TEG-S2500i 24+2G Stackable Switch User’s Guide Version 11.
TRENDware TRENDnet Limited Warranty TRENDware warrants its products against defects in material and workmanship, under normal use and service, for the following lengths of time from the date of purchase.
TEG-S2500i Stackable Switch User’s Guide 1. INTRODUCTION ............................................................................................................................................................ 7 1.2 INSTALLATION ............................................................................................................................................................. 8 1.3 INITIAL SET UP FOR MANAGEMENT .....................................................................................
2.5.14 Agent /Stacking Management ........................................................................................................................... 49 2.5.14.1 Management Web UI ...................................................................................................................................................50 2.5.14.2 Agent Manager........................................................................................................................................................
4.2.7.1. Port Static Priority.........................................................................................................................................................88 4.2.7.2. 802.1p Priority Configuration .......................................................................................................................................89 4.2.8. MAC Address Configuration ....................................................................................................................
5.2. TRUNKING APPLICATION USED WITH SWITCH ............................................................................................... 129 5.3. “SINGLE IP – AGENT MODE” APPLICATION USED WITH SWITCH ................................................................... 130 5.3.1 Typical setup of “Single IP-Agent mode” network: ......................................................................................... 131 5.4. “SINGLE IP - STACKING MODE” APPLICATION USED WITH SWITCH USED WITH SWITCH .....
1. Introduction 24+2G switch is a high performance web-managed SNMP Layer 2 switch that provides users with 24 10/100Mbps Ethernet and 2 1000Mbps Gigabit ports. This Switch has SNMP management and remote control capabilities such as “Web Cluster”. The Gigabit module, which can be copper or fiber media, supports 1000BASE-SX, 1000BASE-LX or 1000BASE-T, allowing users to increase their network response time at gigabit speeds and with great flexibility.
1.1 Unpacking Open the shipping carton of the Switch and carefully unpack its contents, the carton should contain the following items: z One 24+2G, 24 port Fast Ethernet Layer 2 Switch. z Mounting Kit: 2 mounting brackets and screws z Four rubber feet with adhesive backing. z One AC power cord. z One RS-232 cable z This User’s Guide (Disk or CD). Note: to get the “Stacking” feature, please install the optional Gigabit Module (purchased separately). 1.
Power on: The 24+2G switch can be used with an AC power supply 90-260V AC, 50-60Hz. The AC power connector is located at the rear of the unit. The switch’s power supply will adjust to the local power source automatically and may be turned on without having any or all LAN segment cables connected. After the power switch is turned on, the LED indicators should respond as fallows: z All LED indicators will momentarily blink. This blinking of the LED indicators represents a reset of the system.
1.3 Initial set up for management There are two management ways can be chosen, one is out-of-band management, you work this way with a PC and connect your PC and switch through RS232 cable. The other way is in-band-management, you also work with a PC but connect your PC and switch through Ethernet network no matter local or remotely, or simply directly connect your PC and switch through an Ethernet cable.
1.3.2 In-band management through Ethernet In addition to terminal mode operation, 24+2G switch also supports in-band management through browser, this function is much more user-friendly than terminal mode, because it can be operated through mouse on the PC screen and moreover it can be performed either locally or remotely through Ethernet. Before you can access the switch, you have to know following things. First you have to know the IP Address and Subnet Mask of both your switch and your PC.
When there is no DHCP server in your network domain, according to the concept described above, you must modify either the PC side or switch side to match the rule “the communication members in the same domain must have different IP Addresses and same Subnet Mask.
1.3.3 Telnet management In addition to local terminal mode operation, 24+2G switch supports remote management through Telnet over network or even over Internet for that environment without browser. In this mode, user also has to do the same setting as required in in-band management to the IP Configuration before executing the Telnet program.
1.4 LED indicators information There are many LEDs on the front panel of switch, after the power on, these LEDs will reflect the current status truly within the switch, we explain below: There is one power LED on the left side of front panel, whenever power is applied, it lights with green, below it, there is Diagnostic LED, it will go blinking during the power-on diagnostics.
2. Web Management Function 2.1. Web Management Home Overview This is a Home Page. At this page, you may see the basic switch information and module information. All information in these fields is read-only. That is, user can’t modify its contents. Description: Display the name of device type. MAC Address: The unique hardware address assigned by manufacturer (default) Firmware Version: Display the switch’s firmware version. ASIC Version: Display the switch’s ASIC version.
2-6. TFTP Update Firmware 2-7. Configuration Backup 2-8. Reset System 2-9. Reboot 2.2. Port status This page provides current status of every port that depends on user’s setting and the negotiation result. 1. 2. 3. 4. State: Display port statuses: disable or enable. “Unlink” will be treated as “off”. Link Status: Down means “No Link”, UP means “Link”. Auto Negotiation: Display the auto negotiation mode: auto/force/Nway-force.
2.2.1 single port counter and status User can also click any port directly on the front panel of Home Page to get single port Status which is shown below. There is a flow rate historical chart on the right. User can track the flow rate of this port in the past 60 hours. Changing the scale will re-calculate the chart.
2.3. Port Statistics The following information provides a view of the current status of the whole unit. Press “Reset” button to clean all count.
2.4. Show MAC Table The following information provides a table of the current MAC address that the switch has learned. Press “Prev” or “Next” button will browse previous 50 or next 50 items. The “Top” button will re-list the table from the first MAC. A sorting function is implemented here. Clicking header on the top of table will bring a new sorted list of current content in the order of its title. For instance, clicking the “MAC” on the top of table will refresh the table by the index of “MAC”.
2.5. Administrator There are many management functions can be set or performed if you click the Administrator on Home Page, including: IP and Management mode Switch settings Console port information Port configuration Trunking IGMP and MAC Filter VLAN configuration Spanning tree Port Mirror SNMP/Trap Manager Security Manager 802.1x Configuration Ping Agent /Stacking Management 2.5.1.
hosts’ one. User can confine the “Single IP” function to local management by assigning the agent IP to the same one as switch IP. Different from original IP forwarding method, it uses a method like webpage link and won’t increase the loading of switch. ”Agent IP “setting and “Agent management” in the main menu will not show up if the agent mode is set as “Slave”. [Note] If any of the value is changed in this field, reboot is necessary.
2.5.2 Switch Setting 2.5.2.1 Advanced Miscellaneous Setting: MAC Address Age-out Time: Type the number of seconds that an inactive MAC address remains in the switch's address table. The valid range is 300~765 seconds. Default is 300 seconds. Max bridge transit delay bound control: Limit the packets queuing time in switch. If enable, the packets queued exceed will be drop. These valid values are 1sec, 2 sec, and 4 sec and off. Default is 1 seconds.
All High before Low: The high priority packets sent before low priority packets. WRR: Weighted Round Robin. Select the preference given to packets in the switch's high-priority queue. These options represent the number of high priority packets sent before one low priority packet is sent. For example, 5 High:2 Low means that the switch sends 5 high-priority packets before sending 2 low- priority packets. Enable Delay Bound: Limit the low priority packets queuing time in switch.
2.5.3 Console Port Information Console is a standard UART interface to communicate with Serial Port. User can use windows HyperTerminal program to link the switch.
2.5.4 Port Controls User may modify or change mode operation in this page. 1. State: User can disable or enable this port control. 2. Auto Negotiation: User can set auto negotiation mode is Auto, Nway (specify the speed/duplex on this port and enable auto-negotiation), Force of per port. 3. Speed: User can set 100Mbps or 10Mbps speed on Port1~Port24. User can set 1000Mbps, 100Mbps or 10Mbps speed on Port25~Port26 (depend on module card mode). 4.
0: disable rate control. 1 ~ 1000: valid rate value. 7. Port Priority: Enable or disable the port priority function. There are two priorities (high or low) provided if port priority is enabled. 8. Port Security: A port in security mode will be “locked” without permission of address learning. Only the incoming packets with SMAC already existing in the address table can be forwarded normally.
2.5.5 Trunking The Link Aggregation Control Protocol (LACP) provides a standardized means for exchanging information between Partner Systems on a link to allow their Link Aggregation Control instances to reach agreement on the identity of the Link Aggregation Group to which the link belongs, move the link to that Link Aggregation Group, and enable its transmission and reception functions in an orderly manner.
supports LACP, the LACP dynamic trunking group will be created automatically. 4. Work ports: Allow max four ports can be aggregated at the same time. If LACP static trunking group, the exceed ports is standby and able to aggregate if work ports fail. If local static trunking group, the number must be as same as the group member ports. 5. Select the ports to join the trunking group. Allow max four ports can be aggregated at the same time. 6.
2.5.5.3 State Activity Active (select): The port automatically sends LACP protocol packets. N/A (no select): The port does not automatically sends LACP protocol packets, and responds only if it receives LACP protocol packets from the opposite device. 1. A link that has either two active LACP ports or one active port can perform dynamic LACP trunking. A link has two N/A LACP ports will not perform dynamic LACP trunking because both ports are waiting for and LACP protocol packet from the opposite device. 2.
2.5.6 Filter Database 2.5.6.1. IGMP Snooping The 24+2G switch supports multicast IP. One can enable IGMP protocol on this web page, and then display the IGMP snooping information on this page. There are all multicast groups, VIDs and member ports in the list. IP multicast addresses range from 224.0.0.0 through 239.255.255.255. The Internet Group Management Protocol (IGMP) is an internal protocol of the Internet Protocol (IP) suite.
2.5.6.2. Static MAC Address When you add a static MAC address, it remains in the switch's address table, regardless of whether the device is physically connected to the switch. This saves the switch from having to re-learn a device's MAC address when the disconnected or powered-off device is active on the network again. 1. 2. 3. 4. 5. 6. 7. 8. At the main menu, click administrator ÆFilter Database ÆStatic MAC Address.
2.5.6.3 MAC filtering MAC address filtering allows the switch to drop unwanted traffic. Traffic is filtered based on the destination addresses. 1. In the MAC Address box, enter the MAC address that wants to filter. 2. If tag-based (802.1Q) VLAN are set up on the switch, in the VLAN ID box, type the VID to associate with the MAC address. 3. Click the Add. 4. Choose the MAC address that you want to delete and then click the Delete.
2.5.7. VLAN configuration A Virtual LAN (VLAN) is a logical network grouping that limits the broadcast domain. It allows you to isolate network traffic so only members of the VLAN receive traffic from the same VLAN members. Basically, creating a VLAN from a switch is logically equivalent of reconnecting a group of network devices to another Layer 2 switch. However, all the network devices are still plug into the same switch physically. The 24+2G switch supports port-based, 802.
Support Tag-based VLAN (IEEE 802.1Q VLAN) Tagged-based VLAN is an IEEE 802.1Q specification standard. Therefore, it is possible to create a VLAN across devices from different switch venders. IEEE 802.1Q VLAN uses a technique to insert a “tag” into the Ethernet frames. Tag contains a VLAN Identifier (VID) that indicates the VLAN numbers.
2.5.7.1. Port Based VLAN 1. 2. 3. 4. Click Add to create a new VLAN group. Enter the VLAN name, group ID and select the members for the new VLAN. Click Apply. If there are many groups that over the limit of one page, you can click the “Next Page” to view other VLAN groups. NOTE: If the trunk groups exist, you can see it (ex: TRK1, TRK2…) in select menu of ports, and you can configure it is the member of the VLAN or not.
2.5.7.2. 802.1Q VLAN This page, user can create Tag-based VLAN, and enable or disable GVRP protocol. There are 256 VLAN groups to provide configure. Enable 802.1Q VLAN, the all ports on the switch belong to default VLAN, VID is 1. The default VLAN can’t be deleted. GVRP (GARP [Generic Attribute Registration Protocol] VLAN Registration Protocol) GVRP allows automatic VLAN configuration between the switch and nodes.
◆Basic Create a VLAN and add tagged member ports to it. 1. From the main menu, click Administrator ÆVLAN configuration, click Add then you will see the page as follow. 2. Type a name for the new VLAN. 3. Type a VID (between 2-4094). The default is 1. 4. Choose the protocol type. We support 802.1v with the implementation of Port-and-Protocol-based VLAN classification. User can combine the field “Protocol Vlan” and the field of the port number to form a new VLAN group. NOTE: IEEE 802.
5. From the Available ports box, select ports to add to the switch and click “Add >>”. If the trunk groups exist, you can see it in here (ex: TRK1, TRK2…), and you can configure it is the member of the VLAN or not. 6. Click Next. Then you can view the page as follow: 7. Uses this page to set the outgoing frames are VLAN-Tagged frames or no. Then click Apply. Tag: outgoing frames with VLAN-Tagged. Untag: outgoing frames without VLAN-Tagged.
◆Port VID Configure port VID settings From the main Tag-based (IEEE 802.1Q) VLAN page, click Port VID Settings. Port VID (PVID) Set the port VLAN ID that will be assigned to untagged traffic on a given port. This feature is useful for accommodating devices that you want to participate in the VLAN but that don’t support tagging. 24+2G switch each port allows user to set one PVID, the range is 1~255, default PVID is 1.
2.5.8. Spanning Tree The Spanning-Tree Protocol (STP) is a standardized method (IEEE 802.1D) for avoiding loops in switched networks. Enable STP to ensure that only one path at a time is active between any two nodes on the network. You can enable Spanning-Tree Protocol on web management’s switch setting advanced item, select enable Spanning-Tree protocol. We are recommended that you enable STP on all switches ensures a single active path on the network. 1.
3. You can setting new value for STP parameter, then click set Apply button to modify Parameter Priority Max Age Hello Time Forward Delay time Description You can change priority value, A value used to identify the root bridge. The bridge with lowest value has the highest priority and is selected as the root. Enter a number 1 through 65535. You can change Max Age value, The number of second bridge waits without receiving Spanning-Tree Protocol configuration messages before attempting a reconfiguration.
2.5.9. Port Mirror The Port Mirror is a method for monitor traffic in switched networks. Traffic through ports can be monitored by one specific port. That is, traffic goes in or out monitored ports will be duplicated into Analysis port. 1. Roving Analysis Mode: Press Space key to set mirror mode: Disable \Rx \Tx \Both. 2. Analysis Port: It’ means this port can be used to see all monitors port traffic. You can connect analysis port to LAN analyzer or netxray. 3. Monitored Port: The ports you want to monitor.
2.5.10. SNMP/Trap Manager Any Network Management platform running the simple Network Management Protocol (SNMP) can manage the switch, provided the Management Information Base (MIB) is installed correctly on the management station. The SNMP is a Protocol that governs the transfer of information between management station and agent. 1. System Options: Use this page to define management stations as trap managers and to enter SNMP community strings.
- 44 -
2.5.11 Security Manager On this page, user can change user name and password with following steps. 1. User name: Type the new user name. 2. Password: Type the new password. 3. Reconfirm password: Retype the new password. 4. Click Apply.
2.5.12 802.1x Configuration System Configuration 802.1x makes use of the physical access characteristics of IEEE802 LAN infrastructures in order to provide a means of authenticating and authorizing devices attached to a LAN port that has point-to-point connection characteristics, and of preventing access to that port in cases in which the authentication and authorization process fails. To enable 802.
Fu:Force the specific port to be unauthorized. Fa:Force the specific port to be authorized. Au:The state of the specific port was determined by the outcome of the authentication. No:The specific port didn't support 802.1x function. Misc Configuration In this page, you can change the default configuration for the 802.1x standard: Quiet Period: Used to define periods of time during which it will not attempt to acquire a supplicant (Default time is 60 seconds).
2.5.13 Ping This switch provides a simplified ping function for user to check whether a IP is on line or not. Input the IP Address and counts of ping packet to send. Press “Apply” to continue next page. This page will display the result of the pinging IP . It continues updating the “Reply Counts” when the ping packets are sending. User can interrupt the progress by clicking “Stop” button.
2.5.14 Agent /Stacking Management This switch provides a new management tool for user to manage a group of LAN switches by an IP agent method. “Single IP” is the name, meaning that the administrator can access other network devices through one single IP device. Different from the method of router's NAT (from virtual IP domain to real IP domain), single IP provides a reverse access (from real IP domain to virtual IP domain) by an IP-forwarding technology.
2.5.14.1 Management Web UI Web UIs of “Agent Management” and “Stacking Management” look similar. In this page, user can add or delete managed network devices here. If user disables the IP agent function, that is, he/she sets the management mode to “Agent Slave” or “Stacking Slave” in the IP setting webpage, this item will not show up in the main menu. Agent Control Port: The control port defines the specific TCP/UDP port the single IP switch is listening, which the agent manager sends its command to.
Editing an existing member is also easy thing to do. Select the host which needs to edit and the “IP address” and “Host Name” will appear what you choose. Modify the “Host Name” only for advice. For any IP is not within the member list, the modification will assume to add a new member. Press “Apply” to confirm the modification. To delete an existing member, choose the host and press “Delete”. Then the host will be removed from the list. Launch Manager: This button launches the agent manager.
2.5.14.2 Agent Manager A floating menu will show up after clicking “Launch Agent Manager” in the agent management. The agent manager holds 32+1 slots in the floating menu. The most top slot (zero slot) displays the master switch IP and its relative location. “Remote Agent” means that the user comes from the other IP domain than the managed ones, while “Local Agent”, that user comes form the same one as the managed ones. There are differences between “Remote Agent” and “Local Agent”.
2.5.14.3 Stacking Manager After addition of stacking members, press "Launch manager" to pop up the "Stacking Manager". This web UI provides not only the integrated VLAN management, but also a handy IP agent. Administrator can easily access other detail configurations in one individual switch of stacking set by clicking the hostname on the right side of this panel and jumping to its configuration webpage. Link Status The first page shows the current link status of all stacking members.
There are two default VLAN existing in the stacking switches. As seen above, the VLAN name " DEFAULT" and VID " 1" is standard setting for general Tag VLAN , and all port are added as untagged port; The other VLAN " 4091" , as so called " Stacking Tag VLAN" , is an unique setting for this type of stacking. And all of their Giga ports are set to tag members to form a VLAN connection channel.
After input, user can choose the VLAN member in the Stacking Manager panel by clicking the designated port. Color cycling from blue, yellow to black means that the port is set to untagged port, tagged port or no member. When finishing , press " Apply" to submit. It is always wise to remember that the Giga ports of each member switch are set to tagged port and keeping at least one member port in the master switch.
in the Stacking Manager panel. After done, press " Apply" to submit the setting. To delete a VLAN is also an easy task. Select the unwanted VLAN and press " Delete" to remove it. There are two special cases for deleting VLAN: The "DEFAULT VLAN" and "Stacking Tag VLAN" are undeletable! A error message will pop up to cancel the task. Stack VLAN also can't be edited. . PVID SETUP The default PVID value of all ports of 802.1Q VLAN is 1.
The available PVIDs are based on the VLANs that user created in the previous “VLAN” page. 1. Select the PVID to be modified and choose the ports for this PVID value. 2. Click “Apply” button to submit and a message ”Please wait” to notice user to wait patiently. 3. When message “Current setting is on …” shows up, the task is done.
2.6. TFTP Update Firmware 1. The following menu options provide some system control functions to allow a user to update firmware and remote boot switch system: * Install TFTP program (such as Turbo98, or Cisco TFTP) and then execute. * Copy updated firmware image.bin into TFTP server’s directory. * In web management select administrator—TFTP update firmware. * Download new image.bin file by pressing . * After update finished, press to restart switch.
2.7. Configuration Backup 2.7.1. TFTP Restore Configuration Use this page to set ftp server address. You can restore EEPROM value from here, but you must put back image in ftp server, switch will download back flash image. 2.7.2. TFTP Backup Configuration Use this page to set tftp server ip address. You can save current EEPROM value from here, then go to the TFTP restore configuration page to restore the EEPROM value.
2.8. Reset System Reset Switch to default configuration, default value as below 2.9. Reboot Reboot the Switch in software reset.
2.10. Event Logging A history log is provided here to give a track about events that the switch had happened. There are 100 loggings for maximum capacity of this switch. The latest event will overwrite the oldest one. All records will be kept in flash memory even after writing default, unless user clears the event log. Press “Prev” or “Next” button will browse previous 25 or next 25 sequences. The “Top” button will re-list the table from the latest event. “Clear” button will clear all history.
3. Console -- 1K Xmodem update firmware We provide the 1k X modem to update firmware on console. 1K X modem only works in 57600bps mode. So you must change boudrate to 57600bps to download firmware. There are 2 cases to use 1k X modem to update firmware: a. User enters "1K X modem receiver mode" through pressing any key within 5 seconds after system power on. b. System automatically enters "1K X modem receiver mode" if it detects the firmware checksum fail while booting. 1.
2. Press connected, you will see “CCCC…”displayed on console. Then select Transfer Send File. 3. Select 1K Xmodem in the Protocol item, and give the place that image file folder. Press Send button.
4. Start download image file. 5. Finish download image, the switch system will update firmware automatic. Update firmware ok, the switch will reboot. Please change the boudrate to 9600bps.
4. Out-of-band Terminal mode management 1. 24+2G switch also provide a serial interface to manage and monitor the switch, user can follow the Console Port Information provide by web to use windows HyperTerminal program to link the switch. 2. You can type user name and password to login. The default user name is “admin”; the default password is “123 ”.
4.1 Main Menu There are six items for selected as follows: Switch Static Configuration: Configure the switch. Protocol Related Configuration: Configure the protocol function. Status and Counters: Show the status of the switch. Reboot Switch: Restart the system or reset switch to default configuration. TFTP Update Firmware: Use TFTP to download image. Logout: Exit the menu line program. The control key as follow is provided for this mode operation: Tab: Move the cursor to next item.
4.2 Switch Static Configuration You can press the key of Tab or Backspace to choose item, and press Enter key to select item The action menu line as follow provided in later configure page. Actions-> : Exit the page of port configuration and return to previous menu. : Configure all items. Finished configure press Ctrl+A: Back to action menu line. : Save all configure value. : Return to previous page to configure.
4.2.1. Port Configuration This page can change every port status. Press Space key to change configures of per item. 1. InRate (100K/unit): User can set input rate control, per unit is 100K. The valid range is 0~1000. 0: disable rate control. 1~1000: valid rate value. 2. OutRate (100K/unit): User can set output rate control, per unit is 100K. The valid range is 0~1000. 0: disable rate control. 1~1000: valid rate value. 3. Enabled: User can disable or enable this port control.
6. Flow Control: Full: User can set full flow control function (pause) as enable or disable. Half: User can set half flow control function (backpressure) as enable or disable. NOTE: 1. Pressing only can save one page configuration. 2. If the static trunk groups exist, you can see it (ex: TRK1, TRK2…) after port 26, and you can configure all of the items as above.
4.2.2. Trunk Configuration This page can create max seven trunk groups. User can arbitrarily select up to four ports from port 1~port 26 to build a trunk group. Actions-> 1. Select on actions menu 2. Press space key to configure the member port of trunk group. Besides, you have to set “Static” or “LACP” for the corresponding trunk group of TRK1~TRK7 item. “Static” – the normal trunk. “LACP” – this trunk group have link aggregation control protocol. 3. 4. 5. 6.
4.2.3. VLAN Configuration 4.2.3.1. VLAN Configure This page can set VLAN mode to port-based VLAN or 802.1Q VLAN or disable VLAN function.
NOTE: Change the VLAN mode for every time, user have to restart the switch for valid value. If set 802.1Q VLAN, you can set PVID, ingress filtering 1 and ingress filtering 2 in this page too. Actions-> 1. PVID (Port VID: 1~255): Type the PVID. 2. NonMember Drop: It matches that Ingress Filtering Rule 1 on web. Forwarding only packets with VID matching this port’s configured VID. Press Space key to choose “forward” or “drop” the frame that VID not matching this port’s configured VID. 3.
4.2.3.2. Create a VLAN Group ◆ Create Port-Based VLAN Create a port-based VLAN and add member/nonmember ports to it. 1. 2. 3. 4. Select . VLAN Name: Type a name for the new VLAN. Grp ID: Type the VLAN group ID. The group ID rang is 1~4094. Member: Press key to choose VLAN member. There are two types to selected: a. Member: the port is member port. b. No: the port is NOT member port. 5. Press Ctrl+A go back action menu line. 6. Select to save all configure value.
Create 802.1Q VLAN Create an 802.1Q VLAN and add tagged /untagged member ports to it. 1. Select . 2. VLAN Name: Type a name for the new VLAN. 3. VLAN ID: Type a VID (between 1~4094). The default is 1. There are 256 VLAN groups to provided configure. 4. Protocol VLAN: Press Space key to choose protocols type. 5. Member: Press Space key to choose VLAN member. There are three types to selected: a. UnTagged:This port is the member port of this VLAN group and outgoing frames are NO VLAN-Tagged frames. b.
4.2.3.3. Edit / Delete a VLAN Group In this page, user can edit or delete a VLAN group. 1. Press or item. 2. Choose the VLAN group that you want to edit or delete and then press enter. 3. User can modify the protocol VLAN item and the member ports are tagged or un-tagged and remove some member ports from this VLAN group. 4. After edit VLAN, press key to save all configures value. NOTE: 1. When pressing once will complete deletion on delete mode. 2.
4.2.3.4. Groups Sorted Mode In this page, user can select VLAN groups sorted mode: (1) sorted by name (2) Sorted by VID. The Edit/Delete a VLAN group page will display the result. In the Edit/Delete a VLAN Group page, the result of sorted by name. In the Edit/Delete a VLAN Group page, the result of sorted by VID.
4.2.4.
4.2.4.1. Ping Type the Host IP and the counts for pinging, then back to action menu and press “Save”. “Reply Counts” will display the result of pinging. 4.2.4.2. MAC Age Interval Type the number of seconds that an inactive MAC address remains in the switch’s address table. The valid range is 300~765 seconds. Default is 300 seconds.
4.2.4.3. Broadcast Storm Filtering This page is configuring broadcast storm control. 1. Press to configure the broadcast storm filter mode. 2. Press Space key to choose the threshold value. The valid threshold value is 5%, 10%, 15%, 20%, 25% and NO. Default is 5%.
4.2.4.4. Max bridge transmit delay bound 1. Max bridge transmit delay bound: Limit the packets queuing time in switch. If enabled, the packets queued exceed will be drop. Press Space key to set the time. Those valid values are 1sec, 2sec, and 4sec and off. Default is off. 2. Low Queue Delay Bound: Limit the low priority packets queuing time in switch. If enabled, the low priority packet stays in switch exceed Low Queue Max Delay Time, it will be sent. Press Space key to enable or disable this function.
Actions-> 1. Select . 2. Press Space key to choose enable / disable item. 3. Press Ctrl+A to go back action menu line. 4. Select to save all configure value. 5. You can press to configure port9 ~ port26, press return to last page. 4.2.4.5. Collisions Retry Forever Collisions Retry Forever: Disable – In half duplex, if happen collision will retry 48 times and then drop frame. Enable – In half duplex, if happen collision will retry forever (Default).
4.2.4.6. Hash Algorithm Select CRC-Hash(default) or DirectMap for Hash algorithm. 4.2.4.7. IFG Compensation Enable or disable the inter-frame gap (IFG) compensation function.
- 83 -
4.2.5. Administration Configuration 4.2.5.1. Change Username Use this page; user can change web management user name. Type the new user name, and then press item.
4.2.5.2. Change Password Use this page; user can change web management login password. 4.2.5.3. Device Information This page is provided to the user to configure the device information.
4.2.5.4. IP Configuration User can configure the IP setting and fill in the new value.
4.2.6. Port Mirror Configuration The port mirroring is a method for monitor traffic in switched networks. Traffic through ports can be monitored by one specific port. That is traffic goes in or out monitored ports will be duplicated into monitoring port. Actions-> Press Space key to change configure of per item. 1. Select . 2. Sniffer Mode: Press Space key to set sniffer mode Disable、Rx、Tx or Both. 3. Monitoring Port: It means sniffer port can be used to see all monitors port traffic.
4.2.7. Priority Configuration 4.2.7.1. Port Static Priority This static priority based on port, if you set the port is high priority, income frame from this port always high priority frame.
4.2.7.2. 802.1p Priority Configuration There are 0~7-priority level can map to high or low queue. Actions-> 1. Select . 2. Press Space key to select the priority level mapping to high or low queue. 3. High/Low Queue Service Ration H:L: User can select the ratio of high priority packets and low priority packets. 4. Press Ctrl+A go back action menu line. 5. Select to save all configure value.
4.2.8. MAC Address Configuration 4.2.8.1. Static MAC Address When you add a static MAC address, it remains in the switch's address table, regardless of whether the device is physically connected to the switch. This saves the switch from having to re-learn a device's MAC address when the disconnected or powered-off device is active on the network again. In this page user can add / modify / delete a static MAC address.
●Add static MAC address Actions-> 1. Press --> key to add static MAC address. 2. MAC Address: Enter the MAC address to and from which the port should permanently forward traffic, regardless of the device’s network activity. 3. Port num: press key to select the port number. 4. Vlan ID: If tag-based (802.1Q) VLAN are set up on the switch, static addresses are associated with individual VLANs. Type the VID to associate with the MAC address. 5. Press Ctrl+A to go back action menu line. 6.
3. Press key to modify all the items. 4. Press Ctrl +A to go back action menu line, and then select to save all configure value. ●Delete static MAC address Actions-> 1. Press key. 2. Choose the MAC address that you want to delete and then press enter. 3. Pressing once will complete deletion on delete mode.
- 93 -
4.2.8.2. Filtering MAC Address MAC address filtering allows the switch to drop unwanted traffic. Traffic is filtered based on the destination addresses. In this page user can add /modify /delete filter MAC address. ● Add filter MAC address Actions-> 1. Press --> key to add a filter MAC address. 2. MAC Address: Type the MAC address to filter. 3. Vlan ID: If tag-based (802.1Q) VLAN are set up on the switch, type the VID to associate with the MAC address. 4.
●Edit filter MAC address Actions-> 1. Press key. 2. Choose the MAC address that you want to modify and then press enter. 3. Press key to modify all the items. 4. Press Ctrl+A to go back action menu line, and then select to save all configure value.
- 96 -
●Delete filter MAC address Actions-> 1. Press key to delete a filter MAC address. 2. Choose the MAC address that you want to delete and then press enter. 3. When pressing once will complete deletion on delete mode.
4.3. Protocol Related Configuration 4.3.1. STP The Spanning-Tree Protocol (STP) is a standardized method (IEEE 802.1D) for avoiding loops in switched networks. When STP enabled, to ensure that only one path at a time is active between any two nodes on the network.
4.3.1.1. Enable/Disable STP This page is showing the users how to enable or disable Spanning Tree function. Press Space key to select enable or disable. 4.3.1.2.
Actions-> 1. You can view spanning tree information about the Root Bridge on the left. 2. On the right, user can set new value for STP parameter. NOTE: All about the parameter description please see the sections 2-4-8.
4.3.1.3. Perport Configuration Actions-> 1. PortState: Display spanning tree status about the switch for per port is forwarding or blocking. 2. Select . 3. PathCost: Specifies the path cost of the port that switch uses to determine which port are the forwarding ports. 4. 5. 6. 7. Priority: This means priority port, you can make it more or less likely to become the root port. Press Ctrl +A back to action menu line. Select to save all configure value.
4.3.2. SNMP Any Network Management running the simple Network Management Protocol (SNMP) can be management the switch. Use this page to define management stations as trap managers and to enter SNMP community strings. User can also define a name, location, and contact person for the switch.
4.3.2.1. System Options Actions-> 1. Press . 2. System Name: Type a name to be used for the switch. 3. System Contact: Type the name of contact person or organization. 4. System Location: Type the location of the switch. 5. System Description: Type the description about the switch. 6. Press Ctrl+A go back action menu line. 7. Press to save the configure value.
4.3.2.2. Community Strings Use this page to Add/ Edit/ Delete SNMP community strings. 1. Community Name: The name of current strings. 2. Write Access: Enable the rights is read only or read-write. Restricted: Read only, enables requests accompanied by this string to display MIB-object information. Unrestricted: Read write, enables requests accompanied by this string to display MIB-object information and to set MIB objects.
z Add Community Name 1. Press --> key. 2. Community Name: Type the community name. 3. Write Access: Press Space key to select the right is restricted or unrestricted. z Edit Community Name 1. Press key, choose the item that you want to modify and then press Enter. 2. Community Name: Type the new name. 3. Write Access: Press key to change the right is restricted or unrestricted.
z Delete Community Name 1. Press key. 2. Choose the community name that you want to delete and then press enter. 3. When pressing once will complete deletion on delete mode.
4.3.2.3. Trap Managers A trap manager is a management station that receives traps, the system alerts generated by the switch. If no trap manager is defined, no traps are issued. Create a trap manager by entering the IP address of the station and a community string. z 1. 2. 3. 4. Add SNMP trap manager Press --> to add the trap manager. IP: Type the IP address. Community Name: Type the community name. Press Ctrl +A go to actions line, press key to save all configure.
z 1. 2. 3. 4. Edit trap managers Press key, and then choose the item that you want to modify. IP: Type the new IP address Community Name: Type the community name. Press Ctrl +A go to actions line, press key to save all configure. z Delete trap manager 1. Press key. 2. Choose the trap manager that you want to delete and then press enter. 3. When pressing once will complete deletion on delete mode.
4.3.3. GVRP GVRP (GARP [Generic Attribute Registration Protocol] VLAN Registration Protocol) GVRP allows automatic VLAN configuration between the switch and nodes. For example, if the switch is connected to a device with GVRP enabled, you can enable this setting to allow dynamic VLAN configuration information to be processed by the switch. If a device sends a GVRP request using the VID of a VLAN defined on the switch, the switch will automatically add that device to the existing VLAN.
4.3.4. IGMP The Internet Group Management Protocol (IGMP) is an internal protocol of the Internet Protocol (IP) suite. This page you can enable / disable the IGMP support. Actions-> 1. Select . 2. IGMP Protocol: Press Space key to choose Enable / Disable. 3. IGMP Query Mode: Press Space key to choose Auto / Enable /Disable. 4. Press Ctrl+A go back action menu line. 5. Select to save configure value.
4.3.5. LACP (Link Aggregation Control Protocol) This page can configure and view all the LACP status. Note: All ports support LACP dynamic trunk group. If connecting to the device that also supports LACP, the LACP dynamic trunk group will be created automatically. 4.3.5.1. Working Port Setting This page can set the actually work ports in trunk group.
Actions-> 1. Select . 2. Group: Display the trunk group ID. 3. LACP: Display the trunk group’s LACP status. 4. LACP Work Port Num: The max number of ports can be aggregated at the same time. If LACP static trunk group, the exceed ports is standby and able to aggregate if work ports fail. If local static trunk group, the number must be the same as group ports. NOTE: Before set this page, you have to set trunk group on the page of Trunk Configuration first. 4.3.5.2. State Activity Actions-> 1.
4.3.5.3. LACP Status When you’re setting trunk group, you can see the relational information here.
Actions-> : Exit this page and return to previous menu. : Return to previous page to view. : Go to the next page to view.
4.3.6. 802.1x Protocol This page can configure and view all the 802.1x status. 4.3.6.1. Enable/Disable 802.
1.Select . 2.Press Space key to choose Enabled / Disabled. 3.Press Ctrl+A go back action menu line. 4.Select to save configure value.
4.3.6.2. 802.1x System Configuration 1. Press . 2.Radius Server IP Address: the IP address of the authentication server. 3.Shared Key: A key shared between this switch and authentication server. 4.NAS, Identifier: A string used to identify this switch. 5.Server Port: The UDP port number used by the authentication server to authenticate. 6.Accounting Port: The UDP port number used by the authentication server to retrieve accounting information. 7.Press Ctrl+A go back action menu line. 8.
4.3.6.3. 802.1x PerPort Configuration In this page, set the authorization status to activate 802.1x function by port 1. 2. 3. 4. Select . Status: Press key to choose Fu / Fa / Au / No authorization status. Press Ctrl+A go back action menu line. Select to save all configure value. Note: Fu:Force the specific port to be unauthorized. Fa:Force the specific port to be authorized. Au:The state of the specific port was determined by the outcome of the authentication.
4.3.6.4. 802.1x Misc Configuration 1. Press . 2. Quiet Period: Used to define periods of time during which it will not attempt to acquire a supplicant (Default time is 60 seconds). 3. Tx Period: Used to determine when an EAPOL PDU is to be transmitted (Default value is 30 seconds). 4. Supplicant Timeout: Used to determine timeout conditions in the exchanges between the supplicant and authentication server (Default value is 30 seconds). 5.
4.4. Status and Counters You can press the key of Tab or Backspace to choose item, and press Enter key to select item. 4.4.1. Port Status This page display every port status Link Status: Display the port is link or no link.
InRate: Display the input rate control (100K/unit) setting value. OutRate: Display the output rate control (100K/unit) setting value. Enabled: Display the port is enabled or disable depended on user setting. Enable will be display “Yes”, disable will be display “No”. If the port is unlink will be treated as “No”. Auto: Display the port is link on which Nway mode: Auto, Nway_Force, and Force. Spd/Dpx: Display the port speed and duplex.
4.4.3. System Information MAC Address: The unique hardware address assigned by manufacturer. Firmware Version: Display the switch’s firmware version. ASIC Version: Display the switch’s Hardware version. Module 1 Type: Display the module 1 Type: 1000Tx or 100Fx ext. Depend on module card mode. Module 1 information: Display the information saved in EEPROM of module1. Module 2 Type: Display the module 2 Type: 1000Tx or 100Fx ext. Depend on module card mode.
4.5. Reboot Switch 4.5.1. Default Reset switch to default configuration, default value please section 2-4-14. 4.5.2. Restart Reboot the switch in software reset.
4.6. TFTP Update Firmware This page provide user to update firmware or restore EEPROM value or upload current EEPROM value. 4.6.1. TFTP Update Firmware This page provides user use TFTP to update firmware.
Actions-> 1. Start the TFTP server, and copy firmware update version image file to TFTP server. 2. 3. 4. 5. Press on this page. TFTP Server: Type the IP of TFTP server. Remote File Name: Type the image file name. Press Ctrl+A go to action line. 6. Press key, it will start to download the image file. 7. When save successfully, the image file download finished too. 8. Restart switch. 4.6.2.
4.6.3. Backup Configure File This page user can save current EEPROM value to image file. Then go to the update configure page to restore the EEPROM value. Actions-> 1. Start the TFTP server. 2. 3. 4. 5. 6. 7. 8. Press on this page. TFTP Server: Type the IP of TFTP server. Remote File Name: Type the image file name. Press Ctrl+A go to action line. Press key, it will start to upload the image file. When save successfully, the image file upload finished too. Restart switch.
5. Application Examples 5.1. VLAN application used with switch VLAN is a simple solution to protect your network against broadcast storming by creating segments based on Layer2 Ethernet information and avoiding the complexity and the heavy processing requirements of Layer3 IP based routers. As a result, each group of stations connected to separate Segmented Ports forms different isolated Broadcast Domain.
Benefits of VLANs z z z z z z z z Grouping users into logical networks for performance enhancement. Provides effective broadcasts containment between Segmented Ports, which prevents flooding of a network. Offers security by completely isolating from each other the different Broadcast Domains connected on separate Segmented Ports. Preserving current investment in equipment and cabling. Providing an easy, flexible, economic way to modify logical groups when needed.
5.2. Trunking Application used with switch Trunking allows you to increase the available bandwidth between switches by grouping ports into a trunk. Trunk can also be used to connect server to switches for higher bandwidth service required. You can use trunking to improve the throughput between segments.
5.3. “Single IP – Agent mode” application Single IP is a management utility of network devices for administrator to access private IP devices through a single IP (real IP or private IP). By this utility, administrator can manage much more network devices than ever and reduce the demand of real IPs, because every real IP switch can be an agent host for any network devices in their private IP domain. The Single-IP feature is able to manage up to 32 devices in the LAN using one IP address.
operation. A floating menu gives a comprehensive user interface for administrator to pick the managed devices. It provides host IP and host name in the same time, saving the trouble that the administrator tries to remember which IPs those slave hosts are assigned to. Since there is only one browser window displaying on the screen at one time, Agent Manager plays a role like a TV channel Remote Controller.
IP: 192.168.223.30 Switch IP: 192.168.223.100 Agent IP: 192.168.223.100 Gateway: 192.168.223.254 LAN IP: 192.168.223.254 WAN IP: 211.23.53.250 Switch IP: 192.168.223.101 Gateway: 192.168.223.254 Switch IP: 192.168.223.102 Gateway: 192.168.223.254 2. Master and slave switches in different LAN domain. In this example, master will manage 2 slave switches and 1 router in other IP domain. IP: 192.168.1.30 LAN IP: 192.168.223.254 WAN IP: 211.23.53.250 Switch IP: 192.168.223.101 Gateway: 192.168.223.
The differences from example1 are that administrator and master switch IP are in the other IP domain (192.168.1.0). Switch IP of master is 192.168.1.100. Set its management mode to “Agent Master”. According to the basic rule 1, agent IP should be set in the same domain of slaves, that is, 192.168.223.100. The other procedures are the same as example 1. Now administrator (192.168.1.30) can access the slaves in other domain (192.168.223.0). 3. Master in WAN domain and slaves in LAN domain.
5.4. “Single IP - Stacking mode” application with Switch This switch provides traditional stacking mode to stack with maximum 32 switches by cascading their Gigabit ports (purchased separately). For better performance, we recommend stacking no more than 8 Switches. This feature helps network administrator to easily use one switch assigned as the master to manage the other stacked switches through the browser.
the stack for flexible usage. 2. Well integrated UI to view status of stacking switches: An user-friendly Web UI provides user to have a total view of the port link status and VLAN group settings for all stacked switches at a glance. 3. Easy adding or removal stacking member: All Stacking members can be easily added or removed through the network.
5.4.2 An Example of Port-Base Stacking VLAN Port-Base Stacking VLAN setting: Switch: Master (192.168.223.100) Slaves (192.168.223.110, 192.168.223.120, 192.168.223.130, 192.168.223.140, 192.168.223.150) PC: PC-0(192.168.223.99) on port 22 of Master (192.168.223.100) PC-1(192.168.223.92) on port 9 of Slave 4(192.168.223.140) PC-2(192.168.223.93) on port 23 of Slave 5(192.168.223.150) Port-Base VLAN Group: VLAN name : test VLAN ID : 10 Members: Port 22, 24 of Master (192.168.223.100 ) Port 9 of Slave4 (192.
Result: 1. PC-0 can access both PC-01 and PC-02.
2. PC-0 can only access PC-02 only. PC-01 will not reply.
5.4.3 Limitation with Trunking in Stacking mode Two basic rules declare here: 1. Stacking members can’t and trunk with each other. 2. Stacking members can trunk with non-stacking member. The packet traffics between stacking members are transferred only through Giga module. Trunking between stacking members may cause the spanning tree protocol (STP) to alter the topology and change the routed ports. If it happens, Giga port traffic may break and the stacking mechanism will fail.
5.5 Compatibility on Virtual Server and “Single IP” There are practical applications on combination of virtual server and single IP. Network administrator prefers a router as unique gateway to Internet while he/she likes to use the “Single IP” to manage his network hosts both from LAN and WAN. This example gives a guide how to setup virtual server with agent/stacking switch. Example target: 1. Any client with port 80 (http) go to company’s default web server (example 192.168.223.80) 2.
Step 2. Set up agent/stacking switch mapping port (211.23.53.252:28010->192.168.223.90:80) (Note: Some Routers are not able to allow users to direct External Service Port (28010) to Local Service Port (80). In that case, user must have Port 80 available for the Switch.) Step 3: Set up agent function mapping port (211.23.53.252:28019->192.168.223.
Agent IP to Switch IP again before launching the Agent/Stacking Manager.. TRENDware Technical Support: 3135 Kashiwa Street Torrance, CA 90505 Tel: +1-310-891-1100 Fax: +1-310-891-1111 E-mail: support@trendware.com www.trendnet.
