE 205
AT-S106 Management Software Web Browser User’s Guide Table 6 Traffic Comparison Options (Continued) Option Definition Inbound Non-unicast Packets (Pkts) Measures the number of inbound non-unicast packets (such as broadcast and multicast packets) in packets per second. Inbound Discards (Pkts) Measures the number of inbound discarded packets in packets per second. Inbound Errors (Pkts/s) Measures the number of inbound errors in packets per second.
PAGE 206
Chapter 19: Statistics – Yellow – Orange – Gray – Light Red – Light Blue – Light Green – Light Yellow – Light Gray 6. To create the traffic comparison graph, select Draw. 7. From the menu on the left side of the page, select Save Configuration to Flash to permanently save your changes.
PAGE 207
AT-S106 Management Software Web Browser User’s Guide Displaying Error Group Statistics The Error Group chart displays the discard and error counts for a specified port. To display error group statistics for a port, perform the following procedure: 1. Select the Statistics Chart folder. The Statistics Chart folder expands. 2. From the Statistics Chart folder, select Error Group. The Error Group Chart Page is displayed in Figure 67. Figure 67. Error Group Chart Page 3.
PAGE 208
Chapter 19: Statistics 4. To select the amount of time before the screen is refreshed, click Auto Refresh. Choose from the following options: – 5 seconds – 10 seconds – 15 seconds – 30 seconds 5. To select the color of the traffic comparison graph, select Color. Choose one of the following colors: – Green (This is the default.) – Blue – Red – Purple – Yellow – Orange – Gray – Light Red – Light Blue – Light Green – Light Yellow – Light Gray 6.
PAGE 209
AT-S106 Management Software Web Browser User’s Guide Displaying Historical Status Charts The Historical Status chart allows you to select from 12 statistics to view for a selection of ports for however long this chart is running on the management workstation. To display historical status charts statistics for a port, perform the following procedure: 1. Select the Statistics Chart folder. The Statistics Chart folder expands. 2. From the Statistics Chart folder, select Historical Status.
PAGE 210
Chapter 19: Statistics 3. To view historical statistics, click on the arrow next to “Statistics” and select one of the options in Table 7. Table 7 Historical Status Options Option Definition Inbound Octet Rate (Bytes) Measures the rate of inbound octet bits in bytes per second. Inbound Unicast Packet Rate (Pkts) Measures the rate of inbound unicast packets in packets per second.
PAGE 211
AT-S106 Management Software Web Browser User’s Guide – 15 seconds – 30 seconds 5. To select the color of the traffic comparison graph, select Color. Choose one of the following colors: – Green (This is the default.) – Blue – Red – Purple – Yellow – Orange – Gray – Light Red – Light Blue – Light Green – Light Yellow – Light Gray 6. To create the history group chart, select Add. 7. Click Draw. 8. To draw the historical group chart, select Draw. 9.
PAGE 212
Chapter 19: Statistics 212
PAGE 213
Appendix A AT-S106 Management Software Web Browser Default Parameters Table 8 lists the factory default settings for the AT-S106 Management software. The Parameters reflect the fields found on each web page. Table 8. AT-S106 Management Software Default Settings Parameter AT-GS950/48 Default Setting Specifications System/Management System Description AT-GS950/48 - Object ID 1.3.6.1.4.1.207.1. 4.164 - System Name none 0-50 characters (include 0-9 a-z A-Z ~!@#$%^&*()_+{}|:<>?=[]\;,.
PAGE 214
Appendix A: AT-S106 Management Software Web Browser Default Parameters Table 8. AT-S106 Management Software Default Settings (Continued) AT-GS950/48 Default Setting Parameter Specifications System/Administration Password Protection Enabled Enabled/Disabled User name manager 1-12 characters (include 0-9 a-z A-Z ~!@#$%^&*()_+{}|:<>?=[]\;,./) Manager Password friend 0-12 characters (include 0-9 a-z A-Z ~!@#$%^&*()_+{}|:<>?=[]\;,.
PAGE 215
AT-S106 Management Software Web Browser User’s Guide Table 8.
PAGE 216
Appendix A: AT-S106 Management Software Web Browser Default Parameters Table 8.
PAGE 217
AT-S106 Management Software Web Browser User’s Guide Table 8. AT-S106 Management Software Default Settings (Continued) Parameter AT-GS950/48 Default Setting Specifications Bridge/VLAN/VLAN Mode Mode All ports - 802.1Q for default VLAN 802.1Q Tagged VLAN or Port-Based VLAN Bridge/VLAN/Tagged VLAN VLAN ID 1 2-4093 VLAN Name Default VLAN 0-32 characters (include 0-9 a-z A-Z ~!@#$%^&*()_+{}|:<>?-=[]\;,.
PAGE 218
Appendix A: AT-S106 Management Software Web Browser Default Parameters Table 8. AT-S106 Management Software Default Settings (Continued) Parameter AT-GS950/48 Default Setting Specifications SNMP/Community Table SNMP Community entries 8 entries Access Read-Only Read-Only/Read- Write Community String none 1-20 characters INDEX No. - 1 SNMP Community privilege Read-Only SNMP Community Strings public INDEX No.
PAGE 219
AT-S106 Management Software Web Browser User’s Guide Table 8. AT-S106 Management Software Default Settings (Continued) Parameter AT-GS950/48 Default Setting Specifications Security/802.
PAGE 220
Appendix A: AT-S106 Management Software Web Browser Default Parameters Table 8. AT-S106 Management Software Default Settings (Continued) Parameter AT-GS950/48 Default Setting Specifications Security/Destination MAC Filter MAC Address none MAC Address entries 128 entries Rule: 1. Not support Multicast Mac address (01:xx:xx:xx:xx:xx) 2. Not support VRRP Mac address (00:00:5E:xx:xx:xx) 3. First 4 bit must be zero 4. Address cannot be all zero 5.
PAGE 221
AT-S106 Management Software Web Browser User’s Guide Table 8. AT-S106 Management Software Default Settings (Continued) Parameter AT-GS950/48 Default Setting Specifications Tools/Fimware Upgrade/Config File Upload HTTP Select File none 1-39 characters (special characters are dependent on OS file name limitation) Tools/Fimware Upgrade/Config File Upload TFTP TFTP Server IP 0.0.0.0 1~223.0~254.0~254.1~254; except 127.0.0.
PAGE 222
Appendix A: AT-S106 Management Software Web Browser Default Parameters 222
PAGE 223
Index Numerics F 802.
PAGE 224
Index P password protection, configuring 33 password, configuring 33 path cost 146 pinging 42 port control 802.
PAGE 225
AT-S106 Management Software Web Browser User’s Guide configuring system contact 31 configuring system location 31 configuring system name 31 System Name 213 system priority in aggregate trunks 90 T tagged VLAN creating 51 defined 48 deleting 55 modifying 53 overview 48 rules 49 trap receivers 102 U user name, configuring 33, 36 V virtual LAN.
PAGE 226
Index 226