Owner manual
Table Of Contents
- Contents
- Figures
- Tables
- Preface
- Section I
- Basic Operations
- Chapter 1
- Overview
- Chapter 2
- Enhanced Stacking
- Chapter 3
- SNMPv1 and SNMPv2c
- Chapter 4
- MAC Address Table
- Chapter 5
- Static Port Trunks
- Chapter 6
- LACP Port Trunks
- Chapter 7
- Port Mirror
- Section II
- Advanced Operations
- Chapter 8
- File System
- Chapter 9
- Event Logs and the Syslog Client
- Chapter 10
- Classifiers
- Chapter 11
- Access Control Lists
- Chapter 12
- Class of Service
- Chapter 13
- Quality of Service
- Chapter 14
- Denial of Service Defenses
- Chapter 15
- Power Over Ethernet
- Section III
- Snooping Protocols
- Chapter 16
- IGMP Snooping
- Chapter 17
- MLD Snooping
- Chapter 18
- RRP Snooping
- Chapter 19
- Ethernet Protection Switching Ring Snooping
- Section IV
- SNMPv3
- Chapter 20
- SNMPv3
- Section V
- Spanning Tree Protocols
- Chapter 21
- Spanning Tree and Rapid Spanning Tree Protocols
- Chapter 22
- Multiple Spanning Tree Protocol
- Section VI
- Virtual LANs
- Chapter 23
- Port-based and Tagged VLANs
- Chapter 24
- GARP VLAN Registration Protocol
- Chapter 25
- Multiple VLAN Modes
- Chapter 26
- Protected Ports VLANs
- Chapter 27
- MAC Address-based VLANs
- Section VII
- Routing
- Chapter 28
- Internet Protocol Version 4 Packet Routing
- Supported Platforms
- Overview
- Routing Interfaces
- Interface Names
- Static Routes
- Routing Information Protocol (RIP)
- Default Routes
- Equal-cost Multi-path (ECMP) Routing
- Routing Table
- Address Resolution Protocol (ARP) Table
- Internet Control Message Protocol (ICMP)
- Routing Interfaces and Management Features
- Local Interface
- AT-9408LC/SP AT-9424T/GB, and AT-9424T/SP Switches
- Routing Command Example
- Non-routing Command Example
- Upgrading from AT-S63 Version 1.3.0 or Earlier
- Chapter 29
- BOOTP Relay Agent
- Chapter 30
- Virtual Router Redundancy Protocol
- Section VIII
- Port Security
- Chapter 31
- MAC Address-based Port Security
- Chapter 32
- 802.1x Port-based Network Access Control
- Section IX
- Management Security
- Chapter 33
- Web Server
- Chapter 34
- Encryption Keys
- Chapter 35
- PKI Certificates and SSL
- Chapter 36
- Secure Shell (SSH)
- Chapter 37
- TACACS+ and RADIUS Protocols
- Chapter 38
- Management Access Control List
- Appendix A
- AT-S63 Management Software Default Settings
- Address Resolution Protocol Cache
- Boot Configuration File
- BOOTP Relay Agent
- Class of Service
- Denial of Service Defenses
- 802.1x Port-Based Network Access Control
- Enhanced Stacking
- Ethernet Protection Switching Ring (EPSR) Snooping
- Event Logs
- GVRP
- IGMP Snooping
- Internet Protocol Version 4 Packet Routing
- MAC Address-based Port Security
- MAC Address Table
- Management Access Control List
- Manager and Operator Account
- Multicast Listener Discovery Snooping
- Public Key Infrastructure
- Port Settings
- RJ-45 Serial Terminal Port
- Router Redundancy Protocol Snooping
- Server-based Authentication (RADIUS and TACACS+)
- Simple Network Management Protocol
- Simple Network Time Protocol
- Spanning Tree Protocols (STP, RSTP, and MSTP)
- Secure Shell Server
- Secure Sockets Layer
- System Name, Administrator, and Comments Settings
- Telnet Server
- Virtual Router Redundancy Protocol
- VLANs
- Web Server
- Appendix B
- SNMPv3 Configuration Examples
- Appendix C
- Features and Standards
- 10/100/1000Base-T Twisted Pair Ports
- Denial of Service Defenses
- Ethernet Protection Switching Ring Snooping
- Fiber Optic Ports (AT-9408LC/SP Switch)
- File System
- DHCP and BOOTP Clients
- Internet Protocol Multicasting
- Internet Protocol Version 4 Routing
- MAC Address Table
- Management Access and Security
- Management Access Methods
- Management Interfaces
- Management MIBs
- Port Security
- Port Trunking and Mirroring
- Spanning Tree Protocols
- System Monitoring
- Traffic Control
- Virtual LANs
- Virtual Router Redundancy Protocol
- Appendix D
- MIB Objects
- Index
Index
516
source MAC addresses 113
TCP flags 117
TCP source and destination ports 117
UDP source and destination ports 117
VLAN ID 114
Common and Internal Spanning Tree (CIST)
defined 244
priority 244
common VLAN 63
community names
SNMPv1 and SNMPv2c 72
configuration files. See boot configuration files
configuration name 241
control messages, Ethernet Protection Switching Ring
(EPSR) snooping 195
197
CoS. See Class of Service (CoS)
CRL. See certificate revocation list (CRL)
D
default route
described 317
examples 332, 335
default settings, AT-S63 Management Software 445
denial of service defenses
default settings 451
described 163
guidelines 172
IP options attack 170
land attack 166
mirror port 95
mirroring traffic 171
ping of death attack 169
smurf attack 165
supported platforms 162, 174
SYN flood attack 164
teardrop attack 168
deny access control lists 121
DES privacy protocol 207
destination MAC addresses
in classifiers 113
destination port in a port mirror 95
Diffie-Hellman algorithm 402
distinguished names 407
document conventions 23
DoS. See denial of service defenses
dynamic GVRP port 269
dynamic GVRP VLAN 269
dynamic MAC addresses 76
E
edge ports 227
egress ports 294
egress queues 133
encryption (SSL) 411
encryption keys
described 395, 413
guidelines 397
Secure Shell (SSH) 422
supported platforms 394
technical overview 398
End Entity 415
Engine ID, defined 206
enhanced stacking
and Secure Sockets Layer (SSL) 409
and SSH 425
common VLAN 63
described 61
guidelines 67
local interface 64
master switches 62
slave switches 62
supported platforms 60
entities, defined 205
EPSR snooping. See Ethernet Protection Switching Ring
(EPSR) snooping
Equal Cost Multi-path routing 318
Ethernet 802.2 in classifiers 113
Ethernet II frame types in classifiers 113
Ethernet Protection Switching Ring (EPSR) snooping
default setting 455
described 195
guidelines 199
restrictions 197
supported platforms 194
event logs
default settings 456
described 107
supported platforms 106
event messages 107
F
file system 100
flow groups 144
forwarding delay 226
G
GARP VLAN Registration Protocol (GVRP)
default settings 457
described
guidelines 272
intermediate switches 274
network security 273
GARP. See Generic Attribute Registration Protocol (GARP)
Generic Attribute Registration Protocol (GARP) 275
GVRP. See GARP VLAN Registration Protocol (GVRP)
H
hello time 226
history of new features 53
HMAC authentication algorithm 401
HMAC-MD5-96 (MD5) authentication protocol 206
HMAC-SHA-96 (SHA) authentication protocol 206
HTTP 389
HTTPS 389