User guide

ManualsBrandsAllied Telesis ManualsComputer HardwareAT-S63

381

382

383

384

385

386

387

388

389

390

Table Of Contents

Contents
Figures
Tables
Preface
- How This Guide is Organized
- Product Documentation
- Where to Go First
- Starting a Management Session
- Document Conventions
- Where to Find Web-based Guides
- Contacting Allied Telesis
Section I
Basic Operations
Chapter 1
Basic Switch Parameters
- Configuring the Switch’s Name, Location, and Contact
- Changing the Manager and Operator Passwords
- Setting the System Date and Time
- Rebooting a Switch
- Pinging a Remote System
- Returning the AT-S63 Management Software to the Factory Default Values
- Displaying the IP Address of the Local Interface
- Displaying System Information
Chapter 2
Port Parameters
- Configuring Port Parameters
- Displaying Port Parameters
- Displaying Port Statistics
- Resetting a Port to the Default Settings
Chapter 3
Enhanced Stacking
- Setting a Switch’s Enhanced Stacking Status
- Selecting a Switch in an Enhanced Stack
- Returning to the Master Switch
- Displaying the Enhanced Stacking Status
Chapter 4
SNMPv1 and SNMPv2c
- Enabling or Disabling SNMP Management
- Creating a New SNMPv1 and SNMPv2c Community
- Modifying an SNMPv1 and SNMPv2c Community
- Deleting an SNMPv1 and SNMPv2c Community
- Displaying the SNMPv1 and SNMPv2c Communities
Chapter 5
MAC Address Table
- Displaying the MAC Address Table
- Adding Static Unicast and Multicast MAC Addresses
- Deleting Unicast and Multicast MAC Addresses
- Deleting All Dynamic MAC Addresses
- Changing the Aging Time
Chapter 6
Static Port Trunks
- Creating a Static Port Trunk
- Modifying a Static Port Trunk
- Deleting a Port Trunk
- Displaying the Port Trunks
Chapter 7
Port Mirroring
- Creating a Port Mirror
- Modifying a Port Mirror
- Disabling a Port Mirror
- Deleting a Port Mirror
- Displaying the Port Mirror
Section II
Advanced Operations
Chapter 8
File System
- Listing the Files in Flash Memory or on a Compact Flash Card
- Selecting an Active Boot Configuration File
Chapter 9
File Downloads and Uploads
- Downloading a File
- Uploading a File
Chapter 10
Event Logs and Syslog Client
- Working with the Event Logs
- Working with Syslog Output Definitions
Chapter 11
Classifiers
- Configuring a Classifier
- Modifying a Classifier
- Deleting a Classifier
- Displaying the Classifiers
Chapter 12
Access Control Lists
- Configuring an Access Control List
- Modifying an Access Control List
- Deleting an Access Control List
- Displaying the Access Control Lists
Chapter 13
Class of Service
- Configuring CoS
- Mapping CoS Priorities to Egress Queues
- Configuring Egress Scheduling
- Displaying the CoS Settings
- Displaying the QoS Schedule
Chapter 14
Quality of Service
- Managing Flow Groups
- Managing Traffic Classes
- Managing Policies
Chapter 15
Denial of Service Defenses
- Configuring Denial of Service Defense
- Displaying the DoS Settings
Chapter 16
IGMP Snooping
- Configuring IGMP Snooping
- Displaying a List of Host Nodes
- Displaying a List of Multicast Routers
Section III
SNMPv3
Chapter 17
SNMPv3
- Configuring the SNMPv3 Protocol
- Enabling or Disabling SNMP Management
- Configuring the SNMPv3 User Table
- Configuring the SNMPv3 View Table
- Configuring the SNMPv3 Access Table
- Configuring the SNMPv3 SecurityToGroup Table
- Configuring the SNMPv3 Notify Table
- Configuring the SNMPv3 Target Address Table
- Configuring the SNMPv3 Target Parameters Table
- Configuring the SNMPv3 Community Table
- Displaying SNMPv3 Tables
Section IV
Spanning Tree Protocols
Chapter 18
Spanning Tree and Rapid Spanning Tree Protocols
- Enabling or Disabling a Spanning Tree Protocol
- Configuring STP
- Configuring RSTP
Chapter 19
Multiple Spanning Tree Protocol
- Enabling MSTP
- Configuring MSTP
  - Configuring MSTP Parameters
  - Configuring the CIST Priority
- Managing MSTIs
- Configuring MSTP Port Parameters
- Displaying the MSTP Configuration
- Resetting MSTP to the Default Settings
Section V
Virtual LANs
Chapter 20
Port-based and Tagged VLANs
- Creating a New Port-Based or Tagged VLAN
- Modifying a VLAN
- Deleting a VLAN
- Selecting a VLAN Mode
- Displaying VLANs
Chapter 21
GARP VLAN Registration Protocol
- Configuring GVRP
- Enabling or Disabling GVRP on a Port
- Displaying the GVRP Configuration
- Displaying the GVRP Port Configuration
- Displaying the GVRP Database
- Displaying the GVRP State Machine
- Displaying the GVRP Counters
- Displaying the GIP Connected Ports Ring
Section VI
Port Security
Chapter 22
MAC Address-based Port Security
- Configuring Port Security
- Displaying Port Security Levels
Chapter 23
802.1x Port-based Network Access Control
- Setting Port Roles
- Enabling or Disabling 802.1x Port-based Network Access Control
- Configuring Authenticator Port Parameters
- Configuring Supplicant Port Parameters
- Displaying the Port-based Network Access Control Parameters
  - Displaying the Port Status
  - Displaying the Port Settings
- RADIUS Accounting
  - Configuring RADIUS Accounting
  - Displaying the RADIUS Accounting Settings
Section VII
Management Security
Chapter 24
Encryption Keys, PKI, and SSL
- Displaying the Encryption Keys
- Displaying the PKI Settings and Certificates
- Displaying the SSL Settings
Chapter 25
Secure Shell (SSH)
- Configuring SSH
- Displaying the SSH Settings
Chapter 26
TACACS+ and RADIUS Protocols
- Enabling or Disabling TACACS+ or RADIUS
- Configuring the TACACS+ Client Settings
- Displaying the TACACS+ Client Settings
- Configuring the RADIUS Client Settings
- Displaying the RADIUS Client Settings
Chapter 27
Management Access Control List
- Enabling or Disabling the Management ACL
- Creating an ACE
- Modifying an ACE
- Deleting an ACE
- Displaying the Management Access Control List
Index
- Numerics
- A
- B
- C
- D
- E
- F
- G
- H
- I
- L
- M
- O
- P
- Q
- R
- S
- T
- U
- V

AT-S63 Management Software Web Browser User’s Guide

Section VII: Management Security 385

Server Key ID

The encryption key ID of the server key.

Server Key Expiry Time

Length of time, in hours, until the server key is regenerated. The

default is 0 hours which means the server key is not regenerated.

Time, in seconds, until a SSH server is released from an incomplete

connection with a SSH client.

Authentication Available

Authentication method available. Currently, password authentication is

the only supported method.

Ciphers Available

SSH ciphers that are available on the switch.

MAC(s) Available

Message Authorization Code (MAC) that is used to validate incoming

SSH messages to the server. Two algorithms are supported.

Data Compression

Whether or not data compression is available on the switch. Data

compression is useful for networks that have a slow throughput speed.