User Manual

ManualsBrandsNETGEAR ManualsComputers & Accessories8-Port Gigabit Ethernet High-Power PoE+ Smart Switch with 2 Dedicated SFP Ports (190W)

Table Of Contents

NETGEAR, Inc.

350 East Plumeria Drive

San Jose, CA 95134, USA

August 2019

202-11733-03

User Manual

8-Port or 16-Port Gigabit

Smart Managed Pro Switch

with PoE+ and 2 SFP Ports

Models

GS418TPP

GS510TLP

GS510TPP

Summary of content (480 pages)

PAGE 1
User Manual 8-Port or 16-Port Gigabit Smart Managed Pro Switch with PoE+ and 2 SFP Ports Model s G S 4 1 8TP P G S 5 1 0TLP G S 5 1 0TP P August 2019 202-11733-03 NETGEAR, Inc.
PAGE 2
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Support Thank you for purchasing this NETGEAR product. You can visit https://www.netgear.com/support/ to register your product, get help, access the latest downloads and user manuals, and join our community. We recommend that you use only official NETGEAR support resources Compliance and Conformity For regulatory compliance information including the EU Declaration of Conformity, visit https://www.netgear.
PAGE 3
Contents Chapter 1 Get Started Available publications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12 Switch management and discovery overview. . . . . . . . . . . . . . . . . . . . . . . .13 Change the default IP address of the switch . . . . . . . . . . . . . . . . . . . . . . . . . 13 Discover or change the switch IP address . . . . . . . . . . . . . . . . . . . . . . . . . . . 14 Discover a switch in a network with a DHCP server. . . . . . . . . . . . . . . .
PAGE 4
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP local browser interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .44 Configure the IPv6 network settings for the local browser interface . .46 View the IPv6 network neighbor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .48 Configure the time settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 5
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Specify the settings for an absolute PoE Timer schedule . . . . . . . . . . Specify the settings for a recurring PoE timer schedule . . . . . . . . . . . Change the settings for a recurring PoE timer schedule entry . . . . . Delete a PoE timer schedule entry . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Delete a PoE timer schedule . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 6
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Modify IGMP snooping settings for a VLAN . . . . . . . . . . . . . . . . . . . . . 188 Disable IGMP snooping on a VLAN and remove it from the table . . 188 Configure one or more IGMP multicast router interfaces. . . . . . . . . . 189 Configure an IGMP multicast router VLAN . . . . . . . . . . . . . . . . . . . . . . 190 IGMP snooping querier overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 7
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Create a routing interface with the VLAN Static Routing Wizard . . . . 241 Manage a VLAN routing interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 243 Delete a VLAN routing interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 244 Configure router discovery for a VLAN routing interface . . . . . . . . . . 244 Manage routes and view the routing table. . . . . . . . . . . . . . . . .
PAGE 8
-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure an HTTPS authentication list . . . . . . . . . . . . . . . . . . . . . . . . . 304 Configure the dot1x authentication list . . . . . . . . . . . . . . . . . . . . . . . . . 305 Manage the Smart Control Center Utility . . . . . . . . . . . . . . . . . . . . . . . . . . .306 Configure management access. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 308 Configure HTTP access settings . . . .
PAGE 9
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure and view the logs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .407 Manage and view the memory log. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 407 Message log format . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 409 Manage and view the flash log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 10
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 802.1X access control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .458 802.1X example configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 460 Multiple Spanning Tree Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .461 MSTP example configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 11
1 1 Get Started This user manual describes how you can configure and operate the following NETGEAR Gigabit Smart Managed Pro Switches by using the local browser–based management interface: • GS418TPP. NETGEAR Easy-Mount 16-Port Gigabit High Power PoE+ Smart Managed Pro Switch with 2 SFP Ports (240W) • GS510TLP. NETGEAR 8-Port Gigabit PoE+ Smart Managed Pro Switch with 2 SFP Ports (75W) • GS510TPP.
PAGE 12
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Note: In this manual, we refer to all switch models as the switch. Unless noted otherwise, all information applies to all switch models. We refer to the local browser–based management interface as the local browser interface. Note: For more information about the topics covered in this manual, visit the support website at netgear.com/support.
PAGE 13
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Switch management and discovery overview The switch provides administrative management options that let you configure, monitor, and control the network. Using the local browser interface, you can configure the switch and the network, including the ports, the management VLAN, VLANs for traffic control, link aggregation for increased bandwidth, quality of service (QoS) for prioritizing traffic, and network security.
PAGE 14
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP automatically assigned network information. For more information, see Discover or change the switch IP address on page 14. • Static assignment through the Smart Control Center. If you connect the switch to a network that does not include a DHCP server, you can use the Smart Control Center to assign a static IP address, subnet mask, and default gateway.
PAGE 15
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Make a note of the displayed IP address assigned by the DHCP server. You can use this address later to access the switch directly from a web browser (that is, without using the Smart Control Center). 7. Select your switch by clicking the line that displays the switch. 8. Click the Web Browser Access button. The Smart Control Center launches a browser that displays the login page of the selected device.
PAGE 16
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Note: For more information about the SCC program, see the SCC user manual, which you can download by visiting netgear.com/support/download/. To assign a static IP address: 1. Connect the switch to your existing network. 2. Power on the switch by connecting its power cord. 3. Install the Smart Control Center on your computer. 4. Start the Smart Control Center. 5.
PAGE 17
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Tip: You must enter the current password each time that you use the Smart Control Center to update the switch settings. The default password is password. 10. Click the Apply button. Your settings are saved.
PAGE 18
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. From the Choose a connection menu, select the network connection that allows the Switch Discovery Tool to access the switch. 9. Click the Start Searching button. The Switch Discovery Tool displays a list of Smart Managed Plus Switches that it discovers on the selected network. For each switch, the tool displays the IP address. 10. To access the local browser interface of the switch, click the ADMIN PAGE button.
PAGE 19
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. Do one of the following: • Scan the QR code. • Scan the serial number bar code, and tap Go. • Type the serial number, and tap Go. 9. Follow the onscreen instructions to add your switch to a network location. The switch is registered and added to your account.
PAGE 20
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you did not disable the DHCP client and assigned a static IP address to the switch, enter 192.168.0.239. The login window opens. 6. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 7. Select System > Management > IP Configuration. The IP Configuration page displays. 8. Select the Static IP Address radio button. 9.
PAGE 21
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Supported web browsers The following web browsers were tested and support the local browser interface. Later web browser versions might function fine but were not tested. The supported web browsers include the following: • Microsoft Internet Explorer (IE) versions 10 and 11 • Microsoft Edge • Mozilla Firefox versions 40 and 46.0.1 • Chrome version 45 • Safari on Windows OS versions 5.1 and 6.
PAGE 22
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. If the browser does not display the login window, do the following: • If you use a wired Ethernet connection, make sure that the computer is connected to the same network that the switch is attached to or directly to one of the LAN Ethernet ports of the switch.
PAGE 23
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The configuration pages for each feature are available as submenu links in the page menu on the left side of the page. Some items in the menu expand to reveal multiple submenu links, as the following figure shows. Link Submenu links Configuration and status options The area directly under the configuration menus and to the right of the links displays the configuration information or status for the page you select.
PAGE 24
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 1. Local browser interface buttons (continued) Button Function Update Clicking the Update button refreshes the page with the latest information from the device. Logout Clicking the Logout button ends the session. User-defined fields User-defined fields can contain 1 to 159 characters, unless otherwise noted on the configuration web page.
PAGE 25
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The System Information page displays. 5. At the top of the page, select a language from the language menu. A confirmation pop-up window opens. 6. Click the OK button to confirm. The switch restarts and you must log in again. The language of the local browser interface is now set to the language that you selected.
PAGE 26
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Depending upon the status of the port, the port color in Device View is either red, green, or black. • Green indicates that the port is linking up. • Red indicates that an error occurred on the port or that the port is administratively disabled. • Black indicates that no link is present. Each port also provides two LEDs in Device View to indicate the link status of the port.
PAGE 27
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Power LED The Power LED is a bicolor LED that serves as an indicator of power. For the Device View, the only option is solid green, which indicates that power is supplied to the switch and operating normally. Fan LED The Fan LED indicates the following status: • Solid yellow. The fan is faulty. • Off. The fan is operating normally. Interface naming conventions The switch supports physical and logical interfaces.
PAGE 28
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • A single LAG • Multiple LAGs • All LAGs • Multiple ports and LAGs • All ports and LAGs Many of the pages that allow you to configure or view interface settings include links to display all ports, all LAGs, or all ports and LAGs on the page. Use these links as follows: • To display all ports, click the 1 link. • To display all LAGs, click the LAGS link.
PAGE 29
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP To configure a single LAG by using the Go To Interface field: 1. Click the LAGS link or the All link to display the LAGs. 2. In the Go To Interface field, type the LAG number, for example l3. For information, see Interface naming conventions on page 27. 3. Click the Go button.
PAGE 30
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. Configure the desired settings. 4. Click the Apply button. Your settings are saved. To configure multiple LAGs: 1. Click the LAGS link or the All link to display the LAGs. 2. Select the check box next to each LAG to configure. The check box associated with each interface is selected, and the row for each selected interface is highlighted. 3. Configure the desired settings. 4. Click the Apply button.
PAGE 31
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP To configure all LAGs: 1. Click the LAGS link to display only the LAG interfaces. 2. Select the check box in the heading row. The check box associated with every LAG is selected, and the rows for all LAGs are highlighted. 3. Configure the desired settings. 4. Click the Apply button. Your settings are saved. To configure multiple ports and LAGs: 1. Click the All link to display all ports and LAGs. 2.
PAGE 32
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP To access the support website from the local browser interface: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 33
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The User Guide page displays. 6. To access the NETGEAR download center, click the Apply button. 7. Enter the model number of the switch. 8. Locate the user manual on the product support web page. Register your product To qualify for product updates and product warranty, we encourage you to register your product. The first time you log in to the switch, you can register with NETGEAR.
PAGE 34
2 2 Configure System Information This chapter covers the following topics: • View or define system information • Configure the IP network settings for management access • Configure the time settings • Configure denial of service settings • Configure the DNS settings • Configure green Ethernet settings • Use the Device View • Configure Power over Ethernet • Configure SNMP • Configure LLDP • Configure a DHCP L2 relay, DHCP snooping, and dynamic ARP inspection • Set up PoE timer schedul
PAGE 35
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View or define system information When you log in, the System Information page displays. Use this page to configure and view general device information. To view or define system information: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2.
PAGE 36
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the status information that the System Information page displays. Table 4. System Information Field Description Product Name The product name of this switch. Serial Number The serial number of the switch. System Object OID The base object ID for the switch's enterprise MIB. Date & Time The current date and time.
PAGE 37
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The System Information page displays. 5. Scroll down to the Temperature Sensors section. 6. To refresh the page, click the Update button. The following table describes the nonconfigurable Temperature Sensors information. Table 5. Temperature Sensors information Field Description Sensor The temperature sensor for the given unit. Description The description of the temperature sensor.
PAGE 38
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The System Information page displays. 5. Scroll down to the Fans section. 6. To refresh the page, click the Update button. The following table describes the nonconfigurable fan status information. Table 6. Fan status Field Description FAN The fan index used to identify the fan for the switch. Description The description of the temperature sensor. Type Specifies whether the fan module is fixed or removable.
PAGE 39
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. To refresh the page, click the Update button. The following table describes the nonconfigurable Power supplies information. Table 7. Power supplies status Field Description Power supply The power supply index used for the unit. Description The description of the power supply. Type Specifies whether the power module is fixed or removable. State Specifies the state of the power module.
PAGE 40
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the nonconfigurable information displayed in the Versions section of the System Information page. Table 8. Versions information Field Description Model Name The model name of the switch. Boot Version The version of the bootloader software of the switch. Software Version The version number of the code currently running on the switch.
PAGE 41
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The CPU Utilization section shows the memory information, task-related information, and percentage of CPU utilization per task. The following table describes CPU Memory Status information. Table 9. CPU Memory Status information Field Description Total System Memory The total memory of the switch in KBytes. Available Memory The available memory space for the switch in KBytes.
PAGE 42
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > Management > System CPU Status > CPU Threshold. 6. Specify the thresholds: • Rising Threshold. Notification is generated when the total CPU utilization exceeds this threshold value over the configured time period. The range is 1 to 100.
PAGE 43
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP You can display the USB device status, memory statistics, and directory details. The limitations for the USB device supported on the switch are as follows: • The USB disk must comply with the USB 2.0 standard. • The USB disk must be file type FAT32 or VFAT. File type NTFS is not supported. To display the USB device information: 1. Connect your computer to the same network as the switch.
PAGE 44
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the USB Memory Statistics information. Table 10. USB Memory Statistics information Field Description Total Size The USB flash device storage size in bytes. Bytes Used The size of memory used on the USB flash device. Bytes Free The size of memory free on the USB flash device. The following table describes the USB Directory Details information. Table 11.
PAGE 45
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > Management > IP Configuration. The IP Configuration page displays. 6.
PAGE 46
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Note: Make sure that the VLAN that must be the management VLAN exists. Also make sure that the PVID of at least one port in the VLAN is the same as the management VLAN ID. For information about creating VLANs and configuring the PVID for a port, see Configure VLANs on page 139. The following requirements apply to the management VLAN: • Only one management VLAN can be active at a time.
PAGE 47
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select System > Management > IPv6 Network Configuration. The IPv6 Network Global Configuration page displays. 6. Ensure that the Admin Mode Enable radio button is selected. 7. Determine how the switch acquires an IPv6 address: • IPv6 Address Auto Configuration Mode.
PAGE 48
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View the IPv6 network neighbor You can view information about the IPv6 neighbors that the switch discovered through the network interface by using the Neighbor Discovery Protocol (NDP). To view the IPv6 Network Neighbor Table: 1. Connect your computer to the same network as the switch.
PAGE 49
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 12. IPv6 network interface neighbor table information (continued) Field Description Neighbor State The state of the neighboring switch: • reachable (1). The neighbor is reachable by this switch. • stale (2). Information about the neighbor is scheduled for deletion. • delay (3). No information was received from the neighbor during the delay period. • probe (4).
PAGE 50
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select the Clock Source Local radio button. 7. In the Date field, specify the current date in months, days, and years (MM/DD/YYYY). 8. In the Time field, specify the current time in hours, minutes, and seconds (HH:MM:SS). Note: If you do not enter a date and time, the switch calculates the date and time using the CPU’s clock cycle. 9. Click the Apply button. Your settings are saved.
PAGE 51
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default is SNTP. The local clock can be set to SNTP only if the following two conditions are met: • The SNTP server is configured. • The SNTP last attempt status is successful. 7. Next to Client Mode, select the mode of operation of the SNTP client: • Disable. SNTP is not operational. No SNTP requests are sent from the client nor are any incoming SNTP messages processed. • Unicast.
PAGE 52
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Note: When using SNTP/NTP time servers to update the switch’s clock, the time data received from the server is based on the UTC, which is the same as Greenwich Mean Time (GMT). This might not be the time zone in which the switch is located. 15. In the Offset Hours field, specify the number of hours that the time zone is different from UTC. See the description for Time Zone Name in Step 14 for more information.
PAGE 53
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select a Client mode radio button to specify the mode of operation of the SNTP client: • Disable. SNTP is not operational. No SNTP requests are sent from the client and no received SNTP messages are processed. • Unicast. SNTP operates in a point-to-point fashion.
PAGE 54
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The allowed range is 1 to 30. The default value is 5. 11. In the Unicast Poll Retry field, specify the number of times to retry a unicast poll request to an SNTP server after the first time-out before the switch attempts to use the next configured server. The allowed range is 0 to 10. The default value is 1. 12. In the Time Zone Name field, specify a time zone.
PAGE 55
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > Management > Time > Time Configuration > SNTP Global Status. When you select the SNTP option as the clock source, the SNTP Global Status is displayed below the SNTP Global Configuration section. 6.
PAGE 56
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 13. SNTP Global Status information (continued) Field Description Last Attempt Status The status of the last SNTP request or unsolicited message for both unicast and broadcast modes. If no message was received from a server, a status of Other is displayed. These values are appropriate for all operational modes. • Other. The status of the last request is unknown. • Success.
PAGE 57
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following is an example of strata: • Stratum 0. A real-time clock is used as the time source, for example, a GPS system. • Stratum 1. A server that is directly linked to a Stratum 0 time source is used. Stratum 1 time servers provide primary network time standards. • Stratum 2. The time source is distanced from the Stratum 1 server over a network path.
PAGE 58
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select System > Management > Time > SNTP Server Configuration. 6. From the Server Type menu, select the type of SNTP address to enter in the address field. The address can be either an IP address (IPv4, IPv6) or a host name (DNS). The default value is IPv4. 7. In the Address field, specify the IP address or the host name of the SNTP server.
PAGE 59
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The SNTP Server Status table displays status information about the SNTP servers configured on your switch. The following table describes the SNTP Server Global Status information. Table 14. SNTP Server Status information Field Description Address All the existing server addresses. If no server configuration exists, a message stating that no SNTP server exists displays on the page.
PAGE 60
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select System > Management > Time > SNTP Server Configuration. The SNTP Server Configuration page displays. 6. Select the check box next to the configured server. 7. Specify new values in the available fields. 8. Click the Apply button. Your settings are saved. Remove an SNTP server To remove an SNTP server: 1.
PAGE 61
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP To configure the daylight saving time settings: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 62
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Your settings are saved. The fields in the following tables are visible only when the DayLight Saving (DST) Recurring, Recurring EU, or Recurring USA radio button is selected. Table 15. Daylight saving setting is Recurring, Recurring EU, or Recurring USA Field Description Begins At These fields are used to configure the start values of the date and time. • Week. Configure the start week. • Day.
PAGE 63
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 16. Daylight saving setting is Non Recurring (continued) Field Description Offset Specify the number of minutes to shift the summer time from the standard time. The valid range is 1–1440 minutes. Zone Specify the acronym associated with the time zone when summer time is in effect. This field is not validated against an official list of time zone acronyms.
PAGE 64
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. To refresh the page, click the Update button. The following table displays the nonconfigurable daylight saving status information. Table 17. Daylight Saving (DST) Status information Field Description Daylight Saving (DST) The Daylight Saving value, which is one of the following: • Disable • Recurring • Recurring EU • Recurring USA • Non Recurring Begins At The start date of daylight saving time.
PAGE 65
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > Management > Denial of Service > Auto-DoS Configuration. The Auto-DoS Configuration page displays. 6.
PAGE 66
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select the types of DoS attacks for the switch to monitor and block and configure any associated values: • Denial of Service Min TCP Header Size. Specify the minimum TCP header size allowed. If DoS TCP Fragment is enabled, the switch drops packets with a TCP header smaller than the configured value. • Denial of Service ICMPv4.
PAGE 67
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Denial of Service TCP FIN&URG&PSH. Enabling TCP FIN & URG & PSH DoS prevention causes the switch to drop packets with TCP Flags FIN, URG, and PSH set and TCP sequence number equal to 0. • Denial of Service TCP Flag&Sequence. Enabling TCP Flag DoS prevention causes the switch to drop packets with TCP control flags set to 0 and TCP sequence number set to 0. • Denial of Service TCP Fragment.
PAGE 68
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > Management > DNS > DNS Configuration. 6. Select the Disable or Enable radio button to specify whether to disable or enable the administrative status of the DNS client. • Enable.
PAGE 69
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table displays DNS Server Configuration information. Table 18. DNS Server Configuration information Field Description ID The identification of the DNS Server. Preference Shows the preference of the DNS server. The preferences are determined by the order in which they were entered.
PAGE 70
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. Click the Add button. The entry displays in the list on the page. Remove an entry from the dynamic host mapping table To remove an entry from the dynamic host mapping table: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser.
PAGE 71
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The System Information page displays. 5. Select System > Management > DNS > Host Configuration. The DNS Host Configuration page display. 6. Select the check box next to the entry to update. 7. Enter the new information in the appropriate field. 8. Click the Apply button. Your settings are saved. 9. To clear all the dynamic host name entries from the list, click the Clear button.
PAGE 72
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > Management > Green Ethernet > Green Ethernet Configuration. 6. Select the Auto Power Down Mode Disable or Enable radio button. By default, this mode is disabled.
PAGE 73
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > Management > Green Ethernet > Green Ethernet Interface Configuration. 6.
PAGE 74
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > Management > Green Ethernet > Green Ethernet Details. 6.
PAGE 75
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 11. To refresh the page, click the Update button. 12. To clear the configuration, resetting all statistics for the selected interface to default values, click the Clear button. The following table describes the nonconfigurable fields. Table 20.
PAGE 76
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View green Ethernet remote device details To view green Ethernet remote device information: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 77
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 21. Green Ethernet Remote Device Information (continued) Field Description Remote Tw_sys_rx Echo (uSec) Integer that indicates the value of Receive Tw_sys echoed back by the remote system. Remote Fallback Tw_sys (uSec) Integer that indicates the value of fallback Tw_sys that the remote system is advertising.
PAGE 78
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. To refresh the page, click the Update button. The following table describes the nonconfigurable fields. Table 22. Green Ethernet Statistics Summary information Field Description Current Power Consumption (mW) Estimated power consumption by all ports of the switch in mWatts. Percentage Power Saving (%) Estimated percentage of power saved on all ports of the switch if the green modes are enabled.
PAGE 79
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 22. Green Ethernet Statistics Summary information (continued) Field Description Energy Detect Operational Status Current operational status of the Energy Detect mode. EEE Admin mode Enable or disable Energy Efficient Ethernet mode on the port. With EEE mode enabled, the port transitions to low power mode during link idle conditions.
PAGE 80
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. In the Max Samples to keep field, enter the maximum number of samples to keep. This is a global setting and is applied to all interfaces. The range is 1 to 168.The default value is 168. 9. Click the Apply button. Your settings are saved. The Percentage LPI time field shows the time spent in LPI mode the since EEE counters were last cleared. The following table describes the nonconfigurable fields. Table 23.
PAGE 81
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > PoE > Basic > PoE Configuration. 6.
PAGE 82
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 24. PoE Configuration fields (continued) Field Description Threshold Power Watts If the consumed power is below the threshold power, the switch can power up another port. The consumed power can be between the nominal and threshold power. The threshold power is displayed in watts. Note: The threshold power value is determined by the value that you enter in the System Usage Threshold field.
PAGE 83
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. From the Port Power menu, select the administrative PoE mode of the port: • Enable. The port’s capacity to deliver power is enabled. This is the default setting. • Disable. The port’s capacity to deliver power is disabled. 8. From the Port Priority menu, select the priority for the port in relation to other ports if the total power that the switch is capable of delivering exceeds the total power budget: • Low.
PAGE 84
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The range is 3,000–30,000 mW. The default is 30,000 mW. 12. From the Detection Type menu, select how the port detects the attached PD: • IEEE 802. The port performs a 4-point resistive detection. This is the default setting. • 4pt 802.3af + Legacy. The port performs a 4-point resistive detection, and if required, continues with legacy detection. • Legacy. The port performs legacy detection. 13.
PAGE 85
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 25. PoE Port Configuration (continued) Field Description Fault Status The error description when the PoE port is in a fault state. The possible values are as follows: • No Error. The port is not in any error state and can provide power. • MPS Absent. The port detected the absence of the main power supply, preventing the port from providing power. • Short.
PAGE 86
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > SNMP > SNMP V1/V2 > Community Configuration. 6. In the Management Station IP field, specify the IP address of the management station. 7.
PAGE 87
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > SNMP > SNMP V1/V2 > Community Configuration.
PAGE 88
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure SNMPv1 and SNMPv2 trap settings You can configure settings for each SNMPv1 or SNMPv2 management host that must receive notifications about traps generated by the device. The SNMP management host is also known as the SNMP trap receiver. Add an SNMP trap receiver To add an SNMP trap receiver: 1. Connect your computer to the same network as the switch.
PAGE 89
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Modify information about an existing SNMP recipient To modify information about an existing SNMP recipient: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 90
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The Trap Configuration page displays. 6. Select the check box next to the recipient to remove. 7. Click the Delete button. The trap recipient is removed. Configure SNMPv1 and SNMPv2 trap flags You can enable or disable traps that the switch can send to an SNMP manager.
PAGE 91
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Link Up/Down. When enabled, SNMP traps are sent when the administrative or operational state of a physical or logical link changes. The default is Enable. • Spanning Tree. When enabled, SNMP traps are sent when various spanning tree events occur. The default is Enable. • ACL. When enabled, SNMP traps are sent when a packet matches a configured ACL rule that includes ACL logging. The default is Disable. 7.
PAGE 92
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the SNMP Supported MIBs Status fields. Table 26. SNMP supported MIBs Field Description Name The RFC number if applicable and the name of the MIB. Description The RFC title or MIB description. Configure SNMPv3 users Any user can connect to the switch using the SNMPv3 protocol, but for authentication and encryption, the switch supports only one user (admin).
PAGE 93
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. To enable encryption: a. Select the Encryption Protocol DES radio button to encrypt SNMPv3 packets using the DES encryption protocol. b. In the Encryption Key field, enter an encryption code of eight or more alphanumeric characters. 8. Click the Apply button. Your settings are saved. Configure LLDP The IEEE 802.
PAGE 94
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > LLDP > Basic > LLDP Configuration. 6.
PAGE 95
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure the LLDP port settings You can specify per-interface LLDP settings. To configure the LLDP interface: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 96
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP - Disabled. Do not transmit or receive LLDP PDUs on the selected ports. The default is Tx and Rx. • Management IP Address. Choose whether to advertise the management IP address from the interface. The possible field values are as follows: - Stop Advertise. Do not advertise the management IP address from the interface. - Auto Advertise. Advertise the current IP address of the device as the management IP address.
PAGE 97
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The LLDP-MED Network Policy page displays. 6. From the Interface menu, select the interface for which you want to view the information. Note: The menu includes only the interfaces on which LLDP is enabled. If no interfaces are enabled for LLDP, the Interface menu does not display. The page refreshes and displays the data transmitted in the network policy TLVs for the interface.
PAGE 98
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > LLDP > Advanced > LLDP-MED Port Settings. The LLDP-MED Port Settings page displays. 6. From the Port menu, select the port to configure. 7.
PAGE 99
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > Advanced > LLDP > Local Information. The page includes only the interfaces on which LLDP is enabled. The following table describes the LLDP device information and port summary information.
PAGE 100
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the detailed local information that displays for the selected port. Field Description Managed Address Address SubType The type of address the local browser interface uses, such as an IPv4 address. Address The address used to manage the device. Interface SubType The port subtype. Interface Number The number that identifies the port.
PAGE 101
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View the LLDP-MED neighbor device information You can view the data that a specified interface received from other LLDP-enabled systems. To view LLDP information received from a neighbor device: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2.
PAGE 102
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Field Description Chassis ID The remote 802 LAN device’s chassis. Port ID Subtype The type of data displayed in the remote system’s Port ID field. Port ID The physical address of the port on the remote system from which the data was sent. System Name The system name associated with the remote device. If the field is blank, the name might not be configured on the remote system. 6.
PAGE 103
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Field Description MAC/PHY Details Auto-Negotiation Supported Specifies whether the remote device supports port-speed autonegotiation. The possible values are True or False. Auto-Negotiation Enabled The port speed autonegotiation support status. The possible values are True and False. Auto Negotiation Advertised The port speed autonegotiation capabilities.
PAGE 104
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Field Description Network Policies Application Type The media application type associated with the policy advertised by the remote device. VLAN ID The VLAN ID associated with the policy. VLAN Type Specifies whether the VLAN associated with the policy is tagged or untagged. User Priority The priority associated with the policy. DSCP The DSCP associated with a particular policy type.
PAGE 105
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Enable the DHCP L2 relay mode You can enable the DHCP L2 relay mode. To enable the DHCP L2 relay mode: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 106
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure DHCP L2 relay interface settings You can view and configure the DHCP L2 relay interface. To configure DHCP L2 relay interface settings: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 107
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 9. Click the Apply button. Your settings are saved. View the DHCP L2 relay interface statistics You can view information about the DHCP L2 relay interface. To view DHCP L2 relay interface statistics: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2.
PAGE 108
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Field Description Trusted Server Messages The number of DHCP message without option82 received from a trusted server. Without Opt82 Trusted Client Messages Without Opt82 The number of DHCP message without option82 received from a trusted client. 6. Click the Update button to refresh the page with the latest information about the switch. 7. Click the Clear button to reset the statistics.
PAGE 109
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select the DHCP Snooping Mode Enable radio button. 7. To enable the verification of the sender’s MAC address for DHCP snooping, select the MAC Address Validation Enable radio button. When MAC address validation is enabled, the device checks packets that are received on an untrusted interface to verify that the MAC address and the DHCP client hardware address match.
PAGE 110
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure DHCP snooping interface settings You can view and configure each port as a trusted or untrusted port. Any DHCP responses received on a trusted port are forwarded. If a port is configured as untrusted, any DHCP (or BootP) responses received on that port are discarded. To configure DHCP snooping interface settings: 1. Connect your computer to the same network as the switch.
PAGE 111
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • - DHCPRELEASE and DHCPDECLINE messages are dropped if the MAC address is in the snooping database but the binding’s interface is other than the interface where the message was received. - DHCP packets are dropped when the source MAC address does not match the client hardware address if MAC address validation is globally enabled. Enabled.
PAGE 112
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. From the Interface menu, select the interface on which the DHCP client is authorized. 7. In the MAC Address field, specify the MAC address for the binding to be added. This is the key to the binding database. 8. From the VLAN ID menu, select the ID of the VLAN the client is authorized to use. 9. In the IP Address field, specify the IP address of the client. 10. Click the Add button.
PAGE 113
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5.
PAGE 114
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View and clear the DHCP snooping statistics You can view and clear per-interface statistics about the DHCP messages filtered by the DHCP snooping feature on untrusted interfaces. To view and clear the DHCP snooping statistics: 1. Connect your computer to the same network as the switch.
PAGE 115
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the DHCP snooping statistics. Table 29. DHCP Snooping Statistics information Field Description Interface The interface associated with the rest of the data in the row. MAC Verify Failures The number of DHCP messages that were dropped because the source MAC address and client hardware address did not match. MAC address verification is performed only if it is globally enabled.
PAGE 116
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The valid IP check is applied only on the sender IP address in ARP packets. In ARP response packets, the check is applied only on the target IP address. To configure the optional DAI features: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2.
PAGE 117
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP This example assumes that VLAN 1 and LAG 1 are already configured. To enable dynamic ARP Inspection for VLAN1: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 118
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP A VLAN can be configured to use this ARP ACL containing rules as the filter for ARP packet validation. The name can be 1 to 31 alphanumeric characters. The ARP ACL name is deleted if you specify N/A. 10. From the Static Flag menu, select whether ARP packets need validation by using the DHCP snooping database if the ARP ACL rules do not match: • Select Enable to enable validation of ARP packets by ARP ACL rules only.
PAGE 119
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. Next to l1, select the check box. 8. From the Trust Mode menu, select Enable to indicate that the interface is trusted. The Trust Mode field indicates whether the interface is trusted for dynamic ARP inspection purposes. All interfaces are untrusted by default. 9. In the Rate Limit (pps) field, specify the rate limit value for dynamic ARP inspection purposes.
PAGE 120
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure a dynamic ARP inspection ACL DAI relies on the information in the DHCP snooping bindings database to validate ARP packets. For networks that use static IP addresses and do not use DHCP, DAI access control lists (ACLs) can be used to statically map an IP address to a MAC address on a VLAN. When hosts use static IP addresses, the DHCP snooping feature cannot build a bindings database.
PAGE 121
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. Click the ACL name. The ACL name is a hyperlink to the Dynamic ARP Inspection ACL Rule Configuration page. 9. From the ACL Name menu, select the DAI ACL to configure. 10. In the Source IP Address field, specify the IP address of a host. 11. In the Source MAC Address field, specify the MAC address of the host that is statically mapped to the IP address specified in the Source IP Address field. 12.
PAGE 122
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 15. Next to VLAN 1, select the check box. 16. In the ARP ACL Name field, specify the name of the DAI ACL to associate with the VLAN. For example, enter arpACL. 17. Click the Apply button. Your settings are saved. View dynamic ARP inspection statistics for a VLAN To view DAI statistics per VLAN: 1. Connect your computer to the same network as the switch.
PAGE 123
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the nonconfigurable DAI statistics information that is displayed. Field Description VLAN The enabled VLAN ID for which statistics are displayed. DHCP Drops The number of ARP packets that were dropped by DAI because no matching DHCP snooping binding entry was found.
PAGE 124
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Create a PoE timer schedule The maximum number of timer schedules that you can add is 100. To create a PoE timer schedule: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 125
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System> Timer Schedule > Advanced > Timer Schedule Configuration. The Timer Schedule Configuration page displays. 6. In the Timer Schedule Selection section, make your selections from the following menus: a. Timer Schedule Name.
PAGE 126
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP To specify the settings for a PoE timer schedule that uses a recurring pattern: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 127
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP e. From the Recurrence Pattern menu, select the pattern: • Daily. The timer schedule works with daily recurrence. The fields adjust. Either select the Every Weekday radio button to let the schedule operate from Monday through Friday or select the Every Day(s) radio button and enter a number from 0 to 255 in the field. In the latter case, the schedule is triggered every specified number of days.
PAGE 128
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select System > Timer Schedule > Advanced > Timer Schedule Configuration. The Timer Schedule Configuration page displays. 6. From the Timer Schedule Name menu, select the schedule name. 7. From the Timer Schedule Type menu, select the schedule type. 8.
PAGE 129
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 9. Click the Delete button. The entry is deleted. Delete a PoE timer schedule You can delete a PoE timer schedule that you no longer need. All entries that are part of the PoE timer schedule are also deleted. To delete a PoE timer schedule: 1. Connect your computer to the same network as the switch.
PAGE 130
3 3 Configure Switching This chapter covers the following topics: • Configure the port settings • Configure link aggregation groups • Configure VLANs • Configure a voice VLAN • Configure Auto-VoIP • Configure Spanning Tree Protocol • Configure multicast • Manage IGMP snooping • Manage MLD snooping • Configure multicast VLAN registration • View, search, and manage the MAC address table • Configure Layer 2 loop protection 130
PAGE 131
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure the port settings You can view, configure, and monitor the physical port information for the ports (that is, the physical interfaces) on the switch. To configure the port settings: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2.
PAGE 132
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The string can be up to 64 characters in length. 9. From the Admin Mode menu, select Enable or Disable. This sets the port control administrative mode. You must select Enable in order for the port to participate in the network. The default is Enable. 10. From the Auto-negotiation menu, select Enable or Disable. This specifies the autonegotiation mode for this port. The default is Enable.
PAGE 133
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The range is 1500 to 9198. The default maximum frame size is 1500. 15. From the Flow Control menu, select the configuration for IEEE 802.3 flow control. • Disable. If the port buffers become full, the switch does not send pause frames, and data loss could occur. This is the default setting. • Symmetric. If the port buffers become full, the switch sends pause frames to stop traffic.
PAGE 134
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure link aggregation groups Link aggregation groups (LAGs), which are also known as port channels, allow you to combine multiple full-duplex Ethernet links into a single logical link. Network devices treat the aggregation as if it were a single link, which increases fault tolerance and provides load sharing. You assign the LAG VLAN membership after you create a LAG.
PAGE 135
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. In the LAG Name field, enter a name for the LAG. You can enter any string of up to 15 alphanumeric characters. A valid name must be specified for you to create the LAG. 7. In the Description field, enter the description string to be attached to a LAG. The description can be up to 64 characters in length. 8. From the Admin Mode menu, select Enable or Disable.
PAGE 136
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 12. From the LAG Type menu, select Static or LACP: • Static. Disables Link Aggregation Control Protocol (LACP) on the selected LAG. The LAG is configured manually. The default is Static. • LACP. Disables LACP on the selected LA. The LAG is configured automatically. 13. Click the Apply button. Your settings are saved. The following table describes the nonconfigurable information displayed on the page. Table 31.
PAGE 137
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. From the LAG ID menu, select the LAG ID. 7. In the LAG Name field, enter the name to be assigned to the LAG. You can enter any string of up to 15 alphanumeric characters. A valid name must be specified for you to create the LAG. 8. In the Ports table, click each port that you want to include as a member of the selected LAG. A selected port is displayed by a check mark. 9. Click the Apply button.
PAGE 138
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. In the LACP System Priority field, specify the device’s link aggregation priority relative to the devices at the other ends of the links on which link aggregation is enabled. A higher value indicates a lower priority. You can change the value of the setting globally by specifying a priority from 1 to 65535. The default value is 32768. 7. Click the Apply button. Your settings are saved.
PAGE 139
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select one or more interfaces by taking one of the following actions: • To configure a single interface, select the check box associated with the interface, or type the interface number in the Go To Interface field and click the Go button. • To configure multiple interfaces with the same settings, select the check box associated with each interface.
PAGE 140
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP packet can either reject it or insert a tag using its default VLAN ID. A given port can handle traffic for more than one VLAN, but it can support only one default VLAN ID. You can define VLAN groups stored in the VLAN membership table. The switch supports up to 256 VLANs. VLAN 1 is created by default and is the default VLAN of which all ports are members. Configure the VLAN Settings Add a VLAN To add a VLAN: 1.
PAGE 141
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP You cannot change the type of the default VLAN (VLAN ID = 1): it is always type Default. When you create a VLAN using this page, its type is always Static. A VLAN that is created by GVRP registration initially uses a type of Dynamic. When configuring a dynamic VLAN, you can change its type to Static. 9. Click the Add button. The VLAN is added to the switch. 10. Click the Apply button. Your settings are saved.
PAGE 142
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Reset a VLAN to its default settings To reset a VLAN to its default settings: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 143
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching > VLAN > Advanced > VLAN Membership. 6.
PAGE 144
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 9. In the LAG table, click each LAG once, twice, or three times to configure one of the following modes or reset the LAG to the default settings: • T (Tagged). Select the LAGs on which all frames transmitted for this VLAN are tagged. The LAGs that are selected are included in the VLAN. • U (Untagged). Select the LAGs on which all frames transmitted for this VLAN are untagged.
PAGE 145
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 5. Select Switching > VLAN > Advanced > VLAN Status. The following table describes the nonconfigurable information displayed on the page. Table 33. VLAN status Field Definition VLAN ID The VLAN identifier (VID) of the VLAN. The range of the VLAN ID is 1 to 4093. VLAN Name The name of the VLAN. VLAN ID 1 is always named Default. VLAN Type The VLAN type: • Default (VLAN ID = 1). Always present. • Static.
PAGE 146
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching> VLAN > Advanced > Port PVID Configuration. 6.
PAGE 147
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The options are VLAN only and Admit All: • VLAN only. Untagged frames or priority-tagged frames received on this port are discarded. • Admit All. Untagged frames or priority-tagged frames received on this port are accepted and assigned the value of the port VLAN ID for this port. With either option, VLAN-tagged frames are forwarded in accordance to the 802.1Q VLAN specification. 12.
PAGE 148
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP it maintains this value. Otherwise, the priority is set to zero. The assigned VLAN ID is verified against the VLAN table. If the VLAN is valid, ingress processing on the packet continues. Otherwise, the packet is dropped. This implies that the user is allowed to configure a MAC address mapping to a VLAN that was not created on the system. Add a MAC-based VLAN To add a MAC-based VLAN: 1.
PAGE 149
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching> VLAN > Advanced > MAC Based VLAN.
PAGE 150
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching> VLAN > Advanced > Protocol Based VLAN Group Configuration. 6. In the Group Name field, type a name for the new group.
PAGE 151
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure protocol-based VLAN group membership To configure protocol-based VLAN group membership: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 152
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure a voice VLAN You can configure the settings for a voice VLAN configuration. To configure a voice VLAN: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 153
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. From the Interface Mode menu, select the voice VLAN mode for selected interfaces: • Disable. This is the default value. • None. Allow the IP phone to use its own configuration to send untagged voice traffic. • VLAN ID. Configure the phone to send tagged voice traffic. • dot1p. Configure voice VLAN 802.1p priority tagging for voice traffic. When this is selected, enter the dot1p value in the Value field.
PAGE 154
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Note: It can take up to 10 seconds for the GARP configuration changes to take effect. To configure GARP switch settings: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 155
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5.
PAGE 156
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP This allows time for another station to assert registration for the same attribute to maintain uninterrupted service. Enter a number between 20 and 600 (0.2 to 6.0 seconds). The default is 60 centiseconds (0.6 seconds). An instance of this timer exists for each GARP participant for each port. 11. In the Leave All Timer field, specify how frequently (in centiseconds) LeaveAll PDUs are generated.
PAGE 157
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching > Auto-VoIP > Protocol-based > Port Settings. 6. In the Protocol Based Global Settings section, specify the following global settings: a.
PAGE 158
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP c. From the Auto VoIP Mode menu, select to enable or disable the Auto VoIP mode for the interface or interfaces. 8. Click the Apply button. Your settings are saved. Configure the Auto-VoIP OUI-based properties With Organizationally Unique Identifier (OUI)–based Auto-VoIP, voice prioritization is provided based on OUI bits. To configure the Auto-VoIP OUI-based properties: 1.
PAGE 159
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure the OUI-based port settings The port settings page allows you to configure the OUI port settings. To configure the OUI-based port settings: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 160
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Auto-VoIP is disabled by default. The Operational Status field displays the current operational status of each interface. 9. Click the Apply button. Your settings are saved. Manage the OUI table Device hardware manufacturers can include an OUI in a network adapter to help identify a hardware device. The OUI is a unique 24-bit number assigned by the IEEE registration authority.
PAGE 161
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select Switching > Auto-VoIP > OUI-based > OUI Table. 6. In the Telephony OUI(s) field, specify the VoIP OUI prefix to be added in the format AA:BB:CC. Up to 128 OUIs can be configured. 7. In the Description field, enter the description for the OUI. The maximum length of description is 32 characters.
PAGE 162
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Delete one or more OUI prefixes from the OUI table To delete one or more OUI prefixes from the OUI table: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 163
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 5. Select Switching > Auto-VoIP > Auto-VoIP Status. 6. To refresh the page with the latest information about the switch, click the Update button. The following table describes the nonconfigurable Auto-VoIP status information. Table 36. Auto-VoIP status Field Description Auto-VoIP VLAN ID The Auto-VoIP VLAN ID. Maximum Number of Voice Channels Supported The maximum number of voice channels supported.
PAGE 164
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP stations, resulting in rapid transitioning of the port to the forwarding state and the suppression of Topology Change Notification. These features are represented by the pointtopoint and edgeport parameters. MSTP is compatible with both RSTP and STP. It behaves in a way that is appropriate for STP and RSTP bridges. An MSTP bridge can be configured to behave entirely as an RSTP bridge or an STP bridge.
PAGE 165
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Configure the following options: • Spanning Tree State. Enable or disable the spanning tree operation on the switch. • STP Operation Mode. Specify the STP version for the switch. The options are STP, RSTP, and MSTP. • Configuration Name. Specify an identifier used to identify the configuration currently being used. It can be up to 32 alphanumeric characters. • Configuration Revision Level.
PAGE 166
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 37. STP configuration status (continued) Field Description CST Regional Root Priority and base MAC address of the CST regional root. CST Path Cost Path cost to the CST tree regional root. Configure the CST settings You can configure a common spanning tree (CST) and internal spanning tree on the switch. To configure the CST settings: 1. Connect your computer to the same network as the switch.
PAGE 167
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Spanning Tree (CST). The valid range is 0–61440. The bridge priority is a multiple of 4096. If you specify a priority that is not a multiple of 4096, the priority is automatically set to the next lowest priority that is a multiple of 4096. For example, if you set the priority to any value between 0 and 4095, the switch automatically sets the value to 0. The default value is 32768. • Bridge Max Age (secs).
PAGE 168
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP To configure CST port settings: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 169
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The possible values are Enable and Disable. The default value is Disable. 10. From the BPDU Forwarding menu, configure BPDU forwarding. The possible values are Enable and Disable. The default value is Disable. When BPDU forwarding is enabled, the switch forwards the BPDU traffic arriving on this port when STP is disabled on this port. 11.
PAGE 170
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View the CST port status You can display the common spanning tree (CST) and internal spanning tree for a specific port on the switch. To view the CST port status: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 171
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the CST Status information displayed on the page. Table 40. CST port status Field Description Interface Identify the physical or port channel interfaces associated with VLANs associated with the CST. Port Role Each MST bridge port that is enabled is assigned a port role for each spanning tree.
PAGE 172
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching > STP > Advanced > RSTP. The following table describes the Rapid STP Status information displayed on the page. Table 41.
PAGE 173
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Configure the MST values: • MST ID. Specify the ID of the MST to create. The valid values for this are 1 to 4094. This is visible only when the select option of the MST ID select box is selected. • Priority. The bridge priority value for the MST. When switches or bridges are running STP, each is assigned a priority. After exchanging BPDUs, the switch with the lowest priority value becomes the root bridge.
PAGE 174
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Modify an MST instance To modify an MST instance: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 175
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 5. Select Switching > STP > Advanced > MST Configuration. The MST Configuration page displays. 6. Select the check box for the instance. 7. Click the Delete button. The MST instance is removed. Configure and view the port settings for an MST instance You can configure and display the Multiple Spanning Tree (MST) settings on a specific port on the switch.
PAGE 176
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • All. Both physical interfaces and LAGs are displayed. 7. Select one or more interfaces by taking one of the following actions: • To configure a single interface, select the check box associated with the port, or type the port number in the Go To Interface field and click the Go button. • To configure multiple interfaces with the same settings, select the check box associated with each interface.
PAGE 177
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 43. MST port status information (continued) Field Description Port Forwarding State Indicates the current STP state of a port. If enabled, the port state determines what forwarding action is taken on traffic. Possible port states are as follows: • Disabled. STP is currently disabled on the port. The port forwards traffic while learning MAC addresses. • Blocking.
PAGE 178
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select Switching > STP > Advanced > STP Statistics. 6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following links above the table heading: • 1 (the unit ID of the switch). Only physical interfaces are displayed. This is the default setting. • LAG. Only LAGs are displayed. • All.
PAGE 179
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View, search, or clear the MFDB table The Multicast Forwarding Database (MFDB) holds the port membership information for all active multicast forwarding address entries. The key for an entry consists of a VLAN ID and MAC address pair. Entries can contain data for more than one protocol. To view, search, or clear the MFDB table: 1. Connect your computer to the same network as the switch.
PAGE 180
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 45. MFDB table information (continued) Field Description Component The component that is responsible for this entry in the Multicast Forwarding Database. Possible values are IGMP snooping, GMRP, Static Filtering and MLD snooping. Description The text description of this multicast table entry. Possible values are Management Configured, Network Configured, and Network Assisted.
PAGE 181
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the MFDB Statistics fields. Table 46. MFDB Statistics information Field Description Max MFDB Table Entries The maximum number of entries that the Multicast Forwarding Database table can hold. Most MFDB Entries Since Last Reset The largest number of entries that were present in the Multicast Forwarding Database table since last reset.
PAGE 182
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Manage IGMP snooping Internet Group Management Protocol (IGMP) snooping is a feature that allows a switch to forward multicast traffic intelligently on the switch. Multicast IP traffic is traffic that is destined to a host group. Host groups are identified by class D IP addresses, which range from 224.0.0.0 to 239.255.255.255.
PAGE 183
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching> Multicast > IGMP Snooping > Configuration. 6. Select the IGMP Snooping Status Enable or Disable radio button. This specifies the administrative mode for IGMP snooping for the switch. The default is Disable. 7.
PAGE 184
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure IGMP snooping for interfaces To configure IGMP snooping for interfaces: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 185
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP This specifies the interface mode for the selected interface for IGMP snooping for the switch. The default is Disable. 9. In the Host Timeout field, specify the time that the switch must wait for a report for a particular group on a particular interface before it deletes that interface from the group. Enter a value between 1 and 3600 seconds. The default is 260 seconds. 10.
PAGE 186
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The IGMP Snooping Table page displays. 6. In the Search By MAC Address field, specify the MAC address whose MFDB table entry you want to view. Enter six two-digit hexadecimal numbers separated by colons, for example 00:01:23:43:45:67. 7. Click the Go button. If the address exists, the entry is displayed. An exact match is required. The following table describes the information in the IGMP snooping table. Table 48.
PAGE 187
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 5. Select Switching> Multicast > IGMP Snooping > IGMP VLAN Configuration. 6. To enable IGMP snooping on a VLAN, in the VLAN ID field, enter the VLAN ID. 7. Configure the IGMP snooping values: • Admin Mode. Enable or disable IGMP snooping for the specified VLAN ID. The default is Disable. • Fast Leave Mode. Enable or disable the IGMP snooping fast leave mode for the specified VLAN ID. The default is Disable.
PAGE 188
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Modify IGMP snooping settings for a VLAN To modify IGMP snooping settings for a VLAN: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 189
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The System Information page displays. 5. Select Switching> Multicast > IGMP Snooping > IGMP VLAN Configuration. The IGMP Snooping VLAN Configuration page displays. 6. Select the check box next to the VLAN ID. 7. Click the Delete button. Snooping is disabled on the VLAN and the VLAN is removed from the table.
PAGE 190
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following links above the table heading: • 1 (the unit ID of the switch). Only physical interfaces are displayed. This is the default setting. • LAG. Only LAGs are displayed. • All. Both physical interfaces and LAGs are displayed. 7.
PAGE 191
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. From the Interface menu, select the interface. 7. In the VLAN ID field, enter the VLAN ID. 8. From the Multicast Router menu, select Enable or Disable. 9. Click the Apply button. Your settings are saved. IGMP snooping querier overview IGMP snooping requires that one central switch or router periodically query all end-devices on the network to announce their multicast memberships.
PAGE 192
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching> Multicast > IGMP Snooping Querier > Querier Configuration. 6. Configure the following settings: • Querier Admin Mode. Enable or disable IGMP snooping for the switch. The default is Disable. • Snooping Querier IP Address.
PAGE 193
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching> Multicast > IGMP Snooping Querier > Querier VLAN Configuration. 6. From the VLAN ID menu, select New Entry. 7.
PAGE 194
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching> Multicast > IGMP Snooping Querier > Querier VLAN Status. The following table describes the nonconfigurable information displayed on the page. Table 49.
PAGE 195
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Manage MLD snooping In IPv6 networks, Multicast Listener Discovery (MLD) snooping performs a similar function as IGMP does in IPv4 networks. With MLD snooping, IPv6 multicast data is selectively forwarded to ports that are configured to receive the data, instead of being flooded to all ports in a VLAN. The ports are determined by snooping IPv6 multicast control packets.
PAGE 196
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select the MLD Snooping Admin Mode Enable radio button. By default, the Disable radio button is selected. 7. Click the Apply button. Your settings are saved. 8. To refresh the page with the latest information about the switch, click the Update button. The following table describes the nonconfigurable MLD Snooping Configuration fields. Table 50.
PAGE 197
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select Switching> Multicast > MLD Snooping > Interface Configuration. 6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following links above the table heading: • 1 (the unit ID of the switch). Only physical interfaces are displayed. This is the default setting. • LAG. Only LAGs are displayed. • All.
PAGE 198
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 11. In the Expiration Time field, specify the time that the switch must wait to receive a query on an interface before removing the interface from the list of interfaces with multicast routers attached. Enter a value between 0 and 3600 seconds. The default is 0 seconds. A value of zero indicates an infinite time-out, that is, no expiration. 12.
PAGE 199
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. In the Membership Interval field, set the value for the group membership interval of MLD snooping for the specified VLAN ID. The valid range is Maximum Response Time + 1 to 3600. 9. In the Maximum Response Time field, set the value for the maximum response time of MLD snooping for the specified VLAN ID. The valid range is 1 to Group Membership Interval –1.
PAGE 200
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Remove MLD snooping from a VLAN To remove MLD snooping from a VLAN: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 201
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 12. Select whether to display physical interfaces, LAGs, or both by clicking one of the following links above the table heading: • 1 (the unit ID of the switch). Only physical interfaces are displayed. This is the default setting. • LAG. Only LAGs are displayed. • All. Both physical interfaces and LAGs are displayed. 13.
PAGE 202
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching> Multicast > MLD Snooping > Multicast Router VLAN Configuration. 6. From the Interface menu, select the interface for which you want the multicast router to be enabled. 7. In the VLAN ID field, specify the VLAN ID. 8.
PAGE 203
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 5. Select Switching> Multicast > MLD Snooping > Querier Configuration. 6. Configure the following settings: • Querier Admin Mode. Enable or disable MLD snooping for the switch. The default is Disable. • Querier Address. Enter an IP address. This specifies the snooping querier address to be used as the source address in periodic MLD queries.
PAGE 204
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching> Multicast > MLD Snooping > Querier VLAN Configuration. 6. In the VLAN ID field, specify the VLAN ID on which the MLD snooping querier is administratively enabled and for which a VLAN exists in the VLAN database. 7.
PAGE 205
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 51. MLD Snooping Querier VLAN Configuration information (continued) Field Description Last Querier Address The IP address of the last querier from which a query was snooped on the VLAN. Last Querier Version The MLD protocol version of the last querier from which a query was snooped on the VLAN.
PAGE 206
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The System Information page displays. 5. Select Switching > MVR > Basic > MVR Configuration. 6. From the MVR Running menu, select Enable or Disable. The default is Disable. 7. In the MVR Multicast Vlan field, specify the VLAN on which MVR multicast data is received. All source ports belong to this VLAN. The value can be set in a range of 1 to 4093. The default value is 1. 8.
PAGE 207
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure an MVR group To configure an MVR group: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 208
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure MVR group membership To configure MVR group membership: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 209
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5.
PAGE 210
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View the MVR statistics To view the MVR statistics: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 211
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 54. MVR Statistics information (continued) Field Definition IGMP Query Transmitted The number of transmitted IGMP queries. IGMP Report V1 Transmitted The number of transmitted IGMP V1 reports. IGMP Report V2 Transmitted The number of transmitted IGMP V2 reports. IGMP Leave Transmitted The number of transmitted IGMP leaves. IGMP Packet Receive Failures The number of IGMP packet receive failures.
PAGE 212
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Use the Search menu and field to search for a MAC address, VLAN ID, or interface number: • Search by MAC Address. From the Search menu, select MAC Address, and enter the 6-byte hexadecimal MAC address in two-digit groups separated by colons, for example, 01:23:45:67:89:AB. Then click the Go button. If the address exists, that entry is displayed as the first entry followed by the remaining (higher) MAC addresses.
PAGE 213
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 55. MAC Address Table information (continued) Field Description Status The status of this entry. The meanings of the values are as follows: • Static. The value of the corresponding instance was added by the system or a user and cannot be relearned. • Learned. The value of the corresponding instance was learned, and is being used. • Management.
PAGE 214
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Add a static MAC address to the MAC address table To add a static MAC address to the MAC address table: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 215
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure Layer 2 loop protection Loops inside a network are costly because they consume resources and reduce the performance of the network. Detecting loops manually can be cumbersome. The switch can automatically identify loops in the network. You can enable loop protection per port or globally.
PAGE 216
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching > L2 Loop Protection > L2 Loop Protection Configuration. 6. To enable or disable loop protection feature, select the Admin Mode Enable or Disable radio button. By default, the Disable radio button is selected. 7.
PAGE 217
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Switching > L2 Loop Protection > L2 Loop Protection Configuration. 6.
PAGE 218
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Your settings are saved. 11. Click the Clear button to clear all the statistics in the table. 12. Click the Update button to update the page to show the latest information. The following table describes the nonconfigurable information displayed on the page. Table 56. L2 Loop Protection Interface Information Field Description Loop Detected Shows whether a loop is detected on the interface.
PAGE 219
4 4 Configure Routing This chapter covers the following topics: • Routing concepts • Configure the routing mode • Configure IPv6 routing • Configure VLAN routing • Configure router discovery for a VLAN routing interface • Manage routes and view the routing table • Configure Address Resolution Protocol 219
PAGE 220
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Routing concepts The switch supports IP routing. When a packet enters the switch, the switch checks the destination MAC address to determine if it matches any of the configured routing interfaces. If it does, the switch searches the host table for a matching destination IP address. If a matching entry is found, the packet is routed to the host.
PAGE 221
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select Routing > IP > IP Configuration. 6. Select the Routing Mode Enable radio button. You must enable routing for the switch before you can route through any of the interfaces. Routing is also enabled or disabled per VLAN interface. The default value is Disable. 7. Click the Apply button. Your settings are saved.
PAGE 222
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select Routing> IP > Statistics. The following table describes the nonconfigurable information displayed on the page. Table 58. IP Statistics information Field Description IpInReceives The total number of input datagrams received from interfaces, including those received in error.
PAGE 223
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 58. IP Statistics information (continued) Field Description IpForwDatagrams The number of input datagrams for which this entity was not their final IP destination, as a result of which an attempt was made to find a route to forward them to that final destination.
PAGE 224
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 58. IP Statistics information (continued) Field Description IpRoutingDiscards The number of routing entries that were discarded even though they were valid. One possible reason for discarding such an entry could be to free up buffer space for other routing entries. IcmpInMsgs The total number of ICMP messages that the entity received. This counter includes all those counted by icmpInErrors.
PAGE 225
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 58. IP Statistics information (continued) Field Description IcmpOutTimestamps The number of ICMP timestamp (request) messages. IcmpOutTimestampReps The number of ICMP timestamp reply messages sent. IcmpOutAddrMasks The number of ICMP address mask request messages sent. Configure IPv6 routing Note: IPv6 is supported on VLAN interfaces only, not on physical ports.
PAGE 226
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Next to IPv6 Unicast Routing, specify whether IPv6 unicast routing is globally enabled by selecting the Enable radio button or the Disable radio button. 7. In the Hop Limit field, enter a value for the unicast hop count used in IPv6 packets originated by the node. The value is also included in router advertisements. The valid values for hops are 1 to 255, inclusive.
PAGE 227
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. From the Routes Displayed menu, select one of the following options: • All Routes. Show all active IPv6 routes. • Best Routes Only. Show only the best active routes. • Configured Routes Only. Show only the manually configured routes. 7. To refresh the page with the latest information about the switch, click the Update button. The following table describes the nonconfigurable data that is displayed. Table 59.
PAGE 228
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select Routing> IPv6 > Advanced > VLAN Configuration. 6. Select one or more interfaces by taking one of the following actions: • To configure a single interface, select the check box associated with the port, or type the port number in the Go To Interface field and click the Go button.
PAGE 229
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 11. In the MTU field, specify the maximum transmit unit (MTU) for an interface. If the value is 0, then this interface is not enabled for routing. It is not valid to set this value to 0 if routing is enabled. The MTU range 1280 to 1500. The default is 1500. 12. In the Duplicate Address Detection Transmits field, specify the number of duplicate address detection (DAD) transmits on an interface.
PAGE 230
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 22. Click the Apply button. Your settings are saved. The following table describes the nonconfigurable data that is displayed. Table 60. IPv6 VLAN Configuration information Field Description Routing Mode The routing mode of an interface. The default is Disable. Operational Mode The operational state of an interface. The default value is Disable. Link State Indicates whether the link is up or down.
PAGE 231
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. In the IPv6 Prefix field, specify the IPv6 prefix for an interface. 8. In the Prefix Length field, specify the IPv6 prefix length for an interface. 9. From the EUI64 menu, select Enable or Disable to indicate whether the specified 64-bit unicast prefix is enabled. 10. In the Valid Life Time field, specify the router advertisement per prefix time.
PAGE 232
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The System Information page displays. 5. Select Routing> IPv6 > Advanced > Statistics. 6. From the Interface menu, select the interface. When the selection is changed, the page refreshes, causing all fields to be updated for the newly selected interface. 7. To refresh the page with the latest information about the switch, click the Update button.
PAGE 233
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 61. IPv6 Statistics information (continued) Field Description Received Datagrams Discarded Due To Header Errors The number of input datagrams discarded due to errors in their IPv6 headers, including version number mismatch, other format errors, hop count exceeded, errors discovered in processing their IPv6 options, and so on.
PAGE 234
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 61. IPv6 Statistics information (continued) Field Description Datagrams Locally Transmitted The number of datagrams that this entity successfully transmitted from this output interface. Datagrams Transmit Failed The number of datagrams that this entity failed to transmit successfully. Datagrams Successfully Fragmented The number of IPv6 datagrams that were fragmented at this output interface.
PAGE 235
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 62. ICMPv6 Statistics information (continued) Field Description ICMPv6 Router Solicit Messages Received The number of ICMP Router Solicit messages received by the interface. ICMPv6 Router Advertisement Messages Received The number of ICMP Router Advertisement messages received by the interface. ICMPv6 Neighbor Solicit Messages The number of ICMP Neighbor Solicit messages received by the interface.
PAGE 236
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 62. ICMPv6 Statistics information (continued) Field Description ICMPv6 Router Advertisement Messages Transmitted The number of ICMP Router Advertisement messages sent by the interface. ICMPv6 Neighbor Solicit Messages The number of ICMP Neighbor Solicitation messages sent by the Transmitted interface.
PAGE 237
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Use the Search menu and field to search for IPv6 routes by IPv6 address or interface number: • Search by IPv6 address. Select IPv6 Address from the Search menu. Enter the 128-byte hexadecimal IPv6 address in four-digit groups separated by colons, for example, 2001:231F:::1. Then click the Go button. If the address exists, the entry is displayed. An exact match is required. • Search by Interface.
PAGE 238
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 63. IPv6 Neighbor Table information (continued) Field Description Neighbor State The state of the neighbor cache entry. Following are the states for dynamic entries in the IPv6 neighbor discovery cache: • Incmp. Address resolution is being performed on the entry.
PAGE 239
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. In the IPv6 Prefix field, specify the IPv6 network prefix for the configured route. 7. In the Prefix Length field, specify the IPv6 prefix length for the configured route. 8. From the Next Hop IPv6 Address Type menu, select one of the following options: • Global. Select this option if the IPv6 address is a global IPv6 address. • Link-Local.
PAGE 240
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Routing> IPv6 > Advanced > Route Preference. 6.
PAGE 241
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Create a routing interface with the VLAN Static Routing Wizard The VLAN Static Routing Wizard lets you create a VLAN routing interface, configure the IP address and subnet mask for the interface, and add ports, LAGs, or both to the VLAN. With this wizard, you can do the following: • Create a VLAN. • Add ports to the newly created VLAN and remove selected ports from the default VLAN.
PAGE 242
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. In the VLAN ID field, specify the VLAN ID that is associated with the VLAN. The range of the VLAN ID is 1 to 4093. 7. In the IP Address field, define the IP address of the VLAN interface. 8. In the Network Mask field, define the subnet mask of the VLAN interface. 9.
PAGE 243
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Manage a VLAN routing interface You can add and manage an existing VLAN (see Configure the VLAN Settings on page 140) as a new VLAN routing interface. You can also manage an existing VLAN routing interface that you added with the wizard (see Create a routing interface with the VLAN Static Routing Wizard on page 241), To add or change a VLAN routing interface: 1. Connect your computer to the same network as the switch.
PAGE 244
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The entry in the MAC Address field is automatically entered. The following table describes the nonconfigurable information displayed on the page. Table 64. VLAN Routing Configuration information Field Description Port The interface that is assigned to the VLAN for routing. MAC Address The MAC address that is assigned to the VLAN routing interface.
PAGE 245
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP To configure router discovery for a VLAN routing interface: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 246
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 11. Click the Apply button. Your settings are saved. Manage routes and view the routing table The routing table collects routes from multiple sources: static routes and local routes. The routing table can learn multiple routes to the same destination from multiple sources. The routing table lists all routes.
PAGE 247
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Depending on the type of route that you are creating, specify the following information: • In the Network Address field, specify the portion of the IP interface address that identifies the attached network. This is also referred to as the subnet/network mask.
PAGE 248
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 65. Learned Routes information (continued) Field Description Next Hop Address The outgoing router IP address to use when forwarding traffic to the next router (if any) in the path toward the destination. The next router is always one of the adjacent neighbors or the IP address of the local interface for a directly attached network. Preference The preference is an integer value from 0 to 255.
PAGE 249
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Delete a route You can delete a route that you no longer need. To delete a route: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 250
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP an ARP request is broadcast to all stations on a LAN segment or VLAN, each recipient can store the sender’s IP and MAC address in its ARP cache. Normally, only the requestor receives an ARP response (a unicast message) and stores the sender’s information in its ARP cache. The most recent information always replaces existing content in the ARP cache.
PAGE 251
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Navigate through the table by doing the following: • From the Rows per page menu, select how many table entries are displayed per page. Possible values are 20, 50, 100, 200, and All. If you select All, the browser might be slow to display the information. • Click the < button to display the previous page of the table data entries. • Click the > button to display the next page of the table data entries. 7.
PAGE 252
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Manually add an entry to the ARP table You can manually add an entry to the ARP table. To manually add an entry to the ARP table: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 253
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the nonconfigurable information displayed on the page. You can navigate through the table by doing the following: • From the Rows per page menu, select how many table entries are displayed per page. Possible values are 20, 50, 100, 200, and All. If you select All, the browser might be slow to display the information.
PAGE 254
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The System Information page displays. 5. Select Routing> ARP > Advanced > Global ARP Configuration. 6. In the Age Time field, enter the time, in seconds, that a dynamic ARP entry remains in the ARP table before aging out. The range is 15 to 21600 seconds. The default value is 1200 seconds. 7.
PAGE 255
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Routing> ARP > Advanced > ARP Entry Management. 6.
PAGE 256
5 5 Configure Quality of Service This chapter covers the following topics: • Quality of Service concepts • Manage the Class of Service • Manage Differentiated Services 256
PAGE 257
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Quality of Service concepts In a switch, each physical port consists of one or more queues for transmitting packets on the attached network. Multiple queues per port are often provided to give preference to certain packets over others based on user-defined criteria.
PAGE 258
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP ports, in accordance with the configured default priority of the ingress port. This process is also used for cases where a trusted port mapping cannot be honored, such as when a non-IP packet arrives at a port configured to trust the IP DSCP value. Configure the global CoS settings A global configuration setting is automatically applied to all interfaces on the switch.
PAGE 259
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • - 802.1p. The eight priority tags that are specified in IEEE 802.1p are p0 to p7. The QoS setting lets you map each of the eight priority levels to one of seven internal hardware priority queues. The default mode is 802.1p. - DSCP. The six most significant bits of the DiffServ field are called the Differentiated Services Code Point (DSCP) bits. To configure CoS settings per interface, do the following: a.
PAGE 260
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following links above the table heading: • 1 (the unit ID of the switch). Only physical interfaces are displayed. This is the default setting. • LAG. Only LAGs are displayed. • All. Both physical interfaces and LAGs are displayed. 7.
PAGE 261
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 10. Click the Apply button. Your settings are saved. Configure the CoS queue settings for an interface You can define what a particular queue does by configuring switch egress queues. You can control how much bandwidth is used by the queue, the queue depth during times of congestion, and the scheduling of packet transmission from all queues on a port. Each port contains its own CoS queue-related configuration.
PAGE 262
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. Select one or more interfaces by taking one of the following actions: • To configure a single interface, select the check box associated with the port, or type the port number in the Go To Interface field and click the Go button. • To configure multiple interfaces with the same settings, select the check box associated with each interface.
PAGE 263
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select QoS > CoS > Advanced > 802.1p to Queue Mapping. 6.
PAGE 264
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select QoS > CoS > Advanced > DSCP to Queue Mapping. 6.
PAGE 265
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Manage Differentiated Services The QoS feature contains Differentiated Services (DiffServ) support that allows traffic to be classified into streams and given certain QoS treatment in accordance with defined per-hop behaviors. Standard IP-based networks are designed to provide best effort data delivery service.
PAGE 266
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure the DiffServ mode and display the entries in the DiffServ private MIB tables You can enable or disable DiffServ and display the current and maximum number of rows in each of the main DiffServ private MIB tables. To configure the DiffServ mode and display the entries in the DiffServ private MIB tables: 1. Connect your computer to the same network as the switch.
PAGE 267
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the information displayed in the Status table on the DiffServ Configuration page. Table 68. DiffServ Status information Field Description Class Table The number of configured DiffServ classes out of the total allowed on the switch. Class Rule table The number of configured class rules out of the total allowed on the switch.
PAGE 268
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 5. Select QoS > DiffServ > Advanced > Class Configuration. 6. In the Class Name field, enter a class name. The Class Name field also lists all the existing DiffServ class names, from which you can select one for modification or deletion. The class name can be 1 to 31 alphanumeric characters in length. 7. From the Class Type menu, select the class type.
PAGE 269
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 10. Define the criteria that must be associated the DiffServ class: • Match Every. Select this radio button to add a match condition that considers all packets to belong to the class. The only selection from the Match Every menu is Any. • Reference Class. Select this radio button to reference another class for criteria.
PAGE 270
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP - • Mask. The MAC mask, which specifies the bits in the source MAC address to compare against the Ethernet frame. Use Fs and zeros to configure the MAC mask. An F means that the bit is checked, and a zero in a bit position means that the data is not significant.
PAGE 271
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP DSCP value from 0 to 63. The DSCP value is defined as the high-order 6 bits of the Service Type octet in the IP header. • Precedence Value. Select this radio button to require the packet’s IP precedence value to match the specified number from 0 to 7, which you must select from the menu. The IP Precedence field in a packet is defined as the high-order 3 bits of the Service Type octet in the IP header. • IP ToS.
PAGE 272
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The Class Name page displays. 6. Select the check box next to the class name. 7. In the Class Name field, specify the new name. 8. Click the Apply button. Your settings are saved. Change the criteria for an existing DiffServ class To change the criteria for an existing DiffServ class: 1. Connect your computer to the same network as the switch.
PAGE 273
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Delete a DiffServ class To delete a DiffServ class: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 274
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5.
PAGE 275
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 10. Define the criteria that must be associated the IPv6 DiffServ class: • Match Every. Select this radio button to add a match condition that considers all packets to belong to the class. The only selection from the Match Every menu is Any. • Reference Class. Select this radio button to reference another class for criteria.
PAGE 276
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Destination L4 Port. Select this radio button to require a packet’s TCP/UDP destination port to match the specified protocol, which you must select from the menu. The range is 0 to 65535. The menu includes Other as an option for unnamed ports. • Flow Label. Select this radio button to require a packet’s flow label to match the specified flow label.
PAGE 277
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select the check box next to the class name. 7. In the Class Name field, specify the new name. 8. Click the Apply button. Your settings are saved. Change the criteria for an existing IPv6 DiffServ class To change the criteria for an existing IPv6 DiffServ class: 1. Connect your computer to the same network as the switch.
PAGE 278
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select QoS > DiffServ > Advanced > IPv6 Class Configuration. The Class Name page displays. 6. Select the check box next to the class name. 7. Click the Delete button. The class is removed.
PAGE 279
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. From the Member Class menu, optionally select an existing class that you want to associate with the new policy. 8. Click the Add button. The new policy is added. 9. After creating the policy, click the policy name. The policy name is a hyperlink to the page on which you can define the policy attributes. 10. From the Assign Queue menu, select the queue to which packets of this policy class must be assigned.
PAGE 280
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Redirect. Select this radio button to require packets to be redirected to an interface or LAG, one of which you must select from the menu. • Mark IP DSCP. Select this radio button to require packet to be marked with an IP DSCP keyword code, which you must select from the menu. The menu includes Other as a selection, which lets you enter an IP DSCP value from 0 to 63.
PAGE 281
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Precedence field is set. You must select an IP precedence value from 0 to 7 from the menu. • Mark IP DSCP. Packets are marked by DiffServ with the specified DSCP value before being forwarded. This selection requires that the DSCP field is set. You must select a DSCP code from the menu. The menu includes Other as a selection, which lets you enter an IP DSCP value from 0 to 63.
PAGE 282
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Change the policy attributes for an existing DiffServ policy To change the policy attributes for an existing DiffServ policy: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 283
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 5. Select QoS > DiffServ > Advanced > Policy Configuration. The Policy Configuration page displays. 6. Select the check box next to the policy name. 7. From the Member Class menu, select None. 8. Click the Apply button. The class is removed from the policy. Delete a DiffServ policy To delete a DiffServ policy: 1. Connect your computer to the same network as the switch.
PAGE 284
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select QoS > DiffServ > Advanced > Service Configuration. 6.
PAGE 285
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Change the DiffServ policy for an interface To change the DiffServ policy for an interface: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 286
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select QoS > DiffServ > Advanced > Service Configuration. The Service Interface Configuration page displays. 6.
PAGE 287
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 5. Select QoS > DiffServ > Advanced > Service Statistics. 6. Click the Update button to refresh the page with the latest information about the switch. The following table describes the information available on the Service Statistics page. Table 73.
PAGE 288
6 6 Manage Device Security This chapter covers the following topics: • Change the device password for the local browser interface • Manage the RADIUS settings • Configure the TACACS+ settings • Configure authentication lists • Manage the Smart Control Center Utility • Configure management access • Control access with profiles and rules • Configure port authentication • Set up traffic control • Configure access control lists 288
PAGE 289
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Change the device password for the local browser interface You can change the device password for the user with the user name admin. To change the device password for the local browser interface: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2.
PAGE 290
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Note: If you forget the password and are unable to log in to the local browser interface, press the Factory Defaults button on the front panel of the switch for more than five seconds. The device reboots, and all switch settings, including the password, are reset to the factory default values. Manage the RADIUS settings RADIUS servers provide additional security for networks.
PAGE 291
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Security > Management Security > RADIUS > Global Configuration.
PAGE 292
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 9. Click the Apply button. Your settings are saved. The following table describes the nonconfigurable fields displayed on the page. Table 74. RADIUS Configuration information Field Description Current Server Address The address of the current server. This field is blank if no servers are configured. Number of Configured Authentication Servers The number of configured authentication RADIUS servers.
PAGE 293
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. In the Authentication Port field, specify the UDP port number the server uses to verify the RADIUS server authentication. The valid range is from 1 to 65535. The default value is 1812. 8. From the Secret Configured menu, select Yes. You must select Yes before you can configure the RADIUS secret. After you add the RADIUS server, this field indicates whether the shared secret for this server was configured. 9.
PAGE 294
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 75. RADIUS authentication server statistics information (continued) Field Description Access Challenges The number of RADIUS access-challenge packets, including both valid and invalid packets, that were received from this server. Malformed Access Responses The number of malformed RADIUS access-response packets received from this server. Malformed packets include packets with an invalid length.
PAGE 295
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Remove a RADIUS authentication server from the switch To a remove a RADIUS authentication server from the switch: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 296
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Security > Management Security > RADIUS > Accounting Server Configuration. 6. In the Accounting Server Address field, specify the IP address of the RADIUS accounting server to add. 7.
PAGE 297
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 76. RADIUS accounting server statistics information (continued) Field Description Accounting Requests The number of RADIUS accounting-request packets sent not including retransmissions. Accounting Retransmissions The number of RADIUS accounting-request packets retransmitted to this RADIUS accounting server. Accounting Responses The number of RADIUS packets received on the accounting port from this server.
PAGE 298
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select the check box next to the server IP address. 7. Modify the configuration for the selected accounting server. 8. Click the Apply button. Your settings are saved. Remove a RADIUS authentication server from the switch To a remove a RADIUS accounting server from the switch: 1. Connect your computer to the same network as the switch.
PAGE 299
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The TACACS+ protocol ensures network security through encrypted protocol exchanges between the device and TACACS+ server. Configure the global TACACS+ settings You can configure the global TACACS+ settings for communication between the switch and a TACACS+ server. To configure the global TACACS+ settings: 1. Connect your computer to the same network as the switch.
PAGE 300
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure a TACACS+ server on the switch You can configure up to five TACACS+ servers with which the switch can communicate. To configure a TACACS+ server on the switch: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 301
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The server is added to the switch. 12. Click the Apply button. Your settings are saved. Modify the settings for a TACACS+ server on the switch To modify the settings for a TACACS+ server on the switch: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable.
PAGE 302
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Security > Management Security> TACACS+ > TACACS+ Server Configuration. The TACACS+ Server Configuration page displays. 6. Select the check box next to the server IP address. 7. Click the Delete button. The TACACS+ server is removed.
PAGE 303
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 5. Select Security > Management Security > Authentication List > HTTP Authentication List. 6. Select the check box next to the httpList name. 7. From the menu in the 1 column, select the authentication method that must be used first in the selected authentication login list.
PAGE 304
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure an HTTPS authentication list You can configure the default login list for secure HTTP (HTTPS). To configure an HTTPS authentication list: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 305
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • RADIUS. The user’s ID and password are authenticated using the RADIUS server. If you select RADIUS or TACACS+ as the first method and an error occurs during the authentication, the switch uses Method 2 to authenticate the user. • TACACS+. The user’s ID and password are authenticated using the TACACS+ server.
PAGE 306
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select the check box next to the dot1xList name. 7. From the menu in the 1 column, select the method that must be used r first in the selected authentication login list. The options are as follows: • Local. The user’s locally stored ID and password are used for authentication. • Radius. The user’s ID and password are authenticated using the RADIUS server instead of locally. • None.
PAGE 307
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Security > Management Security > SCC Control. 6. Select the one of the following SCC Admin Mode radio buttons: • Enable. SCC can discover the switch and perform actions on the switch. This is the default setting. • Disable.
PAGE 308
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure management access You can configure HTTP and secure HTTP access to the local browser interface. You can also configure access control profiles and access rules. Configure HTTP access settings You can configure the HTTP access settings on the switch. To configure the HTTP access settings: 1. Connect your computer to the same network as the switch.
PAGE 309
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP This time-out is unaffected by the activity level of the session. The value must be in the range of 0–168 hours. value of zero means that the session does not time out. The default value is 24 hours. 8. In the Maximum Number of HTTP Sessions field, specify the maximum number of HTTP sessions that can exist at the same time. 9. Click the Apply button. Your settings are saved.
PAGE 310
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP This enables or disables the administrative mode of secure HTTP (HTTPS). The configured value is displayed. The default value is Disable. You can download SSL certificates only when the HTTPS admin mode is disabled. HTTPS admin mode can be enabled only if a certificate is present on the device. 7. Select the SSL Version 3 Enable or Disable radio button. This enables or disables Secure Sockets Layer version 3.0.
PAGE 311
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Manage certificates for HTTPS access You can manage certificates for HTTPS access. Generate an SSL certificate Note: Before you can generate a certificate, you must disable HTTPS (see Configure HTTPS access settings on page 309) and log back in to the local browser interface over an HTTP session.
PAGE 312
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. Click the Apply button. The switch generates an SSL certificate. The Certificate Generation Status field shows information about the progress. Delete an SSL certificate Note: Before you can delete a certificate, you must disable HTTPS (see Configure HTTPS access settings on page 309) and log back in to the local browser interface over an HTTP session.
PAGE 313
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Before you download a file to the switch, the following conditions must be true: • The file to download from the TFTP server is on the server in the appropriate directory. • The file is in the correct format. • The switch contains a path to the TFTP server.
PAGE 314
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • SSL DH Weak Encryption Parameter PEM File. SSL Diffie-Hellman Weak Encryption Parameter file (PEM Encoded) • SSL DH Strong Encryption Parameter PEM File. SSL Diffie-Hellman Strong Encryption Parameter File (PEM Encoded) 7. From the Server Address Type menu, select IPv4, IPv6, or DNS to indicate the format of the TFTP/SFTP/SCP Server Address field. The default is IPv4. 8.
PAGE 315
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Add an access profile You can set up a single security access profile with which you can associate an access rule configuration. To add an access profile 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 316
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Add a rule to the access profile After you add the access profile, you can add one or more security access rules to the access profile. If you access the switch from a computer, make sure that you add a permit rule for the type of service that you use (for example, HTTPS), your computer’s IP address, and your computer’s subnet mask.
PAGE 317
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The policy is restricted by the selected access method. Possible access methods are HTTP, Secure HTTP (SSL), and SNMP. 8. In the Source IP Address field, enter the source IP address from which the management traffic originates. 9. In the Mask field, specify the subnet mask from which the management traffic originates. 10. In the Priority field, assign a priority to the rule.
PAGE 318
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 5. Select Security > Access > Access Control > Access Profile Configuration. The Access Profile Configuration page displays. The Deactivate Profile check box is selected. 6. Select the Activate Profile check box. 7. Click the Apply button. Your settings are saved and the access profile is now active.
PAGE 319
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The Packets Filtered field displays the number of packets filtered (none in the previous figure). 6. To refresh the page with the latest information about the switch, click the Update button. The following table describes the nonconfigurable data that is displayed. Table 77. Access profile configuration profile summary Field Description Rule Type The action performed when the rules are matched.
PAGE 320
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Remove an access profile You can remove an access profile that you no longer need. Before you can remove the access profile, you must deactivate it (see Deactivate an access profile on page 319). To remove an access profile: 1. Connect your computer to the same network as the switch.
PAGE 321
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure the global 802.1X settings You can configure the global port access control settings on the switch. To globally enable the 802.1X features: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 322
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP accesses the device. The authentication server can provide information to the device about which VLAN to assign the supplicant. 8. Select the Dynamic VLAN Creation Mode Enable radio button. The default value is Disable. If RADIUS-assigned VLANs are enabled, the RADIUS server is expected to include the VLAN ID in the 802.1X tunnel attributes of its response message to the device.
PAGE 323
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The previous figure shows only part of the page. 6. Use the horizontal scroll bar at the bottom of the page to view all the fields. 7. Select one or more interfaces by taking one of the following actions: • To configure a single interface, select the check box associated with the port, or type the port number in the Go To Interface field and click the Go button.
PAGE 324
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP for unauthenticated clients. This VLAN might be configured with limited network access. • Periodic Reauthentication. Select Enable to allow periodic reauthentication of the supplicant for the specified port. • Reauthentication Period. Specify the time, in seconds, after which reauthentication of the supplicant occurs. The reauthentication period must be a value in the range of 1–65535. The default value is 3600.
PAGE 325
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 78. Port authentication status information (continued) Field Description Authenticator PAE State The current state of the authenticator PAE state machine. Possible values are as follows: Initialize Disconnected Connecting Authenticating Authenticated Aborting Held ForceAuthorized ForceUnauthorized Backend State The current state of the backend authentication state machine.
PAGE 326
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. Click the Initialize button. 802.1X on the selected interface is reset to the initialization state. Traffic sent to and from the port is blocked during the authentication process. This button is available only if the control mode is auto. When you click this button, the action is immediate. You do not need to click the Apply button for the action to occur. Restart the 802.
PAGE 327
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Security > Port Authentication > Advanced > Port Summary.
PAGE 328
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 79. Port summary (continued) Field Description Reauthentication Enabled This field shows whether reauthentication of the supplicant for the specified port is allowed. The possible values are True and False. If the value is True, reauthentication occurs. Otherwise, reauthentication is not allowed. Port Status The authorization status of the specified port.
PAGE 329
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the fields on the Client Summary page. Table 80. Client Summary information Field Description Port The port to be displayed. User Name The user name representing the identity of the supplicant device. Supplicant Mac Address The supplicant’s device MAC address. Session Time The time since the supplicant logged in seconds.
PAGE 330
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select Security > Traffic Control > MAC Filter > MAC Filter Configuration. 6. From the MAC Filter menu, select Create Filter. If you did not configure any filters, this is the only option available. 7. From the VLAN ID menu, select the VLAN that must be used with the MAC address. 8.
PAGE 331
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 10. In the Port and LAG tables in the Destination Port Members section, select the ports and LAGs that must be included in the outbound filter. A packet with the MAC address and VLAN ID that you specify can be transmitted only from a port that is part of the outbound filter. Note: Destination ports can be included only in a multicast filter. 11. Click the Apply button. Your settings are saved.
PAGE 332
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Security > Traffic Control > MAC Filter > MAC Filter Summary.
PAGE 333
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure global storm control settings The global storm control settings apply to all ports. After you configure the global settings, you can specify storm control settings for one or more ports. To configure global storm control settings: 1. Connect your computer to the same network as the switch.
PAGE 334
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. In the Storm Control section, from the Ingress Control Mode menu, select the mode of broadcast affected by storm control: • Disabled. Storm control is disabled. This is the default setting. • Unknown Unicast. If the rate of incoming unknown Layer 2 unicast traffic (that is, traffic for which a destination lookup failure occurs) increases beyond the configured threshold on an interface, the traffic is dropped.
PAGE 335
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 5. Select Security > Traffic Control > Storm Control. The default settings in the Port Settings section depends on the global storm control settings (see Configure global storm control settings on page 333), which apply to all ports. 6.
PAGE 336
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Manage port security Port security lets you lock one or more ports on the switch. When a port is locked, the port can only forward packets with a source MAC addresses that you specifically allowed. The port discards all other packets. Configure the global port security mode To configure the global port security mode: 1. Connect your computer to the same network as the switch.
PAGE 337
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the fields in the Port Security Violations table. Table 82. Port Security Violations information Field Description Port The physical interface. Last Violation MAC The source MAC address of the last packet that was discarded at a locked port. VLAN ID The VLAN ID corresponding to the last MAC address violation.
PAGE 338
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following links above the table heading: • 1 (the unit ID of the switch). Only physical interfaces are displayed. This is the default setting. • LAG. Only LAGs are displayed. • All. Both physical interfaces and LAGs are displayed. 7.
PAGE 339
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View learned MAC addresses and convert them to static MAC addresses After you enabled port security globally (see Configure the global port security mode on page 336) and enabled port security for specific interfaces (see Configure a port security interface on page 337), you can convert a dynamically learned MAC address to a statically locked address.
PAGE 340
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. Click the Apply button. The dynamic MAC address entries are converted to static MAC address entries in a numerically ascending order until the static limit is reached. The Number of Dynamic MAC Addresses Learned field displays the number of dynamically learned MAC addresses on a specific port. 9. To refresh the page with the latest information about the switch, click the Update button.
PAGE 341
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Manage private VLANs A private VLAN contains switch ports that cannot communicate with each other, but can access another network. These ports are called private ports. Each private VLAN contains one or more private ports and a single uplink port or uplink aggregation group. Note that all traffic between private ports is blocked at all layers, not just Layer 2 traffic, but also traffic such as FTP, HTTP, and Telnet.
PAGE 342
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure private VLAN associations To configure private VLAN associations: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 343
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure the private VLAN port mode To configure the private VLAN port mode: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 344
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. From the Port VLAN Mode menu, select the switch port mode: • General. Sets the interfaces in general mode, which is the default selection. • Host. Sets the interfaces in host mode, which is used for private VLAN configurations. • Promiscuous. Sets the interfaces in promiscuous mode, which is used for private VLAN configurations. 9. Click the Apply button. Your settings are saved.
PAGE 345
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. Select one or more interfaces by taking one of the following actions: • To configure a single interface, select the check box associated with the port, or type the port number in the Go To Interface field and click the Go button. • To configure multiple interfaces with the same settings, select the check box associated with each interface.
PAGE 346
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following links above the table heading: • 1 (the unit ID of the switch). Only physical interfaces are displayed. This is the default setting. • LAG. Only LAGs are displayed. • All. Both physical interfaces and LAGs are displayed. 7.
PAGE 347
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure access control lists Access control lists (ACLs) ensure that only authorized users can access specific resources while blocking off any unwarranted attempts to reach network resources. ACLs are used to provide traffic flow control, restrict contents of routing updates, decide which types of traffic are forwarded or blocked, and above all provide security for the network.
PAGE 348
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select Security > ACL > ACL Wizard. 6. From the ACL Type menu, select the type of ACL. You can select from the following ACL types: • ACL Based on Destination MAC. Creates an ACL based on the destination MAC address, destination MAC mask, and VLAN. • ACL Based on Source MAC.
PAGE 349
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Note: For L4 port options, two rules are created (one for TCP and one for UDP). 7. In the Sequence Number field, enter a whole number in the range of 1 to 2147483647 that is used to identify the rule. 8. From the Action menu, select Permit or Deny to specify the action that must be taken if a packet matches the rule’s criteria. 9. From the Match Every menu, select one of the following options: • False.
PAGE 350
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP ACL Based On Fields Source IPv4 L4 Port • • Source L4 port (protocol). Specify the source IPv4 L4 port protocol. Source L4 port (value). Specify the source IPv4 L4 port value. Destination IPv6 L4 Port • • Destination L4 port (protocol). Specify the destination IPv6 L4 port protocol. Destination L4 port (value). Specify the destination IPv6 L4 port value. • • Source L4 port (protocol).
PAGE 351
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Security > ACL > ACL Wizard. The ACL Wizard page displays. 6.
PAGE 352
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP ACL Wizard example In the following figure, the ACL rule is configured to check for packet matches on ports 4, 5, and 9 and on LAG 1. Only the Inbound option is valid. Packets that include a source address in the 192.168.3.0/16 network are permitted to be forwarded by the interfaces. All other packets are dropped because every ACL includes an implicit deny all rule as the last rule.
PAGE 353
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Add a MAC ACL To add a MAC ACL: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 354
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Change the name of a MAC ACL To change the name of a MAC ACL: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 355
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The MAC ACL page displays. 6. Select check box that is associated with the rule. 7. Click the Delete button. The rule is removed. Configure MAC ACL rules You can define rules for MAC-based ACLs. The access list definition includes rules that specify whether traffic matching the criteria is forwarded normally or discarded. A default deny all rule is the last rule of every list.
PAGE 356
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. From the Action menu, select the action that must be taken if a packet matches the rule’s criteria: • Permit. Forwards packets that meet the ACL criteria. • Deny. Drops packets that meet the ACL criteria. 9. In the Assign Queue field, specify the hardware egress queue identifier that must be used to handle all packets matching this ACL rule. The valid range of queue IDs is 0 to 7. 10.
PAGE 357
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • IPX • MPLS multicast • MPLS unicast • NetBIOS • Novell • PPPoE • Reverse ARP • User Value 17. In the EtherType User Value field, specify the customized EtherType value that must be used when you select User Value from the EtherType Key menu. This value must be compared against the information in an Ethernet frame. The valid range of values is 0x0600 to 0xFFFF. 18.
PAGE 358
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Security > ACL > Basic > MAC Rules. The MAC Rules page displays. 6. Select the check box that is associated with the rule. 7.
PAGE 359
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure MAC bindings When an ACL is bound to an interface, all the rules that are defined are applied to the selected interface. You can assign MAC ACL lists to ACL priorities and interfaces. To configure MAC bindings: 1. Connect your computer to the same network as the switch.
PAGE 360
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP sequence number that is one number greater than the highest sequence number currently in use for this interface and direction is used. The valid range is 1–4294967295. 8. To add the selected ACL to a port or LAG, in the Ports table or LAG table, click the port or LAG so that a check mark displays. You can add the ACL to several ports and LAGs.
PAGE 361
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select Security > ACL > Basic > MAC Binding Table. 6. To delete a MAC ACL-to-interface binding, do the following: a. Select the check box next to the interface. b. Click the Delete button. The binding is removed. The following table describes the information that is displayed in the MAC binding table. Table 85.
PAGE 362
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP to a destination IP address. This type of ACL provides more granularity and filtering capabilities than the basic IP ACL. • Named IP ACL. Create an extended IPv4 ACL with a name string that is up to 31 alphanumeric characters in length. The name must start with an alphabetic character. 2.
PAGE 363
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The IP ACL page shows the current size of the ACL table compared to the maximum size of the ACL table. The current size is equal to the number of configured IPv4 and IPv6 ACLs plus the number of configured MAC ACLs. The maximum size is 100. The Current Number of ACL field displays the current number of all ACLs configured on the switch.
PAGE 364
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The IP ACL Configuration page displays. 6. Select the check box that is associated with the IP ACL. 7. In the IP ACL field, specify the new number or name. 8. Click the Apply button. Your settings are saved. Delete an IPv4 ACL To delete an IPv4 ACL: 1. Connect your computer to the same network as the switch.
PAGE 365
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Add a rule for a basic IPv4 ACL To add a rule for a basic IPv4 ACL: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 366
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. Specify the following match criteria for the rule: • Sequence Number. Enter an ACL sequence number in the range of 1 to 2147483647 that is used to identify the rule. An IP ACL can contain up to 50 rules. • Action. Select the ACL forwarding action, which is one of the following: - Permit. Forward packets that meet the ACL criteria. - Deny. Drop packets that meet the ACL criteria. • Egress Queue.
PAGE 367
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Redirect Interface. From the Redirect Interface menu, select the egress interface to which the matching traffic stream must be redirected, bypassing any forwarding decision normally performed by the switch. This field cannot be set if a mirror interface is already configured for the IP ACL rule. • Src IP Address.
PAGE 368
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Delete a basic IPv4 ACL rule To delete a basic IPv4 ACL rule: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 369
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Security > ACL > Advanced > IP Extended Rules.
PAGE 370
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. Configure the following match criteria for the rule: • Sequence Number. Enter a whole number in the range of 1 to 2147483647 that is used to identify the rule. An extended IP ACL can contain up to 50 rules. • Action. Select the ACL forwarding action, which is one of the following: - Permit. Forward packets that meet the ACL criteria. - Deny. Drop packets that meet the ACL criteria. • Egress Queue.
PAGE 371
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The wildcard mask determines which bits are used and which bits are ignored. A wildcard mask of 0.0.0.0 indicates that none of the bits are important. A wildcard of 255.255.255.255 indicates that all of the bits are important. • Src L4. The options are available only when the protocol is set to TCP or UDP.
PAGE 372
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Select Other from the menu to enter a port number. If you select Other from the menu but leave the field blank, it means any. The wildcard mask determines which bits are used and which bits are ignored. A wildcard mask of 0.0.0.0 indicates that none of the bits are important. A wildcard of 255.255.255.255 indicates that all of the bits are important. • Dst.
PAGE 373
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP - If you select the Range radio button, the IP ACL rule matches only if the Layer 4 destination port number is within the specified port range. The starting port, ending port, and all ports in between are a part of the Layer 4 port range. The Start Port and End Port fields identify the first and last ports that are part of the port range. They values can range from 0 to 65535.
PAGE 374
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Fragments. Either select the Enable radio button to allow initial fragments (that is, the fragment bit is asserted) or leave the default Disable radio button selected to prevent initial fragments from being used. This option is not valid for rules that match L4 information such as a TCP port number, because that information is carried in the initial packet. • Service Type.
PAGE 375
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Security > ACL > Advanced > IP Extended Rules. The IP Rules page displays. 6. From the ACL ID menu, select the ACL that includes the rule that you want to modify. 7. In the Extended ACL Rule Table, click the rule. The rule is a hyperlink.
PAGE 376
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure an IPv6 ACL An IPv6 ACL consists of a set of rules that are matched sequentially against a packet. When a packet meets the match criteria of a rule, the specified rule action (Permit or Deny) is taken, and the additional rules are not checked for a match. You must specify the interfaces to which an IPv6 ACL applies, as well as whether it applies to inbound or outbound traffic.
PAGE 377
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. In the IPv6 ACL field, specify a name to identify the IPv6 ACL. This is the IPv6 ACL name string, which includes up to 31 alphanumeric characters only. The name must start with an alphabetic character. 7. Click the Add button. The IPv6 ACL is added. The following table describes the nonconfigurable information displayed on the page. Table 86.
PAGE 378
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select Security > ACL > Advanced > IPv6 ACL. The IPv6 ACL Configuration page displays. 6. Select the check box that is associated with the IPv6 ACL. 7. In the IPv6 ACL field, specify the new name. 8. Click the Apply button. Your settings are saved. Delete an IPv6 ACL To delete an IPv6 ACL: 1.
PAGE 379
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure rules for an IPv6 ACL You can define rules for IPv6 ACLs. The access list definition includes rules that specify whether traffic matching the criteria is forwarded normally or discarded. Add a rule for an IPv6 ACL Add a rule for an ACL IPv6: 1. Connect your computer to the same network as the switch.
PAGE 380
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 8. Configure the following match criteria for the rule: • Action. Select the ACL forwarding action by selecting one of the following radio buttons: - Permit. Forward packets that meet the ACL criteria. - Deny. Drop packets that meet the ACL criteria. • Egress Queue. If you select the Permit radio button, select the hardware egress queue identifier that is used to handle all packets matching this IPv6 ACL rule.
PAGE 381
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Src. In the Src field, enter a source IPv6 address or source IPv6 address range to be compared to a packet’s source IPv6 address as a match criterion for the selected IPv6 ACL rule: - If you select the IPv6 Address radio button, enter an IPv6 address or IPv6 range to apply this criteria. If this field is left empty, it means any.
PAGE 382
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP You can either enter the port range yourself or select one of the following protocols from the menu: • The source IP TCP port protocols are domain, echo, ftp, ftpdata, www-http, smtp, telnet, pop2, pop3, and bgp. • The source IP UDP port protocols are domain, echo, snmp, ntp, rip, time, who, and tftp.
PAGE 383
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP - • Greater Than. The IPv6 ACL rule matches if the Layer 4 destination port number is greater than the specified port number. • Not Equal. The IPv6 ACL rule matches only if the Layer 4 destination port number is not equal to the specified port number or port protocol. If you select the Range radio button, the IPv6 ACL rule matches only if the Layer 4 destination port number is within the specified port range.
PAGE 384
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Fragments. Either select the Enable radio button to allow initial fragments (that is, the fragment bit is asserted) or leave the default Disable radio button selected to prevent initial fragments from being used. This option is not valid for rules that match L4 information such as TCP port number, because that information is carried in the initial packet. • Routing.
PAGE 385
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. In the IPv6 ACL Rule Table, click the rule. The rule is a hyperlink. The IPv6 ACL Rule Configuration page displays. 8. Modify the IPv6 ACL rule criteria. 9. Click the Apply button. Your settings are saved. Delete an IPv6 ACL rule To delete an IPv6 ACL rule: 1. Connect your computer to the same network as the switch.
PAGE 386
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5.
PAGE 387
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The Ports and LAG tables display the available and valid interfaces for ACL binding. All nonrouting physical interfaces, VLAN interfaces, and interfaces participating in LAGs are listed. 9. Click the Apply button. Your settings are saved. The following table describes the nonconfigurable information displayed on the page. Table 87. IP Binding Status table Field Description Interface The selected interface.
PAGE 388
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. To delete an IP ACL-to-interface binding, do the following: a. Select the check box next to the interface. b. Click the Delete button. The binding is removed. The following table describes the information displayed in the IP ACL Binding Table. Table 88. IP ACL Binding Table Field Description Interface The interface. Direction The selected packet filtering direction for the ACL.
PAGE 389
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Security > ACL> Advanced > VLAN Binding Configuration. 6. In the VLAN ID field, enter the VLAN ID to which the binding must apply. 7. From the Direction menu, select the packet filtering direction. 8. In the Sequence Number field, enter an optional sequence number.
PAGE 390
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default password is password. The System Information page displays. 5. Select Security > ACL> Advanced > VLAN Binding Configuration. The VLAN Binding Configuration page displays. 6. Select the check box for the VLAN binding that you want to remove. 7. Click the Delete button. The VLAN ACL binding is removed.
PAGE 391
7 7 Monitor the Switch and the Traffic This chapter covers the following topics: • Monitor the switch and the ports • Configure and view the logs • Configure port mirroring 391
PAGE 392
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Monitor the switch and the ports You can view and clear port and switch statistics and perform a cable test. View or clear switch statistics You can view detailed statistical information about the traffic that the switch processes. To view or clear the switch statistics 1. Connect your computer to the same network as the switch.
PAGE 393
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Click the Update button to refresh the page with the latest information about the switch. 7. Click the Clear button to clear all the statistics counters, resetting all switch summary and detailed statistics to default values. The discarded packets count cannot be cleared. The following table describes the switch statistics displayed on the page. Table 89.
PAGE 394
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 89. Switch statistics (continued) Field Description Broadcast Packets Received The total number of packets received that were directed to the broadcast address. This does not include multicast packets. Receive Packets Discarded The number of inbound packets that were chosen to be discarded, even though no errors were detected, in order to prevent their being delivered to a higher-layer protocol.
PAGE 395
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View port statistics You can view a summary of per-port traffic statistics on the switch. To view port statistics: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 396
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the per-port statistics displayed on the page. Table 90. Port statistics Field Description Interface This object indicates the interface of the interface table entry that is associated with this port on an adapter. Total Packets Received Without Errors The total number of packets received that were without errors.
PAGE 397
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. Click the Clear button. All counters are reset to 0. Reset the counters for one or more interfaces To reset the counters for one or more interfaces: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 398
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View and manage detailed port statistics You can view a variety of per-port traffic statistics. To view or clear detailed port statistics: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 399
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. From the MST ID menu, select the MST ID associated with the interface (if available). 8. To refresh the page with the latest information about the switch, click the Update button. 9. To clear all the counters, click the Clear button. This resets all statistics for this port to the default values. The following table describes the detailed port information displayed on the page.
PAGE 400
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 91. Detailed port statistics (continued) Field Description Physical Mode Indicates the port speed and duplex mode. In autonegotiation mode the duplex mode and speed are set from the autonegotiation process. Physical Status Indicates the port speed and duplex mode. Link Status Indicates whether the link is up or down. Link Trap Indicates whether or not the port sends a trap when link status changes.
PAGE 401
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 91. Detailed port statistics (continued) Field Description Packets Received 65-127 Octets The total number of packets (including bad packets) received that were between 65 and 127 octets in length inclusive (excluding framing bits but including FCS octets).
PAGE 402
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 91. Detailed port statistics (continued) Field Description Undersize Received The total number of packets received that were less than 64 octets in length with GOOD CRC (excluding framing bits but including FCS octets).
PAGE 403
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 91. Detailed port statistics (continued) Field Description Packets Transmitted > 1518 Octets The total number of packets transmitted that were longer than 1518 octets (excluding framing bits, but including FCS octets) and were otherwise well formed. This counter supports a maximum increment rate of 815 counts per sec at 10 Mb/s.
PAGE 404
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 91. Detailed port statistics (continued) Field Description 802.3x Pause Frames Transmitted The number of MAC control frames transmitted on this interface with an opcode indicating the PAUSE operation. This counter does not increment when the interface is operating in half-duplex mode. GVRP PDUs Received The number of GVRP PDUs received in the GARP layer.
PAGE 405
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. To refresh the page with the latest information about the switch, click the Update button. 7. To clear the counters for a specific port, select the check box associated with the port and click the Clear button. 8. To clear all the EAP counters for all ports on the switch, select the check box in the row heading and click the Clear button. Clicking the button resets all statistics for all ports to default values.
PAGE 406
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 92. EAP statistics Field Description EAP Request/ID Frames Transmitted The number of EAP request/identity frames that were transmitted by this authenticator. EAP Request Frames Transmitted The number of EAP request frames (other than request/identity frames) that were transmitted by this authenticator.
PAGE 407
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP PHY for the current link speed. Note that if the link is down and a cable is attached to a 10/100 Ethernet adapter then the cable status might be Open or Short because some Ethernet adapters leave unused wire pairs unterminated or grounded. The following table describes the nonconfigurable information displayed on the page. Table 93.
PAGE 408
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP To manage and view the memory log: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch.
PAGE 409
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The Memory Log table displays on the Memory Log page. The Total number of Messages field displays the number of messages the system logged in memory. Only the 200 most recent entries are displayed on the page. The rest of the page displays the Memory Log messages. The format of the log message is the same for messages that are displayed for the message log, persistent log, or console log.
PAGE 410
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • <15>Aug 24 05:34:05 STK0 MSTP[2110]: mspt_api.c(318) 237%% Interface 12 transitioned to root state on message age timer expiry. This example indicates a user-level message (1) with severity 7 (debug) on a system that is not a chassis and generated by component MSTP running in thread ID 2110 on Aug 24 05:34:05 by line 318 of file mstp_api.c. This is the 237th message logged.
PAGE 411
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Critical, Alert, and Emergency. The default severity level is Alert (1). The severity can be one of the following levels: - Emergency (0). The highest warning level. If the device is down, or not functioning properly, an emergency log message is saved to the device. - Alert (1). The second-highest warning level.
PAGE 412
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Manage the server log You can let the switch send log messages to remote logging hosts. A remote log server is the same as a remote syslog host. You must enable the server log on the switch and specify one or more remote syslog hosts. Enable the server log and add a remote syslog host To enable the server log and add a remote syslog host: 1. Connect your computer to the same network as the switch.
PAGE 413
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Severity Filter. Use the menu to select the severity of the logs that must be sent to the logging host. Logs with the selected severity level and all logs of greater severity are sent to the host. For example, if you select Error, the logged messages include Error, Critical, Alert, and Emergency. The default severity level is Alert (1). The severity can be one of the following levels: - Emergency (0).
PAGE 414
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Monitoring > Logs > Server Log. The Server Log Configuration page displays. 6. Select the check box that is associated with the host. 7. Change the information as needed. 8. Click the Apply button. Your settings are saved.
PAGE 415
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP View or clear the trap logs and the counters You can view information about the SNMP traps generated on the switch. You can also display information about the traps that were sent. To view or clear the trap logs and the counters: 1. Connect your computer to the same network as the switch.
PAGE 416
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The following table describes the Trap Log information that is displayed on the page. Table 94. Trap Logs information Field Description Number of Traps Since Last Reset The number of traps that occurred since the switch last rebooted. Trap Log Capacity The maximum number of traps stored in the log. If the number of traps exceeds the capacity, the entries overwrite the oldest entries.
PAGE 417
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. To refresh the page with the latest information about the switch, click the Update button. 7. To clear the messages from the event Log, click the Clear button. The following table describes the event log information that is displayed on the page. Table 95. Event Logs information Field Description Entry The sequence number of the event. Type The type of the event.
PAGE 418
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure port mirroring Port mirroring selects the network traffic for analysis by a network analyzer. This is done for specific ports of the switch. As such, many switch ports are configured as source ports and one switch port is configured as a destination port. You can configure how traffic is mirrored on a source port.
PAGE 419
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select an Admin Mode radio button: • True. Port mirroring is enabled. • False. Port mirroring is enabled. 7. From the Destination Port menu, select the destination port to which port traffic must be copied. You can configure only one destination port on the system. The port functions as a probe port and receives traffic from all configured source ports. If no port is configured, None is displayed.
PAGE 420
8 Maintain or Troubleshoot the Switch 8 This chapter covers the following topics: • Reboot the switch • Reset the switch to its factory default settings • Export a file from the switch • Download a file to the switch or update the software • Manage software images • Perform diagnostics and troubleshooting 420
PAGE 421
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Reboot the switch You can reboot the switch from the local browser interface. To reboot the switch: 1. Connect your computer to the same network as the switch. You can use a WiFi or wired connection to connect your computer to the network, or connect directly to a switch that is off-network using an Ethernet cable. 2. Launch a web browser. 3.
PAGE 422
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Reset the switch to its factory default settings You can reset the system configuration to the factory default values. All changes that you made are lost. If the IP address changes, your web session might disconnect. Note: If you reset the switch to the default configuration, the IP address is reset to 192.168.0.239, and the DHCP client is enabled.
PAGE 423
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Export a file from the switch You can export configuration (ASCII or log ASCII) files from the switch to a file server by using TFTP or HTTP. Model GS418TPP also lets you use USB.
PAGE 424
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. From the File Type menu, select the type of file: • Text Configuration. A text-based configuration file enables you to edit a configured text file (startup-config) offline as needed.
PAGE 425
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Use HTTP to export a file from the switch to a computer You can upload (export) files of various types from the switch to a computer through an HTTP session by using your web browser. To export a file from the switch to a computer by using HTTP: 1. Connect your computer to the same network as the switch.
PAGE 426
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Export a file from the switch to a USB device Note: Model GS418TPP supports a USB device. Models GS519TLP and GS510TPP do not. You can upload (export) a configuration file from the switch to a USB device. To export a file from the switch to a USB device: 1. Connect your computer to the same network as the switch.
PAGE 427
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 9. Click the Apply button. The file transfer begins. The page displays information about the file transfer progress. The page refreshes automatically when the file transfer completes (or if it fails). Download a file to the switch or update the software You can download system files from a remote system to the switch by using either TFTP or HTTP.
PAGE 428
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Maintenance > Download > TFTP File Download. 6.
PAGE 429
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Note: We recommended that you do not overwrite the active image. If you do so, the switch displays a warning that you are trying to overwrite the active image. 8. From the Server Address Type menu, select the format for the TFTP Server IP field: • IPv4. Indicates that the TFTP server address is an IP address in dotted-decimal format. This is the default setting. • DNS.
PAGE 430
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5. Select Maintenance > Download > HTTP File Download. 6. From the File Type menu, select the type of file: • Software. The system software image, which is saved in one of two flash sectors called images (image1 and image2).
PAGE 431
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 9. Click the Apply button. The file transfer begins. The page displays information about the progress of the file transfer. After a file transfer is started, wait until the page refreshes. When the page refreshes, the option to select a file option is no longer available, indicating that the file transfer is complete.
PAGE 432
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. From the File Type menu, select the type of file: • Software. The system software image, which is saved in one of two flash sectors called images (image1 and image2). The active image stores the active copy, the other image stores a second copy. The device boots and runs from the active image. If the active image is corrupted, the system automatically boots from the nonactive image.
PAGE 433
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Manage software images The switch maintains two versions of the switch software in permanent storage. One image is the active image, and the second image is the backup image. The active image is loaded when the switch starts or reboots. This feature reduces switch down time when you are updating the switch software.
PAGE 434
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. Select the Source Image image1 or image2 radio button to specify the image to be copied. 7. Select the Destination Image image1 or image2 radio button to specify the destination image. 8. Click the Apply button. Your settings are saved. Configure dual image settings The Dual Image feature allows the switch to retain two images in permanent storage.
PAGE 435
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. From the Image Name menu, select the image that is not the image displayed in the Current-active field. The Current-active field displays the name of the active image. 7. To specify a name for the selected image, enter one in the Image Description field. 8. Select the Activate Image check box. 9. Click the Apply button. Your settings are saved.
PAGE 436
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. From the Image Name menu, select the image that is not the image displayed in the Current-active field. The Current-active field displays the name of the active image. You cannot delete the active image. 7. Select the Delete Image check box. 8. Click the Apply button. The image is removed. View the dual image status The Dual Image Status page shows information about the active and backup images on the system.
PAGE 437
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Perform diagnostics and troubleshooting You can send a ping or a traceroute, and you can perform a memory dump. Ping an IPv4 address You can configure the switch to send a ping request to a specified IPv4 address. You can use this option to check whether the switch can communicate with a particular IPv4 device. When you send a ping, the switch sends a specified number of ping requests and the results are displayed.
PAGE 438
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 6. In the IP Address/Host Name field, enter the IP address or host name of the device that must be pinged. 7. In the Count field, enter the number of echo requests that must be sent. The default value is 3. The range is 1 to 15. 8. In the Interval field, enter the time between ping packets in seconds. The default value is 3 seconds. The range is 1 to 60. 9. In the Size field, enter the size of the ping packet.
PAGE 439
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP If a reply to the ping is received, the following message displays: PING x:y::z:w (x:y::z:w): size data bytes size bytes from x:y::z:w: seq=0 ttl=xyz --- x:y::z:w ping statistics --count packets transmitted, count packets received, x% packet loss If a reply to the ping is not received, the following message displays: PING x:y::z:w (x:y::z:w): size data bytes --- x:y::z:w ping statistics --count packets transmitted, 0
PAGE 440
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. In the IPv6 Address/Hostname field, enter the IPv6 address or host name of the station that must be pinged. The format is xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx. The maximum number of characters is 255. 8. In the Count field, enter the number of echo requests that must be sent. The range is 1 to 15. The default value is 3. 9. In the Interval field, enter the time in seconds between ping packets.
PAGE 441
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 2. Launch a web browser. 3. In the address field of your web browser, enter the IP address of the switch. If you do not know the IP address of the switch, see Change the default IP address of the switch on page 13. The login window opens. 4. Enter the switch’s password in the Password field. The default password is password. The System Information page displays. 5.
PAGE 442
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The default value is 33434. The range is 1–65535. 13. In the Size field, enter the size of the probe packets. The default value is 0. The range is 0 to 39936. 14. From the Source menu, select the IP address or interface that must be used to send echo request packets: • None. The source address for the traceroute is the address of the default egress interface. • IP Address.
PAGE 443
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The System Information page displays. 5. Select Maintenance > Troubleshooting > Traceroute IPv6. 6. In the IPv6 Address/Host Name field, enter the IPv6 address or host name of the device for which the path must be discovered. 7. In the Probes Per Hop field, enter the number of probes per hop. The default value is 3. The range is 1 to 10. 8.
PAGE 444
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • IP Address. The source IP address that must be used for the traceroute. With this selection, the IPv6 Address field displays and you must enter the IPv6 address that must be used as the source. • Interface. The interface that must be used for the traceroute. With this selection, the Interface menu displays and you must select an interface as the source. 15. Click the Apply button.
PAGE 445
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Configure memory dump settings and perform a full memory dump Note: Model GS418TPP supports a full memory dump. Models GS510TLP and GS510TPP do not. You can perform a full memory dump to retrieve the core dump for the purpose of troubleshooting. To configure the memory dump settings, send a test memory dump to a USB device, and perform a full memory dump: 1. Connect your computer to the same network as the switch.
PAGE 446
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP The form of the full file path is /mnt/usb-storage/
. The file path must consist of -, _, / and alphanumeric characters. Up to 64 characters can be used. The default is /. 8. In the File Name field, specify the core dump file name. Up to 15 characters can be used. The file name must consists of -, _, and alphanumeric characters. The default is core.
PAGE 447
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 14. To save the configuration settings, select the Save Current Settings check box. By default, this check box is selected. You can clear the check box only if you first select the Write Core check box. CAUTION: Make sure that the Write Core check box is cleared when you click the Apply button. Otherwise, the switch reboots. 15. Click the Apply button. Your settings are saved.
PAGE 448
A Configuration Examples A The appendix covers the following topics: • Virtual Local Area Networks (VLANs) • Access control lists (ACLs) • Differentiated Services (DiffServ) • 802.
PAGE 449
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Virtual Local Area Networks (VLANs) A local area network (LAN) can generally be defined as a broadcast domain. Hubs, bridges, or switches in the same physical segment or segments connect all end node devices. End nodes can communicate with each other without the need for a router. Routers connect LANs together, routing the traffic to the appropriate port.
PAGE 450
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Packets leaving the switch are either tagged or untagged, depending on the setting for that port’s VLAN membership properties. A U for a given port means that packets leaving the switch from that port are untagged. Inversely, a T for a given port means that packets leaving the switch from that port are tagged with the VLAN ID that is associated with the port.
PAGE 451
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP untagged packet as it leaves port 6. For port 5, the outgoing packet leaves as a tagged packet with VLAN ID 20. Access control lists (ACLs) ACLs ensure that only authorized users can access specific resources while blocking off any unwarranted attempts to reach network resources.
PAGE 452
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Assign Queue ID. 0 • Match Every. False • CoS. 0 • Destination MAC. 01:02:1A:BC:DE:EF • Destination MAC Mask. 00:00:00:00:FF:FF • EtherType. User Value. • Source MAC. 02:02:1A:BC:DE:EF • Source MAC Mask. 00:00:00:00:FF:FF • VLAN ID. 2 For more information about MAC ACL rules, see Configure MAC ACL rules on page 355. 3.
PAGE 453
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP • Source IP Address. 192.168.187.0 • Source IP Mask. 255.255.0 For additional information about IP ACL rules, see Configure rules for a basic IPv4 ACL on page 364. 3. Click the Add button. 4. On the IP Rules page, create a second rule for IP ACL 1 with the following settings: • Sequence Number. 2 • Action. Permit • Match Every. True 5. Click the Add button. 6.
PAGE 454
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Two basic types of QoS are supported: • Integrated Services. Network resources are apportioned based on request and are reserved (resource reservation) according to network management policy (RSVP, for example). • Differentiated Services. Network resources are apportioned based on traffic classification and priority, giving preferential treatment to data with strict timing requirements.
PAGE 455
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP DiffServ traffic classes With DiffServ, you define which traffic classes to track on an ingress interface.
PAGE 456
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP based on a DiffServ forwarding class (such as the DSCP or IP precedence value) definition to convey some QoS characteristics to downstream switches that do not routinely look at the DSCP value in the IP header. • Policing. A method of constraining incoming traffic associated with a particular class so that it conforms to the terms of the TCS.
PAGE 457
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 3. Configure the following settings for Class1: • Protocol Type. UDP • Source IP Address. 192.12.1.0. • Source Mask. 255.255.255.0. • Source L4 Port. Other, and enter 4567 as the source port value. • Destination IP Address. 192.12.2.0. • Destination Mask. 255.255.255.0. • Destination L4 Port. Other, and enter 4568 as the destination port value.
PAGE 458
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Also the confirmed action on this flow is to send the packets with a committed rate of 1000000 Kbps and burst size of 128 KB. Packets that violate the committed rate and burst size are dropped. 802.
PAGE 459
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Access control is achieved by enforcing authentication of supplicants that are attached to an authenticator's controlled ports. The result of the authentication process determines whether the supplicant is authorized to access services on that controlled port. A port access entity (PAE) is able to adopt one of two distinct roles within an access control interaction: 1. Authenticator.
PAGE 460
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 802.1X example configuration This example shows how to configure the switch so that 802.1X-based authentication is required on the ports in a corporate conference room (1/0/5–1/0/8). These ports are available to visitors and must be authenticated before access is granted to the network. The authentication is handled by an external RADIUS server.
PAGE 461
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Multiple Spanning Tree Protocol Spanning Tree Protocol (STP) runs on bridged networks to help eliminate loops. If a bridge loop occurs, the network can become flooded with traffic. IEEE 802.1s Multiple Spanning Tree Protocol (MSTP) supports multiple instances of spanning tree to efficiently channel VLAN traffic over different interfaces. Each instance of the spanning tree behaves in the manner specified in IEEE 802.
PAGE 462
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP An MST region comprises of one or more MSTP bridges with the same MST configuration identifier, using the same MSTIs, and without any bridges attached that cannot receive and transmit MSTP BPDUs. The MST configuration identifier includes the following components: 1. Configuration identifier format selector 2. Configuration name 3. Configuration revision level 4.
PAGE 463
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Figure 2. MSTP example configuration Perform the following procedures on each switch to configure MSTP: 1. On the VLAN Configuration page, create VLANs 300 and 500 (see Configure the VLAN Settings on page 140). 2. On the VLAN Membership page, include ports 1/0/1–1/0/8 as tagged (T) or untagged (U) members of VLAN 300 and VLAN 500 (see Configure the VLAN Settings on page 140). 3.
PAGE 464
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP 7. Select ports 1/0/1–1/0/5 (edge ports), and select Enable from the Fast Link menu. Since the edge ports are not at risk for network loops, ports with Fast Link enabled transition directly to the forwarding state. 8. Click the Apply button. You can use the CST Port Status page to view spanning tree information about each port. 9.
PAGE 465
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP is forwarded to all ports in the VLAN, plus the internal bridge-router interface, if it was received on a routed VLAN. Since a port can be configured to belong to more than one VLAN, VLAN routing might be enabled for all of the VLANs on the port, or for a subset. VLAN routing can be used to allow more than one physical port to reside on the same subnet.
PAGE 466
B B Specifications and Default Settings The appendix covers the following topics: • Switch default settings • General feature default settings • System setup and maintenance settings • Port characteristics • Traffic control settings • Quality of Service settings • Security settings • System management settings • Settings for other features • Hardware technical specifications 466
PAGE 467
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Switch default settings The following table describes the switch default settings. Table 97. Switch default settings Feature Default IP address 192.168.0.239 Subnet mask 255.255.255.0 Default gateway 192.168.0.
PAGE 468
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 97.
PAGE 469
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 98. General feature default settings (continued) Feature Name/Setting Default 82 option trust mode Disabled Virtual LAN (IEEE 802.
PAGE 470
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 98. General feature default settings (continued) Feature Name/Setting Default STP/RSTP/MSTP, global Spanning tree state Enabled STP operation mode IEEE 802.
PAGE 471
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 98.
PAGE 472
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 98. General feature default settings (continued) Feature Name/Setting Default Write delay 300 IP routing Admin mode Disabled Time-to-live 64 Maximum next hops 1 ARP/ARP aging Age time (seconds) 1200 Response time (seconds) 10 Retries 10 Cache size 512 Dynamic review Enabled Router discovery protocol Advertise mode Disabled Advertise address 224.0.0.
PAGE 473
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 98.
PAGE 474
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 98.
PAGE 475
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 98. General feature default settings (continued) Feature Name/Setting Default Auto-VoIP, OUI-based Admin mode Disabled Auto-VoIP VLAN None OUI-based priority 7 L2 loop protection Admin mode Disabled System setup and maintenance settings The following table describes the system setup and maintenance settings. Table 99.
PAGE 476
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 100. Port characteristics (continued) Feature Sets Supported Default 802.3x flow control/back pressure All ports Disabled Port mirroring: TX, RX, both 1 Disabled Port trunking (aggregation) 8 Preconfigured 802.1D spanning tree 1 Disabled 802.1w RSTP 1 Enabled 802.1s spanning tree 8 instances Disabled Static 802.
PAGE 477
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Security settings The following table describes the security settings. Table 103. Security settings Feature Sets Supported Default 802.
PAGE 478
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Settings for other features The following table describes the settings for other features. Table 105.
PAGE 479
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Hardware technical specifications The following table describes the hardware technical specifications. Table 106.
PAGE 480
8-Port or 16-Port Gigabit Smart Managed Pro Switch Model GS418TPP, GS510TLP, and GS510TPP Table 106. Hardware technical specifications (continued) Feature Model GS418TPP Model GS510TLP Model GS510TPP Electromagnetic certifications and compliance CE: EN 55032:2012+AC:2013/CISPR 32:2012, EN 61000-3-2:2014, Class A, EN 61000-3-3:2013, EN 55024:2010 VCCI: VCCI-CISPR 32:2016, Class A RCM: AS/NZS CISPR 32:2013 Class A CCC: GB4943.