MATRIX E5 Series Modules (5H1xx and 5G1xx) Local Management User’s Guide 9033583-01
NOTICE Enterasys Networks and its licensors reserve the right to make changes in specifications and other information contained in this document without prior notice. The reader should in all cases consult Enterasys Networks to determine whether any such changes have been made. The hardware, firmware, or software described in this manual is subject to change without notice.
ENTERASYS NETWORKS, INC. PROGRAM LICENSE AGREEMENT BEFORE OPENING OR UTILIZING THE ENCLOSED PRODUCT, CAREFULLY READ THIS LICENSE AGREEMENT. This document is an agreement (“Agreement”) between You, the end user, and Enterasys Networks, Inc. (“Enterasys”) that sets forth your rights and obligations with respect to the Enterasys software program (“Program”) in the package. The Program may be contained in firmware, chips or other media.
. UNITED STATES GOVERNMENT RESTRICTED RIGHTS. The enclosed Product (i) was developed solely at private expense; (ii) contains “restricted computer software” submitted with restricted rights in accordance with section 52.227-19 (a) through (d) of the Commercial Computer Software-Restricted Rights Clause and its successors, and (iii) in all respects is proprietary data belonging to Enterasys and/or its suppliers.
Contents Figures ............................................................................................................................................ix Tables..............................................................................................................................................xi ABOUT THIS GUIDE Using This guide ........................................................................................................... xiii Structure of This Guide .............................
5 SYSTEM INFORMATION MENU SCREENS 5.1 6 MANAGEMENT SETUP MENU SCREENS 6.1 6.2 6.3 6.4 6.5 6.6 6.7 7 Management Setup Menu Screen .................................................................. 6-2 Changing the Network Configuration .............................................................. 6-3 6.2.1 IP Configuration .............................................................................. 6-4 6.2.2 IP Connectivity Test (Ping) .............................................................
7.15 7.16 8 NETWORK MONITORING MENU SCREENS 8.1 8.2 8.3 8.4 8.5 9 Resetting the System ...................................................................................... 9-1 Logging Off the system ................................................................................... 9-2 CONFIGURING AND MONITORING THE SWITCH 10.1 10.2 10.3 10.4 10.5 10.6 10.7 10.8 10.9 10.10 10.11 10.12 10.13 10.14 10.15 10.16 10.17 11 Monitoring the Switch...........................................................
11.3 11.4 A 11.2.1 RFC 1213 (MIB II)......................................................................... 11-2 11.2.2 RFC 1493 (BRIDGE MIB) ............................................................. 11-3 11.2.3 RFC 1573 (INTERFACES EVOLUTION MIB) .............................. 11-3 11.2.4 RFC 1643 (ETHERNET-LIKE MIB) .............................................. 11-3 11.2.5 RFC 1757 (RMON MIB)................................................................ 11-3 11.2.6 IEEE 802.1Q (Q MIB) .........
Figures Figure 2-1 3-1 3-2 3-3 4-1 5-1 5-2 5-3 6-1 6-2 6-3 6-4 6-5 6-6 6-7 6-8 6-9 6-10 6-11 6-12 7-1 7-2 7-3 7-4 7-5 7-6 7-7 7-8 7-9 7-10 7-11 7-12 7-13 7-14 7-15 Page Management Terminal Connection ................................................................................. 2-2 Local Management Screen Hierarchy ............................................................................. 3-2 Sample Main Menu ............................................................................................
Figure 7-16 7-17 7-18 7-19 7-20 7-21 8-1 8-2 8-3 8-4 8-5 9-1 A-1 B-1 C-1 x Page 802.1P Port Traffic Class Information Screen ...............................................................7-27 802.1Q VLAN Base Information Screen ........................................................................7-28 802.1Q VLAN Current Table Information Screen ..........................................................7-29 802.1Q VLAN Static Table Configuration Screen...................................................
Tables Table 2-1 3-1 7-1 10-1 A-1 Page VT Terminal Setup........................................................................................................2-3 Factory Default Settings ............................................................................................... 3-5 SmartTrunk, Ports Associated with Group IDs ........................................................... 7-21 SmartTrunk Configuration, Ports Associated with Group IDs...................................
About This Guide Welcome to the Enterasys Networksëëë™ MATRIX E5 Series Modules (5H1xx and 5G1xx) Local Management User’s Guide. This manual explains how to access and use the Local Management screens to monitor and manage 5H1xx and 5G1xx modules, attached segments, in a five-slot 5C105 chassis. Only the 5H1xx and 5G1xx modules can operate in the 5C105 chassis. Important Notice Depending on the firmware version used in the module, some features described in this document may not be supported.
Structure of This Guide Chapter 2, Local Management Requirements, provides the setup requirements for accessing Local Management and the instructions to configure and connect a management terminal to the module. Chapter 3, Accessing Local Management, describes how to navigate through the screen hierarchy and access the Password screen to enter a Local Management session. The default parameter settings for each screen are also provided.
Related Documents Appendix A, Spanning Tree Concepts, introduces you to the IEEE 802.1D Spanning Tree Protocol. This protocol is used to resolve the problems of physical loops in a network by establishing one primary path between any two switches in a network. Appendix B, System Restart Menu Screen, introduces you to IEEE 802.1Q-compliant virtual LANs (VLANs).
Typographical and Keystroke Conventions TYPOGRAPHICAL AND KEYSTROKE CONVENTIONS bold type Bold type can denote either a user input or a highlighted screen selection. ENTER Indicates either the ENTER or RETURN key, depending on your keyboard. ESC Indicates the keyboard Escape key. SPACE bar Indicates the keyboard space bar key. BACKSPACE Indicates the keyboard backspace key. arrow keys Refers to the four keyboard arrow keys. [-] Indicates the keyboard – key.
Getting Help GETTING HELP For additional support related to this product or document, contact Enterasys Networks using one of the following methods: World Wide Web http://www.enterasys.com Phone (603) 332-9400 Internet mail support@enterasys.com FTP ftp://ftp.enterasys.com Login anonymous Password your email address To send comments or suggestions concerning this document, contact the Enterasys Networks Technical Writing Department via the following email address: TechWriting@enterasys.
1 Introduction This chapter provides an overview of the tasks that may be accomplished using Local Management (LM), and an introduction to LM screen navigation, in-band and out-of-band network management, screen elements, and LM keyboard conventions. Important Notice Depending on the firmware version used in the switch module, some features described in this document may not be supported. Refer to the Release Notes shipped with the switch module to determine which features are supported. 1.
Overview • Download system firmware • Restart the system There are three ways to access Local Management: • Locally using a VT type terminal connected to the COM port. • Remotely using a VT type terminal connected through a modem. • In-band through a Telnet connection. 1.1.1 The Management Agent The management agent is an entity within the switch module that collects statistical information (e.g., frames received, errors detected) about the operational performance of the managed network.
Navigating Local Management Screens 1.2 NAVIGATING LOCAL MANAGEMENT SCREENS To navigate within a Local Management screen, use the arrow keys of the terminal or the workstation providing terminal emulation services. The Local Management screen cursor responds to the LEFT, RIGHT, UP, and DOWN arrow keys. Each time you press an arrow key, the Local Management screen cursor moves to the next available field in the direction of the arrow key.
2 Local Management Requirements To change the operating parameters of the module, you must access its Local Management program by either a module COM port connection or by a Telnet connection to the module. This chapter provides the following sections on how to make these connections: • Management Terminal Setup (Section 2.1), which describes how to make a terminal connection to the module COM port. • Telnet Connection (Section 2.
Management Terminal Setup To connect the switch module to a PC or compatible device running the VT terminal emulation, proceed as follows: 1. Connect the RJ45 connector at one end of the cable (supplied in the kit) to the COM port on the switch module. 2. Plug the RJ45 connector at the other end of the cable into the RJ45-to-DB9 adapter (supplied in the kit). 3. Connect the RJ45-to-DB9 adapter to the PC communications port.
Management Terminal Setup Table 2-1 VT Terminal Setup Parameter Setting Display Setup Menu Columns -> Controls -> Auto Wrap -> Scroll -> Text Cursor -> Cursor Style -> 80 Columns Interpret Controls No Auto Wrap Jump Scroll Cursor Underline Cursor Style General Setup Menu Mode -> ID number -> Cursor Keys -> Power Supply -> VT100, 7 Bit Controls VT100ID Normal Cursor Keys UPSS DEC Supplemental Communications Setup Menu Transmit -> Receive -> XOFF -> Bits -> Parity -> Stop Bit -> Local Echo -> Port
Telnet Connections 2.2 TELNET CONNECTIONS Prior to accessing a module via a network connection, you must first configure the module with a valid IP address, subnet mask, and default gateway using an out-of-band connection or the BOOTP protocol. Once the switch module is configured, you can establish a Telnet session from any TCP/IP based node on the network. Telnet connections to the switch module require the community name passwords assigned in the SNMP Configuration screen.
3 Accessing Local Management To provide you with an overall awareness of the Local Management screens used to configure the module and the default settings for each parameter, this chapter provides information about the following: • Navigating through the Local Management hierarchy. A flowchart provides a quick overview of the menu screens and their subordinate screens (Section 3.1).
Navigating Local Management Screens Figure 3-1 Local Management Screen Hierarchy System Information Menu System Information Switch Information Management Setup Menu Network Network Configuration Configuration Menu Menu Serial Port Configuration IP Configuration IP Connectivity Test (Ping) SNMP Configuration Menu Password HTTP Configuration SNMP Communities IP Trap Managers Console Login Configuration Main Menu Startup Configuration TFTP Download Device Control Menu Port Configuration Port Informat
Accessing Local Management Screens 3.2 ACCESSING LOCAL MANAGEMENT SCREENS Access to the Local Management screens menus is gained by connecting a terminal to the console port through a direct cable connection or over a modem, or using Telnet to access the Local Management over the network as detailed in Chapter 2. The menus allow you to reconfigure the module, as well as to monitor its status and performance. The menus have a layout similar to the sample Main Menu shown in Figure 3-2.
Password Screen How to Use the Screen Menus To use the screen menus, do the following: 1. Use the cursor keys to highlight the desired option. If the selected item is a submenu title, the submenu is displayed when you press the ENTER key. 2. Follow the screen prompts to specify the parameter requested. If the selected item is a parameter, the system displays a prompt for you to enter a new value. If the value entered is invalid, a message displays, requesting you to enter a valid value. 3.
Factory Defaults You should assign a new administrator password, record it and put it in a safe place for future reference. To assign a new password, start at the Main Menu, select Management Setup Menu /Console Login Configuration, and enter a new password for the administrator. Passwords can consist of up to 11 alphanumeric characters and are not case sensitive. NOTE: A user is allowed three attempts to enter the correct password; on the third failed attempt, the current connection is terminated. 3.
Factory Defaults Table 3-1 Factory Default Settings (Continued) Parameter Default Value Spanning Tree Algorithm Active Aging Time 300 Bridge Priority 32768 Forward Delay 15 Hello Time 2 Max Age 20 Path Cost 4 - 1000 Mbps ports 9 - 100 Mbps ports 100 - 10 Mbps ports Port Priority 128 Spanning Tree Protocol Enabled System Configuration Password Screen Time-out 10 minutes Send Authentication Fail Traps Enabled SNMP Community Names Public, private Terminal Baud Rate 9600 Use
4 Main Menu Screens Once you have logged into Local Management, the Main Menu screen is the first screen to display. This chapter describes the Main Menu screen, introduces the screens that you can use to obtain system operating information, change operating parameters, obtain module operating statistics, reset and exit Local Management.
Main Menu 4.1 MAIN MENU The Main Menu screen provides access to the five top level menu screens and the EXIT command, which is used to end a Local Management session. The Main Menu screen (Figure 4-1) and the reporting screen functions are described below. Figure 4-1 Main Menu System Information Menu Management Setup Menu Device Control Menu Network Monitor Menu System Restart Menu Exit 3583_05 Selection Description System Information Menu (For details, refer to Chapter 5.
Main Menu Selection Description Management Setup Menu (For details, refer to Chapter 6.) Network Configuration Menu Includes IP setup, Ping facility, HTTP (Web Agent) setup, Telnet configuration, and MAC address. Serial Port Configuration Sets communication parameters for the serial port, including management mode, baud rate, console time-out, and screen data refresh interval. SNMP Configuration Menu Activates traps and configures communities and trap managers.
Main Menu Selection Description Device Control Menu (Cont’d) Extended Bridge Configuration Displays/configures extended bridge capabilities provided by this switch, including support for traffic classes, and VLAN extensions. 802.1P Configuration Configures default port priorities and queue assignments. 802.1Q VLAN Base Information Displays basic VLAN information, such as VLAN version number and maximum VLANs supported. 802.1Q VLAN Current Table Information Displays VLAN groups and port members.
5 System Information Menu Screens This chapter describes the System Information Menu screen and the screens that can be selected from its menu to obtain system and switch information. Screen Navigation Path Password > Main Menu > System Information Menu 5.
System Information Menu Screen Selection Description System Information Provides basic system description, including system object ID, up time, name, contact, and location. Switch Information Shows hardware/firmware version numbers, serial number, and number of the chassis slot being occupied by the module. 5.1.1 Displaying System Information Use the System Information screen (Figure 5-2) described below to display descriptive information about the switch, or for quick system identification.
System Information Menu Screen . Parameter Description System Description System hardware description. System Object ID MIB II object identifier for switch is network management subsystem. System Up Time Length of time the current management agent has been running. (Note that the first value is 1/100 seconds.) System Name * Name assigned to the switch system. System Contact * Contact person for the system. System Location * Specifies the area or location where the system resides.
System Information Menu Screen 5.1.2 Displaying Switch Version and Module Information Use the Switch Information screen (Figure 5-3) described below to display the module hardware/firmware version numbers, serial number and slot number it occupies in the chassis. Figure 5-3 Switch Information Screen Hardware Version : v3.0 Firmware Version : 02.01.
6 Management Setup Menu Screens The Management Setup Menu screen provides access to the screens used to set up the console communications parameters and specify the switch IP address, passwords to Local Management screens, and switch SNMP configuration. After initially logging onto the system, perform the following: • Adjust the communication parameters for your console to ensure a reliable connection (Serial Port Configuration). Refer to Section 6.3.
Management Setup Menu Screen 6.1 MANAGEMENT SETUP MENU SCREEN The menu items provided by the Management Setup Menu screen (Figure 6-1) are described in the following sections.
Changing the Network Configuration Selection Description Startup Configuration Used to disable the extended system diagnostics during system bootup routine for faster bootups. For details, refer to Section 6.6. TFTP Download Downloads new version of firmware to update your system (in-band). For details, refer to Section 6.7. 6.2 CHANGING THE NETWORK CONFIGURATION Use the Network Configuration Menu screen (Figure 6-2) for any of the following: • Access the screens needed to set the bootup option.
Changing the Network Configuration Parameter Description IP Configuration Used to set the bootup option, or configure the switch’s IP parameters. IP Connectivity Test (Ping) Used to test IP connectivity (Ping) to a specified device. HTTP Configuration Used to enable the Web Agent. MAX Number of Allowed Telnet Sessions (1-4) The maximum number of Telnet sessions allowed to simultaneously access the agent module. Physical Address Physical address of the agent module. 6.2.
Changing the Network Configuration Parameter Default Description Interface Type Ethernet Indicates IP over Ethernet. IP Address 0.0.0.0. IP address of the module you are managing when accessing the agent module over the network. The agent module supports SNMP over UDP/ IP transport protocol. In this environment, all systems on the Internet, such as network interconnection devices and any PC accessing the agent module (or running NetSight) must have an IP address.
Changing the Network Configuration 6.2.2 IP Connectivity Test (Ping) Use the IP Connectivity Test screen (Figure 6-4) to see if another site on the Internet can be reached. The screen parameters are described in the following table. Figure 6-4 IP Connectivity Test Screen IP Address: 0.0.0.0 Test Time : 1 Interval :3 Success Failure :0 : 0 [Start] 3583_12 Parameter Description IP Address IP address of the site that you want to ping.
Changing the Network Configuration 6.2.3 HTTP Configuration Use the HTTP Configuration screen (Figure 6-5) to enable/disable the on-board Web agent, and to specify the TCP port that will provide HTTP service. The screen shown below is described in the following table. Figure 6-5 HTTP Configuration Screen HTTP Server : ENABLED HTTP Port Number : 80 3583_13 Parameter Description HTTP Server Enables/disables access to the on-board web agent for WebView.
Configuring the Serial Port 6.3 CONFIGURING THE SERIAL PORT You can access the on-board configuration program by attaching a VT100 compatible device to the switch’s COM port. (For more information on connecting to this port, refer to Chapter 2.) The communication parameters for this port can be accessed from the Serial Port Configuration screen (Figure 6-6) shown below and described in the following table.
Configuring the Serial Port Parameter Default Description Management Mode CONSOLE MODE Indicates that the console port settings are for direct console connection. Baud rate 9600 The rate at which data is sent between devices. Options: 2400, 4800, 9600, and 19200 bps. Data bits 8 bits Sets the data bits of the RS232 port. Options: 7, 8 Stop bits 1 bit Sets the stop bits of the RS232 port. Options: 1, 2 Parity NONE Sets the parity of the RS232 port.
Assigning SNMP Parameters 6.4 ASSIGNING SNMP PARAMETERS Use the SNMP Configuration Menu screen (Figure 6-7) to display and modify parameters for the Simple Network Management Protocol (SNMP). The switch includes an on-board SNMP agent which monitors the status of its hardware, as well as the traffic passing through its ports. A computer attached to the network, called a Network Management Station (NMS), can be used to access this information.
Assigning SNMP Parameters Parameter Description Send Authentication Fail Traps Issues a trap message to specified IP trap managers whenever authentication of an SNMP request fails. (The default setting is ENABLED.) SNMP Communities Provides access to the SNMP Communities screen to assign SNMP access based on specified strings. For details, refer to Section 6.4.1.
Assigning SNMP Parameters 6.4.1 Configuring Community Names The SNMP Communities screen (Figure 6-8) is selected from the SNMP Configuration Menu screen. The table following the figure describes the fields. This screen is used to configure the community strings authorized for management access. Up to 5 community names may be entered. Figure 6-8 SNMP Communities Screen Community Name 1. public 2. 3. 4. 5.
Assigning SNMP Parameters 6.4.2 Configuring IP Trap Managers The IP Trap Managers screen (Figure 6-9) is selected from the SNMP Configuration Menu screen. The table following the figure describes the fields. This screen is used to specify the management stations that will receive authentication failure messages or other trap messages from the switch. Up to 5 trap managers may be entered. Figure 6-9 IP Trap Managers Screen 1. 2. 3. 4. 5. IP Address Community Name Status 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.
Console Login Configuration 6.5 CONSOLE LOGIN CONFIGURATION Use the Console Login Configuration screen (Figure 6-10) to restrict management access based on the specified user names and passwords, or to set the invalid password threshold and time-out. There are two user types: Administrator and Guest. Only the Administrator has write access for parameters governing the SNMP agent. You should therefore assign a user name and password to the Administrator as soon as possible, and store it in a safe place.
Setting the Startup Configuration Parameter Default Description User Type ADMIN Administrator has access privilege of Read/Write for all screens. User Name public Guest has access privilege of Read Only for all screens. Password no password Passwords can consist of up to 11 alphanumeric characters and are not case sensitive. If there is no password assigned, press ENTER. 6.
Downloading System Software 6.7 DOWNLOADING SYSTEM SOFTWARE Use the TFTP Download screen (Figure 6-12) to perform the following: • Download a new firmware image file from a TFTP server to the switch module, • Download a configuration file from a TFTP server to the switch module, or • Upload the configuration file from the switch module to a TFTP server. Before downloading an image to the device, copy the image to the network TFTP server.
Downloading System Software Figure 6-12 TFTP Download Screen Download Server IP : 0.0.0.0 Agent Software Upgrade Download Filename Download Mode : ENABLED : : PERMANENT Download Method : DOWNLOAD IMAGE [Process TFTP Download] Download Status : Complete 3583_20 Parameter Description Download Server IP IP address of a TFTP server. Agent Software Upgrade A community specified for trap management access. Download Filename The binary file to download to the agent module.
Downloading System Software Parameter Description Download Method Used to select a method (DOWNLOAD IMAGE, UPLOAD CONFIG, or DOWNLOAD CONFIG) to download (receive) an image file from a TFTP server, or upload (transmit) or download a configuration file to/from a TFTP server. The uploading and downloading of a configuration file is accomplished according to the IP address and the file name entered in the Download Server IP and Download File Name fields, respectively.
7 Device Control Menu Screens This chapter describes the Device Control Menu screen and the screens that can be selected from its menu to control a broad range of functions. Screen Navigation Path Password > Main Menu > Device Control Menu 7.1 CONFIGURING THE SWITCH The Device Control Menu screen (Figure 7-1) is used to control a broad range of functions, including port configuration, Spanning Tree support for redundant switches, port mirroring, multicast filtering, and VLANs.
Configuring the Switch Figure 7-1 Device Control Menu Screen Port Configuration Port Information Spanning Tree Configuration Menu Spanning Tree Information Menu Mirror Port Configuration SmartTrunking Configuration IGMP Configuration Extended Bridge Configuration 802.1P Configuration 802.1Q VLAN Base Information 802.1Q VLAN Current Table Information 802.1Q VLAN Static Table Configuration 802.
Configuring the Switch Selection Description IGMP Configuration Configures IGMP multicast filtering. For details, refer to Section 7.8. Extended Bridge Configuration Displays/configures extended bridge capabilities provided by this switch, including support for traffic classes, and VLAN extensions. For details, refer to Section 7.9. 802.1P Configuration Used to configure the default port priorities and queue assignments for each port, or to display the mapping for the traffic classes.
Configuring Port Parameters 7.2 CONFIGURING PORT PARAMETERS Use the Port Configuration screen (Figure 7-2) to set or display communication parameters for any port or module on the switch.
Configuring Port Parameters Parameter Default Type Description Shows port type as: 10/100TX: 10Base-T/100Base-TX 100FX: 100Base-FX 1000SX: 1000Base-SX 1000LX: 1000Base-LX Admin ENABLED Allows you to disable a port due to abnormal behavior (e.g., excessive collisions), and then re-enable it after the problem has been resolved. You may also disable a port for security reasons. Flow Control DI SABLED Used to enable or disable flow control.
Viewing the Current Port Configuration 7.3 VIEWING THE CURRENT PORT CONFIGURATION The Port Information screen (Figure 7-3) displays the port type, status, link state, and flow control in use, as well as the communication speed and duplex mode. To change any of the port settings, use the Port Configuration menu. The parameters shown in the following figure and table are for the RJ45 ports.
Viewing the Current Port Configuration Parameter Description Type Shows port type as: 10/100TX: 10Base-T/100Base-TX 100FX: 100Base-FX 1000SX: 1000Base-SX 1000LX: 1000Base-LX Operational Shows if the port is, or is not, functioning. Link Indicates if the port has a valid connection to an external device. Flow Control InUse Shows the flow control type in use. Flow control can eliminate frame loss by “blocking” traffic from end stations connected directly to the switch.
Using the Spanning Tree Algorithm 7.4 USING THE SPANNING TREE ALGORITHM The Spanning Tree Algorithm (STA) is used to detect and disable network loops, and to provide backup links between switches, bridges or routers. This allows the switch to interact with other bridging devices (that is, an STA-compliant switch, bridge or router) in your network to ensure that only one route exists between any two stations on the network.
Using the Spanning Tree Algorithm 7.4.1 Configuring STA Bridge The STA Bridge Configuration screen (Figure 7-5) to set the STA Bridge parameters. The following table describes the STA Bridge configuration parameters.
Using the Spanning Tree Algorithm Parameter Default Description Hello Time (in seconds) 2 Time interval at which the root device transmits a configuration message. The minimum value is 1. The maximum value is the lower of 10 or [(Max. Message Age / 2) -1]. Max Age (in seconds) 20 The maximum time a device can wait without receiving a configuration message before attempting to reconfigure. All device ports (except for designated ports) should receive configuration messages at regular intervals.
Using the Spanning Tree Algorithm 7.4.2 Configuring STA for Ports Use the STA Port Configuration screen (Figure 7-6) to set the STA port parameters. The following table describe the STA configuration parameters for the ports.
Using the Spanning Tree Algorithm Parameter Default Description Cost 100/19/4 This parameter (path cost) is used by the STA to determine the best path between devices. Therefore, lower values should be assigned to ports attached to faster media, and higher values assigned to ports with slower media. (Path cost takes precedence over port priority.) The default and recommended range is: Ethernet: 100 (50~600) Fast Ethernet: 19 (10~60) Gigabit Ethernet: 4 (3~10) The full range is 0 - 65535.
Viewing the Current Spanning Tree Configuration 7.5 VIEWING THE CURRENT SPANNING TREE CONFIGURATION The Spanning Tree Information: Selection Menu screen (Figure 7-7) enables you to select one of two screens to display a summary of the STA information for the overall bridge or for a specific port. To make changes to the STA bridge or STA port operating parameters, refer back to Section 7.4.
Viewing the Current Spanning Tree Configuration 7.5.1 Displaying the Current STA Bridge The STA Bridge Information screen (Figure 7-8) displays the current information about the STA Bridge. The following table describes the parameters shown on the screen.
Viewing the Current Spanning Tree Configuration Parameter Description Forward Delay (in seconds) The maximum time the root device will wait before changing states (i.e., from listening to learning to forwarding). Hold Time The minimum interval between the transmission of consecutive Configuration BPDUs. Designated Root The priority and MAC address of the device in the spanning tree that this switch has accepted as the root device.
Viewing the Current Spanning Tree Configuration 7.5.2 Displaying the Current STA for Ports or Modules The parameters shown in the following STA Port Information screen (Figure 7-4) and table are for port STA Information (Ports 1-12, Ports 13-24, Ports 25-36, or Ports 37-48). NOTE: The actual number of ports varies depending on the module.
Viewing the Current Spanning Tree Configuration Parameter Description Status Displays the current state of this port within the spanning tree: Disabled – Port has been disabled by the user or has failed diagnostics. Blocking – Port receives STA configuration messages, but does not forward packets. Listening – Port will leave blocking state due to topology change, starts transmitting configuration messages, but does not yet forward packets.
Using a Mirror Port for Analysis Parameter Description Designated Bridge (ID) The priority and MAC address of the device through which this port must communicate to reach the root of the spanning tree. Designated Port (ID) The priority and number of the port on the designated bridging device through which this switch must communicate with the root of the spanning tree. 7.6 USING A MIRROR PORT FOR ANALYSIS You can mirror traffic from any source port to a target port for real-time analysis.
Configuring SmartTrunks Parameter Description Mirror Source Port The port on which traffic will be monitored. Mirror Target Port The port that will duplicate or “mirror” all the traffic on the monitored port. Status Enables or disables the mirror function. 7.7 CONFIGURING SMARTTRUNKS Port trunks can be used to increase the bandwidth of a network connection or to ensure fault recovery.
Configuring SmartTrunks Use the Smart Trunking Configuration screen (Figure 7-11) to set up port trunks.
Configuring SmartTrunks Parameter Description SmartTrunk Priotocol Used to select from 1 to 6 trunks. This is the group ID of the SmartTrunk group. It identifies the chip set to be used. Refer to Table 7-1 for the ports associated with each group ID. NO CHANGE field Used to add or delete ports from group ID. Steps to ADD, DELETE, and NO CHANGE (default setting). This setting causes the port selected in the Port field to be added, deleted, or not changed when SAVE command is used.
Configuring IGMP 7.8 CONFIGURING IGMP This protocol allows a host to inform its local switch/router that it wants to receive transmissions addressed to a specific multicast group. Use the IGMP Configuration screen (Figure 7-12) to configure multicast filtering. Figure 7-12 IGMP Configuration Screen IGMP Status : DISABLED IGMP Query Count : 5 IGMP Report Delay (Minutes) : 5 3583_32 NOTE: The default values are shown in Figure 7-12.
Configuring Bridge MIB Extensions Parameter Description IGMP Query Count The time in minutes that must elapse before the switch removes the port from an IGMP group. This timer is started after the number of queries are missed as defined in the IGMP Query Count. IGMP Report Delay (Minutes) The number of queries that must be missed before the IGMP Report Delay timer is started. This is used in conjunction with the IGMP Report Delay to remove ports from an IGMP group. 7.
Configuring Bridge MIB Extensions Parameter Description Extended Multicast Filtering Services Indicates if the filtering of individual multicast addresses based on Multicast Registration Protocol is active. NOTE: This function is not available for the current firmware release. Traffic Classes Indicates if the mapping of user priorities to multiple traffic classes function is active. (For configuration information, refer to Section 7.10.
Configuring Traffic Classes 7.10 CONFIGURING TRAFFIC CLASSES IEEE 802.1p defines up to 8 separate traffic classes. This switch supports Quality of Service (QoS) by using two priority queues, with weighted fair queuing for each port. You can use the 802.1P Configuration Menu screen (Figure 7-14) to access the screens to configure the default priority for each port, or to display the mapping for the traffic classes as described in the following sections.
Configuring Traffic Classes Figure 7-15 802.1P Port Priority Configuration Screen 802.1P Port Priority Configuration : Port 1 - 12 Port Default Ingress Number of Egress User Priority Traffic Class -------------------------------------------------------------1 0 2 2 0 2 3 0 2 4 0 2 5 0 2 6 0 2 7 0 2 8 0 2 9 0 2 10 0 2 11 0 2 12 0 2 3583_35 Parameter Description Port Numeric identifier for switch port.
Configuring Virtual LANs Figure 7-16 802.1P Port Traffic Class Information Screen 802.
802.1Q VLAN Base Information 7.12 802.1Q VLAN BASE INFORMATION The 802.1Q VLAN Base Information screen (Figure 7-17) displays basic information on the VLAN type supported by this switch. Figure 7-17 802.1Q VLAN Base Information Screen VLAN Version Number : 1 MAX VLAN ID : 4094 MAX Supported VLANs : 1024 Current Number of 802.1Q VLANs Configured : 1 3583_37 Parameter Description VLAN Version Number The VLAN version used by this switch as specified in the IEEE 802.1Q standard.
802.1Q VLAN Current Table Information 7.13 802.1Q VLAN CURRENT TABLE INFORMATION This screen shows the current port members of each VLAN and whether or not the port supports VLAN tagging. Ports assigned to a large VLAN group that crosses several switches should use VLAN tagging. However, if you just want to create a small port-based VLAN for one or two switches, you can assign ports to the same untagged VLAN (refer to Section 7.15). The current configuration is shown in Figure 7-18.
802.1Q VLAN Static Table Configuration Parameter Description Status Shows how this VLAN was added to the switch. Current Egress Ports Shows the ports which have been added to the displayed VLAN group, where “1” indicates that a port is a member and “0” that it is not. Current Untagged Ports If a port has been added to the displayed VLAN (shown Current Egress Ports field), its entry in this field will be “1” if the port is untagged or “0” if tagged.
802.1Q VLAN Static Table Configuration Figure 7-19 802.
802.1Q VLAN Port Configuration Parameter Description [Show] Displays settings for the specified VLAN. [More] Displays consecutively numbered VLANs. [New] Sets up the screen for configuring a new VLAN. 7.15 802.1Q VLAN PORT CONFIGURATION Use the 802.1Q VLAN Port Configuration screen (Figure 7-20) to configure port-specific settings for IEEE 802.1Q VLAN features. Figure 7-20 802.1Q VLAN Port Configuration Screen 802.
802.1Q VLAN Port Configuration Parameter Description PVID The VLAN ID assigned to untagged frames received on this port. Use the PVID to assign ports to the same untagged VLAN. Acceptable Frame Type* This switch accepts “All” frame types, including VLAN tagged or VLAN untagged frames. Note that all VLAN untagged frames received on this port are assigned to the PVID for this port.
Configuring Static Unicast Addresses 7.16 CONFIGURING STATIC UNICAST ADDRESSES Use the Static Unicast Address Table Configuration screen (Figure 7-21) to manually configure host MAC addresses in the unicast table. You can use this screen to associate a MAC address with a specific VLAN ID and switch port. You can also lock a port to a particular MAC Address or the first MAC address received by the port to prevent other users (MAC Addresses) from using that port.
Configuring Static Unicast Addresses Parameter Description Status The status for an entry can be set to: Permanent–This entry is currently in use and will remain so after the next reset of the switch. DeleteOnReset–This entry is currently in use and will remain so until the next reset. Lock Port–Enables the port locking mode. For details, refer to Section 10.15.1. Unlock Port–Disables the port locking mode. For details, refer to Section 10.15.2. Invalid–Removes the corresponding entry.
8 Network Monitoring Menu Screens This chapter describes the Network Monitor Menu screen and the screens that can be selected from its menu. Screen Navigation Path Password > Main Menu > Network Monitor Menu 8.1 MONITORING THE SWITCH The Network Monitor Menu screen (Figure 8-1) provides access to port statistics, RMON statistics, IP multicast addresses, and the static (unicast) address table. Each of the screens provided by these menus is described in the following sections.
Displaying Port Statistics Parameter Description Port Statistics Displays statistics on network traffic passing through the selected port. RMON Statistics Displays detailed statistical information for the selected port such as packet type and frame size counters. Unicast Address Table Provides full listing of all unicast addresses stored in the switch, as well as sort, search and clear functions. IP Multicast Registration Table Displays the ports that belong to each IP Multicast group. 8.
Displaying Port Statistics Parameter Description Alignment Errors For 10 Mbps ports, this counter records alignment errors (mis-synchronized data packets). For 100 Mbps ports, this counter records the sum of alignment errors and code errors (frames received with rxerror signal). FCS Errors The number of frames received that are an integral number of octets in length but do not pass the FCS check.
Displaying RMON Statistics 8.3 DISPLAYING RMON STATISTICS Use the RMON Statistics screen (Figure 8-3) to display key statistics for each port or media module from RMON group 1. (RMON groups 2, 3 and 4 can only be accessed using SNMP management software such as NetSight.) The following screen displays the overall statistics on traffic passing through each port.
Displaying RMON Statistics Parameter Description Received Frames The total number of frames (bad, broadcast and multicast) received. Broadcast Frames The total number of good frames received that were directed to the broadcast address. Note that this does not include multicast packets. Multicast Frames The total number of good frames received that were directed to this multicast address. CRC/Alignment Errors For 10 Mbps ports, the counter records CRC/alignment errors (FCS or alignment errors).
Displaying the Unicast Address Table Parameter Description 65-127 Byte Frames The total number of frames (including bad packets) received and transmitted that were between 65 and 127 octets in length inclusive (excluding framing bits but including FCS octets). 128-255 Byte Frames The total number of packets (including bad packets) received and transmitted that were between 128 and 255 octets in length inclusive (excluding framing bits but including FCS octets).
Displaying the Unicast Address Table Figure 8-4 Unicast Address Table Screen Aging Time : 300 Dynamic Counts : 239 Static Counts : 0 MAC VID Port Status MAC VID Port Status --------------------------------------------------------------------------------------------------------------00-00-1D-00-99-2B 1 1 D 00-00-1D-2D-30-D8 1 1 D 00-00-1D-17-CE-E0 1 1 D 00-00-1D-2E-E6-39 1 1 D 00-00-1D-1A-47-DE 1 1 D 00-00-1D-2E-E7-52 1 1 D 00-00-1D-1E-BC-C0 1 1 D 00-00-1D-2F-B3-BF 1 1 D 00-00-1D-1E-CC-A0 1 1 D 00-00-1D
Displaying the IP Multicast Registration Table Parameter Description [Show] Displays the address table based on specified VLAN ID, and sorted by primary key MAC or VID. [More] Scrolls through the entries in the address table. [Clear] Clears the specified MAC address. [Clear All] Clears all MAC addresses in the table. 8.
Displaying the IP Multicast Registration Table Parameter Description VID VLAN ID assigned to this multicast group. Multicast IP IP address for specific multicast services. Multicast Group Port Lists The switch ports registered for the indicated multicast service. Learned by Indicates if the ports were learned dynamically or via IGMP. [Show] Displays the address table sorted on VID and then Multicast IP. [More] Scrolls through the entries in the address table.
9 System Restart Menu Screen This chapter describes the System Restart Menu screen and how to reset the switch or exit a current Local Management session. Screen Navigation Path Password > Main Menu > System Restart 9.1 RESETTING THE SYSTEM Select the System Restart Menu item in the Main Menu screen to reset the management agent. The reset screen includes options shown in Figure 9-1 and described in the following table.
Logging Off the system Parameter Description POST Runs the Power-On Self-Test. Reload Factory Defaults Reloads the factory defaults. Keep IP Setting Retains the settings defined in the IP Configuration screen described in Section 6.2.1. Keep User Authentication Retains the user names and passwords defined in the Console Login Configuration screen described in Section 6.5. 9.
10 Configuring and Monitoring the Switch 10.1 COMMON TASKS The switch console menus allow you to modify default switch settings and configure the switch for network management. They also allow you to monitor switch performance and status. Refer to Chapters 1 through 9 for an overview of the menu hierarchy and a description of all menus. The following sections describe common tasks in setting up and operating the switch using the console menus.
Setting Password Protection • Configuring IGMP multicast filtering (Section 10.13) • Configuring port operation (enable/disable, port speed, full/half duplex and flow control) (Section 10.14) • Configuring the Unicast Address table (Section 10.15) • Setting a default gateway (Section 10.16) • Configuring SmartTrunks (Section 10.17) 10.2 SETTING PASSWORD PROTECTION The switch is factory-configured with administrator access rights to the console menus set to READ/WRITE.
Assigning an IP Address 10.3 ASSIGNING AN IP ADDRESS To assign an IP address to the switch, proceed as follows: 1. Select Management Setup Menu from the Main menu. 2. Select Network Configuration and then IP Configuration. 3. Highlight the IP address field and enter the IP address. Press ENTER. The IP address is now set. The subnet mask is automatically set to correspond to the class of the address entered. If a different mask is used on the network, highlight Subnet Mask and enter the appropriate mask.
Viewing Switch Statistics The switch can send SNMP messages called traps to SNMP management stations when an important event occurs with the switch. The switch allows up to five destinations to be configured for these trap messages to be sent. To configure SNMP access for the switch, proceed as follows: 1. Select Management Setup Menu from the Main Menu. 2. Select SNMP Configuration Menu. 3. Select SNMP Communities from the menu.
Downloading a Software Upgrade 3. For the Mirror Source Port, select the stack unit and port number. 4. For the Mirror Target Port, select the stack unit and port number. 5. Set the Status field to ENABLED. 6. Connect a traffic analyzer or RMON probe to the mirroring port. 10.9 DOWNLOADING A SOFTWARE UPGRADE You can upgrade the operational software in the switch without physically opening the switch or being in the same location.
Downloading a Software Upgrade 4. Select “1” to download the agent software. The following messages display: Your Selection: Runtime Code Download code to FlashROM address 0x02880000 Change Baud Rate to 57600 and Press to Download. 5. Change your baud rate to 57600 bps and press ENTER. Send the file using the XMODEM protocol from your computer application (the procedure varies depending upon the application used). 6.
Configuring Spanning Tree Parameters 5. Configure the TFTP server by copying the download file from the upgrade disk to an appropriate directory and starting the server. 6. Select Process TFTP Download and press ENTER. To verify that the TFTP download has been successfully completed, note the software version level displayed on the Switch Information screen accessible from the System Information Menu. This number should match the version number that appears on the upgrade disk. 10.
Configuring Class of Service To configure VLANs, proceed as follows: 1. Select the Device Control Menu from the Main Menu. 2. Select 802.1Q VLAN Static Table Configuration Menu. 3. In the VID and VLAN Name fields, enter an ID number (1-2048) and a symbolic alphanumeric name (up to 8 characters) to identify the VLAN. 4. Set the Status field to Active. 5. Under Egress Ports, select ports by entering “1,” or enter “0” to remove it from the VLAN. 6.
Configuring Port Operation To configure IGMP operation, proceed as follows: 1. Select Device Control Menu from the Main Menu. 2. Select IGMP Configuration and press ENTER. 3. Set the IGMP Status to ENABLED. This enables the switch to monitor network traffic to determine which hosts want to receive multicast traffic. Default is DISABLED. 4. Set the IGMP Query Count to the number of minutes that must elapse before the switch removes the port from an IGMP group.
Configuring the Unicast Address Table 10.15 CONFIGURING THE UNICAST ADDRESS TABLE The Unicast Address Table allows you to designate forwarding treatment through the switch for specific MAC addresses, allowing you to maintain the efficiency and security of your network. In this screen, you can: • Search for a specific MAC address. • Clear the entire table or information associated with a specific address. • Set a port to lock on a specific MAC address to prevent another user from using that port.
Configuring the Unicast Address Table To configure the Unicast Address Table, proceed as follows: 1. Select Network Monitor Menu from the Main Menu. 2. Select Unicast Address Table. 3. As desired, set the Aging Time for the table, or view, search or clear entries by MAC address or VLAN ID. To configure a specific MAC address in the table, proceed as follows: 1. From the Network Monitor Menu, select Static Unicast Address Table Configuration. 2.
Setting a Default Gateway 10.16 SETTING A DEFAULT GATEWAY The default Gateway parameter defines the IP address of a router or other network device to which IP packets are to be sent if destined for a subnet outside of that which the switch is operating. To set a default gateway, proceed as follows: 1. Select Management Setup Menu from the Main Menu. 2. Select Network Configuration and then IP Configuration. 3. In the field Gateway IP, enter the IP address and press ENTER. 10.
Configuring SmartTrunkS 5. For each Trunk ID, select ENABLE to enable the trunk. NOTE: It is advisable to enable the trunk prior to connecting any cable between the switches to avoid creating a loop. When using port trunks, remember that: • Before removing a port trunk via the configuration menu, you must disable all the ports in the trunk or remove all the network cables. Otherwise, a loop may be created.
11 SNMP Management 11.1 THE SNMP PROTOCOL SNMP (Simple Network Management Protocol) is a communication protocol for managing devices or other elements on a network. Network equipment commonly managed with SNMP includes hubs, switches, routers, and host computers. SNMP is typically used to configure these types of devices for proper operation in their network environment, as well as to monitor them to evaluate their performance and detect potential problems.
MIB Objects 11.2 MIB OBJECTS A number of standard MIB specifications have been defined for managing network equipment. SNMP compliant devices typically support one or more standard MIBs defined by the Internet Engineering Task Force (IETF), in the form of Request for Comments (RFC) documents. These MIBs provide a common method of managing devices, such as hubs and switches, and network interfaces, such as Ethernet and token ring.
MIB Objects The groups specifically defined in RFC 1213 and supported by the switch system software are as follows: • System – General information about the agent system • Interfaces – Information about the network interfaces of the system • Address Translation – Interface address information, both MAC level and network (IP) level • IP – Statistics and information related to the IP protocol • ICMP – Statistics and information related to the ICMP protocol • TCP – Statistics and information related to the T
Enterasys Proprietary MIB Extensions 11.2.6 IEEE 802.1Q (Q MIB) This MIB includes the set of managed objects as defined in the IEEE 802.1Q VLAN standard. This MIB provides management for the VLAN aspects of the switch. 11.3 ENTERASYS PROPRIETARY MIB EXTENSIONS Areas of switch functionality not covered by the standard RFC MIBs are specified in the Enterasys private MIB. This MIB definition is specified separately from MIB II.
A Spanning Tree Concepts A.1 GENERAL The IEEE 802.1D Spanning Tree Protocol resolves the problems of physical loops in a network by establishing one primary path between any two switches in a network. Any duplicate paths are barred from use and become standby or blocked paths until the original path fails, at which point they can be brought into service. A.1.
Spanning Tree Protocol in a Network A.2 SPANNING TREE PROTOCOL IN A NETWORK To provide a simple generic example, three standalone switches are shown in Figure A-1 to illustrate how the switches would establish an effective STA configuration. Switches A, B and C are connected together in a redundant topology (more than one path between two points). If the connection between A and B goes down, the link between A and C becomes active, thereby establishing a path between A and B through switch C.
Spanning Tree Protocol Parameters A.3 SPANNING TREE PROTOCOL PARAMETERS Several configuration parameters control the operation of the Spanning Tree Protocol. Table A-1 describes the parameters and lists the switch default settings for each parameter. NOTE: You can cause serious network performance degradation if you do not fully understand Spanning Tree concepts. Be sure to consult personnel experienced with this process prior to configuring Spanning Tree parameters.
Spanning Tree Protocol Parameters Table A-1 Spanning Tree Protocol Defaults (Continued) Parameter Description Default Value Cost Component of Each Port The Spanning Tree Protocol calculates and ensures that an active topology generates minimal cost paths. A value of 100 is generally used for 10 Mbps Ethernet networks, a value of 19 for 100 Mbps Fast Ethernet, and a value of 4 for 1000 Mbps Gigabit Ethernet.
Spanning Tree Protocol Parameters A.3.5 Handling Duplicate Paths When the active topology of the network is determined, all packets between any two nodes in the network use only one path. Where a duplicate path exists, the non-designated port is put into a blocking state. A.3.6 Remapping Network Topology If there is a change in the network topology due to a failure or the removal or addition of any active components, the active topology also changes.
B Virtual LANs (VLANs) B.1 VLANs AND FRAME TAGGING The switch supports IEEE 802.1Q-compliant virtual LANs (VLANs). This capability provides a highly efficient architecture for establishing VLANs within a network and for controlling broadcast/multicast traffic between workgroups. Central to this capability is an explicit frame tagging approach for carrying VLAN information between interconnected network devices. With frame tagging, a four-byte data tag field is appended to frames that cross the network.
VLAN Configuration B.2 VLAN CONFIGURATION VLAN operation on the switch is enabled by default. Therefore, all frames are transferred internally through the switch with a VLAN tag. This tag may already be on the frame entering the switch, or added to the frame by the switch. VLAN information already existing on frames entering the switch is automatically handled by the switch.
Forwarding Tagged/Untagged Frames 2.3 FORWARDING TAGGED/UNTAGGED FRAMES Ports can be assigned to multiple tagged or untagged VLANs. Each port on the switch is therefore capable of passing tagged or untagged frames. To forward a frame from a VLAN-aware device to a VLAN-unaware device, the switch first decides where to forward the frame, and then strips off the VLAN tag.
C Class of Service Class of Service support on the switch allows you to assign mission-critical data to a higher priority through the switch by delaying less critical traffic during periods of congestion. Higher priority traffic through the switch is serviced first before lower priority traffic. The Class of Service capability of the switch is implemented by a priority queuing mechanism. Class of Service is based on the IEEE 802.
Properly configured, the Class of Service mechanism assures that during congestion, the highest priority data does not get delayed by normal priority traffic. The tagged header in the frame governs individual frame priority. Figure C-1 shows priority queuing operating within a switch. Frames entering the switch through ports 1 and 4 are tagged as normal traffic and placed in a normal priority queue on the outbound port.
D IP Multicast Filtering The Internet Group Management Protocol (IGMP) runs between hosts and their immediately neighboring multicast router/switch. The protocol’s mechanisms allow a host to inform its local router that it wants to receive transmissions addressed to a specific multicast group. A router, or multicast-enabled switch, can periodically ask their hosts if they want to receive multicast traffic.
Index Numerics D 5C105 Chassis about the xiii Auto-negotiation, configuration of 10-9 Default switch configuration settings 3-5 Document conventions xv Downloads serial port for 10-5 downloads TFTP 10-5 C F Class of Service operation of C-1 Class of Service, configuration of 10-8 community names, SNMP 10-3 Configuring and monitoring the switch assigning the IP address 10-3 checking the network configuration status 10-3 common tasks involved in 10-1 configuration of port operation 10-9 configuration
requirements for access 1-3 terminal setup for 2-1 using Telnet to access 2-4 Local Management screen hierarchy flow chart of 3-2 Local Management screens accessing Password screen of 3-1 hierarchy of 3-1 typical layout of 3-1 N Navigating screens 3-1 network configuration status checking the 10-3 Network management in-band 1-2 out-of-band 1-2 P M MAC address table, configuration of 10-10 Main Menu screen description of 4-1 management SNMP access 10-3 Management agent 1-2 Management Terminal COM port conn
IP Connectivity Test 6-6 IP Trap Managers 6-13 Main Menu 4-2 Main Menu, purpose of 4-1 Management Setup Menu 6-1 Management Setup Menu, purpose of 6-1 navigation of 3-1 Network Configuration 6-3 Network Monitor Menu, description of 8-1 Serial Port Configuration 6-8 SNMP Communities 6-12 SNMP Configuration Menu 6-10 Startup Configuration 6-15 System Information 5-2 System Information Menu 5-1 System Information Menu, purpose of 5-1 System Restart Menu 9-1 typical layout of 3-1 Serial port download 10-5 downl